manualshive.com logo in svg

D-Link xStack, Reference Manual

The D-Link xStack, an advanced networking solution, offers unparalleled performance and scalability. Ensure a smooth setup process with the comprehensive Hardware Installation Manual. Download the manual for free from our website to effortlessly install and optimize your xStack for enhanced networking capabilities.

Share
Download
background image

xStack® DGS-3620 Series Layer 3 Managed Stackable Gigabit Switch CLI Reference Guide 

471 

 

Chapter 32

 

DoS Attack 

Prevention Commands 

 

config dos_prevention dos_type

 [{land_attack | blat_attack | tcp_null_scan | tcp_xmasscan | 

tcp_synfin | tcp_syn_srcport_less_1024 | ping_death_attack | tcp_tiny_frag_attack} | all] 
{action [drop] | state [enable | disable]}(1) 

config dos_prevention log

 [enable | disable] 

config dos_prevention trap

 [enable | disable] 

show dos_prevention

 {land_attack | blat_attack | tcp_null_scan | tcp_xmasscan | tcp_synfin | 

tcp_syn_srcport_less_1024 | ping_death_attack | tcp_tiny_frag_attack} 

 

32-1

 

config dos_prevention dos_type 

Description 

This command is used to configure the prevention of each DoS attacks. The packet matching will 
be done by hardware. For a specific type of attack, the content of the packet will be matched 
against a specific pattern. 

 

Format 

config dos_prevention dos_type [{land_attack | blat_attack | tcp_null_scan | tcp_xmasscan 
| tcp_synfin | tcp_syn_srcport_less_1024 | ping_death_attack | tcp_tiny_frag_attack} | all] 
{action [drop] | state [enable | disable]}(1) 

 

Parameters 

land_attack

 - (Optional) Specifies that the DoS attack prevention type will be set to prevent 

LAND attacks. 

blat_attack

 - (Optional) Specifies that the DoS attack prevention type will be set to prevent BLAT 

attacks. 

tcp_null_scan

 - (Optional) Specifies that the DoS attack prevention type will be set to prevent 

TCP Null Scan attacks. 

tcp_xmasscan

 - (Optional) Specifies that the DoS attack prevention type will be set to prevent 

TCP Xmas Scan attacks. 

tcp_synfin

 - (Optional) Specifies that the DoS attack prevention type will be set to prevent TCP 

SYN FIN attacks. 

tcp_syn_srcport_less_1024

 - (Optional) Specifies that the DoS attack prevention type will be 

set to prevent TCP SYN Source Port Less 1024 attacks. 

ping_death_attack

 - (Optional) Specifies that the DoS attack prevention type will be set to 

prevent Ping of Death attacks. 

tcp_tiny_frag_attack

 - (Optional) Specifies that the DoS attack prevention type will be set to 

prevent TCP Tiny Frag attacks. 

all

 - Specifies that the DoS attack prevention type will be set to prevent all attacks. 

action

 - (Optional) Specifies the action that the DoS Prevention function will take. 

drop

 - Specifies to drop all matched DoS attack packets. 

state

 - (Optional) Specifies the DoS Attack Prevention state. 

enable

 - Specifies that the DoS Attack Prevention state will be enabled. 

disable

 - Specifies that the DoS Attack Prevention state will be disabled. 

 

Summary of Contents for xStack

Page 1: ......

Page 2: ...Chapter 17 Command List History Commands 274 Chapter 18 Command Logging Command List 277 Chapter 19 Common Unicast Routing Command List 279 Chapter 20 Compound Authentication Commands 293 Chapter 21 Debug Software Command List 303 Chapter 22 DHCP Local Relay Commands 372 Chapter 23 DHCP Relay Commands 376 Chapter 24 DHCP Server Commands 393 Chapter 25 DHCP Server Screening Commands 416 Chapter 26 ...

Page 3: ...mand List 660 Chapter 55 Limited Multicast IP Address Commands 665 Chapter 56 Link Aggregation Commands 674 Chapter 57 LLDP Commands 679 Chapter 58 Loopback Detection Commands 702 Chapter 59 Loopback Interface Commands 709 Chapter 60 MAC Notification Commands 712 Chapter 61 MAC based Access Control Commands 717 Chapter 62 MD5 Configuration Command List 733 Chapter 63 Mirror Commands 736 Chapter 64...

Page 4: ... Tree Protocol STP commands 1067 Chapter 96 SSH Commands 1080 Chapter 97 SSL Commands 1090 Chapter 98 Stacking Commands 1097 Chapter 99 Static MAC based VLAN Commands 1104 Chapter 100 Static Multicast Route Commands 1107 Chapter 101 Subnet VLAN Commands 1110 Chapter 102 Super VLAN and Sub VLAN Commands 1116 Chapter 103 Switch Port Commands 1122 Chapter 104 System Severity Commands 1126 Chapter 105...

Page 5: ...xStack DGS 3620 Series Layer 3 Managed Stackable Gigabit Switch CLI Reference Guide V Appendix B System Log Entries 1238 Appendix C Trap Entries 1267 Appendix D RADIUS Attributes Assignment 1277 ...

Page 6: ...ed in terms of purpose format description parameters and examples Configuration and management of the Switch via the Web based management agent are discussed in the Web UI Reference Guide For detailed information on installing hardware please also refer to the Harware Installation Guide 1 1 Accessing the Switch via the Serial Port The Switch s serial port s default settings are as follows 115200 b...

Page 7: ... address can also be found in the Web management program on the Device Information Basic Settings window on the Configuration menu The IP address for the Switch must be set before it can be managed with the Web based manager The Switch IP address can be automatically set using BOOTP or DHCP protocols in which case the actual address assigned to the Switch must be known Starting at the command line...

Page 8: ... agent using the above IP address to connect to the Switch There are a number of helpful features included in the CLI Entering the command will display a list of all of the top level commands DGS 3620 28SC admin Command cable_diag ports cd cfm dm cfm linktrace cfm lm cfm lock md cfm loopback change drive clear clear address_binding dhcp_snoop binding_entry ports clear address_binding nd_snoop bind...

Page 9: ...mand will appear at the command prompt DGS 3620 28SC admin config account Command config account Next possible completions username 15 DGS 3620 28SC admin In the above example the command config account was entered without the required parameter username the CLI returned the Next possible completions username prompt The up arrow cursor control key was pressed to re enter the previous command confi...

Page 10: ... 802 1x aaa access_profile account accounting acct_client address_binding arp_spoofing_prevention arpentry asymmetric_vlan attack_log auth_client auth_diagnostics auth_session_statistics auth_statistics authen authen_enable authen_login authen_policy authentication authorization autoconfig bandwidth_control bgp boot_file bpdu_protection broadcast_ping_reply cfm command command_history community_en...

Page 11: ...recedence vlan_translation vlan_translation_profile vlan_trunk voice_vlan vrrp wac wred DGS 3620 28SC admin In the above example all of the possible next parameters for the show command are displayed At the next command prompt the up arrow was used to re enter the show command followed by the account parameter The CLI then displays the user accounts configured on the Switch 1 3 Command Syntax Symb...

Page 12: ...must be specified For example in the syntax config dhcp_relay hops int 1 16 time sec 0 65535 1 users have the option to specify hops or time or both of them The 1 following the set of braces indicates at least one argument or value within the braces must be specified DO NOT TYPE THE PARENTHESES ipif ipif_name 12 metric value 1 31 12 means the maximum length of the IP interface name 1 31 means the ...

Page 13: ...Control Keys Keys Description Space Displays the next page CTRL C Stops the display of remaining pages when multiple pages are to be displayed ESC Stops the display of remaining pages when multiple pages are to be displayed n Displays the next page p Displays the previous page q Stops the display of remaining pages when multiple pages are to be displayed r Refreshes the pages currently displayed a...

Page 14: ...te 9600 19200 38400 115200 auto_logout never 2_minutes 5_minutes 10_minutes 15_minutes 1 enable clipaging disable clipaging enable telnet tcp_port_number 1 65535 disable telnet enable web tcp_port_number 1 65535 disable web save config pathname log all reboot force_agree reset config system force_agree login logout clear config terminal width default value 80 200 show terminal width show device_st...

Page 15: ...s and a maximum of 15 characters For an encrypted form password the length is fixed to 35 bytes long The password is case sensitive Restrictions Only Administrator level users can issue this command Example To create the Administrator level user dlink DGS 3620 28SC admin create account admin dlink Command create account admin dlink Enter a case sensitive new password Enter the new password again f...

Page 16: ...password encryption Parameters None Restrictions Only Administrator level users can issue this command Example To enable password encryption DGS 3620 28SC admin enable password encryption Command enable password encryption Success DGS 3620 28SC admin 2 3 disable password encryption Description The user account configuration information will be stored in the configuration file and can be applied to...

Page 17: ...ed on SHA 1 Format config account username 15 encrypt plain_text sha_1 password Parameters username 15 Enter the name of the account The account must already be defined encrypt Optional Specify the encryption type plain_text or sha_1 plain_text Specifies the password in plain text form For the plain text form passwords must have a minimum of 0 and a maximum of 15 characters The password is case se...

Page 18: ...UV00Ywo1G5jlUKKv toYg Success DGS 3620 28SC admin 2 5 show account Description This command is used to display user accounts that have been created Format show account Parameters None Restrictions Only Administrator level users can issue this command Example To display accounts that have been created DGS 3620 28SC admin show account Command show account Current Accounts Username Access Level Syste...

Page 19: ...tem DGS 3620 28SC admin delete account System Command delete account System Success DGS 3620 28SC admin 2 7 show session Description This command is used to display a list of current users which are logged in to CLI sessions Format show session Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To display accounts a list of currently logged in u...

Page 20: ... admin show switch Command show switch Device Type DGS 3620 28SC Gigabit Ethernet Switch MAC Address 00 01 02 03 04 00 IP Address 10 90 90 90 Manual VLAN Name default Subnet Mask 255 0 0 0 Default Gateway 0 0 0 0 Boot PROM Version Build 1 00 016 Firmware Version Build 2 50 014 Hardware Version B1 Firmware Type EI Serial Number D1234567890 System Name System Location System Uptime 0 days 0 hours 7 ...

Page 21: ... MAC Notification Disabled Port Mirror Disabled SNTP Disabled DHCP Relay Disabled DNSR Status Disabled VRRP Disabled HOL Prevention State Enabled Syslog Global State Disabled Single IP Management Disabled Password Encryption Status Disabled DNS Resolver Disabled DGS 3620 28SC admin 2 9 show environment Description This command is used to display the device s internal and external power and interna...

Page 22: ...s to configure the warning temperature trap log Specifies to configure the warning temperature log state Enable or disable either the trap or log state for a warning temperature event The default is enable enable Enable either the trap or log state for a warning temperature event disable Disable either the trap or log state for a warning temperature event Restrictions Only Administrator and Operat...

Page 23: ... high threshold must bigger than the low threshold temperature 500 500 Enter the high threshold value This value must be between 500 and 500 low Specifies the low threshold value temperature 500 500 Enter the low threshold value This value must be between 500 and 500 Restrictions Only Administrator and Operator level users can issue this command Example To configure a warming temperature threshold...

Page 24: ...aud_rate Specifies the baud rate value The default baud rate is 115200 9600 Specifies a baud rate of 9600 19200 Specifies a baud rate of 19200 38400 Specifies a baud rate of 38400 115200 Specifies a baud rate of 115200 auto_logout Specifies the timeout value The default timeout is 10_minutes never Specifies to never timeout 2_minutes Specifies when the idle value is over 2 minutes the device will ...

Page 25: ...ed Format enable clipaging Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To enable pausing of the screen display when show command output reaches the end of the page DGS 3620 28SC admin enable clipaging Command enable clipaging Success DGS 3620 28SC admin 2 15 disable clipaging Description This command is used to disable pausing of the scre...

Page 26: ...ed to enable Telnet and configure a port number The default setting is enabled and the port number is 23 Format enable telnet tcp_port_number 1 65535 Parameters tcp_port_number 1 65535 Optional Specify the TCP port number TCP ports are numbered between 1 and 65535 The well known TCP port for the Telnet protocol is 23 Restrictions Only Administrator and Operator level users can issue this command E...

Page 27: ...d is used to enable Web UI and configure the port number The default setting is enabled and the port number is 80 Format enable web tcp_port_number 1 65535 Parameters tcp_port_number 1 65535 Optional Specify the TCP port number TCP ports are numbered between 1 and 65535 The well know TCP port for the Web protocol is 80 Restrictions Only Administrator and Operator level users can issue this command...

Page 28: ... admin disable web Command disable web Success DGS 3620 28SC admin 2 20 save Description This command is used to save the current configuration or log in non volatile RAM Format save config pathname log all Parameters config Optional Specify to save configuration pathname Enter the path name of the indicated configuration log Optional Specify to save log all Optional Specify to save changes to cur...

Page 29: ...he current configuration to destination file named 1 DGS 3620 28SC admin save config 1 Command save config 1 Saving all configurations to NV RAM Done DGS 3620 28SC admin To save a log to NV RAM DGS 3620 28SC admin save log Command save log Saving all system logs to NV RAM Done DGS 3620 28SC admin To save all the configurations and logs to NV RAM DGS 3620 28SC admin save all Command save all Saving...

Page 30: ...ystem force_agree Parameters config Optional Specify this keyword and all parameters are reset to default settings However the device will neither save nor reboot system Optional Specify this keyword and all parameters are reset to default settings Then the switch will do factory reset save and reboot force_agree Optional Specify and the reset command will be executed immediately without further c...

Page 31: ...y n Success DGS 3620 28SC admin To reset all system parameters save and restart the switch DGS 3620 28SC admin reset system Command reset system Are you sure to proceed with system reset save and reboot y n Loading factory default configuration Done Saving all configuration to NV RAM Done Please wait the switch is rebooting 2 23 login Description This command is used to log in to the switch Format...

Page 32: ...ut Parameters None Restrictions None Example To logout of the switch DGS 3620 28SC admin logout Command logout Logout DGS 3620 28SC Gigabit Ethernet Switch Command Line Interface Firmware Build 2 50 014 Copyright C 2013 D Link Corporation All rights reserved UserName 2 25 clear Description This command is used to clear the terminal screen Format clear Parameters None ...

Page 33: ... config terminal width default value 80 200 Parameters default Specifies the default terminal width value value 80 200 Enter a terminal width value between 80 and 200 characters The default value is 80 Restrictions None Example To configure the terminal width DGS 3620 28SC admin config terminal width 90 Command config terminal width 90 Success DGS 3620 28SC admin 2 27 show terminal width Descripti...

Page 34: ...ent status of power s and fan s on the system Within fan s status display for example there are three fans on the left of the switch if three fans is working normally there will display OK in the Left Fan field If some fans work failed such as fan 1 3 there will only display the failed fans in the Left Fan field such as 1 3 Fail In the same way the Right Fan Back Fan is same to Left Fan Because th...

Page 35: ...20 28SC admin show device_status Command show device_status Unit 1 Internal Power Active External Power Fail Left Fan 1 3 Fail Right Fan 2 Fail Back Fan OK CPU Fan Fail Unit 2 Internal Power Active External Power Fail Left Fan 1 Fail Right Fan OK Back Fan 2 4 Fail CPU Fan OK DGS 3620 28SC admin ...

Page 36: ...all mac_based ports portlist all mac_address macaddr config 802 1x max_users value 1 448 no_limit config 802 1x reauth port_based ports portlist all mac_based ports portlist all mac_address macaddr create 802 1x guest_vlan vlan_name 32 delete 802 1x guest_vlan vlan_name 32 config 802 1x guest_vlan ports portlist all state enable disable show 802 1x guest_vlan config radius add server_index 1 3 ser...

Page 37: ...nction DGS 3620 28SC admin enable 802 1x Command enable 802 1x Success DGS 3620 28SC admin 3 2 disable 802 1x Description This command is used to disable the 802 1X function Format disable 802 1x Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable the 802 1Xfunction DGS 3620 28SC admin disable 802 1x Command disable 802 1x S...

Page 38: ...sers can issue this command Example To create a user named ctsnow DGS 3620 28SC admin create 802 1x user ctsnow Command create 802 1x user ctsnow Enter a case sensitive new password Enter the new password again for confirmation Success DGS 3620 28SC admin 3 4 delete 802 1x user Description This command is used to delete a specified user Format delete 802 1x user username 15 Parameters username 15 ...

Page 39: ... 1x user Description This command is used to display 802 1X local user account information Format show 802 1x user Parameters None Restrictions None Example To display 802 1X user information DGS 3620 28SC admin show 802 1x user Command show 802 1x user Current Accounts Username Password ctsnow gallinari Total Entries 1 DGS 3620 28SC admin 3 6 config 802 1x auth_protocol Description This command i...

Page 40: ...ap Command config 802 1x auth_protocol radius_eap Success DGS 3620 28SC admin 3 7 show 802 1x Description This command is used to display the 802 1X state or configurations Format show 802 1x auth_state auth_configuration ports portlist Parameters auth_state Optional Specify to display the 802 1X authentication state of some or all ports auth_configuration Optional Specify to display 802 1X config...

Page 41: ...le A 4004 3 1 00 00 00 00 00 02 10 Authenticated Idle A 1234 1 00 00 00 00 00 04 30 Authenticating Response U 2 P Authenticating Request U 3 P Connecting Idle U 4 P Held Fail U Total Authenticating Hosts 3 Total Authenticated Hosts 2 DGS 3620 28SC admin To display the 802 1x configuration for port 1 DGS 3620 28SC admin show 802 1x auth_configuration ports 1 1 Command show 802 1x auth_configuration...

Page 42: ...ble authentication on specified port Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure port capability for ports 1 to 10 DGS 3620 28SC admin config 802 1x capability ports 1 10 authenticator Command config 802 1x capability ports 1 10 authenticator Success DGS 3620 28SC admin 3 9 config 802 1x fwd_pdu ports Description This command is u...

Page 43: ...ed to configure the 802 1X PDU forwarding state Format config 802 1x fwd_pdu system enable disable Parameters enable Enable the 802 1X PDU forwarding state disable Disable the 802 1X PDU forwarding state Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the 802 1X PDU forwarding state DGS 3620 28SC admin config 802 1x fwd_pdu system ena...

Page 44: ...lue must be between 0 an 65535 seconds tx_period Optional The initialization value of the txWhen timer The default value is 30 s and can be any value from 1 to 65535 sec 1 65535 The transmit period value must be between 1 an 65535 seconds supp_timeout Optional The initialization value of the aWhile timer when timing out the supplicant Its default value is 30 s and can be any value from 1 to 65535 ...

Page 45: ...d of this document Format config 802 1x authorization attributes radius enable disable Parameters enable The authorization attributes such as VLAN 802 1p default priority and ACL assigned by the RADUIS server will be accepted if the global authorization status is enabled The default state is enabled disable The authorization attributes assigned by the RADUIS server will not be accepted Restriction...

Page 46: ...ost macaddr Enter the MAC address here Restrictions Only Administrator Operator and Power User level users can issue this command Example To initialize the authentication state machine of some or all DGS 3620 28SC admin config 802 1x init port_based ports all Command config 802 1x init port_based ports all Success DGS 3620 28SC admin 3 14 config 802 1x max_users Description This command is used to...

Page 47: ...s to configure all ports mac_based ports The switch passes data based on the MAC address of authenticated RADIUS client portlist Enter a range of ports to be configured all Specifies to configure all ports mac_address Optional Specify the MAC address of the authenticated RADIUS client macaddr Enter the MAC address here Restrictions Only Administrator Operator and Power User level users can issue t...

Page 48: ...t_vlan guestVLAN Command create 802 1x guest_vlan guestVLAN Success DGS 3620 28SC admin 3 17 delete 802 1x guest_vlan Description This command is used to delete a guest VLAN setting but not to delete the static VLAN itself Format delete 802 1x guest_vlan vlan_name 32 Parameters vlan_name 32 Enter the guest VLAN name Restrictions Only Administrator Operator and Power User level users can issue this...

Page 49: ...t VLAN port state of the configured ports enable Join the guest VLAN disable Remove from guest VLAN Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure a guest VLAN setting for ports 1 to 8 DGS 3620 28SC admin config 802 1x guest_vlan ports 1 8 state enable Command config 802 1x guest_vlan ports 1 8 state enable Warning The ports are move...

Page 50: ...ta before being transmitted over the Internet The maximum length of the key is 32 passwd 32 The maximum length of the password is 32 characters long encryption_key Optional Specifies the key pre negotiated between the switch and the RADIUS server It is used to encrypt the user s authentication data before being transmitted over the Internet password 56 Enter the enryption key default Sets the auth...

Page 51: ... 74 121 key dlink default Success DGS 3620 28SC admin 3 21 config radius delete Description This command is used to delete a RADIUS server Format config radius delete server_index 1 3 Parameters server_index 1 3 Enter the RADIUS server index The range is from 1 to 3 Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete a RADIUS server DGS 3620...

Page 52: ...net password 56 Enter the enryption key auth_port Specifies the UDP port number which is used to transmit RADIUS authentication data between the switch and the RADIUS server The default is 1812 udp_port_number 1 65535 The authentication port value must be between 1 and 65535 default Specifies to use the default value acct_port Specifies the UDP port number which is used to transmit RADIUS accounti...

Page 53: ... configurations DGS 3620 28SC admin show radius Command show radius Index 1 IP Address 192 168 69 1 Auth Port 1812 Acct Port 1813 Timeout 5 Retransmit 2 Key 123456 Total Entries 1 DGS 3620 28SC admin 3 24 show auth_statistics Description This command is used to display authenticator statistics information Format show auth_statistics ports portlist Parameters ports Optional Specify a range of ports...

Page 54: ...ffFramesRx 0 EapolReqFramesTx 0 EapolRespIdFramesRx 0 EapolRespFramesRx 0 InvalidEapolFramesRx 0 EapLengthErrorFramesRx 0 LastEapolFrameVersion 0 LastEapolFrameSource 00 00 00 00 00 03 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh 3 25 show auth_diagnostics Description This command is used to display authenticator diagnostics information Format show auth_diagnostics ports portlist ...

Page 55: ...rtsWhileAuthenticated 0 EapLogoffWhileAuthenticated 0 BackendResponses 0 BackendAccessChallenges 0 BackendOtherRequestsToSupplicant 0 BackendNonNakResponsesFromSupplicant 0 BackendAuthSuccesses 0 BackendAuthFails 0 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh 3 26 show auth_session_statistics Description This command is used to display authenticator session statistics information ...

Page 56: ...minateCause SupplicantLogoff SessionUserName CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh 3 27 show auth_client Description This command is used to display authentication client information Format show auth_client Parameters None Restrictions None Example To display authentication client information DGS 3620 28SC admin show auth_client Command show auth_client radiusAuthClient rad...

Page 57: ...verIndex 2 radiusAuthServerAddress 0 0 0 0 radiusAuthClientServerPortNumber X radiusAuthClientRoundTripTime 0 radiusAuthClientAccessRequests 0 radiusAuthClientAccessRetransmissions 0 radiusAuthClientAccessAccepts 0 radiusAuthClientAccessRejects 0 radiusAuthClientAccessChallenges 0 radiusAuthClientMalformedAccessResponses 0 radiusAuthClientBadAuthenticators 0 radiusAuthClientPendingRequests 0 radiu...

Page 58: ...ccount client information Format show acct_client Parameters None Restrictions None Example To display account client information DGS 3620 28SC admin show acct_client Command show acct_client radiusAcctClient radiusAcctClientInvalidServerAddresses 0 radiusAcctClientIdentifier D Link radiusAuthServerEntry radiusAccServerIndex 1 radiusAccServerAddress 0 0 0 0 radiusAccClientServerPortNumber X radius...

Page 59: ...ntMalformedResponses 0 radiusAccClientBadAuthenticators 0 radiusAccClientPendingRequests 0 radiusAccClientTimeouts 0 radiusAccClientUnknownTypes 0 radiusAccClientPacketsDropped 0 radiusAcctClient radiusAcctClientInvalidServerAddresses 0 radiusAcctClientIdentifier D Link radiusAuthServerEntry radiusAccServerIndex 3 radiusAccServerAddress 0 0 0 0 radiusAccClientServerPortNumber X radiusAccClientRoun...

Page 60: ...xtacacs tacacs radius string 15 add delete server_host ipaddr protocol tacacs xtacacs tacacs radius delete authen server_group string 15 show authen server_group string 15 create authen server_host ipaddr protocol tacacs xtacacs tacacs radius port int 1 65535 key key_string 254 none encryption_key key_string 344 timeout int 1 255 retransmit int 1 20 config authen server_host ipaddr protocol tacacs...

Page 61: ...int 1 65535 timeout int 1 255 retransmit int 1 20 config xtacacs server_host ipaddr port int 1 65535 timeout int 1 255 retransmit int 1 20 config tacacs source_ipif ipif_name 12 ipaddr none show tacacs source_ipif The TACACS XTACACS TACACS RADIUS commands allows secure access to the Switch using the TACACS XTACACS TACACS RADIUS protocols When a user logs in to the Switch or tries to access the adm...

Page 62: ... a preferable order in the built in server group and when a user tries to gain access to the Switch the Switch will ask the first server host for authentication If no authentication is made the second server host in the list will be queried and so on The built in server group can only have hosts that are running the specified protocol For example the TACACS server group can only have TACACS server...

Page 63: ...enable authen_policy Command enable authen_policy Success DGS 3620 28SC admin 4 2 disable authen_policy Description This command is used to disable system access authentication policy When authentication is disabled the device will adopt the local user account database to authenticate the user for login and adopt the local enable password to authenticate the enable password for promoting the user ...

Page 64: ..._policy Parameters None Restrictions Only Administrator level users can issue this command Example To display system access authentication policy DGS 3620 28SC admin show authen_policy Command show authen_policy Authentication Policy Disabled Authentication Policy Encryption Disabled DGS 3620 28SC admin 4 4 enable authen_policy_encryption Description This command is used to enable the authenticati...

Page 65: ...authentication policy encryption When disabled TACACS and RADIUS key will be in the plain text form Format disable authen_policy_encryption Parameters None Restrictions Only Administrator level users can issue this command Example To disable the authentication policy encryption DGS 3620 28SC admin disable authen_policy_encryption Command disable authen_policy_encryption Success DGS 3620 28SC admin...

Page 66: ...cation request will be sent to the second server host in the TACACS group and so on If all server hosts in the TACACS group are missing the authentication request will be sent to the first server host in the TACACS group If all server hosts in a TACACS group are missing the local account database in the device is used to authenticate this user When a user logs in to the device successfully while u...

Page 67: ...he device none Specifies no authentication Restrictions Only Administrator level users can issue this command Example To configure a user defined method list for user login DGS 3620 28SC admin config authen_login method_list_name login_list_1 method tacacs tacacs local Command config authen_login method_list_name login_list_1 method tacacs tacacs local Success DGS 3620 28SC admin 4 8 delete authen...

Page 68: ...fy to display all method lists for user login Restrictions Only Administrator level users can issue this command Example To display a user defined method list for user login DGS 3620 28SC admin show authen_login method_list_name login_list_1 Command show authen_login method_list_name login_list_1 Method List Name Priority Method Name Comment login_list_1 1 tacacs Built in Group 2 tacacs Built in G...

Page 69: ...the second server host in the TACACS group and so on If all server hosts in the TACACS group are missing the authentication request will be sent to the first server host in the TACACS group If all server hosts in the TACACS group are missing the local enable password in the device is used to authenticate this user s password The local enable password in the device can be configured by the CLI comm...

Page 70: ...acs local_enable Command config authen_ enable method_list_name enable_list_1 method tacacs tacacs local_enable Success DGS 3620 28SC admin 4 12 delete authen_enable method_list_name Description This command is used to delete a user defined method list of authentication methods for promoting a user s privilege to Administrator level Format delete authen_enable method_list_name string 15 Parameters...

Page 71: ...dministrator level The method list name value can be up to 15 characters long all Specifies to display all method lists for promoting a user s privilege to Administrator level Restrictions Only Administrator level users can issue this command Example To display all method lists for promoting a user s privilege to Administrator level DGS 3620 28SC admin show authen_enable all Command show authen_en...

Page 72: ...inistrator level default Specifies the default method list method_list_name Specifies the user defined method list name string 15 Enter the user defined method list name The method list name value can be up to 15 characters long Restrictions Only Administrator level users can issue this command Example To configure the login method list for Telnet DGS 3620 28SC admin config authen application teln...

Page 73: ...eate authen server_group Description This command is used to create a user defined authentication server group The maximum supported number of server groups including built in server groups is eight Each group consists of eight server hosts as maximum Format create authen server_group string 15 Parameters string 15 Enter the user defined server group name Restrictions Only Administrator level user...

Page 74: ...roup RADIUS string 15 Enter a user defined server group add Specifies to add a server host to a server group delete Specifies to remove a server host from a server group server_host Specifies the server host s IP address ipaddr Enter the server host s IP address protocol Specifies the server host s type of authentication protocol tacacs Specifies the server host s authentication protocol TACACS xt...

Page 75: ...roup mix_1 Command delete authen server_group mix_1 Success DGS 3620 28SC admin 4 19 show authen server_group Description This command is used to display the authentication server groups Format show authen server_group string 15 Parameters string 15 Optional Specify the built in or user defined server group name Restrictions Only Administrator level users can issue this command Example To display ...

Page 76: ...e default value for TACACS XTACACS TACACS is 49 The default value for RADIUS is 1812 int 1 65535 Enter the port number of the authentication protocol for the server host The default value for TACACS XTACACS TACACS is 49 The default value for RADIUS is 1812 The port number must be between 1 and 65535 key Optional Specify the key for TACACS and RADIUS authentication key_string 254 Enter the key for ...

Page 77: ...protocol XTACACS tacacs Specifies the server host s authentication protocol TACACS radius Specifies the server host s authentication protocol RADIUS port Specifies the port number of the authentication protocol for the server host The default value for TACACS XTACACS TACACS is 49 The default value for RADIUS is 1812 int 1 65535 Enter the port number of the authentication protocol for the server ho...

Page 78: ...3 Command config authen server_host 10 1 1 222 protocol tacacs key abc123 Success DGS 3620 28SC admin 4 22 delete authen server_host Description This command is used to delete an authentication server host Format delete authen server_host ipaddr protocol tacacs xtacacs tacacs radius Parameters ipaddr Enter the server host s IP address protocol Specifies the server host s type of authentication pro...

Page 79: ...authentication server hosts DGS 3620 28SC admin show authen server_host Command show authen server_host IP Address Protocol Port Timeout Retransmit Key 10 1 1 222 TACACS 15555 10 123 Total Entries 1 DGS 3620 28SC admin 4 24 config authen parameter response_timeout Description This command is used to configure the amount of time waiting for user to input on console Telnet and SSH applications Forma...

Page 80: ...igure the maximum attempts for users trying to login or promote the privilege on console Telnet or SSH applications If the failure value is exceeded connection or access will be locked Format config authen parameter attempt int 1 255 Parameters int 1 255 Enter the amount of attempts for users trying to login or promote the privilege on console Telnet or SSH The default value is 3 Restrictions Only...

Page 81: ...min Description This command is used to promote the user privilege level to admin level When the user enters this command the authentication method TACACS XTACAS TACACS user defined server groups local enable or none will be used to authenticate the user Because TACACS XTACACS and RADIUS don t support the enable function by themselves if a user wants to use either one of these three protocols to e...

Page 82: ...assword Parameters encrypt Optional Specifies the encryption method used plain_text Specifies that the password will be in the plain text form sha_1 Specifies that the password will be in the SHA 1 encrypted form password Enter the password Plain text password must be between 0 and 15 characters The length of SHA 1 encrypted passwords are fixed to 35 bytes long and the password is case sensitive R...

Page 83: ... server_group mix_1 Success DGS 3620 28SC admin 4 30 config aaa server_group Description This command is used to add or remove an AAA server host to or from the specified server group The built in TACACS XTACACS TACACS and RADIUS server groups only accept server hosts with the same protocol but a user defined server group can accept server hosts with different protocols Format config aaa server_gr...

Page 84: ...tions Only Administrator level can issue this command Example To To add an AAA server host with an IP address of 10 1 1 222 to server group mix_1 specifying the TACACS protocol DGS 3620 28SC admin config aaa server_group group_name mix_1 add server_host 10 1 1 222 protocol tacacs Command config aaa server_group group_name mix_1 add server_host 10 1 1 222 protocol tacacs Success DGS 3620 28SC admin...

Page 85: ...host protocol Specify the protocol tacacs Specify TACACS server host xtacacs Specifies XTACACS server host tacacs Specifies TACACS server host radius Specifies RADIUS server host Restrictions Only Administrator level can issue this command Example To tacacs xtacacs tacacs delete an AAA server host with an IP address of 10 1 1 222 that is running the TACACS protocol DGS 3620 28SC admin delete aaa s...

Page 86: ...ystem Service State Disabled Accounting System Service Method Accounting Admin Command Service Method Accounting Operator Command Service Method Accounting PowerUser Command Service Method Accounting User Command Service Method Authentication Policy Encryption Enabled DGS 3620 28SC admin 4 34 show aaa server_group Description This command is used to display the groups of AAA servers groups Format ...

Page 87: ... 3620 28SC admin 4 35 show aaa server_host Description This command is used to display the AAA server hosts Format show aaa server_host Parameters None Restrictions Only Administrator level can issue this command Example To display all AAA server hosts DGS 3620 28SC admin show aaa server_host Command show aaa server_host IP Address Protocl Port Acct Time Retry Key Port out 10 1 1 222 RADIUS 15555 ...

Page 88: ...evel can issue this command Example To enable AAA server password encryption DGS 3620 28SC admin enable aaa_server_password_encryption Command enable aaa_server_password_encryption Success DGS 3620 28SC admin 4 37 disable aaa_server_password_encryption Description This command is used to disable AAA server password encryption Format disable aaa_server_password_encryption Parameters None Restrictio...

Page 89: ... 15 characters long method Specifies the accounting method used tacacs Specifies to use the built in server group tacacs radius Specifies to use the built in server group radius server_group Specifies the user defined server group If the group contains tacacs or xtacacs server it will be skipped in accounting string 15 Enter the user defined server group name here This name can be up to 15 charact...

Page 90: ... system reset or system boot By default the service is disabled state Specifies the state of the accounting service enable Enable the specified accounting service radius_only Specifies that the accounting service should only use the RADIUS group specified by the config radius add server_index 1 3 server_ip ipv6addr command method_list_name Specifies that the accounting service should use the AAA u...

Page 91: ...Specifies the accounting service by the AAA user defined method list string Enter the method list name used here none Specifies to disable accounting services for the specified command level Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the AAA accounting methodlist admin_acct for accounting to all administrator commands DGS 3620 28...

Page 92: ...used to delete a user defined method list of accounting methods Format delete accounting method_list_name string 15 Parameters string 15 Enter the name of the user defined method list here This name can be up to 15 characters long Restrictions Only Administrator level users can issue this command Example To delete the user defined accounting method list called shell_acct from switch DGS 3620 28SC ...

Page 93: ...h Restrictions Only Administrator level users can issue this command Example To display the user defined accounting method list called shell_acct DGS 3620 28SC admin show accounting method_list_name shell_acct Command show accounting method_list_name shell_acct Method List Name Priority Method Name Comment shell_acct 1 none Keyword DGS 3620 28SC admin 4 44 show accounting service Description This ...

Page 94: ... default value is 1812 acct_port Optional Specify the port of the RAIDUS accounting int 1 65535 Enter the value between 1 and 65535 The default value is 1813 key Optional Specify the key for RADIUS key_string 254 Enter the plain text key string for RADIUS none No encryption for RADIUS encryption_key Optional The encrypted form key string for RADIUS The encryption algorithm is based on DES key_stri...

Page 95: ...value is 1812 acct_port Optional Specify the port of the RAIDUS accounting int 1 65535 Enter the value between 1 and 65535 The default value is 1813 key Optional Specify the key for RADIUS key_string 254 Enter the plain text key string for RADIUS none No encryption for RADIUS encryption_key Optional The encrypted form key string for RADIUS The encryption algorithm is based on DES key_string 344 Et...

Page 96: ...ess used here none Specifies to revert to the default route table for all outgoing RADIUS packet Restrictions Only Administrator level can issue this command Example To specify an interface as the source interface for all outgoing RADIUS packets DGS 3620 28SC admin config radius source_ipif if_v200 Command config radius source_ipif if_v200 Success DGS 3620 28SC admin 4 48 show radius source_ipif D...

Page 97: ... port Optional The port number of the TACACS server host int 1 65535 Enter the value between 1 and 65535 The default value is 49 timeout Optional Specify the time in second to wait for the server to reply int 1 255 Enter the value between 1 and 255 The default value is 5 retransmit Optional Specify the count for re transmissions int 1 20 Enter the value between 1 and 20 The default value is 2 Rest...

Page 98: ...issue this command Example To configure the TACACS server host DGS 3620 28SC admin config tacacs server_host 10 1 1 223 retransmit 5 Command config tacacs server_host 10 1 1 223 retransmit 5 Key is meaningless for TACACS and XTACACS Success DGS 3620 28SC admin 4 51 create tacacs server_host Description This command is used to create a TACACS server host Format create tacacs server_host ipaddr port...

Page 99: ...igure the TACACS server host Format config tacacs server_host ipaddr port int 1 65535 key key_string 254 none encryption_key key_string 344 timeout int 1 255 Parameters ipaddr Enter the IP address of the server host port Optional The port number of the TACACS server host int 1 65535 Enter the value between 1 and 65535 The default value is 49 key Optional Specify the key for TACACS key_string 254 E...

Page 100: ...35 The default value is 49 timeout Optional Specify the time in second to wait for the server to reply int 1 255 Enter the value between 1 and 255 The default value is 5 retransmit Optional Specify the count for re transmissions int 1 20 Enter the value between 1 and 20 The default value is 2 Restrictions Only Administrator level can issue this command Example To create a XTACACS server host DGS 3...

Page 101: ...ure the XTACACS server host DGS 3620 28SC admin config xtacacs server_host 10 1 1 224 retransmit 5 Command config xtacacs server_host 10 1 1 224 retransmit 5 Key is meaningless for TACACS and XTACACS Success DGS 3620 28SC admin 4 55 config tacacs source_ipif Description This command is used to specify the source interface for all outgoing TACACS packets Format config tacacs source_ipif ipif_name 1...

Page 102: ...ipif Description This command is used to display the specified source interface for all outgoing TACACS packets Format show tacacs source_ipif Parameters None Restrictions Only Administrator level can issue this command Example To display the specified source interface for all outgoing TACACS packets DGS 3620 28SC admin show tacacs source_ipif Command show tacacs source_ipif IP Interface if_v200 I...

Page 103: ...x 0x0 0xffff flag all urg ack psh rst syn fin udp src_port value 0 65535 mask hex 0x0 0xffff dst_port value 0 65535 mask hex 0x0 0xffff protocol_id value 0 255 user_define hex 0x0 0xffffffff mask hex 0x0 0xffffffff 1 packet_content offset_chunk_1 hex 0x0 0xffffffff mask hex 0x0 0xffffffff offset_chunk_2 hex 0x0 0xffffffff mask hex 0x0 0xffffffff offset_chunk_3 hex 0x0 0xffffffff mask hex 0x0 0xfff...

Page 104: ...value 0 255 flowlabel hex 0x0 0xfffff source_ipv6 ipv6addr destination_ipv6 ipv6addr port portlist all permit deny time_range range_name 32 delete access_id value 1 100 show cpu access_profile profile_id value 1 5 enable cpu_interface_filtering disable cpu_interface_filtering config flow_meter profile_id value 1 6 profile_name name 1 32 access_id value 1 256 rate value 0 1048576 burst_size value 0...

Page 105: ...x0fff Optional Specify a VLAN mask source_ip_mask Specifies an IP source submask netmask Enter an IP source submask destination_ip_mask Specifies an IP destination submask netmask Enter an IP destination submask dscp Specifies the DSCP mask icmp Specifies that the rule applies to ICMP traffic type Optional Specify the ICMP packet type code Optional Specify the ICMP code igmp Specifies that the rul...

Page 106: ...packet at one time and specifies the frame content offset and mask value 0 31 Enter the offset chunk 4 value here This value must be between 0 and 31 hex 0x0 0xffffffff Enter the offset chunk 4 mask value here ipv6 Specifies the IPv6 filtering mask class Specifies the IPv6 class mask flowlabel Specifies the IPv6 flow label mask source_ipv6_mask Specifies the IPv6 source IP mask ipv6mask Enter the ...

Page 107: ...eters profile_id Specifies the index of the access list profile value 1 6 Enter the index of the access list profile Enter a value between 1 and 6 profile_name Specifies the profile name name 1 32 Enter the profile name The maximum length is 32 characters all Specifies the whole access list profile to delete Restrictions Only Administrator Operator and Power User level users can issue this command...

Page 108: ... mask hex 0x0 0xffff icmp type value 0 255 code value 0 255 1 port portlist all vlan_based vlan vlan_name 32 vlan_id vlanid 1 4094 permit priority value 0 7 replace_priority replace_dscp_with value 0 63 replace_tos_precedence_with value 0 7 counter enable disable urpf_state_check enable disable mirror group_id value 1 4 deny time_range range_name 32 delete access_id value 1 256 Parameters profile_...

Page 109: ...onal Specify the mask hex 0x0 0xffff Enter the mask dst_port Optional Specify that the rule will apply to a range of TCP destination ports value 0 65535 Enter the value between 0 and 65535 mask Optional Specify the mask hex 0x0 0xffff Enter the mask flag Specifies the TCP flag field value all Specify to check all paramenters below urg Optional Specify Urgent Pointer field significant ack Optional ...

Page 110: ... source address mask Optional Specify the mask ipv6mask Enter the mask destination_ipv6 Specifies the value of the IPv6 destination address ipv6addr Enter the value of the IPv6 destination address mask Optional Specify the mask ipv6mask Enter the mask tcp Specifies TCP src_port Optional Specify the TCP source port range value 0 65535 Enter the value between 0 and 65535 mask Optional Specify the ma...

Page 111: ... is enabled If the rule is not bound with the flow meter all matching packets are counted If the rule is bound with the flow meter then the counter is overridden disable Specifies whether the ACL counter feature is disabled The default option is disabled urpf_state_check Optional Specifies whether the incoming packet should be dropped by URPF or not enable Specifies that the incoming packet should...

Page 112: ...D between 1 and 6 profile_name Optional Specify the name of the access list profile name 1 32 Enter the profile name between 1 and 32 Restrictions None Example To display the current access list table DGS 3620 28SC admin show access_profile Command show access_profile Access Profile Table Total User Set Rule Entries 2 Total Used HW Entries 3 Total Available HW Entries 1533 Profile ID 1 Profile nam...

Page 113: ...k Enabled Replaced Priority 7 Replace ToS Precedence 7 DGS 3620 28SC admin Note Total User Set Entries indicates the total number of ACL rules created by the user Total Used HW Entries indicates the total number of hardware entries used in the device Available HW Entries indicates the total number of available hardware entries in the device To display an access profile that supports an entry mask ...

Page 114: ...ID of 4 DGS 3620 28SC admin show access_profile profile_id 4 Command show access_profile profile_id 4 Access Profile Table Profile ID 4 Profile name PCACL Type User Defined Mask on offset_chunk_1 1 value 0x00000000 offset_chunk_2 2 value 0x00000000 offset_chunk_3 3 value 0x00000000 offset_chunk_4 4 value 0x00000000 Available HW Entries 254 Rule ID 1 Ports 1 Match on offset_chunk_1 1 value 0x000000...

Page 115: ...e For example 19 00 means 7PM 19 is also acceptable The start_time must be smaller than the end_time hh mm ss Enter the time end_time Specifies the ending time in a day 24 hr time hh mm ss Enter the time weekdays Specifies the list of days contained in the time range Use a dash to define a period of days Use a comma to separate specific days For example mon fri Monday to Friday sun mon fri Sunday ...

Page 116: ...ommand show time_range Time Range Information Range Name testdaily Weekdays Mon Fri Start Time 12 00 00 End Time 13 00 00 Total Entries 1 DGS 3620 28SC admin 5 7 show current_config access_profile Description This command is used to display the ACL part of the current configuration when logged in with user level privileges The overall current configuration can be displayed by using the show config...

Page 117: ...255 port 1 permit priority 7 replace_priority replace_tos 7 urpf_state_check enable create access_profile profile_id 3 profile_name IPv6ACL ipv6 class flowlabel tcp config access_profile profile_id 3 add access_id 1 ipv6 class 255 flowlabel 0xFFFFF tcp port 1 permit priority 7 replace_priority replace_tos 7 urpf_state_check enable create access_profile profile_id 4 profile_name PCACL packet_conten...

Page 118: ...flag_mask all urg ack psh rst syn fin udp src_port_mask hex 0x0 0xffff dst_port_mask hex 0x0 0xffff protocol_id_mask hex 0x0 0xff user_define_mask hex 0x0 0xffffffff 1 packet_content_mask offset_0 15 hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff offset_16 31 hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff offset_32 47 hex 0x0 0xffffffff hex...

Page 119: ...rotocol_id_mask Specifies that the rule applies to the IP protocol ID traffic hex 0x0 0xff Enter that the rule applies to the IP protocol ID traffic user_define_mask Optional Specify the L4 part mask hex 0x0 0xffffffff Enter the L4 part mask packet_content_mask Specifies the packet content mask offset_0 15 Specifies the mask for packet bytes 0 15 hex 0x0 0xffffffff Enter the mask for packet bytes ...

Page 120: ...re CPU access list entries Format config cpu access_profile profile_id value 1 5 add access_id auto_assign value 1 100 ethernet vlan vlan_name 32 vlan_id vlanid 1 4094 source_mac macaddr destination_mac macaddr 802 1p value 0 7 ethernet_type hex 0x0 0xffff ip vlan vlan_name 32 vlan_id vlanid 1 4094 source_ip ipaddr destination_ip ipaddr dscp value 0 63 icmp type value 0 255 code value 0 255 igmp t...

Page 121: ...4 source_ip Specifies an IP source address ipaddr Enter an IP source address destination_ip Specifies an IP destination address ipaddr Enter an IP destination address dscp Specifies the value of DSCP value 0 63 Enter the value of DSCP The DSCP value ranges from 0 to 63 icmp Specifies the ICMP type Optional Specify that the rule will apply to the ICMP Type traffic value value 0 255 Enter the value ...

Page 122: ...et bytes 44 47 offset_48 63 Specifies the mask for packet bytes 48 63 hex 0x0 0xffffffff Enter the mask for packet bytes 48 51 hex 0x0 0xffffffff Enter the mask for packet bytes 52 55 hex 0x0 0xffffffff Enter the mask for packet bytes 56 59 hex 0x0 0xffffffff Enter the mask for packet bytes 60 63 offset_64 79 Specifies the mask for packet bytes 64 79 hex 0x0 0xffffffff Enter the mask for packet by...

Page 123: ...file Description This command is used to display the current CPU access list table Format show cpu access_profile profile_id value 1 5 Parameters profile_id Optional Specify the index of an access list profile value 1 5 Enter value between 1 and 5 Restrictions None Example To display the current CPU access list table DGS 3620 28SC admin show cpu access_profile Command show cpu access_profile CPU I...

Page 124: ...1 Match on VLAN ID 1 802 1p 7 Ethernet Type 0xFFFF Action Permit Profile ID 2 Type IPv4 Mask on VLAN 0xFFF DSCP ICMP Type Code Unused Rule Entries 99 Rule ID 1 Ports 1 Match on VLAN ID 1 DSCP 63 ICMP Type 255 Code 255 Action Permit Profile ID 3 Type IPv6 Mask on Class Flow Label Unused Rule Entries 99 Rule ID 1 Ports 1 Match on ...

Page 125: ...00000000 Offset 64 79 0x00000000 0x00000000 0x00000000 0x00000000 Unused Rule Entries 99 Rule ID 1 Ports 1 Match on Offset 0 15 0x00000000 0x00000000 0x00000000 0x00000000 Offset 16 31 0x00000000 0x00000000 0x00000000 0x00000000 Offset 32 47 0x00000000 0x00000000 0x00000000 0x00000000 Offset 48 63 0x00000000 0x00000000 0x00000000 0x00000000 Offset 64 79 0x00000000 0x00000000 0x00000000 0x00000000 ...

Page 126: ...trator Operator and Power User level users can issue this command Example To disable CPU interface filtering DGS 3620 28SC admin disable cpu_interface_filtering Command disable cpu_interface_filtering Success DGS 3620 28SC admin 5 14 config flow_meter Description This command is used to configure the flow based metering function The metering function supports three modes single rate two color sing...

Page 127: ...nd color_aware conform permit replace_dscp value 0 63 counter enable disable exceed permit replace_dscp value 0 63 drop counter enable disable violate permit replace_dscp value 0 63 drop counter enable disable delete Parameters profile_id Specifies the index of the access list profile value 1 6 Enter the value between 1 and 6 profile_name Specifies the name of the profile name 1 32 Enter the name ...

Page 128: ...counter for the specified ACL entry in the green flow violate This field denotes the red packet flow Red packet flows may have excess packets permitted through or dropped Users may replace the DSCP field of these packets by checking its radio button and entering a new DSCP value in the allotted field permit Enter this parameter to allow packet flows that are in the red flow replace_dscp Specifies ...

Page 129: ...s that are in the red flow replace_dscp Specifies to change the DSCP of the packet value 0 63 Enter the replacement DSCP of the packet here This value must be between 0 and 63 drop Enter this parameter to drop packets that are in the red flow counter Optional Use this parameter to enable or disable the packet counter for the specified ACL entry in the green flow enable Enable the packet counter fo...

Page 130: ... of the profile name 1 32 Enter the name of the profile The maximum length is 32 characters access_id Optional Specify the access ID value 1 256 Enter the access ID Enter a value between 1 and 256 Restrictions None Example To display the flow meter configuration DGS 3620 28SC admin show flow_meter Command show flow_meter Flow Meter Information Profile ID 1 Aceess ID 1 Mode trTCM ColorBlind CIR Kbp...

Page 131: ...alue 0 65535 mask hex 0x0 0xffff dst_port value 0 65535 mask hex 0x0 0xffff protocol_id value 0 255 user_define hex 0x0 0xffffffff mask hex 0x0 0xffffffff ipv6 class value 0 255 source_ipv6 ipv6addr mask ipv6mask destination_ipv6 ipv6addr mask ipv6mask tcp src_port value 0 65535 mask hex 0x0 0xffff dst_port value 0 65535 mask hex 0x0 0xffff udp src_port value 0 65535 mask hex 0x0 0xffff dst_port v...

Page 132: ...ist profile The lower the profile ID the higher the priority value 1 4 Enter the profile ID used here This value must be between 1 and 4 profile_name The name of the profile must be specified The maximum length is 32 characters name 1 32 Enter the profile name used here This name can be up to 32 characters long ethernet Specifies this is an Ethernet mask vlan Optional Specifies a VLAN mask hex 0x0...

Page 133: ...ere ipv6 Optional Specifies this is an IPv6 mask class Optional Specifies the IPv6 class source_ipv6_mask Optional Specifies an IPv6 source sub mask ipv6mask Enter the IPv6 source sub mask value here destination_ipv6_mask Specifies an IPv6 destination sub mask ipv6mask Enter the IPv6 destination sub mask value here tcp Optional Specifies that the following parameter are application to the TCP conf...

Page 134: ...delete egress access list profile ID 1 DGS 3620 28SC admin delete egress_access_profile profile_id 1 Command delete egress_access_profile profile_id 1 Success DGS 3620 28SC admin 6 3 config egress_access_profile Description This command is used to configure egress access list entries Format config egress_access_profile profile_id value 1 4 profile_name name 1 32 add access_id auto_assign value 1 1...

Page 135: ...me vlan_name 32 Enter the VLAN name used for this configuration here This name can be up to 32 characters long vlanid Specifies a VLAN ID vlanid 1 4094 Enter the VLAN ID used for this congfiguration here This value must be between 1 and 4094 mask Optional Specifies the mask used hex 0x0 x0fff Enter the mask value used here source_mac Optional Specifies the source MAC address macaddr Enter the sour...

Page 136: ...P destination port mask value here flag Optional Specifies the TCP flag fields all Specifies that the TCP flag field will be set to all urg Specifies that the TCP flag field will be set to urg ack Specifies that the TCP flag field will be set to ack psh Specifies that the TCP flag field will be set to psh rst Specifies that the TCP flag field will be set to rst syn Specifies that the TCP flag fiel...

Page 137: ... to the ICMP configuration type Specifies that the rule will apply to the ICMP type traffic value value 0 255 Enter the ICMP traffic type value here This value must be between 0 and 255 code Specifies that the rule will apply to the ICMP code traffic value value 0 255 Enter the ICMP code traffic value here This value must be between 0 and 255 vlan_based The rule applies on the specified VLAN vlan ...

Page 138: ...he packet go out switch which match the specified source IP DSCP and destination IP field it will not be dropped DGS 3620 28SC admin config egress_access_profile profile_id 2 add access_id auto_assign ip source_ip 10 0 0 1 dscp 25 destination_ip 10 90 90 90 port_group id 1 permit Command config egress_access_profile profile_id 2 add access_id auto_assign ip source_ip 10 0 0 1 dscp 25 destination_i...

Page 139: ...s long If no parameter is specified will show the all egress access profile Restrictions None Example To display current egress access list table DGS 3620 28SC admin show egress_access_profile Command show access_profile Egress Access Profile Table Total User Set Rule Entries 3 Total Used Hardware Entries 3 Total Available Hardware Entries 253 Profile ID 1 Profile name 1 Type Ethernet Mask on Sour...

Page 140: ... ID 1 auto assign Port group 1 Match on Source IP 10 0 0 2 Destination IP 10 90 90 90 DSCP 25 Action Permit Rule ID 2 auto assign Port group 1 Match on Source IP 10 0 0 1 Destination IP 10 90 90 90 DSCP 25 Action Permit Matched Count 0 packets DGS 3620 28SC admin The following example displays an egress access profile that supports an entry mask for each rule ...

Page 141: ...ID 1 Port group Match on VLAN ID 1 Source MAC 00 00 00 00 00 01 Action Permit DGS 3620 28SC admin 6 5 show current_config egress_access_profile Description This command is used to display the egress ACL part of current configuration in user level of privilege The overall current configuration can be displayed by show config command which is accessible in administrator level of privilege Format sho...

Page 142: ...90 90 dscp 25 port_group id 1 permit DGS 3620 28SC admin 6 6 config egress_flow_meter Description This command is used to configure the packet flow based metering based on an egress access profile and rule Format config egress_flow_meter profile_id value 1 4 profile_name name 1 32 access_id value 1 128 rate value 0 1048576 burst_size value 0 131072 rate_exceed drop_packet remark_dscp value 0 63 tr...

Page 143: ...131072 pir Specifies the Peak Information Rate The unit is in Kbps PIR should always be equal to or greater than CIR value 0 1048576 Enter the peak information rate value here This value must be between 0 and 1048576 pbs Optional Specifies the Peak Burst Size The unit is in Kbytes value 0 131072 Enter the peak burst size value here This value must be between 0 and 131072 color_blind Optional Speci...

Page 144: ...l Permit the packet replace_dscp Changes the DSCP of the packet value 0 63 Enter the replace DSCP value here This value must be between 0 and 63 counter Optional Specifies the ACL counter This is optional The default is disable The resource may be limited so that a counter cannot be turned on Counters will be cleared when the function is disabled enable Specifies that the ACL counter parameter wil...

Page 145: ...ow_meter Description This command is used to display the egress flow based metering configuration Format show egress_flow_meter profile_id value 1 4 profile_name name 1 32 access_id value1 128 Parameters profile_id Optional Specifies the index of access list profile value 1 4 Enter the profile ID used here This value must be between 1 and 4 profile_name Optional Specifies the name of the profile n...

Page 146: ...CIR 2500 Kbps CBS 2000 Kbyte EBS 3500 Kbyte Actions Conform Permit Counter enable Exceed Permit Replace DSCP 33 Counter enable Violate Drop Total Entries 2 DGS 3620 28SC admin 6 8 create port_group id Description This command is used to create a port group Format create port_group id value 1 64 name name 16 Parameters id Specifies the port group ID value 1 64 Enter the port group ID here This valu...

Page 147: ...me Specifies the port group name name 16 Enter the port group name here This name can be up to 16 characters long add Add a port list to this port group delete Delete a port list from this port group portlist Enter a list of ports used for the configuration here all Specifies that all the ports will be used for this configuration Restrictions Only Administrator and Operator level users can issue t...

Page 148: ...admin delete port_group id 2 Command delete port_group id 2 Success DGS 3620 28SC admin 6 11 show port_group Description This command is used to display the port group information Format show port_group id value 1 64 name name 16 Parameters id Optional Specifies the port group ID value 1 64 Enter the port group ID used here This value must be between 1 and 64 name Optional Specifies the port group...

Page 149: ...able Gigabit Switch CLI Reference Guide 144 DGS 3620 28SC admin show port_group Command show port_group Port Group Table Group ID Group Name Ports 1 group1 1 2 5 2 group2 4 5 7 9 11 13 15 17 19 25 4 group3 5 7 Total Entries 3 DGS 3620 28SC admin ...

Page 150: ... create arpentry ipaddr macaddr Parameters ipaddr The IP address of the end node or station macaddr The MAC address corresponding to the IP address above Restrictions Only Administrator Operator and Power User level users can issue this command Example To create a static ARP entry for the IP address 10 48 74 121 and MAC address 00 50 BA 00 07 36 DGS 3620 28SC admin create arpentry 10 48 74 121 00 ...

Page 151: ...ccess DGS 3620 28SC admin 7 3 config arpentry Description This command is used to configure a static entry in the ARP table Specify the IP address and MAC address of the entry Format config arpentry ipaddr macaddr Parameters ipaddr The IP address of the end node or station macaddr The MAC address corresponding to the IP address above Restrictions Only Administrator Operator and Power User level us...

Page 152: ...er User level users can issue this command Example To configure the ARP aging time DGS 3620 28SC admin config arp_aging time 30 Command config arp_aging time 30 Success DGS 3620 28SC admin 7 5 show arpentry Description This command is used to display the Address Resolution Protocol ARP table Filter the display by IP address interface name static entries or mac_address Format show arpentry ipif ipi...

Page 153: ...mand show arpentry ARP Aging Time 20 Interface IP Address MAC Address Type System 10 0 0 0 FF FF FF FF FF FF Local Broadcast System 10 90 90 90 00 01 02 03 04 00 Local System 10 255 255 255 FF FF FF FF FF FF Local Broadcast Total Entries 3 DGS 3620 28SC admin 7 6 clear arptable Description This command is used to remove dynamic entries from the ARP table Static ARP entries are not affected Format ...

Page 154: ..._address Optional Specifies the IP address of the forwarding table ipaddr Enter the IP address to be displayed interface Optional Specifies the interface name of the forwarding table ipif_name 12 Enter the interface name here This name can be up to 12 characters long port Optional Specifies the port to be displayed port Enter the port number to be displayed Restrictions None Example To display the...

Page 155: ...ofing_prevention add gateway_ip ipaddr gateway_mac macaddr ports portlist all delete gateway_ip ipaddr Parameters add gateway_ip Specifies a gateway IP to be added ipaddr Enter the IP address gateway_mac Specifies a gateway MAC to be configured macaddr Enter the MAC address ports Specify the ports portlist Enter a range of ports to be configured all Specifies all ports to be configured delete gate...

Page 156: ...to display the ARP spoofing prevention status Format show arp_spoofing_prevention Parameters None Restrictions None Example To display the ARP spoofing prevention status DGS 3620 28SC admin show arp_spoofing_prevention Command show arp_spoofing_prevention Gateway IP Gateway MAC Ports 192 168 0 1 00 00 00 00 00 01 1 28 Total Entries 1 DGS 3620 28SC admin ...

Page 157: ... to enable the asymmetric VLAN function Format enable asymmetric_vlan Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable asymmetric VLAN setting DGS 3620 28SC admin enable asymmetric_vlan Command enable asymmetric_vlan Success DGS 3620 28SC admin 9 2 disable asymmetric_vlan Description This command is used to disable the asy...

Page 158: ...VLAN setting DGS 3620 28SC admin disable asymmetric_vlan Command disable asymmetric_vlan Success DGS 3620 28SC admin 9 3 show asymmetric_vlan Description This command is used to display the asymmetric VLAN function Format show asymmetric_vlan Parameters None Restrictions None Example To display asymmetric VLAN DGS 3620 28SC admin show asymmetric_vlan Command show asymmetric_vlan Asymmetric Vlan Di...

Page 159: ...at show autoconfig Parameters None Restrictions None Example To display the DHCP auto configuration status DGS 3620 28SC admin show autoconfig Command show autoconfig Autoconfig State Disabled DGS 3620 28SC admin 10 2 enable autoconfig Description This command is used to enable automatically to get configuration from a TFTP server according to the options in the DHCP reply packet To employ this me...

Page 160: ...S 3620 28SC admin enable autoconfig Command enable autoconfig Success DGS 3620 28SC admin 10 3 disable autoconfig Description This command is used to disable automatically to get configuration from a TFTP server Format disable autoconfig Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To disable the DHCP auto configuration status DGS 3620 28S...

Page 161: ...xStack DGS 3620 Series Layer 3 Managed Stackable Gigabit Switch CLI Reference Guide 156 DGS 3620 28SC admin ...

Page 162: ... the way to get the IP address If the mode is set to BOOTP or DHCP then the IPv4 address will be obtained through the operation of protocols The manual configuration of the IP address will be of no use If the mode is configured to BOOTP or DHCP first and then the user configures IP address later the mode will be changed to manual configured mode For IPv6 multiple addresses can be defined on the sa...

Page 163: ...er the IPv6 prefix name This name can be up to 12 characters long ipv6networkaddr The IPv6 address and subnet prefix of the IPV6 address to be created state Enable or disable the IPv6 state of the IP interface enable Enable the IPv6 state of the IP interface disable Disable the IPv6 state of the IP interface ip_mtu Specifies the IP Layer MTU value used value 512 1712 Enter the IP Layer MTU value u...

Page 164: ... name of the VLAN corresponding to the IP interface The maximum length is 32 characters secondary The IPv4 secondary interface to be created state The state of the IP interface enable Enable the state setting disable Disable the state setting proxy_arp Enable or disable the proxy ARP function It is for IPv4 function The default is disabled enable Enable the proxy ARP function disable Disable the p...

Page 165: ... prefix name This name can be up to 12 characters long ipv6networkaddr The IPv6 network address to be deleted all All IP interfaces except the System IP interface will be deleted Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete interface petrovic1 DGS 3620 28SC admin delete ipif petrovic1 Command delete ipif petrovic1 Success DGS 3620 28S...

Page 166: ...dmin enable ipif petrovic1 Command enable ipif petrovic1 Success DGS 3620 28SC admin 11 5 disable ipif Description This command is used to disable the state of an interface Format disable ipif ipif_name 12 all Parameters ipif_name 12 The name of the interface all All of the IP interfaces Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable t...

Page 167: ...pif IP Interface System VLAN Name default Interface Admin State Enabled IPv4 Address 10 90 90 90 8 Manual Primary Proxy ARP Disabled Local Disabled IP Directed Broadcast Disabled IPv4 State Enabled DHCPv6 Client State Disabled DHCPv6 Client PD State Disabled IPv6 State Enabled IP MTU 1500 IP Interface mgmt_ipif Status Enabled IP Address 192 168 0 1 Subnet Mask 255 255 255 0 Gateway 0 0 0 0 Link St...

Page 168: ...interface disable Specifies to disable the interface gateway Specifies the gateway IP address of the out of band management network ipaddr Enter the gateway IP address Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable the out of band management state DGS 3620 28SC admin config out_band_ipif state disable Command config out_band_ipif state...

Page 169: ...ill be automatically configured and the IPv6 processing will be started When there is no IPv6 address explicitly configured by default link local address is not configured and the IPv6 processing will be disabled By enabling this automatic configuration the link local address will be automatically configured and IPv6 processing will be started Format enable ipif_ipv6_link_local_auto ipif_name 12 a...

Page 170: ...ers can issue this command Example To disable the automatic configuration of link local address for an interface DGS 3620 28SC admin disable ipif_ipv6_link_local_auto interface1 Command disable ipif_ipv6_link_local_auto interface1 Success DGS 3620 28SC admin 11 11 show ipif_ipv6_link_local_auto Description This command is used to display the link local address automatic configuration state Format ...

Page 171: ...Layer 3 Managed Stackable Gigabit Switch CLI Reference Guide 166 DGS 3620 28SC admin show ipif_ipv6_link_local_auto Command show ipif_ipv6_link_local_auto IPIF System Automatic Link Local Address Disabled DGS 3620 28SC admin ...

Page 172: ...igh_warning mw_or_dbm low_warning mw_or_dbm state enable disable shutdown alarm warning none show ddm show ddm ports portlist status configuration config ddm power_unit mw dbm 12 1 config ddm Description The command configures the DDM log and trap action when encountering an exceeding alarm or warning thresholds event Format config ddm trap log enable disable Parameters trap Specifies whether to s...

Page 173: ... range of ports to be configured here all Specifies that all the optic ports operating parameters will be configured temperature_threshold Specifies the threshold of the optic module s temperature in centigrade At least one parameter shall be specified for this threshold high_alarm Optional Specify the high threshold for the alarm When the operating parameter rises above this value the action asso...

Page 174: ...taken mw_or_dbm Enter the high threshold alarm value used here low_alarm Optional Specify the low threshold for the alarm When the operating parameter falls below this value the action associated with the alarm is taken mw_or_dbm Enter the low threshold alarm value used here high_warning Optional Specify the high threshold for the warning When the operating parameter rises above this value the act...

Page 175: ...low_warning 3 Command config ddm ports 1 21 voltage_threshold high_alarm 4 25 low_alarm 2 5 high_warning 3 5 low_warning 3 Success DGS 3620 28SC admin To configure the port 21 s bias current threshold DGS 3620 28SC admin config ddm ports 1 21 bias_current_threshold high_alarm 7 25 low_alarm 0 004 high_warning 0 5 low_warning 0 008 Command config ddm ports 1 21 bias_current_threshold high_alarm 7 2...

Page 176: ...ess DGS 3620 28SC admin To configure port 21 s actions associate with the alarm DGS 3620 28SC admin config ddm ports 1 21 state enable shutdown alarm Command config ddm ports 1 21 state enable shutdown alarm Success DGS 3620 28SC admin 12 3 show ddm Description This command is used to display the DDM global settings Format show ddm Parameters None Restrictions None Example To display the DDM globa...

Page 177: ...r configured else it would be the threshold read from the optic module that is being inserted Format show ddm ports portlist status configuration Parameters portlist Optional Enter the range of ports to be displayed here status Specifies that the operating parameter will be displayed configuration Specifies that the configuration values will be displayed Restrictions None Example To display ports ...

Page 178: ... 0 5000 A 0 5500 A 3 5000 A Low Warning 2 2525 A 3 0000 A 0 0080 A 0 0080 A 0 0300 A A means that the threshold is administratively configured DGS 3620 28SC admin 12 5 config ddm power_unit Description The command is used to configure the unit of DDM TX and RX power Format config ddm power_unit mw dbm Parameters mw Specifies the DDM TX and RX power unit as mW dbm Specifies the DDM TX and RX power ...

Page 179: ...bgp dampening config bgp peer_group peer_group_name 16 remote_as as_number 0 4294967295 add delete ipaddr create bgp neighbor ipaddr remote_as as_number 1 4294967295 peer_group peer_group_name 16 peer_group peer_group_name 16 delete bgp neighbor ipaddr peer_group peer_group_name 16 all config bgp neighbor ipaddr peer_group peer_group_name 16 description desc 80 clear_description password password ...

Page 180: ...ete regexp_str 80 deny permit delete bgp community_list list_name list_name 16 all show bgp community_list list_name 16 show bgp route regexp desc 80 inconsistent_as cidr_only filter_list list_name 16 route_map map_name 16 community community_set community_set 80 local_as no_advertise no_export internet exact_match community_list list_name 16 exact_match ipaddress ipaddr network network_address lo...

Page 181: ...iption This command is used to disable the BGP protocol By disabling the BGP protocol all peers will be disconnected and dynamic routes will be deleted All the static configurations however will be reserved If BGP enables again the previous configurations can be re applied Format disable bgp Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command ...

Page 182: ...en 1 and 4294967295 Restrictions Only Administrator Operator and Power User level users can issue this command EI Mode Only Command Example To create a BGP process DGS 3620 28SC admin create bgp 100 Command create bgp 100 Success DGS 3620 28SC admin 13 4 delete bgp Description This command is used to delete the BGP process The AS number must be specified When the BGP process is deleted all peer an...

Page 183: ...nfigured the router ID is selected by the following rules 1 If a loopback interface is configured the router ID is set to the IP address of the loopback 2 If multiple loopback interfaces are configured the loopback with the highest IP address is used 3 If no loopback interface is configured the router ID is set to the highest IP address on a physical interface Note One newly created interface whos...

Page 184: ...thout waiting for route validation from the IGP This feature allows routers and access servers within an Autonomous System to have the route before BGP makes it available to other autonomous systems Format config bgp synchronization enable disable Parameters enable Specifies to enable synchronization disable Specifies to disable synchronization By default this setting is disabled Restrictions Only...

Page 185: ...to create an aggregate entry in the Border Gateway Protocol BGP database Using the aggregate_address command with no keywords will create an aggregate entry in the BGP routing table if any more specific BGP routes are available that fall within the specified range The aggregate route will be advertised as coming from your Autonomous System and will have the atomic aggregate attribute set to indica...

Page 186: ... which the network address is 10 0 0 0 8 suppress more specific routes DGS 3620 28SC admin create bgp aggregate_address 10 0 0 0 8 summary_only Command create bgp aggregate_address 10 0 0 0 8 summary_only Success DGS 3620 28SC admin 13 9 delete bgp aggregate_address Description This command is used to delete an aggregate entry in a Border Gateway Protocol BGP database Format delete bgp aggregate_a...

Page 187: ...ss If specific network address is not specified all aggregated address will be displayed Restrictions None EI Mode Only Command Example To display an aggregate route of 10 0 0 0 8 DGS 3620 28SC admin show bgp aggregate_address 10 0 0 0 8 Command show bgp aggregate_address 10 0 0 0 8 Network Address Options 10 0 0 0 8 summary_only as_set Total Aggregate Address Number 1 DGS 3620 28SC admin 13 11 cr...

Page 188: ...network 10 108 0 0 16 Command create bgp network 10 108 0 0 16 Success DGS 3620 28SC admin 13 12 config bgp network Description This command is used to configure the attribute associated with the network advertised by the Border Gateway Protocol BGP Format config bgp network network_address route_map map_name 16 clear_routemap Parameters network_address Represents the local network that BGP will a...

Page 189: ...dvertise all Deletes all BGP networks Restrictions Only Administrator Operator and Power User level users can issue this command EI Mode Only Command Example To delete network 10 108 0 0 16 to be advertised in the BGP updates DGS 3620 28SC admin delete bgp network 10 108 0 0 16 Command delete bgp network 10 108 0 0 16 Success DGS 3620 28SC admin 13 14 show bgp network Description This command is u...

Page 190: ...oldtime is set to zero then the holdtime will never expire If the two routers that build a BGP connection have a different hold time then the smaller hold time will be used If the timer is specified for specific neighbors then the neighbor specific timer will take effect The hold time needs to be at least three times that of the keepalive timer sec 0 65535 Enter the hold time value used here This ...

Page 191: ...if the local preference is ingress set by the route map For the local routes the default local preference will be used for them in the best path selection Best path selection process The following is the steps that the BGP will use to select the best path among BGP routes 1 Prefer the path that has the largest weight 2 If the routes have the same weight use the route with the highest local prefere...

Page 192: ...le Specifies that the AS path ignore option will be disabled compare_routerid Optional If enabled the BGP process will include the router ID in the path selection process Similar routes are compared and the route with the lowest router ID is selected By default this value is disabled enable Specifies that the compare router ID option will be enabled disable Specifies that the compare router ID opt...

Page 193: ...lapses Here we assume that it pass 7 5 minutes then the penalty of the route is 1000 500 7 5 15 750 3 If another flap occurs the route change from down to up then the penalty of the route will be 1750 which is larger than the suppress value and the route will be dampened BGP will not send an update message for this status change 4 When the penalty of the route decreases and become smaller than the...

Page 194: ...in 1 255 Enter the maximum suppress time value here This value must be between 1 and 255 minutes un_reachablity_half_life Optional Specifies the time in minute after which the penalty of the unreachable routes will be down by half The default setting is 15 minutes value 1 45 Enter the the time after which the penalty of the unreachable routes will be down by half here This value must be between 1 ...

Page 195: ...w bgp dampening Description This command is used to show the BGP dampening configurations Format show bgp dampening Parameters None Restrictions None EI Mode Only Command Example Following example shows how to get the BGP dampening configurations DGS 3620 28SC admin show bgp dampening Command show bgp dampening BGP Dampening State Enabled BGP Dampening Route_Map dmp1 Half Life Time 15 minutes Reus...

Page 196: ..._self route_reflector_client send_community soft_reconfiguration_inbound remove_private_as allowas_in holdtime keepalive unsuppress_map default_originate filter_list for out direction route_map for out direction prefix_list for out direction On the contrary some attributes or actions are allowed to be configured from both the peer group and the member If they are configured from the member the set...

Page 197: ...peer group named local remote_as to 50 DGS 3620 28SC admin config bgp peer_group local remote_as 50 Command config bgp peer_group local remote_as 50 Success DGS 3620 28SC admin 13 20 create bgp neighbor Description The command is used to create a BGP neighbor Either a single router or a peer group can be created as neighbor If the created neighbor has a single IP address the remote AS must be spec...

Page 198: ...s command EI Mode Only Command Example To create a neighbor peer whose address is 10 10 10 2 DGS 3620 28SC admin create bgp neighbor 10 10 10 2 remote_as 10 Command create bgp neighbor 10 10 10 2 remote_as 10 Success DGS 3620 28SC admin 13 21 delete bgp neighbor Description This command is used to delete the BGP neighbor Format delete bgp neighbor ipaddr peer_group peer_group_name 16 all Parameter...

Page 199: ...on with a neighbor By default the description is not specified desc 80 Enter the description value used here This value can be up to 80 characters long clear_description Removes the neighbor s description password Specifies to set the MD5 authentication password when a TCP connection between BGP neighbors are established When BGP neighbors are created password aren t set by default password 25 Ent...

Page 200: ...bor peer will be terminated activity Specifies the state for individual address family By default the setting is enabled for IPv4 address family enable Specifies that the neighbor session state or the for individual address family state will be enabled disable Specifies that the neighbor session state or the for individual address family state will be disabled Restrictions Only Administrator Opera...

Page 201: ... will set the next_hop to itself when it advertises the routes to the specific neighbor If the next_hop_self option is disabled the next_hop attributes will not be changed The behavior described here will be overridden by the set next hop statement if route map is applied to the neighbor in the out direction remove_private_as The private Autonomous System numbers are from 64512 to 65535 If this se...

Page 202: ...e Specifies that the next hop self attribute will be disabled soft_reconfiguration_inbound Optional Specifies to enable or disable the inbound soft reconfiguration function By default this setting is disabled enable Specifies that the soft re configuration inbound option will be enabled disable Specifies that the soft re configuration inbound option will be disabled remove_private_as Optional If t...

Page 203: ...ific advertisement interval setting will be returned to the default setting sec 0 600 Enter the advertisement interval value here This value must be between 0 and 600 seconds default Specifies that the advertisement interval will be set to default keepalive Optional This specifies the interval at which a keepalive message is sent to its peers If the two routers that build BGP connection have diffe...

Page 204: ... When the route reflector client is defined and the router reflection is enabled the BGP router will act as the route reflector The reflector and its client form a cluster In a cluster all the members must be iBGP connections with the reflector and vice versa The reflector is the representative of the cluster For the reflector the iBGP connection is established by the create bgp neighbor command a...

Page 205: ...ed by the unsuppress_map command the suppressed route which matches the permit rule will be unsuppressed It provides a manipulation of routers per neighbor If a route map is configured relating to a BGP neighbor but the route map doesn t exist it means deny any If the route map exists but has no filter entry defined it will permit all Format config bgp neighbor map ipaddr peer_group peer_group_nam...

Page 206: ...s deny any prefix_list If the prefix_list doesn t exist it means deny any If the prefix_list does exist but have no filter entry defined it will permit all capability_orf_prefix_list BGP Outbound Route Filter Capability allows one BGP router to install its configured inbound prefix_list filter on to the remote BGP router This is used for reducing the amount of unwanted routing updates from the rem...

Page 207: ...fix filter list notified by the remote router send Enables the ORF prefix list capability in the sending direction The local router will notify the remote router for the ORF prefix list capability both Enables the ORF prefix list capability in both received and send directions none Disable the ORF prefix list capability in both received and send directions Restrictions Only Administrator Operator ...

Page 208: ...GS 3620 28SC admin show bgp peer_group local1 Command show bgp peer_group local1 BGP Peer Group local1 Description Session State Enabled Session Activity Enabled Members 10 2 2 2 Remote AS Not Set Advertisement Interval 30 seconds Keepalive Interval 60 seconds Holdtime Interval 180 seconds AS Origination Interval 15 seconds Connect Retry Interval 120 seconds EBGP Multihop 1 Weight 0 Next Hop Self ...

Page 209: ...oint of failure When multiple route reflectors are configured in a cluster they must be configured with the same cluster ID This allows all route reflectors in the cluster to recognize updates from peers in the same cluster and reduces the number of updates that needs to be stored in BGP routing tables This command is only required for the reflector and not the client Format config bgp route_refle...

Page 210: ...ple shows how to disable the client to client reflection DGS 3620 28SC admin config bgp client_to_client_reflection disable Command config bgp client_to_client_reflection disable Success DGS 3620 28SC admin 13 32 config bgp confederation identifier Description This command is used to configure the BGP confederation A confederation which is represented by an AS is a group of the sub AS A confederat...

Page 211: ... 3620 28SC admin 13 33 config bgp confederation peers Description The command is used to configure multiple adjacent Autonomous Systems in a confederation The Autonomous Systems specified in this command are visible internally to the confederation Each Autonomous System is fully meshed within itself or configures route reflector Format config bgp confederation peers add delete aspath_list Paramete...

Page 212: ...refix filter whenever a change is made to the prefix filter Format clear bgp all ipaddr ipaddr as as_number 1 4294967295 peer_group peer_group_name 16 external soft in prefix_filter out Parameters all Specifies that all current BGP sessions will be reset ipaddr Specifies to reset the session with the specified neighbor ipaddr Enter the IP address used for this configuration here as Specifies to re...

Page 213: ...ormation network_address Optional Specifies an IPv4 network to clear the dampening information Restrictions Only Administrator Operator and Power User level users can issue this command EI Mode Only Command Example To clear route dampening information for network 192 168 10 0 24 and free suppressed routes DGS 3620 28SC admin clear bgp dampening 192 168 10 0 24 Command clear bgp dampening 192 168 1...

Page 214: ...ion This command is used to configure matching rules for an Autonomous System path access list using regular expressions Format config bgp as_path access_list list_name 16 add delete regexp_str 80 deny permit Parameters access_list Specifies the AS path access list name list_name 16 Enter the AS path access list name here This name can be up to 16 characters long add Specifies to add a matching ru...

Page 215: ...28SC admin 13 38 delete bgp as_path access_list Description This command is used to delete an Autonomous System path access list Format delete bgp as_path access_list list_name list_name 16 all Parameters list_name Specifies the AS path access list name list_name 16 Enter the AS path access list name here This name can be up to 16 characters long all Specifies that all the AS path lists will be us...

Page 216: ...g Restrictions None EI Mode Only Command Example This example displays an AS path access list DGS 3620 28SC admin show bgp as_path access_list 1 Command show bgp as_path access_list 1 BGP AS Path Access List 1 deny _64 6 9 0 9 0 9 _ _65 0 9 0 9 0 9 _ permit 33 Total Filter Entries 2 Total AS Path Access List Number 1 DGS 3620 28SC admin 13 40 create bgp community_list Description This command is u...

Page 217: ...ailing two bytes representing a user defined number BGP community attributes exchanged between BGP peers is controlled by the neighbor send community command The community string associated with routes can be controlled by the route map By default the community string internet will be sent If the route map sets a community string this community string will be added to the existing community string...

Page 218: ...mit To permit the routes if rule is matched expanded Configures an expanded community list list_name 16 Name of community list to be configured add Adds a rule to the community list delete Deletes a rule from the community list regexp_str 80 Enter the registration expiry string value here This value can be up to 80 characters long deny To deny the routes if rule is matched permit To permit the rou...

Page 219: ...nd Example This example deletes the community list named as list1 DGS 3620 28SC admin delete bgp community_list list_name test1 Command delete bgp community_list list_name test1 Success DGS 3620 28SC admin 13 43 show bgp community_list Description This command is used to show a BGP community list Format show bgp community_list list_name 16 Parameters community_list Specifies the name of community ...

Page 220: ...ommunity_list list_name 16 exact_match ipaddress ipaddr network network_address longer_prefixes prefix_list list_name 16 Parameters regexp Optional Display routes matching the AS path regular expression desc 80 A regular expression to match the BGP AS paths must enclose in the quotes Can include blank space The string can be up to 80 characters long inconsistent_as Optional Display the routes if t...

Page 221: ...longer_prefixes Optional If specified more specific routes will be also displayed prefix_list Optional Display routes conforming to the prefix list list_name 16 Specifies the list name for the specified prefix list IP access list or route map Restrictions None EI Mode Only Command Example The following example shows how to get the BGP route information DGS 3620 28SC admin show bgp route Command sh...

Page 222: ...h history valid best i internal Origin codes i IGP e EGP incomplete IP Address Netmask Gateway Metric LocPrf Weight Path 172 16 0 0 24 172 16 72 30 0 109 108 172 16 1 0 24 172 16 72 30 0 109 108 172 16 11 0 24 172 16 72 30 0 109 108 172 16 14 0 24 172 16 72 30 0 109 108 172 16 15 0 24 172 16 72 30 0 109 108 172 16 16 0 24 172 16 72 30 0 109 108 Total Entries 6 DGS 3620 28SC admin show bgp route re...

Page 223: ...ed to any peer Not advertised to any peer as path is Local next hop is 0 0 0 0 from 0 0 0 0 local router_id is 192 168 1 1 origin IGP metric 100 localpref 0 weight 32768 sourced best Community no_advertise DGS 3620 28SC admin 13 45 show bgp neighbors Description This command is used to display BGP and TCP connections with the BGP neighbor or routing table entries containing a BGP neighbor To displ...

Page 224: ...bled Session Activity Enabled Remote AS 1 Remote Router ID 192 168 252 252 BGP State Established UP for 00 24 25 Hold Time 180 Seconds Keepalive Interval 60 Seconds Advertisement Interval 5 Seconds AS Origination Interval 15 seconds Connect Retry Interval 120 seconds EBGP Multihop 2 Weight 100 Next Hop Self Disabled Remove Private As Disabled Allowas In Enabled Num 3 Address Family IPv4 Unicast IP...

Page 225: ... Netmask Gateway Metric LocPrf Weight Path i10 0 0 0 24 172 16 232 179 0 100 0 10 20 2 0 24 0 0 0 0 0 32768 i Total Entries 2 DGS 3620 28SC admin show bgp neighbors 172 16 232 178 received_prefix_filter Command show bgp neighbors 172 16 232 178 received_prefix_filter Ip prefix list 172 16 232 181 1 entries Seq 5 deny 10 0 0 0 8 le 32 Total Entries 1 DGS 3620 28SC admin show bgp neighbors 172 16 23...

Page 226: ...nformation DGS 3620 28SC admin show bgp dampened_routes Command show bgp dampened_routes BGP local router ID is 172 29 232 182 Status codes s suppressed d damped h history valid best i internal Origin codes i IGP e EGP incomplete Network From Reuse Path d 10 0 0 0 16 172 16 232 177 00 18 4 100 d 10 2 0 0 16 172 16 232 177 00 28 5 100 Total Entries 2 DGS 3620 28SC admin 13 47 show bgp flap_statisti...

Page 227: ...laps Duration Reuse Path d 10 0 0 0 16 172 29 232 177 4 00 13 31 00 18 10 100 d 10 2 0 0 16 172 29 232 177 4 00 02 45 00 28 20 100 i Total Entries 2 DGS 3620 28SC admin 13 48 show bgp Description This command is used to display BGP configuration and summary of the BGP status Format show bgp summary Parameters summary Optional Specifies that the summary of the BGP status will be included in the dis...

Page 228: ...eration Path Disabled Fast External Fallover Enabled Aggregate Next Hop Check Disabled BGP Trap None DGS 3620 28SC admin show bgp summary Command show bgp summary BGP Router Identifier 172 16 1 1 local AS number 100 Dampening Enabled BGP AS Path Entries 10 BGP Community Entries 7 Neighbor Ver AS MsgRcvd MsgSent Up Down State PfxRcvd 10 100 1 1 4 200 26 22 00 14 23 23 10 200 1 1 4 300 21 51 00 13 4...

Page 229: ...lection Command show bgp reflection Client to Client Reflection State Disabled Cluster ID 0 0 0 0 Router Reflector Client 10 1 1 20 10 1 1 30 DGS 3620 28SC admin 13 50 show bgp confederation Description This command is used to display the confederation configuration of BGP Format show bgp confederation Parameters None Restrictions None EI Mode Only Command Example This example displays the BGP con...

Page 230: ...eters peer_established Enable or disable the sending of the peer established trap This default value is disabled peer_idle Enable or disable the sending of the peer idle trap This default value is disabled all Enable or disable the sending of both the peer idle and established trap This default value is disabled enable Specifies that the trap feature will be enabled disable Specifies that the trap...

Page 231: ...Trap State BGP Peer Established Enabled BGP Peer Idle Enabled DGS 3620 28SC admin 13 53 config bgp scan_timer Description This command is used to configure the BGP scan timer value BGP will check the next hop whether it is reachable from the BGP route before the timer expires Format config bgp scan_timer sec 5 60 default Parameters sec 5 60 Set the BGP scan timer value from 5 to 60 seconds Default...

Page 232: ...Parameters enable Specifies that the BGP aggregate next hop check will be enabled disable Specifies that the BGP aggregate next hop check will be disabled Restrictions Only Administrator Operator and Power User level users can issue this command EI Mode Only Command Example This is an example of configuring the BGP aggregate next hop check DGS 3620 28SC admin config bgp aggregate_next_hop_check en...

Page 233: ...ighbor maximum_prefix ipaddr peer_group peer_group_name 16 value 1 12000 value 1 100 warning_only Parameters ipaddr Specifies the IP address of the neighbor to be configured peer_group Specifies the peer group to be configured peer_group_name 16 Enter the peer group name here This name can be up to 16 characters long value 1 12000 Maximum number of prefixes allowed from the specified neighbor The ...

Page 234: ...penalties for routes that have been received on a router that has BGP dampening enabled If no arguments or keywords are specified flap statistics are cleared for all routes Format clear bgp flap_statistics ipaddr network_address Parameters ipaddr Optional Specifies an IPv4 address to clear the dampening flap statistics network_address Optional Specifies an IPv4 network to clear the dampening flap ...

Page 235: ...f ports to be configured all Specifies to set all ports in the system state Specifies the BPDU protection state The default state is disabled enable Enable the BPDU protection state disable Disable the BPDU protection state mode Specifies the BPDU protection mode The default mode is shutdown drop Specifies to drop all received BPDU packets when the port enters the under attack state block Specifie...

Page 236: ...nfig bpdu_protection recovery_timer sec 60 1000000 infinite Parameters sec 60 1000000 Enter the timer in seconds used by the Auto recovery mechanism to recover the port The valid range is 60 to 1000000 Auto recovery time is 60 seconds by default infinite Specifies the port will not be auto recovered Restrictions Only Administrator Operator and Power User level users can issue this command Example ...

Page 237: ...ed Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the BPDU protection trap state as both for the entire switch DGS 3620 28SC admin config bpdu_protection trap both Command config bpdu_protection trap both Success DGS 3620 28SC admin 14 4 enable bpdu_protection Description This command is used to enable BPDU protection globally for th...

Page 238: ...ser level users can issue this command Example To disable BPDU protection DGS 3620 28SC admin disable bpdu_protection Command disable bpdu_protection Success DGS 3620 28SC admin 14 6 show bpdu_protection Description This command is used to display BPDU protection global configuration or per port configuration and current status Format show bpdu_protection ports portlist Parameters ports Optional S...

Page 239: ...tion Global Settings BPDU Protection Status Disabled BPDU Protection Recover Time 60 seconds BPDU Protection Trap State None BPDU Protection Log State Both DGS 3620 28SC admin To display BPDU protection status for ports 1 to 3 DGS 3620 28SC admin show bpdu_protection ports 1 3 Command show bpdu_protection ports 1 3 Port State Mode Status 1 Disabled Shutdown Normal 2 Disabled Shutdown Normal 3 Disa...

Page 240: ...t ports Where the link partner is powered on with no errors and the link is up this command can detect the cable length Where the link partner is powered on with errors this command can detect whether the error is open short or crosstalk In this case this command can also detect the distance of the error Where the link partner is powered down with no errors and the link is down this command can de...

Page 241: ...e a low number of packets Since this test is for copper cable the port with fiber cable will be skipped from the test Format cable_diag ports portlist all Parameters portlist Enter a range of ports to be configured all Specify to set all ports in the system Restrictions Only Administrator Operator and Power User level users can issue this command Example To test the cable on ports 1 to 4 and 8 ...

Page 242: ... 1000BASE T Link Down Shutdown 1 5 1000BASE T Link Down Unknown 1 6 1000BASE T Link Down Pair 1 Crosstalk at 30M Pair 2 Crosstalk at 30M Pair 3 OK at 110M Pair 4 OK at 110M 1 7 1000BASE T Link Down NO Cable 1 8 1000BASE T Link Down Pair 1 Open at 16M Pair 2 Open at 16M Pair 3 OK at 50M Pair 4 OK at 50M 1 9 1000BASE T Link Down Pair 1 Short at 5M Pair 2 Short at 5M Pair 3 OK at 110M Pair 4 OK at 11...

Page 243: ...ex uint 1 4294967295 enable cfm disable cfm config cfm ports portlist state enable disable show cfm ports portlist show cfm md string 22 md_index uint 1 4294967295 ma string 22 ma_index uint 1 4294967295 mepid int 1 8191 mepname string 32 show cfm fault md string 22 md_index uint 1 4294967295 ma string 22 ma_index uint 1 4294967295 show cfm port port level int 0 7 direction inward outward vlanid v...

Page 244: ...dm mepname string 32 mepid int 1 8191 md string 22 md_index uint 1 4294967295 ma string 22 ma_index uint 1 4294967295 state enable disable config cfm lm mepname string 32 mepid int 1 8191 md string 22 md_index uint 1 4294967295 ma string 22 ma_index uint 1 4294967295 state enable disable show cfm dm mepname string 32 mepid int 1 8191 md string 22 md_index uint 1 4294967295 ma string 22 ma_index ui...

Page 245: ... control creations of MIPs none Do not create MIPs This is the default value auto MIPs can always be created on any port in this MD if the port is not configured with an MEP of this MD explicit MIPs can only be created on any port in this MD if the next existing lower level has an MEP configured on that port and that port is not configured with an MEP of this MD sender_id Optional This is the cont...

Page 246: ... The maximum length is 22 characters md_index Specifies the maintenance domain index used uint 1 4294967295 Enter the maintenance domain index value used here This value must be between 1 and 4294967295 Restrictions Only Administrator Operator and Power User level users can issue this command EI Mode Only Command Example To create a maintenance association called op1 and assign it to the maintenan...

Page 247: ... explicit MIPs can be created on any ports in this MA only if the next existing lower level has an MEP configured on that port and that port is not configured with an MEP of this MA defer Inherit the setting configured for the maintenance domain that this MA is associated with This is the default value sender_id Optional This is the control transmission of the sender ID TLV none Do not transmit th...

Page 248: ...294967295 direction inward outward port port Parameters string 32 Enter the MEP name used here It is unique among all MEPs configured on the device The name can be up to 32 characters long mepid Specifies the MEP MEPID It should be configured in the MA s MEPID list int 1 8191 Enter the MEP MEPID between 1 and 8191 md Specifies the maintenance domain name string 22 Enter the maintenance domain name...

Page 249: ...If multiple types of the fault occur on an MEP only the fault with the highest priority will be alarmed Format config cfm mep mepname string 32 mepid int 1 8191 md string 22 md_index uint 1 4294967295 ma string 22 ma_index uint 1 4294967295 state enable disable ccm enable disable pdu_priority int 0 7 fault_alarm all mac_status remote_ccm error_ccm xcon_ccm none alarm_time centisecond 250 1000 alar...

Page 250: ...e fault alarms whose priority is equal to or higher than Error CCM Received are sent xcon_ccm Only the fault alarms whose priority is equal to or higher than Cross connect CCM Received are sent none No fault alarm is sent alarm_time Specifies the time that a defect must exceed before the fault alarm can be sent The unit is centiseconds The default value is 250 centisecond 250 1000 Enter the time t...

Page 251: ...fies the maintenance association name string 22 Enter the maintenance association name The maximum length is 22 characters ma_index Specifies the maintenance association index uint 1 4294967295 Enter the maintenance association index value here This value must be between 1 and 4294967295 Restrictions Only Administrator Operator and Power User level users can issue this command EI Mode Only Command...

Page 252: ...dmin delete cfm ma op1 md op_domain Command delete cfm ma op1 md op_domain Success DGS 3620 28SC admin 16 9 delete cfm md Description This command is used to delete a previously created maintenance domain When the command is executing all the MEPs and maintenance associations created in the maintenance domain will be deleted automatically Format delete cfm md string 22 md_index uint 1 4294967295 P...

Page 253: ...to enable the CFM globally Format enable cfm Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command EI Mode Only Command Example To enable the CFM globally DGS 3620 28SC admin enable cfm Command enable cfm Success DGS 3620 28SC admin 16 11 disable cfm Description This command is used to disable the CFM globally Format disable cfm Parameters None ...

Page 254: ...e created on that port and the configuration can be saved MEPs created on that port can never generate or process CFM PDUs If the user issues a Loopback or Link trace test on those MEPs it will prompt the user to inform them that the CFM function is disabled on that port Format config cfm ports portlist state enable disable Parameters portlist Enter the logical port list state Specifies the CFM fu...

Page 255: ...e To display the CFM state for ports 3 to 6 DGS 3620 28SC admin show cfm ports 3 6 Command show cfm ports 3 6 Port State 3 Enabled 4 Enabled 5 Enabled 6 Enabled DGS 3620 28SC admin 16 14 show cfm Description This command is used to display the CFM configuration Format show cfm md string 22 md_index uint 1 4294967295 ma string 22 ma_index uint 1 4294967295 mepid int 1 8191 mepname string 32 Paramet...

Page 256: ... Restrictions None EI Mode Only Command Example To display the CFM configuration DGS 3620 28SC admin show cfm Command show cfm CFM State Enabled MD Index MD Name Level 1 op_domain 2 DGS 3620 28SC admin 16 15 show cfm fault Description This command is used to display all the fault conditions detected by the MEPs contained in the specified MA or MD The display provides the overview of the fault stat...

Page 257: ...6 16 show cfm port Description This command is used to display MEPs and MIPs created on a port Format show cfm port port level int 0 7 direction inward outward vlanid vlanid 1 4094 Parameters port Enter the port number level Optional Specify the maintenance domain level If not specified all levels are shown int 0 7 Enter the value between 0 and 7 direction Optional Specify the MEP direction inward...

Page 258: ...sed here This value must be between 1 and 4294967295 ma Specifies the maintenance association name string 22 Enter the maintenance association name here This name can be up to 22 characters long ma_index Specifies the MA index value used uint 1 4294967295 Enter the MA index value used here This value must be between 1 and 4294967295 mepid The MEP ID in the MD which sends LCK frame int 1 8191 Enter...

Page 259: ...maintenance domain name The maximum length is 22 characters md_index Specifies the MD index value used uint 1 4294967295 Enter the MD index value used here This value must be between 1 and 4294967295 ma Optional Specify the maintenance association name string 22 Enter the maintenance association name The maximum length is 22 characters ma_index Specifies the MA index value used uint 1 4294967295 E...

Page 260: ...ID int 1 8191 Enter the MEP MEPID between 1 and 8191 md Optional Specify the maintenance domain name string 22 Enter the maintenance domain name The maximum length is 22 characters md_index Specifies the MD index value used uint 1 4294967295 Enter the MD index value used here This value must be between 1 and 4294967295 ma Optional Specify the maintenance association name string 22 Enter the mainte...

Page 261: ...imum length is 32 characters mepid Optional Specify the MEPID int 1 8191 Enter the MEP MEPID between 1 and 8191 md Optional Specify the maintenance domain name string 22 Enter the maintenance domain name The maximum length is 22 characters md_index Specifies the maintenance domain index uint 1 4294967295 Enter the maintenance domain index value here This value must be between 1 and 4294967295 ma O...

Page 262: ...nk trace response data that have been initiated by the specified MEP Format delete cfm linktrace md string 22 md_index uint 1 4294967295 ma string 22 ma_index uint 1 4294967295 mepid int 1 8191 mepname string 32 Parameters md Optional Specify the maintenance domain name string 22 Enter the maintenance domain name The maximum length is 22 characters md_index Specifies the MD index value used uint 1...

Page 263: ...s function is for test purposes According to IEEE 802 1ag a Bridge replies with one LTR to an LTM This command can make all MPs on the LTM s forwarding path reply with LTRs no matter whether they are on a Bridge or not Format config cfm mp_ltr_all enable disable Parameters enable Enable this feature disable Disable this feature Restrictions Only Administrator Operator and Power User level users ca...

Page 264: ...of a MAC entry Format show cfm mipccm Parameters None Restrictions None EI Mode Only Command Example To display the MIP CCM database entries DGS 3620 28SC admin show cfm mipccm Command show cfm mipccm MA VID MAC Address Port opma 1 XX XX XX XX XX XX XX 2 opma 1 XX XX XX XX XX XX XX 3 Total 2 DGS 3620 28SC admin 16 24 show cfm mp_ltr_all Description This command is used to display the current confi...

Page 265: ...ified all ports will be displayed portlist Enter a list of ports rx Optional Display the RX counter If not specified both the RX and TX counters will be displayed tx Optional Display the TX counter If not specified both the RX and TX counters will be displayed rx Optional Display the RX counter If not specified both the RX and TX counters will be displayed tx Optional Display the TX counter If not...

Page 266: ... cleared portlist Enter a list of ports rx Optional Clear the RX counter If not specified both the RX and TX counters will be cleared tx Optional Clear the TX counter If not specified both the RX and TX counters will be cleared rx Optional Clear the RX counter If not specified both the RX and TX counters will be cleared tx Optional Clear the TX counter If not specified both the RX and TX counters ...

Page 267: ...e maximum length is 22 characters md_index Specifies the maintenance domain index uint 1 4294967295 Enter the maintenance domain index value here This value must be between 1 and 4294967295 ma Specifies the maintenance association name string 22 Enter the maintenance association name The maximum length is 22 characters ma_index Specifies the maintenance association index uint 1 4294967295 Enter th...

Page 268: ... the maintenance association name string 22 Enter the maintenance association name The maximum length is 22 characters ma_index Specifies the maintenance association index uint 1 4294967295 Enter the maintenance association index value here This value must be between 1 and 4294967295 mepid Specifies the MEPID int 1 8191 Enter the MEP MEPID between 1 and 8191 period Optional Specifies the transmitt...

Page 269: ...95 ma Specifies the maintenance association name string 22 Enter the maintenance association name The maximum length is 22 characters ma_index Specifies the maintenance association index uint 1 4294967295 Enter the maintenance association index value here This value must be between 1 and 4294967295 mepid Specifies the MEPID int 1 8191 Enter the MEP MEPID between 1 and 8191 period Optional Specifie...

Page 270: ... event occurs or clears lock Specifies the LCK trap status that to be configured If the trap status of LCK is enabled a trap will be sent out wnen an ETH LCK event occurs or clears state Specify the state of the CFM trap enable Enable the CFM trap state This is the default disable Disable the CFM trap state Restrictions Only Administrator Operator and Power User level users can issue this command ...

Page 271: ...ma Specifies the Maintenance Association name string 22 Enter the Maintenance Association name This name can be up to 22 characters long ma_index Specifies the Maintenance Association index uint 1 4294967295 Enter the Maintenance Association index period interval Specifies the transmission period of DMM message and the diagnostic interval 100ms 1sec Specifies the transmission period of 100 millise...

Page 272: ...e Domain name string 22 Enter the Maintenance Domain name This name can be up to 22 characters long md_index Specifies the Maintenance Domain index uint 1 4294967295 Enter the Maintenance Domain index This value must be between 1 and 4294967295 ma Specifies the Maintenance Association name string 22 Enter the Maintenance Association name This name can be up to 22 characters long ma_index Specifies...

Page 273: ...en 1 and 8191 md Optional Specifies the Maintenance Domain name string 22 Enter the Maintenance Domain name This name can be up to 22 characters long md_index Optional Specifies the Maintenance Domain index uint 1 4294967295 Enter the Maintenance Domain index This value must be between 1 and 4294967295 ma Optional Specifies the Maintenance Association name string 22 Enter the Maintenance Associati...

Page 274: ... can be up to 22 characters long md_index Optional Specifies the Maintenance Domain index uint 1 4294967295 Enter the Maintenance Domain index This value must be between 1 and 4294967295 ma Optional Specifies the Maintenance Association name string 22 Enter the Maintenance Association name This name can be up to 22 characters long ma_index Optional Specifies the Maintenance Association index uint ...

Page 275: ...ndex This value must be between 1 and 4294967295 ma Specifies the Maintenance Association name string 22 Enter the Maintenance Association name This name can be up to 22 characters long ma_index Specifies the Maintenance Association index uint 1 4294967295 Enter the Maintenance Association index state Specifies the administrative state of frame delay measurement function on the MEP enable Specifie...

Page 276: ...Maintenance Association name This name can be up to 22 characters long ma_index Specifies the Maintenance Association index uint 1 4294967295 Enter the Maintenance Association index state Specifies the administrative state of frame loss measurement function on the MEP enable Specifies that the frame loss measurement function will be enabled disable Specifies that the frame loss measurement functio...

Page 277: ...intenance Association name This name can be up to 22 characters long ma_index Specifies the Maintenance Association index uint 1 4294967295 Enter the Maintenance Association index Restrictions None EI Mode Only Command Example To display the frame delay measurement information DGS 3620 28SC admin show cfm dm mepname mep1 Command show cfm dm mepname mep1 State Enabled DMM Tansmitted 0 DMR Received ...

Page 278: ...ies the Maintenance Domain index uint 1 4294967295 Enter the Maintenance Domain index This value must be between 1 and 4294967295 ma Specifies the Maintenance Association name string 22 Enter the Maintenance Association name This name can be up to 22 characters long ma_index Specifies the Maintenance Association index uint 1 4294967295 Enter the Maintenance Association index Restrictions None EI M...

Page 279: ...e on the current login account level through the Command Line Interface CLI Format Command Parameters Command Optional Specify a command Note If no command is specified the system will display all commands of the corresponding user level Restrictions None Example To display all commands DGS 3620 28SC admin Command cable_diag ports cd cfm linktrace cfm loopback clear clear address_binding dhcp_snoo...

Page 280: ... q Quit SPACE n Next Page ENTER Next Entry a All To display the syntax for config account DGS 3620 28SC admin config account Command config account Command config account Usage username encrypt plain_text sha_1 password Description Used to configure user accounts DGS 3620 28SC admin 17 2 show command_history Description This command is used to display the command history Format show command_histor...

Page 281: ...02 1x auth_state ports 1 5 show igmp_snooping enable igmp_snooping DGS 3620 28SC admin 17 3 config command_history Description This command is used to configure the number of commands that the switch can record The switch can keep records for the last 40 maximum commands you entered Format config command_history value 1 40 Parameters value 1 40 Specify the number of commands 1 to 40 that the switc...

Page 282: ...e configuration to execute immediately all configuration commands should not be logged When the user is under AAA authentication the user name should not changed if user uses enable admin command to replace its privilege Format enable command logging Parameters None Restrictions Only Administrator level users can issue this command Example To enable the command logging function DGS 3620 28SC admin...

Page 283: ...ing Command disable command logging Success DGS 3620 28SC admin 18 3 show command logging Description This command displays the switch s general command logging configuration status Format show command logging Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To show the command logging configuration status DGS 3620 28SC admin show command logg...

Page 284: ...inter e1 inter e2 metric uint 0 4294967295 route_map map_name 16 config route redistribute dst bgp src local static rip ospf all internal external type_1 type_2 inter e1 inter e2 metric uint 0 4294967295 route_map map_name 16 no_route_map show route redistribute show route redistribute dst rip src local static ospf bgp delete route redistribute dst bgp src local static rip ospf delete route redist...

Page 285: ...ospfInter ospfExt1 ospfExt2 ebgp ibgp Parameters local Optional Specifies to display the preference of local route static Optional Specifies to display the preference of static route default Optional Specifies to display the preference of default route rip Optional Specifies to display the preference of RIP route ospf Optional Specifies to display the preference of all types of OSPF route ospfIntr...

Page 286: ...ode Only Parameter mettype Optional Allows the selection of one of two methods for calculating the metric value 1 calculates the metric for other routing protocols to OSPF by adding the destination s interface cost to the metric entered in the Metric field 2 uses the metric entered in the Metric field without change This field applies only when the destination field is OSPF If the metric type is n...

Page 287: ...ows the selection of one of two methods for calculating the metric value 1 calculates the metric for other routing protocols to OSPF by adding the destination s interface cost to the metric entered in the Metric field 2 uses the metric entered in the Metric field without change This field applies only when the destination field is OSPF If the metric type is not specified it will be type 2 1 Specif...

Page 288: ...tes to RIP bgp To redistribute BGP routes to RIP EI Mode Only Parameter ospf To redistribute OSPF routes to RIP all To redistribute both OSPF AS internal and OSPF AS external routes to RIP internal To redistribute only the OSPF AS internal routes external To redistribute only the OSPF AS external routes including type 1 and type 2 routes type_1 To redistribute only the OSPF AS external type 1 rout...

Page 289: ...F AS internal and OSPF AS external routes to RIP internal To redistribute only the OSPF AS internal routes external To redistribute only the OSPF AS external routes including type 1 and type 2 routes type_1 To redistribute only the OSPF AS external type 1 routes type_2 To redistribute only the OSPF AS external type 2 routes inter e1 To redistribute only the OSPF AS external type 1 and OSPF AS inte...

Page 290: ... To not redistribute static routes local To not redistribute local routes ospf To not redistribute OSPF routes bgp To not redistribute BGP routes EI Mode Only Parameter Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete route redistribution settings DGS 3620 28SC admin delete route redistribute dst rip src static Command delete route redist...

Page 291: ...967295 Enter the metric value used here This value must be between 0 and 4294967295 route_map Optional Specifies a route map which will be used as the criteria to determine whether to redistribute specific routes map_name 16 Enter the route map name used here This name can be up to 16 characters long Restrictions Only Administrator Operator and Power User level users can issue this command EI Mode...

Page 292: ...P metric value for the redistributed routes value 0 4294967295 Enter the metric value used here This value must be between 0 and 4294967295 route_map Optional Specifies a route map which will be used as the criteria to determine whether to redistribute specific routes map_name 16 Enter the route map name used here This name can be up to 16 characters long no_route_map Specifies to withdraw the rou...

Page 293: ...s used to display the route redistribution settings on the Switch It displays the redistribution with the target protocol RIP Format show route redistribute dst rip src local static ospf bgp Parameters src Optional Specifies the source protocol static Display the redistribution with the source static local Display the redistribution with the source local ospf Display the redistribution with the so...

Page 294: ...edistribute configuration on the Switch It specifies to not redistribute other routing protocols to BGP Format delete route redistribute dst bgp src local static rip ospf Parameters src Specifies the source protocol local To not redistribute local routes static To not redistribute static routes rip To not redistribute RIP routes ospf To not redistribute OSPF routes Restrictions Only Administrator ...

Page 295: ...level users can issue this command Example To delete route redistribution settings DGS 3620 28SC admin delete route redistribute dst ospf src static Command delete route redistribute dst ospf src static Success DGS 3620 28SC admin 19 14 show route redistribute dst bgp Description This command is used to display the route redistribution settings on the Switch It displays the redistribution with the...

Page 296: ...on This command is used to display the route redistribution settings on the Switch It displays the redistribution with the target protocol OSPF Format show route redistribute dst ospf src local static rip bgp Parameters src Optional Specifies the source protocol local Display the redistribution with the source local static Display the redistribution with the source static rip Display the redistrib...

Page 297: ...it Switch CLI Reference Guide 292 DGS 3620 28SC admin show route redistribute dst ospf Command show route redistribute dst ospf Route Redistribution Settings Source Destination Type Metric RouteMapName Protocol Protocol Total Entries 0 DGS 3620 28SC admin ...

Page 298: ... show authentication mac_format show authentication ports portlist enable authorization attributes disable authorization attributes show authorization config authentication server failover local permit block 20 1 create authentication guest_vlan Description This command is used to assign a static VLAN to be a guest VLAN The specific VLAN which is assigned to be a guest VLAN must already exist The ...

Page 299: ...ication guest_vlan vlan vlan_name 32 vlanid vlanid 1 4094 Parameters vlan Specifies the guest VLAN by VLAN name vlan_name 32 Enter the guest VLAN by VLAN name The VLAN name can be up to 32 characters long vlanid Specifies the guest VLAN by VLAN ID vlanid 1 4094 Enter the guest VLAN by VLAN ID The VLAN ID value must be between 1 and 4094 Restrictions Only Administrator Operator and Power User level...

Page 300: ...erator and Power User level users can issue this command Example To configure authentication for all ports for a guest VLAN called gv DGS 3620 28SC admin config authentication guest_vlan vlan gv add ports all Command config authentication guest_vlan vlan gv add ports all Success DGS 3620 28SC admin 20 4 config authentication mac_format Description This command will set the MAC address format that ...

Page 301: ...hentication method on ports Format config authentication ports portlist all auth_mode port_based host_based vlanid vid_list state enable disable multi_authen_methods none any dot1x_impb impb_jwac impb_wac mac_impb 1 Parameters portlist Enter a port or range of ports to configure all Specifies to configure all ports auth_mode Optional The authorization mode is port based or host based port based If...

Page 302: ...ly Administrator Operator and Power User level users can issue this command Example The following example sets the authentication mode of all ports to host based DGS 3620 28SC admin config authentication ports all auth_mode host_based Command config authentication ports all auth_mode host_based Success DGS 3620 28SC admin The following example sets the compound authentication method of all ports t...

Page 303: ...lan Description This command is used to display guest VLAN information Format show authentication guest_vlan Parameters None Restrictions None Example To display the guest VLAN setting DGS 3620 28SC admin show authentication guest_vlan Command show authentication guest_vlan Guest VLAN VID Guest VLAN Member Ports Total Entries 0 DGS 3620 28SC admin 20 8 show authentication mac_format Description Th...

Page 304: ... authentication mac_format Case Uppercase Delimiter None Delimiter Number 5 DGS 3620 28SC admin 20 9 show authentication ports Description This command is used to display the authentication method and authorization mode on ports Format show authentication ports portlist Parameters portlist Optional Specify to display compound authentication on specific port s Restrictions None Example To display t...

Page 305: ...ription This command is used to enable the authorization global state Format enable authorization attributes Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the authorization global state DGS 3620 28SC admin enable authorization attributes Command enable authorization attributes Success DGS 3620 28SC admin 20 11 disable a...

Page 306: ...ccess DGS 3620 28SC admin 20 12 show authorization Description This command is used to display the authorization status Format show authorization Parameters None Restrictions None Example To display the authorization status DGS 3620 28SC admin show authorization Command show authorization Authorization for Atributes Enabled DGS 3620 28SC admin 20 13 config authentication server failover Descriptio...

Page 307: ...l stay on the original VLAN Block the client default setting The client is always regarded as un authenticated Format config authentication server failover local permit block Parameters local Specifies to use the local database to authenticate the client permit Specifies that the client is always regarded as authenticated block Specifies to block the client This is the default setting Restrictions...

Page 308: ...nding 1 retransmission spf all intra inter extern 1 timer virtual_link route redistribution state enable disable debug ospf clear counter packet neighbor spf debug ospf log state enable disable debug ospf show counter packet neighbor spf debug ospf show detail external_link debug ospf show detail net_link debug ospf show detail rt_link debug ospf show detail summary_link debug ospf show detail typ...

Page 309: ...bug dhcpv6_server packet all receiving sending state enable disable debug dhcpv6_server state disable debug dhcpv6_server state enable debug pim ssm no debug pim ssm debug ripng flag interface packet all rx tx route all state enable disable debug ripng show flag debug ripng state disable debug ripng state enable debug routefilter show prefix_list access_list route_map debug show status module modu...

Page 310: ...essages DGS 3620 28SC admin debug address_binding all state enable Command debug address_binding all state enable Success DGS 3620 28SC admin 21 2 no debug address_binding Description This command is used to stop the IMPB debug starting when the IMPB module receives an ARP IP packet or a DHCP packet Format no debug address_binding Parameters None Restrictions Only Administrator level users can iss...

Page 311: ... level users can issue this command Example To dump the error log DGS 3620 28SC admin debug error_log dump Command debug error_log dump debug log 1 firmware version 2 50 014 level CPU exception clock 437453880 ms time 2000 01 08 05 55 40 CPU EXCEPTION Current Task IP Tic Stack Pointer 4CFEA7A0 CP0 Registers Status 1000FC01 Interrupt enable Normal level Cause 00000008 TLB exception load or instruct...

Page 312: ...figuration Done DGS 3620 28SC admin 21 4 debug buffer Description Use this command to show the debug buffer s state or dump clear or upload the debug buffer to a TFTP server Note When selecting to output to the debug buffer and there are debug messages being outputted the system memory pool will be used as the debug buffer The functions which will use the system memory pool resource may fail to ex...

Page 313: ...om System memory Total size 2 MB Utilization rate 30 DGS 3620 28SC admin To clear the debug buffer DGS 3620 28SC admin debug buffer clear Command debug buffer clear Success DGS 3620 28SC admin To upload the messages stored in debug buffer to TFTP server DGS 3620 28SC admin debug buffer upload_toTFTP 10 0 0 90 debugcontent txt Command debug buffer upload_toTFTP 10 0 0 90 debugcontent txt Connecting...

Page 314: ...ns Only Administrator level users can issue this command Example To set all module debug message outputs to local console DGS 3620 28SC admin debug output all console Command debug output all console Success DGS 3620 28SC admin 21 6 debug config error_reboot Description This command is used to set if the switch needs to be rebooted when a fatal error occurs When the error occurs the watchdog timer...

Page 315: ...s DGS 3620 28SC admin 21 7 debug config state Description Use the command to set the state of the debug Format debug config state enable disable Parameters enable Enable the debug state disable Disable the debug state Restrictions Only Administrator level users can issue this command Example To set the debug state to disabled DGS 3620 28SC admin debug config state disable Command debug config stat...

Page 316: ...rror_reboot state Command debug show error_reboot state Error Reboot Enabled DGS 3620 28SC admin 21 9 debug stp clear counter Description This command used to clear the STP counters Format debug stp clear counter ports portlist all Parameters ports Specifies the port range portlist Enter the list of port used for this configuration here all Clears all port counters Restrictions Only Administrator ...

Page 317: ... to debug all ports on the switch event Debug the external operation and event processing bpdu Debug the BPDU s that have been received and transmitted state_machine Debug the state change of the STP state machine all Debug all of the above state Specifies the state of the debug mechanism disable Disables the debug mechanism brief Sets the debug level to brief detail Sets the debug level to detail...

Page 318: ...9 DGS 3620 28SC admin debug stp show counter ports 9 Command debug stp show counter ports 9 STP Counters Port 9 Receive Transmit Total STP Packets 0 Total STP Packets 0 Configuration BPDU 0 Configuration BPDU 0 TCN BPDU 0 TCN BPDU 0 RSTP TC Flag 0 RSTP TC Flag 0 RST BPDU 0 RST BPDU 0 Discard Total Discarded BPDU 0 Global STP Disabled 0 Port STP Disabled 0 Invalid packet Format 0 Invalid Protocol 0...

Page 319: ...ls on all ports DGS 3620 28SC admin debug stp show flag Command debug stp show flag Global State Enabled Port Index Event flag BPDU Flag State Machine Flag 1 Detail Brief Disable 2 Detail Brief Disable 3 Detail Brief Disable 4 Detail Brief Disable 5 Detail Brief Disable 6 Detail Brief Disable 7 Detail Brief Disable 8 Detail Brief Disable 9 Detail Brief Disable 10 Detail Brief Disable 11 Detail Bri...

Page 320: ...rt 5 BLK Port 6 BLK Port 7 FOR Port 8 BLK Port 9 BLK Port 10 BLK Port 11 BLK Port 12 BLK Root Priority And Times Instance 0 Designated Root Bridge 32768 00 01 02 03 04 00 External Root Cost 0 Regional Root Bridge 32768 00 01 02 03 04 00 Internal Root Cost 0 Designated Bridge 32768 00 01 02 03 04 00 Designated Port 0 Message Age 0 Max Age 20 Forward Delay 15 Hello Time 2 Instance 1 Regional Root Br...

Page 321: ...is command is used to enable or disable the STP debug state Format debug stp state enable disable Parameters state Specifies the STP debug state enable Enable the STP debug state disable Disable the STP debug state Restrictions Only Administrator level users can issue this command Example To configure the STP debug state to enable and then disable the STP debug state DGS 3620 28SC admin debug stp ...

Page 322: ... set LSA receiving debug flag flooding Optional Specifies to set LSA flooding debug flag packet The state of the designated debug flag all Optional Specifies to set all packet debug flags receiving Optional Specifies to set packet receiving debug flag sending Optional Specifies to set packet sending debug flag retransmission The state of the OSPF retransmission debug flag spf The state of the desi...

Page 323: ...e all OSPF LSA debug flags DGS 3620 28SC admin debug ospf lsa all state enable Command debug ospf lsa all state enable Success DGS 3620 28SC admin To enable all OSPF packet debug flags DGS 3620 28SC admin debug ospf packet all state enable Command debug ospf packet all state enable Success DGS 3620 28SC admin To enable OSPF retransmission debug flag DGS 3620 28SC admin debug ospf retransmission st...

Page 324: ...ot specified all OSPF counters will be cleared Restrictions Only Administrator level users can issue this command Example To clear all OSPF statistic counters DGS 3620 28SC admin debug ospf clear counter Command debug ospf clear counter Success DGS 3620 28SC admin 21 17 debug ospf log state Description This command is used to enable or disable the OSPF debug log Format debug ospf log state enable ...

Page 325: ... packet Optional Specifies to display the OSPF packet counter neighbor Optional Specifies to display the OSPF neighbor event counter spf Optional Specifies to display the OSPF SPF event counter If the parameter is not specified all OSPF counters will be displayed Restrictions Only Administrator level users can issue this command Example To show all OSPF statistic counters DGS 3620 28SC admin debug...

Page 326: ... LSAs with detail information Format debug ospf show detail external_link Parameters None Restrictions Only Administrator level users can issue this command Example To display all AS external LSAs with detail information DGS 3620 28SC admin debug ospf show detail external_link Command debug ospf show detail external_link OSPF Phase2 External Link AREA 0 0 0 0 AS External LSA Link State ID 192 168 ...

Page 327: ... 0 Seq 0x80000001 Csum 0xd08e Rxtime 384 Txtime 0 Orgage 0 Current Time 394 DGS 3620 28SC admin 21 20 debug ospf show detail net_link Description This command is used to display all Network LSAs with detail information Format debug ospf show detail net_link Parameters None Restrictions Only Administrator level users can issue this command Example To display all Network LSAs with detail information...

Page 328: ... Router 1 1 1 1 Internal Field Del_flag 0x0 I_ref_count 0 Seq 0x80000001 Csum 0x4e99 Rxtime 4 Txtime 4 Orgage 1 Current Time 112 DGS 3620 28SC admin 21 21 debug ospf show detail rt_link Description This command is used to display all Router LSAs with detail information Format debug ospf show detail rt_link Parameters None Restrictions Only Administrator level users can issue this command Example T...

Page 329: ...t Virtual Link Endpoint Number Of Links 1 Type Transit ID 10 90 90 123 Data 10 90 90 91 Metric 1 Internal Field Del_flag 0x0 I_ref_count 0 Seq 0x80000002 Csum 0xd81d Rxtime 5 Txtime 0 Orgage 0 Current Time 15 DGS 3620 28SC admin 21 22 debug ospf show detail summary_link Description This command is used to display all Summary LSAs with detail information Format debug ospf show detail summary_link P...

Page 330: ...S Sequence Number 0x80000001 Length 28 Netmask 255 255 255 0 Metric 1 Internal Field Del_flag 0x0 I_ref_count 0 Seq 0x80000001 Csum 0x8f9c Rxtime 246 Txtime 246 Orgage 1 Current Time 255 DGS 3620 28SC admin 21 23 debug ospf show detail type7_link Description This command is used to display all type 7 LSAs with detail information Format debug ospf show detail type7_link Parameters None Restrictions...

Page 331: ...wd EA_LSA 0 DC Not Support Handling Of Demand Circuits 0 O O Bit Isn t Set 0 7 Bit Isn t Set LS Sequence Number 0x80000002 Length 36 Netmask 0 0 0 0 Metric 0 Forwarding Address 0 0 0 0 External Route Tag 0 Internal Field Del_flag 0x0 I_ref_count 0 Seq 0x80000002 Csum 0x77be Rxtime 2301 Txtime 0 Orgage 0 Current Time 3156 DGS 3620 28SC admin 21 24 debug ospf show flag Description This command is us...

Page 332: ...face State Change LSA Originating LSA Operating LSA Receiving LSA Flooding Packet Receiving Packet Sending Retransmission Timer DR Selection Route Redistribution Virtual Link SPF Intra SPF Inter SPF Extern DGS 3620 28SC admin 21 25 debug ospf show log state Description This command is used to display the OSPF debug log state Format debug ospf show log state Parameters None Restrictions Only Admini...

Page 333: ...g ospf show redistribution Parameters None Restrictions Only Administrator level users can issue this command Example To display the current OSPF redistribution list DGS 3620 28SC admin debug ospf show redistribution Command debug ospf show redistribution OSPF Redistribution List IP Nexthop State Type Tag 1 1 1 0 24 0 0 0 0 ON 2 0 0 0 0 OSPF ASE Table IP Nexthop State Type Tag 1 1 1 0 24 0 0 0 0 O...

Page 334: ...ospf show request_list OSPF Request List Area 0 0 0 0 Circuit 1 1 1 1 Neighbor 90 2 0 1 IP 1 1 1 2 LSID 192 194 134 0 RTID 90 2 0 1 LSID 192 194 135 0 RTID 90 2 0 1 LSID 192 194 136 0 RTID 90 2 0 1 LSID 192 194 137 0 RTID 90 2 0 1 LSID 192 194 138 0 RTID 90 2 0 1 DGS 3620 28SC admin 21 28 debug ospf show summary_list Description This command is used to display the current internal OSPF summary lis...

Page 335: ...1 1 1 1 RTID 1 1 1 1 Circuit 2 2 2 1 Circuit 10 1 1 6 DGS 3620 28SC admin 21 29 debug ospf state Description This command is used to set the OSPF debug global state Format debug ospf state enable disable Parameters state Specifies the OSPF debug global state enable Specifies that the OSPF debug global state will be enabled disable Specifies that the OSPF debug global state will be disabled Restric...

Page 336: ... state of the VRRP change debug flag packet Specifies to set the VRRP packet flags all Specifies to set VRRP all packet debug flags receiving Optional Specifies to set the VRRP packet receiving flag sending Optional Specifies to set the VRRP packet sending flag mac_addr_update Specifies the state of VRRP MAC debug flag interface_change Specifies the state of VRRP interface debug flag timers Specif...

Page 337: ...l MAC address update debug flag DGS 3620 28SC admin debug vrrp mac_addr_update state enable Command debug vrrp mac_addr_update state enable Success DGS 3620 28SC admin To enable VRRP interface state change debug flag DGS 3620 28SC admin debug vrrp interface_change state enable Command debug vrrp interface_change state enable Success DGS 3620 28SC admin To enable VRRP timer debug flag DGS 3620 28SC...

Page 338: ...rrp clear counter Success DGS 3620 28SC admin 21 32 debug vrrp log state Description This command is used to enable or disable the VRRP debug log state Format debug vrrp log state enable disable Parameters state Specifies the state of the VRRP log The default setting is disabled enable Specifies that the VRRP log state will be enabled disable Specifies that the VRRP log state will be disabled Rest...

Page 339: ...RRP debug statistic counters Format debug vrrp show counter Parameters None Restrictions Only Administrator level users can issue this command Example To display VRRP statistic counters DGS 3620 28SC admin debug vrrp show counter Command debug vrrp show counter VRRP debug statistic counters Received ADV 9 Drop 52 Auth fail 0 Sent ADV 0 DGS 3620 28SC admin 21 34 debug vrrp show flag Description Thi...

Page 340: ...and debug vrrp show flag Global State Disabled Current VRRP debug level setting virtual router state change packet receiving packet sending mac address update interface change timer DGS 3620 28SC admin 21 35 debug vrrp show log state Description The command is used to display the VRRP debug log state Format debug vrrp show log state Parameters None Restrictions Only Administrator level users can i...

Page 341: ... state Specifies the state of the VRRP debug state The default setting is disabled enable Specifies that the VRRP debug state will be enabled disable Specifies that the VRRP debug state will be disabled Restrictions Only Administrator level users can issue this command Example To enable the VRRP debug state DGS 3620 28SC admin debug vrrp state enable Command debug vrrp state enable Success DGS 362...

Page 342: ...eceive Disable KEEPALIVE Packet Send Disable NOTIFY Packet Receive Disable NOTIFY Packet Send Disable REFRESH Packet Receive Disable REFRESH Packet Send Disable CAPABILITY Packet Receive Disable CAPABILITY Packet Send Disable Filter Info Disable Route MAP Disable Access List Disable Prefix List Disable ERROR Information Disable Zebros Debug Info Disable Other Normal Information Disable DGS 3620 28...

Page 343: ... about peer FSM Event Format debug bgp fsm_event enable disable Parameters enable Enable the BGP debug function disable Disable the BGP debug function Restrictions Only Administrator level users can issue this command EI Mode Only Command Example Configure BGP peer FSM event debug flag to enable DGS 3620 28SC admin debug bgp fsm_event enable Command debug bgp fsm_event enable Success DGS 3620 28SC...

Page 344: ...on will be displayed refresh Optional Specifies that refresh information will be displayed capability Optional Specifies that capability information will be displayed all Optional Specifies that all information will be displayed in Specifies that the incoming information will be displayed out Specifies that the outgoing information will be displayed enable Enable the BGP debug function disable Dis...

Page 345: ...t Code GRST Length 2 21 41 debug bgp error state Description This command is use for setting the flag of debugging information about BGP Error not need send BGP NOTIFICATION Format debug bgp error state enable disable Parameters enable Enable the BGP debug function disable Disable the BGP debug function Restrictions Only Administrator level users can issue this command EI Mode Only Command Example...

Page 346: ...debug bgp show global_info Command debug bgp show global_info As Number 1 Router ID 10 2 2 2 Cluster ID 30 1 1 1 Confed ID 10 Confederation Peers 65510 65511 Fast External Fallover Disabled Graceful Restart Disabled Restart Time 120 Seconds Stalepath Time 360 Seconds Update Delay Time 120 Seconds Dampening Ability Enable Client to Client Ability Enable Cluster peers are 1 1 1 2 group1 Default Loca...

Page 347: ...show peer BGP neighbor 10 10 10 2 Internal Peer Session State Enabled Session Activity Enabled Peer Group NULL Remote AS 1 Local AS 10 Remote Router ID 192 168 252 252 BGP State Established UP for 00 24 25 Hold Time Configured 180 Seconds Hold Time Current Used 180 Seconds Keepalive Interval Configured 60 Seconds Keepalive Interval Current Used 60 Seconds Advertisement Interval Configured 5 Second...

Page 348: ...s routemap1 Unsuppress Route Map us_routmp1 Outbound Route Filter ORF type 64 Prefix list Send Mode Disabled Receive Mode Disabled Pass Word NULL Prefix count 0 Send Prefix count 0 Prefix max count 12000 Prefix warning threshold 75 Prefix max warning Disabled DGS 3620 28SC admin 21 44 debug bgp show peer_group Description This command is used for displaying current peer group s configuration in BG...

Page 349: ...P Multihop 1 Weight 0 Next Hop Self Disabled Remove Private As Disabled Allowas In Disabled Graceful Restart Disabled Soft Reconfiguration Inbound Disabled Community Sent to this Neighbor None Default Originate Disabled Capability 0rf Prefix List None Pass Word NULL Prefix max count 12000 Prefix warning threshold 75 Prefix max warning Disabled DGS 3620 28SC admin 21 45 debug bgp show network Descr...

Page 350: ...ug bgp show aggregate Description This command is used for displaying current aggregate s configuration in BGP protocol stack Format debug bgp show aggregate Parameters None Restrictions Only Administrator level users can issue this command EI Mode Only Command Example Configure BGP to show aggregate information DGS 3620 28SC admin debug bgp show aggregate Command debug bgp show aggregate Network ...

Page 351: ...o show current dampening information DGS 3620 28SC admin debug bgp show damp Command debug bgp show damp Route Map NULL Reach Half Life Time is 900 seconds Reuse Value 750 Suppress Value 2000 MAX Suppress Time 3600 seconds Unreach Half Life Time is 900 seconds Reuse Index Size 1024 Reuse List Size 256 Reuse Offset 19 Current dampened routes Damp Reuse List Info reuse_index index ptr penalty flap s...

Page 352: ... Format debug bgp show interface_info Parameters None Restrictions Only Administrator level users can issue this command EI Mode Only Command Example Configure BGP to show current interface information DGS 3620 28SC admin debug bgp show interface_info Command debug bgp show interface_info Interface Information Name Index Network Flags Status System 0001 30 30 30 30 8 0 Up DGS 3620 28SC admin 21 49...

Page 353: ... debug bgp show as_path_access_list Command debug bgp show as_path_access_list BGP AS Path Access List 1 deny _64 6 9 0 9 0 9 _ _65 0 9 0 9 0 9 _ permit 33 Total entry 1 DGS 3620 28SC admin 21 50 debug bgp show bgp_timer Description This command is used for displaying current BGP timer chain information in BGP protocol stack Format debug bgp show bgp_timer Parameters None Restrictions Only Adminis...

Page 354: ...0C 08B37DB0 0148 0065F40C DGS 3620 28SC admin 21 51 debug bgp show community_list Description This command is used for displaying current community list configuration in protocol stack Format debug bgp show community_list Parameters None Restrictions Only Administrator level users can issue this command EI Mode Only Command Example Configure BGP to show current community list information DGS 3620 ...

Page 355: ...nformation DGS 3620 28SC admin debug bgp show redist_info Command debug bgp show redist_info Last redistribution count summary Type Route_count_rib total_count Time msec OSPF 0 0 0 RIP 0 0 0 STATIC 0 0 0 LOCAL 7 0 0 Redistributed routes summary Network Type Next_hop 1 10 0 1 32 LOCAL 0 0 0 0 1 10 0 2 32 LOCAL 0 0 0 0 1 10 0 3 32 LOCAL 0 0 0 0 DGS 3620 28SC admin 21 53 debug bgp router_map Descript...

Page 356: ...15 0 0 1 route_map in add map1 Success DGS 3620 28SC admin Output Examples After configure BGP to enable route map debug flag it may print following information when route map applied route_map map1 apply bgp neighbor 13 0 0 1 MATCH route_map map1 apply bgp static route 32 0 0 0 8 Not MATCH 21 54 debug bgp access_list Description This command is used for setting access_list debugging flags to disa...

Page 357: ...and is used for setting prefix_list debugging flags to disable or enable If this flag is enable prefix list permit or deny in BGP module will be displayed Format debug bgp prefix_list enable disable Parameters enable Enable the prefix_list debug function disable Disable the prefix_list debug function Restrictions Only Administrator level users can issue this command EI Mode Only Command Example Co...

Page 358: ...n of BGP disable Specifies to disable the debug function of BGP Restrictions Only Administrator level users can issue this command EI Mode Only Command Example To enable the debug function of BGP DGS 3620 28SC admin debug bgp state enable Command debug bgp state enable Success DGS 3620 28SC admin 21 57 debug dhcpv6_client state enable Description This command is used to enable the DHCPv6 client De...

Page 359: ...This command is used to disable the DHCPv6 client Debug function Format debug dhcpv6_client state enable Parameters None Restrictions Only Administrator level users can issue this command Example To disabled DHCPv6 client debug function DGS 3620 28SC admin debug dhcpv6_client state disable Command debug dhcpv6_client state disable Success DGS 3620 28SC admin 21 59 debug dhcpv6_client output Descri...

Page 360: ...n flag for DHCPv6 client packet including packet receiving and sending Format debug dhcpv6_client packet all receiving sending state enable disable Parameters all Optional Set packet receiving and sending debug flags receiving Optional Set packet receiving debug flag sending Optional Set packet sending debug flag state Specifies that the designated flags will be enabled or disabled enable Enable t...

Page 361: ... level users can issue this command Example To enabled DHCPv6 relay debug function DGS 3620 28SC admin debug dhcpv6_relay state enable Command debug dhcpv6_relay state enable Success DGS 3620 28SC admin 21 62 debug dhcpv6_relay state disable Description This command is used to disable the DHCPv6 relay Debug function Format debug dhcpv6_relay state disable Parameters None Restrictions Only Administ...

Page 362: ... state enable Specifies that the hop count state will be enabled disable Specifies that the hop count state will be disabled Restrictions Only Administrator level users can issue this command Example To enable debug information flag about the hop count DGS 3620 28SC admin debug dhcpv6_relay hop_count state enable Command debug dhcpv6_relay hop_count state enable Success DGS 3620 28SC admin 21 64 d...

Page 363: ...including packet receiving and sending Format debug dhcpv6_relay packet all receiving sending state enable disable Parameters all Optional Set packet receiving and sending debug flags receiving Optional Set packet receiving debug flag sending Optional Set packet sending debug flag state Specifies if the designated flags function will be enabled or disabled enable Enable the designated flags disabl...

Page 364: ...cket sending debug flag state Specifies the state of the designated flags enable Enable the designated flags disable Disable the designated flags Restrictions Only Administrator level users can issue this command Example To enabled the DHCPv6 server packet sending debug DGS 3620 28SC admin debug dhcpv6_server packet sending state enable Command debug dhcpv6_server packet sending state enable Succe...

Page 365: ...ate enable Description This command is used to enable the DHCPv6 server debug functions Format debug dhcpv6_server state enable Parameters None Restrictions Only Administrator level users can issue this command Example To enabled the DHCPv6 server debug function DGS 3620 28SC admin debug dhcpv6_server state enable Command debug dhcpv6_server state enable Success DGS 3620 28SC admin 21 69 debug pim...

Page 366: ... DGS 3620 28SC admin Once the PIM SSM debug enabled the debug information maybe outputted DGS 3620 28SC admin PIM_SSM 6 Dec 2012 15 37 22 IGMP Group Record Type 2 for group 232 1 1 1 from 192 168 2 14 on n101 ignored Output truncated 21 70 no debug pim ssm Description This command is used to disable the PIM SSM debug function Format no debug pim ssm Parameters None Restrictions Only Administrator ...

Page 367: ...ifies to set inbound packets with debug flag tx Specifies to set outbound packets with debug flag route Optional Specifies the state of the RIPng route debug The default setting is disabled all Specifies to set all debug flags state Specifies the designated flags state enable Specifies that the designated flags state will be enabled disable Specifies that the designated flags state will be disable...

Page 368: ...ommand EI Mode Only Command Example To show the current RIPng debug flag setting DGS 3620 28SC admin debug ripng show flag Command debug ripng show flag Current Enabled RIPng Flags Interface State Change Packet Receiving Packet Sending Route DGS 3620 28SC admin 21 73 debug ripng state disable Description This command is used to disable the RIPng debug state Format debug ripng state disable Paramet...

Page 369: ...IPng debug state Format debug ripng state enable Parameters None Restrictions Only Administrator level users can issue this command EI Mode Only Command Example To enable RIPng debug globally DGS 3620 28SC admin debug ripng state enable Command debug ripng state enable Success DGS 3620 28SC admin 21 75 debug routefilter show Description This command is used to display route filter information in k...

Page 370: ...show route_map Command debug routefilter show route_map route_map map1 sequence 10 Permit Match clauses prefix_list pr_list1 Set clauses metric 80 Success DGS 3620 28SC admin 21 76 debug show status Description Show the debug handler state and the specified module s debug status If the input module list is empty the states of all registered modules which support debug module will be shown Format d...

Page 371: ... Disabled OSPFV2 Disabled VRRP Disabled RIPNG Disabled ERPS Disabled DHCPv6_SERVER Disabled Prompt 21 77 debug super_vlan state Description This command is used to enable or disable the super VLAN Debug Function Format debug super_vlan state enable disable Parameters state Specifies the super VLAN debug function state enable Specifies that the super VLAN debug function will be enabled disable Spec...

Page 372: ...ding_state_table nd_snooping dhcpv6_snooping Parameters nd_snooping Specifies to debug ND Snooping bound addresses in the binding state table dhcpv6_snooping Specifies to debug DHCPv6 Snooping bound addresses in the binding state table Restrictions Only Administrator level users can issue this command Example To display the DHCPv6 snooping binding state of entries DGS 3620 28SC admin debug show ad...

Page 373: ...Total Entries 2 DGS 3620 28SC admin 21 79 debug show error ports box_id Description This command is used to show the error statistics information of the SIO ports Format debug show error ports box_id value 1 12 all sio1 sio2 Parameters value 1 12 Enter the box ID used here This value must be between 1 and 12 all Specifies that all the box IDs will be used sio1 Specifies that the minimum of two SIO...

Page 374: ...Drop 0 Collision 0 Symbol Error 0 STP Drop 0 Multicast Drop 0 HOL DROP 0 VLAN Ingress Drop 0 COS0 HOL DROP 0 STP Drop 0 COS1 HOL DROP 0 MTU Drop 0 COS2 HOL DROP 0 COS3 HOL DROP 0 COS4 HOL DROP 0 COS5 HOL DROP 0 COS6 HOL DROP 0 COS7 HOL DROP 0 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh 21 80 debug show jwac auth_info Description This command is used to show debug information of J...

Page 375: ...F FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF FF Connection DB No Host Current AUTH DB _jwac_db_nodes No Host Ports AUTH Info _jwac_db_nodes port mac state last_bytes authing_cnt authed_cnt JWAC Web data jwac_web_auth_result_list CTRL C ESC q Quit SPACE n Next Page ENTER Next Entry a All 21 81 debug show packet ports box_id Description This command is used to show the packet statistics info...

Page 376: ...me Size Type Frame Counts Frames sec 64 0 0 65 127 0 0 128 255 0 0 256 511 0 0 512 1023 0 0 1024 1518 0 0 1519 2047 0 0 2048 4095 0 0 4096 9216 0 0 Unicast RX 0 0 Multicast RX 0 0 Broadcast RX 0 0 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh Page 2 Box ID 1 SIO 1 Frame Type Total Total sec RX Bytes 0 0 RX Frames 0 0 TX Bytes 0 0 TX Frames 0 0 CTRL C ESC q Quit SPACE n Next Page p ...

Page 377: ...servers Enabling the dhcp_local_relay feature will restore the broadcast behaviour and cause DHCP packets to also be broadcast on the specified VLAN Note When dhcp_local_relay is enabled the switch will automatically add DHCP option 82 and the source MAC and gateway in the packet will remain unchanged Format config dhcp_local_relay vlan vlan_name 32 state enable disable Parameters vlan_name 32 Ent...

Page 378: ... VLAN enable Enable DHCP local relay for a specified VLAN disable Disable DHCP local relay for a specified VLAN Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable DHCP local relay for the default VLAN DGS 3620 28SC admin config dhcp_local_relay vlan vlanid 1 state enable Command config dhcp_local_relay vlan vlanid 1 state enable Success DGS...

Page 379: ...lay function on the switch Format disable dhcp_local_relay Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable the DHCP local relay function DGS 3620 28SC admin disable dhcp_local_relay Command disable dhcp_local_relay Success DGS 3620 28SC admin 22 5 show dhcp_local_relay Description This command is used to display the curr...

Page 380: ...tch CLI Reference Guide 375 Restrictions None Example To display the local DHCP relay status DGS 3620 28SC admin show dhcp_local_relay Command show dhcp_local_relay DHCP BOOTP Local Relay Status Disabled DHCP BOOTP Local Relay VID List 1 3 4 DGS 3620 28SC admin ...

Page 381: ..._82 check enable disable config dhcp_relay option_82 policy replace drop keep config dhcp_relay option_82 remote_id default user_define desc 32 config dhcp_relay option_82 state enable disable enable dhcp_relay disable dhcp_relay show dhcp_relay ipif ipif_name 12 show dhcp_relay option_60 string multiword 255 ipaddress ipaddr default show dhcp_relay option_61 config dhcp_relay ports portlist all s...

Page 382: ...strator Operator and Power User level users can issue this command Example To configure the DHCP relay DGS 3620 28SC admin config dhcp_relay hops 4 time 2 Command config dhcp_relay hops 4 time 2 Success DGS 3620 28SC admin 23 2 config dhcp_relay add ipif Description This command is used to add an IP destination address to the switch s DHCP relay table Note Adding a server to which DHCP packets wil...

Page 383: ... server IP address Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete an IP destination address from the switch s DHCP relay table DGS 3620 28SC admin config dhcp_relay delete ipif System 10 43 21 12 Command config dhcp_relay delete ipif System 10 43 21 12 Success DGS 3620 28SC admin 23 4 config dhcp_relay option_60 add string Description T...

Page 384: ...command is used to configure DHCP relay Option 60 default relay servers When there are no match servers found for the packet based on Option 60 the relay servers will be determined by the default relay server setting When drop is specified the packet with no matching rules found will be dropped without further processing If the setting is no drop then the packet will be processed further based on ...

Page 385: ... if the IP address is not specified multiword 255 The string value can be up to 255 characters long relay Optional Delete one entry whose string and IP address are equal to the string and IP address specified by the user ipaddr Enter the IP address here ipaddress Delete all the entries whose IP address are equal to the specified IP address ipaddr Enter the IP address here all Specifies to have all...

Page 386: ...trictions Only Administrator Operator and Power User level users can issue this command Example To configure the DHCP Option 60 state DGS 3620 28SC admin config dhcp_relay option_60 state enable Command config dhcp_relay option_60 state enable Success DGS 3620 28SC admin 23 8 config dhcp_relay option_61 add Description This command adds a rule to determine the relay server based on Option 61 The m...

Page 387: ... Option 61 to decide how to process DHCP packets DGS 3620 28SC admin config dhcp_relay option_61 add mac_address 00 11 22 33 44 55 drop Command config dhcp_relay option_61 add mac_address 00 11 22 33 44 55 drop Success DGS 3620 28SC admin 23 9 config dhcp_relay option_61 default Description This command is used to determine the rule to process those packets that have no Option 61 matching rules Th...

Page 388: ...default rule will be deleted Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete a DHCP Option 61 entry DGS 3620 28SC admin config dhcp_relay option_61 delete mac_address 00 11 22 33 44 55 Command config dhcp_relay option_61 delete mac_address 00 11 22 33 44 55 Success DGS 3620 28SC admin 23 11 config dhcp_relay option_61 state Description T...

Page 389: ..._61 state enable Success DGS 3620 28SC admin 23 12 config dhcp_relay option_82 check Description This command is used to configure the checking mechanism of the DHCP relay agent information Option 82 of the switch Format config dhcp_relay option_82 check enable disable Parameters enable When the state is enabled for a packet coming from the client side the packet should not have the Option 82 fiel...

Page 390: ...ert it s own Option 82 value into the packet keep Specifies to retain the existing Option 82 field in the packet The default setting is replace If the packet that comes from the client side and contains an Option 82 value then keep the old Option 82 value If the packet that comes from the client side doesn t contain an Option 82 value then insert it s own Option 82 value into the packet Restrictio...

Page 391: ...config dhcp_relay option_82 state Description This command is used to configure the state of the DHCP relay agent information Option 82 of the switch The default settings is disabled Format config dhcp_relay option_82 state enable disable Parameters enable When the state is enabled the DHCP packet will be inserted with the Option 82 field before being relayed to server The DHCP packet will be proc...

Page 392: ...Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the DHCP relay function DGS 3620 28SC admin enable dhcp_relay Command enable dhcp_relay Success DGS 3620 28SC admin 23 17 disable dhcp_relay Description This command is used to disable the DHCP relay function on the switch Format disable dhcp _relay Parameters None Restrictions Only Adminis...

Page 393: ...to 12 characters long Note If no parameter is specified the system will display all DHCP relay configurations Restrictions None Example To display the DHCP relay status DGS 3620 28SC admin show dhcp_relay Command show dhcp_relay DHCP BOOTP Relay Status Disabled DHCP BOOTP Hops Count Limit 4 DHCP BOOTP Relay Time Threshold 0 DHCP Vendor Class Identifier Option 60 State Disabled DHCP Client Identifi...

Page 394: ...cters long ipaddress Optional Display the entry whose IP ipaddress equals the specified IP address ipaddr Enter the IP address here default Optional Display the default behaviour of DHCP relay option 60 Note If no parameter is specified all DHCP option 60 entries will be displayed Restrictions None Example To display the DHCP option 60 entries DGS 3620 28SC admin show dhcp_relay option_60 Command ...

Page 395: ...mple To display the DHCP option 61 entries DGS 3620 28SC admin show dhcp_relay option_61 Command show dhcp_relay option_61 Default Relay Rule Drop Matching Rules Client ID Type Relay Rule abc String Drop abcde String 10 90 90 1 00 11 22 33 44 55 MAC Address Drop Total Entries 3 DGS 3620 28SC admin 23 21 config dhcp_relay ports Description This command is used to configure the state of the DHCP rel...

Page 396: ...r level users can issue this command Example To enable the DHCP relay function on ports 1 to 3 DGS 3620 28SC admin config dhcp_relay ports 1 1 1 3 state enable Command config dhcp_relay ports 1 1 1 3 state enable Success DGS 3620 28SC admin 23 22 show dhcp_relay ports Description This command is used to show the DHCP relay port configuration Format show dhcp_relay ports portlist Parameters portlis...

Page 397: ...Series Layer 3 Managed Stackable Gigabit Switch CLI Reference Guide 392 1 2 Enabled 1 3 Enabled 1 4 Enabled 1 5 Enabled 1 6 Enabled 1 7 Enabled 1 8 Enabled 1 9 Enabled 1 10 Enabled Total Entries 10 DGS 3620 28SC admin ...

Page 398: ...p pool manual_binding pool_name 12 ipaddr hardware_address macaddr type ethernet ieee802 delete dhcp pool manual_binding pool_name 12 ipaddr all clear dhcp binding pool_name 12 ipaddr all all show dhcp binding pool_name 12 show dhcp pool pool_name 12 show dhcp pool manual_binding pool_name 12 enable dhcp_server disable dhcp_server show dhcp_server clear dhcp conflict_ip ipaddr all show dhcp confli...

Page 399: ...eate dhcp excluded_address begin_address 10 10 10 1 end_address 10 10 10 10 Success DGS 3620 28SC admin 24 2 delete dhcp excluded_address Description This command is used to delete a DHCP server exclude address Format delete dhcp excluded_address begin_address ipaddr end_address ipaddr all Parameters begin_address Specifies the starting address of the IP address range ipaddr Enter the starting add...

Page 400: ...ormat show dhcp excluded_address Parameters None Restrictions None Example To display the DHCP server excluded addresses DGS 3620 28SC admin show dhcp excluded_address Command show dhcp excluded_address Index Begin Address End Address 1 192 168 0 1 192 168 0 100 2 10 10 10 10 10 10 10 11 Total Entries 2 DGS 3620 28SC admin 24 4 create dhcp pool Description This command is used to create a DHCP poo...

Page 401: ...ks Command create dhcp pool nyknicks Success DGS 3620 28SC admin 24 5 delete dhcp pool Description This command is used to delete a DHCP pool Format delete dhcp pool pool_name 12 all Parameters pool_name 12 Enter the name of the DHCP pool all Specifies to delete all the DHCP pools Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete a DHCP po...

Page 402: ...e server will match the IP address of the IPIF that received the request packet against the network of each DHCP pool Format config dhcp pool network_addr pool_name 12 network_address Parameters pool_name 12 Enter the DHCP pool name network_address Enter the IP address that the DHCP server may assign to clients Restrictions Only Administrator Operator and Power User level users can issue this comm...

Page 403: ...is available to a DHCP client Up to three IP addresses can be specified on one command line If DNS server is not specified the DNS server information will not be provided to the client If this command is input twice for the same pool the second command will overwrite the first command Format config dhcp pool dns_server pool_name 12 ipaddr ipaddr ipaddr Parameters pool_name 12 Enter the DHCP poll n...

Page 404: ...ddr ipaddr Parameters pool_name 12 Enter the DHCP pool name ipaddr Optional Specify the IP address of the WINS server Up to three IP addresses can be specified on one command line Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure a WINS server IP address DGS 3620 28SC admin config dhcp pool netbios_name_server knicks 10 10 10 1 Command ...

Page 405: ...l default_router Description This command is used to specify the IP address of the default router for a DHCP client Up to three IP addresses can be specified on one command line After a DHCP client has booted the client begins sending packets to its default router The IP address of the default router should be on the same subnet as the client If the default router is not specified the default rout...

Page 406: ...rs pool_name 12 Enter the DHCP pool s name day 0 365 Enter the number of days of the lease hour 0 23 Enter the number of hours of the lease minute 0 59 Enter the number of minutes of the lease infinite Specifies a lease of unlimited duration Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the lease of a pool DGS 3620 28SC admin config...

Page 407: ...8SC admin config dhcp pool boot_file engineering boot had Command config dhcp pool boot_file engineering boot had Success DGS 3620 28SC admin 24 14 config dhcp pool next_server Description This command is used by the DHCP client boot process typically a TFTP server If next server information is not specified it will not be provided to the client If this command is input twice for the same pool the...

Page 408: ...obability that the address is not in use and assigns the address to the requesting client If the ping is answered the server will discard the current IP address and try another IP address Format config dhcp ping_packets number 0 10 Parameters number 0 10 Enter the number of ping packets 0 means there is no ping test The default value is 2 Restrictions Only Administrator Operator and Power User lev...

Page 409: ...ddress of a client The IP address of a client can be assigned manually by an administrator or assigned automatically from a pool by a DHCP server The IP address specified in the manual binding entry must be in a range within that the network uses for the DHCP pool If the user specifies a conflict IP address an error message will be returned If a number of manual binding entries are created and the...

Page 410: ... ethernet Success DGS 3620 28SC admin 24 18 delete dhcp pool manual_binding Description This command is used to delete DHCP server manual binding Format delete dhcp pool manual_binding pool_name 12 ipaddr all Parameters pool_name 12 Enter the DHCP pool name ipaddr Enter the IP address which will be assigned to a specified client all Specifies to delete all IP addresses Restrictions Only Administra...

Page 411: ...ipaddr Enter the IP address to clear all Specifies to clear all IP addresses for the specified pool all Specifies to clear all binding entries in all pools Restrictions Only Administrator Operator and Power User level users can issue this command Example To clear dynamic binding entries in the pool named engineering DGS 3620 28SC admin clear dhcp binding engineering 10 20 3 4 Command clear dhcp bi...

Page 412: ...B0 Ethernet Automatic 86400 Total Entries 4 DGS 3620 28SC admin 24 21 show dhcp pool Description This command is used to display the information for DHCP pool If pool name is not specified information for all pools will be displayed Format show dhcp pool pool_name 12 Parameters pool_name 12 Optional Specify the DHCP pool name Restrictions None Example To display the current DHCP pool information f...

Page 413: ...nding Command show dhcp pool manual_binding Pool Name IP Address Hardware Address Type p1 192 168 0 1 00 80 C8 08 13 88 Ethernet p1 192 168 0 2 00 80 C8 08 13 99 Ethernet Total Entries 2 DGS 3620 28SC admin 24 23 enable dhcp_server Description This command is used to enable the DHCP server function If DHCP relay is enabled DHCP server cannot be enabled The opposite is also true For Layer 2 switche...

Page 414: ...e dhcp_server Command enable dhcp_server Success DGS 3620 28SC admin 24 24 disable dhcp_server Description This command is used to disable the DHCP server function on the switch Format disable dhcp_server Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable the Switch s DHCP server DGS 3620 28SC admin disable dhcp_server Comm...

Page 415: ...y the DHCP server status DGS 3620 28SC admin show dhcp_server Command show dhcp_server DHCP Server Global State Disabled Ping Packet Number 2 Ping Timeout 100 ms DGS 3620 28SC admin 24 26 clear dhcp conflict_ip Description This command is used to clear an entry or all entries from the conflict IP database Format clear dhcp conflict_ip ipaddr all Parameters ipaddr Enter the IP address to be cleared...

Page 416: ...s IP The IP address which has been identified in conflict will be moved to the conflict IP database The system will not attempt to bind the IP address in the conflict IP database unless the user clears it from the conflict IP database Format show dhcp conflict_ip ipaddr Parameters ipaddr Optional Specify the IP address to be displayed Restrictions None Example To display the entries in the DHCP co...

Page 417: ...ption value 1 254 string multiword 255 hex string 254 delete option value 1 254 Parameters profile_name 12 Enter the DHCP server option profile name here This name can be up to 12 characters long add Specifies to add an option to the DHCP server option profile option Specifies the option value used value 1 254 Enter the option value used here This must be between 1 and 254 string Specifies the cha...

Page 418: ...add option 72 string 192 168 0 254 Command config dhcp option_profile profile1 add option 72 string 192 168 0 254 Success DGS 3620 28SC admin To delete DHCP option profile option 69 DGS 3620 28SC admin config dhcp option_profile profile1 delete option 69 Command config dhcp option_profile profile1 delete option 69 Success DGS 3620 28SC admin 24 30 delete dhcp option_profile Description This comman...

Page 419: ...Parameters profile_name 12 Optional Enter the DHCP server option profile name here This name can be up to 12 characters long If no parameter is specified the system will display all DHCP option profile configurations Restrictions None Example To display the current DHCP option profile configuration DGS 3620 28SC admin show dhcp option_profile Command show dhcp option_profile DHCP Option Profile Na...

Page 420: ...itch profile_name 12 Enter the DHCP server option profile name here This name can be up to 12 characters long Restrictions Only Administrator Operator and Power User level users can issue this command Example To add an option profile for DHCP profile1 in pool1 DGS 3620 28SC admin config dhcp pool option_profile pool1 add profile1 Command config dhcp pool option_profile pool1 add profile1 Success D...

Page 421: ...ra_all_node delete filter icmpv6_ra_all_node permit sip ipv6addr 25 1 config filter dhcp_server Description This command has two purposes to specify to filter all DHCP server packets on the specific port and to specify to allow some DHCP server packets with pre defined server IP addresses and client MAC addresses With this function we can restrict the DHCP server to service specific DHCP clients T...

Page 422: ...uration Specifies the illegal server log suppression duration 1min Specifies an illegal server log suppression duration of 1 minute 5min Specifies an illegal server log suppression duration of 5 minutes 30min Specifies an illegal server log suppression duration of 30 minutes Restrictions Only Administrator Operator and Power User level users can issue this command Example To add an entry from the ...

Page 423: ...ble Command config filter dhcp_server log enable Success DGS 3620 28SC admin 25 3 config filter dhcp_server trap Description This command is used to enable or disable the trap for a DHCP server filter event Format config filter dhcp_server trap enable disable Parameters enable Specifies to enable the trap for a DHCP server filter event disable Specifies to disable the trap for a DHCP server filter...

Page 424: ... 3620 28SC admin show filter dhcp_server Command show filter dhcp_server Enabled Ports 1 28 Trap State Enabled Log State Enabled Illegal Server Log Suppress Duration 1 minutes Permit DHCP Server Client Table Server IP Address Client MAC Address Port Total Entries 0 DGS 3620 28SC admin 25 5 create filter dhcpv6_server permit sip Description This command used to create a permit entry The specific DH...

Page 425: ...pv6_server permit sip 2200 5 ports 1 5 Command create filter dhcpv6_server permit sip 2200 5 ports 1 5 Success DGS 3620 28SC admin 25 6 config filter dhcpv6_server log Description This command is used to enable or disable the Filter DHCPv6 server log state Format config filter dhcpv6_server log enable disable Parameters enable Specifies that the log for the Filter DHCPv6 server will be enabled The...

Page 426: ...ies whether the port s filter DHCPv6 server function is enabled or disabled enable Specifies that the filter option is enabled disable Specifies that the filter option is disabled Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the filter DHCPv6 server state to enabled for ports 1 to 8 DGS 3620 28SC admin config filter dhcpv6_server p...

Page 427: ...cpv6_server trap enable Success DGS 3620 28SC admin 25 9 show filter dhcpv6_server Description This command is used to display the filter DHCPv6 server information Format show filter dhcpv6_server Parameters None Restrictions None Example To display filter DHCPv6 server information DGS 3620 28SC admin show filter dhcpv6_server Command show filter dhcpv6_server Enabled ports 1 1 1 8 Trap State Enab...

Page 428: ...cpv6_server permit sip 2200 4 Command delete filter dhcpv6_server permit sip 2200 4 Success DGS 3620 28SC admin 25 11 create filter icmpv6_ra_all_node permit sip Description This command is used to create a filter ICMPv6 RA All nodes permit entry Format create filter icmpv6_ra_all_node permit sip ipv6addr ports portlist all Parameters ipv6addr Enter the source address of entry which will be create...

Page 429: ... that the log for the filter ICMPv6 RA will be disabled Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the filter ICMPv6 RA all nodes log state DGS 3620 28SC admin config filter icmpv6_ra_all_node log enable Command config filter icmpv6_ra_all_node log enable Success DGS 3620 28SC admin 25 13 config filter icmpv6_ra_all_node ports Descr...

Page 430: ...lter ICMPv6 RA all nodes state to enabled for ports 1 to 8 DGS 3620 28SC admin config filter icmpv6_ra_all_node ports 1 1 1 8 state enable Command config filter icmpv6_ra_all_node ports 1 1 1 8 state enable Success DGS 3620 28SC admin 25 14 config filter icmpv6_ra_all_node trap Description This command is used to enable or disable the filter ICMPv6 RA all nodes trap state If the ICMPv6 RA all node...

Page 431: ...A all nodes information Format show filter icmpv6_ra_all_node Parameters None Restrictions None Example To display filter ICMPv6 RA all nodes information DGS 3620 28SC admin show filter icmpv6_ra_all_node Command show filter icmpv6_ra_all_node Enabled ports 1 1 1 8 Trap State Enabled Log State Enabled Permit Source Address Table Source IP Address Port 2200 5 1 5 Total Entries 1 DGS 3620 28SC admin...

Page 432: ...e entry which will be deleted in the filter ICMPv6 RA all nodes forward list Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete permit entry from the filter ICMPv6 RA all nodes forward list DGS 3620 28SC admin delete filter icmpv6_ra_all_node permit sip 2200 4 Command delete filter icmpv6_ra_all_node permit sip 2200 4 Success DGS 3620 28SC ...

Page 433: ...disable check enable disable remote_id default cid_with_user_define desc 128 user_define desc 128 1 26 1 enable dhcpv6_relay Description This command is used to enable the DHCPv6 relay function on the Switch Format enable dhcpv6_relay Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the DHCPv6 relay global state to enab...

Page 434: ...relay Success DGS 3620 28SC admin 26 3 config dhcpv6_relay hop_count Description Configure the DHCPv6 relay hop_count of the switch Format config dhcpv6_relay hop_count value 1 32 Parameters hop_count Specifies the number of relay agents that have relayed this message The default value is 4 value 1 32 Enter the hop count number here This value must be between 1 and 32 Restrictions Only Administrat...

Page 435: ...The name of the IP interface in which DHCPv6 relay is to be enabled ipif_name 12 Enter the IP interface name here This name can be up to 12 characters long ipv6addr The DHCPv6 server IP address Restrictions Only Administrator Operator and Power User level users can issue this command Example To add a DHCPv6 server to the relay table DGS 3620 28SC admin config dhcpv6_relay add ipif System 2001 DB8 ...

Page 436: ...igure the DHCPv6 relay state of the System interface to enable DGS 3620 28SC admin config dhcpv6_relay ipif System state enable Command config dhcpv6_relay ipif System state enable Success DGS 3620 28SC admin 26 6 show dhcpv6_relay Description This command will display the current DHCPv6 relay configuration of all interfaces or if an IP interface name is specified the DHCPv6 relay configuration fo...

Page 437: ...Command show dhcpv6_relay ipif System DHCPv6 Relay Global State Disabled DHCPv6 Hops Count Limit 4 DHCPv6 Relay Information Option 37 State Disabled DHCPv6 Relay Information Option 37 Check Disabled DHCPv6 Relay Information Option 37 Remote ID Type Default DHCPv6 Relay Information Option 37 Remote ID IP Interface System DHCPv6 Relay Status Enabled Server Address DGS 3620 28SC admin 26 7 config dhc...

Page 438: ...tion is disabled remote_id Specifies the content in the Remote ID default Specifies that the remote ID will contain the VLAN ID Module Port and System MAC address of the device cid_with_user_define Specifies that the remote ID will contain the VLAN ID Module Port and a user defined string desc 128 Enter the CID user defined string here This can be up to 128 characters long user_define Specifies th...

Page 439: ...ies Layer 3 Managed Stackable Gigabit Switch CLI Reference Guide 434 DGS 3620 28SC admin config dhcpv6_relay option_37 remote_id default Command config dhcpv6_relay option_37 remote_id default Success DGS 3620 28SC admin ...

Page 440: ...efix_delegation pool_name 12 ipv6networkaddr value 1 128 ipif_name 12 show dhcpv6 manual_binding pool_name 12 show dhcpv6 binding pool_name 12 clear dhcpv6 binding pool_name 12 enable dhcpv6_server disable dhcpv6_server show dhcpv6_server ipif ipif_name 12 config dhcpv6 pool excluded_address pool_name 12 add begin ipv6addr end ipv6addr delete begin ipv6addr end ipv6addr all show dhcpv6 excluded_ad...

Page 441: ...r the DHCPv6 pool name to be removed here This name can be up to 12 characters long all Specifies that all the DHCPv6 pools will be removed Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete the DHCPv6 pool by specifying the pool name pool1 DGS 3620 28SC admin delete dhcpv6 pool pool1 Command delete dhcpv6 pool pool1 Success DGS 3620 28SC a...

Page 442: ...ill automatically find an available pool to allocate an IPv6 address The begin_networkaddr and end_networkaddr must observer some rules as followed The prefix of the begin_networkaddr and end_networkaddr are not consistence otherwise the switch will print an error message The prefix of begin_networkaddr and end_networkaddr must be consistence e g the begin_networkaddr is 2000 1 64 and the end_netw...

Page 443: ...ple To configure the range of ipv6network address for the DHCPv6 pool pool1 DGS 3620 28SC admin config dhcpv6 pool ipv6network_addr pool1 begin 2000 1 64 end 2000 32 64 Command config dhcpv6 pool ipv6network_addr pool1 begin 2000 1 64 end 2000 32 64 success DGS 3620 28SC admin 27 5 config dhcpv6 pool domain_name Description This command is used to configure the domain name for the DHCPv6 pool of t...

Page 444: ...d the DNS server information will not be provided to the client Users could delete a DNS server address in the method of setting the DNS server address to zero Format config dhcpv6 pool dns_server pool_name 12 ipv6addr ipv6addr Parameters pool_name 12 Enter the DHCPv6 pool name used here This name can be up to 12 characters long ipv6addr Enter the primary DNS Server IPv6 address used for this pool...

Page 445: ...me Specifies the length of time that a valid address is preferred to sec 60 4294967295 Enter the preferred lifetime value here This value must be between 60 and 4294967295 seconds valid_lifetime Specifies the length of time an address remains in the valid state sec 60 4294967295 Enter the valid lifetime value here This value must be between 60 and 4294967295 seconds Restrictions Only Administrator...

Page 446: ... to delete the manual binding entry ipv6addr Enter the IPv6 address of the manual binding entry to be deleted here ipv6networkaddr Enter the IPv6 network address of the manual binding entry to be deleted here all Specifies that all manual binding entries will be deleted Restrictions Only Administrator Operator and Power User level users can issue this command Example To add a manual binding DHCPv6...

Page 447: ... Example To create a DHCPv6 prefix pool prefixpool1 for interface System DGS 3620 28SC admin config dhcpv6 pool prefix_delegation prefixpool1 1111 48 64 System Command config dhcpv6 pool prefix_delegation prefixpool1 1111 48 64 System Success DGS 3620 28SC admin 27 10 show dhcpv6 manual_binding Description This command will display the manual binding entries for the selected or all DHCPv6 pools Fo...

Page 448: ...Entries 3 DGS 3620 28SC admin 27 11 show dhcpv6 binding Description This command is used to show the DHCPv6 dynamic binding information Entering the command without the pool name will display all information regarding DHCPv6 dynamic binding on the switch This command only displays the dynamic binding information not including manual binding information Format show dhcpv6 binding pool_name 12 Param...

Page 449: ...nding Description This command is used to clear the DHCPv6 dynamic binding information Format clear dhcpv6 binding pool_name 12 Parameters pool_name 12 Optional Enter the DHCPv6 pool name used here This name can be up to 12 characters long Restrictions Only Administrator Operator and Power User level users can issue this command Example To clear the DHCPv6 dynamic binding information on the Switch...

Page 450: ...SC admin enable dhcpv6_server Command enable dhcpv6_server Success DGS 3620 28SC admin 27 14 disable dhcpv6_server Description This command is used to disable the DHCPv6 server function on the Switch Format disable dhcpv6_server Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the DHCPv6 server global state to disable D...

Page 451: ...ample To display the DHCPv6 server setting DGS 3620 28SC admin show dhcpv6_server Command show dhcpv6_server DHCPv6 Server Global State Disabled IP Interface System DHCPv6 Server State Enabled IP Interface ipif1 DHCPv6 Server State Enabled Total Entries 2 DGS 3620 28SC admin 27 16 config dhcpv6 pool excluded_address Description This command is used to configure the reserved IPv6 addresses on the D...

Page 452: ...pecifies the ending IPv6 address of the range of IPv6 addresses to be excluded from the DHCPv6 pool ipv6addr Enter the ending IPv6 address used here all Specifies to delete all excluded address ranges of a specified pool Restrictions Only Administrator Operator and Power User level users can issue this command Example To add the IPv6 addresses range that DHCPv6 server should not assign to clients ...

Page 453: ...Description This command is used to configure the DHCPv6 Server state per interface Format config dhcpv6_server ipif ipif_name 12 all state enable disable Parameters ipif Specifies the IP interface used ipif_name 12 Enter the IP interface name used This name can be up to 12 characters long all Specifies that all the IP interfaces will used state Specifies the DHCPv6 server state for the specified ...

Page 454: ...eries Layer 3 Managed Stackable Gigabit Switch CLI Reference Guide 449 DGS 3620 28SC admin config dhcpv6_server ipif System state enable Command config dhcpv6_server ipif System state enable Success DGS 3620 28SC admin ...

Page 455: ...cters long all Specifies that all the IP interfaces will be used metric Optional Allows the assignment of a DVMRP route cost to the above IP interface A DVMRP route cost is a relative number that represents the real cost of using this route in the construction of a multicast delivery tree It is similar to but not defined as the hop count in RIP value 1 31 Enter the metric value used here This valu...

Page 456: ...d System DGS 3620 28SC admin config dvmrp ipif System neighbor_timeout 30 metric 1 probe 5 Command config dvmrp ipif System neighbor_timeout 30 metric 1 probe 5 Success DGS 3620 28SC admin 28 2 enable dvmrp Description This command is used to enable the DVMRP global state on the Switch Format enable dvmrp Parameters None Restrictions Only Administrator Operator and Power User level users can issue...

Page 457: ...ommand Example To disable DVMRP DGS 3620 28SC admin disable dvmrp Command disable dvmrp Success DGS 3620 28SC admin 28 4 show dvmrp Description This command is used to display DVMRP configurations Format show dvmrp ipif ipif_name 12 Parameters ipif Optional Specifies the IP interface name used for the display ipif_name 12 Enter the IP interface name used for the display here This name can be up to...

Page 458: ...ay the DVMRP neighbor table Format show dvmrp neighbor ipif ipif_name 12 ipaddress network_address Parameters ipif Optional Specifies the IP interface name used for the display ipif_name 12 Enter the IP interface name used for the display here This name can be up to 12 characters long ipaddress Optional Specifies the IP address and netmask of the destination used network_address Enter the IP addre...

Page 459: ...able Format show dvmrp nexthop ipaddress network_address ipif ipif_name 12 Parameters ipaddress Optional Specifies the IP address and netmask of the destination used network_address Enter the IP address and netmask of the destination used here ipif Optional Specifies the IP interface name used for the display ipif_name 12 Enter the IP interface name used for the display here This name can be up to...

Page 460: ... 0 0 8 ip2 Leaf Total Entries 6 DGS 3620 28SC admin 28 7 show dvmrp routing_table Description This command is used to display the DVMRP routing table Format show dvmrp routing_table ipaddress network_address Parameters ipaddress Optional Specifies the IP address and netmask of the destination used network_address Enter the IP address and netmask of the destination used here If no parameter is spec...

Page 461: ...8SC admin show dvmrp routing_table Command show dvmrp routing_table DVMRP Routing Table Source Address Netmask Upstream Neighbor Metric Learned Interface Expire 10 0 0 0 8 10 90 90 90 2 Local System 20 0 0 0 16 20 1 1 1 2 Local ip2 30 0 0 0 24 30 1 1 1 2 Local ip3 Total Entries 3 DGS 3620 28SC admin ...

Page 462: ...ons on the switch Format install dlms activation_code string 25 unit unit_id Parameters string 25 Specifies an activation code The length should be 25 string characters unit Specifies the unit to display unit_id Specifies the switch in the switch stack Restrictions Only Administrator level users can issue this command Example To input a legal activation code DGS 3620 28SC admin install dlms activa...

Page 463: ... will display the license information Format show dlms license unit unit_id Parameters unit Specifies the unit to display unit_id Specifies the switch in the switch stack Restrictions None Example To display license information DGS 3620 28SC admin show dlms license Command show dlms license Device Default License EI DGS 3620 28SC admin ...

Page 464: ... indicate that the IP address below is the address of the primary DNS server secondary Specifies to indicate that the IP address below is the address of the secondary DNS server nameserver Specifies the IP address of the DNS nameserver ipaddr Enter the IP address of the DNS nameserver add Specifies to add the DNS relay function delete Specifies to delete the DNS relay function static Specifies the...

Page 465: ... 3620 28SC admin config dnsr delete static dns1 10 24 22 5 Command config dnsr delete static dns1 10 24 22 5 Success DGS 3620 28SC admin 30 2 enable dnsr Description This command is used to enable DNS relay Format enable dnsr cache static Parameters cache Specifies to enable the cache lookup for the DNS relay on the switch static Specifies to enable the static table lookup for the DNS relay on the...

Page 466: ...s command is used to disable DNS relay on the switch Format disable dnsr cache static Parameters cache Optional Specify to disable the cache lookup for the DNS relay on the switch static Optional Specify to disable the static table lookup for the DNS relay on the switch Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable the status of DNS r...

Page 467: ...nd disable dnsr static Success DGS 3620 28SC admin 30 4 show dnsr Description This command is used to display the current DNS relay configuration and static entries Format show dnsr static Parameters static Optional Specify to display the static entries in the DNS relay table If this parameter is omitted the entire DNS relay table will be displayed Restrictions None Example To display the DNS rela...

Page 468: ...3620 28SC admin show dnsr Command show dnsr DNSR Status Disabled Primary Name Server 0 0 0 0 Secondary Name Server 0 0 0 0 DNSR Cache Status Disabled DNSR Static Table Status Disabled DNS Relay Static Table Domain Name IP Address www 123 com tw 10 12 12 123 Total Entries 1 DGS 3620 28SC admin ...

Page 469: ...server add Description This command is used to add a DNS resolver name server to the Switch Format config name_server add ipaddr ipv6addr primary Parameters ipaddr Enter the DNS Resolver name server IPv4 address used here ipv6addr Enter the DNS Resolver name server IPv6 address used here primary Optional Specifies that the name server is a primary name server Restrictions Only Administrator Operat...

Page 470: ...strator Operator and Power User level users can issue this command Example To delete DNS Resolver name server 10 10 10 1 DGS 3620 28SC admin config name_server delete 10 10 10 10 Command config name_server delete 10 10 10 10 Success DGS 3620 28SC admin 31 3 config name_server timeout Description This command is used to configure the timeout value of a DNS Resolver name server Format config name_se...

Page 471: ...and is used to display the current DNS Resolver name servers and name server time out on the Switch Format show name_server Parameters None Restrictions None Example To display the current DNS Resolver name servers and name server time out DGS 3620 28SC admin show name_server Command show name_server Name Server Time Out 3 seconds Static Name Server Table Server IP Address Priority 20 20 20 20 Sec...

Page 472: ...level users can issue this command Example To create static host name www example com DGS 3620 28SC admin create host_name www example com 10 10 10 10 Command create host_name www example com 10 10 10 10 Success DGS 3620 28SC admin 31 6 delete host_name Description This command is used to delete the static or dynamic host name entries of the Switch Format delete host_name name 255 all Parameters n...

Page 473: ...al Specifies to display the static host name entries dynamic Optional Specifies to display the dynamic host name entries Restrictions None Example To display the static and dynamic host name entries DGS 3620 28SC admin show host_name Command show host_name Static Host Name Table Host Name www example1 com IP Address 20 20 20 20 IPv6 Address 3000 1 Host Name www example2 com IP Address 10 10 10 10 ...

Page 474: ...estrictions Only Administrator Operator and Power User level users can issue this command Example To configure the DNS Resolver state to enabled DGS 3620 28SC admin enable dns_resolver Command enable dns_resolver Success DGS 3620 28SC admin 31 9 disable dns_resolver Description This command is used to disable the DNS Resolver state of the Switch Format disable dns_resolver Parameters None Restrict...

Page 475: ...es Layer 3 Managed Stackable Gigabit Switch CLI Reference Guide 470 Example To configure the DNS Resolver state to disabled DGS 3620 28SC admin disable dns_resolver Command disable dns_resolver Success DGS 3620 28SC admin ...

Page 476: ...evention type will be set to prevent LAND attacks blat_attack Optional Specifies that the DoS attack prevention type will be set to prevent BLAT attacks tcp_null_scan Optional Specifies that the DoS attack prevention type will be set to prevent TCP Null Scan attacks tcp_xmasscan Optional Specifies that the DoS attack prevention type will be set to prevent TCP Xmas Scan attacks tcp_synfin Optional ...

Page 477: ...8SC admin 32 2 config dos_prevention log Description This command is used to enable or disable the DoS prevention log state Format config dos_prevention log enable disable Parameters enable Specifies to enable the DoS prevention log state disable Specifies to disable the DoS prevention log state Restrictions Only Administrator Operator and Power User level users can issue this command Example To e...

Page 478: ...sscan tcp_synfin tcp_syn_srcport_less_1024 ping_death_attack tcp_tiny_frag_attack Parameters land_attack Optional Specifies that only DoS LAND attack information will be displayed blat_attack Optional Specifies that only DoS BLAT attack information will be displayed tcp_null_scan Optional Specifies that only DoS TCP Null Scan attack information will be displayed tcp_xmasscan Optional Specifies tha...

Page 479: ...rop TCP SYN SrcPort Less 1024 Disabled Drop Ping of Death Attack Disabled Drop TCP Tiny Fragment Attack Disabled Drop CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh To display DoS prevention information of Land Attack DGS 3620 28SC admin show dos_prevention land_attack Command show dos_prevention land_attack DoS Type Land Attack State Disabled Action Drop Frame Counts DGS 3620 28SC ...

Page 480: ...o be used portlist Enter the list of ports used for this configuration here all Specifies that all the ports will be used for this configuration state Optional Specifies these ports unidirectional link detection status The default state is disabled enable Specifies that the unidirectional link detection status will be enabled disable Specifies that the unidirectional link detection status will be ...

Page 481: ...orts to be display portlist Enter the list of ports to be displayed here If no ports are specified all the ports will be displayed Restrictions None Example To show ports 1 4 unidirectional link detection information DGS 3620 28SC admin config duld ports 1 1 1 2 1 4 state enable Command config duld ports 1 1 1 2 1 4 state enable Success DGS 3620 28SC admin show duld ports 1 1 1 4 Command show duld...

Page 482: ...in 5 12 config erps log enable disable config erps trap enable disable show erps raps_vlan vlanid 1 4094 sub_ring 34 1 enable erps Description This command is used to enable the global ERPS function on the Switch When both the global state and the specified ring ERPS state are enabled the specified ring will be activated The global ERPS function cannot be enabled when any ERPS ring on the device i...

Page 483: ...the ERPS function on the switch Format disable erps Parameters None The ERPS is disabled by default Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable ERPS DGS 3620 28SC admin disable erps Command disable erps Success DGS 3620 28SC admin 34 3 create erps raps_vlan Description This command is used to create an R APS VLAN on the switch There...

Page 484: ...cess DGS 3620 28SC admin 34 4 delete erps raps_vlan Description This command is used to delete an R APS VLAN on the switch When an R APS VLAN is deleted all parameters related to this R APS VLAN will also be deleted This command can only be issued when ERPS is disabled Format delete erps raps_vlan vlanid 1 4094 Parameters vlanid 1 4094 Enter the VLAN which will be the R APS VLAN Restrictions Only ...

Page 485: ...hat the port is connected to will be considered as a sub ring Note that modifying the ring port number may not take effect immediately when ERPS function is enabled The ring will run protocol by old configuration if follow conditions are not satisfied 1 The Ring port is a tagged member port of the R APS VLAN 2 The RPL port is not a virtual channel 3 The Ring port is the master port if it belongs t...

Page 486: ...n this period of time Format config erps raps_vlan vlanid 1 4094 state enable disable ring_mel value 0 7 ring_port west port virtual_channel east port virtual_channel rpl_port west east none rpl_owner enable disable protected_vlan add delete vlanid vidlist sub_ring raps_vlan vlanid 1 4094 tc_propagation state enable disable add delete sub_ring raps_vlan vlanid 1 4094 revertive enable disable timer...

Page 487: ... used here revertive Specifies the revertive mode state enable Specifies that the revertive mode will be enabled disable Specifies that the revertive mode will be disabled timer Configure the ERPS timers for a specific R APS VLAN holdoff_time Specifies the holdoff time of the R APS function millisecond 0 10000 Enter the time between 0 and 10000 The default hold off time is 0 milliseconds guard_tim...

Page 488: ...nid 10 20 Command config erps raps_vlan 4094 protected_vlan add vlanid 10 20 Success DGS 3620 28SC admin To set the R APS timer parameter DGS 3620 28SC admin config erps raps_vlan 4094 timer holdoff_time 100 guard_time 1000 wtr_time 10 Command config erps raps_vlan 4094 timer holdoff_time 100 guard_time 1000 wtr_time 10 Success DGS 3620 28SC admin 34 6 config erps log Description This command is u...

Page 489: ...e The default value is disabled Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the trap state of the ERPS DGS 3620 28SC admin config erps trap enable Command config erps trap enable Success DGS 3620 28SC admin 34 8 show erps Description This command is used to display ERPS configuration and operation information The port state of the...

Page 490: ...ation DGS 3620 28SC admin show erps Command show erps Global Status Enabled Log Status Enabled Trap Status Disabled R APS VLAN 4094 ERPS Status Disabled Admin West Port 1 5 Operational West Port 1 5 Forwarding Admin East Port 1 7 Operational East Port 1 7 Forwarding Admin RPL Port West port Operational RPL Port West port Admin Owner Enabled Operational Owner Enabled Protected VLANs 10 20 Ring MEL ...

Page 491: ...te enable disable Parameters portlist Enter a range of ports to be configured all Specifies to configure all ports state Specifies the EEE state The default is disabled enable Enable the EEE function for the specified port s disable Disable the EEE function for the specified port s Restrictions Only Administrator and Operator level users can issue this command Example To enable the EEE state on po...

Page 492: ... Parameters portlist Optional Specify a list of ports to be displayed Restrictions None Example To display the EEE state DGS 3620 28SC admin show eee ports 1 1 1 6 1 9 Command show eee ports 1 1 1 6 1 9 Port State 1 1 Disabled 1 2 Enabled 1 3 Enabled 1 4 Enabled 1 5 Enabled 1 6 Disabled 1 9 Disabled DGS 3620 28SC admin ...

Page 493: ... config external_alarm unit unit_id channel value 1 4 message sentence 1 128 Parameters unit Specifies the unit to display unit_id Specifies the switch in the switch stack channel Specifies which channel is selected to configure value 1 4 Enter the value of the channel number to be used here message Alarm messages to display on console log and trap sentence 1 128 Enter up to 128 characters here fo...

Page 494: ...external_alarm unit unitlist Parameters unit Specifies the unit s to display unitlist Enter the number of the unit s here Restrictions None Example To display the real time status of external alarm when the switch is not support stacking DGS 3620 28SC admin show external_alarm Command show external_alarm Unit Channel Status Message 1 1 Normal External Alarm 1 1 2 Normal External Alarm 2 DGS 3620 2...

Page 495: ..._time security show multicast vlan_filtering_mode vlanid vidlist vlan vlan_name 32 37 1 create fdb Description This command is used to make an entry into the switch s unicast MAC address forwarding database Format create fdb vlan_name 32 macaddr port port drop Parameters vlan_name 32 Enter a VLAN name associated with a MAC address The maximum length is 32 characters macaddr Enter the MAC address t...

Page 496: ...the MAC destination address drop Specifies to have the switch drop traffic Restrictions Only Administrator Operator and Power User level users can issue this command Example To create an unicast MAC forwarding DGS 3620 28SC admin create fdb vlanid 1 00 11 22 33 44 55 port 1 5 Command create fdb vlanid 1 00 11 22 33 44 55 port 1 5 Success DGS 3620 28SC admin 37 3 create multicast_fdb Description Th...

Page 497: ... Format config multicast_fdb vlan_name 32 macaddr add delete portlist Parameters vlan_name 32 Enter the name of the VLAN on which the MAC address resides The maximum name length is 32 characters macaddr Enter the MAC address that will be added or deleted to the forwarding table add Specifies to add ports delete Specifies to delete ports portlist Specifies a range of ports to be configured Restrict...

Page 498: ...and Example To configure MAC address aging time DGS 3620 28SC admin config fdb aging_time 300 Command config fdb aging_time 300 Success DGS 3620 28SC admin 37 6 config multicast vlan_filtering_mode Description This command is used to configure the multicast packet filtering mode for VLANs Format config multicast vlan_filtering_mode vlanid vidlist vlan vlan_name 32 all forward_all_groups forward_un...

Page 499: ...ort filtering_mode all forward_unregistered_groups Success DGS 3620 28SC admin 37 7 delete fdb Description This command is used to delete a permanent FDB entry Format delete fdb vlan_name 32 macaddr Parameters vlan_name 32 Enter the name of the VLAN on which the MAC address resides The maximum length is 32 characters macaddr Enter the MAC address to be deleted from the static forwarding table Rest...

Page 500: ...ictions Only Administrator Operator and Power User level users can issue this command Example To clear all FDB dynamic entries DGS 3620 28SC admin clear fdb all Command clear fdb all Success DGS 3620 28SC admin 37 9 show multicast_fdb Description This command is used to display the contents of the switch s multicast forwarding database Format show multicast_fdb vlan vlan_name 32 vlanid vidlist mac...

Page 501: ...b port port vlan vlan_name 32 vlanid vidlist mac_address macaddr static aging_time security Parameters port Optional Specify the entries for one port port Enter the entries for one port vlan Optional Specify to display the entries for a specific VLAN vlan_name 32 The maximum length is 32 characters vlanid Optional Specify to display the entries by VLAN ID list vidlist Enter to display the entries ...

Page 502: ... Description This command is used to display the multicast packet filtering mode for VLANs Format show multicast vlan_filtering_mode vlanid vidlist vlan vlan_name 32 Parameters vlanid Optional Specify to display the entries by VLAN ID list vidlist Enter to display the entries by VLAN ID list vlan Optional Specify to display the entries for a specific VLAN vlan_name 32 The maximum length is 32 char...

Page 503: ...xStack DGS 3620 Series Layer 3 Managed Stackable Gigabit Switch CLI Reference Guide 498 DGS 3620 28SC admin ...

Page 504: ..._id pathname recursive move unit unit_id drive_id pathname unit unit_id drive_id pathname copy unit unit_id drive_id pathname unit unit_id drive_id pathname change drive unit unit_id drive_id 38 1 show storage_media_info Description This command is used to display storage media information Format show storage_media_info unit unit_id all Parameters unit Specifies the unit ID in the stacking system ...

Page 505: ...value here drive_id Specifies the drive ID If not specified it refers to the current drive pathname Enter the directory to be created The path name can be specified either as a full path name or partial name For a partial path name it indicates the directory is in the current directory Restrictions Only Administrator and Operator level users can issue this command Example To create a directory DGS...

Page 506: ...rator and Operator level users can issue this command Example To delete an empty directory DGS 3620 28SC admin rd c abc Command rd c abc Success DGS 3620 28SC admin 38 4 cd Description This command is used to change the current directory The user can change the current directory to another drive using this command The current drive and current directory will be displayed if the pathname is not spe...

Page 507: ...o the master unit unit_id Enter the unit ID value here drive_id Specifies the drive ID If not specified it refers to the current drive pathname Optional Specify the directory to be listed The path name can be specified either as a full path name or partial name For a partial path name it indicates the file is in the current directory The drive ID also included in this parameter for example d confi...

Page 508: ... pathname filename Parameters unit Specifies the unit ID in the stacking system If not specified it refers to the master unit unit_id Enter the unit ID value here drive_id Specifies the drive ID If not specified it refers to the current drive pathname Enter the file in path form to be renamed filename Enter the new name of the file Restrictions Only Administrator and Operator level users can issue...

Page 509: ...Command erase cfg Are you sure to remove the boot up Configuration from this device y n y Success DGS 3620 28SC admin 38 8 format Description This command is used to format a specific drive Format format unit unit_id drive_id fat16 fat32 label_name Parameters unit Specifies the unit ID in the stacking system If not specified it refers to the master unit unit_id Enter the unit ID value here drive_i...

Page 510: ...unit_id Enter the unit ID value here drive_id Specifies the drive ID If not specified it refers to the current drive pathname Enter the file or directory to be deleted If it is specified in the associated form then it is related to the current directory recursive Optional Used on the directory to delete a directory and its contents even if it is not empty Restrictions Only Administrator and Operat...

Page 511: ...al path name it indicates the file is in the current directory unit Specifies the unit ID in the stacking system If not specified it refers to the master unit unit_id Enter the unit ID value here drive_id Specifies the drive ID If not specified it refers to the current drive pathname Enter the new path where the file will be moved The path name can be specified either as a full path name or partia...

Page 512: ...ive ID If not specified it refers to the current drive pathname Enter the file to copy to If it is specified in the associated form then it is related to the current directory Restrictions Only Administrator and Operator level users can issue this command Example To copy a file DGS 3620 28SC admin copy c log txt c log1 txt Command copy c log txt c log1 txt Copying Done DGS 3620 28SC admin 38 12 ch...

Page 513: ...ck DGS 3620 Series Layer 3 Managed Stackable Gigabit Switch CLI Reference Guide 508 DGS 3620 28SC admin change drive unit 3 c Command change drive unit 3 c Current work directory unit3 c DGS 3620 28SC admin ...

Page 514: ... filter extensive_netbios portlist all state enable disable Parameters portlist Enter the port or range of ports to configure all Specifies to configure all ports state Specifies the status of the filter to block the NetBIOS packets over 802 3 frames enable Enable the filter to block the NetBIOS packets over 802 3 frames disable Disable the filter to block the NetBIOS packets over 802 3 frames Res...

Page 515: ...te will create one access profile and three access rules per port automatically UDP ports 137 and138 and TCP port 139 Filter commands in this file will share the same access profile Format config filter netbios portlist all state enable disable Parameters portlist Enter the port or range of ports to configure all Specifies to configure all ports state Specifies the status of the filter to block Ne...

Page 516: ...ess DGS 3620 28SC admin 39 4 show filter netbios Description This command is used to display the NetBIOS filter state on the switch Format show filter netbios Parameters None Restrictions None Example To display the NetBIOS filter state DGS 3620 28SC admin show filter netbios Command show filter netbios Enabled Ports 1 3 DGS 3620 28SC admin ...

Page 517: ...trap and log state The switch can trap and log the IP conflict event to inform the administrator Format enable gratuitous_arp ipif ipif_name 12 trap log 1 Parameters ipif Optional The interface name of the L3 interface ipif_name 12 Enter the interface name The maximum length is 12 characters trap Specifies trap The trap is disabled by default log Specifies log The even log is enabled by default Re...

Page 518: ...uitous_arp ipif System trap log Command disable gratuitous_arp ipif System trap log Success DGS 3620 28SC admin 40 3 config gratuitous_arp learning Description This command is used to enable or disable learning of ARP entries in the ARP cache based on the received gratuitous ARP packets Format config gratuitous_arp learning enable disable Parameters enable Enable learning of ARP entries based on t...

Page 519: ...address Format config gratuitous_arp send dup_ip_detected enable disable Parameters enable Enable the sending of gratuitous ARP requests when a duplicate IP is detected disable Disable the sending of gratuitous ARP requests when a duplicate IP is detected Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the sending of gratuitous ARP reque...

Page 520: ...s DGS 3620 28SC admin 40 6 config gratuitous_arp send periodically ipif Description This command is used to configure the interval for the periodical sending of gratuitous ARP request packets Format config gratuitous_arp send periodically ipif ipif_name 12 interval value 0 65535 Parameters ipif_name 12 Enter the interface name of the L3 interface The maximum length is 12 characters interval The pe...

Page 521: ...ameters ipif Optional The interface name of the L3 interface ipif_name 12 Enter the interface name The maximum length is 12 characters Restrictions None Example To display the gratuitous ARP configuration DGS 3620 28SC admin show gratuitous_arp Command show gratuitous_arp Send on IPIF Status Up Disabled Send on Duplicate IP Detected Disabled Gratuitous ARP Learning Disabled IP Interface Name Syste...

Page 522: ...fies the IP interface name used for this configuration ipif_name 12 Enter the IP interface name used for this configuration here This name can be up to 12 characters long all Specifies that all the IP interfaces will be used version Optional Specifies the IGMP version used value 1 3 Enter the IGMP version number used here This value must be between 1 and 3 The default value is 3 query_interval Opt...

Page 523: ...n config igmp ipif System version 1 state enable Command config igmp ipif System version 1 state enable Success DGS 3620 28SC admin To configure IGMPv2 for all IP interfaces DGS 3620 28SC admin config igmp all version 2 Command config igmp all version 2 Success DGS 3620 28SC admin 41 2 show igmp Description This command is used to display the IGMP configuration Format show igmp ipif ipif_name 12 P...

Page 524: ...oup table Format show igmp group group group ipif ipif_name 12 Parameters group Optional Specifies the multicast group ID group Enter the multicast group ID value here ipif Optional Specifies the IP interface name used for this configuration ipif_name 12 Enter the IP interface name used for this configuration here This name can be up to 12 characters long all Specifies that all the IP interfaces w...

Page 525: ...sabled the IGMP report or leave message with any source IP will be processed by the IGMP protocol Format config igmp check_subscriber_source_network ipif ipif_name 12 all enable disable Parameters ipif Specifies the IP interface name used for this configuration ipif_name 12 Enter the IP interface name used for this configuration here This name can be up to 12 characters long all Specifies that all...

Page 526: ...s None Example To show the status of the check subscriber for the received IGMP report leave messages on interface n20 DGS 3620 28SC admin show igmp check_subscriber_source_network ipif n20 Command show igmp check_subscriber_source_network ipif n20 Interface IP Address Netmask Check Subscriber Source Network n20 20 1 1 1 8 Disabled Total Entries 1 DGS 3620 28SC admin To show the status of the chec...

Page 527: ...rator Operator and Power User level users can issue this command Example To create an IGMP static group with the multicast IP address 225 0 0 2 on the IP interface System DGS 3620 28SC admin create igmp static_group ipif System group 225 0 0 2 Command create igmp static_group ipif System group 225 0 0 2 Success DGS 3620 28SC admin 41 7 delete igmp static_group Description This command is used to d...

Page 528: ...tem group 225 0 0 2 Success DGS 3620 28SC admin To delete all IGMP static groups on the IP interface n2 DGS 3620 28SC admin delete igmp static_group ipif n2 all Command delete igmp static_group ipif n2 all Success DGS 3620 28SC admin 41 8 show igmp static_group Description This command is used to display IGMP static groups on the Switch Format show igmp static_group ipif ipif_name 12 Parameters ip...

Page 529: ...nd show igmp static_group ipif n20 Interface Multicast Group n20 239 0 0 3 Total Entries 1 DGS 3620 28SC admin To display all IGMP static groups on all interfaces DGS 3620 28SC admin show igmp static_group Command show igmp static_group Interface Multicast Group System 225 0 0 1 System 225 0 0 2 n20 239 0 0 3 Total Entries 3 DGS 3620 28SC admin ...

Page 530: ...p ipaddr unsolicited_report_interval sec 0 25 1 show igmp_proxy group 42 1 enable igmp_proxy Description This command is used to enable the IGMP proxy on the switch Format enable igmp_proxy Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the IGMP proxy DGS 3620 28SC admin enable igmp_proxy Command enable igmp_proxy Succes...

Page 531: ...igmp_proxy downstream_if add delete vlan vlan_name 32 vlanid vidlist Parameters add Specifies to add a downstream interface delete Specifies to delete a downstream interface vlan Specify the VLAN by name or ID vlan_name 32 Enter a name of VLAN which will be added to or deleted from the IGMP proxy downstream interface The maximum length is 32 characters vlanid Specifies a list of VLAN IDs to be add...

Page 532: ...N name between 1 and 32 characters vlanid Specifies the VLAN ID for the upstream interface 1 4094 Enter the VLAN ID between 1 and 4094 router_ports Specifies a list of ports that are connected to multicast enabled routers add Specifies to add the router ports delete Specifies to delete the router ports portlist Enter a range of ports to be configured source_ip Specifies the source IP address of th...

Page 533: ...up Optional Specify the group information Note If the group is not specified the IGMP proxy configuration will be displayed Restrictions None Example To display IGMP proxy information DGS 3620 28SC admin show igmp_proxy Command show igmp_proxy IGMP Proxy Global State Enabled Upstream Interface VLAN ID 1 Dynamic Router Ports 1 4 Static Router Ports 5 6 Unsolicited Report Interval 10 Source IP Addre...

Page 534: ...tackable Gigabit Switch CLI Reference Guide 529 Dest V The destination VLAN A Active I Inactive Dest IP Source IP Dest V Member Ports Status 224 2 2 2 NULL 4 3 6 A 2 2 4 I 227 3 1 5 NULL 2 2 5 8 I 3 5 7 9 A Total Entries 2 DGS 3620 28SC admin ...

Page 535: ... create igmp_snooping static_group vlan vlan_name 32 vlanid vlanid_list ipaddr config igmp_snooping static_group vlan vlan_name 32 vlanid vlanid_list ipaddr add delete portlist delete igmp_snooping static_group vlan vlan_name 32 vlanid vlanid_list ipaddr show igmp_snooping static_group vlan vlan_name 32 vlanid vlanid_list ipaddr show igmp_snooping statistic counter vlan vlan_name 32 vlanid vlanid_...

Page 536: ...paddr Enter the source IP addres used here Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure IGMP snooping DGS 3620 28SC admin config igmp_snooping vlan_name default state enable fast_leave enable Command config igmp_snooping vlan_name default state enable fast_leave enable Success DGS 3620 28SC admin 43 2 config igmp_snooping querier D...

Page 537: ...s the maximum amount of time between group specific query messages including those sent in response to leave group messages You might lower this interval to reduce the amount of time it takes a router to detect the loss of the last member of a group sec 1 25 Enter the time between 1 and 25 seconds state If the state is enable it allows the switch to be selected as a IGMP Querier sends IGMP query p...

Page 538: ...s delete Specifies to delete the router ports portlist Enter a range of ports to be configured Restrictions Only Administrator Operator and Power User level users can issue this command Example To set up static router ports DGS 3620 28SC admin config router_ports default add 1 10 Command config router_ports default add 1 10 Success DGS 3620 28SC admin 43 4 config router_ports_forbidden Description...

Page 539: ...n router ports of the default VLAN DGS 3620 28SC admin config router_ports_forbidden default add 1 7 Command config router_ports_forbidden default add 1 7 Success DGS 3620 28SC admin 43 5 enable igmp_snooping Description This command allows you to enable IGMP snooping on the switch Format enable igmp_snooping Parameters None Restrictions Only Administrator Operator and Power User level users can i...

Page 540: ...xample To disable IGMP snooping DGS 3620 28SC admin disable igmp_snooping Command disable igmp_snooping Success DGS 3620 28SC admin 43 7 show igmp_snooping Description This command is used to display the current IGMP snooping configuration on the switch Format show igmp_snooping vlan vlan_name 32 vlanid vlanid_list Parameters vlan Optional Specify the name of the VLAN to display the IGMP snooping ...

Page 541: ...d Proxy Reporting Source IP 0 0 0 0 Version 3 Total Entries 1 DGS 3620 28SC admin 43 8 show igmp_snooping group Description This command is used to display the current IGMP snooping group configuration on the switch Format show igmp_snooping group vlan vlan_name 32 vlanid vlanid_list ports portlist ipaddr Parameters vlan Optional Specify the name of the VLAN for which you want to view IGMP snoopin...

Page 542: ...GS 3620 28SC admin show igmp_snooping group Command show igmp_snooping group Source Group NULL 224 106 0 211 VLAN Name VID default 1 Member Ports 1 UP Time 223 Expiry Time 37 Filter Mode EXCLUDE Source Group NULL 234 54 163 75 VLAN Name VID default 1 Member Ports 1 UP Time 223 Expiry Time 37 Filter Mode EXCLUDE Source Group 110 56 32 100 235 10 160 5 VLAN Name VID default 1 Member Ports 2 UP Time ...

Page 543: ... dropped no_limit The default setting is no limit Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the IGMP snooping rate limit for ports 1 2 to have no limit DGS 3620 28SC admin config igmp_snooping rate_limit ports 1 2 no_limit Command config igmp_snooping rate_limit ports 1 2 no_limit Success DGS 3620 28SC admin 43 10 show igmp_snoo...

Page 544: ...rts For a layer 3 device the device is also responsible to route the packet destined for this specific group to static member ports The static member port will only affect V2 IGMP operation The Reserved IP multicast address 224 0 0 X must be excluded from the configured group The VLAN must be created first before a static group can be created Format create igmp_snooping static_group vlan vlan_name...

Page 545: ... the static group resides vlan_name 32 Enter the VLAN name The maximum length is 32 characters vlanid Specifies the ID of the VLAN on which the static group resides vlanid_list Enter the VLAN ID list ipaddr Enter the multicast group IP address for Layer 3 switch add Specifies to add the member ports delete Specifies to delete the member ports portlist Enter a range of ports to be configured Restri...

Page 546: ...ault VLAN group 239 1 1 1 DGS 3620 28SC admin delete igmp_snooping static_group vlan default 239 1 1 1 Command delete igmp_snooping static_group vlan default 239 1 1 1 Success DGS 3620 28SC admin 43 14 show igmp_snooping static_group Description This command is used to display the IGMP snooping static multicast group Format show igmp_snooping static_group vlan vlan_name 32 vlanid vlanid_list ipadd...

Page 547: ...ng statistic counter vlan vlan_name 32 vlanid vlanid_list ports portlist Parameters vlan Specifies a VLAN to be displayed vlan_name 32 Enter the VLAN name The maximum length is 32 characters vlanid Specifies a list of VLANs to be displayed vlanid_list Enter the VLAN ID list ports Specify a list of ports to be displayed portlist Enter a list of ports Restrictions None Example To display the IGMP sn...

Page 548: ...istics Query IGMP v1 Query 0 IGMP v2 Query 0 IGMP v3 Query 8 Total 8 Report Leave IGMP v1 Report 0 IGMP v2 Report 0 IGMP v3 Report 0 IGMP v2 Leave 0 Total 0 Total Entries 1 DGS 3620 28SC admin 43 16 clear igmp_snooping statistics counter Description This command is used to clear the IGMP snooping statistics counter on the switch Format clear igmp_snooping statistics counter Parameters None Restric...

Page 549: ...t show igmp_snooping forwarding vlan vlan_name 32 vlanid vlanid_list Parameters vlan Optional Specify a VLAN to be displayed vlan_name 32 Enter the VLAN name The maximum length is 32 characters vlanid Optional Specify a list of VLANs to be displayed vlanid_list Enter the VLAN ID list Note If no parameter is specified the system will display all current IGMP snooping forwarding table entries of the...

Page 550: ...des vlanid_list Enter the VLAN ID list all Specifies that all the VLAN s will be displayed static Optional Display router ports that have been statically configured dynamic Optional Display router ports that have been dynamically registered forbidden Optional Display forbidden router ports that have been statically configured Note If no parameter is specified the system will display all the curren...

Page 551: ...ified ports auth_accounting Specifies that after the client authenticated accounting messages will be sent to the RADIUS server This is the default option auth_only Specifies that after the client authenticated accounting messages will not be sent to the RADIUS server accounting_only Specifies that authentication is not needed If the client joins a group accounting messages will be sent to the RAD...

Page 552: ...Port State 1 1 Auth_accounting 1 2 Disabled 1 3 Disabled 1 4 Disabled DGS 3620 28SC admin To display the IGMP Access Control status for all ports DGS 3620 28SC admin show igmp access_authentication ports all Command show igmp access_authentication ports all Port State 1 1 Auth_accounting 1 2 Disabled 1 3 Disabled 1 4 Disabled 1 5 Disabled 1 6 Disabled 1 7 Disabled 1 8 Disabled 1 9 Disabled 1 10 Di...

Page 553: ...xStack DGS 3620 Series Layer 3 Managed Stackable Gigabit Switch CLI Reference Guide 548 ...

Page 554: ...nooping multicast_vlan disable igmp_snooping multicast_vlan show igmp_snooping multicast_vlan vlan_name 32 config igmp_snooping multicast_vlan forward_unmatched disable enable config igmp_snooping multicast_vlan auto_assign_vlan enable disable 44 1 create igmp_snooping multicast_vlan Description This command is used to create an IGMP snooping multicast VLAN and implements relevant parameters as sp...

Page 555: ...t VLAN must be created first using the create igmp_snooping multicast_vlan command before the multicast VLAN can be configured Format config igmp_snooping multicast_vlan vlan_name 32 add delete member_port portlist source_port portlist untag_source_port portlist tag_member_port portlist state enable disable replace_source_ip ipaddr none remap_priority value 0 7 none replace_priority 1 Parameters v...

Page 556: ...to 7 to be associated with the data traffic to be forwarded on the multicast VLAN none If none is specified the packet s original priority is used The default setting is none replace_priority Optional Specify that the packet priority will be changed to the remap priority but only if remap priority is set Restrictions Only Administrator Operator and Power User level users can issue this command Exa...

Page 557: ...32 Enter the multicast VLAN profile name The maximum length is 32 characters add Specifies to add a multicast address list to this multicast VLAN profile delete Specifies to delete a multicast address list from this multicast VLAN profile mcast_address_list Enter a multicast address list This can be a continuous single multicast address such as 225 1 1 1 225 1 1 3 225 1 1 8 a multicast address ran...

Page 558: ...the profiles If no parameter is specified the system will display all multicast VLAN group profiles Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete an IGMP snooping multicast group profile named Knicks DGS 3620 28SC admin delete igmp_snooping multicast_vlan_group_profile profile_name Knicks Command delete igmp_snooping multicast_vlan_gro...

Page 559: ...ackets received by the member port will only be learned with the multicast VLAN that this port belongs to If not which is the second case the join packet will be learned with the multicast VLAN that contains the destination multicast group If the destination multicast group of the join packet can not be classified into any multicast VLAN that this port belongs to then the join packet will be learn...

Page 560: ...ow igmp_snooping multicast_vlan_group Description This command allows group profile information for a specific multicast VLAN to be displayed Format show igmp_snooping multicast_vlan_group vlan_name 32 Parameters vlan_name 32 Optional Specify the name of the group profile s multicast VLAN to be displayed If no parameter is specified the system will display all multicast VLAN groups Restrictions No...

Page 561: ...perator and Power User level users can issue this command Example To delete an IGMP snooping multicast VLAN called v1 DGS 3620 28SC admin delete igmp_snooping multicast_vlan v1 Command delete igmp_snooping multicast_vlan v1 Success DGS 3620 28SC admin 44 10 enable igmp_snooping multicast_vlan Description This command is used to enable the IGMP snooping multicast VLAN function By default the multic...

Page 562: ...icast VLAN function By default the multicast VLAN is disabled Format disable igmp_snooping multicast_vlan Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable IGMP snooping multicast VLAN DGS 3620 28SC admin disable igmp_snooping multicast_vlan Command disable igmp_snooping multicast_vlan Success DGS 3620 28SC admin 44 12 sho...

Page 563: ...ed Member Ports Source Ports 3 Untagged Source Ports Status Disabled Replace Source IP 0 0 0 0 Remap Priority None Total Entries 1 DGS 3620 28SC admin 44 13 config igmp_snooping multicast_vlan forward_unmatched Description This command is used to configure the forwarding mode for IGMP snooping multicast VLAN unmatched packets When the switch receives an IGMP snooping packet it will match the packe...

Page 564: ...will check for group matching with multicast VLAN profiles of which the ingress port belongs to If there is a match the result is in profile and the matching multicast VLAN will be set as a packet VLAN If this function is disabled the Switch will do VID checking and afterwards if the group does not match the current profile binding the Switch will drop this packet Format config igmp_snooping multi...

Page 565: ...xStack DGS 3620 Series Layer 3 Managed Stackable Gigabit Switch CLI Reference Guide 560 ...

Page 566: ...vmrp pim Parameters ipif Optional Specifies the IP interface name used ipif_name 12 Enter the IP interface name used here This name can be up to 12 characters long protocol Optional Specifies which kind of routing protocol interface table will be displayed inactive Specifies that the protocol display will be inactive dvmrp Specifies that the DVMRP protocol will be displayed pim Specifies that the ...

Page 567: ...5 2 show ipmc cache Description This command is used to display the IP multicast forwarding cache Format show ipmc cache group group ipaddress network_address Parameters group Optional Specifies the multicast group group Enter the multicast group used here ipaddress Optional Specifies the IP address used network_address Enter the IP address used here If no parameter is specified the system will di...

Page 568: ...c cache Command show ipmc cache IP Multicast Forwarding Table Multicast Source Upstream Expire Routing Group Address Netmask Neighbor Time Protocol 224 1 1 1 10 48 74 121 8 10 48 75 63 30 DVMRP 224 1 1 1 20 48 74 25 8 20 48 75 25 20 PIM DM 224 1 2 3 10 48 75 3 8 10 48 76 6 30 DVMRP Total Entries 3 DGS 3620 28SC admin ...

Page 569: ...path list_name 16 community_list list_name 16 exact ip next_hop address prefix_list list_name 16 metric uint 0 4294967294 route_type internal external type_1 type_2 interface ipif_name 12 route_source list_name 16 set add delete next_hop ipaddr peer_address metric uint 0 4294967294 local_preference uint 0 4294967295 weight value 0 65535 as_path aspath_list community community_set community_set 80 ...

Page 570: ...length or a prefix range The prefix list is processed using an exact match when neither the ge nor le keyword is entered If only the ge value is entered the range is the value entered for the ge ge length argument to a full 32 bit length If only the le value is entered the range is from the value entered for the network length argument to the le le length argument If both the ge ge length and le l...

Page 571: ...be cleared Restrictions Only Administrator Operator and Power User level users can issue this command Example The following example configures a prefix list 1 to permit routes from the 10 0 0 0 8 network that have a mask length that is less than or equal to 24 bits DGS 3620 28SC admin config ip prefix_list 1 add 10 0 0 0 8 le 24 permit Command config ip prefix_list 1 add 10 0 0 0 8 le 24 permit Su...

Page 572: ...meters list_name 16 Optional Enter the prefix list name that will be displayed here This name must be 16 characters long Restrictions None Example This example shows an IP prefix list named list1 DGS 3620 28SC admin show ip prefix_list list1 Command show ip prefix_list list1 IP Prefix list list1 Description Total Rule Number 1 sequence 5 permit 10 0 0 0 8 le 24 DGS 3620 28SC admin 46 5 create ip s...

Page 573: ...re an access list to add or delete an entry Format config ip standard access_list list_name 16 add delete network_address deny permit Parameters list_name 16 Enter the name of the access list used here This name can be up to 16 characters long add Specifies to add a network address in the access list delete Specifies to delete a network address from the access list network_address Specifies the ne...

Page 574: ...rs list_name Specifies the name of the access list used list_name 16 Enter the name of the access list used here This name can be up to 16 characters long all Specifies that all the access list will be deleted Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete an access list with the name List1 DGS 3620 28SC admin delete ip standard access_...

Page 575: ...lear ip prefix_list counter Description This command is used to clear prefix list hit counters The hit count is a value indicating the number of matches to a specific prefix list entry Format clear ip prefix_list counter list_name 16 network_address all Parameters list_name 16 Enter the name of the prefix list from which the hit count is to be cleared This name can be up to 16 characters long netw...

Page 576: ... map named map1 DGS 3620 28SC admin create route_map map1 Command create route_map map1 Success DGS 3620 28SC admin 46 11 config route_map Description This command is used to configure the route map A route map can have multiple rule entries each with a different sequence number When creating a route map a sequence ID of 10 will be added to the route map If the sequence number is not specified it ...

Page 577: ...e 16 Enter the AS path name used here This name can be up to 16 characters long community_list Specifies to match the community of the route against the community string list_name 16 Enter the community list name used here This name can be up to 16 characters long exact Optional Specifies that all of the communities and only those communities specified must be present ip Specifies to match the rou...

Page 578: ... can be up to 80 characters long internet Specifies that routes with this community will be sent to all peers either internal or external no_export Specifies that routes with this community will be sent to peers in the same AS or in other sub autonomous systems within a confederation but will not be sent to an external BGP eBGP peer no_advertise Specifies that routes with this community will not b...

Page 579: ...ig route_map map1 sequence 10 set add metric 50 Success DGS 3620 28SC admin config route_map map1 sequence 10 set add dampening 15 750 2000 60 15 Command config route_map map1 sequence 10 set add dampening 15 750 2000 60 15 Success DGS 3620 28SC admin 46 12 delete route_map Description This command is used to delete a route map configuration Format delete route_map map_name map_name 16 all_seqence...

Page 580: ...how route_map Description This command is used to display the route map configuration Format show route_map map_name 16 Parameters map_name 16 Enter the route map name used here This name can be up to 16 characters long Restrictions None Example To show the route map named map1 DGS 3620 28SC admin show route_map map1 Command show route_map map1 route_map map1 sequence 10 Permit Match clauses acces...

Page 581: ... ipv6route redistribute dst ospfv3 src local static ripng mettype 1 2 metric value 1 16777214 delete ipv6route redistribute dst ospfv3 src local static ripng 47 1 create iproute Description This command is used to create an IP route entry in the Switch s IP routing table Primary and backup are mutually exclusive Users can select only one when creating one new route If a user sets neither of these ...

Page 582: ... 28SC admin 47 2 delete iproute Description This command is used to delete an IP route entry from the Switch s IP routing table Format delete iproute default network_address ipaddr null0 ip_tunnel tunnel_name 12 Parameters default Specifies to delete a default IP route entry network_address The IP address and netmask of the IP interface that is the destination of the route Specifies the address an...

Page 583: ...fix matched route will be displayed static Optional Specifies to display only static routes One static route may be active or inactive Note Active or inactive means the device detected a physical link failure link down rip Optional Specifies to display only RIP routes ospf Optional Specifies to display only OSPF routes bgp Optional Specifies to display only BGP routes EI Mode Only Parameter hardwa...

Page 584: ...oute as the primary route to the destination backup Optional Specifies the route as the backup route to the destination If the route is not specified as the primary route or the backup route then it will be auto assigned by the system The first created is the primary the second created is the backup ip_tunnel Specifies the IPv6 tunnel name used EI Mode Only Parameter tunnel_name 12 Enter the IPv6 ...

Page 585: ...ator and Power User level users can issue this command Example To delete an IPv6 static route DGS 3620 28SC admin delete ipv6route default System FEC0 5 Command delete ipv6route default System FEC0 5 Success DGS 3620 28SC admin 47 6 show ipv6route Description This command is used to display the Switch s current IPv6 routing table Format show ipv6route ipv6networkaddr ipv6addr static ripng ospfv3 h...

Page 586: ... DGS 3620 28SC admin 47 7 enable ecmp ospf Description This command is used to activate the OSPF ECMP function Format enable ecmp ospf Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the OSPF ECMP function DGS 3620 28SC admin enable ecmp ospf Command enable ecmp ospf Success DGS 3620 28SC admin 47 8 disable ecmp ospf Desc...

Page 587: ...Specifies that the ECMP algorithm will include the lower 5 bits of the source IP This attribution is mutually exclusive with crc_low and crc_high If it is set crc_low and crc_high will be excluded It is not set by default crc_low Optional Specifies that the ECMP algorithm will include the lower 5 bits of the CRC This attribution is mutually exclusive with crc_high and ip_source If it is set crc_hi...

Page 588: ...he ECMP related settings Format show ecmp algorithm Parameters None Restrictions None Example To show current ECMP related settings DGS 3620 28SC admin show ecmp algorithm Command show ecmp algorithm ECMP for OSPF Enabled ECMP Load Balance Algorithm Destination IP used Source IP not used CRC_Low used CRC_High not used TCP_UDP_Port not used DGS 3620 28SC admin 47 11 create ipv6route redistribute ds...

Page 589: ...mple To create RIPng route redistribution DGS 3620 28SC admin create ipv6route redistribute dst ripng src local Command create ipv6route redistribute dst ripng src local Success DGS 3620 28SC admin 47 12 config ipv6route redistribute dst ripng src Description This command is used to configure the metric to be associated with the redistributed routes imported from a specified protocol to RIPng prot...

Page 590: ...nd is used to remove RIPng route redistribution to stop importing routes from other routing domain into RIPng domain Format delete ipv6route redistribute dst ripng src local static ospfv3 Parameters local Specifies not to redistribute local routes into RIPng static Specifies not to redistribute static routes into RIPng ospfv3 Specifies not to redistribute OSPFv3 routes into RIPng Restrictions Only...

Page 591: ... other routing protocols into OSPFv3 by adding the destination s interface cost to the metric entered in the Metric field 2 Specifies to use the metric entered in the Metric field without change The default value is type 2 metric Optional Specifies the metric for the redistributed routes value 1 16777214 Enter the metric for the redistributed routes This value must be between 1 and 16777214 The de...

Page 592: ...tional Specifies the metric for the redistributed routes value 1 16777214 Enter the metric for the redistributed routes This value must be between 1 and 16777214 The default value is 20 Restrictions Only Administrator Operator and Power User level users can issue this command EI Mode Only Command Example To change the metric of OSPFv3 route redistribution DGS 3620 28SC admin config ipv6route redis...

Page 593: ...outes into OSPFv3 Restrictions Only Administrator Operator and Power User level users can issue this command EI Mode Only Command Example To remove OSPFv3 route redistribution DGS 3620 28SC admin delete ipv6route redistribute dst ospfv3 src static Command delete ipv6route redistribute dst ospfv3 src static Success DGS 3620 28SC admin ...

Page 594: ...l_name 12 disable ip_tunnel tunnel_name 12 config ip_tunnel gre tunnel_name 12 ipaddress network_address ipv6address ipv6networkaddr source ipaddr ipv6addr destination ipaddr ipv6addr 1 48 1 create ip_tunnel Description This command is used to create an IP tunnel interface Format create ip_tunnel tunnel_name 12 Parameters tunnel_name 12 Enter the IP tunnel interface name used here This name can be...

Page 595: ... 3 config ip_tunnel manual Description This command is used to configure an IPv6 manual tunnel If this tunnel has previously been configured in another mode the tunnel s information will still exist in the database However whether the tunnel s former information is invalid or not will depend on the current mode IPv6 Manual tunnels are simple point to point tunnels that can be used within a site or...

Page 596: ..._tunnel manual tn2 source 1 0 0 1 destination 1 0 0 2 Command config ip_tunnel manual tn2 source 1 0 0 1 destination 1 0 0 2 Success DGS 3620 28SC admin config ip_tunnel manual tn2 ipv6address 2001 1 64 Command config ip_tunnel manual tn2 ipv6address 2001 1 64 Success DGS 3620 28SC admin 48 4 config ip_tunnel 6to4 Description This command is used to configure an existing IPv6 tunnel as an IPv6 6to...

Page 597: ...a 6to4 address ipaddr Enter the IPv4 source address used here Restrictions Only Administrator Operator and Power User level users can issue this command EI Mode Only Command Example To configure an IPv6 6to4 tunnel Tunnel name is tn2 Tunnel source IPv4 address is 10 0 0 1 Tunnel IPv6 address is 2002 a00 1 1 64 DGS 3620 28SC admin config ip_tunnel 6to4 tn2 source 10 0 0 1 Command config ip_tunnel 6...

Page 598: ... as the source address for packets in the IPv6 tunnel The tunnel destination IPv4 address is extracted from the last 32 bits of the remote tunnel endpoint s IPv6 ISATAP address ipaddr Enter the source IPv4 address used here Restrictions Only Administrator Operator and Power User level users can issue this command EI Mode Only Command Example To configure an IPv6 ISATAP tunnel Tunnel name is tn2 Tu...

Page 599: ... tn2 Interface Admin State Enabled Tunnel Mode Manual IPv6 Address 2000 1 64 Tunnel Source 1 0 0 1 Tunnel Destination 1 0 0 2 DGS 3620 28SC admin 48 7 enable ip_tunnel Description This command is used to enable a single specified IP tunnel or all IP tunnels on the Switch Format enable ip_tunnel tunnel_name 12 Parameters tunnel_name 12 Optional Enter the IP tunnel interface name used here This name...

Page 600: ...e is tn2 DGS 3620 28SC admin disable ip_tunnel tn2 Command disable ip_tunnel tn2 Success DGS 3620 28SC admin 48 9 config ip_tunnel gre Description This command is used to configure an existing tunnel as a GRE tunnel IPv6 IPv4 in IPv4 or IPv6 IPv4 in IPv6 on the switch If this tunnel has been configured in another mode before the tunnel s information will still exist in the database However whether...

Page 601: ...h the tunnel source or destination IPv4 address ipv6networkaddr Enter the IPv6 network address used here source Optional Specifies the source IPv4 or IPv6 address of the GRE tunnel interface It is used as the source address for packets in the tunnel The address type that will be used depends on the Delivery Protocol The address type used at both the source and destination must be consistent otherw...

Page 602: ... 0 1 8 IPv6 Address 2001 1 64 Tunnel Source 1 0 0 1 Tunnel Destination 1 0 0 2 DGS 3620 28SC admin To configure a GRE tunnel tunnel with the name tn2 the delivery protocol IPv6 tunnel source the IPv6 address 2000 1 the tunnel destination IPv6 address 2000 2 the GRE tunnel interface s IPv6 address 3001 1 64 the GRE tunnel interface s IPv4 address 3 0 0 1 8 DGS 3620 28SC admin config ip_tunnel gre t...

Page 603: ...I Reference Guide 598 DGS 3620 28SC admin show ip_tunnel tn2 Command show ip_tunnel tn2 Tunnel Interface tn2 Interface Admin State Enabled Tunnel Mode GRE Ipv4 Address 3 0 0 1 8 IPv6 Address 3001 1 64 Tunnel Source 2000 1 Tunnel Destination 2000 2 DGS 3620 28SC admin ...

Page 604: ...v_interval sec 4 1800 1 config ipv6 nd ra prefix_option ipif ipif_name 12 ipv6networkaddr preferred_life_time sec 0 4294967295 valid_life_time sec 0 4294967295 on_link_flag enable disable autonomous_flag enable disable 1 show ipv6 nd ipif ipif_name 12 49 1 create ipv6 neighbor_cache ipif Description This command is used to add a static neighbor on an IPv6 interface Format create ipv6 neighbor_cach...

Page 605: ...ecifies all IPv6 entries including static and dynamic to be deleted Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete the neighbor cache entry for IPv6 address 3ffc 1 on the IP interface System DGS 3620 28SC admin delete ipv6 neighbor_cache ipif System 3ffc 1 Command delete ipv6 neighbor_cache ipif System 3FFC 1 Success DGS 3620 28SC admin...

Page 606: ... System VID 1 Total Entries 1 DGS 3620 28SC admin 49 4 config ipv6 nd ns ipif Description This command is used to configure the NS retransmit time of a specified interface Format config ipv6 nd ns ipif ipif_name 12 retrans_time millisecond 0 4294967295 Parameters ipif_name 12 Enter the name of the interface The maximum length is 12 characters retrans_time Specifies the neighbor solicitation s retr...

Page 607: ... Specifies the amount of time between retransmissions of router advertisement message in millisecond and the router advertisement packet will take it to host millisecond 0 4294967295 Enter the time between 0 and 4294967295 milliseconds hop_limit Specifies the default value of the hop limit field in the IPv6 header for packets sent by hosts that receive this RA message value 0 255 Enter the value b...

Page 608: ...erface The maximum length is 12 characters ipv6networkaddr Enter the IPv6 network address preferred_life_time Specifies the number in seconds that an address based on the specified prefix using the stateless address configuration remains in preferred state sec 0 4294967295 Enter the time between 0 and 4294967295 seconds For an infinite valid lifetime the value can be set to 4294967295 valid_life_t...

Page 609: ... Command config ipv6 nd ra prefix_option ipif ip1 3ffe 501 ffff 100 64 preferred_life_time 1000 Success DGS 3620 28SC admin 49 7 show ipv6 nd Description This command is used to display IPv6 Neighbor Discover related configuration Format show ipv6 nd ipif ipif_name 12 Parameters ipif Optional Specify the interface name ipif_name 12 Enter the interface name The maximum length is 12 characters Note ...

Page 610: ...t Disabled RA Max Router AdvInterval 600 sec RA Min Router AdvInterval 198 sec RA Router Life Time 1800 sec RA Reachable Time 1200000 ms RA Retransmit Time 400 ms RA Managed Flag Disabled RA Other Configure Flag Disabled Prefix Preferred Valid OnLink Autonomous 1000 A111 B111 C111 64 604800 2592000 Enabled Enabled DGS 3620 28SC admin ...

Page 611: ..._mac all ipaddress ipaddr ipv6address ipv6addr mac_address macaddr mac_address macaddr enable address_binding trap_log disable address_binding trap_log enable address_binding dhcp_snoop ipv6 all disable address_binding dhcp_snoop ipv6 all clear address_binding dhcp_snoop binding_entry ports portlist all ipv6 all show address_binding dhcp_snoop max_entry ports portlist show address_binding dhcp_sno...

Page 612: ...ts Restrictions Only Administrator Operator and Power User level users can issue this command Example To create address binding on the switch DGS 3620 28SC admin create address_binding ip_mac ipaddress 10 1 1 1 mac_address 00 00 00 00 00 11 Command create address_binding ip_mac ipaddress 10 1 1 1 mac_address 00 00 00 00 00 11 Success DGS 3620 28SC admin 50 2 create address_binding ip_mac ipv6addre...

Page 613: ... MAC address match the binding entries The packets will be dropped if they do not match For this function the switch can operate in ARP Inspection and IP Inspection ARP Inspection All ARP packets will be checked while ARP Inspection is enabled The legal ARP packets will be forwarded while the illegal ARP packets will be dropped IP Inspection All IP packets will be checked while IP Inspection is en...

Page 614: ...0 0 0 is not configured in the binding list when it is set to enabled the ARP packet with this source IP address 0 0 0 0 will be allowed disable When set to disable this option does not affect the IP MAC port binding IP Inspection forward_dhcppkt Optional By default the DHCP packets with broadcast DA will be flooded enable This setting is effective when DHCP snooping is enabled because the DHCP pa...

Page 615: ...s 00 00 00 00 00 11 Command config address_binding ip_mac ipaddress 10 1 1 1 mac_address 00 00 00 00 00 11 Success DGS 3620 28SC admin 50 5 config address_binding ip_mac ipv6address Description This command is used to update an address binding entry using IPv6 Format config address_binding ip_mac ipv6address ipv6addr mac_address macaddr ports portlist all Parameters ipv6address Specifies the IPv6 ...

Page 616: ... delete address_binding blocked all vlan_name vlan_name mac_address macaddr Parameters all Specifies that all the blocked MAC addresses will be used vlan_name Specifies the name of the VLAN that the blocked MAC address belongs to vlan_name Enter the VLAN name used here mac_address Specifies the MAC address of the blocked MAC address macaddr Enter the MAC address used here Restrictions Only Adminis...

Page 617: ...of the IMPB entry here Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete an IMPB entry that binds the IP address 10 1 1 1 1 to the MAC address 00 00 00 00 00 11 DGS 3620 28SC admin delete address_binding ip_mac ipaddress 10 1 1 1 mac_address 00 00 00 00 00 11 Command delete address_binding ip_mac ipaddress 10 1 1 1 mac_address 00 00 00 00 ...

Page 618: ... 3620 28SC admin show address_binding ports 1 1 1 10 Command show address_binding ports 1 1 1 10 ARP ARP Inspection IP IP Inspection ND ND Inspection Prot Protocol Port ARP IP ND Prot Zero IP DHCP Packet Stop Learning Threshold Mode 1 1 Disabled Disabled Disabled All Not Allow Forward 500 Normal 1 2 Disabled Disabled Disabled All Not Allow Forward 500 Normal 1 3 Disabled Disabled Disabled All Not ...

Page 619: ...address Specifies the MAC address macaddr Enter the MAC address here Restrictions None Example To show the IMPB entries that are currently blocked DGS 3620 28SC admin show address_binding blocked all Command show address_binding blocked all VID VLAN Name MAC Address Port 1 default 00 01 02 03 29 38 7 1 default 00 0C 6E 5C 67 F4 7 1 default 00 0C F8 20 90 01 7 1 default 00 0E 35 C7 FA 3F 7 1 defaul...

Page 620: ...ies the IPv6 address ipv6addr Enter the IPv6 address here mac_address Optional Specify the MAC address macaddr Enter the MAC address here mac_address Specifies the MAC address macaddr Enter the MAC address here Restrictions None Example To display all the IP MAC address binding information DGS 3620 28SC admin show address_binding ip_mac all Command show address_binding ip_mac all M Mode D DHCP N N...

Page 621: ...s_binding trap_log Description This command is used to send trap and log messages when an address binding module detects illegal IP and MAC addresses Format enable address_binding trap_log Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the address binding trap and log DGS 3620 28SC admin enable address_binding trap_log C...

Page 622: ... Each entry is associated with a lease time When the lease time expires the expired entry will be removed from this port The auto learned binding entry can be moved from one port to another port if the DHCP snooping function has learned that the MAC address has moved to a different port Consider the case in which a binding entry learned by DHCP snooping conflicts with the statically configured ent...

Page 623: ...e address_binding dhcp_snoop Success DGS 3620 28SC admin 50 14 disable address_binding dhcp_snoop Description This command is used to disable address binding DHCP snooping When DHCP snooping is disabled all of the auto learned binding entries will be removed Format disable address_binding dhcp_snoop ipv6 all Parameters ipv6 Optional Specifies that the address used is an IPv6 address all Specifies ...

Page 624: ...d is an IPv6 address all Specifies that all IPv6 addresses will be used Restrictions Only Administrator Operator and Power User level users can issue this command Example To clear the address binding entries for ports 1 to 3 DGS 3620 28SC admin clear address_binding dhcp_snoop binding_entry ports 1 3 Command clear address_binding dhcp_snoop binding_entry ports 1 3 Success DGS 3620 28SC admin 50 16...

Page 625: ...1 10 Command show address_binding dhcp_snoop max_entry ports 1 10 Port Max Entry Max IPv6 Entry 1 No Limit No Limit 2 10 No Limit 3 20 No Limit 4 No Limit No Limit 5 No Limit No Limit 6 No Limit No Limit 7 No Limit No Limit 8 No Limit No Limit 9 No Limit No Limit 10 No Limit No Limit DGS 3620 28SC admin 50 17 show address_binding dhcp_snoop binding_entry Description This command is used to display...

Page 626: ... command is used to specifiy the maximum number of entries which can be learned by the specified ports By default the per port maximum entry is no limit Format config address_binding dhcp_snoop max_entry ports portlist all limit value 1 50 no_limit ipv6 Parameters portlist Enter the list of ports to configure maximum number of entries all Specifies all the ports to configure maximum number of entr...

Page 627: ...ameters portlist Enter the list of ports to recover learning all Specifies to recover learning for all ports Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure ports 1 to 3 to recover learning DGS 3620 28SC admin config address_binding recover_learning ports 1 3 Command config address_binding recover_learning ports 1 3 Success DGS 3620 2...

Page 628: ...ess_binding nd_snoop Description This command is used to disable ND snooping on the Switch Format disable address_binding nd_snoop Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable the DHCPv6 snooping function on the Switch DGS 3620 28SC admin disable address_binding nd_snoop Command disable address_binding nd_snoop Succes...

Page 629: ...aximum number of learned entries is unlimited Restrictions Only Administrator Operator and Power User level users can issue this command Example To specify that a maximum of 10 entries can be learned by ND snooping on ports 1 3 DGS 3620 28SC admin config address_binding nd_snoop ports 1 3 max_entry 10 Command config address_binding nd_snoop ports 1 3 max_entry 10 Success DGS 3620 28SC admin 50 23 ...

Page 630: ...1 5 Command show address_binding nd_snoop ports 1 1 1 5 Port Max Entry 1 1 No Limit 1 2 No Limit 1 3 No Limit 1 4 No Limit 1 5 No Limit DGS 3620 28SC admin 50 24 show address_binding nd_snoop binding_entry Description This command is used to show the ND snooping binding entries on the Switch Format show address_binding nd_snoop binding_entry port port Parameters port Optional Specifies a port used...

Page 631: ...ntries on specified ports Format clear address_binding nd_snoop binding_entry ports portlist all Parameters ports Specifies the list of ports that you would like to clear the ND snoop learned entry portlist Enter the list of port used here all Clear all ND snooping learned entries Restrictions Only Administrator Operator and Power User level users can issue this command Example To clear ND snoopin...

Page 632: ...r and Power User level users can issue this command Example To enable the auto save option DGS 3620 28SC admin config address_binding dhcp_snoop_entry file save_dhcp cfg autosave enable Command config address_binding dhcp_snoop_entry filename save_dhcp cfg autosave enable Success DGS 3620 28SC admin 50 27 enable address_binding roaming Description This command is used to enable IMPB roaming When I...

Page 633: ...C address learned at port 1 will not have chance to change to port 2 until the IMPB entry aged out Note For an inactive entry whether the roaming state is enabled or not it detects whether a new ARP or IP packet belongs to the same IP address from other ports The inactive entry will change the port and set state to active Format disable address_binding roaming Parameters None Restrictions Only Adm...

Page 634: ...g binding table DGS 3620 28SC admin download address_binding snoop_entry_fromTFTP 10 90 90 6 filename impb cfg Command download address_binding snoop_entry_fromTFTP 10 90 90 6 filename impb cfg Connecting to server Done Download DHCP Snooping Entry Done DGS 3620 28SC admin 50 30 upload address_binding snoop_entry_toTFTP Description This command is used to upload DHCPv4 Snooping binding entries by ...

Page 635: ... upload address_binding snoop_entry_toTFTP 10 90 90 6 filename impb cfg Connecting to server Done Upload DHCP Snooping Entry Done DGS 3620 28SC admin 50 31 save dhcp_snoop_entry Description This command is used to save the DHCPv4 Snooping binding entries Format save dhcp_snoop_entry Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example T...

Page 636: ...authenticating_host value 0 100 aging_time infinite min 1 1440 idle_time infinite min 1 1440 block_time sec 0 300 1 config jwac radius_protocol local eap_md5 pap chap ms_chap ms_chapv2 create jwac user username 15 vlan vlanid 1 4094 config jwac user username 15 vlan vlanid 1 4094 delete jwac user username 15 all_users show jwac user show jwac show jwac auth_state ports portlist show jwac update_se...

Page 637: ...ership change by JWAC after a host passes authentication The RADIUS server will share the server configuration defined by the 802 1X command set Format enable jwac Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable JWAC DGS 3620 28SC admin enable jwac Command enable jwac Success DGS 3620 28SC admin 51 2 disable jwac Descript...

Page 638: ...the unauthenticated host will be redirected to the jwac_login_page on the Switch to finish authentication Format enable jwac redirect Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable JWAC redirect DGS 3620 28SC admin enable jwac redirect Command enable jwac redirect Success DGS 3620 28SC admin 51 4 disable jwac redirect De...

Page 639: ...rcible_logout Description This command is used to enable JWAC forcible logout When enabled a Ping packet from an authenticated host to the JWAC Switch with TTL 1 will be regarded as a logout request and the host will be moved back to unauthenticated state Format enable jwac forcible_logout Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Ex...

Page 640: ...nd Example To disable JWAC forcible logout DGS 3620 28SC admin disable jwac forcible_logout Command disable jwac forcible_logout Success DGS 3620 28SC admin 51 7 enable jwac udp_filtering Description This command is used to enable the JWAC UDP filtering function When UDP filtering is enabled all UDP and ICMP packets except DHCP and DNS packets from unauthenticated hosts will be dropped Format enab...

Page 641: ...an issue this command Example To disable JWAC UDP filtering DGS 3620 28SC admin disable jwac udp_filtering Command disable jwac udp_filtering Success DGS 3620 28SC admin 51 9 enable jwac quarantine_server_monitor Description This command is used to enable the JWAC quarantine server monitor When enabled the JWAC switch will monitor the quarantine server to ensure the server is okay If the switch de...

Page 642: ...jwac quarantine_server_monitor Success DGS 3620 28SC admin 51 10 disable jwac quarantine_server_monitor Description This command is used to disable JWAC quarantine server monitoring Format disable jwac quarantine_server_monitor Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable JWAC quarantine server monitoring DGS 3620 28S...

Page 643: ...3620 28SC admin config jwac quarantine_server_error_timeout 60 Command config jwac quarantine_server_error_timeout 60 Success DGS 3620 28SC admin 51 12 config jwac Description This command is used to configure the quarantine server URL If the redirection is enabled and the redirection destination is a quarantine server when a HTTP request from an unauthenticated host which is not headed to a quara...

Page 644: ...redirect Description This command is used to configure redirect destination and delay time before an unauthenticated host is redirected to the quarantine server or the JWAC login web page The unit of delay time is seconds 0 means no delaying the redirect Format config jwac redirect destination quarantine_server jwac_login_page delay_time sec 0 10 1 Parameters destination Specifies the destination ...

Page 645: ...ct responses This IP does not respond to ARP requests or ICMP packets Format config jwac virtual_ip ipaddr url string 128 clear Parameters ipaddr Enter the IP address of the virtual IP url Optional Specify the URL of the virtual IP string 128 Enter the URL of the virtual IP clear Clear the URL of the virtual IP Restrictions Only Administrator Operator and Power User level users can issue this comm...

Page 646: ...te network_address Enter the network address here tcp_port Optional Specify a TCP port number between 1 and 65535 port_number 1 65535 Enter a TCP port value between 1 and 65535 udp_port Optional Specify a UDP port number between 1 and 65535 port_number 1 65535 Enter a UDP port value between 1 and 65535 Restrictions Only Administrator Operator and Power User level users can issue this command Examp...

Page 647: ...1440 block_time sec 0 300 1 Parameters portlist Enter a port range for setting the JWAC state all Specifies to configure all switch ports JWAC state state Specifies the port state of JWAC enable Specifies to enable the JWAC port state disable Specifies to disable the JWAC port state max_authenticating_host Specifies the maximum number of hosts that can process authentication on each port at the sa...

Page 648: ...lete RADIUS authentication Format config jwac radius_protocol local eap_md5 pap chap ms_chap ms_chapv2 Parameters local Specifies the JWAC switch uses the local user DB to complete the authentication eap_md5 Specifies the JWAC switch uses EAP MD5 to communicate with the RADIUS server pap Specifies the JWAC switch uses PAP to communicate with the RADIUS server chap Specifies the JWAC switch uses CH...

Page 649: ...er the target VLAN ID for the authenticated host which uses this user account to pass authentication The VLAN ID value must be between 1 and 4094 Restrictions Only Administrator Operator and Power User level users can issue this command Example To create a JWAC user in the local DB DGS 3620 28SC admin create jwac user 112233 Command create jwac user 112233 Enter a case sensitive new password Enter...

Page 650: ...ase sensitive new password Enter the new password again for confirmation Success DGS 3620 28SC admin 51 21 delete jwac Description This command is used to delete JWAC users from the local database Format delete jwac user username 15 all_users Parameters user Specifies the user name to be deleted username 15 Enter the user name to be deleted The user name can be up to 15 characters long all_users S...

Page 651: ...tabase Format show jwac user Parameters None Restrictions None Example To display the current JWAC local users DGS 3620 28SC admin show jwac user Command show jwac user Current Accounts Username Password VID 123 w 1 rer Total Entries 2 DGS 3620 28SC admin 51 23 show jwac Description This command is used to display the JWAC configuration settings Format show jwac Parameters None ...

Page 652: ...ct Destination Quarantine Server Quarantine Server Q Server Monitor Disabled Q Server Error Timeout 30 Seconds RADIUS Auth Protocol PAP RADIUS Authorization Enabled Local Authorization Enabled Function Version 2 11 DGS 3620 28SC admin 51 24 show jwac auth_state ports Description This command is used to display information for JWAC client hosts Format show jwac auth_state ports portlist Parameters ...

Page 653: ...ID Pri Time IP User Name 1 00 00 00 00 00 42 4 1 00 00 12 34 56 02 21 2 00 00 DF 12 E5 6A 24 2 00 03 38 10 28 01 13 Total Authenticating Hosts 4 Total Authenticated Hosts 0 Total Blocked Hosts 0 DGS 3620 28SC admin 51 25 show jwac update_server Description This command is used to display the JWAC update server Format show jwac update_server Parameters None Restrictions None Example To display the ...

Page 654: ...on of JWAC Restrictions None Example To display JWAC ports 1 to 4 DGS 3620 28SC admin show jwac ports 1 4 Command show jwac ports 1 4 Port State Aging Time Idle Time Block Time Max min min sec Hosts 1 Disabled 1440 Infinite 60 100 2 Disabled 1440 Infinite 60 100 3 Disabled 1440 Infinite 60 100 4 Disabled 1440 Infinite 60 100 DGS 3620 28SC admin 51 27 clear jwac auth_state Description This command ...

Page 655: ...issue this command Example To delete authentication entries DGS 3620 28SC admin clear jwac auth_state ports all blocked Command clear jwac auth_state ports all blocked Success DGS 3620 28SC admin 51 28 config jwac authenticate_page Description This command is used by administrators to decide which authenticate page to use Format config jwac authenticate_page japanese english Parameters japanese Sp...

Page 656: ...620 28SC admin show jwac authenticate_page Command show jwac authenticate_page Current Page English Version English Page Element Page Title Login Window Title Authentication Login User Name Title User Name Password Title Password Logout Window Title Logout from the network Notification Japanese Page Element Page Title Login Window Title 社内 LAN 認証ログイン User Name Title ユーザ ID Password Title パスワード CTR...

Page 657: ...long password_title Specifies the password title of the authenticate page desc 16 Enter the password title of the authenticate page The password title description can be up to 16 characters long logout_window_title Specifies the logout windown title mapping of the authenticate page desc 32 Enter the logout windown title mapping of the authenticate page The logout window title description can be up...

Page 658: ...thorization network is enabled When the authorization is enabled for JWAC s local the authorized data assigned by the local database will be accepted Format config jwac authorization attributes radius enable disable local enable disable 1 Parameters radius If specified to enable the authorized data assigned by the RADUIS server will be accepted if the global authorization network is enabled The de...

Page 659: ...witch CLI Reference Guide 654 Example To disable the configuration authorized from the local database DGS 3620 28SC admin config jwac authorization attributes local disable Command config jwac authorization attributes local disable Success DGS 3620 28SC admin ...

Page 660: ...able jumbo_frame Description This command is used to enable support of Jumbo Frames Format enable jumbo_frame Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable Jumbo Frames DGS 3620 28SC admin enable jumbo_frame Command enable jumbo_frame DGS 3620 28SC admin 52 2 disable jumbo_frame Description This command is used to disab...

Page 661: ...s portlist all state enable disable Parameters portlist Enter the list of ports used for this configuration here all Specifies that all the ports will be used for this configuration state Specifies the jumbo frame state to be applied to a range of ports specified enable Specifies that the jumbo frame state will be enabled disable Specifies that the jumbo frame state will be disabled Restrictions O...

Page 662: ...frame portlist Parameters portlist Optional Enter the list of ports to be displayed here Restrictions None Example To display Jumbo Frames for port 1 to 5 DGS 3620 28SC admin show jumbo_frame 1 5 Command show jumbo_frame 1 5 Jumbo Frame Global State Disabled Maximum Jumbo Frame Size 1536 Bytes Port Jumbo Frame State 1 Enabled 2 Enabled 3 Enabled 4 Enabled 5 Enabled DGS 3620 28SC admin ...

Page 663: ...e Specifies the mode as passive lacp_timeout Specifies the LACP timeout mode short Specifies that there will be 3 seconds before LACP invalidating received LACPDU information and there will be 1 second between LACP PDU periodic transmissions when using Short Timeouts long Specifies that there will be 90 seconds before LACP invalidating received LACPDU information and there will be 30 seconds betwe...

Page 664: ... portlist Optional Specify a range of ports to be displayed Note If no parameter is specified the system will display current LACP mode for all ports Restrictions None Example To display the current LACP mode for ports 1 to 3 on the switch DGS 3620 28SC admin show lacp_port 1 1 1 3 Command show lacp_port 1 1 1 3 Port Activity LACP Timeout 1 1 Passive Short 1 2 Passive Short 1 3 Passive Short DGS 3...

Page 665: ...C CC is 01 05 5D 00 00 10 and for protocol MAC 01 00 0C CC CC CD is 01 05 5D 00 00 11 When QinQ is enabled an S TAG will be added to the Layer 2 PDU too The S TAG is assigned according QinQ VLAN configuration Format config l2protocol_tunnel ports portlist all type uni tunneled_protocol stp gvrp protocol_mac 01 00 0C CC CC CC 01 00 0C CC CC CD 1 all threshold value 0 65535 nni none Parameters ports...

Page 666: ...rt Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the STP tunneling on ports 1 4 DGS 3620 28SC admin config l2protocol_tunnel ports 1 4 type uni tunneled_protocol stp Command config l2protocol_tunnel ports 1 4 type uni tunneled_protocol stp Success DGS 3620 28SC admin 54 2 show l2protocol_tunnel Description This command is used to sh...

Page 667: ...otocol_tunnel uni UNI Tunneled Threshold Port Protocol packet sec 1 1 STP 10 GVRP 10 01 00 0C CC CC CC 10 1 2 STP 20 GVRP 20 01 00 0C CC CC CC 20 1 3 STP 0 1 4 STP 0 DGS 3620 28SC admin To show Layer 2 protocol tunneling detail information on NNI ports DGS 3620 28SC admin show l2protocol_tunnel nni Command show l2protocol_tunnel nni NNI Protocol Port 1 STP GVRP 01 00 0C CC CC CC 01 00 0C CC CC CD ...

Page 668: ...e the Layer 2 protocol tunneling function DGS 3620 28SC admin enable l2protocol_tunnel Command enable l2protocol_tunnel Success DGS 3620 28SC admin 54 4 disable l2protocol_tunnel Description Used to disable the Layer 2 protocol tunneling function Format disable l2protocol_tunnel Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To di...

Page 669: ...xStack DGS 3620 Series Layer 3 Managed Stackable Gigabit Switch CLI Reference Guide 664 DGS 3620 28SC admin disable l2protocol_tunnel Command disable l2protocol_tunnel Success DGS 3620 28SC admin ...

Page 670: ...nid_list ipv4 ipv6 config max_mcast_group ports portlist vlanid vlanid_list ipv4 ipv6 max_group value 1 1024 infinite action drop replace 1 show max_mcast_group ports portlist vlanid vlanid_list ipv4 ipv6 55 1 create mcast_filter_profile Description This command is used to create a multicast address profile If the IPv4 or IPv6 option is not specified IPv4 is implied Format create mcast_filter_prof...

Page 671: ... profile name 32 The profile name can be up to 32 characters long add Specifies to add a range of multicast IP addresses delete Specifies to delete a range of multicast IP addresses mcast_address_list List of the multicast addresses to be added to or deleted from the profile Either specifiy a single multicast IP address or a range of multicast addresses using a hyphen Restrictions Only Administrat...

Page 672: ...6 multicast IP address or a range of IPv6 multicast addresses using a hyphen Restrictions Only Administrator Operator and Power User level users can issue this command Example To add the IPv6 multicast address range FF0E 100 0 0 20 FF0E 100 0 0 22 to profile ID 3 DGS 3620 28SC admin config mcast_filter_profile ipv6 profile_id 3 add FF0E 100 0 0 20 FF0E 100 0 0 22 Command config mcast_filter_profil...

Page 673: ...ete mcast_filter_profile profile_name MOD Success DGS 3620 28SC admin 55 5 show mcast_filter_profile Description This command is used to display defined multicast address profiles If the IPv4 or IPv6 option is not specified IPv4 is implied Format show mcast_filter_profile ipv4 ipv6 profile_id value 1 60 profile_name name 32 Parameters ipv4 Optional Specify to display an IPv4 multicast profile ipv6...

Page 674: ... value 1 60 profile_name name 32 all access permit deny 1 Parameters ports Specifies a range of ports to configure the multicast address filtering function portlist Enter a range of ports to be configured vlanid Specifies the VLAN ID of the VLAN that the multicast address filtering function will be configured on vlanid_list Enter the VLAN ID of the VLAN that the multicast address filtering functio...

Page 675: ...ticast address range by ports or by VLANs When the function is configured on a port or VLAN it limits the multicast group operated by the IGMP MLD snooping function and layer 3 function If the IPv4 or IPv6 option is not specified IPv4 is implied Format show limited_multicast_addr ports portlist vlanid vlanid_list ipv4 ipv6 Parameters ports Specifies a range of ports to show the limited multicast a...

Page 676: ... 34 224 19 162 200 DGS 3620 28SC admin 55 8 config max_mcast_group Description This command is used to configure the maximum number of multicast groups a port or VLAN can join If the IPv4 or IPv6 option is not specified IPv4 is implied When the joined groups for a port or a VLAN have reached the maximum number the newly learned group will be dropped if the action is specified as drop The newly lea...

Page 677: ...ommand Example To configure the maximum number of multicast groups that ports 1 and 3 can join to 100 DGS 3620 28SC admin config max_mcast_group ports 1 3 max_group 100 Command config max_mcast_group ports 1 3 max_group 100 Success DGS 3620 28SC admin 55 9 show max_mcast_group Description This command is used to display the maximum number of multicast groups that a port or VLAN can join If the IPv...

Page 678: ...ackable Gigabit Switch CLI Reference Guide 673 DGS 3620 28SC admin show max_mcast_group ports 1 2 Command show max_mcast_group ports 1 2 Port Max Multicast Group Number Action 1 Infinite Drop 2 Infinite Drop Total Entries 2 DGS 3620 28SC admin ...

Page 679: ...gation group_id Description This command is used to create a link aggregation group Format create link_aggregation group_id value 1 32 type lacp static Parameters value 1 32 Enter the group ID The group number identifies each of the groups The switch allows up to 32 link aggregation groups to be created type Optional Specify the group type belongs to static or LACP If type is not specified the def...

Page 680: ...ggregation group that was created with the create link_aggregation command above Format config link_aggregation group_id value 1 32 master_port port ports portlist state enable disable trap enable disable 1 Parameters value 1 32 Enter the group ID The group number identifies each of the groups The switch allows up to 32 link aggregation groups to be configured master_port Specifies which port by p...

Page 681: ...when selecting the egress port for transmitting load sharing data If the load sharing algorithm is based on IP information and the packet is a non IP packet it will be based on the source MAC If the load sharing algorithm is based on L4 information and the packet is not a TCP UDP packet 1 If the packet is a non IP packet it will be based on the source MAC 2 If the packet is an IP packet it will us...

Page 682: ...orithm mac_source_dest Success DGS 3620 28SC admin 56 5 show link_aggregation Description This command is used to display the current link aggregation configuration of the switch Format show link_aggregation group_id value 1 32 algorithm Parameters group_id Optional Specify the group ID The group number identifies each of the groups value 1 32 The switch supports up to 32 link aggregation groups a...

Page 683: ...p Enabled Total Entries 1 DGS 3620 28SC admin To display the current link aggregation configuration when link aggregation is disabled DGS 3620 28SC admin show link_aggregation Command show link_aggregation Link Aggregation Algorithm IP Source Group ID 1 Type LACP Master Port 1 5 Member Port 1 5 1 8 Active Port Status Disabled Flooding Port Trap Enabled Total Entries 1 DGS 3620 28SC admin ...

Page 684: ...lue 1 10 config lldp_med log state enable disable config lldp_med notification topo_change ports portlist all state enable disable config lldp_med ports portlist all med_transmit_capabilities all capabilities network_policy power_pse inventory 1 state enable disable show lldp_med ports portlist show lldp_med show lldp_med local_ports portlist show lldp_med remote_ports portlist show lldp local_por...

Page 685: ...nd receiving of LLDP advertisement packets Format disable lldp Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable LLDP DGS 3620 28SC admin disable lldp Command disable lldp Success DGS 3620 28SC admin 57 3 config lldp Description This command is used to configure LLDP timer values The message TX interval controls how often ...

Page 686: ... Specifies the message TX interval between consecutive transmissions of LLDP advertisements on any given port sec 5 32768 The range is from 5 to 32768 seconds The default setting is 30 seconds message_tx_hold_multiplier Specifies the message TX hold multiplier int 2 10 Enter the range is from 2 to 10 The default setting is 4 tx_delay Specifies the TX delay time sec 1 8192 Enter the range is from 1...

Page 687: ...config lldp reinit_delay 5 Success DGS 3620 28SC admin 57 4 show lldp Description This command is used to display LLDP Format show lldp Parameters None Restrictions None Example To display LLDP DGS 3620 28SC admin show lldp Command show lldp LLDP System Information Chassis ID Subtype MAC Address Chassis ID 00 11 22 33 44 55 System Name System Description Gigabit Ethernet Switch System Capabilities...

Page 688: ...forward_message enable disable Parameters enable Enable LLDP forwarding messages disable Disable LLDP forwarding messages Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable LLDP forwarding messages DGS 3620 28SC admin config lldp forward_message enable Command config lldp forward_message enable Success DGS 3620 28SC admin 57 6 config lldp n...

Page 689: ...the specified port For layer 3 devices each managed address can be individually specified The management addresses that are added in the list will be advertised in the LLDP from the specified interface associated with each management address The interface for that management address will be also advertised in the if index form An active LLDP port on the switch always includes the mandatory data in...

Page 690: ... data changes detected on advertisements received from neighbor devices The default notification state is disabled enable Enable the SNMP trap notification of LLDP data changes detected on advertisements received from neighbor devices disable Disable the SNMP trap notification of LLDP data changes detected on advertisements received from neighbor devices admin_status Select the desired administrat...

Page 691: ...ganizationally port and protocol VLAN ID TLV data types from outbound LLDP advertisements dot1_tlv_vlan_name This TLV optional data type indicates whether the corresponding Local System s VLAN name instance will be transmitted on the port If a port is associated with multiple VLANs those enabled VLAN ID will be advertised The default state is disabled vlan Optional Specify a VLAN to be transmitted...

Page 692: ...nk and the aggregated port ID The default state is disabled power_via_mdi Optional This TLV optional data type indicates that LLDP agent should transmit Power via MDI TLV The default state is disabled maximum_frame_size Optional This TLV optional data type indicates that LLDP agent should transmit Maximum frame size TLV The default state is disabled enable Enable the configuration of an individual...

Page 693: ...lude the port and protocol VLAN ID TLV from the outbound LLDP advertisements for all ports DGS 3620 28SC admin config lldp ports all dot1_tlv_protocol_vid vlanid 1 3 enable Command config lldp ports all dot1_tlv_protocol_vid vlanid 1 3 enable Success DGS 3620 28SC admin To exclude the VLAN name TLV from the outbound LLDP advertisements for all ports DGS 3620 28SC admin config lldp ports all dot1_t...

Page 694: ...s enable Command config lldp ports all dot3_tlvs mac_phy_configuration_status enable Success DGS 3620 28SC admin 57 8 show lldp ports Description This command is used to display LLDP per port configuration for advertisement options Format show lldp ports portlist Parameters portlist Optional Specify the ports to be displayed Note When a port list is not specified information for all ports will be ...

Page 695: ...isabled Maximum Frame Size Disabled DGS 3620 28SC admin 57 9 config lldp_med fast_start repeat_count Description This command is used to configure the fast start repeat count When an LLDP MED Capabilities TLV is detected for an MSAP identifier not associated with an existing LLDP remote system MIB the application layer shall start the fast start mechanism and set the medFastStart timer to medFastS...

Page 696: ...default is disabled Restrictions Only Administrator and Operator level users can issue this command Example To enable the log state of LLDP MED events DGS 3620 28SC admin config lldp_med log state enable Command config lldp_med log state enable Success DGS 3620 28SC admin 57 11 config lldp_med notification topo_change ports Description This command is used to enable or disable each port for sendin...

Page 697: ...le s objects in the LLDP MED MIB corresponding to the respective port will not be populated Format config lldp_med ports portlist all med_transmit_capabilities all capabilities network_policy power_pse inventory 1 state enable disable Parameters portlist Enter a range of ports to be configured all Specifies to set all ports in the system med_transit_capabilities Select to send the LLDP MED TLV cap...

Page 698: ...C admin 57 13 show lldp_med ports Description This command is used to display LLDP MED per port configuration for advertisement options Format show lldp_med ports portlist Parameters portlist Enter a range of ports to be displayed Note When a port list is not specified information for all ports will be displayed Restrictions None Example To display LLDP MED configuration information for port 1 DGS...

Page 699: ...switch s general LLDP MED configuration status DGS 3620 28SC admin show lldp_med Command show lldp_med LLDP MED System Information Device Class Network Connectivity Device Hardware Revision B1 Firmware Revision 1 00 016 Software Revision 2 50 014 Serial Number D1234567890 Manufacturer Name D Link Model Name DGS 3620 28SC Gigabit Ethernet S Asset ID PoE Device Type PSE Device PoE PSE Power Source P...

Page 700: ... be displayed Restrictions None Example To display LLDP MED information currently available for populating outbound LLDP MED advertisements for port 1 DGS 3620 28SC admin show lldp_med local_ports 1 Command show lldp_med local_ports 1 Port ID 1 LLDP MED Capabilities Support Capabilities Support Network Policy Support Location Identification Not Support Extended Power Via MDI PSE Not Support Extend...

Page 701: ...dp_med remote_ports 1 Port ID 1 Remote Entities Count 1 Entity 1 Chassis ID Subtype MAC Address Chassis ID 00 01 02 03 04 00 Port ID Subtype Net Address Port ID 172 18 10 11 LLDP MED capabilities LLDP MED Device Class Endpoint Device Class III LLDP MED Capabilities Support Capabilities Support Network Policy Support Location Identification Support Extended Power Via MDI Support Inventory Support L...

Page 702: ...ision Serial Number Manufacturer Name Model Name Asset ID DGS 3620 28SC admin 57 17 show lldp local_ports Description This command is used to display the per port information currently available for populating outbound LLDP advertisements Format show lldp local ports portlist mode brief normal detailed Parameters portlist Optional Specify the ports to be displayed When a port list is not specified...

Page 703: ...rotocol Identity Entries Count 0 MAC PHY Configuration Status See Detail Link Aggregation See Detail Maximum Frame Size 1536 DGS 3620 28SC admin 57 18 show lldp mgt_addr Description This command is used to display the LLDP management address Format show lldp mgmt_addr ipv4 ipaddr ipv6 ipv6addr Parameters ipv4 Optional Specify the IPv4 address of the LLDP managament address entry ipaddr Enter the I...

Page 704: ...rts portlist mode brief normal detailed Parameters portlist Optional Specify the ports to be displayed When a port list is not specified information for all ports will be displayed mode Optional Select the mode brief normal or detailed brief Specifies to display the information in brief mode normal Specifies to display the information in normal mode This is the default display mode detailed Specif...

Page 705: ...3620 28SC admin show lldp statistics Command show lldp statistics Last Change Time 3648 Number of Table Insert 0 Number of Table Delete 0 Number of Table Drop 0 Number of Table Ageout 0 DGS 3620 28SC admin 57 21 show lldp statistics ports Description This command is used to display LLDP statistic information for individual ports Format show lldp statistics ports portlist Parameters portlist Option...

Page 706: ...or port 1 DGS 3620 28SC admin show lldp statistics ports 1 Command show lldp statistics ports 1 Port ID 1 LLDPStatsTXPortFramesTotal 0 LLDPStatsRXPortFramesDiscardTotal 0 LLDPStatsRXPortFramesErrors 0 LLDPStatsRXPortFramesTotal 0 LLDPStatsRXPortTLVsDiscardedTotal 0 LLDPStatsRXPortTLVsUnrecognizedTotal 0 LLDPStatsRXPortAgeoutsTotal 0 DGS 3620 28SC admin ...

Page 707: ...cover_timer The time interval in seconds used by the Auto Recovery mechanism to decide how long to check if the loop status is gone The default value is 60 0 Zero is a special value which means to disable the auto recovery mechanism hence the user needs to recover the disabled port back manually sec 60 1000000 Enter a value between 60 and 1000000 interval The time interval in seconds at which devi...

Page 708: ...to be configured all To set all ports in the system use the all parameter state Specify the status enable Enable loop detect for the ports specified in the port list disable Disable loop detect for the ports specified in the port list The default is disabled Restrictions Only Administrator Operator and Power User level users can issue this command Example To set up loop back detection DGS 3620 28S...

Page 709: ... Command enable loopdetect Success DGS 3620 28SC admin 58 4 disable loopdetect Description This command allows the loop detection function to be globally disabled on the switch The default value is disabled Format disable loopdetect Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable loop detection DGS 3620 28SC admin disabl...

Page 710: ...ion configuration DGS 3620 28SC admin show loopdetect Command show loopdetect LBD Global Settings Status Disabled Mode Port based Interval 10 sec Recover Time 60 sec Trap State None Enabled VLANs 1 4094 Log State Enabled Function Version v4 05 DGS 3620 28SC admin 58 6 show loopdetect ports Description This command is used to display the switch s current per port loop detection configuration and st...

Page 711: ... Loop 8 Enabled Normal 9 Enabled Normal DGS 3620 28SC admin To display loop detection state of ports 1 to 9 under VLAN based mode DGS 3620 28SC admin show loopdetect ports 1 9 Command show loopdetect ports 1 9 Port Loopdetect State Loop VLAN 1 Enabled None 2 Enabled None 3 Enabled None 4 Enabled None 5 Enabled 2 6 Enabled None 7 Enabled 2 8 Enabled None 9 Enabled None DGS 3620 28SC admin 58 7 conf...

Page 712: ...GS 3620 28SC admin config loopdetect trap both Command config loopdetect trap both Success DGS 3620 28SC admin 58 1 config loopdetect log state Description This command is used to configure the log state for LBD The default value is enabled Format config loopdetect log state enable disable Parameters state Specifies the LBD log feature s state enable Specifies that the LBD log feature will be enab...

Page 713: ...ter the VLAN list all Specifies that all VLANs will be used for this configuration state Specifies whether the LBD function should be enabled or disabled on the VLANs specified enable Specifies that the LBD function will be enabled disable Specifies that the LBD function will be disabled Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable th...

Page 714: ... to 12 characters long network_address Optional Enter the IPv4 network address of the loopback interface here It specifies a host address and length of network mask state Optional Specifies the state of the loopback interface enable Specifies that the loopback interface state will be enabled disable Specifies that the loopback interface state will be disabled Restrictions Only Administrator Operat...

Page 715: ...enable Specifies that the loopback interface state will be enabled disable Specifies that the loopback interface state will be disabled Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the loopback interface named loopback1 with subnet address 10 0 0 1 8 DGS 3620 28SC admin config loopback ipif loopback1 ipaddress 10 0 0 1 8 Command co...

Page 716: ...elete loopback ipif Description This command is used to delete a loopback interface Format delete loopback ipif ipif_name 12 all Parameters ipif_name 12 Enter the IP interface name used for this configuration here This name can be up to 12 characters long all Specifies that all the IP loopback interfaces will be deleted Restrictions Only Administrator Operator and Power User level users can issue ...

Page 717: ...le mac_notification Description This command is used to enable the trap notification for newly learned and cleared MAC addresses on the Switch Format enable mac_notification Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To enable the MAC notification function DGS 3620 28SC admin enable mac_notification Command enable mac_notification Succes...

Page 718: ...iption This command is used to configure the switch s MAC address table notification global settings Format config mac_notification interval sec 1 2147483647 historysize int 1 500 1 Parameters interval Specifies the time interval in seconds to trigger the notification sec 1 2147483647 Enter between 1 second and 2147483647 seconds historysize Specifies the entries of new learned MAC to trigger the ...

Page 719: ...cifiy a range of ports to be configured all Specifies to set all ports in the system enable Specifies to enable the port s MAC address table notification disable Specifies to disable the port s MAC address table notification Restrictions Only Administrator and Operator level users can issue this command Example To enable MAC address table notification for Port 7 DGS 3620 28SC admin config mac_noti...

Page 720: ...tion Global MAC Notification Settings State Enabled Interval 1 History Size 500 DGS 3620 28SC admin 60 6 show mac_notification ports Description This command is used to display the port s MAC address table notification status settings Format show mac_notification ports portlist Parameters portlist Optional Specify a range of ports to be configured Restrictions None Example To display the MAC addre...

Page 721: ...erence Guide 716 DGS 3620 28SC admin show mac_notification ports Command show mac_notification ports Port MAC Address Table Notification State 1 Disabled 2 Disabled 3 Disabled 4 Disabled 5 Disabled 6 Disabled 7 Disabled 8 Disabled 9 Disabled 10 Disabled DGS 3620 28SC admin ...

Page 722: ...e 32 vlanid vlanid 1 4094 config mac_based_access_control_local mac macaddr vlan vlan_name 32 vlanid vlanid 1 4094 clear_vlan config mac_based_access_control max_users value 1 4000 no_limit config mac_based_access_control authorization attributes radius enable disable local enable disable 1 delete mac_based_access_control_local mac macaddr vlan vlan_name 32 vlanid vlanid 1 4094 show mac_based_acce...

Page 723: ...access control function Format disable mac_based_access_control Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable MAC based access control DGS 3620 28SC admin disable mac_based_access_control Command disable mac_based_access_control Success DGS 3620 28SC admin 61 3 config mac_based_access_control password Description This ...

Page 724: ...d Command config mac_based_access_control password rosebud Success DGS 3620 28SC admin 61 4 config mac_based_access_control method Description This command is used to authenticate via a local database or a RADIUS server Format config mac_based_access_control method local radius Parameters local Specifies to authenticate via local database radius Specifies to authenticate via RADIUS server Restrict...

Page 725: ...his command is used to configure the MAC based access control setting When the MAC based access control function is enabled for a port and the port is not a MAC based access control guest VLAN member the user who is attached to this port will not be forwarded unless the user passes the authentication A user that does not pass the authentication will not be serviced by the switch If the user passes...

Page 726: ...ed state infinite Specifies an unlimited aging time min 1 1440 Enter the age out time in minutes between 1 and 1440 block_time Specifies the blocking time in seconds between 0 and 300 second 0 300 Enter the blocking time The blocking time value must be between 0 and 300 seconds max_users Specifies the number of maximum users The default value is 1024 users value 1 4000 Enter the maximum number of ...

Page 727: ..._control guest_vlan default Success DGS 3620 28SC admin 61 8 delete mac_based_access_control Description This command is used to delete MAC based access control guest VLANs Format delete mac_based_access_control guest_vlan vlan_name 32 guest_vlanid vlanid 1 4094 Parameters guest_vlan Specifies the name of the guest VLAN vlan_name 32 Enter the name of the guest VLAN The guest VLAN name can be up to...

Page 728: ... to clear the authentication state all Specifies all ports portlist Enter a range of ports mac_addr Specifies to clear a specified host authentication state macaddr Enter the MAC address here Restrictions Only Administrator Operator and Power User level users can issue this command Example To clear the authentication state of all ports DGS 3620 28SC admin clear mac_based_access_control auth_state ...

Page 729: ...rol_local mac 00 00 00 00 00 01 vlan default Success DGS 3620 28SC admin 61 11 config mac_based_access_control_local mac Description This command is used to modify a database entry Format config mac_based_access_control_local mac macaddr vlan vlan_name 32 vlanid vlanid 1 4094 clear_vlan Parameters macaddr Enter the MAC address that access is accepted by local mode vlan If the MAC address is author...

Page 730: ... access control maximum number of authorized users DGS 3620 28SC admin config mac_based_access_control max_users 2 Command config mac_based_access_control max_users 2 Success DGS 3620 28SC admin 61 13 config mac_based_access_control authorization attributes Description This command is used to enable or disable the acceptance of an authorized configuration When authorization is enabled for MAC base...

Page 731: ...authorization status is enabled The default state is enabled disable If specified to disable the authorized attributes assigned by the local database will not be accepted even if the global authorization status is enabled Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable the configuration authorized from the local database DGS 3620 28SC a...

Page 732: ... DGS 3620 28SC admin To delete a MAC based access control local by VLAN name DGS 3620 28SC admin delete mac_based_access_control_local vlan default Command delete mac_based_access_control_local vlan default Success DGS 3620 28SC admin 61 15 show mac_based_access_control auth_state ports Description This command is used to display MAC based access control authentication MAC information Format show ...

Page 733: ...ts 0 Total Authenticated Hosts 2 Total Blocked Hosts 1 DGS 3620 28SC admin 61 16 show mac_based_access_control Description This command is used to display MAC based access control information Format show mac_based_access_control ports portlist Parameters ports Optional Specify to display the MAC based access control port state portlist Enter a range of ports to be displayed Restrictions None Examp...

Page 734: ...isabled 1440 300 1024 3 Disabled 1440 300 1024 4 Disabled 1440 300 1024 DGS 3620 28SC admin 61 17 show mac_based_access_control_local Description This command is used to display MAC based access control local data Format show mac_based_access_control_local mac macaddr vlan vlan_name 32 vlanid vlanid 1 4094 Parameters mac Optional Display MAC based access control local databases by this MAC address...

Page 735: ...ies 1 DGS 3620 28SC admin To display MAC based access control local data by VLAN DGS 3620 28SC admin show mac_based_access_control_local vlan default Command show mac_based_access_control_local vlan default MAC Address VID 00 00 00 00 00 01 1 Total Entries 1 DGS 3620 28SC admin 61 18 config mac_based_access_control log state Description This command is used to enable or disable the generating of M...

Page 736: ...c_based_access_control trap state enable disable Parameters state Specifies the trap state for MAC based Access Control enable Specifies that the trap state for MAC based Access Control will be enabled disable Specifies that the trap state for MAC based Access Control will be disabled Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the t...

Page 737: ...configured by using the command config authentication mac_format Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the MAC based Access Control using client s MAC address as authentication password DGS 3620 28SC admin config mac_based_access_control password_type client_mac_address Command config mac_based_access_control password_type c...

Page 738: ... the exchange of network topology information to the OSPF routing domain Format config md5 key key_id 1 255 password 16 Parameters key Specifies that the MD5 key will be configured key_id 1 255 Enter the MD5 key used here This key must be between 1 and 255 password 16 Enter an alphanumeric string of between 1 and 16 case sensitive characters used to generate the Message Digest which is in turn is ...

Page 739: ...cate OSPF packets within the OSPF routing domain Restrictions Only Administrator and Operator level users can issue this command Example To create an MD5 key table DGS 3620 28SC admin create md5 key 1 dlink Command create md5 key 1 dlink Success DGS 3620 28SC admin 62 3 delete md5 key Description This command is used to delete an MD5 key table Format delete md5 key key_id 1 255 Parameters key Spec...

Page 740: ... key table Format show md5 key key_id 1 255 Parameters key Optional Specifies that the MD5 key will be displayed key_id 1 255 Enter the MD5 key used here This key must be between 1 and 255 If no parameter is specified the system will display the MD5 key table Restrictions None Example To display the MD5 key table DGS 3620 28SC admin show md5 Command show md5 MD5 Key Table Configurations Key ID Key...

Page 741: ...rror group has existed do nothing and return success Format create mirror group_id value 1 4 Parameters value 1 4 Enter the mirror group ID used here This value must be between 1 and 4 Restrictions Only Administrator and Operator level users can issue this command Example Create mirror group 3 DGS 3620 28SC admin create mirror group_id 3 Command create mirror group_id 3 Success DGS 3620 28SC admin...

Page 742: ...ns Only Administrator and Operator level users can issue this command Example To add mirroring target port 6 and the source ports 1 to 5 rx and tx packets DGS 3620 28SC admin config mirror port 6 add source ports 1 5 both Command config mirror port 6 add source ports 1 5 both Success DGS 3620 28SC admin 63 3 config mirror group_id Description This command used to configure mirror group s parameter...

Page 743: ...up target port state Optional Specifies the mirror group state to enable or disable the mirror group function enable Specifies that the mirror group state will be enabled disable Specifies that the mirror group state will be disabled Restrictions Only Administrator and Operator level users can issue this command Example Configure mirror group 2 with state enable and add source ports 1 4 1 9 DGS 36...

Page 744: ...irror session configuration Note If the target port hasn t been set enable mirror will not take effect Format enable mirror Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To enable mirroring configurations DGS 3620 28SC admin enable mirror Command enable mirror Success DGS 3620 28SC admin 63 6 disable mirror Description This command combined...

Page 745: ...n disable mirror Command disable mirror Success DGS 3620 28SC admin 63 7 show mirror Description This command is used to display the current port mirroring configuration on the switch Format show mirror group_id value 1 4 Parameters group_id Optional Specifies the group ID used for this display value 1 4 Enter the group ID used for this display here This value must be between 1 and 4 Restrictions ...

Page 746: ...yer 3 Managed Stackable Gigabit Switch CLI Reference Guide 741 DGS 3620 28SC admin show mirror Command show mirror Mirror Global State Disabled Group State Target Port Source Ports 1 Enabled 1 RX 2 3 TX 2 3 DGS 3620 28SC admin ...

Page 747: ...ip ipv6addr unsolicited_report_interval sec 0 25 1 show mld_proxy group 64 1 enable mld_proxy Description This command is used to enable the MLD proxy on the switch Format enable mld_proxy Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the MLD proxy DGS 3620 28SC admin enable mld_proxy Command enable mld_proxy Success DG...

Page 748: ...roxy downstream_if add delete vlan vlan_name 32 vlanid vidlist Parameters add Specifies to add a downstream interface delete Specifies to delete a downstream interface vlan Specifies the VLAN by name or ID vlan_name 32 Enter a name of VLAN which belong to the MLD proxy downstream interface The maximum length is 32 characters vlanid Specifies a list of VLAN IDs which belong to the MLD proxy downstr...

Page 749: ...the VLAN ID for the upstream interface vlanid 1 4094 Enter the VLAN ID between 1 and 4094 router_ports Specifies a list of ports that are connected to multicast enabled routers add Specifies to add the router ports delete Specifies to delete the router ports portlist Enter a range of ports to be configured source_ip Specifies the source IPv6 address of the upstream protocol packet If it is not spe...

Page 750: ...he group is not specified the MLD proxy configuration will be displayed Restrictions None Example To display the MLD proxy s information DGS 3620 28SC admin show mld_proxy Command show mld_proxy MLD Proxy Global State Enabled Upstream Interface VLAN ID 1 Dynamic Router Ports 1 4 Static Router Ports 5 6 Unsolicited Report Interval 10 Source IP Address Downstream Interface VLAN List 2 4 DGS 3620 28S...

Page 751: ...ack DGS 3620 Series Layer 3 Managed Stackable Gigabit Switch CLI Reference Guide 746 Source FF80 200 Group FF1E 0202 Downstream VLAN 2 Member Ports 2 5 8 Status Inactive Total Entries 2 DGS 3620 28SC admin ...

Page 752: ... sec 1 65535 max_response_time sec 1 25 robustness_variable value 1 7 last_listener_query_interval sec 1 25 state enable disable version value 1 2 1 config mld_snooping mrouter_ports vlan vlan_name 32 vlanid vlanid_list add delete portlist config mld_snooping mrouter_ports_forbidden vlan vlan_name 32 vlanid vlanid_list add delete portlist enable mld_snooping disable mld_snooping show mld_snooping ...

Page 753: ... be disabled source_ip Specifies the source IPv6 address used ipv6addr Enter the source IPv6 address used here Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure MLD snooping DGS 3620 28SC admin config mld_snooping vlan_name default state enable Command config mld_snooping vlan_name default state enable Success DGS 3620 28SC admin 65 2 c...

Page 754: ...rate_limit Description This command is used to display the MLD snooping rate limit setting Format show mld_snooping rate_limit ports portlist vlanid vlanid_list Parameters ports Specifies a range of ports to be displayed portlist Enter a range of ports to be displayed vlanid Specify a range of VLANs to be displayed vlanid_list Enter the VLAN ID list Restrictions None Example To display the MLD sno...

Page 755: ... vlan vlan_name 32 vlanid vlanid_list ipv6addr Parameters vlan Specifies the name of the VLAN on which the static group resides vlan_name 32 Enter the VLAN name The maximum length is 32 characters vlanid Specifies the VLAN ID list vlanid_list Enter the VLAN ID list ipv6addr Enter the multicast group IPv6 address Restrictions Only Administrator Operator and Power User level users can issue this com...

Page 756: ...ooping static member ports for group FF1E 1 on default VLAN DGS 3620 28SC admin config mld_snooping static_group vlan default FF1E 1 delete 9 10 Command config mld_snooping static_group vlan default FF1E 1 delete 9 10 Success DGS 3620 28SC admin 65 6 delete mld_snooping static_group Description This command is used to delete an MLD snooping static group on the switch The deletion of an MLD snoopin...

Page 757: ... Optional Specify the name of the VLAN on which the static group resides vlan_name 32 Enter the VLAN name The maximum length is 32 characters vlanid Optional Specify the ID of the VLAN on which the static group resides vlanid_list Enter the VLAN ID list ipv6addr Optional Specify the multicast group IPv6 address If no parameter is specified the system will display all MLD snooping static groups If ...

Page 758: ...nce MLD snooping was enabled Format show mld_snooping statistic counter vlan vlan_name 32 vlanid vlanid_list ports portlist Parameters vlan Specifies a VLAN to be displayed vlan_name 32 Enter the VLAN name The maximum length is 32 characters vlanid Specifies a list of VLANs to be displayed vlanid_list Enter the VLAN ID list ports Specify a list of ports to be displayed portlist Enter a list of por...

Page 759: ...ulticast VLAN 0 Report Done MLD v1 Report 0 MLD v2 Report 0 MLD v1 Done 0 Total 0 Dropped By Rate Limitation 0 Dropped By Max Group Limitation 0 Dropped By Group Filter 0 Dropped By Multicast VLAN 0 Transmit Statistics Query MLD v1 Query 0 MLD v2 Query 0 Total 0 Report Done MLD v1 Report 0 MLD v2 Report 0 MLD v1 Done 0 Total 0 Total Entries 1 DGS 3620 28SC admin 65 9 clear mld_snooping statistics ...

Page 760: ...D snooping querier is to be configured vlan_name 32 Enter the VLAN name The maximum length is 32 characters vlanid Specifies the ID of the VLAN for which MLD snooping querier is to be configured vlanid_list Enter the VLAN ID list all Specifies all VLANs for which MLD snooping querier is to be configured query_interval Specifies the amount of time in seconds between general query transmissions sec ...

Page 761: ... an MLD Querier sends MLD query packets or a Non Querier does not send MLD query packets Set to enable or disable enable Allows the switch to be selected as an MLD Querier sends MLD query packets disable When disabled the switch can not play the role as a querier version Specifies the version of MLD packet that will be sent by this port If a MLD packet received by the interface has a version highe...

Page 762: ...ping mrouter_ports vlan default add 1 10 Success DGS 3620 28SC admin 65 12 config mld_snooping mrouter_ports_forbidden Description This command allows you to designate a range of ports as being not connected to multicast enabled routers This ensures that the forbidden router port will not propagate routing packets out Format config mld_snooping mrouter_ports_forbidden vlan vlan_name 32 vlanid vlan...

Page 763: ...oping on the switch Format enable mld_snooping Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable MLD snooping on the switch DGS 3620 28SC admin enable mld_snooping Command enable mld_snooping Success DGS 3620 28SC admin 65 14 disable mld_snooping Description This command is used to disable MLD snooping on the switch MLD sno...

Page 764: ...guration on the switch Format show mld_snooping vlan vlan_name 32 vlanid vlanid_list Parameters vlan Optional Specify the name of the VLAN for which to view the MLD snooping configuration vlan_name 32 Enter the name of the VLAN The maximum length is 32 characters vlanid Optional Specify the ID of the VLAN for which to view the MLD snooping configuration vlanid_list Enter a list of VLAN IDs Note If...

Page 765: ...ame 32 vlanid vlanid_list ports portlist ipv6addr Parameters vlan Optional Specify the name of the VLAN for which to view MLD snooping group information If VLAN and ports and IP address are not specified the system will display all current MLD snooping group information vlan_name 32 Specify the VLAN name The maximum length is 32 characters vlanid Optional Specify the ID of the VLAN for which to vi...

Page 766: ...w mld_snooping mrouter_ports Description This command is used to display the router ports on the switch Format show mld_snooping mrouter_ports vlan vlan_name 32 vlanid vlanid_list all static dynamic forbidden Parameters vlan Specifies the name of the VLAN on which the router port resides vlan_name 32 Enter the name of the VLAN on which the router port resides The maximum length is 32 characters vl...

Page 767: ... forwarding table It provides an easy way for users to check the list of ports that the multicast group comes from specific sources will be forwarded to The packet comes from the source VLAN They will be forwarded to the forwarding ports Format show mld_snooping forwarding vlan vlan_name 32 vlanid vlanid_list Parameters vlan Optional Specify the name of the VLAN for which to view MLD snooping forw...

Page 768: ...is command is used to enable or disable the MLD snopping multicast VLAN automatic assignment feature Format config mld_snooping multicast_vlan auto_assign_vlan enable disable Parameters enable Specifies to enable the MLD snooping multicast VLAN automatic assignment feature disable Specifies to disable the MLD snooping multicast VLAN automatic assignment feature Restrictions Only Administrator Oper...

Page 769: ...oping multicast_vlan disable mld_snooping multicast_vlan show mld_snooping multicast_vlan vlan_name 32 config mld_snooping multicast_vlan forward_unmatched disable enable 66 1 create mld_snooping multicast_vlan Description This command is used to create an MLD snooping multicast VLAN and implements relevant parameters as specified More than one multicast VLAN can be configured Newly created MLD sn...

Page 770: ...before the multicast VLAN can be configured Format config mld_snooping multicast_vlan vlan_name 32 add delete member_port portlist source_port portlist untag_source_port portlist tag_member_port portlist state enable disable replace_source_ipv6 ipv6addr none remap_priority value 0 7 none replace_priority 1 Parameters vlan_name 32 Enter the name of the multicast VLAN to be configured Each multicast...

Page 771: ... VLAN none If none is specified the packet s original priority is used The default setting is none replace_priority Optional Specify that the packet priority will be changed to the remap priority when remap priority is set Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure an MLD snooping multicast VLAN with the name v1 make ports 1 and ...

Page 772: ...ximum length is 32 characters add Specifies to add a multicast address list to this multicast VLAN profile delete Specifies to delete a multicast address list from this multicast VLAN profile mcastv6_address_list Enter a multicast address list This can be a continuous single multicast address such as FF1E 1 FF1E 2 a multicast address range such as FF1E 3 FF1E 9 or both types such as FF1E 11 FF1E 1...

Page 773: ...pecifies to delete all the profiles Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete an MLD snooping multicast group profile named Knicks DGS 3620 28SC admin delete mld_snooping multicast_vlan_group_profile profile_name Knicks Command delete mld_snooping multicast_vlan_group_profile profile_name Knicks Success DGS 3620 28SC admin 66 6 sho...

Page 774: ...oin packet will be learned with the multicast VLAN that contains the destination multicast group If the destination multicast group of the join packet can not be classified into any multicast VLAN that this port belongs to then the join packet will be learned with the natural VLAN of the packet Please note that the same profile can not overlap different multicast VLANs Multiple profiles can be add...

Page 775: ...s command allows group profile information for a specific multicast VLAN to be displayed Format show mld_snooping multicast_vlan_group vlan_name 32 Parameters vlan_name 32 Optional Specify the name of the group profile s multicast VLAN to be displayed If no parameter is specified the system will display all multicast VLAN groups on the switch Restrictions None Example To display all MLD snooping m...

Page 776: ... level users can issue this command Example To delete an MLD snooping multicast VLAN called v1 DGS 3620 28SC admin delete mld_snooping multicast_vlan v1 Command delete mld_snooping multicast_vlan v1 Success DGS 3620 28SC admin 66 10 enable mld_snooping multicast_vlan Description This command is used to enable the MLD snooping multicast VLAN function By default the multicast VLAN is disabled Format...

Page 777: ...t disable mld_snooping multicast_vlan Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable MLD snooping multicast VLAN DGS 3620 28SC admin disable mld_snooping multicast_vlan Command disable mld_snooping multicast_vlan Success DGS 3620 28SC admin 66 12 show mld_snooping multicast_vlan Description This command allows informati...

Page 778: ... Replace Source IP Remap Priority None Total Entries 1 DGS 3620 28SC admin 66 13 config mld_snooping multicast_vlan forward_unmatched Description This command is used to configure the forwarding mode for MLD snooping multicast VLAN unmatched packets When the switch receives an MLD snooping packet it will match the packet against the multicast profile to determine which multicast VLAN to associate ...

Page 779: ...erator and Power User level users can issue this command Example To configure the forwarding mode for MLD snooping multicast VLAN unmatched packets DGS 3620 28SC admin config mld_snooping multicast_vlan forward_unmatched enable Command config mld_snooping multicast_vlan forward_unmatched enable Success DGS 3620 28SC admin ...

Page 780: ...strictions When users issue the reset command the modified banner will remain in tact Yet issuing the reset system will return the banner to its original default value The maximum character capacity for the banner is 24 lines with 80 characters per line In the following example Ctrl W will save the modified banner only to the DRAM Users must enter the save command to save this entry to the Flash m...

Page 781: ...r Ctrl D Delete line Ctrl X Erase all setting Ctrl L Reload original setting 67 2 show greeting_message Description This command is used to display the currently configured greeting message on the switch Format show greeting_message Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To display the currently configured greeting message ...

Page 782: ...command prompt The current command prompt consists of four parts product name user level e g DGS 3620 28SC admin This command is used to modify the first part 1 product name with a string consisting of a maximum of 16 characters or to be replaced with the users login user name Format config command_prompt string 16 username default Parameters string 16 Enter the new command prompt string of no mor...

Page 783: ...rrent command prompt will remain in tact Issuing the reset system will return the command prompt to its original factory default value Only Administrator and Operator level users can issue this command Example To edit the command prompt DGS 3620 28SC admin config command_prompt HQ0001 Command config command_prompt HQ0001 Success HQ0001 admin ...

Page 784: ... query interval value used here This value must be between 1 and 31744 seconds The default value is 125 seconds max_response_time Optional Specifies the maximum time in seconds to wait for reports from listeners sec 1 25 Enter the maximum response time value used here The value must be between 1 and 25 seconds The default value is 10 seconds robustness_variable Optional Specifies the permitted pac...

Page 785: ... DGS 3620 28SC admin config mld all version 1 Command config mld all version 1 Success DGS 3620 28SC admin To configure the MLD last listener query interval to 10 seconds on all interfaces DGS 3620 28SC admin config mld all last_listener_query_interval 10 Command config mld all last_listener_query_interval 10 Success DGS 3620 28SC admin 68 2 show mld Description This command is used to display the...

Page 786: ...25 10 2 1 Enabled n11 2 125 10 2 1 Disabled n12 2 125 10 2 1 Disabled Total Entries 4 DGS 3620 28SC admin To display the MLD configurations for interface Interface1 DGS 3620 28SC admin show mld ipif Interface1 Command show mld ipif Interface1 MLD Interface Details Interface Interface1 IPv6 Link Local Address FE80 123D 34AC 128 Querier FE80 1E45 2310 Status Disabled Version 2 Query Interval 125 sec...

Page 787: ...pecifies the IPv6 multicast group address used ipv6addr Enter the IPv6 multicast group address used here If no parameter is specified the system will display all MLD configurations Restrictions None Example To display all the MLD group member information on the switch the Expiry uses second as the unit DGS 3620 28SC admin show mld group Command show mld group Interface Multicast Group Expiry Syste...

Page 788: ...F1E 100 0 20 the Expiry uses second as the unit DGS 3620 28SC admin show mld group ipif n10 group FF1E 100 0 20 Command show mld group ipif n10 group FF1E 100 0 20 MLD Group Details Interface n10 Multicast Group FF1E 100 0 20 Last Reporter FE80 2345 FE39 Up Time 00 00 32 Expiry Time 00 30 02 Filter Mode Exclude V1 Host Time 0 sec Source List Table Source Address Expiry 2001 1234 EF23 10 Total Sour...

Page 789: ...h CLI Reference Guide 784 DGS 3620 28SC admin show mld group group FF1E 1001 1234 Command show mld group group FF1E 1001 1234 Interface Multicast Group Expiry n10 FF1E 1001 1234 215 n11 FF1E 1001 1234 200 n20 FF1E 1001 1234 240 Total Entries 3 DGS 3620 28SC admin ...

Page 790: ...ers can share the same IP address and MAC address The requests from clients will be forwarded to all servers but will only be processed by one of them In multicast mode the client use the multicast MAC address as the destination MAC to reach the server Regarding of the mode this destination MAC is the named the shared MAC The server uses its own MAC address rather than the shared MAC as the source...

Page 791: ...try here This name can be up to 32 characters long vlanid Specifies the VLAN ID used vlanid 1 4094 Enter the VLAN ID used here macaddr Specifies the MAC address of the NLB multicast FDB entry to be deleted Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete NLB multicast FDB entry DGS 3620 28SC admin delete nlb multicast_fdb default 03 bf 01...

Page 792: ...ecifies a list of forwarding ports to be deleted portlist Specifies a list of forwarding ports to be added or deleted Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure NLB multicast MAC forwarding database DGS 3620 28SC admin config nlb multicast_fdb default 03 bf 01 01 01 01 add 1 1 1 5 Command config nlb multicast_fdb default 03 bf 01...

Page 793: ...B unicast FDB entry Format create nlb unicast_fdb macaddr Parameters macaddr Enter the MAC address of the NLB unicast FDB entry to be created Restrictions Only Administrator Operator and Power User level users can issue this command Example To create an NLB unicast MAC forwarding entry for the product that support the VLAN information on the unicast forwarding DGS 3620 28SC admin create nlb unicas...

Page 794: ...nicast FDB entry for the product that support the VLAN information on the unicast forwarding DGS 3620 28SC admin config nlb unicast_fdb 02 BF 01 01 01 01 add 1 1 1 5 Command config nlb unicast_fdb 02 BF 01 01 01 01 add 1 1 1 5 Success DGS 3620 28SC admin 69 7 delete nlb unicast_fdb Description This command is used to delete the NLB unicast FDB entry Format delete nlb unicast_fdb macaddr Parameters...

Page 795: ...620 Series Layer 3 Managed Stackable Gigabit Switch CLI Reference Guide 790 DGS 3620 28SC admin delete nlb unicast_fdb 02 bf 01 01 01 01 Command delete nlb unicast_fdb 02 BF 01 01 01 01 Success DGS 3620 28SC admin ...

Page 796: ...mp system_contact sw_contact enable snmp traps disable snmp traps enable snmp authenticate_traps disable snmp authenticate_traps enable snmp linkchange_traps disable snmp linkchange_traps show snmp traps linkchange_traps ports portlist config snmp linkchange_traps ports all portlist enable disable config snmp coldstart_traps enable disable config snmp warmstart_traps enable disable config trap sou...

Page 797: ...ed to disable the SNMP function When SNMP function is disabled the network manager will not be able to access SNMP MIB objects The device will not send traps or notification to network manager either Format disable snmp Parameters None By default SNMP is disabled Restrictions Only Administrator and Operator level users can issue this command Example To disable SNMP DGS 3620 28SC admin disable snmp...

Page 798: ...addresses must be members of the Management VLAN If no IP addresses are specified then there is nothing to prevent any IP address from accessing the switch provided the user knows the Username and Password Format create trusted_host ipaddr ipv6addr network network_address ipv6_prefix ipv6networkaddr snmp telnet ssh http https ping Parameters ipaddr Enter the IP address of the trusted host ipv6addr...

Page 799: ...st Format config trusted_host ipaddr ipv6addr network network_address ipv6_prefix ipv6networkaddr add delete snmp telnet ssh http https ping all Parameters ipaddr Enter the IP address of the trusted host ipv6addr Enter the IPv6 address of the trusted host network Specifies the network address of the trusted network The form of network address is xxx xxx xxx xxx y network_address Enter the network ...

Page 800: ...ies the IP address of the trusted host ipaddr Enter the IP address of the trusted host ipv6address Specifies the IPv6 address of the trusted host ipv6addr Enter the IPv6 address of the trusted host network Specifies the network address of the trusted network The form of network address is xxx xxx xxx xxx y network_address Enter the network address of the trusted network The form of network address...

Page 801: ...sted_host Parameters None Restrictions None Example To display trusted hosts DGS 3620 28SC admin show trusted_host Command show trusted_host Management Stations IP Address Access Interface 10 48 93 100 10 51 17 1 10 50 95 90 Total Entries 3 DGS 3620 28SC admin 70 8 config snmp system_name Description This command is used to configure the SNMP system name of the switch Format config snmp system_nam...

Page 802: ...ystem_name DGS 3620 28SC Gigabit Ethernet Switch Success DGS 3620 28SC admin 70 9 config snmp system_location Description This command is used to enter a description of the SNMP system location of the switch A maximum of 255 characters can be used Format config snmp system_location sw_location Parameters sw_location Enter an SNMP system location for the switch A maximum of 255 characters is allowe...

Page 803: ...em contact person A maximum of 255 characters is allowed Restrictions Only Administrator and Operator level users can issue this command Example To configure the switch contact to MIS Department IV DGS 3620 28SC admin config snmp system_contact MIS Department IV Command config snmp system_contact MIS Department IV Success DGS 3620 28SC admin 70 11 enable snmp traps Description This command is used...

Page 804: ... on the switch Format disable snmp traps Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To prevent SNMP traps from being sent from the switch DGS 3620 28SC admin disable snmp traps Command disable snmp traps Success DGS 3620 28SC admin 70 13 enable snmp authenticate_traps Description This command is used to enable SNMP authentication failure...

Page 805: ...p authenticate_traps Description This command is used to disable SNMP authentication failure trap support Format disable snmp authenticate_traps Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To disable SNMP authentication trap support DGS 3620 28SC admin disable snmp authenticate_traps Command disable snmp authenticate_traps Success DGS 362...

Page 806: ...traps Command enable snmp linkchange_traps Success DGS 3620 28SC admin 70 16 disable snmp linkchange_traps Description This command is used to disable SNMP linkchange trap support Format disable snmp linkchange_traps Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To disable SNMP linkchange trap support DGS 3620 28SC admin disable snmp linkch...

Page 807: ...le Disable sending of the link change trap for this port Restrictions Only Administrator and Operator level users can issue this command Example To enable SNMP linkchange traps for ports 1 to 4 DGS 3620 28SC admin config snmp linkchange_traps ports 1 4 enable Command config snmp linkchange_traps ports 1 4 enable Success DGS 3620 28SC admin 70 18 show snmp traps Description This command is used to ...

Page 808: ... Command show snmp traps linkchange_traps Linkchange Traps Enabled Port 1 Enabled Port 2 Enabled Port 3 Enabled Port 4 Enabled Port 5 Enabled Port 6 Enabled Port 7 Enabled Port 8 Enabled Port 9 Enabled Port 10 Enabled Port 11 Enabled Port 12 Enabled Port 13 Enabled Port 14 Enabled Port 15 Enabled Port 16 Enabled Port 17 Enabled Port 18 Enabled Port 19 Enabled Port 20 Enabled CTRL C ESC q Quit SPAC...

Page 809: ...onfig snmp coldstart_traps enable Success DGS 3620 28SC admin 70 20 config snmp warmstart_traps Description This command is used to configure the trap state for warmstart events Format config snmp warmstart_traps enable disable Parameters enable Enable traps for warmstart events The default state is enabled disable Disable traps for warmstart events Restrictions Only Administrator and Operator lev...

Page 810: ...ed as source IP addresses ipaddr Optional Specify the IPv4 address ipv6addr Optional Specify the IPv6 address none Specifies to clear the configured source IP interface Restrictions Only Administrator and Operator level users can issue this command Example To configure the trap source IP interface DGS 3620 28SC admin config trap source_ipif inter4 Command config trap source_ipif inter4 Success DGS...

Page 811: ...on trap rising_alarm enable disable falling_alarm enable disable Parameters rising_alarm Optional Specify the trap state for rising alarm The default state is enabled enable Enable the trap state for rising alarm disable Disable the trap state for rising alarm falling_alarm Optional Specify the trap state for falling alarm The default state is enabled enable Enable the trap state for falling alarm...

Page 812: ... admin 70 24 show rmon Description This command is used to display RMON related settings Format show rmon Parameters None Restrictions None Example To display current RMON settings DGS 3620 28SC admin show rmon Command show rmon RMON Rising Alarm Trap Enabled RMON Falling Alarm Trap Enabled DGS 3620 28SC admin ...

Page 813: ... local7 udp_port udp_port_number ipaddress ipaddr ipv6addr state enable disable 1 create syslog host index 1 4 ipaddress ipaddr ipv6addr severity emergency alert critical error warning notice informational debug level 0 7 facility local0 local1 local2 local3 local4 local5 local6 local7 udp_port udp_port_number state enable disable delete syslog host index 1 4 all show syslog host index 1 4 config ...

Page 814: ... Frames sec 64 0 0 65 127 0 0 128 255 0 0 256 511 0 0 512 1023 0 0 1024 1518 0 0 1519 1522 0 0 1519 2047 0 0 2048 4095 0 0 4096 9216 0 0 Unicast RX 0 0 Multicast RX 0 0 Broadcast RX 0 0 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh Port number 1 7 Frame Type Total Total sec RX Bytes 0 0 RX Frames 0 0 TX Bytes 0 0 TX Frames 0 0 CTRL C ESC q Quit SPACE n Next Page p Previous Page r R...

Page 815: ...essive Collision 0 Jabber 0 Single Collision 0 Buffer Full Drop 0 Collision 0 Symbol Error 0 STP Drop 0 ACL Drop 0 HOL Drop 0 Multicast Drop 0 COS0 HOL Drop 0 VLAN Ingress Drop 0 COS1 HOL Drop 0 Invalid IPv6 0 COS2 HOL Drop 0 STP Drop 0 COS3 HOL Drop 0 Storm and FDB Discard 0 COS4 HOL Drop 0 MTU Drop 0 COS5 HOL Drop 0 COS6 HOL Drop 0 COS7 HOL Drop 0 CTRL C ESC q Quit SPACE n Next Page p Previous P...

Page 816: ... 2 0 0 0 1 22 0 0 0 1 3 0 0 0 1 23 0 0 0 1 4 0 0 0 1 24 0 0 0 1 5 0 0 0 1 25 0 0 0 1 6 0 0 0 1 26 0 0 0 1 7 0 0 0 1 8 0 0 0 1 9 0 0 0 1 10 0 0 0 1 11 0 0 0 1 12 0 0 0 1 13 0 0 0 1 14 0 0 0 1 15 0 0 0 1 16 0 0 0 1 17 0 0 0 1 18 0 0 0 1 19 0 0 0 1 20 0 0 0 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh To display CPU utilization DGS 3620 28SC admin show utilization cpu Command show ut...

Page 817: ...ere Restrictions None Example To display DRAM utilization DGS 3620 28SC admin show utilization dram Command show utilization dram DRAM utilization Total DRAM 262144 KB Used DRAM 119586 KB Utilization 45 CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh 71 5 show utilization flash Description This command is used to display real time Flash utilization statistics Format show utilization ...

Page 818: ...ear the switch s statistics counters Format clear counters ports portlist Parameters ports Specifies a range of ports to be configured The beginning and end of the port list range are separated by a dash portlist Enter a range of ports to be configured Note If no parameter is specified the system will clear statistics counters for all ports Restrictions Only Administrator and Operator level users ...

Page 819: ...y alert critical error warning notice informational debug level_list 0 7 module module_list Parameters index Optional Specify to display the history log between two values value_list Enter to display the history log between two values For example show log index 1 5 will display the history log from 1 to 5 severity Optional Specify the severity level emergency alert critical error warning notice in...

Page 820: ...e obtained by the show log_software_module command Use commas to separate multiple modules module_list Enter the modules to be displayed Note If no parameter is specified all history log entries will be displayed Restrictions None Example To display the switch history log DGS 3620 28SC admin show log index 1 5 Command show log index 1 5 Index Date Time Level Log Text 3 2000 03 01 00 26 51 INFO 6 S...

Page 821: ... applications that support the enhanced log Format show log_software_module Parameters None Restrictions None Example To display the the protocols or applications that support the enhanced log DGS 3620 28SC admin show log_software_module Command show log_software_module CFM_EXT DHCPv6_CLIENT DHCPv6_RELAY DHCPv6_SERVER ERPS ERROR_LOG MSTP OSPFV2 VRRP DGS 3620 28SC admin 71 11 config log_save_timing...

Page 822: ... log arrives Restrictions Only Administrator and Operator level users can issue this command Example To configure method to save log as on demand DGS 3620 28SC admin config log_save_timing on_demand Command config log_save_timing on_demand Success DGS 3620 28SC admin 71 12 enable syslog Description This command is used to globally enable syslog to send log messages to a remote server Format enable...

Page 823: ...s None Restrictions Only Administrator and Operator level users can issue this command Example To disable syslog sending a message DGS 3620 28SC admin disable syslog Command disable syslog Success DGS 3620 28SC admin 71 14 show syslog Description This command is used to display the syslog protocol global state Format show syslog Parameters None Restrictions None Example To display the syslog proto...

Page 824: ...or messages warning Specifies warning messages notice Specifies notice messages informational Specifies informational messages debug Specifies debug messages level 0 7 Enter a level between 0 and 7 facility Some of the operating system daemons and processes have been assigned facility values Processes and daemons that have not been explicitly assigned a facility may use any of the local use facili...

Page 825: ... local5 local6 local7 udp_port udp_port_number state enable disable Parameters index 1 4 Enter the host index ipaddress Specifies the IPv4 address or IPv6 address of the host ipaddr Enter the IPv4 address of the host ipv6addr Enter the IPv6 address of the host severity Optional Specify the severity level supported emergency alert critical error warning notice informational or debug emergency Speci...

Page 826: ...o receive such messages enable Enable the host to receive messages disable Disable the host to receive messages Restrictions Only Administrator and Operator level users can issue this command Example To create a new syslog host DGS 3620 28SC admin create syslog host 1 ipaddress 10 1 1 1 Command create syslog host 1 ipaddress 10 1 1 1 Success DGS 3620 28SC admin 71 17 delete syslog host Description...

Page 827: ...admin 71 18 show syslog host Description This command is used to display syslog host configurations Format show syslog host index 1 4 Parameters index 1 4 Optional Specify the host index Note If no parameter is specified all hosts will be displayed Restrictions None Example To display syslog host configurations ...

Page 828: ...mation in syslogs By default syslogs will carry the information of the ipif they belong to Format config syslog source_ipif ipif_name 12 ipaddr ipv6addr none Parameters ipif_name 12 Enter the IP interface name If only this parameter is specified the IPv4 address and the smallest IPv6 address of ipif_name will be used as source IP addresses ipaddr Optional Specify the IP4 address ipv6addr Optional ...

Page 829: ...0 show syslog source_ipif Description This command is used to display the syslog source IP interface Format show syslog source_ipif Parameters None Restrictions None Example To display the syslog source interface DGS 3620 28SC admin show syslog source_ipif Command show syslog source_ipif Syslog Source IP Interface Configuration IP Interface System IPv4 Address None IPv6 Address None DGS 3620 28SC ...

Page 830: ...the switch s attack log DGS 3620 28SC admin show attack_log index 1 3 Command show attack_log index 1 3 Index Date Time Level Log Text 3 2009 12 26 14 15 45 WARN 4 Port security violation mac addrss 00 18 F3 10 94 89 on locking address full port 28 2 2009 12 26 14 15 45 WARN 4 Port security violation mac addrss 00 18 F3 10 94 89 on locking address full port 28 1 2009 12 26 14 15 45 WARN 4 Port sec...

Page 831: ...pecifies to display statistic counters of Layer 3 multicast routing control packets type Optional Specifies the type of packet that will be displayed The protocol subtype will be displayed lacp Specifies to display packet type LACP stp Specifies to display packet type STP gvrp Specifies to display packet type GVRP erps Specifies to display packet type ERPS cfm Specifies to display packet type CFM ...

Page 832: ...to display packet type SNTP dns Specifies to display packet type DNS tftp Specifies to display packet type TFTP rcp Specifies to display packet type RCP telnet Specifies to display packet type TELNET dhcp Specifies to display packet type DHCP dhcpv6 Specifies to display packet type DHCPv6 udp helper Specifies to display packet type UDP Helper Restrictions None Example To display statistics of all ...

Page 833: ...0 MLD 0 0 0 PIM IPv4 0 0 0 PIM IPv6 0 0 0 DVMRP 0 0 0 Reserved IPv4 IPMC 0 0 0 Reserved IPv6 IPMC 0 0 0 Unknown IPv4 IPMC 0 0 0 Unknown IPv6 IPMC 0 0 0 DGS 3620 28SC admin To display statistics of OSPFv2 packets DGS 3620 28SC admin show cpu port type ospfv2 Command show cpu port type ospfv2 Type PPS Total Drop OSPFv2 0 0 0 Hello 0 DD 0 LSR 0 LSU 0 LSAck 0 DGS 3620 28SC admin 71 24 clear cpu port D...

Page 834: ...er 3 Managed Stackable Gigabit Switch CLI Reference Guide 829 Parameters None Restrictions None Example To clear all counters for all packets DGS 3620 28SC admin clear cpu port Command clear cpu port Success DGS 3620 28SC admin ...

Page 835: ...If a port s is active it initiates the discovery Otherwise it reacts to the discovery received from peer Disabling a port s OAM will cause the port to send out a dying gasp event to peers and then disconnect the established OAM link The link monitoring parameter is used to configure port Ethernet OAM link monitoring error symbols The link monitoring function provides a mechanism to detect and indi...

Page 836: ...eshold is 1 symbol error range 0 4294967295 Enter the range from 0 to 4294967295 window The range is 1000 to 60000 ms The default value is 1000ms millisecond 1000 60000 The range is 1000 to 60000 ms notify_state Specifies the event notification status The default state is enable enable Specify to enable event notification disable Specify to disable event notification error_frame Specifies the erro...

Page 837: ...re Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure Ethernet OAM on ports 1 to 2 in active mode DGS 3620 28SC admin config ethernet_oam ports 1 2 mode active Command config ethernet_oam ports 1 2 mode active Success DGS 3620 28SC admin To enable Ethernet OAM on port 1 DGS 3620 28SC admin config ethernet_oam ports 1 state enable Command...

Page 838: ... notify_state enable Command config ethernet_oam ports 1 link_monitor error_frame_period threshold 10 window 1000000 notify_state enable Success DGS 3620 28SC admin To configure a dying gasp event for port 1 DGS 3620 28SC admin config ethernet_oam ports 1 critical_link_event dying_gasp notify_state enable Command config ethernet_oam ports 1 critical_link_event dying_gasp notify_state enable Succes...

Page 839: ...NonOperHalfDuplex Since Ethernet OAM functions are not designed to work completely over half duplex port This value indicates Ethernet OAM is enabled but the port is in half duplex operation 3 OAM mode passive or active 4 Maximum OAMPDU size The largest OAMPDU that the OAM entity supports OAM entities exchange maximum OAMPDU sizes and negotiate to use the smaller of the two maximum OAMPDU sizes be...

Page 840: ...cifies to display the Ethernet OAM event log information index Optional Specify an index range to display value_list Optional Specify an index range to display Restrictions None Example To display Ethernet OAM statistics information for port 1 DGS 3620 28SC admin show ethernet_oam ports 1 statistics Command show ethernet_oam ports 1 statistics Port 1 Information OAMPDU TX 0 Information OAMPDU RX 0...

Page 841: ...ernet OAM ports event_log Specifies to clear Ethernet OAM event log information statistics Specifies to clear Ethernet OAM statistics Restrictions Only Administrator Operator and Power User level users can issue this command Example To clear port 1 OAM statistics DGS 3620 28SC admin clear ethernet_oam ports 1 statistics Command clear ethernet_oam ports 1 statistics Success DGS 3620 28SC admin To c...

Page 842: ...tub nssa translate enable disable stub_summary enable disable metric value 0 65535 delete ospf area area_id show ospf area area_id create ospf host_route ipaddr area area_id metric value 1 65535 config ospf host_route ipaddr area area_id metric value 1 65535 1 delete ospf host_route ipaddr show ospf host_route ipaddr config ospf router_id ipaddr create ospf virtual_link area_id neighbor_id hello_i...

Page 843: ...n be specified The Dead Interval must be evenly divisable by the Hello Interval sec 1 65535 Enter the dead packet interval value here This value must be between 1 and 65535 seconds authentication Optional Specifies that authentication value none Specifies that the authentication value will be set to none simple Specifies that a simple text password must be specified password 8 Enter the simple tex...

Page 844: ...ble nssa_ext advertise enable disable Parameters area_id A 32 bit number in the form of an IP address xxx xxx xxx xxx that uniquely identifies the OSPF area in the OSPF domain network_address The IP address that uniquely identifies the network that corresponds to the OSPF Area The network address format is IP address prefix length lsdb_type Specifies the Link State Database LSDB type of address ag...

Page 845: ...ddress format is IP address prefix length lsdb_type Specifies the Link State Database LSDB type of address aggregation summary Specifies the LSDB type as summary advertise Optional Allows for the advertisement of the summary LSDB enable Specifies that the advertisement trigger will be enabled disable Specifies that the advertisement trigger will be disabled nssa_ext Specifies the LSDB type as a No...

Page 846: ...e network address format is IP address prefix length lsdb_type Specifies the LSDB type summary Specifies the LSDB type as summary nssa_ext Specifies the LSDB type as NSSA EXT Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete an OSPF area aggregation settings DGS 3620 28SC admin delete ospf aggregation 10 1 1 1 10 48 76 122 16 lsdb_type sum...

Page 847: ...e may consist of AS external advertisements An OSPF AS external advertisement is usually flooded throughout the entire AS However OSPF allows certain areas to be configured as stub areas AS external advertisements are not flooded into throughout stub areas routing to AS external destinations in these areas is based on a per area default only This reduces the topological database size and therefore...

Page 848: ...reas to be configured as stub areas AS external advertisements are not flooded into throughout stub areas routing to AS external destinations in these areas is based on a per area default only This reduces the topological database size and therefore the memory requirements for a stub area s internal routers normal Specifies that the OSPF area type will be set to normal stub Specifies that the OSPF...

Page 849: ...min 73 8 delete ospf area Description This command is used to delete an OSPF area Format delete ospf area area_id Parameters area_id Enter the OSPF area ID used here Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete an OSPF area DGS 3620 28SC admin delete ospf area 10 48 74 122 Command delete ospf area 10 48 74 122 Success DGS 3620 28SC ad...

Page 850: ...e Total Entries 4 DGS 3620 28SC admin 73 10 create ospf host_route Description This command is used to create an OSPF host route Format create ospf host_route ipaddr area area_id metric value 1 65535 Parameters ipaddr Enter the host s IP address used here area Optional Specifies a 32 bit number in the form of an IP address xxx xxx xxx xxx that uniquely identifies the OSPF area in the OSPF domain a...

Page 851: ...e area Optional Specifies a 32 bit number in the form of an IP address xxx xxx xxx xxx that uniquely identifies the OSPF area in the OSPF domain area_id Enter the area ID value here metric Optional Specifies a metric that will be advertised value 1 65535 Enter the metric value used here This value must be between 1 and 65535 Restrictions Only Administrator Operator and Power User level users can i...

Page 852: ...issue this command Example To delete an OSPF host route DGS 3620 28SC admin delete ospf host_route 10 48 74 122 Command delete ospf host_route 10 48 74 122 Success DGS 3620 28SC admin 73 13 show ospf host_route Description This command is used to display the current OSPF host route table Format show ospf host_route ipaddr Parameters ipaddr Optional Enter the host s IP address used here Restriction...

Page 853: ...onfigure the router ID for the switch Each switch that is configured to run OSPF must have a unique router ID Format config ospf router_id ipaddr Parameters ipaddr Enter the router s IP address here Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the router ID for the switch DGS 3620 28SC admin config ospf router_id 10 48 74 122 Comma...

Page 854: ...on of the length of time between the receipt of Hello packets from a neighbor router before the selected area declares that router down An interval between 1 and 65535 seconds can be specified The Dead Interval must be evenly divisable by the Hello Interval sec 1 65535 Enter the dead packet interval used here This value must be between 1 and 65535 authentication Optional Specifies the authenticati...

Page 855: ...ification of the length of time between the receipt of Hello packets from a neighbor router before the selected area declares that router down An interval between 1 and 65535 seconds can be specified The Dead Interval must be evenly divisable by the Hello Interval sec 1 65535 Enter the dead packet interval used here This value must be between 1 and 65535 authentication Optional Specifies the authe...

Page 856: ... virtual link DGS 3620 28SC admin delete ospf virtual_link 10 1 1 12 20 1 1 1 Command delete ospf virtual_link 10 1 1 12 20 1 1 1 Success DGS 3620 28SC admin 73 18 show ospf virtual_link Description This command is used to display the current OSPF virtual interface configuration Format show ospf virtual_link area_id neighbor_id Parameters area_id Optional Specifies a 32 bit number in the form of a...

Page 857: ...al Interval Status 4 4 4 4 1 1 1 1 10 60 MD5 Up 4 4 4 4 6 6 6 6 10 250 Simple Down Total Entries 2 DGS 3620 28SC admin 73 19 enable ospf Description This command is used to enable OSPF on the switch Format enable ospf Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable OSPF on the switch DGS 3620 28SC admin enable ospf Comman...

Page 858: ...y the current OSPF state DGS 3620 28SC admin show ospf Command show ospf OSPF Router ID 10 90 90 90 Auto selected State Enabled OSPF Interface Settings Interface IP Address Area ID State Link Metric Status System 10 90 90 90 8 0 0 0 0 Disabled Link Down 1 Total Entries 1 OSPF Area Settings Area ID Type Stub Import Summary LSA Stub Default Cost Translate 0 0 0 0 Normal None None None 10 0 0 0 Norma...

Page 859: ...1 OSPF Host Route Settings Host Address Metric Area ID 10 90 91 90 1 0 0 0 0 Total Entries 1 DGS 3620 28SC admin 73 21 disable ospf Description This command is used to disable OSPF on the switch Format disable ospf Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable OSPF on the switch DGS 3620 28SC admin disable ospf Command...

Page 860: ...s router link netlink Specifies the type to be displayed as network link summary Specifies the type to be displayed as summary assummary Specifies the type to be displayed as AS summary asextlink Specifies the type to be displayed as AS external link nssa_ext Specifies the type to be displayed as NSSA external information stub Specifies the type to be displayed as STUB link Restrictions None Examp...

Page 861: ...of Neighbor Neighbor Neighbor Neighbor Priority State 10 48 74 122 10 2 2 2 1 Initial Total Entries 1 DGS 3620 28SC admin 73 24 show ospf virtual_neighbor Description This command is used to display the OSPF neighbor information of OSPF virtual links Format show ospf virtual_neighbor area_id neighbor_id Parameters area_id Optional Specifies a 32 bit number in the form of an IP address xxx xxx xxx ...

Page 862: ...always Specifies that the external default route will be originated whether a default route exists or not default Specifies that the external default route will be originated only when one default route already exists none Specifies that the external default route will never be originated mettype Specifies the type of LSA that contains the default external route imported into OSPF 1 Specifies that...

Page 863: ... Switch CLI Reference Guide 858 Example To set the status of originating the OSPF default external route DGS 3620 28SC admin config ospf default information originate always Command config ospf default information originate always Success DGS 3620 28SC admin ...

Page 864: ..._prefix inter_area_router asextlink link_lsa intra_area_prefix show ospfv3 neighbor neighbor_id ipif ipif_name 12 show ospfv3 virtual_neighbor area_id neighbor_id config ospfv3 ipif ipif_name 12 all area area_id priority value 0 255 hello_interval sec 1 65535 dead_interval sec 1 65535 instance value 0 255 metric value 1 65535 state enable disable passive enable disable 1 create ospfv3 virtual_link...

Page 865: ...o disable OSPFv3 on the Switch Format disable ospfv3 Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command EI Mode Only Command Example To disable OSPFv3 DGS 3620 28SC admin disable ospfv3 Command disable ospfv3 Success DGS 3620 28SC admin 74 3 show ospfv3 Description This command is used to display the OSPFv3 configurations or OSPFv3 interfaces...

Page 866: ...tions or interfaces information DGS 3620 28SC admin show ospfv3 Command show ospfv3 OSPFv3 Router ID 1 1 1 1 State Enabled OSPFv3 Interface Settings Interface Area ID State Link Metric Instance ID Status System 0 0 0 0 Disabled Link Up 10 0 Total Entries 1 OSPFv3 Area Settings Area ID Type Stub Import Summary LSA Stub Default Cost 0 0 0 0 Normal None None Total Entries 1 Virtual Interface Configur...

Page 867: ... Up Network Medium Type Broadcast Metric 10 Area ID 0 0 0 0 Administrative State Disabled Priority 1 DR State Down DR ID None Backup DR ID None Hello Interval 10 Dead Interval 40 Transmit Delay 1 Retransmit Time 5 Passive Mode Disabled Instance ID 0 Total Entries 1 DGS 3620 28SC admin 74 4 config ospfv3 router_id Description This command is used to configure the OSPFv3 router ID Format config ospf...

Page 868: ... IPv4 address that uniquely identifies the OSPFv3 area in the OSPFv3 domain type Specifies the OSPFv3 area mode of operation There are two types normal Specifies that the OSPFv3 area will be created as a normal area stub Specifies that the OSPFv3 area will be created as a stub area stub_summary Optional Specifies the OSPFv3 stub area to import inter area prefix LSA advertisements or not enable Imp...

Page 869: ...rea The backbone area 0 0 0 0 can not be deleted Format delete ospfv3 area area_id Parameters area_id Enter the OSPFv3 area s ID here It is a 32 bit number in the form of an IPv4 address that uniquely identifies the OSPFv3 area in the OSPFv3 domain Restrictions Only Administrator Operator and Power User level users can issue this command EI Mode Only Command Example To delete an OSPFv3 area DGS 36...

Page 870: ...refix LSA into this stub area disable Do not import inter area prefix LSA into this stub area metric Optional Specifies the default cost of OSPFv3 stub area value 0 65535 Enter the metric value used here This value must be between 0 and 65535 The default value is 1 Restrictions Only Administrator Operator and Power User level users can issue this command EI Mode Only Command Example To configure a...

Page 871: ... 9 create ospfv3 aggregation Description This command is used to create an OSPFv3 area aggregation Format create ospfv3 aggregation area_id ipv6networkaddr advertise enable disable Parameters area_id Specifies the OSPFv3 area s ID It is a 32 bit number in the form of an IPv4 address that uniquely identifies the OSPFv3 area in the OSPFv3 domain ipv6networkaddr Specifies the IPv6 network address of ...

Page 872: ...ea aggregation Format delete ospfv3 aggregation area_id ipv6networkaddr Parameters area_id Specifies the OSPFv3 area s ID It is a 32 bit number in the form of an IPv4 address that uniquely identifies the OSPFv3 area in the OSPFv3 domain ipv6networkaddr Specifies the IPv6 network address of the aggregation Restrictions Only Administrator Operator and Power User level users can issue this command EI...

Page 873: ... area disable Specifies that the OSPFv3 ABR will not use this aggregation to aggregate the intra area routes when it advertises these routes to another area Restrictions Only Administrator Operator and Power User level users can issue this command EI Mode Only Command Example To configure an OSPFv3 area aggregation DGS 3620 28SC admin config ospfv3 aggregation 2 2 2 2 2000 16 advertise disable Com...

Page 874: ...iption This command is used to display OSPFv3 Link State Database Format show ospfv3 lsdb area area_id type rtrlink netlink inter_area_prefix inter_area_router asextlink link_lsa intra_area_prefix Parameters area Optional Specifies that only the LSAs that belong to this area will be displayed area_id Enter the area ID used here type Optional Specifies that only this type of LSAs will be displayed ...

Page 875: ...ate ID ADV Router Age Seq Prefix 0 0 0 1 2 2 2 2 696 0x80000003 1 Intra Area Prefix LSA Area 0 0 0 0 Link State ID ADV Router Age Seq Ref LSA Type 0 0 0 1 2 2 2 2 684 0x80000004 0x2001 Total Entries 3 DGS 3620 28SC admin show ospfv3 lsdb type rtrlink Command show ospfv3 lsdb type rtrlink LS Age 782 LS Type Router LSA Link State ID 0 0 0 0 Advertising Router 2 2 2 2 LS Seq Number 0x80000003 Checksu...

Page 876: ...0 System 1 Full 20 20 20 20 ip1 10 Full Total Entries 2 DGS 3620 28SC admin show ospfv3 neighbor 10 10 10 10 ipif System Command show ospfv3 neighbor 10 10 10 10 ipif System Neighbor ID 10 10 10 10 Interface Name System Neighbor Options 19 Neighbor Priority 255 Neighbor State Full State Changes 6 times Interface ID 1 DGS 3620 28SC admin 74 15 show ospfv3 virtual_neighbor Description This command i...

Page 877: ...ospfv3 Description This command is used to configure an OSPFv3 interface Format config ospfv3 ipif ipif_name 12 all area area_id priority value 0 255 hello_interval sec 1 65535 dead_interval sec 1 65535 instance value 0 255 metric value 1 65535 state enable disable passive enable disable 1 Parameters ipif Specifies the OSPFv3 IP interface name used ipif_name 12 Enter the OSPFv3 IP interface name u...

Page 878: ...lt value is 10 state Optional Specifies to enable or disable this interface to run OSPFv3 enable Specifies that the OSPFv3 state for this interface will be enabled disable Specifies that the OSPFv3 state for this interface will be disabled passive Optional Specifies that the user may select Active or Passive for this OSPFv3 interface Active interfaces actively advertise OSPFv3 to routers on other ...

Page 879: ...Interval must be evenly divisible by the Hello Interval sec 1 65535 Enter the dead interval value used here This value must be between 1 and 65535 seconds The default value is 60 seconds instance Optional Specifies the instance ID on the virtual link value 0 255 Enter the instance ID value here This value must be between 0 and 255 The default value is 0 Restrictions Only Administrator Operator and...

Page 880: ... virtual link value 0 255 Enter the instance ID value here This value must be between 0 and 255 The default value is 0 Restrictions Only Administrator Operator and Power User level users can issue this command EI Mode Only Command Example To configure an OSPFv3 virtual link DGS 3620 28SC admin config ospfv3 virtual_link 1 1 1 1 60 60 60 60 hello_interval 20 dead_interval 80 instance 1 Command conf...

Page 881: ... bit number in the form of an IPv4 address that uniquely identifies the OSPFv3 area in the OSPFv3 domain This area is the transit area where the virtual link is built neighbor_id Optional Specifies a 32 bit number in the form of an IPv4 address that uniquely identifies the OSPFv3 virtual neighbor in the OSPFv3 domain Restrictions None EI Mode Only Command Example To display an OSPFv3 virtual link ...

Page 882: ...ence Guide 877 Command show ospfv3 virtual_link 1 1 1 1 60 60 60 60 Transit Area ID 1 1 1 1 Virtual Neighbor Router ID 60 60 60 60 Hello Interval 10 Dead Interval 60 Transmit Delay 1 Retransmit Time 5 Instance ID 0 Virtual Link Status Down Total Entries 1 DGS 3620 28SC admin ...

Page 883: ...le disable multicast enable disable unicast enable disable action drop shutdown threshold value 0 255000 broadcast_threshold value 0 255000 multicast_threshold value 0 255000 unicast_threshold value 0 255000 countdown min 0 min 3 30 disable time_interval sec 5 600 Parameters portlist Enter a range of ports to be configured all Specifies all ports are to be configured broadcast Specifies the broadc...

Page 884: ...alue must be between 0 and 255000 countdown The timer for shutdown mode When a port enters a shutdown RX state and if this times out the port will shut down the port forever The default is 0 minutes min 0 Zero is the disable forever state min 3 30 Enter a value between 3 and 30 minutes disable Specifies that when the action is shutdown and the countdown is disabled when the Switch detects a storm ...

Page 885: ... 28SC admin 75 3 config traffic control log state Description This command is used to configure the traffic control log state When the log state is enabled traffic control states are logged when a storm occurs and when a storm is cleared If the log state is disabled traffic control events are not logged The log state is only applicable for shutdown mode Since shutdown mode only support broadcast a...

Page 886: ...n is drop there will no traps issue while storm event is detected Format config traffic trap none storm_occurred storm_cleared both Parameters none No notification will be generated when storm event is detected or cleared storm_occurred A notification will be generated when a storm event is detected storm_cleared A notification will be generated when a storm event is cleared both A notification wi...

Page 887: ...isplay the traffic control for ports 1 to 3 DGS 3620 28SC admin show traffic control 1 1 1 3 Command show traffic control 1 1 1 3 Traffic Control Trap None Traffic Control Log Enabled Traffic Control Auto Recover Time 0 Minutes Port Broadcast Multicast Unicast Action Count Time Shutdown Threshold Threshold Threshold down Interval Forever 1 1 Disabled Disabled Disabled drop 0 5 131072 131072 131072...

Page 888: ...xStack DGS 3620 Series Layer 3 Managed Stackable Gigabit Switch CLI Reference Guide 883 DGS 3620 28SC admin ...

Page 889: ...overy mode Note The configuration does not take effect until saved Format enable password_recovery Parameters None Restrictions Only Administrator level users can issue this command Example To enable the password recovery mode DGS 3620 28SC admin enable password_recovery Command enable password_recovery Success DGS 3620 28SC admin 76 2 disable password_recovery Description This command is used to ...

Page 890: ...overy state is enabled a user can reboot the switch and enter into the Password Recovery mode Otherwise if the Password Recovery state is disabled a user will not be able to enter into the special recovery mode Note Only the NV RAM configuration will take effect when the switch restarts next time the running configuration does not take effect until saved That means the password recovery is determi...

Page 891: ...kable Gigabit Switch CLI Reference Guide 886 Example To display the password recovery state DGS 3620 28SC admin show password_recovery Command show password_recovery Running Configuration Disabled NV RAM Configuration Enabled DGS 3620 28SC admin ...

Page 892: ...twork_address rp ipif_name 12 delete pim crp group network_address show pim crp config pim last_hop_spt_switchover never immediately show pim ipmroute create pim static_rp group network_address rp ipaddr delete pim static_rp group network_address show pim static_rp show pim rpset create pim register_checksum_include_data rp_address ipaddr delete pim register_checksum_include_data rp_address ipaddr...

Page 893: ...lticast protocol mode used dense mode or sparse mode or sm dm mode The default value is dense mode dm Specifies that the multicast protocol mode will be set to dense mode sm Specifies that the multicast protocol mode will be set to sparse mode sm dm Specifies that the multicast protocol mode will be set to sparse dense mode dr_priority Optional Specifies the priority for DR election uint 0 4294967...

Page 894: ... this command Example To enable PIM DGS 3620 28SC admin enable pim Command enable pim Success DGS 3620 28SC admin 77 3 disable pim Description This command is used to disable PIM on the switch Format disable pim Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable PIM DGS 3620 28SC admin disable pim Command disable pim Succes...

Page 895: ...d here This name can be up to 12 characters long ipaddress Optional Specifies the IP address and netmask of the destination network_address Enter the destination IP address used here If no parameter is specified the system will display all the PIM neighbor addresses in the table Restrictions None Example To display PIM neighbor address table DGS 3620 28SC admin show pim neighbor Command show pim n...

Page 896: ...nterval Interval Mode State System 10 90 90 101 8 10 90 90 101 35 70 DM Enabled Total Entries 1 DGS 3620 28SC admin 77 6 config pim cbsr Description This command is used to set the priority hash mask length and bootstrap period of the candidate bootstrap C BSR router per interface Format config pim cbsr ipif ipif_name 12 priority 1 value 0 255 hash_masklen value 0 32 bootstrap_period value 1 255 P...

Page 897: ...ult value is 60 seconds Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the C BSR for the System interface DGS 3620 28SC admin config pim cbsr ipif System priority 255 Command config pim cbsr ipif System priority 255 Success DGS 3620 28SC admin 77 7 show pim cbsr Description This command is used to list the candidate bootstrap router ...

Page 898: ...e RP here This value must be between 0 and 255 The default value is 150 seconds priority Optional Specifies the priority used for RP election This priority value will be included in the router s CRP advertisements A lower value means a higher priority yet if there is a tie for the highest priority the router having the higher IP address will become the RP value 0 255 Enter the priority value used ...

Page 899: ...me 12 Enter the IP interface name used here This name can be up to 12 characters long Restrictions Only Administrator Operator and Power User level users can issue this command Example To add a multicast group range into a C RP server list DGS 3620 28SC admin create pim crp group 224 1 2 3 32 rp System Command create pim crp group 224 1 2 3 32 rp System Success DGS 3620 28SC admin 77 10 delete pim...

Page 900: ...nd delete pim crp group 224 1 2 3 32 Success DGS 3620 28SC admin 77 11 show pim crp Description This command is used to list all the candidate rendezvous point C RP related information Format show pim crp Parameters None Restrictions None Example To list all the candidate rendezvous point C RP related information DGS 3620 28SC admin show pim crp Command show pim crp PIM Candidate RP Table C RP Hol...

Page 901: ...ata from the shortest path tree Format config pim last_hop_spt_switchover never immediately Parameters never Specifies that the router will always receive multicast data from the shared tree immediately Specifies that the router will always receive multicast data from shortest path tree Restrictions Only Administrator Operator and Power User level users can issue this command Example Set the SPT s...

Page 902: ...5 7 7 5 12 90 90 90 32 0 0 0 0 RPT G ASM 226 0 0 0 12 90 90 90 32 0 0 0 0 RPT G ASM 227 0 0 3 12 90 90 90 32 0 0 0 0 RPT G ASM 232 0 0 0 12 90 90 114 32 0 0 0 0 SPT S G SSM 239 255 255 250 12 90 90 90 32 0 0 0 0 RPT G ASM Total Entries 8 DGS 3620 28SC admin 77 14 create pim static_rp group Description This command is used to create a static RP Format create pim static_rp group network_address rp i...

Page 903: ...rmat delete pim static_rp group network_address Parameters group Specifies the multicast group address that will removed from the static RP network_address Enter the multicast group address used here Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete a static RP DGS 3620 28SC admin delete pim static_rp group 224 1 2 0 24 Command delete pim ...

Page 904: ...mmand show pim static_rp PIM Static RP Table Group RP Address 224 1 2 0 24 10 52 33 4 239 1 1 0 24 10 52 33 18 Total Entries 2 DGS 3620 28SC admin 77 17 show pim rpset Description This command is used to list all the RPset information Format show pim rpset Parameters None Restrictions None Example To list all the RPset information DGS 3620 28SC admin show pim rpset Command show pim rpset PIM RP Se...

Page 905: ...routers will calculate checksum for register packet including data portion This configuration makes our routers communicate with those earlier routers smoothly The default set is not including data portion Format create pim register_checksum_include_data rp_address ipaddr Parameters rp_address Specifies that the RP will expect to receive a register packet in which the checksum will be included in ...

Page 906: ...t ipaddr Enter the RP address used here Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete the register checksum including the data for the specific RP address DGS 3620 28SC admin delete pim register_checksum_include_data rp_address 10 54 71 9 Command delete pim register_checksum_include_data rp_address 10 54 71 9 Success DGS 3620 28SC admi...

Page 907: ... Format config pim ssm state enable disable group_range default network_address 1 Parameters state Optional Specifies to enable or disable the SSM service model on the Switch enable Specifies that the SSM service model will be enabled disable Specifies that the SSM service model will be disabled group_range Optional Specifies the group address range for the SSM service in IPv4 default The default ...

Page 908: ...nge DGS 3620 28SC admin show pim ssm Command show pim ssm SSM Service Model State Enabled SSM Group 232 0 0 0 8 DGS 3620 28SC admin 77 23 show pim passive Description This command is used to display PIM interface passive mode Format show pim passive ipif ipif_name 12 Parameters ipif Optional Specifies the IP interface name ipif_name 12 Enter the IP interface name This name can be up to 12 characte...

Page 909: ...S 3620 Series Layer 3 Managed Stackable Gigabit Switch CLI Reference Guide 904 DGS 3620 28SC admin show pim passive Command show pim passive Interface Passive System Disabled Total Entries 1 DGS 3620 28SC admin ...

Page 910: ...rkaddr config pim6 embedded_rp state enable disable show pim6 crp show pim6 static_rp show pim6 rpset config pim6 register_checksum_calculate include_data not_include_data config pim6 register_probe_time sec 1 127 config pim6 register_suppression_time sec 3 65535 config pim6 keepalive_period sec 120 65535 show pim6 mroute s_g rpt group ipv6addr source ipv6addr ipif ipif_name 12 show pim6 mroute st...

Page 911: ...he default value is 60 seconds dr_priority Optional Specifies the Designated Router Priority value inserted into the DR Priority option in PIM6 Hello message transmitted on this interface Numerically higher values for this parameter indicate higher priorities uint 0 4294967294 Enter the Designated Router priority value used here This value must be between 0 and 4294967294 The default value is 1 bs...

Page 912: ...system will display the PIM6 parameters on all IPv6 interfaces in brief Restrictions None EI Mode Only Command Example To show the brief info of the PIM6 protocol concerned parameters on all interfaces DGS 3620 28SC admin show pim6 Command show pim6 PIM6 Global State Enabled Last Hop SPT Switchover Immediately Register Probe Interval 5 sec Register Suppression Timeout 60 sec Keepalive Period 210 s...

Page 913: ...le False BSR Domain Border Disabled Stub Interface Disabled DGS 3620 28SC admin 78 3 config pim6 cbsr Description This command is used to set the parameters concerned with the candidate bootstrap router Format config pim6 cbsr ipif ipif_name 12 state enable disable priority value 0 255 hash_masklen value 0 128 1 Parameters ipif Optional Specifies the IP interface used in this configuration ipif_na...

Page 914: ...in config pim6 cbsr ipif System state enable priority 64 hash_masklen 126 Command config pim6 cbsr ipif System state enable priority 64 hash_masklen 126 Success DGS 3620 28SC admin 78 4 show pim6 cbsr Description This command is used to display the candidate bootstrap router information Format show pim6 cbsr Parameters None Restrictions None EI Mode Only Command Example To show C BSR settings on t...

Page 915: ... 0 255 Enter the RP priority value used here This value must be between 0 and 255 The default value is 192 interval Optional Specifies the C RP advertisement interval in seconds sec 1 16383 Enter the C RP advertisement interval value here This value must be betwee 1 and 16383 seconds The default value is 60 seconds Restrictions Only Administrator Operator and Power User level users can issue this ...

Page 916: ...create pim6 crp group FF1E 12EF 1023 64 rp System Command create pim6 crp group FF1E 12EF 1023 64 rp System Success DGS 3620 28SC admin 78 7 delete pim6 crp group Description This command is used to delete a multicast group range from the C RP serve list Format delete pim6 crp group ipv6networkaddr Parameters group Specifies the multicast group address range of the C RP entry that wants to be remo...

Page 917: ...strator Operator and Power User level users can issue this command EI Mode Only Command Example To enable PIM global state for IPv6 network DGS 3620 28SC admin enable pim6 Command enable pim6 Success DGS 3620 28SC admin 78 9 disable pim6 Description This command is used to disable the PIM global state for IPv6 network Format disable pim6 Parameters None Restrictions Only Administrator Operator and...

Page 918: ...ers last_hop_spt_switchover Specifies the SPT switchover mode on the last hop switch never Specifies that the mode will never switch to SPT This is the default value immediately Specifies that the mode will immediately switch to SPT Restrictions Only Administrator Operator and Power User level users can issue this command EI Mode Only Command Example To set the SPT switchover mode to never DGS 362...

Page 919: ... show pim6 neighbor Command show pim6 neighbor PIM6 Neighbor Address Table Interface Neighbor Address System FE80 11FF 4CD8 Total Entries 1 DGS 3620 28SC admin To show the PIM6 neighbors of interface n20 DGS 3620 28SC admin show pim6 neighbor ipif n20 Command show pim6 neighbor ipif n20 Neighbor Info on Interface n20 Neighbor Address FE80 11FF 4CD8 Neighbor Up Time 00 00 50 Neighbor Expiry Time 00...

Page 920: ...estrictions None EI Mode Only Command Example To show the whole IPv6 multicast routing table generated on the switch DGS 3620 28SC admin show pim6 mroute Command show pim6 mroute Total RP Entries 0 Total G Entries 1 Total S G Entries 2 Total S G rpt Entries 1 Group FF13 100 Source Upstream n1 Outgoing n10 n30 Group FF13 100 Source 2001 1111 Upstream n2 Outgoing n10 Group FF13 102 Source 2001 3F6D ...

Page 921: ...tgoing Source 2001 3F6D Upstream n2 Outgoing n20 Total Entries 4 DGS 3620 28SC admin To show the detailed info of the multicast routing entries for the specific S G you should specify the group address and the source address DGS 3620 28SC admin show pim6 mroute group FF13 100 source 2001 1111 Command show pim6 mroute group FF13 100 source 2001 1111 S G Entry for group FF13 100 source 2001 1111 RPT...

Page 922: ... override_dynamic Parameters group Specifies the multicast group network address for this static RP ipv6networkaddr Enter the IPv6 group network address used here rp Specifies the IPv6 address to this static RP ipv6addr Enter the IPv6 address used here override_dynamic Optional Specifies that the static RP will override the dynamically learned RP Restrictions Only Administrator Operator and Power ...

Page 923: ... group FF1E 64 Command delete pim6 static_rp group FF1E 64 Success DGS 3620 28SC admin 78 15 config pim6 embedded_rp state Description This command is used to set the state of the embedded RP Format config pim6 embedded_rp state enable disable Parameters state Specifies the embedded RP support in the PIM6 state enable Specifies that embedded RP support will be enabled disable Specifies that embedd...

Page 924: ...ation Format show pim6 crp Parameters None Restrictions None EI Mode Only Command Example To show the C RP information DGS 3620 28SC admin show pim6 crp Command show pim6 crp PIM6 Candidate RP Table Group Interface Priority Interval FF1E 90 64 System 192 150 Total Entries 1 DGS 3620 28SC admin 78 17 show pim6 static_rp Description This command is used to list all static RP settings Format show pim...

Page 925: ... FF1E 9B 64 RP Address 3000 1 Override Dynamic True Group FF1E 9C 64 RP Address 3000 5 Override Dynamic False Total Entries 2 DGS 3620 28SC admin 78 18 show pim6 rpset Description This command is used to list the entire active RP information Format show pim6 rpset Parameters None Restrictions None EI Mode Only Command Example To show the entire active RP information DGS 3620 28SC admin show pim6 r...

Page 926: ...egister packet including data portion This configuration makes our routers communicate with those earlier routers smoothly The default set is not including data portion Format config pim6 register_checksum_calculate include_data not_include_data Parameters register_checksum_calculate Specifies the register packet checksum calculating mechanism include_data When calculate the checksum in IPv6 PIM r...

Page 927: ...ault value is 5 seconds Restrictions Only Administrator Operator and Power User level users can issue this command EI Mode Only Command Example To configure the register probe time to be 20 seconds DGS 3620 28SC admin config pim6 register_probe_time 20 Command config pim6 register_probe_time 20 Success DGS 3620 28SC admin 78 21 config pim6 register_suppression_time Description This command is used...

Page 928: ... to configure the PIM6 SM multicast routing entry Keepalive Timer This is the period during which the PIM router will maintain S G state in the absence of explicit S G local membership or S G join messages received to maintain it Format config pim6 keepalive_period sec 120 65535 Parameters keepalive_period Specifies the period during which the PIM router will maintain S G state in the absence of e...

Page 929: ... ipv6addr Enter the IPv6 interface network address used here ipif Specifies the IPv6 interface name ipif_name 12 Enter the IPv6 interface name here This name can be up to 12 characters long If no parameter is specified the switch will display all the S G route entries in the IPv6 multicast routing table in brief If only specified parameter rpt the switch will display all the S G rpt route entries ...

Page 930: ...FE80 12ED RPF Route Protocol OSPF RPF Route Address 3FFE 10 10 147 RPF Route Prefix Length 64 RPF Route Metric Pref 110 RPF Route Metric 3 SPT Bit True Keepalive Timer 60 sec DR Register State NoInfo DR Register Stop Timer 0 sec DGS 3620 28SC admin To show the detailed information on a downstream interface of the multicast routing entry S G specify the group address source address and the interfac...

Page 931: ...ific multicasting routing entry by specifying the options in the command To show the detailed information of a multicast route entry S G rpt specify the group address and the source address DGS 3620 28SC admin show pim6 mroute s_g rpt group FF13 100 source 2001 1111 Command show pim6 mroute s_g rpt group FF13 100 source 2001 1111 Group Address FF13 100 Source Address 2001 1111 Uptime 150 sec Upstr...

Page 932: ...ute star_g group ipv6addr ipif ipif_name 12 Parameters group Optional Specifies the IPv6 multicast group address ipv6addr Enter the IPv6 multicast group address used here ipif Optional Specifies the IPv6 interface name ipif_name 12 Enter the IPv6 interface name used here This name can be up to 12 characters long If no parameter is specified the switch will display all G entries of the IPv6 multica...

Page 933: ... Join State Joined Upstream Join Timer 20 sec Upstream Neighbor FE80 68FE RPF Next Hop FE80 68FE RPF Route Protocol OSPF RPF Route Address 3FF5 147 RPF Route Prefix Length 64 RPF Route Metric Preference 110 RPF Route Metric 3 DGS 3620 28SC admin To show the detailed information on a downstream interface of the multicast routing entries G specify the group address and the interface name DGS 3620 28...

Page 934: ...scription This command is used to create a policy route and define the rule s name Format create policy_route name policyroute_name 32 Parameters policyroute_name 32 The policy route name The maximum length is 32 characters Restrictions Only Administrator Operator and Power User level users can issue this command Example To create a policy route named danilo DGS 3620 28SC admin create policy_route...

Page 935: ...he system will display an error message If the ACL rule action is drop these packets will not forward and the policy route will not be implemented When a packet passes from the policy route its TTL will decrease by 1 If a user deletes an ACL rule that is linked to a policy rule the system will display an error message Format config policy_route name policyroute_name 32 acl profile_id value 1 6 acc...

Page 936: ...iority than the route in the routing table Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure all packets which match ACL rule profile ID 1 and access ID 1 and then route to 20 1 1 100 DGS 3620 28SC admin config policy_route name danillo acl profile_id 1 access_id 1 nexthop 20 1 1 100 state enable Command config policy_route name danillo...

Page 937: ...gabit Switch CLI Reference Guide 932 DGS 3620 28SC admin show policy_route Command show policy_route Policy Routing Table Name Pro Access Next Hop State Route file ID Pre ID ference route 1 1 192 168 69 1 Enabled PBR Total Entries 1 DGS 3620 28SC admin ...

Page 938: ...e are four levels of limitations on the learned entry number for the entire system for a port for a VLAN and for specific VLAN on a port If any limitation is exceeded the new entry will be discarded Format config port_security ports portlist all admin_state enable disable max_learning_addr max_lock_no 0 3328 lock_address_mode permanent deleteontimeout deleteonreset 1 vlan vlan_name 32 vlanid vidli...

Page 939: ...jected The default value is 32 max_lock_no 0 3328 Enter the value between 0 and 3328 no_limit Specifies no limitation on the number of entries Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure port security DGS 3620 28SC admin config port_security ports 6 admin_state enable max_learning_addr 10 lock_address_mode permanent Command config...

Page 940: ..._security vlan Description This command sets the maximum number of MAC address entries that can be learned on a specific VLAN There are four levels of limitations on the learned entry number for the entire system for a port for a VLAN and for specific VLAN on a port If any limitation is exceeded the new entry will be discarded Format config port_security vlan vlan_name 32 vlanid vidlist max_learni...

Page 941: ...rity_entry vlan vlan_name 32 vlanid vlanid 1 4094 mac_address macaddr Parameters vlan Specifies the VLAN by name vlan_name 32 Enter the VLAN name The maximum length is 32 characters vlanid Specifies a list of VLANs by VLAN ID vlanid 1 4094 Enter the VLAN ID This value must be between 1 and 4094 mac_address Specifies the MAC address of the entry macaddr Enter the MAC address of the entry Restrictio...

Page 942: ...aximum length is 32 characters vlanid Optional Specify a list of VLANs by VLAN ID vidlist Enter a list of the VLAN IDs Restrictions Only Administrator Operator and Power User level users can issue this command Example To clear port security entry for port 6 DGS 3620 28SC admin clear port_security_entry port 6 Command clear port_security_entry port 6 Success DGS 3620 28SC admin 80 6 show port_secur...

Page 943: ...rt security admin state the maximum number of learning addresses and the lock mode Format show port_security ports portlist vlan vlan_name 32 vlanid vidlist Parameters ports Optional Specify a range of ports to be displayed portlist Enter a range of ports to be displayed vlan Optional Specify a VLAN to display its configuration vlan_name 32 Enter the VLAN name The maximum length is 32 characters v...

Page 944: ...Port State Lock Address Mode Max Learning Addr 1 Disabled DeleteOnReset 32 2 Disabled DeleteOnReset 32 3 Disabled DeleteOnReset 32 4 Disabled DeleteOnReset 32 5 Disabled DeleteOnReset 32 6 Disabled DeleteOnReset 32 DGS 3620 28SC admin 80 8 config port_security log state Description This command is used to enable or disable the port security log Format config port_security log state enable disable ...

Page 945: ...is used to enable or disable the port security trap Format config port_security trap state enable disable Parameters enable Specifies to enable the port security trap disable Specifies to disable the port security trap Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the port security trap DGS 3620 28SC admin config port_security trap sta...

Page 946: ...re state Optional Specifies whether power will be supplied to the powered device connected to this port or not enable Specifies that PoE will be enabled of the specifies port s disable Specifies that PoE will be disabled of the specifies port s time_range Optional Specifies the time range that applies to the port of the PoE If the time range is configured the power can only be supplied during the ...

Page 947: ...the user defined port limit value used here This value must be between 1000 and 35000mW Other than the four pre defined settings the users can directly specify any value that the chip supports Normally the minimum setting is 1000mW and the maximum setting is 15400mW for 802 3af and greater or equal to 35000mW for 802 3at Restrictions Only Administrator Operator and Power User level users can issue...

Page 948: ...lized deny_low_priority_port If there are ports that supplied power that have a priority lower than the new port the port with the lowest priority will be disconnected This process will stop until enough power is released for the new port Note that if the disconnect method is set to deny low priority port then the power provision can utilize the system s maximum power legacy_pd Optional Specifies ...

Page 949: ...terim state during line detection 1 2 Enabled Critical 4000 Class 1 0 0 0 0 OFF Interim state during line detection 1 3 Enabled Critical 4000 Class 1 0 0 0 0 OFF Interim state during line detection 1 4 Enabled Critical 4000 Class 1 0 0 0 0 OFF Interim state during line detection 1 5 Enabled Low 7000 User defined 0 0 0 0 OFF Interim state during line detection 1 6 Enabled Low 7000 User defined 0 0 ...

Page 950: ...orted PoE units in the system Restrictions None Example To display the PoE system DGS 3620 28PC admin show poe system units 1 Command show poe system units 1 Unit 1 PoE System Information Power Limit 760 Watts Power Consumption 0 Watts Power Remained 371 Watts Power Disconnection Method Deny Next Port Detection Legacy PD Disabled If Power Disconnection Method is set to deny next port then the syst...

Page 951: ...energy detect circuit will continuously monitor energy on the cable The moment energy is detected the port will turn on fully as to the IEEE specification s requirements The power saving function is performed while no link is detected and it will not affect the port capabilities while the link is up When a link is detected on the port for a shorter cable the power consumption will be reduced by lo...

Page 952: ...de port hibernation enable Success DGS 3620 28SC admin 82 2 config power_saving hibernation Description This command is used to add or delete the power saving schedule on system hibernation When the system enters hibernation mode the Switch changes to a low power state and is idle It shuts down all the ports and all network function does not work Only the console connection will work via the RS232...

Page 953: ...ime_range range_name 32 clear_time_range Parameters add Specifies to add a time range delete Specifies to delete a time range time_range Specifies the name of the time range range_name32 Enter a name for maximum 32 characters clear_time_range Specifies to clear all the time range of port LED Restrictions Only Administrator and Operator level users can issue this command Example To add a time range...

Page 954: ...ple To add a time range named range_1 on port 1 DGS 3620 28SC admin config power_saving port 1 1 add time_range range_1 Command config power_saving port 1 1 add time_range range_1 Success DGS 3620 28SC admin To delete a time range named range_2 on port 1 DGS 3620 28SC admin config power_saving port 1 1 delete time_range range_2 Command config power_saving port 1 1 delete time_range range_2 Success...

Page 955: ...unction Version 3 00 Link Detection State Enabled Length Detection State Disabled Power Saving Configuration On System Hibernation State Disabled Power Saving Configuration On Port LED State Disabled Power Saving Configuration On Port State Disabled DGS 3620 28SC admin 82 6 config led state Description This command is used to configure the LED admin state of all ports When the port LED admin state...

Page 956: ...e DGS 3620 28SC admin config led state disable Command config led state disable Success DGS 3620 28SC admin 82 7 show led Description This command is used to display the setting of all port s LED admin state Format show led Parameters None Restrictions None Example To display the setting of all port s LED admin state DGS 3620 28SC admin show led Command show led Port LED State Enabled DGS 3620 28S...

Page 957: ...ll pdelay_req_interval sec 1 32 show ptp show ptp clock show ptp clock parent show ptp ports portlist all show ptp boundary ports portlist all show ptp p2p_transparent ports portlist all show ptp foreign_master_records ports portlist all 83 1 enable ptp Description This command is used to enable the PTP function globally The device will enter the P2P transparent clock mode when the PTP global stat...

Page 958: ...nction globally When the PTP function is disabled all switch ports will forward the PTP packets according to the multicast filtering configuration Format disable ptp Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable the PTP function globally DGS 3620 28SC admin disable ptp Command disable ptp Success DGS 3620 28SC admin 83...

Page 959: ...P ports An End to End Transparent Clock supports the use of an end to end delay measurement mechanism between the slave clock and the master clock Ports on end to end transparent clocks are independent of propagation delay mechanisms Format config ptp mode boundary p2p_transparent e2e_transparent Parameters boundary Specifies the Switch as a Boundary Clock p2p_transparent Specifies the Switch as a...

Page 960: ...ain number of the local device the PTP message shall be forwarded according to the multicast filtering configuration Format config ptp clock domain_number value 0 127 unit unit_id 1 12 domain_name string 1 32 Parameters domain_number Specifies the domain attribute of the local clock All PTP messages data sets state machines and all other PTP entities are always associated with a particular domain ...

Page 961: ...PTP boundary clock attributes and requires at least one parameter to execute Format config ptp boundary priority1 value 0 255 priority2 value 0 255 1 Parameters priority1 Optional Specifies that the priority 1 attribute is used in the execution of the best master clock algorithm Lower values take precedence value 0 255 Enter the priority 1 value used here This value must be between 0 and 255 prior...

Page 962: ...onfiguration portlist Enter the list of port used for this configuration here all Specifies that all the ports will be used for this configuration state Specifies the port state of the PTP clock function enable Specifies that the port state of the PTP clock function will be enabled disable Specifies that the port state of the PTP clock function will be disabled Restrictions Only Administrator Oper...

Page 963: ...s equal to the interval time of the announce receipt timeout The value of the interval time of the announce receipt timeout should be uniform throughout a domain If the value of one port is changed the value of all ports must be changed automatically to be consistent value 2 10 Enter the timeout value used here This value must be between 2 and 10 seconds sync_interval Optional Specifies the mean t...

Page 964: ...all the PTP ports to 2 seconds DGS 3620 28SC admin config ptp boundary ports all sync_interval 2 Command config ptp boundary ports all sync_interval 2 Success DGS 3620 28SC admin If the sync_interval is 0 5 seconds then the delay_req_interval attribute of the all PTP ports is configured as 0 DGS 3620 28SC admin config ptp boundary ports all delay_req_interval 0 Command config ptp boundary ports al...

Page 965: ...r the list of port used for this configuration here all Specifies that all the ports will be used for this configuration pdelay_req_interval Specifies the permitted mean time interval between successive messages sec 1 32 Enter the permitted mean time interval value used here This value must be between 1 and 32 Restrictions Only Administrator Operator and Power User level users can issue this comma...

Page 966: ... PTP State Setting Enabled PTP Mode Setting Boundary Clock PTP Transport Protocol Setting UDP PTP Clock Domain Number Setting 0 PTP Clock Domain Name Setting Internal Domain DGS 3620 28SC admin 83 11 show ptp clock Description This command is used to display the active attributes of the PTP clock Format show ptp clock Parameters None Restrictions None Example To show the active attributes of the b...

Page 967: ...ansparent clock DGS 3620 28SC admin show ptp clock Command show ptp clock PTP State Enabled PTP Clock Mode Peer to Peer Transparent Clock PTP Transport Protocol UDP PTP Clock Domain Number 1 PTP Clock Domain Name internal_domain PTP Clock Delay Mechanism P2P PTP Clock Identity ACDE48FFFE6789AC PTP Enabled Ports 1 1 1 4 2 1 2 4 DGS 3620 28SC admin To show the properties of the boundary clock of all...

Page 968: ... PTP Clock Domain Name internal_domain PTP Clock Identity ACDE482345678910 PTP Priority 1 128 PTP Priority 2 128 PTP Clock Class 187 PTP Steps Removed 3 PTP Last Offset 130ns PTP Mean Path Delay 140 second PTP Enabled Ports 2 1 2 4 DGS 3620 28SC admin 83 12 show ptp clock parent Description This command is used to display the active attributes of the PTP parent clock Format show ptp clock parent P...

Page 969: ...S 3620 28SC admin show ptp clock parent Command show ptp clock parent The boundary clock has not completed synchronization DGS 3620 28SC admin The display of the active attributes of the boundary clock parent when the boundary clock is the grandmaster clock DGS 3620 28SC admin show ptp clock parent Command show ptp clock parent The grandmaster clock does not have this attribute DGS 3620 28SC admin...

Page 970: ...Parent Port Number 5 PTP Grandmaster Identity ACDE4823659789AD PTP Grandmaster Clock Class 13 PTP Grandmaster Clock Accuracy 100ns PTP Grandmaster Priority 1 120 PTP Grandmaster Priority 2 127 DGS 3620 28SC admin 83 13 show ptp ports Description This command is used to display the active attributes of the special PTP ports on the switch Format show ptp ports portlist all Parameters ports Specifies...

Page 971: ...ave E2E 1 8 0 5 2 8 8 0 Enabled 1 3 Master P2P 2 8 1 8 4 8 1 Enabled 1 4 Master P2P 2 8 1 32 16 16 0 Enabled DGS 3620 28SC admin To show the active attributes for special ports 1 1 1 4 of the p2p transparent clock DGS 3620 28SC admin show ptp ports 1 1 1 4 Command show ptp ports 1 1 1 4 The active attributes PDRI Pdelay_Request Interval PMPD Peer Mean Path Delay Port PDRI PMPD State 1 1 4 1 Enable...

Page 972: ...onfigured attributes of special ports 1 1 1 4 of the boundary clock DGS 3620 28SC admin show ptp boundary ports 1 1 1 4 Command show ptp boundary ports 1 1 1 4 The attribute configurations of the ports of boundary DM Delay Mechanism AI Announce Interval CART The Coefficient of Announce Receipt Timeout SI Synchronization Interval EDRI The Exponent of Delay_Request Interval PDRI Pdelay_Request Inter...

Page 973: ...parent ports 1 1 1 4 Command show ptp p2p_transparent ports 1 1 1 4 The attribute configuration of the p2p_transparent ports PDRI Pdelay_Request Interval Port PDRI State 1 1 8 Enabled 1 2 16 Enabled 1 3 8 Enabled 1 4 4 Disabled DGS 3620 28SC admin 83 16 show ptp foreign_master_records ports Description This command is used to display the current foreign master data set records of the boundary cloc...

Page 974: ...admin show ptp foreign_master_records ports all Command show ptp foreign_master_records ports all FM Port Identity The clock identity of the Foreign Master Port FM Port Number The port number of the Foreign Master Port FM Announce Messages The numbers of Foreign Master announce messages Port FM Port Identity FM Port Number FM Announce Messages 1 1 001655fffe200000 1 7 4 2 1 001655fffe200000 1 8 4 ...

Page 975: ... 7 delete protocol_group group_id int 1 16 all show port dot1v ports portlist 84 1 create dot1v_protocol_group Description This command is used to create a protocol group for the protocol VLAN function Format create dot1v_protocol_group group_id int 1 16 group_name name 32 Parameters group_id Specifies the ID of the protocol group which is used to identify a set of protocols int 1 16 The ID range ...

Page 976: ...to 0xffff Depending on the frame type the octet string will have one of the following values For Ethernet II this is a 16 bit 2 octet hex value For example IPv4 is 800 IPv6 is 86dd ARP is 806 etc For IEEE802 3 SNAP this is this is a 16 bit 2 octet hex value For IEEE802 3 LLC this is the 2 octet IEEE 802 2 Link Service Access Point LSAP pair The first octet is for Destination Service Access Point D...

Page 977: ...ss DGS 3620 28SC admin 84 3 delete dot1v_protocol_group Description This command is used to delete a protocol group Format delete dot1v_protocol_group group_id int 1 16 group_name name 32 all Parameters group_id Specifies the group ID to be deleted int 1 16 Enter the group ID to be deleted group_name Specifies the name of the protocol group to be deleted name 32 Enter the name of the protocol grou...

Page 978: ...r is specified all configured protocol groups will be displayed Restrictions None Example To display protocol group ID 4 DGS 3620 28SC admin show dot1v_protocol_group group_id 4 Command show dot1v_protocol_group group_id 4 Protocol Protocol Frame Type Protocol Group ID Group Name Value 4 General Group EthernetII 86dd Total Entries 1 DGS 3620 28SC admin 84 5 config port dot1v ports Description This...

Page 979: ...with this protocol group on this port The maximum length is 32 characters vlanid Specifies the VLAN ID id Enter the VLAN ID priority Specifies the priority to be associated with the packet which has been classified to the specified VLAN by the protocol value 0 7 Enter a value between 0 and 7 delete protocol_group Specifies to delete a protocol group group_id Specify the group ID to be deleted int ...

Page 980: ...f no parameter is specified information for all ports will be displayed Restrictions None Example To display the protocol VLAN information for ports 1 to 2 DGS 3620 28SC admin show port dot1v ports 1 1 1 2 Command show port dot1v ports 1 1 1 2 Port 1 1 Protocol Group ID VLAN Name Protocol Priority 1 default Port 1 2 Protocol Group ID VLAN Name Protocol Priority 1 default 1 Total Entries 2 DGS 3620...

Page 981: ...config dscp map portlist all dscp_priority dscp_list to priority 0 7 dscp_dscp dscp_list to dscp 0 63 show dscp map portlist dscp_priority dscp_dscp dscp dscp_list 85 1 config bandwidth_control Description This command is used to set the maximum limit for port bandwidth Format config bandwidth_control portlist all rx_rate no_limit value 8 10240000 tx_rate no_limit value 8 10240000 1 Parameters por...

Page 982: ...idth can also be assigned by the RADIUS server through the authentication process If the RADIUS server has assigned the bandwidth then the RADIUS assigned bandwidth will be the effective bandwidth Format show bandwidth_control portlist Parameters portlist Optional Specify a range of ports to be displayed Note If no parameter is specified the system will display all port bandwidth configurations Re...

Page 983: ...rate Specifies that one of the parameters below will be applied to the minimum rate that the class specified above will be allowed to transmit packets at no_limit Indicates there is no limit on egress queue of specified port bandwidth value 8 10240000 Enter an integer value from 8 to 10240000 to set a minimum limit in Kbits sec The specified bandwidth limit may be equaled but not exceeded The exac...

Page 984: ...le To display the port bandwidth control table for port 1 DGS 3620 28SC admin show per_queue bandwidth_control 1 Command show per_queue bandwidth_control 1 Queue Bandwidth Control Table On Port 1 Queue Min Rate Kbit sec Max Rate Kbit sec 0 No Limit No Limit 1 No Limit No Limit 2 64 1024 3 64 No Limit 4 No Limit No Limit 5 No Limit No Limit 6 No Limit No Limit 7 No Limit No Limit DGS 3620 28SC admi...

Page 985: ...etween 1 and 127 Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the traffic scheduling on CoS queue 0 with a maximum packet value of 10 DGS 3620 28SC admin config scheduling 0 weight 10 Command config scheduling 0 weight 10 Success DGS 3620 28SC admin To configure the traffic scheduling on CoS queue 1 with a weight value of 25 on por...

Page 986: ...GS 3620 28SC admin To configure the traffic scheduling mechanism for the CoS queue on port 1 1 DGS 3620 28SC admin config scheduling_mechanism ports 1 1 strict Command config scheduling_mechanism ports 1 1 strict Success DGS 3620 28SC admin 85 7 show scheduling Description This command is used to display the current traffic scheduling parameters Format show scheduling portlist Parameters portlist ...

Page 987: ...TRL C ESC q Quit SPACE n Next Page ENTER Next Entry a All To display the traffic scheduling parameters for each CoS queue on port 1 1 DGS 3620 28SC admin show scheduling 1 Command show scheduling 1 QOS Output Scheduling On Port 1 Class ID Weight Class 0 1 Class 1 2 Class 2 3 Class 3 4 Class 4 5 Class 5 6 Class 6 7 Class 7 8 DGS 3620 28SC admin 85 8 show scheduling_mechanism Description This comman...

Page 988: ...uling_mechanism Command show scheduling_mechanism Port Mode 1 Strict 2 Strict 3 Strict 4 Strict 5 Strict 6 Strict 7 Strict 8 Strict 9 Strict 10 Strict CTRL C ESC q Quit SPACE n Next Page ENTER Next Entry a All To show the scheduling mechanism on ports 1 10 DGS 3620 28SC admin show scheduling_mechanism 1 10 Command show scheduling_mechanism 1 10 Port Mode 1 Strict 2 Strict 3 Strict 4 Strict 5 Stric...

Page 989: ...5 5 Mid High 6 6 Highest 7 7 Highest Format config 802 1p user_priority ports portlist all priority 0 7 class_id 0 7 Parameters ports Optional Specifies that port used for this configuration portlist Specifies the range of ports to be configured all Specifies that all the ports will be used for this configuration priority 0 7 Enter the 802 1p user priority to associate with the class_id the number...

Page 990: ...d Restrictions None Example To display the 802 1p user priority DGS 3620 28SC admin show 802 1p user_priority Command show 802 1p user_priority QoS Class of Traffic Port 1 Priority 0 Class 2 Priority 1 Class 0 Priority 2 Class 1 Priority 3 Class 3 Priority 4 Class 4 Priority 5 Class 5 Priority 6 Class 6 Priority 7 Class 7 Port 2 Priority 0 Class 2 Priority 1 Class 0 Priority 2 Class 1 Priority 3 C...

Page 991: ...tor Operator and Power User level users can issue this command Example To configure an 802 1p default priority settings of 5 on all Switch ports DGS 3620 28SC admin config 802 1p default_priority all 5 Command config 802 1p default_priority all 5 Success DGS 3620 28SC admin 85 12 show 802 1p default_priority Description This command is used to display the current default priority settings on the s...

Page 992: ...DGS 3620 28SC admin show 802 1p default_priority 1 4 Command show 802 1p default_priority 1 4 Port Priority Effective Priority 1 0 0 2 0 0 3 0 0 4 0 0 DGS 3620 28SC admin 85 13 enable hol_prevention Description This command is used to enable head of line prevention on the switch Format enable hol_prevention Parameters None Restrictions Only Administrator Operator and Power User level users can iss...

Page 993: ..._prevention Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable HOL prevention on the switch DGS 3620 28SC admin disable hol_prevention Command disable hol_prevention Success DGS 3620 28SC admin 85 15 show hol_prevention Description This command is used to display the head of line prevention state on the switch Format show h...

Page 994: ...st all state enable disable Parameters portlist Specifies a range of ports to be displayed all Specifies that the command will apply to all ports on the switch state Enables disables DSCP trust By default DSCP trust is disabled Restrictions Only Administrator and Operator level users can issue this command Example To enable DSCP trust on ports 1 1 1 8 DGS 3620 28SC admin config dscp trust port 1 1...

Page 995: ...min 85 18 config dscp map Description This command is used to configure the mapping of DSCP to a priority Format config dscp map portlist all dscp_priority dscp_list to priority 0 7 dscp_dscp dscp_list to dscp 0 63 Parameters portlist A range of ports to display If not specifying any ports the DSCP trust status for all ports on the switch will be displayed all Specifies that the command applies to...

Page 996: ... dscp_priority 1 to priority 1 Command config dscp map dscp_priority 1 to priority 1 Success DGS 3620 28SC admin 85 19 show dscp map Description This command is used to display the DSCP map configuration parameters Format show dscp map portlist dscp_priority dscp_dscp dscp dscp_list Parameters portlist The range of ports to display If no parameter is specified the DSCP mapping for all ports will b...

Page 997: ...23 is mapped to 2 DSCP 24 31 is mapped to 3 DSCP 32 39 is mapped to 4 DSCP 40 47 is mapped to 5 DSCP 48 55 is mapped to 6 DSCP 56 63 is mapped to 7 In the case of a product only supporting global configuration To show the DSCP map configuration DGS 3620 28SC admin show dscp map 1 dscp_dscp Command show dscp map 1 dscp_dscp DSCP to DSCP Mapping Port 1 0 1 2 3 4 5 6 7 8 9 0 0 1 2 3 4 5 6 7 8 9 1 10 ...

Page 998: ...ority 0 7 ip_protocol value 0 255 l4_src_port value 1 65535 l4_dest_port value 1 65535 replace svid vlanid 1 4094 priority priority 0 7 classify outer_vid vlanid 1 4094 source_mac macaddr sa_mask macmask destination_mac macaddr da_mask macmask source_ipv4 ipaddr sip_mask netmask destination_ipv4 ipaddr dip_mask netmask 802 1p priority 0 7 ip_protocol value 0 255 l4_src_port value 1 65535 l4_dest_p...

Page 999: ...addresses will be cleared all dynamic registered VLAN entries will be cleared and GVRP will be disabled To run GVRP on the switch the administrator should enable GVRP manually Format disable qinq Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable Q in Q DGS 3620 28SC admin disable qinq Command disable qinq Success DGS 3620 ...

Page 1000: ...s connecting to the service provider network missdrop Enable or disable the tagged packet drop that does not match any assignment rule in the VLAN translation and Q in Q profile enable Enable miss drop of ports disable Disable miss drop of ports outer_tpid Specifies the outer TPID of a port hex 0x1 0xffff Enter the outer TPID of a port use_inner_priority Specifies whether to use the priority in th...

Page 1001: ... 0x88a8 Command config qinq ports 1 4 role nni outer_tpid 0x88a8 Success DGS 3620 28SC admin 86 5 config qinq inner_tpid Description The command is used to configure the inner TPID of the system The inner TPID is used to decide if the ingress packet is c tagged Inner tag TPID is per system configurable This command is used in the per system TPID configuration Format config qinq inner_tpid hex 0x1 ...

Page 1002: ...le To display the inner TPID of the system DGS 3620 28SC admin show qinq inner_tpid Command show qinq inner_tpid Inner TPID 0x8100 DGS 3620 28SC admin 86 7 show qinq ports Description This command is used to display the Q in Q configuration of ports Format show qinq ports portlist Parameters portlist Optional Specify a range of ports to be displayed Note If no parameter specified the system will d...

Page 1003: ...the configured rule The S VLAN Tag of egress packets at this port will be recovered to C VLAN Tag or stripped Format create vlan_translation ports portlist all add cvid vidlist replace cvid vlanid 1 4094 svid vlanid 1 4094 priority priority 0 7 Parameters portlist Enter a range of ports on which the C VLAN will be translated to S VLAN all Specifies to configure all ports add cvid Specifies to add ...

Page 1004: ...Success DGS 3620 28SC admin To add S tag with SVID 300 and 802 1p priority 5 if incoming packet with CVID 30 DGS 3620 28SC admin create vlan_translation ports 1 add cvid 30 svid 300 priority 5 Command create vlan_translation ports 1 add cvid 30 svid 300 priority 5 Success DGS 3620 28SC admin 86 9 delete vlan_translation ports Description This command is used to delete translation relationships bet...

Page 1005: ...mat show vlan_translation ports portlist cvid vidlist Parameters ports Specifies to display the C VLAN based VLAN translation rules of the ports portlist Enter a range of ports to be displayed cvid Specifies to display the rules for the specified CVIDs vidlist Enter a range of VLAN IDs Restrictions None Example To display VLAN translation for ports 1 and 2 DGS 3620 28SC admin show vlan_translation...

Page 1006: ...in 86 12 config vlan_translation_profile Description This command is used to create a flow based QinQ translation rule of a profile Format config vlan_translation_profile profile_id add rule_id rule_id add svid vlanid 1 4094 priority priority 0 7 classify source_mac macaddr sa_mask macmask destination_mac macaddr da_mask macmask source_ipv4 ipaddr sip_mask netmask destination_ipv4 ipaddr dip_mask ...

Page 1007: ...tmask Enter the source IPv4 address mask used here destination_ipv4 Specifies the destination IPv4 address or IPv4 subnet for the match ipaddr Enter the destination IPv4 address or subnet here dip_mask Specifies the destination IPv4 address mask used netmask Enter the destination IPv4 address mask used here outer_vid Specifies the packet s outer VID for the match vidlist Enter the packet s outer V...

Page 1008: ...s that the IP protocol will be used value 0 255 Enter the IP protocol value used here This value must be between 0 and 255 l4_src_port Specifies the Layer 4 source port ID for the match value 1 65535 Enter the Layer 4 source port ID used here This value must be between 1 and 65535 l4_dest_port Specifies the Layer 4 destination port ID for the match value 1 65535 Enter the Layer 4 destination port ...

Page 1009: ...0 00 11 22 33 source_ipv4 10 10 10 10 802 1p 2 ip_protocol 0 l4_dest_port 1813 outer_vid 10 Success DGS 3620 28SC admin 86 13 show vlan_translation_profile Description This command is used to show flow based VLAN translation rules in a profile Format show vlan_translation_profile profile_id_list Parameters profile_id_list Optional Specifies the profile ID number to be shown If no profile ID is use...

Page 1010: ...ies the rule ID range that will be deleted If the rule ID is not specified all rules of the profile will be deleted at first and then the profile will be deleted rule_id_list Enter the rule ID range used here all Specifies that all rules will be deleted Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete VLAN translation profile ID 2 DGS 362...

Page 1011: ...xStack DGS 3620 Series Layer 3 Managed Stackable Gigabit Switch CLI Reference Guide 1006 ...

Page 1012: ...16 none 1 config rip timers update sec 1 65535 timeout sec 1 65535 garbage_collection sec 1 65535 1 disable rip show rip ipif ipif_name 12 87 1 enable rip Description This command is used to enable RIP for the switch The default setting is disabled Format enable rip Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable RIP DGS ...

Page 1013: ...format packets will be transmitted rx_mode Optional Specifies the RIP receive mode v1_only Specifies to receive RIP version 1 format packets v2_only Specifies to receive RIP version 2 format packets v1_or_v2 Specifies to receive both v1 and v2 packet disable Specifies that the receiving of RIP packets will be prevented state Optional Specifies that the RIP state will be enabled or disabled If the ...

Page 1014: ...pecifies the value of the time after which a RIP route is declared to be invalid sec 1 65535 Enter the timeout value used here This value must be between 1 and 65535 seconds garbage_collection Optional Specifies the value of the time for which a RIP route will be kept before it is removed from routing table sec 1 65535 Enter the garbage collection value used here This value must be between 1 and 6...

Page 1015: ...5 show rip Description This command is used to display the RIP configuration for one or all the IP interfaces Format show rip ipif ipif_name 12 Parameters ipif Optional Specifies the IP interface name used for this configuration ipif_name 12 Enter the IP interface name used here This name can be up to 12 characters long If no parameter is specified the system will display RIP configuration and sta...

Page 1016: ...nds Timeout Time 300 seconds Garbage Collection Time 150 seconds RIP Interface Settings Interface IP Address TX Mode RX Mode Authen State tication System 2 2 2 2 8 V1 Comp V1 or V2 Enabled Disabled n40 40 0 0 2 16 V1 Comp V1 or V2 Enabled Enabled n90 90 0 0 2 16 V1 Comp V1 or V2 Enabled Enabled n100 100 0 0 2 16 V1 Comp V1 or V2 Enabled Enabled Total Entries 4 DGS 3620 28SC admin ...

Page 1017: ...if_name 12 all state enable disable metric value 1 15 1 88 1 enable ripng Description This command is used to enable RIPng globally for the Switch Format enable ripng Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command EI Mode Only Command Example To enable RIPng globally DGS 3620 28SC admin enable ripng Command enable ripng Success DGS 3620 2...

Page 1018: ...isable ripng Command disable ripng Success DGS 3620 28SC admin 88 3 show ripng Description This command is used to display the RIPng state on all or specified interfaces Format show ripng ipif ipif_name 12 Parameters ipif Optional Specifies the RIPng IP interface name to be displayed ipif_name 12 Enter the RIPng IP interface name to be displayed here This name can be up to 12 characters long Restr...

Page 1019: ...figure not use any horizon split_horizon Specifies to configure use a basic split horizon poison_reverse Specifies to configure to use a split horizon with poison reverse update Optional Specifies the value of the update timer sec 5 65535 Enter the update timer value used here This value must be between 5 and 65535 seconds expire Optional Specifies the interval when the update expires sec 1 65535 ...

Page 1020: ...that all the RIPng IP interfaces will be used state Optional Specifies the RIPng state of the specified IP interface enable Specifies that the RIPng state on the specified interface will be enabled disable Specifies that the RIPng state on the specified interface will be disabled metric Optional Specifies the cost value of an interface The RIPng route that was learned from the interface will add t...

Page 1021: ...ports portlist source mirror_group_id value 1 4 add delete ports portlist rx tx both show rspan vlan_name vlan_name vlan_id vlanid 1 4094 89 1 enable rspan Description This command is used to enable RSPAN globally Format enable rspan Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To enable RSPAN globally DGS 3620 28SC admin enable rspan Comm...

Page 1022: ...sed to create an RSPAN VLAN Up to 16 RSPAN VLANs can be created Format create rspan vlan vlan_name vlan_name vlan_id vlanid 1 4094 Parameters vlan_name Create the RSPAN VLAN by VLAN name vlan_name Enter the VLAN name vlan_id Create the RSPAN VLAN by VLAN ID vlanid 1 4094 Enter the VLAN ID between 1 and 4094 Restrictions Only Administrator and Operator level users can issue this command Example To ...

Page 1023: ... Parameters vlan_name Specifies the RSPAN VLAN by VLAN name vlan_name Enter the VLAN name vlan_id Specifies the RSPAN VLAN by VLAN ID vlanid 1 4094 Enter the VLAN ID between 1 and 4094 Restrictions Only Administrator and Operator level users can issue this command Example To delete an RSPAN VLAN entry by VLAN name v2 DGS 3620 28SC admin delete rspan vlan vlan_name v2 Command delete rspan vlan vlan...

Page 1024: ... by VLAN ID vlanid 1 4094 Enter the VLAN ID between 1 and 4094 redirect Specifies output port list for the RSPAN VLAN packets If the redirect port is a Link Aggregation port the Link Aggregation behavior will apply to the RSPAN packets add Specifies to add the redirect port delete Specifies to delete the redirect port ports Specifies the output port list to add to or delete from the RSPAN packets ...

Page 1025: ...re RSPAN redirect for VLAN 2 to ports 18 and 19 DGS 3620 28SC admin config rspan vlan vlan_name vlan2 redirect add ports 18 19 Command config rspan vlan vlan_name vlan2 redirect add ports 18 19 Success DGS 3620 28SC admin 89 6 show rspan Description This command is used to display RSPAN configuration Format show rspan vlan_name vlan_name vlan_id vlanid 1 4094 Parameters vlan_name Specifies the RSP...

Page 1026: ... RX 1 2 1 5 TX 1 2 1 5 Redirect Ports 1 9 1 12 Total RSPAN VLAN 1 DGS 3620 28SC admin To display all RSPAN settings DGS 3620 28SC admin show rspan Command show rspan RSPAN Enabled RSPAN VLAN ID 1 Mirror Group ID 1 Target Port 1 1 Source Ports RX TX RSPAN VLAN ID 2 Redirect Ports 1 6 1 10 RSPAN VLAN ID 3 Redirect Ports 1 6 1 10 Total RSPAN VLAN 3 DGS 3620 28SC admin ...

Page 1027: ...Optional Configure the utilization falling threshold The range is between 20 100 If the CPU utilization is lower than the falling threshold the switch enters normal mode value 20 100 Configure the utilization falling threshold The range is between 20 100 If the CPU utilization is lower than the falling threshold the switch enters normal mode trap_log Optional Configure the state of the safeguard e...

Page 1028: ...0 2 show safeguard_engine Description This command is used to display safeguard engine information Format show safeguard_engine Parameters None Restrictions None Example To display safeguard engine information DGS 3620 28SC admin show safeguard_engine Command show safeguard_engine Safeguard Engine State Disabled Safeguard Engine Current Status Normal Mode CPU Utilization Information Rising Thresho...

Page 1029: ...e the SFTP function globally SFTP over SSH2 is a remotely secure file transfer protocol providing security on all file operations SFTP server runs as a subsystem of SSH server SSH server is required to be enabled before enabling SFTP server Format enable sftp server Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable SFTP ser...

Page 1030: ...e this command Example To disable the SFTP server DGS 3620 28SC admin disable sftp server Command disable sftp server Success DGS 3620 28SC admin 91 3 config sftp server Description This command is used to configure parameters for SFTP server Format config sftp server timeout sec 30 600 1 Parameters timeout Specifies the idle timer for SFTP server If the SFTP server detects no operation after this...

Page 1031: ...imeout 600 Success DGS 3620 28SC admin 91 4 show sftp server Description This command is used to show the parameters of the SFTP server Format show sftp server Parameters None Restrictions None Example To show the parameters of the SFTP server DGS 3620 28SC admin show sftp server Command show sftp server The SFTP Server Configuration Protocol Version 3 State Enabled Session Idle Timeout 600 sec DG...

Page 1032: ...size value 300 1400 delete sflow analyzer_server value 1 4 config sflow analyzer_server value 1 4 timeout sec 1 2000000 infinite collectoraddress ipaddr ipv6addr collectorport udp_port_number 1 65535 maxdatagramsize value 300 1400 1 show sflow analyzer_server create sflow counter_poller ports portlist all analyzer_server_id value 1 4 interval disable sec 20 120 config sflow counter_poller ports po...

Page 1033: ... Parameters None Restrictions Only Administrator and Operator level users can issue this command Example To disable the sFlow function DGS 3620 28SC admin disable sflow Command disable sflow Success DGS 3620 28SC admin 92 3 show sflow Description This command is used to display sFlow information Format show sflow Parameters None Restrictions Only Administrator Operator and Power User level users c...

Page 1034: ...tional Specify the sampling rate for packet sampling value 0 65535 Enter the sampling rate for packet sampling The configured rate value multiplied by 256 is the actual rate For example if the rate is 20 the actual rate 5120 One packet will be sampled from every 5120 packets If set to 0 the sampler is disabled If the rate is not specified its default value is 0 tx_rate Specifies the transmit rate ...

Page 1035: ...l rate For example if the rate is 20 the actual rate 5120 One packet will be sampled from every 5120 packets If set to 0 the sampler is disabled If the rate is not specified its default value is 0 tx_rate Specifies the transmit rate value 0 65535 Enter the transmit rate used here This value must be between 0 and 65535 maxheadersize Specifies the maximum number of leading bytes in the packet which ...

Page 1036: ...te the sFlow flow sampler ports Format create sflow analyzer_server value 1 4 owner name 16 timeout sec 1 2000000 infinite collectoraddress ipaddr ipv6addr collectorport udp_port_number 1 65535 maxdatagramsize value 300 1400 Parameters value 1 4 Enter a value between 1 and 4 owner Specifies the entity making use of this sflow analyzer server When owner is set or modified the timeout value will bec...

Page 1037: ...e maximum number of data bytes that can be packed in a single sample datagram value 300 1400 Enter the maximum number of data bytes that can be packed in a single sample datagram If not specified the default value is 1400 Restrictions Only Administrator and Operator level users can issue this command Example To create an sFlow analyzer server named monitor DGS 3620 28SC admin create sflow analyzer...

Page 1038: ...is analyzer_server will be deleted If it is specified as infinite the server will never be timeout sec 1 2000000 Enter the time out value in seconds between 1 and 2000000 infinite Specifies to never time out collectoraddress Optional Specify the IP address of the server ipaddr Enter the IP address of the server If set to 0 sFlow packets will not be sent to this server ipv6addr Specifies the IPv6 u...

Page 1039: ..._server Command show sflow analyzer_server sFlow Analyzer_server Information Server ID 1 Owner admin Timeout 400 Current Countdown Time 400 Collector Address Collector Port 6343 Max Datagram Size 1400 Total Entries 1 DGS 3620 28SC admin 92 11 create sflow counter_poller ports Description This command is used to create the sFlow counter poller With the poller function the statistics counter informa...

Page 1040: ... poller DGS 3620 28SC admin create sflow counter_poller ports 1 analyzer_server_id 1 Command create sflow counter_poller ports 1 analyzer_server_id 1 Success DGS 3620 28SC admin 92 12 config sflow counter_poller ports Description This command is used to configure the sflow counter poller parameters If a user wants to change the analyzer server ID they need to delete the counter poller and create a...

Page 1041: ...unter_poller ports portlist all Parameters portlist Enter the ports to be deleted all Specifies to delete all ports Restrictions Only Administrator and Operator level users can issue this command Example To delete the sFlow counter poller for port 1 DGS 3620 28SC admin delete sflow counter_poller ports 1 Command delete sflow counter_poller ports 1 Success DGS 3620 28SC admin 92 14 show sflow count...

Page 1042: ...SC admin 92 15 show sflow flow_sampler Description This command is used to display sFlow sampler information for the ports that have been created Format show sflow flow_sampler Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To display sFlow sampler information for the ports that have been created DGS 3620 28SC admin show sflow flo...

Page 1043: ...64 candidate dp_interval sec 30 90 hold_time sec 100 255 download sim_ms firmware_from_tftp configuration_from_tftp ipaddr path_filename members mslist 1 32 all upload sim_ms configuration_to_tftp log_to_tftp ipaddr path_filename members mslist all 93 1 enable sim Description This command is used to configure the single IP management on the switch as enabled Format enable sim Parameters None Restr...

Page 1044: ...s command is used to display the information of the specific sorts of devices including of self candidate member group and neighbor Format show sim candidates candidate_id 1 100 members member_id 1 32 group commander_mac macaddr neighbor Parameters candidates Optional Specify the candidate devices candidate_id 1 100 Optional Specify the candidate devices The ID is from 1 to 100 members Optional Sp...

Page 1045: ...GS 3620 28SC admin show sim candidates Command show sim candidates ID MAC Address Platform Hold Firmware Device Name Capability Time Version 1 00 01 02 03 04 00 DGS 3620 28SC DC L3 Switch 40 2 50 014 aabbbbbbbbbbbbb 2 00 55 55 00 55 00 DGS 3620 28SC DC L3 Switch 140 2 50 014 default master Total Entries 2 DGS 3620 28SC admin To show the member information in summary DGS 3620 28SC admin show sim me...

Page 1046: ...00 55 00 SIM Group Name SIM2 ID MAC Address Platform Hold Firmware Device Name Capability Time Version 1 00 01 02 03 04 00 DGS 3620 28SC DC L3 Switch 40 2 50 014 aaaaabbbbbbb 2 00 55 55 00 55 00 means commander switch DGS 3620 28SC admin To show an SIM neighbor table DGS 3620 28SC admin show sim neighbor Command show sim neighbor Neighbor Info Table Port MAC Address Role 23 00 35 26 00 11 99 Comma...

Page 1047: ... 28SC Gigabit Ethernet Switch Command Line Interface Firmware Build 2 50 014 Copyright C 2013 D Link Corporation All rights reserved DGS 3620 28SC admin 93 5 config sim_group Description This command is used to configure group information on the switch Format config sim_group add candidate_id 1 100 password delete member_id 1 32 Parameters add Specifies to add a specific candidate to the group can...

Page 1048: ...e switch Format config sim commander group_name groupname 64 candidate dp_interval sec 30 90 hold_time sec 100 255 Parameters commander Transfer the role to commander group_name Optional If commander users can specify the name of the group groupname 64 If commander users can specify the name of the group The maximum length is 64 characters candidate Transfer role to candidate dp_interval Specifies...

Page 1049: ...didate Success DGS 3620 28SC admin To update the name of a group DGS 3620 28SC admin config sim commander group_name mygroup Command config sim commander group_name mygroup Success DGS 3620 28SC admin To change the time interval of discovery protocol DGS 3620 28SC admin config sim dp_interval 30 Command config sim dp_interval 30 Success DGS 3620 28SC admin To change the hold time of discovery prot...

Page 1050: ...mware or configuration mslist 1 32 Enter a range of members which download this firmware or configuration all Specifies all members which download this firmware or configuration Restrictions Only Administrator Operator and Power User level users can issue this command Example To download firmware DGS 3620 28SC admin download sim_ms firmware_from_tftp 10 55 47 1 D dwl600x tfp members 1 3 Commands d...

Page 1051: ...ver log_to_tftp Specifies to upload a log to a TFTP server ipaddr Enter the IP address of the TFTP server path_filename Enter the file path to store configuration or a log in the TFTP server members Optional Specifiy the members which upload its configuration mslist Specifiy the members which upload its configuration The value is from 1 to 32 all Specifies all members which upload its configuratio...

Page 1052: ...xStack DGS 3620 Series Layer 3 Managed Stackable Gigabit Switch CLI Reference Guide 1047 1 00 01 02 03 04 00 Success DGS 3620 28SC admin ...

Page 1053: ...snmp group groupname 32 v1 v2c v3 noauth_nopriv auth_nopriv auth_priv read_view view_name 32 write_view view_name 32 notify_view view_name 32 1 delete snmp group groupname 32 create snmp host ipaddr v6host ipv6addr v1 v2c v3 noauth_nopriv auth_nopriv auth_priv auth_string 32 udp_port udp_port_number 0 65535 delete snmp host ipaddr v6host ipv6addr show snmp v6host ipv6addr show snmp host ipaddr ena...

Page 1054: ...key auth Indicate the input key for authentication The options are MD5 and SHA1 md5 Specifies an authentication key used by MD5 This is a hex string type of 32 characters auth_key 32 32 Enter an authentication key used by MD5 This is a hex string type of 32 characters sha Specifies an authentication key used by SHA1 This is a hex string type of 40 characters auth_key 40 40 Enter an authentication ...

Page 1055: ...nistrator level users can issue this command Example To delete an SNMP user DGS 3620 28SC admin delete snmp user dlink Command delete snmp user dlink Success DGS 3620 28SC admin 94 3 show snmp user Description This command is used to display information on each SNMP username in the group username table Format show snmp user Parameters None Restrictions None Example To display SNMP user information...

Page 1056: ... the different views Format show snmp groups Parameters None Restrictions None Example To display the names of the SNMP groups on the switch DGS 3620 28SC admin show snmp groups Command show snmp groups Vacm Access Table Settings Group Name public ReadView Name CommunityView WriteView Name Notify View Name CommunityView Security Model SNMPv1 Security Level NoAuthNoPriv Group Name public ReadView N...

Page 1057: ...ew_name 32 Enter the view name to be created oid Enter the object identified tree the MIB tree view_type Specifies the access type of of the MIB tree in this view included Specifies to include this view excluded Specifies to exclude this view Restrictions Only Administrator level users can issue this command Example To assign views to community strings to limit which MIB objects an SNMP manager ca...

Page 1058: ...elete snmp view dlinkview all Command delete snmp view dlinkview all Success DGS 3620 28SC admin 94 7 show snmp view Description This command is used to display SNMP view records Format show snmp view view_name 32 Parameters view_name 32 Optional Specify the view name of the user to be displayed Restrictions None Example To display SNMP view records DGS 3620 28SC admin show snmp view Command show ...

Page 1059: ...hich defines the subset of all MIB objects accessible to the given community Read and write or read only permission for the MIB objects accessible to the community Format create snmp community community_string 32 view view_name 32 read_only read_write Parameters community_string 32 Enter the community string The maximum string length is 32 characters view Specifies the view name of the MIB The max...

Page 1060: ...nistrator level users can issue this command Example To delete an SNMP community DGS 3620 28SC admin delete snmp community dlink Command delete snmp community dlink Success DGS 3620 28SC admin 94 10 show snmp community Description This command is used to display community string configurations Format show snmp community community_string 32 Parameters community_string 32 Optional Specify the commun...

Page 1061: ... be displayed as and the user will have to double input confirm the SNMP community string when creating an SNMP community Format create snmp community_masking view view_name 32 read_only read_write Parameters view_name 32 Enter the MIB view name used here This name can be up to 32 characters long read_only Specifies that the user using the community string will have read only access to the switch ...

Page 1062: ...neID 10 64 Parameters snmp_engineID 10 64 Enter the identify for the SNMP engine on the switch Restrictions Only Administrator level users can issue this command Example To configure an identifier for the SNMP engine on the switch DGS 3620 28SC admin config snmp engineID 1023457890 Command config snmp engineID 1023457890 Success DGS 3620 28SC admin 94 13 show snmp engineID Description This command...

Page 1063: ...tion of a packet noauth_nopriv Specifies to neither support packet authentication nor encrypting auth_nopriv Specifies to support packet authentication auth_priv Specifies to support packet authentication and encrypting read_view Specifies the view name between 1 and 32 characters view_name 32 Enter the view name between 1 and 32 characters write_view Specifies the view name between 1 and 32 chara...

Page 1064: ...P operation Format create snmp host ipaddr v6host ipv6addr v1 v2c v3 noauth_nopriv auth_nopriv auth_priv auth_string 32 udp_port udp_port_number 0 65535 Parameters host Specifies the IP address of the recipient for which the traps are targeted ipaddr Enter the IP address of the recipient for which the traps are targeted v6host Specifies the v6host IP address to which the trap packet will be sent i...

Page 1065: ...and Example To create a recipient of an SNMP operation DGS 3620 28SC admin create snmp host 10 48 74 100 v3 noauth_nopriv initial Command create snmp host 10 48 74 100 v3 noauth_nopriv initial Success DGS 3620 28SC admin 94 17 delete snmp Description This command is used to delete a recipient of an SNMP trap operation Format delete snmp host ipaddr v6host ipv6addr Parameters host Specifies the IP ...

Page 1066: ...he traps are targeted Note If no parameter is specified all SNMP hosts will be displayed Restrictions None Example To display the receipient for which the traps are targeted DGS 3620 28SC admin show snmp host Command show snmp host SNMP Host Table Host IP Address SNMP Version Community Name SNMPv3 User Name UDP Port 10 90 90 6 V2c community3 162 Total Entries 1 DGS 3620 28SC admin 94 19 show snmp ...

Page 1067: ...st Command show snmp v6host SNMP Host Table Host IPv6 Address 3000 105 SNMP Version V2c Community Name SNMPv3 User Name community3 UDP Port 162 Total Entries 1 DGS 3620 28SC admin 94 20 enable community_encryption Description This command is used to enable the encryption state on the SNMP community string Format enable community_encryption Parameters None Restrictions Only Administrator level user...

Page 1068: ...NMP Community Table Community Name View Name Access Right CommunityView read_write CommunityView read_only private CommunityView read_write public CommunityView read_only Total Entries 4 DGS 3620 28SC admin 94 21 disable community_encryption Description This command is used to disable the encryption state on the SNMP community string Format disable community_encryption Parameters None Restrictions...

Page 1069: ...ption SNMP Community Encryption State Enabled DGS 3620 28SC admin 94 23 config snmp trap_port Description This command is used to configure the per port s SNMP trap state The default port trap state is enabled for each port Format config snmp trap_port portlist all state enable disable Parameters portlist Enter the list of ports that will be used for this configuration all Specifies that all ports...

Page 1070: ...ription This command is used to change the default SNMP UDP port number Format config snmp udp_port udp_port_number 0 65535 Parameters udp_port_number 0 65535 Enter the UDP port number This value must be between 0 and 65535 The default value is 161 Restrictions Only Administrator level users can issue this command Example To configure the UDP port number of SNMP DGS 3620 28SC admin config snmp udp...

Page 1071: ...display all Specifies that all the ports will be displayed Restrictions None Example To display the port state of SNMP trap for port 1 to 10 DGS 3620 28SC admin show snmp trap_port 1 1 1 10 Command show snmp trap_port 1 1 1 10 Port Trap State 1 1 Enabled 1 2 Enabled 1 3 Enabled 1 4 Enabled 1 5 Enabled 1 6 Enabled 1 7 Enabled 1 8 Enabled 1 9 Enabled 1 10 Enabled DGS 3620 28SC admin ...

Page 1072: ...stp maxage value 6 40 maxhops value 6 40 hellotime value 1 2 forwarddelay value 4 30 txholdcount value 1 10 fbpdu enable disable nni_bpdu_addr dot1d dot1ad 1 config stp ports portlist externalCost auto value 1 200000000 hellotime value 1 2 migrate yes no edge true false auto p2p true false auto state enable disable restricted_role true false restricted_tcn true false fbpdu enable disable 1 config ...

Page 1073: ...ap Enabled Topology Change Trap Enabled NNI BPDU Address dot1d DGS 3620 28SC admin 95 2 show stp instance Description This command is used to display each instance parameters settings Value means the instance ID if there is no input of this value all instances will be shown Format show stp instance value 0 64 Parameters value 0 64 Optional Specify the MSTP instance ID Instance 0 represents the def...

Page 1074: ... 0 Designated Bridge 32768 00 22 22 22 22 00 Root Port None Max Age 20 Forward Delay 15 Last Topology Change 2430 Topology Changes Count 0 DGS 3620 28SC admin 95 3 show stp ports Description This command is used to display the switch s current per port STP configuration STP port configuration STP port role Disabled Alternate Backup Root Designated NonStp and STP port status Disabled Discarding Lea...

Page 1075: ...ion This command is used to display the three elements of the MST configuration Identification including Configuration Name Revision Level and the MST configuration Table The default Configuration name is the MAC address of the bridge If two bridges have the same three elements in mst_config_id that means they are in the same MST region Format show stp mst_config_id Parameters None Restrictions No...

Page 1076: ...e between 1 and 64 Restrictions Only Administrator Operator and Power User level users can issue this command Example To create an MSTP instance DGS 3620 28SC admin create stp instance_id 2 Command create stp instance_id 2 Warning There is no VLAN mapping to this instance_id Success DGS 3620 28SC admin 95 6 delete stp instance_id Description This command is used to delete the specified MST Instanc...

Page 1077: ...Parameters value 1 64 Enter the MSTP instance ID Instance 0 represents a default instance CIST The DUT supports 65 instances 0 64 at most add_vlan Defined action type to configure an MST instance remove_vlan Defined action type to configure an MST instance vidlist Enter the newly added CLI Value Type It is similar to portlist type but the value range is 1 to 4094 Restrictions Only Administrator Op...

Page 1078: ... region string Enter the name given for a specified MST region Restrictions Only Administrator Operator and Power User level users can issue this command Example To change the name and revision level of the MST configuration identification DGS 3620 28SC admin config stp mst_config_id revision_level 1 name R D_BlockG Commands config stp mst_config_id revision_level 1 name R D_BlockG Success DGS 362...

Page 1079: ...TP DGS 3620 28SC admin enable stp Command enable stp Success DGS 3620 28SC admin 95 10 disable stp Description This command is used to disable STP functionality in every existing instance Format disable stp Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable STP DGS 3620 28SC admin disable stp Command disable stp Success DGS...

Page 1080: ... use Rapid Spanning Tree Protocol This is the default stp Specifies to use Spanning Tree Protocol Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the STP version DGS 3620 28SC admin config stp version mstp Command config stp version mstp Success DGS 3620 28SC admin To configure the STP version with the same value of the old configurat...

Page 1081: ...alid value 6 40 Enter to determine if a BPDU is valid The default value is 20 maxhops Specifies to restrict the forwarded times of one BPDU value 6 40 Enter to restrict the forwarded times of one BPDU The default value is 20 hellotime Specifies the time interval for sending Configuration BPDUs by the Root Bridge This parameter is for STP and RSTP version MSTP version uses per port hellotime parame...

Page 1082: ...stricted_role true false restricted_tcn true false fbpdu enable disable 1 Parameters portlist Enter a range of ports externalCost Specifies the path cost between the MST regions from the transmitting Bridge to the CIST Root Bridge It is only used at CIST level auto Specifies to automatically choose the path cost value 1 200000000 Enter a value between 1 and 200000000 hellotime This is a per Bridge...

Page 1083: ... BPDU when STP functionality is disabled enable Enable port to flood STP BPDU when STP functionality is disabled disable Disable port from flooding STP BPDU when STP functionality is disabled Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure STP ports DGS 3620 28SC admin config stp ports 1 externalCost auto Command config stp ports 1 ex...

Page 1084: ...onfigure sending the STP traps Format config stp trap topo_change disable enable new_root enable disable 1 Parameters topo_change Specifies the state of sending topology change traps The default state is enable enable Enable sending topology change traps disable Disable sending topology change traps new_root Specifies the state of sending new root traps The default state is enable disable Disable ...

Page 1085: ...lient_pub_key ipaddr ipv6addr domain_name 255 dest_file path_filename 64 96 1 config ssh algorithm Description This command is used to configure the SSH service algorithm Format config ssh algorithm 3DES AES128 AES192 AES256 arcfour blowfish cast128 twofish128 twofish192 twofish256 MD5 SHA1 RSA DSA enable disable Parameters 3DES Specifies an SSH server encryption algorithm blowfish Specifies an SS...

Page 1086: ...thm Description This command is used to display the SSH authentication algorithm Format show ssh algorithm Parameters None Restrictions None Example To show the SSH server algorithms DGS 3620 28SC admin show ssh algorithm Command show ssh algorithm Encryption Algorithm 3DES Enabled AES128 Enabled AES192 Enabled AES256 Enabled arcfour Enabled blowfish Enabled cast128 Enabled twofish128 Enabled twof...

Page 1087: ... Specifies the user authentication method hostbased Specifies the user authentication method enable Specifies to enable the user authentication method disable Specifies to disable the user authentication method Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the SSH user authentication method DGS 3620 28SC admin config ssh authmode pu...

Page 1088: ...ddr ipv6addr password publickey Parameters username 15 Enter the user name authmode Specifies the authentication mode hostbased Specifies the user authentication method hostname Specifies the host domain name domain_name 32 Enter the host domain name The hostname value can be up to 32 characters long hostname_IP Specifies the host domain name and IP address domain_name 32 Enter the host domain nam...

Page 1089: ...SSH user information Format show ssh user authmode Parameters None Restrictions Only Administrator level users can issue this command Example To show user information about SSH configuration DGS 3620 28SC admin show ssh user authmode Command show ssh user authmode Current Accounts User Name Authentication Host Name Host IP test Public Key alpha Host based alpha local 172 18 61 180 beta Host based ...

Page 1090: ...2 20 Enter the user maximum fail attempts The maximum authentication fail attempts must be between 2 and 20 The default value is 2 rekey Optional Specify the time to re generate the session key 10min Specifies 10 minutes to re generate the session key 30min Specifies 30 minutes to re generate the session key 60min Specifies 60 minutes to re generate the session key never Do not re generate the ses...

Page 1091: ...nable ssh Success DGS 3620 28SC admin 96 9 disable ssh Description This command is used to disable SSH server services Format disable ssh Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable SSH DGS 3620 28SC admin disable ssh Command disable ssh Success DGS 3620 28SC admin 96 10 show ssh server Description This command is us...

Page 1092: ...password authentication for users using SSH public key authentication Format config ssh publickey bypass_login_screen state enable disable Parameters enable Specifies to bypass the username password login screen to avoid a secondary authentication after using SSH public key authentication If this method is specified the login user using SSH public key authentication can execute command directly wi...

Page 1093: ...ter to the switch through TFTP protocol Format download ssh client_pub_key ipaddr ipv6addr domain_name 255 src_file path_filename 64 Parameters ipaddr Enter the IPv4 address of the TFTP server ipv6addr Enter the IPv6 address of the TFTP server domain_name 255 Enter the domain name of the TFTP server This name can be up to 255 characters long src_file Specifies the path name and file name of the TF...

Page 1094: ... server ipv6addr Enter the IPv6 address of the TFTP server domain_name 255 Enter the domain name of the TFTP server This name can be up to 255 characters long src_file Specifies the path name and file name of the TFTP server It can be a relative path name or an absolute path name If path name is not specified it refers to the TFTP server path path_filename 64 Enter the source file path This can be...

Page 1095: ...lename path_filename 64 keyfilename path_filename 64 Parameters ipaddr Enter the TFTP server IP address certfilename Specifies the desired certificate file name and the certificate file path in respect to the TFTP server root path Input characters with a maximum of 64 octets path_filename 64 Enter the desired certificate file name and the certificate file path in respect to the TFTP server root pa...

Page 1096: ...uite Optional This is used for configuring a cipher suite combination RSA_with_RC4_128_MD5 Indicate an RSA key exchange with RC4 128 bits encryption and MD5 hash RSA_with_3DES_EDE_CBC_SHA Indicate an RSA key exchange with 3DES_EDE_CBC encryption and SHA hash DHE_DSS_with_3DES_EDE_CBC_SHA Indicate a DH key exchange with 3DES_EDE_CBC encryption and SHA hash RSA_EXPORT_with_RC4_40_MD5 Indicate an RSA...

Page 1097: ...RC4 128 bits encryption and MD5 hash RSA_with_3DES_EDE_CBC_SHA Indicate an RSA key exchange with 3DES_EDE_CBC encryption and SHA hash DHE_DSS_with_3DES_EDE_CBC_SHA Indicate a DH key exchange with 3DES_EDE_CBC encryption and SHA hash RSA_EXPORT_with_RC4_40_MD5 Indicate an RSA_EXPORT key exchange with RC4 40 bits encryption and MD5 hash Restrictions Only Administrator Operator and Power User level u...

Page 1098: ...min show ssl Commands show ssl SSL Status Disabled RSA_WITH_RC4_128_MD5 Enabled RSA_WITH_3DES_EDE_CBC_SHA Enabled DHE_DSS_WITH_3DES_EDE_CBC_SHA Enabled RSA_EXPORT_WITH_RC4_40_MD5 Enabled DGS 3620 28SC admin To display the SSL certificate DGS 3620 28SC admin show ssl certificate Command show ssl certificate Loaded with RSA Certificate DGS 3620 28SC admin 97 5 show ssl cachetimeout Description This ...

Page 1099: ...he session ID on the web server and invokes the dlktimer library to remove this session ID by the cache timeout value The unit of argument s value is second and its boundary is between 60 1 minute and 86400 24 hours The default value is 600 seconds Format config ssl cachetimeout value 60 86400 Parameters cachetimeout Specifies the SSL cache timeout value attributes The SSL cache timeout value must...

Page 1100: ...ll certificates to constitute the SSL certificate chain cert_list Specifies chain of certifications on the Switch Restrictions Only Administrator level users can issue this command Example To configure SSL chain of certifications DGS 3620 28SC admin config ssl certificate chain web_ca2 cer server crt Command config ssl certificate chain web_ca2 cer server crt Success DGS 3620 28SC admin 97 8 delet...

Page 1101: ... Switch CLI Reference Guide 1096 Restrictions Only Administrator level users can issue this command Example To delete a certificate DGS 3620 28SC admin delete ssl certificate web_ca2 cer Command delete ssl certificate web_ca2 cer Success DGS 3620 28SC admin ...

Page 1102: ...figure the stacking mode to make the switch stackable Stacking mode can be changed under standalone mode only Format config stacking_mode disable enable Parameters enable Specifies that the Switch s stacking capability will be enabled disable Specifies that the Switch s stacking capability will be disabled Restrictions Only Administrator level users can issue this command Example To enable stackin...

Page 1103: ...able Specifies that the Switch s Stacking Force Master Role state will be disabled Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable stacking force master role state DGS 3620 28SC admin config stacking force_master_role state enable Command config stacking force_master_role state enable Success DGS 3620 28SC admin 98 3 show stacking_mode D...

Page 1104: ...ator and Power User level users can issue this command Example To display the stack information DGS 3620 28SC admin show stack_information Command show stack_information Stack topology status New device is detected hot insert may happen after 7 seconds Topology Duplex_Chain My Box ID 3 Master ID 3 Box Count 1 Force Master Role Enable Box User Prio Prom Runtime H W ID Set Type Exist rity MAC Versio...

Page 1105: ... Box ID Box Type H W Version Serial Number 1 DGS 3620 28SC B1 D1234567890 2 DGS 3620 28SC B1 D1234567891 DGS 3620 28SC admin 98 6 config box_id current_box_id Description This command configures the box ID By default the box ID is automatically assigned by the system based topology election results Administrators can assign box IDs statically The new box ID will take effect after unit reboot Each ...

Page 1106: ...new_box_id auto Success DGS 3620 28SC admin 98 7 config box_priority current_box_id Description This command configures the priority of switch which will determines which box becomes master Lower number means higher priority New priority will take effect after user reboot Format config box_priority current_box_id value 1 12 priority value 1 63 Parameters value 1 12 Enter the current box ID value u...

Page 1107: ...or Operator and Power User level users can issue this command Example To enable the stacking log state DGS 3620 28SC admin config stacking log state enable Command config stacking log state enable Success DGS 3620 28SC admin 98 9 config stacking trap state Description This command is used to configure the trap state for stacking Format config stacking trap state enable disable Parameters enable Sp...

Page 1108: ...er 3 Managed Stackable Gigabit Switch CLI Reference Guide 1103 Example To enable the stacking trap state DGS 3620 28SC admin config stacking trap state enable Command config stacking trap state enable Success DGS 3620 28SC admin ...

Page 1109: ...fies the VLAN to be associated with the MAC address The name must be an existing static VLAN name vlan_name 32 Enter the VLAN name The maximum length is 32 characters vlanid Specifies the VLAN ID to be associated with the MAC address The ID must be an existing static VLAN ID vlanid 1 4094 Enter the VLAN ID between 1 and 4094 priority Optional Specifies the priority that is assigned to untagged pac...

Page 1110: ... vlanid 1 4094 Enter the VLAN ID between 1 and 4094 Note If the MAC address and VLAN are not specified all static entries associated with the port will be removed Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete a static MAC based VLAN entry DGS 3620 28SC admin delete mac_based_vlan mac_address 00 00 00 00 00 01 vlan default Command delet...

Page 1111: ...ample In the following example MAC address 00 80 c2 33 c3 45 is assigned to VLAN 300 by manual configuration It is assigned to VLAN 400 by MAC AC Since MAC AC has higher priority than manual configuration the manually configured entry will become inactive To display the MAC based VLAN entries DGS 3620 28SC admin show mac_based_vlan MAC Address VLAN ID Status Type 00 80 e0 14 a7 57 200 Active Stati...

Page 1112: ...col such as PIM It takes higher priority than unicast route information and multicast route information when the RPF checking is done The RPF check rule will first check whether it matches an entry in the IP multicast static route table before continuing Format create ipmroute network_address rpf_address ipaddr null Parameters network_address Specifies the source IP address of the received IP mult...

Page 1113: ...ill be deleted here all Specifies that all the IP multicast static routes will be deleted Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete ip multicast static route entry DGS 3620 28SC admin delete ipmroute 11 0 0 0 8 Command delete ipmroute 11 0 0 0 8 Success DGS 3620 28SC admin 100 3 show ipmroute Description This command is used to dis...

Page 1114: ...LI Reference Guide 1109 Restrictions None Example To display ip multicast static route entry DGS 3620 28SC admin show ipmroute 11 0 0 0 8 Command show ipmroute 11 0 0 0 8 Index Source IP Address RPF IP Address 1 11 0 0 0 8 20 1 2 3 Total Entries 1 DGS 3620 28SC admin ...

Page 1115: ...sified to the VLAN defined for this subnet Format create subnet_vlan network network_address ipv6network ipv6networkaddr vlan vlan_name 32 vlanid vlanid 1 4094 priority value 0 7 Parameters network Specifies an IPv4 network address network_address Enter an IPv4 network address The format is ipaddress prefix length ipv6network Specifies an IPv6 network address ipv6networkaddr Enter an IPv6 network ...

Page 1116: ...es Format delete subnet_vlan network network_address ipv6network ipv6networkaddr vlan vlan_name 32 vlanid vidlist all Parameters network Specifies an IPv4 network address network_address Enter an IPv4 network address The format is ipaddress prefix length ipv6network Specifies an IPv6 network address ipv6networkaddr Enter an IPv6 network address The format is ipaddress prefix length vlan Specifies ...

Page 1117: ...work address The format is ipaddress prefix length ipv6network Optional Specify an IPv6 network address ipv6networkaddr Enter an IPv6 network address The format is ipaddress prefix length vlan Optional Specify to display all subnet VLAN entries associated with this VLAN vlan_name 32 Enter a VLAN name The maximum length is 32 characters vlanid Optional Specify a list of VLANs by VLAN ID vidlist Ent...

Page 1118: ...nfig vlan_precedence ports Description This command is used to configure vlan classification precedence on each port You can specify the order of MAC based VLAN classification and subnet VLAN classification If a port s VLAN classification is MAC based precedence MAC based VLAN classification will process at first If MAC based VLAN classification fails the subnet VLAN classification will be execute...

Page 1119: ...vlan Command config vlan_precedence ports 1 subnet_vlan Success DGS 3620 28SC admin 101 5 show vlan_precedence ports Description This command is used to display the VLAN classification precedence Format show vlan_precedence ports portlist Parameters portlist Optional Specifies the list of ports used for this display Restrictions None Example To display VLAN classification precedence on ports 1 5 D...

Page 1120: ...xStack DGS 3620 Series Layer 3 Managed Stackable Gigabit Switch CLI Reference Guide 1115 ...

Page 1121: ...ub VLANs in the same IP subnet A sub VLAN is a Layer 2 separated broadcast domain The super VLAN cannot have any physical member ports and hosts that resides within any sub VLANs Once an IP interface is bound to a super VLAN the proxy ARP will be enabled automatically on the specified interface for the communication between its sub VLANs If an IP interface is bound to a super VLAN it cannot be bou...

Page 1122: ...here This name can be up to 32 characters long vlanid Specifies the VLAN ID used vlanid 1 4094 Enter the VLAN ID used here This value must be between 1 and 4094 add Specifies the sub VLAN ID list to add to the super VLAN The sub VLAN shall be an existent 802 1Q VLAN delete Specifies the sub VLAN ID list to delete from the super VLAN sub_vlan Specifies the sub VLANs of the super VLAN By default a n...

Page 1123: ... 10 Success DGS 3620 28SC admin 102 4 config sub_vlan Description This command is used to configure the IP range of the sub VLAN A sub VLAN can has one or more IP ranges Configuring IP range of sub VLAN can reduce the ARP traffic in the super VLAN That is multiple IP ranges is allowed to map to one sub VLAN One IP can not map to multiple sub VLANs if one IP is mapped to multiple VLAN it may cause ...

Page 1124: ...b VLAN 1 to 10 1 1 1 10 1 1 3 DGS 3620 28SC admin config sub_vlan vlanid 1 add ip_range 10 1 1 1 to 10 1 1 3 Command config sub_vlan vlanid 1 add ip_range 10 1 1 1 to 10 1 1 3 Success DGS 3620 28SC admin 102 5 show super_vlan Description This command is used to display the super VLAN parameters Format show super_vlan vlan_name 32 vlanid vlanid 1 4094 Parameters vlan_name 32 Optional Enter the supe...

Page 1125: ... Total Entries 1 DGS 3620 28SC admin 102 6 show sub_vlan Description This command is used to show sub VLAN Format show sub_vlan vlan_name 32 vlanid vidlist Parameters vlan_name 32 Optional Enter the sub VLAN name used here This name can be up to 32 characters long vlanid Optional Specifies the sub VLAN ID used vidlist Enter the sub VLAN ID used here This value must be between 1 and 4094 Restrictio...

Page 1126: ... 28SC admin show sub_vlan Command show sub_vlan Sub VID Status Super VID IP Range 1 Active 10 10 1 1 1 10 1 1 10 10 1 2 1 10 1 2 20 2 Active 10 10 1 3 0 10 1 3 100 3 Inactive 10 10 1 4 0 10 1 4 255 4 Active 20 10 1 5 0 10 1 5 255 5 Inactive 20 10 1 6 0 10 1 6 255 Total Entries 5 DGS 3620 28SC admin ...

Page 1127: ...e learning enable disable state enable disable mdix auto normal cross description desc 1 32 clear_description 1 Parameters portlist Enter a range of ports to be configured all Specify to set all ports in the system medium_type Optional Specify the medium type when configuring ports that are combo ports fiber Specifies the fiber port copper Specifies the copper port speed Set port speed for the spe...

Page 1128: ...f the ports are in error disabled status configuring their state to enable will recover these ports from a disabled to an enabled state The default value is enable enable Enable the specified port s disable Disable the specified port s mdix Specifies the type of cabling The default value is auto auto Select auto for auto sensing of the optimal type of cabling normal Select normal for normal cablin...

Page 1129: ...f no parameter is specified all ports will be displayed Restrictions None Example To display the configuration of ports 1 to 4 DGS 3620 28SC admin show ports 1 1 1 4 Command show ports 1 1 1 4 Port State Settings Connection Address MDIX Speed Duplex FlowCtrl Speed Duplex FlowCtrl Learning 1 1 Enabled Auto Disabled Link Down Enabled Auto 1 2 Enabled Auto Disabled Link Down Enabled Auto 1 3 Enabled ...

Page 1130: ...iption CTRL C ESC q Quit SPACE n Next Page p Previous Page r Refresh Note Connection status has the following situations Link Down Speed Duplex FlowCtrl link up and Err Disabled To display port error disabled information DGS 3620 28SC admin show ports err_disabled Command show ports err_disabled Port Port Connection Status Reason State 1 Enabled Err Disabled Storm control Description port1 8 Enabl...

Page 1131: ... configure the severity level for emergency messages alert Specifies to configure the severity level for alert messages critical Specifies to configure the severity level for critical messages error Specifies to configure the severity level for error messages warning Specifies to configure the severity level for warning messages notice Specifies to configure the severity level for notice messages ...

Page 1132: ...scription This command is used to show the severity level control for a system Format show system_severity Parameters None Restrictions None Example To show the severity level control for a system DGS 3620 28SC admin show system_severity Command show system_severity System Severity Trap warning System Severity Log information DGS 3620 28SC admin ...

Page 1133: ...nly Administrator and Operator level users can issue this command Note The switch may become inaccessible when dumping the technical support data Note The management session may time out if dumping technical support data takes longer than the configured session timeout period It is strongly recommended to set the serial port timeout to never to disable the auto disconnection of the console session...

Page 1134: ...11 22 33 STACKING 2000 1 24 03 05 29 Topology Information Stable Topology My Box ID 1 Role Master Box Cnt 1 Topology Type Duplex Chain Unit Prio Device Runtime Stacking ID rity Role MAC Type option version version 1 32 32 Master 5C D9 98 11 22 33 DGS 3620 28SC 0x0002 2 50 014 2 0 1 105 2 upload tech_support_toTFTP Description This command is used to upload technical support information to a TFTP s...

Page 1135: ...le sent to the TFTP server The maximum size of the file name is 64 characters Restrictions Only Administrator and Operator level users can issue this command Example To upload technical support information DGS 3620 28SC admin upload tech_support_toTFTP 10 0 0 66 tech_suppport txt Command upload tech_support_toTFTP 10 0 0 66 tech_suppport txt Connecting to server Done Upload techsupport file Done S...

Page 1136: ... hh mm e_date end_date 1 31 e_mth end_mth 1 12 e_time end_time hh mm offset 30 60 90 120 7 show time 106 1 config sntp Description This command is used to change SNTP configurations Format config sntp primary ipaddr secondary ipaddr poll interval int 30 99999 1 Parameters primary Optional Specify the SNTP primary server IP address ipaddr Enter the SNTP primary server IP address secondary Optional ...

Page 1137: ...Pv6 server secondary SNTP secondary IPv6 server address ipv6addr Enter the IPv6 address of the Secondary SNTP IPv6 server Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure SNTP primary IPv6 server 1000 1 secondary IPv6 server 1000 2 DES 3620 28SC admin config sntp ipv6server primary 1000 1 secondary 1000 2 Command config sntp ipv6server...

Page 1138: ...ver None IPv4 Secondary SNTP Server None IPv6 Primary SNTP Server None IPv6 Secondary SNTP Server None SNTP Poll Interval 720 sec DGS 3620 28SC admin 106 4 enable sntp Description This command is used to turn on SNTP support Format enable sntp Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable SNTP DGS 3620 28SC admin enable...

Page 1139: ...s can issue this command Example To disable SNTP DGS 3620 28SC admin disable sntp Command disable sntp Success DGS 3620 28SC admin 106 6 config time Description This command is used to change the time settings Format config time date ddmthyyyy time hh mm ss Parameters date ddmthyyyy Enter the system clock date time hh mm ss Enter the system clock time Restrictions Only Administrator Operator and P...

Page 1140: ...time zone between 0 and 13 min Specifies the minute of the time zone minute 0 59 Enter the minute of the time zone between 0 and 59 Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the time zone DGS 3620 28SC admin config time_zone operator hour 2 min 30 Command config time_zone operator hour 2 min 30 Success DGS 3620 28SC admin 106 8 ...

Page 1141: ... add or to subtract during summertime The range of offsets are 30 60 90 and 120 The default value is 60 30 Specifies 30 minutes to add or to subtract during summertime 60 Specifies 60 minutes to add or to subtract during summertime 90 Specifies 90 minutes to add or to subtract during summertime 120 Specifies 120 minutes to add or to subtract during summertime annual Set the DST to annual mode s_da...

Page 1142: ...th 10 e_time 15 30 offset 30 Success DGS 3620 28SC admin 106 9 show time Description This command is used to display current time states Format show time Parameters None Restrictions None Example To show time DGS 3620 28SC admin show time Command show time Current Time Source System Clock Boot Time 8 Jan 2000 21 44 33 Current Time 9 Jan 2000 03 25 17 Time Zone GMT 00 00 Daylight Saving Time Disabl...

Page 1143: ...a range of ports to be configured all Specifies all ports forward_list Specifies a range of port forwarding domains null Specifies the range of the port forwarding domain is null all Specifies all ports portlist Enter a range of ports to be configured Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure traffic segmentation DGS 3620 28SC a...

Page 1144: ...orts to be displayed Note If no parameter is specified the system will display all current traffic segmentation tables Restrictions None Example To display the traffic segmentation table for ports 1 to 3 DGS 3620 28SC admin show traffic_segmentation 1 3 Command show traffic_segmentation 1 3 Traffic Segmentation Table Port Forward Portlist 1 1 28 2 1 28 3 1 28 DGS 3620 28SC admin ...

Page 1145: ... time tacacs dns tftp netbios ns netbios ds port_number 0 65535 show udp_helper udp_port ipif ipif_name 12 108 1 enable udp_helper Description This command is used to enable the UDP Helper function on the Switch Format enable udp_helper Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the UDP Helper function DGS 3620 28SC ...

Page 1146: ...08 3 config udp_helper add ipif Description This command is used to add a UDP Helper server address for specific interface of Switch Format config udp_helper add ipif ipif_name 12 ipaddr Parameters ipif Specifies the name of the IP interface that receives the UDP broadcast ipif_name 12 Enter the IP interface name used here This name can be up to 12 characters long ipaddr Enter the UDP Helper serve...

Page 1147: ...eives the UDP broadcast ipif_name 12 Enter the IP interface name used here This name can be up to 12 characters long ipaddr Enter the UDP Helper server IP address here Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete a server address for System interface DGS 3620 28SC admin config udp_helper delete ipif System 20 0 0 90 Command config udp...

Page 1148: ...fig udp_helper udp_port add 55 Command config udp_helper udp_port add 55 Success DGS 3620 28SC admin 108 6 config udp_helper udp_port delete Description This command is used to delete a UDP port for the UDP Helper function on the Switch Format config udp_helper udp_port delete time tacacs dns tftp netbios ns netbios ds port_number 0 65535 Parameters time Specifies the Time service The UDP port num...

Page 1149: ...elper udp_port ipif ipif_name 12 Parameters udp_port Optional Specifies the UDP port configured for the UDP Helper ipif Optional Specifies the name of the IP interface name to be displayed ipif_name 12 Enter the IP interface name used here This name can be up to 12 characters long Restrictions None Example To display the current UDP Helper configuration DGS 3620 28SC admin show udp_helper Command ...

Page 1150: ...t Command show udp_helper udp_port UDP Helper Status Enabled Application UDP Port User App1 55 DGS 3620 28SC admin To display the current UDP Helper for System interface DGS 3620 28SC admin show udp_helper ipif System Command show udp_helper ipif System UDP Helper Status Enabled Interface Server System 20 0 0 90 DGS 3620 28SC admin ...

Page 1151: ...configuration portlist Enter the list of ports that will be used for this configuration all Specifies that all the ports will be used for this configuration mode Specifies the URPF checking mode loose Specifies that it will merely verify whether the source IP address is present in the routing table strict Specifies to perform checks to ensure that the SIP address is present in the routing table an...

Page 1152: ...ble the IP URPF feature Note When enabled the hardware routing table needs to be searched using SIP first and then using DIP This is achieved by splitting the table into two halves so that the size of IP routing table will be reduced by half This command will not take effect until the configuration was saved and the switch was rebooted Format enable ip urpf Parameters None Restrictions Only Admini...

Page 1153: ...arameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable the URPF global state DGS 3620 28SC admin disable ip urpf Command disable ip urpf Save and reboot are required to make the new setting effective Success DGS 3620 28SC admin 109 4 show ip urpf Description This command is used to display current settings of URPF Format show ip...

Page 1154: ...7 Disabled Disabled 1 18 Disabled Disabled 1 19 Disabled Disabled 1 20 Disabled Disabled 1 21 Disabled Disabled 1 22 Disabled Disabled 1 23 Disabled Disabled 1 24 Disabled Disabled 1 25 Disabled Disabled 1 26 Disabled Disabled DGS 3620 28SC admin 109 5 delete ip urpf ports Description This command is used to remove URPF checking from one or more ports After URPF checking was removed from one port ...

Page 1155: ...es Layer 3 Managed Stackable Gigabit Switch CLI Reference Guide 1150 Example To remove URPF checking from all ports DGS 3620 28SC admin delete ip urpf ports all Command delete ip urpf ports all Success DGS 3620 28SC admin ...

Page 1156: ...thname include exclude begin filter_string 80 filter_string 80 filter_string 80 include exclude begin filter_string 80 filter_string 80 filter_string 80 include exclude begin filter_string 80 filter_string 80 filter_string 80 upload firmware_toRCP username username ipaddr dest_file path_filename 64 rcp string 128 unit unit_id 1 12 src_file pathname upload log_toRCP username username ipaddr dest_fi...

Page 1157: ...ing system will be used dest_file Optional Specify an absolute path name on the device file system If path name is not specified it overwrites the bootup image on the Switch pathname Enter an absolute path name on the device file system boot_up Optional Specify as boot up file cfg_fromTFTP Download and install new configuration file on the switch from a TFTP server ipaddr Enter the IP address of t...

Page 1158: ... Optional Specify the IP address of the RCP server src_file Specifies the path and file name of the switch configuration file on the RCP server The maximum length is 64 path_filename 64 Enter the path and file name of the switch configuration file on the RCP server The maximum length is 64 rcp Syntax rcp username ipaddr directory filename Example for full path user_name 10 1 1 1 home user_name des...

Page 1159: ...trategy depends on the server system path_filename 64 Enter the path name on the RCP server or local Note If a user specifies the relative file path the path search strategy depends on the server system rcp Syntax rcp username ipaddr directory filename Example for full path user_name 10 1 1 1 home user_name desxxxx had Example for relative path user_name 10 1 1 1 desxxxx had Example for omitted us...

Page 1160: ...name 255 dest_file path_filename 64 unit unit_id firmware_toTFTP ipaddr ipv6addr domain_name 255 dest_file path_filename 64 unit unit_id src_file pathname Parameters cfg_toTFTP Used to upload a configuration file from a device to a TFTP server ipaddr Enter the IP address of the TFTP server ipv6addr Enter the IPv6 address of the TFTP server domain_name 255 Enter the domain name of the TFTP server h...

Page 1161: ...name if the TFTP server path_filename 64 Enter the path name on the TFTP server It can be a relative path name or an absolute path name unit Optinal Specifies which unit on the stacking system If it is not specified it refers to the master unit unit_id Enter the unit ID used here firmware_toTFTP Used to upload firmware from the device to a TFTP server ipaddr Enter the IP address of the TFTP server...

Page 1162: ...pload a dangerous log DGS 3620 28SC admin upload attack_log_toTFTP 10 48 74 121 dest_file c alert txt Command upload attack_log_toTFTP 10 48 74 121 dest_file c alert txt Connecting to server Done Upload attack log Done Success DGS 3620 28SC admin 110 5 upload attack_log_toRCP Description This command is used to upload the attack log file from the device to an RCP server Note If a user specifies th...

Page 1163: ... 104 dest_file home DGS 3620 log unit 2 Command upload attack_log_toRCP username rcp_user 172 18 212 104 dest_file home DGS 3620 log unit 2 Connecting to server Done Upload Attack log Done Success DGS 3620 28SC admin 110 6 upload cfg_toRCP Description This command is used to upload a configuration file from the device to a Remote Copy Protocol RCP server Format upload cfg_toRCP username username i...

Page 1164: ...contains the specified filter string will be the first line of the output filter_string 80 Enter a filter string enclosed by the quotation mark symbol Thus the filter string itself cannot contain the quotation mark character The filter string is case sensitive filter_string 80 Enter a filter string enclosed by the quotation mark symbol filter_string 80 Enter a filter string enclosed by the quotati...

Page 1165: ...ing system If it is not specified it refers to the master unit unit_id 1 12 Enter the unit ID used here This value must be between 1 and 12 src_file Optional Specify the path name of the source file If not specified the bootup image on the device will be uploaded pathname Enter the path name of the source file Restrictions Only Administrator and Operator level users can issue this command Example ...

Page 1166: ...r and Operator level users can issue this command Example To upload the log from the device to an RCP server DGS 3620 28SC admin upload log_toRCP username rcp_user 172 18 212 104 dest_file home DGS 3620 log Command upload log_toRCP username rcp_user 172 18 212 104 dest_file home DGS 3620 log Connecting to server Done Upload log Done Success To upload log from the device to an RCP server using an R...

Page 1167: ...onfiguration Description This command is used to select a configuration file as the next boot up configuration or to apply a specific configuration to the system Format config configuration unit unit_id pathname boot_up active Parameters unit Optional Specifies the unit ID used unit_id Enter the unit ID used here pathname Specifies a configuration file on the device file system boot_up Specifies a...

Page 1168: ...lter_string 80 filter_string 80 include exclude begin filter_string 80 filter_string 80 filter_string 80 include exclude begin filter_string 80 filter_string 80 filter_string 80 Parameters effective Specifies to display only commands which affect the behavior of the device modified Specifies to display only the commands which are not from the reset default setting current_config Specifies the curr...

Page 1169: ... state enable config temperature log state enable CTRL C ESC q Quit SPACE n Next Page ENTER Next Entry a All 110 12 show boot_file Description This command is used to display the configuration file and firmware image assigned as boot up files Format show boot_file Parameters None Restrictions None Example To display the configuration file and firmware image assigned as a boot up file DGS 3620 28SC...

Page 1170: ...ional Specify the IP address of the global RCP server By default the server is unspecified ipaddr Enter the IP address of the RCP server username Optional Specify the remote user name on the RCP server username Enter the remote user name on the RCP server Restrictions Only Administrator level users can issue this command Example To configure RCP global server information for the username travel DG...

Page 1171: ...splay Remote Copy Protocol RCP global server information Format show rcp server Parameters None Restrictions Only Administrator level users can issue this command Example To display RCP global server information DGS 3620 28SC admin show rcp server Command show rcp server RCP Server Address RCP Server Username travel DGS 3620 28SC admin 110 16 ping Description This command is used to send Internet ...

Page 1172: ... A value of 1 to 99 seconds can be specified The default is 1 second source_ip Specifies the source IP address of the ping packets If specified the IP address will be used as the packets source IP address that ping send to remote host ipaddr Enter the source IP addres used here Restrictions None Example To send ICMP echo message to 10 51 17 1 for 4 times DGS 3620 28SC admin ping 10 51 17 1 times 4...

Page 1173: ...ackets source IPv6 address that ping send to remote host ipv6addr Enter the source IPv6 addres used here Restrictions None Example To send ICMP echo message to 3FFE 2 D04D 7878 66D E5BC for 10 times DGS 3620 28SC admin ping6 3FFE 2 D04D 7878 66D E5BC times 10 size 6000 timeout 10 Command ping6 3FFE 2 D04D 7878 66D E5BC times 10 size 6000 timeout 10 Reply from 3FFE 2 D04D 7878 66D E5BC bytes 6000 t...

Page 1174: ...0 to 64900 The default is 33435 timeout Optional Specify the timeout period while waiting for a response from the remote device sec 1 65535 Enter the timeout period while waiting for a response from the remote device A value of 1 to 65535 seconds can be specified The default is 5 seconds probe Optional Specify the number of probes value 1 9 Enter the number of probes The range is from 1 to 9 If un...

Page 1175: ...lt is 33435 timeout Optional Specify the timeout period while waiting for a response from the remote device sec 1 65535 Enter the timeout period while waiting for a response from the remote device A value of 1 to 65535 seconds can be specified The default is 5 seconds probe Optional Specify the number of probes value 1 9 Enter the number of probes The range is from 1 to 9 If unspecified the defaul...

Page 1176: ...he Telnet server port number to be connected to If not specified the default port is 23 value 1 65535 Enter a value between 1 and 65535 Restrictions Only Administrator Operator and Power User level users can issue this command Example To Telnet to a switch by specifying the IP address DGS 3620 28SC admin telnet 10 1 1 1 Command telnet 10 1 1 1 DGS 3620 28SC Gigabit Ethernet Switch Command Line Int...

Page 1177: ... enable broadcast_ping_reply Success DGS 3620 28SC admin 110 22 disable broadcast_ping_reply Description The disable broadcast_ping_reply command used to disable broadcast ping reply state device won t reply broadcast ping request Format disable broadcast_ping_reply Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable broadca...

Page 1178: ...g_reply Broadcast Ping Reply State Enabled DGS 3620 28SC admin 110 24 config telnet source_ipif Description This command is used to select an address of an interface as the source address for TELNET client Format config telnet source_ipif ipif_name 12 ipaddr ipv6addr none Parameters ipif_name 12 Enter the IP interface name used here This name can be up to 12 characters long ipaddr Enter the IPv4 a...

Page 1179: ...pif Description This command is used to show the configured source address for TELNET client Format show telnet source_ipif Parameters None Restrictions None Example To display the source address for the TELNET client DGS 3620 28SC admin show telnet source_ipif Command show telnet source_ipif Telnet Source IP Interface Configuration IP Interface System IPv4 Address 10 90 90 90 IPv6 Address None DG...

Page 1180: ...trator Operator and Power User level users can issue this command Example To configure the IP 10 90 90 90 on System interface as the source address DGS 3620 28SC admin config tftp source_ipif System 10 90 90 90 Command config tftp source_ipif System 10 90 90 90 Success DGS 3620 28SC admin 110 27 show tftp source_ipif Description This command is used to show the configured source address for TFTP F...

Page 1181: ...xStack DGS 3620 Series Layer 3 Managed Stackable Gigabit Switch CLI Reference Guide 1176 IP Interface System IPv4 Address 10 90 90 90 IPv6 Address None DGS 3620 28SC admin ...

Page 1182: ...t 1 254 ipaddress ipaddr advertisement_interval int 1 255 preempt true false critical_ip ipaddr critical_ip_state enable disable 1 config vrrp ipif ipif_name 12 authtype none simple authdata string 8 ip authdata string 16 delete vrrp vrid vrid 1 255 ipif ipif_name 12 show vrrp ipif ipif_name 12 vrid vrid 1 255 111 1 enable vrrp Description This command is used to enable VRRP globally Format enable...

Page 1183: ...55 ipif ipif_name 12 ipaddress ipaddr state enable disable priority int 1 254 advertisement_interval int 1 255 preempt true false critical_ip ipaddr critical_ip_state enable disable Parameters vrid Specifies the ID of the Virtual Router used vrid 1 255 Enter the Virtual Router ID used here This value must be between 1 and 255 ipif Specifies the IP interface used for this configuration ipif_name 12...

Page 1184: ...al IP address of a real device on the network If the connection from the virtual router to this IP address fails the virtual router will automatically be disabled A new Master will be elected from the backup routers participating in the VRRP group Different critical IP addresses may be assigned to different routers participating in the VRRP group and can therefore define multiple routes to the Int...

Page 1185: ... setting is true true Specifies that if the backup router s priority is set higher than the masters priority it will become the master instead of the current one false Specifies if the backup router s priority is higher than the masters priority it will not become the master until the master failed critical_ip Optional Specifies an IP address that will provide the most direct route to the Internet...

Page 1186: ... used in the simple text authentication algorithm string 8 Enter the authentication data used in the simple text authentication algorithm here This value can be up to 8 characters long ip Specifies that the authentication algorithm will be set to IP authentication header on this interface authdata Specifies the authentication data used in the IP authentication header algorithm string 16 Enter the ...

Page 1187: ... Example To delete VRRP DGS 3620 28SC admin delete vrrp vrid 3 ipif System Command delete vrrp vrid 3 ipif System Success DGS 3620 28SC admin 111 7 show vrrp Description This command is used to display the VRRP settings Format show vrrp ipif ipif_name 12 vrid vrid 1 255 Parameters ipif Optional Specifies the IP interface name to be displayed ipif_name 12 Enter the IP interface name to be displayed...

Page 1188: ...face Name System Authentication Type No Authentication VRID 1 Virtual IP Address 10 90 90 91 Virtual MAC Address 00 00 5E 00 01 01 Virtual Router State Initialize State Enabled Priority 100 Master IP Address 10 90 90 90 Critical IP Address 0 0 0 0 Checking Critical IP Disabled Advertisement Interval 1 secs Preempt Mode True Virtual Router Up Time 0 centi secs Total Entries 1 DGS 3620 28SC admin ...

Page 1189: ... Description This command is used to enable the global voice VLAN function on a switch To enable the voice VLAN the voice VLAN must be also assigned At the same time the VLAN must be an existing static 802 1Q VLAN To change the voice VLAN the user must disable the voice VLAN function and re issue this command By default the global voice VLAN state is disabled Format enable voice_vlan vlan_name 32 ...

Page 1190: ... None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable voice VLAN DGS 3620 28SC admin disable voice_vlan Command disable voice_vlan Success DGS 3620 28SC admin 112 3 config voice_vlan priority Description This command is used to configure voice VLAN priority The voice VLAN priority will be the priority associated with the voice VLAN traf...

Page 1191: ... user defined OUI cannot be the same as the pre defined OUI The following are the pre defined voice traffic s OUI OUI Vendor Mnemonic Name 00 E0 BB 3COM 3com 00 03 6B Cisco cisco 00 E0 75 Veritel veritel 00 D0 1E Pingtel pingtel 00 01 E3 Siemens siemens 00 60 B9 NEC Philips nec philips 00 0F E2 Huawei 3COM huawei 3com 00 09 6E Avaya avaya Format config voice_vlan oui add delete macaddr macmask des...

Page 1192: ...o set all Specifies to set all ports state Specifies the voice VLAN function state on ports The default state is disabled enable Specifies to enable the voice VLAN function state on ports disable Specifies to disable the voice VLAN function state on ports mode The voice VLAN mode The default mode is auto auto When the mode is auto the port may become the voice VLAN member port by auto learning If ...

Page 1193: ...an log state enable disable Parameters enable Specifies to enable the voice VLAN log state disable Specifies to disable the voice VLAN log state Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the voice VLAN log state DGS 3620 28SC admin config voice_vlan log state enable Command config voice_vlan log state enable Success DGS 3620 28SC a...

Page 1194: ...65535 Enter the aging time The range is 1 to 65535 minutes The default value is 720 minutes Restrictions Only Administrator Operator and Power User level users can issue this command Example To set 60 minutes as the aging time of voice VLAN DGS 3620 28SC admin config voice_vlan aging_time 60 Command config voice_vlan aging_time 60 Success DGS 3620 28SC admin 112 8 show voice_vlan Description This ...

Page 1195: ...mat show voice_vlan lldp_med voice_device Parameters None Restrictions None Example To display the voice devices that were discovered by LLDP MED DGS 3620 28SC admin show voice_vlan lldp_med voice_device Command show voice_vlan lldp_med voice_device Index 1 Local Port 1 1 Chassis ID Subtype MAC Address Chassis ID 00 E0 BB 00 00 11 Port ID Subtype Network Address Port ID 00 01 E3 00 00 00 Create Ti...

Page 1196: ...n show voice_vlan oui Command show voice_vlan oui OUI Address Mask Description 00 01 E3 00 00 00 FF FF FF 00 00 00 Siemens 00 03 6B 00 00 00 FF FF FF 00 00 00 Cisco 00 09 6E 00 00 00 FF FF FF 00 00 00 Avaya 00 0F E2 00 00 00 FF FF FF 00 00 00 Huawei 3COM 00 60 B9 00 00 00 FF FF FF 00 00 00 NEC Phillips 00 D0 1E 00 00 00 FF FF FF 00 00 00 Pingtel 00 E0 75 00 00 00 FF FF FF 00 00 00 Veritel 00 E0 BB...

Page 1197: ...vlan ports 1 1 1 3 Ports Status Mode 1 1 Disabled Auto 1 2 Disabled Auto 1 3 Disabled Auto DGS 3620 28SC admin 112 12 show voice_vlan voice_device Description This command is used to show voice devices that are connected to the ports The start time is the time when the device is detected on this port and the activate time is the latest time when the device sends the traffic Format show voice_vlan ...

Page 1198: ... CLI Reference Guide 1193 Example To display voice VLAN device ports 1 to 2 DGS 3620 28SC admin show voice_vlan voice_device ports 1 2 Command show voice_vlan voice_device ports 1 2 Ports Voice Device Start Time Last Active Time Total Entries 0 DGS 3620 28SC admin ...

Page 1199: ...show vlan vlan_name 32 show vlan vlanid vidlist show vlan ports portlist show gvrp config private_vlan vlan_name 32 vid vlanid 1 4094 add isolated community remove vlan_name 32 vlanid vidlist show private_vlan vlan_name 32 vlanid vidlist enable pvid auto_assign disable pvid auto_assign show pvid auto_assign 113 1 create vlan Description This command is used to create a VLAN on the switch The VLAN ...

Page 1200: ...d Description This command is used to create a VLAN on the switch The VLAN ID must be always specified for creating a VLAN Format create vlan vlanid vidlist type 1q_vlan private_vlan advertisement Parameters vidlist Enter the VLAN ID of the VLAN to be created type Optional Specify the type of VLAN to be created 1q_vlan Specifies the VLAN is a 802 1q VLAN private_vlan Specifies the VLAN is a privat...

Page 1201: ...s command is used to delete a previously configured VLAN on the switch Format delete vlan vlan_name 32 Parameters vlan_name 32 Enter the VLAN name of the VLAN to be deleted The maximum length is 32 characters Restrictions Only Administrator Operator and Power User level users can issue this command Example To remove VLAN v1 DGS 3620 28SC admin delete vlan v1 Command delete vlan v1 Success DGS 3620...

Page 1202: ... add tagged untagged forbidden delete portlist advertisement enable disable 1 Parameters vlan_name 32 Enter the name of the VLAN to add or delete ports to The maximum length is 32 characters add Specifies the port attribute to add tagged Specifies the additional ports as tagged untagged Specifies the additional ports as untagged forbidden Specifies the ports to be forbidden from becoming members o...

Page 1203: ... is used to add or delete ports to the port list of a previously configured VLAN Users can specify the additional ports as tagged untagged or forbidden Format config vlan vlanid vidlist add tagged untagged forbidden delete portlist advertisement enable disable name vlan_name 32 1 Parameters vidlist Enter the VLAN ID of the VLAN to add or delete ports to add Specifies the port attribute to add tagg...

Page 1204: ... 8 Success DGS 3620 28SC admin To delete ports 4 through 8 from VLAN 1 DGS 3620 28SC admin config vlan vlanid 1 delete 4 8 Command config vlan vlanid 1 delete 4 8 Success DGS 3620 28SC admin To enable the VLAN default advertisement DGS 3620 28SC admin config vlan vlanid default advertisement enable Command config vlan vlanid default advertisement enable Success DGS 3620 28SC admin 113 7 config por...

Page 1205: ...ceptable_frame Specifies the type of frame that will be accepted by the port tagged_only Only tagged frame will be received admit_all Both tagged and untagged frames will be accepted pvid Specifies the Port VID PVID that will be associated with the port vlanid 1 4094 Enter the VLAN ID between 1 and 4094 Restrictions Only Administrator Operator and Power User level users can issue this command Exam...

Page 1206: ...join Specifies the Join time will be set The default value is 200 milliseconds leave Specifies the Leave time will be set The default value is 600 milliseconds leaveall Specifies the LeaveAll time The default value is 10000 milliseconds value 100 100000 Enter the time value The value range is 100 to 100000 milliseconds In addition the Leave time should greater than 2 Join times and the LeaveAll ti...

Page 1207: ...neric VLAN Registration Protocol GVRP The default is disabled Format enable gvrp Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable the generic VLAN Registration Protocol GVRP DGS 3620 28SC admin enable gvrp Command enable gvrp Success DGS 3620 28SC admin 113 11 disable gvrp Description This command is used to disable Generi...

Page 1208: ...n about each VLAN which includes VLAN ID VLAN Name Tagged Untagged Forbidden status for each port and Member Non member status for each port Format show vlan vlan_name 32 Parameters vlan_name 32 Optional Specify the name of the VLAN to be displayed The maximum length is 32 characters Restrictions None Example To display VLAN settings DGS 3620 28SC admin show vlan Command show vlan VLAN Trunk State...

Page 1209: ...Untagged Forbidden status for each port and Member Non member status for each port Format show vlan vlanid vidlist Parameters vidlist Enter the VLAN ID number to be displayed Restrictions None Example To display VLAN settings for VLAN ID 1 DGS 3620 28SC admin show vlan vlanid 1 Command show vlan vlanid 1 VID 1 VLAN Name default VLAN Type Static Advertisement Enabled Member Ports 1 28 Static Ports ...

Page 1210: ...ist Optional Specify a range of ports for which you want to display VLAN The beginning and end of the port list range are separated by a dash Restrictions None Example To display VLAN port settings DGS 3620 28SC admin show vlan ports 1 2 Command show vlan ports 1 2 Port VID Untagged Tagged Dynamic Forbidden 1 1 X 2 1 X DGS 3620 28SC admin 113 15 show gvrp Description This command is used to displa...

Page 1211: ...ondary VLAN can only have the untagged member port The member port of a secondary VLAN cannot be member port of other secondary VLAN at the same time When a VLAN is associated with a primary VLAN as the secondary VLAN the promiscuous port of the primary VLAN will behave as the untagged member of the secondary VLAN and the trunk port of the primary VLAN will behave as the tagged member of the secon...

Page 1212: ...This command is used to display private VLAN information on the switch Format show private_vlan vlan_name 32 vlanid vidlist Parameters vlan_name 32 Optional Specify the name of the private VLAN The maximum length is 32 characters vlanid Optional Specify the VLAN ID of the private VLAN vidlist Enter the VLAN ID of the private VLAN Restrictions Only Administrator Operator and Power User level users ...

Page 1213: ...ll not automatically change PVID If Auto assign PVID is enabled PVID can be changed by PVID or VLAN configuration When a user configures a port to VLAN X s untagged membership this port s PVID will be updated with VLAN X PVID is updated with the last item of the VLAN list When a user removes a port from the untagged membership of the PVID s VLAN the port s PVID will be assigned with default VLAN F...

Page 1214: ...ed membership this port s PVID will be updated with VLAN X PVID is updated with the last item of the VLAN list When a user removes a port from the untagged membership of the PVID s VLAN the port s PVID will be assigned with default VLAN Format disable pvid auto_assign Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To disable the a...

Page 1215: ...0 Series Layer 3 Managed Stackable Gigabit Switch CLI Reference Guide 1210 Example To display the PVID auto assignment state DGS 3620 28SC admin show pvid auto_assign PVID Auto assignment Enabled DGS 3620 28SC admin ...

Page 1216: ...able VLAN trunking When VLAN trunking function is enabled the VLAN trunk ports shall be able to forward all tagged frames with any VID Format enable vlan_trunk Parameters None Restrictions Only Administrator Operator and Power User level users can issue this command Example To enable VLAN trunking DGS 3620 28SC admin enable vlan_trunk Command enable vlan_trunk Success DGS 3620 28SC admin 114 2 dis...

Page 1217: ...he master the command will be rejected Ports with different VLAN configurations are not allowed to form an aggregated link However if they are specified as a VLAN trunking port they are allowed to form an aggregated link For a VLAN trunking port the VLANs on which the packets can be by passed will not be advertised by GVRP on this port However since the traffic on these VLANs is forwarded this VLA...

Page 1218: ...n_trunk ports 7 state disable Command config vlan_trunk ports 7 state disable Success DGS 3620 28SC admin config vlan_trunk ports 6 7 state disable Command config vlan_trunk ports 6 7 state disable Warning Port 6 is a Link Aggregation member port VLAN trunk is not enabled on port 6 Success DGS 3620 28SC admin To configure port 6 as an LA 1 member port and port 7 as an LA 1 master port DGS 3620 28S...

Page 1219: ...sable Success DGS 3620 28SC admin 114 4 show vlan_trunk Description This command is used to display VLAN trunking information Format show vlan_trunk Parameters None Restrictions None Example To display the current VLAN trunking information DGS 3620 28SC admin show vlan_trunk Command show vlan_trunk VLAN Trunk Global Setting VLAN Trunk Status Disabled VLAN Trunk Member Ports DGS 3620 28SC admin ...

Page 1220: ...ate wac user username 15 vlan vlan_name 32 vlanid vlanid 1 4094 delete wac user username 15 all_users config wac user username 15 vlan vlan_name 32 vlanid vlanid 1 4094 clear_vlan show wac show wac ports portlist show wac user show wac auth_state ports portlist clear wac auth_state ports portlist all authenticated authenticating blocked macaddr macaddr config wac authentication_page element defaul...

Page 1221: ...e To disable the WAC function DGS 3620 28SC admin disable wac Command disable wac Success DGS 3620 28SC admin 115 3 config wac authorization attributes Description This command is used to configure the acceptance of an authorized configuration When the authorization is enabled for WAC s RADIUS the authorized data assigned by the RADUIS server will be accepted if the global authorization network is...

Page 1222: ...ac authorization attributes local disable Success DGS 3620 28SC admin 115 4 config wac ports Description This command is used to configure the WAC port parameters Format config wac ports portlist all state enable disable aging_time infinite min 1 1440 idle_time infinite min 1 1440 block_time sec 0 300 1 Parameters portlist Enter a range of ports to configure all Specifies to configure all ports st...

Page 1223: ... 200 Command config wac ports 1 5 aging_time 200 Success DGS 3620 28SC admin 115 5 config wac method Description This command is used to allow specification of the RADIUS protocol used by WAC to complete RADIUS authentication WAC shares other RADIUS configuration with 802 1X When using this command to set the RADIUS protocol users must make sure the RADIUS server added by the config radius command...

Page 1224: ...at config wac default_redirpath string 128 Parameters string 128 Enter the URL that the client will be redirected to after successful authentication By default the redirected path is cleared Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the WAC default redirect path DGS 3620 28SC admin config wac default_redirpath http www dlink com...

Page 1225: ...l both get the reply When virtual IP is set 0 0 0 0 the virtual IP will be disabled By default the virtual IP is 0 0 0 0 The virtual IP will not respond to any ARP requests or ICMP packets To make this function work properly the virtual IP should not be an existing IP address It also cannot be located on an existing subnet Format config wac virtual_ip ipaddr ipv6addr Parameters ipaddr Specifies th...

Page 1226: ...al Specify that WAC runs HTTP protocol on this TCP port https Optional Specify that WAC runs HTTPS protocol on this TCP port Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure a TCP port which the WAC switch listens to DGS 3620 28SC admin config wac switch_http_port 8888 http Command config wac switch_http_port 8888 http Success DGS 3620...

Page 1227: ... sensitive new password Enter the new password again for confirmation Success DGS 3620 28SC admin 115 11 delete wac Description This command is used to delete an account Format delete wac user username 15 all_users Parameters user Specifies the user account for Web based Access Control username 15 Enter the user account for Web based Access Control The username can be up to 15 characters long all_...

Page 1228: ...up to 32 characters long vlanid Specifies the authentication VLAN ID vlanid 1 4094 Enter the authentication VLAN ID The VLAN ID must be between 1 and 4094 clear_vlan Specifies to clear the specified VLAN Restrictions Only Administrator Operator and Power User level users can issue this command Example To configure the user s VLAN DGS 3620 28SC admin config wac user abc vlanid 100 Command config wa...

Page 1229: ...edirect Path http www dlink com Virtual IP 0 0 0 0 Virtual IPv6 2000 20 Switch HTTP Port 80 HTTP RADIUS Authorization Enabled Local Authorization Enabled DGS 3620 28SC admin 115 14 show wac ports Description This command is used to display WAC port information Format show wac ports portlist Parameters portlist Optional Specify a range of member ports to display the status Restrictions None Example...

Page 1230: ... Disabled 1440 Infinite 60 DGS 3620 28SC admin 115 15 show wac user Description This command is used to display WAC user accounts Format show wac user Parameters None Restrictions None Example To show Web authentication user accounts DGS 3620 28SC admin show wac user Command show wac user User Name Password VID 123 1000 Total Entries 1 DGS 3620 28SC admin 115 16 show wac auth_state ports Descripti...

Page 1231: ...l Authenticated Hosts 0 Total Blocked Hosts 0 DGS 3620 28SC admin 115 17 clear wac auth_state Description This command is used to clear the authentication state of a port The port will return to un authenticated state All the timers associated with the port will be reset Format clear wac auth_state ports portlist all authenticated authenticating blocked macaddr macaddr Parameters ports Specifies t...

Page 1232: ...n be up to 128 characters long login_window_title Specifies to configure the login window title of the authentication page desc 64 Enter the login window title used here This value can be up to 64 characters long user_name_title Specifies to configure the user name title of the authentication page desc 32 Enter the user name title used here This value can be up to 32 characters long password_title...

Page 1233: ...C admin 115 19 show wac authenticate_page Description This command is used to show the elements of the customized authenticate pages Format show wac authenticate_page Parameters None Restrictions None Example The following example displays the authentication page elements DGS 3620 28SC admin show wac authenticate_page Command show wac authenticate_page Page Title D Link Login Window Title Authenti...

Page 1234: ... cos class_id 0 7 profile default profile_id int 2 128 profile_name 32 weight int 0 15 profile default profile_id int 2 128 profile_name 32 weight int 0 15 delete wred profile profile_id int 2 128 profile_name 32 all show wred ports portlist show wred profile default profile_id int 2 128 profile_name 32 116 1 enable wred Description This command is used to enable the WRED global state Format enabl...

Page 1235: ...d global state DGS 3620 28SC admin disable wred Command disable wred Success DGS 3620 28SC admin 116 3 create wred profile Description This command is used to create a WRED profile Format create wred profile int 2 128 profile_name profile_name 32 Parameters int 2 128 Enter the WRED profile ID to be added profile_name Specifies the profile name to be added profile_name 32 Enter the profile name Res...

Page 1236: ...fy the yellow packets to be dropped red Optional Specify the red packets to be dropped min_threshold Specifies the minimum threshold value used If the queue size is higher than this value then the color yellow will be assigned to it If the queue size is lower than this value then the color green will be assigned to it and then it will be guaranteed not to be dropped Yellow packet behavior depends ...

Page 1237: ...pecify the hardware priority queues class_id 0 7 Enter the priority between 0 and 7 profile Specifies the profile to be used default Specifies the default profile to be used profile_id Specifies the profile ID to be used int 2 128 Enter the profile ID between 2 and 128 profile_name 32 Enter the profile name to be used weight Specify the weight of average queue size formular int 0 15 Enter the weig...

Page 1238: ...Parameters profile_id Specifies the profile ID to be deleted int 2 128 Enter the profile ID between 2 and 128 profile_name 32 Enter the profile name to be delete all Specifies all profiles to be delete Restrictions Only Administrator Operator and Power User level users can issue this command Example To delete the profile 2 DGS 3620 28SC admin delete wred profile all Command delete wred profile all...

Page 1239: ... 1 Class_ID Weight Profile_id Profile_Name 0 9 1 default 1 9 1 default 2 2 2 profilename 3 9 1 default 4 9 1 default 5 9 1 default 6 9 1 default 7 9 1 default Port 1 2 Class_ID Weight Profile_id Profile_Name 0 9 1 default 1 9 1 default 2 9 1 default 3 9 1 default 4 9 1 default 5 9 1 default 6 9 1 default 7 9 1 default DGS 3620 28SC admin 116 8 show wred profile Description This command is used to ...

Page 1240: ...ED profile information DGS 3620 28SC admin show wred profile Command show wred profile Total Profile Number 2 WRED Profile ID 1 Profile Name default Packet Type Min Threshold Max Threshold Max Drop Rate TCP GREEN 50 100 50 TCP YELLOW 50 100 50 TCP RED 50 100 50 NON TCP GREEN 50 100 50 NON TCP YELLOW 50 100 50 NON TCP RED 50 100 50 WRED Profile ID 2 Profile Name profilename Packet Type Min Threshol...

Page 1241: ...ble when there is a direct connection to the console port of the device It is necessary for the user needs to attach a terminal or PC with terminal emulation to the console port of the switch Power on the switch After the runtime image and UART init are loaded to 100 the switch will allow 2 seconds for the user to press the hotkey Shift 6 to enter the Password Recovery Mode Once the switch enters ...

Page 1242: ...ee with the command reset account The reset account command deletes all the previously created accounts reset password username The reset password command resets the password of the specified user If a username is not specified the passwords of all users will be reset show account The show account command displays all previously created accounts ...

Page 1243: ... interval is project dependent Log Message Port unitID portNum recovers from MAC based Access Control stop learning state Parameters description unitID The unit ID portNum The port number Warning Event description The authorized user number on the whole device has reached the maximum user limit Log Message MAC based Access Control enters stop learning state Parameters description None Warning Even...

Page 1244: ...ce Informational Event description The ipv6 address obtained from a DHCPv6 server starts renewing Log Message DHCPv6_CLIENT 3 The IPv6 address ipv6address on interface ipif name starts renewing Parameters description ipv6address ipv6 address obtained from a DHCPv6 server ipif name Name of the DHCPv6 client interface Informational Event description The ipv6 address obtained from a DHCPv6 server ren...

Page 1245: ...ameters description ipv6anetworkaddr IPv6 prefix obtained from a delegation router intf name Name of the DHCPv6 client PD interface Informational Event description The IPv6 prefix obtained from a delegation router starts rebinding Log Message DHCPv6_CLIENT 12 The IPv6 prefix ipv6networkaddr on interface intf name starts rebinding Parameters description ipv6address IPv6 prefix obtained from a deleg...

Page 1246: ...login user ipaddr Represent client IP address macaddr Represent client MAC address Informational Event description Firmware upgrade unsuccessfully Log Message Unit unitID Firmware upgrade by session unsuccessfully Username username IP ipaddr MAC macaddr Parameters description unitID Represent the id of the device in the stacking system session The user s session username Represent current login us...

Page 1247: ...t client IP address macaddr Represent client MAC address Warning Event description Log message uploaded successfully Log Message Log message uploaded by session successfully Username username IP ipaddr MAC macaddr Parameters description session The user s session username Represent current login user ipaddr Represent client IP address macaddr Represent client MAC address Informational Event descri...

Page 1248: ... session Username Represent current login user Ipaddr Represent client IP address macaddr Represent client MAC address Informational Event description Firmware upgrade was unsuccessful Log Message Unit unitID Firmware upgrade by session was unsuccessful Username username IP ipaddr MAC macaddr Parameters description UnitID Represent the id of the device in the stacking system session The user s ses...

Page 1249: ...in user Ipaddr Represent client IP address macaddr Represent client MAC address Warning Event description Log message successfully uploaded Log Message Log message successfully uploaded by session Username username IP ipaddr MAC macaddr Parameters description session The user s session Username Represent current login user Ipaddr Represent client IP address macaddr Represent client MAC address Inf...

Page 1250: ...lnet Username username IP ipaddr Parameters description ipaddr The IP address of telnet client username the user name that used to login telnet server Informational Event description Login failed through Telnet Log Message Login failed through Telnet Username username IP ipaddr Parameters description ipaddr The IP address of telnet client username the user name that used to login telnet server War...

Page 1251: ...of RADIUS assigned VLAN unitID The unit ID portNum The port number Username The user that is being authenticated Informational Event description Ingress bandwidth assigned from RADIUS server after RADIUS client is authenticated by RADIUS server successfully This Ingress bandwidth will be assigned to the port Log Message RADIUS server ipaddr assigned ingress bandwith ingressBandwidth to port unitID...

Page 1252: ...id portType portID device class deviceClass Parameters description portNum The port number chassisType chassis ID subtype Value list 1 chassisComponent 1 2 interfaceAlias 2 3 portComponent 3 4 macAddress 4 5 networkAddress 5 6 interfaceName 6 7 local 7 chassisID chassis ID portType port ID subtype Value list 1 interfaceAlias 1 2 portComponent 2 3 macAddress 3 4 networkAddress 4 5 interfaceName 5 6...

Page 1253: ...n a new voice device is detected in the port Log Message New voice device detected Port portNum MAC macaddr Parameters description portNum The port number macaddr Voice device MAC address Informational Event description When a port which is in auto Voice VLAN mode joins the Voice VLAN Log Message Port portNum add into Voice VLAN vid Parameters description portNum The port number vid VLAN ID Inform...

Page 1254: ...ipaddr Peer ipaddr Parameters description ipaddr IP address of BGP peer Warning Event description BGP connection is closed due to some events happens Event refer to RFC Log Message BGP 6 BGP connection is closed due to Event num Peer ipaddr Parameters description num Event is defined in RFC 4271 etc ipaddr IP address of BGP peer Warning Event description BGP connection is closed due to receive not...

Page 1255: ...GP 14 Received invalid AS4 AGGREGATOR attribute Value STRING Peer ipaddr Parameters description STRING Detailed description about the invalid attribute ipaddr IP address of BGP peer Warning Stacking Event description Hot insertion Log Message Unit unitID MAC macaddr Hot insertion Parameters description unitID Box ID Macaddr MAC address Informational Event description Hot removal Log Message Unit u...

Page 1256: ...eters description intf name Name of OSPF interface area id OSPF area ID Informational Event description One OSPF neighbor state changed from Loading to Full Log Message OSPF nbr nbr id on interface intf name changed state from Loading to Full Parameters description intf name Name of OSPF interface nbr id Neighbor s router ID Notice Event description One OSPF neighbor state changed from Full to Dow...

Page 1257: ...escription Authentication type mismatch of one received VRRP advertisement message Log Message Authentication type mismatch on VR vr id at interface intf name Parameters description vr id VRRP virtual router ID intf name Interface name on which virtual router is based Warning Event description Authentication checking fail of one received VRRP advertisement message Log Message Authentication fail o...

Page 1258: ...dd virtual MAC vrrp mac addr into chip L2 table Errcode vrrp errcode Parameters description vrrp mac addr VRRP virtual MAC address vrrp errcode Errcode of VRRP protocol behavior Error Event description Failed when deleting a virtual MAC from switch chip L2 table Log Message Failed to delete virtual MAC vrrp mac addr from chip L2 table Errcode vrrp errcode Parameters description vrrp mac addr VRRP ...

Page 1259: ...meters description vrrp ip addr VRRP virtual IP address vrrp mac addr VRRP virtual MAC address vrrp errcode Err code of VRRP protocol behavior Error Web SSL Event description Successful login through Web Log Message Successful login through Web Username username IP ipaddr Parameters description username The use name that used to login HTTP server ipaddr The IP address of HTTP client Informational ...

Page 1260: ...on The host enters the mode of normal Log Message Unit unitID Safeguard Engine enters NORMAL mode Parameters description unitID The unit ID Informational Event description The host enters the mode of exhausted Log Message Unit unitID Safeguard Engine enters EXHAUSTED mode Parameters description unitID The unit ID Warning DoS Event description The DOS is possibly spoofed Log Message Possible spoofi...

Page 1261: ...formational Event description Login failed due to AAA server timeout or improper configuration Log Message Login failed through Console Telnet Web SSL SSH from ipaddr ipv6address due to AAA server ipaddr ipv6address timeout or improper configuration Username username Parameters description ipaddr IP address ipv6address IPv6 address username user name Warning Event description Successful Enable Adm...

Page 1262: ...ddr ipv6address Username username Parameters description local specify AAA local method server specify AAA server method ipaddr IP address ipv6address IPv6 address username user name Warning WAC Event description When a client host fails to authenticate Log Message WAC unauthenticated user User Name string IP ipaddr ipv6address MAC macaddr Port unitID portNum Parameters description string User nam...

Page 1263: ...JWAC recovered from stop learning state Warning LBD Event Description Loop back is detected under port based mode Log Message Port unitID portNum LBD loop occurred Port blocked Parameters Description portNum The port number Critical Event Description Port recovered from LBD blocked state under port based mode Log Message Port unitID portNum LBD port recovered Loop detection restarted Parameters De...

Page 1264: ...B entry failed due to no ACL rule being available Log Message Creating IMPB entry failed due to no ACL rule being available IP ipaddr ipv6addr MAC macaddr Port unitID portNum Parameters description ipaddr IP address ipv6addr IPv6 address macaddr MAC address unitID The unit ID portNum The port number Warning Event description IMPB checks a host illegal Log Message Unauthenticated IP MAC address and...

Page 1265: ...al DHCPv6 Server Screening Event Description Detected untrusted DHCPv6 server IP address Log Message Detected untrusted DHCPv6 server IP ipv6addr Port unitID portNum Parameters Description ipv6addr The untrusted source IP of DHCPv6 server which has been detected with our device unitID The unit ID portNum The port number Informational ICMPv6 Router Advertisement Filter Event Description Detected un...

Page 1266: ...Spanning Tree Protocol is disabled Informational Event description New root port Log Message New root port selected Instance InstanceID port unitID portNum Parameters description InstanceID Instance ID portNum Port ID Notice Event description Spanning Tree port status changed Log Message Spanning Tree port status changed Instance InstanceID port unitID portNum old_status new_status Parameters desc...

Page 1267: ...d VLANlist Informational CFM Event description Cross connect is detected Log Message CFM cross connect VLAN vlanid Local MD Level mdlevel Port unitID portNum Direction mepdirection Remote MEPID mepid MAC macaddr Parameters description vlanid Represents the VLAN identifier of the MEP mdlevel Represents the MD level of the MEP unitID Represents the ID of the device in the stacking system portNum Rep...

Page 1268: ...t description Remote MEP detects CFM defects Log Message CFM remote detects a defect MD Level mdlevel VLAN vlanid Local Port unitID portNum Direction mepdirection Parameters description vlanid Represents the VLAN identifier of the MEP mdlevel Represents the MD level of the MEP unitID Represents the ID of the device in the stacking system portNum Represents the logical port number of the MEP mepdir...

Page 1269: ...P Notice DDM Event description DDM exceeded or recover from DDM alarm threshold Log Message DDM Port unitID portNum optic module thresholdType exceedType the thresholdSubType alarm threshold Parameters description unitID The unit ID portNum The port number thresholdType the DDM threshold type The value should be one of the following values temperature supply voltage bias current TX power RX power ...

Page 1270: ...ntf name Interface name Informational LACP Event Description Link Aggregation Group link change Log Message Link Aggregation Group GROUP ID Interface ifIndex Link status Parameters Description Group ID Link Aggregation Group ID ifIndex The interface index of the link aggregation group which link state was link changed Link status link status Value list 1 link up The first member port of group link...

Page 1271: ...naged Stackable Gigabit Switch CLI Reference Guide 1266 logged before 30 days Log Message License will expire in 30 days license license model AC string25 Parameters Description license model License Model Name string25 Activation Code ...

Page 1272: ... 0 3 PIM6 pimNeighborLoss A pimNeighborLoss notification signifies the loss of an adjacency with a neighbor This notification should be generated when the neighbor timer expires and the router has no other neighbor on the same interface with the same IP version and a lower IP address than itself This notification is generated whenever the counter pimNeighborLossCount is incremented subject to the ...

Page 1273: ...LDP lldpRemTablesChange A lldpRemTablesChange notification is sent when the value of lldpStatsRemTableLastChangeTime changes Binding objects 1 lldpStatsRemTablesInserts 2 lldpStatsRemTablesDeletes 3 lldpStatsRemTablesDrops 4 lldpStatsRemTablesAgeouts 1 0 8802 1 1 2 0 0 1 LLDP MED lldpXMedTopologyCha ngeDetected A notification generated by the local device sensing a change in the topology that indi...

Page 1274: ...ification The BGP established event is generated when the BGP FSM enters the ESTABLISHED state Binding objects 1 bgpPeerRemoteAddr 2 bgpPeerLastError 3 bgpPeerState 1 3 6 1 2 1 15 0 1 bgpBackwardTransNotification The BGP established event is generated when the BGP FSM enters the ESTABLISHED state Binding objects 1 bgpPeerRemoteAddr 2 bgpPeerLastError 3 bgpPeerState 1 3 6 1 2 1 15 0 2 Stacking swUn...

Page 1275: ...feGuardChgToExhausted This trap indicates System change operation mode from normal to exhausted Binding objects 1 swSafeGuardCurrentStatus 1 3 6 1 4 1 171 12 19 4 1 0 1 LBD swPortLoopOccurred The trap is sent when a port loop occurs Binding objects 1 swLoopDetectPortIndex 1 3 6 1 4 1 171 12 41 1 0 0 1 swPortLoopRestart The trap is sent when a port loop restarts after the interval time Binding obje...

Page 1276: ...2 37 1 00 0 3 Traffic Control swPktStormOccurred When packet storm is detected by packet storm mechanism and take shutdown as action Binding objects 1 swPktStormCtrlPortIndex 2 swPktStormNotifyPktType 1 3 6 1 4 1 171 12 25 5 0 1 swPktStormCleared When the packet storm is clear Binding objects 1 swPktStormCtrlPortIndex 2 swPktStormNotifyPktType 1 3 6 1 4 1 171 12 25 5 0 2 swPktStormDisablePort When...

Page 1277: ...gCfmMdIndex 2 dot1agCfmMaIndex 3 dot1agCfmMepIdentifier 1 3 6 1 4 1 171 12 86 1 00 0 3 swCFMExtLockCleared A notification is generated when local MEP exits lock status Binding objects 1 dot1agCfmMdIndex 2 dot1agCfmMaIndex 3 dot1agCfmMepIdentifier 1 3 6 1 4 1 171 12 86 1 00 0 4 Port linkup A notification is generated when port linkup Binding objects 1 ifIndex 2 if AdminStatus 3 ifOperStatu 1 3 6 1 ...

Page 1278: ...initializing itself such that its configuration is unaltered 1 3 6 1 6 3 1 1 5 2 Power Status swPowerStatusChg Power Status change notification Binding objects 1 swPowerUnitIndex 2 swPowerID 3 swPowerStatus 1 3 6 1 4 1 171 12 11 2 2 2 0 1 swPowerFailure Power Failure notification Binding objects 1 swPowerUnitIndex 2 swPowerID 3 swPowerStatus 1 3 6 1 4 1 171 12 11 2 2 2 0 2 swPowerRecover Power Rec...

Page 1279: ...t when a license of devices stacked is expired Binding objects 1 swDlmsStackLicenseModelUnitId 2 swDlmsStackLicenseModelName 3 swDlmsStackLicenseAc 1 3 6 1 4 1 171 12 101 0 21 swDlmsStackLicenseInstallationS uccess The notification is sent when a license of devices stacked was installed successfully Binding objects 1 swDlmsStackLicenseModelUnitId 2 swDlmsStackLicenseModelName 3 swDlmsInstallAc 1 3...

Page 1280: ...8 6 0 18 swSingleIPMSfallingAlarm The commander switch will send this notification when its member generates a falling alarm notification Binding objects 1 swSingleIPMSID 2 swSingleIPMSMacAddr 1 3 6 1 4 1 171 12 8 6 0 19 swSingleIPMSmacNotification The commander switch will send this notification when its member generates a MAC address variation notification Binding objects 1 swSingleIPMSID 2 swSi...

Page 1281: ...xStack DGS 3620 Series Layer 3 Managed Stackable Gigabit Switch CLI Reference Guide 1276 power recover notification Binding objects 1 swSingleIPMSID 2 swSingleIPMSMacAddr 3 swSingleIPMSTrapMessage ...

Page 1282: ... the attribute 2 for ingress bandwidth 3 for egress bandwidth Required Attribute Specific Field Used to assign the bandwidth of a port Unit Kbits Required If the user has configured the bandwidth attribute of the RADIUS server for example ingress bandwidth 1000Kbps and the 802 1X authentication is successful the device will assign the bandwidth according to the RADIUS server to the port However if...

Page 1283: ...igured on the RADIUS Server To use VLAN assignment RFC3580 defines the following tunnel attributes in RADIUS packets The table below shows the parameters for a VLAN RADIUS Tunnel Attribute Description Value Usage Tunnel Type This attribute indicates the tunneling protocol s to be used in the case of a tunnel initiator or the tunneling protocol in use in the case of a tunnel terminatior 13 VLAN Req...

Page 1284: ...proper parameters should be configured on the RADIUS Server The table below shows the parameters for an ACL The parameters of the Vendor Specific Attribute are RADIUS Tunnel Attribute Description Value Usage Vendor ID Defines the vendor 171 DLINK Required Vendor Type Defines the attribute 12 for ACL profile 13 for ACL rule Required Attribute Specific Field Used to assign the ACL profile or rule AC...

Reviews:

No comments

Related manuals for xStack

Systemline Multi-room system Installation Manual preview
Multi-room system
Brand: Systemline Pages: 22
Aiwa CX-NAJ800 Service Manual preview
CX-NAJ800
Brand: Aiwa Pages: 46
Grundig CCF 23 Service Manual preview
CCF 23
Brand: Grundig Pages: 28
3M PELTOR ComTac 7 Manual preview
PELTOR ComTac 7
Brand: 3M Pages: 41
Curtis RCD904 Instruction Manual preview
RCD904
Brand: Curtis Pages: 10
Curtis RCD822 User Manual preview
RCD822
Brand: Curtis Pages: 13
L-Acoustics A10i Owner'S Manual preview
A10i
Brand: L-Acoustics Pages: 132
Aiwa NSX-V3000 Operating Instructions Manual preview
NSX-V3000
Brand: Aiwa Pages: 60
Akai ACR-18H Service Manual preview
ACR-18H
Brand: Akai Pages: 37
TAG Bohemia 7B User Manual preview
Bohemia 7B
Brand: TAG Pages: 11
XX.Y Bullet S28 User Manual preview
Bullet S28
Brand: XX.Y Pages: 17
easyRAID X12P F2R4 User Manual preview
X12P F2R4
Brand: easyRAID Pages: 114
Nakamichi SoundSpace 9 Service Manual preview
SoundSpace 9
Brand: Nakamichi Pages: 55
Hyundai RTCC 636 SURIP Instruction Manual preview
RTCC 636 SURIP
Brand: Hyundai Pages: 88
RCA A3600 User Manual preview
A3600
Brand: RCA Pages: 18
Landru Audio ToolSet 2 Manual preview
Audio ToolSet 2
Brand: Landru Pages: 19
Fender PASSPORT VENUE Series 2 Owner'S Manual preview
PASSPORT VENUE Series 2
Brand: Fender Pages: 44
Aiwa XH-N6 Service Manual preview
XH-N6
Brand: Aiwa Pages: 33

Brands by name

Popular brands

Load more brands