background image

27-6

www.hp.com

HP PC Blade Switch CLI Reference Guide

User Interface Commands

exit (Configuration)

The 

exit

 command exits any configuration mode to the next highest mode in the CLI mode 

hierarchy.

Syntax

exit

Parameters

There are no parameters for this command.

Default Setting

This command has no default configuration.

Command Mode

All configuration modes

Command Usage

There are no user guidelines for this command.

Example

The following command changes the configuration mode from Interface Configuration mode to 
Privileged EXEC mode.

Console(config)#Console(config-if)#

 exit

Console(config)#

 exit

Console#

Summary of Contents for Bc1500 - BladeSystem - Blade PC

Page 1: ...Command Line Interface Reference Guide HP BladeSystem PC Blade Switch Document Part Number 413354 002 June 2006 ...

Page 2: ...al or editorial errors or omissions contained herein This document contains proprietary information that is protected by copyright No part of this document may be photocopied reproduced or translated to another language without the prior written consent of Hewlett Packard Company ÅWARNING Text set off in this manner indicates that failure to follow directions could result in bodily harm or loss of...

Page 3: ... period 2 8 dot1x max req 2 9 dot1x timeout supp timeout 2 10 dot1x timeout server timeout 2 11 show dot1x 2 12 show dot1x users 2 15 show dot1x statistics 2 16 Advanced Features 2 18 dot1x auth not req 2 18 dot1x multiple hosts 2 19 dot1x single host violation 2 20 dot1x guest vlan 2 21 dot1x guest vlan enable 2 22 show dot1x advanced 2 23 AAA Commands aaa authentication login 3 1 aaa authenticat...

Page 4: ...5 4 bridge multicast forbidden address 5 5 bridge multicast forward all 5 6 bridge multicast forbidden forward all 5 7 bridge aging time 5 8 clear bridge 5 9 port security 5 10 port security mode 5 11 port security max 5 12 port security routed secure address 5 13 show bridge address table 5 14 show bridge address table static 5 15 show bridge address table count 5 16 show bridge multicast address...

Page 5: ... 6 8 sntp client poll timer 6 9 sntp broadcast client enable 6 10 sntp anycast client enable 6 11 sntp client enable Interface 6 12 sntp unicast client enable 6 13 sntp unicast client poll 6 14 sntp server 6 15 show clock 6 16 show sntp configuration 6 17 show sntp status 6 18 Configuration and Image File Commands copy 7 1 delete 7 4 boot system 7 5 show running config 7 6 show startup config 7 7 ...

Page 6: ...port storm control broadcast enable 8 21 port storm control broadcast rate 8 22 show ports storm control 8 23 GVRP Commands gvrp enable Global 9 1 gvrp enable Interface 9 2 garp timer 9 3 gvrp vlan creation forbid 9 4 gvrp registration forbid 9 5 clear gvrp statistics 9 6 show gvrp configuration 9 7 show gvrp statistics 9 8 show gvrp error statistics 9 9 IGMP Snooping Commands ip igmp snooping Glo...

Page 7: ... clear host dhcp 11 14 show hosts 11 15 LACP Commands lacp system priority 12 1 lacp port priority 12 2 lacp timeout 12 3 show lacp ethernet 12 4 show lacp port channel 12 6 Line Commands line 13 1 speed 13 2 autobaud 13 3 exec timeout 13 4 history 13 5 history size 13 6 terminal history 13 7 terminal history size 13 8 show line 13 9 Management ACL Commands management access list 14 1 permit Manag...

Page 8: ...show ports monitor 17 3 QoS Commands qos 18 1 show qos 18 2 class map 18 3 show class map 18 5 match 18 6 policy map 18 7 class 18 8 show policy map 18 9 trust cos dscp 18 10 set 18 11 police 18 12 service policy 18 13 qos aggregate policer 18 14 show qos aggregate policer 18 15 police aggregate 18 16 wrr queue cos map 18 17 priority queue out num of queues 18 18 traffic shape 18 19 show qos inter...

Page 9: ...mon alarm table 20 11 show rmon alarm 20 12 rmon event 20 14 show rmon events 20 15 show rmon log 20 16 rmon table size 20 17 SNMP Commands snmp server community 21 1 snmp server view 21 3 snmp server group 21 4 snmp server user 21 5 snmp server engineid local 21 7 snmp server enable traps 21 9 snmp server filter 21 10 snmp server host 21 11 snmp server v3 host 21 13 snmp server trap authenticatio...

Page 10: ...clear spanning tree detected protocols 22 14 spanning tree mst priority 22 15 spanning tree mst max hops 22 16 spanning tree mst port priority 22 17 spanning tree mst cost 22 18 spanning tree mst configuration 22 19 instance mst 22 20 name mst 22 21 revision mst 22 22 show mst 22 23 exit mst 22 24 abort mst 22 25 spanning tree guard root 22 26 show spanning tree 22 27 spanning tree pvst interop 22...

Page 11: ... system logging 24 10 management logging 24 11 show logging 24 12 show logging file 24 14 System Management Commands ping 25 1 traceroute 25 3 telnet 25 5 resume 25 8 reload 25 9 hostname 25 10 show users 25 11 show sessions 25 12 show system 25 13 show version 25 14 service cpu utilization 25 15 show cpu utilization 25 16 TACACS Commands tacacs server host 26 1 tacacs server key 26 3 tacacs serve...

Page 12: ...ort trunk native vlan 28 9 switchport general allowed vlan 28 10 switchport general pvid 28 11 switchport general ingress filtering disable 28 12 switchport general acceptable frame type tagged only 28 13 switchport forbidden vlan 28 14 ip internal usage vlan 28 15 show vlan 28 16 show vlan internal usage 28 17 show interfaces switchport 28 18 Web Server Commands ip http server 29 1 ip http port 2...

Page 13: ...user name and password is entered the CLI displays the Console prompt and enters normal access mode i e Normal Exec 2 Enter the necessary commands to complete your desired tasks 3 When finished exit the session with the quit or exit command After connecting to the system through the console port the login screen displays Telnet Connection Telnet operates over the IP transport protocol In this envi...

Page 14: ...ost enter the Telnet command and the IP address of the device you want to access 2 At the prompt enter the user name and system password The CLI will display the Console prompt for the administrator to show that you are using privileged access mode i e Privileged Exec or Console for the guest to show that you are using normal access mode i e Normal Exec 3 Enter the necessary commands to complete y...

Page 15: ...l accept a minimum number of characters that uniquely identify a command For example the command configure can be entered as con If an entry is ambiguous the system will prompt for further input Command Completion If you terminate input with a Tab key the CLI will print the remaining characters of a partial keyword up to the point of ambiguity In the logging history example typing log followed by ...

Page 16: ...ing the show history command displays a longer list of recently executed commands Understanding Command Modes The command set is divided into Exec and Configuration classes Exec commands generally display information on system status or clear statistical counters Configuration commands on the other hand modify interface parameters or enable certain switching functions These classes are further div...

Page 17: ...e commands such as hostname and snmp server community Access Control List Configuration These commands are used for packet filtering DHCP Configuration These commands are used to configure the DHCP server Interface Configuration These commands modify the port configuration such as speed duplex and negotiation Line Configuration These commands modify the console port and Telnet configuration and in...

Page 18: ...ilable commands or parameters You can use the Tab key to complete partial commands or enter a partial command followed by the character to display a list of possible matches You can also use the following editing keystrokes for command line processing Keystroke Commands Console configure Console config Console config interface ethernet 1 e5 Console config if exit Console config Keystroke Function ...

Page 19: ...ltiple Ethernet type interfaces 8 1 GVRP Commands Display the GARP VLAN Registration Protocol GVRP configuration information enable GVRP globally or on an interface 9 1 IGMP Snooping Commands Enable the Internet Group Management Protocol IGMP snooping 10 1 IP Addressing Commands Define a default gateway set an IP address for interface delete entries from the host 11 1 LACP Commands Configure syste...

Page 20: ...t Shell SSH public keys on the device SSH server configuration or which SSH public key is manually configured 23 1 Syslog Commands Log messages to a syslog server or limit log messages to a syslog server 24 1 System Management Commands Display and list system version or Telnet session information 25 1 TACACS Commands Display configuration and statistical information about a Terminal Access Control...

Page 21: ...following table Default Setting No authentication method is defined Command Mode Global Configuration Command Usage Additional methods of authentication are used only if the previous method returns an error and not if the request for authentication is denied To ensure that authentication succeeds even if all methods return an error specify none as the final method in the command line The RADIUS se...

Page 22: ...lt configuration use the no form of this command Syntax dot1x system auth control no dot1x system auth control Parameters There are no parameters for this command Default Configuration 802 1x is disabled globally Command Modes Global Configuration mode Command Usage There are no user guidelines for this command Example The following command enables 802 1x globally Console config dot1x system auth ...

Page 23: ...ny authentication exchange required The port resends and receives normal traffic without 802 1x based authentication of the client force unauthorized Denies all access through this interface by forcing the port to transition to the unauthorized state and ignoring all attempts by the client to authenticate The device cannot provide authentication services to the client through the interface Default...

Page 24: ... no form of this command Syntax dot1x re authentication no dot1x re authentication Parameters There are no parameters for this command Default Setting Periodic re authentication is disabled Command Mode Interface Configuration Ethernet Command Usage There are no user guidelines for this command Example The following command enables periodic re authentication of the client Console config interface ...

Page 25: ...x timeout re authperiod seconds no dot1x timeout re authperiod Parameters seconds Number of seconds between re authentication attempts Range 300 4294967295 Default Setting Re authentication period is 3600 seconds Command Mode Interface Configuration Ethernet mode Command Usage There are no user guidelines for this command Example The following command sets the number of seconds between re authenti...

Page 26: ...d 802 1x enabled port Syntax dot1x re authenticate ethernet interface Parameters interface Valid Ethernet port Full syntax port Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command manually initiates a re authentication of 802 1x enabled Ethernet port 1 e16 Console dot1x...

Page 27: ...exchange with the client Range 0 65535 seconds Default Setting The default quiet period is 60 seconds Command Mode Interface Configuration Ethernet mode Command Usage During the quiet period the device does not accept or initiate authentication requests The default value of this command should only be changed to adjust for unusual circumstances such as unreliable links or specific behavioral probl...

Page 28: ...s the time in seconds that the device waits for a response to an EAP request identity frame from the client before resending the request Range 1 65535 seconds Default Configuration Timeout period is 30 seconds Command Mode Interface Configuration Ethernet mode Command Usage The default value of this command should be changed only to adjust for unusual circumstances such as unreliable links or spec...

Page 29: ...ot1x max req Parameters count Number of times that the device sends an EAP request identity frame before restarting the authentication process Range 1 10 Default Configuration The default number of times is 2 Command Mode Interface Configuration Ethernet mode Command Usage The default value of this command should be changed only to adjust for unusual circumstances such as unreliable links or speci...

Page 30: ...ime in seconds that the device waits for a response to an EAP request frame from the client before resending the request Range 1 65535 seconds Default Configuration Default timeout period is 30 seconds Command Mode Interface configuration Ethernet mode Command Usage The default value of this command should be changed only to adjust for unusual circumstances such as unreliable links or specific beh...

Page 31: ... seconds that the device waits for a response from the authentication server Range 1 65535 seconds Default Configuration The timeout period is 30 seconds Command Mode Interface configuration Ethernet mode Command Usage The actual timeout can be determined by comparing the dot1x timeout server timeout value and the result of multiplying the radius server retransmit value with the radius server time...

Page 32: ...There are no user guidelines for this command Example The following command displays the status of 802 1x enabled Ethernet ports Console show dot1x 802 1x is enabled Port Admin Mode Oper Mode Reauth Control Reauth Period Username 1 e1 Auto Authorized Ena 3600 Bob 1 e2 Auto Authorized Ena 3600 John 1 e3 Auto Unauthorized Ena 3600 Clark 1 e4 Force auth Authorized Dis 3600 n a 1 e5 Force auth Unautho...

Page 33: ...e The username representing the identity of the Supplicant This field shows the username in case the port control is auto If the port is Authorized it shows the username of the current user If the port is unauthorized it shows the last user that was authenticated successfully Quiet period The number of seconds that the device remains in the quiet state following a failed authentication exchange fo...

Page 34: ...s Authentication Method The authentication method used to establish the session Termination Cause The reason for the session termination State The current value of the Authenticator PAE state machine and of the Backend state machine Authentication success The number of times the state machine received a Success message from the Authentication Server Authentication fails The number of times the sta...

Page 35: ...802 1x users The following table describes the significant fields shown in the example Console show dot1x users Port Username Session Time Auth Method MAC Address 1 e1 Bob 1d 03 08 58 Remote 0008 3b79 8787 1 e2 John 08 19 17 None 0008 3b89 3127 Console show dot1x users username Bob Username Bob Port Username Session Time Auth Method MAC Address 1 e1 Bob 1d 03 08 58 Remote 0008 3b79 8787 Keyword De...

Page 36: ...owing command displays 802 1x statistics for the specified interface The following table describes the significant fields shown in the example Console show dot1x statistics ethernet 1 e1 EapolFramesRx 11 EapolFramesTx 12 EapolStartFramesRx 12 EapolLogoffFramesRx 1 EapolRespIdFramesRx 3 EapolRespFramesRx 6 EapolReqIdFramesTx 3 EapolReqFramesTx 6 InvalidEapolFramesRx 0 EapLengthErrorFramesRx 0 LastE...

Page 37: ...dFramesTx The number of EAP Req Id frames that have been transmitted by this Authenticator EapolReqFramesTx The number of EAP Request frames other than Rq Id frames that have been transmitted by this Authenticator InvalidEapolFramesRx The number of EAPOL frames that have been received by this Authenticator in which the frame type is not recognized EapLengthErrorFramesRx The number of EAPOL frames ...

Page 38: ...arameters There are no parameters for this command Default Configuration Access is enabled Command Mode Interface Configuration VLAN mode Command Usage An access port cannot be a member in an unauthenticated VLAN The native VLAN of a trunk port cannot be an unauthenticated VLAN For a general port the PVID can be an unauthenticated VLAN although only tagged packets would be accepted in the unauthor...

Page 39: ...Configuration Multiple hosts are disabled Command Mode Interface Configuration Ethernet mode Command Usage This command enables the attachment of multiple clients to a single 802 1x enabled port In this mode only one of the attached hosts must be successfully authorized for all hosts to be granted network access If the port becomes unauthorized all attached clients are denied access to the network...

Page 40: ...rames with source addresses that are not the supplicant address discard shutdown Discards frames with source addresses that are not the supplicant address The port is also shut down trap Indicates that SNMP traps are sent seconds Specifies the minimum amount of time in seconds between consecutive traps Range 1 1000000 Default Setting Frames with source addresses that are not the supplicant address...

Page 41: ...Usage Use the dot1x guest vlan enable Interface Configuration mode command to enable unauthorized users on an interface to access the guest VLAN If the guest VLAN is defined and enabled the port automatically joins the guest VLAN when the port is unauthorized and leaves it when the port becomes authorized To be able to join or leave the guest VLAN the port should not be a static member of the gues...

Page 42: ...nable no dot1x guest vlan enable Parameters There are no parameters for this command Default Setting Disabled Command Mode Interface Configuration Ethernet mode Command Usage A device can have only one global guest VLAN The guest VLAN is defined using the dot1x guest vlan Interface Configuration mode command Example The following command enables unauthorized users on Ethernet port 1 e1 to access t...

Page 43: ...nfiguration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command displays 802 1x advanced features for the device Console show dot1x advanced Guest VLAN 2 Unauthenticated VLANs 91 92 Interface Multiple Hosts Guest VLAN 1 e1 Disabled Enabled 1 e2 Enabled Disabled Console show dot1x advanced ethernet 1 e1 Interface Multiple Hosts...

Page 44: ...2 24 www hp com HP PC Blade Switch CLI Reference Guide 802 1x Commands ...

Page 45: ... a user logs in Range 1 12 characters method1 method2 Specify at least one from the following table Default Setting The local user database is checked This has the same effect as the command aaa authentication login list name local On the console login succeeds without any authentication check if the authentication method is not defined Command Mode Global Configuration mode Command Usage The defa...

Page 46: ...es the list of methods that the authentication algorithm tries in the given sequence The additional methods of authentication are used only if the previous method returns an error not if it fails To ensure that the authentication succeeds even if all methods return an error specify none as the final method in the command line Example The following command configures the authentication login Consol...

Page 47: ... console the enable password is used if it exists If no password is set the process still succeeds This has the same effect as using the command aaa authentication enable default enable none Command Mode Global Configuration mode Command Usage The default and optional list names created with the aaa authentication enable command are used with the enable authentication command The additional method...

Page 48: ... PC Blade Switch CLI Reference Guide AAA Commands Example The following command sets the enable password for authentication when accessing higher privilege levels Console config aaa authentication enable default enable ...

Page 49: ...e no login authentication Parameters default Uses the default list created with the aaa authentication login command list name Uses the indicated list created with the aaa authentication login command Default Setting Uses the default set with the command aaa authentication login Command Mode Line Configuration mode Command Usage Changing login authentication from default to another value may disco...

Page 50: ...tion default list name no enable authentication Parameters default Uses the default list created with the aaa authentication enable command list name Uses the indicated list created with the aaa authentication enable command Default Setting Uses the default set with the aaa authentication enable command Command Mode Line Configuration mode Command Usage There are no user guidelines for this comman...

Page 51: ...effect as the command ip http authentication local Command Mode Global Configuration mode Command Usage The additional methods of authentication are used only if the previous method returns an error not if it fails To ensure that the authentication succeeds even if all methods return an error specify none as the final method in the command line Example The following command configures the HTTP aut...

Page 52: ...fect as the command ip https authentication local Command Mode Global Configuration mode Command Usage The additional methods of authentication are used only if the previous method returns an error not if it fails To ensure that the authentication succeeds even if all methods return an error specify none as the final method in the command line Example The following command configures HTTPS authent...

Page 53: ...no default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command displays the authentication configuration Console show authentication methods Default RADIUS Local Line Console_Login Line None Enable Authentication Method Lists Default RADIUS Enable Console_Enable Enable None Line Login Method List Enable Method Li...

Page 54: ...Parameters password Password for this level Range 1 160 characters encrypted Encrypted password to be entered copied from another device configuration Default Setting No password is defined Command Mode Line Configuration mode Command Usage If a password is defined as encrypted the required password length is 32 characters Example The following command specifies password secret on a console Consol...

Page 55: ...Password for this level Range 1 159 characters level The user privilege level with the following options 1 Allows access but not configuration rights 15 Enables access and configuration rights encrypted Encrypted password entered copied from another device configuration Default Configuration No enable password is defined Command Mode Global Configuration mode Command Usage There are no user guidel...

Page 56: ...authentication password for the user Range 1 159 characters level The user privilege level with the following options 1 Allows access but not configuration rights 15 Enables access and configuration rights encrypted Encrypted password entered copied from another device configuration Default Configuration No user is defined Command Mode Global Configuration mode Command Usage User account can be cr...

Page 57: ...the no form of this command Syntax ip access list name no ip access list name Parameters name Specifies the name of the ACL Default Setting The default for all ACLs is deny all Command Mode Global Configuration mode Command Usage Up to 1018 rules can be defined on the device depending on the type of rule defined Example The following command creates an IP ACL Console config ip access list ip acl1 ...

Page 58: ...ource IP address of the packet Specify any to indicate IP address 0 0 0 0 and mask 255 255 255 255 source wildcard Specifies wildcard to be applied to the source IP address Use 1s in bit positions to be ignored Specify any to indicate IP address 0 0 0 0 and mask 255 255 255 255 destination Specifies the destination IP address of the packet Specify any to indicate IP address 0 0 0 0 and mask 255 25...

Page 59: ... code Range 0 255 igmp type IGMP packets can be filtered by IGMP message type Enter a number or one of the following values dvmrp host query host report pim or trace host report v2 host leave v2 host report v3 Range 0 255 destination port Specifies the UDP TCP destination port Range 0 65535 source port Specifies the UDP TCP source port Range 0 65535 list of flags Specifies a list of TCP flags that...

Page 60: ...t Configuration mode Before an Access Control Element ACE is added to an ACL all packets are permitted After an ACE is added an implied deny any any condition exists at the end of the list and those packets that do not match the conditions defined in the permit statement are denied Example The following command define a permit statement for an IP ACL Console config ip access list ip acl1 Console c...

Page 61: ...dress 0 0 0 0 and mask 255 255 255 255 source wildcard Specifies wildcard bits by placing 1s in bit positions to be ignored Specify any to indicate IP address 0 0 0 0 and mask 255 255 255 255 destination Specifies the IP address or host name to which the packet is being sent Specify any to indicate IP address 0 0 0 0 and mask 255 255 255 255 destination wildcard Specifies wildcard bits by placing ...

Page 62: ...dded an implied deny any any condition exists at the end of the list and those packets that do not match the defined conditions are denied Example The following commands define a permit statement for an IP ACL Inter Domain Routing Protocol idrp 45 Reservation Protocol rsvp 46 General Routing Encapsulation gre 47 Encapsulating Security Payload 50 esp 50 Authentication Header ah 51 ICMP for IPv6 ipv...

Page 63: ... To delete an ACL use the no form of this command Syntax mac access list name no mac access list name Parameters name Specifies the name of the ACL Default Setting The default for all ACLs is deny all Command Mode Global Configuration mode Command Usage There are no user guidelines for this command Example The following command creates a MAC ACL Console config mac access list macl acl1 Console con...

Page 64: ...ions to be ignored vlan id Specifies the ID of the packet VLAN Range 0 4095 cos Specifies the Class of Service CoS for the packet Range 0 7 cos wildcard Specifies wildcard bits to be applied to the CoS eth type Specifies the Ethernet type of the packet Range 0 65535 Default Setting No MAC ACL is defined Command Mode MAC Access List Configuration mode Command Usage Before an Access Control Element ...

Page 65: ... bit positions to be ignored vlan id Specifies the ID of the packet vlan cos Specifies the packets s Class of Service CoS cos wildcard Specifies wildcard bits to be applied to the CoS eth type Specifies the packet s Ethernet type Default Setting This command has no default configuration Command Mode MAC Access List Configuration mode Command Usage MAC BPDU packets cannot be denied This command def...

Page 66: ...lade Switch CLI Reference Guide ACL Commands Example The following commands create a MAC ACL with deny rules on a device Console config mac access list macl1 Console config mac acl deny 06 06 06 06 06 06 00 00 00 00 00 00 any ...

Page 67: ... the no form of this command Syntax service acl input acl name no service acl input Parameters acl name Specifies the ACL to be applied to the input interface Default Setting This command has no default configuration Command Mode Interface Ethernet port channel Configuration mode Example The following command binds services an ACL to VLAN 2 Console config interface vlan 2 Console config if service...

Page 68: ...vice Syntax show access lists name Parameters name Name of the ACL Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command displays access lists on a device Console show access lists IP access list ACL1 permit ip host 172 30 40 1 any permit rsvp host 172 30 8 8 any ...

Page 69: ...ss can only be deleted by the no bridge address command delete on reset The address is deleted after reset delete on timeout The address is deleted after age out time has expired secure The address is deleted after the port changes mode to unlock learning no port security command This parameter is only available when the port is in the learning locked mode Default Setting No static addresses are d...

Page 70: ...ess Table Commands Example The following command adds a permanent static MAC layer station source address 3aa2 64b3 a245 on port 1 e16 to the bridge table Console config interface vlan 2 Console config if bridge address 3aa2 64b3 a245 ethernet 1 e16 permanent ...

Page 71: ...mand Default Setting Filtering multicast addresses is disabled All multicast addresses are flooded to all ports Command Mode Global Configuration mode Command Usage If multicast devices exist on the VLAN do not change the unregistered multicast addresses state to drop on the switch ports If multicast devices exist on the VLAN and IGMP snooping is not enabled the bridge multicast forward all comman...

Page 72: ... A valid MAC multicast address ip multicast address A valid IP multicast address interface list Separate nonconsecutive Ethernet ports with a comma and no spaces a hyphen is used to designate a range of ports port channel number list Separate nonconsecutive port channels with a comma and no spaces a hyphen is used to designate a range of ports Default Setting No multicast addresses are defined Com...

Page 73: ...o join a Multicast group remove Removes ports from the Forbidden Port list mac multicast address A valid MAC multicast address ip multicast address A valid IP multicast address interface list Separate nonconsecutive Ethernet ports with a comma and no spaces hyphen is used to designate a range of ports port channel number list Separate nonconsecutive valid port channels with a comma and no spaces a...

Page 74: ...ticast packets remove Do not force forwarding all multicast packets interface list Separate nonconsecutive Ethernet ports with a comma and no spaces a hyphen is used to designate a range of ports port channel number list Separate nonconsecutive port channels with a comma and no spaces a hyphen is used to designate a range of port channels Default Setting This setting is disabled Command Mode Inter...

Page 75: ...rates nonconsecutive Ethernet ports with a comma and no spaces a hyphen is used to designate a range of ports port channel number list Separates nonconsecutive port channels with a comma and no spaces a hyphen is used to designate a range of port channels Default Setting This setting is disabled Command Mode Interface Configuration VLAN mode Command Usage IGMP snooping dynamically discovers multic...

Page 76: ...t configuration use the no form of this command Syntax bridge aging time seconds no bridge aging time Parameters seconds Time in seconds Range 10 630 seconds Default Setting The default is 300 seconds Command Mode Global Configuration mode Command Usage There are no user guidelines for this command Example The following command sets the bridge aging time to 250 seconds Console config bridge aging ...

Page 77: ...ny learned entries from the forwarding database Syntax clear bridge Parameters There are no parameters for this command Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command clears the bridge tables Console clear bridge ...

Page 78: ...ed source addresses This is the default if no option is indicated discard shutdown Discards packets with unlearned source addresses The port is also shut down seconds Sends SNMP traps and defines the minimum amount of time in seconds between consecutive traps Range 1 1000000 Default Setting This setting is disabled Command Mode Interface Configuration Ethernet port channel mode Command Usage There...

Page 79: ...ated with the port and disables learning relearning and aging dynamic Deletes the current dynamic MAC addresses associated with the port and learns up to the maximum number addresses allowed on the port Relearning and aging are enabled Default Setting This setting is disabled Command Mode Interface Configuration Ethernet port channel mode Command Usage There are no user guidelines for this command...

Page 80: ...yntax port security max max addr no port security max Parameters max addr Maximum number of addresses that can be learned by the port Range 1 128 Default Setting The default is 1 address Command Mode Interface Configuration Ethernet port channel mode Command Usage This command is only relevant in dynamic learning modes Example The following command sets the maximum number of addresses that are lea...

Page 81: ...iguration Ethernet port channel mode Cannot be configured for a range of interfaces range context Command Usage The command enables adding secure MAC addresses to a routed port in port security mode The command is available when the port is a routed port and in port security mode The address is deleted if the port exits the security mode or is not a routed port Use this command on interfaces that ...

Page 82: ... configuration Command Mode Privileged EXEC mode Command Usage Internal usage VLANs VLANs that are automatically allocated on ports with a defined Layer 3 interface are presented in the VLAN column by a port number and not by a VLAN ID Special MAC addresses that were not statically defined or dynamically learned are displayed in the MAC address table This includes for example MAC addresses defined...

Page 83: ...cifies a valid VLAN such as VLAN 1 interface A valid Ethernet port port channel number A valid port channel number Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command displays all static entries in the bridge forwarding database Console show bridge address table static ...

Page 84: ...channel number Parameters vlan Specifies a valid VLAN such as VLAN 1 interface A valid Ethernet port port channel number A valid port channel number Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command displays the number of addresses present in all VLANs Console show br...

Page 85: ...ess format ip mac Multicast address format Can be ip or mac If the format is unspecified the default is mac Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage A MAC address can be displayed in IP format only if it is in the range of 0100 5e00 0000 0100 5e7f ffff Example The following command displays Multicast MAC address and IP address table ...

Page 86: ...as shown in the example Console show bridge multicast address table format ip VLAN IP MAC Address Type Ports 1 224 239 130 2 2 3 static 1 e1 2 e2 19 224 239 130 2 2 8 static 1 e1 8 19 224 239 130 2 2 8 dynamic 1 e9 11 Forbidden ports for multicast addresses VLAN IP MAC Address Ports 1 224 239 130 2 2 3 2 e8 19 224 239 130 2 2 8 2 e8 ...

Page 87: ... id VLAN ID value Default Setting This command has no default configuration Command Mode User EXEC mode Command Usage There are no user guidelines for this command Example The following command displays the Multicast configuration for VLAN 1 Console show bridge multicast filtering 1 Filtering Enabled VLAN 1 Port Forward Unregistered Forward All Static Status Static Status 1 e1 Forbidden Filter For...

Page 88: ...lines for this command Example The following command displays all classes of port lock status entries The following table describes the fields shown in the example Console show ports security Port Status Learning Action Maximum Trap Frequency 1 e1 Locked Dynamic Discard 3 Enable 100 1 e2 Unlocked Dynamic 28 1 e3 Locked Disabled Discard Shutdown 8 Disable Field Description Port Port number Status L...

Page 89: ... Mode Privileged EXEC Mode Command Usage There are no user guidelines for this command Example The following command displays the dynamic addresses in currently locked ports The following command displays the dynamic addresses in currently locked port 1 e1 Console show ports security addresses Port Status Learning Current Maximum 1 e1 Disabled Lock 1 1 e2 Disabled Lock 1 1 e3 Enabled Max addresses...

Page 90: ...5 22 www hp com HP PC Blade Switch CLI Reference Guide Address Table Commands ...

Page 91: ...ours military format minutes and seconds hh 0 23 mm 0 59 ss 0 59 day Current day by date in the month 1 31 month Current month using the first three letters by name Jan Dec year Current year 2000 2097 Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command sets the system t...

Page 92: ... Use no form of this command to disable external time source Syntax clock source sntp no clock source Parameters sntp SNTP servers Default Setting No external clock source Command Mode Global Configuration mode Command Usage There are no user guidelines for this command Example The following command configures an external time source for the system clock Console config clock source sntp ...

Page 93: ... no clock timezone Parameters hours offset Hours difference from UTC Range 12 13 minutes offset Minutes difference from UTC Range 0 59 minutes acronym The acronym of the time zone Range Up to 4 characters Default Setting Clock set to UTC Command Mode Global Configuration mode Command Usage The system internally keeps time in UTC so this command is used only for display purposes and when the time i...

Page 94: ...te Indicates that summer time should start on the first specific date listed in the command and end on the second specific date in the command usa The summer time rules are the United States rules eu The summer time rules are the European Union rules week Week of the month Range 1 5 first last day Day of the week Range first three letters by name like sun date Date of the month Range 1 31 month Mo...

Page 95: ...If the starting month is chronologically after the ending month the system assumes that the user is in the southern hemisphere USA rule for daylight savings time Start First Sunday in April End Last Sunday in October Time 2 am local time EU rule for daylight savings time Start Last Sunday in March End Last Sunday in October Time 1 00 am 01 00 Example The following command sets the summer time star...

Page 96: ...r SNTP use the no form of this command Syntax sntp authentication key number md5 value no sntp authentication key number Parameters number Key number Range 1 4294967295 value Key value Range 1 8 characters Default Setting No authentication key is defined Command Mode Global Configuration mode Command Usage Multiple keys can be generated Example The following command defines the authentication key ...

Page 97: ...m of this command Syntax sntp authenticate no sntp authenticate Parameters There are no parameters for this command Default Setting No authentication Command Mode Global Configuration mode Command Usage The command is relevant for both unicast and broadcast Example The following command defines the authentication key for SNTP and grants authentication Console config sntp authentication key 8 md5 C...

Page 98: ...ed key key number no sntp trusted key key number Parameters key number Key number of authentication key to be trusted Range 1 4294967295 Default Setting No keys are trusted Command Mode Global Configuration mode Command Usage The command is relevant for both received unicast and broadcast If there is at least 1 trusted key then unauthenticated messages will be ignored Example The following command...

Page 99: ...se the no form of this command Syntax sntp client poll timer seconds no sntp client poll timer Parameters seconds Polling interval in seconds Range 60 86400 Default Setting Polling interval is 1024 seconds Command Mode Global Configuration mode Command Usage There are no user guidelines for this command Example The following command sets the polling time for the Simple Network Time Protocol SNTP c...

Page 100: ... of this command Syntax sntp broadcast client enable no sntp broadcast client enable Parameters There are no parameters for this command Default Setting The SNTP broadcast client is disabled Command Mode Global Configuration mode Command Usage Use the sntp client enable Interface Interface Configuration mode command to enable the SNTP client on a specific interface Example The following command en...

Page 101: ... anycast client enable Parameters There are no parameters for this command Default Setting The SNTP anycast client is disabled Command Mode Global Configuration mode Command Usage Polling time is determined by the sntp client poll timer Global Configuration mode command Use the sntp client enable Interface Interface Configuration mode command to enable the SNTP client on a specific interface Examp...

Page 102: ...nt enable no sntp client enable Parameters There are no parameters for this command Default Setting The SNTP client is disabled on an interface Command Mode Interface configuration Ethernet port channel VLAN mode Command Usage Use the sntp broadcast client enable Global Configuration mode command to enable broadcast clients globally Use the sntp anycast client enable Global Configuration mode comm...

Page 103: ...rom servers use the no form of this command Syntax sntp unicast client enable no sntp unicast client enable Parameters There are no parameters for this command Default Setting The SNTP unicast client is disabled Command Mode Global Configuration mode Command Usage Use the sntp server Global Configuration mode command to define SNTP servers Example The following command enables the device to use th...

Page 104: ...ng for SNTP client use the no form of this command Syntax sntp unicast client poll no sntp unicast client poll Parameters There are no parameters for this command Default Setting Polling is disabled Command Mode Global Configuration mode Command Usage Polling time is determined by the sntp client poll timer Global Configuration mode command Example The following command enables polling for SNTP pr...

Page 105: ...racters poll Enable polling keyid Authentication key to use when sending packets to this peer Range 1 4294967295 Default Setting No servers are defined Command Mode Global Configuration mode Command Usage Up to 8 SNTP servers can be defined Use the sntp unicast client enable Global Configuration mode command to enable predefined unicast clients globally To enable polling you should also use the sn...

Page 106: ...w clock display indicates the following information Example The following command displays the time and date from the system clock Symbol Description Time is not authoritative blank Time is authoritative Time is authoritative but SNTP is not synchronized Console show clock 15 29 03 PDT UTC 7 Jun 17 2006 Time source is SNTP Console show clock detail 15 29 03 PDT UTC 7 Jun 17 2006 Time source is SNT...

Page 107: ...ommand Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command displays the current SNTP configuration of the device Console show sntp configuration Polling interval 7200 seconds MD5 Authentication keys 8 9 Authentication is required for synchronization Trusted Keys 8 9 Unicast Clients Enabled Unicast Clients Polling Enabled Server Pollin...

Page 108: ...ample The following command shows the status of the SNTP Console show sntp status Clock is synchronized stratum 4 reference is 176 1 1 8 unicast Reference time is AFE2525E 70597B34 00 10 22 438 PDT Jul 5 2006 Unicast servers Server Status Last Response Offset mSec Delay mSec 176 1 1 8 Up 19 58 22 289 PDT Feb 19 2006 7 33 117 79 176 1 8 179 Unknown 12 17 17 987 PDT Feb 19 2006 8 98 189 19 Anycast S...

Page 109: ...EC mode Keyword Description flash Source or destination URL for flash memory This is the default in case a URL is specified without a prefix running config Represents the current running configuration file startup config Represents the startup configuration file image If the source file represents the active image file If the destination file represents the non active image file boot Boot file tft...

Page 110: ...ce url running config command The commands in the loaded configuration file are added to those in the running configuration file as if the commands were typed in the command line interface CLI Thus the resulting configuration file is a combination of the previous running configuration and the loaded configuration files with the loaded configuration file taking precedence Copying a Configuration Fi...

Page 111: ...figuration file to a backup configuration file enter the copy startup config file command Before copying from the backup configuration file to the running configuration file make sure that the backup configuration file has not been corrupted Example The following command copies system image file1 from the TFTP server 172 16 101 101 to a non active image file Console copy tftp 172 16 101 101 file1 ...

Page 112: ...owing table displays keywords and URL prefixes Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage sys prv image 1 and image 2 files cannot be deleted Example The following command deletes file test from flash memory Keyword Description flash Source or destination URL for flash memory This is the default when a URL is specified without a prefix...

Page 113: ...ot system image 1 image 2 Parameters image 1 Specifies image 1 as the system startup image image 2 Specifies image 2 as the system startup image Default Setting The command has no default configuration Command Mode Privileged EXEC mode Command Usage Use the show bootvar command to find out which image is the active image Example The following command loads system image 1 at device startup Console ...

Page 114: ... for this command Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command displays the contents of the running configuration file Console show running config software version 1 1 hostname device interface ethernet 1 e1 ip address 176 242 100 100 255 255 255 0 duplex full sp...

Page 115: ...this command Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command displays the contents of the running configuration file Console show startup config software version 1 1 hostname device interface ethernet 1 e1 ip address 176 242 100 100 255 255 255 0 duplex full speed 1...

Page 116: ... parameters for this command Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command displays the active system image file that is loaded by the device at startup Console show bootvar Images currently available on the flash image 1 active image 2 not active selected for nex...

Page 117: ...de to configure an Ethernet type interface Syntax interface ethernet interface Parameters interface Valid Ethernet port Full syntax port Default Setting This command has no default configuration Command Mode Global Configuration mode Command Usage There are no user guidelines for this command Example The following command enables configuring Ethernet port 5 e18 Console config interface ethernet 5 ...

Page 118: ... a range of ports and group a list separated by commas in brackets all All Ethernet ports Default Setting This command has no default configuration Command Mode Global Configuration mode Command Usage Commands under the interface range context are executed independently on each active interface in the range If the command returns an error on one of the active interfaces it does not stop executing ...

Page 119: ...n Parameters There are no parameters for this command Default Setting The interface is disabled Command Mode Interface Configuration Ethernet port channel mode Command Usage There are no user guidelines for this command Example The following command disables Ethernet port 1 e5 operations The following command restarts the disabled Ethernet port Console config interface ethernet 1 e5 Console config...

Page 120: ...tring no description Parameters string Comment or a description of the port to enable the user to remember what is attached to the port Range 1 64 characters Default Setting The interface does not have a description Command Mode Interface Configuration Ethernet port channel mode Command Usage There are no user guidelines for this command Example The following command adds a description to Ethernet...

Page 121: ...ed 10 100 1000 no speed Parameters 10 Forces10 Mbps operation 100 Forces 100 Mbps operation 1000 Forces 1000 Mbps operation Default Setting Maximum port capability Command Mode Interface Configuration Ethernet port channel mode Command Usage The no speed command in a port channel context returns each port in the port channel to its maximum capability Example The following command configures the sp...

Page 122: ...ters half Forces half duplex operation full Forces full duplex operation Default Setting The interface is set to full duplex Command Mode Interface Configuration Ethernet mode Command Usage When configuring a particular duplex mode on the port operating at 10 100 Mbps disable the auto negotiation on that port Half duplex mode can be set only for ports operating at 10 Mbps or 100 Mbps Example The f...

Page 123: ...s the capabilities to advertise Possible values 10h 10f 100h 100f 1000f Default Setting Auto negotiation is enabled If unspecified the default setting is to enable all capabilities of the port Command Mode Interface Configuration Ethernet port channel mode Command Usage If capabilities were specified when auto negotiation was previously entered not specifying capabilities when currently entering a...

Page 124: ...f this command Syntax flowcontrol auto on off no flowcontrol Parameters auto Indicates auto negotiation on Enables flow control off Disables flow control Default Setting Flow control is off Command Mode Interface Configuration Ethernet port channel mode Command Usage Negotiation should be enabled for flowcontrol auto Example In the following example flow control is enabled on port 1 e5 Console con...

Page 125: ...1 off for ports 1 40 Command Mode Interface Configuration Ethernet mode Command Usage Auto All possibilities to connect a PC with cross or normal cables are supported and are automatically detected On It is possible to connect to a PC only with a normal cable and to connect to another device only with a cross cable No It is possible to connect to a PC only with a cross cable and to connect to anot...

Page 126: ...pressure use the no form of this command Syntax back pressure no back pressure Parameters There are no parameters for this command Default Setting Back pressure is disabled Command Mode Interface Configuration Ethernet port channel mode Command Usage There are no user guidelines for this command Example In the following example back pressure is enabled on port 1 e5 Console config interface etherne...

Page 127: ...t interface port channel port channel number Parameters interface Valid Ethernet port Full syntax port port channel number Valid port channel number Default Setting This command has no default configuration Command Mode User EXEC mode Command Usage There are no user guidelines for this command Example In the following example the counters for interface 1 e1 are cleared Console clear counters ether...

Page 128: ...nnel number Parameters interface Valid Ethernet port Full syntax port port channel number Valid port channel number Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage This command is used to activate interfaces that were configured to be active but were shut down by the system for some reason for example port security Example The following com...

Page 129: ...guration Command Modes Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command displays auto negotiation information Console show interfaces advertise Port Type Neg Operational Link Advertisement e1 100M Copper Enabled e2 100M Copper Enabled e3 100M Copper Enabled e4 100M Copper Enabled e5 100M Copper Enabled 100f 100h 10f 10h e6 100M Copper E...

Page 130: ...g Flow Ctrl Link State Back Pressure Mdix Mode 1 e1 100M Copper Full 100 Enabled Off Up Disabled Auto 1 e2 100M Copper Full 100 Enabled Off Up Disabled Auto 1 e3 100M Copper Full 100 Enabled Off Up Disabled Auto 1 e4 100M Copper Full 100 Enabled Off Up Disabled Auto 1 e5 100M Copper Full 100 Enabled Off Up Disabled Auto 1 e6 100M Copper Full 100 Enabled Off Up Disabled Auto 1 e7 100M Copper Full 1...

Page 131: ...ommand Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command displays the status of all configured interfaces Console show interfaces status Port Type Duplex Speed Neg Flow Ctrl Link State Back Pressure Mdix Mode 1 e1 100M Copper Down 1 e2 100M Copper Down 1 e3 100M Copper Down 1 e4 100M Copper Down 1 e5 100M Copper Full 100 Enabled Off...

Page 132: ...t interface port channel port channel number Parameters interface Valid Ethernet port Full syntax port port channel number A valid port channel number Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command displays descriptions of configured interfaces Console show interfa...

Page 133: ...nnel number Default Setting This command has no default configuration Command Mode User EXEC mode Command Usage There are no user guidelines for this command Example The following command displays traffic seen by the physical interface Console show interfaces counters Port InOctets InUcastPkts InMcastPkts InBcastPkts 1 e1 183892 0 0 0 2 e1 0 0 0 0 3 e1 123899 0 0 0 Port OutOctets OutUcastPkts OutM...

Page 134: ...icast packets InMcastPkts Counted received multicast packets InBcastPkts Counted received broadcast packets OutOctets Counted transmitted octets OutUcastPkts Counted transmitted unicast packets OutMcastPkts Counted transmitted multicast packets OutBcastPkts Counted transmitted broadcast packets FCS Errors Counted received frames that are an integral number of octets in length but do not pass the F...

Page 135: ...figuration Commands Received Pause Frames Counted MAC Control frames received with an opcode indicating the PAUSE operation Transmitted Pause Frames Counted MAC Control frames transmitted on this interface with an opcode indicating the PAUSE operation Field Description ...

Page 136: ... multicast unknown unicast no port storm control include multicast Parameters unknown unicast Specifies also counting unknown unicast packets Default Setting Multicast packets are not counted Command Mode Interface Configuration Ethernet mode Command Usage To control multicasts storms use the port storm control broadcast enable and port storm control broadcast rate commands Example The following c...

Page 137: ... broadcast enable no port storm control broadcast enable Parameters There are no parameters for this command Default Setting Broadcast storm control is disabled Command Mode Interface Configuration Ethernet mode Command Usage Use the port storm control broadcast rate Interface Configuration Ethernet mode command to set the maximum allowable broadcast rate Example The following command enables broa...

Page 138: ... rate Parameters rate Maximum kilobits per second of broadcast and multicast traffic on a port Range 70 100000 Default Setting The default storm control broadcast rate is 3500 Kbits Sec Command Mode Interface Configuration Ethernet mode Command Usage Use the port storm control broadcast enable Interface Configuration mode command to enable broadcast storm control Example The following command conf...

Page 139: ...arameters interface A valid Ethernet port Full syntax port Default Setting This command has no default configuration Command Mode User EXEC mode Command Usage There are no user guidelines for this command Example The following command displays the storm control configuration Console show ports storm control Port State Rate Kbits Sec Included 1 e1 Enabled 70 Broadcast Multicast Unknown Unicast 2 e1...

Page 140: ...8 24 www hp com HP PC Blade Switch CLI Reference Guide Ethernet Configuration Commands ...

Page 141: ...ll other devices on the network learn these VLANs dynamically The gvrp enable Global Configuration mode command enables GVRP globally To disable GVRP on the device use the no form of this command Syntax gvrp enable no gvrp enable Parameters There are no parameters for this command Default Setting GVRP is globally disabled Command Mode Global Configuration mode Command Usage There are no user guide...

Page 142: ...eters for this command Default Setting GVRP is disabled on all interfaces Command Mode Interface Configuration Ethernet port channel mode Command Usage An access port does not dynamically join a VLAN because it is always a member in only one VLAN Membership in an untagged VLAN is propagated in the same way as in a tagged VLAN That is the PVID is manually defined as the untagged VLAN VID Example Th...

Page 143: ...he default timer values Join timer 200 milliseconds Leave timer 600 milliseconds Leavall timer 10000 milliseconds Command Mode Interface configuration Ethernet port channel mode Command Usage The following relationship must be maintained between the timers Leave time must be greater than or equal to three times the join time Leave all time must be greater than the leave time Set the same GARP time...

Page 144: ...no parameters for this command Default Setting Dynamic VLAN creation or modification is enabled Command Mode Interface Configuration Ethernet port channel mode Command Usage This command forbids dynamic VLAN creation from the interface The creation or modification of dynamic VLAN registration entries as a result of the GVRP exchanges on an interface are restricted only to those VLANs for which sta...

Page 145: ...on a port use the no form of this command Syntax gvrp registration forbid no gvrp registration forbid Parameters There are no parameters for this command Default Setting Dynamic registration of VLANs on the port is allowed Command Mode Interface Configuration Ethernet port channel mode Command Usage There are no user guidelines for this command Example The following command forbids dynamic registr...

Page 146: ...ce port channel port channel number Parameters interface A valid Ethernet port Full syntax port port channel number A valid port channel number Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command clears all GVRP statistical information on Ethernet port 1 e6 Console clea...

Page 147: ...rameters interface A valid Ethernet port Full syntax port port channel number A valid port channel number Default Setting This command has no default configuration Command Mode User EXEC mode Command Usage There are no user guidelines for this command Example The following command displays GVRP configuration information Console show gvrp configuration GVRP Feature is currently enabled on the devic...

Page 148: ...tting This command has no default configuration Command Mode User EXEC mode Command Usage There are no user guidelines for this command Example The following command shows GVRP statistical information Console show gvrp statistics GVRP Statistics Legend rJE Join Empty Received rJIn Join In Received rEmp Empty Received rLIn Leave In Received rLE Leave Empty Received rLA Leave All Received sJE Join E...

Page 149: ...port port channel number A valid port channel number Default Setting This command has no default configuration Command Mode User EXEC mode Command Usage There are no user guidelines for this command Example The following command displays GVRP statistical information Console show gvrp error statistics GVRP Error Statistics Legend INVPROT Invalid Protocol Id INVALEN Invalid Attribute Length INVATYP ...

Page 150: ...9 10 www hp com HP PC Blade Switch CLI Reference Guide GVRP Commands ...

Page 151: ...P snooping use the no form of this command Syntax ip igmp snooping no ip igmp snooping Parameters There are no parameters for this command Default Setting IGMP snooping is disabled Command Mode Global Configuration mode Command Usage IGMP snooping can only be enabled on static VLANs It must not be enabled on Private VLANs or their community VLANs Example The following command enables IGMP snooping...

Page 152: ...terface use the no form of this command Syntax ip igmp snooping no ip igmp snooping Parameters There are no parameters for this command Default Setting IGMP snooping is disabled Command Mode Interface Configuration VLAN mode Command Usage IGMP snooping can only be enabled on static VLANs It must not be enabled on Private VLANs or their community VLANs Example The following command enables IGMP sno...

Page 153: ...return to the default configuration use the no form of this command Syntax ip igmp snooping host time out time out no ip igmp snooping host time out Parameters time out Host timeout in seconds Range 1 2147483647 Default Setting The default host time out is 260 seconds Command Mode Interface Configuration VLAN mode Command Usage The timeout should be at least greater than 2 query_interval max_respo...

Page 154: ...tically learned To return to the default configuration use the no form of this command Syntax ip igmp snooping mrouter time out time out no ip igmp snooping mrouter time out Parameters time out Multicast device timeout in seconds Range 1 2147483647 Default Setting The default value is 300 seconds Command Mode Interface Configuration VLAN mode Command Usage There are no user guidelines for this com...

Page 155: ... cast router ports use the no form of this command Syntax ip igmp snooping mrouter learn pim dvmrp no ip igmp snooping mrouter learn pim dvmrp Default Configuration Automatic learning of multicast router ports is enabled Command Mode Interface Configuration VLAN mode User Guidelines There are no user guidelines for this command Example The following command enables automatic learning of multicast ...

Page 156: ...mediate leave no ip igmp snooping leave time out Parameters time out Specifies the leave time out in seconds for IGMP queries Range 0 2147483647 immediate leave Indicates that the port should be immediately removed from the members list after receiving IGMP Leave Default Setting The default leave time out configuration is 10 seconds Command Mode Interface Configuration VLAN mode Command Usage The ...

Page 157: ...p igmp snooping mrouter interface vlan id Parameters vlan id VLAN number Default Setting This command has no default configuration Command Mode User EXEC mode Command Usage There are no user guidelines for this command Example The following command displays multicast device interfaces in VLAN 1000 Console show ip igmp snooping mrouter interface 1000 VLAN Ports 1000 1 e1 Detected multicast routers ...

Page 158: ...his command has no default configuration Command Mode User EXEC mode Command Usage There are no user guidelines for this command Example The following command displays IGMP snooping information on VLAN 1000 Console show ip igmp snooping interface 1000 IGMP Snooping is globally enabled IGMP Snooping is enabled on VLAN 1000 IGMP host timeout is 300 sec IGMP Immediate leave is disabled IGMP leave tim...

Page 159: ...st address Default Setting This command has no default configuration Command Mode User EXEC mode Command Usage To see the full multicast address table including static addresses use the show bridge multicast address table Privileged EXEC command Example The following command shows IGMP snooping information on multicast groups Console show ip igmp snooping groups VLAN IP Address Querier Ports 1 224...

Page 160: ...10 10 www hp com HP PC Blade Switch CLI Reference Guide IGMP Snooping Commands ...

Page 161: ...s prefix length Specifies the number of bits that comprise the IP address prefix The prefix length must be preceded by a forward slash Range 8 30 Default Setting Two interfaces are configured one for VLAN 1 one for VLAN 2 with DHCP set by default Command Mode Interface Configuration Ethernet VLAN port channel mode Command Usage An IP address cannot be configured for a range of interfaces range con...

Page 162: ...ddress by using the DHCP protocol Some DHCP servers require that the DHCPDISCOVER message have a specific host name The ip address dhcp hostname host name command is most typically used when the host name is provided by the system administrator If the device is configured to obtain its IP address from a DHCP server it sends a DHCPDISCOVER message to provide information about itself to the DHCP ser...

Page 163: ...ation use the no form of this command Syntax ip default gateway ip address no ip default gateway Parameters ip address Valid IP address of the default gateway Default Setting No default gateway is defined Command Mode Global Configuration mode Command Usage There are no user guidelines for this command Example The following command defines default gateway 192 168 1 1 Console config ip default gate...

Page 164: ... interface number Valid Ethernet port vlan id Valid VLAN number port channel number Valid port channel number Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command displays the configured IP interfaces and their types Console show ip interface Gateway IP Address Type Acti...

Page 165: ...the specified MAC address hw_addr Valid MAC address to map to the specified IP address or IP alias interface number Valid Ethernet port vlan id Valid VLAN number port channel number Valid port channel number Default Setting This command has no default configuration Command Mode Global Configuration mode Command Usage The software uses ARP cache entries to translate 32 bit IP addresses into 48 bit ...

Page 166: ...the no form of this command Syntax arp timeout seconds no arp timeout Parameters seconds Time in seconds that an entry remains in the ARP cache Range 1 40000000 Default Setting The default timeout is 60000 seconds Command Mode Global Configuration mode Command Usage It is recommended not to set the timeout value to less than 3600 Example The following command configures the ARP timeout to 12000 se...

Page 167: ...amic entries from the ARP cache Syntax clear arp cache Parameters There are no parameters for this command Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command deletes all dynamic entries from the ARP cache Console clear arp cache ...

Page 168: ...rameters for this command Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command displays entries in the ARP table Console show arp ARP timeout 80000 Seconds Interface IP address HW address Status 1 e1 10 7 1 102 00 10 B5 04 DB 4B Dynamic 2 e2 10 7 1 135 00 50 22 00 2A A4 ...

Page 169: ...s translation use the no form of this command Syntax ip domain lookup no ip domain lookup Parameters There are no parameters for this command Default Setting IP Domain Naming System DNS based host name to address translation is enabled Command Mode Global Configuration mode Command Usage There are no user guidelines for this command Example The following command enables IP Domain Naming System DNS...

Page 170: ...his command Syntax ip domain name name no ip domain name Parameters name Specifies the default domain name used to complete unqualified host names Do not include the initial period that separates an unqualified name from the domain name Range 1 158 characters Default Setting A default domain name is not defined Command Mode Global Configuration mode Command Usage There are no user guidelines for t...

Page 171: ... address8 no ip name server server address1 server address8 Parameters server address Specifies IP addresses of the name server Default Setting No name server addresses are specified Command Mode Global Configuration mode Command Usage The preference of the servers is determined by the order in which they were entered Up to 8 servers can be defined using one command or using multiple commands Exam...

Page 172: ...e the no form of this command Syntax ip host name address no ip host name Parameters name Name of the host Range 1 158 characters address Associated IP address Default Setting No host is defined Command Mode Global Configuration mode Command Usage Up to 8 host names can be configured Example The following command defines a static host name to address mapping in the host cache Console config ip hos...

Page 173: ...ache Syntax clear host name Parameters name Specifies the host entry to be removed Range 1 158 characters Removes all entries Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command deletes all entries from the host name to address cache Console clear host ...

Page 174: ...P Syntax clear host dhcp name Parameters name Specifies the host entry to be removed Range 1 158 characters Removes all entries Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage This command deletes the host name to address mapping temporarily until the next renewal of the IP address Example The following command deletes all entries from the ...

Page 175: ...s command has no default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command displays host information Console show hosts System name Device Default domain is gm com sales gm com usa sales gm com DHCP Name address lookup is enabled Name servers Preference order 176 16 1 18 176 16 1 19 Configured host name to addr...

Page 176: ...11 16 www hp com HP PC Blade Switch CLI Reference Guide IP Addressing Commands ...

Page 177: ...uration use the no form of this command Syntax lacp system priority value no lacp system priority Parameters value Specifies system priority value Range 1 65535 Default Setting The default system priority is 1 Command Mode Global Configuration mode Command Usage There are no user guidelines for this command Example The following command configures the system priority to 120 Console config lacp sys...

Page 178: ...rm of this command Syntax lacp port priority value no lacp port priority Parameters value Specifies port priority Range 1 65535 Default Setting The default port priority is 1 Command Mode Interface Configuration Ethernet mode Command Usage There are no user guidelines for this command Example The following command defines the priority of Ethernet port 1 e6 as 247 Console config interface ethernet ...

Page 179: ...lacp timeout long short no lacp timeout Parameters long Specifies the long timeout value short Specifies the short timeout value Default Setting The default port timeout value is long Command Mode Interface Configuration Ethernet mode Command Usage There are no user guidelines for this command Example The following command assigns a long administrative LACP timeout to Ethernet port 1 e6 Console co...

Page 180: ...ol state information Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage All LACP statistics is shown if no keyword is specified LACP should be enabled for selected Ethernet port Example The following command displays LACP information for Ethernet port 1 e1 Console show lacp ethernet 1 e1 Port 1 e1 LACP parameters Actor system priority 1 system...

Page 181: ...Aggregation AGGREGATABLE synchronization FALSE collecting FALSE distributing FALSE expired FALSE Port 1 e1 LACP Statistics LACP PDUs sent 2 LACP PDUs received 2 Port 1 e1 LACP Protocol State LACP State Machines Receive FSM Port Disabled State Mux FSM Detached State Periodic Tx FSM No Periodic State Control Variables BEGIN FALSE LACP_Enabled TRUE Ready_N FALSE Selected UNSELECTED Port_moved FALSE N...

Page 182: ... Valid port channel number Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command displays LACP information about port channel 1 Console show lacp port channel 1 Port Channel 1 Port Type 1000 Ethernet Actor System Priority 1 MAC Address 00 02 85 0E 1C 00 Admin Key 29 Oper ...

Page 183: ...rs console Console terminal line telnet Virtual terminal for remote console access Telnet ssh Virtual terminal for secured remote console access SSH Default Setting This command has no default configuration Command Mode Global Configuration mode Command Usage There are no user guidelines for this command Example The following command configures the device as a virtual terminal for remote console a...

Page 184: ...er second bps Possible values are 2400 9600 19200 38400 57600 and 115200 Default Setting The default speed is 9600 bps Command Mode Line Configuration console mode Command Usage This command is available only on the line console The configured speed is applied when Autobaud is disabled This configuration applies only to the current session Example The following command configures the line baud rat...

Page 185: ...mmand Syntax autobaud no autobaud Parameters There are no parameters for this command Default Setting Autobaud is disabled Command Mode Line Configuration console mode Command Usage This command is available only on the line console To start communication using Autobaud press Enter twice This configuration applies only to the current session Example The following command enables autobaud Console c...

Page 186: ... seconds no exec timeout Parameters minutes Specifies the number of minutes Range 0 65535 seconds Specifies additional time intervals in seconds Range 0 59 Default Setting The default configuration is 10 minutes Command Mode Line Configuration mode Command Usage To specify no timeout enter the exec timeout 0 command Example The following command configures the interval that the system waits until ...

Page 187: ...re no parameters for this command Default Setting The command history function is enabled Command Mode Line Configuration mode Command Usage This command enables the command history function for a specified line To enable or disable the command history function for the current terminal session use the terminal history User EXEC mode command Example The following command enables the command history...

Page 188: ...mber of commands that the system records in its history buffer Range 10 216 Default Setting The default history buffer size is 10 Command Mode Line Configuration mode Command Usage This command configures the command history buffer size for a particular line To configure the command history buffer size for the current terminal session use the terminal history size User EXEC mode command The maximu...

Page 189: ...m of this command Syntax terminal history terminal no history Parameters There are no parameters for this command Default Setting The default configuration for all terminal sessions is defined by the history line configuration command Command Mode User EXEC mode Command Usage There are no user guidelines for this command Example The following command disables the command history function for the c...

Page 190: ... may record in its command history buffer Range 10 216 Default Setting The default history size for all terminal sessions is defined by the history size line configuration command Command Mode User EXEC mode Command Usage The terminal history size user EXEC command configures the size of the command history buffer for the current terminal session To change the default size of the command history b...

Page 191: ...e console access SSH Default Setting This command has no default configuration Command Mode User EXEC mode Command Usage If line is not specified information for all lines is given Example The following command displays the line configuration Console show line Console configuration Interactive timeout Disabled History 10 Baudrate 9600 Databits 8 Parity none Stopbits 1 Telnet configuration Interact...

Page 192: ...13 10 www hp com HP PC Blade Switch CLI Reference Guide Line Commands ...

Page 193: ...tion mode Command Usage Use this command to configure a management access list The command enters the Access list Configuration mode where permit and deny access rules are defined using the permit Management and deny Management commands If no match criteria are defined the default is deny If you reenter an access list context the new rules are entered at the end of the access list Use the manageme...

Page 194: ...interfaces to be management interfaces except Ethernet interfaces 1 e1 and 2 e9 and make the new access list the active list Console config management access list mlist Console config macl permit ethernet 1 e1 Console config macl permit ethernet 2 e9 Console config macl exit Console config management access class mlist Console config management access list mlist Console config macl deny ethernet 1...

Page 195: ...ip address A valid source IP address mask A valid network mask of the source IP address prefix length Number of bits that comprise the source IP address prefix The prefix length must be preceded by a forward slash Range 0 32 service Service type Possible values telnet ssh http https and snmp Default Setting If no permit rule is defined the default is set to deny Command Mode Management Access list...

Page 196: ...ess A valid source IP address mask A valid network mask of the source IP address prefix length Specifies the number of bits that comprise the source IP address prefix The prefix length must be preceded by a forward slash Range 0 32 service Service type Possible values telnet ssh http https and snmp Default Setting This command has no default configuration Command Mode Management Access list Config...

Page 197: ... access class console only name no management access class Parameters console only Indicates that the device can be managed only from the console name Specifies the name of the access list to be used Range 1 32 characters Default Setting No active management access list specified Command Mode Global Configuration mode Command Usage There are no user guidelines for this command Example The followin...

Page 198: ...e Parameters name Specifies the name of a management access list Range 1 32 characters Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command displays the mlist management access list Console show management access list mlist mlist permit ethernet 1 e1 permit ethernet 2 e2...

Page 199: ... show management access class Parameters There are no parameters for this command Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command displays information about the active management access list Console show management access class Management access class is enabled usi...

Page 200: ...14 8 www hp com HP PC Blade Switch CLI Reference Guide Management ACL Commands ...

Page 201: ... A valid Ethernet port Full syntax port Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage The port to be tested should be shut down during the test unless it is a combination port with the fiber port active The maximum length of the cable for the TDR test is 120 meters Example The following command results in a report on the cable attached to...

Page 202: ...interface A valid Ethernet port Full syntax port Default Setting This command has no default configuration Command Mode User EXEC mode Command Usage The maximum length of the cable for the TDR test is 120 meters Example The following command displays information on the last TDR test performed on all copper ports Console show copper ports tdr Port Result Length meters Date 1 e1 OK 1 e2 Short 50 13 ...

Page 203: ...orts cable length interface Parameters interface A valid Ethernet port Full syntax port Default Setting This command has no default configuration Command Mode User EXEC mode Command Usage The port must be active and working in 100M or 1000M mode Example The following command displays the estimated copper cable length attached to all ports Console show copper ports cable length Port Length meters 1...

Page 204: ...nd Mode Privileged EXEC mode Command Usage To test optical transceivers ensure a fiber link is present Examples The following commands display the optical transceiver diagnostics Console show fiber ports optical transceiver Power Port Temp Voltage Current Output Input TX Fault LOS 1 g1 W OK E OK OK OK OK 1 g2 OK OK OK OK OK E OK 1 g3 Copper Temp Internally measured transceiver temperature Voltage ...

Page 205: ...ut Input TX Fault LOS C Volt mA mWatt mWatt 1 g1 48 5 15 50 1 789 1 789 No No 1 g2 43 5 15 10 1 789 1 789 No No 1 g3 Copper Temp Internally measured transceiver temperature Voltage Internally measured supply voltage Current Measured TX bias current Output Power Measured TX output power Input Power Measured RX received power Tx Fault Transmitter fault LOS Loss of signal ...

Page 206: ...15 6 www hp com HP PC Blade Switch CLI Reference Guide PHY Diagnostics Commands ...

Page 207: ...interface port channel port channel number Parameters port channel number A valid port channel number Default Setting This command has no default configuration Command Mode Global Configuration mode Command Usage Eight aggregated links can be defined with up to eight member ports per port channel The aggregated links valid IDs are 1 8 Example The following command enters the context of port channe...

Page 208: ...nge List of valid port channels to add Separate nonconsecutive port channels with a comma and no spaces A hyphen designates a range of port channels all All valid port channels Default Setting This command has no default configuration Command Mode Global Configuration mode Command Usage Commands under the interface range context are executed independently on each interface in the range Example In ...

Page 209: ...umber Specifies the ID of the valid port channel for the current port to join on Forces the port to join a channel without an LACP operation auto Allows the port to join a channel as a result of an LACP operation Default Setting The port is not assigned to a port channel Command Mode Interface Configuration Ethernet mode Command Usage There are no user guidelines for this command Example The follo...

Page 210: ... channel port channel number Parameters port channel number Valid port channel number Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command displays information on all port channels Console show interfaces port channel Channel Ports 1 Active 1 e1 2 e2 2 Active 2 e2 2 e7 I...

Page 211: ...igured by default Command Mode Interface Configuration Ethernet mode Command Usage This command enables traffic on one port to be copied to another port or between the source port src interface and a destination port port being configured The following restrictions apply to ports configured as destination ports The port cannot be already configured as a source port The port cannot be a member in a...

Page 212: ...de Switch CLI Reference Guide Port Monitor Commands Example The following command copies traffic on port 1 e8 source port to port 1 e1 destination port Console config interface ethernet 1 e1 Console config if port monitor 1 e8 ...

Page 213: ...ers There are no parameters for this command Default Setting This command has no default configuration Command Mode User EXEC mode Command Usage There are no user guidelines for this command Example The following command displays the port monitoring status Console show ports monitor Source Port Destination Port Type Status VLAN Tagging 1 e1 1 e8 RX TX Active No 1 e2 1 e8 RX TX Active No 1 e18 1 e8...

Page 214: ...17 4 www hp com HP PC Blade Switch CLI Reference Guide Port Monitor Commands ...

Page 215: ...command Syntax qos basic advanced no qos Parameters basic QoS basic mode This mode is applied if no keyword is specified advanced QoS advanced mode which enables the full range of QoS configuration Default Setting The QoS basic mode is enabled Command Mode Global Configuration mode Command Usage There are no user guidelines for this command Example The following command enables QoS on the device C...

Page 216: ... Syntax show qos Parameters There are no parameters for this command Default Setting This command has no default configuration Command Mode User EXEC mode Command Usage Trust mode is displayed if QoS is enabled in basic mode Example The following command displays QoS attributes when QoS is enabled in basic mode on the device Console show qos Qos basic Basic trust dscp ...

Page 217: ...n mode command is used to define packet classification marking and aggregate policing as part of a globally named service policy applied on a per interface basis The Class Map Configuration mode enables entering up to two match Class map Configuration mode commands to configure the classification criteria for the specified class If two match Class map Configuration mode commands are entered each s...

Page 218: ...Guide QoS Commands Example The following command creates a class map called class1 and configures it to check that packets match all classification criteria in the class map match statement Console config class map class1 match all Console config cmap ...

Page 219: ...s map name Parameters class map name Specifies the name of the class map to be displayed Default Setting This command has no default configuration Command Mode User EXEC mode Command Usage There are no user guidelines for this command Example The following command shows the class map for class1 Console show class map class1 Class Map match any class1 id4 Match Ip dscp 11 21 ...

Page 220: ...cl name no match access group acl name Parameters acl name Specifies the name of an IP or MAC ACL Default Setting No match criterion is supported Command Mode Class map Configuration mode Command Usage There are no user guidelines for this command Example The following command defines the match criterion for classifying traffic as an access group called HP in a class map called class1 Console conf...

Page 221: ... Command Usage Before configuring policies for classes whose match criteria are defined in a class map use the policy map Global Configuration mode command to specify the name of the policy map to be created or modified Class policies in a policy map can only be defined if match criteria has already been defined for the classes Use the class map Global Configuration and match Class map Configurati...

Page 222: ...ing a policy for an existing class or creating a policy for a new class use the policy map Global Configuration mode command to specify the name of the policy map to which the policy belongs and to enter the Policy map Configuration mode Use the service policy Ethernet Port channel Interface Configuration mode command to attach a policy map to an interface Use an existing class map to attach class...

Page 223: ...ss name Specifies the name of the class whose QoS policies are to be displayed Default Setting This command has no default configuration Command Mode User EXEC mode Command Usage There are no user guidelines for this command Example The following command displays all policy maps Console show policy map Policy Map policy1 class class1 set Ip dscp 7 Policy Map policy2 class class 2 police 96000 4800...

Page 224: ...e no parameters for this command Default Setting The port is not in the trust mode If the port is in trust mode the internal DSCP value is derived from the ingress packet Command Mode Policy map Class Configuration mode Command Usage Action serviced to a class so that if an IP packet arrives the queue is assigned per DSCP If a non IP packet arrives the queue is assigned per CoS VPT Example The fol...

Page 225: ...guration mode Command Usage This command is mutually exclusive with the trust Policy map Class Configuration command within the same policy map Policy maps that contain set or trust Policy map Class Configuration commands or that have ACL classifications cannot be attached to an egress interface by using the service policy Ethernet Port channel Interface Configuration mode command To return to the...

Page 226: ... dscp Global Configuration mode command Default Setting This command has no default configuration Command Mode Policy map Class Configuration mode Command Usage Policing uses a token bucket algorithm CIR represents the speed with which the token is removed from the bucket CBS represents the depth of the bucket Policy maps that contain set or trust Policy map Class Configuration commands or that ha...

Page 227: ...tax service policy input policy map name no service policy input Parameters policy map name Specifies the name of the policy map to be applied to the input interface Default Setting This command has no default configuration Command Mode Interface Configuration Ethernet port Channel mode Command Usage Only one policy map per interface per direction is supported Example The following command attache...

Page 228: ... qos map policed dscp Global Configuration mode command Default Setting No aggregate policer is define Command Mode Global Configuration mode Command Usage Define an aggregate policer if the policer is shared with multiple classes Policers in one port cannot be shared with other policers in another device traffic from two different ports can be aggregated for policing purposes An aggregate policer...

Page 229: ...e Parameters aggregate policer name Specifies the name of the aggregate policer to be displayed Default Setting This command has no default configuration Command Mode User EXEC mode Command Usage There are no user guidelines Example The following command displays the parameters of the aggregate policer called policer1 Console show qos aggregate policer policer1 aggregate policer policer1 96000 480...

Page 230: ...aggregate policer Default Setting This command has no default configuration Command Mode Policy map Class Configuration mode Command Usage An aggregate policer can be applied to multiple classes in the same policy map An aggregate policer cannot be applied across multiple policy maps or interfaces To return to the Policy map Configuration mode use the exit command To return to the Privileged EXEC ...

Page 231: ...es to be mapped to a specific queue Range 0 7 Default Setting Default cos to queue map Command Mode Global Configuration mode Command Usage This command can be used to distribute traffic into different queues where each queue is configured with different Weighted Round Robin WRR and Weighted Random Early Detection WRED parameters It is recommended to specifically map a single VPT to a queue rather...

Page 232: ...umber of queues no priority queue out num of queues Parameters number of queues Specifies the number of expedite queues Expedite queues have higher indexes Range 0 4 Default Setting All queues are expedite queues Command Mode Global Configuration mode Command Usage Configuring the number of expedite queues affects the Weighted Round Robin WRR weight ratio because fewer queues participate in the WR...

Page 233: ...ace Configuration Ethernet port channel mode Command Usage This command activates the shaper on a specified egress port or egress queue Use the command with the burst parameter for GE ports and without the burst parameter for FE ports To activate the shaper on an egress port enter the Interface Configuration mode Then run this command without the queue id parameter The CIR and the CBS will be appl...

Page 234: ...ing Displays the queue strategy WRR or EF the weight for WRR queues the CoS to queue map and the EF priority policers Displays all the policers configured for this interface their setting and the number of policers currently unused shapers Displays the shaper of the specified interface and the shaper for the queue on the specified interface Default Setting There is no default configuration for thi...

Page 235: ...var mib type and object type 1 disable 0 0 0 TMibScalarC_SetValue var rlIfProfileName mismatching between var mib type and object type 2 disable 0 0 0 TMibScalarC_SetValue var rlIfProfileName mismatching between var mib type and object type 3 disable 0 0 0 TMibScalarC_SetValue var rlIfProfileName mismatching between var mib type and object type 4 disable 0 0 0 qid MinDP0 MaxDP0 ProbDP0 MinDP1 MaxD...

Page 236: ...Specifies the queue number to which the threshold is assigned threshold percentage 0 1 2 Specifies the queue threshold percentage value Each value is separated by a space Range 0 100 Default Setting 80 percent for all thresholds Command Mode Global Configuration mode Command Usage The packet refers to a certain threshold by the conformance level If threshold 0 is exceeded packets with the correspo...

Page 237: ... dscp dp Parameters dscp list Specifies up to 8 DSCP values separated by a space Range 0 63 dp Enter the Drop Precedence value to which the DSCP value corresponds Possible values are 0 2 where 2 is the highest Drop Precedence Default Setting All the DSCPs are mapped to Drop Precedence 0 Command Mode Global Configuration mode Command Usage There are no user guidelines for this command Example The f...

Page 238: ...own Specifies the DSCP value to mark down Range 0 63 Default Setting The default map is the Null map which means that each incoming DSCP value is mapped to the same DSCP value Command Mode Global Configuration mode Command Usage DSCP values 3 11 19 cannot be remapped to other values The mapping of the IP DSCP to priority queue is set on a per system basis If this mode is active a non IP packet is ...

Page 239: ...arameters dscp list Specifies up to 8 DSCP values separated by a space Range 0 63 queue id Specifies the queue number to which the DSCP values are mapped Default Setting The following table describes the default map Command Mode Global Configuration mode Command Usage There are no user guidelines for this command Example The following command maps DSCP values 33 40 and 41 to queue 1 DSCP Value Que...

Page 240: ...qos trust is used trust VPT is set and QoS trust is not disabled Packets entering a Quality of Service QoS domain are classified at the edge of the QoS domain When packets are classified at the edge the switch port within the QoS domain can be configured to one of the trusted states because there is no need to classify the packets at every device in the domain A switch port on an inter QoS domain ...

Page 241: ...HP PC Blade Switch CLI Reference Guide www hp com 18 27 QoS Commands Example The following command configures the system to the DSCP trust state Console config qos trust dscp ...

Page 242: ...t cos Parameters default cos Specifies the default CoS value of the port Range 0 7 Default Setting Default CoS value of a port is 0 Command Mode Interface Configuration Ethernet port channel mode Command Usage If the port is trusted the default CoS value of the port is used to assign a CoS value to all untagged packets entering the port Example The following command configures port 1 e15 default C...

Page 243: ...d to a port at the boundary of a Quality of Service QoS administrative domain If two QoS domains have different DSCP definitions use the DSCP to DSCP mutation map to match one set of DSCP values with the DSCP values of another domain Apply the DSCP to DSCP mutation map only to ingress and to DSCP trusted ports Applying this map to a port causes IP packets to be rewritten with newly mapped DSCP val...

Page 244: ... dscp mutation Parameters in dscp Specifies up to 8 DSCP values separated by spaces Range 0 63 out dscp Specifies up to 8 DSCP values separated by spaces Range 0 63 Default Setting The default map is the Null map which means that each incoming DSCP value is mapped to the same DSCP value Command Mode Global Configuration mode Command Usage There are no user guidelines for this command Example The f...

Page 245: ... Range 1 30 retries Specifies the retransmit value Range 1 10 deadtime Length of time in minutes during which a RADIUS server is skipped over by transaction requests Range 0 2000 key string Specifies the authentication and encryption key for all RADIUS communications between the device and the RADIUS server This key must match the RADIUS daemon key used on the RADIUS daemon To specify an empty str...

Page 246: ...time or key string values are specified global values apply to each RADIUS server host The address type of the source parameter must be the same as the ip address parameter Example The following command specifies a RADIUS server host with IP address 192 168 10 1 authentication request port number 20 and a 20 second timeout period Console config radius server host 192 168 10 1 auth port 20 timeout ...

Page 247: ...rver key Parameters key string Specifies the authentication and encryption key for all RADIUS communications between the device and the RADIUS server This key must match the RADIUS daemon key used on the RADIUS daemon Range 0 128 characters Default Setting The key string is an empty string Command Mode Global Configuration mode Command Usage There are no user guidelines for this command Example Th...

Page 248: ...rm of this command Syntax radius server retransmit retries no radius server retransmit Parameters retries Specifies the retransmit value Range 1 10 Default Setting The software searches the list of RADIUS server hosts 3 times Command Mode Global Configuration mode Command Usage There are no user guidelines for this command Example The following command configures the number of times the software s...

Page 249: ...m of this command Syntax radius server source ip source no radius source ip source Parameters source Specifies a valid source IP address Default Setting The source IP address is the IP address of the outgoing IP interface Command Mode Global Configuration mode Command Usage There are no user guidelines for this command Example The following command configures the source IP address used for communi...

Page 250: ... default configuration use the no form of this command Syntax radius server timeout timeout no radius server timeout Parameters timeout Specifies the timeout value in seconds Range 1 30 Default Setting The timeout value is 3 seconds Command Mode Global Configuration mode Command Usage There are no user guidelines for this command Example The following command configures the timeout interval to 5 s...

Page 251: ... the default configuration use the no form of this command Syntax radius server deadtime deadtime no radius server deadtime Parameters deadtime Length of time in minutes during which a RADIUS server is skipped over by transaction requests Range 0 2000 Default Setting The deadtime setting is 0 Command Mode Global Configuration mode Command Usage There are no user guidelines for this command Example...

Page 252: ...etting This command has no default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command displays RADIUS server settings Console show radius servers IP address Authin CLI TimeOut Retran in CLI DeadTime Source in CLI Prio in CLI Usage 172 16 1 1 1645 Global Global Global 1 All 172 16 1 2 1645 11 8 Global Global 2 Al...

Page 253: ... number Default Setting This command has no default configuration Command Mode User EXEC mode Command Usage There are no user guidelines for this command Example The following command displays RMON Ethernet statistics for Ethernet port 1 e1 Console show rmon statistics ethernet 1 e1 Port 1 e1 Octets 878128 Packets 978 Broadcast 7 Multicast 1 CRC Align Errors 0 Collisions 0 Undersize Pkts 0 Oversiz...

Page 254: ...S octets and otherwise well formed Oversize Pkts The total number of packets received longer than 1518 octets excluding framing bits but including FCS octets and otherwise well formed Fragments The total number of packets received less than 64 octets in length excluding framing bits but including FCS octets and either a bad Frame Check Sequence FCS with an integral number of octets FCS Error or a ...

Page 255: ...bad packets received that are between 512 and 1023 octets in length inclusive excluding framing bits but including FCS octets 1024 to 1518 Octets The total number of packets including bad packets received that are between 1024 and 1518 octets in length inclusive excluding framing bits but including FCS octets Field Description ...

Page 256: ...ber Number of buckets specified for the RMON collection history group of statistics If unspecified defaults to 50 Range 1 65535 seconds Number of seconds in each polling cycle Range 1 3600 Default Setting RMON statistics group owner name is an empty string Number of buckets specified for the RMON collection history statistics group is 50 Number of seconds in each polling cycle is 1800 Command Mode...

Page 257: ...C mode Command Usage There are no user guidelines for this command Example The following command displays all RMON history group statistics The following table describes significant fields shown in the example Console show rmon collection history Index Interface Interval Requested Samples Granted Samples Owner 1 1 e1 30 50 50 CLI 2 1 e1 1800 50 50 Manager Field Description Index An index that uniq...

Page 258: ...s Range 1 4294967295 Default Setting This command has no default configuration Command Mode User EXEC mode Command Usage There are no user guidelines for this command Examples The following command displays RMON Ethernet history statistics for index 1 Console show rmon history 1 throughput Sample Set 1 Owner CLI Interface 1 e1 Interval 1800 Requested samples 50 Granted samples 50 Maximum table siz...

Page 259: ...erval that were directed to the broadcast address Multicast The number of good packets received during this sampling interval that were directed to a multicast address This number does not include packets addressed to the broadcast address Util The best estimate of the mean physical layer network utilization on this interface during this sampling interval in hundredths of a percent CRC Align The n...

Page 260: ...and noise hits Jabbers The number of packets received during this sampling interval that were longer than 1518 octets excluding framing bits but including FCS octets and had either a bad Frame Check Sequence FCS with an integral number of octets FCS Error or a bad FCS with a non integral number of octets Alignment Error Dropped The total number of events in which packets were dropped by the probe ...

Page 261: ...able and calculating the value to be compared against the thresholds Possible values are absolute and delta If the method is absolute the value of the selected variable is compared directly with the thresholds at the end of the sampling interval If the method is delta the selected variable value of the last sample is subtracted from the current value and the difference is compared with the thresho...

Page 262: ...mand configures the following alarm conditions Alarm index 1000 Variable identifier HP Sample interval 360000 seconds Rising threshold 1000000 Falling threshold 1000000 Rising threshold event index 10 Falling threshold event index 20 Console config rmon alarm 1000 HP 360000 1000000 1000000 10 20 ...

Page 263: ...guration Command Mode User EXEC mode Command Usage There are no user guidelines for this command Example The following command displays the alarms table The following table describes significant fields shown in the example Console show rmon alarm table Index OID Owner 1 1 3 6 1 2 1 2 2 1 10 1 CLI 2 1 3 6 1 2 1 2 2 1 10 1 Manager 3 1 3 6 1 2 1 2 2 1 10 9 CLI Field Description Index An index that un...

Page 264: ...n Command Mode User EXEC mode Command Usage There are no user guidelines for this command Example The following command displays RMON 1 alarms The following table describes the significant fields shown in the example Console show rmon alarm 1 Alarm 1 OID 1 3 6 1 2 1 2 2 1 10 1 Last sample Value 878128 Interval 30 Sample Type delta Startup Alarm rising Rising Threshold 8700000 Falling Threshold 78 ...

Page 265: ...holds Startup Alarm The alarm that may be sent when this entry is first set If the first sample is greater than or equal to the rising threshold and startup alarm is equal to rising or rising and falling then a single rising alarm is generated If the first sample is less than or equal to the falling threshold and startup alarm is equal falling or rising and falling then a single falling alarm is g...

Page 266: ...MP trap is sent to the SNMP community specified by this octet string Range 0 127 characters description text Specifies a comment describing this event Range 0 127 characters name Specifies the name of the person who configured this event If unspecified the name is an empty string Default Setting This command has no default configuration Command Mode Global Configuration mode Command Usage If log i...

Page 267: ... Owner Last Time Sent 1 Errors Log CLI Jan 18 2005 23 58 17 2 High Broadcast Log Trap device Manager Jan 18 2005 23 59 48 Field Description Index An index that uniquely identifies the event Description A comment describing this event Type The type of notification that the device generates about this event Can have the following values none log trap log trap In the case of log an entry is made in t...

Page 268: ...r this command Example The following command displays the RMON log table The following table describes the significant fields shown in the display Console show rmon log Maximum table size 500 Event Description Time 1 Errors Jan 18 2005 23 48 19 1 Errors Jan 18 2005 23 58 17 Console show rmon log 1 Maximum table size 500 800 after reset Event Description Time 1 Errors Jan 18 2005 23 48 19 1 Errors ...

Page 269: ...ntries no rmon table size history log Parameters history entries Maximum number of history table entries Range 20 270 log entries Maximum number of log table entries Range 20 100 Default Setting History table size is 270 Log table size is 200 Command Mode Global Configuration mode Command Usage The configured table size takes effect after the device is rebooted Example The following command config...

Page 270: ...20 18 www hp com HP PC Blade Switch CLI Reference Guide RMON Commands ...

Page 271: ...cess su Indicates SNMP administrator access ip address Specifies the IP address of the management station group name Specifies the name of a previously defined group A group defines the objects available to the community Range 1 30 characters view name Specifies the name of a previously defined view The view defines the objects available to the community Range 1 30 characters Default Setting The c...

Page 272: ...lso be used to restrict the access rights of a community string When it is specified An internal security name is generated The internal security name for SNMPv1 and SNMPv2 security models is mapped to the group name Example The following command defines community access string public to permit administrative access to SNMP protocol at an administrative station with IP address 192 168 1 20 Console...

Page 273: ...ch as 1 3 6 2 4 or a word such as system Replace a single sub identifier with the asterisk wildcard to specify a subtree family for example 1 3 4 included Indicates that the view type is included excluded Indicates that the view type is excluded Default Setting No view entry exists Command Mode Global Configuration mode Command Usage This command can be entered multiple times for the same view rec...

Page 274: ... Indicates authentication of a packet with encryption Applicable only to the SNMP Version 3 security model readview Specifies a string that is the name of the view that enables only viewing the contents of the agent If unspecified all objects except for the community table and SNMPv3 user and access tables are available writeview Specifies a string that is the name of the view that enables enterin...

Page 275: ...ion of a DES key for privacy Range 1 32 characters auth sha password Indicates the HMAC SHA 96 authentication level The user should enter a password for authentication and generation of a DES key for privacy Range 1 32 characters auth md5 key md5 des keys Indicates the HMAC MD5 96 authentication level The user should enter a concatenated hexadecimal string of the MD5 key MSB and the privacy key LS...

Page 276: ...snmp users Privileged EXEC mode command An SNMP EngineID has to be defined to add SNMP users to the device Changing or removing the SNMP EngineID value deletes SNMPv3 users from the device s database The remote engineid designates the remote management station and should be defined to enable the device to receive informs Example The following command configures an SNMPv3 user John in group user gr...

Page 277: ...e a default string that is generated using the MAC address of the device If the SNMPv3 engine ID is deleted or the configuration file is erased SNMPv3 cannot be used By default SNMPv1 v2 are enabled on the device SNMPv3 is enabled only by defining the Local Engine ID If you want to specify your own ID you do not have to specify the entire 32 character engine ID if it contains trailing zeros Specif...

Page 278: ...oes not display the SNMP engine ID configuration To see the SNMP engine ID configuration enter the show snmp engineid Global Configuration mode command Example The following command enables SNMPv3 on the device and sets the local engine ID of the device to the default value Console config snmp server engineid local default ...

Page 279: ...ps To disable SNMP traps use the no form of the command Syntax snmp server enable traps no snmp server enable traps Parameters There are no parameters for this command Default Setting SNMP traps are enabled Command Mode Global Configuration mode Command Usage There are no user guidelines for this command Example The following command enables SNMP traps Console config snmp server enable traps ...

Page 280: ...xt string consisting of numbers such as 1 3 6 2 4 or a word such as system Replace a single sub identifier with the asterisk wildcard to specify a subtree family for example 1 3 4 included Indicates that the filter type is included excluded Indicates that the filter type is excluded Default Setting No filter entry exists Command Mode Global Configuration mode Command Usage This command can be ente...

Page 281: ...this host Not applicable to SNMPv1 1 Indicates that SNMPv1 traps will be used 2 Indicates that SNMPv2 traps will be used port Specifies the UDP port of the host to use If unspecified the default UDP port number is 162 Range 1 65535 filtername Specifies a string that defines the filter for this host If unspecified nothing is filtered Range 1 30 characters seconds Specifies the number of seconds to ...

Page 282: ...HP PC Blade Switch CLI Reference Guide SNMP Commands Example The following command enables SNMP traps for host 10 1 1 1 with community string management using SNMPv2 Console config snmp server host 10 1 1 1 management 2 ...

Page 283: ...h Indicates authentication of a packet without encrypting it priv Indicates authentication of a packet with encryption port Specifies the UDP port of the host to use If unspecified the default UDP port number is 162 Range 1 65535 filtername Specifies a string that defines the filter for this host If unspecified nothing is filtered Range 1 30 characters seconds Specifies the number of seconds to wa...

Page 284: ...d authentication traps use the no form of this command Syntax snmp server trap authentication no snmp server trap authentication Parameters There are no parameters for this command Default Setting SNMP failed authentication traps are enabled Command Mode Global Configuration mode Command Usage There are no user guidelines for this command Example The following command enables SNMP failed authentic...

Page 285: ...t text no snmp server contact Parameters text Specifies the string that describes system contact information Range 0 160 characters Default Setting This command has no default configuration Command Mode Global Configuration mode Command Usage Do not include spaces in the text string or place text that includes spaces inside quotation marks Example The following command configures the system contac...

Page 286: ...ver location text no snmp server location Parameters text Specifies a string that describes system location information Range 0 160 characters Default Setting This command has no default configuration Command Mode Global Configuration mode Command Usage Do not include spaces in the text string or place text that includes spaces inside quotation marks Example The following command defines the devic...

Page 287: ...le at least one pair of name and value followed by one or more fields Default Setting This command has no default configuration Command Mode Global Configuration mode Command Usage Although the CLI can set any required configuration there might be a situation where a SNMP user sets a MIB variable that does not have an equivalent command In order to generate configuration files that support those s...

Page 288: ... for this command Example The following command displays the SNMP communications status Console show snmp Community String Community Access View Name IP Address public read only user view All private read write Default 172 16 1 1 private su DefaultSuper 172 17 1 1 Community string Group Name IP Address public user group all Traps are enabled Authentication trap is enabled Version 1 2 notifications...

Page 289: ...me Security Level UDP Port Filter Name To Sec Retries 192 122 173 42 Inform Bob Priv 162 15 3 System Contact Robert System Location Marketing Field Description Community string Community access string to permit access to the SNMP protocol Community access Type of access read only read write super access IP Address Management station IP address Version SNMP version for the sent trap 1 or 2 ...

Page 290: ...nagement Protocol SNMP engine Syntax show snmp engineid Parameters There are no parameters for this command Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command displays the SNMP engine ID Console show snmp engineid Local SNMP engineid 08009009020C0B099C075878 ...

Page 291: ...iewname Specifies the name of the view Range 1 30 Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command displays the configuration of views Console show snmp views Name OID Tree Type user view 1 3 6 1 2 1 1 Included user view 1 3 6 1 2 1 1 7 Excluded user view 1 3 6 1 2 1...

Page 292: ...nt fields shown in the example Console show snmp groups Name Security Views Model Level Read Write Notify user group V3 priv Default managers group V3 priv Default Default managers group V3 priv Default Field Description Name Name of the group Security Model SNMP model in use v1 v2 or v3 Security Level Authentication of a packet with encryption Applicable only to the SNMP v3 security model Views R...

Page 293: ...tername Specifies the name of the filter Range 1 30 Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command displays the configuration of filters Console show snmp filters Name OID Tree Type user filter 1 3 6 1 2 1 1 Included user filter 1 3 6 1 2 1 1 7 Excluded user filter...

Page 294: ... Parameters username Specifies the name of the user Range 1 30 Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command displays the configuration of users Console show snmp users Name Group Name Auth Method Remote John user group md5 John user group md5 08009009020C0B099C07...

Page 295: ...o parameters for this command Default Setting Spanning tree is enabled The MSTP RSTP conversion parameter is enabled which maps VLAN 1 to instance 1 and VLAN 2 to instance 2 This default provides interoperability with PVST PVST by treating each MSTP instance as a separate spanning tree using standard RSTP and STP BPDUs Command Modes Global Configuration mode Command Usage There are no user guideli...

Page 296: ...Spanning Tree Protocol STP is enabled rstp Indicates that the Rapid Spanning Tree Protocol RSTP is enabled mstp Indicates that the Multiple Spanning Tree Protocol RSTP is enabled Default Setting STP is enabled Command Modes Global Configuration mode Command Usage In RSTP mode the device uses STP when the neighbor device uses STP In MSTP mode the device uses RSTP when the neighbor device uses RSTP ...

Page 297: ... configuration use the no form of this command Syntax spanning tree forward time seconds no spanning tree forward time Parameters seconds Time in seconds Range 4 30 Default Setting The default forwarding time for the IEEE Spanning Tree Protocol STP is 15 seconds Command Modes Global Configuration mode Command Usage When configuring the forwarding time the following relationship should be kept 2 Fo...

Page 298: ...ration use the no form of this command Syntax spanning tree hello time seconds no spanning tree hello time Parameters seconds Time in seconds Range 1 10 Default Setting The default hello time for IEEE Spanning Tree Protocol STP is 2 seconds Command Modes Global Configuration mode Command Usage When configuring the hello time the following relationship should be kept Max Age 2 Hello Time 1 Example ...

Page 299: ...ng tree max age seconds no spanning tree max age Parameters seconds Time in seconds Range 6 40 Default Setting The default maximum age for IEEE Spanning Tree Protocol STP is 20 seconds Command Modes Global Configuration mode Command Usage When configuring the maximum age the following relationships should be kept 2 Forward Time 1 Max Age Max Age 2 Hello Time 1 Example The following command configu...

Page 300: ...efault configuration use the no form of this command Syntax spanning tree priority priority no spanning tree priority Parameters priority Priority of the bridge Range 0 61440 in steps of 4096 Default Setting The default bridge priority for IEEE Spanning Tree Protocol STP is 32768 Command Modes Global Configuration mode Command Usage The bridge with the lowest priority is elected as the root bridge...

Page 301: ... of this command Syntax spanning tree disable no spanning tree disable Parameters There are no parameters for this command Default Setting Spanning tree is enabled on all ports Command Modes Interface Configuration Ethernet port channel mode Command Usage There are no user guidelines for this command Example The following command disables spanning tree on Ethernet port 1 e5 Console config interfac...

Page 302: ...path cost is determined by port speed and path cost method long or short as shown in the following table Command Modes Interface Configuration Ethernet port channel mode Command Usage The path cost method is configured using the spanning tree pathcost method Global Configuration mode command Example The following command configures the spanning tree cost on Ethernet port 1 e15 to 35000 Interface L...

Page 303: ... priority no spanning tree port priority Parameters priority The priority of the port Range 0 240 in multiples of 16 Default Setting The default port priority for IEEE Spanning Tree Protocol STP is 128 Command Modes Interface Configuration Ethernet port channel mode Command Usage There are no user guidelines for this command Example The following command configures the spanning priority on Etherne...

Page 304: ...s with no BPDUs received on the interface before putting the interface into PortFast mode Default Setting PortFast mode is disabled Command Modes Interface Configuration Ethernet port channel mode Command Usage This feature should be used only with interfaces connected to end stations Otherwise an accidental topology loop could cause a data packet loop and disrupt device and network operations An ...

Page 305: ...point shared no spanning tree link type Parameters point to point Indicates that the port link type is point to point shared Indicates that the port link type is shared Default Setting The device derives the port link type from the duplex mode A full duplex port is considered a point to point link and a half duplex port is considered a shared link Command Modes Interface Configuration Ethernet por...

Page 306: ... method long short no spanning tree pathcost method Parameters long Specifies port path costs with a range of 1 200 000 000 short Specifies port path costs with a range of 0 65 535 Default Setting Short path cost method Command Mode Global Configuration mode Command Usage This command applies to all spanning tree instances on the device The cost is set using the spanning tree cost command Example ...

Page 307: ... Syntax spanning tree bpdu filtering flooding Parameters filtering Filter BPDU packets when the spanning tree is disabled on an interface flooding Flood BPDU packets when the spanning tree is disabled on an interface Default Setting The default setting is flooding Command Modes Global Configuration mode Command Usage There are no user guidelines for this command Example The following command defin...

Page 308: ...ce Syntax clear spanning tree detected protocols ethernet interface port channel port channel number Parameters interface A valid Ethernet port port channel number A valid port channel number Default Setting This command has no default configuration Command Modes Privileged EXEC mode Command Usage This feature should be used only when working in RSTP or MSTP mode Example The following command rest...

Page 309: ...no spanning tree mst instance id priority Parameters instance id ID of the spanning tree instance Range 1 16 priority Device priority for the specified spanning tree instance Range 0 61440 in multiples of 4096 Default Setting The default bridge priority for IEEE Spanning Tree Protocol STP is 32768 Command Mode Global Configuration mode Command Usage The device with the lowest priority is selected ...

Page 310: ...se the no form of this command Syntax spanning tree mst max hops hop count no spanning tree mst max hops Parameters hop count Number of hops in an MST region before the BDPU is discarded Range 1 40 Default Setting The default number of hops is 20 Command Mode Global Configuration mode Command Usage There are no user guidelines for this command Example The following command configures the maximum n...

Page 311: ...ity no spanning tree mst instance id port priority Parameters instance ID ID of the spanning tree instance Range 1 16 priority The port priority Range 0 240 in multiples of 16 Default Setting The default port priority for IEEE Multiple Spanning Tree Protocol MSTP is 128 Command Modes Interface Configuration Ethernet port channel mode Command Usage There are no user guidelines for this command Exam...

Page 312: ...id cost Parameters instance ID ID of the spanning tree instance Range 1 16 cost The port path cost Range 1 200 000 000 Default Setting Default path cost is determined by port speed and path cost method long or short as shown in the following table Command Modes Interface Configuration Ethernet port channel mode Command Usage There are no user guidelines for this command Example The following comma...

Page 313: ...t configuration Parameters There are no parameters for this command Default Setting This command has no default configuration Command Mode Global Configuration mode Command Usage All devices in an MST region must have the same VLAN mapping configuration revision number and name Example The following command configures an MST region Console config spanning tree mst configuration console config mst ...

Page 314: ...nge 1 4094 Default Setting VLANs are mapped to the common and internal spanning tree CIST instance instance 0 Command Modes MST Configuration mode Command Usage All VLANs that are not explicitly mapped to an MST instance are mapped to the common and internal spanning tree CIST instance instance 0 and cannot be unmapped from the CIST For two or more devices to be in the same MST region they must ha...

Page 315: ... of this command Syntax name string Parameters string MST configuration name Case sensitive Range 1 32 characters Default Setting The default name is a bridge ID Command Mode MST Configuration mode Command Usage There are no user guidelines for this command Example The following command defines the configuration name as region1 console config spanning tree mst configuration console config mst name...

Page 316: ...no form of this command Syntax revision value no revision Parameters value Configuration revision number Range 0 65535 Default Setting The default configuration revision number is 0 Command Mode MST Configuration mode Command Usage There are no user guidelines for this command Example The following command sets the configuration revision to 1 console config spanning tree mst configuration console ...

Page 317: ...pending Indicates the pending region configuration Default Setting This command has no default configuration Command Mode MST Configuration mode Command Usage The pending MST region configuration takes effect only after exiting the MST configuration mode Example The following command displays a pending MST region configuration console config mst show pending Pending MST configuration Name Region1 ...

Page 318: ...uration changes Syntax exit Parameters There are no parameters for this command Default Setting This command has no default configuration Command Mode MST Configuration mode Command Usage There are no user guidelines for this command Example The following command exits the MST configuration mode and saves changes console config spanning tree mst configuration console config mst exit ...

Page 319: ...uration changes Syntax abort Parameters There are no parameters for this command Default Setting This command has no default configuration Command Mode MST Configuration mode Command Usage There are no user guidelines for this command Example The following command exits the MST configuration mode without saving changes console config spanning tree mst configuration console config mst abort ...

Page 320: ...ntax spanning tree guard root no spanning tree guard root Parameters There are no parameters for this command Default Setting Root guard is disabled Command Mode Interface Configuration Ethernet port channel mode Command Usage Root guard can be enabled when the device operates in STP RSTP and MSTP When root guard is enabled the port changes to the alternate state if spanning tree calculations sele...

Page 321: ...annel number detail Indicates detailed information active Indicates active ports only blockedports Indicates blocked ports only mst configuration Indicates the MST configuration identifier instance id Specifies ID of the spanning tree instance Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Exam...

Page 322: ...3 20000 1 e4 Enabled 128 4 20000 BLK ALTN No Shared STP 1 e5 Enabled 128 5 20000 DIS Console show spanning tree Spanning tree enabled mode RSTP Default port cost method long Root ID Priority 36864 Address 00 02 4b 29 7a 00 This switch is the root Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec Interfaces Name State Prio Nbr Cost Sts Role PortFast Type 1 e1 Enabled 128 1 20000 FWD Desg No P2p ...

Page 323: ...ddress 00 02 4b 29 7a 00 Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec Interfaces Name State Prio Nbr Cost Sts Role PortFast Type 1 e1 Enabled 128 1 20000 1 e2 Enabled 128 2 20000 1 e3 Disabled 128 3 20000 1 e4 Enabled 128 4 20000 1 e5 Enabled 128 5 20000 Console show spanning tree active Spanning tree enabled mode RSTP Default port cost method long Root ID Priority 32768 Address 00 01 42 9...

Page 324: ...ared STP 1 e4 Enabled 128 4 20000 BLK ALTN No Shared STP Console show spanning tree blockedports Spanning tree enabled mode RSTP Default port cost method long Root ID Priority 32768 Address 00 01 42 97 e0 00 Path Cost 20000 Root Port 1 1 1 Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec Bridge ID Priority 36864 Address 00 02 4b 29 7a 00 Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec Int...

Page 325: ...hange 35 notification 2 hello 2 max age 20 forward delay 15 Port 1 1 e1 enabled State Forwarding Role Root Port id 128 1 Port cost 20000 Type P2p configured auto RSTP Port Fast No configured no Designated bridge Priority 32768 Address 00 01 42 97 e0 00 Designated port id 128 25 Designated path cost 0 Number of transitions to forwarding state 1 BPDU sent 2 received 120638 Port 2 1 e2 enabled State ...

Page 326: ...signated port id 128 25 Designated path cost 20000 Number of transitions to forwarding state 1 BPDU sent 2 received 120638 Port 5 1 e5 enabled State Disabled Role N A Port id 128 5 Port cost 20000 Type N A configured auto Port Fast N A configured no Designated bridge Priority N A Address N A Designated port id N A Designated path cost N A Number of transitions to forwarding state N A BPDU sent N A...

Page 327: ... CST Root ID Priority 32768 Address 00 01 42 97 e0 00 Path Cost 20000 Root Port 1 1 e1 Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec IST Master ID Priority 32768 Address 00 02 4b 29 7a 00 This switch is the IST master Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec Max hops 20 Interfaces Name State Prio Nbr Cost Sts Role PortFast Type 1 e1 Enabled 128 1 20000 FWD Root No P2p Bound RSTP...

Page 328: ...ed 128 3 20000 BLK Altn No P2p 1 e4 Enabled 128 4 20000 FWD Desg No P2p Console show spanning tree detail Spanning tree enabled mode MSTP Default port cost method long MST 0 VLANs Mapped 1 9 21 4094 CST Root ID Priority 32768 Address 00 01 42 97 e0 00 Path Cost 20000 Root Port 1 1 e1 Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec IST Master ID Priority 32768 Address 00 02 4b 29 7a 00 This sw...

Page 329: ...00 Designated port id 128 2 Designated path cost 20000 Number of transitions to forwarding state 1 BPDU sent 2 received 170638 Port 3 1 e3 enabled State Forwarding Role Designated Port id 128 3 Port cost 20000 Type Shared configured auto Internal Port Fast No configured no Designated bridge Priority 32768 Address 00 02 4b 29 7a 00 Designated port id 128 3 Designated path cost 20000 Number of trans...

Page 330: ...ted port id 128 1 Designated path cost 20000 Number of transitions to forwarding state 1 BPDU sent 2 received 120638 Port 2 1 e2 enabled State Forwarding Role Designated Port id 128 2 Port cost 20000 Type Shared configured auto Boundary STP Port Fast No configured no Designated bridge Priority 32768 Address 00 02 4b 29 7a 00 Designated port id 128 2 Designated path cost 20000 Number of transitions...

Page 331: ...e 1 BPDU sent 2 received 170638 Console show spanning tree Spanning tree enabled mode MSTP Default port cost method long MST 0 VLANs Mapped 1 9 21 4094 CST Root ID Priority 32768 Address 00 01 42 97 e0 00 Path Cost 20000 Root Port 1 1 e1 Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec IST Master ID Priority 32768 Address 00 02 4b 19 7a 00 Path Cost 10000 Rem hops 19 Bridge ID Priority 32768 A...

Page 332: ...erence Guide Spanning Tree Commands MST 0 VLANs Mapped 1 9 21 4094 CST Root ID Priority 32768 Address 00 01 42 97 e0 00 This switch is root for CST and IST master Root Port 1 1 e1 Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec Max hops 20 ...

Page 333: ... command the following is required The port mode of all the ports in switch is set to Access The number of VLANs in the switch is less then 16 If there is a VLAN to MSTP mapping the software asks the user to confirm that the existing mapping would be deleted This command performs the following Enable MSTP Map each VLAN to MSTP instance Enable MSTP to STP conversion The commands that shown in the s...

Page 334: ...e that enables the mapping of IEEE RSTP packets to MSTP instances as follows Incoming IEEE RSTP packets are mapped to the MSTP instance according to the default VLAN of the port The switch sends information through that port only for the instance of the default VLAN of that port The information is sent in an IEEE RSTP packet with a bridge ID of the configured priority for that switch multiplied by...

Page 335: ... form of this command Syntax ip ssh port port number no ip ssh port Parameters port number Port number for use by the SSH server Range 1 65535 Default Setting The default port number is 22 SSH is disabled by default Command Mode Global Configuration mode Command Usage There are no user guidelines for this command Example The following command specifies the port to be used by the SSH server as 8080...

Page 336: ...e no parameters for this command Default Setting Device configuration from a SSH server is enabled SSH is disabled by default Command Mode Global Configuration mode Command Usage If encryption keys are not generated the SSH server is in standby until the keys are generated To generate SSH server keys use the crypto key generate dsa and crypto key generate rsa Global Configuration mode commands Exa...

Page 337: ...enerated in pairs one public DSA key and one private DSA key If the device already has DSA keys a warning and prompt to replace the existing keys with new keys are displayed This command is not saved in the device configuration however the keys generated by this command are saved in the private configuration which is never displayed to the user or backed up on another device DSA keys are saved to ...

Page 338: ...enerated in pairs one public RSA key and one private RSA key If the device already has RSA keys a warning and prompt to replace the existing keys with new keys are displayed This command is not saved in the device configuration however the keys generated by this command are saved in the private configuration which is never displayed to the user or backed up on another device RSA keys are saved to ...

Page 339: ...ion use the no form of this command Syntax ip ssh pubkey auth no ip ssh pubkey auth Parameters There are no parameters for this command Default Setting Public Key authentication for incoming SSH sessions is disabled Command Mode Global Configuration mode Command Usage AAA authentication is independent Example The following command enables public key authentication for incoming SSH sessions Console...

Page 340: ...nd Example The following example shows how to enter the SSH Public Key chain Configuration mode and manually configure the RSA key pair for SSH public key chain bob Console config crypto key pubkey chain ssh console config pubkey chain user key bob console config pubkey key key string rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCvTnRwPWl Al4kpqIw9GBRonZQZxjHKcqKL6rMlQ ZNXfZSkvHG QusIZ 76ILmFT34v7u7ChFAE Vu4...

Page 341: ... Range 1 48 characters rsa Indicates the RSA key pair dsa Indicates the DSA key pair Default Setting No SSH public keys exist Command Mode SSH Public Key string Configuration mode Command Usage Follow this command with the key string SSH Public Key String Configuration mode command to specify the key Example The following commands enable manually configuring an SSH public key for SSH public key ch...

Page 342: ...ame format in the authorized_keys file used by OpenSSH Default Setting No keys exist Command Mode SSH Public Key string Configuration mode Command Usage Use the key string SSH Public Key string Configuration mode command to specify which SSH public key is to be interactively configured next To complete the command you must enter a row with no characters Use the key string row SSH Public Key string...

Page 343: ...NXfZSkvHG QusIZ 76ILmFT34v7u7ChFAE Vu4GRfpSwoQUvV35LqJJk67IOU zfwOl1g kTwml75QR9gHujS6KwGN2QWXgh3ub8gDjTSq muSn Wd05iDX2IExQWu08licglk02LYciz Z4TrEU 9FJxwPiVQOjc KBXuR0juNg5nFYsY 0ZCk0N W9a tnkm1shRE7Di71 w3fNiOA 6w9o44t6 AINEICBCCA4YcF6zMzaT1wefWwX6f Rmt5nhhqdAtN 4oJfce166DqVX1gWmN zNR4DYDvSzg0lDnwCAC8Qh Fingerprint a4 16 46 23 5a 8d 1d b5 37 59 eb 44 13 b9 33 e9 Console config crypto key pubkey ...

Page 344: ...command Example The following command displays the SSH server configuration The following table describes significant fields shown in the example Console show ip ssh SSH server enabled Port 22 RSA key was generated DSA DSS key was generated SSH Public Key Authentication is enabled Active incoming sessions IP Address SSH username Version Cipher Auth Code 172 16 0 1 John Brown 2 0 3 DES HMAC SHA1 Fi...

Page 345: ...re are no parameters for this command Default Setting Logging is enabled Command Mode Global Configuration mode Command Usage The logging process controls the distribution of logging messages at various destinations such as the logging buffer logging file or syslog server Logging on and off at these destinations can be individually configured using the logging buffered logging file and logging Glo...

Page 346: ...s the severity level of logged messages sent to the syslog servers Possible values emergencies alerts critical errors warnings notifications informational and debugging facility Specifies the facility that is indicated in the message Possible values local0 local1 local2 local3 local4 local5 local6 local7 text Syslog server description Range 1 64 characters Default Setting The default port number i...

Page 347: ...g console Parameters level Specifies the severity level of logged messages displayed on the console Possible values emergencies alerts critical errors warnings notifications informational and debugging Default Setting The default severity level is informational Command Mode Global Configuration mode Command Usage There are no user guidelines for this command Example The following command limits lo...

Page 348: ...cifies the severity level of messages logged in the buffer Possible values emergencies alerts critical errors warnings notifications informational and debugging Default Setting The default severity level is informational Command Mode Global Configuration mode Command Usage All the syslog messages are logged to the internal buffer This command limits the messages displayed to the user Example The f...

Page 349: ...rm of this command Syntax logging buffered size number no logging buffered size Parameters number Specifies the maximum number of messages stored in the history table Range 20 400 Default Setting The default number of messages is 200 Command Mode Global Configuration mode Command Usage This command takes effect only after Reset Example The following command changes the number of syslog messages st...

Page 350: ...ogging buffer Syntax clear logging Parameters There are no parameters for this command Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command clears messages from the internal logging buffer Console clear logging Clear logging buffer confirm ...

Page 351: ...ng file Parameters level Specifies the severity level of syslog messages sent to the logging file Possible values emergencies alerts critical errors warnings notifications informational and debugging Default Setting The default severity level is errors Command Mode Global Configuration mode Command Usage There are no user guidelines for this command Example The following command limits syslog mess...

Page 352: ...e logging file Syntax clear logging file Parameters There are no parameters for this command Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command clears messages from the logging file Console clear logging file Clear Logging File confirm ...

Page 353: ...ogging login no aaa logging login Parameters login Indicates logging messages related to successful login events unsuccessful login events and other login related events Default Setting Logging AAA login events is enabled Command Mode Global Configuration mode Command Usage Other types of AAA events are not subject to this command Example The following command enables logging messages related to A...

Page 354: ... file system logging delete rename no file system logging delete rename Parameters copy Indicates logging messages related to file copy operations delete rename Indicates logging messages related to file deletion and renaming operations Default Setting Logging file system events is enabled Command Mode Global Configuration mode Command Usage There are no user guidelines for this command Example Th...

Page 355: ...command Syntax management logging deny no management logging deny Parameters deny Indicates logging messages related to deny actions of management ACLs Default Setting Logging management ACL events is enabled Command Mode Global Configuration mode Command Usage Other types of management ACL events are not subject to this command Example The following command enables logging messages related to den...

Page 356: ...mmand displays the state of logging and the syslog messages stored in the internal buffer Console show logging Logging is enabled Console logging level debugging Console Messages 0 Dropped severity Buffer logging level debugging Buffer Messages 11 Logged 200 Max File logging level notifications File Messages 0 Dropped severity Syslog server 192 180 2 27 logging errors Messages 6 Dropped severity S...

Page 357: ...UPDOWN Interface Ethernet1 3 changed state to up 11 Aug 2004 15 41 43 SYS 5 CONFIG_I Configured from memory by console 11 Aug 2004 15 41 39 LINEPROTO 5 UPDOWN Line protocol on Interface FastEthernet0 0 changed state to up 11 Aug 2004 15 41 39 LINEPROTO 5 UPDOWN Line protocol on Interface Ethernet1 0 changed state to down 11 Aug 2004 15 41 39 LINEPROTO 5 UPDOWN Line protocol on Interface Ethernet1 ...

Page 358: ... is enabled Console logging level debugging Console Messages 0 Dropped severity Buffer logging level debugging Buffer Messages 11 Logged 200 Max File logging level notifications File Messages 0 Dropped severity Syslog server 192 180 2 27 logging errors Messages 6 Dropped severity Syslog server 192 180 2 28 logging errors Messages 6 Dropped severity 2 messages were not logged resources Application ...

Page 359: ...ug 2004 15 41 39 LINEPROTO 5 UPDOWN Line protocol on Interface FastEthernet0 0 changed state to up 11 Aug 2004 15 41 39 LINEPROTO 5 UPDOWN Line protocol on Interface Ethernet1 0 changed state to down 11 Aug 2004 15 41 39 LINEPROTO 5 UPDOWN Line protocol on Interface Ethernet1 1 changed state to down 11 Aug 2004 15 41 39 LINEPROTO 5 UPDOWN Line protocol on Interface Ethernet1 2 changed state to dow...

Page 360: ...24 16 www hp com HP PC Blade Switch CLI Reference Guide Syslog Commands ...

Page 361: ... 1472 bytes packet_count Number of packets to send If 0 is entered it pings until stopped Range 0 65535 packets time_out Timeout in milliseconds to wait for each reply Range 50 65535 milliseconds Default Setting Default buffer size is 56 bytes Default number of packets to send is 4 Default timeout value is 2000 milliseconds Command Mode User EXEC mode Command Usage Press Esc to stop pinging Follow...

Page 362: ...8 ms 64 bytes from 10 1 1 1 icmp_seq 3 time 7 ms 10 1 1 1 PING Statistics 4 packets transmitted 4 packets received 0 packet loss round trip ms min avg max 7 8 11 Console ping yahoo com Pinging yahoo com 66 218 71 198 with 64 bytes of data 64 bytes from 10 1 1 1 icmp_seq 0 time 11 ms 64 bytes from 10 1 1 1 icmp_seq 1 time 8 ms 64 bytes from 10 1 1 1 icmp_seq 2 time 8 ms 64 bytes from 10 1 1 1 icmp_...

Page 363: ...Default Setting The default number of bytes in a packet is 40 The default maximum TTL value is 30 The default number of probes to be sent at each TTL level is 3 The default timeout interval in seconds is 3 Command Mode User EXEC mode Command Usage The traceroute command takes advantage of the error messages generated by the devices when a datagram exceeds its time to live TTL value The traceroute ...

Page 364: ... Esc to abort 1 192 168 2 5 192 168 2 5 20 ms 20 ms 20 ms Trace complete Console Field Description 1 Indicates the sequence number of the device in the path to the host i2 gateway stanford edu Host name of this device 192 68 191 83 IP address of this device 1 msec 1 msec 1 msec Round trip time for each probe sent Field Description The probe timed out Unknown packet type A Administratively unreacha...

Page 365: ...words listed in the Keywords table in the Command Usage Default Setting The default port is the Telnet port decimal23 on the host Command Mode User EXEC mode Command Usage Telnet software supports special Telnet commands in the form of Telnet sequences that map generic terminal control functions to operating system specific functions To enter a Telnet sequence press the escape sequence keys Ctrl s...

Page 366: ... escape help B sends telnet BREAK C sends telnet IP H sends telnet EC O sends telnet AO T sends telnet AYT U sends telnet EL Ctrl shift 6 x suspends the session return to system command prompt Options Description echo Enables local echo quiet Prevents on screen display of all messages from the software source interface Specifies the source interface stream Turns on stream processing which enables ...

Page 367: ...s 20 gopher Gopher 70 hostname NIC hostname server 101 ident Ident Protocol 113 irc Internet Relay Chat 194 klogin Kerberos login 543 kshell Kerberos shell 544 login Login 513 lpd Printer service 515 nntp Network News Transport Protocol 119 pim auto rp PIM Auto RP 496 pop2 Post Office Protocol v2 109 pop3 Post Office Protocol v3 110 smtp Simple Mail Transport Protocol 25 sunrpc Sun Remote Procedur...

Page 368: ...net session Syntax resume connection Parameters connection The connection number Range 1 4 connections Default Setting The default connection number is that of the most recent connection Command Mode User EXEC mode Command Usage There are no user guidelines for this command Example The following command switches to open Telnet session number 1 Console resume 1 ...

Page 369: ...efault configuration Command Mode Privileged EXEC mode Command Usage Caution should be exercised when resetting the device to ensure that no other activity is being performed In particular the user should verify that no configuration files are being downloaded at the time of reset Example The following command reloads the operating system Console reload This command will reset the whole system and...

Page 370: ...sting host name use the no form of the command Syntax hostname name no hostname Parameters name The host name of the device Range 1 158 characters Default Setting This command has no default configuration Command Mode Global Configuration mode Command Usage There are no user guidelines for this command Example The following command specifies the device host name Console config hostname HP HP confi...

Page 371: ...Parameters There are no parameters for this command Default Setting This command has no default configuration Command Mode User EXEC mode Command Usage There are no user guidelines for this command Example The following command displays information about the active users Console show users Username Protocol Location Bob Serial John SSH 172 16 0 1 Robert HTTP 172 16 0 8 Betty Telnet 172 16 1 7 ...

Page 372: ...e There are no user guidelines for this command Example The following command lists open Telnet sessions The following table describes significant fields shown in the example Console show sessions Connection Host Address Port Byte 1 Remote device 172 16 1 1 23 89 2 172 16 1 2 172 16 1 2 23 8 Field Description Connection Connection number Host Remote host to which the device is connected through a ...

Page 373: ...are no parameters for this command Default Setting This command has no default configuration Command Mode User EXEC mode Command Usage There are no user guidelines for this command Example The following command displays the system information Console show system Unit Type 1 HP 6300 Unit Main Power Supply Redundant Power Supply 1 OPERATION AL NOT OPERATIONAL Fan1 Fan2 Fan3 Fan4 Fan5 OK OK OK OK OK ...

Page 374: ...t Setting This command has no default configuration Command Mode User EXEC mode Command Usage There are no user guidelines for this command Example The following command displays system version information only for demonstration purposes Console show version SW version 1 0 0 0 date 23 Jul 2005 time 17 34 19 Boot version 1 0 0 0 date 11 Jan 2005 time 11 48 21 HW version 1 0 0 SW version Boot versio...

Page 375: ... configuration use the no form of this command Syntax service cpu utilization no service cpu utilization Parameters There are no parameters for this command Default Setting Disabled Command Mode Global Configuration mode Command Usage Use the show cpu utilization Privileged EXEC command to view information on CPU utilization Example The following command enables measuring CPU utilization Console c...

Page 376: ...ers There are no parameters for this command Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage Use the service cpu utilization Global Configuration mode command to enable measuring CPU utilization Example The following command displays CPU utilization information Console show cpu utilization CPU utilization service is on CPU utilization five ...

Page 377: ... the device and the daemon port number Specifies a server port number Range 0 65535 timeout Specifies the timeout value in seconds Range 1 30 key string Specifies the authentication and encryption key for all TACACS communications between the device and the TACACS server This key must match the encryption used on the TACACS daemon To specify an empty string enter Range 0 128 characters source Spec...

Page 378: ...Switch CLI Reference Guide TACACS Commands Command Usage Multiple tacacs server host commands can be used to specify multiple hosts Example The following command specifies a TACACS host Console config tacacs server host 172 16 1 1 ...

Page 379: ...ntax tacacs server key key string no tacacs server key Parameters key string Specifies the authentication and encryption key for all TACACS communications between the device and the TACACS server This key must match the encryption used on the TACACS daemon Range 0 128 characters Default Setting Empty string Command Mode Global Configuration mode Command Usage There are no user guidelines for this ...

Page 380: ...ly To return to the default configuration use the no form of this command Syntax tacacs server timeout timeout no tacacs server timeout Parameters timeout Specifies the timeout value in seconds Range 1 30 Default Setting 5 seconds Command Mode Global Configuration mode Command Usage There are no user guidelines for this command Example The following command sets the timeout value to 30 Console con...

Page 381: ...lt configuration use the no form of this command Syntax tacacs server source ip source no tacacs server source ip source Parameters source Specifies the source IP address Default Setting The source IP address is the address of the outgoing IP interface Command Mode Global Configuration mode Command Usage There are no user guidelines for this command Example The following command specifies the sour...

Page 382: ...ACS server Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command displays configuration and statistical information about a TACACS server Console show tacacs Device Configuration IP address Status Port Single Connection TimeOut Source IP Priority 172 16 1 1 Connected 49 N...

Page 383: ...iguration modes Command Usage There are no user guidelines for this command Example The following command executes an EXEC level command show vlan from the Global Configuration mode Console Config do show vlan VLAN Name Port Type Authorization 1 default 2 1 4 1 1 2 other Required 10 VLAN0010 1 3 4 dynamic Required 11 VLAN0011 1 1 2 static Required 20 VLAN0020 1 3 4 static Required 21 VLAN0021 stat...

Page 384: ... mode Syntax enable privilege level Parameters privilege level Privilege level to enter the system Range 1 15 Default Setting The default privilege level is 15 Command Mode User EXEC mode Command Usage There are no user guidelines for this command Example The following command enters the Privileged EXEC mode Console enable enter password Console ...

Page 385: ... User EXEC mode Syntax disable privilege level Parameters privilege level Privilege level to enter the system Range 1 15 Default Setting The default privilege level is 1 Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command returns to Users EXEC mode Console disable Console ...

Page 386: ...yntax login Parameters There are no parameters for this command Default Setting This command has no default configuration Command Mode User EXEC mode Command Usage There are no user guidelines for this command Example The following command enters Privileged EXEC mode and logs in with username admin Console login User Name admin Password Console ...

Page 387: ...lobal Configuration mode Syntax configure Parameters There are no parameters for this command Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command enters the Global Configuration mode Console configure Console config ...

Page 388: ...tax exit Parameters There are no parameters for this command Default Setting This command has no default configuration Command Mode All configuration modes Command Usage There are no user guidelines for this command Example The following command changes the configuration mode from Interface Configuration mode to Privileged EXEC mode Console config Console config if exit Console config exit Console...

Page 389: ...terminal session by logging off the device Syntax exit Parameters There are no parameters for this command Default Setting This command has no default configuration Command Mode Privileged and User EXEC modes Command Usage There are no user guidelines for this command Example The following command closes an active terminal session Console exit ...

Page 390: ...Privileged EXEC mode Syntax end Parameters There are no parameters for this command Default Setting This command has no default configuration Command Mode All configuration modes Command Usage There are no user guidelines for this command Example The following command changes from Global Configuration mode to Privileged EXEC mode Console config end Console ...

Page 391: ...point in a command by entering a question mark If nothing matches the currently entered incomplete command the help list is empty This indicates that for a query at this point there is no command matching the current input If the request is within a command enter backspace and erase the entered characters to a point where the request results in a display Help is provided when 1 There is a valid co...

Page 392: ...mmand Default Setting Dumping is disabled Command Mode User EXEC mode Command Usage By default a More prompt is displayed when the output contains more lines than can be displayed on the screen Pressing the Enter key displays the next line pressing the Spacebar displays the next screen of output The data dump command enables dumping all output immediately after entering the show command This comma...

Page 393: ...mmand Usage The buffer includes executed and unexecuted commands Commands are listed from the first to the most recent command The buffer remains unchanged when entering into and returning from configuration modes Example The following command displays all the commands entered while in the current Privileged EXEC mode Console show history SW version 3 131 date 23 Jul 2004 time 17 34 19 HW version ...

Page 394: ... Syntax show privilege Parameters There are no parameters for this command Default Setting This command has no default configuration Command Mode Privileged and User EXEC modes Command Usage There are no user guidelines for this command Example The following command displays the current privilege level for the Privileged EXEC mode Console show privilege Current privilege level is 15 ...

Page 395: ...tion mode Syntax vlan database Parameters There are no parameters for this command Default Setting Two VLANs are assigned in the VLAN database VLAN 1 VLAN 2 Command Mode Global Configuration mode Command Usage There are no user guidelines for this command Example The following command enters the VLAN database mode Console config vlan database console config vlan ...

Page 396: ...Parameters vlan range Specifies a list of VLAN IDs to be added Separate nonconsecutive VLAN IDs with a comma and no spaces a hyphen designates a range of IDs Default Setting This command has no default configuration Command Mode VLAN Configuration mode Command Usage There are no user guidelines for this command Example The following command VLAN number 1972 is created Console config vlan database ...

Page 397: ...s vlan id Specifies an existing VLAN ID Default Setting Two interfaces are configured and set to DHCP one on VLAN 1 one on VLAN 2 Command Mode Global Configuration mode Command Usage There are no user guidelines for this command Example The following command configures VLAN 1 with IP address 131 108 1 27 and subnet mask 255 255 255 0 Console config interface vlan 1 Console config if ip address 131...

Page 398: ...en designates a range of IDs all All existing static VLANs Default Setting This command has no default configuration Command Mode Global Configuration mode Command Usage Commands under the interface range context are executed independently on each interface in the range If the command returns an error on one of the interfaces an error message is displayed and execution of the command continues on ...

Page 399: ...e Parameters string Unique name to be associated with this VLAN Range 1 32 characters Default Setting No name is defined Command Mode Interface Configuration VLAN mode Cannot be configured for a range of interfaces range context Command Usage There are no user guidelines for this command Example The following command gives VLAN number 19 the name Marketing Console config interface vlan 19 Console ...

Page 400: ...VLAN port trunk Indicates a trunking layer 2 VLAN port general Indicates a full 802 1q supported VLAN port Default Setting All ports are in access mode All ports do not all belong to the default VLAN By default odd ports 1 41 42 45 and 46 are all in VLAN 1 The remaining ports are in VLAN 2 Command Mode Interface Configuration Ethernet port channel mode Command Usage There are no user guidelines Ex...

Page 401: ...AN to which the port is configured dynamic Indicates that the port is assigned to a VLAN based on the source MAC address of the host connected to the port Default Setting Odd ports 1 41 42 45 and 46 are all in VLAN 1 The remaining ports are in VLAN 2 Command Mode Interface configuration Ethernet port channel mode Command Usage The command automatically removes the port from the previous VLAN and a...

Page 402: ... a comma and no spaces A hyphen designates a range of IDs remove vlan list List of VLAN IDs to be removed Separate nonconsecutive VLAN IDs with a comma and no spaces A hyphen designates a range of IDs Default Setting This command has no default configuration Command Mode Interface Configuration Ethernet port channel mode Command Usage There are no user guidelines for this command Example The follo...

Page 403: ...o switchport trunk native vlan Parameters vlan id Specifies the ID of the native VLAN Default Setting VID 1 Command Mode Interface Configuration Ethernet port channel mode Command Usage The command adds the port as a member in the VLAN If the port is already a member in the VLAN not as a native it should be first removed from the VLAN Example The following command configures VLAN number 123 as the...

Page 404: ...oved Separate nonconsecutive VLAN IDs with a comma and no spaces A hyphen designates a range of IDs tagged Indicates that the port transmits tagged packets for the VLANs untagged Indicates that the port transmits untagged packets for the VLANs Default Setting If the port is added to a VLAN without specifying tagged or untagged the default setting is tagged Command Mode Interface Configuration Ethe...

Page 405: ...chport general pvid vlan id no switchport general pvid Parameters vlan id Specifies the PVID Port VLAN ID Default Setting If the default VLAN is enabled PVID 1 Otherwise PVID 4095 Command Mode Interface Configuration Ethernet port channel mode Command Usage There are no user guidelines for this command Example The following commands configure the PVID for Ethernet port 1 e16 when the interface is ...

Page 406: ... use the no form of this command Syntax switchport general ingress filtering disable no switchport general ingress filtering disable Parameters There are no parameters for this command Default Setting Ingress filtering is enabled Command Mode Interface Configuration Ethernet port channel mode Command Usage There are no user guidelines for this command Example The following commands disable port in...

Page 407: ...t general acceptable frame type tagged only no switchport general acceptable frame type tagged only Parameters There are no parameters for this command Default Setting All frame types are accepted at ingress Command Mode Interface Configuration Ethernet port channel mode Command Usage There are no user guidelines for this command Example The following commands configure Ethernet port 1 e16 to disc...

Page 408: ...LAN IDs with a comma and no spaces A hyphen designates a range of IDs remove vlan list Specifies the list of VLAN IDs to be removed Separate nonconsecutive VLAN IDs with a comma and no spaces A hyphen designates a range of IDs Default Setting All VLANs are allowed Command Mode Interface Configuration Ethernet port channel mode Command Usage This command can be used to prevent GVRP from automatical...

Page 409: ...VLAN is required when an IP interface is configured on an Ethernet port or port channel This command enables the user to configure the internal usage VLAN of a port If an internal usage VLAN is not configured and the user wants to configure an IP interface an unused VLAN is selected by the software If the software selected a VLAN for internal use and the user wants to use that VLAN as a static or ...

Page 410: ...default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command displays all VLAN information Console show vlan VLAN Name Ports Type Authorization 1 default 1 e1 e2 2 e1 e4 other Required 10 VLAN0010 1 e3 e4 dynamic Required 11 VLAN0011 1 e1 e2 static Required 20 VLAN0020 1 e3 e4 static Required 21 VLAN0021 static Re...

Page 411: ...nal usage Parameters There are no parameters for this command Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command displays VLANs used internally by the device Console show vlan internal usage VLAN Usage IP Address Reserved 1007 Eth 1 e21 Active No 1008 Eth 1 e22 Inactiv...

Page 412: ...default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command displays the switchport configuration for Ethernet port 1 e1 Console show interface switchport ethernet 1 e1 Port 1 e1 VLAN Membership mode General Operating parameters PVID 1 default Ingress Filtering Enabled Acceptable Frame Type All GVRP status Enable...

Page 413: ... 11 VLAN011 tagged 19 IPv6 VLAN untagged 72 VLAN0072 untagged Forbidden VLANS VLAN Name 73 out Console show interface switchport ethernet 1 e2 Port 1 e2 VLAN Membership mode General Operating parameters PVID 4095 discard vlan Ingress Filtering Enabled Acceptable Frame Type All Port 1 e1 is member in VLAN Name Egress Rule Type 91 IP Telephony tagged Static Static configuration PVID 8 Ingress Filter...

Page 414: ...ommands Port 1 e2 is statically configured to VLAN Name Egress rule 8 VLAN0072 untagged 91 IP Telephony tagged Forbidden VLANS VLAN Name 73 out Port 2 e19 Static configuration PVID 2922 Ingress Filtering Enabled Acceptable Frame Type Untagged GVRP status Disabled ...

Page 415: ...e this function use the no form of this command Syntax ip http server no ip http server Parameters There are no parameters for this command Default Setting HTTP server is enabled Command Mode Global Configuration Command Usage Only a user with access level 15 can use the Web server Example The following command enables configuring the device from a browser Console config Console config ip http ser...

Page 416: ... the no form of this command Syntax ip http port port number no ip http port Parameters port number Port number for use by the HTTP server Range 0 65535 Default Setting The default port number is 80 Command Mode Global Configuration Command Usage Specifying 0 as the port number effectively disables HTTP access to the device Example The following command configures the http port number to 100 Conso...

Page 417: ...on use the no form of this command Syntax ip https server no ip https server Parameters There are no parameters for this command Default Setting HTTPS server disabled Command Mode Global Configuration mode Command Usage Use the crypto certificate generate Global Configuration mode command to generate an HTTPS certificate Example The following command enables configuring the device from a secured b...

Page 418: ... the no form of this command Syntax ip https port port number no ip https port Parameters port number Port number to be used by the HTTP server Range 0 65535 Default Setting The default port number is 443 Command Mode Global Configuration mode Command Usage Specifying 0 as the port number effectively disables HTTPS access to the device Example The following command configures the https port number...

Page 419: ...es the state or province name Range 1 64 country Specifies the country name Range 2 2 days Specifies number of days certification is valid Range 30 3650 Default Setting The Certificate and SSL s RSA key pairs do not exist If no certificate number is specified the default certificate number is 1 If no RSA key length is specified the default length is 1024 If no URL or IP address is specified the de...

Page 420: ...29 6 www hp com CLI Reference Guide Web Server Commands Example The following command regenerates an HTTPS certificate Console config Console config crypto certificate 1 generate key generate ...

Page 421: ...the location or city name Range 1 64 state Specifies the state or province name Range 1 64 country Specifies the country name Range 1 2 Default Setting There is no default configuration for this command Command Mode Privileged EXEC mode Command Usage Use this command to export a certificate request to a Certification Authority The certificate request is generated in Base64 encoded X 509 format Bef...

Page 422: ...QQLEwNkbGQxCzAJBgNVBAMTAmxkMRAw DgKoZIhvcNAQkBFgFsMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC8ecwQ HdML0831i0fh F0MV Kib6Sz5p 3nUUenbfHp igVPmFM 1nbqTDekb2ymCu6K aKvEbVLF9F2LmM7VPjDBb9bb4jnxkvwW wzDLvW2rsy5NPmH1QVl 8Ubx3GyCm oW93BSOFwxwEsP58kf sPYPy 8wwmoNtDwIDAQABoB8wHQYJKoZIhvcNAQkH MRDjEyMwgICCAgICAICAgIMA0GCSqGSIb3DQEBBAUAA4GBAGb8UgIx7rB05m 2 m5ZZPhIwl8ARSPXwhVdJexFjbnmvcacqjPG8pIiRV6LkxryGF2bVU3j...

Page 423: ... Configuration mode Command Usage Use this command to enter an external certificate signed by Certification Authority to the device To end the session enter an empty line The imported certificate must be based on a certificate request created by the crypto certificate request Privileged EXEC mode command If the public key found in the certificate does not match the device s SSL RSA key the command...

Page 424: ...n8VPsTm1xyJ1t11a1GaqchfMqqe0kmfhcoHSWr yf1FpD0MWOTgDAwIDAQABo4IBojCCAZ4wEwYJKwYBBAGCNxQCBAYeBABDAEEw CwR0PBAQDAgFGMA8GA1UdEwEB wQFMAMBAf8wHQYDVR0OBBYEFAf4MT9BRD47 ZvKBAEL9Ggp 6MIIBNgYDVR0fBIIBLTCCASkwgdKggc ggcyGgclsZGFwOi8v L0VByb3h5JTIwU29mdHdhcmUlMjBSb290JTIwQ2VydGlmaWVyLENOPXNlcnZl END CERTIFICATE Certificate imported successfully Issued to router gm com Issued by www verisign com Valid from 8...

Page 425: ... no form of this command Syntax ip https certificate number no ip https certificate Parameters number Specifies the certificate number Range 1 2 Default Setting Certificate number 1 Command Mode Global Configuration mode Command Usage The crypto certificate generate command should be used to generate HTTPS certificates Example The following command configures the active certificate for HTTPS Conso...

Page 426: ...ommand Example The following command displays the certificate Console show crypto certificate mycertificate 1 BEGIN CERTIFICATE dHmUgUm9vdCBDZXJ0aWZpZXIwXDANBgkqhkiG9w0BAQEFAANLADBIAkEAp4HS nnH xQSGA2ffkRBwU2XIxb7n8VPsTm1xyJ1t11a1GaqchfMqqe0kmfhcoHSWr yf1FpD0MWOTgDAwIDAQABo4IBojCCAZ4wEwYJKwYBBAGCNxQCBAYeBABDAEEw CwR0PBAQDAgFGMA8GA1UdEwEB wQFMAMBAf8wHQYDVR0OBBYEFAf4MT9BRD47 ZvKBAEL9Ggp 6MIIBNgYDVR0...

Page 427: ...er configuration Syntax show ip http Parameters There are no parameters for this command Default Setting This command has no default configuration Command Mode Privileged EXEC mode Command Usage There are no user guidelines for this command Example The following command displays the HTTP server configuration Console show ip http HTTP server enabled Port 80 ...

Page 428: ...nd Usage There are no user guidelines for this command Example The following command displays the HTTP server configuration Console show ip https HTTPS server enabled Port 443 Certificate 1 is active Issued by www verisign com Valid from 8 9 2004 to 8 9 2005 Subject CN router gm com 0 General Motors C US Finger print DC789788 DC88A988 127897BC BB789788 Certificate 2 is inactive Issued by self sign...

Page 429: ... back pressure 8 10 boot system 7 5 bridge commands 5 1 to 5 9 5 14 to 5 19 C class 18 8 class map 18 3 clear counters 8 11 clear host 11 13 clearing logging 24 6 clock set 6 1 show 6 16 source 6 2 summer time 6 4 timezone 6 3 clock commands 6 1 to 6 18 defined 1 7 command line interface CLI 1 1 command line processing 1 6 commands abbrevation 1 3 completion 1 3 entering 1 3 groups 1 7 help 1 3 hi...

Page 430: ...on 1 5 groups commands 1 7 GVRP commands 9 1 to 9 9 defined 1 7 H help 1 3 27 9 history 1 4 13 5 27 11 history size 13 6 host 11 12 clear 11 13 show 11 15 hostname 25 10 I IGMP snooping commands 10 1 to 10 9 defined 1 7 image file commands 7 1 to 7 8 defined 1 7 instance MST 22 20 interface configuration 1 5 interface value 8 12 interfaces active 8 12 advertise 8 13 configuration 8 14 counters 8 1...

Page 431: ...to 18 29 defined 1 7 R RADIUS commands 19 1 to 19 8 defined 1 8 reload 25 9 resume 25 8 revision MST 22 22 RMON commands 20 1 to 20 17 defined 1 8 router configuration 1 5 running configuration 7 6 S security port 5 10 port max 5 12 port mode 5 11 port routed secure address 5 13 show ports 5 20 show ports addresses 5 21 service acl 4 11 service cpu utilization 25 15 service policy 18 13 sessions s...

Page 432: ...17 to 6 18 spanning tree information 22 27 spanning tree commands 22 1 to 22 40 defined 1 8 speed 8 5 13 2 SSH commands 23 1 to 23 10 defined 1 8 startup configuration 7 7 storing the running configuration 1 5 storm commands 8 20 to 8 23 switch IP address 1 1 switchport commands 28 6 to 28 14 28 18 syslog commands 24 1 to 24 14 defined 1 8 system management commands 25 1 to 25 16 defined 1 8 syste...

Reviews: