manualshive.com logo in svg

HP 6200YL, Reference Manual

The HP 6200YL is a high-performance networking device designed for seamless connectivity. To ensure a hassle-free setup, an Installation And Getting Started Manual is available for free download on our website. This comprehensive manual provides step-by-step instructions, allowing you to effortlessly install and configure your HP 6200YL.

Share
Download
background image

arp-protect

OVERVIEW

Category:

config

Primary context:

Related Commands

Usage: [no] arp-protect [trust [ethernet] PORT-LIST|

validate <ip|destination-mac|src-mac>|
vlan VLAN-ID-RANGE]

Description: Configure Dynamic ARP Protection.

To Enable/disable ARP Protection on the switch execute the
[no] arp-protect command. Dynamic ARP Protection will not be
enabled on any VLAN if it is not enabled on the switch.
By default Dynamic ARP Protection is disabled.
To configure which VLANs are to be protected execute the
'arp-protect vlan' command. By default Dynamic ARP Protection
is disabled on all VLANs.

Dynamic ARP Protection divides ports into two categories:
untrusted and trusted. ARP packets received on trusted ports
are forwarded without validation.
ARP packets received on the untrusted ports of a protected VLAN
are intercepted and validated before being forwarded.
By default ports are untrusted.

Dynamic ARP Protection validates ARP packets based on the
IP-to-MAC binding database maintained by DHCP snooping. If DHCP
snooping is not enabled then a loss of connectivity will result
since the database will contain no bindings. For devices that do
not use DHCP to obtain their IP configuration static bindings can
be added manually to the database with the 'ip source-binding'
command.

Dynamic ARP Protection can also be configured to drop ARP packets
that contain invalid IP addresses or when the MAC addresses in the
body of the ARP packet do not match those in the ethernet header.

Parameters:

trust [ethernet] PORT-LIST

-- Configure ports as trusted or untrusted.

validate <ip|dest-mac|src-mac> -- Configure addiional ARP packet checks.
vlan VLAN-ID-RANGE

-- Enable/disable ARP Protection on VLANs

COMMAND STRUCTURE

[no] arp-protect

trust

-- Configure port(s) as trusted or untrusted. ([ethernet] PORT-LIST)

(p. 66)

[no] arp-protect

validate

-- Configure additional ARP Protection validation checks.

(p. 66)

dest-mac

-- Drop any ARP response packet in which the destination MAC address in the ethernet

header does not match the target MAC address in the body of the packet.

(p. 66)

ip

-- Drop any ARP request with an invalid sender IP address. Drop any ARP response with an

invalid target IP address. Invalid IP addresses include 0.0.0.0, 255.255.255.255, all IP multicast
addresses, and all class E IP addresses.

(p. 66)

65

©

 2009 Hewlett-Packard Development Company, L.P.

Summary of Contents for 6200YL

Page 1: ...l Switches Installation and Getting Started Guide 3500yl switches 5400zl switches 6200yl switches 8200zl switches HP ProCurve Switch Software Command Line Interface Reference Guide Software version K 14 09 April 2009 ...

Page 2: ......

Page 3: ...HP ProCurve 3500yl Switches 5400zl Switches 6200yl Switch 8200zl Switches Command Line Interface Reference Guide April 2009 K 14 09 ...

Page 4: ...ices are set forth in the express warranty statements accompanying such products and services Nothing herein should be construed as constituting an additional warranty HP shall not be liable for technical or editorial errors or omissions contained herein Hewlett Packard assumes no responsibility for the use or reliability of its software on equipment that is not furnished by Hewlett Packard Warran...

Page 5: ...and Structure 63 Examples 63 Command Details 63 arp 64 Overview 64 Command Structure 64 arp protect 65 Overview 65 Command Structure 65 Command Details 66 autorun 68 Overview 68 Notes 68 Command Structure 68 Command Details 68 auto tftp 70 Overview 70 Command Structure 70 Examples 70 Command Details 70 banner 72 Overview 72 Command Structure 72 Command Details 72 boot 73 Overview 73 Notes 73 Comma...

Page 6: ...cture 90 Command Details 90 console 92 Overview 92 Command Structure 92 Examples 92 Command Details 93 copy 96 Overview 96 Command Structure 96 Command Details 102 core dump 137 Overview 137 Command Structure 137 Examples 137 Command Details 137 crypto 138 Overview 138 Command Structure 138 Command Details 139 debug 150 Overview 150 Command Structure 150 Command Details 151 dhcp 158 Overview 158 C...

Page 7: ...176 Examples 176 fastboot 177 Overview 177 Command Structure 177 fault finder 178 Overview 178 Command Structure 178 Command Details 178 feature coordinator 180 Overview 180 Command Structure 180 Command Details 181 filter 185 Overview 185 Command Structure 185 Command Details 186 front panel security 190 Overview 190 Command Structure 190 Examples 190 Command Details 190 getMIB 192 Overview 192 C...

Page 8: ...ls 213 ip 290 Overview 290 Command Structure 290 Command Details 292 ipv6 313 Overview 313 Command Structure 313 Command Details 313 jumbo 319 Overview 319 Notes 319 Command Structure 319 Command Details 319 key chain 320 Overview 320 Command Structure 320 Command Details 323 kill 344 Overview 344 Command Structure 344 Examples 344 Command Details 344 licenses 346 Overview 346 Notes 346 Command St...

Page 9: ...368 Command Structure 368 logout 369 Overview 369 Command Structure 369 loop protect 370 Overview 370 Command Structure 370 Command Details 370 mac age time 372 Overview 372 Command Structure 372 Examples 372 management vlan 373 Overview 373 Command Structure 373 Examples 373 max vlans 374 Overview 374 Command Structure 374 Examples 374 menu 375 Overview 375 Command Structure 375 Examples 375 mesh...

Page 10: ...s 388 ping 392 Overview 392 Command Structure 392 Examples 393 Command Details 393 ping6 395 Overview 395 Command Structure 395 Examples 395 Command Details 396 policy 398 Overview 398 Command Structure 398 Examples 398 Command Details 398 port security 400 Overview 400 Command Structure 401 Command Details 401 power over ethernet 403 Overview 403 Notes 403 Command Structure 403 Examples 403 Comma...

Page 11: ... 462 Command Structure 462 Command Details 462 redundancy 463 Overview 463 Notes 463 Command Structure 463 Examples 463 Command Details 464 redundancy 466 Overview 466 Notes 466 Command Structure 466 Command Details 466 reload 467 Overview 467 Command Structure 467 Examples 467 Command Details 467 rename 469 Overview 469 Command Structure 469 Command Details 469 repeat 470 Overview 470 Command Str...

Page 12: ...mand Structure 504 Command Details 504 setup 506 Overview 506 Command Structure 506 Examples 506 Command Details 507 sflow 508 Overview 508 Command Structure 508 Command Details 509 show 511 Overview 511 Command Structure 511 Command Details 523 snmp server 612 Overview 612 Command Structure 613 Command Details 614 snmpv3 623 Overview 623 Notes 623 Command Structure 623 Command Details 625 sntp 63...

Page 13: ...les 662 Command Details 663 switch interconnect 675 Overview 675 Command Structure 675 Examples 675 Command Details 675 system 677 Overview 677 Command Structure 677 Command Details 677 tacacs server 678 Overview 678 Command Structure 678 Command Details 678 task monitor 680 Overview 680 Command Structure 680 Examples 680 Command Details 680 telnet 681 Overview 681 Command Structure 681 Examples 6...

Page 14: ...Structure 695 Command Details 696 trunk 700 Overview 700 Command Structure 700 Examples 701 Command Details 701 update 703 Overview 703 Command Structure 703 upgrade software 704 Overview 704 Command Structure 704 virus throttle 705 Overview 705 Command Structure 705 vlan 706 Overview 706 Command Structure 706 Command Details 712 walkMIB 754 Overview 754 Command Structure 754 Examples 754 Command ...

Page 15: ... Command Structure 759 Command Details 759 wireless services 760 Overview 760 Notes 760 Command Structure 760 Command Details 760 write 761 Overview 761 Command Structure 761 Examples 761 Command Details 761 13 2009 Hewlett Packard Development Company L P Command Line Interface Reference Guide Command Line Interface Reference Guide ...

Page 16: ...Introduction 14 2009 Hewlett Packard Development Company L P ...

Page 17: ... element within an optional choice All caps indicate variables for which you must supply a value when executing the command For example in this command syntax you must provide one or more port numbers Syntax aaa port access authenticator PORT LIST Command Prompts In the default configuration the Series 8212zl switches for example display the following CLI prompt ProCurve Switch 8212zl To simplify ...

Page 18: ...ailable Commands Type to list available commands Typing the symbol lists the commands you can execute at the current privilege level Use Tab to search for or complete a command word You can use Tab to help you find CLI commands or to quickly complete the current word in a command To do so type one or more consecutive characters in a command and then press Tab with no spaces allowed Pressing Tab af...

Page 19: ...ration and trouble analysis You can download this guide from the ProCurve website Management and Configuration Guide Use the Management and Configuration Guide for information on Using the command line CLI Menu interface and web browser interface Memory and configuration operation IP addressing Time protocols Port configuration trunking traffic control and PoE operation Redundancy SNMP LLDP and ot...

Page 20: ...commands section Command Structure Command Details summary listing Next Available Options within individual command options and parameters Page numbers displayed with commands When the hand cursor is positioned over a blue hyperlinked area the hand displays a pointing finger Left click once to go the the indicated command Additionally the Command Details section lists the commands in alphabetical ...

Page 21: ...all the command options and parameters for that command Each of these is hyperlinked to take you to the details about that option or parameter 19 2009 Hewlett Packard Development Company L P Introduction Command Line Interface Reference Guide ...

Page 22: ...Commands 20 2009 Hewlett Packard Development Company L P ...

Page 23: ...cify how to initiate and terminate an accounting session p 40 method radius Specify which accounting method to use radius p 40 suppress Do not generate accounting records for a specific type of user p 52 null username Do not generate accounting records for users with a null username p 41 system Configure system type of accounting p 52 mode start stop stop only Specify how to initiate and terminate...

Page 24: ...ndary local none authorized Specify the backup authentication method for access control p 48 login Configure login access to the switch p 36 primary local tacacs radius Specify the primary authentication method for access control p 44 secondary local none authorized Specify the backup authentication method for access control p 48 telnet Configure authentication mechanism used to control telnet acc...

Page 25: ...will be considered removed from the port for a lack of activity NUMBER p 36 max requests 1 to 10 Set maximum number of times the switch retransmits authentication requests default 2 NUMBER p 39 quiet period 0 to 65535 Set the period of time the switch does not try to acquire a supplicant default 60 sec NUMBER p 47 reauthenticate Force re authentication to happen p 47 reauth period 0 to 9999999 Set...

Page 26: ...general port security features on the device port s ethernet PORT LIST p 43 controlled direction both in Configure how traffic is controlled on non authenticated ports in BOTH directions ingress egress or IN only ingress NUMBER p 32 supplicant Manage 802 ethernet PORT LIST p 51 auth timeout 1 to 300 Set the challenge reception timeout default 30sec NUMBER p 30 clear statistics Clear the supplicant...

Page 27: ...UMBER p 47 redirect url Set the URL that the user should be redirected to after successful login default none Specify url up to 103 characters length p 48 web redirect url Set the URL that the user should be redirected to after successful login default none Specify url up to 103 characters length ASCII STR p 58 server timeout 1 to 300 Set the authentication server response timeout default 30 secon...

Page 28: ...witch Parameters o exec Provides information about user EXEC terminal sessions user shells on the switch o network Provides information about 8021x sessions o system Provides information about all system level events such as the system reboots or accounting turned on off o commands Provides information about commands executed on the switch o start stop Send a start record accounting notice at the ...

Page 29: ...authenticated MAC addresses default 1 Range 1 to 32 addr moves no aaa port access mac based ETHERNET PORT LIST addr moves Set whether the MAC can move between ports default disabled no moves authentication aaa authentication Usage aaa authentication Description Configure authentication parameters on the switch The command configures authentication mechanism used to control access the switch resour...

Page 30: ...tivated 802 1X authentication does not run on the switch until you use this command to enable it The second form of the command enables disables or configures authentication on the device s individual ports While authentication is deactivated access to the network is granted on all switch ports regardless of whether 802 1X is enabled on the port The no keyword cannot be used with any of the option...

Page 31: ...vid configures the VLAN to which to move port if an unauthorized client has been connected on the port and there is no other client on the port The switch will wait for the amount of time specified as the unauth period before the port will be moved to this VLAN If the port PVID successfully set to the value configured the port becomes unblocked and the client can communicate to other members of th...

Page 32: ...nticator p 27 authorization aaa authorization Usage no aaa authorization commands radius Description Configure authorization parameters on the switch Next Available Option commands Configure exec shell commands authorization p 31 auth timeout aaa port access supplicant ETHERNET PORT LIST auth timeout 1 to 300 Set the challenge reception timeout default 30sec Range 1 to 300 auth vid no aaa port acc...

Page 33: ...ss authenticator ETHERNET PORT LIST client limit Set the maximum number of clients to allow on the port Next Available Option NUMBER OF CLIENTS 1 to 32 Set the maximum number of clients to allow on the port NUMBER p 42 aaa port access web based ETHERNET PORT LIST client limit 1 to 32 Set the port s maximum number of authenticated clients default 1 Range 1 to 32 client moves no aaa port access web ...

Page 34: ...ll available primary authentication methods o backup method Specifies an authentication method to use if the primary authentication method is not able to check user s credentials Use TAB or after you specify the primary authentication method to get a list of all available backup methods Next Available Options enable Configure access to the privileged mode commands p 33 login Configure login access...

Page 35: ...vileged mode commands Next Available Option primary local tacacs radius Specify the primary authentication method for access control p 44 aaa authentication telnet enable Configure access to the privileged mode commands Next Available Option primary local tacacs radius Specify the primary authentication method for access control p 44 aaa authentication web enable Configure access to the privileged...

Page 36: ...ns no aaa port access gvrp vlans Usage no aaa port access gvrp vlans Description Enables the use of dynamic VLANs learned through GVRP in the temporary untagged VLAN assigned by a RADIUS server on an authenticated port in an 802 1X MAC or Web authentication session Enter the no form of this command to disable the use of GVRP learned VLANs in an authentication session Notes 1 If a port is assigned ...

Page 37: ...t ETHERNET PORT LIST held period 0 to 65535 Set the held period default 60sec Range 0 to 65535 host name no aaa port access web based ewa server HOST NAME Hostname of the enhanced web auth server Next Available Option page path Sets the path of the login pages to be found on the ewa server ASCII STR p 42 identity aaa port access supplicant ETHERNET PORT LIST identity IDENTITY Set the identity user...

Page 38: ...tch Next Available Option primary local radius Specify the primary authentication method for access control p 44 aaa authentication ssh login Configure login access to the switch Next Available Option primary local tacacs radius Specify the primary authentication method for access control p 44 aaa authentication login Usage no aaa authentication login privilege mode Description Specify that switch...

Page 39: ...t a list of all available primary authentication methods o backup method Specifies an authentication method to use if the primary authentication method is not able to check user s credentials Use TAB or after you specify the primary authentication method to get a list of all available backup methods Next Available Option primary chap radius peap mschapv2 Specify the primary authentication method f...

Page 40: ...econds o max requests sets the number of authentication attempts that must time out before authentication fails default 3 o logoff period sets the period of time of inactivity that the switch considers an implicit logoff default 300 o reauth period sets the period of time after which connected MAC addresses must be re authenticated When set to 0 the re authentication is disabled default 0 o auth v...

Page 41: ... requests default 3 NUMBER p 39 reauth period 0 to 9999999 Set the re authentication timeout in seconds set to 0 to disable re authentication default 0 NUMBER p 47 auth vid Configures VLAN where to move port after successful authentication not configured by default p 30 unauth vid Configures VLAN where to keep port while there is an unauthorized client connected not configured by default p 53 reau...

Page 42: ...stop only radius Specify which accounting method to use radius Supported Values radius Use RADIUS protocol as accounting method aaa accounting system start stop stop only radius Specify which accounting method to use radius Supported Values radius Use RADIUS protocol as accounting method mode aaa accounting commands stop only Specify how to initiate and terminate an accounting session Supported Va...

Page 43: ...ius Specify which accounting method to use radius p 40 network no aaa accounting network Usage no aaa accounting network start stop stop only radius Description Configure network type of accounting Parameters o start stop Send a start record accounting notice at the beginning and a stop record notice at the end of the accounting session Do not wait for acknowledgement o stop only Send a stop recor...

Page 44: ...pdate accounting records mechanism Parameters periodic number Send accounting update records at regular intervals given by number in minutes Range 1 to 525600 port access aaa authentication port access Usage aaa authentication port access Description Configure authentication mechanism used to control access to the network The configured authentication method will be used to authenticate 802 1X Por...

Page 45: ...T PORT LIST Manage 802 1X on the device port s Next Available Options control authorized auto unauthorized Set the authenticator to Force Authorized Force Unauthorized or Auto state default Auto NUMBER p 32 quiet period 0 to 65535 Set the period of time the switch does not try to acquire a supplicant default 60 sec NUMBER p 47 tx period 1 to 65535 Set the period of time the switch waits until retr...

Page 46: ...imary authentication method for access control Supported Values local Use local switch user password database tacacs Use TACACS server radius Use RADIUS server Next Available Option secondary local none authorized Specify the backup authentication method for access control p 48 aaa authentication console login local tacacs radius Specify the primary authentication method for access control Support...

Page 47: ... radius Use RADIUS server Next Available Option secondary local none authorized Specify the backup authentication method for access control p 48 aaa authentication web login local radius Specify the primary authentication method for access control Supported Values local Use local switch user password database radius Use RADIUS server Next Available Option secondary local none authorized Specify th...

Page 48: ...witch user password database eap radius Use EAP capable RADIUS server chap radius Use CHAP MD5 capable RADIUS server Next Available Option secondary none authorized Specify the backup authentication method for access control p 48 aaa authentication web based chap radius peap mschapv2 Specify the primary authentication method for access control Supported Values chap radius Use RADIUS server with CH...

Page 49: ... ETHERNET PORT LIST quiet period 1 to 65535 Set the period of time the switch does not try to authenticate default 60 seconds Range 1 to 65535 aaa port access web based ETHERNET PORT LIST quiet period 1 to 65535 Set the period of time the switch does not try to authenticate default 60 seconds Range 1 to 65535 reauthenticate aaa port access authenticator ETHERNET PORT LIST reauthenticate Force re a...

Page 50: ...kup authentication method for access control Supported Values local Use local switch user password database none Do not use backup authentication methods authorized Allow access without authentication aaa authentication console login local tacacs radius local none authorized Specify the backup authentication method for access control Supported Values local Use local switch user password database n...

Page 51: ...hout authentication aaa authentication ssh login local tacacs radius local none authorized Specify the backup authentication method for access control Supported Values local Use local switch user password database none Do not use backup authentication methods authorized Allow access without authentication aaa authentication port access local eap radius chap radius none authorized Specify the backu...

Page 52: ...d Description Configure authentication mechanism used to control SSH access to the switch Parameters o enable Configure access to privileged mode o login Configure login access o primary method Specifies the primary authentication method for access control Use TAB or after you specify enable or login to get a list of all available primary authentication methods o backup method Specifies an authent...

Page 53: ...e default 30sec o max start defines the maximum number of attempts to start authentication before the supplicant assumes that it has been authenticated default 3 o identity sets the identity to be used by the port supplicant when MD5 authentication request is received from an authenticator o secret sets the secret to be used by the port supplicant when MD5 authentication request is received from a...

Page 54: ... not wait for acknowledgement o stop only Send a stop record accounting notice at the end of the accounting session Do not wait for acknowledgement o radius Use RADIUS as the accounting protocol Next Available Option mode start stop stop only Specify how to initiate and terminate an accounting session p 40 telnet aaa authentication telnet Usage aaa authentication telnet enable login primary method...

Page 55: ...nticated clients Range 0 to 255 unauth vid no aaa port access authenticator ETHERNET PORT LIST unauth vid Configures VLAN where to keep port while there is an unauthenticated client connected not configured by default Next Available Option VLAN ID Configures VLAN where to keep port while there is an unauthenticated client connected not configured by default VLAN ID p 54 no aaa port access mac base...

Page 56: ...authenticated client connected not configured by default aaa port access mac based ETHERNET PORT LIST auth vid VLAN ID Configures VLAN where to move port after successful authentication not configured by default aaa port access mac based ETHERNET PORT LIST unauth vid VLAN ID Configures VLAN where to keep port while there is an unauthorized client connected not configured by default web aaa authent...

Page 57: ...se TAB or after you specify enable or login to get a list of all available primary authentication methods o backup method Specifies an authentication method to use if the primary authentication method is not able to check user s credentials Use TAB or after you specify the primary authentication method to get a list of all available backup methods Next Available Option primary chap radius peap msc...

Page 58: ...ized by both 802 1X and MAC web based authentication together on the same port o client moves sets whether the client can move between ports that also have client moves enabled default disabled no moves allowed o ssl login sets whether to enable SSL logins https on port 443 If enabled logins to plaintext http port 80 are redirected to https port The default is disabled o redirect url sets the URL ...

Page 59: ...t the lease length of the IP address issued by DHCP default 10 NUMBER p 33 ewa server IP address or hostname of the enhanced web authentication server on the device p 34 web list1 no aaa port access web based ETHERNET PORT LIST Manage web authentication based network authentication on the device port s Next Available Options client limit 1 to 32 Set the port s maximum number of authenticated clien...

Page 60: ... is an unauthorized client connected not configured by default p 53 reauthenticate Force re authentication to happen p 47 web redirect url aaa port access web based ETHERNET PORT LIST redirect url WEB REDIRECT URL Set the URL that the user should be redirected to after successful login default none Specify url up to 103 characters length web unauthvid aaa port access web based ETHERNET PORT LIST u...

Page 61: ...permit igmp ACL IP SPEC SRC ACL IP SPEC DST igmp type precedence precedence tos tos access list 100 199 deny igmp ACL IP SPEC SRC ACL IP SPEC DST igmp type precedence precedence tos tos log access list 100 199 permit tcp ACL IP SPEC SRC ACL PORT SPEC SRC ACL IP SPEC DST ACL PORT SPEC DST established precedence precedence tos tos access list 100 199 deny tcp ACL IP SPEC SRC ACL PORT SPEC SRC ACL IP...

Page 62: ... port lt port match packets from to port numbers less than the specified port gt port match packets from to port numbers greater than the specified port range port port match packets from to port numbers between the first and second ports inclusive The first port specified must be less than the second port specified The following well known ports may be referred to by name TCP bgp dns ftp http ima...

Page 63: ... followed by the settings explicitly configured for that ACE Resequence the ACEs in an ACL ProCurve config ipv6 access list resequence name str starting increment Enter a Remark ProCurve config ipv6 access list name str ProCurve config ipv6 acl remark remark str Remove a Remark Immediately after entry ProCurve config ipv6 acl no remark After entry of an ACE ProCurve config ipv6 acl no seq remark D...

Page 64: ...ow access list config ProCurve config show access list ports port list ProCurve config show access list vlan vid ProCurve config show access list radius port list all ProCurve config show access list resources COMMAND STRUCTURE 62 2009 Hewlett Packard Development Company L P access list Command Line Interface Reference Guide ...

Page 65: ...I STR p 63 command Command to execute ASCII STR p 63 EXAMPLES Example alias An alias for the show interfaces custom command could be ProCurve config alias sic show int custom 1 4 port name 4 type vlan intrusion COMMAND DETAILS name p 63 command p 63 command alias NAME COMMAND Command to execute name no alias NAME Name of alias Next Available Option command Command to execute ASCII STR p 63 63 2009...

Page 66: ...ds Usage no arp IP ADDRESS Description Remove the specified IP ADDRESS entry from the ARP cache note the keyword no must be specified o IP ADDRESS ip address of the ARP cache entry to be removed COMMAND STRUCTURE 64 2009 Hewlett Packard Development Company L P ...

Page 67: ...ity will result since the database will contain no bindings For devices that do not use DHCP to obtain their IP configuration static bindings can be added manually to the database with the ip source binding command Dynamic ARP Protection can also be configured to drop ARP packets that contain invalid IP addresses or when the MAC addresses in the body of the ARP packet do not match those in the eth...

Page 68: ... protect validate src mac Drop any ARP request or response packet in which the source MAC in the ethernet header does not match the sender MAC address in the body of the packet trust no arp protect trust ETHERNET PORT LIST Configure port s as trusted or untrusted validate no arp protect validate Configure additional ARP Protection validation checks Next Available Options src mac Drop any ARP reque...

Page 69: ...isable Dynamic ARP Protection on a VLAN s Next Available Option vlan list VLAN ID RANGE p 67 vlan list no arp protect vlan VLAN ID RANGE 67 2009 Hewlett Packard Development Company L P arp protect Command Line Interface Reference Guide ...

Page 70: ...key are disabled by default If secure mode is disabled the key pair can be removed using the crypto key zeroize autorun command When installing the autorun certificate file and or other key files the files must be in PEM format COMMAND STRUCTURE no autorun encryption key Configure or remove an AES 128 encryption key for Autorun p 68 key AES 128 encryption key string for Autorun ASCII STR p 68 no a...

Page 71: ...8 encryption key string for Autorun secure mode no autorun secure mode Enable or disable secure mode for Autorun 69 2009 Hewlett Packard Development Company L P autorun Command Line Interface Reference Guide ...

Page 72: ...ile name to download COMMAND STRUCTURE auto tftp server ip IPv4 address of the TFTP server to download a software image from IP ADDR p 70 filename The software image file name ASCII STR p 70 auto tftp server ipv6 IPv6 address of the TFTP server to download a software image from IPV6 ADDR p 71 filename The software image file name ASCII STR p 70 EXAMPLES Example auto tftp IP ADDR FILENAME Set the d...

Page 73: ...tware image file name ASCII STR p 70 server ipv6 auto tftp IPV6 ADDR IPv6 address of the TFTP server to download a software image from Next Available Option filename The software image file name ASCII STR p 70 71 2009 Hewlett Packard Development Company L P auto tftp Command Line Interface Reference Guide ...

Page 74: ...r text can contain any printable character except the delimiting character and the character COMMAND STRUCTURE no banner motd Set message of the day banner p 72 ascii Specify delimiting character for banner text ASCII STR p 72 COMMAND DETAILS motd p 72 ascii p 72 ascii banner motd ASCII Specify delimiting character for banner text motd no banner motd Set message of the day banner Next Available Op...

Page 75: ...zed config config1 keywords correspond to the names selected for the config files COMMAND STRUCTURE boot active Reboot the active management module p 73 boot set default Specify the default flash boot image p 74 flash primary secondary Specify the default flash boot image p 74 boot standby Reboot the standby management module p 74 boot system Allows user to specify boot image to use after reboot p...

Page 76: ...lash image secondary Secondary flash image set default boot set default Specify the default flash boot image Sets the default flash for the next boot to primary or secondary You will see this message This command changes the location of the default boot This command will change the default flash image to boot from flash chosen Hereafter reload and boot commands will boot from flash chosen Do you w...

Page 77: ...user to specify boot image to use after reboot Next Available Option flash primary secondary Specify boot image to use after reboot p 74 75 2009 Hewlett Packard Development Company L P boot Command Line Interface Reference Guide ...

Page 78: ...dp run Start and stop CDP on the device p 76 EXAMPLES Example cdp enable PORT LIST Disable CDP on port A1 of a Series 5400zl switch ProCurve config no cdp enable a1 Example cdp run Disable CDP on the switch ProCurve config no cdp run COMMAND DETAILS run p 76 enable p 76 enable no cdp enable ETHERNET PORT LIST Usage no cdp enable ethernet PORT LIST Description Enable disable CDP on particular devic...

Page 79: ...on default 30 NUMBER p 77 chassislocate off Turn the chassis locate led off p 78 chassislocate on Turn the chassis locate led on default 30 minutes p 78 duration 1 to 1440 Number of minutes duration default 30 NUMBER p 77 COMMAND DETAILS off p 78 blink p 77 on p 78 duration p 77 blink chassislocate blink Blink the chassis locate led default 30 minutes Next Available Option duration 1 to 1440 Numbe...

Page 80: ...chassislocate on Turn the chassis locate led on default 30 minutes Next Available Option duration 1 to 1440 Number of minutes duration default 30 NUMBER p 77 78 2009 Hewlett Packard Development Company L P chassislocate Command Line Interface Reference Guide ...

Page 81: ...147483646 Specify the increment p 80 EXAMPLES Example class AdminTraffic selects the administrative traffic sent to and received from the IPv4 address of an administrator s PC ProCurve config class ipv4 AdminTraffic ProCurve class config match ip 15 29 16 1 10 any ProCurve class config match ip any 15 29 16 1 10 ProCurve class config exit Example class http selects HTTP traffic sent to TCP ports 8...

Page 82: ...equence number p 80 ipv6 no class ipv6 IPV6 Enter ipv6 class name class resequence ipv6 IPV6 Enter ipv6 class name Next Available Option start seq num 1 to 2147483647 Specify the starting sequence number p 80 resequence class resequence Renumber the entries in the class Next Available Options ipv4 Enter ipv4 class name ASCII STR p 80 ipv6 Enter ipv6 class name ASCII STR p 80 start seq num class re...

Page 83: ... 80 class resequence ipv6 IPV6 1 to 2147483647 Specify the starting sequence number Range 1 to 2147483647 Next Available Option incr num 1 to 2147483646 Specify the increment p 80 81 2009 Hewlett Packard Development Company L P class Command Line Interface Reference Guide ...

Page 84: ... active configuration p 83 client public key Remove client public keys from active configuration p 83 keyfile manager operator Remove client public keys from active configuration p 84 keylist Remove client public keys from active configuration ASCII STR p 84 clear intrusion flags Reset the Alert Flag on all ports p 83 clear ip Clear all IP information p 83 ospf statistics Usage clear ip ospf stati...

Page 85: ...n p 84 crypto clear crypto Remove client public keys from active configuration Next Available Option client public key Remove client public keys from active configuration p 83 if ip clear ip ospf statistics IP ADDR specify ip address whose statistics is to be cleared intrusion flags clear intrusion flags Reset the Alert Flag on all ports ip clear ip Clear all IP information Next Available Option o...

Page 86: ...pto client public key manager operator KEYLIST Remove client public keys from active configuration link keepalive clear link keepalive Reset link keepalive counters for all UDLD enabled ports Next Available Option statistics Reset link keepalive counters for all UDLD enabled ports p 85 logging clear logging Remove all event entries from the event log neighbors clear ipv6 neighbors Delete all the n...

Page 87: ...fy ip address whose statistics is to be cleared IP ADDR p 83 statistics clear statistics ETHERNET PORT LIST Reset all counters for the specified ports clear link keepalive statistics Reset link keepalive counters for all UDLD enabled ports 85 2009 Hewlett Packard Development Company L P clear Command Line Interface Reference Guide ...

Page 88: ...o set HH MM SS p 88 no clock summer time Enable disable daylight saving time changes p 87 clock timezone Set the number of hours your location is to the West or East of GMT p 88 gmt 14 00 13 00 12 00 Number of hours your timezone is to the West or East of GMT p 86 us alaska aleutian arizona Timezone for US locations p 88 COMMAND DETAILS us p 88 summer time p 87 date p 86 time p 88 gmt p 86 timezon...

Page 89: ...M SS Description Set current time and or date o MM DD YY YY New date o HH MM SS New time Next Available Options date Current date to set MM DD YY YY p 86 time Current time to set HH MM SS p 88 summer time no clock summer time Usage no clock summer time Description Enable disable daylight saving time changes 87 2009 Hewlett Packard Development Company L P clock Command Line Interface Reference Guid...

Page 90: ...mber see clock timezone gmt for the list of all acceptable values or a US timezone The default value is GMT 0 Next Available Options gmt 14 00 13 00 12 00 Number of hours your timezone is to the West or East of GMT p 86 us alaska aleutian arizona Timezone for US locations p 88 us clock timezone us alaska aleutian arizona Timezone for US locations Supported Values alaska aleutian arizona central ea...

Page 91: ...ription Enter the Configuration context COMMAND STRUCTURE configure terminal Optional keyword of the configure command Can be omitted p 89 EXAMPLES Example enable ProCurve configure ProCurve config COMMAND DETAILS terminal p 89 terminal configure terminal Optional keyword of the configure command Can be omitted 89 2009 Hewlett Packard Development Company L P ...

Page 92: ...ter p 91 all Resets all previously blocked by the connection rate filter p 90 host Match packets from the specified IP address IP ADDR p 90 src ip Match packets from the specified subnet IP ADDR MASK LENGTH p 91 COMMAND DETAILS src ip p 91 sensitive p 90 all p 90 unblock p 91 sensitivity p 91 host p 90 all connection rate filter unblock all Resets all previously blocked by the connection rate filt...

Page 93: ...unblock connection rate filter unblock Resets a host previously blocked by the connection rate filter Next Available Options all Resets all previously blocked by the connection rate filter p 90 host Match packets from the specified IP address IP ADDR p 90 src ip Match packets from the specified subnet IP ADDR MASK LENGTH p 91 91 2009 Hewlett Packard Development Company L P connection rate filter C...

Page 94: ...0 1 5 Set the number of minutes of no activity detected on the Console port before the switch terminates a communication session p 94 console local terminal VT100 NONE ANSI Set type of terminal being used for the current console or telnet session default is vt100 p 94 console screen refresh 1 3 5 Set default number of seconds before screen is refreshed on the repeat command p 94 console terminal V...

Page 95: ...pported Values speed sense 1200 2400 4800 9600 19200 38400 57600 115200 events console events None Debug All Usage console events none all not info critical debug Description Set level of the events displayed in the device s Events Log all display all none display no events not info display all events except informational critical display only critical level events debug reserved for Internal use ...

Page 96: ...akes effect immediately Not saved in configuration Terminal type options are vt100 use VT100 terminal escape sequences ansi use ANSI terminal escape sequences none use a raw mode with no terminal escape sequences Useful for scripting See also console terminal help Supported Values VT100 VT 100 terminal compatible NONE Raw mode with terminal escape sequences removed ANSI ANSI terminal compatible sc...

Page 97: ...fect Terminal type options are vt100 use VT100 terminal escape sequences ansi use ANSI terminal escape sequences none use a raw mode with no terminal escape sequences Useful for scripting See also console local terminal help Supported Values VT100 VT 100 terminal compatible NONE Raw mode with terminal escape sequences removed ANSI ANSI terminal compatible 95 2009 Hewlett Packard Development Compan...

Page 98: ...ta files o startup config o command file o flash o show tech o config o pub key file o autorun key file o autorun cert file options options are o IPv4 address TFTP server IPv4 address Required for TFTP transfers o IPv6 address TFTP server IPv6 address Required for TFTP transfers o append Add the key s for operator access o manager Replace the key s for manager access follow with the append option ...

Page 99: ...131 copy crash data Copy the switch crash data file p 107 card Enter single slot identifier SLOT ID RANGE p 105 tftp Copy data to a TFTP server p 124 tftp ip Specify TFTP server IPv4 address IP ADDR p 126 filename Specify filename for the TFTP transfer ASCII STR p 109 tftp ipv6 Specify TFTP server IPv6 address IPV6 ADDR p 129 filename Specify filename for the TFTP transfer ASCII STR p 109 usb Copy...

Page 100: ...sfer ASCII STR p 109 usb Copy data to a USB flash drive p 133 filename Specify filename for the USB transfer ASCII STR p 109 xmodem Use xmodem on the terminal as the data destination p 135 copy event log Copy event log file p 109 tftp Copy data to a TFTP server p 124 tftp ip Specify TFTP server IPv4 address IP ADDR p 126 filename Specify filename for the TFTP transfer ASCII STR p 109 pc Change CR ...

Page 101: ...pecify TFTP server IPv6 address IPV6 ADDR p 129 filename Specify filename for the TFTP transfer ASCII STR p 109 pc Change CR LF to PC style p 120 unix Change CR LF to unix style p 131 usb Copy data to a USB flash drive p 133 filename Specify filename for the USB transfer ASCII STR p 109 xmodem Use xmodem on the terminal as the data destination p 135 pc Change CR LF to PC style p 120 unix Change CR...

Page 102: ...address IPV6 ADDR p 129 filename Specify filename for the TFTP transfer ASCII STR p 109 pc Change CR LF to PC style p 120 unix Change CR LF to unix style p 131 config Copy data to specified configuration file ASCII STR p 106 tftp ip Specify TFTP server IPv4 address IP ADDR p 126 filename Specify filename for the TFTP transfer ASCII STR p 109 pc Change CR LF to PC style p 120 unix Change CR LF to u...

Page 103: ...CR LF to unix style p 131 tftp ipv6 Specify TFTP server IPv6 address IPV6 ADDR p 129 filename Specify filename for the TFTP transfer ASCII STR p 109 pc Change CR LF to PC style p 120 unix Change CR LF to unix style p 131 copy usb Copy data from a USB flash drive p 133 autorun cert file Copy autorun trusted certificate to the switch p 105 filename Specify filename for the USB transfer ASCII STR p 1...

Page 104: ... to specified configuration file ASCII STR p 106 pc Change CR LF to PC style p 120 unix Change CR LF to unix style p 131 flash Copy to primary secondary flash p 116 cv_flash primary secondary Copy to primary secondary flash p 107 startup config Copy data to the switch configuration file p 123 pc Change CR LF to PC style p 120 unix Change CR LF to unix style p 131 COMMAND DETAILS running config p 1...

Page 105: ...FILENAME manager append Add the key s for access copy tftp autorun cert file IPV6 ADDR FILENAME append Add the key s for operator access copy tftp autorun cert file IPV6 ADDR FILENAME operator append Add the key s for access copy tftp autorun cert file IPV6 ADDR FILENAME manager append Add the key s for access copy tftp autorun key file IP ADDR FILENAME append Add the key s for operator access cop...

Page 106: ...b pub key file FILENAME manager append Add the key s for access copy usb autorun cert file FILENAME append Add the key s for operator access copy usb autorun cert file FILENAME operator append Add the key s for access copy usb autorun cert file FILENAME manager append Add the key s for access copy usb autorun key file FILENAME append Add the key s for operator access copy usb autorun key file FILE...

Page 107: ... ip Specify TFTP server IPv4 address IP ADDR p 126 tftp ipv6 Specify TFTP server IPv6 address IPV6 ADDR p 129 copy usb autorun key file Copy autorun key file to the switch Next Available Option filename Specify filename for the USB transfer ASCII STR p 109 card copy crash data SLOT ID RANGE Enter single slot identifier Next Available Options tftp Copy data to a TFTP server p 124 xmodem Use xmodem ...

Page 108: ...py command script to switch and execute Next Available Option filename Specify filename for the USB transfer ASCII STR p 109 command output copy command output COMMAND OUTPUT Specify a CLI command to copy output of Next Available Options tftp Copy data to a TFTP server p 124 xmodem Use xmodem on the terminal as the data destination p 135 usb Copy data to a USB flash drive p 133 config copy tftp co...

Page 109: ... Copy the switch crash data file Next Available Options card Enter single slot identifier SLOT ID RANGE p 105 mm Copy from the management card p 119 tftp Copy data to a TFTP server p 124 xmodem Use xmodem on the terminal as the data destination p 135 usb Copy data to a USB flash drive p 133 crash log copy crash log Copy the switch log file Next Available Options card Enter single slot identifier S...

Page 110: ...E primary secondary Copy to primary secondary flash Supported Values primary Copy to primary flash secondary Copy to secondary flash cv_out_flash copy flash tftp IP ADDR FILENAME primary secondary Copy from primary secondary flash Supported Values primary Copy image primary flash secondary Copy image secondary flash copy flash tftp IPV6 ADDR FILENAME primary secondary Copy from primary secondary f...

Page 111: ...py tftp command file IP ADDR FILENAME Specify filename for the TFTP transfer Next Available Options unix Change CR LF to unix style p 131 pc Change CR LF to PC style p 120 copy tftp command file IPV6 ADDR FILENAME Specify filename for the TFTP transfer Next Available Options unix Change CR LF to unix style p 131 pc Change CR LF to PC style p 120 copy tftp flash IP ADDR FILENAME Specify filename fo...

Page 112: ...r access default follow with the append option to add the key s p 119 manager Replace the key s for manager access follow with the append option to add the key s p 117 copy tftp startup config IP ADDR FILENAME Specify filename for the TFTP transfer Next Available Options unix Change CR LF to unix style p 131 pc Change CR LF to PC style p 120 copy tftp startup config IPV6 ADDR FILENAME Specify file...

Page 113: ...p 119 manager Replace the key s for manager access follow with the append option to add the key s p 117 copy tftp autorun key file IP ADDR FILENAME Specify filename for the TFTP transfer Next Available Options append Add the key s for operator access p 102 operator Replace the key s for operator access default follow with the append option to add the key s p 119 manager Replace the key s for manag...

Page 114: ...B transfer Next Available Options append Add the key s for operator access p 102 operator Replace the key s for operator access default follow with the append option to add the key s p 119 manager Replace the key s for manager access follow with the append option to add the key s p 117 copy usb autorun cert file FILENAME Specify filename for the USB transfer Next Available Options append Add the k...

Page 115: ...LF to unix style p 131 pc Change CR LF to PC style p 120 copy command output COMMAND OUTPUT usb FILENAME Specify filename for the USB transfer copy config config1 config2 config3 tftp IP ADDR FILENAME Specify filename for the TFTP transfer Next Available Options unix Change CR LF to unix style p 131 pc Change CR LF to PC style p 120 copy config config1 config2 config3 tftp IPV6 ADDR FILENAME Speci...

Page 116: ...sh data usb FILENAME Specify filename for the USB transfer copy crash log SLOT ID RANGE tftp IP ADDR FILENAME Specify filename for the TFTP transfer copy crash log SLOT ID RANGE tftp IPV6 ADDR FILENAME Specify filename for the TFTP transfer copy crash log SLOT ID RANGE usb FILENAME Specify filename for the USB transfer copy crash log mm tftp IP ADDR FILENAME Specify filename for the TFTP transfer ...

Page 117: ... copy flash usb FILENAME Specify filename for the TFTP transfer Next Available Option cv_out_flash primary secondary Copy from primary secondary flash p 108 copy running config tftp IP ADDR FILENAME Specify filename for the TFTP transfer Next Available Options unix Change CR LF to unix style p 131 pc Change CR LF to PC style p 120 copy running config tftp IPV6 ADDR FILENAME Specify filename for th...

Page 118: ...ilable Options unix Change CR LF to unix style p 131 pc Change CR LF to PC style p 120 copy event log tftp IPV6 ADDR FILENAME Specify filename for the TFTP transfer Next Available Options unix Change CR LF to unix style p 131 pc Change CR LF to PC style p 120 copy event log usb FILENAME Specify filename for the USB transfer flash copy tftp flash Copy data to the switch system image file Next Avail...

Page 119: ...imary secondary flash Supported Values primary Copy to primary flash secondary Copy to secondary flash image name copy usb flash IMAGE NAME Specify filename for the USB transfer Next Available Option cv_flash primary secondary Copy to primary secondary flash p 107 manager copy tftp pub key file IP ADDR FILENAME manager Replace the key s for manager access follow with the append option to add the k...

Page 120: ...02 copy tftp autorun key file IPV6 ADDR FILENAME manager Replace the key s for manager access follow with the append option to add the key s Next Available Option append Add the key s for access p 102 copy usb pub key file FILENAME manager Replace the key s for manager access follow with the append option to add the key s Next Available Option append Add the key s for access p 102 copy usb autorun...

Page 121: ...R FILENAME operator Replace the key s for operator access default follow with the append option to add the key s Next Available Option append Add the key s for access p 102 copy tftp pub key file IPV6 ADDR FILENAME operator Replace the key s for operator access default follow with the append option to add the key s Next Available Option append Add the key s for access p 102 copy tftp autorun cert ...

Page 122: ...ss p 102 copy usb pub key file FILENAME operator Replace the key s for operator access default follow with the append option to add the key s Next Available Option append Add the key s for access p 102 copy usb autorun cert file FILENAME operator Replace the key s for operator access default follow with the append option to add the key s Next Available Option append Add the key s for access p 102 ...

Page 123: ...onfig pc Change CR LF to PC style copy xmodem command file pc Change CR LF to PC style copy xmodem config CONFIG pc Change CR LF to PC style copy usb command file FILENAME pc Change CR LF to PC style copy command output COMMAND OUTPUT tftp IP ADDR FILENAME pc Change CR LF to PC style copy command output COMMAND OUTPUT tftp IPV6 ADDR FILENAME pc Change CR LF to PC style copy command output COMMAND ...

Page 124: ...nge CR LF to PC style copy event log tftp IP ADDR FILENAME pc Change CR LF to PC style copy event log tftp IPV6 ADDR FILENAME pc Change CR LF to PC style copy event log xmodem pc Change CR LF to PC style pub key file copy tftp pub key file Copy the public keys to the switch Next Available Options tftp ip Specify TFTP server IPv4 address IP ADDR p 126 tftp ipv6 Specify TFTP server IPv6 address IPV6...

Page 125: ...Next Available Options tftp ip Specify TFTP server IPv4 address IP ADDR p 126 tftp ipv6 Specify TFTP server IPv6 address IPV6 ADDR p 129 copy xmodem startup config Copy data to the switch configuration file Next Available Options unix Change CR LF to unix style p 131 pc Change CR LF to PC style p 120 copy usb startup config Copy data to the switch configuration file Next Available Option filename ...

Page 126: ...P server Next Available Options tftp ip Specify TFTP server IPv4 address IP ADDR p 126 tftp ipv6 Specify TFTP server IPv6 address IPV6 ADDR p 129 copy config config1 config2 config3 tftp Copy data to a TFTP server Next Available Options tftp ip Specify TFTP server IPv4 address IP ADDR p 126 tftp ipv6 Specify TFTP server IPv6 address IPV6 ADDR p 129 copy crash data SLOT ID RANGE tftp Copy data to a...

Page 127: ...og tftp Copy data to a TFTP server Next Available Options tftp ip Specify TFTP server IPv4 address IP ADDR p 126 tftp ipv6 Specify TFTP server IPv6 address IPV6 ADDR p 129 copy flash tftp Copy data to a TFTP server Next Available Options tftp ip Specify TFTP server IPv4 address IP ADDR p 126 tftp ipv6 Specify TFTP server IPv6 address IPV6 ADDR p 129 copy running config tftp Copy data to a TFTP ser...

Page 128: ...n filename Specify filename for the TFTP transfer ASCII STR p 109 copy tftp pub key file IP ADDR Specify TFTP server IPv4 address Next Available Option filename Specify filename for the TFTP transfer ASCII STR p 109 copy tftp startup config IP ADDR Specify TFTP server IPv4 address Next Available Option filename Specify filename for the TFTP transfer ASCII STR p 109 copy tftp config CONFIG IP ADDR ...

Page 129: ... ASCII STR p 109 copy config config1 config2 config3 tftp IP ADDR Specify TFTP server IPv4 address Next Available Option filename Specify filename for the TFTP transfer ASCII STR p 109 copy crash data SLOT ID RANGE tftp IP ADDR Specify TFTP server IPv4 address Next Available Option filename Specify filename for the TFTP transfer ASCII STR p 109 copy crash data mm tftp IP ADDR Specify TFTP server I...

Page 130: ...tp IP ADDR Specify TFTP server IPv4 address Next Available Option filename Specify filename for the TFTP transfer ASCII STR p 109 copy running config tftp IP ADDR Specify TFTP server IPv4 address Next Available Option filename Specify filename for the TFTP transfer ASCII STR p 109 copy startup config tftp IP ADDR Specify TFTP server IPv4 address Next Available Option filename Specify filename for ...

Page 131: ...y TFTP server IPv6 address Next Available Option filename Specify filename for the TFTP transfer ASCII STR p 109 copy tftp config CONFIG IPV6 ADDR Specify TFTP server IPv6 address Next Available Option filename Specify filename for the TFTP transfer ASCII STR p 109 copy tftp autorun cert file IPV6 ADDR Specify TFTP server IPv6 address Next Available Option filename Specify filename for the TFTP tr...

Page 132: ... IPv6 address Next Available Option filename Specify filename for the TFTP transfer ASCII STR p 109 copy crash data mm tftp IPV6 ADDR Specify TFTP server IPv6 address Next Available Option filename Specify filename for the TFTP transfer ASCII STR p 109 copy crash data tftp IPV6 ADDR Specify TFTP server IPv6 address Next Available Option filename Specify filename for the TFTP transfer ASCII STR p 1...

Page 133: ...he TFTP transfer ASCII STR p 109 copy startup config tftp IPV6 ADDR Specify TFTP server IPv6 address Next Available Option filename Specify filename for the TFTP transfer ASCII STR p 109 copy event log tftp IPV6 ADDR Specify TFTP server IPv6 address Next Available Option filename Specify filename for the TFTP transfer ASCII STR p 109 unix copy tftp command file IP ADDR FILENAME unix Change CR LF t...

Page 134: ...to unix style copy command output COMMAND OUTPUT tftp IP ADDR FILENAME unix Change CR LF to unix style copy command output COMMAND OUTPUT tftp IPV6 ADDR FILENAME unix Change CR LF to unix style copy command output COMMAND OUTPUT xmodem unix Change CR LF to unix style copy config config1 config2 config3 tftp IP ADDR FILENAME unix Change CR LF to unix style copy config config1 config2 config3 tftp I...

Page 135: ...startup config Copy data to the switch configuration file p 123 flash Copy data to the switch system image file p 116 command file Copy command script to switch and execute p 106 pub key file Copy the public keys to the switch p 122 autorun cert file Copy autorun trusted certificate to the switch p 105 autorun key file Copy autorun key file to the switch p 105 copy command output COMMAND OUTPUT us...

Page 136: ... usb Copy data to a USB flash drive Next Available Option filename Specify filename for the USB transfer ASCII STR p 109 copy crash log usb Copy data to a USB flash drive Next Available Option filename Specify filename for the USB transfer ASCII STR p 109 copy flash usb Copy data to a USB flash drive Next Available Option filename Specify filename for the TFTP transfer ASCII STR p 109 copy running...

Page 137: ...nfiguration file ASCII STR p 106 copy command output COMMAND OUTPUT xmodem Use xmodem on the terminal as the data destination Next Available Options unix Change CR LF to unix style p 131 pc Change CR LF to PC style p 120 copy config config1 config2 config3 xmodem Use xmodem on the terminal as the data destination Next Available Options unix Change CR LF to unix style p 131 pc Change CR LF to PC st...

Page 138: ...y running config xmodem Use xmodem on the terminal as the data destination Next Available Options unix Change CR LF to unix style p 131 pc Change CR LF to PC style p 120 copy startup config xmodem Use xmodem on the terminal as the data destination Next Available Options unix Change CR LF to unix style p 131 pc Change CR LF to PC style p 120 copy event log xmodem Use xmodem on the terminal as the d...

Page 139: ...interface module p 137 no core dump management module Enable disable core dump on management module p 137 EXAMPLES Example core dump ProCurve config no core dump management module COMMAND DETAILS management module p 137 interface module p 137 interface module no core dump interface module Enable disable core dump on interface module management module no core dump management module Enable disable c...

Page 140: ...lid beginning on this date o END certificate will be valid until this date o CNAME the name IP address of this device o OU organizational unit or department o ORG organization name o CITY city or location o STATE state or region o COUNTRY two character ISO country code Typing x TAB will provide a list of all valid country codes beginning with the letter x o ssh Install remove host key for ssh serv...

Page 141: ...47 bits Specify bitsize for key p 140 bits 1024 2048 3072 p 140 zeroize Delete existing key p 149 autorun Remove RSA key file for autorun p 139 rsa Install RSA host key p 147 cert Remove RSA key file for https certificate p 140 ssh Remove host key file for ssh server p 148 COMMAND DETAILS org unit p 147 dsa p 146 autorun p 139 rsa p 147 end date p 146 autorun key p 139 self signed p 148 generate p...

Page 142: ...generate cert Install RSA key file for https certificate Next Available Options rsa Install RSA host key p 147 key size 512 768 1024 p 147 crypto key zeroize cert Remove RSA key file for https certificate city crypto host cert generate self signed DATE START DATE DATE END DATE CNAME ORG UNIT ORGANIZATION CITY City or location Next Available Option state State or region ASCII STR p 148 cname crypto...

Page 143: ...Armenia AN Netherlands Antilles AO Angola AQ Antarctica AR Argentina AS American Samoa AT Austria AU Australia AW Aruba AX Aland Islands AZ Azerbaijan BA Bosnia and Herzegovina BB Barbados BD Bangladesh BE Belgium BF Burkina Faso BG Bulgaria BH Bahrain BI Burundi BJ Benin BM Bermuda BN Brunei Darussalam BO Bolivia BR Brazil BS Bahamas BT Bhutan BV Bouvet Island BW Botswana BY Belarus BZ Belize CA ...

Page 144: ... EE Estonia EG Egypt EH Western Sahara ER Eritrea ES Spain ET Ethiopia FI Finland FJ Fiji FK Falkland Islands Malvinas FM Micronesia FO Faroe Islands FR France FX France Metropolitan GA Gabon GB Great Britain UK GD Grenada GE Georgia GF French Guiana GG Guernsey GH Ghana GI Gibraltar GL Greenland GM Gambia GN Guinea GP Guadeloupe GQ Equatorial Guinea GR Greece GS S Georgia and S Sandwich Isls GT G...

Page 145: ...Japan KE Kenya KG Kyrgyzstan KH Cambodia KI Kiribati KM Comoros KN Saint Kitts and Nevis KP Korea North KR Korea South KW Kuwait KY Cayman Islands KZ Kazakhstan LA Laos LB Lebanon LC Saint Lucia LI Liechtenstein LK Sri Lanka LR Liberia LS Lesotho LT Lithuania LU Luxembourg LV Latvia LY Libya MA Morocco MC Monaco MD Moldova ME Montenegro MG Madagascar MH Marshall Islands MK Macedonia ML Mali 143 20...

Page 146: ... NR Nauru NT Neutral Zone NU Niue NZ New Zealand Aotearoa OM Oman PA Panama PE Peru PF French Polynesia PG Papua New Guinea PH Philippines PK Pakistan PL Poland PM St Pierre and Miquelon PN Pitcairn PR Puerto Rico PS Palestinian Territory PT Portugal PW Palau PY Paraguay QA Qatar RE Reunion RO Romania RS Serbia RU Russian Federation RW Rwanda SA Saudi Arabia Sb Solomon Islands SC Seychelles SD Sud...

Page 147: ...M Turkmenistan TN Tunisia TO Tonga TP East Timor TR Turkey TT Trinidad and Tobago TV Tuvalu TW Taiwan TZ Tanzania UA Ukraine UG Uganda UK United Kingdom UM US Minor Outlying Islands US United States UY Uruguay UZ Uzbekistan VA Vatican City State Holy See VC Saint Vincent and the Grenadines VE Venezuela VG Virgin Islands British VI Virgin Islands U S VN Viet Nam VU Vanuatu WF Wallis and Futuna Isla...

Page 148: ...t Available Option self signed Create a self signed certificate for the https server p 148 crypto key generate Generate a new key Next Available Options cert Install RSA key file for https certificate p 140 ssh Install host key file for ssh server p 148 autorun key Install RSA key file for autorun p 139 host cert crypto host cert Install remove self signed certificate for https Next Available Opti...

Page 149: ...SA key organization crypto host cert generate self signed DATE START DATE DATE END DATE CNAME ORG UNIT ORGANIZATION Organization name Next Available Option city City or location ASCII STR p 140 org unit crypto host cert generate self signed DATE START DATE DATE END DATE CNAME ORG UNIT Organizational unit Department Next Available Option organization Organization name ASCII STR p 147 rsa crypto key...

Page 150: ...t Available Options rsa Install RSA host key p 147 dsa Install DSA host key p 146 crypto key zeroize ssh Remove host key file for ssh server start date crypto host cert generate self signed DATE START DATE Validity start date for certificate Next Available Option end date Validity end date for certificate MM DD YY YY p 146 state crypto host cert generate self signed DATE START DATE DATE END DATE C...

Page 151: ... Delete existing key Next Available Options cert Remove RSA key file for https certificate p 140 ssh Remove host key file for ssh server p 148 autorun Remove RSA key file for autorun p 139 149 2009 Hewlett Packard Development Company L P crypto Command Line Interface Reference Guide ...

Page 152: ... debug acl Display debug messages on access control lists p 151 no debug all Display all debug messages p 152 no debug arp protect Display Dynamic ARP Protection messages p 152 no debug destination logging session buffer Select destination for debug messages p 152 no debug dhcp snooping Display all DHCP Snooping messages p 152 agent Display DHCP Snooping agent messages p 152 event Display DHCP Sno...

Page 153: ... lldp Display LLDP information p 154 no debug services Display debug messages on services module SLOT ID RANGE p 156 no debug ssh Display SSH debug messages at specified verbosity p 156 loglevel fatal error info p 154 no debug vrrp Display VRRP debug messages p 156 no debug wireless services Display debug messages on wireless services module SLOT ID RANGE p 157 COMMAND DETAILS LSU p 155 events p 1...

Page 154: ...d Values logging Send debug messages to syslog server session Print debug messages to terminal buffer Print debug messages to a buffer in memory debug console printf debug messages to debug console dhcp snooping no debug dhcp snooping Display all DHCP Snooping messages Next Available Options agent Display DHCP Snooping agent messages p 152 event Display DHCP Snooping event messages p 153 packet Di...

Page 155: ...nt Display OSPF events no debug ip rip event Display RIP events events no debug ipv6 dhcpv6 client events Display DHCPv6 client events fib no debug ip fib Display IP Forwarding Information Base debug messages flood no debug ip ospf flood Display information on flood messages forwarding no debug ip forwarding Display IPv4 forwarding messages no debug ipv6 forwarding Display IPv6 forwarding messages...

Page 156: ...s for IPv6 Next Available Options dhcpv6 client Display DHCPv6 client debug messages p 152 forwarding Display IPv6 forwarding messages p 153 nd Display debug messages for IPv6 neighbor discovery p 155 packet Display IPv6 packet messages p 155 lldp no debug lldp Display LLDP information loglevel debug ssh fatal error info Supported Values fatal error info verbose debug debug2 debug3 LSA no debug ip...

Page 157: ...database p 154 packet Display packets sent received p 155 retransmission Display retransmission timer messages p 156 spf Display path recalculation messages p 156 packet no debug dhcp snooping packet Display DHCP Snooping packet messages no debug ip packet Display IPv4 packet messages no debug ip ospf packet Display packets sent received Next Available Options Hello Display Hello packets sent rece...

Page 158: ...isplay RIP events p 153 trigger Display trigger messages p 156 services no debug services SLOT ID RANGE Display debug messages on services module spf no debug ip ospf spf Display path recalculation messages ssh no debug ssh Display SSH debug messages at specified verbosity Next Available Option loglevel fatal error info p 154 trigger no debug ip rip trigger Display trigger messages vrrp no debug v...

Page 159: ...ireless services no debug wireless services SLOT ID RANGE Display debug messages on wireless services module 157 2009 Hewlett Packard Development Company L P debug Command Line Interface Reference Guide ...

Page 160: ...DHCP Client COMMAND STRUCTURE no dhcp config file update Argument to dhcp client to specify whether to process option 66 67 p 158 COMMAND DETAILS config file update p 158 config file update no dhcp config file update Argument to dhcp client to specify whether to process option 66 67 158 2009 Hewlett Packard Development Company L P ...

Page 161: ...pend policy If validation fails the response is considered invalid and thrown away mac Sets the remote ID to be the MAC address of the switch This is the default value ip Sets the remote ID to be the IP address of the VLAN on which the client request was received COMMAND STRUCTURE no dhcp relay hop count increment Optional argument to dhcp agent used to enable disable increment of DHCP hop count f...

Page 162: ...esponse p 165 append Specifies that the option 82 field should be appended to client DHCP packet p 161 ip Sets the remote id to be the IP address of the VLAN on which the client request was received p 162 mac Sets the remote id to be the MAC address of the switch This is the default value p 163 mgmt vlan Sets the remote id to be the IP address of the Management VLAN p 163 drop Specifies that the D...

Page 163: ...the default value p 163 ip Sets the remote id to be the IP address of the VLAN on which the client request was received p 162 mgmt vlan Sets the remote id to be the IP address of the Management VLAN p 163 dhcp relay option 82 validate append Specifies that the option 82 field should be appended to client DHCP packet Next Available Options mac Sets the remote id to be the MAC address of the switch ...

Page 164: ...be the IP address of the VLAN on which the client request was received dhcp relay option 82 replace ip Sets the remote id to be the IP address of the VLAN on which the client request was received dhcp relay option 82 keep ip Sets the remote id to be the IP address of the VLAN on which the client request was received dhcp relay option 82 drop ip Sets the remote id to be the IP address of the VLAN o...

Page 165: ...y option 82 keep mac Sets the remote id to be the MAC address of the switch This is the default value dhcp relay option 82 drop mac Sets the remote id to be the MAC address of the switch This is the default value dhcp relay option 82 validate append mac Sets the remote id to be the MAC address of the switch This is the default value dhcp relay option 82 validate replace mac Sets the remote id to b...

Page 166: ... that any existing option 82 fields will be replaced with switch option 82 field for client DHCP packet Next Available Options validate Specifies the validation for server response p 165 mac Sets the remote id to be the MAC address of the switch This is the default value p 163 ip Sets the remote id to be the IP address of the VLAN on which the client request was received p 162 mgmt vlan Sets the r...

Page 167: ...alidation for server response Next Available Options append Specifies that the option 82 field should be appended to client DHCP packet p 161 replace Specifies that any existing option 82 fields will be replaced with switch option 82 field for client DHCP packet p 164 drop Specifies that the DHCP packet will be dropped unconditionally if option 82 field s already exists in the client DHCP packet p...

Page 168: ...d mac subnet ip mgmt ip Set relay information option remote id value to use NUMBER p 169 untrusted policy drop keep replace Policy for DHCP packets received on untrusted ports thatcontain option 82 NUMBER p 169 no dhcp snooping trust Configure trusted interfaces p 169 port list ethernet PORT LIST p 169 no dhcp snooping verify Enable Disable DHCP packet validation p 169 mac Verify DHCP header clien...

Page 169: ...00 timeout 0 86400 Description Configure lease database transfer options No additional parameters are required when no is specified Parameters o file ASCI STR File name in the form of a Universal Resource Locator The URL must be tftp IP ADDR ASCII STR The max filename length is 63 characters o delay 15 86400 Number of seconds to delay writing the database The default delay is 300 seconds o timeout...

Page 170: ... ip subnet ip Set the value used for the remote id field of the relay information option If mac is specified the switch mac address is used If mgmt ip is specified the management vlan ip address is used If subnet ip is specified the ip address of the VLAN the packet was received on is used Note that when the specified value is subnet ip or mgmt ip and that value is not set then the switch mac addr...

Page 171: ...n Configure trusted interfaces Only server packets received on trusted interfaces will be forwarded When no is specified the interfaces are marked as untrusted The default port state is untrusted Parameters o PORT LIST Port list on which to configure trust status Next Available Option port list ethernet PORT LIST p 169 untrusted policy dhcp snooping option 82 untrusted policy drop keep replace Pol...

Page 172: ...ware address p 168 vlan dhcp snooping vlan Usage no dhcp snooping vlan VLAN ID RANGE Description Enable Disable snooping on a VLAN Note that DHCP snooping must also be globally enabled with the dhcp snooping command for snooping to performed on any VLAN The default state is disabled Parameters o VLAN ID RANGE VLAN list on which to enable disable snooping Next Available Option vlan list VLAN ID RAN...

Page 173: ...ory on a USB device COMMAND STRUCTURE dir pathname Display a list of the files and subdirectories in a directory on a USB device ASCII STR p 171 COMMAND DETAILS pathname p 171 pathname dir PATHNAME Usage dir pathname Description Display a list of the files and subdirectories in a directory on a USB device 171 2009 Hewlett Packard Development Company L P ...

Page 174: ...s end page 173 Usage enable Description Enter the Manager Exec context COMMAND STRUCTURE EXAMPLES Example enable Enter the Manager user name and password to access the Manager Exec context of the CLI ProCurve enable Username admin1 Password ProCurve 172 2009 Hewlett Packard Development Company L P ...

Page 175: ...tch Management Category manager Primary context exit page 176 Related Commands enable page 172 Usage end Description Return to the Manager Exec context COMMAND STRUCTURE 173 2009 Hewlett Packard Development Company L P ...

Page 176: ... default configuration o core dump FILENAME erase the specified core dump file specify the core dump file as displayed with show boot history NOTES Italicized config Keywords The italicized config config1 keywords correspond to the names selected for the config files COMMAND STRUCTURE erase config config config1 Erase the named configuration file p 175 erase core dump Erase the named core file ASC...

Page 177: ... erase core dump FILENAME Description Erase the named core file flash erase flash primary secondary Usage erase flash primary secondary Description Erase the primary or secondary flash image Supported Values primary Primary flash image secondary Secondary flash image startup config erase startup config Erase configuration file 175 2009 Hewlett Packard Development Company L P erase Command Line Int...

Page 178: ...iption Return to the previous context or terminate current console telnet session if you are in the Operator context level COMMAND STRUCTURE EXAMPLES Example exit Exit from the interface configuration context to the global configuration context ProCurve eth A4 exit ProCurve config 176 2009 Hewlett Packard Development Company L P ...

Page 179: ...fastboot OVERVIEW Category config Primary context Related Commands Usage no fastboot Description Enable disable fastboot on switch COMMAND STRUCTURE 177 2009 Hewlett Packard Development Company L P ...

Page 180: ...fault finder all bad driver bad transceiver Usage no fault finder all bad driver bad transceiver bad cable too long cable over bandwidth broadcast storm loss of link sensitivity low medium high Description Enable disable fault finder and set sensitivity Default is sensitivity medium Supported Values all All fault types bad driver Too many undersized giant packets bad transceiver Excessive jabberin...

Page 181: ...Supported Values low Low sensitivity medium Medium sensitivity high High sensitivity 179 2009 Hewlett Packard Development Company L P fault finder Command Line Interface Reference Guide ...

Page 182: ...Press tab for options p 181 ip address block ip address configuration p 182 vlan Mention the vlan s on which to block the features vlan VLAN ID LIST p 184 message Friendly error message to be displayed when overriding a restriction ASCII STR p 182 expires Expiration policy for the features Press tab for options p 181 app down Expire on application failure Mention a valid application name ASCII STR...

Page 183: ...name NAME block vlan deletion vlan VLAN VLAN ID LIST message MESSAGE expires app down APP DOWN Expire on application failure Mention a valid application name feature coordinator name NAME block port security interface ETHERNET PORT LIST message MESSAGE expires app down APP DOWN Expire on application failure Mention a valid application name block no feature coordinator name NAME block Feature to bl...

Page 184: ...slot down Mention slot SLOT ID p 184 app down Expire on application failure Mention a valid application name ASCII STR p 181 reboot Expire on reboot p 183 interface no feature coordinator name NAME block port security interface ETHERNET PORT LIST Mention the port s on which to block the features Next Available Option message Friendly error message to be displayed when overriding a restriction ASCI...

Page 185: ...coordinator name NAME Enter an ascii string for name Max len 32 characters Next Available Option block Feature to block Press tab for options p 181 port security no feature coordinator name NAME block port security block port security configuration Next Available Option interface Mention the port s on which to block the features ethernet PORT LIST p 182 reboot feature coordinator name NAME block i...

Page 186: ...s vlan VLAN VLAN ID LIST Mention the vlan s on which to block the features Next Available Option message Friendly error message to be displayed when overriding a restriction ASCII STR p 182 no feature coordinator name NAME block vlan deletion vlan VLAN VLAN ID LIST Mention the vlan s on which to block the features Next Available Option message Friendly error message to be displayed when overriding...

Page 187: ...188 drop Set a list of ports to which forwarding of filtered packets is not permitted ethernet PORT LIST p 186 forward Set a list of ports to which forwarding of filtered packets is permitted ethernet PORT LIST p 187 no filter source port Specify source port filter to manage p 189 named filter Set the filter name p 188 ascii Set the filter name ASCII STR p 186 drop Set a list of ports to which for...

Page 188: ...e enables access Throttle will deny network access for a specific penalty period before automatically re enabling access Notify will simply log a message send a SNMP trap when the filter is tripped Next Available Option connection rate portlist ethernet PORT LIST p 186 connection rate portlist no filter connection rate ETHERNET PORT LIST Next Available Option filter action block notify only thrott...

Page 189: ...filter source port ETHERNET PORT LIST forward ETHERNET PORT LIST Set a list of ports to which forwarding of filtered packets is permitted Next Available Option drop Set a list of ports to which forwarding of filtered packets is not permitted ethernet PORT LIST p 186 filter source port ETHERNET PORT LIST drop ETHERNET PORT LIST forward ETHERNET PORT LIST Set a list of ports to which forwarding of f...

Page 190: ...t of source port filters Next Available Options named filter Set the filter name ASCII STR p 188 forward Set a list of ports to which forwarding of filtered packets is permitted ethernet PORT LIST p 187 drop Set a list of ports to which forwarding of filtered packets is not permitted ethernet PORT LIST p 186 protocol no filter protocol ip ipx arp Usage no filter protocol ip ipx arp appletalk sna n...

Page 191: ...sociate source port list to a named filter and apply actions The named filter can only be 20 charactres long If source port filter is not named then portname is considered as a filter name and apply actions to received packet on port If preceded by no the command deletes the filter specified To delete a named filter use no filter source port named filter filter name explicitly Next Available Optio...

Page 192: ...ont panel buttons disabled COMMAND STRUCTURE no front panel security factory reset Enable Disable factory reset ability p 190 no front panel security password clear Enable Disable password clear p 191 reset on clear Reset switch on password clear p 191 no front panel security password recovery Enable Disable password recovery p 191 EXAMPLES Example no front panel security password recovery Disable...

Page 193: ...security password recovery Description Enable Disable password recovery To disable password recovery physical access to the front pannel is required and within 60 secs of pressing the clear button execute the no form of the command reset on clear no front panel security password clear reset on clear Reset switch on password clear 191 2009 Hewlett Packard Development Company L P front panel securit...

Page 194: ...R OBJECT STR Description Retrieve and display the value of the MIB objects specified COMMAND STRUCTURE getMIB object Name and instance of the MIB variable to retrieve ASCII STR p 192 COMMAND DETAILS object p 192 object getMIB OBJECT Name and instance of the MIB variable to retrieve 192 2009 Hewlett Packard Development Company L P ...

Page 195: ...tegory config Primary context interface page 204 Related Commands show page 511 Usage no gvrp Description Enable disable GARP VLAN Registration Protocol GVRP COMMAND STRUCTURE 193 2009 Hewlett Packard Development Company L P ...

Page 196: ... Room as the location ProCurve config hostname Blue Blue config snmp server contact Ext 4474 location North Data Room Blue config show system information Status and Counters General System Information System Name Blue System Contact Ext 4474 System Location North Data Room MAC Age Time sec 300 Time Zone 0 Daylight Time Rule None Firware revision K 14 XX Base MAC Addr 0001e7 a0ec00 ROM Version K 14...

Page 197: ...IGMP Multicast Group filter will persist in hardware after the last group member leaves p 195 COMMAND DETAILS delayed flush p 195 delayed flush igmp delayed flush 0 to 255 Usage igmp delayed flush 0 255 Description Configures the number of seconds an empty IGMP Multicast Group filter will persist in hardware after the last group member leaves This Delayed Group Flush will drop any further stale tr...

Page 198: ...ng domain a new domain will be created MCAST LOW IP ADDR and MCAST HIGH IP ADDR refer to the low and high inclusive multicast bounds respectively If the keyword all is specified 224 0 1 0 239 255 255 255 is used for the inclusive multicast bounds COMMAND STRUCTURE no igmp proxy domain domain name Specify the igmp proxy domain name to be added deleted updated ASCII STR p 197 border ip Specify the i...

Page 199: ...leted updated Next Available Option border ip Specify the igmp proxy border ip address IP ADDR p 197 mcast high ip no igmp proxy domain DOMAIN NAME IP ADDR IP ADDR IP ADDR Specify the igmp proxy multicast high bound inclusive ip address mcast low ip no igmp proxy domain DOMAIN NAME IP ADDR IP ADDR Specify the igmp proxy multicast low bound inclusive ip address Next Available Option mcast high ip S...

Page 200: ...rtup config file By permanently saving a switch s security credentials in a configuration file you can upload the file to a TFTP server or Xmodem host and later download the file to the ProCurve switches on which you want to use the same security settings without having to manually configure the settings except for SNMPv3 user parameters on each switch By storing different security settings in dif...

Page 201: ...ing parameter exceeds the threshold value The third version of the command enables disables instrumentation monitoring log By default instrumentation monitoring log is disabled Parameters o all Enables Disables instrumentation monitoring for all parameters o arp requests Number of ARP requests received o ip address count Number of destination IP addresses learned in the IP forwarding table o learn...

Page 202: ...3 trap Enables Disables SNMP trap generation p 203 COMMAND DETAILS threshold value p 203 memory p 200 collection p 200 trap p 203 monitor p 201 limitValue p 200 sizeInMB p 203 log p 200 collection no instrumentation collection limitValue instrumentation monitor all arp requests ip address count 1 to 2147483647 Set the threshold Value Range 1 to 2147483647 log no instrumentation monitor log Enables...

Page 203: ...ables instrumentation monitoring for all parameters o arp requests Number of ARP requests received o ip address count Number of destination IP addresses learned in the IP forwarding table o learn discards Number of MAC address learn events per minute discarded to help free CPU resources when busy o login failures The count of failed CLI login attempts or SNMP management authentication failures o m...

Page 204: ...is disabled Parameters o all Enables Disables instrumentation monitoring for all parameters o arp requests Number of ARP requests received o ip address count Number of destination IP addresses learned in the IP forwarding table o learn discards Number of MAC address learn events per minute discarded to help free CPU resources when busy o login failures The count of failed CLI login attempts or SNM...

Page 205: ...ntation memory 1 to 255 Usage instrumentation memory sizeInMB Description Sets the maximum size in MB which may be used by instrumentation Decreasing the size will result in the loss of previuosly collected data Range 1 to 255 threshold value instrumentation monitor all arp requests ip address count low med high Set the threshold Value Supported Values low Low threshold med Medium threshold high H...

Page 206: ...p 221 area id Single integer or IP address style dotted decimal OSPF AREA ID p 222 backbone The backbone area the same as 0 0 0 0 p 226 cost 1 to 65535 Set metric of this interface p 229 ip addr Specify the IP address the request is for IP ADDR p 241 area Specify an OSPF area p 221 area id Single integer or IP address style dotted decimal OSPF AREA ID p 222 backbone The backbone area the same as 0...

Page 207: ...tive or passive mode when enabled p 252 link keepalive Configure UDLD on port s p 248 vlan Set vlan id for tagged UDLD control packets VLAN ID p 282 mdix mode mdi mdix autoMDIX Set port MDI MDIX mode default auto p 250 monitor Define either the port is to be monitored or not p 252 all In Out Both Monitor all traffic p 219 mirror Mirror destination p 251 mirror_session_name Mirror destination name ...

Page 208: ... 258 icmp Set limits for ICMP traffic only p 237 kbps 0 to 10000000 Specify kilobits per second limit of allowed ICMP traffic values should be at least 13Kbps or max length ICMP packets will fail p 246 percent 0 to 100 Specify limit as percent of inbound or outbound traffic p 258 mcast Set limits for multicast traffic p 249 in Set limits for inbound multicast trafic p 238 percent 0 to 100 p 258 se...

Page 209: ... Mirror destination p 251 mirror_session_name Mirror destination name p 251 monitor_mirror_session_id 1 to 4 Mirror destination number p 254 name Set the VLAN s name ASCII STR p 254 protocol Set a predefined protocol for the current VLAN p 266 protocol group Enter a list of protocols for the current VLAN delimited by commas ASCII STR p 267 protocols IPX IPv4 IPv6 Set a predefined protocol for the ...

Page 210: ... IP Multicast Group Protocol IGMP feature on a VLAN p 238 auto Instruct the device to monitor incoming multicast traffic on the specified ports this is the default behavior ethernet PORT LIST p 225 blocked Instruct the device to drop incoming multicast packets received on the specified ports ethernet PORT LIST p 227 fastleave Enables or disables IGMP Fast Leaves ethernet PORT LIST p 233 forcedfast...

Page 211: ... this router as a designated router p 265 retransmit interval 1 to 3600 Set retransmit interval in seconds the default is 5 p 273 transit delay 1 to 3600 Set transit delay in seconds the default is 1 p 279 area Specify an OSPF area p 221 area id Single integer or IP address style dotted decimal OSPF AREA ID p 222 backbone The backbone area the same as 0 0 0 0 p 226 authentication Disable authentic...

Page 212: ...p 247 max graft retries 1 to 10 Set the maximum number of times this router will resend a Graft on this interface p 249 override interval 500 to 6000 Set the value inserted into the Override Interval field of a LAN Prune Delay option on this interface p 258 propagation delay 250 to 2000 Set the value inserted into the LAN Prune Delay field of a LAN Prune Delay option on this interface p 266 ttl th...

Page 213: ... metric 1 to 15 Set metric for this interface p 250 poison reverse Enable disable poison reverse on this interface p 262 receive V1 only V2 only V1 or V2 Define RIP version for incoming packets p 273 rip compatible V1 only V2 only V1 or V2 Define RIP version for incoming and outgoing packets p 274 send disabled V1 only V1 compatible V2 Define RIP version for outgoing packets p 275 metric 1 to 15 S...

Page 214: ...hbor Discovery to discover each other s presence link layer addresses routers and to maintain reachability information about the paths to active neighbors p 255 ns interval Configures the neighbor discovery time between neighbor solicitation requests sent for an unresolved destination or between duplicate address detection neighbor solicitation requests p 256 number 1000 to 3600000 Configures the ...

Page 215: ...emptive delay timer for the virtual router instance p 264 preempt mode Enable disable preempt mode for the virtual router instance p 264 primary ip address Specify IP address the virtual router instance will use as a source in VRRP advertisement messages p 264 ip addr Specify IP address IP ADDR p 241 lowest Dynamically determine lowest IP address p 249 priority 1 to 255 Configure priority for the ...

Page 216: ...74 mld p 251 disable p 231 send p 275 mode p 252 domain name p 231 service policy p 275 monitor p 252 dr priority p 231 source lockdown p 276 monitor_mirror_session_id p 254 dscp p 231 enable p 232 speed duplex p 276 mroute p 254 eui 64 p 232 src ip p 277 name p 254 failback p 233 svlan p 277 nbr timeout p 255 failover p 233 tagged p 278 nd p 255 fastleave p 233 timer interval p 278 no default p 2...

Page 217: ... vlan Match packets that originate within this VLAN connection rate filter Manage new conection rates originating in this VLAN Description Apply the specified access control list on this VLAN interface The ACL can match either packets that are routed from this VLAN to another VLAN packets that will be routed from another VLAN to this VLAN packets that originate on this VLAN or it can manage new co...

Page 218: ...onfiguration is applied can be specified implicitly by preceding the phrase ip address with the interface loopback num keyword and argument It can also be called explicitly when called directly from a Loopback context In the latter case the command affects the interface identified by the context Parameters o IP ADDR Assign an IP address to the loopback interface Multiple addresses may be configure...

Page 219: ... the context Parameters o autoconfig Enables automatic address configuration of IPv6 addresses using stateless configuration of an interface o dhcp The switch attempts to get its configuration from a DHCPv6 server o IPv6 ADDR PREFIX LEN Assign an IPv6 address to the switch or VLAN The IPv6 ADDR PREFIX LEN may be specified in four ways using the following syntax ipv6 address 1234 abcd 5678 40 ipv6 ...

Page 220: ...esents an IPv6 interface having its own unique configuration The VLAN for which the configuration is applied can be specified implicitly by preceding the phrase ipv6 address with the vlan VLAN ID keyword and argument It can also be called explicitly when called directly from a VLAN context In the latter case the command affects the VLAN identified by the context Parameters o autoconfig Enables aut...

Page 221: ...Send advertisements to broadcast address advertise interval interface vlan VLAN ID vrrp vrid 1 to 255 advertise interval 1 to 255 Usage vrrp vrid VRID advertise interval 1 255 Description Set time interval in seconds between sending VRRP advertisement messages The default value is one second Range 1 to 255 all no interface ETHERNET PORT LIST monitor all In Out Both Monitor all traffic Supported Va...

Page 222: ...econds the default is 1 p 279 no interface vlan VLAN ID ip rip all Process the request for all IP addresses Next Available Options authentication type none text Set authentication type used on this interface p 224 authentication key Set RIP authentication key maximum 16 characters p 223 metric 1 to 15 Set metric for this interface p 250 poison reverse Enable disable poison reverse on this interfac...

Page 223: ...red device This can be overriden by manually specifying how much power this port should be allocated by either its class or a user defined value Supported Values usage class value any interface vlan VLAN ID ip pim dense ip addr any Dynamically determine IP address interface vlan VLAN ID ip pim sparse ip addr any Dynamically determine IP address anycast no interface vlan VLAN ID ipv6 address IPV6 A...

Page 224: ...n OSPF area Next Available Options area id Single integer or IP address style dotted decimal OSPF AREA ID p 222 backbone The backbone area the same as 0 0 0 0 p 226 interface vlan VLAN ID ip ospf all area Specify an OSPF area Next Available Options area id Single integer or IP address style dotted decimal OSPF AREA ID p 222 backbone The backbone area the same as 0 0 0 0 p 226 area id interface loo...

Page 225: ...uthentication no interface vlan VLAN ID ip ospf IP ADDR authentication Disable authentication no interface vlan VLAN ID ip ospf all authentication Disable authentication authentication key interface vlan VLAN ID ip ospf authentication key Set simple authentication method and key Next Available Option authentication key OSPF authentication key maximum 8 characters OCTET STR p 223 interface vlan VLA...

Page 226: ...ey text Set RIP authentication key maximum 16 characters OCTET STR p 225 no interface vlan VLAN ID ip rip all authentication key Set RIP authentication key maximum 16 characters Next Available Option auth key text Set RIP authentication key maximum 16 characters OCTET STR p 225 authentication type interface vlan VLAN ID ip rip authentication type none text Set authentication type used on this inte...

Page 227: ...ETHERNET PORT LIST Usage ip igmp auto ethernet PORT LIST Description Instruct the device to monitor incoming multicast traffic on the specified ports this is the default behavior This feature is configured on a per VLAN basis interface vlan VLAN ID ipv6 mld auto ETHERNET PORT LIST Usage vlan vid ipv6 mld auto port list Description Instruct the device to monitor incoming multicast traffic on the sp...

Page 228: ...100 0 100 0 100 0 100 no bandwidth min output Description Enable disable and configure guaranteed minimum bandwidth settings for outgoing traffic on the port s By default guaranteed minimum bandwidth is configured with a recommended profile for outgoing traffic that prevents higher priority queues from starving lower priority traffic When the feature is enabled the value for each of the queues ind...

Page 229: ...ic p 238 binary range interface ETHERNET PORT LIST qos dscp 0 to 63 Specify the DSCP code point in binary Range 0 to 63 interface vlan VLAN ID qos dscp 0 to 63 Specify the DSCP code point in binary Range 0 to 63 interface svlan VLAN ID qos dscp 0 to 63 Specify the DSCP code point in binary Range 0 to 63 blocked interface vlan VLAN ID ip igmp blocked ETHERNET PORT LIST Usage ip igmp blocked etherne...

Page 230: ... broadcast throughput for a 100 Mbps port This is to allow finer resolution of control for high speed links This is an Interface context command It can be called directly from the interface context or follow the interface ethernet PORT LIST command Range 0 to 99 chain name interface vlan VLAN ID ip ospf md5 auth key chain CHAIN NAME Specify key chain to use for MD5 authentication interface vlan VL...

Page 231: ...e connection rate filter p 281 cost interface loopback 0 to 7 ip ospf IP ADDR cost 1 to 65535 Set metric of this interface Range 1 to 65535 interface loopback 0 to 7 ip ospf all cost 1 to 65535 Set metric of this interface Range 1 to 65535 interface vlan VLAN ID ip ospf cost 1 to 65535 Set metric of this interface Range 1 to 65535 interface vlan VLAN ID ip ospf IP ADDR cost 1 to 65535 Set metric o...

Page 232: ...formation from DHCPv6 server p 235 dhcp bootp interface vlan VLAN ID ip address dhcp bootp Configure the interface to use DHCP Bootp server to acquire parameters interface svlan VLAN ID ip address dhcp bootp Configure the interface to use DHCP Bootp server to acquire parameters dhcp snooping interface ETHERNET PORT LIST dhcp snooping Usage no dhcp snooping trust Description Configure the port as t...

Page 233: ...NET PORT LIST disable Usage disable Description Disable port s This is an Interface context command It can be called directly from the interface context or follow the interface ethernet PORT LIST command domain name no interface vlan VLAN ID igmp proxy END OF PRINTABLE Specify the domain name to associate disassociate with the VLAN Supported Values END OF PRINTABLE dr priority interface vlan VLAN ...

Page 234: ...ecify the DSCP code point in binary BINARY p 227 well defined af11 af12 af13 Define mapping between a DSCP Differentiated Services Codepoint value and an 802 p 285 enable interface ETHERNET PORT LIST enable Usage enable Description Enable port s This is an Interface context command It can be called directly from the interface context or follow the interface ethernet PORT LIST command no interface ...

Page 235: ...ption Enables or disables IGMP Fast Leaves When enabled as soon as an IGMP Group Leave has been received on a non cascaded port the switch stops forwarding multicast traffic for that group to that port Does not apply to cascaded ports see ip igmp forcedfastleave When disabled or when the port is cascaded the regular IGMP leave time is used up to 10 seconds when the switch is not the IGMP Querier T...

Page 236: ...ORT LIST Usage no ip igmp forcedfastleave ethernet PORT LIST Description When enabled this feature forces IGMP Fast Leaves to occur even when the port is cascaded See ip igmp fastleave for more information The default behavior is for IGMP Forced FastLeaves to be disabled This feature is configured for ports on a per VLAN basis no interface vlan VLAN ID ipv6 mld forcedfastleave ETHERNET PORT LIST U...

Page 237: ...v6 address dhcp full Obtain IPv6 address Configuration information from DHCPv6 server Next Available Option rapid commit Obtain IPv6 address quickly from DHCPv6 server p 271 no interface svlan VLAN ID ipv6 address dhcp full Obtain IPv6 address Configuration information from DHCPv6 server Next Available Option rapid commit Obtain IPv6 address quickly from DHCPv6 server p 271 graft retry interval in...

Page 238: ... value is 5 seconds Range 0 to 5 hello interval interface vlan VLAN ID ip ospf hello interval 1 to 65535 Set hello interval in seconds the default is 10 Range 1 to 65535 interface vlan VLAN ID ip ospf IP ADDR hello interval 1 to 65535 Set hello interval in seconds the default is 10 Range 1 to 65535 interface vlan VLAN ID ip ospf all hello interval 1 to 65535 Set hello interval in seconds the defau...

Page 239: ...4 to 9000 Usage no ip irdp holdtime 4 9000 Description Set the lifetime in seconds of the router advertisements sent on this interface Must be no less than the maximum time allowed between sending unsolicited router advertisements Range 4 to 9000 host interface vlan VLAN ID connection rate filter unblock host IP ADDR Match packets from the specified IP address interface svlan VLAN ID connection ra...

Page 240: ...drop incoming multicast packets received on the specified ports ethernet PORT LIST p 227 fastleave Enables or disables IGMP Fast Leaves ethernet PORT LIST p 233 forcedfastleave When enabled this feature forces IGMP Fast Leaves to occur even when the port is cascaded ethernet PORT LIST p 234 forward Instruct the device to forward incoming multicast packets received on the specified ports ethernet P...

Page 241: ...c Next Available Option percent 0 to 100 p 258 no interface ETHERNET PORT LIST ipv6 access group ACCESS GROUP in Match inbound packets no interface ETHERNET PORT LIST service policy SERVICE POLICY in Apply policy on inbound packets no interface vlan VLAN ID service policy SERVICE POLICY in Apply policy on inbound packets integer range interface ETHERNET PORT LIST qos dscp 0 to 63 Specify the DSCP ...

Page 242: ... ID must be defined before it can be applied Connection rate filter ACLs cannot be applied on this INTERFACE list Next Available Options access group Apply the specified access control list to inbound packets on this INTERFACE list ASCII STR p 214 source lockdown Enable disable IP source lockdown in global configuration mode p 276 no interface loopback 0 to 7 ip Usage no ip Description Configure v...

Page 243: ...covery Protocol IRDP p 246 ospf Enable disable configure Open Shortest Path First OSPF protocol on the VLAN interface p 256 rip Enable disable configure Routing Internet Protocol RIP on the VLAN interface p 274 pim dense Enable disable configure PIM DM protocol on the VLAN interface p 259 pim sparse Enable disable configure PIM SM protocol on the VLAN interface p 259 mroute Configure IP Multicast ...

Page 244: ...e p 229 dead interval 1 to 65535 Set dead interval in seconds the default is 40 p 229 hello interval 1 to 65535 Set hello interval in seconds the default is 10 p 236 priority 0 to 255 Set priority of this router as a designated router p 265 retransmit interval 1 to 3600 Set retransmit interval in seconds the default is 5 p 273 transit delay 1 to 3600 Set transit delay in seconds the default is 1 p...

Page 245: ...existing VLAN s IP addresses or use any option to dynamically determine it from the VLAN s current IP configuration The default is any This command also enable the PIM SM protocol on the VLAN interface Next Available Options ip addr Specify IP address IP ADDR p 241 any Dynamically determine IP address p 221 interface vlan VLAN ID ip pim sparse ip addr IP ADDR Specify IP address no interface vlan V...

Page 246: ...n the interface ASCII STR p 214 interface vlan VLAN ID ipv6 Usage no ipv6 Description Configure various IP parameters for the VLAN The ipv6 command must be followed by a feature specific keyword Use ipv6 to get a list of all possible options This is a VLAN context command It can be called directly from the VLAN context or follow the vlan VLAN ID command Next Available Options enable Enable IPv6 on...

Page 247: ...dress IPV6 ADDR Configure a link local IPv6 address Next Available Option link local Configure a link local IPv6 address p 248 ipv6 addr mask no interface vlan VLAN ID ipv6 address IPV6 ADDR PREFIX LEN Configure IPv6 address represented in CIDR notation Next Available Options anycast Address that is assigned to a set of interfaces that typically belong to different nodes p 221 eui 64 An IPv6 EUI 6...

Page 248: ... to 1800 Set the minimum time in seconds allowed between sending unsolicited router advertisements p 250 preference The preferability of the router as a default router relative to the other routers on the same subnet p 264 join timer interface ETHERNET PORT LIST gvrp join timer 20 to 75 Set join timer value centiseconds default 20 Range 20 to 75 jumbo no interface vlan VLAN ID jumbo Usage no jumbo...

Page 249: ...When LACP is enabled and active the port will both send LACP packets and listen to them When LACP is enabled and passive the port will send LACP packets only if it is spoken to When LACP is disabled the port will ignore LACP packets If lacp command is issued without a mode parameter active is assumed With no lacp the mode parameter is not allowed This is an Interface context command It can be call...

Page 250: ...ets VLAN ID p 282 link local no interface vlan VLAN ID ipv6 address IPV6 ADDR link local Configure a link local IPv6 address no interface svlan VLAN ID ipv6 address IPV6 ADDR link local Configure a link local IPv6 address local proxy arp no interface vlan VLAN ID ip local proxy arp Usage no ip local proxy arp Description Enable disable local proxy ARP This is a VLAN context command It can be calle...

Page 251: ...c Address timeout interval p 240 maxadvertinterval interface vlan VLAN ID ip irdp maxadvertinterval 4 to 1800 Usage no ip irdp maxadvertinterval 4 1800 Description Set the maximum time in seconds allowed between sending unsolicited router advertisements Range 4 to 1800 max graft retries interface vlan VLAN ID ip pim dense max graft retries 1 to 10 Usage ip pim dense max graft retries 1 10 Descript...

Page 252: ...ode interface ETHERNET PORT LIST mdix mode mdi mdix autoMDIX Set port MDI MDIX mode default auto Supported Values mdi Configures port for connecting a PC with a crossover cable mdix Configures port for connecting a PC with a straight through cable autoMDIX Configures port for automatic detection of the cable metric interface vlan VLAN ID ip rip metric 1 to 15 Set metric for this interface Range 1 ...

Page 253: ...Both mirror Mirror destination Next Available Options monitor_mirror_session_id 1 to 4 Mirror destination number p 254 mirror_session_name Mirror destination name p 251 mirror_session_name no interface ETHERNET PORT LIST monitor all In Out Both mirror Mirror destination name no interface vlan VLAN ID monitor all In Out Both mirror Mirror destination name no interface svlan VLAN ID monitor all In O...

Page 254: ...lacp active passive Description Define whether LACP is enabled on the port and whether it is in active or passive mode when enabled When LACP is enabled and active the port will both send LACP packets and listen to them When LACP is enabled and passive the port will send LACP packets only if it is spoken to When LACP is disabled the port will ignore LACP packets If lacp command is issued without a...

Page 255: ...N context command It can be called directly from the VLAN context or follow the vlan VLAN ID command Parameters o 1 4 Mirror destination number o NAME STR Friendly name associated with the mirror destination number o ACL NAME Standard or Extended Access Control List number o in out both direction of the traffic to be monitored Next Available Option all In Out Both Monitor all traffic p 219 no inte...

Page 256: ... to 4 mroute interface vlan VLAN ID ip mroute Usage ip mroute Description Configure IP Multicast Routing parameters on the VLAN interface The command must be followed by a parameter Use ip mroute to get a list of all possible parameters This is a VLAN context command It can be called directly from the VLAN context or follow the vlan VLAN ID command Next Available Option ttl threshold 0 to 255 Set ...

Page 257: ... nd no interface vlan VLAN ID ipv6 nd Usage no ipv6 nd parameter Description IPv6 nodes on the same link use Neighbor Discovery to discover each other s presence link layer addresses routers and to maintain reachability information about the paths to active neighbors parameter Configure various Neighbors Discovery parameters o ns interval o reachable time Next Available Options ns interval Configu...

Page 258: ...ion requests p 256 number interface vlan VLAN ID ip irdp preference 2147483647 to 2147483647 The router preferability number Higher values are more preferable Range 2147483647 to 2147483647 interface vlan VLAN ID ipv6 nd ns interval 1000 to 3600000 Usage no ipv6 nd ns interval milliseconds Description Configures the neighbor discovery time between neighbor solicitation requests sent for an unresol...

Page 259: ...21 authentication key Set simple authentication method and key p 223 authentication Disable authentication p 223 md5 auth key chain Set MD5 authentication method and key chain p 250 cost 1 to 65535 Set metric of this interface p 229 dead interval 1 to 65535 Set dead interval in seconds the default is 40 p 229 hello interval 1 to 65535 Set hello interval in seconds the default is 10 p 236 priority ...

Page 260: ...rval 500 6000 Description Set the value inserted into the Override Interval field of a LAN Prune Delay option on this interface Default is 2500 milliseconds Range 500 to 6000 owner interface vlan VLAN ID vrrp vrid 1 to 255 owner Usage vrrp vrid VRID owner Description Designate the virtual router instance as an Owner Master There is no default value passive no interface vlan VLAN ID ip ospf passive...

Page 261: ...n on this interface p 247 hello interval 5 to 300 Set the frequency at which PIM Hello messages are transmitted on this interface p 236 hello delay 0 to 5 Set the maximum time before a triggered PIM Hello message is transmitted on this interface p 236 graft retry interval 1 to 10 Set the interval a PIM router waits for a Graft Ack before resending a Graft on this interface p 235 max graft retries ...

Page 262: ... the priority value to use on the interface in the Designated Router election process p 231 nbr timeout 60 to 8000 Set the neighbour loss time interval for this interface p 255 poe_lldp_detect interface ETHERNET PORT LIST poe lldp detect disabled enabled Usage poe lldp detect disabled enabled Description Enabling this feature causes the port to allocate power based on the link partner s capabiliti...

Page 263: ...er s capabilities via LLDP By default poe information detected though LLDP are ignored as not all PoE devices properly support LLDP Next Available Option poe_lldp_detect disabled enabled Enabling this feature causes the port to allocate power based on the link partner s capabilities via LLDP p 260 poe value interface ETHERNET PORT LIST poe value Usage poe value 1 17 Description Maximum PoE allocat...

Page 264: ...und packets on this INTERFACE list p 240 broadcast limit 0 to 99 Set a broadcast traffic percentage limit p 228 dhcp snooping Configure the port as trusted or untrusted p 230 disable Disable port s p 231 enable Enable port s p 232 flow control Enable disable flow control on the port s p 233 gvrp Set the GVRP timers on the port hundredths of a second p 235 lacp Define whether LACP is enabled on the...

Page 265: ...tbios dgm NetBIOS Datagram Service 138 radius Remote Authentication Dial In User Service 1812 radius old Remote Authentication Dial In User Service 1645 rip Routing Information Protocol 520 snmp Simple Network Management Protocol 161 snmp trap Simple Network Management Protocol 162 tftp Trivial File Transfer Protocol 69 timep Time Protocol 37 port num no interface vlan VLAN ID ip forward protocol ...

Page 266: ...mode Description Enable disable preempt mode for the virtual router instance The default value is enabled preference interface vlan VLAN ID ip irdp preference Usage no ip irdp preference no default 2147483647 2147483647 Description The preferability of the router as a default router relative to the other routers on the same subnet Higher values are more preferable Next Available Options number 214...

Page 267: ...y is low Note Lower numbered ports have precedence over higher numbered ports of the same priority Supported Values critical high low interface ETHERNET PORT LIST qos priority 0 1 2 Specify priority to use Supported Values 0 1 2 3 4 5 6 7 interface vlan VLAN ID ip ospf priority 0 to 255 Set priority of this router as a designated router Range 0 to 255 interface vlan VLAN ID ip ospf IP ADDR priorit...

Page 268: ... into the LAN Prune Delay field of a LAN Prune Delay option on this interface Default is 500 milliseconds Range 250 to 2000 interface vlan VLAN ID ip pim sparse propagation delay 250 to 2000 Usage ip pim sparse propagation delay 250 2000 Description Set the value inserted into the LAN Prune Delay field of a LAN Prune Delay option on this interface Default is 500 milliseconds Range 250 to 2000 prot...

Page 269: ...l for the current VLAN Supported Values IPX IPX Protocol Group IPv4 IP version 4 Protocol Group IPv6 IP version 6 Protocol Group ARP Address Resolution Protocol Group Appletalk Appletalk Protocol Group SNA System Network Architecture Protocol Group NetBEUI Network BIOS Enhanced User Interface Protocol Group no interface svlan VLAN ID protocol IPX IPv4 IPv6 Set a predefined protocol for the current...

Page 270: ...pe Configure qinq port type p 263 qos no interface ETHERNET PORT LIST qos Usage no qos dscp 0 63 af11 af12 af13 af21 af22 af23 af31 af32 af33 af41 af42 af43 ef cs0 cs7 000000 000001 111111 priority 0 7 Description Set port based priority The dscp or priority must be specified if no is not used Using no configures the device not to apply a source port priority to this port s packets This is an Inte...

Page 271: ...ge no ip igmp querier interval seconds Description Specify querier non querier capability for the VLAN IGMP queries are not sent when the mode is disabled When enabled the device cannot become Querier for the subnet unless the VLAN has an IP Address use the show ip command to determine this Each subnet must have at least one IGMP Querier capable device in order for IGMP to function properly The qu...

Page 272: ...utput 0 to 100 0 to 100 0 to 100 Specify min bandwidth percentage for queue three outgoing traffic Range 0 to 100 Next Available Option queue4 0 to 100 Specify min bandwidth percentage for queue four outgoing traffic p 270 queue4 interface ETHERNET PORT LIST bandwidth min output 0 to 100 0 to 100 0 to 100 0 to 100 Specify min bandwidth percentage for queue four outgoing traffic Range 0 to 100 Next...

Page 273: ...e 0 to 100 Next Available Option queue8 0 to 100 Specify min bandwidth percentage for queue eight outgoing traffic p 271 queue8 interface ETHERNET PORT LIST bandwidth min output 0 to 100 0 to 100 0 to 100 0 to 100 0 to 100 0 to 100 0 to 100 0 to 100 Specify min bandwidth percentage for queue eight outgoing traffic Range 0 to 100 rapid commit no interface vlan VLAN ID ipv6 address dhcp full rapid c...

Page 274: ...connections i e at the network edge It is not recommended for use on links to servers routers switches or the network backbone or core Rate limiting all traffic on such links can interfere with important network functions ICMP rate limiting is primarily used for throttling worm or virus like behavior and should NOT be used to remove all ICMP traffic from the network as this protocol is necessary f...

Page 275: ...o not accept RIP updates interface vlan VLAN ID ip rip IP ADDR receive V1 only V2 only V1 or V2 Define RIP version for incoming packets Supported Values V1 only Accept RIP version 1 updates only V2 only Accept RIP version 2 updates only V1 or V2 Accept both RIP 1 and RIP 2 updates disabled Do not accept RIP updates interface vlan VLAN ID ip rip all receive V1 only V2 only V1 or V2 Define RIP versi...

Page 276: ...n this interface p 262 receive V1 only V2 only V1 or V2 Define RIP version for incoming packets p 273 send disabled V1 only V1 compatible V2 Define RIP version for outgoing packets p 275 rip compatible V1 only V2 only V1 or V2 Define RIP version for incoming and outgoing packets p 274 ip addr Specify the IP address the request is for IP ADDR p 241 all Process the request for all IP addresses p 219...

Page 277: ...umption V2 only Send RIP version 2 updates only interface vlan VLAN ID ip rip all send disabled V1 only V1 compatible V2 Define RIP version for outgoing packets Supported Values disabled Do not send RIP updates V1 only Send RIP version 1 updates only V1 compatible V2 Send RIP 2 updates using RFC 1058 route subsumption V2 only Send RIP version 2 updates only service policy no interface ETHERNET POR...

Page 278: ... according to the IEEE 802 3 Ethernet standards 10 full 10 Mbps full duplex The port simultaneously receives and transmits data The device attached to the port must support full duplex operation For 10 100TX Note Make sure that the device attached to the port is configured the same as the selection you make here auto default The port automatically selects the network speed 10 or 100 Mbps and that ...

Page 279: ...otiation for duplex mode auto 1000 1000 Mbps use Auto Negotiation for duplex mode auto 10 100 10 or 100 Mbps and half or full duplex using Auto Negotiation src ip interface vlan VLAN ID connection rate filter unblock IP ADDR mask LENGTH Match packets from the specified subnet interface svlan VLAN ID connection rate filter unblock IP ADDR mask LENGTH Match packets from the specified subnet svlan no...

Page 280: ...u to separate prioritize and authenticate voice traffic moving through your network p 283 jumbo Labels this VLAN as a Jumbo VLAN allowing you to pass packets up to 9220 bytes in size p 246 tagged no interface vlan VLAN ID tagged ETHERNET PORT LIST Usage no tagged ethernet PORT LIST Description Assign ports to current VLAN as tagged This is a VLAN context command It can be called directly from the ...

Page 281: ...n no is specified the interfaces are marked as untrusted The default port state is untrusted Parameters o PORT LIST Port list on which to configure trust status no interface ETHERNET PORT LIST arp protect trust ttl threshold interface vlan VLAN ID ip pim dense ttl threshold 0 to 255 Usage ip pim dense ttl threshold 0 255 Description Set the Time To Live in a PIM DM State Refresh message at which i...

Page 282: ...10GbE LR 1000T SFP 100GEN 1000GEN 10GbE GEN 1000X 100BX D 100BX U 1000BX D 1000BX U 10GbE LRM 10GSFP SR 10GSFP LR 10G LRM 10G DAC 10G DA1 10G DA2 10G DA3 10G DA5 10G DA7 10G DA10 10G DA15 10G DA20 10GbE T 10GbE TSH 10GbE TLH 10GbE STK udp no interface vlan VLAN ID ip forward protocol udp 280 2009 Hewlett Packard Development Company L P interface Command Line Interface Reference Guide ...

Page 283: ...te filter Next Available Options all Resets all previously blocked by the connection rate filter p 219 host Match packets from the specified IP address IP ADDR p 237 src ip Match packets from the specified subnet IP ADDR mask LENGTH p 277 unknown vlans interface ETHERNET PORT LIST unknown vlans Learn Block Disable Usage unknown vlans learn block disable Description Configure GVRP on the port s If ...

Page 284: ... vlan VLAN ID Set vlan id for tagged UDLD control packets no interface vlan VLAN ID Usage no vlan VLAN ID Description Add delete edit VLAN configuration or enter a VLAN context If an existing VLAN ID is specified you are put into the context for that VLAN and can then execute commands for that VLAN If a new VLAN ID is specified the new VLAN is added with the VLAN ID and you are put into the contex...

Page 285: ...v mac address Associates a L3 mac address with a VLAN p 243 service policy Apply the QoS Mirror policy on the vlan ASCII STR p 275 no interface vlan VLAN ID ipv6 access group ACCESS GROUP vlan VLAN acl no interface vlan VLAN ID vrrp vrid 1 to 255 track vlan Usage no vrrp vrid VRID track vlan VLAN ID RANGE Description Enable disable tracking of VLANs for VR Multiple VLAN ID RANGE can be specified N...

Page 286: ...l use as a source in VRRP advertisement messages p 264 advertise interval 1 to 255 Set time interval in seconds between sending VRRP advertisement messages p 219 priority 1 to 255 Configure priority for the virtual router instance p 265 preempt mode Enable disable preempt mode for the virtual router instance p 264 preempt delay time 1 to 600 Enable the pre emptive delay timer for the virtual route...

Page 287: ...y no qos dscp map codepoint name will remove the name associated with this policy but not the policy priority Certain codepoints may have a default associated 802 1p priority as part of the IETF standards for Assured Forwarding and Expedited Forwarding These are automatically configured as follows DiffServ 802 1p Codepoint Value IETF Standard Designation 001010 1 Assured Forwarding AF11 001100 1 A...

Page 288: ...the user has also configured qos type of service diff services no qos dscp map codepoint will remove the settings for the specified codepoint from the running configuration The priority is set to no override and the name is deleted the priority and name can only be removed if no QoS feature is configured to use this DSCP Policy no qos dscp map codepoint name will remove the name associated with th...

Page 289: ...31 af32 af33 af41 af42 af43 ef cs0 cs1 cs2 cs3 cs4 cs5 cs6 cs7 interface svlan VLAN ID qos dscp af11 af12 af13 Usage no qos dscp map 0 1 63 af11 af12 af13 af21 af22 af23 af31 af32 af33 af41 af42 af43 ef cs0 cs7 000000 000001 111111 priority 0 7 no override name str Description Define mapping between a DSCP Differentiated Services Codepoint value and an 802 1p priority The mapping is used to assign...

Page 290: ...red Forwarding AF11 001100 1 Assured Forwarding AF12 001110 2 Assured Forwarding AF13 010010 0 Assured Forwarding AF21 010100 0 Assured Forwarding AF22 010110 3 Assured Forwarding AF23 011010 4 Assured Forwarding AF31 011100 4 Assured Forwarding AF32 011110 5 Assured Forwarding AF33 100010 6 Assured Forwarding AF41 100100 6 Assured Forwarding AF42 100110 7 Assured Forwarding AF43 101110 7 Expedite...

Page 291: ...ID vrrp vrid 1 to 255 failover with monitoring Usage vrrp vrid VRID failover with monitoring Description Trigger VR to failover and continue montior of master VR 289 2009 Hewlett Packard Development Company L P interface Command Line Interface Reference Guide ...

Page 292: ...meters for communication within an IP network p 294 dhcp bootp Configure the interface to use DHCP Bootp server to acquire parameters p 297 ip addr Interface IP address mask IP ADDR MASK LENGTH p 302 no ip arp age Modify Address Resolution Protocol ARP table entry timeout specified in minutes p 294 infinite Causes the ARP timeout to be set to 0 indicating an infinite timeout period p 301 timeout 1...

Page 293: ...disable the high priority forwarding of traffic for subscribed IP Multicast groups p 300 querier Specify querier non querier capability for the VLAN p 306 interval 5 to 300 Sets the interval in seconds between IGMP queries default 125 p 301 no ip irdp Enable disable ICMP Router Discovery Protocol IRDP p 303 no ip load sharing Specify the maximum number of equal cost IP load sharing paths p 303 loa...

Page 294: ... Specify the maximum length of time seconds permitted for protocol negotiation and authentication NUMBER p 311 no ip timep Configure the method to acquire the Timep server address p 311 dhcp Use DHCP to acquire Timep server address p 297 interval 1 to 9999 Specify how often in minutes the switch tries to get the current time p 301 manual Manually configure the Timep server address p 304 server Tim...

Page 295: ...er Operator Define an access level desired Supported Values Manager Operator access list no ip access list Usage no ip access list extended standard conection rate filter ACL ID resequence ACL ID start seq no increment Description Enter the named acl context for the specified access control list Parameters o extended standard conection rate filter ACL ID Enter the named acl context for the specifi...

Page 296: ...2 32 36 87 24 ip address 192 32 36 87 255 255 255 0 Both of the statements above would have the same effect Next Available Options ip addr Interface IP address mask IP ADDR MASK LENGTH p 302 dhcp bootp Configure the interface to use DHCP Bootp server to acquire parameters p 297 addrmask no ip icmp addrmask Usage no ip icmp addrmask Description Enable disable address mask replies arp age no ip arp ...

Page 297: ...ows you to define which portions of the listed IP address need to be matched by an incoming request The default mask is 255 255 255 255 For example with an authorized address of 10 8 11 1 and a mask of 255 255 255 255 only access from 10 8 11 1 is allowed With a mask of 255 255 255 0 access from any IP address with 10 8 11 x is allowed o access manager operator A designation of the management capa...

Page 298: ...rnet PORT LIST Description Instruct the device to drop incoming multicast packets received on the specified ports This feature is configured on a per VLAN basis broadcast request no ip icmp echo broadcast request Usage no ip icmp echo broadcast request Description Enable disable echo replies to broadcast echo requests Supported Values Min Max burst normal no ip icmp burst normal 0 to 1000000 Usage...

Page 299: ... will be used when routing is not enabled on the switch The IP ADDR must be specified if the command is not preceded by no Preceding the command with no deletes the default gateway address The no form of this command does not take effect on default gateway address obtained via dhcp Next Available Option ipaddr IPv4 address of the default gateway IP ADDR p 302 dhcp ip timep dhcp Use DHCP to acquire...

Page 300: ...ociate with this static route Range 1 to 255 dns no ip dns Usage no ip dns domain name domain name no ip dns server address priority PRIORITY IP ADDR IPV6 ADDR Description Configure the DNS Domain Name System default domain suffix and the name server IP address for translation of hostnames to IP addresses No additional parameters are required when no is specified Parameters o domain name domain na...

Page 301: ... ETHERNET PORT LIST Usage no ip igmp fastleave ethernet PORT LIST Description Enables or disables IGMP Fast Leaves When enabled as soon as an IGMP Group Leave has been received on a non cascaded port the switch stops forwarding multicast traffic for that group to that port Does not apply to cascaded ports see ip igmp forcedfastleave When disabled or when the port is cascaded the regular IGMP leave...

Page 302: ...ge no ip icmp Description Configure ICMP Rate Limiting capacity Use ip icmp to get a list of all possible configurable parameters Next Available Options addrmask Enable disable address mask replies p 294 burst normal 0 to 1000000 The maximum number of icmp replies to send per second p 296 echo Enable disable echo replies to broadcast echo requests p 299 redirects Enable disable redirect error mess...

Page 303: ...LIST p 299 forward Instruct the device to forward incoming multicast packets received on the specified ports ethernet PORT LIST p 300 increment ip access list resequence NAME 1 to 2147483647 1 to 2147483646 Specify the increment Range 1 to 2147483646 infinite ip arp age infinite Causes the ARP timeout to be set to 0 indicating an infinite timeout period interface ip source binding VLAN ID IP ADDR ...

Page 304: ... the router id ip addr no ip address IP ADDR MASK LENGTH Interface IP address mask ip route IP ADDR MASK LENGTH Specify IP address and mask of the route destination Next Available Options ip addr Specify gateway IP address IP ADDR p 302 vlan Specify the destination VLAN VLAN ID p 312 reject Specify that packets are discarded and ICMP error is returned to sender p 306 blackhole Specify that packets...

Page 305: ...irdp Usage no ip irdp Description Enable disable ICMP Router Discovery Protocol IRDP To configure IRDP execute no ip irdp from the VLAN context for the VLAN on which you wish to configure IRDP keystring ip ssh public key manager operator KEYSTRING ASCII formatted public key load sharing no ip load sharing Usage ip load sharing 2 4 no ip load sharing Description Specify the maximum number of equal ...

Page 306: ...ual Manually configure the Timep server address Next Available Options server Timep server IPv4 address IP ADDR p 308 serverV6 Timep server IPv6 address IPV6 ADDR p 308 multicast routing no ip multicast routing Usage no ip multicast routing Description Enable disable IP multicast routing on the device name no ip access list extended NAME Specify name of Access Control List to configure no ip acces...

Page 307: ...t Specify the TCP port on which the daemon should listen for SSH connections Next Available Options IP PORT Specify the TCP port number on which the daemon should listen TCP UDP PORT p 303 default Specify that the daemon should listen on the default TCP port 22 p 297 portlist no ip source lockdown ETHERNET PORT LIST Specify the ports on which ip source lockdown need to be implemented preserve ip p...

Page 308: ...his Each subnet must have at least one IGMP Querier capable device in order for IGMP to function properly The querier interval setting modifies the time in seconds between IGMP queries Next Available Option interval 5 to 300 Sets the interval in seconds between IGMP queries default 125 p 301 redirects no ip icmp redirects Usage no ip icmp redirects Description Enable disable redirect error message...

Page 309: ...te to the gateway address is learned If the gateway address is one of local interface addresses the destination is treated as if it is directly connected to the specified interface the keyword vlan followed by the vlan id indicates the destination vlan for that route the keyword reject indicates that if this route is matched a packet to the destination is discarded and a notification e g ICMP erro...

Page 310: ...time p 301 server address no ip dns server address Configure DNS server IP address Next Available Option priority 1 to 2 Priority of Server Address NUMBER p 305 serverV6 ip timep manual IPV6 ADDR Timep server IPv6 address Next Available Option interval 1 to 9999 Specify how often in minutes the switch tries to get the current time p 301 source binding no ip source binding Usage no ip source bindin...

Page 311: ...bal configuration mode Using the port list option it can be configured on per port basis Next Available Option portlist Specify the ports on which ip source lockdown need to be implemented ethernet PORT LIST p 305 source route no ip source route Usage no ip source route Description Enable disable forwarding of source routed packets ssh no ip ssh Usage ip ssh filetransfer port 1 65535 default publi...

Page 312: ...ed mac By default all available macs are enabled Next Available Options filetransfer Enable disable secure file transfer capability p 299 port Specify the TCP port on which the daemon should listen for SSH connections p 305 public key manager operator Configure a client public key NUMBER p 306 timeout 5 to 120 Specify the maximum length of time seconds permitted for protocol negotiation and authen...

Page 313: ...required when no is specified Parameters o dhcp manual The method the switch uses to acquire the Timep server address dhcp from a DHCP server manual you manually enter the Timep server address disable which is set by specifying the no parameter the switch will not attempt to get its time from a Timep server o interval 1 9999 default is 720 How often in minutes the switch tries to get the current t...

Page 314: ...able no ip icmp unreachable Usage no ip icmp unreachable Description Enable disable destination unreachable error messages vlan ip source binding VLAN ID Next Available Option ip IP ADDR p 302 no ip route IP ADDR MASK LENGTH vlan VLAN ID Specify the destination VLAN Next Available Option distance 1 to 255 Set the administrative distance to associate with this static route p 298 zero broadcast no i...

Page 315: ...n access level desired p 314 access method all ssh telnet Define an access method desired p 314 IPV6 MASK IP mask defining a group of adjacent manager IP addresses IPV6 ADDR p 317 no ipv6 icmp ICMPv6 rate limiting p 316 error interval Send the ICMP error message p 316 int 0 to 2147483647 Specify interval range p 316 bucket size Set the bucket size This is optional p 315 int 1 to 200 Specify bucket...

Page 316: ... start seq no increment Renumber the entries in an Access Control List Start sequence number and increment can range between 1 2147483647 Next Available Options acl name Specify name of Access Control List to configure ASCII STR p 314 resequence Renumber the entries in an Access Control List ASCII STR p 317 access method no ipv6 authorized managers IPV6 ADDR access method all ssh telnet Define an ...

Page 317: ...cessible to the authorized manager manager allows full access to all web browser and telnet to console for viewing and setting the switch configuration and for performing all other interface operations including all TFTP operations operator allows view only access from the web browser and the console but does not allow changing the switch configuration or any TFTP operations The default access lev...

Page 318: ...s Increasing this value decreases the rate at which tokens can be added A setting of zero disables ICMP messaging Range 0 2147483647 Default 100 Next Available Option int 0 to 2147483647 Specify interval range p 316 icmp no ipv6 icmp ICMPv6 rate limiting Next Available Option error interval Send the ICMP error message p 316 incr num ipv6 access list resequence RESEQUENCE 1 to 2147483647 1 to 21474...

Page 319: ...e link use Neighbor Discovery to discover each other s presence link layer addresses routers and to maintain reachability information about the paths to active neighbors parameter o dad attempts configure the neighbor solicitations to determine that an address it wishes to use is not already in use by another node Next Available Option dad attempts IPv6 neighbor discovery duplicate address detecti...

Page 320: ... start seq num ipv6 access list resequence RESEQUENCE 1 to 2147483647 Specify the starting sequence number Range 1 to 2147483647 Next Available Option incr num 1 to 2147483646 Specify the increment p 316 318 2009 Hewlett Packard Development Company L P ipv6 Command Line Interface Reference Guide ...

Page 321: ...IP MTU or L3 MTU size for the switch p 319 jumbo max frame size 1518 to 9216 Set the untagged Jumbos Max frame size for the switch p 319 COMMAND DETAILS max frame size p 319 ip mtu p 319 ip mtu jumbo ip mtu 1500 to 9198 Usage jumbo ip mtu 1500 9198 Description Set the untagged Jumbos IP MTU or L3 MTU size for the switch This value will be effective only when Jumbos are enabled Range 1500 to 9198 m...

Page 322: ...e and date when to start accepting the key and when the key is going to expire The expiration time is set to infinite by default send lifetime time and date when to start using the key to send and when the key is going to expire A send key is always an accept key too The expiration time is set to infinite by default Note The accept lifetime period must always include the send lifetime period If on...

Page 323: ...nd start date MM DD YY YY p 323 time Key send start time HH MM SS p 338 additional options available infinite Set infinite lifetime p 332 now Use current day and time p 334 date Key send stop date MM DD YY YY p 323 additional options available duration Use current day and time NUMBER p 329 duration Use current day and time NUMBER p 329 send lifetime Set key send lifetime p 336 date Key send start ...

Page 324: ...inite lifetime p 332 now Use current day and time p 334 additional options available duration Use current day and time NUMBER p 329 send lifetime Set key send lifetime p 336 date Key send start date MM DD YY YY p 323 time Key send start time HH MM SS p 338 additional options available infinite Set infinite lifetime p 332 now Use current day and time p 334 date Key send stop date MM DD YY YY p 323 ...

Page 325: ...e current day and time p 334 infinite Set infinite lifetime p 332 key chain KEY CHAIN key 0 to 255 accept lifetime Set key accept lifetime Next Available Options date Key accept start date MM DD YY YY p 323 now Use current day and time p 334 infinite Set infinite lifetime p 332 date key chain KEY CHAIN key 0 to 255 key string KEY STRING accept lifetime DATE Key accept start date Next Available Opt...

Page 326: ...BER send lifetime DATE Key send start date Next Available Option time Key send start time HH MM SS p 338 key chain KEY CHAIN key 0 to 255 key string KEY STRING accept lifetime DATE TIME duration NUMBER send lifetime DATE TIME DATE Key send stop date Next Available Option time Key send stop time HH MM SS p 338 key chain KEY CHAIN key 0 to 255 key string KEY STRING accept lifetime DATE TIME duration...

Page 327: ...ain KEY CHAIN key 0 to 255 key string KEY STRING accept lifetime now duration NUMBER send lifetime DATE Key send start date Next Available Option time Key send start time HH MM SS p 338 key chain KEY CHAIN key 0 to 255 key string KEY STRING accept lifetime now duration NUMBER send lifetime DATE TIME DATE Key send stop date Next Available Option time Key send stop time HH MM SS p 338 key chain KEY ...

Page 328: ...fetime DATE Key send start date Next Available Option time Key send start time HH MM SS p 338 key chain KEY CHAIN key 0 to 255 key string KEY STRING send lifetime DATE TIME DATE Key send stop date Next Available Option time Key send stop time HH MM SS p 338 key chain KEY CHAIN key 0 to 255 key string KEY STRING send lifetime now DATE Key send stop date Next Available Option time Key send stop time...

Page 329: ...ATE Key send stop date Next Available Option time Key send stop time HH MM SS p 338 key chain KEY CHAIN key 0 to 255 accept lifetime DATE TIME duration NUMBER send lifetime DATE Key send start date Next Available Option time Key send start time HH MM SS p 338 key chain KEY CHAIN key 0 to 255 accept lifetime DATE TIME duration NUMBER send lifetime DATE TIME DATE Key send stop date Next Available Op...

Page 330: ...y 0 to 255 accept lifetime now DATE TIME send lifetime now DATE Key send stop date Next Available Option time Key send stop time HH MM SS p 338 key chain KEY CHAIN key 0 to 255 accept lifetime now duration NUMBER send lifetime DATE Key send start date Next Available Option time Key send start time HH MM SS p 338 key chain KEY CHAIN key 0 to 255 accept lifetime now duration NUMBER send lifetime DAT...

Page 331: ...ble Option time Key send stop time HH MM SS p 338 key chain KEY CHAIN key 0 to 255 send lifetime DATE Key send start date Next Available Option time Key send start time HH MM SS p 338 key chain KEY CHAIN key 0 to 255 send lifetime DATE TIME DATE Key send stop date Next Available Option time Key send stop time HH MM SS p 338 key chain KEY CHAIN key 0 to 255 send lifetime now DATE Key send stop date...

Page 332: ...now DATE TIME send lifetime DATE TIME duration NUMBER Use current day and time key chain KEY CHAIN key 0 to 255 key string KEY STRING accept lifetime now DATE TIME send lifetime now duration NUMBER Use current day and time key chain KEY CHAIN key 0 to 255 key string KEY STRING accept lifetime now duration NUMBER Use current day and time Next Available Option send lifetime Set key send lifetime p 3...

Page 333: ... TIME duration NUMBER Use current day and time Next Available Option send lifetime Set key send lifetime p 336 key chain KEY CHAIN key 0 to 255 accept lifetime DATE TIME duration NUMBER send lifetime DATE TIME duration NUMBER Use current day and time key chain KEY CHAIN key 0 to 255 accept lifetime DATE TIME duration NUMBER send lifetime now duration NUMBER Use current day and time key chain KEY C...

Page 334: ...CHAIN key 0 to 255 key string KEY STRING accept lifetime DATE TIME DATE TIME send lifetime infinite Set infinite lifetime key chain KEY CHAIN key 0 to 255 key string KEY STRING accept lifetime DATE TIME duration NUMBER send lifetime infinite Set infinite lifetime key chain KEY CHAIN key 0 to 255 key string KEY STRING accept lifetime now DATE TIME send lifetime infinite Set infinite lifetime key ch...

Page 335: ...ite lifetime key chain KEY CHAIN key 0 to 255 accept lifetime infinite Set infinite lifetime Next Available Option send lifetime Set key send lifetime p 336 key chain KEY CHAIN key 0 to 255 accept lifetime infinite send lifetime infinite Set infinite lifetime key chain KEY CHAIN key 0 to 255 send lifetime infinite Set infinite lifetime key no key chain KEY CHAIN key 0 to 255 Configure chain keys R...

Page 336: ...ER p 329 key chain KEY CHAIN key 0 to 255 key string KEY STRING accept lifetime now Use current day and time Next Available Options date Key accept stop date MM DD YY YY p 323 duration Use current day and time NUMBER p 329 key chain KEY CHAIN key 0 to 255 key string KEY STRING accept lifetime now DATE TIME send lifetime now Use current day and time Next Available Options date Key send stop date MM...

Page 337: ...e MM DD YY YY p 323 duration Use current day and time NUMBER p 329 key chain KEY CHAIN key 0 to 255 accept lifetime DATE TIME duration NUMBER send lifetime now Use current day and time Next Available Options date Key send stop date MM DD YY YY p 323 duration Use current day and time NUMBER p 329 key chain KEY CHAIN key 0 to 255 accept lifetime now Use current day and time Next Available Options da...

Page 338: ...ent day and time NUMBER p 329 send lifetime key chain KEY CHAIN key 0 to 255 key string KEY STRING accept lifetime DATE TIME DATE TIME send lifetime Set key send lifetime Next Available Options date Key send start date MM DD YY YY p 323 now Use current day and time p 334 infinite Set infinite lifetime p 332 key chain KEY CHAIN key 0 to 255 key string KEY STRING accept lifetime DATE TIME duration N...

Page 339: ...4 infinite Set infinite lifetime p 332 key chain KEY CHAIN key 0 to 255 key string KEY STRING send lifetime Set key send lifetime Next Available Options date Key send start date MM DD YY YY p 323 now Use current day and time p 334 infinite Set infinite lifetime p 332 key chain KEY CHAIN key 0 to 255 accept lifetime DATE TIME DATE TIME send lifetime Set key send lifetime Next Available Options date...

Page 340: ...fetime Set key send lifetime Next Available Options date Key send start date MM DD YY YY p 323 now Use current day and time p 334 infinite Set infinite lifetime p 332 key chain KEY CHAIN key 0 to 255 send lifetime Set key send lifetime Next Available Options date Key send start date MM DD YY YY p 323 now Use current day and time p 334 infinite Set infinite lifetime p 332 time key chain KEY CHAIN k...

Page 341: ...fetime DATE TIME duration NUMBER send lifetime DATE TIME Key send start time Next Available Options date Key send stop date MM DD YY YY p 323 duration Use current day and time NUMBER p 329 key chain KEY CHAIN key 0 to 255 key string KEY STRING accept lifetime DATE TIME duration NUMBER send lifetime DATE TIME DATE TIME Key send stop time key chain KEY CHAIN key 0 to 255 key string KEY STRING accept...

Page 342: ...ow duration NUMBER send lifetime DATE TIME DATE TIME Key send stop time key chain KEY CHAIN key 0 to 255 key string KEY STRING accept lifetime now duration NUMBER send lifetime now DATE TIME Key send stop time key chain KEY CHAIN key 0 to 255 key string KEY STRING accept lifetime infinite send lifetime DATE TIME Key send start time Next Available Options date Key send stop date MM DD YY YY p 323 d...

Page 343: ...ext Available Option send lifetime Set key send lifetime p 336 key chain KEY CHAIN key 0 to 255 accept lifetime DATE TIME DATE TIME send lifetime DATE TIME Key send start time Next Available Options date Key send stop date MM DD YY YY p 323 duration Use current day and time NUMBER p 329 key chain KEY CHAIN key 0 to 255 accept lifetime DATE TIME DATE TIME send lifetime DATE TIME DATE TIME Key send ...

Page 344: ...3 duration Use current day and time NUMBER p 329 key chain KEY CHAIN key 0 to 255 accept lifetime now DATE TIME send lifetime DATE TIME DATE TIME Key send stop time key chain KEY CHAIN key 0 to 255 accept lifetime now DATE TIME send lifetime now DATE TIME Key send stop time key chain KEY CHAIN key 0 to 255 accept lifetime now duration NUMBER send lifetime DATE TIME Key send start time Next Availab...

Page 345: ...ain KEY CHAIN key 0 to 255 accept lifetime infinite send lifetime now DATE TIME Key send stop time key chain KEY CHAIN key 0 to 255 send lifetime DATE TIME Key send start time Next Available Options date Key send stop date MM DD YY YY p 323 duration Use current day and time NUMBER p 329 key chain KEY CHAIN key 0 to 255 send lifetime DATE TIME DATE TIME Key send stop time key chain KEY CHAIN key 0 ...

Page 346: ...sh sessions p 344 EXAMPLES Example kill SESSION ID Display the currently active management sessions then terminate one of the Telnet sessions ProCurve show telnet Telnet Activity Session Privilege From To 1 Superuser Console 2 Manager 10 132 193 146 3 Manager 10 132 193 101 ProCurve kill 3 ProCurve show telnet Telnet Activity Session Privilege From To 1 Superuser Console 2 Manager 10 132 193 146 C...

Page 347: ...If no session ID is specified all other active sessions are terminated Range Range unavailble 345 2009 Hewlett Packard Development Company L P kill Command Line Interface Reference Guide ...

Page 348: ...s are OSPF PIM DM Dense Mode PIM SM Sparse Mode QinQ Provider Bridging VRRP COMMAND STRUCTURE licenses hardware id Display hardware ID for installation request p 347 Network Services For Network Services features p 347 Premium For Premium features p 348 licenses install Install the specified package p 347 Network Services For Network Services features p 347 key Enter key for this feature ASCII STR...

Page 349: ...ium features p 347 Network Services For Network Services features p 347 key licenses install premium KEY Enter key for this feature licenses install Network Services KEY Enter key for this feature Network Services licenses hardware id Network Services For Network Services features licenses install Network Services For Network Services features Next Available Option key Enter key for this feature A...

Page 350: ...Premium features licenses uninstall Premium For Premium features uninstall licenses uninstall Uninstall the specified package Next Available Options Premium For Premium features p 348 Network Services For Network Services features p 347 348 2009 Hewlett Packard Development Company L P licenses Command Line Interface Reference Guide ...

Page 351: ...mand is used to configure maximum number of keep alive attempts Default keep alive attempt is 4 COMMAND STRUCTURE link keepalive interval 10 to 100 Set link keep alive interval in deciseconds p 349 link keepalive retries 3 to 10 Set maximum number of link keep alive attempts p 349 COMMAND DETAILS retries p 349 interval p 349 interval link keepalive interval 10 to 100 Set link keep alive interval i...

Page 352: ...o send link test o vlan VLAN ID VLAN on which the device is expected to be present If this argument is not present VLAN 1 will be used o repetitions 1 999 Number of test packets to send the default value is 1 o timeout 1 256 Seconds within which a response is required before the test is considered as failed the default value is 5 Examples 1 hp switch link test 0800095F3AD6 COMMAND STRUCTURE link t...

Page 353: ...petitions link test repetitions 1 to 999 Number of test packets to send 1 999 Range 1 to 999 timeout link test timeout 0 to 256 Test timeout in seconds 0 256 Range 0 to 256 vlan link test vlan VLAN ID VLAN where the device to be tested is present 351 2009 Hewlett Packard Development Company L P link test Command Line Interface Reference Guide ...

Page 354: ... 4094 Assign the default value of the VLAN id to be used if an auto generated VLAN is created for a radio port application VLAN ID p 359 lldp config Specify configurational parameters to the port ethernet PORT LIST p 355 basicTlvEnable port_descr system_name system_descr Specify the Basic TLV List to be advertised NUMBER p 354 dot1TlvEnable Specify the 802 1 TLV List to be advertised p 356 vlan na...

Page 355: ...ation p 356 auto vlan p 354 run p 358 fast start count p 357 basicTlvEnable p 354 top change notify p 359 holdtime multiplier p 357 CA TYPE p 354 vlan base p 359 ipAddrEnable p 357 CA VALUE p 354 vlan name p 359 lldp ip p 357 civic addr p 355 WHAT p 359 lldp ipv6 p 357 config p 355 addr lldp config ETHERNET PORT LIST medPortLocation elin addr OCTET STR Specify the Location name to be advertised ad...

Page 356: ...specified VLAN id value to be used as the radio ports controller auto generated VLAN Range 2 to 4094 Next Available Option auto p 353 basicTlvEnable no lldp config ETHERNET PORT LIST basicTlvEnable port_descr system_name system_descr Specify the Basic TLV List to be advertised Supported Values port_descr Port Description TLV system_name System Name TLV system_descr System Description TLV system_ca...

Page 357: ...ble TLVMAP Description Specify configurational parameters to the port Set basicTlvEnable with any one of the following TLV Maps port_descr Send Port Description TLV out this port system_name Send System Name TLV out this port system_descr Send System Descr TLV out this port system_cap Send Capability TLV out this port Set dot1TlvEnable with the following TLVs vlan_name Enable VLAN name TLV out the...

Page 358: ...ber of range 0 2 NUMBER p 359 dot1TlvEnable lldp config ETHERNET PORT LIST dot1TlvEnable Specify the 802 1 TLV List to be advertised Next Available Option vlan name Specify that the VLAN name TLV is to be advertised p 359 dot3TlvEnable no lldp config ETHERNET PORT LIST dot3TlvEnable macphy_config Specify the 802 3 TLV List to be advertised Supported Values macphy_config MAC Physical Config Tlv eli...

Page 359: ...R to be enabled IPV6 ADDR p 357 lldp ip no lldp config ETHERNET PORT LIST ipAddrEnable IP ADDR Set IPV4 ADDR to be enabled lldp ipv6 no lldp config ETHERNET PORT LIST ipAddrEnable IPV6 ADDR Set IPV6 ADDR to be enabled medPortLocation no lldp config ETHERNET PORT LIST medPortLocation Configure location id information to be advertised Next Available Options civic addr Specify the civic location id i...

Page 360: ...ers following the radio ports parameter this command will enable the auto provision option use the no keyword to disable the auto provision option Next Available Options auto vlan Create a VLAN with the specified VLAN id value to be used as the radio ports controller auto generated VLAN p 354 vlan base 2 to 4094 Assign the default value of the VLAN id to be used if an auto generated VLAN is create...

Page 361: ...lt value of the VLAN id to be used if an auto generated VLAN is created for a radio port application Range 2 to 4094 vlan name no lldp config ETHERNET PORT LIST dot1TlvEnable vlan name Specify that the VLAN name TLV is to be advertised WHAT lldp config ETHERNET PORT LIST medPortLocation civic addr COUNTRY NUMBER Specify the what number of range 0 2 Next Available Option CA TYPE Specify the ca type...

Page 362: ... lockout mac MAC ADDR Description Lock out a MAC address Parameter o MAC ADDR MAC address to lock down Examples 1 hp switch lockout mac 0800095F3AD6 COMMAND STRUCTURE EXAMPLES Example lockout mac Drop all traffic to or from MAC address 0800095F3AD6 ProCurve lockout mac 0800095F3AD6 360 2009 Hewlett Packard Development Company L P ...

Page 363: ...gher severity d Debug i Informative w Warnings p Performance m Major Only one of options d i w p and m may be specified The a r and substring options may be used in combination with an event class option COMMAND STRUCTURE log a Display all log events including those from previous boot cycles p 361 log event_class M P W Specify substring to match in log entry See log help for details p 361 log opti...

Page 364: ...s I Information event class D Debug event class option log OPTION Specify substring to match in log entry See log help for details r log r Display log events in reverse order most recent first 362 2009 Hewlett Packard Development Company L P log Command Line Interface Reference Guide ...

Page 365: ...pported in the Event Log is increased from 1000 to 2000 entries Entries are listed in chronological order from the oldest to the most recent Once the log has received 2000 entries it discards the oldest message each time a new message is received The Event Log window contains 14 log entry lines You can scroll through it to view any part of the log COMMAND STRUCTURE no logging facility kern user ma...

Page 366: ...ntrol descr CONTROL DESCR Usage no logging IP ADDR control descr text string Description A text string associated with the given IP ADDr no replaces the string with a zero length string The length of the string is limited to 255 characters facility no logging facility kern user mail Usage no logging facility facility Description Specify the syslog facility value that will be used for all syslog se...

Page 367: ... to the syslog server no sends messages from all system modules Messages are 1st filtered by selected severity Next Available Option control descr A text string associated with the given IP ADDr p 364 priority descr no logging priority descr Usage no logging priority descr text string Description A text string associated with the values of facility severity and system module no replaces the string...

Page 368: ...le module Description Event messages of the specified system module subsystem will be sent to the syslog server no sends messages from all system modules as does logging system module all pass Messages are severity filtered before system module filtering occurs Supported Values all pass vlan ip igmp ipx stp system chassis console ports dhcp download tcp telnet timep tftp Xmodem update mgr system s...

Page 369: ...Auth KMS PIM maclock ACL udpf inst mon udld HPESP lldp connfilt RateLim idm IPLOCK dhcp snoop vrrp usb licensing loop protect sFlow arp protect dhcpv6c mtm mld dca QinQ autorun ffi wsm dipld HPSM policy 367 2009 Hewlett Packard Development Company L P logging Command Line Interface Reference Guide ...

Page 370: ... config Primary context Related Commands Usage no log numbers Description Enable the display of log event numbers when log is displayed via the CLI or via the menu COMMAND STRUCTURE 368 2009 Hewlett Packard Development Company L P ...

Page 371: ... OVERVIEW Switch Management Category operator Primary context Related Commands Usage logout Description Terminate this console telnet session COMMAND STRUCTURE 369 2009 Hewlett Packard Development Company L P ...

Page 372: ...ble timer 0 604800 default 0 Sets the time in seconds to disable a port for when a loop has been detected A value of 0 disables the auto reenable functionality By default the timer is disabled o transmit interval 1 10 default 5 Time in seconds between transmission of loop protection packets COMMAND STRUCTURE loop protect disable timer 0 to 604800 Set time in seconds to wait before attempting to re...

Page 373: ...packets are received on the specified port s p 371 receiver action loop protect ETHERNET PORT LIST receiver action send disable no disable Select action to take when loop protect packets are received on the specified port s Supported Values send disable no disable transmit interval loop protect transmit interval 1 to 10 Set time between packet transmissions Range 1 to 10 trap no loop protect trap ...

Page 374: ...address table for a certain amount of time the age out interval before being aged out An address is aged out if the switch does not receive traffic from that MAC address for the age out interval The interval is measured in seconds The default value is 300 seconds COMMAND STRUCTURE EXAMPLES Example mac age time SECONDS Configure the MAC age out interval to seven minutes ProCurve config mac age time...

Page 375: ...N ID Description Set the VLAN that is to be used as the management VLAN COMMAND STRUCTURE EXAMPLES Example management vlan Set VLAN 100 as the management VLAN and add ports A1 and A2 to it ProCurve config management vlan 100 ProCurve config vlan 100 tagged a1 ProCurve config vlan 100 tagged a2 373 2009 Hewlett Packard Development Company L P ...

Page 376: ...The default is 256 COMMAND STRUCTURE EXAMPLES Example max vlans NUMBER Reconfigure the switch to allow 10 VLANs ProCurve config max vlans 10 Command will take effect after saving configuration and reboot ProCurve config write memory ProCurve config boot Device will be rebooted do you want to continue y n y 374 2009 Hewlett Packard Development Company L P ...

Page 377: ...tion ProCurve menu HP ProCurve Switch 5400zl 1 Jan 2006 4 55 06 TELNET MANAGER MODE Main Menu 1 Status and Counters 2 Switch Configuration 3 Console Passwords 4 Event Log 5 Command Line CLI 6 Reboot Switch 7 Download OS 8 Run Setup 0 Logout Provides the menu to display configuration status and counters To select menu item press item number or highlight item and press Enter 375 2009 Hewlett Packard...

Page 378: ...hing it will be necessary to reboot the switch before the changes take effect COMMAND STRUCTURE no mesh portlist Specify the ports that are to be added to removed from a mesh ethernet PORT LIST p 376 EXAMPLES Example mesh PORT LIST Configure meshing on ports A1 A4 B3 C1 and D1 D3 ProCurve config mesh a1 a4 b3 c1 d1 d3 Command will take effect after saving configuration and reboot ProCurve config w...

Page 379: ... port It cannot be a trunked port The parameter must be specified if the no keyword is not used Otherwise it must not be present o SRC IP ADDR source ip address for remote mirroring o SRC UDP PORT source UDP port for remote mirroring o DST IP ADDR destination ip address for remote mirroring Note1 The SRC IP ADDR SRC UDP PORT and DST IP ADDR specified on the source switch must match those on the re...

Page 380: ... mirror_session_ip_udp p 379 ip p 378 remote p 380 mirror_session_src_udp p 379 mirror_session_dest_ip p 379 endpoint no mirror endpoint Remote mirroring destination configuration Next Available Option ip Remote mirroring destination configuration IP ADDR p 378 ip mirror 1 to 4 name NAME remote ip IP ADDR Remote mirroring destination configuration Next Available Option mirror_session_src_udp 1 to ...

Page 381: ...ring destination name string ASCII STR p 380 port Mirroring destination monitoring port ethernet PORT NUM p 380 remote Remote mirroring destination configuration p 380 mirror_session_ip_udp no mirror endpoint ip IP ADDR 1 to 65535 Remote mirroring UDP encapsulation port Range 1 to 65535 Next Available Option mirror_session_dest_ip Remote mirroring UDP encapsulation destination ip addr IP ADDR p 37...

Page 382: ...t mirror 1 to 4 name NAME port ETHERNET PORT NUM Mirroring destination monitoring port mirror 1 to 4 port ETHERNET PORT NUM Mirroring destination monitoring port mirror endpoint ip IP ADDR 1 to 65535 IP ADDR port ETHERNET PORT NUM Remote mirroring destination port remote mirror 1 to 4 name NAME remote Remote mirroring destination configuration Next Available Option ip Remote mirroring destination ...

Page 383: ...t used Otherwise it must not be present COMMAND STRUCTURE no mirror port port_num Define the mirror port for diagnostic purposes ethernet PORT NUM p 381 EXAMPLES Example mirror port Assign port A6 as the monitoring port ProCurve config mirror port a6 COMMAND DETAILS port_num p 381 port_num no mirror port ETHERNET PORT NUM Usage no mirror port ethernet PORT NUM Description Define the mirror port fo...

Page 384: ... a trunked port The parameter must be specified if the no keyword is not used Otherwise it must not be present 382 2009 Hewlett Packard Development Company L P mirror port Command Line Interface Reference Guide ...

Page 385: ...The type of the module p 383 EXAMPLES Example module SLOT NUM type MODULE TYPE Configure slot 4 for module type j4820a ProCurve config module 4 type j4820a COMMAND DETAILS type p 383 type module 1 to 12 type J8701A J8702A J8705A The type of the module Supported Values J8701A J8702A J8705A J8706A J8707A J8708A J8694A J8992A J9154A J9051A J9052A J86yyA J94yyA J94zzA J86xxA J86yyA J86xxA J90XXA J92zz...

Page 386: ... J92yyA J94wwa JXXXXA JXXXXB JXXXXA 384 2009 Hewlett Packard Development Company L P module Command Line Interface Reference Guide ...

Page 387: ...tionation number COMMAND STRUCTURE no monitor mac MAC address MAC ADDR p 385 monitor_mac_direction src dst both p 386 mirror Mirror destination p 385 mirror_session_id 1 to 4 Mirror destination number p 386 mirror_session_name Mirror destination name p 386 COMMAND DETAILS monitor_mac_direction p 386 mirror_session_id p 386 mac p 385 mirror_session_name p 386 mirror p 385 mac no monitor mac MAC ADD...

Page 388: ...ror 1 to 4 Mirror destination number Range 1 to 4 mirror_session_name no monitor mac MAC ADDR src dst both mirror Mirror destination name monitor_mac_direction no monitor mac MAC ADDR src dst both Specifies how the MAC address is used to filter and mirror packets in inbound and or outbound traffic on the interfaces on which the mirroring session is applied Supported Values src Monitor traffic with...

Page 389: ...rimary context Related Commands Usage no page Description Toggle paging mode The printing is paused when a full page of text has been displayed or continues until end of output COMMAND STRUCTURE 387 2009 Hewlett Packard Development Company L P ...

Page 390: ...the only type accepted for port access COMMAND STRUCTURE no password access operator manager Set or clear local password username for a given access level p 388 plaintext Enter plaintext password p 390 password Set password ASCII STR p 389 sha0 Enter SHA 0 hash of password p 390 password Set password ASCII STR p 389 sha1 Enter SHA 1 hash of password p 390 password Set password ASCII STR p 389 user...

Page 391: ...sword p 390 sha1 Enter SHA 1 hash of password p 390 all no password all Usage no password manager operator port access all user name ASCII STR plaintext sha1 ASCII STR Description Set or clear local password username for a given access level Invoked without no the command sets or changes existent password s If no password provided in the command the user will be prompted to enter the new password ...

Page 392: ...xt password Next Available Option password Set password ASCII STR p 389 sha0 password operator manager user name USER NAME sha0 Enter SHA 0 hash of password Next Available Option password Set password ASCII STR p 389 password operator manager sha0 Enter SHA 0 hash of password Next Available Option password Set password ASCII STR p 389 sha1 password operator manager user name USER NAME sha1 Enter S...

Page 393: ... password operator manager user name USER NAME Set username for the specified user category Next Available Options plaintext Enter plaintext password p 390 sha0 Enter SHA 0 hash of password p 390 sha1 Enter SHA 1 hash of password p 390 391 2009 Hewlett Packard Development Company L P password Command Line Interface Reference Guide ...

Page 394: ...ll 0 1024 The string to be filled in the data portion of the packet A string upto 1024 characters in length can be specified The default value is a 0 length string o source IP_ADDR VLAN ID The source IPv4 address or VLAN Examples 1 hp switch ping 1 1 1 1 COMMAND STRUCTURE ping data fill Ping data fill string size 0 1024 OCTET STR p 393 ping data size 0 to 65471 Ping data size 0 65471 NUMBER p 393 ...

Page 395: ...g size 0 1024 data size ping data size 0 to 65471 Ping data size 0 65471 Range 0 to 65471 host name ping HOST NAME Hostname of the device to ping ip addr ping IP ADDR IPv4 address of the device to ping ping source IP ADDR Source IPv4 address repetitions ping repetitions 1 to 10000 Number of packets to send 1 10000 Range 1 to 10000 source ping source Source address or VLAN Next Available Options vl...

Page 396: ...k number of the switch to ping timeout ping timeout 1 to 60 Ping timeout in seconds 1 60 Range 1 to 60 vlan ping source VLAN ID Source VLAN 394 2009 Hewlett Packard Development Company L P ping Command Line Interface Reference Guide ...

Page 397: ... in the ICMP echo packet the default value is 0 o data fill 1 10000 Specifies the data pattern to be filled in the data of the ICMP echo packet the default pattern is o source IPV6_ADDR VLAN ID The source IPv6 address or VLAN COMMAND STRUCTURE ping6 data fill Ping data fill string size 0 1024 OCTET STR p 396 ping6 data size 0 to 65471 Ping data size 0 65471 NUMBER p 396 ping6 host name Hostname of...

Page 398: ...xt is used data size ping6 data size 0 to 65471 Size of data in bytes to be ent in ping packets Valid values 0 65471 Range 0 to 65471 Default 0 host name ping6 HOST NAME Hostname of the device to ping ip addr ping6 source IPV6 ADDR Source IPv6 address ipv6 addr ping6 IPV6 ADDR IPv6 address of device to ping repetitions ping6 repetitions 1 to 10000 Number of times that IPv6 ping packets are sent to...

Page 399: ... timeout ping6 timeout 1 to 60 Number of seconds within which a response is required from the destination host before the ping test times out Valid values 1 60 Range 1 to 60 Default 1 second vlan ping6 source VLAN ID Source VLAN 397 2009 Hewlett Packard Development Company L P ping6 Command Line Interface Reference Guide ...

Page 400: ... 10000 kbps and assigned an 802 1p CoS priority of 3 in their Layer 2 VLAN headers All unmatched packets are managed by the default class which assigns a slightly higher 802 1p priority 4 and a new DSCP codepoint 5 ProCurve config class ipv4 http ProCurve class config match tcp any any eq 80 ProCurve class config match tcp any any eq 8080 ProCurve class config exit ProCurve config policy qos RateL...

Page 401: ...r qos type policy name resequence policy resequence Renumber the entries in the policy Next Available Option name Specify the policy name ASCII STR p 399 start seq num policy resequence NAME 1 to 2147483646 Specify the starting sequence number Range 1 to 2147483646 Next Available Option incr num 1 to 2147483645 Specify the increment p 398 399 2009 Hewlett Packard Development Company L P policy Com...

Page 402: ...orized only traffic from the authorized MAC address is allowed If limited continuous is specified the first address limit source MAC addresses heard on this port become the authorized addresses When new authorized addresses are learned they are stored in a table When the table has reached its address limit any new source MAC addresses received on the port constitutes an intrusion The authorized ad...

Page 403: ...zed on the port s p 402 mac addr Authorized MAC address MAC ADDR p 402 COMMAND DETAILS mac addr p 402 clear intrusion flag p 401 action p 401 mac address p 402 learn mode p 401 address limit p 401 action port security ETHERNET PORT LIST action none send alarm send disable Define device s action in case of an intrusion detection Supported Values none send alarm send disable address limit port secur...

Page 404: ... ETHERNET PORT LIST mac address MAC ADDR Authorized MAC address mac address no port security ETHERNET PORT LIST mac address Configure the address es authorized on the port s Next Available Option mac addr Authorized MAC address MAC ADDR p 402 402 2009 Hewlett Packard Development Company L P port security Command Line Interface Reference Guide ...

Page 405: ... no power over ethernet redundancy Set how much power is held in reserve for redundancy p 404 redundancy_type n 1 full Set how much power is held in reserve for redundancy NUMBER p 404 power over ethernet slot Optional Specify a valid powered slot list for power threshold setting or omit to set all powered slots SLOT ID RANGE p 405 threshold 1 to 99 Set the power consumption percentage at which a ...

Page 406: ... highest power supplies will be held in reserve In the event of a simgle power supply failure no powered devices will be shut down full Half of the available power supplies will be held in reserve Default No PoE redundancy enforced Next Available Option redundancy_type n 1 full Set how much power is held in reserve for redundancy NUMBER p 404 redundancy_type power over ethernet redundancy n 1 full...

Page 407: ...er over ethernet threshold 1 to 99 Set the power consumption percentage at which a trap should be sent Note that the last threshold command affecting a given slot supersedes the previous threshold command affecting the same slot Range 1 to 99 power over ethernet slot SLOT ID RANGE threshold 1 to 99 Set the power consumption percentage at which a trap should be sent Range 1 to 99 405 2009 Hewlett P...

Page 408: ...DHCP and TIMEP COMMAND STRUCTURE EXAMPLES Example primary vlan VLAN ID Reassign the Primary VLAN and change the VLAN name ProCurve config primary vlan 22 ProCurve config vlan 22 name 22 Primary ProCurve config show vlans Status and Counters VLAN Information Maximum VLANs to support 8 Primary VLAN 22 Primary Management VLAN 802 1Q VLAN ID Name Status Voice Jumbo 1 DEFAULT_VLAN Static No No 22 22 Pr...

Page 409: ...and redirect its output to the device channel for current session COMMAND STRUCTURE print command Command to execute Use quotes for multiword commands ASCII STR p 407 COMMAND DETAILS command p 407 command print COMMAND Command to execute Use quotes for multiword commands 407 2009 Hewlett Packard Development Company L P ...

Page 410: ...ervices p wireless services SLOT ID p 408 config ASCII STR p 408 COMMAND DETAILS p wireless services p 408 config p 408 config p wireless services SLOT ID config CONFIG p wireless services p wireless services SLOT ID Next Available Option config ASCII STR p 408 408 2009 Hewlett Packard Development Company L P ...

Page 411: ...igure as mixedvlan mode p 409 tag type 1536 to 65535 Configure qinq tag type HEX NUMBER p 410 qinq svlan Configure as svlan mode p 410 tag type 1536 to 65535 Configure qinq tag type HEX NUMBER p 410 EXAMPLES Example Enable QinQ Enable QinQ Edge l config qinq svlan tag type 88a8 Edge 2 config qinq svlan tag type 88a8 COMMAND DETAILS tag type p 410 svlan p 410 mixedvlan p 409 mixedvlan qinq mixedvla...

Page 412: ...s a reboot to take effect Next Available Option tag type 1536 to 65535 Configure qinq tag type HEX NUMBER p 410 tag type qinq mixedvlan tag type 1536 to 65535 Configure qinq tag type Range 1536 to 65535 qinq svlan tag type 1536 to 65535 Configure qinq tag type Range 1536 to 65535 410 2009 Hewlett Packard Development Company L P qinq Command Line Interface Reference Guide ...

Page 413: ...Specify DSCP policy to use p 418 binary range 0 to 63 Specify the DSCP code point in binary BINARY p 416 integer range 0 to 63 Specify the DSCP code point in decimal p 423 well defined af11 af12 af13 Define mapping between a DSCP Differentiated Services Codepoint value and an 802 p 434 priority 0 1 2 Specify priority to use p 428 ipv4 Specify range of TCP UDP ports from to which to prioritize traf...

Page 414: ...nteger range 0 to 63 Specify the DSCP code point in decimal p 423 well defined af11 af12 af13 Define mapping between a DSCP Differentiated Services Codepoint value and an 802 p 434 priority 0 1 2 Specify priority to use p 428 range Specify range of TCP UDP ports from to which to prioritize traffic p 432 port num TCP UDP port from to which to prioritize traffic TCP UDP PORT p 427 max port num Maxim...

Page 415: ...p 428 well defined af11 af12 af13 Define mapping between a DSCP Differentiated Services Codepoint value and an 802 p 434 name Specify DSCP priority mapping name p 426 name string Specify DSCP priority mapping name ASCII STR p 426 priority 0 1 2 Specify priority to use p 428 no qos protocol IP IPX ARP Configure protocol based priority p 431 priority 0 1 2 Specify priority to use p 428 qos queue con...

Page 416: ...pper 3 bits of the IP ToS field The priority association is automatic and cannot be changed IP Precedence 802 1p ToS Bits Priority 111 7 Highest 110 6 101 5 100 4 011 3 010 0 Normal 001 2 Low 000 1 Lowest p 424 EXAMPLES Example qos The following example shows the 802 1p priority for the UDP and TCP port prioritization ProCurve config qos tcp port 23 priority 7 ProCurve config qos udp port 23 prior...

Page 417: ...ound port queues for all switch ports 4 queues qos queue config 4 queues Set the number of outbound port queues for all switch ports 8 queues qos queue config 8 queues Set the number of outbound port queues for all switch ports apptype no qos udp port tcp port Usage no qos udp tcp ipv4 ipv6 ip all TCP UDP PORT range TCP UDP PORT MAX TCP UDP PORT dscp 0 63 af11 af12 af13 af21 af22 af23 af31 af32 af...

Page 418: ...5 ip all Specify range of TCP UDP ports from to which to prioritize traffic p 424 binary codepoint no qos type of service diff services 0 to 63 Specify the DSCP code point in binary Range 0 to 63 Next Available Option dscp Define Differentiated Services Codepoint to which to map IP ToS p 418 binary range qos device priority IP ADDR dscp 0 to 63 Specify the DSCP code point in binary Range 0 to 63 q...

Page 419: ... port tcp port ipv6 range TCP UDP PORT TCP UDP PORT dscp 0 to 63 Specify the DSCP code point in binary Range 0 to 63 qos udp port tcp port ip all TCP UDP PORT dscp 0 to 63 Specify the DSCP code point in binary Range 0 to 63 qos udp port tcp port ip all range TCP UDP PORT TCP UDP PORT dscp 0 to 63 Specify the DSCP code point in binary Range 0 to 63 qos type of service diff services 0 to 63 dscp 0 t...

Page 420: ... p 425 diff services qos type of service diff services In IP Differentiated Services Diffserv mode IPv4 packets are classified and given a QoS priority based on the upper 6 bits of the IP ToS field from the packets as they enter the switch The assignment of Diffserv Codepoints to 802 1p priorities is done via the qos dscp map command Any Diffserv Codepoint in an inbound IPv4 packet can be re mappe...

Page 421: ...Y p 416 well defined af11 af12 af13 Define mapping between a DSCP Differentiated Services Codepoint value and an 802 p 434 qos udp port tcp port TCP UDP PORT dscp Specify DSCP policy to use Supported Values Binary formatted value from 000000 to 111111 Next Available Options integer range 0 to 63 Specify the DSCP code point in decimal p 423 binary range 0 to 63 Specify the DSCP code point in binary...

Page 422: ...ify DSCP policy to use Supported Values Binary formatted value from 000000 to 111111 Next Available Options integer range 0 to 63 Specify the DSCP code point in decimal p 423 binary range 0 to 63 Specify the DSCP code point in binary BINARY p 416 well defined af11 af12 af13 Define mapping between a DSCP Differentiated Services Codepoint value and an 802 p 434 qos udp port tcp port ipv6 range TCP U...

Page 423: ...odepoint to which to map IP ToS p 434 qos type of service diff services 0 to 63 dscp Define Differentiated Services Codepoint to which to map IP ToS Next Available Options integer range 0 to 63 Specify the DSCP code point in decimal p 423 binary range 0 to 63 Specify the DSCP code point in binary BINARY p 416 well defined af11 af12 af13 Define Differentiated Services Codepoint to which to map IP T...

Page 424: ...F11 001100 1 Assured Forwarding AF12 001110 2 Assured Forwarding AF13 010010 0 Assured Forwarding AF21 010100 0 Assured Forwarding AF22 010110 3 Assured Forwarding AF23 011010 4 Assured Forwarding AF31 011100 4 Assured Forwarding AF32 011110 5 Assured Forwarding AF33 100010 6 Assured Forwarding AF41 100100 6 Assured Forwarding AF42 100110 7 Assured Forwarding AF43 101110 7 Expedited Forwarding EF ...

Page 425: ...s priority 0 1 2 Specify priority to use p 428 name Specify DSCP priority mapping name p 426 qos udp port tcp port TCP UDP PORT dscp 0 to 63 Specify the DSCP code point in decimal Range 0 to 63 qos udp port tcp port range TCP UDP PORT TCP UDP PORT dscp 0 to 63 Specify the DSCP code point in decimal Range 0 to 63 qos udp port tcp port ipv4 TCP UDP PORT dscp 0 to 63 Specify the DSCP code point in de...

Page 426: ...priority IP ADDR specify the ipv4 address of the device to set the priority Next Available Options dscp Specify DSCP policy to use p 418 priority 0 1 2 Specify priority to use p 428 ip all qos udp port tcp port ip all Specify range of TCP UDP ports from to which to prioritize traffic Next Available Options port num TCP UDP port from to which to prioritize traffic TCP UDP PORT p 427 range Specify r...

Page 427: ...priority Next Available Options dscp Specify DSCP policy to use p 418 priority 0 1 2 Specify priority to use p 428 qos udp port tcp port ipv6 Specify range of TCP UDP ports from to which to prioritize traffic Next Available Options port num TCP UDP port from to which to prioritize traffic TCP UDP PORT p 427 range Specify range of TCP UDP ports from to which to prioritize traffic p 432 ipv6 mask no...

Page 428: ...m to which to prioritize traffic Next Available Options dscp 000000 000001 000010 Specify DSCP policy to use p 418 priority 0 1 2 Specify priority to use p 428 name no qos dscp map 0 to 63 name Specify DSCP priority mapping name Next Available Option name string Specify DSCP priority mapping name ASCII STR p 426 no qos dscp map 0 to 63 name Specify DSCP priority mapping name Next Available Option ...

Page 429: ...om to which to prioritize traffic TCP UDP PORT p 425 qos udp port tcp port ipv6 TCP UDP PORT TCP UDP port from to which to prioritize traffic Next Available Options dscp 000000 000001 000010 Specify DSCP policy to use p 418 priority 0 1 2 Specify priority to use p 428 qos udp port tcp port ipv6 range TCP UDP PORT TCP UDP port from to which to prioritize traffic Next Available Option max port num M...

Page 430: ...to use Supported Values 0 1 2 3 4 5 6 7 qos device priority IPV6 ADDR priority 0 1 2 Specify priority to use Supported Values 0 1 2 3 4 5 6 7 qos device priority IPV6 ADDR PREFIX LEN priority 0 1 2 Specify priority to use Supported Values 0 1 2 3 4 5 6 7 qos dscp map 0 to 63 priority 0 1 2 428 2009 Hewlett Packard Development Company L P qos Command Line Interface Reference Guide ...

Page 431: ...af11 af12 af13 priority 0 1 2 Specify priority to use Supported Values 0 1 2 3 4 5 6 7 qos protocol IP IPX ARP priority 0 1 2 Specify priority to use Supported Values 0 1 2 3 4 5 6 7 qos udp port tcp port TCP UDP PORT priority 0 1 2 Specify priority to use Supported Values 429 2009 Hewlett Packard Development Company L P qos Command Line Interface Reference Guide ...

Page 432: ...ty 0 1 2 Specify priority to use Supported Values 0 1 2 3 4 5 6 7 qos udp port tcp port ipv4 range TCP UDP PORT TCP UDP PORT priority 0 1 2 Specify priority to use Supported Values 0 1 2 3 4 5 6 7 qos udp port tcp port ipv6 TCP UDP PORT priority 0 1 2 Specify priority to use Supported Values 0 1 2 430 2009 Hewlett Packard Development Company L P qos Command Line Interface Reference Guide ...

Page 433: ...RT priority 0 1 2 Specify priority to use Supported Values 0 1 2 3 4 5 6 7 protocol no qos protocol IP IPX ARP Usage no qos protocol ip ipx arp appletalk sna netbeui priority 0 7 Description Configure protocol based priority The priority can be defined for any of the listed protocol types The specified priority value will be placed in the 802 1p priority field of outgoing tagged packets The protoc...

Page 434: ...witch will reboot immediately The mapping of 802 1p priorities to outbound port queues is shown below 802 1p Priority 2 queues 4 queues 8 queues 1 lowest 1 1 1 2 1 1 2 0 normal 1 2 3 3 1 2 4 4 2 3 5 5 2 3 6 6 2 4 7 7 highest 2 4 8 Next Available Options 2 queues Set the number of outbound port queues for all switch ports p 415 4 queues Set the number of outbound port queues for all switch ports p ...

Page 435: ...ity is placed in the outbound VLAN tag See the switch documentation for more information Differentiated The switch uses the upper 6 bits of the ToS field the Services Differentiated Services bits to decide whether to apply an 802 1p priority to the packet and thus affect its outbound queue The priority is defined by the Differentiated Services Codepoint mapping see show qos dscp map If no priority...

Page 436: ...yntax qos type of service diff services af11 ef 0 63 000000 111111 dscp af11 ef 0 63 000000 111111 p 418 well defined qos device priority IP ADDR dscp af11 af12 af13 Usage no qos dscp map 0 1 63 af11 af12 af13 af21 af22 af23 af31 af32 af33 af41 af42 af43 ef cs0 cs7 000000 000001 111111 priority 0 7 no override name str Description Define mapping between a DSCP Differentiated Services Codepoint val...

Page 437: ...r CS3 100000 4 Classs Selector CS4 101000 5 Classs Selector CS5 110000 6 Classs Selector CS6 111000 7 Classs Selector CS7 Supported Values af11 af12 af13 af21 af22 af23 af31 af32 af33 af41 af42 af43 ef cs0 cs1 cs2 cs3 cs4 cs5 cs6 cs7 qos device priority IP ADDR mask LENGTH dscp af11 af12 af13 Usage no qos dscp map 0 1 63 af11 af12 af13 af21 af22 af23 af31 af32 af33 af41 af42 af43 ef cs0 cs7 000000...

Page 438: ...se are automatically configured as follows DiffServ 802 1p Codepoint Value IETF Standard Designation 001010 1 Assured Forwarding AF11 001100 1 Assured Forwarding AF12 001110 2 Assured Forwarding AF13 010010 0 Assured Forwarding AF21 010100 0 Assured Forwarding AF22 010110 3 Assured Forwarding AF23 011010 4 Assured Forwarding AF31 011100 4 Assured Forwarding AF32 011110 5 Assured Forwarding AF33 10...

Page 439: ...ame is deleted the priority and name can only be removed if no QoS feature is configured to use this DSCP Policy no qos dscp map codepoint name will remove the name associated with this policy but not the policy priority Certain codepoints may have a default associated 802 1p priority as part of the IETF standards for Assured Forwarding and Expedited Forwarding These are automatically configured a...

Page 440: ... QoS classifier uses this DSCP policy as the method of traffic prioritization The mapping also provides the profile for inbound classification and priority assignment based on an IPv4 packet s received IP ToS byte ONLY IF the user has also configured qos type of service diff services no qos dscp map codepoint will remove the settings for the specified codepoint from the running configuration The p...

Page 441: ...42 100110 7 Assured Forwarding AF43 101110 7 Expedited Forwarding EF 000000 0 Classs Selector CS0 001000 1 Classs Selector CS1 010000 2 Classs Selector CS2 011000 3 Classs Selector CS3 100000 4 Classs Selector CS4 101000 5 Classs Selector CS5 110000 6 Classs Selector CS6 111000 7 Classs Selector CS7 Supported Values af11 af12 af13 af21 af22 af23 af31 af32 af33 af41 af42 af43 ef cs0 cs1 cs2 cs3 cs4...

Page 442: ...nts may have a default associated 802 1p priority as part of the IETF standards for Assured Forwarding and Expedited Forwarding These are automatically configured as follows DiffServ 802 1p Codepoint Value IETF Standard Designation 001010 1 Assured Forwarding AF11 001100 1 Assured Forwarding AF12 001110 2 Assured Forwarding AF13 010010 0 Assured Forwarding AF21 010100 0 Assured Forwarding AF22 010...

Page 443: ... user has also configured qos type of service diff services no qos dscp map codepoint will remove the settings for the specified codepoint from the running configuration The priority is set to no override and the name is deleted the priority and name can only be removed if no QoS feature is configured to use this DSCP Policy no qos dscp map codepoint name will remove the name associated with this ...

Page 444: ...e TCP UDP PORT TCP UDP PORT dscp af11 af12 af13 Usage no qos dscp map 0 1 63 af11 af12 af13 af21 af22 af23 af31 af32 af33 af41 af42 af43 ef cs0 cs7 000000 000001 111111 priority 0 7 no override name str Description Define mapping between a DSCP Differentiated Services Codepoint value and an 802 1p priority The mapping is used to assign priority for IPv4 packets if a QoS classifier uses this DSCP p...

Page 445: ...sured Forwarding AF12 001110 2 Assured Forwarding AF13 010010 0 Assured Forwarding AF21 010100 0 Assured Forwarding AF22 010110 3 Assured Forwarding AF23 011010 4 Assured Forwarding AF31 011100 4 Assured Forwarding AF32 011110 5 Assured Forwarding AF33 100010 6 Assured Forwarding AF41 100100 6 Assured Forwarding AF42 100110 7 Assured Forwarding AF43 101110 7 Expedited Forwarding EF 000000 0 Classs...

Page 446: ...se this DSCP Policy no qos dscp map codepoint name will remove the name associated with this policy but not the policy priority Certain codepoints may have a default associated 802 1p priority as part of the IETF standards for Assured Forwarding and Expedited Forwarding These are automatically configured as follows DiffServ 802 1p Codepoint Value IETF Standard Designation 001010 1 Assured Forwardi...

Page 447: ...and priority assignment based on an IPv4 packet s received IP ToS byte ONLY IF the user has also configured qos type of service diff services no qos dscp map codepoint will remove the settings for the specified codepoint from the running configuration The priority is set to no override and the name is deleted the priority and name can only be removed if no QoS feature is configured to use this DSC...

Page 448: ... Selector CS4 101000 5 Classs Selector CS5 110000 6 Classs Selector CS6 111000 7 Classs Selector CS7 Supported Values af11 af12 af13 af21 af22 af23 af31 af32 af33 af41 af42 af43 ef cs0 cs1 cs2 cs3 cs4 cs5 cs6 cs7 qos udp port tcp port ipv6 TCP UDP PORT dscp af11 af12 af13 Usage no qos dscp map 0 1 63 af11 af12 af13 af21 af22 af23 af31 af32 af33 af41 af42 af43 ef cs0 cs7 000000 000001 111111 priori...

Page 449: ... are automatically configured as follows DiffServ 802 1p Codepoint Value IETF Standard Designation 001010 1 Assured Forwarding AF11 001100 1 Assured Forwarding AF12 001110 2 Assured Forwarding AF13 010010 0 Assured Forwarding AF21 010100 0 Assured Forwarding AF22 010110 3 Assured Forwarding AF23 011010 4 Assured Forwarding AF31 011100 4 Assured Forwarding AF32 011110 5 Assured Forwarding AF33 1000...

Page 450: ...ide and the name is deleted the priority and name can only be removed if no QoS feature is configured to use this DSCP Policy no qos dscp map codepoint name will remove the name associated with this policy but not the policy priority Certain codepoints may have a default associated 802 1p priority as part of the IETF standards for Assured Forwarding and Expedited Forwarding These are automatically...

Page 451: ... QoS classifier uses this DSCP policy as the method of traffic prioritization The mapping also provides the profile for inbound classification and priority assignment based on an IPv4 packet s received IP ToS byte ONLY IF the user has also configured qos type of service diff services no qos dscp map codepoint will remove the settings for the specified codepoint from the running configuration The p...

Page 452: ...rding AF43 101110 7 Expedited Forwarding EF 000000 0 Classs Selector CS0 001000 1 Classs Selector CS1 010000 2 Classs Selector CS2 011000 3 Classs Selector CS3 100000 4 Classs Selector CS4 101000 5 Classs Selector CS5 110000 6 Classs Selector CS6 111000 7 Classs Selector CS7 Supported Values af11 af12 af13 af21 af22 af23 af31 af32 af33 af41 af42 af43 ef cs0 cs1 cs2 cs3 cs4 cs5 cs6 cs7 qos udp port...

Page 453: ...points may have a default associated 802 1p priority as part of the IETF standards for Assured Forwarding and Expedited Forwarding These are automatically configured as follows DiffServ 802 1p Codepoint Value IETF Standard Designation 001010 1 Assured Forwarding AF11 001100 1 Assured Forwarding AF12 001110 2 Assured Forwarding AF13 010010 0 Assured Forwarding AF21 010100 0 Assured Forwarding AF22 ...

Page 454: ... Supported Values af11 af12 af13 af21 af22 af23 af31 af32 af33 af41 af42 af43 ef cs0 cs1 cs2 cs3 cs4 cs5 cs6 cs7 qos type of service diff services 0 to 63 dscp af11 af12 af13 Define Differentiated Services Codepoint to which to map IP ToS Supported Values af11 af12 af13 af21 af22 af23 af31 af32 452 2009 Hewlett Packard Development Company L P qos Command Line Interface Reference Guide ...

Page 455: ...ervices af11 af12 af13 Usage no type of service ip precedence diff services 0 1 63 af11 af12 af13 af21 af22 af23 af31 af32 af33 af41 af42 af43 ef cs0 cs7 000000 000001 111111 dscp 0 1 63 af11 af12 af13 af21 af22 af23 af31 af32 af33 af41 af42 af43 ef cs0 cs7 000000 000001 111111 Description Configure the Type of Service method the device uses to prioritize IP traffic Prioritization is done based on...

Page 456: ...out a port on which VLAN tagging is enabled the new 802 1p priority will be placed in the outbound VLAN tag If a DSCP Policy is configured to apply to the inbound DS codepoint i e the codepoint has been re mapped the priority assignment and outbound queueing will be that specified by the new Policy s codepoint in the DSCP table and the Differentiated Services field in the outbound packet will be c...

Page 457: ...ef cs0 cs1 cs2 cs3 cs4 cs5 cs6 cs7 Next Available Option dscp Define Differentiated Services Codepoint to which to map IP ToS p 418 455 2009 Hewlett Packard Development Company L P qos Command Line Interface Reference Guide ...

Page 458: ...ization and Disconnect messages The last command sets the length of time in minutes a RADIUS server that failed to respond to an authentication request is bypassed by additional requests See dead time below Use the no form of command to set the dead time to 0 Parameters o host IP ADDR auth port UDP PORT acct port UDP PORT dyn authorization time window 0 65535 key KEY STR specifies the IP address o...

Page 459: ...nd the switch will not bypass a RADIUS server that has failed to respond to an earlier authentication attempt Default 0 COMMAND STRUCTURE no radius server dead time Min Max Server unavailability time default is 0 use the no form of command to set the dead time to 0 p 459 dead time 1 to 1440 Server unavailability time default is 0 use the no form of command to set the dead time to 0 p 459 radius se...

Page 460: ...nsmit 2 ProCurve config write mem COMMAND DETAILS timeout p 461 dyn autz port p 460 acct port p 458 time window p 461 host p 460 auth port p 459 key p 460 dead time p 459 retransmit p 461 dyn authorization p 459 acct port radius server host IP ADDR acct port Accounting UDP destination port number default is 1813 Next Available Option acct port Accounting UDP destination port number default is 1813...

Page 461: ...default is NULL ASCII STR p 460 radius server host IP ADDR key KEY auth port TCP UDP PORT Authentication UDP destination port number default is 1812 dead time no radius server dead time Server unavailability time default is 0 use the no form of command to set the dead time to 0 Supported Values Min Max Next Available Option dead time 1 to 1440 Server unavailability time default is 0 use the no for...

Page 462: ... port TCP UDP PORT key KEY Encryption key to use with the RADIUS server default is NULL radius server host IP ADDR auth port TCP UDP PORT key KEY Encryption key to use with the RADIUS server default is NULL no radius server host IP ADDR key Encryption key to use with the RADIUS server default is NULL Next Available Option key Encryption key to use with the RADIUS server default is NULL ASCII STR p...

Page 463: ...val default is 5 Range 1 to 15 time window no radius server host IP ADDR time window time window in seconds within which the received dynamic authorization requests are considered to be current and accepted for processing Next Available Option time window 0 to 65535 p 461 radius server host IP ADDR time window 0 to 65535 Range 0 to 65535 461 2009 Hewlett Packard Development Company L P radius serv...

Page 464: ...COMMAND STR is specified it executes the most recent command whose name matches the specified string COMMAND STRUCTURE redo command The command word identifying a command to execute in the history list ASCII STR p 462 redo NUMBER The position of the command to execute in the history list NUMBER p 462 COMMAND DETAILS NUMBER p 462 command p 462 command redo COMMAND The command word identifying a com...

Page 465: ...e management command to change to the other module The fourth version of the command enables disables the fabric modules NOTES Multiple Contexts This command also is available in the manager context COMMAND STRUCTURE redundancy active management management module1 management module2 standby Specify the management module that will be active for next boot NUMBER p 464 redundancy fabric module 1 2 En...

Page 466: ...odule1 management module2 standby Specify the management module that will be active for next boot Supported Values management module1 Configures management module 1 as an active management module for next boot management module2 Configures management module 2 as an active management module for next boot standby Configures standby module as an active management module for next boot disable redundan...

Page 467: ... fabric module p 464 management module no redundancy management module Enable Disable redundant management switchover redundancy switchover Switchover to the standby management module 465 2009 Hewlett Packard Development Company L P redundancy Command Line Interface Reference Guide ...

Page 468: ...agement management module1 management module2 standby Specify the management module that will be active for next boot NUMBER p 466 redundancy switchover Switchover to the standby management module p 466 COMMAND DETAILS switchover p 466 active management p 466 active management redundancy active management management module1 management module2 standby Specify the management module that will be acti...

Page 469: ...67 reload at Warm reboot at a specified time If the mm dd yy is left blank the current day is assumed p 468 time Time on given date to do a warm reboot HH MM SS p 468 date Date on which a warm reboot is to occur MM DD YY YY p 468 EXAMPLES Example reload Automatically save your configuration changes and reboot the switch from the same flash image you have been using ProCurve config max vlans 12 Com...

Page 470: ... date to do a warm reboot HH MM SS p 468 date reload at TIME DATE Date on which a warm reboot is to occur time reload at TIME Time on given date to do a warm reboot Next Available Option date Date on which a warm reboot is to occur MM DD YY YY p 468 468 2009 Hewlett Packard Development Company L P reload Command Line Interface Reference Guide ...

Page 471: ... NEWNAME p 469 newname Specify new name for configuration file ASCII STR p 469 COMMAND DETAILS newname p 469 config p 469 config rename config config config1 Usage rename config OLDNAME NEWNAME Description Change the name of the configuration OLDNAME to NEWNAME No action occurs if there is no configuration named OLDNAME or if a configuration named NEWNAME already exists Supported Values config con...

Page 472: ...elay NUMBER is specified the iterations are separated by the NUMBER of seconds COMMAND STRUCTURE repeat CMDLIST Specify the position of the command to execute in the history list CMDLIST p 470 repeat count Number of repetitions to make NUMBER p 470 repeat delay Delay between the command executions NUMBER p 470 COMMAND DETAILS delay p 470 count p 470 CMDLIST p 470 CMDLIST repeat CMDLIST Specify the...

Page 473: ...ot so stubby area or NSSA and its cost p 483 metric type type1 type2 Metric type of the type 7 default p 482 no summary Do not send summary LSA into the area p 482 range Summarize routes matching address MASK pair p 484 ip Specify IP address MASK pair IP ADDR MASK LENGTH p 481 no advertise Do not advertise the range outside the area p 482 type summary nssa Link state database type to apply the ran...

Page 474: ...CII STR p 478 retransmit interval 1 to 3600 Set retransmit interval in seconds the default is 5 p 486 transit delay 1 to 3600 Set transit delay in seconds the default is 1 p 489 default metric 0 to 16777215 The default metric used for advertising external routes imported into OSPF by this router p 478 distance Set administrative distance to associate with intra area inter area and AS external rout...

Page 475: ...cify the priority for the Candidate RP router p 484 source ip vlan Specify the VLAN to use as a source for Candidate RP router IP address PIM SM must be enabled on this VLAN VLAN ID p 488 group prefix Specify the multicast group prefix to associate with the Candidate RP router p 480 GROUP ADDR GROUP MASK Enter the address and mask to define the multicast group range IP ADDR MASK LENGTH p 479 spt t...

Page 476: ...ication p 476 rfc1583 compatibility p 486 ip p 481 authentication key p 476 rip p 486 ip addr p 481 auto summary p 476 rp address p 487 IP ADDR p 481 backbone p 477 rp candidate p 487 join prune interval p 481 bsm interval p 477 source ip vlan p 488 md5 auth key chain p 481 bsr candidate p 477 spt threshold p 488 metric type p 482 chain name p 478 state refresh p 489 no advertise p 482 cost p 478 ...

Page 477: ...tised outside the area area virtual link defines a virtual link along with its time duration parameters transit delay The estimated number of seconds it takes to transmit a link state update packet over the link retransmit interval The number of seconds between link state advertisement retransmissions This value is also used when retransmitting database description and link state request packets h...

Page 478: ...tication key router ospf area OSPF AREA ID virtual link IP ADDR authentication key Set simple authentication method and key Next Available Option authentication key OSPF authentication key maximum 8 characters OCTET STR p 476 router ospf area OSPF AREA ID virtual link IP ADDR authentication key OCTET STR OSPF authentication key maximum 8 characters router ospf area backbone virtual link IP ADDR au...

Page 479: ...the router to advertise itself as the Candidate Bootstrap Router Candidate BSR for a PIM SM domain When enabling router to be a Candidate BSR the VLAN ID must be specified which IP address will be advertised as a Candidate BSR address PIM SM must be enabled on the VLAN Use no form of this command to disable the router to be a Candidate BSR NOTE It is recommended that the same routing switch is con...

Page 480: ...area OSPF AREA ID stub 0 to 16777215 Enter cost to use when injecting default routes into the area Range 0 to 16777215 router ospf area backbone stub 0 to 16777215 Enter cost to use when injecting default routes into the area Range 0 to 16777215 dead interval router ospf area OSPF AREA ID virtual link IP ADDR dead interval 1 to 65535 Set dead interval in seconds the default is 40 Range 1 to 65535 ...

Page 481: ...Usage distance 1 255 Description Set administrative distance for routes learned via RIP Default value is 120 Range 1 to 255 external no router ospf distance external 1 to 255 Set administrative distance to associate with external routes learned by OSPF Range 1 to 255 GROUP ADDR GROUP MASK no router pim rp address IP ADDR IP ADDR MASK LENGTH Specify the range of multicast group addresses associated...

Page 482: ...the hash mask Range 1 to 32 hello interval router ospf area OSPF AREA ID virtual link IP ADDR hello interval 1 to 65535 Set hello interval in seconds the default is 10 Range 1 to 65535 router ospf area backbone virtual link IP ADDR hello interval 1 to 65535 Set hello interval in seconds the default is 10 Range 1 to 65535 hold time router pim rp candidate hold time 30 to 255 Specify the hold time v...

Page 483: ...P MASK Specify the range of multicast group addresses associated with the static RP IP ADDR MASK LENGTH p 479 join prune interval router pim join prune interval 5 to 65535 Usage join prune interval 1 65535 Description Configure interval at which the router will send periodic PIM SM Join Prune messages Default is 60 seconds Range 5 to 65535 md5 auth key chain router ospf area OSPF AREA ID virtual l...

Page 484: ...Description The default metric type used for advertising external routes imported into OSPF by this router Supported Values type1 Comparable an OSPF metric plus the external metric type2 Non comparable metric the external metric no advertise router ospf area OSPF AREA ID range no advertise Do not advertise the range outside the area router ospf area backbone range no advertise Do not advertise the...

Page 485: ... Called without no the command enables OSPF on the device and changes current context to OSPF Configuration Context Otherwise no is specified the command disables OSPF The command can be followed by an OSPF configuration command Use router ospf to get a list of all possible options Next Available Options area Define remove an OSPF area area range or virtual link p 474 default metric 0 to 16777215 ...

Page 486: ...tically configure the Rendezvous Point RP to accept multicast traffic for specified group or range of groups p 487 rp candidate Configure router to advertise itself as the Candidate Rendezvous Point Candidate RP to the Bootstrap Router BSR p 487 join prune interval 5 to 65535 Configure interval at which the router will send periodic PIM SM Join Prune messages p 481 spt threshold Specify whether sw...

Page 487: ...y source protocols which will be redistributed into OSPF Use the no form of the command to disable redistribution of the specified protocol o static redistribute from manually configured routes o connected redistribute from locally connected network s o rip redistribute from RIP routes Supported Values connected static rip no router rip redistribute connected static ospf Usage no redistribute stat...

Page 488: ...83 compatibility This controls the preference rules used when choosing among multiple AS external LSAs advertising the same destination When RFC 1583 compatibility is disabled the preference rules are those stated in RFC 2328 which prevent routing loops when AS external LSAs for the same destination have been originated from different areas In order to minimize the chance of routing loops all OSPF...

Page 489: ... a specific entry use no form of the command Parameters o IP ADDR IP address of the Rendezvous Point o GROUP ADDR IP address of multicast group when combined with GROUP MASK gives the group prefix o GROUP MASK Defines the range of multicast group addresses o override Sets the precedence of statically configured RP higher than dynamically learned RPs Not set by default Next Available Option IP ADDR...

Page 490: ...ions hold time 30 to 255 Specify the hold time value to be send in C RP Adv messages p 480 priority 0 to 255 Specify the priority for the Candidate RP router p 484 source ip vlan Specify the VLAN to use as a source for Candidate RP router IP address PIM SM must be enabled on this VLAN VLAN ID p 488 group prefix Specify the multicast group prefix to associate with the Candidate RP router p 480 sour...

Page 491: ...nds the default is 1 Range 1 to 3600 router ospf area backbone virtual link IP ADDR transit delay 1 to 3600 Set transit delay in seconds the default is 1 Range 1 to 3600 trap no router ospf trap virtual interface state change neighbor state change virtual neighbor state change Usage no trap TRAP NAME all Description Enable disable OSPF traps The traps defined below are generated as the result of f...

Page 492: ...nnot be parsed virtual interface receive bad packet signifies the same condition on a virtual interface interface retransmit packet signifies than an OSPF packet has been retransmitted on a non virtual interface virtual interface retransmit packet signifies the same condition on a virtual interface originate lsa signifies that a new LSA has been originated by this router This trap is not invoked f...

Page 493: ...ftware MRT table is full all All types of traps traps no router vrrp traps Usage no router vrrp traps Description Enable disable generation of VRRP traps When enabled an appropriate SNMP notification message will be sent as a result of finding one of the following conditions o New Master this trap indicates that the sending agent has transitioned to Master state o Authentication Failure this trap ...

Page 494: ... ADDR Specify a virtual neighbor Next Available Options transit delay 1 to 3600 Set transit delay in seconds the default is 1 p 489 retransmit interval 1 to 3600 Set retransmit interval in seconds the default is 5 p 486 hello interval 1 to 65535 Set hello interval in seconds the default is 10 p 480 dead interval 1 to 65535 Set dead interval in seconds the default is 40 p 478 authentication key Set...

Page 495: ...ervices r wireless services SLOT ID p 493 config ASCII STR p 493 COMMAND DETAILS r wireless services p 493 config p 493 config r wireless services SLOT ID config CONFIG r wireless services r wireless services SLOT ID Next Available Option config ASCII STR p 493 493 2009 Hewlett Packard Development Company L P ...

Page 496: ...RUCTURE no savepower int 1 2 3 1 Power block 1 associated with ports 01 08 2 Power block 2 associated with ports 09 16 3 Power block 3 associated with ports 17 24 p 494 COMMAND DETAILS int p 494 int no savepower 1 2 3 1 Power block 1 associated with ports 01 08 2 Power block 2 associated with ports 09 16 3 Power block 3 associated with ports 17 24 Supported Values 1 Power block 1 ports 1 8 2 Power...

Page 497: ...e SLOT ID p 497 diagnostic restart Reboot services module into diagnostic partition p 496 id Index of the services CLI to access p 496 locator Control services module locator LED p 496 blink Blink the locate led p 496 duration 1 to 1440 Number of minutes duration default 30 NUMBER p 496 off Turn the locate led off p 496 on Turn the locate led on p 497 duration 1 to 1440 Number of minutes duration ...

Page 498: ...s SLOT ID locator blink 1 to 1440 Number of minutes duration default 30 Range 1 to 1440 id services SLOT ID INTEGER Index of the services CLI to access locator services SLOT ID locator Control services module locator LED Next Available Options on Turn the locate led on p 497 off Turn the locate led off p 496 blink Blink the locate led p 496 name services SLOT ID name NAME Name of the services CLI ...

Page 499: ...ions id Index of the services CLI to access p 496 name Name of the services CLI to access ASCII STR p 496 diagnostic restart Reboot services module into diagnostic partition p 496 locator Control services module locator LED p 496 reload Reboot services module p 497 shutdown Shutdown halt the services module p 497 tech Enter the configuration context for the services module p 497 tech services SLOT...

Page 500: ...RUCTURE services slot id Device slot identifier for the services module SLOT ID p 500 id Index of the services CLI to access p 499 locator Control services module locator LED p 499 blink Blink the locate led p 498 duration 1 to 1440 Number of minutes duration default 30 NUMBER p 499 off Turn the locate led off p 499 on Turn the locate led on p 499 duration 1 to 1440 Number of minutes duration defa...

Page 501: ...o access locator services SLOT ID locator Control services module locator LED Next Available Options on Turn the locate led on p 499 off Turn the locate led off p 499 blink Blink the locate led p 498 name services SLOT ID name NAME Name of the services CLI to access off services SLOT ID locator off Turn the locate led off on services SLOT ID locator on Turn the locate led on Next Available Option ...

Page 502: ... the services module Next Available Options id Index of the services CLI to access p 499 name Name of the services CLI to access ASCII STR p 499 locator Control services module locator LED p 499 reload Reboot services module p 500 shutdown Shutdown halt the services module p 500 500 2009 Hewlett Packard Development Company L P services Command Line Interface Reference Guide ...

Page 503: ...services CLI to access p 502 locator Control services module locator LED p 502 blink Blink the locate led p 501 duration 1 to 1440 Number of minutes duration default 30 NUMBER p 501 off Turn the locate led off p 502 on Turn the locate led on p 502 duration 1 to 1440 Number of minutes duration default 30 NUMBER p 501 name Name of the services CLI to access ASCII STR p 502 COMMAND DETAILS on p 502 l...

Page 504: ...e services SLOT ID name NAME Name of the services CLI to access off services SLOT ID locator off Turn the locate led off on services SLOT ID locator on Turn the locate led on Next Available Option duration 1 to 1440 Number of minutes duration default 30 NUMBER p 501 slot id services SLOT ID Device slot identifier for the services module Next Available Options id Index of the services CLI to access...

Page 505: ...503 2009 Hewlett Packard Development Company L P services Command Line Interface Reference Guide ...

Page 506: ...e instance ASCII STR p 504 type Type of the value to set See setmib help for details ASCII STR p 504 value A value to which to set the MIB object ASCII STR p 504 COMMAND DETAILS value p 504 type p 504 object p 504 object setMIB OBJECT MIB object name instance Next Available Option type Type of the value to set See setmib help for details ASCII STR p 504 type setMIB OBJECT TYPE Type of the value to...

Page 507: ...A value to which to set the MIB object 505 2009 Hewlett Packard Development Company L P setMIB Command Line Interface Reference Guide ...

Page 508: ...07 EXAMPLES Example setup Access the Switch Setup screen to quickly configure IP addressing and other basic settings ProCurve setup ProCurve 1 Jan 2001 2 14 27 TELNET MANAGER MODE Switch Setup System Name HPswitch System Contact Sysadmin Manager Password Confirm Password Logon Default CLI Time Zone 0 480 Community Name public Spanning Tree Enabled No No Default Gateway 10 10 10 1 Time Sync Method ...

Page 509: ...mt interfaces Usage setup mgmt interfaces Description Enter the Management Interface Wizard for configuring various management interfaces This wizard will help you with the initial setup of the various management interfaces The current values are shown in brackets Type in a new value or press Enter to keep the current value Press CTRL C at any time to quit the wizard without saving any changes Pre...

Page 510: ...mpled RECEIVER INSTANCE One of three posible sFlow receiver tables SAMPLING RATE N where 1 N is the number of packets sampled a value of 0 causes sampling to be disabled COMMAND STRUCTURE no sflow sflow receiver 1 to 3 Select one of three possible sFlow receiver tables NUMBER p 510 destination IP address of sFlow receiver collector management station IP ADDR p 509 sflow udp port 1 to 65535 UDP app...

Page 511: ...sable polling of counters p 509 sflow polling interval 20 to 2147483647 Specify the maximum interval seconds between polling of counters p 509 sampling sflow 1 to 3 sampling ETHERNET PORT LIST Specify the ports for which packets are to be sampled Next Available Options sflow sampler off 0 Disable sampling p 510 sflow sampler rate 50 to 16441700 Specify N where 1 N is the number of packets sampled ...

Page 512: ...to be sampled ethernet PORT LIST p 509 sflow sampler off sflow 1 to 3 sampling ETHERNET PORT LIST 0 Disable sampling Supported Values 0 Disable sampling sflow sampler rate sflow 1 to 3 sampling ETHERNET PORT LIST 50 to 16441700 Specify N where 1 N is the number of packets sampled Range 50 to 16441700 sflow udp port sflow 1 to 3 destination IP ADDR 1 to 65535 UDP application port of sFlow receiver ...

Page 513: ...ation table p 530 vlan Specify VLAN for which to show ARP entries VLAN ID p 603 show arp protect Display Dynamic ARP Protection information p 530 statistics VLAN ID RANGE p 594 show authentication Show Authentication configuration parameters p 531 show authorization Show Authorization configuration parameters p 531 show autorun Show Autorun configuration status p 533 show bandwidth Show queue perc...

Page 514: ...ASCII STR p 564 babble Display phonetic hash p 533 fingerprint Display hexadecimal hash p 552 host cert Display https certificate information p 555 host public key Display ssh host RSA public key p 555 babble Display phonetic hash p 533 fingerprint Display hexadecimal hash p 552 show debug Display currently active debug log destinations and types p 545 buffer Show the contents of the debug log buf...

Page 515: ...gging for thespecified port or vlan number p 577 portNum 1 to 409 Show internal version dependant counters for debugging for thespecified port or vlan number NUMBER p 580 resptime show service response time data for performance sensitive operations registered for response time measurement p 585 option Filter response time metrics shown to those services whose name contains the specified substring ...

Page 516: ...Show detailed information for the specified entry from the IP multicast routing table IP ADDR p 562 IP ADDR Specify the source IP address of the MRT entry IP ADDR p 562 ospf Show OSPF operational and configuration information p 574 area Show OSPF areas configured on the device p 529 area ip OSPF AREA ID p 530 external link state Show the Link State Advertisements from throughout the areas to which...

Page 517: ...Candidate BSR configuration information p 566 interface Show PIM interface information p 559 VLAN ID Specify the VLAN ID of the PIM interface to show VLAN ID p 607 mroute Show PIM specific information from the IP multicast routing table p 571 IP ADDR Specify the IP multicast group address of the MRT entry IP ADDR p 562 IP ADDR Specify the source IP address of the MRT entry IP ADDR p 562 neighbor S...

Page 518: ... vlan Displays information on the IPv6 neighbor discovery cache p 603 vlan Show IPv6 information for the VLAN with the ID supplied VLAN ID p 603 route Show the IPv6 routing table p 587 ipv6 addr Destination IPv6 address to display the routes to IPV6 ADDR p 563 type connected Specify type of routes to display p 600 routers Show the IPv6 Router table entries p 587 vlan Show the IPv6 Router Table Ent...

Page 519: ...s p 569 show modules p 570 details p 547 show monitor Show the switch network monitoring status and configuration if network monitoring is enabled p 570 endpoint Remote mirroring destination configuration p 550 mirror_session_id 1 to 4 Mirror destination number p 569 name Mirror destination name p 572 show name Show names assigned to the ports p 572 port list Show names assigned to the ports ether...

Page 520: ...0 mac based Show MAC Authentication statistics and configuration p 568 Specify ports for which MAC Authentication information will be shown ethernet PORT LIST p 525 clients Show the connected MAC address information p 538 detailed Show the connected MAC address detailed information p 546 config Show the current configuration of MAC Authentication p 540 auth server Show the authentication server re...

Page 521: ... qinq configuration details p 582 show qos Show various QoS settings p 582 device priority Show the device priority table priority based on the IP addresses p 548 dscp map Show mappings between DSCP policy and 802 p 549 port priority Show the port based priority table p 580 protocol priority Show the protocol priority p 582 queue config Displays outbound port queues configuration information p 583...

Page 522: ...communities trap receivers and Snmp response trap source ip policy configured on the switch p 591 community Specify SNMP community to which to restrict the output ASCII STR p 539 traps Show all configured traps p 599 show snmpv3 Show configuration of SNMPv3 features p 591 access rights Show information about access rights p 527 group ManagerPriv ManagerAuth OperatorAuth Show SNMPv3 users p 553 sec...

Page 523: ...ow the information p 572 detail Show spanning tree extended details Port Bridge Rx and Tx report p 546 mst config Show multiple spanning tree region configuration p 571 pending Show spanning tree pending configuration p 576 instance Show multiple spanning tree instance pending configuration information p 557 ist Show the information for the internal spanning tree IST instance p 563 MSTID 1 to 16 S...

Page 524: ...rection in p 548 show svlans Show status information for all VLANs p 597 ports Show VLANs that have at least one port from the PORT LIST as a member ethernet PORT LIST p 580 detail Display more info for each port from the PORT LIST separately p 546 vlan Show detailed VLAN information for the VLAN with the ID supplied VLAN ID p 603 show system Show global configured and operational system paramater...

Page 525: ...Show VRRP information for a VLAN p 603 VLAN ID Specify VLAN for which to display VRRP information VLAN ID p 607 config Show VRRP configuration information for the VLAN p 540 statistics Show VRRP statistics information for the VLAN p 594 vrid Show information for a virtual router p 608 VRID 1 to 255 Specify virtual router for which to display information p 608 config Show virtual router configurati...

Page 526: ... p 535 source port p 592 link state p 565 buffers p 536 spanning tree p 592 link state id p 566 c p 536 spf log p 593 lldp p 566 cam p 536 ssh p 593 local p 566 candidates p 537 stack p 593 local device p 566 cdp p 537 static p 594 lockout mac p 566 CHAIN NAME p 537 static mac p 594 logging p 567 class p 537 statistics p 594 loop protect p 567 client public key p 537 stats p 596 MAC p 567 clients ...

Page 527: ...p 581 feature coordinator p 551 vrid p 608 port utilization p 581 filename p 551 VRID p 608 power over ethernet p 581 files p 551 vrrp p 608 power supply p 582 filter p 552 web based p 609 protocol priority p 582 fingerprint p 552 web server p 610 pvst filter p 582 flash p 552 wireless services p 610 pvst protection p 582 forward protocol p 552 qinq p 582 front panel security p 553 show port acces...

Page 528: ...cify ports for which Web Authentication information will be shown Next Available Options config Show the current configuration of Web Authentication p 540 clients Show the current web client session statistics p 538 show port access web based config ETHERNET PORT LIST Specify ports for which Web Authentication information will be shown Next Available Options auth server Show the authentication ser...

Page 529: ...ing the CLI syntax used to create them o vlan VLAN ID Display Access Control Lists currently applied to the specified VLAN o ACL ID Display detailed information on the specified ACL o resources Display ACL Rules Masks availability o radius Display ACLs applied via RADIUS o ports Show ACLs applied to the specified ports Next Available Options radius Display ACLs applied via RADIUS ethernet PORT LIS...

Page 530: ...information on specified ACL Next Available Option config Show all configured ACL s on the switch using the CLI syntax used to create them p 540 show statistics aclv4 ACL NAME Enter the name of acl policy Next Available Options vlan Enter the statistics vlan VLAN ID p 603 port Enter the statistics port ethernet PORT NUM p 577 show statistics aclv6 ACL NAME Enter the name of acl policy Next Availab...

Page 531: ... limits for all traffic Next Available Options port list Specify ports for which information will be shown ethernet PORT LIST p 578 detailed Show Inbound Radius Override details p 546 show stack all Show information about all the stacks available on the LAN show tech all Usage show tech all custom buffers instrumentation mesh route statistics transceivers vrrp Description Display output of a prede...

Page 532: ...a id show ip ospf link state OSPF AREA ID Show LSAs for the specified area only area ip show ip ospf area OSPF AREA ID arp show arp Usage show arp vlan VLAN ID Description Show the IP ARP translation table If VLAN ID is specified the output is filtered on the VLAN ID Next Available Option vlan Specify VLAN for which to show ARP entries VLAN ID p 603 arp protect show arp protect Usage show arp prot...

Page 533: ...590 vlan Show authorized and unauthorized vlans for 802 1X authenticator p 603 clients Show the current 802 1X client session statistics p 538 show port access ETHERNET PORT LIST authenticator Usage show port access authenticator config statistics session counters Description Show 802 1X Port Based Network Access authenticator current status configuration or last session counters Next Available Op...

Page 534: ... LIST config auth server Show the authentication server related configuration items show port access web based config ETHERNET PORT LIST auth server Show the authentication server related configuration items show port access web based config auth server Show the authentication server related configuration items show port access ETHERNET PORT LIST mac based config auth server Show the authenticatio...

Page 535: ...onetic hash show crypto host public key babble Display phonetic hash show ip client public key babble Display phonetic hash show ip host public key babble Display phonetic hash bandwidth show bandwidth Usage show bandwidth output PORT LIST Description Show queue percentages for outbound guaranteed minimum bandwidth If PORT LIST parameter is specified information is shown only for the specified por...

Page 536: ...dings show ip source lockdown bindings Show source bindings for Dynamic IP Lockdown ports Next Available Option portlist Specify the ports for which source bindings need to be displayed ethernet PORT NUM p 578 blocked hosts show connection rate filter blocked hosts Show blocked IP addresses boot history show boot history Usage show boot history Description Display the system boot log bootp gateway...

Page 537: ...over ethernet brief Usage show power over ethernet brief Description Show summary of poe status Next Available Options port list Show the ports poe status ethernet PORT LIST p 578 slot Show summary of poe status SLOT ID RANGE p 591 bsr show ip pim bsr Usage show ip pim bsr elected local Description Show Bootstrap Router information When invoked without parameters displays the information about cur...

Page 538: ...cam show instrumentation cam Usage show instrumentation Description Show internal version dependant counters for debugging This data is for factory troubleshooting purposes The data displayed is dependent on which version of code is running Data is maintained for the current 5 minutes hour and day At the end of every 5 minutes hour or day averages and min max values are calculated and the current ...

Page 539: ... switch does not forward IGMP Report packets L1 Provides level 1 functionality Next Available Option neighbors Show CDP neighbors See show cdp help for details p 573 CHAIN NAME show key chain CHAIN NAME Show the chain detailed information class show class Show class config Next Available Options ipv4 Enter ipv4 class ASCII STR p 562 ipv6 Enter ipv6 class ASCII STR p 562 client public key show cryp...

Page 540: ...ent 802 1X client session statistics Next Available Option Show information for specified ports only ethernet PORT LIST p 525 show port access mac based ETHERNET PORT LIST clients Show the connected MAC address information Next Available Option detailed Show the connected MAC address detailed information p 546 show port access mac based clients Show the connected MAC address information Next Avail...

Page 541: ... port access ETHERNET PORT LIST web based clients Show the current web client session statistics Next Available Option detailed Show the current web client session detailed statistics p 546 column list show interfaces custom ETHERNET PORT LIST TITLE NN The list of desired FIELD WIDTH port type status speed mode mdi flow name vlan enabled intrusion bcast community show snmp server COMMUNITY Specify...

Page 542: ...ration file Next Available Options status Check if the running configuration differs from the statup configuration p 596 files List saved configuration files p 551 filename config config1 Display specified configuration p 551 show interfaces config Usage show interfaces config Description Show configuration information show ip igmp VLAN ID config Show IGMP configuration information for the VLAN sp...

Page 543: ...nformation will be shown ethernet PORT LIST p 525 auth server Show the authentication server related configuration items p 532 show port access web based ETHERNET PORT LIST config Show the current configuration of Web Authentication Next Available Options auth server Show the authentication server related configuration items p 532 web server Show the web server related configuration items p 610 de...

Page 544: ...s config Show status of 802 1X Web Auth and MAC Auth configurations show spanning tree ETHERNET PORT LIST config Show spanning tree configuration information Next Available Option instance Show the spanning tree instance information p 557 show spanning tree config Show spanning tree configuration information Next Available Option instance Show the spanning tree instance information p 557 show vrrp...

Page 545: ...s Display the IP addresses of the hosts that are blocked and throttled o blocked hosts Print the IP addresses of the hosts that are currently blocked o throttled hosts Print the IP addresses of the hosts that are currently throttled Next Available Options all hosts Show blocked and throttled IP addresses p 529 blocked hosts Show blocked IP addresses p 534 throttled hosts Show throttled IP addresse...

Page 546: ...y s o host public key display the ssh host public key o host cert display the device s ssl host certificate o autorun key display autorun key o autorun cert display trusted certificate Next Available Options client public key Display ssh authorized client public keys p 537 host public key Display ssh host RSA public key p 555 host cert Display https certificate information p 555 autorun key Displa...

Page 547: ...age show debug Description Display currently active debug log destinations and types Parameters o buffer Show the contents of the in memory debug buffer Next Available Option buffer Show the contents of the debug log buffer p 535 debug counters show spanning tree debug counters Show spanning tree debug counters information Next Available Options instance 0 to 16 Show spanning tree instance debug c...

Page 548: ...anning tree extended details Port Bridge Rx and Tx report show spanning tree instance 1 to 16 detail Show spanning tree extended details Port Bridge Rx and Tx report show vlans ports ETHERNET PORT LIST detail Display more info for each port from the PORT LIST separately show svlans ports ETHERNET PORT LIST detail Display more info for each port from the PORT LIST separately detailed show port acce...

Page 549: ...cator clients detailed Show the current 802 1X client session detailed statistics show port access ETHERNET PORT LIST mac based config detailed Show the detailed configuration of MAC Authentication show port access ETHERNET PORT LIST mac based clients detailed Show the connected MAC address detailed information show port access ETHERNET PORT LIST web based config detailed Show the detailed configu...

Page 550: ...ed interfaces Next Available Option bootp gateway Show the configured BOOTP gateway for configured interfaces p 534 dhcp snooping show dhcp snooping Usage show dhcp snooping binding stats Description Display DHCP snooping information Parameters o binding Display DHCP snooping binding information o stats Display DHCP snooping events Next Available Options binding Display DHCP snooping binding infor...

Page 551: ...ributed lacp of local and remote switch dns show ip dns Usage show ip dns Description Show configured DNS server IP addresses on the switch domains show igmp proxy domains Show all the currently configured IGMP proxy domains dscp map show qos dscp map Usage qos dscp map Description Show mappings between DSCP policy and 802 1p priority dyn authorization show radius dyn authorization Usage show radi...

Page 552: ...ass external link state show ip ospf external link state Usage show ip ospf external link state status advertise Description Show the Link State Advertisements from throughout the areas to which the device is attached The command shows only External Link State Advertisements The status keyword is optional and does not affect the command output If the advertise is specified each LSA is shown as a s...

Page 553: ...n Show system fan status fastboot show fastboot Usage show fastboot Description Shows the current status of fastboot on switch fault finder show fault finder Usage show fault finder Description Show the fault finder table feature coordinator show feature coordinator Display the feature coordination restrictions filename show config config config1 Display specified configuration Supported Values co...

Page 554: ...ingerprint Display hexadecimal hash show crypto host public key fingerprint Display hexadecimal hash show ip client public key fingerprint Display hexadecimal hash show ip host public key fingerprint Display hexadecimal hash flash show flash Usage show flash Description Show the version of software stored in the Primary and Secondary image locations forward protocol show ip forward protocol Usage ...

Page 555: ...ront panel buttons disabled general show ip ospf general Usage show ip ospf general Description Show OSPF basic configuration and operational information show ip rip general Usage show ip rip general Description Show RIP basic configuration and operational information global show vrrp config global Show global VRRP configuration information show vrrp statistics global Show global VRRP configuratio...

Page 556: ...anagerPriv ManagerAuth OperatorAuth Show SNMPv3 users Supported Values ManagerPriv Require privacy and authentication can access all objects ManagerAuth Require authentication can access all objects OperatorAuth Requires authentication limited access to objects OperatorNoAuth No authentication required limited access to objects ComManagerRW Community with manager and unrestricted write access ComM...

Page 557: ... Available Option dyn authorization p 549 host cert show crypto host cert Display https certificate information host public key show crypto host public key Display ssh host RSA public key Next Available Options babble Display phonetic hash p 533 fingerprint Display hexadecimal hash p 552 show ip host public key Usage show ip host public key babble fingerprint Description Display the SSH host RSA p...

Page 558: ...w detailed information igmp show igmp Usage show igmp Description Show global switch IGMP configuration parameters To get a list of all possible parameters use show igmp Next Available Option delayed flush Shows switch wide IGMP delayed flush value p 545 show ip igmp Usage show ip igmp config group IP ADDR VLAN ID config Description Invoked without any parameters shows per VLAN IGMP status or if V...

Page 559: ...s Show all the currently configured IGMP proxy domains p 549 vlans Show all the VLANs currently associated with IGMP proxy domains p 607 INDEX show filter INTEGER Show detailed information for the filter identified by the INDEX The indices are displayed by the show filter command info show lldp info Usage show lldp info local device remote device PORT LIST Description Show LLDP information about t...

Page 560: ...ee instance Show the spanning tree instance information Next Available Options ist Show the information for the internal spanning tree IST instance p 563 MSTID 1 to 16 Spanning tree instance ID for which to show the information p 572 show spanning tree pending instance Show multiple spanning tree instance pending configuration information Next Available Options ist Show the information for the int...

Page 561: ...sion dependant counters for debugging for thespecified port or vlan number p 603 port Show internal version dependant counters for debugging for thespecified port or vlan number p 577 resptime show service response time data for performance sensitive operations registered for response time measurement p 585 show tech instrumentation Usage show tech all custom buffers instrumentation mesh route sta...

Page 562: ...N ID Specify the VLAN ID of the IP multicast routing interface to show VLAN ID p 607 show ip pim interface Usage show ip pim interface VLAN ID Description Show PIM interface information Invoked without parameters shows all enabled PIM routing interfaces If the VLAN ID is specified then detailed information for the specified interface is shown Next Available Option VLAN ID Specify the VLAN ID of th...

Page 563: ...NUMBER p 537 helper address Show DHCP servers where DHCP requests received by the switch are to be forwarded p 555 forward protocol Show server addresses where broadcast requests received by the switch are to be forwarded based on configured port p 552 icmp Show ICMP Rate Limiting settings p 556 host public key Display the SSH host RSA public key NUMBER p 555 igmp Invoked without any parameters sh...

Page 564: ...e MRT entry IP ADDR p 562 show ip pim mroute IP ADDR IP ADDR Specify the source IP address of the MRT entry show ip pim neighbor IP ADDR Specify the IP address of the PIM neighbor to show ip recv mac address show ip recv mac address Show VLAN L3 Mac Address table ipv4 show class ipv4 IPV4 Enter ipv4 class ipv6 show ipv6 Usage show ipv6 Description Show the device IPv6 configuration Invoked without...

Page 565: ...w ip irdp Description Show IRDP ICMP Router Discovery Protocol settings ist show spanning tree ETHERNET PORT LIST config instance ist Show the information for the internal spanning tree IST instance show spanning tree ETHERNET PORT LIST instance ist Show the information for the internal spanning tree IST instance Next Available Option detail Show spanning tree extended details Port Bridge Rx and T...

Page 566: ... to use the chain Next Available Option CHAIN NAME Show the chain detailed information ASCII STR p 537 keyfile show crypto client public key manager operator Choose to display manager or operator keys Supported Values manager Select manager public keys operator Select operator public keys Next Available Options babble Display phonetic hash p 533 fingerprint Display hexadecimal hash p 552 keylist S...

Page 567: ...how link keepalive information on the switch show link keepalive command displays all the ports that are enabled for link keepalive show link keepalive statistics command displays detailed statistics like UDLD packets sent UDLD packets received etc for all link keepalive enabled ports Next Available Option statistics show detailed statistics for all link keepalive enabled ports p 594 link state sh...

Page 568: ...e link state id IP ADDR Show LSAs with the specified ID only lldp show lldp Usage show lldp Description Show various LLDP settings Use show lldp for the list of all possible options Next Available Options config Show LLDP configuration information p 540 info Show LLDP information about the remote or local device p 557 stats Show LLDP statistics p 596 auto provision Show LLDP auto provision related...

Page 569: ...ay be specified The a r and substring options may be used in combination with an event class option Next Available Options option Filter events shown See show logging help for details ASCII STR p 574 a Display all log events including those from previous boot cycles p 527 r Display log events in reverse order most recent first p 583 event_class M P W Specify substring to match in log entry See log...

Page 570: ... MAC Authentication is shown If auth server keyword has been specified then the authentication server related configuration items are shown If PORT LIST and detail keyword has been specified then the detailed configuration of MAC Authentication for the specified ports is shown If clients keyword has been specified then the connected MAC address information is shown Next Available Options Specify p...

Page 571: ...resses available for management and the time server if the switch uses one mcast show rate limit mcast Show limits for ingress multicast traffic Next Available Options port list Specify ports for which information will be shown ethernet PORT LIST p 578 detailed Show Inbound Radius Override details p 546 mesh show mesh Usage show mesh Description Show the switch mesh information such as mesh ports ...

Page 572: ...ation Next Available Option details p 547 monitor show instrumentation monitor Usage show instrumentation monitor Description Show latest values for monitored parameters The data displayed is dependent on which version of code is running Data is maintained for the current 5 minutes hour and day At the end of every 5 minutes hour or day averages and min max values are calculated and the current int...

Page 573: ...DDR Show detailed information for the specified entry from the IP multicast routing table IP ADDR p 562 interface Show IP multicast routing interfaces information p 559 show ip pim mroute Usage show ip pim mroute GRP ADDR SRC ADDR Description Show PIM specific information from the IP multicast routing table Invoked without parameters shows all PIM entries from the IP MRT If multicast group address...

Page 574: ... show the information Range 1 to 16 show spanning tree instance 1 to 16 Spanning tree instance ID for which to show the information Range 1 to 16 Next Available Option detail Show spanning tree extended details Port Bridge Rx and Tx report p 546 show spanning tree pending instance 1 to 16 Spanning tree instance ID for which to show the information Range 1 to 16 name show monitor name Mirror destin...

Page 575: ...parameters shows all PIM neighbors of this device If the IP ADDR is specified then detailed information for the specified neighbor is shown Next Available Option IP ADDR Specify the IP address of the PIM neighbor to show IP ADDR p 562 neighbor ip show ip ospf neighbor IP ADDR neighbors show cdp neighbors Show CDP neighbors See show cdp help for details Next Available Options neighbors port Show CD...

Page 576: ...own to those matching a string up to 64 chars show instrumentation resptime OPTION Filter response time metrics shown to those services whose name contains the specified substring of up to 16 chars show logging OPTION Filter events shown See show logging help for details ospf show ip ospf Usage show ip ospf command Description Show OSPF operational and configuration information The command can be ...

Page 577: ... 586 traps Show OSPF traps enabled on the device p 599 virtual neighbor Show all virtual neighbors of the device p 603 virtual link Show status of all OSPF virtual links configured p 603 output show bandwidth output Show outbound guaranteed minimum bandwidth Next Available Option port list Specify ports for which information will be shown ethernet PORT LIST p 578 PARAM NAME show snmpv3 params PARA...

Page 578: ... used to obtain more detailed information of the protocol functionality Use show ip pim to get a list of all possible commands Next Available Options mroute Show PIM specific information from the IP multicast routing table p 571 interface Show PIM interface information p 559 neighbor Show PIM neighbor information p 573 bsr Show Bootstrap Router information p 535 rp candidate Show Candidate RP oper...

Page 579: ...p port vlan num Description Show internal version dependant counters for debugging for thespecified port or vlan number Next Available Option portNum 1 to 409 Show internal version dependant counters for debugging for thespecified port or vlan number NUMBER p 580 show statistics aclv4 ACL NAME port ETHERNET PORT NUM Enter the statistics port show statistics aclv6 ACL NAME port ETHERNET PORT NUM En...

Page 580: ... the ports Next Available Option hc Show summary of network traffic handled by the ports p 554 show interfaces brief ETHERNET PORT LIST Usage show interfaces ethernet PORT LIST Description Show summary of network traffic handled by the ports show lldp config ETHERNET PORT LIST Specify the port or list of ports show lldp info remote device ETHERNET PORT LIST Show remote or local device information ...

Page 581: ...n will be shown show rate limit icmp ETHERNET PORT LIST Specify ports for which information will be shown show rate limit all ETHERNET PORT LIST Specify ports for which information will be shown show rate limit bcast ETHERNET PORT LIST Specify ports for which information will be shown show rate limit mcast ETHERNET PORT LIST Specify ports for which information will be shown show sflow 1 to 3 sampl...

Page 582: ...9 Usage show instrumentation group port vlan num Description Show internal version dependant counters for debugging for thespecified port or vlan number Range 1 to 409 port priority show qos port priority Usage show qos port priority Description Show the port based priority table ports show access list ports ETHERNET PORT LIST Show ACLs applied to the specified ports show spanning tree debug count...

Page 583: ...T LIST specified Next Available Options port list Show a table describing port security settings ethernet PORT LIST p 578 intrusion log Show the intrusion log records p 561 port utilization show interfaces port utilization Usage show interfaces port utilization Description Show the ports bandwidth utilization power over ethernet show power over ethernet Usage show power over ethernet brief etherne...

Page 584: ...otection Show spanning tree PVST protection status information Next Available Option port list Limit the port information printed to the set of the specified ports ethernet PORT LIST p 578 qinq show qinq Usage show qinq Description show qinq configuration details qos show qos Usage show qos Description Show various QoS settings Use show qos for the list of all possible options Next Available Optio...

Page 585: ...OT ID radio ports Display radio ports associated with a wireless services module show lldp auto provision radio ports Show LLDP radio ports information radius show access list radius ETHERNET PORT LIST Display ACLs applied via RADIUS show radius Usage show radius authentication accounting dyn authorization host IP ADDR Description Show RADIUS status and statistics information Invoked without param...

Page 586: ...or ICMP traffic Use bcast to show limits for Broadcast traffic Use mcast to show limits for Multicast traffic Use detailed to show Inbound Radius Override details Next Available Options icmp Show only limits for icmp traffic p 556 all Show limits for all traffic p 529 bcast Show limits for ingress broadcast traffic p 534 mcast Show limits for ingress multicast traffic p 569 receiver index show sfl...

Page 587: ...ces Display ACL Rules Masks availability show qos resources Usage show qos resources Description Show the qos resources show policy resources Usage show policy resources Description Show the policy resources resptime show instrumentation resptime Usage show instrumentation resptime Description show service response time data for performance sensitive operations registered for response time measure...

Page 588: ...s Next Available Options general Show RIP basic configuration and operational information p 553 interface Show RIP interfaces information p 559 peer Show RIP peers p 575 redistribute List protocols which are being redistributed into RIP p 584 restrict List routes which will not be redistributed via RIP p 586 rmon show rmon Usage show rmon statistics PORT LIST Description Show detailed rmon statist...

Page 589: ...nected ospf Description Show the IPv6 routing table The output may be restricted to a specific destination or type of route Next Available Options ipv6 addr Destination IPv6 address to display the routes to IPV6 ADDR p 563 type connected Specify type of routes to display p 600 show tech route Usage show tech all custom buffers instrumentation mesh route statistics transceivers vrrp Description Dis...

Page 590: ...er When invoked without parameters shows all statically configured and dynamically learned entries If keyword static is specified the information about statically configured entries is shown If keyword learned is specified the information learned from the BSR is shown Next Available Options static Show statically configured RP Set information p 594 learned Show RP Set information learned from the ...

Page 591: ...ersion 3 security model p 602 show snmpv3 group ManagerPriv ManagerAuth OperatorAuth user USER sec model ver1 ver2c ver3 Show a specific security model Supported Values ver1 SNMP version 1 security model ver2c SNMP version v2c security model ver3 SNMP version 3 security model sequence number show ip ospf external link state sequence number INTEGER Show LSAs with the specified sequence number only ...

Page 592: ...s show port access authenticator session counters Show 802 1X current or last if no current sessions open sessions counters show port access ETHERNET PORT LIST authenticator session counters Show 802 1X current or last if no current sessions open sessions counters sessions show accounting sessions Usage show accounting sessions Description Show accounting data for all active sessions sflow show sf...

Page 593: ...wer over ethernet slot slotID Description Show poe information of specified slot snmp server show snmp server Usage show snmp server COMMUNITY STR show snmp server traps Description Display information on all SNMP communities trap receivers and Snmp response trap source ip policy configured on the switch If COMMUNITY STR is specified only information for that community is displayed Next Available ...

Page 594: ... binding show ip source binding Show Dynamic IP Lockdown trap status Next Available Option traps Show Dynamic IP Lockdown trap status p 599 source lockdown show ip source lockdown Show Dynamic IP Lockdown configuration Next Available Options status Show Dynamic IP Lockdown port status p 596 bindings Show source bindings for Dynamic IP Lockdown ports p 534 source port show filter source port Usage ...

Page 595: ...e Rx and Tx report p 546 config Show spanning tree configuration information p 540 instance Show the spanning tree instance information p 557 mst config Show multiple spanning tree region configuration p 571 pending Show spanning tree pending configuration p 576 root history Show spanning tree Root changes history information p 586 debug counters Show spanning tree debug counters information p 545...

Page 596: ...resses in all vlans The list is sorted by VLAN then MAC address statistics show arp protect statistics VLAN ID RANGE show ip ospf statistics Usage show ip ospf statistics IP ADDR vlan VLAN ID Description List OSPF packet statistics OSPF sent recieved and error packet count of all OSPF enabled interfaces If IP ADDR specified list statistics for that interface if the interface is OSPF enabled If vla...

Page 597: ...ORT LIST Description Show RMON statistics for the ports show tech statistics Usage show tech all custom buffers instrumentation mesh route statistics transceivers vrrp Description Display output of a predefined command sequence used by technical support show vrrp statistics Usage show vrrp statistics Description Show VRRP statistics information for the device Next Available Option global Show glob...

Page 598: ...he keyword is optional and can be omitted show ip source lockdown status Show Dynamic IP Lockdown port status show running config status Check if the running configuration differs from the statup configuration SUB TREE show snmpv3 view VIEW NAME SUB TREE Set the OID of the tree supplicant show port access supplicant Usage show port access supplicant statistics Description Show 802 1X Port Based Ne...

Page 599: ...bal configured and operational system paramaters default is information Next Available Options information Show global configured and operational system parameters p 557 temperature Show systems temperatures and settings p 598 power supply Show Chassis Power Supply info and settings p 582 fans Show system fan status p 551 fan pref airflow dir Shows the user configured fan preferred airflow directi...

Page 600: ...uence used by technical support p 559 mesh Display output of a predefined command sequence used by technical support p 569 route Display output of a predefined command sequence used by technical support p 587 statistics Display output of a predefined command sequence used by technical support p 594 transceivers Display output of a predefined command sequence used by technical support p 599 vrrp Di...

Page 601: ...rp tracked entities Description Show VRRP tracked entity information transceivers show tech transceivers Usage show tech all custom buffers instrumentation mesh route statistics transceivers vrrp Description Display output of a predefined command sequence used by technical support traps show ip ospf traps Usage show ip ospf traps Description Show OSPF traps enabled on the device show ip source bin...

Page 602: ...mary links only as summary Show Autonomous System summary links only external Show Autonomous System external links only multicast Show multicast links only nssa Show NSSA external links only show ip route static connected rip Specify type of routes to display Supported Values static Show static routes only connected Show the switch s interface routes only rip Show RIP routes only ospf Show OSPF r...

Page 603: ...e uninstalled show licenses uninstalled Display verification key for features which have been uninstalled uplinks show wireless services SLOT ID uplinks Display uplink ports associated with a wireless services module uptime show uptime Usage show uptime Description Displays elapsed time since last boot user show snmpv3 group ManagerPriv ManagerAuth OperatorAuth user USER Show a specific user Next ...

Page 604: ...ver3 SNMP version 3 security model Next Available Option ver3 noauth auth priv Set security level p 602 show snmpv3 access rights ManagerPriv ManagerAuth OperatorAuth sec model ver3 noauth auth priv Set security level Supported Values noauth no authentication and no privacy auth authentication no privacy priv authentication and privacy version show version Usage show version Description Show softw...

Page 605: ...ify area of the virtual links to show OSPF AREA ID p 529 virtual neighbor show ip ospf virtual neighbor Usage show ip ospf virtual neighbor IP ADDR area OSPF AREA ID Description Show all virtual neighbors of the device The IP ADDR can be specified to display detailed information for a particular virtual neighbor If the area is specified only virtual neighbors belonging to the area are shown Next A...

Page 606: ...ort or vlan number Next Available Option vlanNum 1 to 2048 Show internal version dependant counters for debugging for thespecified port or vlan number NUMBER p 607 show ip helper address vlan VLAN ID Specify a vlan for which to show server addresses show ip forward protocol vlan VLAN ID Specify a vlan for which to show server addresses show ip igmp VLAN ID Show IGMP operational information for the...

Page 607: ...ipv6 routers vlan VLAN ID Show IPv6 information for the VLAN with the ID supplied show ipv6 mld vlan Show MLD VLAN information Next Available Option vlan id Show MLD operational information for the VLAN specified VLAN ID p 606 show ipv6 neighbors vlan Displays information on the IPv6 neighbor discovery cache Next Available Option vlan Show IPv6 information for the VLAN with the ID supplied VLAN ID...

Page 608: ...ME vlan VLAN ID Enter the statistics vlan Next Available Option direction in out vlan p 548 show statistics aclv6 ACL NAME vlan VLAN ID Enter the statistics vlan Next Available Option direction vlan p 548 show statistics policy POLICY NAME vlan VLAN ID Enter the statistics vlan Next Available Option direction in p 548 vlan id show ipv6 mld vlan VLAN ID Show MLD operational information for the VLAN...

Page 609: ...nternal version dependant counters for debugging for thespecified port or vlan number Range 1 to 2048 show instrumentation vlan 1 to 2048 Usage show instrumentation group port vlan num Description Show internal version dependant counters for debugging for thespecified port or vlan number Range 1 to 2048 vlan priority show qos vlan priority Usage show qos vlan priority Description Show the VLAN bas...

Page 610: ...er ID of the virtual neighbor for which to show detailed information vrid show vrrp vlan VLAN ID vrid Show information for a virtual router Next Available Option VRID 1 to 255 Specify virtual router for which to display information p 608 VRID show vrrp vlan VLAN ID vrid 1 to 255 Specify virtual router for which to display information Range 1 to 255 Next Available Options config Show virtual router...

Page 611: ...r keyword has been specified then the web server related configuration items are shown If PORT LIST and detail keyword has been specified then the detailed configuration of Web Authentication for the specified ports is shown If clients keyword has been specified then the current client session statistics is shown Next Available Options Specify ports for which Web Authentication information will be...

Page 612: ...rver Show the web server related configuration items show port access web based config web server Show the web server related configuration items show port access ETHERNET PORT LIST web based config web server Show the web server related configuration items wireless services show wireless services Usage show wireless services vlans show wireless services SLOT ID show wireless services SLOT ID radi...

Page 613: ...or the specified slot o SLOT ID radio ports Display radio ports associated with the specified slot o SLOT ID uplinks Display uplink ports associated with the specified slot Next Available Options radio ports Display radio ports associated with a wireless services module p 583 uplinks Display uplink ports associated with a wireless services module p 601 611 2009 Hewlett Packard Development Company ...

Page 614: ...e switch and the types of events for which the switch will send these messages In all cases the switch will send all messages resulting from thresholds to the network management station that explicitly set each threshold The levels specified on this screen correspond only to the traps set for event log messages not to those set for thresholds You can specify up to 10 trap receivers network managem...

Page 615: ...response pdu COMMAND STRUCTURE no snmp server community Add delete SNMP community ASCII STR p 615 view Operator Manager Add delete SNMP community p 622 write access Restricted Unrestricted Add delete SNMP community p 622 snmp server contact Name of the switch administrator ASCII STR p 616 no snmp server enable Enable Disable SNMPv1 v2 p 616 traps Enable disable event traps to be sent by the switch...

Page 616: ...in the snmp response pdu IP ADDR p 618 loopback 0 to 7 For the specified loopback interface lexicographically minimum configured ip address will be used as the source ip address in the snmp response pdu p 619 no snmp server trap source Specify the source ip address policy for the trap pdu p 621 ip addr IP Address for the source ip address field in the trap pdu IP ADDR p 618 loopback 0 to 7 For the...

Page 617: ...n Add delete SNMP community Parameters o community ASCII STR Enter up to 32 characters to name an SNMP community o manager operator manager the community can access all MIB objects operator default the community can access all except the CONFIG MIB o restricted unrestricted unrestricted any MIB variable that has read write access can be set restricted default MIB variables cannot be set only read ...

Page 618: ...lable Option traps Enable disable event traps to be sent by the switch p 621 events snmp server host IP ADDR None Debug All Supported Values None Send no log messages Debug Send debug traps for Internal use All Send all log messages Not INFO Send all but informational only messages Critical Send critical level log messages snmp server host IPV6 ADDR None Debug All Supported Values None Send no log...

Page 619: ...ork management stations Parameters o COMMUNITY STR SNMP community string o IP ADDR IP address of SNMP notification host o none all not info critical debug The level of Switch events that will generate a trap to be sent none send no log message all send all log messages not info send each log message that is not informational only critical send critical level log messages debug reserved for Interna...

Page 620: ...able Options retries 0 to 255 Specify the number of retries for informs p 620 timeout 1 to 21474836 Specify the interval between retries for informs in seconds NUMBER p 620 snmp server host IPV6 ADDR informs Specify if informs will be sent rather than notifications Next Available Options retries 0 to 255 Specify the number of retries for informs p 620 timeout 1 to 21474836 Specify the interval bet...

Page 621: ...able Disable SNMP support for the hpSwitchAuthentication MIB When the MIB access is enabled Manager read write access to the MIB is permitted Operator read write access to the MIB is always denied For security reasons network administrators are encouraged to disable SNMPV2c before using the MIB Next Available Option hpSwitchAuthMIB Enable Disable SNMP support for the hpSwitchAuthentication MIB p 6...

Page 622: ...ource ip address in the snmp response pdu p 616 loopback 0 to 7 For the specified loopback interface lexicographically minimum configured ip address will be used as the source ip address in the snmp response pdu p 619 retries snmp server host IP ADDR informs retries 0 to 255 Specify the number of retries for informs Range 0 to 255 snmp server host IPV6 ADDR informs retries 0 to 255 Specify the num...

Page 623: ...rting authentication server unreachable p 615 password change mgr Traps for management interface password change p 619 login failure mgr Traps for management interface login failure p 619 port security Traps for port access authentication failure p 619 trap source no snmp server trap source Usage no snmp server trap source IP ADDR loopback 0 7 Description Specify the source ip address policy for t...

Page 624: ...unity can access all MIB objects write access no snmp server community COMMUNITY Restricted Unrestricted Usage no snmp server community ASCII STR manager operator restricted unrestricted Description Add delete SNMP community Parameters o community ASCII STR Enter up to 32 characters to name an SNMP community o manager operator manager the community can access all MIB objects operator default the c...

Page 625: ...7483647 udp port number port number COMMAND STRUCTURE no snmpv3 community Configure SNMPv3 Community entry p 626 index Set community index ASCII STR p 627 name Set community name ASCII STR p 628 sec name Set security name ASCII STR p 631 tag Set tag value for the community ASCII STR p 631 no snmpv3 enable Enable SNMPv3 p 626 no snmpv3 engineid Configure SNMPv3 engineID ASCII STR p 626 no snmpv3 gr...

Page 626: ...default is 1500 p 632 udp port Set UDP port number to which the messages are sent default is 162 TCP UDP PORT p 632 ipv6addr Set IPv6 address of the destination target IPV6 ADDR p 627 addr mask Set range of transport addresses with this mask IP ADDR p 625 filter None Debug All Set log filters p 626 max msg size 484 to 65535 Set maximum message size value default is 1472 p 628 port mask Set range o...

Page 627: ...ams PARAMS IP ADDR addr mask IP ADDR Set range of transport addresses with this mask snmpv3 targetaddress TARGETADDRESS params PARAMS IPV6 ADDR addr mask IP ADDR Set range of transport addresses with this mask auth snmpv3 user USERNAME auth Set authentication paramaters Next Available Options authpassword Set authentication password ASCII STR p 625 authprotocol MD5 SHA Set authentication protocol ...

Page 628: ...TARGETADDRESS params PARAMS IP ADDR filter None Debug All Set log filters Supported Values None Send no log messages Debug Send debug traps for Internal use All Send all log messages Not INFO Send all but informational only messages Critical Send critical level log messages snmpv3 targetaddress TARGETADDRESS params PARAMS IPV6 ADDR filter None Debug All Set log filters Supported Values None Send n...

Page 629: ...addr snmpv3 targetaddress TARGETADDRESS params PARAMS IP ADDR Set IP address of the destination target Next Available Options addr mask Set range of transport addresses with this mask IP ADDR p 625 filter None Debug All Set log filters p 626 max msg size 484 to 65535 Set maximum message size value default is 1472 p 628 port mask Set range of udp ports with this mask TCP UDP PORT p 629 retries 0 to...

Page 630: ...AMS IPV6 ADDR max msg size 484 to 65535 Set maximum message size value default is 1472 Range 484 to 65535 message processing snmpv3 params PARAMS user USER sec model ver1 ver2c message processing ver1 ver2c ver3 Set message processing model value Supported Values ver1 SNMP version 1 message processing model ver2c SNMP version 2c message processing model ver3 SNMP version 3 message processing model...

Page 631: ...ADDR p 627 port mask snmpv3 targetaddress TARGETADDRESS params PARAMS IP ADDR port mask TCP UDP PORT Set range of udp ports with this mask snmpv3 targetaddress TARGETADDRESS params PARAMS IPV6 ADDR port mask TCP UDP PORT Set range of udp ports with this mask priv snmpv3 user USERNAME auth AUTHPASSWORD priv Set Privacy password Next Available Options privpassword Set Privacy password ASCII STR p 63...

Page 632: ...ocol to des AES Set the privacy protocol to aes 128 Next Available Option privpassword Set Privacy password ASCII STR p 630 snmpv3 user USERNAME auth MD5 SHA AUTHPASSWORD priv DES AES Set privacy protocol Supported Values DES Set the privacy protocol to des AES Set the privacy protocol to aes 128 Next Available Option privpassword Set Privacy password ASCII STR p 630 restricted access no snmpv3 re...

Page 633: ...3 security model p 633 sec model12c snmpv3 params PARAMS user USER sec model ver1 ver2c Configure SNMPv3 User entry Supported Values ver1 SNMP version 1 security model ver2c SNMP version 2c security model Next Available Option message processing ver1 ver2c ver3 Set message processing model value p 628 sec name snmpv3 community index INDEX name NAME sec name SEC NAME Set security name Next Availabl...

Page 634: ...483647 snmpv3 targetaddress TARGETADDRESS params PARAMS IPV6 ADDR timeout 0 to 2147483647 Set time out value default is 1500 Range 0 to 2147483647 udp port snmpv3 targetaddress TARGETADDRESS params PARAMS IP ADDR udp port TCP UDP PORT Set UDP port number to which the messages are sent default is 162 snmpv3 targetaddress TARGETADDRESS params PARAMS IPV6 ADDR udp port TCP UDP PORT Set UDP port numbe...

Page 635: ...rs p 625 ver3 snmpv3 params PARAMS user USER sec model ver3 SNMP version 3 security model Next Available Option message processing Set message processing model value p 628 snmpv3 params PARAMS user USER sec model ver3 message processing ver3 noauth auth priv Set security level Supported Values noauth no authentication and no privacy auth authentication no privacy priv authentication and privacy 63...

Page 636: ...vers are polled for getting the time It can have a value between 1 and 3 The final version of this command sets the SNTP poll interval which specifies the amount of time between updates of the system clock via SNTP COMMAND STRUCTURE sntp broadcast Operate in broadcast mode p 634 sntp poll interval 30 to 720 The amount of time between updates of the system clock via SNTP p 635 no sntp server Config...

Page 637: ... clock via SNTP Range 30 to 720 priority sntp server priority 1 to 3 Priority of the Server Address Range 1 to 3 Next Available Options ipaddr SNTP server IPv4 address IP ADDR p 635 ipv6addr SNTP server IPv6 address IPV6 ADDR p 635 server no sntp server Configure SNTP servers to poll time from Next Available Option priority 1 to 3 Priority of the Server Address NUMBER p 635 unicast sntp unicast Op...

Page 638: ...of the SNTP server Range 1 to 7 sntp server priority 1 to 3 IPV6 ADDR 1 to 7 Version of the SNTP server Range 1 to 7 636 2009 Hewlett Packard Development Company L P sntp Command Line Interface Reference Guide ...

Page 639: ... all possible configuration options or spanning tree ethernet PORT LIST help to get a detailed help for this form of the command o force version default native mode Set Spanning Tree protocol compatibility mode on the device Forces current protocol engine to emulate behavior of earlier versions of spanning tree protocol or operate in the native mode The value of this parameter applies to all ports...

Page 640: ...in MSTP mode only See the command help for more details o trap Enable disable STP traps The following traps are generated as a result of finding an unusual condition on a switch port Possible trap names are errant bpdu signifies that an unexpected Spanning Tree BPDU has been received on a port COMMAND STRUCTURE spanning tree bpdu protection timeout 0 to 65535 Set the time for protected ports to be...

Page 641: ...r 802 1t not legacy default pathcost values p 645 spanning tree max hops 1 to 40 Set the max number of hops in a region before the MST BPDU is discarded and the information held for a port is aged default is 20 p 645 spanning tree maximum age 6 to 40 Set maximum age of received STP information before it is discarded p 645 spanning tree pending Manipulate pending MSTP configuration p 647 apply Appl...

Page 642: ...ort s path cost to the fixed value p 646 path cost 1 to 65535 Set port s path cost to the fixed value p 646 priority 0 to 255 Set port priority the value is in range of 0 240 divided into steps of 16 that are numbered from 0 to 15 default is step 8 p 652 spanning tree priority 0 to 65535 Set the device STP priority p 652 spanning tree priority 0 to 15 Set the device STP priority the value is in ra...

Page 643: ...t auto Use dynamic method of selecting a value for the path cost spanning tree instance 1 to 16 ETHERNET PORT LIST path cost auto Use dynamic method of selecting a value for the path cost auto edge port no spanning tree ETHERNET PORT LIST auto edge port Set the automatic edge port detection bpdu filter no spanning tree ETHERNET PORT LIST bpdu filter Stop a specific port or ports from transmitting ...

Page 644: ...ing MST region configuration name default is switch s MAC address Next Available Option config name Specify the configuration name maximum 32 characters ASCII STR p 642 spanning tree pending config name CONFIG NAME Specify the configuration name maximum 32 characters config revision spanning tree config revision 0 to 65535 Set the MST region configuration revision number default is 0 Range 0 to 65...

Page 645: ...spanning tree ETHERNET PORT LIST hello time global Use the globally configured hello time value hello time spanning tree ETHERNET PORT LIST hello time Set message transmission interval in sec on the port Next Available Options hello time 1 to 10 Set message transmission interval in sec on the port p 643 global Use the globally configured hello time value p 643 spanning tree ETHERNET PORT LIST hell...

Page 646: ...instance to configure p 645 spanning tree pending instance Change pending MST instance configuration Next Available Option MSTID 1 to 16 ID of the MST instance to configure p 645 spanning tree clear debug counters instance 0 to 16 Clear spanning tree instance debug counters Range 0 to 16 Next Available Option ports Clear spanning tree port s debug counters ethernet PORT LIST p 651 spanning tree cl...

Page 647: ...rmation before it is discarded Range 6 to 40 mcheck spanning tree ETHERNET PORT LIST mcheck Force the port to transmit RST BPDUs mode spanning tree ETHERNET PORT LIST mode Norm Fast Uplink Set spanning tree operation mode Supported Values Norm Normal spanning tree mode Fast Fast spanning tree mode Uplink Fast Uplink spanning tree mode MSTID no spanning tree instance 1 to 16 ID of the MST instance ...

Page 648: ... path cost 1 to 65535 Set port s path cost to the fixed value Range 1 to 65535 spanning tree ETHERNET PORT LIST path cost Set port s path cost value Next Available Options path cost 1 to 200000000 Set port s path cost to the fixed value p 646 path cost 1 to 65535 Set port s path cost to the fixed value p 646 auto Use dynamic method of selecting a value for the path cost p 641 spanning tree ETHERNE...

Page 649: ...y command runs the pending configuration consistency check and activates the pending configuration if it yields no consistency errors The pending and active configurations exchange places if the apply command is completed successfully The spanning tree pending reset command overrides pending configuration with the active one Not all spanning tree parameters are available for the pending configurat...

Page 650: ...he Port Protocol Migration state machine to transmit RST or MST BPDUs for a Migrate Time period to test whether all STP Bridges on the attached LAN have been removed and the port can continue to transmit RST or MST BPDUs Setting mcheck has no effect if the Bridge is operating in STP Compatibility mode o path cost 1 65535 or 1 200000000 or auto Individual port cost used to determine which ports are...

Page 651: ...e range of 0 240 is divided into 16 steps These steps are numbered from 0 to 15 The number entered is multiplied to 16 to calculate the priority value to use by the protocol if protocol version is other than standard STP 802 1D o hello time 1 10 global default global Time in seconds between message transmissions when the switch is root Available for the per port configuration in MSTP mode only The...

Page 652: ...r configuration For RSTP MSTP 1 through 200000000 recommended value is 2000000 for Ethernet and 10 100TX ports operating at 10 Mbps 200000 for 10 100TX ports operating at 100 Mbps and 100FX 20000 for 1000SX 1000LX 1000Stk 1000T ports For STP 1 through 65535 recommended value is 100 for Ethernet and 10 100TX ports operating at 10 Mbps 10 for 10 100TX ports operating at 100 Mbps and 100FX 5 for 1000...

Page 653: ...TP mode only The value global means to use globally configured hello time for the port Next Available Options mode Norm Fast Uplink Set spanning tree operation mode p 645 path cost Set port s path cost value p 646 priority 0 to 255 Set port priority the value is in range of 0 240 divided into steps of 16 that are numbered from 0 to 15 default is step 8 p 652 spanning tree instance ist ETHERNET POR...

Page 654: ... 61440 divided into steps of 4096 that are numbered from 0 to 15 default is step 8 Range 0 to 15 spanning tree instance 1 to 16 priority 0 to 15 Set the device priority for the MST instance the value is in range of 0 61440 divided into steps of 4096 that are numbered from 0 to 15 default is step 8 Range 0 to 15 spanning tree instance 1 to 16 ETHERNET PORT LIST priority 0 to 15 Set the port priorit...

Page 655: ...nd topology changes to other ports trap no spanning tree trap errant bpdu Enable disable STP traps Supported Values errant bpdu vlan spanning tree instance 1 to 16 vlan Configure VLANs for the MST instance Next Available Option VLAN ID RANGE VLAN s to add to or to remove from the MST instance VLAN ID RANGE p 653 spanning tree pending instance 1 to 16 vlan Configure VLANs for the MST instance Next ...

Page 656: ...nning tree pending instance 1 to 16 vlan VLAN ID RANGE VLAN s to add to or to remove from the MST instance 654 2009 Hewlett Packard Development Company L P spanning tree Command Line Interface Reference Guide ...

Page 657: ... this switch s stack in case of this switch is a commander The INTEGER number must be between 1 and 15 0 is reserved for the commander switch Password must be supplied if the candidate switch has a manager password stack auto join allows this switch being a candidate to automatically join a stack The no option disables this feature stack auto grab allows this switch being a commander to automatica...

Page 658: ... MAC ADDR Join a stack as a member mac address stack member INTEGER mac address MAC ADDR MAC address of candidate member no stack member INTEGER Incorporate candidate into stack Next Available Options mac address MAC address of candidate MAC ADDR p 656 password Manager password of candidate ASCII STR p 656 password stack member INTEGER password PASSWORD Manager password of candidate transmission i...

Page 659: ... config1 keywords correspond to the names selected for the config files COMMAND STRUCTURE startup default config config config1 Specify configuration file to set as default p 657 startup default image primary secondary p 657 config config config1 Specify configuration file to set as default p 657 COMMAND DETAILS image p 657 config p 657 config startup default primary secondary config config config...

Page 660: ...secondary Secondary flash image Next Available Option config config config1 Specify configuration file to set as default p 657 658 2009 Hewlett Packard Development Company L P startup default Command Line Interface Reference Guide ...

Page 661: ...ac MAC ADDR interface The port list on which to lock down the MAC address ethernet PORT NUM p 659 no static mac MAC ADDR vlan The VLAN ID on which to lock down the MAC address VLAN ID p 659 EXAMPLES Example static mac MAC ADDR Lock MAC address 0800095F3AD6 to port A1 on VLAN V1 ProCurve config static mac 0800095F3AD6 vlan V1 interface A1 COMMAND DETAILS vlan p 659 interface p 659 interface no stat...

Page 662: ...ection called gvrp page 554 gvrp page 193 Usage static vlan VLAN ID Description Transform a dynamic VLAN to a static VLAN COMMAND STRUCTURE EXAMPLES Example static vlan Convert dynamically created VLAN 125 into a port based static VLAN ProCurve config static vlan 125 660 2009 Hewlett Packard Development Company L P ...

Page 663: ...ider network to customer sites These are managed by the service provider who can assign each customer a unique S VLAN_ID COMMAND STRUCTURE svlan VLAN ID auto Cause each port identified in the port list to learn its VLAN membership using the GARP VLAN Registration Protocol GVRP ethernet PORT LIST p 665 svlan VLAN ID connection rate filter Re enables access to a host or set of hosts that has been pr...

Page 664: ...l traffic p 665 mirror Mirror destination p 669 mirror_session_name Mirror destination name p 669 monitor_mirror_session_id 1 to 4 Mirror destination number p 670 svlan VLAN ID name Set the VLAN s name ASCII STR p 670 svlan VLAN ID protocol Set a predefined protocol for the current VLAN p 670 protocol group Enter a list of protocols for the current VLAN delimited by commas ASCII STR p 671 protocol...

Page 665: ... p 668 connection rate filter p 666 tagged p 671 ipv6 addr mask p 668 dhcp p 666 unblock p 672 jumbo p 669 dhcp bootp p 666 untagged p 672 link local p 669 dhcp snooping p 666 voice p 672 mirror p 669 direction p 666 well defined p 672 mirror_session_name p 669 dscp p 666 monitor p 669 enable p 667 monitor_mirror_session_id p 670 eui 64 p 667 access group no svlan VLAN ID ip access group ACCESS GR...

Page 666: ...ses may be configured on a single VLAN Next Available Options ip addr Interface IP address mask IP ADDR mask LENGTH p 668 dhcp bootp Configure the interface to use DHCP Bootp server to acquire parameters p 666 no svlan VLAN ID ipv6 address Usage no ipv6 address dhcp autoconfig IPv6 ADDR PREFIX LEN Description Set IPv6 parameters for communication within an IP network Each VLAN represents an IPv6 i...

Page 667: ... VLAN ID monitor all In Out Both Monitor all traffic Supported Values In Monitor all inbound traffic Out Monitor all outbound traffic Both Monitor all inbound and outbound traffic Next Available Option mirror Mirror destination p 669 anycast no svlan VLAN ID ipv6 address IPV6 ADDR PREFIX LEN anycast Address that is assigned to a set of interfaces that typically belong to different nodes auto svlan...

Page 668: ...ble Option unblock Resets a host previously blocked by the connection rate filter p 672 dhcp no svlan VLAN ID ipv6 address dhcp Configure a DHCPv6 client Next Available Option full Obtain IPv6 address Configuration information from DHCPv6 server p 667 dhcp bootp svlan VLAN ID ip address dhcp bootp Configure the interface to use DHCP Bootp server to acquire parameters dhcp snooping no svlan VLAN ID...

Page 669: ...no svlan VLAN ID forbid ETHERNET PORT LIST Usage no forbid ethernet PORT LIST Description Prevent ports from becoming a member of the current VLAN This is a VLAN context command It can be called directly from the VLAN context or follow the vlan VLAN ID command full no svlan VLAN ID ipv6 address dhcp full Obtain IPv6 address Configuration information from DHCPv6 server Next Available Option rapid c...

Page 670: ...ous IP parameters for the VLAN The ipv6 command must be followed by a feature specific keyword Use ipv6 to get a list of all possible options This is a VLAN context command It can be called directly from the VLAN context or follow the vlan VLAN ID command Next Available Options enable Enable IPv6 on an interface and configures an automatically generated link local addr p 667 address Set IPv6 param...

Page 671: ...r_mirror_session_id 1 to 4 Mirror destination number p 670 mirror_session_name Mirror destination name p 669 mirror_session_name no svlan VLAN ID monitor all In Out Both mirror Mirror destination name monitor no svlan VLAN ID monitor Usage 1 no monitor all in out both mirror 1 4 NAME STR 1 4 NAME STR 2 no monitor ip access group ACL NAME in mirror 1 4 NAME STR 1 4 NAME STR Description Define eithe...

Page 672: ...ME Usage name ASCII STR Description Set the VLAN s name This is a VLAN context command It can be called directly from the VLAN context or follow the vlan VLAN ID command priority svlan VLAN ID qos priority 0 1 2 Specify priority to use Supported Values 0 1 2 3 4 5 6 7 protocol svlan VLAN ID protocol Set a predefined protocol for the current VLAN Next Available Options protocols IPX IPv4 IPv6 Set a...

Page 673: ...000001 111111 priority 0 7 Description Set VLAN based priority The dscp or priority must be specified if no is not used Using no configures the switch not to apply a VLAN priority override to this VLAN s packets This is a VLAN context command It can be called directly from the VLAN context or follow the vlan VLAN ID command Next Available Options dscp Specify DSCP policy to use p 666 priority 0 1 ...

Page 674: ...oice Description Labels this VLAN as a Voice VLAN allowing you to separate prioritize and authenticate voice traffic moving through your network This is a VLAN context command It can be called directly from the VLAN context or follow the vlan VLAN ID command well defined svlan VLAN ID qos dscp af11 af12 af13 Usage no qos dscp map 0 1 63 af11 af12 af13 af21 af22 af23 af31 af32 af33 af41 af42 af43 e...

Page 675: ...sured Forwarding AF11 001100 1 Assured Forwarding AF12 001110 2 Assured Forwarding AF13 010010 0 Assured Forwarding AF21 010100 0 Assured Forwarding AF22 010110 3 Assured Forwarding AF23 011010 4 Assured Forwarding AF31 011100 4 Assured Forwarding AF32 011110 5 Assured Forwarding AF33 100010 6 Assured Forwarding AF41 100100 6 Assured Forwarding AF42 100110 7 Assured Forwarding AF43 101110 7 Expedi...

Page 676: ... cs3 cs4 cs5 cs6 cs7 674 2009 Hewlett Packard Development Company L P svlan Command Line Interface Reference Guide ...

Page 677: ...cal switch and a remote switch ProCurve Switch Local config switch interconnect a7 ProCurve Switch Remote config switch interconnect a8 COMMAND DETAILS trk group p 675 port num p 675 port num switch interconnect ETHERNET PORT NUM trk group switch interconnect Trk1 Trk2 Trk3 Supported Values Trk1 Trunk group 1 Trk2 Trunk group 2 Trk3 Trunk group 3 Trk4 Trunk group 4 Trk5 Trunk group 5 Trk6 Trunk gr...

Page 678: ...up 35 Trk36 Trunk group 36 Trk37 Trunk group 37 Trk38 Trunk group 38 Trk39 Trunk group 39 Trk40 Trunk group 40 Trk41 Trunk group 41 Trk42 Trunk group 42 Trk43 Trunk group 43 Trk44 Trunk group 44 Trk45 Trunk group 45 Trk46 Trunk group 46 Trk47 Trunk group 47 Trk48 Trunk group 48 Trk49 Trunk group 49 Trk50 Trunk group 50 Trk51 Trunk group 51 Trk52 Trunk group 52 Trk53 Trunk group 53 Trk54 Trunk grou...

Page 679: ...int p 677 fan pref airflow dir p 677 fan pref airflow dir no system fan pref airflow dir Usage system fan pref airflow dir port to power power to port Description Changes the preferred fan airflow direction power to port is the default value Next Available Option int port to power power to port p 677 int system fan pref airflow dir port to power power to port Supported Values port to power power t...

Page 680: ...parameter key KEY STR specifies an encryption key used during the authentication session with given server Specifying this key overrides the key set by the global configuration tacacs server key KEY STR command for this server only o key KEY STR Up to 100 characters Encryption key used for TACACS authentication Default value is null which means TACACS packets are sent using clear text The KEY STR ...

Page 681: ...ey to use with server Next Available Option key ASCII STR p 679 tacacs server host IP ADDR key KEY no tacacs server key Global encryption key Next Available Option key ASCII STR p 679 tacacs server key KEY timeout tacacs server timeout 1 to 255 Server timeout interval Range 1 to 255 679 2009 Hewlett Packard Development Company L P tacacs server Command Line Interface Reference Guide ...

Page 682: ...EXAMPLES Example task monitor When the task monitor command is enabled the show cpu command summarizes the processor usage ProCurve config task monitor cpu ProCurve config show cpu 2 percent busy from 2865 sec ago 1 sec ave 9 percent busy 5 sec ave 9 percent busy 1 min ave 1 percent busy CPU Description 99 Idle COMMAND DETAILS cpu p 680 cpu no task monitor cpu Monitor cpu usage by task group 680 2...

Page 683: ...ch is acting as a commander COMMAND STRUCTURE telnet host name Hostname of the device to connect to ASCII STR p 681 telnet ipv4 addr IPv4 address of the device to telnet to IP ADDR p 681 telnet ipv6 addr IPv6 address of the device to connect to IPV6 ADDR p 681 telnet SWITCH NUM The stack member number to which to telnet NUMBER p 682 EXAMPLES Example telnet IP ADDR Establish a Telnet session with t...

Page 684: ...Pv6 address of the device to connect to SWITCH NUM telnet NUMBER The stack member number to which to telnet 682 2009 Hewlett Packard Development Company L P telnet Command Line Interface Reference Guide ...

Page 685: ...disable telnet server on the switch For remote clients to use telnet the switch must first be configured for IPv4 By default telnet access is enabled Use show console command to see the status of this function COMMAND STRUCTURE EXAMPLES Example telnet server Re enable inbound Telnet access ProCurve config telnet server 683 2009 Hewlett Packard Development Company L P ...

Page 686: ... the height of the terminal window NUMBER p 684 terminal width 61 to 1920 Set the width of the terminal window NUMBER p 684 COMMAND DETAILS width p 684 length p 684 length terminal length 2 to 1000 Usage terminal length 2 1000 Description Set the height of the terminal window Range 2 to 1000 width terminal width 61 to 1920 Usage terminal width 53 1920 Description Set the width of the terminal wind...

Page 687: ... SFTP is to be enabled using SNMP both TFTP and auto TFTP MUST first be disabled COMMAND STRUCTURE no tftp client Enable disable the TFTP client p 685 no tftp server Enable disable the TFTP server p 685 COMMAND DETAILS server p 685 client p 685 client no tftp client Enable disable the TFTP client server no tftp server Enable disable the TFTP server 685 2009 Hewlett Packard Development Company L P ...

Page 688: ... time begin date and end date are valid only if the daylight time rule is set to user defined o begin date Set the beginning date for daylight savings time o end date Set the ending dates for daylight savings time Daylight savings time adjustment will be made at 2 00 AM on the first Sunday on or after the specified date COMMAND STRUCTURE time begin date The begin date of daylight savings time MM D...

Page 689: ...ime rule p 687 begin date p 687 timezone p 687 end date p 687 date p 687 begin date time begin date MM DD The begin date of daylight savings time date time DATE New date daylight time rule time daylight time rule None Alaska Continental US and Canada The daylight savings time rule for your location Supported Values None Alaska Continental US and Canada Middle Europe and Portugal Southern Hemispher...

Page 690: ...The number of minutes your location is West or East of GMT Range 720 to 840 688 2009 Hewlett Packard Development Company L P time Command Line Interface Reference Guide ...

Page 691: ...p Set the time protocol to the TIME protocol p 689 EXAMPLES Example timesync sntp Select SNTP and configure it with unicast mode and an SNTP server at 10 28 227 141 with the default server version 3 and default poll interval 720 seconds ProCurve config timesync sntp ProCurve config sntp unicast ProCurve config sntp server 10 28 227 141 COMMAND DETAILS timep p 689 sntp p 689 sntp timesync sntp Set ...

Page 692: ... to send out for each hop The default value is 3 o source IP_ADDR VLAN ID The source IPv4 address or VLAN Examples 1 hp switch traceroute 1 1 1 1 COMMAND STRUCTURE traceroute host name Hostname of the destination device ASCII STR p 691 maxttl 1 to 255 Maximum time to live 1 255 p 692 minttl 1 to 255 Minimum time to live 1 255 p 692 probes 1 to 5 Number of Probes 1 5 p 692 timeout 1 to 120 Tracerou...

Page 693: ...OMMAND DETAILS timeout p 693 minttl p 692 host name p 691 vlan p 693 probes p 692 ip addr p 691 source p 693 maxttl p 692 host name traceroute HOST NAME Hostname of the destination device Next Available Options minttl 1 to 255 Minimum time to live 1 255 p 692 maxttl 1 to 255 Maximum time to live 1 255 p 692 timeout 1 to 120 Traceroute timeout in seconds 1 120 p 693 probes 1 to 5 Number of Probes 1...

Page 694: ...aximum time to live 1 255 Range 1 to 255 traceroute source IP ADDR maxttl 1 to 255 Maximum time to live 1 255 Range 1 to 255 minttl traceroute IP ADDR minttl 1 to 255 Minimum time to live 1 255 Range 1 to 255 traceroute HOST NAME minttl 1 to 255 Minimum time to live 1 255 Range 1 to 255 traceroute source VLAN ID minttl 1 to 255 Minimum time to live 1 255 Range 1 to 255 traceroute source IP ADDR mi...

Page 695: ... seconds 1 120 Range 1 to 120 traceroute HOST NAME timeout 1 to 120 Traceroute timeout in seconds 1 120 Range 1 to 120 traceroute source VLAN ID timeout 1 to 120 Traceroute timeout in seconds 1 120 Range 1 to 120 traceroute source IP ADDR timeout 1 to 120 Traceroute timeout in seconds 1 120 Range 1 to 120 vlan traceroute source VLAN ID Source VLAN Next Available Options minttl 1 to 255 Minimum tim...

Page 696: ... probes 1 to 5 Number of Probes 1 5 p 692 694 2009 Hewlett Packard Development Company L P traceroute Command Line Interface Reference Guide ...

Page 697: ...Time in seconds to wait for a response to a probe The default value is 5 seconds o probes 1 5 Number of probe queries to send out for each hop The default value is 3 Examples 1 hp switch traceroutev6 80fe 20b cdff fedd 9a62 2 ProCurve traceroute6 2001 db8 10 traceroute to 2001 db8 10 1 hop min 30 hops max 5 sec timeout 3 probes 1 2001 db8 a 1c e3 3 0 ms 0 ms 0 ms 2 2001 db8 0 7 5 7 ms 3 ms 0 ms 3 ...

Page 698: ...8 timeout 1 to 120 Traceroute timeout in seconds 1 120 p 698 COMMAND DETAILS source p 698 maxttl p 697 host name p 696 timeout p 698 minttl p 697 ip addr p 696 vlan p 698 probes p 698 ipv6 addr p 696 host name traceroute6 HOST NAME Hostname of the destination device Next Available Options minttl 1 to 255 Minimum time to live 1 255 p 697 maxttl 1 to 255 Maximum time to live 1 255 p 697 timeout 1 to...

Page 699: ...inttl 1 to 255 Minimum number of hops allowed for each probe packet sent along the route If the minttl value is greater than the actual number of hops the traceroute output displays only the hops equal to or greater than the configured minttl threshold value If the minttl value is the same as the actual number of hops only the final hop is displayed in the command output If the minttl value is les...

Page 700: ... Source VLAN VLAN ID p 698 ip addr Source IPv6 address IPV6 ADDR p 696 timeout traceroute6 IPV6 ADDR timeout 1 to 120 Number of seconds within which a response is required from the IPv6 device at each hop in the route to the destination host before the traceroute operation times out 1 120 Range 1 to 120 Default 5 seconds traceroute6 HOST NAME timeout 1 to 120 Number of seconds within which a respo...

Page 701: ... 1 255 p 697 maxttl 1 to 255 Maximum time to live 1 255 p 697 timeout 1 to 120 Traceroute timeout in seconds 1 120 p 698 probes 1 to 5 Number of Probes 1 5 p 698 699 2009 Hewlett Packard Development Company L P traceroute6 Command Line Interface Reference Guide ...

Page 702: ...y configuring a static LACP trunk allows you to specify which ports are members and still configure advanced LACP features type lacp Any trunk group can have up to 8 member ports All ports that belong to the same trunk group must have the same port type All trunk groups use an algorithm that considers the source and destination MAC addresses for load distribution General Considerations To avoid br...

Page 703: ...ble Option trunk group Trk1 Trk2 Trk3 Specify the trunk group a port is to be a member of p 701 trunk group trunk ETHERNET PORT LIST Trk1 Trk2 Trk3 Specify the trunk group a port is to be a member of Supported Values Trk1 Trunk group 1 Trk2 Trunk group 2 Trk3 Trunk group 3 Trk4 Trunk group 4 Trk5 Trunk group 5 Trk6 Trunk group 6 Trk7 Trunk group 7 Trk8 Trunk group 8 Trk9 Trunk group 9 Trk10 Trunk ...

Page 704: ...k48 Trunk group 48 Trk49 Trunk group 49 Trk50 Trunk group 50 Trk51 Trunk group 51 Trk52 Trunk group 52 Trk53 Trunk group 53 Trk54 Trunk group 54 Trk55 Trunk group 55 Trk56 Trunk group 56 Trk57 Trunk group 57 Trk58 Trunk group 58 Trk59 Trunk group 59 Trk60 Trunk group 60 Next Available Option type Trunk LACP dt lacp Specify protocol to use on a manually configured trunk p 702 type trunk ETHERNET PO...

Page 705: ...update OVERVIEW Switch Management Category manager Primary context Related Commands Usage update Description Enter Monitor ROM Console COMMAND STRUCTURE 703 2009 Hewlett Packard Development Company L P ...

Page 706: ...tegory manager Primary context Related Commands Usage upgrade software SOFTWARE KEY Description Enter a key to upgrade system software and enable advanced features COMMAND STRUCTURE 704 2009 Hewlett Packard Development Company L P ...

Page 707: ... config Primary context connection rate filter page 90 Related Commands Usage no virus throttle Description To configure virus throttling please use the connection rate filter command COMMAND STRUCTURE 705 2009 Hewlett Packard Development Company L P ...

Page 708: ...sets a host previously blocked by the connection rate filter p 749 all Resets all previously blocked by the connection rate filter p 715 host Match packets from the specified IP address IP ADDR p 727 src ip Match packets from the specified subnet IP ADDR mask LENGTH p 748 no vlan VLAN ID dhcp snooping p 722 no vlan VLAN ID forbid Prevent ports from becoming a member of the current VLAN ethernet PO...

Page 709: ... sent on this interface p 726 maxadvertinterval 4 to 1800 Set the maximum time in seconds allowed between sending unsolicited router advertisements p 733 minadvertinterval 3 to 1800 Set the minimum time in seconds allowed between sending unsolicited router advertisements p 735 preference The preferability of the router as a default router relative to the other routers on the same subnet p 742 no d...

Page 710: ... hello interval in seconds the default is 10 p 725 md5 auth key chain Set MD5 authentication method and key chain p 734 chain name Specify key chain to use for MD5 authentication ASCII STR p 720 passive Configures an ospf interface as passive p 739 priority 0 to 255 Set priority of this router as a designated router p 742 retransmit interval 1 to 3600 Set retransmit interval in seconds the default...

Page 711: ...e value inserted into the LAN Prune Delay field of a LAN Prune Delay option on this interface p 743 proxy arp Enable disable proxy ARP p 744 rip Enable disable configure Routing Internet Protocol RIP on the VLAN interface p 746 all Process the request for all IP addresses p 715 authentication key Set RIP authentication key maximum 16 characters p 717 auth key text Set RIP authentication key maximu...

Page 712: ...link local IPv6 address IPV6 ADDR p 731 link local Configure a link local IPv6 address p 733 ipv6 addr mask Configure IPv6 address represented in CIDR notation IPV6 ADDR PREFIX LEN p 732 anycast Address that is assigned to a set of interfaces that typically belong to different nodes p 716 eui 64 An IPv6 EUI 64 address that can be automatically configured on any interface p 723 enable Enable IPv6 o...

Page 713: ...y the DSCP code point in decimal p 728 well defined af11 af12 af13 Define mapping between a DSCP Differentiated Services Codepoint value and an 802 p 752 priority 0 1 2 Specify priority to use p 742 no vlan VLAN ID service policy Apply the QoS Mirror policy on the vlan ASCII STR p 748 in Apply policy on inbound packets p 728 no vlan VLAN ID tagged Assign ports to current VLAN as tagged ethernet PO...

Page 714: ... authentication type p 718 protocol p 743 ip recv mac address p 731 auth key text p 719 protocol group p 743 ipv6 p 731 auto p 719 protocols p 744 ipv6 addr p 731 autoconfig p 719 proxy arp p 744 ipv6 addr mask p 732 backbone p 719 qos p 744 irdp p 732 backup p 720 querier p 744 jumbo p 732 binary range p 720 rapid commit p 745 lan prune delay p 733 blocked p 720 reachable time p 745 link local p ...

Page 715: ...LAN or it can manage new connection rates for virus throttling Connection rate filter ACLs should be applied as connection rate filter only Next Available Option direction in out connection rate filter p 722 no vlan VLAN ID ipv6 access group ACCESS GROUP Usage no ipv6 access group name vlan Description Apply a IPV6 ACl on a VLAN Parameters o name ipv6 acl name o vlan Apply the ipv6 acl as VLAN acl...

Page 716: ...licitly when called directly from a VLAN context In the latter case the command affects the VLAN identified by the context Parameters o autoconfig Enables automatic address configuration of IPv6 addresses using stateless configuration of an interface o dhcp The switch attempts to get its configuration from a DHCPv6 server o IPv6 ADDR PREFIX LEN Assign an IPv6 address to the switch or VLAN The IPv6...

Page 717: ...Set simple authentication method and key p 717 authentication Disable authentication p 717 md5 auth key chain Set MD5 authentication method and key chain p 734 cost 1 to 65535 Set metric of this interface p 721 dead interval 1 to 65535 Set dead interval in seconds the default is 40 p 721 hello interval 1 to 65535 Set hello interval in seconds the default is 10 p 725 priority 0 to 255 Set priority ...

Page 718: ...VLAN ID ip pim sparse ip addr any Dynamically determine IP address anycast no vlan VLAN ID ipv6 address IPV6 ADDR PREFIX LEN anycast Address that is assigned to a set of interfaces that typically belong to different nodes area vlan VLAN ID ip ospf area Specify an OSPF area Next Available Options area id Single integer or IP address style dotted decimal OSPF AREA ID p 717 backbone The backbone area...

Page 719: ... vlan VLAN ID ip ospf IP ADDR authentication Disable authentication no vlan VLAN ID ip ospf all authentication Disable authentication authentication key vlan VLAN ID ip ospf authentication key Set simple authentication method and key Next Available Option authentication key OSPF authentication key maximum 8 characters OCTET STR p 717 vlan VLAN ID ip ospf authentication key OCTET STR OSPF authentic...

Page 720: ... key text Set RIP authentication key maximum 16 characters OCTET STR p 719 no vlan VLAN ID ip rip all authentication key Set RIP authentication key maximum 16 characters Next Available Option auth key text Set RIP authentication key maximum 16 characters OCTET STR p 719 authentication type vlan VLAN ID ip rip authentication type none text Set authentication type used on this interface Supported Va...

Page 721: ...the VLAN context or follow the vlan VLAN ID command vlan VLAN ID ip igmp auto ETHERNET PORT LIST Usage ip igmp auto ethernet PORT LIST Description Instruct the device to monitor incoming multicast traffic on the specified ports this is the default behavior This feature is configured on a per VLAN basis vlan VLAN ID ipv6 mld auto ETHERNET PORT LIST Usage vlan vid ipv6 mld auto port list Description...

Page 722: ...ipv6 mld blocked ETHERNET PORT LIST Usage vlan vid ipv6 mld blocked port list Description Instruct the device to drop incoming multicast packets received on the specified ports This feature is configured on a per VLAN basis bootp gateway no vlan VLAN ID ip bootp gateway Usage no ip bootp gateway IP ADDR Description Add or remove the gateway address to be used for stamping incoming DHCP requests Th...

Page 723: ...ch Next Available Option unblock Resets a host previously blocked by the connection rate filter p 749 cost vlan VLAN ID ip ospf cost 1 to 65535 Set metric of this interface Range 1 to 65535 vlan VLAN ID ip ospf IP ADDR cost 1 to 65535 Set metric of this interface Range 1 to 65535 vlan VLAN ID ip ospf all cost 1 to 65535 Set metric of this interface Range 1 to 65535 dead interval vlan VLAN ID ip os...

Page 724: ...gmp proxy END OF PRINTABLE Specify the domain name to associate disassociate with the VLAN Supported Values END OF PRINTABLE dr priority vlan VLAN ID ip pim sparse dr priority INTEGER Usage ip pim sparse dr priority 0 2147483647 Description Set the priority value to use on the interface in the Designated Router election process Default is 1 dscp vlan VLAN ID qos dscp Specify DSCP policy to use Nex...

Page 725: ...th monitoring is specified VR continues to monitor master VR Next Available Option with monitoring Trigger VR to failover and continue montior of master VR p 753 fastleave no vlan VLAN ID ip igmp fastleave ETHERNET PORT LIST Usage no ip igmp fastleave ethernet PORT LIST Description Enables or disables IGMP Fast Leaves When enabled as soon as an IGMP Group Leave has been received on a non cascaded ...

Page 726: ...s feature is configured for ports on a per VLAN basis no vlan VLAN ID ipv6 mld forcedfastleave ETHERNET PORT LIST Usage no vlan vid ipv6 mld forcedfastleave port list Description Enables MLD Forced Fast Leave on the specified ports in the selected VLAN even if they are cascaded Default Disabled The no form of the command disables Forced Fast Leave on the specified ports in the selected VLAN forwar...

Page 727: ...terval 1 to 10 Usage ip pim dense graft retry interval 1 10 Description Set the interval a PIM router waits for a Graft Ack before resending a Graft on this interface Default value is 3 seconds Range 1 to 10 hello delay vlan VLAN ID ip pim dense hello delay 0 to 5 Usage ip pim dense hello delay 0 5 Description Set the maximum time before a triggered PIM Hello message is transmitted on this interfa...

Page 728: ...Usage no ip helper address IP ADDR Description Add or remove a DHCP server IP address for the VLAN The DHCP requests received by the switch on this VLAN are to be relayed to the specified DHCP server This is a VLAN context command It can be called directly from the VLAN context or follow the vlan VLAN ID command high priority forward no vlan VLAN ID ip igmp high priority forward Usage no ip igmp h...

Page 729: ...s is the default behavior ethernet PORT LIST p 719 blocked Instruct the device to drop incoming multicast packets received on the specified ports ethernet PORT LIST p 720 fastleave Enables or disables IGMP Fast Leaves ethernet PORT LIST p 723 forcedfastleave When enabled this feature forces IGMP Fast Leaves to occur even when the port is cascaded ethernet PORT LIST p 724 forward Instruct the devic...

Page 730: ...ip igmp querier interval 5 to 300 Sets the interval in seconds between IGMP queries default 125 Range 5 to 300 vlan VLAN ID ip recv mac address MAC ADDR interval Specify the L3 Mac Address timeout interval Next Available Option timer interval 1 to 255 Timeout interval in seconds 1 255 p 748 ip vlan VLAN ID ip Usage no ip Description Configure various IP parameters for the VLAN The ip command must ...

Page 731: ...N interface p 736 ip addr no vlan VLAN ID ip address IP ADDR mask LENGTH Interface IP address mask no vlan VLAN ID ip bootp gateway IP ADDR IPv4 address of the BOOTP gateway no vlan VLAN ID ip forward protocol udp IP ADDR IP address of the protocol server Next Available Options port num UDP port number of the server TCP UDP PORT p 741 port name dns ntp netbios ns NUMBER p 741 no vlan VLAN ID ip os...

Page 732: ...to dynamically determine it from the VLAN s current IP configuration The default is any This command also enable the PIM DM protocol on the VLAN interface Next Available Options ip addr Specify IP address IP ADDR p 729 any Dynamically determine IP address p 716 vlan VLAN ID ip pim dense ip addr IP ADDR Specify IP address vlan VLAN ID ip pim sparse ip addr Usage ip pim sparse ip addr IP ADDR any De...

Page 733: ...escription Configure various IP parameters for the VLAN The ipv6 command must be followed by a feature specific keyword Use ipv6 to get a list of all possible options This is a VLAN context command It can be called directly from the VLAN context or follow the vlan VLAN ID command Next Available Options enable Enable IPv6 on an interface and configures an automatically generated link local addr p 7...

Page 734: ...o get a list of all possible configurable parameters Next Available Options advert address multicast broadcast Specify the destination address to be used for router advertisements p 714 holdtime 4 to 9000 Set the lifetime in seconds of the router advertisements sent on this interface p 726 maxadvertinterval 4 to 1800 Set the maximum time in seconds allowed between sending unsolicited router advert...

Page 735: ...ontext or may follow the vlan VLAN ID command prefix When local proxy ARP is enabled on a VLAN the device responds to all ARP requests received on the VLAN ports with it s own hardware address lowest vlan VLAN ID vrrp vrid 1 to 255 primary ip address lowest Dynamically determine lowest IP address lport list no vlan VLAN ID vrrp vrid 1 to 255 track interface ETHERNET PORT LIST Usage no vrrp vrid VR...

Page 736: ... MD5 authentication ASCII STR p 720 vlan VLAN ID ip ospf IP ADDR md5 auth key chain Set MD5 authentication method and key chain Next Available Option chain name Specify key chain to use for MD5 authentication ASCII STR p 720 vlan VLAN ID ip ospf all md5 auth key chain Set MD5 authentication method and key chain Next Available Option chain name Specify key chain to use for MD5 authentication ASCII ...

Page 737: ...nfigures the MLD feature for MLD communication between Multicast Routers Multicast Servers and Multicast Clients connected to the device This is a VLAN context command If not preceded by no the command accepts a variety of configuration parameters To get a list of all available parameters use ipv6 mld To get detailed help for a parameter follow it with help keyword Example Commands ProCurve vlan 8...

Page 738: ...context command It can be called directly from the VLAN context or follow the vlan VLAN ID command Parameters o 1 4 Mirror destination number o NAME STR Friendly name associated with the mirror destination number o ACL NAME Standard or Extended Access Control List number o in out both direction of the traffic to be monitored Next Available Option all In Out Both Monitor all traffic p 715 monitor_m...

Page 739: ...rameter Configure various Neighbors Discovery parameters o ns interval o reachable time Next Available Options ns interval Configures the neighbor discovery time between neighbor solicitation requests sent for an unresolved destination or between duplicate address detection neighbor solicitation requests p 737 reachable time Configures the length of time neighbors are considered reachable after be...

Page 740: ...lt value this is included in router advertisements as the ra retranstime value Range 1000 to 3600000 vlan VLAN ID ipv6 nd reachable time 1000 to 3600000 Usage no ipv6 nd ra lifetime seconds Description Configures the router lifetime sent in router advertisements A value of 0 tells hosts on the interface to not use this router as a default router Range 1000 to 3600000 ospf no vlan VLAN ID ip ospf U...

Page 741: ...e interval 500 6000 Description Set the value inserted into the Override Interval field of a LAN Prune Delay option on this interface Default is 2500 milliseconds Range 500 to 6000 vlan VLAN ID ip pim sparse override interval 500 to 6000 Usage ip pim sparse override interval 500 6000 Description Set the value inserted into the Override Interval field of a LAN Prune Delay option on this interface D...

Page 742: ...reshold 0 to 255 Set the Time To Live in a PIM DM State Refresh message at which it is not forwarded on this interface p 749 pim sparse no vlan VLAN ID ip pim sparse Usage no ip pim sparse Description Enable disable configure PIM SM protocol on the VLAN interface Use direct and no versions of the command to enable disable PIM SM on the interface Use ip pim sparse to get the list of all configurati...

Page 743: ...e Network Management Protocol 162 tftp Trivial File Transfer Protocol 69 timep Time Protocol 37 port num no vlan VLAN ID ip forward protocol udp IP ADDR TCP UDP PORT UDP port number of the server preempt delay time no vlan VLAN ID vrrp vrid 1 to 255 preempt delay time 1 to 600 Usage no vrrp vrid VRID preempt delay time 1 600 Description Allows you to specify a time in seconds that the Owner router...

Page 744: ...rimary ip address vlan VLAN ID vrrp vrid 1 to 255 primary ip address Usage no vrrp vrid VRID primary ip address IP ADDR lowest Description Specify IP address the virtual router instance will use as a source in VRRP advertisement messages If not set i e is 0 0 0 0 the virtual router uses numerically lowest IP address of the VLAN The default value is lowest Next Available Options ip addr Specify IP ...

Page 745: ...fault is 500 milliseconds Range 250 to 2000 vlan VLAN ID ip pim sparse propagation delay 250 to 2000 Usage ip pim sparse propagation delay 250 2000 Description Set the value inserted into the LAN Prune Delay field of a LAN Prune Delay option on this interface Default is 500 milliseconds Range 250 to 2000 protocol vlan VLAN ID protocol Set a predefined protocol for the current VLAN Next Available O...

Page 746: ...s received on the VLAN ports when the device knows a route to the requested IP addresses qos no vlan VLAN ID qos Usage no qos dscp 0 1 63 af11 af12 af13 af21 af22 af23 af31 af32 af33 af41 af42 af43 ef cs0 cs7 000000 000001 111111 priority 0 7 Description Set VLAN based priority The dscp or priority must be specified if no is not used Using no configures the switch not to apply a VLAN priority over...

Page 747: ...mmit Obtain IPv6 address quickly from DHCPv6 server reachable time no vlan VLAN ID ipv6 nd reachable time Usage no ipv6 nd reachable time milliseconds Description Configures the length of time neighbors are considered reachable after being confirmed as reachable via the neighbor unreachability detection algorithm This value appears in router advertisements sent on this interface and is also used t...

Page 748: ...Description Enable disable configure Routing Internet Protocol RIP on the VLAN interface Called without no the command enables RIP on the interface Otherwise no is specified the command disables RIP on the interface The command can be followed by a RIP configuration command Use ip rip to get a list of all possible options This is a VLAN context command It can be called directly from the VLAN conte...

Page 749: ...nly V2 only Use RIP version 2 only V1 or V2 Use RIP 2 in the RIP 1 compatible mode send vlan VLAN ID ip rip send disabled V1 only V1 compatible V2 Define RIP version for outgoing packets Supported Values disabled Do not send RIP updates V1 only Send RIP version 1 updates only V1 compatible V2 Send RIP 2 updates using RFC 1058 route subsumption V2 only Send RIP version 2 updates only vlan VLAN ID i...

Page 750: ... tagged ETHERNET PORT LIST Usage no tagged ethernet PORT LIST Description Assign ports to current VLAN as tagged This is a VLAN context command It can be called directly from the VLAN context or follow the vlan VLAN ID command timer interval vlan VLAN ID ip recv mac address MAC ADDR interval 1 to 255 Timeout interval in seconds 1 255 Range 1 to 255 track no vlan VLAN ID vrrp vrid 1 to 255 track Us...

Page 751: ...m TTL threshold for the interface Any IP multicast datagrams with a TTL less than this threshold will not be forwarded out the interface The default value of 0 means all multicast packets are forwarded out the interface Range 0 to 255 udp no vlan VLAN ID ip forward protocol udp Usage no ip forward protocol udp IP ADDR PORT NUM PORT NAME Description Add or remove a UDP server address for the VLAN T...

Page 752: ...y IP address to be supported by the virtual router instance There is no default value Next Available Option ip addr Specify IP address mask IP ADDR mask LENGTH p 729 vlan no vlan VLAN ID ipv6 access group ACCESS GROUP vlan VLAN acl no vlan VLAN ID vrrp vrid 1 to 255 track vlan Usage no vrrp vrid VRID track vlan VLAN ID RANGE Description Enable disable tracking of VLANs for VR Multiple VLAN ID RANG...

Page 753: ...ill use as a source in VRRP advertisement messages p 742 advertise interval 1 to 255 Set time interval in seconds between sending VRRP advertisement messages p 715 priority 1 to 255 Configure priority for the virtual router instance p 742 preempt mode Enable disable preempt mode for the virtual router instance p 742 preempt delay time 1 to 600 Enable the pre emptive delay timer for the virtual rou...

Page 754: ...qos dscp map codepoint name will remove the name associated with this policy but not the policy priority Certain codepoints may have a default associated 802 1p priority as part of the IETF standards for Assured Forwarding and Expedited Forwarding These are automatically configured as follows DiffServ 802 1p Codepoint Value IETF Standard Designation 001010 1 Assured Forwarding AF11 001100 1 Assure...

Page 755: ...6 cs7 with monitoring vlan VLAN ID vrrp vrid 1 to 255 failover with monitoring Usage vrrp vrid VRID failover with monitoring Description Trigger VR to failover and continue montior of master VR 753 2009 Hewlett Packard Development Company L P vlan Command Line Interface Reference Guide ...

Page 756: ...gh all instances of the object specified displaying the MIB object names instances and values COMMAND STRUCTURE walkMIB object The mib object to start from ASCII STR p 754 EXAMPLES Example walkMIB Walk the MIB objects in CdpCacheEntry COMMAND DETAILS object p 754 object walkMIB OBJECT The mib object to start from 754 2009 Hewlett Packard Development Company L P ...

Page 757: ... the device from accepting plaintext connections you must explicitly disable plaintext connections with the command no web management plaintext o TCP PORT optional TCP port on which the https server should listen for connections If not specified this defaults to port 443 This is configurable for ssl connections only the plaintext server always listens on the well known port 80 COMMAND STRUCTURE no...

Page 758: ...ps server secure Next Available Option ssl port TCP port on which https server should accept connections TCP UDP PORT p 756 ssl port web management ssl TCP UDP PORT TCP port on which https server should accept connections support url no web management support url Specify URL for web interface Support page Next Available Option support url Specify URL for web interface Support page ASCII STR p 756 ...

Page 759: ...nfigure parameters for the wireless services module or change the module s state reload or shutdown SLOT ID p 758 config ASCII STR p 757 diagnostic restart Reboot wireless services module into diagnostic partition p 757 reload Reboot wireless services module p 757 shutdown Shutdown halt the wireless services module p 758 tech Enter the configuration context for the wireless services module p 758 C...

Page 760: ...d or shutdown Parameters o SLOT ID Configure parameters for the wireless services module o SLOT ID reload Reboot wireless services module o SLOT ID shutdown Shutdown halt the wireless services module Next Available Options diagnostic restart Reboot wireless services module into diagnostic partition p 757 reload Reboot wireless services module p 757 shutdown Shutdown halt the wireless services modu...

Page 761: ...ess services module into diagnostic partition p 759 wireless services SLOT ID reload Reboot wireless services module p 759 wireless services SLOT ID shutdown Shutdown halt the wireless services module p 759 COMMAND DETAILS shutdown p 759 reload p 759 diagnostic restart p 759 diagnostic restart wireless services SLOT ID diagnostic restart Reboot wireless services module into diagnostic partition re...

Page 762: ...tifier for the wireless services module NOTES Multiple Contexts This command also is available in the config and manager contexts COMMAND STRUCTURE wireless services slot id Device slot identifier for the wireless services module SLOT ID p 760 COMMAND DETAILS slot id p 760 slot id wireless services SLOT ID Device slot identifier for the wireless services module 760 2009 Hewlett Packard Development...

Page 763: ...STRUCTURE write memory Save the running configuration of the switch to flash p 761 write terminal Display the running configuration of the switch on the terminal p 761 EXAMPLES Example write memory Make a configuration change in this example create a static IP route and save the change to the configuration file in flash memory ProCurve config ip route 192 0 0 0 255 0 0 0 195 1 1 1 ProCurve config ...

Page 764: ......

Page 765: ...any L P The information contained herein is subject to change without notice The only warranties for HP products and services are set forth in the express warranty statements accompanying such products and services Nothing herein should be construed as constituting an additional warranty HP will not be liable for technical or editorial errors or omissions contained herein April 2009 5992 3063 ...

Reviews:

No comments

Related manuals for 6200YL

Canon EOS-1D Mark II Digial Software Manual preview
EOS-1D Mark II Digial
Brand: Canon Pages: 2
Canon iR2270 Series Product Description preview
iR2270 Series
Brand: Canon Pages: 2
Canon Pixma Pro9500 Series Manual preview
Pixma Pro9500 Series
Brand: Canon Pages: 31
Canon PowerShot SD430 DIGITAL ELPH WIRELESS Software & Wireless Manual preview
PowerShot SD430 DIGITAL ELPH WIRELESS
Brand: Canon Pages: 130
Canon PowerShot SD880 IS Digital ELPH Software Starter Manual preview
PowerShot SD880 IS Digital ELPH
Brand: Canon Pages: 83
Canon Selphy CP600 Printer Software Manual preview
Selphy CP600
Brand: Canon Pages: 34
Canon N1240U - CanoScan Flatbed Scanner User Manual preview
N1240U - CanoScan Flatbed Scanner
Brand: Canon Pages: 109
DAVIS and Vantage Pro Getting Started Manual preview
and Vantage Pro
Brand: DAVIS Pages: 16
Hamlet Exagerate ZELIG-CAM PRO User Manual preview
Exagerate ZELIG-CAM PRO
Brand: Hamlet Pages: 6
Intergraph InterSite Quick Start Manual preview
InterSite
Brand: Intergraph Pages: 46
Ricoh Caplio Utility for Macintosh Operation Manual preview
Caplio Utility for Macintosh
Brand: Ricoh Pages: 19
Fujitsu ETERNUS VSS Hardware Provider 2.1 User Manual preview
ETERNUS VSS Hardware Provider 2.1
Brand: Fujitsu Pages: 134
Fujitsu ATLAS V14 User Manual preview
ATLAS V14
Brand: Fujitsu Pages: 302
Fujitsu PFU Rack2-Filer User Manual preview
PFU Rack2-Filer
Brand: Fujitsu Pages: 463
Fujitsu Eternus web GUI User Manual preview
Eternus web GUI
Brand: Fujitsu Pages: 635
Fujitsu ETERNUS User Manual preview
ETERNUS
Brand: Fujitsu Pages: 64
Avaya P130 SMON User Manual preview
P130 SMON
Brand: Avaya Pages: 160
Hollow Sun Vox Continental Instructions Manual preview
Vox Continental
Brand: Hollow Sun Pages: 9

Brands by name

Popular brands

Load more brands