manualshive.com logo in svg

Intel SBCEGBESW1, Manual

Share
Download
Intel SBCEGBESW1 Manual Download Page 64

ACL Commands

48

Intel® Blade Server Ethernet Switch Modules SBCEGBESW1 and SBCEGBESW10 CLI Guide

destination

 — Specifies the MAC address of the host to which the packet is being 

sent.

destination-wildcard

 — Specifies wildcard bits to be applied to the destination MAC 

address. Use 1s in bit positions to be ignored.

vlan-id 

— Specifies the ID of the packet vlan. (Range: 0-4095)

cos 

— Specifies the Class of Service (CoS) for the packet. (Range: 0-7)

cos-wildcard

 — Specifies wildcard bits to be applied to the CoS. 

eth-type 

— Specifies the Ethernet type of the packet .(Range: 0-65535)

Default Configuration

No MAC ACL is defined.

Command Mode

MAC-Access List Configuration mode

User Guidelines

Before an Access Control Element (ACE) is added to an ACL, all packets are permitted. 

After an ACE is added, an implied 

deny-any-any

 condition exists at the end of the list 

and those packets that do not match the conditions defined in the permit statement are 

denied.

If the VLAN ID is specified, the policy map cannot be connected to the VLAN interface.

Example

The following example shows how to create a MAC ACL with permit rules.

deny (MAC)

The 

deny

 MAC-Access List Configuration mode command denies traffic if the conditions 

defined in the deny statement match.

Syntax

deny

 [

disable-port

] {

any

 | {

source source-wildcard

} {

any

 | {

destination destination- 

wildcard

}}[

vlan

 vlan-id]

 [

cos

 

cos cos-wildcard

] [

ethtype

 

eth-type

Console(config)# 

mac access-list

 macl-acl1

Console(config-mac-al)# 

permit

 6:6:6:6:6:6 0:0:0:0:0:0 

any vlan

 6

Summary of Contents for SBCEGBESW1

Page 1: ...Intel Blade Server Ethernet Switch Modules SBCEGBESW1 and SBCEGBESW10 CLI Guide A Guide for System Administrators of Intel Server Products Intel Order Number D67145 002...

Page 2: ...nd at http www openssl org source license html SSH PROTOCOL SUITE OF NETWORK CONNECTIVITY TOOLS DELIVERABLES The SSH protocol suite of network connectivity tools shall constitute Open SSH Deliverables...

Page 3: ...weise in diesem Dokument bevor Sie eine der Anweisungen ausf hren Consignes de s curit Lisez attention toutes les consignes de s curit et les mises en garde indiqu es dans ce document avant de suivre...

Page 4: ...The power button DOES NOT turn off the system AC power To remove power from system you must unplug the AC power cord from the wall outlet Make sure the AC power cord is unplugged before you open the c...

Page 5: ...y command information of all available CLI commands inclusive of the command description command syntax any parameters other relevant command information and a basic example For the latest version of...

Page 6: ...s Chapter 18 RMON Commands Chapter 19 RADIUS Commands Chapter 20 Web Server Commands Chapter 21 SNMP Commands Chapter 22 Spanning Tree Commands Chapter 23 SSH Commands Chapter 24 Syslog Commands Chapt...

Page 7: ...12 ip http authentication 13 ip https authentication 14 show authentication methods 15 password 16 enable password 17 username 18 Chapter 3 Address Table Commands 21 bridge address 21 bridge multicast...

Page 8: ...k summer time 55 sntp authentication key 57 sntp authenticate 58 sntp trusted key 59 sntp client poll timer 59 sntp broadcast client enable 60 sntp anycast client enable 61 sntp client enable Interfac...

Page 9: ...orm control broadcast enable 99 port storm control broadcast rate 100 show ports storm control 101 Chapter 8 GVRP Commands 103 gvrp enable Global 103 gvrp enable Interface 103 garp timer 104 gvrp vlan...

Page 10: ...mmands 135 lacp system priority 135 lacp port priority 135 lacp timeout 136 show lacp ethernet 137 show lacp port channel 139 Chapter 12 Line Commands 141 Line 141 show line 141 Chapter 13 Management...

Page 11: ...80 show qos aggregate policer 181 police aggregate 182 wrr queue cos map 183 wrr queue bandwidth 184 priority queue out num of queues 185 traffic shape 186 show qos interface 187 qos wrr queue thresho...

Page 12: ...ort 226 ip https exec timeout 226 crypto certificate generate 227 crypto certificate request 228 crypto certificate import 230 ip https certificate 231 show crypto certificate mycertificate 232 show i...

Page 13: ...ree bpdu 269 clear spanning tree detected protocols 270 spanning tree mst priority 270 spanning tree mst max hops 271 spanning tree mst port priority 272 spanning tree mst cost 273 spanning tree mst c...

Page 14: ...System Management Commands 321 ping 321 traceroute 322 telnet 325 resume 328 reload 328 hostname 329 show users 330 show sessions 331 show system 332 show system id 333 show system flowcontrol 334 sh...

Page 15: ...switchport general acceptable frame type tagged only 366 switchport forbidden vlan 366 ip internal usage vlan 367 show vlan 368 show vlan internal usage 369 show interfaces switchport 370 map protocol...

Page 16: ...pp timeout 391 dot1x timeout server timeout 392 show dot1x 393 show dot1x users 395 show dot1x statistics 397 ADVANCED FEATURES 398 dot1x auth not req 398 dot1x multiple hosts 399 dot1x single host vi...

Page 17: ...om one command mode to another The order for mode access is as follows User EXEC mode Privileged EXEC mode Global Configuration mode and Interface Configuration mode When starting a session the initia...

Page 18: ...ts of the device host name followed by To return from the Privileged EXEC mode to the User EXEC mode use the disable command The following example illustrates how to access the Privileged EXEC mode an...

Page 19: ...uration mode Management Access List Contains commands to define management access lists The management access list Global Configuration mode command is used to enter the Management Access List Configu...

Page 20: ...nd When a different user is required to log onto the system use the login Privileged EXEC mode command This effectively logs off the current user and logs on the new user Editing Features Entering Com...

Page 21: ...system is enabled but it can be disabled at any time For information about the command syntax to enable or disable the history buffer see show history There is a standard default number of commands th...

Page 22: ...xample g1 3 stands for Gigabit Ethernet ports 1 2 and 3 and g1 5 stands for Gigabit Ethernet ports 1 and 5 Keyboard Shortcuts The CLI has a range of keyboard shortcuts to assist in editing the CLI com...

Page 23: ...eys Encrypted data cannot be copied and pasted into the device ConventionDescription In a command line square brackets indicates an optional entry In a command line curly brackets indicate a selection...

Page 24: ...Using CLI 8 Intel Blade Server Ethernet Switch Modules SBCEGBESW1 and SBCEGBESW10 CLI Guide...

Page 25: ...ogs in list name Character string used to name the list of authentication methods activated when a user logs in Range 1 12 characters method1 method2 Specify at least one method from the following lis...

Page 26: ...ethod in the command line Example The following example configures the authentication login aaa authentication enable The aaa authentication enable Global Configuration mode command defines authentica...

Page 27: ...tication enable default requests sent by the device to a RADIUS or TACACS server include the username enabx where x is the requested privilege level Example The following example sets the enable passw...

Page 28: ...elines To change or rename an authentication method use the negate command and create a new rule with the new method name Example The following example specifies the default authentication method for...

Page 29: ...Line Configuration mode User Guidelines There are no user guidelines for this command Example The following example specifies the default authentication method when accessing a higher privilege level...

Page 30: ...methods return an error specify none as the final method in the command line Example The following example configures the HTTP authentication ip https authentication The ip https authentication Globa...

Page 31: ...To ensure that the authentication succeeds even if all methods return an error specify none as the final method in the command line Example The following example configures HTTPS authentication show...

Page 32: ...ion configuration password The password Line Configuration mode command specifies a password on a line To remove the password use the no form of this command Syntax password password encrypted no pass...

Page 33: ...ing example specifies the password called secret on a Telnet enable password The enable password Global Configuration mode command sets a local password to control access to user and privilege levels...

Page 34: ...l Configuration mode command creates a user account in the local database To remove a user name use the no form of this command Syntax username name password password level level encrypted no username...

Page 35: ...ESW10 CLI Guide 19 Command Mode Global Configuration mode User Guidelines User account can be created without a password Example The following example configures user called bob with password lee and...

Page 36: ...AAA Commands 20 Intel Blade Server Ethernet Switch Modules SBCEGBESW1 and SBCEGBESW10 CLI Guide...

Page 37: ...Ethernet port port channel number A valid port channel number permanent The address can only be deleted by the no bridge address command delete on reset The address is deleted after reset delete on ti...

Page 38: ...Default Configuration Filtering multicast addresses is disabled All multicast addresses are flooded to all ports Command Mode Global Configuration mode User Guidelines If multicast devices exist on th...

Page 39: ...st address ip multicast address Parameters add Adds ports to the group If no option is specified this is the default option remove Removes ports from the group mac multicast address A valid MAC multic...

Page 40: ...hannel number list no bridge multicast forbidden address mac multicast address ip multicast address Parameters add Adds ports to the group remove Removes ports from the group mac multicast address A v...

Page 41: ...ntax bridge multicast forward all add remove ethernet interface list port channel port channel number list no bridge multicast forward all Parameters add Force forwarding all multicast packets remove...

Page 42: ...e multicast forbidden forward all add remove ethernet interface list port channel port channel number list no bridge multicast forbidden forward all Parameters add Forbids forwarding all multicast pac...

Page 43: ...icast packets to 1 with VLAN 2 is forbidden bridge aging time The bridge aging time Global Configuration mode command sets the address table aging time To restore the default configuration use the no...

Page 44: ...mand has no default configuration Command Mode Privileged EXEC mode User Guidelines There are no user guidelines for this command Example In the following example the bridge tables are cleared port se...

Page 45: ...e 1 1000000 Default Configuration This setting is disabled Command Mode Interface Configuration Ethernet port channel mode User Guidelines There are no user guidelines for this command Example In this...

Page 46: ...rface Configuration Ethernet port channel mode User Guidelines There are no user guidelines for this command Example In this example port security mode is set to dynamic for Ethernet interface 1 port...

Page 47: ...ity mode or is not a routed port Example In this example the MAC layer address 66 66 66 66 66 66 is added to port 1 show bridge address table The show bridge address table Privileged EXEC mode command...

Page 48: ...ample MAC addresses defined in ACLS Example In this example all classes of entries in the bridge forwarding database are displayed show bridge address table static The show bridge address table static...

Page 49: ...dge forwarding database are displayed show bridge address table count The show bridge address table count Privileged EXEC mode command displays the number of addresses present in the Forwarding Databa...

Page 50: ...ommand Example In this example the number of addresses present in all VLANs are displayed show bridge multicast address table The show bridge multicast address table Privileged EXEC mode command displ...

Page 51: ...c Default Configuration This command has no default configuration Command Mode Privileged EXEC mode User Guidelines A MAC address can be displayed in IP format only if it is in the range of 0100 5e00...

Page 52: ...filtering vlan id Parameters vlan id Indicates the VLAN ID This has to be a valid VLAN ID value Default Configuration This command has no default configuration Command Mode Privileged EXEC mode User G...

Page 53: ...the port lock status Syntax show ports security ethernet interface port channel port channel number Parameters interface A valid Ethernet port port channel number A valid port channel number Default C...

Page 54: ...terface A valid Ethernet port port channel number A valid port channel number Default Configuration This command has no default configuration Console show ports security Port Status Learning Action Ma...

Page 55: ...for this command Example This example displays dynamic addresses in all currently locked ports Console show ports security addresses Port Status Learning Current Maximum 1 Disabled Lock 1 2 Disabled...

Page 56: ...Address Table Commands 40 Intel Blade Server Ethernet Switch Modules SBCEGBESW1 and SBCEGBESW10 CLI Guide...

Page 57: ...te an ACL use the no form of this command Syntax ip access list name no ip access list name Parameters name Specifies the name of the ACL Range 0 32 characters Default Configuration The default for al...

Page 58: ...wildcard any destination port dscp number ip precedence number Parameters source Specifies the source IP address of the packet Specify any to indicate IP address 0 0 0 0 and mask 255 255 255 255 sourc...

Page 59: ...ts ICMP packets that are filtered by ICMP message type can also be filtered by the ICMP message code Range 0 255 igmp type IGMP packets can be filtered by IGMP message type Enter a number or one of th...

Page 60: ...mode Before an Access Control Element ACE is added to an ACL all packets are permitted After an ACE is added an implied deny any any condition exists at the end of the list and those packets that do...

Page 61: ...red Specify any to indicate IP address 0 0 0 0 and mask 255 255 255 255 protocol Specifies the abbreviated name or number of an IP protocol The following table lists protocols that can be specified IP...

Page 62: ...cess List Configuration mode Before an Access Control Element ACE is added to an ACL all packets are permitted After an ACE is added an implied deny any any condition exists at the end of the list and...

Page 63: ...or this command Example The following example shows how to create a MAC ACL permit MAC The permit MAC Access List Configuration mode command defines permit conditions of an MAC ACL Syntax permit any h...

Page 64: ...figuration mode User Guidelines Before an Access Control Element ACE is added to an ACL all packets are permitted After an ACE is added an implied deny any any condition exists at the end of the list...

Page 65: ...packet s Ethernet type Default Configuration This command has no default configuration Command Mode MAC Access List Configuration mode User Guidelines MAC BPDU packets cannot be denied This command de...

Page 66: ...lied to the input interface Default Configuration This command has no default configuration Command Mode Interface Ethernet port channel Configuration mode User Guidelines In advanced mode when an ACL...

Page 67: ...ess lists defined on a device show interfaces access lists The show interfaces access lists Privileged EXEC mode command displays access lists applied on interfaces Syntax show interfaces access lists...

Page 68: ...d SBCEGBESW10 CLI Guide Command Mode Privileged EXEC mode User Guidelines There are no user guidelines for this command Example The following example displays ACLs applied to the interfaces of a devic...

Page 69: ...hours military format minutes and seconds hh 0 23 mm 0 59 ss 0 59 day Current day by date in the month Range 1 31 month Current month using the first three letters by name Range Jan Dec year Current y...

Page 70: ...servers Default Configuration No external clock source Command Mode Global Configuration mode User Guidelines There are no user guidelines for this command Example The following example configures an...

Page 71: ...the time is manually set Example The following example sets the timezone to 6 hours difference from UTC clock summer time The clock summer time Global Configuration mode command configures the system...

Page 72: ...7 hh mm Time in military format in hours and minutes Range hh 0 23 mm 0 59 offset Number of minutes to add during summer time Range 1 1440 acronym The acronym of the time zone to be displayed when sum...

Page 73: ...st Sunday in October at 2 am sntp authentication key The sntp authentication key Global Configuration mode command defines an authentication key for Simple Network Time Protocol SNTP To remove the aut...

Page 74: ...etwork Time Protocol SNTP traffic from servers To disable the feature use the no form of this command Syntax sntp authenticate no sntp authenticate Default Configuration No authentication Command Mode...

Page 75: ...ntication key to be trusted Range 1 4294967295 Default Configuration No keys are trusted Command Mode Global Configuration mode User Guidelines The command is relevant for both received unicast and br...

Page 76: ...ines There are no user guidelines for this command Example The following example sets the polling time for the SNTP client to 120 seconds sntp broadcast client enable The sntp broadcast client enable...

Page 77: ...ast client enable Global Configuration mode command enables SNTP anycast client To disable the SNTP anycast client use the no form of this command Syntax sntp anycast client enable no sntp anycast cli...

Page 78: ...the no form of this command Syntax sntp client enable no sntp client enable Default Configuration The SNTP client is disabled on an interface Command Mode Interface Configuration Ethernet port channe...

Page 79: ...onfiguration The SNTP unicast client is disabled Command Mode Global Configuration mode User Guidelines Use the sntp server Global Configuration mode command to define SNTP servers Example The followi...

Page 80: ...l Configuration mode command configures the device to use the Simple Network Time Protocol SNTP to request and accept SNTP traffic from a specified server To remove a server from the list of SNTP serv...

Page 81: ...obal Configuration mode command for global enabling Polling time is determined by the sntp client poll timer Global Configuration mode command Example The following example configures the device to ac...

Page 82: ...e Network Time Protocol SNTP Syntax show sntp configuration Default Configuration This command has no default configuration Symbol Description Time is not authoritative blank Time is authoritative Tim...

Page 83: ...ntp status The show sntp status Privileged EXEC mode command shows the status of the Simple Network Time Protocol SNTP Syntax show sntp status Console show sntp configuration Polling interval 1024 sec...

Page 84: ...onized stratum 4 reference is 176 1 1 8 unicast Reference time is AFE2525E 70597B34 00 10 22 438 PDT Jul 5 1993 Unicast servers Server Status Last response Offset mSec Delay mSec 176 1 1 8 Up 19 58 22...

Page 85: ...ied without a prefix running config Represents the current running configuration file startup config Represents the startup configuration file image If the source file represents the active image file...

Page 86: ...on file are the same file xmodem is the destination file The source file can be copied to image boot and null only tftp is the source file and destination file on the same copy The following table des...

Page 87: ...the device enter copy source url startup config The startup configuration file is replaced by the copied configuration file Storing the Running or Startup Configuration on a Server Use the copy runni...

Page 88: ...es cannot be deleted Example The following example deletes the file called test from the flash memory boot system The boot system Privileged EXEC mode command specifies the system image that the devic...

Page 89: ...bootvar command to find out which image is the active image Example The following example loads the system image 1 at device startup show running config The show running config Privileged EXEC mode co...

Page 90: ...command displays the contents of the startup configuration file Syntax show startup config Default Configuration This command has no default configuration Command Mode Privileged EXEC mode User Guidel...

Page 91: ...command displays the contents of the backup configuration file Syntax show backup config Default Configuration This command has no default configuration Command Mode Privileged EXEC mode User Guidelin...

Page 92: ...ve system image file that is loaded by the device at startup Syntax show bootvar Default Configuration This command has no default configuration Command Mode Privileged EXEC mode User Guidelines There...

Page 93: ...er Ethernet Switch Modules SBCEGBESW1 and SBCEGBESW10 CLI Guide 77 Example The following example displays the active system image file that is loaded by the device at startup Console show bootvar Unit...

Page 94: ...Configuration and Image File Commands 78 Intel Blade Server Ethernet Switch Modules SBCEGBESW1 and SBCEGBESW10 CLI Guide...

Page 95: ...et interface Parameters interface Valid Ethernet port Full syntax unit port Default Configuration This command has no default configuration Command Mode Global Configuration mode User Guidelines There...

Page 96: ...uration Command Mode Global Configuration mode User Guidelines Commands under the interface range context are executed independently on each active interface in the range If the command returns an err...

Page 97: ...the disabled Ethernet port description The description Interface Configuration Ethernet port channel mode command adds a description to an interface To remove the description use the no form of this c...

Page 98: ...Ethernet port channel mode command configures the speed of a given Ethernet interface when not using auto negotiation To restore the default configuration use the no form of this command Syntax speed...

Page 99: ...eration of a given Ethernet interface when not using auto negotiation To restore the default configuration use the no form of this command Syntax duplex half full no duplex Parameters half Forces half...

Page 100: ...Syntax negotiation capability1 capability2 capability5 no negotiation Parameters capability Specifies the capabilities to advertise Possible values 10h 10f 100h 100f 1000f Default Configuration Auto n...

Page 101: ...he no form of this command Syntax flowcontrol auto on off no flowcontrol Parameters auto Indicates auto negotiation on Enables flow control off Disables flow control Default Configuration Flow control...

Page 102: ...uration The default setting is on Command Mode Interface Configuration Ethernet mode User Guidelines Auto All possibilities to connect a PC with cross or normal cables are supported and are automatica...

Page 103: ...ck pressure Default Configuration Back pressure is enabled Command Mode Interface Configuration Ethernet port channel mode User Guidelines There are no user guidelines for this command Example In the...

Page 104: ...ter resetting the device Example In the following example jumbo frames are enabled on the device clear counters The clear counters Privileged EXEC mode command clears statistics on an interface Syntax...

Page 105: ...set interface active ethernet interface port channel port channel number Parameters interface Valid Ethernet port Full syntax unit port port channel number Valid port channel number Default Configurat...

Page 106: ...port Full syntax unit port port channel number Valid port channel number Default Configuration This command has no default configuration Command Modes Privileged EXEC mode User Guidelines There are no...

Page 107: ...terface Valid Ethernet port Full syntax unit port port channel number Valid port channel number Default Configuration This command has no default configuration Command Modes Privileged EXEC mode User...

Page 108: ...tion This command has no default configuration Command Mode Privileged EXEC mode 1 100M Copper Full 100 Enabled Off Up Disabled Auto 2 100M Copper Full 100 Enabled Off Up Disabled Auto 3 100M Copper F...

Page 109: ...igured interfaces Syntax show interfaces description ethernet interface port channel port channel number Parameters interface Valid Ethernet port Full syntax unit port port channel number A valid port...

Page 110: ...nes for this command Example The following example displays descriptions of configured interfaces show interfaces counters The show interfaces counters Privileged EXEC mode command displays traffic se...

Page 111: ...elines There are no user guidelines for this command Example The following example displays traffic seen by the physical interface Console show interfaces counters Port InOctets InUcastPkts InMcastPkt...

Page 112: ...Pkts Counted received unicast packets InMcastPkts Counted received multicast packets InBcastPkts Counted received broadcast packets OutOctets Counted transmitted octets OutUcastPkts Counted transmitte...

Page 113: ...command is relevant to Giga devices only Example The following example displays the configuration of jumbo frames on the device Internal MAC Rx Errors Counted frames for which reception fails due to...

Page 114: ...des Interface Configuration Ethernet mode User Guidelines To control multicasts storms use the port storm control broadcast enable and port storm control broadcast rate commands Example The following...

Page 115: ...nables counting broadcast and multicast packets on Ethernet port 2 port storm control broadcast enable The port storm control broadcast enable Interface Configuration Ethernet mode command enables bro...

Page 116: ...ort storm control broadcast rate Interface Configuration Ethernet mode command configures the maximum broadcast rate To restore the default configuration use the no form of this command Syntax port st...

Page 117: ...how ports storm control interface Parameters interface A valid Ethernet port Full syntax unit port Default Configuration This command has no default configuration Command Modes Privileged EXEC mode Us...

Page 118: ...onfiguration Commands 102 Intel Blade Server Ethernet Switch Modules SBCEGBESW1 and SBCEGBESW10 CLI Guide 3 Disabled 3500 Broadcast 4 Disabled 3500 Broadcast 5 Disabled 3500 Broadcast 6 Disabled 3500...

Page 119: ...ly The gvrp enable Global Configuration mode command enables GVRP globally To disable GVRP on the device use the no form of this command Syntax gvrp enable no gvrp enable Default Configuration GVRP is...

Page 120: ...propagated in the same way as in a tagged VLAN That is the PVID is manually defined as the untagged VLAN VID Example The following example enables GVRP on Ethernet port 6 garp timer The garp timer In...

Page 121: ...mes the join time Leave all time must be greater than the leave time Set the same GARP timer values on all Layer 2 connected devices If the GARP timers are set differently on Layer 2 connected devices...

Page 122: ...VLAN registration exists Example The following example disables dynamic VLAN creation on Ethernet port 1 gvrp registration forbid The gvrp registration forbid Interface Configuration Ethernet port ch...

Page 123: ...tax clear gvrp statistics ethernet interface port channel port channel number Parameters interface A valid Ethernet port Full syntax unit port port channel number A valid port channel number Default C...

Page 124: ...l number Parameters interface A valid Ethernet port Full syntax unit port port channel number A valid port channel number Default Configuration This command has no default configuration Command Mode P...

Page 125: ...er Default Configuration This command has no default configuration Command Mode Privieged EXEC mode User Guidelines There are no user guidelines for this command Example The following example shows GV...

Page 126: ...syntax unit port port channel number A valid port channel number Default Configuration This command has no default configuration Command Mode Privieged EXEC mode User Guidelines There are no user guid...

Page 127: ...Default Configuration IGMP snooping is disabled Command Mode Global Configuration mode User Guidelines IGMP snooping can only be enabled on static VLANs It must not be enabled on Private VLANs or the...

Page 128: ...following example enables IGMP snooping on VLAN 2 ip igmp snooping mrouter learn pim dvmrp The ip igmp snooping mrouter learn pim dvmrp Interface Configuration VLAN mode command enables automatic lear...

Page 129: ...rface Configuration VLAN mode command configures the host time out If an IGMP report for a multicast group was not received for a host time out period from a specific port this port is deleted from th...

Page 130: ...ooping mrouter time out Interface Configuration VLAN mode command is used for setting the aging out time after multicast device ports are automatically learned To restore the default configuration use...

Page 131: ...ration use the no form of this command Syntax ip igmp snooping leave time out time out immediate leave no ip igmp snooping leave time out Parameters time out Specifies the leave timeout in seconds for...

Page 132: ...ulticast device interfaces Syntax show ip igmp snooping mrouter interface vlan id Parameters vlan id Specifies the VLAN number Default Configuration This command has no default configuration Command M...

Page 133: ...d EXEC mode command displays IGMP snooping configuration Syntax show ip igmp snooping interface vlan id Parameters vlan id Specifies the VLAN number Default Configuration This command has no default c...

Page 134: ...d Specifies the VLAN number ip multicast address Specifies the IP multicast address Default Configuration This command has no default configuration Command Mode Privileged EXEC mode User Guidelines To...

Page 135: ...119 Example The following example shows IGMP snooping information on multicast groups Console show ip igmp snooping groups Vlan IP Address Querier Ports 1 224 239 130 2 2 3 Yes 1 2 19 224 239 130 2 2...

Page 136: ...IGMP Snooping Commands 120 Intel Blade Server Ethernet Switch Modules SBCEGBESW1 and SBCEGBESW10 CLI Guide...

Page 137: ...o ip address ip address Parameters ip address Specifies the valid IP address mask Specifies the valid network mask of the IP address prefix length Specifies the number of bits that comprise the IP add...

Page 138: ...o be placed in the DHCP option 12 field This name does not have to be the same as the host name specified in the hostname Global Configuration mode command Range 1 20 characters Default Configuration...

Page 139: ...command can be used to place a different host name in the DHCP option 12 field The no ip address dhcp command deconfigures any IP address that was acquired and sends a DHCPRELEASE message Example The...

Page 140: ...e usability status of configured IP interfaces Syntax show ip interface ethernet interface number vlan vlan id port channel port channel number Parameters interface number Specifies the valid Ethernet...

Page 141: ...e number vlan vlan id port channel port channel number no arp ip_addr ethernet interface number vlan vlan id port channel port channel number Parameters ip_addr Valid IP address or IP alias to map to...

Page 142: ...llowing example adds IP address 198 133 219 232 and MAC address 00 00 0c 40 0f bc to the ARP table arp timeout The arp timeout Global Configuration mode command configures how long an entry remains in...

Page 143: ...rp cache Privileged EXEC mode command deletes all dynamic entries from the ARP cache Syntax clear arp cache Default Configuration This command has no default configuration Command Mode Privileged EXEC...

Page 144: ...following example displays entries in the ARP table ip domain lookup The ip domain lookup Global Configuration mode command enables the IP Domain Naming System DNS based host name to address translati...

Page 145: ...The ip domain name Global Configuration mode command defines a default domain name used by the software to complete unqualified host names names without a dotted decimal domain name To remove the defa...

Page 146: ...ip name server server address server address2 server address8 no ip name server server address1 server address8 Parameters server address Specifies IP addresses of the name server Default Configurati...

Page 147: ...arameters name Specifies the name of the host Range 1 158 characters address Specifies the associated IP address Default Configuration No host is defined Command Mode Global Configuration mode User Gu...

Page 148: ...There are no user guidelines for this command Example The following example deletes all entries from the host name to address cache clear host dhcp The clear host dhcp Privileged EXEC mode command de...

Page 149: ...following example deletes all entries from the host name to address mappingg show hosts The show hosts Privileged EXEC mode command displays the default domain name a list of name server hosts the sta...

Page 150: ...e show hosts System name Device Default domain is gm com sales gm com usa sales gm com DHCP Name address lookup is enabled Name servers Preference order 176 16 1 18 176 16 1 19 Configured host name to...

Page 151: ...p system priority Parameters value Specifies system priority value Range 1 65535 Default Configuration The default system priority is 1 Command Mode Global Configuration mode User Guidelines There are...

Page 152: ...mode User Guidelines There are no user guidelines for this command Example The following example defines the priority of Ethernet port 6 as 247 lacp timeout The lacp timeout Interface Configuration Et...

Page 153: ...imeout to Ethernet port 6 show lacp ethernet The show lacp ethernet Privileged EXEC mode command displays LACP information for Ethernet ports Syntax show lacp ethernet interface parameters statistics...

Page 154: ...1 Port 1 LACP parameters Actor system priority 1 system mac addr 00 00 12 34 56 78 port Admin key 30 port Oper key 30 port Oper number 21 port Admin priority 1 port Oper priority 1 port Admin timeout...

Page 155: ...REGATABLE synchronization FALSE collecting FALSE distributing FALSE expired FALSE Port 1 LACP Statistics LACP PDUs sent 2 LACP PDUs received 2 Port 1 LACP Protocol State LACP State Machines Receive FS...

Page 156: ...s command has no default configuration Command Mode Privileged EXEC mode User Guidelines There are no user guidelines for this command Example The following example displays LACP information about por...

Page 157: ...ntax Line telnet ssh Parameters telnet Virtual terminal for remote console access ssh Virtual terminal for secured remote console access Default Configuration This command has no default configuration...

Page 158: ...configuration Command Mode Exec mode User Guidelines This command has no user guidelines Example The following example configures communication to a device with the IP address 192 168 1 4 in the WLAN...

Page 159: ...Line Commands Intel Blade Server Ethernet Switch Modules SBCEGBESW1 and SBCEGBESW10 CLI Guide 143...

Page 160: ...Line Commands 144 Intel Blade Server Ethernet Switch Modules SBCEGBESW1 and SBCEGBESW10 CLI Guide...

Page 161: ...mmand Mode Global Configuration mode User Guidelines Use this command to configure a management access list The command enters the Access list Configuration mode where permit and deny access rules are...

Page 162: ...figures all interfaces to be management interfaces except Ethernet interfaces 1 and 9 and makes the new access list the active list Console config management access list mlist Console config macl perm...

Page 163: ...el index ip address A valid source IP address mask A valid network mask of the source IP address prefix length Number of bits that comprise the source IP address prefix The prefix length must be prece...

Page 164: ...ip address A valid source IP address mask A valid network mask of the source IP address mask prefix length Specifies the number of bits that comprise the source IP address prefix The prefix length mus...

Page 165: ...the no form of this command Syntax management access class name no management access class Parameters name Specifies the name of the access list to be used Range 1 32 characters Default Configuration...

Page 166: ...list name Parameters name Specifies the name of a management access list Range 1 32 characters Default Configuration This command has no default configuration Command Mode Privileged EXEC mode User G...

Page 167: ...active management access list Syntax show management access class Default Configuration This command has no default configuration Command Mode Privileged EXEC mode User Guidelines There are no user gu...

Page 168: ...Management ACL Commands 152 Intel Blade Server Ethernet Switch Modules SBCEGBESW1 and SBCEGBESW10 CLI Guide...

Page 169: ...ce Parameters interface A valid Ethernet port Full syntax unit port Default Configuration This command has no default configuration Command Mode Privileged EXEC mode User Guidelines The port to be tes...

Page 170: ...ce Parameters interface A valid Ethernet port Full syntax unit port Default Configuration This command has no default configuration Command Mode User EXEC mode User Guidelines The maximum length of th...

Page 171: ...show copper ports cable length interface Parameters interface A valid Ethernet port Full syntax unit port Default Configuration This command has no default configuration Command Mode User EXEC mode Us...

Page 172: ...PHY Diagnostics Commands 156 Intel Blade Server Ethernet Switch Modules SBCEGBESW1 and SBCEGBESW10 CLI Guide...

Page 173: ...port channel Syntax interface port channel port channel number Parameters port channel number A valid port channel number Default Configuration This command has no default configuration Command Mode G...

Page 174: ...th a comma and no spaces A hyphen designates a range of port channels all All valid port channels Default Configuration This command has no default configuration Command Mode Global Configuration mode...

Page 175: ...a channel as a result of an LACP operation Default Configuration The port is not assigned to a port channel Command Mode Interface Configuration Ethernet mode User Guidelines There are no user guideli...

Page 176: ...channel number Default Configuration This command has no default configuration Command Mode Privileged EXEC mode User Guidelines There are no user guidelines for this command Example The following exa...

Page 177: ...ansmitted packets only Default Configuration Monitors both received and transmitted packets Command Mode Interface Configuration Ethernet mode User Guidelines This command enables traffic on one port...

Page 178: ...ged ingress mirrored packets To transmit untagged ingress mirrored packets use the no form of this command Syntax port monitor vlan tagging no port monitor vlan tagging Default Configuration Ingress m...

Page 179: ...tus Syntax show ports monitor Default Configuration This command has no default configuration Command Mode User EXEC mode User Guidelines There are no user guidelines for this command Example The foll...

Page 180: ...Port Monitor Commands 164 Intel Blade Server Ethernet Switch Modules SBCEGBESW1 and SBCEGBESW10 CLI Guide...

Page 181: ...asic mode advanced QoS advanced mode which enables the full range of QoS configuration service QoS service mode which enables the user to define QOS in a simpler manner Default Configuration The QoS b...

Page 182: ...mode User Guidelines Trust mode is displayed if QoS is enabled in basic mode Example The following example displays QoS attributes when QoS is enabled in basic mode on the device show qos aggregate po...

Page 183: ...hannel number buffers queueing policers shapers Parameters interface number Valid Ethernet port number number Valid port channel number buffers Displays the buffer setting for the interface s queues D...

Page 184: ...oS trusted untrusted default CoS value DSCP to DSCP mutation map attached to the port and policy map attached to the interface are displayed If no interface is specified QoS information about all inte...

Page 185: ...no default configuration Command Mode User EXEC mode User Guidelines There are no user guidelines for this command 7 N A 8 N A qid Min DP0 Max DP0 Prob DP0 Min DP1 Max DP1 Prob DP1 Min DP2 Max DP2 Pro...

Page 186: ...ommand Syntax class map class map name match all match any no class map class map name Parameters class map name Specifies the name of the class map match all Checks that the packet matches all classi...

Page 187: ...commands are entered each should point to a different type of ACL e g one to an IP ACL and one to a MAC ACL Since packet classification is based on the order of the classification criteria the order...

Page 188: ...ines for this command Example The following example shows the class map for class1 match The match Class map Configuration mode command defines the match criteria for classifying traffic To delete the...

Page 189: ...map The policy map Global Configuration mode command creates a policy map and enters the Policy map Configuration mode To delete a policy map use the no form of this command Syntax policy map policy m...

Page 190: ...ection is supported A policy map can be applied to multiple interfaces and directions Example The following example creates a policy map called policy1 and enters the Policy map Configuration mode cla...

Page 191: ...y map and use the access group parameter to modify the classification criteria of the class map If this command is used to create a new class map the name of an IP or MAC ACL must also be specified Ex...

Page 192: ...source of the internal DSCP value used by Quality of Service QoS To return to the default configuration use the no form of this command Syntax trust cos dscp no trust cos dscp Default Configuration Th...

Page 193: ...in the IP packet Syntax set dscp new dscp queue queue id cos new cos no set Parameters new dscp Specifies a new DSCP value for the classified traffic Range 0 63 queue id Specifies an explicit queue ID...

Page 194: ...mode command defines the policer for classified traffic To remove a policer use the no form of this command Syntax police committed rate bps committed burst byte exceed action drop policed dscp trans...

Page 195: ...called class1 and is in a policy map called policy1 service policy The service policy Interface Configuration Ethernet port Channel mode command applies a policy map to the input of a particular inte...

Page 196: ...exceed action drop policed dscp transmit dscp dscp no qos aggregate policer Parameters aggregate policer name Specifies the name of the aggregate policer committed rate bps Specifies the average traf...

Page 197: ...eleted if it is being used in a policy map The no police aggregate Policy map Class Configuration command must first be used to delete the aggregate policer from all policy maps Policing uses a token...

Page 198: ...tion mode command applies an aggregate policer to multiple classes within the same policy map To remove an existing aggregate policer from a policy map use the no form of this command Syntax police ag...

Page 199: ...icy1 wrr queue cos map The wrr queue cos map Global Configuration mode command maps Class of Service CoS values to a specific egress queue To return to the default configuration use the no form of thi...

Page 200: ...riority queue out Interface Configuration Ethernet Port channel mode command to enable expedite queues Example The following example maps CoS 7 to queue 2 wrr queue bandwidth The wrr queue bandwidth I...

Page 201: ...which case no bandwidth is allocated to the queue and the shared bandwidth is divided among the remaining queues All eight queues participate in the WRR excluding the queues that are assigned as expe...

Page 202: ...eighted Round Robin WRR weight ratio because fewer queues participate in the WRR Example The following example configures the number of expedite queues as 0 traffic shape The traffic shape Interface C...

Page 203: ...this command without the queue id parameter The CIR and the CBS will be applied to the specified port To activate the shaper for specific queue run this command with the queue id parameter Example The...

Page 204: ...red for this interface their setting and the number of policers currently unused Default Configuration There is no default configuration for this command Command Mode User EXEC mode User Guidelines If...

Page 205: ...hold queue id qos wrr queue threshold gigabitethernet queue id threshold percentage0 threshold percentage1 threshold percentage2 no qos wrr queue threshold gigabitethernet queue id qid Threshold 1 100...

Page 206: ...alue Each value is separated by a space Range 0 100 Default Configuration 80 percent for all thresholds Command Mode Global Configuration mode User Guidelines The packet refers to a certain threshold...

Page 207: ...t each incoming DSCP value is mapped to the same DSCP value Command Mode Global Configuration mode User Guidelines DSCP values 3 11 19 cannot be remapped to other values Example The following example...

Page 208: ...ollowing example maps DSCP values 33 40 and 41 to queue 1 qos trust Global The qos trust Global Configuration mode command configures the system to the basic mode and trust state To return to the untr...

Page 209: ...e and if the DSCP values are different between the QoS domains the DSCP to DSCP mutation map can be applied Use this command to specify whether the port is trusted and which fields of the packet to us...

Page 210: ...mode command defines the default CoS value of a port To return to the default configuration use the no form of this command Syntax qos cos default cos no qos cos Parameters default cos Specifies the...

Page 211: ...ser Guidelines The DSCP to DSCP mutation map is applied to a port at the boundary of a Quality of Service QoS administrative domain If two QoS domains have different DSCP definitions use the DSCP to D...

Page 212: ...p mutation Parameters in dscp Specifies up to 8 DSCP values separated by spaces Range 0 63 out dscp Specifies up to 8 DSCP values separated by spaces Range 0 63 Default Configuration The default map i...

Page 213: ...QoS Commands Intel Blade Server Ethernet Switch Modules SBCEGBESW1 and SBCEGBESW10 CLI Guide 197...

Page 214: ...QoS Commands 198 Intel Blade Server Ethernet Switch Modules SBCEGBESW1 and SBCEGBESW10 CLI Guide...

Page 215: ...ameters interface number Valid Ethernet port port channel number Valid port channel number Default Configuration This command has no default configuration Command Mode Privileged EXEC mode User Guidel...

Page 216: ...r of packets received less than 64 octets long excluding framing bits but including FCS octets and otherwise well formed Oversize Pkts The total number of packets received longer than 1518 octets excl...

Page 217: ...t number Number of buckets specified for the RMON collection history group of statistics If unspecified defaults to 50 Range 1 65535 seconds Number of seconds in each polling cycle Range 1 3600 Defaul...

Page 218: ...y The show rmon collection history Privileged EXEC mode command displays the requested RMON history group statistics Syntax show rmon collection history ethernet interface port channel port channel nu...

Page 219: ...ndicates throughput counters errors Indicates error counters other Indicates drop and collision counters seconds Specifies the period of time in seconds Range 1 4294967295 Default Configuration This c...

Page 220: ...1 Owner CLI Interface 1 Interval 1800 Requested samples 50 Granted samples 50 Maximum table size 500 Time Octets Packets Broadcast Multicast Util Jan 18 2005 21 57 00 303595962 357568 3289 7287 19 Ja...

Page 221: ...umber of good packets received during this sampling interval that were directed to a multicast address This number does not include packets addressed to the broadcast address Util The best estimate of...

Page 222: ...s The total number of packets received during this sampling interval that were less than 64 octets in length excluding framing bits but including FCS octets had either a bad Frame Check Sequence FCS w...

Page 223: ...ry becomes valid is greater than or equal to rthreshold and direction is equal to rising or rising falling a single rising alarm is generated If the first sample after this entry becomes valid is less...

Page 224: ...mmand Mode Privileged EXEC mode User Guidelines There are no user guidelines for this command Example The following example displays the alarms table The following table describes significant fields s...

Page 225: ...m index Range 1 65535 Default Configuration This command has no default configuration Command Mode Privileged EXEC mode User Guidelines There are no user guidelines for this command Example The follow...

Page 226: ...t the thresholds If the value is absolute the value of the variable is compared directly with the thresholds at the end of the sampling interval If the value is delta the value of the variable at the...

Page 227: ...n This command has no default configuration Command Mode Global Configuration mode User Guidelines If log is specified as the notification type an entry is made in the log table for each event If trap...

Page 228: ...rors Log CLI Jan 18 2006 23 58 17 2 High Broadcast Log Trap device Manager Jan 18 2006 23 59 48 Field Description Index An index that uniquely identifies the event Description A comment describing thi...

Page 229: ...es the significant fields shown in the display Console show rmon log Maximum table size 500 Event Description Time 1 Errors Jan 18 2006 23 48 19 1 Errors Jan 18 2006 23 58 17 2 High Broadcast Jan 18 2...

Page 230: ...s log entries no rmon table size history log Parameters history entries Maximum number of history table entries Range 20 32767 log entries Maximum number of log table entries Range 20 32767 Default Co...

Page 231: ...ation if the port number is set to 0 Range 0 65535 timeout Specifies the timeout value in seconds Range 1 30 retries Specifies the retransmit value Range 1 10 deadtime Length of time in minutes during...

Page 232: ...ple specifies a RADIUS server host with IP address 192 168 10 1 authentication request port number 20 and a 20 second timeout period radius server key The radius server key Global Configuration mode c...

Page 233: ...e device and the RADIUS daemon radius server retransmit The radius server retransmit Global Configuration mode command specifies the number of times the software searches the list of RADIUS server hos...

Page 234: ...Global Configuration mode command specifies the source IP address used for communication with RADIUS servers To restore the default configuration use the no form of this command Syntax radius server...

Page 235: ...server host to reply To restore the default configuration use the no form of this command Syntax radius server timeout timeout no radius server timeout Parameters timeout Specifies the timeout value i...

Page 236: ...mand Syntax radius server deadtime deadtime no rhadius server deadtime Parameters deadtime Length of time in minutes during which a RADIUS server is skipped over by transaction requests Range 0 2000 D...

Page 237: ...e Privileged EXEC mode User Guidelines There are no user guidelines for this command Example The following example displays RADIUS server settings Console show radius servers IP address Port Auth Time...

Page 238: ...RADIUS Commands 222 Intel Blade Server Ethernet Switch Modules SBCEGBESW1 and SBCEGBESW10 CLI Guide...

Page 239: ...rver no ip http server Default Configuration HTTP server is enabled Command Mode Global Configuration mode User Guidelines Only a user with access level 15 can use the Web server Example The following...

Page 240: ...TPS certificate Specifying 0 as the port number effectively disables HTTP access to the device Example The following example configures the http port number to 100 ip http exec timeout The ip http exe...

Page 241: ...imeout 0 0 command ip https server The ip https server Global Configuration mode command enables configuring the device from a secured browser To return to the default configuration use the no form of...

Page 242: ...number to be used by the HTTP server Range 0 65535 Default Configuration The default port number is 443 Command Mode Global Configuration mode User Guidelines Specifying 0 as the port number effective...

Page 243: ...command generates a self signed HTTPS certificate Syntax crypto certificate number generate key generate length cn common name ou organization unit or organization loc location st state cu country dur...

Page 244: ...hat the certification is valid is 365 days Command Mode Global Configuration mode User Guidelines The command is not saved in the device configuration however the certificate and keys generated by thi...

Page 245: ...e Range 1 2 Default Configuration There is no default configuration for this command Command Mode Privileged EXEC mode User Guidelines Use this command to export a certificate request to a Certificati...

Page 246: ...mand to enter an external certificate signed by Certification Authority to the device To end the session enter an empty line Console crypto certificate 1 request BEGIN CERTIFICATE REQUEST MIwTCCASoCAQ...

Page 247: ...mode command configures the active certificate for HTTPS To return to the default configuration use the no form of this command Syntax ip https certificate number no ip https certificate Parameters n...

Page 248: ...mple configures the active certificate for HTTPS show crypto certificate mycertificate The show crypto certificate mycertificate Privileged EXEC mode command displays the SSH certificates of the devic...

Page 249: ...this command Console show crypto certificate mycertificate 1 BEGIN CERTIFICATE dHmUgUm9vdCBDZXJ0aWZpZXIwXDANBgkqhkiG9w0BAQEFAANLADBIAkEAp4HS nnH xQSGA2ffkRBwU2XIxb7n8VPsTm1xyJ1t11a1GaqchfMqqe0kmfhcoH...

Page 250: ...Configuration This command has no default configuration Command Mode Privileged EXEC mode User Guidelines There are no user guidelines for this command Example The following example displays the HTTP...

Page 251: ...thernet Switch Modules SBCEGBESW1 and SBCEGBESW10 CLI Guide 235 Certificate 2 is inactive Issued by self signed Valid from 8 9 2004 to 8 9 2005 Subject CN router gm com 0 General Motors C US Finger pr...

Page 252: ...Web Server Commands 236 Intel Blade Server Ethernet Switch Modules SBCEGBESW1 and SBCEGBESW10 CLI Guide...

Page 253: ...rver community community ip address Parameters community Community string that acts like a password and permits access to the SNMP protocol Range 1 20 characters ro Indicates read only access default...

Page 254: ...ty string When it is specified An internal security name is generated The internal security name for SNMPv1 and SNMPv2 security models is mapped to the group name Example The following example defines...

Page 255: ...ord The number of views is limited to 64 No check is made to determine that a MIB node corresponds to the starting portion of the OID until the first wildcard Example The following example creates a v...

Page 256: ...del name Specifies the context of a packet The following context is supported Router If the context name is unspecified all contexts are defined readview Specifies a string that is the name of the vie...

Page 257: ...character string is two hexadecimal digits Each byte can be separated by a period or colon Range 5 32 characters auth md5 password Indicates the HMAC MD5 96 authentication level The user should enter...

Page 258: ...n added to the configuration type the show snmp users Privileged EXEC mode command An SNMP EngineID has to be defined to add SNMP users to the device Changing or removing the SNMP EngineID value delet...

Page 259: ...y default SNMPv1 v2 are enabled on the device SNMPv3 is enabled only by defining the Local Engine ID If you want to specify your own ID you do not have to specify the entire 32 character engine ID if...

Page 260: ...the local engine ID of the device to the default value snmp server enable traps The snmp server enable traps Global Configuration mode command enables the device to send SNMP traps To disable SNMP tr...

Page 261: ...cify a text string consisting of numbers such as 1 3 6 2 4 or a word such as system Replace a single subidentifier with the asterisk wildcard to specify a subtree family for example 1 3 4 included Ind...

Page 262: ...ent with the notification operation Range 1 20 traps Indicates that SNMP traps are sent to this host If unspecified SNMPv2 traps are sent to the host informs Indicates that SNMP informs are sent to th...

Page 263: ...Global Configuration mode command specifies the recipient of Simple Network Management Protocol Version 3 notifications To remove the specified host use the no form of this command Syntax snmp server...

Page 264: ...um number of times to resend an inform request If unspecified the default maximum number of retries is 3 Range 0 255 Default Configuration This command has no default configuration Command Mode Global...

Page 265: ...es SNMP failed authentication traps snmp server contact The snmp server contact Global Configuration mode command configures the system contact sysContact string To remove system contact information u...

Page 266: ...Configuration mode command configures the system location string To remove the location string use the no form of this command Syntax snmp server location text no snmp server location Parameters text...

Page 267: ...an entry in a table at least one pair of name and value followed by one or more fields Range 1 160 characters Default Configuration This command has no default configuration Command Mode Global Confi...

Page 268: ...Command Mode Privileged EXEC mode User Guidelines There are no user guidelines for this command Example The following example displays the SNMP communications status Console show snmp Community String...

Page 269: ...ersion UDP Port Filter Name TO Sec Retries 192 122 173 42 Trap public 2 162 15 3 192 122 173 42 Inform public 2 162 15 3 Version 3 notifications Target Address Type Username Security Level UDP Port Fi...

Page 270: ...MP engine ID show snmp views The show snmp views Privileged EXEC mode command displays the configuration of views Syntax show snmp views viewname Parameters viewname Specifies the name of the view Ran...

Page 271: ...s the configuration of groups Syntax show snmp groups groupname Parameters groupname Specifies the name of the group Range 1 30 Default Configuration This command has no default configuration Command...

Page 272: ...ion Console show snmp groups Name Security Views Model Level Read Write Notify user group V3 priv Default managers group V3 priv Default Default managers group V3 priv Default Field Description Name N...

Page 273: ...lters show snmp users The show snmp users Privileged EXEC mode command displays the configuration of users Syntax show snmp users username Parameters username Specifies the name of the user Range 1 30...

Page 274: ...SBCEGBESW10 CLI Guide User Guidelines There are no user guidelines for this command Example The following example displays the configuration of users Console show snmp users Name Group name Auth Meth...

Page 275: ...anning tree no spanning tree Default Configuration Spanning tree is enabled Command Modes Global Configuration mode User Guidelines There are no user guidelines for this command Example The following...

Page 276: ...P when the neighbor device uses STP In MSTP mode the device uses RSTP when the neighbor device uses RSTP and uses STP when the neighbor device uses STP Example The following example configures the spa...

Page 277: ...ple The following example configures the spanning tree bridge forwarding time to 25 seconds spanning tree hello time The spanning tree hello time Global Configuration mode command configures the spann...

Page 278: ...ax age The spanning tree max age Global Configuration mode command configures the spanning tree bridge maximum age To restore the default configuration use the no form of this command Syntax spanning...

Page 279: ...hich bridge is elected as the root bridge To restore the default configuration use the no form of this command Syntax spanning tree priority priority no spanning tree priority Parameters priority Prio...

Page 280: ...ion Spanning tree is enabled on all ports Command Modes Interface Configuration Ethernet port channel mode User Guidelines There are no user guidelines for this command Example The following example d...

Page 281: ...t method Global Configuration mode command Example The following example configures the spanning tree cost on Ethernet port 15 to 35000 spanning tree port priority The spanning tree port priority Inte...

Page 282: ...port 15 to 96 spanning tree portfast The spanning tree portfast Interface Configuration mode command enables PortFast mode In PortFast mode the interface is immediately put into the forwarding state u...

Page 283: ...e setting determined by the duplex mode of the port and enables Rapid Spanning Tree Protocol RSTP transitions to the forwarding state To restore the default configuration use the no form of this comma...

Page 284: ...use the no form of this command Syntax spanning tree pathcost method long short no spanning tree pathcost method Parameters long Specifies port path costs with a range of 1 200 000 000 short Specifie...

Page 285: ...command Syntax spanning tree bpdu filtering flooding no spanning tree bpdu Parameters filtering Filter BPDU packets when the spanning tree is disabled on an interface flooding Flood BPDU packets when...

Page 286: ...rnet port port channel number A valid port channel number Default Configuration This command has no default configuration Command Modes Privileged EXEC mode User Guidelines This feature should be used...

Page 287: ...es The device with the lowest priority is selected as the root of the spanning tree Example The following example configures the spanning tree priority of instance 1 to 4096 spanning tree mst max hops...

Page 288: ...panning tree mst port priority Interface Configuration mode command configures port priority for the specified MST instance To restore the default configuration use the no form of this command Syntax...

Page 289: ...warding state To restore the default configuration use the no form of this command Syntax spanning tree mst instance id cost cost no spanning tree mst instance id cost Parameters instance ID ID of the...

Page 290: ...de command enables configuring an MST region by entering the Multiple Spanning Tree MST mode Syntax spanning tree mst configuration Default Configuration This command has no default configuration Comm...

Page 291: ...comma Range 1 4094 Default Configuration VLANs are mapped to the common and internal spanning tree CIST instance instance 0 Command Modes MST Configuration mode User Guidelines All VLANs that are not...

Page 292: ...ive Range 1 32 characters Default Configuration The default name is a radlan_guest Command Mode MST Configuration mode User Guidelines There are no user guidelines for this command Example The followi...

Page 293: ...are no user guidelines for this command Example The following example sets the configuration revision to 1 show mst The show MST Configuration mode command displays the current or pending MST region c...

Page 294: ...displays a pending MST region configuration exit mst The exit MST Configuration mode command exits the MST Configuration mode and applies all configuration changes Syntax exit Default Configuration Th...

Page 295: ...er Guidelines There are no user guidelines for this command Example The following example exits the MST Configuration mode without saving changes spanning tree guard root The spanning tree guard root...

Page 296: ...nate state if spanning tree calculations selects the port as the root port Example The following example prevents Ethernet port 1 from being the root port of the device show spanning tree The show spa...

Page 297: ...Configuration This command has no default configuration Command Modes Privileged EXEC mode User Guidelines There are no user guidelines for this command Example The following example displays spannin...

Page 298: ...BLK ALTN No Shared STP 5 Enabled 128 5 20000 DIS Console show spanning tree Spanning tree enabled mode RSTP Default port cost method long Root ID Priority 36864 Address 00 02 4b 29 7a 00 This switch i...

Page 299: ...e ID Priority 36864 Address 00 02 4b 29 7a 00 Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec Interfaces Name State Prio Nbr Cost Sts Role PortFast Type 1 Enabled 128 1 20000 2 Enabled 128 2 2000...

Page 300: ...WD Desg No Shared STP 4 Enabled 128 4 20000 BLK ALTN No Shared STP Console show spanning tree blockedports Spanning tree enabled mode RSTP Default port cost method long Root ID Priority 32768 Address...

Page 301: ...old 1 topology change 35 notification 2 hello 2 max age 20 forward delay 15 Port 1 1 1 enabled State Forwarding Role Root Port id 128 1 Port cost 20000 Type P2p configured auto RSTP Port Fast No confi...

Page 302: ...enabled State Blocking Role Alternate Port id 128 4 Port cost 20000 Type Shared configured auto STP Port Fast No configured no Designated bridge Priority 28672 Address 00 30 94 41 62 c8 Designated por...

Page 303: ...of transitions to forwarding state 1 BPDU sent 2 received 120638 Console show spanning tree mst configuration Name Region1 Revision 1 Instance Vlans mapped State 0 1 9 21 4094 Enabled 1 10 20 Enabled...

Page 304: ...nabled 128 3 20000 FWD Desg No P2p 4 Enabled 128 4 20000 FWD Desg No P2p MST 1 Vlans Mapped 10 20 CST Root ID Priority 24576 Address 00 02 4b 29 89 76 Path Cost 20000 Root Port 4 1 4 Rem hops 19 Bridg...

Page 305: ...Delay 15 sec Max hops 20 Number of topology changes 2 last change occurred 2d18h ago Times hold 1 topology change 35 notification 2 hello 2 max age 20 forward delay 15 Port 1 1 1 enabled State Forwar...

Page 306: ...ransitions to forwarding state 1 BPDU sent 2 received 170638 Port 4 enabled State Forwarding Role Designated Port id 128 4 Port cost 20000 Type Shared configured auto Internal Port Fast No configured...

Page 307: ...ity 32768 Address 00 02 4b 29 7a 00 Designated port id 128 2 Designated path cost 20000 Number of transitions to forwarding state 1 BPDU sent 2 received 170638 Port 3 disabled State Blocking Role Alte...

Page 308: ...ot Port 1 1 1 Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec IST Master ID Priority 32768 Address 00 02 4b 19 7a 00 Path Cost 10000 Rem hops 19 Bridge ID Priority 32768 Address 00 02 4b 29 7a 00...

Page 309: ...Spanning Tree Commands Intel Blade Server Ethernet Switch Modules SBCEGBESW1 and SBCEGBESW10 CLI Guide 293 Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec Max hops 20...

Page 310: ...Spanning Tree Commands 294 Intel Blade Server Ethernet Switch Modules SBCEGBESW1 and SBCEGBESW10 CLI Guide...

Page 311: ...Parameters port number Port number for use by the SSH server Range 1 65535 Default Configuration The default port number is 22 Command Mode Global Configuration mode User Guidelines There are no user...

Page 312: ...erver is in standby until the keys are generated To generate SSH server keys use the crypto key generate dsa and crypto key generate rsa Global Configuration mode commands Example The following exampl...

Page 313: ...considerable period of time to execute Example The following example generates DSA key pairs crypto key generate rsa The crypto key generate rsa Global Configuration mode command generates RSA key pai...

Page 314: ...mode command enables public key authentication for incoming SSH sessions To disable this function use the no form of this command Syntax ip ssh pubkey auth no ip ssh pubkey auth Default Configuration...

Page 315: ...Example The following example enters the SSH Public Key chain Configuration mode and manually configures the RSA key pair for SSH public key chain bob Console config crypto key pubkey chain ssh Consol...

Page 316: ...SH client Range 1 48 characters rsa Indicates the RSA key pair dsa Indicates the DSA key pair Default Configuration No SSH public keys exist Command Mode SSH Public Key string Configuration mode User...

Page 317: ...e same format in the authorized_keys file used by OpenSSH Range 0 160 Default Configuration No keys exist Command Mode SSH Public Key string Configuration mode User Guidelines Use the key string SSH P...

Page 318: ...ey bob rsa Console config pubkey key key string AAAAB3NzaC1yc2EAAAADAQABAAABAQCvTnRwPWl Al4kpqIw9GBRonZQZxjHKcqKL6rMlQ ZNXfZSkvHG QusIZ 76ILmFT34v7u7ChFAE Vu4GRfpSwoQUvV35LqJJk67IOU zfwOl1g kTwml75QR9...

Page 319: ...displays the SSH public keys on the device Syntax show crypto key mypubkey rsa dsa Parameters rsa Indicates the RSA key dsa Indicates the DSA key Console show ip ssh SSH server enabled Port 22 RSA ke...

Page 320: ...how crypto key pubkey chain ssh username username fingerprint bubble babble hex Parameters username Specifies the remote SSH client username bubble babble Fingerprint in Bubble Babble format hex Finge...

Page 321: ...ublic keys stored on the device Console show crypto key pubkey chain ssh Username Fingerprint bob 9A CC 01 C5 78 39 27 86 79 CC 23 C5 98 59 F1 86 john 98 F7 6E 28 F2 79 87 C8 18 F8 88 CC F8 89 87 C8 C...

Page 322: ...SSH Commands 306 Intel Blade Server Ethernet Switch Modules SBCEGBESW1 and SBCEGBESW10 CLI Guide...

Page 323: ...ing on no logging on Default Configuration Logging is enabled Command Mode Global Configuration mode User Guidelines The logging process controls the distribution of logging messages at various destin...

Page 324: ...158 characters port Specifies the port number for syslog messages Range 1 65535 level Specifies the severity level of logged messages sent to the syslog servers Possible values emergencies alerts cri...

Page 325: ...d level no logging buffered Parameters level Specifies the severity level of messages logged in the buffer The possible values are emergencies alerts critical errors warnings notifications information...

Page 326: ...number no logging buffered size Parameters number Specifies the maximum number of messages stored in the history table Range 20 400 Default Configuration The default number of messages is 200 Command...

Page 327: ...logging buffer logging file The logging file Global Configuration mode command limits syslog messages sent to the logging file based on severity To cancel using the buffer use the no form of this comm...

Page 328: ...based on severity level alerts clear logging file The clear logging file Privileged EXEC mode command clears messages from the logging file Syntax clear logging file Default Configuration This command...

Page 329: ...l login events unsuccessful login events and other login related events Default Configuration Logging AAA login events is enabled Command Mode Global Configuration mode User Guidelines Other types of...

Page 330: ...rations Default Configuration Logging file system events is enabled Command Mode Global Configuration mode User Guidelines There are no user guidelines for this command Example The following example e...

Page 331: ...of management ACL events are not subject to this command Example The following example enables logging messages related to deny actions of management ACLs show logging The show logging Privileged EXEC...

Page 332: ...og 11 Aug 2004 15 41 43 LINK 3 UPDOWN Interface FastEthernet ext 0 changed state to up 11 Aug 2004 15 41 43 LINK 3 UPDOWN Interface Ethernet ext 0 changed state to up 11 Aug 2004 15 41 43 LINK 3 UPDOW...

Page 333: ...le displays the logging state and the syslog messages stored in the logging file Console show logging file Logging is enabled Console logging level debugging Console Messages 0 Dropped severity Buffer...

Page 334: ...3 UPDOWN Interface Ethernet ext 1 changed state to up 11 Aug 2004 15 41 43 LINK 3 UPDOWN Interface Ethernet ext 2 changed state to up 11 Aug 2004 15 41 43 LINK 3 UPDOWN Interface Ethernet ext 3 change...

Page 335: ...and SBCEGBESW10 CLI Guide 319 Example The following example displays the settings of the syslog servers Console show syslog servers Device Configuration IP address Port Severity Facility Description...

Page 336: ...Syslog Commands 320 Intel Blade Server Ethernet Switch Modules SBCEGBESW1 and SBCEGBESW10 CLI Guide...

Page 337: ...acket_size Number of bytes in a packet The actual packet size is eight bytes larger than the specified size specified because the device adds header information Range 56 1472 bytes packet_count Number...

Page 338: ...hen traveling to their destination Console ping 10 1 1 1 Pinging 10 1 1 1 with 64 bytes of data 64 bytes from 10 1 1 1 icmp_seq 0 time 11 ms 64 bytes from 10 1 1 1 icmp_seq 1 time 8 ms 64 bytes from 1...

Page 339: ...Range 1 60 ip address One of the device s interface addresses to use as a source address for the probes The device normally selects what it feels is the best source address to use tos The Type Of Serv...

Page 340: ...maxp1 physics lsa umich edu Type Esc to abort Tracing the route to umaxp1 physics lsa umich edu 141 211 101 64 1 i2 gateway stanford edu 192 68 191 83 0 msec 0 msec 0 msec 2 STAN POS calren2 NET 171 6...

Page 341: ...the User Guidelines keyword One or more keywords listed in the Keywords table in the User Guidelines Default Configuration The default port is the Telnet port decimal23 on the host Command Mode User E...

Page 342: ...se Ctrl shift 6 b Break Ctrl shift 6 c Interrupt Process IP Ctrl shift 6 h Erase Character EC Ctrl shift 6 o Abort Output AO Ctrl shift 6 t Are You There AYT Ctrl shift 6 u Erase Line EL Console Ctrl...

Page 343: ...n Domain Name Service 53 echo Echo 7 exec Exec 512 finger Finger 79 ftp File Transfer Protocol 21 ftp data FTP data connections 20 gopher Gopher 70 hostname NIC hostname server 101 ident Ident Protoco...

Page 344: ...tax resume connection Parameters connection The connection number Range 1 4 connections Default Configuration The default connection number is that of the most recent connection Command Mode User EXEC...

Page 345: ...y that no configuration files are being downloaded at the time of reset Example The following example reloads the operating system hostname The hostname Global Configuration mode command specifies or...

Page 346: ...device host name show users The show users User EXEC mode command displays information about the active users Syntax show users Default Configuration This command has no default configuration Command...

Page 347: ...XEC mode User Guidelines There are no user guidelines for this command Example The following example lists open Telnet sessions The following table describes significant fields shown above Bob Serial...

Page 348: ...figuration Command Mode User EXEC mode User Guidelines There are no user guidelines for this command Example The following example displays the system information Address IP address of the remote host...

Page 349: ...show system id Privilaged EXEC mode command displays the system identity information Syntax show system id unit unit Parameters unit unit Unit number Default Configuration This command has no default...

Page 350: ...e ports Syntax show system flowcontrol Default Configuration This command has no default configuration Command Mode Privileged EXEC mode User Guidelines There are no user guidelines for this command C...

Page 351: ...ation This command has no default configuration Command Mode Priviledged EXEC mode User Guidelines There are no user guidelines for this command Example The following example displays information on f...

Page 352: ...splays system version information only for demonstration purposes service cpu utilization The service cpu utilization Global Configuration mode command enables measuring CPU utilization To return to t...

Page 353: ...CPU utilization Example This example enables measuring CPU utilization show cpu utilization The show cpu utilization Privileged EXEC mode command displays information about CPU utilization Syntax sho...

Page 354: ...net Switch Modules SBCEGBESW1 and SBCEGBESW10 CLI Guide Example The following example configures the CPU utilization information display Console show cpu utilization CPU utilization service is on CPU...

Page 355: ...ommunicate the single connection option maintains a single open connection between the device and the daemon port number Specifies a server port number Range 0 65535 timeout Specifies the timeout valu...

Page 356: ...al Configuration mode command sets the authentication encryption key used for all TACACS communications between the device and the TACACS daemon To disable the key use the no form of this command Synt...

Page 357: ...ing which the device waits for a TACACS server to reply To return to the default configuration use the no form of this command Syntax tacacs server timeout timeout no tacacs server timeout Parameters...

Page 358: ...ource ip source no tacacs server source ip source Parameters source Specifies the source IP address Default Configuration The source IP address is the address of the outgoing IP interface Command Mode...

Page 359: ...tion Command Mode Privileged EXEC mode User Guidelines There are no user guidelines for this command Example The following example displays configuration and statistical information about a TACACS ser...

Page 360: ...TACACS Commands 344 Intel Blade Server Ethernet Switch Modules SBCEGBESW1 and SBCEGBESW10 CLI Guide...

Page 361: ...nable privilege level Parameters privilege level Privilege level to enter the system Range 1 15 Default Configuration The default privilege level is 15 Command Mode User EXEC mode User Guidelines Ther...

Page 362: ...e 1 15 Default Configuration The default privilege level is 1 Command Mode Privileged EXEC mode User Guidelines There are no user guidelines for this command Example The following example return to Us...

Page 363: ...s in with username admin configure The configure Privileged EXEC mode command enters the Global Configuration mode Syntax configure Default Configuration This command has no default configuration Comm...

Page 364: ...o default configuration Command Mode All configuration modes User Guidelines There are no user guidelines for this command Example The following example changes the configuration mode from Interface C...

Page 365: ...e closes an active terminal session end The end command ends the current configuration session and returns to the Privileged EXEC mode Syntax end Default Configuration This command has no default conf...

Page 366: ...dumping use the no form of this command Console help Help may be requested at any point in a command by entering a question mark If nothing matches the currently entered incomplete command the help li...

Page 367: ...een Pressing the Enter key displays the next line pressing the Spacebar displays the next screen of output The data dump command enables dumping all output immediately after entering the show command...

Page 368: ...iguration modes Example The following example displays all the commands entered while in the current Privileged EXEC mode show privilege The show privilege Privileged User EXEC mode command displays t...

Page 369: ...ays the current privilege level for the Privileged EXEC mode do The do command executes an EXEC level command from global configuration mode or any configuration submode Syntax do command Parameters c...

Page 370: ...e Privileged EXEC mode Console Config do show vlan VLAN Name Ports Type Authorization 1 default 1 1 2 Other Required 2 1 4 10 VLAN0010 1 3 4 dynamic Required 11 VLAN0011 1 1 2 static Required 20 VLAN0...

Page 371: ...se Default Configuration This command has no default configuration Command Mode Global Configuration mode User Guidelines There are no user guidelines for this command Example The following example en...

Page 372: ...tion Command Mode VLAN Configuration mode User Guidelines There are no user guidelines for this command Example The following example VLAN number 1972 is created interface vlan The interface vlan Glob...

Page 373: ...added Separate nonconsecutive VLAN IDs with a comma and no spaces a hyphen designates a range of IDs all All existing static VLANs Default Configuration This command has no default configuration Comm...

Page 374: ...no name Parameters string Unique name to be associated with this VLAN Range 1 32 characters Default Configuration No name is defined Command Mode Interface Configuration VLAN mode Cannot be configured...

Page 375: ...mmand Mode Interface Configuration Ethernet port channel mode User Guidelines Private VLAN Edge PVE supports private communication by isolating PVE defined ports and ensuring that all Unicast Broadcas...

Page 376: ...port general Indicates a full 802 1q supported VLAN port Default Configuration All ports are in access mode and belong to the default VLAN whose VID 1 Command Mode Interface Configuration Ethernet por...

Page 377: ...orts belong to VLAN 1 Command Mode Interface configuration Ethernet port channel mode User Guidelines The command automatically removes the port from the previous VLAN and adds it to the new VLAN Exam...

Page 378: ...Interface Configuration Ethernet port channel mode User Guidelines There are no user guidelines for this command Example The following example adds VLANs 1 2 5 to 6 to the allowed list of te Ethernet...

Page 379: ...ace Configuration mode command adds or removes VLANs from a general port Syntax switchport general allowed vlan add vlan list tagged untagged switchport general allowed vlan remove vlan list Parameter...

Page 380: ...ample adds VLANs 2 5 and 6 to the allowed list of Ethernet port 1 switchport general pvid The switchport general pvid Interface Configuration mode command configures the PVID when the interface is in...

Page 381: ...tering To return to the default configuration use the no form of this command Syntax switchport general ingress filtering disable no switchport general ingress filtering disable Default Configuration...

Page 382: ...fault Configuration All frame types are accepted at ingress Command Mode Interface Configuration Ethernet port channel mode User Guidelines There are no user guidelines for this command Example The fo...

Page 383: ...uration Ethernet port channel mode User Guidelines This command can be used to prevent GVRP from automatically making the specified VLANs active on the selected ports Example The following example for...

Page 384: ...ure an IP interface an unused VLAN is selected by the software If the software selected a VLAN for internal use and the user wants to use that VLAN as a static or dynamic VLAN the user should do one o...

Page 385: ...ollowing example displays all VLAN information show vlan internal usage The show vlan internal usage Privileged EXEC mode command displays a list of VLANs used internally by the device Syntax show vla...

Page 386: ...by the device show interfaces switchport The show interfaces switchport Privileged EXEC mode command displays the switchport configuration Syntax show interfaces switchport ethernet interface port ch...

Page 387: ...rt ethernet ext 1 Port 1 VLAN Membership mode General Operating parameters PVID 1 default Ingress Filtering Enabled Acceptable Frame Type All GVRP status Enabled Protected Enabled Uplink is 1 Port 1 i...

Page 388: ...nterface switchport ethernet ext 1 Port 1 VLAN Membership mode General Operating parameters PVID 4095 discard vlan Ingress Filtering Enabled Acceptable Frame Type All Port 1 is member in Vlan Name Egr...

Page 389: ...sulation protocols group group no map protocol protocol encapsulation Parameters protocol The protocol is a protocol number or one of the reserved names The format is Hex format encapsulation One of t...

Page 390: ...mmand sets a protocol based classification rule To delete a classification use the no form of this command Syntax switchport general map protocols group group vlan vlan id no switchport general map pr...

Page 391: ...m of this command to delete the map Syntax map mac mac address prefix mask host macs group group no map mac mac address prefix mask host Parameters mac address Specify MAC address to be entered to the...

Page 392: ...group Parameters group Group numbe Range 1 2147483647 vlan id Define the VLAN ID that is associated with the rule Default Configuration This command has no default configuration Command Mode Interfac...

Page 393: ...fix maskMask bits The format is IP address format group Group number Default Configuration This command has no default configuration Command Mode Global Configuration mode User Guidelines There are no...

Page 394: ...t port channel User Guidelines The priority between VLAN classification rules is 1 MAC based VLAN Best match between the rules 2 Subnet based VLAN Best match between the rules 3 Protocol based VLAN 4...

Page 395: ...how vlan macs groups Use the show vlan protocols groups EXEC command to show protocols groups information Syntax show vlan protocols groups Default Configuration This command has no default configurat...

Page 396: ...tax show vlan subnets groups Parameters console Console terminal line telnet Virtual terminal for remote console access Telnet ssh Virtual terminal for secured remote console access SSH Default Config...

Page 397: ...r Ethernet Switch Modules SBCEGBESW1 and SBCEGBESW10 CLI Guide 381 Example The following example shows subnets groups information onsole show vlan subnets groups MAC Prefix Group 172 16 1 0 255 255 25...

Page 398: ...VLAN Commands 382 Intel Blade Server Ethernet Switch Modules SBCEGBESW1 and SBCEGBESW10 CLI Guide...

Page 399: ...aaa authentication dot1x default Parameters method1 method2 At least one from the following table Default Configuration No authentication method is defined Command Mode Global Configuration mode User...

Page 400: ...tax dot1x system auth control no dot1x system auth control Default Configuration 802 1x is disabled globally Command Modes Global Configuration mode User Guidelines There are no user guidelines for th...

Page 401: ...x based authentication of the client force unauthorized Denies all access through this interface by forcing the port to transition to the unauthorized state and ignoring all attempts by the client to...

Page 402: ...authentication is disabled Command Mode Interface Configuration Ethernet User Guidelines There are no user guidelines for this command Example The following example enables periodic re authentication...

Page 403: ...his command Example The following example sets the number of seconds between re authentication attempts to 300 dot1x re authenticate The dot1x re authenticate Privileged EXEC mode command manually ini...

Page 404: ...te following a failed authentication exchange for example the client provided an invalid password To return to the default configuration use the no form of this command Syntax dot1x timeout quiet peri...

Page 405: ...tx period The dot1x timeout tx period Interface Configuration mode command sets the number of seconds that the device waits for a response to an Extensible Authentication Protocol EAP request identity...

Page 406: ...ce Configuration mode command sets the maximum number of times that the device sends an Extensible Authentication Protocol EAP request identity frame assuming that no response is received to the clien...

Page 407: ...nsible Authentication Protocol EAP request frame to the client To return to the default configuration use the no form of this command Syntax dot1x timeout supp timeout seconds no dot1x timeout supp ti...

Page 408: ...x timeout server timeout Parameters seconds Time in seconds that the device waits for a response from the authentication server Range 1 65535 seconds Default Configuration The timeout period is 30 sec...

Page 409: ...Default Configuration This command has no default configuration Command Mode Privileged EXEC mode User Guidelines There are no user guidelines for this command Example The following example displays...

Page 410: ...s Max req 2 Supplicant timeout 30 Seconds Server timeout 30 Seconds Session Time HH MM SS 08 19 17 MAC Address 00 08 78 32 98 78 Authentication Method Remote Termination Cause Supplicant logoff Authen...

Page 411: ...identity frame from the client before resending the request Max req The maximum number of times that the device sends an Extensible Authentication Protocol EAP request frame assuming that no response...

Page 412: ...ot1x users Port Username Session Time Auth Method MAC Address 1 Bob 1d 03 08 58 Remote 0008 3b79 8787 2 John 08 19 17 None 0008 3b89 3127 Console show dot1x users username Bob Username Bob Port Userna...

Page 413: ...Full syntax unit port Default Configuration This command has no default configuration Command Mode Privileged EXEC mode User Guidelines There are no user guidelines for this command Example The follo...

Page 414: ...ogoffFramesRx The number of EAPOL Logoff frames that have been received by this Authenticator EapolRespIdFramesRx The number of EAP Resp Id frames that have been received by this Authenticator EapolRe...

Page 415: ...tagged packets would be accepted in the unauthorized state Example The following example enables access to the VLAN to unauthorized devices dot1x multiple hosts The dot1x multiple hosts Interface Con...

Page 416: ...mand configures the action to be taken when a station whose MAC address is not the supplicant MAC address attempts to access the interface Use the no form of this command to return to default Syntax d...

Page 417: ...ss and sends consecutive traps at intervals of 100 seconds dot1x guest vlan The dot1x guest vlan Interface Configuration mode command defines a guest VLAN To return to the default configuration use th...

Page 418: ...dot1x vlans guest vlan enable Interface Configuration mode command enables unauthorized users on the interface access to the Guest VLAN To disable access use the no form of this command Syntax dot1x g...

Page 419: ...fied interface Syntax show dot1x advanced ethernet interface Parameters interface Valid Ethernet port Full syntax unit port Default Configuration This command has no default configuration Command Mode...

Page 420: ...erface Multiple Hosts Guest VLAN 1 Disabled Enabled 2 Enabled Disabled Console show dot1x advanced ethernet ext 1 Interface Multiple Hosts Guest VLAN 1 Disabled Enabled Single host parameters Violatio...

Page 421: ...ange the pricing for telephone support at any time without notice Before calling fill out an Intel Server Issue Report Form available from http support intel com support For the fastest service please...

Page 422: ...1390 Myanmar 63 2 636 9796 via Philippines New Zealand 0800 444 365 Pakistan 632 63684 15 IDD via Philippines Philippines 1 800 1 651 0117 Singapore 65 6213 1311 Taiwan 2 2545 1640 Thailand 1 800 631...

Page 423: ...ed dial 800 843 4481 Pacifictel Contact AT T USA at 1 800 225 528 Once connected dial 800 843 4481 Guatemala Contact AT T USA at 99 99 190 Once connected dial 800 843 4481 Mexico Contact AT T USA at 0...

Page 424: ...408 Intel Blade Server Ethernet Switch Modules SBCEGBESW1 and SBCEGBESW10 CLI Guide...

Reviews:

No comments

Brands by name

Popular brands

Load more brands