background image

xStack Gigabit Layer 3 Switch Command Line Interface Manual

 

Command Parameters 

create access_profile 

ip {vlan | source_ip_mask <netmask> | destination_ip_mask 
<netmask> | dscp | [icmp {type | code} | igmp {type} | tcp 
{src_port_mask <hex 0x0-0xffff> | dst_port_mask <hex 0x0-0xffff> 
| flag_mask [all | {urg | ack | psh | rst | syn | fin}]} | udp 
{src_port_mask <hex 0x0-0xffff> | dst_port_mask <hex 0x0-xffff>} 
| protocol_id {user _mask <hex 0x0-0xffffffff> }]} profile_id <value 
1-8>} 

config access_profile 
profile_id 

<value 1-8> [add access_id <value 1-100> ip {vlan <vlan_name 
32> | source_ip <ipaddr> | destination_ip <ipaddr> | dscp <value 
0-63> | [icmp {type <value 0-255> code <value 0-255>} | igmp 
{type <value 0-255>} | tcp {src_port <value 0-65535> | dst_port 
<value 0-65535> | urg | ack | psh | rst | syn | fin} | udp {src_port 
<value 0-65535> | dst_port <value 0-65535>} | protocol_id <value 
0 - 255>  {user_define <hex 0x0-0xffffffff> }]} port <port> [permit 
{priority <value 0-7> {replace_priority} | replace_dscp <value 0-
63>} | deny] delete <value 1-100>] 

create access_profile 

packet_content_mask {offset_0-15 <hex 0x0-0xffffffff> <hex 0x0-
0xffffffff> <hex 0x0-0xffffffff> <hex 0x0-0xffffffff> | offset_16-31 
<hex 0x0-0xffffffff> <hex 0x0-0xffffffff> <hex 0x0-0xffffffff> <hex 
0x0-0xffffffff> | offset_32-47 <hex 0x0-0xffffffff> <hex 0x0-0xffffffff> 
<hex 0x0-0xffffffff> <hex 0x0-0xffffffff> | offset_48-63 <hex 0x0-
0xffffffff> <hex 0x0-0xffffffff> <hex 0x0-0xffffffff> <hex 0x0-
0xffffffff> | offset_64-79 <hex 0x0-0xffffffff> <hex 0x0-0xffffffff> 
<hex 0x0-0xffffffff> <hex 0x0-0xffffffff>} profile_id <value 1-8>} 

config access_profile 
profile_id 

<value 1-8> [add access_id <value 1-100> packet_content 
{offset_0-15 <hex0x0-0xffffffff> <hex 0x0-0xffffffff> <hex 0x0-
0xffffffff> <hex 0x0-0xffffffff> | offset_16-31 <hex 0x0-0xffffffff> 
<hex 0x0-0xffffffff> <hex 0x0-0xffffffff> <hex 0x0-0xffffffff> | 
offset_32-47 <hex 0x0-0xffffffff> <hex 0x0-0xffffffff><hex 0x0-
0xffffffff> <hex 0x0-0xffffffff> | offset_48-63 <hex 0x0-0xffffffff> 
<hex 0x0-0xffffffff> <hex 0x0-0xffffffff> <hex 0x0-0xffffffff> | 
offset_64-79 <hex 0x0-0xffffffff> <hex 0x0-0xffffffff> <hex 0x0-
0xffffffff> <hex0x0-0xffffffff>} port <port> [permit {priority <value 0-
7> {replace_priority} | replace_dscp <value 0-63>} | deny] delete 
<value 1-100>] 

create access_profile 

ipv6 {class | flowlabel | source_ipv6_mask <ipv6mask> | 
destination_ipv6_mask <ipv6mask>}] profile_id <value 1-8>} 

<value 1-8> add access_id <value 1-100> ipv6 {class <value 0-
255> | flowlabel <hex 0x0-0xfffff> | source_ipv6 <ipv6addr> | 
destionation_ipv6 <ipv6addr>} port <port> [permit {priority <value 
0-7> {replace_priority}} | deny] | delete <value 1-100>] 

config access_profile 
profile_id 

Each command is listed, in detail, in the following sections. 

create access_profile (for Ethernet) 

Purpose 

Used to create an access profile on the Switch by examining the 
Ethernet part of the packet header. Masks entered can be combined 
with the values the Switch finds in the specified frame header fields. 
Specific values for the rules are entered using the 

config 

access_profile

 command, below. 

Syntax 

create access_profile [ethernet {vlan | source_mac <macmask 
000000000000-ffffffffffff> | destination_mac <macmask 
000000000000-ffffffffffff> | 802.1p | ethernet_type} profile_id 

 

220

Summary of Contents for xStack DGS-3324SRi

Page 1: ...xStack High density Layer 3 Intelligent Gigabit Switch Command Line Interface Reference Manual Release IV First Edition October 2004 6XSTACKCLI01 RECYCLABLE...

Page 2: ...sen 14 ffnen Sie niemals das Ger t Das Ger t darf aus Gr nden der elektrischen Sicherheit nur von authorisiertem Servicepersonal ge ffnet werden 15 Wenn folgende Situationen auftreten ist das Ger t v...

Page 3: ...ged securely in the original or other suitable shipping package to ensure that it will not be damaged in transit and the RMA number must be prominently marked on the outside of the package The package...

Page 4: ...templated in its documentation D Link further warrants that during the Warranty Period the magnetic media on which D Link delivers the Software will be free of physical defects D Link s sole obligatio...

Page 5: ...TIRE RISK AS TO THE QUALITY SELECTION AND PERFORMANCE OF THE PRODUCT IS WITH THE PURCHASER OF THE PRODUCT Limitation of Liability TO THE MAXIMUM EXTENT PERMITTED BY LAW D LINK IS NOT LIABLE UNDER ANY...

Page 6: ...d can radiate radio frequency energy and if not installed and used in accordance with this user s guide may cause harmful interference to radio communications Operation of this equipment in a resident...

Page 7: ...77 Forwarding Database Commands 91 Broadcast Storm Control Commands 101 QoS Commands 103 Port Mirroring Commands 116 VLAN Commands 120 Link Aggregation Commands 130 IP Commands Including IP Multinetti...

Page 8: ...ution Commands 277 BOOTP Relay Commands 284 DNS Relay Commands 288 RIP Commands 292 DVMRP Commands 295 PIM Commands 300 IP Multicasting Commands 304 MD5 Configuration Commands 306 OSPF Configuration C...

Page 9: ...stated Configuration and management of the Switch via the Web based management agent is discussed in the User s Guide Accessing the Switch via the Serial Port The Switch s serial port s default settin...

Page 10: ...can be managed with the Web based manager The Switch IP address can be automatically set using BOOTP or DHCP protocols in which case the actual address assigned to the Switch must be known The IP add...

Page 11: ...witch was assigned an IP address of 10 53 13 144 with a subnet mask of 255 0 0 0 The system message Success indicates that the command was executed successfully The Switch can now be configured and ma...

Page 12: ...in the Switch s NV RAM and reloaded when the Switch is rebooted If the Switch is rebooted without using the save command the last configuration saved to NV RAM will be loaded Connecting to the Switch...

Page 13: ...s DGS 3324SRi 4 DGS 3324SR 4 DXS 3326GSR 4 DXS 3350SR 4 There are a number of helpful features included in the CLI Entering the command will display a list of all of the top level commands Figure 2 2...

Page 14: ...all of the next possible sub commands in sequential order by repeatedly pressing the Tab key To re enter the previous command at the command prompt press the up arrow cursor key The previous command w...

Page 15: ...red that is unrecognized by the CLI the top level commands will be displayed under the Available commands prompt Figure 2 5 The Available Commands Prompt The top level commands consist of commands suc...

Page 16: ...e above example all of the possible next parameters for the show command are displayed At the next command prompt the up arrow was used to re enter the show command followed by the account parameter T...

Page 17: ...in the ipif_name space a VLAN name in the vlan_name 32 space and the network address in the network_address space Do not type the angle brackets Example Command create ipif Engineering vlan Design ip...

Page 18: ...es the cursor to the right Up Arrow Repeat the previously entered command Each time the up arrow is pressed the command previous to that displayed appears This way it is possible to review the command...

Page 19: ...le_info show serial_port config serial_port baud_rate 115200 auto_logout never 2_minutes 5_minutes 10_minutes 15_minutes enable clipaging disable clipaging enable telnet tcp_port_number 1 65535 disabl...

Page 20: ...Administrator level users can issue this command Usernames can be between 1 and 15 characters Passwords can be between 0 and 15 characters Example usage To create an administrator level user account...

Page 21: ...itch at one time Parameters None Restrictions None Example usage To display the accounts that have been created DGS 3324SRi 4 show account Command show account Current Accounts Username Access Level d...

Page 22: ...how config Purpose Used to display a list of configuration commands entered into the Switch Syntax show config current_config config_in_NVRAM Description This command displays a list of configuration...

Page 23: ...g traffic control 1 1 1 26 broadcast disable multicast disable dlf disable threshold 128 config traffic control 2 1 2 24 broadcast disable multicast disable dlf disable CTRL C ESC q Quit SPACE n Next...

Page 24: ...3324SRi 4 show switch Command show switch Device Type DGS 3324SRi Stackable Ethernet Switch Unit ID 1 MAC Address DA 10 21 00 00 01 IP Address 10 41 44 22 Manual VLAN Name default Subnet Mask 255 0 0...

Page 25: ...4 show switch_mode Purpose Used to display the current switch mode Syntax show switch_mode Description This command displays the current mode of operation of the Switch Parameters None Restrictions N...

Page 26: ...not support the optional module information about the module can be viewed on these switches if they are stacked with one of the switches that support the optional module The following explains what...

Page 27: ...e Stop Bits 1 Auto Logout 10 mins DGS 3324SRi 4 config serial_port Purpose Used to configure the serial port Syntax config serial_port baud_rate 115200 auto_logout never 2_minutes 5_minutes 10_minutes...

Page 28: ...d rate DGS 3324SRi 4 config serial_port baud_rate 115200 Command config serial_port baud_rate 115200 Success DGS 3324SRi 4 enable clipaging Purpose Used to pause the scrolling of the console screen wh...

Page 29: ...t reaches the end of the page DGS 3324SRi 4 disable clipaging Command disable clipaging Success DGS 3324SRi 4 enable telnet Purpose Used to enable communication with and management of the Switch using...

Page 30: ...ble the HTTP based management software on the Switch Syntax enable web tcp_port_number 1 65535 Description This command is used to enable the Web based management software on the Switch The user can s...

Page 31: ...command is used to enter the current switch configuration into non volatile RAM The saved switch configuration will be loaded into the Switch s memory each time the Switch is restarted Parameters Ente...

Page 32: ...ameters config If the keyword config is specified all of the factory default settings are restored on the Switch including the IP address user accounts and the Switch history log The Switch will not s...

Page 33: ...ted for his Username and Password Parameters None Restrictions None Example usage To initiate the login procedure DGS 3324SRi 4 login Command login UserName logout Purpose Used to log out a user from...

Page 34: ...mber on that switch separated by a colon Then the highest switch number and the highest port number of the range also separated by a colon are specified The beginning and end of the port list range ar...

Page 35: ...g ports 1 1 1 3 speed 10_full learning enable state enable Command config ports 1 1 1 3 speed 10_full learning enable state enable Success DGS 3324SRi 4 show ports Purpose Used to display the current...

Page 36: ...wn Enabled 1 10 Enabled Auto Enabled 100M Full 802 3x Enabled 1 11 Enabled Auto Enabled Link Down Enabled 1 12 Enabled Auto Enabled Link Down Enabled 1 13 Enabled Auto Disabled Link Down Enabled 1 14...

Page 37: ...Specifies a range of ports to be configured The port list is specified by listing the lowest switch number and the beginning port number on that switch separated by a colon Then the highest switch nu...

Page 38: ...g address and lock mode Parameters ports portlist Specifies a port or range of ports to be viewed The port list is specified by listing the lowest switch number and the beginning port number on that s...

Page 39: ...emove an entry from the port security entries learned by the Switch and entered into the forwarding database Parameters vlan_name 32 Enter the corresponding VLAN of the entry the user wishes to delete...

Page 40: ...riv v3 MD5 or SHA Authentication is based on the HMAC MD5 or HMAC SHA algorithms AuthNoPriv v3 MD5 DES or SHA DES Authentication is based on the HMAC MD5 or HMAC SHA algorithms AuthPriv DES 56 bit enc...

Page 41: ...snmp system name sw_name enable rmon disable rmon Each command is listed in detail in the following sections create snmp user Purpose Used to create a new SNMP user and adds the user to an SNMP group...

Page 42: ...that the HMAC MD5 96 authentication level will be used md5 may be utilized by entering one of the following auth password 8 16 An alphanumeric sting of between 8 and 16 characters that will be used t...

Page 43: ...ate snmp user dlink default encrypted by_password auth md5 auth_password priv none Success DGS 3324SRi 4 delete snmp user Purpose Used to remove an SNMP user from an SNMP group and also to delete the...

Page 44: ...Purpose Used to assign views to community strings to limit which MIB objects and SNMP manager can access Syntax create snmp view view_name 32 oid view_type included excluded Description The create sn...

Page 45: ...e SNMP views on the Switch will be deleted oid The object ID that identifies an object tree MIB tree that will be deleted from the Switch Restrictions Only administrator level users can issue this com...

Page 46: ...o the Switch s SNMP agent An MIB view that defines the subset of all MIB objects that will be accessible to the SNMP community Read write or read only level permission for the MIB objects accessible t...

Page 47: ...to remove a previously defined SNMP community string from the Switch Parameters community_string 32 An alphanumeric string of up to 32 characters that is used to identify members of an SNMP community...

Page 48: ...e Access Right dlink ReadView read_write private CommunityView read_write public CommunityView read_only Total Entries 3 DGS 3324SRi 4 config snmp engineID Purpose Used to configure a name for the SNM...

Page 49: ...scription The create snmp group command creates a new SNMP group or a table that maps SNMP users to SNMP views Parameters groupname 32 An alphanumeric name of up to 32 characters that will identify th...

Page 50: ...he SNMP group being created has write privileges view_name 32 An alphanumeric string of up to 32 characters that is used to identify the group of MIB objects that a remote SNMP manager is allowed to a...

Page 51: ...groups command displays the group names of SNMP groups currently configured on the Switch The security model level and status of each group are also displayed Parameters None Restrictions None Exampl...

Page 52: ...cted Security Model SNMPv3 Security Level NoAuthNoPriv Group Name ReadGroup ReadView Name CommunityView WriteView Name Notify View Name CommunityView Security Model SNMPv1 Security Level NoAuthNoPriv...

Page 53: ...es v3 Specifies that the SNMP version 3 will be used SNMP v3 provides secure access to devices through a combination of authentication and encrypting packets over the network SNMP v3 adds Message inte...

Page 54: ...ions Only administrator level users can issue this command Example usage To delete an SNMP host entry DGS 3324SRi 4 delete snmp host 10 48 74 100 Command delete snmp host 10 48 74 100 Success DGS 3324...

Page 55: ...re These IP addresses must be members of the Management VLAN If no IP addresses are specified then there is nothing to prevent any IP address from accessing the Switch provided the user knows the User...

Page 56: ...delete trusted _host ipaddr Description This command is used to delete a trusted host entry made using the create trusted_host command above Parameters ipaddr The IP address of the trusted host Restr...

Page 57: ...is command is used to enable SNMP authentication trap support on the Switch Parameters None Restrictions Only administrator level users can issue this command Example Usage To turn on SNMP authenticat...

Page 58: ...ctions Only administrator level users can issue this command Example Usage To prevent SNMP traps from being sent from the Switch DGS 3324SRi 4 disable snmp traps Command disable snmp traps Success DGS...

Page 59: ...L string is accepted if there is no contact Restrictions Only administrator level users can issue this command Example usage To configure the Switch contact to MIS Department II DGS 3324SRi 4 config s...

Page 60: ...owed A NULL string is accepted if no name is desired Restrictions Only administrator level users can issue this command Example usage To configure the Switch name for DGS 3324SRi Stackable Switch DGS...

Page 61: ...MON on the Switch Syntax disable rmon Description This command is used in conjunction with the enable rmon command above to enable and disable remote monitoring RMON on the Switch Parameters None Rest...

Page 62: ...ue 1 255 timeout sec 1 99 traceroute ipaddr ttl value 1 60 port value 30000 64900 timeout sec 1 65535 probe value 1 9 Each command is listed in detail in the following sections download Purpose Used t...

Page 63: ...rver must be on the same IP subnet as the Switch Only administrator level users can issue this command Example usage To download a configuration file DGS 3324SRi 4 download cfg_to TFTP 10 48 74 121 c...

Page 64: ...r must be on the same IP subnet as the Switch Only administrator level users can issue this command Example usage To upload a configuration file DGS 3324SRi 4 upload cfg_toTFTP 10 48 74 121 c cfg log...

Page 65: ...te Success DGS 3324SRi 4 Example usage To configure a firmware as the boot up runtime image firmware DGS 3324SRi 4 config firmware image_id 2 boot_up Command config firmware image_id 2 boot_up Success...

Page 66: ...ping ipaddr times value 1 255 timeout sec 1 99 Description The ping command sends Internet Control Message Protocol ICMP echo messages to a remote IP address The remote IP address will then echo or re...

Page 67: ...the IP address of the host ttl value 1 60 The time to live value of the trace route request This is the maximum number of routers the traceroute command will cross while seeking the network path betwe...

Page 68: ...cal4 local5 local6 local7 udp_port udp_port_number ipaddress ipaddr state enable disable config syslog host all severity informational warning all facility local0 local1 local2 local3 local4 local5 lo...

Page 69: ...4 3275 10 RX Bytes 408973 1657 65 127 755 10 RX Frames 4395 19 128 255 316 1 256 511 145 0 TX Bytes 7918 178 512 1023 15 0 TX Frames 111 2 1024 1518 0 0 C Unicast RX 152 1 Multicast RX 557 2 Broadcast...

Page 70: ...op Pkts 20837 Collision 0 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh show utilization Purpose Used to display real time port and cpu utilization statistics Syntax show utilization p...

Page 71: ...utilization DGS 3324SRi 4 show utilization cpu Command show utilization cpu CPU utilization Five seconds 15 One minute 25 Five minutes 14 DGS 3324SRi 4 clear counters Purpose Used to clear the Switch...

Page 72: ...Only administrator level users can issue this command Example usage To clear the log information DGS 3324SRi 4 clear log Command clear log Success DGS 3324SRi 4 show log Purpose Used to display the Sw...

Page 73: ...ion The enable syslog command enables the system log to be sent to a remote host Parameters None Restrictions Only administrator level users can issue this command Example usage To the syslog function...

Page 74: ...led DGS 3324SRi 4 create syslog host Purpose Used to create a new syslog host Syntax create syslog host index 1 4 severity informational warning all facility local0 local1 local2 local3 local4 local5...

Page 75: ...Switch will be sent to the remote host facility Some of the operating system daemons and processes have been assigned Facility values Processes and daemons that have not been explicitly assigned a Fac...

Page 76: ...ifies that local use 5 messages will be sent to the remote host This corresponds to number 21 from the list above local6 Specifies that local use 6 messages will be sent to the remote host This corres...

Page 77: ...e 1 Alert action must be taken immediately 2 Critical critical conditions 3 Error error conditions 4 Warning warning conditions 5 Notice normal but significant condition 6 Informational informational...

Page 78: ...e sent to the remote host This corresponds to number 17 from the list above local2 Specifies that local use 2 messages will be sent to the remote host This corresponds to number 18 from the list above...

Page 79: ...00 Success DGS 3324SRi 4 config syslog host 1 ipaddress 10 44 67 8 Command config syslog host 1 ipaddress 10 44 67 8 Success DGS 3324SRi 4 config syslog host 1 state enable Command config syslog host...

Page 80: ...urrently supported syslog messages that are generated by the Switch will be sent to the remote host facility Some of the operating system daemons and processes have been assigned Facility values Proce...

Page 81: ...er 20 from the list above local5 Specifies that local use 5 messages will be sent to the remote host This corresponds to number 21 from the list above local6 Specifies that local use 6 messages will b...

Page 82: ...es that the command will be applied to an index of hosts There are four available indexes numbered 1 through 4 all Specifies that all syslog hosts will be deleted Restrictions Only administrator level...

Page 83: ...c events occurring on the Switch that are not deemed as problematic such as enabling or disabling various functions on the Switch Warning Events classified as warning are problematic events that are n...

Page 84: ...he Switch s log or SNMP agent Restrictions Only administrator level users can issue this command Example usage To configure the system severity DGS 3324SRi 4 config system_severity trap critical Comma...

Page 85: ...n the network continuing to allow simple and full processing of frames regardless of administrative errors in defining VLANs and their respective spanning trees Each switch utilizing the MSTP on a net...

Page 86: ...rpose Used to globally enable STP on the Switch Syntax enable stp Description This command allows the Spanning Tree Protocol to be globally enabled on the Switch Parameters None Restrictions Only admi...

Page 87: ...usage To set the Switch globally for the Multiple Spanning Tree Protocol MSTP DGS 3324SRi 4 config stp version mstp Command config stp version mstp Success DGS 3324SRi 4 config stp Purpose Used to se...

Page 88: ...that the Switch is still functioning A time between 1 and 10 seconds may be chosen with a default setting of 2 seconds In MSTP the spanning tree is configured by port and therefore the hellotime must...

Page 89: ...till functioning The user may choose a time between 1 and 10 seconds The default is 2 seconds migrate yes no Setting this parameter as yes will set the ports to send out BDPU packets to other bridges...

Page 90: ...migrate yes state enable Command config stp ports 1 1 1 5 externalCost 19 hellotime 5 migrate yes state enable Success DGS 3324SRi 4 create stp instance_id Purpose Used to create a STP instance ID fo...

Page 91: ...umber and the same name Parameters value 1 15 Enter a number between 1 and 15 to define the instance_id The Switch supports 16 STP regions with one unchangeable default instance ID set as 0 add_vlan A...

Page 92: ...his command is used to update the STP instance configuration settings on the Switch The MSTP will utilize the priority in selecting the root bridge root port and designated port Assigning higher prior...

Page 93: ...default setting is 0 name string Enter an alphanumeric string of up to 32 characters to uniquely identify the MSTP region on the Switch This name along with the revision_level value will identify the...

Page 94: ...red on the Switch An entry of 0 will denote the CIST Common and Internal Spanning Tree internalCost This parameter is set to represent the relative cost of forwarding packets to specified ports when a...

Page 95: ...how stp Command show stp STP Status Enabled STP Version STP Compatible Max Age 20 Hello Time 2 Forward Delay 15 Max Age 20 TX Hold Count 3 Forwarding BPDU Enabled DGS 3324SRi 4 Status 2 STP enabled fo...

Page 96: ...ports between switch 1 port 3 and switch 2 port 4 in numerical order Restrictions None Example usage To show stp ports 1 through 9 on switch one DGS 3324SRi 4 show stp ports 1 1 1 9 Command show stp...

Page 97: ...E2 External Root Cost 200012 Regional Root Bridge 32768 00 53 13 1A 33 24 Internal Root Cost 0 Designated Bridge 32768 00 50 BA 71 20 D6 Root Port 1 1 Max Age 20 Forward Delay 15 Last Topology Change...

Page 98: ...d Line Interface Manual DGS 3324SRi 4 show stp mst_config_id Command show stp mst_config_id Current MST Configuration Identification Configuration Name 00 53 13 1A 33 24 Revision Level 0 MSTI ID Vid l...

Page 99: ...hit ports portlist Each command is listed in detail in the following sections create fdb Purpose Used to create a static entry to the unicast MAC address forwarding table database Syntax create fdb vl...

Page 100: ...orwarding table Restrictions Only administrator level users can issue this command Example usage To create multicast MAC forwarding DGS 3324SRi 4 create multicast_fdb default 01 00 00 00 00 01 Command...

Page 101: ...rding database Syntax config fdb aging_time sec 10 1000000 Description The aging time affects the learning process of the Switch Dynamic forwarding table entries which are made up of the source MAC ad...

Page 102: ...C address resides macaddr The MAC address that will be deleted from the forwarding table Restrictions Only administrator level users can issue this command Example usage To delete a permanent FDB entr...

Page 103: ...2 port 4 all Clears all dynamic entries to the Switch s forwarding database Restrictions Only administrator level users can issue this command Example usage To clear all FDB dynamic entries DGS 3324S...

Page 104: ...tabase Parameters port port The port number corresponding to the MAC destination address The Switch will always forward traffic to the specified device through this port The port is specified by listi...

Page 105: ...6B BC F6 1 12 Dynamic 1 default 00 00 E2 7F 6B 53 1 12 Dynamic 1 default 00 00 E2 82 7D 90 1 12 Dynamic 1 default 00 00 F8 7C 1C 29 1 12 Dynamic 1 default 00 01 02 03 04 00 CPU Self 1 default 00 01 02...

Page 106: ...mmand will allow the user to define certain ports on the Switch as destination hit ports These destination hit ports will keep FDB entries learned in the forwarding database table from aging out When...

Page 107: ...f ports listed in the portlist Parameters portlist Specify a port or ports to be displayed The port list is specified by listing the lowest switch number and the beginning port number on that switch s...

Page 108: ...ation_hit ports 1 1 1 10 Command show fdb destination_hit ports 1 1 1 10 Port Destination Hit State 1 1 Enabled 1 2 Enabled 1 3 Enabled 1 4 Enabled 1 5 Enabled 1 6 Disabled 1 7 Disabled 1 8 Disabled 1...

Page 109: ...mber and the beginning port number on that switch separated by a colon Then the highest switch number and the highest port number of the range also separated by a colon are specified The beginning and...

Page 110: ...highest switch number and the highest port number of the range also separated by a colon are specified The beginning and end of the port list range are separated by a dash For example 1 3 specifies s...

Page 111: ...will refer to only the seven classes of service that may be used and configured by the Switch s Administrator For strict priority based scheduling packets residing in the higher hardware classes of se...

Page 112: ...width_control Purpose Used to configure bandwidth control on a by port basis Syntax config bandwidth_control portlist all rx_rate no_limit value 1 9999 tx_rate no_limit value 1 9999 Description The co...

Page 113: ...andwidth_control Purpose Used to display the bandwidth control configuration on the Switch Syntax show bandwidth_control portlist Description The show bandwidth_control command displays the current ba...

Page 114: ...pty its buffer before allowing the next lower priority class to transmit its packets The next highest priority class will empty before proceeding to the next class and so on Lower priority classes are...

Page 115: ...with an equal level of priority and equal entries in their max_packet field will empty their fields based on hardware priority scheduling Parameters class_id 0 6 Specifies which of the seven hardware...

Page 116: ...e Switch At this value it will empty the seven hardware priority classes in order from the highest priority queue 6 to the lowest priority queue 0 Parameters None Restrictions None Example usage To di...

Page 117: ...2 1p priority tags 0 through 7 you want to map to one of the Switch s hardware priority classes of service class_id 0 through 6 class_id 0 6 Specifies which of the Switch s hardware priority classes o...

Page 118: ...the 802 1p priority value an untagged incoming packet will be assigned before being forwarded to its destination Parameters portlist Specifies a range of ports to be configured The port list is specif...

Page 119: ...rity tag that will be assigned to an incoming untagged packet before being forwarded to its destination Parameters portlist Specifies a port or range of ports to be viewed The port list is specified b...

Page 120: ...lasses of service of the QoS function The Switch contains seven hardware priority classes of service Incoming packets must be mapped to one of these seven hardware priority classes of service This com...

Page 121: ...round robin WRR order That is to say that they will be emptied in an even distribution Restrictions Only administrator level users can issue this command Example usage To configure the traffic schedu...

Page 122: ...ntion Syntax enable hol_prevention Description The enable hol_prevention command enables Head of Line prevention Parameters None Restrictions You must have administrator privileges Example Usage To en...

Page 123: ...3324SRi 4 show hol_prevention Purpose Used to show HOL prevention Syntax show hol_prevention Description The show hol_prevention command displays the Head of Line prevention state Parameters None Res...

Page 124: ...e lowest switch number and the beginning port number on that switch separated by a colon For example 1 3 specifies switch number 1 port 3 2 4 specifies switch number 2 port 4 add source ports The port...

Page 125: ...umber 2 port 4 delete source port Adding this parameter will delete source ports according to ports entered using the portlist portlist This specifies a range of ports that will be mirrored That is th...

Page 126: ...irroring on and off without having to modify the port mirroring configuration Parameters None Restrictions None Example usage To enable mirroring configurations DGS 3324SRi 4 enable mirror Command ena...

Page 127: ...port mirroring configuration on the Switch Syntax show mirror Description This command displays the current port mirroring configuration on the Switch Parameters None Restrictions None Example usage T...

Page 128: ...4094 type 1q_vlan advertisement protocol ip protocol ipx802dot3 protocol ipx802dot2 protocol ipxSnap protocol ipxEthernet2 protocol appleTalk protocol decLat protocol decOther protocol sna802dot2 prot...

Page 129: ...ormation is based on the Ethernet protocol protocol ipx802dot3 Using this parameter will instruct the Switch to forward packets to this VLAN if the tag in the packet header is concurrent with this pro...

Page 130: ...formation is defined by the Xerox Network Systems XNS Protocol protocol vines Using this parameter will instruct the Switch to forward packets to this VLAN if the tag in the packet header is concurren...

Page 131: ...ser can not create a userDefined protocol VLAN with an Ethernet encapsulation Example usage To create a protocol VLAN DGS 3324SRi 4 create vlan v5 tag 2 protocol ipxSnap Command create vlan v5 tag 2 p...

Page 132: ...he additional ports as untagged forbidden Specifies the additional ports as forbidden portlist A range of ports to add to the VLAN The port list is specified by listing the lowest switch number and th...

Page 133: ...s can issue this command Example usage To delete ports 5 7 of module 2 of the VLAN v1 DGS 3324SRi 4 config vlan v1 delete 2 5 2 7 Command config vlan v1 delete 2 5 2 7 Success DGS 3324SRi 4 config gvr...

Page 134: ...ctions Only administrator level users can issue this command Example usage To set the ingress checking status the sending and receiving GVRP information DGS 3324SRi 4 config gvrp 1 1 1 4 state enable...

Page 135: ...VLAN Registration Protocol GVRP DGS 3324SRi 4 disable gvrp Command disable gvrp Success DGS 3324SRi 4 show vlan Purpose Used to display the current VLAN configuration on the Switch Syntax show vlan v...

Page 136: ...rt list on the Switch Syntax show gvrp portlist Description This command displays the GVRP status for a port list on the Switch Parameters portlist Specifies a range of ports for which the GVRP status...

Page 137: ...led All Frames 1 6 1 Disabled Enabled All Frames 1 7 1 Disabled Enabled All Frames 1 8 1 Disabled Enabled All Frames 1 9 1 Disabled Enabled All Frames 1 10 1 Disabled Enabled All Frames 1 11 1 Disable...

Page 138: ...is command will create a link aggregation group with a unique identifier Parameters value 1 32 Specifies the group ID The Switch allows up to 32 link aggregation groups to be configured The group numb...

Page 139: ...ntifies each of the groups Restrictions Only administrator level users can issue this command Example usage To delete link aggregation group DGS 3324SRi 4 delete link_aggregation group_id 6 Command de...

Page 140: ...port 3 2 4 specifies switch number 2 port 4 1 3 2 4 specifies all of the ports between switch 1 port 3 and switch 2 port 4 in numerical order Ports may be listed in only one port aggregation group tha...

Page 141: ...mple usage To configure link aggregation algorithm for mac source dest DGS 3324SRi 4 config link_aggregation algorithm mac_source_dest Command config link_aggregation algorithm mac_source_dest Success...

Page 142: ...h For example 1 3 specifies switch number 1 port 3 2 4 specifies switch number 2 port 4 1 3 2 4 specifies all of the ports between switch 1 port 3 and switch 2 port 4 in numerical order mode Select th...

Page 143: ...ing port number on that switch separated by a colon Then the highest switch number and the highest port number of the range also separated by a colon are specified The beginning and end of the port li...

Page 144: ...Once the user creates multiple interfaces for a specified VLAN primary and secondary that set IP interface cannot be changed to another VLAN Application Limitation A multicast router cannot be connec...

Page 145: ...if this configured IP interface is to be a secondary IP interface of the VLAN previously specified secondary interfaces can only be configured if a primary interface is first configured state enable d...

Page 146: ...of the BOOTP protocol for the assignment of an IP address to the Switch s System IP interface dhcp Allows the selection of the DHCP protocol for the assignment of an IP address to the Switch s System...

Page 147: ...parameter will disable all the IP interfaces currently configured on the Switch Restrictions None Example usage To disable the IP interface named s2 DGS 3324SRi 4 disable ipif s2 Command disable ipif...

Page 148: ...d Restrictions None Purpose Syntax Description Parameters Example usage To display IP interface settings DGS 3324SRi 4 show ipif System Command show ipif System DGS 3324SRi 4 IP Interface Settings Int...

Page 149: ...Multicast In previous versions of IGMP the host would receive all packets sent to the muticast group Now a host will receive packets only from a specific source or sources This is done throught the im...

Page 150: ...ic Queries and Group and Source specific queries sent in response to Leave Group messages and is also the amount of time between Group Specific Query and Group and Source specific query messages The d...

Page 151: ...GMP group table Syntax show igmp group group group ipif ipif_name 12 Description This command will display the IGMP group configuration Parameters group group The ID of the multicast group to be displ...

Page 152: ...p group group 224 0 1 1 ipif System IGMP Group Detail Inforamtion Interface System Multicast Group 224 0 1 1 Last Reporter 10 50 77 16 IP Querier 10 9 68 96 IP Expire 217 Filter Mode Exclude V1 Host T...

Page 153: ...forbidden show igmp_snooping vlan vlan_name 32 vlan vlan_name 32 vlan vlan_name 32 config igmp_snooping querier enable igmp_snooping show igmp_snooping group show igmp_snooping forwarding Each command...

Page 154: ...e Switch Configuring this function when IGMP is enabled will produce the error message Cannot set Fast leave when IGMP is running and consequently will not be implemented Example usage To configure ig...

Page 155: ...Querier or Non querier Restrictions Only administrator level users can issue this command Group membership interval Amount of time that must pass before a multicast router decides there are no more m...

Page 156: ...e usage To enable IGMP snooping on the Switch DGS 3324SRi 4 enable igmp_snooping Success Command enable igmp_snooping DGS 3324SRi 4 disable igmp_snooping Purpose Used to enable IGMP snooping on the Sw...

Page 157: ...t list range are separated by a dash For example 1 3 specifies switch number 1 port 3 2 4 specifies switch number 2 port 4 1 3 2 4 specifies all of the ports between switch 1 port 3 and switch 2 port...

Page 158: ...ons Example usage Command config router_ports_forbidden default add 2 1 2 10 To set up forbidden router ports DGS 3324SRi 4 config router_ports_forbidden default add 2 1 2 10 Success DGS 3324SRi 4 sho...

Page 159: ...outer port Forbidden Router Port Total Entries 2 DGS 3324SRi 4 show igmp_snooping Purpose Used to show the current status of IGMP snooping on the Switch Syntax show igmp_snooping vlan vlan_name 32 Des...

Page 160: ...terval 125 Max Response Time 10 Robustness Value 2 Last Member Query Interval 1 Host Timeout 260 Route Timeout 260 Leave Timer 2 Querier State Disabled Querier Router Behavior Non Querier State Disabl...

Page 161: ...icast group 224 0 0 9 MAC address 01 00 5E 00 00 09 Port Member 1 26 2 7 VLAN Name default Multicast group 234 5 6 7 MAC address 01 00 5E 05 06 07 Reports 1 Port Member 1 26 2 9 VLAN Name default Mult...

Page 162: ...ng table entries currently configured on the Switch Parameters vlan_name 32 The name of the VLAN for which to view IGMP snooping forwarding table information Restrictions None Purpose Example usage To...

Page 163: ...ons enable mac_notification Purpose Used to enable global MAC address table notification on the Switch enable mac_notification This command is used to enable MAC Address Notification without changing...

Page 164: ...ze int 1 500 MAC address notification is used to monitor MAC addresses learned and entered into the FDB interval int 1 2147483647 The time in seconds between notifications The user may choose an inter...

Page 165: ...switch number 2 port 4 1 3 2 4 specifies all of the ports between switch 1 port 3 and switch 2 port 4 in numerical order enable disable These commands will enable or disable MAC address table notific...

Page 166: ...to be viewed The port list is specified by listing the lowest switch number and the beginning port number on that switch separated by a colon Then the highest switch number and the highest port number...

Page 167: ...le Notification State 1 1 Disabled 1 2 Disabled 1 3 Disabled 1 4 Disabled 1 5 Disabled 1 6 Disabled 1 7 Disabled 1 8 Disabled 1 9 Disabled 1 10 Disabled 1 11 Disabled 1 12 Disabled 1 13 Disabled 1 14...

Page 168: ...a device other than the Switch called a server host and it must include usernames and passwords for authentication When the user is prompted by the Switch to enter usernames and passwords for authent...

Page 169: ...list_name string 15 config authen_enable default method_list_name string 15 method tacacs xtacacs tacacs radius server_group string 15 local_enable none delete authen_enable method_list_name string 15...

Page 170: ...thentication upon login Only administrator level users can issue this command Parameters None Restrictions Example usage Command enable authen_policy To enable the system access authentication policy...

Page 171: ...en_policy Command show authen_policy Authentication Policy Enabled DGS 3324SRi 4 create authen_login method_list_name Purpose create authen_login method_list_name string 15 This command is used to cre...

Page 172: ...user When the local method is used the privilege level will be dependant on the local account privilege configured on the Switch Successful login using any of these methods will give the user a user p...

Page 173: ...be authenticated using the XTACACS protocol from a remote XTACACS server tacacs Adding this parameter will require the user to be authenticated using the TACACS protocol from a remote TACACS server ra...

Page 174: ...t to delete Restrictions Only administrator level users can issue this command Example usage To delete the method list name Trinity DGS 3324SRi 4 DGS 3324SRi 4 delete authen_login method_list_name Tri...

Page 175: ...configurations DGS 3324SRi 4 show authen_login method_list_name all Command show authen_login method_list_name all Method List Name Priority Method Name Comment Darren 1 tacacs Built in Group default...

Page 176: ...tacacs xtacacs local_enable the Switch will send an authentication request to the first tacacs host in the server group If no verification is found the Switch will send an authentication request to t...

Page 177: ...nly administrator level users can issue this command xtacacs Adding this parameter will require the user to be authenticated using the XTACACS protocol from a remote XTACACS server tacacs Adding this...

Page 178: ...ose Used to delete a user defined method list of authentication methods for promoting normal user level privileges to Administrator level privileges on the Switch Syntax delete authen_enable method_li...

Page 179: ...meter will display all the authentication login methods currently configured on the Switch Restrictions None Method List Name The name of a previously configured method list name Priority Defines whic...

Page 180: ...ers application Choose the application to configure The user may choose one of the following four applications to configure login Use this parameter to configure an application for normal login on the...

Page 181: ...ntax show authen application Description This command will display all of the authentication method lists login enable administrator privileges for switch configuration applications console telnet SSH...

Page 182: ...port number of the authentication protocol on a server host The default port number is 49 for TACACS XTACACS TACACS servers but the user may set a unique port number for higher security The default po...

Page 183: ...tication protocol can be run on the same physical server host but remember that TACACS XTACACS TACACS are separate entities and are not compatible with each other The maximum supported number of serve...

Page 184: ...l tacacs port 4321 timeout 12 retransmit 4 Success DGS 3324SRi 4 delete authen server_host Purpose Used to delete a user defined authentication server host Syntax delete authen server_host ipaddr prot...

Page 185: ...xtacacs tacacs and radius Port The virtual port number on the server host The default value is 49 Timeout The time in seconds the Switch will wait for the server host to reply to an authentication re...

Page 186: ...onfig authen server_group tacacs xtacacs tacacs radius string 15 add delete server_host ipaddr protocol tacacs xtacacs tacacs radius Description This command will configure an authentication server gr...

Page 187: ...l if the server host is using the TACACS authentication protocol xtacacs Use this parameter to define the protocol if the server host is using the XTACACS authentication protocol tacacs Use this param...

Page 188: ...p Name The name of the server group currently configured on the Switch including built in groups and user defined groups IP Address The IP address of the server host Protocol The authentication protoc...

Page 189: ...DGS 3324SRi 4 config authen parameter response_timeout 60 Command config authen parameter response_timeout 60 Success DGS 3324SRi 4 Example usage To configure the response timeout to never time out DG...

Page 190: ...mand will display the authentication parameters currently configured on the Switch including the response timeout and user authentication attempts This command will display the following fields Respon...

Page 191: ...authentication policy is disabled Parameters None Restrictions Only administrator level users can issue this command Example usage To enable administrator privileges on the Switch DGS 3324SRi 4 enabl...

Page 192: ...mand Line Interface Manual DGS 3324SRi 4 config admin local_enable Command config admin local_enable Enter the old password Enter the case sensitive new password Enter the new password again for confi...

Page 193: ...at SSH will use to encrypt and decrypt messages sent between the SSH Client and the SSH Server Finally enable SSH on the Switch using the enable ssh command After following the above steps you can con...

Page 194: ...SSH Syntax disable ssh Description This command allows you to disable SSH on the Switch Parameters None Restrictions Only administrator level users can issue this command Usage Example To disable SSH...

Page 195: ...SSH program previously installed enable disable This allows you to enable or disable SSH authentication on the Switch Restrictions Only administrator level users can issue this command Example usage T...

Page 196: ...imum number of attempts that a user may try to logon utilizing SSH authentication After the maximum number of attempts is exceeded the Switch will be disconnected and the user must reconnect to the Sw...

Page 197: ...administrator level users can issue this command hostbased This parameter should be chosen if the user wishes to use a remote SSH server for authentication purposes Choosing this parameter requires th...

Page 198: ...se see the section of this manual entitled Basic Switch Commands and then the command create user account config ssh algorithm Purpose Used to configure the SSH algorithm Syntax config ssh algorithm 3...

Page 199: ...parameter will enable or disable the Secure Hash Algorithm encryption DSA This parameter will enable or disable the Digital Signature Algorithm encryption RSA This parameter will enable or disable th...

Page 200: ...sh algorithm Encryption Algorithm 3DES Enabled AES128 Enabled AES192 Enabled AES256 Enabled ARC4 Enabled Blowfish Enabled Cast128 Enabled Twofish128 Enabled Twofish192 Enabled Twofish256 Enabled Data...

Page 201: ...s of stream ciphers on the Switch RC4 with 40 bit keys and RC4 with 128 bit keys These keys are used to encrypt messages and need to be consistent between client and host for optimal use CBC Block Cip...

Page 202: ...ling SSL with a ciphersuite will not enable the SSL status on the Switch Restrictions Only administrator level users can issue this command RSA_with_3DES_EDE_CBC_SHA This ciphersuite combines the RSA...

Page 203: ...pecific encryption algorithms and key sizes to be used for an authentication session The user may choose any combination of the following Restrictions Only administrator level users can issue this com...

Page 204: ...the master key on future connections with that particular host therefore speeding up the negotiation process Parameters timeout value 60 86400 Enter a timeout value between 60 and 86400 seconds to sp...

Page 205: ...he certificate file information currently set on the Switch Parameters certificate Adding this parameter will allow the user to view certificate file information currently implemented on the Switch Re...

Page 206: ...icate files with der file extensions ipaddr Enter the IP address of the TFTP server certfilename path_filename 64 Enter the path and the filename of the certificate file to download Restrictions downl...

Page 207: ...ticator none config 802 1x auth_parameter ports portlist all default direction both in port_control force_unauth auto force_auth quiet_period sec 0 65535 tx_period sec 1 65535 supp_timeout sec 1 65535...

Page 208: ...Restrictions Only administrator level users can issue this command Example usage To enable 802 1x switch wide DGS 3324SRi 4 enable 802 1x Command enable 802 1x Success DGS 3324SRi 4 disable 802 1x Pu...

Page 209: ...blett Command create 802 1x user dtremblett Enter a case sensitive new password Enter the new password again for confirmation Success DGS 3324SRi 4 show 802 1x user Purpose Used to display the 802 1x...

Page 210: ...guration of the 802 1x Port based or MAC based Network Access Control server application on the Switch The following details what is displayed 802 1x Enabled Disabled Shows the current status of 802 1...

Page 211: ...ween successive re authentications ReAuthenticate Enabled Disabled Shows whether or not to re authenticate Parameters ports portlist Specifies a range of ports The port list is specified by listing th...

Page 212: ...State Request Response Fail Idle Initialize Success Timeout Shows the current state of the Backend Authenticator Port Status Authorized Unauthorized Shows the result of the authentication process Aut...

Page 213: ...orized 1 10 ForceAuth Success Authorized 1 11 ForceAuth Success Authorized 1 12 ForceAuth Success Authorized 1 13 ForceAuth Success Authorized 1 14 ForceAuth Success Authorized 1 15 ForceAuth Success...

Page 214: ...2 1x capability ports portlist all authenticator none Description The config 802 1x command has two capabilities that can be set for each port authenticator and none Parameters portlist Specifies a ra...

Page 215: ...beginning port number on that switch separated by a colon Then the highest switch number and the highest port number of the range also separated by a colon are specified The beginning and end of the...

Page 216: ...mes to retry sending packets to a supplicant user reauth_period sec 1 65535 Configures the time interval between successive re authentications Restrictions Only administrator level users can issue thi...

Page 217: ...n be specified ports portlist Specifies a range of ports The port list is specified by listing the lowest switch number and the beginning port number on that switch separated by a colon Then the highe...

Page 218: ...ommand all Specifies all ports on the Switch ports portlist Specifies a range of ports The port list is specified by listing the lowest switch number and the beginning port number on that switch separ...

Page 219: ...d on the Switch The lowest index number will have a higher authenticative priority server_ip The IP address of the RADIUS server key Specifies that a password and encryption key will be used between t...

Page 220: ...ure the Switch s RADIUS settings Syntax config radius server_index 1 3 ipaddress server_ip key passwd 32 auth_port udp_port_number 1 65535 acct_port udp_port_number 1 65535 Description The config radi...

Page 221: ...one Restrictions None Example usage To display RADIUS settings on the Switch Command show radius Number Number 2 20 1 1 1 1800 1813 Active des3226 Total Entries 3 DGS 3324SRi 4 show radius Idx IP Addr...

Page 222: ...tors 0 radiusAccClientPendingRequests 0 radiusAccClientUnknownTypes 0 radiusAccClientPacketsDropped 0 CTRL C ESC q Quit SPACE n Next Page Enter Next Entry a All show auth_client Used to display the cu...

Page 223: ...ports The port list is specified by listing the lowest switch number and the beginning port number on that switch separated by a colon Then the highest switch number and the highest port number of the...

Page 224: ...that switch separated by a colon Then the highest switch number and the highest port number of the range also separated by a colon are specified The beginning and end of the port list range are separa...

Page 225: ...nd of the port list range are separated by a dash For example 1 3 specifies switch number 1 port 3 2 4 specifies switch number 2 port 4 1 3 2 4 specifies all of the ports between switch 1 port 3 and s...

Page 226: ...ue 1 8 delete access_profile profile_id value 1 8 config access_profile profile_id value 1 8 add access_id value 1 100 ethernet vlan vlan_name 32 source_mac macaddr 000000000000 ffffffffffff destinati...

Page 227: ...frame received by the Switch Each source IP address the Switch finds will be combined with the source_ip_mask with a logical AND operation The profile_id parameter is used to give the access profile...

Page 228: ...fffff profile_id value 1 8 config access_profile profile_id value 1 8 add access_id value 1 100 packet_content offset_0 15 hex0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff of...

Page 229: ...AC address mask for the destination MAC address in the following format 000000000000 FFFFFFFFFFFF 802 1p Specifies that the Switch will examine the 802 1p priority value in the frame s header ethernet...

Page 230: ...it is to be filtered or forwarded based on one or more of the following destination_mac macaddr Specifies that the access profile will apply to only packets with this destination MAC address MAC addr...

Page 231: ...1 replace priority Success create access_profile IP Purpose Used to create an access profile on the Switch by examining the IP part of the packet header Masks entered can be combined with the values...

Page 232: ...psh rst syn fin Enter the appropriate flag_mask parameter All incoming packets have TCP port numbers contained in them as the forwarding criterion These numbers have flag bits associated with them wh...

Page 233: ...e rules used by the Switch to either filter or forward packets based on the IP part of each packet header Parameters profile_id value 1 8 Enter an integer between 1 and 8 that is used to identify the...

Page 234: ...t the access profile will apply only to packets that have this TCP source port in their TCP header dst_port value 0 65535 Specifies that the access profile will apply only to packets that have this TC...

Page 235: ...ecified previously by the user replace_priority Enter this parameter if you want to re write the 802 1p default priority of a packet to the value entered in the Priority field which meets the criteria...

Page 236: ...and 8 that will identify the access profile being created with this command Restrictions Only administrator level users can issue this command offset_0 15 Enter a value in hex form to mask the packet...

Page 237: ...l be configured with this command This value is assigned to the access profile when it is created with the create access_profile command The lower the profile ID the higher the priority the rule will...

Page 238: ...delete a specific rule from the packet content mask profile Up to 100 rules may be specified for the Packet Content access profile Restrictions Only administrator level users can issue this command Ex...

Page 239: ...ipv6_mask ipv6mask Specifies an IP address mask for the destination IPv6 address Example usage To create an access profile based on IPv6 classification DGS 3324SRi 4 create access_profile ipv6 class f...

Page 240: ...ll be filtered class value 0 255 Entering this parameter will instruct the Switch to examine the class field of the IPv6 header This class field is a part of the packet header that is similar to the T...

Page 241: ...ify the access profile that will be deleted with this command This value is assigned to the access profile when it is created with the create access_profile command Restrictions Only administrator lev...

Page 242: ...file Table Access Profile ID 1 TYPE Ethernet MASK Option VLAN 802 1p Access ID 1 Mode Permit replaced priority 1 Ports 1 1 Trinity 1 Access Profile ID 2 TYPE IP MASK Option Procotol ID Access ID 2 Mod...

Page 243: ...xStack Gigabit Layer 3 Switch Command Line Interface Manual 1 ABCD Total Entries 4 DGS 3324SRi 4 235...

Page 244: ...at will be configured for traffic segmentation The port list is specified by listing the lowest switch number and the beginning port number on that switch separated by a colon Then the highest switch...

Page 245: ...h number and the highest port number of the range also separated by a colon are specified The beginning and end of the port list range are separated by a dash For example 1 3 specifies switch number 1...

Page 246: ...xStack Gigabit Layer 3 Switch Command Line Interface Manual 1 16 1 1 1 24 2 1 2 24 1 17 1 1 1 24 2 1 2 24 1 18 1 1 1 24 2 1 2 24 CTRL C ESC q Quit SPACE n Next Page Enter Next Entry a All 238...

Page 247: ...is listed in detail in the following sections config box_priority Purpose Used to configure box priority which determines which box becomes master Lower numbers have higher priority Syntax config box_...

Page 248: ...i 4 config box_type Purpose Used to configure box type Syntax config box_type current_box_id value 1 12 type DGS 3324SR DXS 3350SR DXS 3326GSR BOX_NOTEXIST Description This command will pre assign the...

Page 249: ...nd will determine the mode of assigning box IDs Parameters static_mode Box IDs are assigned by the user auto_mode Box IDs are assigned automatically Restrictions Only administrator level users can iss...

Page 250: ...Set Type Exist rity version version version 1 AUTO DGS 3324SRi exist 16 2 00 B01 4 00 B13 2A1 2 USR NOT CFG no 3 USR NOT CFG no 4 USR NOT CFG no 5 USR NOT CFG no 6 USR NOT CFG no 7 USR NOT CFG no 8 U...

Page 251: ...nly belong to one group If multiple VLANs are configured the SIM group will only utilize the default VLAN on any switch SIM allows intermediate devices that do not support SIM This enables the user to...

Page 252: ...packet from the MS which it will encode and send it back to the administrator When a CaS becomes a MS it automatically becomes a member of the first SNMP community include read write and read only to...

Page 253: ...ly on the Switch Parameters None Restrictions Only administrator level users can issue this command Example usage To disable SIM on the Switch DGS 3324SRi 4 disable sim Command disable sim Success DGS...

Page 254: ...ng this parameter will display information concerning candidates of the SIM group To view a specific candidate include that candidate s id number listed from 1 to 100 members member_id 1 32 Entering t...

Page 255: ...andidates Command show sim candidates ID MAC Address Platform Hold Firmware Device Name Capability Time Version 1 00 01 02 03 04 00 DGS 3324SR L3 Switch 40 4 00 B13 The Man 2 00 55 55 00 55 00 DGS 332...

Page 256: ...e Name Capability Time Version 2 00 55 55 00 55 00 DXS 3350 L3 Switch 140 4 00 B13 Enrico SIM Group Name SIM2 ID MAC Address Platform Hold Firmware Device Name Capability Time Version 1 00 01 02 03 04...

Page 257: ...g member_id 2 Command reconfig member_id 2 DGS 3324SRi 4 config sim_group Purpose Used to add candidates and delete members from the SIM group Syntax config sim_group add candidate_id 1 100 password d...

Page 258: ...Returning information to the commander switch will include information about other switches connected to it Ex MS CaS The user may set the discovery protocol interval from 30 to 90 seconds hold time...

Page 259: ...y protocol DGS 3324SRi 4 config sim commander hold_time 120 Command config sim commander hold_time 120 Success DGS 3324SRi 4 To transfer the commander switch to be a candidate DGS 3324SRi 4 config sim...

Page 260: ...e of the firmware or switch on the TFTP server members Enter this parameter to specify the members to which the user prefers to download firmware or switch configuration files The user may specify a m...

Page 261: ...1 32 Description This command will upload a configuration file to a TFTP server from a specified member of a SIM group Parameters ipaddr Enter the IP address of the TFTP server to upload a configurat...

Page 262: ...e_date end_date 1 31 e_mth end_mth 1 12 e_time end_time hh mm offset 30 60 90 120 show time Each command is listed in detail in the following sections config sntp Purpose Used to setup SNTP service Sy...

Page 263: ...ue this command Restrictions Example usage SNTP Poll Interval 720 sec To display SNTP configuration information DGS 3324SRi 4 show sntp Command show sntp Current Time Source System Clock SNTP Disabled...

Page 264: ...em time and date settings Syntax config time date date ddmthyyyy time hh mm ss Description This will configure the system time and date settings These will be overridden if SNTP is configured and enab...

Page 265: ...nt from GMT min minute 0 59 Select the number of minutes difference added or subtracted to adjust the time zone Restrictions Only administrator level users can issue this command Example usage To conf...

Page 266: ...s s_day Configure the day of the week in which DST begins e_day Configure the day of the week in which DST ends e_mth Configure the month in which DST ends s_time Configure the time of day to begin DS...

Page 267: ...le usage To configure daylight savings time on the Switch DGS 3324SRi 4 config dst repeating s_week 2 s_day tue s_mth 4 s_time 15 00 e_week 2 e_day wed e_mth 10 e_time 15 30 offset 30 Command config d...

Page 268: ...show time Current Time Source System Clock Boot Time 2 Jul 2003 10 59 59 Current Time 10 Jul 2003 01 43 41 Time Zone GMT 02 30 Daylight Saving Time Repeating Offset in Minutes 60 Repeating From Apr 2n...

Page 269: ...esponding MAC address into the Switch s ARP table Parameters ipaddr The IP address of the end node or station macaddr The MAC address corresponding to the IP address above Restrictions Only administra...

Page 270: ...65535 Description This command sets the maximum amount of time in minutes that an ARP entry can remain in the Switch s ARP table without being accessed before it is dropped from the table Parameters...

Page 271: ...m 10 11 22 145 00 80 C8 93 05 6B Dynamic System 10 11 94 10 00 10 83 F9 37 6E Dynamic System 10 14 82 24 00 50 BA 90 37 10 Dynamic System 10 15 1 60 00 80 C8 17 42 55 Dynamic System 10 17 42 153 00 80...

Page 272: ...xStack Gigabit Layer 3 Switch Command Line Interface Manual Example Usage To remove dynamic entries in the ARP table DGS 3324SRi 4 clear arptable Command clear arptable Success DGS 3324SRi 4 264...

Page 273: ...IP interfaces may be assigned to every VLAN and therefore IP interface on the Switch VRRP routers within the same VRRP group must be consistent in configuration settings for this protocol to function...

Page 274: ...o disable the VRRP function on the Switch Syntax disable vrrp ping Description This command will disable the VRRP function on the Switch Parameters ping Adding this parameter to the command will stop...

Page 275: ...set for all routers that participate in this group state enable disable Used to enable and disable the VRRP router on the Switch priority int 1 254 Enter a value between 1 and 254 to indicate the rout...

Page 276: ...tions Only administrator level users can issue this command Example usage To create a VRRP entry DGS 3324SRi 4 create vrrp vrid 1 ipif Darren ipaddress 11 1 1 1 state enable priority 200 advertisement...

Page 277: ...group The default is 1 second preempt true false This entry will determine the behavior of backup routers within the VRRP group by controlling whether a higher priority backup router will preempt a lo...

Page 278: ...st be consistent with all routers participating within the VRRP group The user may choose between none Entering this parameter indicates that VRRP protocol exchanges will not be authenticated simple a...

Page 279: ...implemented on the Switch VRRP Enabled DGS 3324SRi 4 show vrrp Command show vrrp Global VRRP Enabled Non owner response PING Disabled Authentication type No Authentication Virtual IP Address 10 53 13...

Page 280: ...entries on the Switch ipif ipif_name 12 Enter the name of the IP interface which holds the VRRP router to delete Restrictions Only administrator level users can issue this command Example usage To del...

Page 281: ...d backup IP route entry to the Switch s IP routing table Parameters network_address IP address and netmask of the IP interface that is the destination of the route The address and mask information can...

Page 282: ...ult static address 10 48 74 121 with a metric setting of 1 to the routing table DGS 3324SRi 4 create iproute default 10 48 74 121 1 Command create iproute default 10 48 74 121 1 Success DGS 3324SRi 4...

Page 283: ...routing table Parameters ipaddr The gateway IP address for the next hop router Restrictions Only administrator level users can issue this command Example usage To delete the default IP route 10 53 13...

Page 284: ...arameter to display OSPF iproute entries Restrictions None Example Usage To display the contents of the IP routing table DGS 3324SRi 4 show iproute Command show iproute IP Address Netmask Gateway Inte...

Page 285: ...of RIP routes to OSPF routes on the Switch Syntax create route redistribute dst ospf src static rip local mettype 1 2 metric value 0 65535 Description This command will redistribute routing informatio...

Page 286: ...escription This command will redistribute routing information between the OSPF and RIP routing protocols to all routers on the network that are running OSPF or RIP Routing information entered into the...

Page 287: ...ternal is functionally equivalent to all To add route redistribution settings Entering the metric 0 specifies transparency Example Usage DGS 3324SRi 4 create route redistribute dst rip src ospf all me...

Page 288: ...outing information source RIP the Static Route table and the Local interface routing information Routing information will be redistributed to OSPF The following table lists the allowed values for the...

Page 289: ...ows the selection of the protocol of the source device The user may choose between metric value Allows the entry of an OSPF interface cost This is analogous to a Hop Count in the RIP routing protocol...

Page 290: ...vel users can issue this command Description Example Usage To delete route redistribution settings DGS 3324SRi 4 delete route redistribute dst rip src ospf Command delete route redistribute dst rip sr...

Page 291: ...itch Command Line Interface Manual DGS 3324SRi 4 show route redistribute Command show route redistribute Source Destination Type Metric Protocol Protocol STATIC RIP All 1 LOCAL OSPF Type 2 20 Total En...

Page 292: ...s listed in detail in the following sections config bootp_relay Purpose Used to configure the BOOTP relay feature of the Switch Syntax config bootp_relay hops value 1 16 time sec 0 65535 Description T...

Page 293: ...tp_relay add ipif System 10 43 21 12 Command config bootp_relay add ipif System 10 43 21 12 Success DGS 3324SRi 4 config bootp_relay delete Purpose Used to delete an IP destination addresses from the...

Page 294: ...le Usage To enable the BOOTP relay function DGS 3324SRi 4 enable bootp_relay Command enable bootp_relay Success DGS 3324SRi 4 disable bootp_relay Used to disable the BOOTP relay function on the Switch...

Page 295: ...relay configuration for that IP interface Parameters ipif_name 12 The name of the IP interface for which to display the current BOOTP relay configuration Restrictions None Purpose Syntax Example Usag...

Page 296: ...dr Description This command is used to configure the DNS relay function on the Switch Parameters primary Indicates that the IP address below is the address of the primary DNS server ipaddr The IP addr...

Page 297: ...to enable DNS relay Syntax enable dnsr cache static Description This command is used in combination with the disable dnsr command below to enable and disable DNS Relay on the Switch Parameters cache...

Page 298: ...ommand is used in combination with the enable dnsr command above to enable and disable DNS Relay on the Switch Parameters cache This parameter will allow the user to disable the cache lookup for the D...

Page 299: ...is used to display the current DNS relay status static Allows the display of only the static entries into the DNS relay table If this parameter is omitted the entire DNS relay table will be displayed...

Page 300: ...meters ipif_name 12 The name of the IP interface all To configure all RIP receiving mode for all IP interfaces authentication enable disable Enables or disables authentication for RIP on the Switch tx...

Page 301: ...v1_or_v2 Specifies that only RIP v1 or v2 packets will be transmitted Example Usage To change the RIP receive mode for the IP interface System DGS 3324SRi 4 config rip ipif System rx_mode v1_only Comm...

Page 302: ...ipif_name 12 Description This command will display the RIP configuration and statistics for a given IP interface or for all IP interfaces Parameters ipif ipif_name 12 The name of the IP interface for...

Page 303: ...meters ipif ipif_name 12 The name of the IP interface for which DVMRP is to be configured all Specifies that DVMRP is to be configured for all IP interfaces on the Switch metric value 1 31 Allows the...

Page 304: ...4 enable dvmrp Purpose Used to enable DVMRP Syntax enable dvmrp Description This command in combination with the disable dvmrp command below to enable and disable DVMRP on the Switch Parameters None...

Page 305: ...can be specified using the traditional format for example 10 1 2 3 255 0 0 0 or in CIDR format 10 1 2 3 8 Restrictions None Example Usage To display DVMRP routing table DGS 3324SRi 4 show dvmrp routi...

Page 306: ...Table Interface Neighbor Address Generation ID Expire Time System 10 2 1 123 2 250 Total Entries 1 DGS 3324SRi 4 show dvmrp nexthop Purpose Used to display the current DVMRP routing next hop table Syn...

Page 307: ...ay the current DVMRP settings on the Switch Syntax show dvmrp ipif_name 12 Description The command will display the current DVMRP routing table Parameters ipif_name 12 This parameter will allow the us...

Page 308: ...being configured for PIM settings all Used to configure PIM settings for all IP interfaces hello sec 1 18724 The time in seconds between issuing hello packets to find neighboring routers jp_interval...

Page 309: ...the config pim command Parameters None Restrictions Only administrator level users can use this command Usage Example To enable PIM as previously configured on the Switch DGS 3324SRi 4 enable pim Com...

Page 310: ...hich to view the PIM neighbor router table ipaddress network_address The IP address and netmask of the destination routing device for which to view the neighbor router table The user can specify the I...

Page 311: ...if ipif_name 12 The name of an IP interface for which PIM settings are listed If no parameters are specified all PIM settings are displayed for all interfaces Restrictions None Description Usage Examp...

Page 312: ...k_address Description This command will display the current IP multicast forwarding cache Parameters group group The multicast group IP address ipaddress network_address The IP address and netmask of...

Page 313: ...st interface table For example if DVMRP is specified the table will display only those entries that are related to the DVMRP protocol Restrictions None inactive Specifying this parameter will display...

Page 314: ...is command is used to create an entry for the MD5 key table Parameters key_id 1 255 The MD5 key ID The user may enter a key ranging from 1 to 255 password An MD5 password of up to 16 bytes Restriction...

Page 315: ...ion This command is used to delete a specific entry in the MD5 key table Parameters key_id 1 255 The MD5 key ID to delete Restrictions Only administrator level users can issue this command Usage Examp...

Page 316: ...igabit Layer 3 Switch Command Line Interface Manual DGS 3324SRi 4 show md5 Command show md5 MD5 Key Table Configurations Key ID Key 1 dlink 2 develop 3 fireball 4 intelligent Total Entries 4 DGS 3324S...

Page 317: ...f host_route ipaddr create ospf aggregation area_id network_address lsdb_type summary advertise enabled disabled delete ospf aggregation area_id network_address lsdb_type summary config ospf aggregati...

Page 318: ...uter_id Purpose Used to configure the OSPF router ID Syntax config ospf router_id ipaddr Description This command is used to configure the OSPF router ID Parameters ipaddr The IP address of the OSPF r...

Page 319: ...issue this command Purpose Parameters None Usage Example To disable OSPF on the Switch DGS 3324SRi 4 disable ospf DGS 3324SRi 4 Command disable ospf Success show ospf Used to display the current OSPF...

Page 320: ...1 1 8 0 0 0 0 Disabled Link DOWN 1 Total Entries 3 OSPF Area Settings Area ID Type Stub Import Summary LSA Stub Default Cost 0 0 0 0 Normal None None 10 0 0 0 Normal None None 10 1 1 1 Normal None No...

Page 321: ...ea to import summary LSA advertisements metric value 0 65535 The OSPF area cost between 0 and 65535 0 denotes that the value will be automatically assigned The default setting is 0 Restrictions Only a...

Page 322: ...PF mode of operation stub or normal stub_summary enable disable Allows the OSPF area import of LSA advertisements to be enabled or disabled metric value 0 65535 The OSPF area stub default cost Restric...

Page 323: ...route settings Parameters ipaddr The host s IP address area_id A 32 bit number in the form of an IP address xxx xxx xxx xxx that uniquely identifies the OSPF area in the OSPF domain Only administrator...

Page 324: ...e an OSPF host route settings Parameters ipaddr The IP address of the host area_id A 32 bit number in the form of an IP address xxx xxx xxx xxx that uniquely identifies the OSPF area in the OSPF domai...

Page 325: ...gregation area_id network_address lsdb_type summary advertise enable disable Description This command is used to create an OSPF area aggregation Parameters area_id A 32 bit number in the form of an IP...

Page 326: ...umber in the form of an IP address that uniquely identifies the network that corresponds to the OSPF Area lsdb_type summary Specifies the type of address aggregation Restrictions Only administrator le...

Page 327: ...e To configure the OSPF area aggregation settings DGS 3324SRi 4 config ospf aggregation 10 1 1 1 10 48 76 122 16 lsdb_type summary advertise enable Command config ospf aggregation 10 1 1 1 10 48 76 12...

Page 328: ...tlink summary assummary asextlink Description This command will display the current OSPF Link State Database LSDB Parameters area_id area_id A 32 bit number in the form of an IP address xxx xxx xxx xx...

Page 329: ...se Used to display the current OSPF neighbor router table Syntax show ospf neighbor ipaddr Description This command will display the current OSPF neighbor router table Parameters ipaddr The IP address...

Page 330: ...dead_interval sec 1 65535 authentication none simple password 8 md5 key_id 1 255 metric value 1 65535 state enable disable Description This command is used to configure the OSPF interface settings Par...

Page 331: ...sed on md5 encryption A previously configured MD5 key ID 1 to 255 is required Usage Example To configure OSPF interface settings DGS 3324SRi 4 config ospf ipif System priority 2 hello_interval 15 metr...

Page 332: ...e entry of a number between 1 and 65 535 that is representative of the OSPF cost of reaching the selected OSPF interface The default metric is 1 state enable disable Used to enable or disable this fun...

Page 333: ...the current OSPF settings of all the OSPF interfaces on the Switch Syntax show ospf all Description This command will display the current OSPF settings for all OSPF interfaces on the Switch Parameter...

Page 334: ...terval sec 1 65535 Allows the specification of the interval between the transmission of OSPF Hello packets in seconds Between 1 and 65535 seconds can be specified The Hello Interval Dead Interval Auth...

Page 335: ...erval sec 1 65535 Allows the specification of the interval between the transmission of OSPF Hello packets in seconds Between 1 and 65535 seconds can be specified The Hello Interval Dead Interval Autho...

Page 336: ...iquely identifies the OSPF area in the OSPF domain neighbor_id The OSPF router ID for the remote area This is a 32 bit number in the form of an IP address xxx xxx xxx xxx that uniquely identifies the...

Page 337: ...form of an IP address xxx xxx xxx xxx that uniquely identifies the remote area s Area Border Router This is the router ID of the neighbor router Restrictions None Usage Example To display the current...

Page 338: ...e first choice for routing purposes and the next most reliable path is Static due to the fact that its has the next lowest value To set a higher reliability for a route change its value to a number le...

Page 339: ...ure the preference value for the static route rip Choose this parameter to configure the preference value for the RIP route ospfIntra Choose this parameter to configure the preference value for the OS...

Page 340: ...ttings for the OSPF Inter area route ospfExtT1 Enter this parameter to view the route preference settings for the OSPF AS External route type 1 ospfExtT2 Enter this parameter to view the route prefere...

Page 341: ...ck Gigabit Layer 3 Switch Command Line Interface Manual DGS 3324SRi 4 show route preference rip RIP 100 Command show route preference rip Route Preference Settings Route Type Preference DGS 3324SRi 4...

Page 342: ...rame show jumbo_frame Each command is listed in detail in the following sections enable jumbo_frame Purpose Used to enable the jumbo frame function on the Switch Syntax enable jumbo_frame Description...

Page 343: ...SRi 4 show jumbo_frame Purpose Used to show the status of the jumbo frame function on the Switch Syntax show jumbo_frame Description This command will show the status of the jumbo frame function on th...

Page 344: ...full_with_MBR label_name 8 md pathname 64 mkdir pathname 64 rd pathname 64 ren source_path_filename 64 target path_filename rename source_path_filename 64 target path_filename rmdir copy pathname 64...

Page 345: ...and name of the directory to change This entry cannot exceed 64 characters in length Restrictions Only administrator level users can issue this command Example usage To change the name of a file dire...

Page 346: ...and directories on the storage media accessory Syntax dir pathname 64 Description This command is used to display files and directories of items saved in the storage media accessory Parameters pathna...

Page 347: ...sed to format the storage media accessory Parameters drive Specify the drive of the storage media accessory to be formatted FAT16 The type of file allocation table to be used to format the storage med...

Page 348: ...e a directory Syntax md pathname 64 Description This command is used to make a new directory on the storage media accessory Parameters pathname 64 Enter the path and name of the file to be created Thi...

Page 349: ...iption This command is used to delete a directory listed on the storage media accessory Parameters pathname 64 Enter the path and name of the directory to be deleted Only administrator level users can...

Page 350: ...accessory Parameters source_path_filename 64 Enter the path and name of the file to be renamed target_path_filename 64 Enter the new name and path of the file to be renamed This entry cannot exceed 6...

Page 351: ...r 3 Switch Command Line Interface Manual rmdir Restrictions Only administrator level users can issue this command Example usage To delete a diectory DGS 3324SRi 4 rmdir c test Command rmdir c test Don...

Page 352: ...rface CLI Parameters command Entering the question mark with an appropriate command will list all the corresponding parameters for the specified command along with a brief description of the commands...

Page 353: ...instance_id config stp mst_config_id config stp mst_ports config stp ports config stp priority config stp version DGS 3324SRi 4 show command_history Purpose Used to display the command history Syntax...

Page 354: ...cription This command is used to configure the command history Parameters value 1 40 The number of previously executed commands maintained in the buffer Up to 40 of the latest executed commands may be...

Page 355: ...e Temperature 25 to 55 degrees Celsius Humidity Operating 5 to 95 RH non condensing Storage 0 to 95 RH non condensing Dimensions DGS 3324SR DGS 3324SR 441 mm x 207 mm x 44 mm 1U 19 inch rack mount wid...

Page 356: ...EM 311GT transceiver IEEE 802 3z 1000BASE LH DEM 314GT transceiver IEEE 802 3z 1000BASE ZX DEM 315GT transceiver Network Cables 10BASE T 100BASE TX UTP Cat 5 Cat 5 Enhanced for 1000Mbps UTP Cat 5 for...

Page 357: ...B per device DXS 3350SR 4 MB per device Filtering Address Table 16 K MAC addresses per device 3K IP addresses per device Packet Filtering Forwarding Rate Full wire speed for all connections 148 810 pp...

Reviews: