manualshive.com logo in svg

D-Link xStack DGS-3400 Series, Reference Manual

The D-Link xStack DGS-3400 Series is a high-performance network switch designed to meet the growing demands of businesses. With advanced features and exceptional reliability, this product ensures seamless connectivity. To familiarize yourself with its functionalities, simply download the free Reference Manual available at manualshive.com.

Share
Download
background image

xStack

®

 DGS-3400 Series Layer 2 Gigabit Ethernet Managed Switch CLI Manual

 

 

69 

config access_profile 

source_mac <macaddr 000000000000-ffffffffffff> | destination_mac <macaddr 
000000000000-ffffffffffff> | 802.1p <value 0-7> | ethernet_type <hex 0x0-0xffff>} port 
[<portlist> | all] [permit { priority <value 0-7> {replace_priority} | rx_rate [no_limit | 
<value 1-156249>] | replace_dscp <value 0-63> | counter [enable | disable]} | mirror 
{group_id <value 1-4>} | deny] | ip{[vlan <vlan_name 32> | vlan_id <vlanid 1-4094>] | 
source_ip <ipaddr> | destination_ip <ipaddr> | dscp <value 0-63> | [icmp {type <value 
0-255> | code <value 0-255>} | igmp  {type <value 0-255>} | tcp {src_port <value 0-
65535> | dst_port <value 0-65535> urg | ack | psh | rst | syn | fin } | udp {src_port <value 
0-65535> | dst_port <value 0-65535>} | protocol_id <value 0 - 255> {user_define <hex 
0x0-0xffffffff>}]} port [<portlist> | all] [permit { priority <value 0-7> { replace_priority} | 
rx_rate [ no_limit | <value 1-156249>] | replace_dscp <value 0-63> | counter [enable | 
disable]} | mirror {group_id <value 1-4>} | deny] | packet_content {offset_chunk_1 <hex 
0x0-0xffffffff> | offset_chunk_2 <hex 0x0-0xffffffff> | offset_chunk_3 <hex 0x0-0xffffffff> 
| offset_chunk_4 <hex 0x0-0xffffffff>} port [<portlist> | all] [permit { priority <value 0-7> 
{replace_priority} | rx_rate [no_limit | <value 1-156249>] | replace_dscp <value 0-63> | 
counter [enable | disable]} | mirror {group_id <value 1-4>} | deny] | ipv6 {class <value 
0-255> | flowlabel <hex 0x0-0xfffff> | source_ipv6 <ipv6addr> | destination_ipv6 
<ipv6addr> | [tcp { src_port <value 0-65535> | dst_port <value 0-65535>} | udp 
{src_port <value 0-65535> | dst_port <value 0-65535>}]} port [<portlist> | all] [permit { 
priority <value 0-7> {replace_priority} | rx_rate [no_limit | <value 1-156249>] | counter 
[enable | disable]} | mirror {group_id <value 1-4>} | deny] ] {time_range <range_name 
32>} | delete access_id <value 1-128>] 

Description 

The config access_profile command configures access list entry. 

ACL mirror function will be worked after mirror enabled and mirror port has been configured 
by mirror command. 

When apply a access rule to a target, if the target is VLAN, then the setting for value the 
VLAN field will not take effect. 

Parameters 

profile_id

 - Specifies the index of access list profile. The range is depend on project. 

access_id

 - Specifies the index of access list entry. The range of this value is 1-65535, but 

the supported max entry number is depend on project. 

auto_assign

 - while add to multiple ports , the access id will be auto assigned. 

vlan

 - Specifies a vlan name. 

vlan_id 

– Specifies the ID of VLAN. 

source_mac

 - Specifies the source mac. 

destination_mac

 - Specifies the destination mac. 

802.1p

 - Specifies the value of 802.1p priority tag, the vaule can be configured 

between 1 to 7. 

ethernet_type

 - Specifies the Ethernet type. 

vlan

 - Specifies a vlan name. 

vlan_id 

– Specifies the ID of VLAN. 

source_ip

 - Specifies an IP source address. 

destination_ip

 - Specifies an IP destination address. 

dscp

 - Specifies the value of dscp, the value can be configured 0 to 63. 

icmp

 – See below: 

type

 - Specifies that the rule applies to the value of  icmp type traffic. 

code

 - Specifies that the rule applies to the value of icmp code traffic. 

igmp

 – See below: 

type

 - Specifies that the rule applies to the value of igmp type traffic. 

tcp

 – See below: 

src_port

 - Specifies that the rule applies the range of tcp source port. 

dst_port

 - Specifies the range of tcp destination port range. 

flag

 - Specifies the TCP flag fields. 

 

udp

 – See below: 

Summary of Contents for xStack DGS-3400 Series

Page 1: ...CLI Reference Guide ProductModel xStack DGS 3400Series Layer2ManagedGigabitEthernetSwitch Release3 0...

Page 2: ...P RELAY COMMANDS 150 DHCP SERVER SCREENING COMMANDS 160 DHCP SERVER COMMANDS 163 DHCPV6 CLIENT COMMANDS 181 DHCPV6 RELAY COMMANDS 183 DHCPV6 SERVER COMMANDS 189 DIGITAL DIAGNOSTIC MONITORING DDM COMMA...

Page 3: ...SWORD RECOVERY COMMANDS 448 PING COMMANDS 451 PORT SECURITY COMMANDS 455 POWER OVER ETHERNET POE COMMANDS 458 PROTOCOL VLAN GROUP COMMANDS 462 QUALITY OF SERVICE QOS COMMANDS 467 REMOTE COPY PROTOCOL...

Page 4: ...ONTROL COMMANDS 589 TRAFFIC SEGMENTATION COMMANDS 593 TRUSTED HOST COMMANDS 595 UNICAST ROUTE COMMANDS 597 UTILIZATION COMMANDS 603 VOICE VLAN COMMANDS 606 WEB BASED ACCESS CONTROL WAC COMMANDS 613 TE...

Page 5: ...Switch via the Serial Port The Switch s serial port s default settings are as follows 115200 baud no parity 8 data bits 1 stop bit A computer running a terminal emulation program capable of emulating...

Page 6: ...resent the IP address to be assigned to the IP interface named System and the y s represent the corresponding subnet mask 2 Alternatively you can enter config ipif System ipaddress xxx xxx xxx xxx z W...

Page 7: ...le interface is used by connecting the Switch to a VT100 compatible terminal or a computer running an ordinary terminal emulator program e g the HyperTerminal program included with the Windows operati...

Page 8: ...50 admin Figure 2 3 Example Command Parameter Help In this case the command config account was entered with the parameter username The CLI will then prompt to enter the username with the message Next...

Page 9: ...re 2 5 Available Commands The top level commands consist of commands such as show or config Most of these commands require one or more parameters to narrow the top level command This is equivalent to...

Page 10: ...ress ip_addr netmask space Do not type the angle brackets Example Command create ipif Engineering 10 24 22 5 255 0 0 0 Design square brackets Purpose Encloses a required value or set of required argum...

Page 11: ...row Repeats the previously entered command Each time the up arrow is pressed the command previous to that displayed appears This way it is possible to review the command history for the current sessio...

Page 12: ...ion show switch show serial_port config serial_port baud_rate 9600 19200 38400 115200 auto_logout never 2_minutes 5_minutes 10_minutes 15_minutes enable clipaging disable clipaging enable telnet tcp_p...

Page 13: ...meric characters to define the user account created here Restrictions Only Administrator level users can issue this command Example usage To create an administrator level user account with the usernam...

Page 14: ...HA 1 encryption password Enter the password here Restrictions Only Administrator level users can issue this command Example usage To configure the user password of dlink account DGS 3450 admin config...

Page 15: ...age To delete the user account System DGS 3450 admin delete account System Command delete account System Are you sure to delete the last administrator account y n y Success DGS 3450 admin show session...

Page 16: ...fault Subnet Mask 255 0 0 0 Default Gateway 0 0 0 0 Boot PROM Version Build 1 00 B13 Firmware Version Build 3 00 B10 Hardware Version A2 System Name System Location System Uptime 0 days 2 hours 11 min...

Page 17: ...ll log out the current user if there is no user input for 5 minutes 10_minutes The console will log out the current user if there is no user input for 10 minutes 15_minutes The console will log out th...

Page 18: ...ng of the screen display when show command output reaches the end of the page DGS 3450 admin disable clipaging Command disable clipaging Success DGS 3450 admin enable telnet Purpose Used to enable com...

Page 19: ...telnet Purpose Used to login remote system with telnet protocol Syntax telnet ipaddr domain_name 255 tcp_port value 0 65535 Description This command is used to login remote system with Telnet protoco...

Page 20: ...known port for the Web based management software is 80 Restrictions Only Administrator and Operator level users can issue this command Example usage To enable HTTP and configure port number DGS 3450...

Page 21: ...AM all Use to save the configuration and log file to NV RAM Restrictions Only Administrator and Operator level users can issue this command Example usage To save the Switch s current configuration to...

Page 22: ...t Rebooting will clear all entries in the Forwarding Data Base If no parameter is specified the Switch s current IP address user accounts and the switch history log are not changed All other parameter...

Page 23: ...show device_status Description This command displays the current status of the power and fans on the system In the fan status display there are fans on the left of the switch on the right at the back...

Page 24: ...inistrator and Operator level users can issue this command Example usage To configure the greeting message config command_prompt Purpose Used to configure the command prompt for the Command Line Inter...

Page 25: ...tting Ctrl L Reload original setting show greeting_message Purpose Used to view the currently configured greeting message configured on the Switch Syntax show greeting_message Description This command...

Page 26: ...Control This mechanism is intended to allow only authorized users or other network devices access to network resources by establishing criteria for each port on the Switch that a user or network devic...

Page 27: ...port_based ports portlist all mac_based ports portlist all mac_address macaddr config 802 1x reauth port_based ports portlist all mac_based ports portlist all mac_address macaddr create 802 1x guest_...

Page 28: ...rs None Restrictions Only Administrator and Operator level users can issue this command Example usage Used to enable the 802 1X function DGS 3450 admin enable 802 1x Command enable 802 1x Success DGS...

Page 29: ...r confirmation Success DGS 3450 admin delete 802 1x user Purpose Used to delete an 802 1X user Syntax delete 802 1x user username 15 Description The delete 802 1x user command delete an 802 1X user Pa...

Page 30: ...IUS EAP DGS 3450 admin config 802 1x auth_protocol radius_eap Command config 802 1x auth_protocol radius_eap Success DGS 3450 admin config 802 1x fwd_pdu system Purpose Used to configure forwarding of...

Page 31: ...tor and Operator level users can issue this command Example usage To configure 802 1X fwd_pdu for ports DGS 3450 admin config 802 1x fwd_pdu ports 1 2 enable Command config 802 1x fwd_pdu ports 1 2 en...

Page 32: ...ome or all ports portlist Specifies a range of ports to be displayed If no port is specified all ports will be displayed If no parameter is specified the 802 1X system configurations will be displayed...

Page 33: ...MaxReq 2 times ReAuthPeriod 3400 sec ReAuthenticate Disabled Forward EAPOL PDU On Port Enabled Max Users On Port 10 DGS 3450 admin config 802 1x capability Purpose Used to configure the port capabili...

Page 34: ...auth_parameter Purpose Used to configure the parameters that control the operation of the authenticator associated with a port Syntax config 802 1x auth_parameter ports portlist all default direction...

Page 35: ...zero number of seconds which is used to be the re authentication timer The default value is 3400 max_users Specifies per port maximum number of users The range is 1 to 128 The default value is 16 enab...

Page 36: ...802 1x init port_based ports all Command config 802 1x init port_based ports all Success DGS 3450 admin config 802 1x reauth Purpose Used to re authenticate the device connected to the port Syntax con...

Page 37: ...x delete 802 1x guest_vlan vlan_name 32 Description The delete 802 1x guest_vlan command will delete guest VLAN setting but not delete the static VLAN All ports which enabled guest VLAN will remove to...

Page 38: ...t VLANs Parameters None Restrictions None Example usage To show 802 1X guest VLAN on the switch DGS 3450 admin show 802 1x guest_vlan Command show 802 1x guest_vlan Guest VLAN Setting Guest VLAN guest...

Page 39: ...smit The count for re transmitting Default value is 2 Restrictions Only Administrator and Operator level users can issue this command Example usage To add a new RADIUS server DGS 3450 admin config rad...

Page 40: ...th_port Specifies the UDP port number which is used to transmit RADIUS authentication data between the switch and the RADIUS server The range is 1 to 65535 Default value is 1812 acct_port Specifies th...

Page 41: ...ess 172 18 211 108 Auth Port 1812 Acct Port 1813 Retransmit 2 Key adfdslkfjefiefdkgjdassdwtgjk6y1w Total Entries 3 DGS 3450 admin show auth_statistics Purpose Use to display information of authenticat...

Page 42: ...pLengthErrorFramesRx 0 LastEapolFrameVersion 0 LastEapolFrameSource 00 00 00 00 00 00 DGS 3450 admin show auth_diagnostics Purpose Used to display information of authenticator diagnostics Syntax show...

Page 43: ...ileAuthenticated 0 BackendResponses 0 BackendAccessChallenges 0 BackendOtherRequestsToSupplicant 0 BackendNonNakResponsesFromSupplicant 0 BackendAuthSuccesses 0 BackendAuthFails 0 DGS 3450 admin show...

Page 44: ...ramesTx 0 SessionId SessionAuthenticMethod Remote Authentication Server SessionTime 0 SessionTerminateCause SupplicantLogoff SessionUserName DGS 3450 admin show auth_client Purpose Use to display info...

Page 45: ...transmissions 0 radiusAuthClientAccessAccepts 0 radiusAuthClientAccessRejects 0 radiusAuthClientAccessChallenges 0 radiusAuthClientMalformedAccessResponses 0 radiusAuthClientBadAuthenticators 0 radius...

Page 46: ...e the state of the specified RADIUS accounting service Syntax config accounting service network shell system state enable disable Description The config accounting service command is used to enable or...

Page 47: ...status of RADIUS accounting services Syntax show accounting service Description The show accounting service command displays the state for RADIUS accounting service Parameters portlist Specifies a ra...

Page 48: ...n this section In order for the TACACS XTACACS TACACS RADIUS security function to work properly a TACACS XTACACS TACACS RADIUS server must be configured on a device other than the Switch called a serv...

Page 49: ...gin method_list_name string 15 show authen_login default method_list_name string 15 all create authen_enable method_list_name string 15 config authen_enable default method_list_name string 15 method t...

Page 50: ...ssword encryption is enabled the passwords will be in encrypted form When password encryption is disabled if the user specifies the password in plain text form the password will be in plan text form H...

Page 51: ...A username can be between 1 and 15 characters The password is between 0 and 15 characters and is case sensitive The total number of accounts supported by the Switch including admin and user level acc...

Page 52: ...ext form password the password must be a minimum of 0 characters and a maximum of 15 characters For an encrypted form password the length is fixed to 35 bytes long The password is case sensitive Restr...

Page 53: ...ple usage To delete the user account System DGS 3450 admin delete account System Command delete account System Success DGS 3450 admin enable authen_policy Purpose This command is used to enable the sy...

Page 54: ...to Admin level Parameters None Restrictions Only Administrator can issue this command Example usage To disable the system access authentication policy DGS 3450 admin disable authen_policy Command dis...

Page 55: ...in the authentication request will be sent to the first server host in the tacacs built in server group If the first server host in the tacacs group is missing the authentication request will be sent...

Page 56: ...ictions Only Administrator can issue this command Example usage To delete the user defined method list called login_list_1 for users attempting to log in to the Switch DGS 3450 admin delete authen_log...

Page 57: ...t of authentication methods for promoting a user s privilege to Admin level Syntax config authen_enable default method_list_name string 15 method tacacs xtacacs tacacs radius server_group string 15 lo...

Page 58: ...er defined method list of authentication methods for promoting a user s privilege to Admin level Syntax delete authen_enable method_list_name string 15 Description Deletes a user defined method list o...

Page 59: ...al Entries 2 DGS 3450 admin config authen application Purpose This command is used to configure login or enable method lists for all or the specified applications Syntax config authen application cons...

Page 60: ...hen application Command show authen application Application Login Method List Enable Method List Console default default Telnet login_list_1 default HTTP default default DGS 3450 admin create authen s...

Page 61: ...host to a server group delete Remove a server host from a server group server_host Specify the server host s IP address protocol tacacs Specify TACACS for the server host s authentication protocol pro...

Page 62: ...0 admin create authen server_host Purpose This command is used to create an authentication server host Syntax create authen server_host ipaddr protocol tacacs xtacacs tacacs radius port int 1 65535 ke...

Page 63: ...o configure an authentication server host Syntax config authen server_host ipaddr protocol tacacs xtacacs tacacs radius port int 1 65535 key key_string 254 none encryption_key key_string 344 timeout i...

Page 64: ...ver host s authentication protocol is TACACS protocol xtacacs Specify that the server host s authentication protocol is XTACACS protocol tacacs Specify that the server host s authentication protocol i...

Page 65: ...d Example usage To configure the amount of time the Switch will wait for a user to authenticate through a console Telnet or SSH application to 60 seconds DGS 3450 admin config authen parameter respons...

Page 66: ...romote the user privilege level to admin level When the user enters this command the authentication method tacacs xtacacs tacacs user defined server groups local_enable or none will be used to authent...

Page 67: ...rithm is based on SHA 1 Parameters None Restrictions Only Administrator can issue this command Example usage To configure the administrator password DGS 3450 admin config admin local_enable Command co...

Page 68: ...sabled TACACS and RADIUS key will be in the plain text form Parameters None Restrictions Only Administrator and Operator level users can issue this command Example usage To disable the authentication...

Page 69: ...4 source_mac macaddr 000000000000 ffffffffffff destination_mac macaddr 000000000000 ffffffffffff 802 1p value 0 7 ethernet_type hex 0x0 0xffff port portlist all permit priority value 0 7 replace_prior...

Page 70: ...d value 0 255 user_define hex 0x0 0xffffffff packet_content offset_0 15 hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff offset_16 31 hex 0x0 0xffffffff hex 0x0 0xffffffff h...

Page 71: ...mask Specifies the tcp destination port mask flag_mask Specifies the TCP flag field mask udp Specifies that the rule applies to udp traffic src_port_mask Specifies theudp source port mask dst_port_mas...

Page 72: ...3 Command create access_profile packet_content_mask offset_chunk_1 0 0xFFFFFFFF offset_chunk_2 1 0xFFFFFFFF offset_chunk_3 2 0xFFFFFFFF offset_chunk_4 3 0xFFFFFFFF profile_id 3 Success DGS 3450 admin...

Page 73: ...ty rx_rate no_limit value 1 156249 counter enable disable mirror group_id value 1 4 deny time_range range_name 32 delete access_id value 1 128 Description The config access_profile command configures...

Page 74: ...place_priority Specifies 802 1p priority of the outgoing packet will be marked too replace_dscp Specifies that DSCP of the outgoing packet will be marked by the new value counter Specifies whether cou...

Page 75: ...le profile_id value 1 6 Description The show access_profile command displays current access list table Parameters profile_id Specifies the index of access list profile The range is depend on project R...

Page 76: ...et CPU access control list rule vlan Specify a VLAN mask source_mac Specify the source MAC mask macmask000000000000 ffffffffffff Specify the source MAC mask destination_mac Specify the destination MAC...

Page 77: ...k for packet bytes 28 31 offset_32 47 Specify the mask for packet bytes 32 47 hex 0x0 0xffffffff Specify the mask for packet bytes 32 35 hex 0x0 0xffffffff Specify the mask for packet bytes 36 39 hex...

Page 78: ...0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff offset_48 63 hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff offset_64 79 hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xf...

Page 79: ...cify Urgent Pointer field significant ack Optional Specify Acknowledgment field significant psh Optional Specify Push Function rst Optional Specify to reset the connection syn Optional Specify to sync...

Page 80: ...IPv6 fields class Specify the value of the IPv6 class value 0 255 Specify the value between 0 and 255 flowlabel Specify the value of the IPv6 flow label hex 0x0 0xfffff Specify the value of the IPv6...

Page 81: ...ictions Only Administrator and Operator level users can issue this command Example usage To delete access list rules DGS 3450 admin delete cpu access_profile profile_id 3 Command delete cpu access_pro...

Page 82: ...0 0 0 0 0 Access Profile ID 3 Type Packet Content MASK Option Offset 0 15 0x00000000 0x00000000 0x00000000 0x00000000 Offset 16 31 0x00000000 0x00000000 0x00000000 0x00000000 Offset 32 47 0x00000000...

Page 83: ...rs None Restrictions Only Administrator and Operator level users can issue this command Example usage To enable CPU interface filtering DGS 3450 admin enable cpu_interface_filtering Command enable cpu...

Page 84: ...xStack DGS 3400 Series Layer 2 Gigabit Ethernet Managed Switch CLI Manual 80 DGS 3450 admin disable cpu_interface_filtering Command disable cpu_interface_filtering Success DGS 3450 admin...

Page 85: ...e configured CBS and EBS A packet flow that does not reach the CBS is marked green if it exceeds the CBS but not the EBS its marked yellow and if it exceeds the EBS its marked red CBS Committed Burst...

Page 86: ...0 156249 pbs value 0 16384 sr_tcm cir value 0 156249 cbs value 0 16384 ebs value 0 16384 conform permit replace_dscp value 0 63 counter enable disable exceed permit replace_dscp value 0 63 drop count...

Page 87: ...be used in conjunction with the PIR The PBS should be configured to accept the biggest IP packet that is expected in the IP flow sr_tcm Choosing this field will allow users to employ the Single Rate...

Page 88: ...t are in the red flow counter enable disable Use this parameter to enable or disable the packet counter for the specified ACL entry in the red flow delete Use this parameter to delete the specified fl...

Page 89: ...ile_id 1 access_id 1 Command show flow_meter profile_id 1 access_id 1 Profile ID 1 Access ID 1 Mode trTCM CIR 1000 64kbps CBS 200 Kbyte PIR 2000 64kbps PBS 200 Kbyte Action Conform Permit Counter Disa...

Page 90: ...to enter a static ARP entry into the switch s ARP table Parameters ipaddr The IP address of the end node or station macaddr The MAC address corresponding to the IP address above Restrictions Only Admi...

Page 91: ...this command Example usage To configure a static ARP entry with IP address 10 48 74 121 to have a MAC address of 00 50 BA 00 07 37 DGS 3450 admin config arpentry 10 48 74 121 00 50 BA 00 07 37 Command...

Page 92: ...ic ARP entries from the ARP table Syntax clear arptable Description This command is used to clear all the dynamic entries from ARP table Parameters None Restrictions Only Administrator and Operator le...

Page 93: ...w arpentry ARP Aging Time 30 ARP Retry Times 2 Interface IP Address MAC Address Type System 10 0 0 0 FF FF FF FF FF FF Local Broadcast System 10 1 1 1 00 02 03 04 05 06 Static System 10 1 1 2 00 02 03...

Page 94: ...but either its sender MAC field or source MAC field doesnot match the gateway MAC of the entry will be dropped by the system Parameters add Specifies to add an ARP spoofing prevention entry gateway_ip...

Page 95: ...Description This command is used to show the ARP spoofing prevention entry Parameters None Restrictions None Example usage To display the ARP spoofing prevention entries DGS 3450 admin show arp_spoofi...

Page 96: ...down 1 Description The config bpdu_protection ports command is used to configure the BPDP protection function for the ports on the switch In generally there are two states in BPDU protection function...

Page 97: ...xStack DGS 3400 Series Layer 2 Gigabit Ethernet Managed Switch CLI Manual 93 config bpdu_protection ports Restrictions Only Administrator and Operator level users can issue this command...

Page 98: ...onds used by the Auto Recovery mechanism to recover the port The valid range is 60 to 1000000 Restrictions Only Administrator and Operator level users can issue this command Example usage To configure...

Page 99: ...dministrator and Operator level users can issue this command Example usage To enable bpdu_protection function globally for the entire switch DGS 3450 admin enable bpdu_protection Commands enable bpdu_...

Page 100: ...tion Commands show bpdu_protection BPDU Protection Global Settings BPDU Protection status Enabled BPDU Protection Recovery Time 60 seconds BPDU Protection Trap State None BPDU Protection Log State Non...

Page 101: ...in the following sections Purpose Used to display all commands in the Command Line Interface CLI Syntax command Description This command will display all of the commands available through the Command...

Page 102: ...nd DGS 3450 admin config stp Command config stp Command config stp Usage maxage value 6 40 maxhops value 1 20 hellotime value 1 10 forwa rddelay value 4 30 txholdcount value 1 10 fbpdu enable disable...

Page 103: ...DGS 3450 admin show command_history Purpose Used to display the command history Syntax show command_history Description This command will display the command history Parameters None Restrictions None...

Page 104: ...ollowing table Command Parameters enable command logging disable command logging show command logging Each command is listed in detail in the following sections enable command logging Purpose Used to...

Page 105: ...Success DGS 3450 admin show command logging Purpose This command displays the switch s general command logging configuration status Syntax show command logging Description Use this command to show the...

Page 106: ...ny dot1x_impb impb_jwac 1 show authentication guest_vlan show authentication ports portlist enable authorization attributes disable authorization attributes show authorization config authentication se...

Page 107: ...AN ID Restrictions Only Administrator and Operator level users can issue this command Example usage To delete an authentication guest VLAN DGS 3450 admin delete authentication guest_vlan vlan guestVLA...

Page 108: ...ist from authentication VLAN s If vlanid is not specified or all VLANs is disabled means do not care whitch VLAN the client comes from the client will be authenticated if the client s MAC not care the...

Page 109: ...age This example displays the guest VLAN setting DGS 3450 admin show authentication guest_vlan Command show authentication guest_vlan Guest VLAN VID 1 Guest VLAN Member Ports 4 Guest VLAN VID 3 Guest...

Page 110: ...local database will be accepted which depends on the individual module s setting Authorization for attributes is enabled by default Parameters None Restrictions Only Administrator and Operator level u...

Page 111: ...ver function Syntax config authentication server failover local permit block Description Description When authentication server fails administrator can configure to Use local DB to authenticate the cl...

Page 112: ...ntication global configuration Syntax show authentication Description Used to show authentication global configuration Parameters None Restrictions None Example usage To show authentication DGS 3450 a...

Page 113: ...exclude begin filter_string 80 filter_string 80 filter_string 80 include exclude begin filter_string 80 filter_string 80 filter_string 80 information config configuration config_id config_id 1 2 delet...

Page 114: ...ver Note that for stacking system only the master s configuration file is allowed to be uploaded The output stream of the configuration data can be filtered by the expression specified at the end of t...

Page 115: ...nfiguration to be used in next boot or the configuration file specified by the command Syntax show config current_config current_config include exclude begin filter_string 80 filter_string 80 filter_s...

Page 116: ...following example illustrates how the special filters account affect the configuration display DGS 3450 admin show config current_config include account Command show config current_config include acc...

Page 117: ...is command is required to be supported regardless of whether file system is supported or whether multiple configuration files are supported The configuration will only save to the master unit Paramete...

Page 118: ...int 1 4294967295 ma string 22 ma_index uint 1 4294967295 state enable disable ccm enable disable pdu_priority int 0 7 fault_alarm all mac_status remote_ccm error_ccm xcon_ccm none alarm_time centiseco...

Page 119: ...94967295 mepid int 1 8191 period 1sec 1min level int 0 7 state enable disable config cfm lock md string 22 md_index uint 1 4294967295 ma string 22 ma_index uint 1 4294967295 mepid int 1 8191 period 1s...

Page 120: ...default value chassis Transmit the sender ID TLV with the chassis ID information manage Transmit the sender ID TLV with the managed address information chassis_manage Transmit the sender ID TLV with t...

Page 121: ...ted on any ports in this MA if that port is not configured with an MEP of that MA explicit MIP can be created on any ports in this MA only if the next existing lower level has an MEP configured on tha...

Page 122: ...g an MEP its MEPID should be configured in the MA s MEPID list Parameters mep string 32 Enter the MEP name It is unique among all MEPs configured on the device This name can be up to 32 characters lon...

Page 123: ...x state Specify the MEP administrative state enable Enable the MEP disable Disable the MEP This is the default value ccm Specify the CCM transmission state enable Enable the CCM transmission disable D...

Page 124: ...n index ma string 22 Specify the maintenance association name ma_index uint 1 4294967295 Specify the maintenance association index Restrictions Only Administrator and Operator level users can issue th...

Page 125: ...pecify the maintenance domain name md_index uint 1 4294967295 Specify the maintenance domain index index Restrictions Only Administrator and Operator level users can issue this command Example usage T...

Page 126: ...ed on the port MEPs can still be created on the port and the configuration can be saved MEPs created on that port can not generate or process CFM PDUs If the user issues a Loopback or Link trace test...

Page 127: ...n Parameters md string 22 Specify the maintenance domain name md_index uint 1 4294967295 Specify the maintenance domain index ma string 22 Specify the maintenance association name ma_index uint 1 4294...

Page 128: ...CFM Port Status Enabled MAC Address 00 22 B0 DE F0 46 MEP State Enabled CCM State Enabled PDU Priority 7 Fault Alarm Disabled Alarm Time 250 centisecond 1 100 s Alarm Reset Time 1000 centisecond 1 100...

Page 129: ...ma_index uint 1 4294967295 Specify the maintenance association index Restrictions None Example usage To show the CFM faults DGS 3450 admin show cfm fault Command show cfm fault MD Name MA Name MEPID S...

Page 130: ...he peer MEP as the target of management action action start stop Specify the management lock action This action can be set to start or stop Restrictions Only Administrator and Operator level users can...

Page 131: ...ply from MPID 52 bytes xxx time xxxms Request timed out CFM loopback statistics for 00 01 02 03 04 05 Packets Sent 4 Received 1 Lost 3 75 loss DGS 3450 admin cfm linktrace Purpose Used to issue a CFM...

Page 132: ...Specify the Maintenance Domain name md_index uint 1 4294967295 Specify the Maintenance Domain index ma string 22 Specify the Maintenance Association name ma_index uint 1 4294967295 Specify the Mainten...

Page 133: ...ription This command is used to delete the stored link trace response data that have been initiated by the specified MEP Parameters md string 22 Specify the Maintenance Domain name md_index uint 1 429...

Page 134: ...enable Specify that the MP s reply to the LTR function will be set to all disable Disable sending the all MPs replay LTRs function Restrictions Only Administrator and Operator level users can issue th...

Page 135: ...ecify the MEP ID remote_mepid int 1 8191 Specify the remote MEP ID Restrictions None Example usage To show the CFM remote MEP information DGS 3450 admin show cfm remote_mep mepname mep1 remote_mepid 2...

Page 136: ...xStack DGS 3400 Series Layer 2 Gigabit Ethernet Managed Switch CLI Manual 132 show cfm pkt_cnt Restrictions None Example usage To show the CFM packet s RX TX counters...

Page 137: ...0 0 0 0 0 12 0 0 0 0 0 0 0 0 CFM TX Statistics Port AllPkt CCM LBR LBM LTR LTM all 3988 3984 0 0 0 4 1 0 0 0 0 0 0 2 204 204 0 0 0 4 3 578 578 0 0 0 0 4 578 578 0 0 0 0 5 578 578 0 0 0 0 6 578 578 0...

Page 138: ...ters of the AIS function on a MEP Syntax config cfm ais md string 22 md_index uint 1 4294967295 ma string 22 ma_index uint 1 4294967295 mepid int 1 8191 period 1sec 1min level int 0 7 state enable dis...

Page 139: ...4967295 Specify the Maintenance Domain index ma string 22 Specify the Maintenance Association name ma_index uint 1 4294967295 Specify the Maintenance Association index mepid int 1 8191 Specify the MEP...

Page 140: ...lear counters ports portlist Each command is listed in detail in the following sections show packet ports Purpose Used to show statistics about the packets which were sent and received by the switch S...

Page 141: ...Use to show error statistics information for a range of ports Syntax show error ports portlist Description The show error ports command shows error statistics for a range of ports Parameters portlist...

Page 142: ...0 0 2 6 0 0 0 1 12 0 0 0 2 7 0 30 1 1 13 0 0 0 2 8 0 0 0 1 14 0 0 0 2 9 30 0 1 1 15 0 0 0 2 10 0 0 0 1 16 0 0 0 2 11 0 0 0 1 17 0 0 0 2 12 0 0 0 1 18 0 0 0 2 13 0 0 0 1 19 0 0 0 2 14 0 0 0 1 20 0 0 0...

Page 143: ...ounter If no parameter is specified system will counter all of the ports Restrictions Only Administrator and Operator level users can issue this command Example usage To clear the switch s statistics...

Page 144: ...e debug show error_reboot state debug show error ports sio1 sio2 debug show packet ports sio1 sio2 Each command is listed in detail in the following sections debug error_log Purpose Use this command t...

Page 145: ...5D6C TASK NAME StackTop CurStkSP StackSize SchCnt PRIO I STATUS 8069E7D0 FWD ETH 823E9798 823E95C4 1K 32K 2 160 160 Q IP_PKT 806A3E70 SysLogTask 80BD040C 80BD0298 1K 16K 3 180 180 E SysLogEvent 806A43...

Page 146: ...server It can be a relative pathname or an absolute pathname Restrictions Only Administrator and Operator level users can issue this command Example usage To show the debug buffer s state DGS 3450 ad...

Page 147: ...ved in NVRAM If the error_reboot is enabled the watchdog shall be enabled after all information is stored into NVRAM Syntax debug config error_reboot enable disable Description Set if the switch needs...

Page 148: ...debug show status Command debug show status Debug Global State Enabled SYS Enabled OS Enabled MSTP Enabled ACL Disabled CLI Enabled SNMP Disabled IGMP Enabled DGS 3450 admin debug config state Purpos...

Page 149: ...le usage To show the error reboot status DGS 3450 admin debug show error_reboot state Command debug show error_reboot state Error Reboot Enabled DGS 3450 admin debug show error ports Purpose Used to c...

Page 150: ...s 0 Collision 0 Symbol Error 0 Buffer Full Drop 0 ACL Drop 0 Multicast Drop 0 VLAN Ingress Drop 0 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh debug show packet ports Purpose Used to...

Page 151: ...Port number 1 49 Frame Size Type Frame Counts Frames sec 64 0 0 65 127 0 0 128 255 0 0 256 511 0 0 512 1023 0 0 1024 1518 0 0 1519 2047 0 0 2048 4095 0 0 4096 9216 0 0 Unicast RX 0 0 Multicast RX 0 0...

Page 152: ...pecified vlan When DHCP local relay is enabled for the VLAN the DHCP packet will be relayed in broadcast way without change of the source MAC address and gateway address DHCP option 82 will be automat...

Page 153: ...ictions Only Administrator and Operator level users can issue this command Example usage To disable the DHCP local relay function DGS 3450 admin disable dhcp_local_relay Command disable dhcp_local_rel...

Page 154: ...ss ipaddr default config dhcp_relay option_61 state enable disable config dhcp_relay option_61 add mac_address macaddr string mutiword 255 relay ipaddr drop config dhcp_relay option_61 default relay i...

Page 155: ...r IP address Restrictions Only Administrator and Operator level users can issue this command Example usage To add a DHCP BOOTP server to the relay table DGS 3450 admin config dhcp_relay add ipif Syste...

Page 156: ...bled For packet come from client side the packet should not have the option 82 s field If the packet has this option field it will be dropped For packets come from the server side the packet should ha...

Page 157: ...ommand disables the DHCP relay function on the switch Parameters None Restrictions Only Administrator and Operator level users can issue this command Example usage To disable the DHCP relay function D...

Page 158: ...e relay servers will be determined based on either option 61 or per IPIF configured servers If the relay servers are determined based on option 60 or option 61 then per IPIF configured servers will be...

Page 159: ...drop Description When there are no match servers found for the packet based on option 60 the relay servers will be determined by the default relay server setting When there is no matching found for t...

Page 160: ...fied ipaddress default Delete all defaut relay ipaddress if ipaddress is not specified ipaddr Delete the default relay ipaddress that is specified by the user Restrictions Only Administrator and Opera...

Page 161: ...er IPIF configured servers will be ignored If the relay servers are not determined either by option 60 or option 61 then per IPIF configured servers will be used to determine the relay servers Paramet...

Page 162: ...option_61 default Purpose This command is used to configure the default ruler for option 61 Syntax config dhcp_relay option_61 default relay ipaddr drop Description Up to default server IP address ca...

Page 163: ...ay option_61 delete mac_address 00 11 22 33 44 55 Success DGS 3450 admin show dhcp_relay option_61 Purpose This command is used to show all rulers for option 61 Syntax show dhcp_relay option_61 Descri...

Page 164: ...ltered from a specific port except those that meet the Server IP Address and Client MAC Address binding Command Parameters config filter dhcp_server add permit server_ip ipaddr client_mac macaddr port...

Page 165: ...erver add permit server_ip 10 1 1 1 client_mac 00 00 00 00 00 01 ports 1 1 1 3 Command config filter dhcp_server add permit server_ip 10 1 1 1 client_mac 00 00 00 00 00 01 ports 1 1 1 3 Success DGS 34...

Page 166: ...l_server_log_suppress_duration 1min 5min 30min Description The DHCP server filtering function filters any illegal DHCP server packets The DHCP server who sends the illegal packets will be logged This...

Page 167: ...portant device such as a DNS server or the IP address of the default route to another device on the network Users also have the ability to bind IP addresses within the DHCP pool to specific MAC addres...

Page 168: ...254 show dhcp option_profile profile_name 12 Each command is listed in detail in the following sections create dhcp pool Purpose Used to create a DHCP pool Syntax create dhcp pool pool_name 12 Descri...

Page 169: ...by the Switch Parameters pool_name 12 Enter the name of the previously created pool that will contain the manual binding entry ipaddr Enter the IP address to be statically bound to a device within th...

Page 170: ...admin delete dhcp pool manual_binding Floor2 10 10 10 1 Command delete dhcp pool manual_binding Floor2 10 10 10 1 Success DGS 3450 admin show dhcp pool manual_binding Purpose Used to display the manu...

Page 171: ...DGS 3450 admin show dhcp_binding Command show dhcp_binding Pool Name IP Address Hardware Address Type Status Life Time secs engineering 192 168 0 1 01 22 b7 35 ce 99 Ethernet Manual 864000 Total Entri...

Page 172: ...d Operator level users can issue this command Example usage To configure the number of ping packets to be used for DHCP DGS 3450 admin config dhcp ping_packets 2 Command config dhcp ping_packets 2 Suc...

Page 173: ...unting boot had Command config dhcp pool boot_file accounting boot had Success DGS 3450 admin config dhcp pool default_router Purpose Used to configure the default router for the DHCP client Syntax co...

Page 174: ...rver address foe a DHCP pool DGS 3450 admin config dhcp pool dns_server_address accounting 10 245 32 1 Command config dhcp pool dns_server_address accounting 10 245 32 1 Success DGS 3450 admin config...

Page 175: ...onfigure the lease time for the DHCP pool DGS 3450 admin config dhcp pool lease accounting infinite Command config dhcp pool lease accounting infinite Success DGS 3450 admin config dhcp pool netbios_n...

Page 176: ...min config dhcp pool netbios_node_type accounting hybrid Command config dhcp pool netbios_node_type accounting hybrid Success DGS 3450 admin config dhcp pool network_addr Purpose Used to configure the...

Page 177: ...pool name for which to set the next server ipaddr Enter the IP address of the next server which has the boot file Restrictions Only Administrator and Operator level users can issue this command Exampl...

Page 178: ...Only Administrator and Operator level users can issue this command Example usage To disable the DHCP server DGS 3450 admin disable dhcp_server Command disable dhcp_server Success DGS 3450 admin show...

Page 179: ...address 10 10 10 1 end_address 10 10 10 10 Command create dhcp excluded_address begin_address 10 10 10 1 end_address 10 10 10 10 Success DGS 3450 admin delete dhcp excluded_address Purpose Used to del...

Page 180: ...DHCP server function Parameters None Restrictions None Example usage To display the DHCP server settings DGS 3450 admin show dhcp excluded_address Command show dhcp excluded_address Index Begin_Addres...

Page 181: ...P pool name here This name can be up to 12 characters long add Specify to add the DHCP Option 43 string to a DHCP pool string mutiword 255 Specify the DHCP Option 43 string to be added delete Specify...

Page 182: ...rofile pool1 delete profile1 Command config dhcp pool option_profile pool1 delete profile1 Success DGS 3450 admin create dhcp option_profile Purpose Used to create a DHCP option profile Syntax create...

Page 183: ...tring 254 delete option value 1 254 Description This command is used to configure an option to DHCP server option profile Parameters profile_name 12 Enter the profile name used here This name can be u...

Page 184: ...e configuration Syntax show dhcp option_profile profile_name 12 Description This command is used to display the current DHCP option profile configuration Parameters profile_name 12 Enter the profile n...

Page 185: ...e the DHCPv6 client debug function Parameters state See below enable Enable the DHCPv6 client debug function disable Disable the DHCPv6 client debug function Restrictions Only Administrator and Operat...

Page 186: ...e Description Enable or disable the debug information flag for DHCPv6 client packets including packet receiving and sending Parameters all Set packet receiving and sending debug flags receiving Set pa...

Page 187: ...ay hop_count Purpose This command is used to configure the DHCPv6 relay hop count of the switch Syntax config dhcpv6_relay hop_count value 1 32 Description This command is used to configure the DHCPv6...

Page 188: ...used to configure the DHCPv6 relay state of one or all of the specified interfaces Parameters ipif_name The name of the IP interface The value all indicates all configured IP interfaces state See belo...

Page 189: ...Status Enabled Server Address Total Entries 1 DGS 3450 admin To show the DHCPv6 relay configuration of the System interface DGS 3450 admin show dhcpv6_relay ipif System Command show dhcpv6_relay ipif...

Page 190: ...ay Success DGS 3450 admin debug dhcpv6_relay state Purpose This command is used to enable or disable DHCPv6 relay debug functions Syntax debug dhcpv6_relay state enable disable Description This comman...

Page 191: ...s used to enable or disable the debug information flag of the DHCPv6 relay packet including packets receiving and sending Parameters all Set packet receiving and sending debug flags receiving Set pack...

Page 192: ...hop_count state disable Disable the hop_count state Restrictions Only Administrator and Operator level users can issue this command Example usage To enable debug information flag about the hop count...

Page 193: ...me 12 show dhcpv6 binding pool_name 12 clear dhcpv6 binding pool_name 12 enable dhcpv6_server disable dhcpv6_server show dhcpv6_server ipif ipif_name 12 config dhcpv6 pool excluded_address pool_name 1...

Page 194: ...tch will be deleted Restrictions Only Administrator and Operator level users can issue this command Example usage To delete the DHCPv6 pool by specifying the pool name pool1 DGS 3450 admin delete dhcp...

Page 195: ...e prefix of begin_networkaddr and end_networkaddr must be consistence e g the begin_networkaddr is 2000 1 64 and the end_networkaddr is 3000 100 64 2 The begin address must not be large than end addre...

Page 196: ...3450 admin config dhcpv6 pool domain_name pool1 d_link com Command config dhcpv6 pool domain_name pool1 d_link com Success DGS 3450 admin config dhcpv6 pool dns_server Purpose This command is used to...

Page 197: ...IPv6 address preferred_lifetime sec 60 4294967295 The amount of time in seconds that the IPv6 address based on the specified pool remains in preferred state valid_lifetime sec 60 4294967295 The amoun...

Page 198: ...ol Restrictions Only Administrator and Operator level users can issue this command Example usage To add a manual binding DHCPv6 entry DGS 3450 admin config dhcpv6 pool manual_binding pool1 add 2000 3...

Page 199: ...g information Entering the command without the pool name will display all information regarding DHCPv6 dynamic binding on the switch This command only displays the dynamic binding information not incl...

Page 200: ...CPv6 dynamic binding information on the Switch DGS 3450 admin clear dhcpv6 binding Command clear dhcpv6 binding Success DGS 3450 admin enable dhcpv6_server Purpose This command is used to enable the D...

Page 201: ...ed Total Entries 2 DGS 3450 admin config dhcpv6 pool excluded_address Purpose This command is used to configure the reserved IPv6 addresses on the DHCPv6 server Syntax config dhcpv6 pool excluded_addr...

Page 202: ...d_address pool1 add begin 2000 3 end 2000 8 Success DGS 3450 admin show dhcpv6 excluded_address Purpose This command is used to display the groups of IPv6 addresses which are excluded from the legal a...

Page 203: ...le Description This command configures the DHCPv6 Server state on the IP interface Parameters ipif ipif_name 12 The name of the IP interface state See below enable Enable the dhcpv6 server state for a...

Page 204: ...of the DHCPv6 server packet including packets receiving and sending Parameters all Set packet receiving and sending debug flags receiving Set packet receiving debug flag sending Set packet sending deb...

Page 205: ...e between 1 and 128 ipif_name 12 Enter the IP interface name here This can be up to 12 characters long Restrictions Only Administrator and Operator level users can issue this command Example usage To...

Page 206: ...following sections config ddm ports Purpose Used to configure the DDM settings of the specified ports Syntax config ddm ports portlist all temperature_threshold high_alarm float low_alarm float high_...

Page 207: ...float Enter the low threshold warning value here tx_power_threshold Specify the threshold of the optic module s output power high_alarm Specify the high threshold for the alarm When the operating par...

Page 208: ...ports 9 temperature_threshold high_alarm 84 9555 low_alarm 10 high_warning 70 low_warning 2 2525 Command config ddm ports 9 temperature_threshold high_alarm 84 9555 low_alarm 10 high_warning 70 low_w...

Page 209: ...ociate with alarm DGS 3450 admin config ddm ports 11 state enable shutdown alarm Command config ddm ports 11 state enable shutdown alarm Success DGS 3450 admin config ddm log Purpose Enable or disable...

Page 210: ...TX RX power unit globally Parameters power_unit Specify the unit of DDM TX RX power If the unit has been set the display message and configure value of TX RX power use the same unit The default unit i...

Page 211: ...s configured by user it will be shown on this command with a tag indicate that it is a threshold that user configured else it would be the threshold read from the SFP module that is being inserted Par...

Page 212: ...witch CLI Manual 208 show ddm Description The command displays the DDM global setting Parameters None Restrictions None Example usage To display the global DDM setting DGS 3450 admin show ddm Command...

Page 213: ...n one hop away from the CS The SIM group is a group of switches that are managed as a single entity The DGS 3400 Series may take on three different roles 1 Commander Switch CS This is a switch that ha...

Page 214: ...y to automatically rediscover member switches that have left the SIM group either through a reboot or web malfunction This feature is accomplished through the use of Discover packets and Maintain pack...

Page 215: ...members mslist all Each command is listed in detail in the following sections enable sim Purpose Used to enable Single IP Management SIM on the Switch Syntax enable sim Description This command will e...

Page 216: ...overy packets out over the network Hold time Displays the time in seconds the Switch will hold discovery results before dropping it or utilizing it Parameters candidates candidate_id 1 100 Entering th...

Page 217: ...idate ID is not specified DGS 3450 admin show sim candidates Command show sim candidates ID MAC Address Platform Hold Firmware Device Name Capability Time Version 2 00 55 55 00 55 00 DGS 3450 L2 Switc...

Page 218: ...bor Neighbor Info Table Port MAC Address Role 23 00 35 26 00 11 99 Commander 23 00 35 26 00 11 91 Member 24 00 35 26 00 11 90 Candidate Total Entries 3 DGS 3450 admin reconfig Purpose Used to connect...

Page 219: ...switch of a SIM group The member switch should be defined by ID number Restrictions Only Administrator level users can issue this command Example usage To add a member DGS 3450 admin config sim_group...

Page 220: ...ll hold information sent to it from other switches utilizing the discovery interval protocol The user may set the hold time from 100 to 255 seconds Restrictions Only Administrator level users can issu...

Page 221: ...e Enter the path and the filename of the firmware or switch on the TFTP server members Enter this parameter to specify the members the user prefers to download firmware or switch configuration files t...

Page 222: ...onfiguration_to_tftp Specify this parameter if the user wishes to upload a switch configuration to members of a SIM group log_to_tftp Specify this parameter to upload a switch log to members of a SIM...

Page 223: ...ation_to_tftp 10 55 47 1 D configuration txt members 1 Command upload sim_ms configuration_to_tftp 10 55 47 1 D configuration txt memebers 1 This device is uploading configuration Please wait several...

Page 224: ...k is bidirectional Otherwise it starts detecting task to detect the link status Parameters portlist Specify a range of ports state Specifies these ports unidirectional link detection status The defaul...

Page 225: ...ct the unidirectional link Parameters portlist Specify a range of ports to display If no port specified all ports will be displayed Restrictions Only Administrator and Operator level users can issue t...

Page 226: ...e IP address is the same to the name server s the name server will be deleted don t check the priority parameter When adding a name server if one primary name server exists in the static name server t...

Page 227: ...dmin To configure DNS Resolver name server time out to 10 seconds DGS 3450 admin config name_server timeout 10 Command config name_server timeout 10 Success DGS 3450 admin show name_server Purpose Use...

Page 228: ...d then add the created host name entry is added into the static host name table and a log for duplicate is recorded Parameters name 255 The host s host name ipaddr The host s IP address Restrictions O...

Page 229: ...entries dynamic Display the dynamic host name entries Restrictions None Example usage To display the static and dynamic host name entries DGS 3450 admin show host_name Command show host_name Static H...

Page 230: ...e Used to configure the DNS Resolver state of the switch to disabled Syntax disable dns_resolver Description The disable dns_resolver command is used to configure the switch s DNS Resolver state to di...

Page 231: ...name 32 ipaddr Description This command is used to configure the DNS relay function on the Switch Parameters primary Indicates that the IP address below is the address of the primary DNS server second...

Page 232: ...This command is used in combination with the disable dnsr command below to enable and disable DNS Relay on the Switch Parameters cache This parameter will allow the user to enable the cache lookup for...

Page 233: ...DNS relay on the Switch static This parameter will allow the user to disable the static table lookup for the DNS relay on the Switch Restrictions Only Administrator and Operator level users can issue...

Page 234: ...into the DNS relay table If this parameter is omitted the entire DNS relay table will be displayed Restrictions None Example usage To display DNS relay status DGS 3450 admin show dnsr Command show dn...

Page 235: ...ig erps log enable disable show erps raps_vlan vlanid sub_ring config erps trap enable disable config erps raps_vlan vlanid state enable disable config erps raps_vlan vlanid add delete sub_ring raps_v...

Page 236: ...GS 3450 admin disable erps Command disable erps Success DGS 3450 admin create erps raps_vlan Purpose Used to create an R APS VLAN on a switch Syntax create erps raps_vlan vlanid Description This comma...

Page 237: ...ng MEL is one field in the R APS PDU NOTE If CFM Connectivity Fault Management and ERPS are used at the same time the R APS PDU is one of a suite of Ethernet OAM PDU The behavior for forwarding of R A...

Page 238: ...450 admin config erps raps_vlan rpl Purpose Used to configure the RPL port or the RPL owner for a specific R APS VLAN Syntax config erps raps_vlan vlanid rpl_port west east none rpl_owner enable disab...

Page 239: ...is command is used to configure the protocol timers Holdoff timer The Holdoff timer is used to filter out intermittent link faults when link failures occur during the protection switching process When...

Page 240: ...urpose Used to configure the ERPS log state Syntax config erps log enable disable Description This command is used to configure the log state of ERPS events Parameters log Enable or disable the log st...

Page 241: ...nistrative state is enabled and the device is operated as the active RPL owner Inactive is used to indicate that the RPL owner administrative state is enabled but the device is operated as the inactiv...

Page 242: ...l East Port 10 Forwarding RPL Port None RPL Owner Disabled Protected VLANs 200 220 Ring MEL 2 Holdoff Time 0 milliseconds Guard Time 500 milliseconds WTR Time 5 minutes Current Ring State Idle R APS V...

Page 243: ...ring ports RPL port RPL owner are configured Note that these parameters cannot be changed when the ring is activated In order to guarantee correct operation the following integrity will be checked wh...

Page 244: ...rpose Used to configure the state of topology change propagation for the sub ring Syntax config erps raps_vlan vlanid sub_ring raps_vlan vlanid tc_propagation state enable disable Description This com...

Page 245: ...icast_fdb vlan vlan_name 32 vlanid vidlist mac_address macaddr show fdb port port vlan vlan_name 32 vlanid vidlist mac_address macaddr static aging_time show multicast filtering_mode vlan vlan_name 32...

Page 246: ...re the switch s multicast MAC address forwarding database Syntax config multicast_fdb vlan_name 32 macaddr add delete portlist Description The config multicast_fdb command is used to configure the mul...

Page 247: ...ering mode for VLANs This switch support vlan filtering mode Parameters vlan_name Specifies the name of the VLAN forward_all_groups All multicast groups forwarded based on VLAN forward_unregistered_gr...

Page 248: ...nding to the MAC destination address The switch will always forward traffic to the specified device through this port Restrictions Only Administrator and Operator level users can issue this command Ex...

Page 249: ...ase Syntax show fdb port port vlan vlan_name 32 vlanid vidlist mac_address macaddr static aging_time Description The show fdb command displays the current unicast MAC address forwarding database Param...

Page 250: ...g 1 default 00 00 00 00 10 15 1 7 JWAC_Authed 1 default 00 00 00 00 10 16 1 7 JWAC_Blocked 1 default 00 00 00 00 10 19 BlackHole 1 default 00 00 00 00 10 21 1 11 Del_on_Reset 1 default 00 00 00 00 10...

Page 251: ...cast filtering_mode Command show multicast filtering_mode VLAN Name Multicast Filter Mode default forward_unregistered_groups n61 forward_unregistered_groups n101 forward_unregistered_groups n103 forw...

Page 252: ...ntrol packets that are trapped to CPU Syntax show cpu port l2 l3 unicast multicast type lacp stp gvrp erps cfm 802 1x lldp udld stacking ctp rip ripng reserved_ipv4_ipmc reserved_ipv6_ipmc unknow_ipv4...

Page 253: ...v6 0 0 0 SNTP 0 0 0 DNS 0 0 0 TFTP 0 0 0 RCP 0 0 0 TELNET 0 0 0 DGS 3450 admin To display statistics of all L3 multicast routing control packets DGS 3450 admin show cpu port l3 multicast Command show...

Page 254: ...covery mode Syntax enable password_recovery Description The command is used to enable the state of the password recovery mode The configuration does not take effect until being saved Parameters None R...

Page 255: ...covery mode Note Only the NV RAM configuration will take effect when the Switch restarts the running configuration does not take effect until being saved That means the password recovery is determined...

Page 256: ...s used to enable disable sending of gratuitous ARP request packet while IPIF interface become up This is used to automatically announce the interface s IP address to other nodes By default the state i...

Page 257: ...system will only learn the ARP reply packet or a normal ARP request packet that asks for the MAC address that corresponds to the system s IP address The command is used to enable disable learning of A...

Page 258: ...switch can trap and log the IP conflict event to inform the administrator By default trap is disabled and event log is enabled Parameters ipif ipif_name 12 Interface name of L3 interface trap Specify...

Page 259: ...ommand is used to display gratuitous ARP configuration Parameters ipif ipif_name 12 Interface name of L3 interface Restrictions None Example usage To display gratuitous ARP configuration DGS 3450 admi...

Page 260: ...omplication be avoided but now the administrator has over 4000 VLANs in which over 4000 VLANs can be placed therefore greatly expanding the VLAN network Implementation of this feature adds a VLAN fram...

Page 261: ...e add access uplink delete portlist tpid hex 0x0 0xffff delete double_vlan vlan_name show double_vlan vlan_name enable pvid auto_assign disable pvid auto_assign show pvid auto_assign config private_vl...

Page 262: ...mand create vlan v1 tag 2 Success DGS 3450 admin delete vlan Purpose Used to delete a previously configured VLAN on the Switch Syntax delete vlan vlan_name 32 Description This command will delete a pr...

Page 263: ...d ports to the VLAN v1 DGS 3450 admin config vlan v1 add tagged 1 4 1 8 Command config vlan v1 add tagged 1 4 1 8 Success DGS 3450 admin config gvrp Purpose Used to configure GVRP on the Switch Syntax...

Page 264: ...o enable GVRP on the Switch Syntax enable gvrp Description This command along with disable gvrp below is used to enable and disable GVRP globally on the Switch without changing the GVRP configuration...

Page 265: ...e VLAN for which to display a summary of settings vlanid vidlist Users may alternately choose the VLAN to be displayed by entering the VLAN ID ports portlist Users may also view VLANs by designated po...

Page 266: ...bled Enabled All Frames 1 8 1 Disabled Enabled All Frames 1 9 1 Disabled Enabled All Frames 1 10 1 Disabled Enabled All Frames 1 11 1 Disabled Enabled All Frames 1 12 1 Disabled Enabled All Frames 1 1...

Page 267: ...erator level users can issue this command Example usage To disable the Double VLAN feature on the Switch DGS 3450 admin disable double_vlan Command disable double_vlan Current Double VLAN mode Enabled...

Page 268: ...d as uplink ports access Add this parameter to configure these ports as access ports Access ports are for connecting Switch VLANs to customer VLANs portlist Enter a list of ports to be added to this V...

Page 269: ...vlan RG Global Double VLAN Enabled SPVID 2 VLAN Name RG TPID 0x9100 Uplink Ports Access Ports 1 4 1 8 Unknow Ports Total Entries 1 DGS 3450 admin enable pvid auto_assign Purpose Used to enable auto as...

Page 270: ...default setting is enabled Parameters None Restrictions Only Administrator and Operator level users can issue this command Example usage To disable the auto assign PVID DGS 3450 admin disable pvid aut...

Page 271: ...econdary VLAN and the trunk port of the primary VLAN will behave as the tagged member of the secondary VLAN A secondary VLAN cannot be specified with advertisement Only the primary VLAN can be configu...

Page 272: ...d Operator level users can issue this command Example usage To display private VLAN settings DGS 3450 admin show private_vlan Command show private_vlan Private VLAN 100 Promiscuous Ports 1 Trunk Ports...

Page 273: ...0 7 Each command is listed in detail in the following sections enable qinq Purpose Used to enable QinQ Syntax enable qinq Description When QinQ is enabled all network port roles will be NNI port and o...

Page 274: ...bal QinQ status Syntax show qinq Description Use this command to display the global QinQ status Parameters None Restrictions Only Administrator and Operator level users can issue this command Example...

Page 275: ...rpose Used to show qinq configuration of ports Syntax show qinq ports portlist Description The command used to show qinq configuration of ports include Role of port Outer TPID of port Miss drop state...

Page 276: ...slation ports 1 4 Success DGS 3450 admin show vlan_translation Purpose Used to show existed C VLAN based VLAN translation rules Syntax show vlan_translation ports portlist Description Used to show exi...

Page 277: ...P VLAN cvid Specify the C VLAN ID to match svid Specify the S VLAN ID Restrictions Only Administrator and Operator level users can issue this command Example usage To replace C Tag which CVID is 20 by...

Page 278: ...allows a Layer 2 switch to listen in on the IGMP conversation between hosts and routers by processing the Layer 2 or Layer 3 IGMP packets sent in a multicast network The Multicast Listener Discovery...

Page 279: ...mld_snooping vlan vlan_name 32 all node_timeout sec 1 16711450 router_timeout sec 1 16711450 done_timer sec 1 16711450 state enable disable fast_done enable disable config mld_snooping querier vlan v...

Page 280: ...ave message report_suppression When IGMP report suppression is enabled the default the switch sends the first IGMP report from all hosts for a group to all the multicast routers The switch does not se...

Page 281: ...ount of time between group specific query messages including those sent in response to leave group messages You might lower this interval to reduce the amount of time it takes a router to detect the l...

Page 282: ...config router_ports_forbidden vlan_name 32 add delete portlist Description This command allows you to designate a range of ports as being not connected to multicast enabled routers This ensures that...

Page 283: ...e igmp_snooping Command enable igmp_snooping Success DGS 3450 admin disable igmp_snooping Purpose Used to disable IGMP snooping on the switch Syntax disable igmp_snooping forward_mcrouter_only Descrip...

Page 284: ...The static member port will only affect V2 IGMP operation The Reserved IP multicast address 224 0 0 X must be excluded from the configured group The VLAN must be created first before a static group ca...

Page 285: ...er port will only affect V2 IGMP operation Parameters vlan Specify the name of the VLAN on which the static group resides vlanid Specify the ID of the VLAN on which the static group resides ipaddr Spe...

Page 286: ...rameters vlan Specify the name of the VLAN for which you want to view IGMP snooping group information data_driven Specify to display the dynamic data learning groups Restrictions Only Administrator an...

Page 287: ...NULL 225 0 0 5 VLAN Name VID default 1 Port Member Router Ports 24 Mode EXCLUDE Total Entries 1 DGS 3450 admin show router_ports Purpose Used to display the currently configured router ports on the sw...

Page 288: ...pecify the router time out value here done_timer Specify the done timer here state Enable or disable MLD snooping for the chosen VLAN fast_done Enable or disable MLD snooping fast_leave function If en...

Page 289: ...ier present interval Amount of time that must pass before a multicast router decides that there is no longer another multicast router that is the querier This interval is calculated as follows robustn...

Page 290: ...orbidden vlan_name 32 add delete portlist Description This command allows you to designate a range of ports as being not connected to multicast enabled routers This ensures that the forbidden router p...

Page 291: ...s DGS 3450 admin disable mld_snooping Purpose Used to disable MLD snooping on the switch Syntax disable mld_snooping forward_mcrouter_only Description This command disables MLD snooping on the switch...

Page 292: ...current MLD snooping configurations Restrictions None Example usage To show MLD snooping DGS 3450 admin show mld_snooping Command show mld_snooping MLD Snooping Global State Disabled Multicast router...

Page 293: ...formation Restrictions None Example usage To show an MLD snooping group when MLD v2 is supported The first item means that for ports 1 2 the data from the 2001 1 FF1E 1 will be forwarded The second it...

Page 294: ...VID default 1 Reports 1 Member Ports 4 5 Router Ports 24 UP Time 40 Expiry Time 205 Filter Mode EXCLUDE Source Group NULL FF1E 5 VLAN Name VID default 1 Reports 0 Member Ports Router Ports 24 UP Time...

Page 295: ...ig igmp_snooping data_driven_learning Purpose This command is used to enable or disable the data driven learning of an IGMP snooping group Syntax config igmp_snooping data_driven_learning vlan_name vl...

Page 296: ...ifetime in seconds This parameter is valid only when aged_out is enabled sec 1 65535 Enter the expiry time here This value must be between 1 and 65535 seconds Restrictions Only Administrator and Opera...

Page 297: ...de for all ports is ignored That is the multicast packets will be forwarded to router ports If the data driven learning table is full the multicast packets will be forwarded according to the multicast...

Page 298: ...imum learned entry value here This value must be between 1 and 511 Restrictions Only Administrator and Operator level users can issue this command Example usage To set the maximum number of groups tha...

Page 299: ..._mode Purpose Used to show IGMP snooping forward lookup mode Syntax show igmp_snooping forward_lookup_mode Description The command is used to show IGMP snooping forward lookup mode on the switch Param...

Page 300: ...a layer 3 interface Syntax create ipif ipif_name 12 network_address vlan_name 32 secondary state enable disable proxy_arp enable disable local enable disable Description This command creates a L3 inte...

Page 301: ...ress later the mode will be changed to manual configured mode For IPv6 multiple addresses can defined on the same L3 interface For IPv4 multi netting must be done by creation of a secondary interface...

Page 302: ...p_directed_broadcast See below enable Enabled the IP directed broadcast state of the interface disable Disabled the IP directed broadcast state of the interface Restrictions Only Administrator and Ope...

Page 303: ...me DGS 3450 admin enable ipif Purpose Used to enable the admin state for an interface Syntax enable ipif ipif_name 12 all Description This command is used to enable the state for an IPIF When the stat...

Page 304: ...ured and the IPv6 processing will be started When there is no IPv6 address explicitly configured by default link local address is not configured and the IPv6 processing will be disabled By enable this...

Page 305: ...cal address for an interface DGS 3450 admin disable ipif_ipv6_link_local_auto System Command disable ipif_ipv6_link_local_auto System Success DGS 3450 admin show ipif Purpose Used to display the inter...

Page 306: ...D State Disabled DHCP Option12 State Disabled DHCP Option12 Host Name Total Entries 2 DGS 3450 admin show ipif_ipv6_link_local_auto Purpose Used to display the link local address automatic configurati...

Page 307: ...f Parameters ipif_name 12 Enter the IP interface name here ipv6address Specifies the IPv6 interface address prefix_name string 1 12 Specifies the IPv6 interface prefix name ipv6networkaddr Enter the I...

Page 308: ...inding ip_mac ipaddress ipaddr ipv6address ipv6addr mac_address macaddr ports portlist all delete address_binding ip_mac ipaddress ipaddr ipv6address ipv6addr mac_address macaddr all blocked all vlan_...

Page 309: ...P and IP broadcast packets are sent to the CPU for IMPB checking Packets are forwarded unless the check finds a specified source MAC address that is blocked Packets with MAC addresses that match IMPB...

Page 310: ...sses that match IMPB entries are set to dynamic state while MAC addresses with no match are set to block All other packets are dropped loose Used to implement a more loose or less strict mode of contr...

Page 311: ...evel users can issue this command Example usage To create an IMPB entry DGS 3450 admin create address_binding ip_mac ipaddress 10 1 1 1 mac_address 00 00 00 00 00 11 Command create address_binding ip_...

Page 312: ...macaddr Description Use this command to delete an IMPB entry or a blocked entry If the ACL mode is enabled the switch will delete the related ACL access entries automatically Parameters ip_mac Specify...

Page 313: ...macaddr Specify the MAC address of the entry being updated ports Specify which ports are used for the IMPB entry being updated If not specified then it is applied to all ports Restrictions Only Admini...

Page 314: ...address_binding Purpose Used to display the IMPB entries blocked MAC entries and port status Syntax show address_binding ip_mac all ipaddress ipaddr ipv6address ipv6addr mac_address macaddr blocked a...

Page 315: ...s disabled If a user enables DHCP sSnooping mode all ports which have IMPB disabled will become server ports The switch will learn the IP addresses through server ports by using DHCP Offer and DHCP AC...

Page 316: ...50 admin enable address_binding dhcp_snoop Command enable address_binding dhcp_snoop Success DGS 3450 admin To enable DHCP IPv6 snooping mode DGS 3450 admin enable address_binding dhcp_snoop ipv6 Comm...

Page 317: ...s on ports 1 3 DGS 3450 admin clear address_binding dhcp_snoop binding_entry ports 1 3 Command clear address_binding dhcp_snoop binding_entry ports 1 3 Success DGS 3450 admin To clear DHCP IPv6 snoopi...

Page 318: ...number no_limit Specifies that the maximum number of learned entries is unlimited Restrictions Only Administrator and Operator level users can issue this command Example usage To set the maximum numbe...

Page 319: ...0 admin disable address_binding trap_log Command disable address_binding trap_log Success DGS 3450 admin config address_binding recover_learning ports Purpose Used to recover IMPB checking Syntax conf...

Page 320: ...dress_binding nd_snoop Purpose Use to disable ND snooping on the switch Syntax disable address_binding nd_snoop Description This command allows the user to disable ND Snooping on switch Parameters Non...

Page 321: ...try Purpose Used to show binding entries of ND snooping on the switch Syntax show address_binding nd_snoop binding_entry port port Description This command allows the user to display binding entries o...

Page 322: ...ule receives an ARP IP packet or a DHCP packet Syntax debug address_binding event dhcp all Description Use this command to start the IMPB debug when the IMPB module receives an ARP IP packet or a DHCP...

Page 323: ...bit Ethernet Managed Switch CLI Manual 319 Example usage To stop IMPB debug starting when the IMPB module receives an ARP IP or DHCP packet DGS 3450 admin no debug address_binding Command no debug add...

Page 324: ...ports portlist delete ipmc_vlan_replication_entry name 16 show ipmc_vlan_replication show ipmc_vlan_replication_entry name 16 hardware Each command is listed in detail in the following sections enabl...

Page 325: ...meters ttl Species whether to decrease the time to live of packet By default the TTL will be decreased src_mac Specifies whether to replace a source MAC address of a packet By default the source MAC a...

Page 326: ...If the entries V G S and V G both exist in the table the entries V G S will not take effect Parameters name The name of the IP multicast VLAN replication entry to be configured vlan The source VLAN na...

Page 327: ...N replication entry Syntax delete ipmc_vlan_replication_entry name 16 Description This command deletes an IP multicast VLAN replication entry Parameters name The name of the IP multicast VLAN replicat...

Page 328: ...tive status indicates whether the entry is inserted into chip successfully Parameters name The name of the IP multicast VLAN replication entry to be deleted hardware Show the S G groups which are in t...

Page 329: ...ication_entry hardware Name ipmc_vlan_replication_entry name Src v The source VLAN Dest v The destination VLAN Name Src V Group SIP Dest V Portlist mr1 1 255 1 1 1 2 1 1 1 11 1 13 mr1 1 255 1 1 1 3 1...

Page 330: ...workaddr preferred_life_time sec 0 4294967295 valid_life_time sec 0 4294967295 on_link_flag enable disable autonomous_flag enable disable 1 show ipv6 nd ipif ipif_name 12 Each command is listed in det...

Page 331: ...e IP interface System DGS 3450 admin delete ipv6 neighbor_cache ipif System 3ffc 1 Command delete ipv6 neighbor_cache ipif System 3FFC 1 Success DGS 3450 admin show ipv6 neighbor_cache Purpose Shows t...

Page 332: ...ans_time Neighbor solicitation s retransmit timer in milliseconds It has the same value as the RA retrans_time in the config IPv6 ND RA command If the retrans_time parameter is configured in one of th...

Page 333: ...ion other_config_flag When set to enable it indicates that hosts receiving this RA must use a stateful address configuration protocol to obtain on address configuration information min_rtr_adv_interva...

Page 334: ...ample usage To configure the value of the preferred_life_time of prefix option to be 1000 seconds for the prefix 3ffe 501 ffff 100 64 which is the prefix of the ip1 interface DGS 3450 admin config ipv...

Page 335: ...mit 64 NS Retransmit Time 0 ms Router Advertisement Disabled RA Max Router AdvInterval 600 s RA Min Router AdvInterval 198 s RA Router Life Time 1800 s RA Reachable Time 1200000 ms RA Retransmit Time...

Page 336: ...TE If an IPv6 global address is added on interface this local route will be wrote into IPv6 routing table automatically If both the destination network address and next hop of the new route entry are...

Page 337: ...work of the route ipif_name The interface name of the next hop with the maximum of 12 characters ipv6addr The next hop address of the default route tunnel_name The tunnel name of the next hop When thi...

Page 338: ...p 3000 4 IPIF Intface_1 IPv6 Prefix 3005 64 Protocol RIPng Metric 1 Next Hop 3000 5 IPIF Intface_1 IPv6 Prefix 4000 64 Protocol Local Metric 1 Next Hop IPIF Intface_2 IPv6 Prefix 4005 64 Protocol RIPn...

Page 339: ...ctions Only Administrator and Operator level users can issue this command Example usage To disable the syslog recording function DGS 3450 admin disable ipv6_route_longprefix log Command disable ipv6_r...

Page 340: ...s Automatic 6to4 Tunnels and ISATAP Tunnels The IPv6 Tunnel commands in the Command Line Interface CLI are listed along with the appropriate parameters in the following table Command Parameters create...

Page 341: ...e tunnel s information will still exist in the database However whether the tunnel s former information is invalid or not will depend on the current mode IPv6 Manual tunnels are simple point to point...

Page 342: ...bal Internet or a corporate backbone The key requirement is that each site has a globally unique IPv4 address which is used to construct a 48 bit globally unique 6to4 IPv6 prefix It starts with the pr...

Page 343: ...onfigured The last 32 bits of the IPv6 ISATAP address correspond to an IPv4 address assigned to the tunnel source source ipaddr The source IPv4 address of this IPv6 tunnel interface It is used as the...

Page 344: ...um of 12 characters If no tunnel is specified all tunnels on the Switch will be enabled Restrictions Only Administrator and Operator level users can issue this command Example usage To enable an IPv6...

Page 345: ...xStack DGS 3400 Series Layer 2 Gigabit Ethernet Managed Switch CLI Manual 341 DGS 3450 admin disable ip_tunnel tn2 Command disable ip_tunnel tn2 Success DGS 3450 admin...

Page 346: ...rnet Managed Switch CLI Manual 342 44 JAPANESE WEB BASED ACCESS CONTROL JWAC COMMANDS The Japanese Web based Access Control JWAC commands in the Command Line Interface CLI are listed along with the ap...

Page 347: ...tcp_port_number 1 65535 http https config jwac ports portlist all state enable disable max_authenticating_host value 0 50 aging_time infinite min 1 1440 idle_time infinite min 1 1440 block_time sec 0...

Page 348: ...e second stage the authentication is similar to WAC except that there is no port VLAN membership change by JWAC after a host passes authentication The RADIUS server will share the server configuration...

Page 349: ...rator and Operator level users can issue this command Example usage To enable JWAC redirect function DGS 3450 admin enable jwac redirect Command enable jwac redirect Success DGS 3450 admin disable jwa...

Page 350: ...authenticated host to the JWAC Switch with TTL 1 will be ignored and the host is still in an authenticated state Parameters None Restrictions Only Administrator and Operator level users can issue this...

Page 351: ...nitor Purpose Used to enable JWAC Quarantien Server monitor function Syntax enable jwac quarantine_server_monitor Description When JWAC Quarantine Server monitor feature is enabled the JWAC Switch wil...

Page 352: ...ing improperly Parameters sec 5 300 To specify the error timeout interval Restrictions Only Administrator and Operator level users can issue this command Example usage To set Quarantine Server error t...

Page 353: ...ion request from host DGS 3450 admin config jwac virtual_ip 1 1 1 1 url www kyoto ac jp Command config jwac virtual_ip 1 1 1 1 url www kyoto ac jp Success DGS 3450 admin config jwac quarantine_server_...

Page 354: ...onfig jwac update server command allows you to add or delete server network address to which the traffic from unauthenticated client host will not be blocked by the JWAC Switch Any servers update micr...

Page 355: ...he HTTPS cannot run at TCP port 80 Parameters tcp_port_number 1 65535 A TCP port which the JWAC Switch listens to and uses to finish the authenticating process http To specify the JWAC runs HTTP proto...

Page 356: ...igure state and other parameters of the ports DGS 3450 admin config jwac ports 1 9 state enable Command config jwac ports 1 9 state enable Success DGS 3450 admin config jwac radius_protocol Purpose Us...

Page 357: ...count to pass authentication Restrictions Only Administrator and Operator level users can issue this command Example usage To create a local user DGS 3450 admin create jwac user 112233 Command create...

Page 358: ...fy the user name to be deleted all_user All user accounts in local DB will be deleted Restrictions Only Administrator and Operator level users can issue this command Example usage To delete a local us...

Page 359: ...rized configuration Syntax config jwac authorization attributes radius enable disable local enable disable 1 Description Used to enable or disable acceptation of authorized configuration When the auth...

Page 360: ...ed Redirect State Enabled Redirect Delay Time 3 Seconds Redirect Destination Quarantine Server Quarantine Server http 172 18 212 147 pcinventory Q Server Monitor Enabled Running Q Server Error Timeout...

Page 361: ...does not exist or target VLAN has not been specified at all the ID of RX VLAN will be displayed RX VLAN ID is 4004 in this example MAC 00 00 00 00 00 02 is authenticated with target VLAN assigned the...

Page 362: ...iption The show jwac port command allows you to display port configuration of JWAC Parameters all To show all ports configuration of JWAC portlist To specify a port range to show the configuration of...

Page 363: ...authenticate page notification_line This parameter is used to set the notification information by line in authentication web pages Restrictions Only Administrator and Operator level users can issue th...

Page 364: ...er Name Title ID Password Title Logout Window Title LAN Notification Copyright 2010 http www dlink jp com DGS 3450 admin config jwac authenticate_page Purpose Used to choose authenticate page language...

Page 365: ...listed in detail in the following sections enable jumbo_frame Purpose Used to enable the jumbo frame function on the Switch Syntax enable jumbo_frame Description This command will allow ethernet fram...

Page 366: ...jumbo frame state to be applied to a range of ports specified enable Enable the jumbo frame state disable Disable the jumbo frame state Restrictions Only Administrator and Operator level users can iss...

Page 367: ...Jumbo Frame Global State Enable Maximum Jumbo Frame Size 9216 Bytes Port Jumbo Frame State 1 1 Enable 1 2 Enable 1 3 Enable 1 4 Enable 1 5 Enable 1 6 Enable 1 7 Enable 1 8 Enable 1 9 Enable 1 10 Enab...

Page 368: ...o multicast_ipaddr access permit deny state enable disable Description The config limited multicast address command allows the user to configure the multicast address range access level and state Para...

Page 369: ...beginning and end of the port list range are separated by a dash Non contiguous portlist entries are separated by a comma ex 1 3 7 9 Restrictions Only Administrator and Operator level users can issue...

Page 370: ...h CLI Manual 366 To show the limited multicast address on ports 1 to 2 DGS 3450 admin show limited multicast address 1 2 Command show limited multicast address 1 2 Port From To Access Status 1 1 0 0 0...

Page 371: ...ortlist Each command is listed in detail in the following sections create link_aggregation Purpose Used to create a link aggregation group on the Switch Syntax create link_aggregation group_id value 1...

Page 372: ...group Syntax config link_aggregation group_id value 1 32 master_port port ports portlist state enable disable Description This command allows users to configure a link aggregation group that was creat...

Page 373: ...est Indicates that the Switch should examine the source and destination MAC addresses ip_source Indicates that the Switch should examine the source IP address ip_destination Indicates that the Switch...

Page 374: ...termine if LACP ports will process LACP control frames active Active LACP ports are capable of processing and sending LACP control frames This allows LACP compliant devices to negotiate the aggregated...

Page 375: ...beginning and end of the port list range are separated by a dash Non contiguous portlist entries are separated by a comma ex 1 3 7 9 If no parameter is specified the system will display the current LA...

Page 376: ...elay sec 1 8192 config lldp reinit_delay sec 1 10 config lldp notification_interval sec 5 3400 config lldp ports portlist all notification enable disable config lldp ports portlist all admin_status tx...

Page 377: ...rts For the receiving of LLDP packets the switch will learn the information from the LLDP packets advertised from the neighbor in the Neighbor s table The default state for LLDP is disabled Parameters...

Page 378: ...message_tx_interval 30 Success DGS 3450 admin config lldp message_tx_hold_multiplier Purpose Used to configure the message hold multiplier Syntax config lldp message_tx_hold_multiplier int 2 10 Descr...

Page 379: ...or equal to 0 25 msgTxInterval Restrictions Only Administrator and Operator level users can issue this command Example usage To configure the delay interval DGS 3450 admin config lldp tx_delay 7 Comm...

Page 380: ...configured SNMP trap receiver s Syntax config lldp ports portlist all notification enable disable Description Enable or disable each port for sending changes notification to configured SNMP trap rece...

Page 381: ...Administrator and Operator level users can issue this command Example usage To configure ports 1 to 5 to transmit and receive DGS 3450 admin config lldp ports 1 1 1 5 admin_status tx_and_rx Command co...

Page 382: ...e port_description system_name system_description and system_capability Parameters portlist Use this parameter to define ports to be configured all Use this parameter to set all ports in the system po...

Page 383: ...uccess DGS 3450 admin config lldp dot1_tlv_protocol_vid Purpose Used to configure an individual port or group of ports to exclude one or more of IEEE 802 1 organization port and protocol VLAN ID TLV d...

Page 384: ...protocol identity TLV data types from outbound LLDP advertisements Syntax config lldp ports portlist all dot1_tlv_ protocol_identity all eapol lacp gvrp stp enable disable Description This TLV option...

Page 385: ...nabled the auto negotiated advertised capability and the operational MAU type The default state is disabled link_aggregation This TLV optional data type indicates that LLDP agent should transmit Link...

Page 386: ...ge enable Command config lldp forward_message enable Success DGS 3450 admin show lldp Purpose This command displays the switch s general LLDP configuration status Syntax show lldp Description This com...

Page 387: ...s information DGS 3450 admin show lldp mgt_addr ipv4 10 90 90 90 Command show lldp mgt_addr ipv4 10 90 90 90 Address 1 Subtype IPv4 Address 10 90 90 90 IF Type IfIndex OID 1 3 6 1 4 1 171 10 70 6 Adve...

Page 388: ...k Aggregation Disabled Maximum Frame Size Disabled DGS 3450 admin show lldp local_ports Purpose Used to display the per port information currently available for populating outbound LLDP advertisements...

Page 389: ...ription This command display the information learned from the neighbor parameters Due to a memory limitation only 32 VLAN Name entries and 10 Management Address entries can be received Parameters port...

Page 390: ...min show lldp statistics ports Purpose Used to display the ports LLDP statistics information Syntax show lldp statistics ports portlist Description The per port LLDP statistics command displays per po...

Page 391: ...ng sections config lldp_med fast_start repeat_count Purpose Used to to configure the fast start repeat count Syntax config lldp_med fast_start repeat_count value 1 10 Description When an LLDP MED Capa...

Page 392: ...e each port for sending topology change notification to configured SNMP trap receiver s if an endpoint device is removed or moved to another port Parameters portlist Specify a range of ports to be con...

Page 393: ...ting of LLDP MED TLVs disable Disable the transmitting of LLDP MED TLVs Restrictions Only Administrator and Operator level users can issue this command Example usage To enable transmitting all capabil...

Page 394: ...3450 admin show lldp_med local_ports 1 1 Command show lldp_med local_ports 1 1 Port ID 1 1 LLDP MED Capabilities Support Capabilities Support Network Policy Support Location Identification Not Suppor...

Page 395: ...Parameters portlist Specify a range of ports to be displayed Restrictions None Example usage To display remote entry information DGS 3450 admin show lldp_med remote_ports 1 1 Command show lldp_med re...

Page 396: ...ed True Location Identification Location Subtype CoordinateBased Location Information Location Subtype CivicAddress Location Information Extended Power Via MDI Power Device Type PD Device Power Priori...

Page 397: ...d by the Auto Recovery mechanism to decide how long to check before determining that the loop status has gone The valid range is from 60 to 1000000 0 is a special value that specifies that the auto re...

Page 398: ...all ports in the system you may use the all parameter state Specify whether the LBD function should be enabled or disabled on the ports specified in the port list The default state is disabled enable...

Page 399: ...Switch Parameters None Restrictions Only Administrator and Operator level users can issue this command Example usage To disable the LBD function globally DGS 3450 admin disable loopdetect Command dis...

Page 400: ...094 Log State Enabled Function Version v4 05 DGS 3450 admin show loopdetect ports Purpose Used to display the LBD per port configuration Syntax show loopdetect ports portlist Description This command...

Page 401: ...h Description This command is used to configure the trap modes for LBD Parameters none There is no trap in the LBD function loop_detected Trap will only be sent when the loop condition is detected loo...

Page 402: ...t log state enable Command config loopdetect log state enable Success DGS 3450 admin config loopdetect vlan Purpose Used to configure the LBD state for the VLANs Syntax config loopdetect vlan vid_list...

Page 403: ...notification on the Switch Syntax enable mac_notification Description This command is used to enable MAC address notification without changing configuration Parameters None Restrictions Only Administr...

Page 404: ...he Switch s MAC address table notification global settings DGS 3450 admin config mac_notification interval 1 historysize 500 Command config mac_notification interval 1 historysize 500 Success DGS 3450...

Page 405: ...cation Command show mac_notification Global Mac Notification Settings State Enabled Interval 1 History Size 1 DGS 3450 admin show mac_notification ports Purpose Used to display the Switch s MAC addres...

Page 406: ...tion ports Port MAC Address Table Notification State 1 Disabled 2 Disabled 3 Disabled 4 Disabled 5 Disabled 6 Disabled 7 Disabled 8 Disabled 9 Disabled 10 Disabled 11 Disabled 12 Disabled 13 Disabled...

Page 407: ...ess_control guest_vlan vlan_name 32 guest_vlanid vlanid 1 4094 clear mac_based_access_control auth_state ports all portlist mac_addr macaddr create mac_based_access_control_local mac macaddr vlan vlan...

Page 408: ...nistrator and Operator level users can issue this command Example usage To disable the MAC based Access Control global state DGS 3450 admin disable mac_based_access_control Command disable mac_based_a...

Page 409: ...c_based_access_control method local Command config mac_based_access_control method local Success DGS 3450 admin config mac_based_access_control guest_vlan Purpose Used to configure the MAC based Acces...

Page 410: ...will be authorized individually and be capable of getting its own assigned VLAN Parameters ports Specifies a range of ports for configuring the MAC based Access Control function parameters state Spec...

Page 411: ...lock_time 120 Success DGS 3450 admin create mac_based_access_control guest_vlan Purpose Used to assign a static 802 1Q VLAN as a MAC based Access Control guest VLAN Syntax create mac_based_access_cont...

Page 412: ..._vlan default Success DGS 3450 admin clear mac_based_access_control auth_state Purpose Used to clear the clients authentication information by specific port s or MAC address Syntax clear mac_based_acc...

Page 413: ...his command Example usage To create one MAC based Access Control local database entry for MAC address 00 00 00 00 00 01 and specify that the host will be assigned to the default VLAN after the host ha...

Page 414: ...3450 admin To delete the MAC based Access Control local database entry for the VLAN name VLAN3 DGS 3450 admin delete mac_based_access_control_local vlan VLAN3 Command delete mac_based_access_control_l...

Page 415: ...d Access Control settings will be displayed portlist Displays the MAC based Access Control settings for a specific port or range of ports If no port list is specified the settings will be displayed fo...

Page 416: ...sed Access Control local database for the MAC address 00 00 00 00 00 01 DGS 3450 admin show mac_based_access_control_local mac 00 00 00 00 00 01 Command show mac_based_access_control_local mac 00 00 0...

Page 417: ...ion the VID field will be shown as until authentication completes Suppose that port 2 is in port based mode MAC 00 00 00 00 00 10 is the host which causes port 2 to pass authentication the MAC address...

Page 418: ...r of users per port is also limited This is specified by the config config mac_based_access_control ports max_users command Parameters value 1 4000 Specify to set the maximum number of authorized clie...

Page 419: ...to drop its operating speed to match that of the target port Syntax config mirror port port add delete source ports portlist rx tx both Description The config mirror command allows a range of ports to...

Page 420: ...vel users can issue this command Example usage To enable mirroring function DGS 3450 admin enable mirror Command enable mirror Success DGS 3450 admin disable mirror Purpose Used to disable mirror glob...

Page 421: ...Port Source Ports 1 Enabled 2 1 RX 1 1 TX 1 1 3 Enabled 3 5 RX 1 24 TX 1 24 DGS 3450 admin create mirror group_id Purpose Used to create a mirror group on the switch Syntax create mirror group_id val...

Page 422: ...source ports can t overlap Parameters group_id The mirror groups identify value The mirror groups identify value target_port The port that will receive the packets duplicated at the mirror port state...

Page 423: ...he debug buffer command to dump clear or upload the debug buffer to the TFTP server Syntax debug buffer utilization dump clear upload_toTFTP ipaddr path_filename 64 Description Dump clear or upload th...

Page 424: ...config ports portlist all event bpdu state_machine all state disable brief detail Description This command used to configure per port STP debug level on the specified ports Parameters debug flags See...

Page 425: ...ow the STP debug information Syntax debug stp show information Description This command used to display STP detailed information such as the hardware tables the STP state machine etc Parameters None R...

Page 426: ...Cost 0 Regional Root Bridge 32768 00 01 02 03 04 00 Internal Root Cost 0 Designated Bridge 32768 00 01 02 03 04 00 Designated Port 0 Message Age 0 Max Age 20 Forward Delay 15 Hello Time 2 Instance 1 R...

Page 427: ...ate Enabled Port Index Event flag BPDU Flag State Machine Flag 1 Detail Brief Disable 2 Detail Brief Disable 3 Detail Brief Disable 4 Detail Brief Disable 5 Detail Brief Disable 6 Detail Brief Disable...

Page 428: ...DU Length 0 Invalid Type 0 Invalid Timers 0 Success DGS 3450 admin debug stp clear counter Purpose Used to clear STP counters Syntax debug stp clear counter ports portlist all Description This command...

Page 429: ...le the STP debug state Restrictions Only Administrator and Operator level users can issue this command Example usage To configure the STP debug state to enable and then disable the STP debug state DGS...

Page 430: ...e 0 7 none replace_priority Description The create igmp_snooping command creates a multicast VLAN and implements relevant parameters as specified More than one multicast VLANs can be configured The ma...

Page 431: ...d Parameters vlan_name The name of the multicast VLAN to be configured Can be up to 32 characters member_port A member port or range of member ports to be added to the multicast VLAN The specified ran...

Page 432: ...group of the join packet cannot be classified into any multicast VLAN to which this port belongs then the join packet will be learned on the natural VLAN of the packet Parameters vlan_name The name o...

Page 433: ...name The name of the multicast VLAN to be deleted Restrictions Only Administrator and Operator level users can issue this command Example usage To delete an IGMP snooping multicast VLAN called v1 DGS...

Page 434: ...Command show igmp_snooping multicast_vlan IGMP Multicast VLAN Global State Disabled IGMP Multicast VLAN Forward Unmatched Disabled VLAN Name test VID 100 Member Untagged Ports 1 Tagged Member Ports So...

Page 435: ...config stp maxage value 6 40 maxhops value 1 40 hellotime value 1 10 forwarddelay value 4 30 txholdcount value 1 10 fbpdu enable 3 disable 2 lbd enable 1 disable 0 lbd_recover_timer value 0 value 60...

Page 436: ...ecover Time 60 NNI BPDU Address dot1ad DGS 3450 admin show stp instance Purpose Used to show each instance parameters settings Syntax show stp instance value 0 15 Description This command displays eac...

Page 437: ...ology Changes Count 0 DGS 3450 admin show stp ports Purpose Used to show the port information includes parameters setting and operational value Syntax show stp ports portlist Description This command...

Page 438: ...ge Parameters mst_config_id If two bridges has the same three elements in mst_config_id that means they are in the same MST region Restrictions None Example usage show stp mst_config_id DGS 3450 admin...

Page 439: ...3450 admin delete stp instance_id 2 Command delete stp instance_id 2 Success DGS 3450 admin config stp instance_id Purpose To map or remove the VLAN range of the specified MST instance for the existe...

Page 440: ...ied MST region revision_level The same given name with different revision level also represents for different MST region Restrictions Only Administrator and Operator level users can issue this command...

Page 441: ...g stp version mstp rstp stp Description If version is configured as stp or rstp all currently running MSTIs should be disabled For version is configured as mstp current design is enabled all available...

Page 442: ...ce_id 0 Syntax config stp maxage value 6 40 maxhops value 1 40 hellotime value 1 10 forwarddelay value 4 30 txholdcount value 1 10 fbpdu enable 3 disable 2 lbd enable 1 disable 0 lbd_recover_timer val...

Page 443: ...MSTP migrate To decide if the port can continue to transmit RSTP BPDUs edge To decide if this port is connected to a LAN or a Bridged LAN In auto mode the bridge will delay for a period to become edge...

Page 444: ...hed from the parameters of ports only at CIST level portlist One of CLI Value Type restrict the input value and format of the ports refer to section 1 4 Switch Numerical Ranges instance_id Instance 0...

Page 445: ...tiple servers can share the same IP address and MAC address The requests from clients will be forwarded to all servers but will only be processed by one of them The server can work in multicast mode I...

Page 446: ...t_fdb command is used to add or delete the forwarding ports for the specified NLB multicast FDB entry Parameters vlan_name Specify the VLAN of the NLB multicast FDB entry to be configured vlanid vlani...

Page 447: ...abit Ethernet Managed Switch CLI Manual 443 DGS 3450 admin show nlb fdb Command show nlb fdb MAC Address VLAN ID Egress Ports 03 bf 01 01 01 01 100 1 1 1 5 1 26 2 26 03 bf 01 01 01 01 1 1 1 1 5 1 26 2...

Page 448: ...o the system later If the password encryption is enabled the password will be in encrypted form Parameters None Restrictions Only Administrator users can issue this command Example usage To enable the...

Page 449: ...sername 15 Name for a operator user acount Restrictions Only Administrator users can issue this command Example usage To create the admin level user dlink DGS 3450 admin create account admin dlink Com...

Page 450: ...mand Example usage To configure the user password of dlink account DGS 3450 admin config account dlink Command config account dlink Enter a old password Enter a case sensitive new password Enter the n...

Page 451: ...dmin delete account Purpose Used to delete an existing account Syntax delete account username Description The delete account command deletes an existing account Parameters username Name of the user wh...

Page 452: ...rameters force_agree Specify to forcibly agree with the command Restrictions This command is only available in password recovery mode Example usage To reset the configuration DGS 3450 admin reset conf...

Page 453: ...the created account DGS 3450 admin reset account Command reset account Success reset password Purpose Used to reset the password for user account Syntax reset password username Description The reset...

Page 454: ...already created accounts Parameters None Restrictions This command is only available in password recovery mode Example usage To show the created account DGS 3450 admin show account Command show accou...

Page 455: ...t Control Message Protocol ICMP echo messages to a remote IP address The remote IP address will then echo or return the message This is used to confirm connectivity between the switch and the remote d...

Page 456: ...51 17 2 for 3 times the Switch s IP address is 10 51 17 8 DGS 3450 admin ping 10 51 17 2 times 3 source_ip 10 51 17 8 Command ping 10 51 17 2 times 3 source_ip 10 51 17 8 Reply from 10 51 17 2 time 10...

Page 457: ...000 1 bytes 200 time 10ms Reply from 3000 1 bytes 200 time 10ms Ping Statistics for 3000 1 Packets Sent 4 Received 4 Lost 0 DGS 3450 admin To send ICMP echo message with source IPV6 address 3000 11 to...

Page 458: ...Administrator and Operator level users can issue this command Example usage To disable the broadcast ping reply state DGS 3450 admin disable broadcast_ping_reply Command disable broadcast_ping_reply S...

Page 459: ...the new entry will be discarded Parameters portlist Specifies a range of ports to be configured all Specifies that all ports will be configured admin_state Specifies to enable disable the port securi...

Page 460: ...rs can issue this command Example usage To delete a port security entry DGS 3450 admin delete port_security_entry vlan_name default port 1 mac_address 00 01 30 10 2C C7 Command delete port_security_en...

Page 461: ...rtlist Specifies a range of ports to show their configuration Restrictions None Example usage To display the port security configuration DGS 3450 admin show port_security Command show port_security Po...

Page 462: ...imum setting is 37 W and the maximum setting is 370 W The actual range will depend on power supply capability power_disconnect_method Configure the disconnection method that will be used when the powe...

Page 463: ...have the same level of priority the port ID will be used to determine the priority The lower port ID has higher priority The setting of priority will affect the ordering of supplying power Whether the...

Page 464: ...escription Display the setting and actual values of the whole PoE system Parameters units Specified units that will be displayed If no parameter specified the system will display the status of all sup...

Page 465: ...volt Current mA Status 1 Enabled Critical 15400 Class 0 Time_range_is_32_bytes____ 0 0 0 0 OFF Interim state during line detection 2 Enabled Critical 4000 Class 1 0 8200 504 162 ON 802 3af compliant P...

Page 466: ...fferent ports The Protocol VLAN Group commands in the Command Line Interface CLI are listed along with the appropriate parameters in the following table Command Parameter create dot1v_protocol_group g...

Page 467: ...ue The user has three choices ethernet_2 Choose this parameter if you wish this protocol group to employ the Ethernet2 frame type This frame type is identified by the 16 bit 2 octet IEEE802 3 type fie...

Page 468: ...ol_group group_id 1 Success DGS 3450 admin show dot1v_protocol_group Purpose Used to display the configurations for a protocol VLAN group Syntax show dot1v_protocol_group group_id id Description This...

Page 469: ...tag to ingress untagged packets vlanid Identify the VID for which to add a tag to ingress untagged packets delete protocol_group Use this parameter to remove this protocol VLAN group s association wi...

Page 470: ...nual 466 DGS 3450 admin show port dot1v ports 1 6 1 8 Command show port dot1v ports 1 6 1 8 Port 1 6 Protocol Group ID VLAN Name 1 building1 Port 1 7 Protocol Group ID VLAN Name 1 building1 Port 1 8 P...

Page 471: ..._limit value 64 10000000 max_rate no_limit value 64 10000000 1 show per_queue bandwidth_control portlist config dscp trust portlist all state enable disable show dscp trust portlist config dscp map ds...

Page 472: ...1 1 1 10 tx_rate 100 The setting value is not an integer multiple of granularity 64 The closest value 64 is chosen Success DGS 3450 admin show bandwidth_control Purpose Used to display the port bandwi...

Page 473: ...pecified the system will set all ports class_id This specifies the n 1 hardware priority queues that the config scheduling command will apply to The four hardware priority queues are identified by a n...

Page 474: ...sue this command Example usage To configure the traffic scheduling mechanism for the CoS queue on port 1 1 DGS 3450 admin config scheduling_mechanism ports 1 1 strict Command config scheduling_mechani...

Page 475: ...and will display the global setting only Restrictions None Example usage To show the scheduling mechanism for all ports DGS 3450 admin show scheduling_mechanism 1 1 Command show scheduling_mechanism 1...

Page 476: ...Specifies the range of ports to be displayed If no portlist is specified this command will display the 802 1p user priority for all ports Restrictions Only Administrator and Operator level users can...

Page 477: ...a range of ports on the switch Restrictions Only Administrator and Operator level users can issue this command Example usage To configure an 802 1p default priority settings of 5 on all Switch ports...

Page 478: ...he Switch Note This feature only takes effect after a switch reboot Parameters None Restrictions Only Administrator and Operator level users can issue this command Example usage To enable HOL preventi...

Page 479: ...queue on specified ports min_rate specifies the minimum guaranteed bandwidth Specifying no limit for the minimum rate means that bandwidth will not be guaranteed max_rate limits the bandwidth When sp...

Page 480: ...ate inputted rate minimum granularity minimal granularity Restrictions Only Administrator and Operator level users can issue this command Example usage To configure the minimum rate to be 130 and the...

Page 481: ...nfiguration here all Specify that the command apply to all ports on the Switch state Enable or disable to trust DSCP By default DSCP trust is disabled Restrictions Only Administrator and Operator leve...

Page 482: ...ingresses to the port The remaining processing of the packet will base on the new DSCP By default the DSCP is mapped to the same DSCP These DSCP mapping will take effect at the same time when IP pack...

Page 483: ...of DSCP value to be mapped to a specific DSCP dscp dscp_list This specifies DSCP value that will be mapped Restrictions None Example usage To show DSCP map configuration DGS 3450 admin show dscp map...

Page 484: ...oad cfg_toRCP username username 15 ipaddr dest_file path_filename 64 rcp string 128 config_id int 1 2 include exclude begin filter_string 80 filter_string 80 filter_string 80 include exclude begin fil...

Page 485: ...tch will ask the user to input the Server IP address or remote user name while executing the RCP commands Parameters ipaddress The IP address or IPv6 address of the global RCP Server By default the se...

Page 486: ...ironment paths unit Specifies which unit on the stacking system If it is not specified it refers to the master unit all When all is specified the boot_up firmware image on all units will be updated im...

Page 487: ...XXX had Command download firmware_fromRCP rcp 10 1 1 1 DGS XXXX had Using RCP Server Username rcp_user Connecting to server Done Download firmware Done Do not power off Please wait programming flash D...

Page 488: ...XX had No RCP Server IP configured Would you like to specify a RCP Server IP N RCP copy file aborted Fail DGS 3450 admin To download DGS XXXX had from Global RCP Server and save with default file path...

Page 489: ...n To download a configuration using an RCP string DGS 3450 admin download cfg_fromRCP rcp rcp_user 172 18 212 106 home DGS XXXX cfg config_id 1 Command download cfg_fromRCP rcp rcp_user 172 18 212 106...

Page 490: ...cfg Command upload cfg_toRCP username rcp_user 172 18 212 104 dest_file home DGS XXXX cfg Connecting to server Done Upload Configuration Done DGS 3450 admin To upload the configuration from a multi co...

Page 491: ...oRCP Purpose Upload attack log file from the device to an RCP server Syntax upload attack_log_toRCP username username 15 ipaddr dest_file path_filename 64 rcp string 128 unit unit_id 1 12 Description...

Page 492: ...upload attack_log_toRCP username rcp_user 172 18 212 104 dest_file home DGS XXXX alog unit 2 Connecting to server Done Upload attack log Done DGS 3450 admin To upload the attack log from the device t...

Page 493: ...obally Syntax enable rspan Description This command controls the RSPAN function The purpose of the RSPAN function is to mirror packets to a remote switch A packet travels from the switch where the mon...

Page 494: ...te rspan vlan vlan_name vlan_name vlan_id value 1 4094 Description This command is used to create the RSPAN VLAN Up to 16 RSPAN VLANs can be created Parameters vlan_name Create the RSPAN VLAN by VLAN...

Page 495: ...urce mirror_group_id value 1 4 add delete ports portlist rx tx both Description This command configures the source setting for the RSPAN VLAN on the source switch Parameters vlan See below vlan_name S...

Page 496: ...r last switch to configure the output port of the RSPAN VLAN packets The redirect command makes sure that the RSPAN VLAN packets can egress to the redirect ports In addition to this redirect command t...

Page 497: ...Used to display RSPAN configuration Syntax show rspan vlan_name vlan_name vlan_id vlanid 1 4094 Description This command displays the RSPAN configuration Parameters vlan_name Specify the RSPAN VLAN by...

Page 498: ...Switch CLI Manual 494 DGS 3450 admin show rspan Command show rspan RSPAN Enabled RSPAN VLAN ID 1 Mirror Group ID 1 Target Port 1 1 Source Ports RX TX RSPAN VLAN ID 2 Redirect Ports 1 6 RSPAN VLAN ID...

Page 499: ...on the Switch password 16 Allows the specification of a case sensitive password tx_mode Determines how received RIP packets will be interpreted as RIP version V1 only V2 Only or V1 Compatible V1 and...

Page 500: ...witch Parameters None Restrictions Only Administrator and Operator level users can issue this command Example Usage To enable RIP DGS 3450 admin enable rip Command enable rip Success DGS 3450 admin di...

Page 501: ...ill display the global RIP configuration for the Switch Restrictions None Example usage To display RIP configuration DGS 3450 admin show rip Command show rip RIP Global State Disabled RIP Interface Se...

Page 502: ...flag debug ripng flag interface packet all rx tx route 1 all state enable disable Each command is listed in detail in the following sections enable ripng Purpose Used to enable RIPng globally for the...

Page 503: ...Enabled Method Split Horizon Update Time 30 seconds Expire Time 180 seconds Garbage Collection Time 120 seconds Interface State Metric int8 Disabled 1 int14 Disabled 1 Total Entries 2 DGS 3450 admin c...

Page 504: ...ue of an interface The RIPng route that was learned from the interface will add this value as a new route metric The default value is 1 state Enable or disable the RIPng state on the specific IP inter...

Page 505: ...ce State Change Packet Receiving Packet Sending Route DGS 3450 admin debug ripng flag Purpose Used to enable or disable the RIPng debug flag Syntax debug ripng flag interface packet all rx tx route 1...

Page 506: ...admin debug ripng flag interface state enable Command debug ripng flag interface state enable Success DGS 3450 admin After enabling RIPng on an interface the following information may appear when the...

Page 507: ...eiving all unnecessary broadcast IP packets even if the high CPU utilization is not caused by the high reception rate of broadcast IP packets b When fuzzy is chosen the Switch will minimize the IP pac...

Page 508: ...shut down trap_log enable disable Choose whether to enable or disable the sending of messages to the device s SNMP agent and switch log once the Safeguard Engine has been activated by a high CPU util...

Page 509: ...o display the safeguard engine status DGS 3450 admin show safeguard_engine Command show safeguard_engine Safeguard engine state Disabled Safeguard engine current status normal mode CPU utilization inf...

Page 510: ...ble download ssh client_pub_key ipaddr domain_name 255 src_file path_filename 64 upload ssh client_pub_key ipaddr domain_name 255 dest_file path_filename 64 Each command is listed in detail in the fol...

Page 511: ...gorithm Purpose Used to show ssh server algorithm Syntax show ssh algorithm Description The show ssh algorithm command show the ssh service algorithm Parameters None Restrictions None Example usage To...

Page 512: ...onfig user authentication method DGS 3450 admin config ssh authmode publickey enable Command config ssh authmode publickey enable Success DGS 3450 admin show ssh authmode Purpose Used to show user aut...

Page 513: ...r level users can issue this command Example usage To update user test authmode DGS 3450 admin config ssh user test publickey Command config ssh user test publickey Success DGS 3450 admin show ssh use...

Page 514: ...rator and Operator level users can issue this command Example usage To config ssh server maxsession is 3 DGS 3450 admin config ssh server maxsession 3 Command config ssh server maxsession 3 Success DG...

Page 515: ...ey authentication Syntax config ssh publickey bypass_login_screen state enable disable Description This command is used to enable or disable a secondary username password authentication after using SS...

Page 516: ...into a file The number of public keys can be up to 8 Parameters ipaddr Specifies the IPv4 address of the TFTP server domain_name 255 Specifies the domain name of the TFTP server This name can be up to...

Page 517: ...TFTP server It can be a relative path name or an absolute path name If path name is not specified it refers to the TFTP server path The maximum length is 64 characters Restrictions Only Administrator...

Page 518: ...the Data Encryption Standard DES to create the encrypted text 3 Hash Algorithm This part of the ciphersuite allows the user to choose a message digest function which will determine a Message Authentic...

Page 519: ...ange CBC Block Cipher 3DES_EDE encryption and the SHA Hash Algorithm DHE_DSS_with_3DES_EDE_CBC_SHA This ciphersuite combines the DSA Diffie Hellman key exchange CBC Block Cipher 3DES_EDE encryption an...

Page 520: ...mbines the RSA Export key exchange stream cipher RC4 encryption with 40 bit keys Restrictions Only Administrator and Operator level users can issue this command Example usage To disable the SSL status...

Page 521: ...3450 admin show ssl cachetimeout Command show ssl cachetimeout Cache timeout is 600 second s DGS 3450 admin show ssl Purpose Used to view the SSL status and the certificate file status on the Switch...

Page 522: ...rk It contains information on the owner keys for authentication and digital signatures Both the server and the client must have consistent certificate files for optimal use of the SSL function The Swi...

Page 523: ...To specify the certificate chain on the switch DGS 3450 admin config ssl certificate chain web_ca2 cer server crt Command config ssl certificate chain web_ca2 cer server crt Success DGS 3450 admin del...

Page 524: ...sec 1 2000000 infinity collectoraddress ipaddr ipv6addr collectorport udp_port_number 1 65535 maxdatagramsize value 300 1400 1 delete sflow analyzer_server value 1 4 enable sflow disable sflow show sf...

Page 525: ...eate a new one Parameters ports Specifies the list of ports to be configured rate The sampling rate for packet Rx sampling tx_rate The sampling rate for packet Tx sampling maxheadersize The maximum nu...

Page 526: ...ed If interval is not specified its default value is 0 Restrictions Only Administrator and Operator level users can issue this command Example usage Create sFlow counter poller which sample port 1 to...

Page 527: ...ates the analyzer_server You can specify more than one analyzer_server with the same IP address but with different UDP port numbers You can have up to four unique combinations of IP address and UDP po...

Page 528: ...eleased and stops sampling When the analyzer_server times out all of the flow_samplers and counter_pollers associated with this analyzer_server will be deleted collectoraddress The IP address of the s...

Page 529: ...n enable sflow Command enable sflow Success DGS 3450 admin disable sflow Purpose Used to disable the sFlow function Syntax disable sflow Description Disable the sFlow function Parameters None Restrict...

Page 530: ...e rate is 256 times the displayed rate value There are two types of rates The Configured Rate is configured by the user In order to limit the number of packets sent to the CPU when the rate of traffic...

Page 531: ...er information Syntax show sflow analyzer_server Description This command is used to show the sFlow analyzer_server information The Timeout field specifies the time configured by user The Current Coun...

Page 532: ...lete snmp user user_name 32 show snmp user create snmp group groupname 32 v1 v2c v3 noauth_nopriv auth_nopriv auth_priv read_view view_name 32 write_view view_name 32 notify_view view_name 32 delete s...

Page 533: ...s not accepted view A MIB view name read_only read_write Read and write or read only permission Allows the user using the above community string to have read only or read and write access to the switc...

Page 534: ...uth_password 8 16 sha auth_password 8 20 priv none des priv_password 8 16 by_key auth md5 auth_key 32 32 sha auth_key 40 40 priv none des priv_key 32 32 Description This command is used to create a ne...

Page 535: ...e a user from a SNMP group and deletes the associated group in SNMP group Note This is SNMPv3 command if it is used All SNMPv1 v2 commands are not necessary Parameters username32 The name of the user...

Page 536: ...t secure of the possible Specifies authentication of a packet noauth_nopriv Neither support packet authentication nor encrypting auth_nopriv Support packet authentication auth_priv Support packet auth...

Page 537: ...views Note This is SNMPv3 command if it is used All SNMPv1 v2 commands are not necessary Parameters None Restrictions None Example usage To show SNMP groups DGS 3450 admin show snmp groups Command sho...

Page 538: ...ictions Only Administrator and Operator level users can issue this command Example usage To create SNMP view view123 DGS 3450 admin create snmp view view123 1 3 6 view_type included Command create snm...

Page 539: ...oauth_nopriv auth_nopriv auth_priv auth_string 32 Description This command is used to create a recipient of an SNMP operation Note This is SNMPv3 command if it is used All SNMPv1 v2 commands are not n...

Page 540: ...e snmp host Purpose Used to delete a recipient of an SNMP trap operation Syntax delete snmp host ipaddr v6host ipv6addr Description This command is used to delete a recipient of an SNMP trap operation...

Page 541: ...3450 admin show snmp v6host Purpose Used to display the recipient for which the traps are targeted Syntax show snmp v6host ipv6addr Description This command is used to display the recipient for which...

Page 542: ...ne on the switch Syntax show snmp engineID Description This command is used to display the identification of the SNMP engine on the switch The default value is suggested in RFC2271 The very first bit...

Page 543: ...sking view CommunityView read_only Command create snmp community_masking view CommunityView read_only Enter a case sensitive community Enter the community again for confirmation Success DGS 3450 admin...

Page 544: ...show community_encryption Purpose Used to display the encryption state on SNMP community string Syntax show community_encryption Description This command is used to display the encryption state on SNM...

Page 545: ...7 8 9 10 11 12 show stack_information show stack_device config stacking force_master_role state enable disable Each command is listed in detail in the following sections config stacking_mode Purpose U...

Page 546: ...ity Specifies the priority assigned to the box with a lower number meaning a higher priority The range is 1 63 Restrictions Only Administrator and Operator level users can issue this command Example u...

Page 547: ...tor level users can issue this command Example usage To configure the Switch that has a current box ID of 1 to have an automatic ID assigned by the Switch DGS 3450 admin config box_id current_box_id 1...

Page 548: ...uto DGS 3450 Exist 32 00 22 B0 DE F0 46 1 00 B13 3 00 B10 A2 2 Not_Exist No 3 Not_Exist No 4 Not_Exist No 5 Not_Exist No 6 Not_Exist No 7 Not_Exist No 8 Not_Exist No 9 Not_Exist No 10 Not_Exist No 11...

Page 549: ...scription This command is used to ensure the master role is unchanged when new device add to current stacking topology If the state is enabled the master s priority will become zero after the stacking...

Page 550: ...tail in the following sections create mac_based_vlan Purpose Used to create a static mac based vlan entry Syntax create mac_based_vlan mac_address macaddr vlan vlan_name 32 vlanid vlanid 1 4094 Descri...

Page 551: ...ccess DGS 3450 admin show mac_based_vlan Purpose Used to show the static or dynamic MAC based VLAN entry Syntax show mac_based_vlan mac_address macaddr vlan vlan_name 32 Description User can use this...

Page 552: ...can use this command to create a subnet VLAN entry A subnet VLAN entry is an IP subnet based VLAN classification rule If an untagged or priority tagged IP packet is received on a port its source IP a...

Page 553: ...vlan entries that associated with this vlan will be deleted vidlist Specifies a list of VLANs by VLAN ID all If specify all all subnet vlan entries will be deleted Restrictions Only Administrator and...

Page 554: ...subnet_vlan ipv6network FE80 250 BAFF 64 IP Address Subnet Mask VLAN Priority FE80 250 BAFF 64 10 1 DGS 3450 admin This example shows how to show all subnet VLAN entries DGS 3450 admin show subnet_vl...

Page 555: ...rs can issue this command Example usage This example shows how to configure subnet VLAN classification precedence on port 1 DGS 3450 admin config vlan_precedence 1 subnet_vlan Command config vlan_prec...

Page 556: ...ts portlist all medium_type fiber copper speed auto capability_advertised 10_half 10_full 100_half 100_full 1000_full 10_half 10_full 100_half 100_full 1000_full master slave auto_negotiation restart_...

Page 557: ...d to duplex speed and physical layer type The master setting will also determine the master and slave relationship between the two connected physical layers This relationship is necessary for establis...

Page 558: ...ion err_disabled auto_negotiation details media_type Description This command is used to display the current configuration of a range of ports Parameters portlist Specifies a port or range of ports to...

Page 559: ...Link Down Enabled 1 16 Enabled Auto Disabled Link Down Enabled 1 17 Enabled Auto Disabled Link Down Enabled 1 18 Enabled Auto Disabled Link Down Enabled 1 19 Enabled Auto Disabled Link Down Enabled C...

Page 560: ...otiation Port 1 1 Auto Negotiation Enabled Capability Bits 10M_Half 10M_Full 100M_Half 100M_Full 1000M_Full Capbility Advertised Bits 10M_Half 10M_Full 100M_Half 100M_Full 1000M_Full Capbility Receive...

Page 561: ...if config trap source_ipif ipif_name ipaddr ipv6addr none show trap source_ipif Each command is listed in detail in the following sections config syslog source_ipif Purpose Configure syslog source IP...

Page 562: ...ose Configure trap source IP interface Syntax config trap source_ipif ipif_name ipaddr ipv6addr none Description This command is used to configure trap source IP interface Parameters ipif_name IP inte...

Page 563: ...pif Purpose Show trap source IP interface Syntax show trap source_ipif Description This command is used to display the trap source IP interface Parameters None Restrictions None Example usage Show tra...

Page 564: ...ormational debug all level 0 7 facility local0 local1 local2 local3 local4 local5 local6 local7 udp_port udp_port_number ipaddress ipaddr state enable disable delete syslog host index 1 4 all show sys...

Page 565: ...lert Severity level 1 critical Severity level 2 error Severity level 3 warning Severity level 4 notice Severity level 5 informational Severity level 6 debug Severity level 7 level_list Specifies a lis...

Page 566: ...log messages Syntax disable syslog Description This command disables the sending of syslog messages Parameters None Restrictions Only Administrator and Operator level users can issue this command Exam...

Page 567: ...be prompted to the user when configuring syslog hosts with all option and just assigning one IP address to those hosts This configuration will fail When the specified IP address already exists the pr...

Page 568: ...el for a specific host messages which are at that severity level or higher will be reported to that host When the IP address is invalid the prompt message Invalid IP address will be displayed and this...

Page 569: ...1 ipaddress 10 90 90 1 severity all facility local0 Success DGS 3450 admin delete syslog host Purpose Used to delete the syslog host s Syntax delete syslog host index 1 4 all Description This command...

Page 570: ...514 Status Disabled Total Entries 3 DGS 3450 admin config log_save_timing Purpose Used to configure the method for saving the log Syntax config log_save_timing time_interval min 1 65535 on_demand log_...

Page 571: ...messages driven by modules such as DOS and the IP MAC port binding module This type of log message may generate a large amount of messages and quickly cause the system to run out of system log storag...

Page 572: ...Command clear attack_log Success DGS 3450 admin upload attack_log_toTFTP Purpose Used to upload the attack log on a unit Syntax upload attack_log_toTFTP ipaddr ipv6addr domain_name 255 dest_file path_...

Page 573: ...ch strategy will depend on the server system For some systems it will search the current user working directory first and then search the environment paths dest_file Specify the destination file here...

Page 574: ...ion of technique s support Syntax show tech_support Description This command is especially used by the technical support personnel to dump the device overall operation information The information is p...

Page 575: ...the information of technique s support Syntax upload tech_support_toTFTP ipaddr path_filename 64 Description The upload tech_support_toTFTP command is used to upload the information of technique s su...

Page 576: ...rnet Managed Switch CLI Manual 572 DGS 3450 admin upload tech_support_to_TFTP 10 0 0 66 tech_report txt Command upload tech_support_to_TFTP 10 0 0 66 tech_report txt Connecting to server Done Upload t...

Page 577: ...eters specified by the command will only be used for the establishment of this specific session They will not affect the establishment of other sessions Parameters ipaddr The IP address of the Telnet...

Page 578: ...t unit_id 1 12 Each command is listed in detail in the following sections download firmware_fromTFTP Purpose Used to download the firmware image from TFTP server Syntax download firmware_fromTFTP ipad...

Page 579: ...upport one configuration file since the download of a configuration will automatically apply the setting to the system If increment is specified then the existing configuration will not be cleared bef...

Page 580: ...121 dest_file C test Connecting to server Done Upload Configuration Done DGS 3450 admin upload log_toTFTP Purpose Used to upload a log file from device to TFTP server This command is required to be su...

Page 581: ...TFTP server domain_name The domain name of the TFTP server dest_file Used to identify the parameter path_filename path_filename Specifies the path name on the TFTP server to hold the attack log unit...

Page 582: ...e_time end_time hh mm offset 30 60 90 120 show time config sntp ipv6server primary ipv6addr secondary ipv6addr Each command is listed in detail in the following sections config sntp Purpose Used to s...

Page 583: ...play SNTP configuration information DGS 3450 admin show sntp Command show sntp Current Time Source System Clock SNTP Disabled SNTP Primary Server 10 1 1 1 SNTP Secondary Server 10 1 1 2 SNTP Poll Inte...

Page 584: ...Description This will configure the system time and date settings These will be overridden if SNTP is configured and enabled Parameters date Express the date using two numerical characters for the da...

Page 585: ...epeating s_week start_week 1 4 last s_day start_day sun sat s_mth start_mth 1 12 s_time start_time hh mm e_week end_week 1 4 last e_day end_day sun sat e_mth end_mth 1 12 e_time end_time hh mm offset...

Page 586: ...begin DST expressed as a number e_mth Configure the month in which DST ends end_mth 1 12 The month to end DST expressed as a number s_time Configure the time of day to begin DST start_time hh mm Time...

Page 587: ...last Sun 00 00 Annual From 29 Apr 00 00 To 12 Oct 00 00 DGS 3450 admin config sntp ipv6server Purpose Used to configure the IPv6 server for the SNTP function Syntax config sntp ipv6server primary ipv6...

Page 588: ...d in conjunction with an access profile rule to determine a period of time when an access profile and an associated rule are to be enabled on the Switch Remember this time range can only be applied to...

Page 589: ...30 00 end_time 21 40 00 weekdays mon fri Success DGS 3450 admin show time_range Purpose To view the current configurations of the time range set on the Switch Syntax show time_range Description This...

Page 590: ...r of hops is exceeded At each TTL setting one probe packet is launched the number can be changed by specifying the parameter probe and traceroute prints a line showing the round trip time and the addr...

Page 591: ...urned indicating that the packet reached the host or the maximum number of hops is exceeded At each TTL setting one probe are launched the number can be changed by specifying the parameter probe and t...

Page 592: ...1345 142 11 10 ms 1345 142 11 10 ms 2011 14 100 10 ms 2011 14 100 Request timed out 10 ms 3000 1 Trace complete DGS 3450 admin To trace the IPv6 routed path between the switch and 1210 100 11 with po...

Page 593: ...dropped If the port remains in shutdown status for a configurable period the count down value the port enters shutdown forever status The port link is down and remains disabled until either the confi...

Page 594: ...tion parameter Default is 0 minutes 0 disables the forever state meaning that the port will not enter the shut down forever state disable Specifies that the countdown is disabled The port will directl...

Page 595: ...er 1 1 Enabled Disabled Disabled Shutdown 5 10 2 1 Enabled Disabled Disabled Shutdown 5 10 3 1 Enabled Disabled Disabled Shutdown 5 10 4 1 Enabled Disabled Disabled Shutdown 5 10 5 1 Enabled Disabled...

Page 596: ...control recover for any or all ports Syntax config traffic control_recover portlist all Description Configuring a port for traffic control recover will require an administrator to restart the specifie...

Page 597: ...ts that will be configured for traffic segmentation The beginning and end of the port list range are separated by a dash Non contiguous portlist entries are separated by a comma ex 1 3 7 9 forward_lis...

Page 598: ...end of the port list range are separated by a dash Non contiguous portlist entries are separated by a comma ex 1 3 7 9 Restrictions The port lists for segmentation and the forward list must be on the...

Page 599: ...must be members of the Management VLAN If no IP addresses are specified then there is nothing to prevent any IP address from accessing the switch provided the user knows the Username and Password Whe...

Page 600: ...delete trusted_host 10 48 74 121 Success DGS 3450 admin show trusted_host Purpose Used to display a list of trusted hosts entered on the switch using the create trusted_host command above Syntax show...

Page 601: ...eate iproute default network_address ipaddr metric 1 65535 primary backup Description Use this command to create an IP static route Selecting primary or backup means the newly created route is a float...

Page 602: ...trictions Only Administrator and Operator level users can issue this command Example usage To delete an IP static route DGS 3450 admin delete iproute 10 48 74 121 255 0 0 0 10 1 1 254 Command delete i...

Page 603: ...ow iproute hardware Command show iproute hardware Routing Table IP Address Netmask Gateway Interface 0 0 0 0 0 10 1 1 11 ip1 10 1 1 0 24 0 0 0 0 System 100 1 1 0 24 10 1 1 11 ip1 192 168 1 0 24 10 1 1...

Page 604: ...how route preference Command show route preference Route Preference Settings Protocol Preference RIP 100 Static 60 Default 999 Local 0 DGS 3450 admin create route redistribute dst rip Purpose Used to...

Page 605: ...rator level users can issue this command Example usage To delete route redistribution settings DGS 3450 admin delete route redistribute dst rip src local Command delete route redistribute dst rip src...

Page 606: ...ute redistributions settings Parameters dst Specify the target protocol rip Display the redistribution with the target protocol RIP src Specify the source protocol static Display the redistribution wi...

Page 607: ...tions show utilization Purpose Used to display real time port utilization statistics Syntax show utilization cpu ports dram unit unitid flash unit unitid Description The show utilization command displ...

Page 608: ...11 0 0 0 2 6 0 0 0 1 12 0 0 0 2 7 0 30 1 1 13 0 0 0 2 8 0 0 0 1 14 0 0 0 2 9 30 0 1 1 15 0 0 0 2 10 0 0 0 1 16 0 0 0 2 11 0 0 0 1 17 0 0 0 2 12 0 0 0 1 18 0 0 0 2 13 0 0 0 1 19 0 0 0 2 14 0 0 0 1 20 0...

Page 609: ...show utilization dram DRAM Utilization Total DRAM 262 144 KB Used DRAM 212 568 KB Utilization 81 Success DGS 3450 admin To display FLASH utilization DGS 3450 admin show utilization flash Command show...

Page 610: ...show voice_vlan lldp_med voice_device Each command is listed in detail in the following sections enable voice_vlan Purpose Used to enable the global voice VLAN function on a switch Syntax enable voic...

Page 611: ...voice VLAN priority Syntax config voice_vlan priority int 0 7 Description The voice VLAN priority will be the priority associated with the voice VLAN traffic to distinguish the QoS of the voice traffi...

Page 612: ...e or disable the voice VLAN function on ports or mode per port Syntax config voice_vlan ports portlist all state enable disable mode auto manual Description This command is used to enable or disable t...

Page 613: ...d Example usage To enable the voice VLAN log state DGS 3450 admin config voice_vlan log state enable Command config voice_vlan log state enable Success DGS 3450 admin config voice_vlan aging_time Purp...

Page 614: ...ion Parameters None Restrictions None Example usage To display voice VLAN information DGS 3450 admin show voice_vlan Command show voice_vlan Voice VLAN State Enabled VLAN ID 4094 VLAN Name v2 Priority...

Page 615: ...port voice VLAN information Syntax show voice_vlan ports portlist Description This command is used to display port voice VLAN information Parameters portlist Specify a range of ports to display Restri...

Page 616: ...s used to display the voice devices that are discovered by LLDP MED Parameters None Restrictions None Example usage To display the voice devices that were discovered by LLDP MED DGS 3450 admin show vo...

Page 617: ...tp https create wac user username 15 vlan vlan_name 32 vlanid vlanid 1 4094 delete wac user username 15 all_users config wac user username 15 vlan vlan_name 32 vlanid vlanid 1 4094 clear_vlan config w...

Page 618: ...config wac ports command allows you to configure port state of WAC The default value of aging time is 1440 minutes The default value of idle time is infinite The default value of block_time is 60 sec...

Page 619: ...thentication will be done via the RADIUS server Restrictions Only Administrator and Operator level users can issue this command Example usage To configure WAC auth method DGS 3450 admin config wac met...

Page 620: ...redirect URL DGS 3450 admin config wac clear_default_redirpath Success DGS 3450 admin config wac virtual_ip Purpose Used to config the virtual IP address for WAC Syntax config wac virtual_ip ipaddr ip...

Page 621: ...range of port number is 1 65535 http To specify the WAC runs HTTP protocol on this TCP port https To specify the WAC runs HTTPS protocol on this TCP port Restrictions Only Administrator and Operator...

Page 622: ...Example usage To delete a WAC local user DGS 3450 admin delete wac user 123 Command delete wac user 123 Success DGS 3450 admin config wac user Purpose Used to configure WAC local user Syntax config wa...

Page 623: ...enable the authorized data assigned by the RADUIS server will be accepted if the global authorization network is enabled The default state is enabled local If specified to enable the authorized data a...

Page 624: ...iption This command allows the user to display the port level setting Parameters ports A range of member ports to show the status Restrictions None Example usage To show WAC port state and other param...

Page 625: ...ticated 4004 3 Infinite 40 1 00 00 00 00 00 02 1 Authenticated 1234 Infinite 50 1 00 00 00 00 00 03 1 Blocked 60 1 00 00 00 00 00 04 1 Authenticating 10 2 00 00 00 00 00 10 P 1 Authenticated 1234 2 14...

Page 626: ...authenticating users for a port Restrictions Only Administrator and Operator level users can issue this command Example usage To delete WAC host DGS 3450 admin clear wac auth_state ports 1 5 Command c...

Page 627: ...gation Control IEEE 802 3x Full duplex Flow Control IEEE 802 1u Fast Ethernet IEEE 802 3af Power over Ethernet Protocols CSMA CD Data Transfer Rates Ethernet Fast Ethernet Gigabit Ethernet Fiber Optic...

Page 628: ...Humidity 5 95 non condensing Dimensions 441mm x 389mm x 44mm Weight DGS 3400 Series DGS 3426 5 42 kg DGS 3426P 6 kg DGS 3427 5 51 kg DGS 3450 5 74 kg Module Inserts DEM 410CX 0 16 kg DEM 410X 0 18 kg...

Page 629: ...to attach a terminal or PC with terminal emulation to the console port of the switch 2 Power on the Switch After the runtime image is loaded to 100 the Switch will allow 2 seconds for the user to pre...

Reviews:

No comments

Related manuals for xStack DGS-3400 Series

GE GuardSwitch 300 Series Quick Start Manual preview
GuardSwitch 300 Series
Brand: GE Pages: 4
B&B Electronics 485DSS Manual preview
485DSS
Brand: B&B Electronics Pages: 26
B&B Electronics 232XS5 Instruction Manual preview
232XS5
Brand: B&B Electronics Pages: 15
B&B Electronics 232BSS4 Instruction Manual preview
232BSS4
Brand: B&B Electronics Pages: 45
i3 International S244 Quick Start Manual preview
S244
Brand: i3 International Pages: 2
H3C s5820x series Quick Start Manual preview
s5820x series
Brand: H3C Pages: 32
H3C S5830V2 series Mce Command Reference preview
S5830V2 series
Brand: H3C Pages: 22
H3C s5820x series Command Reference Manual preview
s5820x series
Brand: H3C Pages: 488
H3C S10500X Series Installation, Quick Start preview
S10500X Series
Brand: H3C Pages: 3
H3C S7500 Series Manual preview
S7500 Series
Brand: H3C Pages: 8
H3C S7500 Series Command Manual preview
S7500 Series
Brand: H3C Pages: 25
H3C S12500 Series Manual preview
S12500 Series
Brand: H3C Pages: 31
H3C S12500 Series Interface Configuration Manual preview
S12500 Series
Brand: H3C Pages: 23
H3C S12500 Series Software Upgrade preview
S12500 Series
Brand: H3C Pages: 24
H3C S12500 Series Installation Instructions Manual preview
S12500 Series
Brand: H3C Pages: 126
H3C S12500-X Configuration Manual preview
S12500-X
Brand: H3C Pages: 42
H3C S6300 Series Troubleshooting Manual preview
S6300 Series
Brand: H3C Pages: 32
H3C S7500 Series Installation Manual preview
S7500 Series
Brand: H3C Pages: 13

Brands by name

Popular brands

Load more brands