manualshive.com logo in svg

D-Link xStack DGS-3612G series, Instruction Manual

The D-Link xStack DGS-3612G series is a high-performance switch designed for seamless network management. With advanced specifications and reliable performance, this product allows for efficient data transmission. Available for free download, the user manual can be found on our website, ensuring seamless setup and operation.

Share
Download
background image

xStack DGS-3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual

 

create cpu access_profile 

 
 

 

 

 

 

• 

destination_mac <macmask> - 

Specifies to examine the destination MAC address mask. 

 
 

 
 

 
 

 
 
 
 
 
 
 
 
 
 
 
 
 

 

• 

802.1p

 - Specifies that the Switch will examine the 802.1p priority value in the frame’s 

header. 

• 

ethernet_type 

 Specifies that the Switch will examine the Ethernet type value in each 

frame’s header. 

ip 

 Specifies that the Switch will examine the IP address in each frame’s header. 

• 

vlan

 

 Specifies a VLAN mask.  

• 

source_ip_mask <netmask>

 

 Specifies an IP address mask for the source IP address. 

• 

destination_ip_mask <netmask>

 

 Specifies an IP address mask for the destination IP 

address. 

• 

dscp

 

 Specifies that the Switch will examine the DiffServ Code Point (DSCP) field in each 

frame’s header. 

• 

icmp

 

 Specifies that the Switch will examine the Internet Control Message Protocol (ICMP) 

field in each frame’s header. 

• 

type

 

 Specifies that the Switch will examine each frame’s ICMP Type field. 

• 

code

  

 Specifies that the Switch will examine each frame’s ICMP Code field.  

• 

igmp

 

 Specifies that the Switch will examine each frame’s Internet Group Management 

Protocol (IGMP) field. 

• 

    

type

 

 Specifies that the Switch will examine each frame’s IGMP Type field.  

• 

tcp

 

 Specifies that the Switch will examine each frames Transport Control Protocol (TCP) 

field. 

• 

src_port_mask <hex 0x0-0xffff>

 

 Specifies a TCP port mask for the source port. 

• 

dst_port_mask <hex 0x0-0xffff>

 

 Specifies a TCP port mask for the destination port. 

• 

offset_48-63

 - Enter a value in hex form to mask the packet from byte 48 to byte 63. 

• 

offset_64-79

 - Enter a value in hex form to mask the packet from byte 64 to byte 79. 

Restrictions Only 

administrator-level users can issue this command.

 

Example usage: 

To create a CPU access profile: 

• 

flag_mask [all | {urg | ack | psh | rst | syn | fin}] 

 – Enter the appropriate flag_mask 

parameter. All incoming packets have TCP port numbers contained in them as the 
forwarding criterion. These numbers have flag bits associated with them which are parts of 
a packet that determine what to do with the packet. The user may deny packets by denying 
certain flag bits within the packets. The user may choose between 

all

urg

 (urgent), 

ack 

(acknowledgement), 

psh

 (push), 

rst 

(reset), 

syn

 (synchronize) and 

fin

 (finish). 

• 

udp

 

 Specifies that the Switch will examine each frame’s User Datagram Protocol (UDP) 

field. 

• 

src_port_mask <hex 0x0-0xffff> 

 Specifies a UDP port mask for the source port. 

• 

dst_port_mask <hex 0x0-0xffff>

 

 Specifies a UDP port mask for the destination port. 

• 

protocol_id_mask <hex 0x0-0xff>  

 Specifies that the Switch will examine each frame’s 

Protocol ID field using the hex form entered here. 

• 

user_define_mask <hex 0x0-0xffffffff> 

 Specifies that the rule applies to the IP protocol 

ID and the mask options behind the IP header. 

• 

packet_content_mask 

– Specifies that the Switch will mask the packet header beginning 

with the offset value specified as follows: 

• 

offset_0-15 

- Enter a value in hex form to mask the packet from byte 0 to byte 15. 

• 

offset_16-31 

- Enter a value in hex form to mask the packet from byte 16 to byte 31. 

• 

offset_32-47

 - Enter a value in hex form to mask the packet from byte 32 to byte 47. 

 

188

Summary of Contents for xStack DGS-3612G series

Page 1: ...ProductModel DGS 3612G Layer3GigabitEthernetManagedSwitch Release1 CLI Manual ...

Page 2: ...IRRORING COMMANDS 103 VLAN COMMANDS 106 LINK AGGREGATION COMMANDS 116 IP MAC BINDING 121 IP COMMANDS INCLUDING IP MULTINETTING 129 IGMP COMMANDS INCLUDING IGMP V3 133 IGMP SNOOPING COMMANDS 136 MLD SNOOPING COMMANDS 144 DHCP RELAY 152 LIMITED IP MULTICAST ADDRESS 158 802 1X COMMANDS 160 ACCESS CONTROL LIST ACL COMMANDS 177 TIME RANGE COMMANDS 193 TIME AND SNTP COMMANDS 195 POLICY ROUTE COMMANDS 20...

Page 3: ...RATION COMMANDS 251 ROUTE PREFERENCE COMMANDS 268 MAC NOTIFICATION COMMANDS 271 ACCESS AUTHENTICATION CONTROL COMMANDS 275 SSH COMMANDS 295 SSL COMMANDS 302 JUMBO FRAME COMMANDS 307 D LINK SINGLE IP MANAGEMENT COMMANDS 309 COMMAND HISTORY LIST 319 TECHNICAL SPECIFICATIONS 322 ...

Page 4: ... s serial port s default settings are as follows 115200 baud no parity 8 data bits 1 stop bit A computer running a terminal emulation program capable of emulating a VT 100 terminal and a serial port configured as above is then connected to the Switch s serial port via an RS 232 DB 9 cable With the serial port properly connected to a management computer the following screen should be visible If thi...

Page 5: ...ess to be assigned to the IP interface named System and the y s represent the corresponding subnet mask 2 Alternatively you can enter config ipif System ipaddress xxx xxx xxx xxx z Where the x s represent the IP address to be assigned to the IP interface named System and the z represents the corresponding number of subnets in CIDR notation The IP interface named System on the Switch can be assigne...

Page 6: ...st configuration saved to NV RAM will be loaded Connecting to the Switch The console interface is used by connecting the Switch to a VT100 compatible terminal or a computer running an ordinary terminal emulator program e g the HyperTerminal program included with the Windows operating system using an RS 232C serial cable Your terminal parameters will need to be set to VT 100 compatible 115200 baud ...

Page 7: ...meter username The CLI will then prompt to enter the username with the message Next possible completions Every command in the CLI has this feature and complex commands have several layers of parameter prompting In addition after typing any given command plus one space all of the next possible sub commands can be seen in sequential order by repeatedly pressing the Tab key To re enter the previous c...

Page 8: ...he help prompts are the same as presented in this manual angle brackets indicate a numerical value or character string braces indicate optional parameters or a choice of parameters and brackets indicate required parameters If a command is entered that is unrecognized by the CLI the top level commands will be displayed under the Available commands prompt Figure 2 5 Available Commands The top level ...

Page 9: ...k DGS 3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Figure 2 6 Next possible completions Show Command In the above example all of the possible next parameters for the show command are displayed 6 ...

Page 10: ...e ipif_name space a VLAN name in the vlan_name 32 space and the network address including the netmask in the network_address ip_addr netmask space Do not type the angle brackets Example Command create ipif Engineering 10 24 22 5 255 0 0 0 Design square brackets Purpose Encloses a required value or set of required arguments One value or argument can be specified Syntax create account admin user use...

Page 11: ...ight Left Arrow Moves the cursor to the left Right Arrow Moves the cursor to the right Up Arrow Repeats the previously entered command Each time the up arrow is pressed the command previous to that displayed appears This way it is possible to review the command history for the current session Use the down arrow to progress sequentially forward through the command history list Down Arrow The down a...

Page 12: ..._number 1 65535 disable web save reboot reset config system login logout show device status config greeting_message default show greeting_message Each command is listed in detail in the following sections create account Purpose Used to create user accounts Syntax create admin user username 15 Description The create account command is used to create user accounts that consist of a username of 1 to ...

Page 13: ...rname Enter a name between 1 and 15 alphanumeric characters to define the administrator account to configure here Restrictions Only Administrator level users can issue this command Example usage To configure the user password of dlink account DGS 3612G 4 config account dlink Command config account dlink Enter a old password Enter a case sensitive new password Enter the new password again for confi...

Page 14: ... Example usage To delete the user account System DGS 3612G 4 delete account System Command delete account System Are you sure to delete the last administrator account y n y Success DGS 3612G 4 show session Purpose Used to display a list of currently logged in users Syntax show session Description This command displays a list of all the users that are logged in at the time the command is issued Par...

Page 15: ...44 77 Manual VLAN Name default Subnet Mask 255 0 0 0 Default Gateway 0 0 0 0 Boot PROM Version Build 1 10 B06 Firmware Version Build 1 00 B62 Hardware Version System Name System Location System Contact Spanning Tree Disabled GVRP Disabled IGMP Snooping Disabled MLD Snooping Disabled RIP Disabled DVMRP Disabled PIM Disabled OSPF Disabled TELNET Enabled TCP 23 WEB Enabled TCP 80 RMON Disabled SSL st...

Page 16: ...baud rate and auto logout settings Parameters baud_rate 9600 19200 38400 115200 The serial bit rate that will be used to communicate with the management host There are four options 9600 19200 38400 115200 auto_logout Use this parameter to set the time the Switch will automatically logout of the console connection using the following choices never No time limit on the length of time the console can...

Page 17: ... this command Example usage To enable pausing of the screen display when a command output reaches the end of the page DGS 3612G 4 enable clipaging Command enable clipaging Success DGS 3612G 4 disable clipaging Purpose Used to disable the pausing of the console screen scrolling at the end of each page when a command displays more than one screen of information Syntax disable clipaging Description T...

Page 18: ...s DGS 3612G 4 disable telnet Purpose Used to disable the Telnet protocol on the Switch Syntax disable telnet Description This command is used to disable the Telnet protocol on the Switch Parameters None Restrictions Only administrator level users can issue this command Example usage To disable the Telnet protocol on the Switch DGS 3612G 4 disable telnet Command disable telnet Success DGS 3612G 4 e...

Page 19: ...his command Example usage To disable HTTP DGS 3612G 4 disable web Command disable web Success DGS 3612G 4 save Purpose Used to save changes in the Switch s configuration to non volatile RAM Syntax save Description This command is used to enter the current switch configuration into non volatile RAM The saved switch configuration will be loaded into the Switch s memory each time the Switch is restar...

Page 20: ...y default settings are restored on the Switch including the IP address user accounts and the switch history log The Switch will not save or reboot system If the keyword system is specified all of the factory default settings are restored on the Switch The Switch will save and reboot after the settings are changed to default Rebooting will clear all entries in the Forwarding Data Base If no paramet...

Page 21: ...ax logout Description This command terminates the current user s session on the Switch s console Parameters None Restrictions None Example usage To terminate the current user s console session DGS 3612G 4 logout show device_status Purpose Used to display the current status of the hardware of the Switch Syntax show device_status Description This command displays the current status of the Switch s p...

Page 22: ... command prompt yet the reset system command will return the command prompt to its original factory default setting Only administrator level users can issue this command Example usage To configure the command prompt DGS 3612G 4 config command prompt Trinity Command config command prompt Trinity Success Trinity config greeting_message Purpose Used to configure the greeting message or banner for the...

Page 23: ... Erase all setting Ctrl L Reload original setting Success DGS 3612G 4 show greeting_message Purpose Used to view the currently configured greeting message configured on the Switch Syntax show greeting_message Description This command is used to view the currently configured greeting message on the Switch Parameters None Restrictions None Example usage To view the currently configured greeting mess...

Page 24: ...e following auto Enables auto negotiation for the specified range of ports 10 100 1000 Configures the speed in Mbps for the specified range of ports Gigabit ports are statically set to 1000 and cannot be set to slower speeds half full Configures the specified range of ports as either full duplex or half duplex master slave The master setting 1000M Full_M will allow the port to advertise capabiliti...

Page 25: ...connected due to an error on the port such as a Loopback Detection Restrictions None Example usage To display the configuration of all ports on a standalone switch DGS 3612G 4 show ports Command show ports Port Port Settings Connection Address State Speed Duplex FlowCtrl Speed Duplex FlowCtrl Learning 1 Enabled Auto Enabled Link Down Enabled 2 Enabled Auto Enabled Link Down Enabled 3 Enabled Auto ...

Page 26: ...own Enabled Description 4 Enabled Auto Disabled Link Down Enabled Description 5 Enabled Auto Disabled Link Down Enabled Description 6 Enabled Auto Disabled Link Down Enabled Description 7 Enabled Auto Disabled Link Down Enabled Description 8 Enabled Auto Disabled Link Down Enabled Description CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh To display the Error Disabled ports DGS 3612...

Page 27: ...16 lock_address_mode Permanent DeleteOnTimeout DeleteOnReset Description This command allows for the configuration of the port security feature Only the ports listed in the portlist are affected Parameters portlist Specifies a port or range of ports to be configured all Configure port security for all ports on the Switch admin_state enable disable Enable or disable port security for the listed por...

Page 28: ...viously entered MAC address mac_address macaddr Enter the corresponding MAC address previously learned by the port which the user wishes to delete Restrictions Only administrator level users can issue this command Example usage To delete a port security entry DGS 3612G 4 delete port_security_entry_vlan_name default port 6 mac_address 00 01 30 10 2C C7 Command delete port_security_entry_vlan_name d...

Page 29: ...rts The information displayed includes port security admin state maximum number of learning address and lock mode Parameters portlist Specifies a port or range of ports to be viewed Restrictions None Example usage To display the port security configuration DGS 3612G 4 show port_security ports 1 5 Command show port_security ports 1 5 Port Admin State Max Learning Addr Lock Address Mode 1 Disabled 1...

Page 30: ...AC SHA algorithms AuthNoPriv v3 MD5 DES or SHA DES Authentication is based on the HMAC MD5 or HMAC SHA algorithms AuthPriv DES 56 bit encryption is added based on the CBC DES DES 56 standard The SNMP commands in the Command Line Interface CLI are listed along with the appropriate parameters in the following table Command Parameters create snmp user user_name 32 groupname 32 encrypted by_password a...

Page 31: ... priv none des priv_key 32 32 Description The create snmp user command creates a new SNMP user and adds the user to an SNMP group that is also created by this command SNMP ensures Message integrity Ensures that packets have not been tampered with during transit Authentication Determines if an SNMP message is from a valid source Encryption Scrambles the contents of messages to prevent it from being...

Page 32: ...meric sting of exactly 40 characters in hex form to define the key that will be used to authorize the agent to receive packets for the host priv Adding the priv privacy parameter will allow for encryption in addition to the authentication algorithm for higher security The user may choose none Adding this parameter will add no encryption des Adding this parameter will allow for a 56 bit encryption ...

Page 33: ...sue this command Example usage To delete a previously entered SNMP user on the Switch DGS 3612G 4 delete snmp user dlink Command delete snmp user dlink Success DGS 3612G 4 show snmp user Purpose Used to display information about each SNMP username in the SNMP group username table Syntax show snmp user Description The show snmp user command displays information about each SNMP username in the SNMP ...

Page 34: ...bject from the list of objects that an SNMP manager can access Restrictions Only administrator level users can issue this command Example usage To create an SNMP view DGS 3612G 4 create snmp view dlinkview 1 3 6 view_type included Command create snmp view dlinkview 1 3 6 view_type included Success DGS 3612G 4 delete snmp view Purpose Used to remove an SNMP view entry previously created on the Swit...

Page 35: ...6 1 2 1 11 Included restricted 1 3 6 1 6 3 10 2 1 Included restricted 1 3 6 1 6 3 11 2 1 Included restricted 1 3 6 1 6 3 15 1 1 Included CommunityView 1 Included CommunityView 1 3 6 1 6 3 Excluded CommunityView 1 3 6 1 6 3 1 Included Total Entries 11 DGS 3612G 4 create snmp community Purpose Used to create an SNMP community string to define the relationship between the SNMP manager and an agent Th...

Page 36: ...ring created with this command can read from and write to the contents of the MIBs on the Switch Restrictions Only administrator level users can issue this command Example usage To create the SNMP community string dlink DGS 3612G 4 create snmp community dlink view ReadView read_write Command create snmp community dlink view ReadView read_write Success DGS 3612G 4 delete snmp community Purpose Used...

Page 37: ...SNMP community strings DGS 3612G 4 show snmp community Command show snmp community SNMP Community Table Community Name View Name Access Right dlink ReadView read_write private CommunityView read_write public CommunityView read_only Total Entries 3 DGS 3612G 4 config snmp engineID Purpose Used to configure a name for the SNMP engine on the Switch Syntax config snmp engineID snmp_engineID Descriptio...

Page 38: ...nt Protocol SNMP version 1 is a network management protocol that provides a means to monitor and control network devices v2c Specifies that SNMP version 2c will be used The SNMP v2c supports both centralized and distributed network management strategies It includes improvements in the Structure of Management Information SMI and adds some security features v3 Specifies that the SNMP version 3 will ...

Page 39: ... v1 Success DGS 3612G 4 delete snmp group Purpose Used to remove an SNMP group from the Switch Syntax delete snmp group groupname 32 Description The delete snmp group command is used to remove an SNMP group from the Switch Parameters groupname 32 An alphanumeric name of up to 32 characters that will identify the SNMP group with which the new SNMP user will be associated Restrictions Only administr...

Page 40: ...stricted Security Model SNMPv3 Security Level NoAuthNoPriv Group Name ReadGroup ReadView Name CommunityView WriteView Name Notify View Name CommunityView Security Model SNMPv1 Security Level NoAuthNoPriv Group Name ReadGroup ReadView Name CommunityView WriteView Name Notify View Name CommunityView Security Model SNMPv2 Security Level NoAuthNoPriv Group Name WriteGroup ReadView Name CommunityView W...

Page 41: ...Message integrity ensures that packets have not been tampered with during transit Authentication determines if an SNMP message is from a valid source Encryption scrambles the contents of messages to prevent it being viewed by an unauthorized source noauth_nopriv Specifies that there will be no authorization and no encryption of packets sent between the Switch and a remote SNMP manager auth_nopriv ...

Page 42: ... Switch s SNMP agent Syntax show snmp host ipaddr Description The show snmp host command is used to display the IP addresses and configuration information of remote SNMP managers that are designated as recipients of SNMP traps that are generated by the Switch s SNMP agent Parameters ipaddr The IP address of a remote SNMP manager that will receive SNMP traps generated by the Switch s SNMP agent Res...

Page 43: ...dr The IP address of the trusted host to be created Restrictions Only administrator level users can issue this command Example usage To create the trusted host DGS 3612G 4 create trusted_host 10 48 74 121 Command create trusted_host 10 48 74 121 Success DGS 3612G 4 show trusted_host Purpose Used to display a list of trusted hosts entered on the Switch using the create trusted_host command above Sy...

Page 44: ..._host 10 48 74 121 Success DGS 3612G 4 enable snmp traps Purpose Used to enable SNMP trap support Syntax enable snmp traps Description The enable snmp traps command is used to enable SNMP trap support on the Switch Parameters None Restrictions Only administrator level users can issue this command Example usage To enable SNMP trap support on the Switch DGS 3612G 4 enable snmp traps Command enable s...

Page 45: ...rator level users can issue this command Example usage To view the current SNMP trap support DGS 3612G 4 show snmp traps Command show snmp traps SNMP Traps Enabled Authenticate Trap Enabled DGS 3612G 4 disable snmp traps Purpose Used to disable SNMP trap support on the Switch Syntax disable snmp traps Description This command is used to disable SNMP trap support on the Switch Parameters None Restr...

Page 46: ...her information to identify a contact person who is responsible for the Switch A maximum of 255 character can be used Parameters sw_contact A maximum of 255 characters is allowed A NULL string is accepted if there is no contact Restrictions Only administrator level users can issue this command Example usage To configure the Switch contact to MIS Department II DGS 3612G 4 config snmp system_contact...

Page 47: ...LL string is accepted if no name is desired Restrictions Only administrator level users can issue this command Example usage To configure the Switch name for DGS 3612G Switch DGS 3612G 4 config snmp system_name DGS 3612G Switch Command config snmp system_name DGS 3612G Switch Success DGS 3612G 4 enable rmon Purpose Used to enable RMON on the Switch Syntax enable rmon Description This command is us...

Page 48: ...sable rmon Description This command is used in conjunction with the enable rmon command above to enable and disable remote monitoring RMON on the Switch Parameters None Restrictions Only administrator level users can issue this command Example usage To disable RMON DGS 3612G 4 disable rmon Command disable rmon Success DGS 3612G 4 45 ...

Page 49: ...toconfig show autoconfig show storage_media_info Each command is listed in detail in the following sections download Purpose Used to download and install new firmware or a Switch configuration file from a TFTP server Syntax download firmware_fromTFTP ipaddr path_filename 64 path_filename 64 config_fromTFTP ipaddr path_filename 64 path_filename 64 Description This command is used to download a new ...

Page 50: ... file DGS 3612G 4 download config_fromTFTP 10 48 74 121 c cfg setting txt Command download config_fromTFTP 10 48 74 121 c cfg setting txt Connecting to server Done Download configuration Done DGS 3612G 4 DGS 3612G 4 DGS 3612G 4 DGS 3612G Configuration DGS 3612G 4 DGS 3612G 4 Firmware Build 1 00 B62 DGS 3612G 4 Copyright C 2000 2007 D Link Corporation All rights reserved DGS 3612G 4 DGS 3612G 4 DGS...

Page 51: ...ed on the TFTP server For example C 3612G cfg path_filename 64 The second path_filename in the command refers to the FLASH memory located on the Switch This drive is nominated c and those who wish to save this file to a TFTP server must enter the path and file name of the configuration file located on the FLASH memory of the Switch using this parameter log_toTFTP Used to upload a log file on the S...

Page 52: ...s FLASH memory which will be used as the boot up firmware upon next reboot of the Switch boot_up Entering this parameter will specify the firmware file as a boot up section Restrictions Only administrator level users can issue this command Example usage To configure firmware section 1 as a boot up section DGS 3612G 4 config firmware image c 3612G had boot_up Command config firmware image c 3612G h...

Page 53: ...MP snooping 25 MLD Snooping 26 Access Authentication Control 27 AAA 28 ARP 29 Static Route 30 Policy Route 31 IGMP 32 PIM 33 DVMRP 34 RIP 35 MD5 36 OSPF 37 DNSR 38 DHCP Relay 39 VRRP Parameters current_config Entering this parameter will display configurations entered without being saved to NVRAM startup_config Entering this parameter will display configurations that are to be used upon the next r...

Page 54: ...ot up configuration or as an active configuration Syntax config configuration path_filename 64 boot_up active Description This command is used to configure the configuration file on the FLASH drive of the Switch The user may choose to use it as a boot up or active section Parameters path_filename 64 Specifies the path and filename of the configuration file located on the FLASH drive of the Switch ...

Page 55: ...Description This command is used to rename a filename located on the internal FLASH memory Parameters source_path_filename 64 Enter the path and name of the file to be renamed target_path_filename 64 Enter the new name and path of the file to be renamed This entry cannot exceed 64 characters in length Restrictions Only administrator level users can issue this command Example usage To rename a file...

Page 56: ...iles Total free size 9293625 bytes System reserved flash size 2097152 bytes means boot up section DGS 3612G 4 show system boot_file Purpose Used to show the currently set boot files located on the Switch Syntax show system boot_file Description This command is used to display the name and path of the firmware image and configuration file that have been previously set up by the user as the boot up ...

Page 57: ...ion DGS 3612G 4 show storage_media_info Command show storage_media_info Drive Media_Type Size Label FS_Type C Flash 16MB FLASH A FAT16 DGS 3612G 4 ping Purpose Used to test the connectivity between network devices Syntax ping ipaddr times value 1 255 timeout sec 1 99 Description The ping command sends Internet Control Message Protocol ICMP echo messages to a remote IP address The remote IP address...

Page 58: ... This is the maximum number of routers the traceroute command will cross while seeking the network path between two devices port value 30000 64900 The port number Must be above 1024 The value range is from 30000 to 64900 timeout sec 1 65535 Defines the time out period while waiting for a response from the remote device The user may choose an entry between 1 and 65535 seconds probe value 1 9 The pr...

Page 59: ...quire entry of the configuration file name and path within the user interface Alternatively the DHCP software may require creating a separate ext file with the configuration file name and path in a specific directory on the server Consult the documentation for the DCHP server software if you are unsure Example usage To enable autoconfiguration on the Switch DGS 3612G 4 enable autoconfig Command en...

Page 60: ...le authen_policy Success DGS 3612G 4 DGS 3612G 4 DGS 3612G 4 End of configuration file for DGS 3612G DGS 3612G 4 Logout NOTE With autoconfig enabled the Switch ipif settings now define the Switch as a DHCP client Use the show switch command to display the new IP settings status disable autoconfig Purpose Use this to deactivate autoconfiguration from DHCP Syntax disable autoconfig Description This ...

Page 61: ...autoconfig Purpose Used to display the current autoconfig status of the Switch Syntax show autoconfig Description This will list the current status of the autoconfiguration function Parameters None Restrictions None Example usage To upload an autoconfiguration DGS 3612G 4 show autoconfig Command show autoconfig Autoconfig State Disabled DGS 3612G 4 58 ...

Page 62: ...enable disable config syslog host all index 1 4 severity informational warning all facility local0 local1 local2 local3 local4 local5 local6 local7 udp_port udp_port_number ipaddress ipaddr state enable disable delete syslog host index 1 4 all show syslog host index 1 4 config system_severity trap log all critical warning information show system_severity Each command is listed in detail in the fol...

Page 63: ...Used to display the error statistics for a range of ports Syntax show error ports portlist Description This command will display all of the packet error statistics collected and logged by the Switch for a given port list Parameters portlist Specifies a port or range of ports to be displayed Restrictions None Example usage To display the errors of the port 3 DGS 3612G 4 show error ports 3 Command s...

Page 64: ...w utilization ports Command show utilization ports Port TX sec RX sec Util 1 0 0 0 2 0 0 0 3 0 0 0 4 0 0 0 5 0 0 0 6 0 0 0 7 0 0 0 8 0 0 0 9 0 0 0 10 0 0 0 11 0 14 1 12 0 0 0 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh Example usage To display the current CPU utilization DGS 3612G 4 show utilization cpu Command show utilization cpu CPU utilization Five seconds 15 One minute 25 Fi...

Page 65: ...w log index value_list Description This command will display the contents of the Switch s history log Parameters index value_list This command will display the history log entry listed by the value_list field If no parameter is specified all history log entries will be displayed Restrictions Only administrator level users can issue this command Example usage To display the switch history log DGS 3...

Page 66: ...ose Used to enable the system log to be sent to a remote host Syntax disable syslog Description The disable syslog command enables the system log to be sent to a remote host Parameters None Restrictions Only administrator level users can issue this command Example usage To disable the syslog function on the Switch DGS 3612G 4 disable syslog Command disable syslog Success DGS 3612G 4 show syslog Pu...

Page 67: ... 3 Error error conditions 4 Warning warning conditions 5 Notice normal but significant condition 6 Informational informational messages 7 Debug debug level messages informational Specifies that informational messages will be sent to the remote host This corresponds to number 6 from the list above warning Specifies that warning messages will be sent to the remote host This corresponds to number 4 f...

Page 68: ...cifies that local use 4 messages will be sent to the remote host This corresponds to number 20 from the list above local5 Specifies that local use 5 messages will be sent to the remote host This corresponds to number 21 from the list above local6 Specifies that local use 6 messages will be sent to the remote host This corresponds to number 22 from the list above local7 Specifies that local use 7 m...

Page 69: ... the Switch Numerical Severity Code 0 Emergency system is unusable 1 Alert action must be taken immediately 2 Critical critical conditions 3 Error error conditions 4 Warning warning conditions 5 Notice normal but significant condition 6 Informational informational messages 7 Debug debug level messages Parameters informational Specifies that informational messages will be sent to the remote host Th...

Page 70: ...ponds to number 18 from the list above local3 Specifies that local use 3 messages will be sent to the remote host This corresponds to number 19 from the list above local4 Specifies that local use 4 messages will be sent to the remote host This corresponds to number 20 from the list above local5 Specifies that local use 5 messages will be sent to the remote host This corresponds to number 21 from t...

Page 71: ...lied to an index of hosts There are four available indexes numbered 1 through 4 all Specifies that the command will be applied to all hosts Restrictions Only administrator level users can issue this command Example usage To delete a previously configured syslog host DGS 3612G 4 delete syslog host 4 Command delete syslog host 4 Success DGS 3612G 4 show syslog host Purpose Used to display the syslog...

Page 72: ...tion such as unsuccessful downloads or uploads and failed logins Critical Events classified as critical are fatal exceptions occurring on the Switch such as hardware failures or spoofing attacks Parameters Choose one of the following to identify where severity messages are to be sent trap Entering this parameter will define which events occurring on the Switch will be sent to a SNMP agent for anal...

Page 73: ...y Purpose Used to display the log and trap information regarding the system severity on the Switch Syntax show system_severity Description The show system_severity command is used to display the system severity information in use on the Switch Parameters None Restrictions None Example usage To show system severity information DGS 3612G 4 show system_severity Command show system_severity system_sev...

Page 74: ...trees Each switch utilizing the MSTP on a network will have a single MSTP configuration that will have the following three attributes a A configuration name defined by an alphanumeric string of up to 32 characters defined in the config stp mst_config_id command as name string b A configuration revision number named here as a revision_level and c A 4096 element table defined here as a vid_range whi...

Page 75: ...istrator level users can issue this command Example usage To enable STP globally on the Switch DGS 3612G 4 enable stp Command enable stp Success DGS 3612G 4 disable stp Purpose Used to globally disable STP on the Switch Syntax disable stp Description This command allows the Spanning Tree Protocol to be globally disabled on the Switch Parameters None Restrictions Only administrator level users can ...

Page 76: ...s not endlessly circulate through redundant paths in the network preventing the effective propagation of the new information Set by the Root Bridge this value will aid in determining that the Switch has spanning tree configuration values consistent with other devices on the bridged LAN If the value ages out and a BPDU has still not been received from the Root Bridge the Switch will start sending i...

Page 77: ...estart until the administrator personally changes it The user may also set a time between 60 and 1000000 seconds The default is 60 seconds Restrictions Only administrator level users can issue this command Example usage To configure STP with maxage 18 and maxhops of 15 DGS 3612G 4 config stp maxage 18 maxhops 15 Command config stp maxage 18 maxhops 15 Success DGS 3612G 4 config stp ports Purpose U...

Page 78: ...cates that the port does not have edge port status p2p true false auto true indicates a point to point P2P shared link P2P ports are similar to edge ports however they are restricted in that a P2P port must operate in full duplex Like edge ports P2P ports transition to a forwarding state rapidly thus benefiting from RSTP A p2p value of false indicates that the port cannot have p2p status auto allo...

Page 79: ...tch by creating an instance_id A STP instance may have multiple members with the same MSTP configuration There is no limit to the number of STP regions in a network but each region only supports a maximum of 16 spanning tree instances one unchangeable default entry VIDs can belong to only one spanning tree instance at a time Note that switches in the same spanning tree region having the same STP i...

Page 80: ... instance_id 2 Command delete stp instance_id 2 Success DGS 3612G 4 config stp priority Purpose Used to update the STP instance configuration Syntax config stp priority value 0 61440 instance_id value 0 15 Description This command is used to update the STP instance configuration settings on the Switch The MSTP will utilize the priority in selecting the root bridge root port and designated port Ass...

Page 81: ...er an alphanumeric string of up to 32 characters to uniquely identify the MSTP region on the Switch This name along with the revision_level value will identify the MSTP region configured on the Switch If no name is entered the default name will be the MAC address of the device Restrictions Only administrator level users can issue this command Example usage To configure the MSTP region of the Switc...

Page 82: ...an interface The default value is derived from the media speed of the interface value 1 200000000 Selecting this parameter with a value in the range of 1 200000000 will set the quickest route when a loop occurs A lower internalCost represents a quicker transmission priority value 0 240 Enter a value between 0 and 240 to set the priority for the port interface A higher priority will designate the i...

Page 83: ...ecover Time 60 DGS 3612G 4 Status 2 STP enabled for RSTP DGS 3612G 4 show stp Command show stp STP Status Enabled STP Version RSTP Max Age 20 Hello Time 2 Forward Delay 15 Max Age 20 TX Hold Count 3 Forwarding BPDU Enabled Loopback Detection Enabled LBD Recover Time 60 DGS 3612G 4 Status 3 STP enabled for MSTP DGS 3612G 4 show stp Command show stp STP Status Enabled STP Version MSTP Max Age 20 For...

Page 84: ...ort STP enabled LBD Yes External PathCost Auto 200000 Edge Port No No P2P Auto Yes Port Forward BPDU enabled Msti Designated Bridge Internal PathCost Prio Status Role 0 8000 0050BA7120D6 200000 128 Forwarding Root 1 8001 0053131A3324 200000 128 Forwarding Master CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh show stp instance_id Purpose Used to display the Switch s STP instance conf...

Page 85: ...ort 1 Max Age 20 Forward Delay 15 Last Topology Change 856 Topology Changes Count 2987 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh show stp mst_config_id Purpose Used to display the MSTP configuration identification Syntax show stp mst_config_id Description This command displays the Switch s current MSTP configuration identification Parameters None Restrictions None Example usage...

Page 86: ... port port config multicast filtering_mode vlan_name 32 all forward_all_groups forward_unregistered_groups filter_unregistered_groups show multicast filtering_mode vlan vlan_name 32 Each command is listed in detail in the following sections create fdb Purpose Used to create a static entry to the unicast MAC address forwarding table database Syntax create fdb vlan_name 32 macaddr port port Descript...

Page 87: ...xample usage To create multicast MAC forwarding DGS 3612G 4 create multicast_fdb default 01 00 00 00 00 01 Command create multicast_fdb default 01 00 00 00 00 01 Success DGS 3612G 4 config multicast_fdb Purpose Used to configure the Switch s multicast MAC address forwarding database Syntax config multicast_fdb vlan_name 32 macaddr add delete portlist Description This command configures the multica...

Page 88: ... many entries may be aged out too soon This will result in a high percentage of received packets whose source addresses cannot be found in the forwarding table in which case the Switch will broadcast the packet to all ports negating many of the benefits of having a switch Parameters sec 10 1000000 The aging time for the MAC address forwarding database value The value in seconds may be between 10 a...

Page 89: ...ss resides port port The port number corresponding to the MAC destination address The Switch will always forward traffic to the specified device through this port all Clears all dynamic entries to the Switch s forwarding database Restrictions Only administrator level users can issue this command Example usage To clear all FDB dynamic entries DGS 3612G 4 clear fdb all Command clear fdb all Success ...

Page 90: ...me 32 mac_address macaddr static aging_time Description This command will display the current contents of the Switch s forwarding database Parameters port port The port number corresponding to the MAC destination address The Switch will always forward traffic to the specified device through this port vlan_name 32 The name of the VLAN on which the MAC address resides macaddr The MAC address that is...

Page 91: ...elf 1 default 00 01 02 03 04 05 10 Dynamic 1 default 00 01 30 10 2C C7 10 Dynamic CTRL C ESC q Quit SPACE n Next Page ENTER Next Entry a All show ipfdb Purpose Used to display the current network address forwarding database Syntax show ipfdb ip_address ipaddr interface ipif_name 12 port port Description The show ipfdb command displays the current network address forwarding database Parameters ip_a...

Page 92: ... configure the multicast filtering mode to filter unregistered groups on all VLANs DGS 3612G 4 config multicast filtering_mode all filter_unregistered_groups Command config multicast filtering_mode all filter_unregistered_groups Success DGS 3612G 4 show multicast filtering_mode Purpose Used to show the multicast packet filtering mode as configured for the VLANs Syntax show multicast filtering_mode...

Page 93: ...y recoup it using the Port Configuration window in the Administration folder and selecting the disabled port and returning it to an Enabled status To utilize this method of Storm Control choose the Shutdown option of the Action field in the window below The broadcast storm control commands in the Command Line Interface CLI are listed along with the appropriate parameters in the following table Com...

Page 94: ...oadcast packet counts sent from the Switch s chip to the Traffic Control function These packet counts are the determining factor in deciding when incoming packets exceed the Threshold value sec 5 30 The Interval may be set between 5 and 30 seconds with the default setting of 5 seconds countdown The countdown timer is set to determine the amount of time in minutes that the Switch will wait before s...

Page 95: ... traffic control_recover 1 6 Command config traffic control_recover 1 6 Success DGS 3612G 4 config traffic trap Purpose Used to configure traps for traffic control Syntax config traffic trap none storm_occurred storm_cleared both Description Use this to enable traffic storm trap messages Parameters none Will send no Storm trap warning messages regardless of action taken by the Traffic Control mech...

Page 96: ...control Traffic Storm Control Trap None Port Thres Broadcast Multicast DLF Action Count Time Shutdown hold Storm Storm Storm down Interval Forever 1 131072 Enabled Disabled Disabled drop 0 5 3 131072 Enabled Disabled Disabled drop 0 5 4 131072 Disabled Disabled Disabled drop 0 5 5 131072 Disabled Disabled Disabled drop 0 5 6 131072 Disabled Disabled Disabled drop 0 5 7 131072 Disabled Disabled Dis...

Page 97: ...the next lower priority to transmit its packets When the lowest hardware priority queue has finished transmitting all of its packets the highest hardware priority queue will begin transmitting any packets it may have received NOTICE The Switch contains eight classes of service for each port on the Switch One of these classes is reserved for internal use on the Switch and therefore is not configura...

Page 98: ...ies that one of the parameters below no_limit or value 1 156249 will be applied to the rate at which the above specified ports will be allowed to transmit packets no_limit Specifies that there will be no limit on the rate of packets received by the above specified ports value 1 156249 Specifies the packet limit in Kbps that the above ports will be allowed to receive Restrictions Only administrator...

Page 99: ...re priority queue can again transmit any packets it may have received The max_packets parameter allows users to specify the maximum number of packets a given hardware priority queue can transmit before allowing the next lowest hardware priority queue to begin transmitting its packets A value between 0 and 15 can be specified For example if a value of 3 is specified then the highest hardware priori...

Page 100: ...ueue will be allowed to transmit before allowing the next lowest priority queue to transmit its packets A value between 0 and 15 can be specified Restrictions Only administrator level users can issue this command Example usage To configure the traffic scheduling mechanism for each queue DGS 3612G 4 config scheduling 0 max_packet 12 Command config scheduling 0 max_packet 12 Success DGS 3612G 4 show...

Page 101: ...ing the 802 1p user priority to go to the class_id 0 6 the number of the hardware queue priority 0 7 The 802 1p user priority to associate with the class_id 0 6 the number of the hardware queue class_id 0 6 The number of the Switch s hardware priority queue The Switch has seven hardware priority queues available They are numbered between 0 the lowest priority and 6 the highest priority Restriction...

Page 102: ...hardware priority queues the packet is forwarded Parameters portlist Specifies a port or range of ports to be configured all Specifies that the command applies to all ports on the Switch priority 0 7 The priority value to assign to untagged packets received by the Switch or a range of ports on the Switch Restrictions Only administrator level users can issue this command Example usage To configure ...

Page 103: ...en hardware priority classes of service are emptied The Switch s default is to empty the seven priority classes of service in order from the highest priority class of service queue 6 to the lowest priority class of service queue 0 Each queue will transmit all of the packets in its buffer before allowing the next lower priority class of service to transmit its packets Lower classes of service will ...

Page 104: ...scheduling mechanisms in use on the Switch Parameters None Restrictions None Example usage To show the scheduling mechanism DGS 3612G 4 show scheduling_mechanism Command show scheduling_mechanism QOS scheduling_mechanism CLASS ID Mechanism Class 0 strict Class 1 strict Class 2 strict Class 3 strict Class 4 strict Class 5 strict Class 6 strict Class 6 strict DGS 3612G 4 enable hol_prevention Purpos...

Page 105: ...Restrictions You must have administrator privileges Example usage To disable HOL prevention DGS 3612G 4 disable hol_prevention Command disable hol_prevention Success DGS 3612G 4 show hol_prevention Purpose Used to show HOL prevention Syntax show hol_prevention Description The show hol_prevention command displays the Head of Line prevention state Parameters None Restrictions None Example usage To v...

Page 106: ...nly traffic received by or sent by one or both is mirrored to the Target port Parameters port This specifies the Target port the port where mirrored packets will be received The target port must be configured in the same VLAN and must be operating at the same speed as the source port If the target port is operating at a lower speed the source port will be forced to drop its operating speed to matc...

Page 107: ... the Switch and then turn the port mirroring on and off without having to modify the port mirroring configuration Parameters None Restrictions Only administrator level users can issue this command Example usage To enable mirroring configurations DGS 3612G 4 enable mirror Command enable mirror Success DGS 3612G 4 disable mirror Purpose Used to disable a previously entered port mirroring configurati...

Page 108: ...urrent port mirroring configuration on the Switch Syntax show mirror Description This command displays the current port mirroring configuration on the Switch Parameters None Restrictions None Example usage To display mirroring configuration DGS 3612G 4 show mirror Command show mirror Current Settings Mirror Status Enabled Target Port 1 Mirrored Port RX TX 5 7 DGS 3612G 4 105 ...

Page 109: ...ocol ipx802dot2 protocol ipxSnap protocol ipxEthernet2 protocol appleTalk protocol decLat protocol sna802dot2 protocol snaEthernet2 protocol netBios protocol xns protocol vines protocol ipV6 protocol userDefined hex0x0 0xffff encap ethernet llc snap all protocol rarp delete vlan vlan_name 32 config vlan vlan_name 32 add tagged untagged forbidden portlist advertisement enable disable config vlan vl...

Page 110: ...the tag in the packet header is concurrent with this protocol This packet header information is defined by Novell NetWare 802 3 IPX Internet Packet Exchange protocol ipx802dot2 Using this parameter will instruct the Switch to forward packets to this VLAN if the tag in the packet header is concurrent with this protocol This packet header information is defined by Novell NetWare 802 2 IPX Internet P...

Page 111: ...l Version 6 IPv6 Protocol protocol userDefined Using this parameter will instruct the Switch to forward packets to this VLAN if the tag in the packet header is concurrent with this protocol defined by the user This packet header information is defined by entering the following information hex 0x0 0xffff Specifies that the VLAN will only accept packets with this hexadecimal 802 1Q Ethernet type val...

Page 112: ... VLAN Syntax config vlan vlan_name 32 add tagged untagged forbidden portlist advertisement enable disable Description This command is used to add ports to the port list of a previously configured VLAN Additional ports may be specified as tagging untagging or forbidden The default is to assign the ports as untagging Parameters vlan_name 32 The name of the VLAN to add or delete ports to portlist A p...

Page 113: ...e acceptable_frame tagged_only admit_all pvid vlanid 1 4094 Description This command is used to configure the GARP VLAN Registration Protocol on the Switch Configurable settings include ingress checking the sending and receiving of GVRP information and the Port VLAN ID PVID Parameters portlist A port or range of ports for which to configure GVRP all Specifies all of the ports on the Switch state e...

Page 114: ...RP configuration on the Switch Parameters None Restrictions Only administrator level users can issue this command Example usage To enable the generic VLAN Registration Protocol GVRP DGS 3612G 4 enable gvrp Command enable gvrp DGS 3612G 4 Success disable gvrp Purpose Used to disable GVRP on the Switch Syntax disable gvrp Description This command along with enable gvrp above is used to enable and di...

Page 115: ...LAN settings DGS 3612G 4 show vlan Command show vlan VID 1 VLAN Name default VLAN TYPE 1QVLAN Protocol ID UserDefinedPid Advertisement Enabled Encap Member ports 1 9 Static ports 1 9 Untagged ports 1 9 Forbidden ports VID 2 VLAN Name v1 VLAN TYPE PROTOCOL Protocol ID ip UserDefinedPid Advertisement Enabled Encap Member ports 10 12 Static ports 10 12 Untagged ports Forbidden ports Total Entries 2 D...

Page 116: ..._vlan command is used to configure a pre defined VLAN as a 802 1x Guest VLAN Guest 802 1X VLAN clients are those who have not been authorized for 802 1x or they haven t yet installed the necessary 802 1x software yet would still like limited access rights on the Switch vlan_name 32 Enter an alphanumeric string of no more than 32 characters to define a pre existing VLAN as an 802 1x Guest VLAN This...

Page 117: ...e specific port state changes from an enabled state to a disabled state these ports will return to the default VLAN Purpose Example usage To configure the ports for a previously created 802 1x Guest VLAN as enabled DGS 3612G 4 config 802 1x guest_vlan ports 1 5 state enable Command config 802 1x guest_vlan ports 1 5 state enable Success DGS 3612G 4 show 802 1x guest_vlan Purpose Used to view the c...

Page 118: ... for 802 1x or they haven t yet installed the necessary 802 1x software yet would still like limited access rights on the Switch Parameters None Restrictions Only administrator level users can issue this command This VLAN is only supported for port based 802 1x and must have already been previously created using the create vlan command Only one VLAN can be set as the 802 1x Guest VLAN Syntax Examp...

Page 119: ...type lacp static Description This command will create a link aggregation group with a unique identifier value Specifies the group ID The Switch allows up to 32 link aggregation groups to be configured The group number identifies each of the groups Restrictions Only administrator level users can issue this command Parameters type Specify the type of link aggregation used for the group If the type i...

Page 120: ...eated with the create link_aggregation command above The DGS 3612G supports link aggregation cross box which specifies that link aggregation groups may be spread over multiple switches in the switching stack Parameters group _id value 32 Specifies the group ID The Switch allows up to 32 link aggregation groups to be configured The group number identifies each of the groups master_port port Master ...

Page 121: ...destination Indicates that the Switch should examine the destination IP address ip_source_dest Indicates that the Switch should examine the source and the destination IP address Restrictions Only administrator level users can issue this command Example usage To configure link aggregation algorithm for mac source dest DGS 3612G 4 config link_aggregation algorithm mac_source_dest Command config link...

Page 122: ...rictions Only administrator level users can issue this command active Active LACP ports are capable of processing and sending LACP control frames This allows LACP compliant devices to negotiate the aggregated link so the group may be changed dynamically as needs require In order to utilize the ability to change an aggregated port group that is to add or subtract ports from the group at least one o...

Page 123: ...ed Parameters portlist Specifies a port or range of ports to be configured If no parameter is specified the system will display the current LACP status for all ports Restrictions Only administrator level users can issue this command Example usage To display LACP port mode settings DGS 3612G 4 show lacp_port 1 10 Command show lacp_port 1 10 Port Activity 1 Active 2 Active 3 Active 4 Active 5 Active...

Page 124: ...C Binding Setting window All others will be discarded To configure the ACL mode the user must first create an IP MAC binding using the create address_binding ip_mac ipaddress command and select the mode as acl Then the user must enable the mode by entering the enable address_binding acl_mode command If an IP MAC binding entry is created and the user wishes to change it to an ACL mode entry the use...

Page 125: ...ing entry Syntax ipaddr mac_address macaddr ports portlist all mode arp acl Description This command will create an IP MAC Binding entry Parameters ipaddr The IP address of the device where the IP MAC binding is made all Specifies that all ports on the switch will be configured for address binding macaddr The MAC address of the device where the IP MAC binding is made portlist Specifies a port or r...

Page 126: ...he ACL mode has been created and enabled without previously created access profiles the access profile table will look like this Owner Address_binding Ethernet type Access ID 1 Mode Deny RX Rate 64Kbps Owner Address_binding DGS 3612G 4 show access_profile Command show access_profile Access Profile Table Access Profile ID 13 TYPE Ethernet Mask Option Ports 2 0x800 Access Profile ID 14 TYPE IP MASK ...

Page 127: ... packets from the source IP MAC binding entry created here All other packets with a different IP address will be discarded by the Switch This mode can only be used if the ACL Mode has been enabled in the IP MAC Binding Ports window as seen previously Restrictions Example usage To configure address binding on the Switch DGS 3612G 4 config address_binding ip_mac ipaddress 10 1 1 3 mac_address 00 00 ...

Page 128: ...s Three different kinds of information can be viewed Parameters all For IP_MAC binding all specifies all the IP MAC binding entries for Blocked Address Binding entries all specifies all the blocked VLANs and their bound physical addresses ipaddr The IP address of the device where the IP MAC binding is made macaddr The MAC address of the device where the IP MAC binding is made vlan_name The VLAN na...

Page 129: ...ing is made vlan_name The VLAN name of the VLAN that is bound to a MAC address in order to block a specific device on a known VLAN all For IP_MAC binding all specifies all the IP MAC binding entries for Blocked Address Binding entries all specifies all the blocked VLANs and their bound physical addresses Restrictions Only administrator level users can issue this command IP_MAC Individual Address B...

Page 130: ...r creating the IP MAC ACL mode access profile entries Example usage To enable IP MAC Binding ACL mode on the Switch DGS 3612G 4 enable address_binding acl_mode Command enable address_binding acl_mode Success DGS 3612G 4 disable address_binding acl_mode Purpose Used to disable the ACL mode for an IP MAC binding entry Syntax disable address_binding acl_mode Description This command along with the en...

Page 131: ...ample usage To enable sending of IP MAC Binding trap log messages on the Switch DGS 3612G 4 enable address_binding trap_log Command enable address_binding trap_log Success DGS 3612G 4 disable address_binding trap_log Purpose Used to disable the trap log for the IP MAC binding function Syntax disable address_binding trap_log Description This command along with the enable address_binding trap_log wi...

Page 132: ...he Command Line Interface CLI are listed along with the appropriate parameters in the following table The Switch may use extra resources to process packets for multiple IP interfaces The amount of broadcast data such as RIP update packets and PIM hello packets will be increased Command Parameters create ipif ipif_name 12 network_address vlan_name 32 secondary state enable disable config ipif ipif_...

Page 133: ...address network_address IP address and netmask of the IP interface to be configured The address and mask information can be specified using the traditional format for example 10 1 2 3 255 0 0 0 or in CIDR format 10 1 2 3 8 This parameter may also appear as ip_addr netmask vlan vlan_name 32 The name of the VLAN corresponding to the previously created IP interface If a primary and secondary IP inter...

Page 134: ...iguration of an IP interface on the Switch Syntax disable ipif ipif_name 12 all Description This command will disable an IP interface on the Switch without altering its configuration values Parameters ipif_name 12 The name previously created to define the IP interface all Entering this parameter will disable all the IP interfaces currently configured on the Switch Restrictions None Example usage T...

Page 135: ...ameters ipif_name 12 The name created for the IP interface to be viewed Restrictions None Example usage To display IP interface settings DGS 3612G 4 show ipif System Command show ipif System IP Interface Settings Interface Name System Secondary FALSE IP Address 10 48 74 122 MANUAL Subnet Mask 255 0 0 0 VLAN Name default Admin State Enabled Link Status Link UP Member Ports 1 26 DGS 3612G 4 NOTE In ...

Page 136: ... or deny traffic from these specific sources In IGMPv2 Membership reports could contain only one multicast group whereas in v3 these reports can contain multiple multicast groups Leaving a multicast group could only be accomplished using a specific leave message in v2 In v3 leaving a multicast group is done through a Membership report which includes a block message in the group report packet For v...

Page 137: ...P interfaces DGS 3612G 4 config igmp all version 2 Command config igmp all version 2 DGS 3612G 4 Success show igmp Purpose Used to display the IGMP configuration for the Switch of for a specified IP interface Syntax show igmp ipif ipif_name 12 Description This command will display the IGMP configuration for the Switch if no IP interface name is specified If an IP interface name is specified the co...

Page 138: ...played ipif_name 12 The name of the IP interface of which the IGMP group is a member Restrictions None Example usage To display IGMP group table DGS 3612G 4 show igmp group Total Entries 5 Command show igmp group Interface Multicast Group Last Reporter IP Querier IP Expire System 224 0 0 2 10 42 73 111 10 48 74 122 260 System 224 0 0 9 10 20 53 1 10 48 74 122 260 System 224 0 1 24 10 18 1 3 10 48 ...

Page 139: ...ing vlan vlan_name 32 all host_timeout sec 1 16711450 router_timeout sec 1 16711450 leave_timer sec 1 16711450 state enable disable fast_leave enable disable Description This command allows users to configure IGMP snooping on the Switch Parameters vlan vlan_name 32 The name of the VLAN for which IGMP snooping is to be configured host_timeout sec 1 16711450 Specifies the maximum amount of time a ho...

Page 140: ...acket loss on a subnet The value of the robustness variable is used in calculating the following IGMP message intervals Used to configure the time in seconds between general query transmissions the maximum time in seconds to wait for reports from members and the permitted packet loss that guarantees IGMP snooping Parameters max_response_time sec 1 25 Specifies the maximum time in seconds to wait f...

Page 141: ...escription This command allows designation of a range of ports as being connected to multicast enabled routers This will ensure that all packets with such a router as its destination will reach the multicast enabled router regardless of protocol etc Parameters add delete Specify whether to add or delete ports as router ports vlan_name 32 The name of the VLAN on which the router port resides portli...

Page 142: ...orward all multicast traffic to the multicast router only Otherwise the Switch forwards all multicast traffic to any IP router Parameters forward_mcrouter_only Specifies that the Switch should only forward all multicast traffic to a multicast enabled router Otherwise the Switch will forward all multicast traffic to any IP router Restrictions Only administrator level users can issue this command Ex...

Page 143: ...ooping Success DGS 3612G 4 Example usage To disable forwarding all multicast traffic to a multicast enabled router DGS 3612G 4 disable igmp_snooping forward_mcrouter_only Success Command disable igmp_snooping forward_mcrouter_only DGS 3612G 4 show igmp_snooping Purpose Used to show the current status of IGMP snooping on the Switch Syntax show igmp_snooping vlan vlan_name 32 Description This comman...

Page 144: ...Fast Leave Enabled Total Entries 2 DGS 3612G 4 Querier State Disabled Querier Router Behavior Non Querier State Disabled Fast Leave Enabled VLAN Name vlan2 Query Interval 125 Max Response Time 10 Robustness Value 2 Last Member Query Interval 1 show igmp_snooping group Purpose Used to display the current IGMP snooping group configuration on the Switch Syntax show igmp_snooping group vlan vlan_name ...

Page 145: ...250 MAC address 01 00 5E 7F FF FA Reports 2 Port Member 9 19 VLAN Name default Multicast group 239 255 255 254 MAC address 01 00 5E 7F FF FE Reports 1 Port Member 13 17 Total Entries 6 DGS 3612G 4 show router_ports Purpose Used to display the currently configured router ports on the Switch Syntax show router_ports vlan vlan_name 32 static dynamic forbidden Description This command will display the...

Page 146: ...ing forwarding vlan vlan_name 32 Description This command will display the current IGMP snooping forwarding table entries currently configured on the Switch Parameters vlan_name 32 The name of the VLAN for which to view IGMP snooping forwarding table information Restrictions None Example usage To view the IGMP snooping forwarding table for VLAN Trinity DGS 3612G 4 show igmp_snooping forwarding vla...

Page 147: ...tises a specific multicast address that is also ready These two types of messages are distinguished by a multicast destination address located in the IPv6 header and a multicast address in the Multicast Listener Query Message 2 Multicast Listener Report Comparable to the Host Membership Report in IGMPv2 and labeled as 131 in the ICMP packet header this message is sent by the listening port to the ...

Page 148: ... mld_snooping Purpose Used to disable MLD snooping globally on the switch Syntax disable mld_snooping forward_mcrouter_only Description This command in conjunction with the enable mld_snooping will enable and disable MLD snooping globally on the switch without affecting configurations Parameters forward_mcrouter_only Specify to disable the Switch from forwarding all multicast traffic to a multicas...

Page 149: ...to enable or disable MLD snooping for the specified VLAN fast_done enable disable This parameter allows the user to enable the fast done function Enabled this function will allow members of a multicast group to leave the group immediately when a done message is received by the Switch Restrictions Only administrator level users can issue this command Example usage To configure MLD snooping DGS 3612...

Page 150: ..._forbidden default add 1 3 Success DGS 3612G 4 147 config mld_snooping querier Purpose Used to configure the timers and settings for the MLD snooping querier for the Switch Syntax config mld_snooping querier vlan vlan_name 32 all query_interval sec 1 65535 max_response_time sec 1 25 robustness_variable value 1 255 last_listener_query_interval sec 1 25 state enable disable Description This command ...

Page 151: ...ry Count This is the amount of group specific queries sent before the router assumes there are no local listeners in this group The default value is the value of the robustness variable Group Listener Interval This is the amount of time that must pass before a multicast router decides that there are no more listeners present of a group on a network Calculated as robustness variable query interval ...

Page 152: ...avior Non Querier State Disabled Fast Done Disabled Total Entries 1 DGS 3612G 4 show mld_snooping group Purpose Used to display MLD snooping group configurations on the Switch Syntax show mld_snooping group vlan vlan_name 32 Description This command displays MLD snooping group configurations on the Switch Parameters vlan vlan_name 32 The name of the VLAN for which to view the MLD snooping group co...

Page 153: ...lticast Group FF02 17 Reports 1 Listening Port 2 7 Total Entries 5 show mld_snooping mrouter_ports Purpose Used to display the current router ports set on the Switch Syntax show mld_snooping group vlan vlan_name 32 static dynamic forbidden Description This command display the current router ports set on the Switch Parameters vlan vlan_name 32 The name of the VLAN on which the router port resides s...

Page 154: ...ow mld_snooping forwarding vlan vlan_name 32 Description This command will display the current MLD snooping forwarding table entries currently configured on the Switch Parameters vlan_name 32 The name of the VLAN for which to view MLD snooping forwarding table information Restrictions None Example usage To view the IGMP snooping forwarding table for VLAN Trinity DGS 3612G 4 show mld_snooping forwa...

Page 155: ..._relay ipif ipif_name 12 enable dhcp_relay disable dhcp_relay Each command is listed in detail in the following sections config dhcp_relay Purpose Used to configure the DHCP BOOTP relay feature of the switch Syntax config dhcp_relay hops value 1 16 time sec 0 65535 Description This command is used to configure the DHCP BOOTP relay feature Parameters hops value 1 16 Specifies the maximum number of ...

Page 156: ...n addresses from the Switch s DHCP BOOTP relay table Syntax config dhcp_relay delete ipif ipif_name 12 ipaddr Description This command is used to delete an IP destination addresses in the Switch s DHCP BOOTP relay table Parameters ipif_name 12 The name of the IP interface that contains the IP address below ipaddr The DHCP server IP address Restrictions Only administrator level users can issue this...

Page 157: ...rting and removing DHCP relay information option 82 field in messages between DHCP servers and clients and the check and policy settings will have no effect Restrictions Only administrator level users can issue this command Example usage To configure DHCP relay option 82 state DGS 3612G 4 config dhcp_relay option_82 state enable Command config dhcp_relay option_82 state enable Success DGS 3612G 4 ...

Page 158: ...xists in the packet received from the DHCP client keep The option 82 field will be retained if the option 82 field already exists in the packet received from the DHCP client Restrictions Only administrator level users can issue this command Example usage To configure DHCP relay option 82 policy DGS 3612G 4 config dhcp_relay option_82 policy replace Command config dhcp_relay option_82 policy replac...

Page 159: ...how dhcp_relay ipif System Interface Server 1 Server 2 Server 3 Server 4 System 10 58 44 6 DGS 3612G 4 enable dhcp_relay Purpose Used to enable the DHCP BOOTP relay function on the Switch Syntax enable dhcp_relay Description This command is used to enable the DHCP BOOTP relay function on the Switch Parameters None Restrictions Only administrator level users can issue this command Example usage To ...

Page 160: ...xStack DGS 3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage Command disable dhcp_relay To disable DHCP relay DGS 3612G 4 disable dhcp_relay Success DGS 3612G 4 157 ...

Page 161: ... to multicast_ipaddr access permit deny state enable disable Description The config limited multicast address command allows the user to configure the multicast address range access level and state Parameters portlist A port or range of ports to config the limited multicast address from Enter the lowest multicast IP address of the range to Enter the highest multicast IP address of the range access...

Page 162: ...n issue this command Example usage To delete the limited multicast address on ports 1 3 DGS 3612G 4 delete limited multicast address 1 3 Command delete limited multicast address 1 3 Success DGS 3612G 4 show limited multicast address Purpose Used to show per port limited IP multicast address range Syntax show limited multicast address portlist Description The show limited multicast address command ...

Page 163: ... max_req value 1 10 reauth_period sec 1 65535 enable_reauth enable disable config 802 1x init port_based ports portlist all mac_based ports portlist all mac_address macaddr port_based mac_based config 802 1x reauth port_based ports portlist all mac_based ports portlist all mac_address macaddr server_index 1 3 server_ip key passwd 32 default auth_port udp_port_number 1 65535 acct_port udp_port_numb...

Page 164: ...cation on the Switch To select between port based or MAC based use the config 802 1x auth_mode command Only administrator level users can issue this command Parameters None Restrictions Example usage Command disable 802 1x To disable 802 1x on the Switch DGS 3612G 4 disable 802 1x Success DGS 3612G 4 show 802 1x auth_configuration Used to display the current configuration of the 802 1x server on t...

Page 165: ...me Authorized ForceUnauth forces the port to become Unauthorized QuietPeriod Shows the time interval between authentication failure and the start of a new authentication attempt TxPeriod Shows the time to wait for a response from a supplicant user to send EAP Request Identity packets SuppTimeout Shows the time to wait for a response from a supplicant user for all EAP packets except for the Request...

Page 166: ...itialize Success Timeout Shows the current state of the Backend Authenticator Port Status Authorized Unauthorized Shows the result of the authentication process Authorized means that the user was authenticated and can access the network Unauthorized means that the user was not authenticated and cannot access the network Restrictions None Example usage To display the 802 1x auth state for Port base...

Page 167: ... either the port based or MAC based 802 1x authentication feature on the Switch Parameters port_based mac_based The Switch allows users to authenticate 802 1x by either port or MAC address Restrictions Only administrator level users can issue this command Example usage To configure 802 1x authentication by MAC address DGS 3612G 4 config 802 1x auth_mode mac_based Command config 802 1x auth_mode ma...

Page 168: ...x auth_parameter command is used to configure the 802 1x Authentication parameters on a range of ports The default parameter will return all ports in the specified range to their default 802 1x settings Parameters portlist Specifies a port or range of ports to be configured all Specifies all of the ports on the Switch default Returns all of the ports in the specified range to their 802 1x default ...

Page 169: ...12G 4 config 802 1x init Purpose config 802 1x init port_based ports portlist all mac_based ports portlist all mac_address macaddr The config 802 1x init command is used to immediately initialize the 802 1x functions on a specified range of ports or for specified MAC addresses operating from a specified range of ports Parameters port_based This instructs the Switch to initialize 802 1x functions b...

Page 170: ...onfig 802 1x reauth port_based ports 1 10 Command config 802 1x reauth port_based ports 1 10 Success DGS 3612G 4 config radius add Purpose Used to configure the settings the Switch will use to communicate with a RADIUS server Syntax config radius add server_index 1 3 server_ip key passwd 32 default auth_port udp_port_number 1 65535 acct_port udp_port_number 1 65535 Description The config radius ad...

Page 171: ...g radius delete 1 Command config radius delete 1 Success DGS 3612G 4 config radius Purpose Used to configure the Switch s RADIUS settings config radius server_index 1 3 ipaddress server_ip key passwd 32 auth_port udp_port_number 1 65535 acct_port udp_port_number 1 65535 Description The config radius command is used to configure the Switch s RADIUS settings Parameters server_index 1 3 Assigns a num...

Page 172: ... Restrictions None Example usage To display RADIUS settings on the Switch DGS 3612G 4 show radius Command show radius Index IP Address Auth Port Acct Port Status Key Number Number 1 10 1 1 1 1812 1813 Active switch 2 20 1 1 1 1800 1813 Active des3226 3 30 1 1 1 1812 1813 Active dlink Total Entries 3 DGS 3612G 4 show acct_client Purpose Used to display the current RADIUS accounting client Syntax sh...

Page 173: ...rrent RADIUS authentication client Syntax show auth_client Description The show auth_client command is used to display the current RADIUS authentication client currently configured on the Switch Parameters None Restrictions Only administrator level users can issue this command Example usage radiusAuthServerEntry 0 radiusAuthServerAddress 0 0 0 0 To view the current RADIUS authentication client 170...

Page 174: ...sToSupplicant 0 BackendAuthFails 0 EntersConnecting 0 EapLogoffsWhileConnecting 0 EntersAuthenticating 0 SuccessWhileAuthenticating 0 TimeoutsWhileAuthenticating 0 FailWhileAuthenticating 0 ReauthsWhileAuthenticating 0 EapStartsWhileAuthenticating 0 EapLogoffWhileAuthenticating 0 EapStartsWhileAuthenticated 0 BackendResponses 0 BackendAccessChallenges 0 BackendNonNakResponsesFromSupplicant 0 Backe...

Page 175: ... a per port basis Parameters ports portlist Specifies a port or range of ports Restrictions Only administrator level users can issue this command Example usage To display the current authentication statistics for port 1 LastEapolFrameVersion 0 DGS 3612G 4 show auth_statistics ports 1 Command show auth_statistics ports 1 Port number 1 EapolFramesRx 0 EapolFramesTx 0 EapolStartFramesRx 0 EapolReqIdF...

Page 176: ...d or MAC based Network Access control local users currently configured on the Switch Restrictions None Parameters None Example usage To view 802 1X users currently configured on the Switch DGS 3612G 4 show 802 1x user Command show 802 1x user Current Accounts Username Password DGS 3612G 4 Darren Trinity Total entries 1 delete 802 1x user Purpose Used to delete an 802 1x user account on the Switch ...

Page 177: ...ly created using the create vlan command Only one VLAN can be set as the 802 1x Guest VLAN Example usage To configure a previously created VLAN as a 802 1x Guest VLAN for the Switch DGS 3612G 4 create 802 1x guest_vlan Trinity Success Command create 802 1x guest_vlan Trinity DGS 3612G 4 config 802 1x guest_vlan ports Purpose Used to configure ports for a pre existing 802 1x guest VLAN Syntax confi...

Page 178: ...le usage To display the configurations for a previously created 802 1x Guest VLAN DGS 3612G 4 show 802 1x guest_vlan Command show 802 1x guest_vlan Guest VLAN Setting DGS 3612G 4 Guest VLAN Trinity Enable guest VLAN ports 5 8 delete 802 1x guest_vlan Purpose Used to delete an 802 1x Guest VLAN Syntax delete 802 1x guest_vlan Description The delete 802 1x guest_vlan command is used to delete a VLAN...

Page 179: ...xStack DGS 3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS 3612G 4 delete 802 1x guest_vlan Triton Command delete 802 1x guest_vlan Triton Success DGS 3612G 4 176 ...

Page 180: ...ated with access profile 1 For each rule entered into the access profile you can assign an access_id that both identifies the rule and establishes a priority within the list of rules A lower access_id gives the rule a higher priority In case of a conflict in the rules entered for an access profile the rule with the highest priority lowest access_id will take precedence The ip parameter instructs t...

Page 181: ...le profile_id value 1 5 config cpu access_profile profile_id value 1 5 add access_id value 1 100 ethernet vlan vlan_name 32 source_mac macaddr destination_mac macaddr 802 1p value 0 7 ethernet_type hex 0x0 0xffff port portlist all permit deny ip vlan vlan_name 32 source_ip ipaddr destination_ip ipaddr dscp value 0 63 icmp type value 0 255 code value 0 255 igmp type value 0 255 tcp src_port value 0...

Page 182: ... profile_id 1 ethernet vlan 802 1p Success DGS 3612G 4 config access_profile for Ethernet Purpose Used to configure the Ethernet access profile on the Switch and to define specific values for the rules that will be used to by the Switch to determine if a given packet should be forwarded or filtered Masks entered using the create access_profile command will be combined using a logical AND operation...

Page 183: ...s that the access profile will apply to only this previously created VLAN source_mac macaddr Specifies that the access profile will apply to only packets with this source MAC address MAC address entries may be made in the following format 000000000000 FFFFFFFFFFFF destination_mac macaddr Specifies that the access profile will apply to only packets with this destination MAC address MAC address entr...

Page 184: ...command source_ip_mask netmask Specifies an IP address mask for the source IP address destination_ip_mask netmask Specifies an IP address mask for the destination IP address dscp Specifies that the Switch will examine the DiffServ Code Point DSCP field in each frame s header igmp Specifies that the Switch will examine each frame s Internet Group Management Protocol IGMP field tcp Specifies that th...

Page 185: ...mand The lower the profile ID the higher the priority the rule will be given add access_id value 1 128 Adds an additional rule to the above specified access profile The value specifies the relative priority of the additional rule Up to 128 different rules may be configured for the IP access profile ip Specifies that the Switch will look into the IP fields in each packet to see if it will be either...

Page 186: ...e configured for each port Selecting all will configure this rule for all ports on the Switch rx_rate Use this to limit Rx bandwidth for the profile being configured This rate is implemented using the following equation 1 value 64kbit sec ex If the user selects a rx rate of 10 then the ingress rate is 640kbit sec The user many select a value between 1 156249 or no limit The default setting is no l...

Page 187: ...s parameter will instruct the Switch to examine the flow label field of the IPv6 header This flow label field is used by a source to label sequences of packets such as non default quality of service or real time service packets source_ipv6_mask ipv6mask Specifies an IP address mask for the source IPv6 address destination_ipv6_mask ipv6mask Specifies an IP address mask for the destination IPv6 addr...

Page 188: ...level users can issue this command auto_assign Choose this parameter to configure the Switch to automatically assign a numerical value between 1 and 128 for the rule being configured ipv6 Specifies that the Switch will look into the IPv6 fields in each packet with emphasis on one or more of the following fields source_ipv6 ipv6addr Specifies an IP address mask for the source IPv6 address permit Sp...

Page 189: ...Only administrator level users can issue this command Example usage To delete the access profile with a profile ID of 1 DGS 3612G 4 delete access_profile profile_id 1 Success Command delete access_profile profile_id 1 DGS 3612G 4 show access_profile Purpose Used to display the currently configured access profiles on the Switch Syntax show access_profile profile_id value 1 14 The show access_profil...

Page 190: ..._port_mask hex 0x0 0xffff dst_port_mask hex 0x0 0xffff flag_mask all urg ack psh rst syn fin udp src_port_mask hex 0x0 0xffff dst_port_mask hex 0x0 0xffff protocol_id_mask hex 0x0 0xff user_define_mask hex 0x0 0xffffffff packet_content_mask offset 0 15 hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff offset 16 31 hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff h...

Page 191: ...set_48 63 Enter a value in hex form to mask the packet from byte 48 to byte 63 offset_64 79 Enter a value in hex form to mask the packet from byte 64 to byte 79 Restrictions Only administrator level users can issue this command Example usage To create a CPU access profile flag_mask all urg ack psh rst syn fin Enter the appropriate flag_mask parameter All incoming packets have TCP port numbers cont...

Page 192: ...g the create cpu access_profile command will be combined using a logical AND operational method with the values the Switch finds in the specified frame header fields Specific values for the rules are entered using the config cpu access_profile command below Syntax config cpu access_profile profile_id value 1 5 add access_id value 1 100 ethernet vlan vlan_name 32 source_mac macaddr destination_mac ...

Page 193: ...o only packets with this source IP address destination_ip ipaddr Specifies that the access profile will apply to only packets with this destination IP address dscp value 0 63 Specifies that the access profile will apply only to packets that have this value in their Type of Service DiffServ code point DSCP field in their IP packet header icmp Specifies that the Switch will examine the Internet Cont...

Page 194: ...o mask the packet from byte 32 to byte 47 offset_48 63 Enter a value in hex form to mask the packet from byte 48 to byte 63 offset_64 79 Enter a value in hex form to mask the packet from byte 64 to byte 79 Example usage To configure CPU access list entry DGS 3612G 4 config cpu access_profile profile_id 5 add access_id 1 ip vlan default source_ip 20 2 2 3 destination_ip 10 1 1 252 dscp 3 icmp type ...

Page 195: ...n integer between 1 and 5 that is used to identify the CPU access profile to be deleted with this command This value is assigned to the access profile when it is created with the create cpu access_profile command Restrictions Only administrator level users can issue this command Example usage To show the CPU filtering state on the Switch DGS 3612G 4 show cpu access_profile Command show cpu access_...

Page 196: ...n with an access profile rule to determine a period of time when an access profile and an associated rule are to be enabled on the Switch Remember this time range can only be applied to one period of time and also it is based on the time set on the Switch Parameters range_name 32 Enter a name of no more than 32 alphanumeric characters that will be used to identify this time range on the Switch Thi...

Page 197: ...cess DGS 3612G 4 show time_range Purpose To view the current configurations of the time range set on the Switch Syntax show time_range Description This command is used to display the currently configured time range s set on the Switch Parameters None Restrictions Only administrator level users can issue this command Example usage To view the current time range settings DGS 3612G 4 show time_range ...

Page 198: ...ch command is listed in detail in the following sections config sntp Purpose Used to setup SNTP service Syntax config sntp primary ipaddr secondary ipaddr poll interval int 30 99999 Description Use this command to configure SNTP service from an SNTP server SNTP must be enabled for this command to function See enable sntp Parameters primary This is the primary server the SNTP information will be ta...

Page 199: ...enable SNTP server support Syntax enable sntp Description This will enable SNTP support SNTP service must be separately configured see config sntp Enabling and configuring SNTP support will override any manually configured system time settings Restrictions Only administrator level users can issue this command SNTP settings must be configured for SNTP to function config sntp Parameters None Example...

Page 200: ...d second For example 19 42 30 Restrictions Only administrator level users can issue this command Manually configured system time and date settings are overridden if SNTP support is enabled Example usage To manually set system time and date settings DGS 3612G 4 config time 30jun2003 16 30 30 Command config time 30jun2003 16 30 30 Success DGS 3612G 4 config time_zone Purpose Used to determine the ti...

Page 201: ...DST beginning and ending date be specified using a formula For example specify to begin DST on Saturday during the second week of April and end DST on Sunday during the last week of October annual Using annual mode will enable DST seasonal time adjustment Annual mode requires that the DST beginning and ending date be specified concisely For example specify to begin DST on April 3 and end DST on Oc...

Page 202: ...d using a 24 hour clock in hours and minutes end_time hh mm Time is expressed using a 24 hour clock in hours and minutes start_date 1 31 The start date is expressed numerically end_date 1 31 The end date is expressed numerically Example usage To configure daylight savings time on the Switch DGS 3612G 4 config dst repeating s_week 2 s_day tue s_mth 4 s_time 15 00 e_week 2 e_day wed e_mth 10 e_time ...

Page 203: ...mand show time Current Time Source System Clock Boot Time 23 Aug 2006 09 44 18 Current Time 23 Aug 2006 15 42 52 Time Zone GMT 02 30 Daylight Saving Time Repeating Offset in Minutes 30 Repeating From Apr 2nd Tue 15 00 To Oct 2nd Wed 15 30 Annual From 29 Apr 00 00 To 12 Oct 00 00 DGS 3612G 4 200 ...

Page 204: ...eploy the policy route the administrator must enable this function here as well state enable disable Once completed the Switch will identify the device to be given a policy route using the access profile function recognize that is has a Policy Based route and then forward the information on to the specified next hop router that will in turn relay packets to the gateway router Thus the new cleaner ...

Page 205: ... gateway router This field must be set or no policy routing will take place state enable disable Used to enable or disable this policy route on the Switch Restrictions Only administrator level users can issue this command profile_id value 1 14 Enter the ID number of the previously created access profile that is to be associated with this policy route access_id value 1 128 Enter the previously crea...

Page 206: ...isplay policy route settings Syntax show policy_route Description This command is used to display policy route settings Parameters None Restrictions Only administrator level users can issue this command Example usage To display the policy route settings DGS 3612G 4 show policy_route Command show policy_route Name Profile ID Access ID Next Hop State manager 1 1 10 3 3 3 Enabled Total Entries 1 DGS ...

Page 207: ...ng all unnecessary broadcast IP packets even if the high CPU utilization is not caused by the high reception rate of broadcast IP packets b When fuzzy is chosen the Switch will minimize the IP packet bandwidth received by the Switch by adjusting the bandwidth for all IP packets by setting a acceptable bandwidth for both unicast and broadcast IP packets The Switch uses an internal algorithm to filt...

Page 208: ...h will trigger the Safeguard Engine function Once the CPU utilization rises to this percentage the Safeguard Engine mechanism will initiate falling value 20 100 The user can set a percentage value of the falling CPU utilization which will trigger the Safeguard Engine function to cease Once the CPU utilization falls to this percentage the Safeguard Engine mechanism will shut down strict If selected...

Page 209: ...tch CLI Manual DGS 3612G 4 show safeguard_engine Command show safeguard_engine Safeguard engine state Disabled Safeguard engine current status normal mode CPU utilization information Rising 30 Falling 20 Trap Log state Disabled Mode Fuzzy DGS 3612G 4 206 ...

Page 210: ...s used to configure traffic segmentation on the Switch portlist Specifies a port or range of ports that will be configured for traffic segmentation forward_list Specifies a range of ports that will receive forwarded frames from the ports specified in the portlist above Restrictions Only administrator level users can issue this command Purpose Syntax Description Parameters null No ports are specifi...

Page 211: ...s portlist Specifies a port or range of ports for which the current traffic segmentation configuration on the Switch will be displayed Restrictions The port lists for segmentation and the forward list must be on the same Switch Description Example usage To display the current traffic segmentation configuration on the Switch DGS 3612G 4 show traffic_segmentation Command show traffic_segmentation Tr...

Page 212: ...nd the corresponding MAC address into the Switch s ARP table Parameters ipaddr The IP address of the end node or station macaddr The MAC address corresponding to the IP address above Restrictions Only administrator level users can issue this command The Switch supports up to 255 static ARP entries Example usage To create a static ARP entry for the IP address 10 48 74 121 and MAC address 00 50 BA 0...

Page 213: ... all clears the Switch s ARP table Parameters ipaddr The IP address of the end node or station all Deletes all ARP entries Restrictions Only administrator level users can issue this command Example Usage To delete an entry of IP address 10 48 74 121 125 from the ARP table DGS 3612G 4 delete arpentry 10 48 74 121 Command delete arpentry 10 48 74 121 Success DGS 3612G 4 delete arpentry ipv6 Purpose ...

Page 214: ...535 minutes with a default setting of 20 minutes Restrictions Only administrator level users can issue this command Parameters Example usage To configure ARP aging time DGS 3612G 4 config arp_aging time 30 Command config arp_aging time 30 DGS 3612G 4 Success show arpentry Purpose Used to display the ARP table Syntax show arpentry ipif ipif_name 12 ipaddress ipaddr static Description This command i...

Page 215: ...03 00 80 C8 40 C1 06 Dynamic System 10 40 44 60 00 50 BA 6B 2A 1E Dynamic System 10 42 73 221 00 01 02 03 04 00 Dynamic System 10 44 67 1 00 50 BA DA 02 51 Dynamic System 10 47 65 25 00 50 BA DA 03 2B Dynamic System 10 50 8 7 00 E0 18 45 C7 28 Dynamic System 10 90 90 90 00 01 02 03 04 00 Local System 10 255 255 255 FF FF FF FF FF FF Local Broadcast Total Entries 20 DGS 3612G 4 show arpentry ipv6 P...

Page 216: ...ble Description This command is used to remove dynamic ARP table entries from the Switch s ARP table Static ARP table entries are not affected Parameters None Restrictions Only administrator level users can issue this command Example Usage To remove dynamic entries in the ARP table DGS 3612G 4 clear arptable Command clear arptable Success DGS 3612G 4 213 ...

Page 217: ...re IP interface on the Switch VRRP routers within the same VRRP group must be consistent in configuration settings for this protocol to function optimally The VRRP commands in the Command Line Interface CLI are listed along with the appropriate parameters in the following table Command Parameters enable vrrp ping disable vrrp ping create vrrp vrid vrid 1 255 ipif ipif_name 12 ipaddress ipaddr stat...

Page 218: ...ch Parameters ping Adding this parameter to the command will stop the virtual IP address from being pinged from other host end nodes to verify connectivity This will only disable the ping connectivity check function To disable the VRRP protocol on the Switch omit this parameter Restrictions Only administrator level users can issue this command Example usage To disable the VRRP function globally on...

Page 219: ...t physical IP address as the Master router The default value is 100 The value of 255 is reserved for the router that owns the IP address associated with the virtual router and is therefore set automatically advertisement_interval int 1 255 Enter a time interval value in seconds for sending VRRP message packets This value must be consistent with all routers participating within the same VRRP group ...

Page 220: ...d 254 to indicate the router priority The VRRP Priority value may determine if a higher priority VRRP router overrides a lower priority VRRP router A higher priority will increase the probability that this router will become the Master router of the group A lower priority will increase the probability that this router will become the backup router VRRP routers that are assigned the same priority v...

Page 221: ...vertisement_interval 2 Success DGS 3612G 4 config vrrp ipif Purpose To configure the authentication type for the VRRP routers of an IP interface Syntax config vrrp ipif ipif_name 12 authtype none simple authdata string 8 ip authdata string 16 Description This command is used to set the authentication type for the VRRP routers of an IP interface Parameters ipif ipif_name 12 Enter the name of a prev...

Page 222: ...ttings This IP interface must be assigned to a VLAN on the Switch vrid vrid 1 255 Enter the VRRP ID of a VRRP entry for which to view these settings Restrictions Only administrator level users can issue this command Example Usage Priority 255 Checking Critical IP Disabled To view the global VRRP settings currently implemented on the Switch VRRP Enabled DGS 3612G 4 show vrrp Command show vrrp Globa...

Page 223: ...d 1 255 Enter the VRRP ID of the virtual router to be deleted Not entering this parameter will delete all VRRP entries on the Switch ipif ipif_name 12 Enter the name of the IP interface which holds the VRRP router to delete Restrictions Only administrator level users can issue this command Purpose Syntax Description Example usage To delete a VRRP entry DGS 3612G 4 delete vrrp vrid 2 ipif Trinity C...

Page 224: ...iption This command is used to create a primary and backup IP route entry to the Switch s IP routing table Parameters network_address IP address and netmask of the IP interface that is the destination of the route The address and mask information can be specified using the traditional format for example 10 1 2 3 255 0 0 0 or in CIDR format 10 1 2 3 8 ipaddr The gateway IP address for the next hop ...

Page 225: ... delete an IP route entry from the Switch s IP routing table Syntax delete iproute network_address ipaddr primary backup Description This command will delete an existing entry from the Switch s IP routing table Parameters network_address IP address and netmask of the IP interface that is the destination of the route The address and mask information can be specified using the traditional format for...

Page 226: ...rk_address IP address and netmask of the IP interface that is the destination of the route The address and mask information can be specified using the traditional format for example 10 1 2 3 255 0 0 0 or in CIDR format 10 1 2 3 8 Restrictions None Example usage To display the contents of the IP routing table DGS 3612G 4 show iproute Command show iproute Routing Table IP Address Netmask Gateway Int...

Page 227: ... table Parameters ipv6networkaddr IPV6 address and netmask of the IP interface that is the destination of the route Specify the address and mask information using the format as ipv6address prefix_length ipv6address is hexadecimal number prefix length is decimal number for example 1234 5D7F 32 ipv6addr IPv6 address for the next hop router all This will delete all IPv6 static entries for the destina...

Page 228: ...e Parameters ipv6addr The gateway IPv6 address for the next hop router metric 1 65535 Allows the entry of a routing protocol metric entry representing the number of routers between the Switch and the IP address above The default setting is 1 Restrictions Only administrator level users can issue this command Example usage To add the default static address 1234 5D7F 32 with a metric setting of 1 to ...

Page 229: ...Stack DGS 3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage To delete the default IPv6 route DGS 3612G 4 delete iproute default Command delete iproute default Success DGS 3612G 4 226 ...

Page 230: ... static rip local mettype 1 2 metric value 0 16777214 This command will redistribute routing information between the OSPF and RIP routing protocols to all routers on the network that are running OSPF or RIP Routing information entered into the Static Routing Table on the local xStack switch is also redistributed src static rip local Allows for the selection of the protocol for the source device me...

Page 231: ...ing the source device the user may set the following parameters for that source device from the following options metric value 0 16 Allows the entry of an OSPF interface cost This is analogous to a HOP Count in the RIP routing protocol Restrictions Only administrator level users can issue this command internal Specifies the internal protocol of the source device type_2 Uses the metric entered in t...

Page 232: ... information between the OSPF and RIP routing protocols to all routers on the network that are running OSPF or RIP Routing information entered into the Static Routing Table on the local switch is also redistributed Parameters src static rip local Allows the selection of the protocol of the source device mettype allows the selection of one of the methods for calculating the metric value metric valu...

Page 233: ...d into the Static Routing Table on the local switch is also redistributed Parameters metric value 0 16 Allows the entry of an OSPF interface cost This is analogous to a Hop Count in the RIP routing protocol Restrictions Only administrator level users can issue this command src Allows the selection of the protocol of the source device as being either local static or OSPF After selecting the source ...

Page 234: ...ution settings DGS 3612G 4 delete route redistribute dst rip src ospf Command delete route redistribute dst rip src ospf Success DGS 3612G 4 show route redistribute Purpose Used to display the route redistribution on the Switch Syntax show route redistribute dst rip ospf src rip static local ospf Description Displays the current route redistribution settings on the Switch Parameters src rip static...

Page 235: ...function on the Switch Parameters primary Indicates that the IP address below is the address of the primary DNS server secondary Indicates that the IP address below is the address of the secondary DNS server nameserver ipaddr The IP address of the DNS nameserver add delete Indicates whether to add or delete the DNS relay function domain_name 32 The domain name of the entry ipaddr The IP address of...

Page 236: ...rameters cache This parameter will allow the user to enable the cache lookup for the DNS rely on the Switch static This parameter will allow the user to enable the static table lookup for the DNS rely on the Switch Restrictions Purpose Syntax Only administrator level users can issue this command Example usage To enable status of DNS relay DGS 3612G 4 enable dnsr Command enable dnsr Success DGS 361...

Page 237: ...ommand Example usage To disable status of DNS relay DGS 3612G 4 disable dnsr Command disable dnsr Success DGS 3612G 4 Example usage To disable cache lookup for DNS relay DGS 3612G 4 disable dnsr cache Command disable dnsr cache Success DGS 3612G 4 Example usage To disable static table lookup for DNS relay DGS 3612G 4 disable dnsr static Command disable dnsr static Success DGS 3612G 4 show dnsr Pur...

Page 238: ... 123 com tw 10 12 12 123 Command show dnsr DNSR Status Disabled Primary Name Server 0 0 0 0 Secondary Name Server 0 0 0 0 DNSR Cache Status Disabled DNSR Static Cache Table Status Disabled DNS Relay Static Table Domain Name IP Address bbs ntu edu tw 140 112 1 23 Total Entries 2 DGS 3612G 4 235 ...

Page 239: ... version of the RIP protocol will be used to receive RIP packets The disable entry prevents the reception of RIP packets v1_or_v2 Specifies that only RIP v1 or v2 packets will be transmitted all To configure all RIP receiving mode for all IP interfaces authentication enable disable Enables or disables authentication for RIP on the Switch tx_mode Determines how received RIP packets will be interpre...

Page 240: ... command is used to enable RIP on the Switch Parameters None Restrictions Only administrator level users can issue this command Example Usage To enable RIP DGS 3612G 4 enable rip Command enable rip Success DGS 3612G 4 disable rip Purpose Used to disable RIP disable rip This command is used to disable RIP on the Switch Parameters None Restrictions Only administrator level users can issue this comma...

Page 241: ...ll display the global RIP configuration for the Switch Restrictions None Purpose Example usage To display RIP configuration DGS 3612G 4 show rip Command show rip RIP Global State Disabled RIP Interface Settings Interface IP Address TX Mode RX Mode Authen State tication System 10 41 44 33 8 Disabled Disabled Disabled Disabled Total Entries 1 DGS 3612G 4 Example usage To display RIP configurations b...

Page 242: ...Specifies that DVMRP is to be configured for all IP interfaces on the Switch metric value 1 31 Allows the assignment of a DVMRP route cost to the above IP interface A DVMRP route cost is a relative number that represents the real cost of using this route in the construction of a multicast delivery tree It is similar to but not defined as the hop count in RIP The default is 1 probe second 1 65535 D...

Page 243: ...mmand Example usage To enable DVMRP DGS 3612G 4 enable dvmrp Command enable dvmrp Success DGS 3612G 4 disable dvmrp Purpose Used to disable DVMRP Syntax disable dvmrp Description This command is used in combination with the enable dvmrp command above is used to enable and disable DVMRP on the Switch Parameters None Restrictions Only administrator level users can issue this command Example usage To...

Page 244: ... 1 1 2 Dynamic ip3 106 Total Entries 3 DGS 3612G 4 show dvmrp neighbor Purpose Used to display the DVMRP neighbor table Syntax show dvmrp neighbor ipif ipif_name 12 ipaddress network_address Description This command will display the current DVMRP neighbor table Parameters ipif_name 12 The name of the IP interface for which to display the DVMRP neighbor table ipaddress network_address The IP addres...

Page 245: ...l format for example 10 1 2 3 255 0 0 0 or in CIDR format 10 1 2 3 8 Restrictions None Example usage To display DVMRP routing next hop table DGS 3612G 4 show dvmrp nexthop Command show dvmrp nexthop Source IP Address Netmask Interface Name Type 10 0 0 0 8 ip2 Leaf 10 0 0 0 8 ip3 Leaf 20 0 0 0 8 System Leaf 20 0 0 0 8 ip3 Leaf 30 0 0 0 8 System Leaf 30 0 0 0 8 ip2 Leaf Total Entries 6 DGS 3612G 4 s...

Page 246: ... Switch CLI Manual DGS 3612G 4 show dvmrp Command show dvmrp DVMRP Global State Disabled Interface IP Address Neighbor Timeout Probe Metric State System 10 90 90 90 8 35 10 1 Disabled Trinity 12 1 1 1 8 35 10 1 Enabled Total Entries 2 DGS 3612G 4 243 ...

Page 247: ...gs for all IP interfaces hello sec 1 18724 The time in seconds between issuing hello packets to find neighboring routers jp_interval sec 1 18724 The join prune interval is the time value seconds between transmitting flooding to all interfaces multicast messages to downstream routers and automatically pruning a branch from the multicast delivery tree The jp_interval is also the interval used by the...

Page 248: ...enabled at a later time with the enable pim command Parameters None Restrictions Only administrator level users can use this command Usage example To disable PIM on the Switch DGS 3612G 4 disable pim Command disable pim Success DGS 3612G 4 show pim neighbor Purpose Used to display PIM neighbor router table entries Syntax show pim neighbor ipif ipif_name 12 ipaddress network_address Description Thi...

Page 249: ...ay current PIM configuration Syntax show pim ipif ipif_name 12 Description This command will list current PIM configuration settings for a specified IP interface or all IP interfaces Parameters ipif ipif_name 12 The name of an IP interface for which PIM settings are listed If no parameters are specified all PIM settings are displayed for all interfaces Restrictions None Usage example To display PI...

Page 250: ...ional format for example 10 1 2 3 255 0 0 0 or in CIDR format 10 1 2 3 8 Restrictions None Usage example To display the current IP multicast forwarding cache DGS 3612G 4 show ipmc cache Command show ipmc cache 224 1 2 3 10 48 75 3 3 10 48 76 6 30 dvmrp Multicast Source Upstream Expire Routing Group Address Netmask Neighbor Time Protocol 224 1 1 1 10 48 74 121 32 10 48 75 63 30 dvmrp 224 1 1 1 20 4...

Page 251: ...hat are related to the DVMRP protocol pim Specifying this parameter will display only those entries that are related to the PIM protocol Restrictions None Usage example To display the current IP multicast interface table by DVMRP entry DGS 3612G 4 show ipmc protocol dvmrp Command show ipmc protocol dvmrp Interface Name IP Address Multicast Routing System 10 90 90 90 INACT Triton 11 1 1 1 DVMRP Tot...

Page 252: ...le Parameters key_id 1 255 The MD5 key ID The user may enter a key ranging from 1 to 255 password An MD5 password of up to 16 bytes Restrictions Only administrator level users can issue this command Usage example To create an entry in the MD5 key table DGS 3612G 4 create md5 key 1 dlink Command create md5 key 1 dlink Success DGS 3612G 4 config md5 key Purpose Used to enter configure the password f...

Page 253: ... Only administrator level users can issue this command Usage example The delete an entry in the MD5 key table DGS 3612G 4 delete md5 key 1 Command delete md5 key 1 Success DGS 3612G 4 show md5 Purpose Used to display an MD5 key table Syntax show md5 key key_id 1 255 Description This command will display the current MD5 key table Parameters key_id 1 255 The MD5 key ID to be displayed Restrictions N...

Page 254: ...a_ext advertise enable disable delete ospf aggregation area_id network_address lsdb_type summary nssa_ext config ospf aggregation area_id network_address lsdb_type summary advertise enable disable nssa_ext advertise enable disable show ospf aggregation area_id show ospf lsdb area area_id advertise_router ipaddr type rtrlink netlink summary assummary asextlink nssa_ext ipaddr show ospf virtual_neig...

Page 255: ...74 122 Success DGS 3612G 4 enable ospf Purpose Used to enable OSPF on the Switch Syntax enable ospf Description This command in combination with the disable ospf command below is used to enable and disable OSPF on the Switch Parameters None Restrictions Only administrator level users can issue this command Usage example To enable OSPF on the Switch DGS 3612G 4 enable ospf Command enable ospf Succe...

Page 256: ...rameters None Restrictions None Usage example To show OSPF state DGS 3612G 4 show ospf Command show ospf OSPF Router ID 10 1 1 2 State Enabled OSPF Interface Settings Status ip2 20 1 1 1 8 0 0 0 0 Disabled Link DOWN 1 Total Entries 3 0 0 0 0 Normal None None None Interface IP Address Area ID State Link Metric System 10 90 90 90 8 0 0 0 0 Disabled Link DOWN 1 ip3 30 1 1 1 8 0 0 0 0 Disabled Link DO...

Page 257: ...n type The OSPF area mode of operation the user has three choices to choose from to define the area created here stub_summary enable disable Enables or disables the OSPF area to import summary LSA advertisements Restrictions Only administrator level users can issue this command metric value 0 65535 The OSPF area cost between 0 and 65535 0 denotes that the value will be automatically assigned The d...

Page 258: ...SPF domain Restrictions Only administrator level users can issue this command Usage example To delete an OSPF area DGS 3612G 4 delete ospf area 10 48 74 122 Command delete ospf area 10 48 74 122 Success DGS 3612G 4 config ospf area Purpose Used to configure an OSPF area s settings Syntax config ospf area area_id type normal stub nssa translate enable disable stub_summary enable disable metric valu...

Page 259: ... this command Usage example To configure an OSPF area s settings DGS 3612G 4 config ospf area 10 48 74 122 type stub stub_summary enable metric 1 Command config ospf area 10 48 74 122 type stub stub_summary enable metric 1 Success DGS 3612G 4 show ospf area Purpose Used to display an OSPF area s configuration Syntax show ospf area area_id Description This command will display the current OSPF area...

Page 260: ...ic 2 Success DGS 3612G 4 delete ospf host_route Purpose Used to delete an OSPF host route Syntax delete ospf host_route ipaddr Description This command is used to delete an OSPF host route Parameters ipaddr The IP address of the OSPF host Restrictions Only administrator level users can issue this command Usage example To delete an OSPF host route DGS 3612G 4 delete ospf host_route 10 48 74 122 Com...

Page 261: ... create ospf aggregation Purpose Used to configure OSPF area aggregation settings Syntax create ospf aggregation area_id network_address lsdb_type summary advertise enable disable nssa_ext advertise enable disable Description This command is used to create an OSPF area aggregation Parameters area_id A 32 bit number in the form of an IP address xxx xxx xxx xxx that uniquely identifies the OSPF area...

Page 262: ...a in the OSPF domain network_address The 32 bit number in the form of an IP address that uniquely identifies the network that corresponds to the OSPF Area lsdb_type summary Specifies the type of address aggregation to be deleted Choose either summary or nssa_ext Restrictions Only administrator level users can issue this command Usage example To configure the OSPF area aggregation settings DGS 3612...

Page 263: ...bled Usage example To configure the OSPF area aggregation settings DGS 3612G 4 config ospf aggregation 10 1 1 1 10 48 76 122 16 lsdb_type summary advertise enable Command config ospf aggregation 10 1 1 1 10 48 76 122 16 lsdb_type summary advertise enable Success DGS 3612G 4 show ospf aggregation Used to display the current OSPF area aggregation settings Syntax show ospf aggregation area_id Descrip...

Page 264: ...this is interpreted as no area ID for external LSAs and as no cost given for the advertised link Usage example To display the link state database of OSPF DGS 3612G 4 show ospf lsdb Command show ospf lsdb ID Type Router ID ID Number Total Entries 5 Area LSDB Advertising Link State Cost Sequence 0 0 0 0 RTRLink 50 48 75 73 50 48 75 73 0x80000002 0 0 0 0 Summary 50 48 75 73 10 0 0 0 8 1 0x80000001 1 ...

Page 265: ...trictions None Usage example To display the current OSPF virtual neighbor table DGS 3612G 4 show ospf virtual_neighbor Total Entries 1 Command show ospf virtual_neighbor Transit Router ID of IP Address of Virtual Neighbor Area ID Virtual Neighbor Virtual Neighbor State 10 1 1 1 10 2 3 4 10 48 74 111 Exchange DGS 3612G 4 config ospf ipif Purpose Used to configure the OSPF interface settings Syntax ...

Page 266: ...es actively advertise OSPF to routers on other Intranets that are not part of this specific OSPF group Passive interface will not advertise to any other routers than those within its OSPF intranet When this field is disabled it denotes an active interface The default setting is disable active Restrictions Only administrator level users can issue this command none Choosing this parameter will requi...

Page 267: ...is command will display the current OSPF settings for all OSPF interfaces on the Switch Parameters None Restrictions None Usage example To display the current OSPF interface settings for all OSPF interfaces on the Switch DGS 3612G 4 show ospf all Interface Name System IP Address 10 42 73 10 8 Link Up Hello Interval 10 Dead Interval 40 Command show ospf all Network Medium Type BROADCAST Metric 1 Ar...

Page 268: ...er before the selected area declares that router down An interval between 1 and 65535 seconds can be specified The Dead Interval must be evenly divisible by the Hello Interval authentication Enter the type of authentication preferred The user may choose between Restrictions Only administrator level users can issue this command none Choosing this parameter will require no authentication simple pass...

Page 269: ...parameter will set a simple authentication which includes a case sensitive password of no more than 8 characters none Choosing this parameter will require no authentication md5 key_id 1 255 Choosing this parameter will set authentication based on md5 encryption A previously configured MD5 key ID 1 to 255 is required Restrictions Usage example To configure the OSPF virtual interface settings DGS 36...

Page 270: ...xxx xxx xxx that uniquely identifies the OSPF area in the OSPF domain neighbor_id The OSPF router ID for the remote area This is a 32 bit number in the form of an IP address xxx xxx xxx xxx that uniquely identifies the remote area s Area Border Router This is the router ID of the neighbor router Restrictions None Description Parameters Usage example To display the current OSPF virtual interface co...

Page 271: ... be the first choice for routing purposes and the next most reliable path is Static due to the fact that its has the next lowest value To set a higher reliability for a route change its value to a number less than the value of a route preference that has a greater reliability value using the config route preference command For example if the user wishes to make RIP the most reliable route the user...

Page 272: ...route ospfIntra Choose this parameter to configure the preference value for the OSPF Intra area route ospfInter Choose this parameter to configure the preference value for the OSPF Inter area route ospfExtT1 Choose this parameter to configure the preference value for the OSPF AS External route type 1 route ospfExtT2 Choose this parameter to configure the preference value for the AS External route ...

Page 273: ...oute preference settings for the OSPF AS External route type 2 Entering this command with no parameters will display the route preference for all routes Restrictions None Example usage To view the route preference values for all routes DGS 3612G 4 show route preference Command show route preference Route Preference Settings Route Type Preference RIP 100 OSPF Intra 80 STATIC 60 LOCAL 0 OSPF Inter 9...

Page 274: ...ess table notification on the Switch Syntax enable mac_notification Description This command is used to enable MAC address notification without changing configuration Parameters None Restrictions Only administrator level users can issue this command Example usage To enable MAC notification without changing basic configuration DGS 3612G 4 enable mac_notification Command enable mac_notification Succ...

Page 275: ...re the Switch s MAC address table notification global settings DGS 3612G 4 config mac_notification interval 1 historysize 500 Command config mac_notification interval 1 historysize 500 Success DGS 3612G 4 config mac_notification ports Purpose Used to configure MAC address notification status settings Syntax config mac_notification ports portlist all enable disable Description MAC address notificat...

Page 276: ...ication Command show mac_notification Global Mac Notification Settings State Enabled Interval 1 History Size 1 DGS 3612G 4 show mac_notification ports Purpose Used to display the Switch s MAC address table notification status settings Syntax show mac_notification ports portlist Description This command is used to display the Switch s MAC address table notification status settings Parameters portli...

Page 277: ...ification ports Command show mac_notification ports Port MAC Address Table Notification State 1 Disabled 2 Disabled 3 Disabled 4 Disabled 5 Disabled 6 Disabled 7 Disabled 8 Disabled 9 Disabled 10 Disabled 11 Disabled 12 Disabled CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh 274 ...

Page 278: ...hen the user is prompted by the Switch to enter usernames and passwords for authentication the Switch contacts the TACACS XTACACS TACACS RADIUS server to verify and the server will respond with one of three messages A The server verifies the username and password and the user is granted normal user privileges on the Switch B The server will not accept the username and password and the user is deni...

Page 279: ...fig authen application console telnet ssh http all login enable default method_list_name string 15 show authen application create authen server_group string 15 config authen server_group tacacs xtacacs tacacs radius string 15 add delete server_host ipaddr protocol tacacs xtacacs tacacs radius delete authen server_group string 15 show authen server_group string 15 create authen server_host ipaddr p...

Page 280: ...Syntax disable authen_policy Description This command will disable the administrator defined authentication policy for users trying to access the Switch When disabled the Switch will access the local user account database for username and password verification In addition the Switch will now accept the local enable password as the authentication for normal users attempting to access administrator ...

Page 281: ...user defined or default method list of authentication methods for user login config authen_login default method_list_name string 15 method tacacs xtacacs tacacs radius server_group string 15 local none Description This command will configure a user defined or default method list of authentication methods for users logging on to the Switch The sequence of methods implemented in this command will af...

Page 282: ...user to be authenticated using the TACACS protocol from the remote TACACS server hosts of the TACACS server group list radius Adding this parameter will require the user to be authenticated using the RADIUS protocol from the remote RADIUS server hosts of the RADIUS server group list server_group string 15 Adding this parameter will require the user to be authenticated using a user defined server g...

Page 283: ...authen_login method_list_name string 15 Description This command is used to delete a list for authentication methods for user login Parameters string 15 Enter an alphanumeric string of up to 15 characters to define the given method list to delete Only administrator level users can issue this command Restrictions Example usage To delete the method list named Trinity DGS 3612G 4 delete authen_login ...

Page 284: ...thod list named Trinity DGS 3612G 4 show authen_login method_list_name Trinity Command show authen_login method_list_name Trinity Method List Name Priority Method Name Comment Trinity 1 tacacs Built in Group 2 tacacs Built in Group 3 Darren User defined Group 4 local Keyword DGS 3612G 4 create authen_enable method_list_name Purpose Used to create a user defined method list of authentication method...

Page 285: ... the Switch will restart the same sequence with the following protocol listed XTACACS If no authentication takes place using the XTACACS list the local_enable password set in the Switch is used to authenticate the user Successful authentication using any of these methods will give the user an Admin level privilege Parameters default The default method list for administration rights authentication ...

Page 286: ...enticated using the local user account database on the Switch The local enable password of the device can be configured using the config admin local_password command none Adding this parameter will require no authentication to access the administration level privileges on the Switch Example usage To configure the user defined method list Permit with authentication methods TACACS XTACACS and local ...

Page 287: ... to gain access to Administrator level privileges on the Switch method_list_name string 15 Enter an alphanumeric string of up to 15 characters to define the given method list to view all Entering this parameter will display all the authentication login methods currently configured on the Switch The window will display the following parameters Restrictions None Purpose Method List Name The name of ...

Page 288: ...re login Use this parameter to configure an application for normal login on the user level using a previously configured method list enable Use this parameter to configure an application for upgrading a normal user level to administrator privileges using a previously configured method list default Use this parameter to configure an application for user authentication using the default method list ...

Page 289: ...e Used to create an authentication server host Syntax create authen server_host ipaddr protocol tacacs xtacacs tacacs radius port int 1 65535 key key_string 254 none timeout int 1 255 retransmit 1 255 Description This command will create an authentication server host for the TACACS XTACACS TACACS RADIUS security protocols on the Switch When a user attempts to access the Switch with authentication ...

Page 290: ...e a TACACS authentication server host with port number 1234 a timeout value of 10 seconds and a retransmit count of 5 DGS 3612G 4 create authen server_host 10 1 1 121 protocol tacacs port 1234 timeout 10 retransmit 5 Command create authen server_host 10 1 1 121 protocol tacacs port 1234 timeout 10 retransmit 5 Success DGS 3612G 4 config authen server_host Purpose Used to configure a user defined a...

Page 291: ...mand tacacs Enter this parameter if the server host utilizes the TACACS protocol xtacacs Enter this parameter if the server host utilizes the XTACACS protocol tacacs Enter this parameter if the server host utilizes the TACACS protocol radius Enter this parameter if the server host utilizes the RADIUS protocol Example usage To configure a TACACS authentication server host with port number 4321 a ti...

Page 292: ...n the Switch The following parameters are displayed IP Address The IP address of the authentication server host Protocol The protocol used by the server host Possible results will include TACACS XTACACS TACACS or RADIUS Port The virtual port number on the server host The default value is 49 Timeout The time in seconds the Switch will wait for the server host to reply to an authentication request R...

Page 293: ... to group TACACS XTACACS TACACS RADIUS server hosts into user defined categories for authentication using method lists The user may define the type of server group by protocol or by previously defined server group Up to eight 8 authentication server hosts may be added to any particular group Parameters server_group The user may define the group by protocol groups built into the Switch TACACS XTACA...

Page 294: ...dd an authentication host to server group group_1 DGS 3612G 4 config authen server_group group_1 add server_host 10 1 1 121 protocol tacacs Command config authen server_group group_1 add server_host 10 1 1 121 protocol tacacs Success DGS 3612G 4 delete authen server_group Purpose Used to delete a user defined authentication server group Syntax delete authen server_group string 15 Description This ...

Page 295: ...er_group Group Name IP Address Protocol Darren 10 53 13 2 TACACS tacacs 10 53 13 94 TACACS tacacs xtacacs Total Entries 4 DGS 3612G 4 config authen parameter response_timeout Purpose Used to configure the amount of time the Switch will wait for a user to enter authentication before timing out Syntax config authen parameter response_timeout int 0 255 Description This command will set the time the S...

Page 296: ...e usage To set the maximum number of authentication attempts at 5 DGS 3612G 4 config authen parameter attempt 5 Command config authen parameter attempt 5 Success DGS 3612G 4 show authen parameter Purpose Used to display the authentication parameters currently configured on the Switch Syntax show authen parameter Description This command will display the authentication parameters currently configur...

Page 297: ...Restrictions Only user level users can issue this command Example usage To enable administrator privileges on the Switch DGS 3612G 3 enable admin Password DGS 3612G 4 config admin local_enable Purpose Used to configure the local enable password for administrator level privileges Syntax config admin local_enable Description This command will configure the locally enabled password for the enable adm...

Page 298: ...t and the SSH Server 4 Finally enable SSH on the Switch using the enable ssh command After following the above steps you can configure an SSH Client on the remote PC and manage the Switch using secure in band communication The Secure Shell SSH commands in the Command Line Interface CLI are listed along with the appropriate parameters in the following table Command Parameters enable ssh disable ssh...

Page 299: ...tication mode for users attempting to access the Switch Parameters password This parameter may be chosen if the administrator wishes to use a locally configured password for authentication on the Switch publickey This parameter may be chosen if the administrator wishes to use a publickey configuration set on a SSH server for authentication hostbased This parameter may be chosen if the administrato...

Page 300: ... timeout sec 120 600 authfail int 2 20 rekey 10min 30min 60min never Description This command allows users to configure the SSH server Parameters maxsession int 1 8 Allows the user to set the number of users that may simultaneously access the Switch The default setting is 8 contimeout sec 120 600 Allows the user to set the connection timeout The user may set a time between 120 and 600 seconds The ...

Page 301: ...ntax config ssh user username authmode hostbased hostname domain_name hostname_IP domain_name ipaddr password publickey Description This command allows configuration of the SSH user authentication method Parameters username Enter a username of no more than 15 characters to identify the SSH user authmode Specifies the authentication mode of the SSH user wishing to log on to the Switch The administr...

Page 302: ...rd Enter a case sensitive new password Enter the new password again for conformation Success DGS 3612G 4 show ssh user authmode Purpose Used to display the SSH user setting Syntax show ssh user authmode Description This command allows you to display the current SSH user setting Parameters None Restrictions None Example usage To display the SSH user DGS 3612G 4 show ssh user authmode Command show s...

Page 303: ...tion algorithm cast128 This parameter will enable or disable the Cast128 encryption algorithm twofish128 This parameter will enable or disable the twofish128 encryption algorithm twofish192 This parameter will enable or disable the twofish192 encryption algorithm twofish256 This parameter will enable or disable the twofish256 encryption algorithm MD5 This parameter will enable or disable the MD5 M...

Page 304: ... set on the Switch DGS 3612G 4 show ssh algorithm Command show ssh algorithm Encryption Algorithm 3DES Enabled AES128 Enabled AES192 Enabled arcfour Enabled twofish128 Enabled MD5 Enabled Public Key Algorithm DSA Enabled AES256 Enabled blowfish Enabled cast128 Enabled twofish192 Enabled twofish256 Enabled Data Integrity Algorithm SHA1 Enabled RSA Enabled DGS 3612G 4 301 ...

Page 305: ...t keys These keys are used to encrypt messages and need to be consistent between client and host for optimal use 3 Hash Algorithm This part of the ciphersuite allows the user to choose a message digest function which will determine a Message Authentication Code This Message Authentication Code will be encrypted with a sent message to provide integrity and prevent against replay attacks The Switch ...

Page 306: ...vel users can issue this command RSA_EXPORT_with_RC4_40_MD5 This ciphersuite combines the RSA Export key exchange stream cipher RC4 encryption with 40 bit keys RSA_with_RC4_128_MD5 This ciphersuite combines the RSA key exchange stream cipher RC4 encryption with 128 bit keys and the MD5 Hash Algorithm RSA_with_3DES_EDE_CBC_SHA This ciphersuite combines the RSA key exchange CBC Block Cipher 3DES_EDE...

Page 307: ...E encryption and the SHA Hash Algorithm DHE_DSS_with_3DES_EDE_CBC_SHA This ciphersuite combines the DSA Diffie Hellman key exchange CBC Block Cipher 3DES_EDE encryption and SHA Hash Algorithm RSA_EXPORT_with_RC4_40_MD5 This ciphersuite combines the RSA Export key exchange stream cipher RC4 encryption with 40 bit keys Example usage Command disable ssl To disable the SSL status on the Switch DGS 361...

Page 308: ...w ssl cachetimeout Purpose Used to show the SSL cache timeout Syntax show ssl cachetimeout Description Entering this command will allow the user to view the SSL cache timeout currently implemented on the Switch Parameters None Restrictions None Example usage To view the SSL cache timeout on the Switch DGS 3612G 4 show ssl cachetimeout Command show ssl cachetimeout Cache timeout is 600 second s DGS...

Page 309: ...cate file is a data record used for authenticating devices on the network It contains information on the owner keys for authentication and digital signatures Both the server and the client must have consistent certificate files for optimal use of the SSL function The Switch only supports certificate files with der file extensions Parameters ipaddr Enter the IP address of the TFTP server certfilena...

Page 310: ...d is listed in detail in the following sections enable jumbo_frame Purpose Used to enable the jumbo frame function on the Switch Syntax enable jumbo_frame Description This command will allow Ethernet frames larger than 1536 bytes to be processed by the Switch The maximum size of the jumbo frame may not exceed 9220 bytes tagged Parameters None Restrictions None Example usage To enable the jumbo fra...

Page 311: ...s of the jumbo frame function on the Switch Syntax show jumbo_frame Description This command will show the status of the jumbo frame function on the Switch Parameters None Restrictions None Example usage To show the jumbo frame status currently configured on the Switch DGS 3612G 4 show jumbo_frame Command show jumbo_frame Jumbo frame state disabled Maximum frame size 1536 bytes DGS 3612G 4 308 ...

Page 312: ...away from the CS The SIM group is a group of switches that are managed as a single entity The DGS 3612G may take on three different roles Commander Switch CS This is a switch that has been manually configured as the controlling device for a group and takes on the following characteristics It has an IP Address It is not a Commander Switch or Member Switch of another Single IP group Member Switch MS...

Page 313: ... will add the MS back into the SIM tree automatically No configuration will be necessary to rediscover these switches There are some instances where pre saved MS switches cannot be rediscovered For example if the Switch is still powered down if it has become the member of another group or if it has been configured to be a Commander Switch the rediscovery process cannot occur This version will supp...

Page 314: ... Description This command will disable SIM globally on the Switch Parameters None Restrictions Only administrator level users can issue this command Example usage To disable SIM on the Switch DGS 3612G 4 disable sim Command disable sim Success DGS 3612G 4 show sim Purpose Used to view the current information regarding the SIM group on the Switch Syntax show sim candidates candidate_id 1 100 member...

Page 315: ...ormation concerning members of the SIM group To view a specific member include that member s id number listed from 1 to 32 group commander_mac macaddr Entering this parameter will display information concerning the SIM group To view a specific group include the commander s MAC address of the group neighbor Entering this parameter will display neighboring devices of the Switch A SIM neighbor is def...

Page 316: ...n 1 00 01 02 03 04 00 DGS 3612G L3 Switch 40 1 00 B62 The Man Total Entries 2 DGS 3612G 4 To show other groups information in summary DGS 3612G 4 show sim group Command show sim group SIM Group Name default ID MAC Address Platform Hold Firmware Device Name Capability Time Version 1 00 01 02 03 04 00 DGS 3627 L3 Switch 40 1 00 B62 Trinity 2 00 55 55 00 55 00 DGS 3612G L3 Switch 140 1 00 B62 default...

Page 317: ...or level users can issue this command Purpose Parameters Example usage To connect to the MS with member ID 2 through the CS using the command line interface DGS 3612G 4 reconfig member_id 2 DGS 3612G 4 Command reconfig member_id 2 Login config sim_group Purpose Used to add candidates and delete members from the SIM group Syntax config sim add candidate_id 1 100 password delete member_id 1 32 Descr...

Page 318: ...g of up to 64 characters to rename the SIM group dp_interval 30 90 The user may set the discovery protocol interval in seconds that the Switch will send out discovery packets Returning information to the CS will include information about other switches connected to it Ex MS CaS The user may set the dp_interval from 30 to 90 seconds hold time sec 100 255 Using this parameter the user may set the ti...

Page 319: ...roup DGS 3612G 4 config sim commander group_name Trinity Command config sim commander group_name Trinity Success DGS 3612G 4 download sim_ms Used to download firmware or configuration file to an indicated device Syntax download sim firmware_from_tftp configuration_from_tftp ipaddr path_filename members mslist 1 32 all Description This command will download a firmware file or configuration file to ...

Page 320: ...ating firmware Please wait Download Status ID MAC Address Result 1 00 01 02 03 04 00 Success 2 00 07 06 05 04 03 Success 3 00 07 06 05 04 03 Success DGS 3612G 4 To download configuration files DGS 3612G 4 download sim configuration_from_tftp 10 53 13 94 c dgs3612g txt all Command download sim configuration_from_tftp 10 53 13 94 c dgs3612g txt all This device is updating configuration Please wait D...

Page 321: ...receive the switch configuration or log files members Enter this parameter to specify the members the user prefers to upload switch configuration or log files to The user may specify a member or members by adding one of the following Only administrator level users can issue this command all Add this parameter to specify all members of the SIM group will receive the switch configuration or log file...

Page 322: ...te command will list all the corresponding parameters for the specified command along with a brief description of the commands function and similar commands having the same words in the command Restrictions None Example usage To display all of the commands in the CLI DGS 3612G 4 clear clear arptable clear counters clear fdb clear log clear port_security_entry port config 802 1p default_priority co...

Page 323: ...rity config stp version config command_history Purpose Used to configure the command history Syntax config command_history value 1 40 Description This command is used to configure the command history Parameters value 1 40 The number of previously executed commands maintained in the buffer Up to 40 of the latest executed commands may be viewed Restrictions None Example usage To configure the comman...

Page 324: ...xStack DGS 3612G Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS 3612G 4 show command_history Command show command_history show vlan DGS 3612G 4 show show command history 321 ...

Page 325: ...Control IEEE 802 3ad Link Aggregation Control IEEE 802 3x Full duplex Flow Control IEEE 802 3 Nway auto negotiation SFP Mini GBIC Support IEEE 802 3z 100BASE FX DEM 210 transceiver IEEE 802 3z 1000BASE LX DEM 310GT transceiver IEEE 802 3z 1000BASE SX DEM 311GT transceiver IEEE 802 3z 1000BASE LH DEM 314GT transceiver IEEE 802 3z 1000BASE ZX DEM 315GT transceiver IEEE 802 3z WDM Transceiver DEM 330...

Page 326: ...e 40 70 C Humidity 5 95 non condensing Dimensions DGS 3612G 441mm x 389mm x 44mm Weight DGS 3612G 5kg 11 02 lbs EMI CE class A FCC Class A C Tick VCCI Safety CB report cUL Performance Transmission Method Store and forward Packet Buffer 2 MB per device Packet Filtering Forwarding Rate 14 881 pps 10M port 148 810 pps 100M port 1 488 100 pps 1Gbps port MAC Address Learning Automatic update Supports 1...

Reviews:

No comments

Related manuals for xStack DGS-3612G series

3Com 486 Getting Started Manual preview
486
Brand: 3Com Pages: 20
Canon Vb-C60 - Ptz Network Camera Setup Manual preview
Vb-C60 - Ptz Network Camera
Brand: Canon Pages: 30
PaloAlto Networks PA-5400 Series Quick Start Manual preview
PA-5400 Series
Brand: PaloAlto Networks Pages: 2
YASKAWA SI-EP3/V Installation Manual preview
SI-EP3/V
Brand: YASKAWA Pages: 68
Ciara Horizon D10750 Disassembly Manual preview
Horizon D10750
Brand: Ciara Pages: 14
Tripp Lite P581-006 Specification Sheet preview
P581-006
Brand: Tripp Lite Pages: 2
Jensen of Scandinavia Air:Link 29150 Installation Manual preview
Air:Link 29150
Brand: Jensen of Scandinavia Pages: 2
N-Tron 900B Installation & User Manual preview
900B
Brand: N-Tron Pages: 21
LevelOne GNC-0112 Quick Installation Manual preview
GNC-0112
Brand: LevelOne Pages: 10
ROBOfiber RB-GES401-POE User Manual preview
RB-GES401-POE
Brand: ROBOfiber Pages: 2
MikroTik RBwAPR-2nD Quick Manual preview
RBwAPR-2nD
Brand: MikroTik Pages: 18
QNAP TS-230 User Manual preview
TS-230
Brand: QNAP Pages: 44
R.V.R. Elettronica SCM6/1 User Manual preview
SCM6/1
Brand: R.V.R. Elettronica Pages: 48
Metz Connect OpDAT Series Mounting Note preview
OpDAT Series
Brand: Metz Connect Pages: 2
elobau 4621273E Original Operating Instructions preview
4621273E
Brand: elobau Pages: 18
ELStorage SS-20WM User Manual preview
SS-20WM
Brand: ELStorage Pages: 3
ELTEX LTP-4X Operation Manual preview
LTP-4X
Brand: ELTEX Pages: 199
ELSA ECOMO 19M99 Manual preview
ECOMO 19M99
Brand: ELSA Pages: 40

Brands by name

Popular brands

Load more brands