manualshive.com logo in svg

Korenix 6852G Series, User Manual

The Korenix 6852G Series is a high-performance network switch designed for industrial environments. For user convenience, a comprehensive User Manual can be downloaded for free from manualshive.com. This manual provides detailed instructions and troubleshooting tips to ensure optimal performance of the network switch.

Share
Download
background image

Korenix Technology Co., Ltd.                                           

 

Industrial

 

Layer 3 Managed Ethernet Switch

 

 
 

_____________________________________________________________________________ 

Industrial Layer 3 Managed Ethernet SwitchUser Manual

 

 Page: 403/1246 

!

 

6.8.8.2.5   dos-control l4port 

This command enables L4 Port Denial of Service protections. If the mode is enabled, Denial of Service 
prevention is active for this type of attack. If packets ingress having Source TCP/UDP Port Number 
equal to Destination TCP/UDP Port Number, the packets will be dropped if the mode is enabled. 

 

 

Some applications mirror source and destination L4 ports - RIP for example uses 520 for 
both. If you enable dos-control l4port, applications such as RIP may experience packet 
loss which would render the application inoperable. 

 

 
 

Syntax

 

 

dos-control l4port 
no dos-control l4port 

 

 

no - 

This command disables L4 Port Denial of Service protections. 

 

 

Default Setting

 

 

Disabled 

 

Command Mode

 

 

Global Config 

 

 
 
 
 

6.8.8.2.6   dos-control tcpport 

 

This command enables the TCP L4 source = destination port number (Source TCP Port = Destination 
TCP Port) Denial of Service protection. If the mode is enabled, Denial of Service prevention is active for 
this type of attack. If packets ingress with Source TCP Port =Destination TCP Port, the packets will be 
dropped if the mode is enabled. 

 

 

Syntax

 

 

dos-control tcpport 
no dos-control tcpport 

 

 

no - 

This command disables the TCP L4 source = destination port number (Source TCP Port 

=Destination TCP Port) Denial of Service protection. 

 

 

Default Setting 

 

Disabled 

 

Command Mode 

 

Global Config 

Summary of Contents for 6852G Series

Page 1: ...Korenix JetNet 7850G 2XG 6852G Series 48G 2 x 10G SFP 48G 4G SFP Ports Industrial Gigabit Layer 3 Managed Ethernet Switch User Manual Version 1 0 Oct 2014 www korenix com...

Page 2: ...anaged Ethernet Switch _____________________________________________________________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 2 1246 Document History Revision Date Re...

Page 3: ...mation 21 2 5 2 Quick Start up Physical Port Data 21 2 5 3 Quick Start up User Account Management 22 2 5 4 Quick Start up IP Address 23 2 5 5 Quick Start up Uploading from Switch to Out of Band PC 24...

Page 4: ...40 6 2 10 Port Channel 147 6 2 11 Storm Control 161 6 2 12 L2 Priority 169 6 2 13 Port Mirror 171 6 2 14 Link State 174 6 2 15 Port Backup 177 6 2 16 Rapid Super Ring Member Mode Commands 179 6 3 Mana...

Page 5: ...7 Port Security Configuration Commands 397 6 8 8 Denial Of Service Commands 400 6 9 CDP Cisco Discovery Protocol Commands 411 6 9 1 Show Commands 411 6 9 2 Configuration Commands 415 6 10 SNTP Simple...

Page 6: ...Dynamic ARP Inspection DAI Command 523 6 19 1 Show Commands 523 6 19 2 Configuration Commands 526 6 20 Differentiated Service Command 531 6 20 1 General Commands 532 6 20 2 Class Commands 533 6 20 3 P...

Page 7: ...uration Commands 700 7 6 Routing Information Protocol RIP Commands 703 7 6 1 Show Commands 703 7 6 2 Configuration Commands 706 7 7 Router Discovery Protocol Commands 715 7 7 1 Show Commands 715 7 7 2...

Page 8: ...5 Managing DHCP Client 894 9 2 16 Managing Time Ranges 896 9 2 17 Managing DNS Relay Function 900 9 2 18 Managing DDNS Function 905 9 3 Switching Menu 906 9 3 1 Defining Forwarding Database 906 9 3 2...

Page 9: ...5 QOS Menu 1101 9 5 1 Managing Differentiated Services 1101 9 5 2 Configuring Diffserv Wizard Page 1113 9 5 3 Managing Auto VoIP 1115 9 5 4 Managing iSCSI 1118 9 5 5 Managing Class of Service 1122 9...

Page 10: ...Ethernet ports Supports 2 SFP 10Gigabit Ethernet ports JetNet 7850G 2XG Supports 4 SFP 1Gigabit Ethernet ports JetNet 6852G 1 built in 1000 100 10Mbps Ethernet port for out of band switch mangement I...

Page 11: ...ast Dense Mode PIM DM Protocol Independent Multicast Sparse Mode PIM SM DHCP Client and Relay support DNS Client and Relay support DDNS client support Per port bandwidth control SNMP v 1 v 2 v 3 netwo...

Page 12: ..._____________________________________________________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 12 1246 1 3 Dimension The JetNet 7850G 2XG and JetNet 6852G Industrial...

Page 13: ...S 232 DCE console port is for setting up and managing the Switch via a connection to a console terminal or PC using a terminal emulation program Each 100 100 1000BASE T port including management port...

Page 14: ...AC DC power connector and three fans Rear panel with DC power connector Rear panel with AC power connector The DC power range support 48V 36 72V DC input The AC power connector is a standard three pro...

Page 15: ...ou have successfully installed the Switch you can configure the Switch monitor the LED panel and display statistics graphically using a Web browser such as Mozilla FireFox version 3 6 or higher or Mic...

Page 16: ...P agent updates the MIB objects to generate statistics The Switch supports a comprehensive set of MIB extensions RFC1493 Bridge RFC 2819 RMON MIB RFC 2233 Interface MIB RFC 2618 Radius Auth Client MIB...

Page 17: ...t VLAN LLDP MIB LLDP MED RFC 2925 DISMAN TRACEROUTE MIB RFC 2571 SNMP FRAMEWORK MIB RFC 2572 SNMP MPD MIB RFC 2573 SNMP NOTIFICATION MIB RFC 2573 SNMP TARGET MIB RFC 2574 SNMP USER BASED SM MIB RFC 25...

Page 18: ...Country JetNet 7850G 2XG DC48 and JetNet 6852G DC48 no Power Cord QIG 2 2 Switch Installation Installing the Switch Without the Rack 1 Install the Switch on a level surface that can safely support th...

Page 19: ...itchUser Manual Page 19 1246 2 3 Installing the Switch in a Rack You can install the Switch in most standard 19 inch 48 3 cm racks Refer to the illustrations below 1 Use the supplied screws to attach...

Page 20: ...with IP information IP address subnet mask and default gateway 2 Turn the Power ON 3 Allow the device to load the software until the login prompt appears The device initial state is called the default...

Page 21: ...loader bootrom and operation version See HW version 2 5 2 Quick Start up Physical Port Data Table 2 2 Quick Start up Physical Port Command Details show Interface status slot port Displays the Ports s...

Page 22: ...o 5 Read Only users show loginsession Displays all login session information username username passwd nopasswd Allows the user to set passwords or change passwords needed to login A prompt will appear...

Page 23: ...Default IP is 192 168 2 1 Subnet Mask IP Subnet Mask for the interface Default is 255 255 255 0 Default Gateway The default Gateway for this interface Default value is 0 0 0 0 Burned in MAC Address T...

Page 24: ...to Switch Table 2 6 Quick Start up Downloading from Out of Band PC to Switch Command Details copy xmodem startup config filename Sets the download datatype to be an image or config file The URL must...

Page 25: ...ble 2 8 Quick Start up Factory Defaults Command Details clear config Enter yes when the prompt pops up to clear all the configurations made to the switch copy running config startup config filename En...

Page 26: ...mponents while the Switch can be manipulated to carry out specific tasks 3 2 Set Up your Switch Using Console Access Out of band management requires connecting a terminal such as a VT 100 or a PC runn...

Page 27: ...ing communication parameters for your terminal The console port is set for the following configuration Baud rate 115 200 Data width 8 bits Parity none Stop bits 1 Flow Control none A typical console c...

Page 28: ...avigator 6 0 or later This interface also allows for system monitoring and management of the switch The help page covers many of the basic functions and features of the switch and its Web interface Wh...

Page 29: ...rnet Explorer version 5 0 or above or Mozilla FireFox version 3 6 or above 1 Determine the IP address of your managed switch 2 Open your Web browser 3 Log in to the managed switch using whatever IP ad...

Page 30: ...nt Menu This above page displays system information such as System Description System Name System Location System Contact IP Address Service Port IP Address System Object ID OID System Up Time Menus T...

Page 31: ...creen You can click the help or the question mark at the top right of each screen to view the help menu topics The Secondary Menus are detailed below with cross references to the sections in this manu...

Page 32: ...Portected Port Commands Protocol based VLAN see Protocol based VLAN Commands IP Subnet based VLAN see IP Subnet based VLAN Commands MAC based VLAN see MAC based Commands MAC based Vocie VLAN see MAC...

Page 33: ...of Service see Denial of Service Commands QoS Diffserv see Differentiated Services Commands Class of Service see Class of Service Commands and L2 Priority Commands Auto VoIP Auto Voice over IP Command...

Page 34: ...Each CLI command is illustrated using the structure outlined below 5 1 CLI Command Format Commands are followed by values parameters or both Example 1 ip address ipaddr netmask gateway ip address is...

Page 35: ...up of four decimal bytes ranging from 0 to 255 The default for all IP parameters consists of zeros that is 0 0 0 0 The interface IP address of 0 0 0 0 is invalid macaddr The MAC address format is six...

Page 36: ...nd may be executed by typing enter command abbreviation or the command word may be completed by typing the tab command completion The value Err designates that the requested value was not internally a...

Page 37: ...the switch and other devices The Address Resolution Protocol ARP cache identifies the MAC addresses of the IP stations communicating with the switch Syntax show arp Default Setting None Command Mode P...

Page 38: ...__________________________________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 38 1246 6 1 2 show calendar This command displays the system time Syntax show calendar Def...

Page 39: ...y the traffic to the CPU but different tasks that keep the CPU busy Default Setting None Command Mode Privileged Exec Display Message The following shows example CLI display output for the command Mem...

Page 40: ...mRX 0 19 0 19 0 16 1044 cpuUtilMonitorTask 0 19 0 14 0 11 1046 tL7Timer0 0 00 0 02 0 01 1054 simPts_task 0 00 0 02 0 01 1058 Detecting SFP Modu 0 00 0 02 0 01 1080 emWeb 0 00 0 08 0 06 1085 StormCtrl...

Page 41: ...rimary Management System or in the specified unit The event log is not cleared on a system reset Syntax show eventlog unit unit The unit number of the remote system The range is 1 to 8 unit parameter...

Page 42: ...at which can be used to configure another switch with the same configuration When a script name is provided the output is redirected to a configuration script The option all will also enable the displ...

Page 43: ...System Description The text used to identify this switch System Name The name used to identify the switch System Location The text used to identify the location of the switch May be up to 255 alpha nu...

Page 44: ...itch System Location Text used to identify the location of the switch May be up to 255 alpha numeric characters The factory default is blank System Contact Text used to identify a contact person for t...

Page 45: ...his command displays system and configuration information when you contact technical support The output of the show tech support command combines the output of the following commands show version show...

Page 46: ...number Hardware Version The hardware version of this switch It is divided into four parts The first byte is the major version and the second byte represents the minor version ADT7470 Now Temperature T...

Page 47: ..._________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 47 1246 Vendor Revision Number Revision level for part number provided by vendor Vendor Manufacturing Date The vend...

Page 48: ...fined by the Vital Product Data Serial Number The unique box serial number for this switch FRU Number The field replaceable unit number Part Number Manufacturing part number Maintenance Level The iden...

Page 49: ...ec Display Message ID Login Session ID User Name The name the user will use to login using the serial port or Telnet A new user may be added to the switch by entering a name in a blank entry The user...

Page 50: ...ge 50 1246 6 1 12 show command filter This command displays the information that begin include exclude the regular expression Syntax show command begin include exclude LINE Default Setting None Comman...

Page 51: ...LAG Dest This port is a probe port Admin Mode Selects the Port control administration state The port must be enabled in order for it to be allowed into the network It may be enabled or disabled The f...

Page 52: ...ackets including broadcast packets and multicast packets received by the processor Packets Received With Error The number of inbound packets that contained errors preventing them from being deliverabl...

Page 53: ...detailed statistics for a specific port or for all CPU traffic based upon the argument Syntax show interface counters detailed slot port switchport slot port is the desired interface number switchpor...

Page 54: ...usive excluding framing bits but including FCS octets Packets RX and TX 128 255 Octets The total number of packets including bad packets received that were between 128 and 255 octets in length inclusi...

Page 55: ...FCS octets Alignment Errors The total number of packets received that had a length excluding framing bits but including FCS octets of between 64 and 1518 octets inclusive but had a bad FCS with a non...

Page 56: ...r of frames that exceeded the max permitted frame size This counter has a max increment rate of 815 counts per sec at 10 Mb s Underrun Errors The total number of frames discarded because the transmit...

Page 57: ...ed to the broadcast address Note that this does not include multicast packets Receive Packets Discarded The number of inbound packets which were chosen to be discarded even though no errors had been d...

Page 58: ...CPU traffic Syntax show interface switch Default Setting None Command Mode Privileged Exec Display Message Broadcast Packets Received The total number of packets received that were directed to the br...

Page 59: ...Config 6 2 1 5 speed duplex This command is used to set the speed and duplex mode for the interface The 10G interfaces could be configured to operate at 10G or 1G speed Use speed duplex 1000 to change...

Page 60: ...nly valid for 10 100 1000BASE T ports all This command represents all interfaces no This command will be back to 10G speed from 1G speed for all 10G ports Default Setting None Command Mode Global Conf...

Page 61: ...ustrial Layer 3 Managed Ethernet SwitchUser Manual Page 61 1246 This command enables automatic negotiation on all interfaces The default value is enabled Syntax negotiate all no negotiate all all This...

Page 62: ...10 100 full duplex half duplex 1000 full duplex 10 10BASE T 100 100BASE T 1000 1000BASE T full duplex Full duplex half duplex Half duplex no This command removes the advertised capability with using...

Page 63: ..._________________________________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 63 1246 no This command removes the advertised capability with using parameter Default Sett...

Page 64: ...ow control will be disabled internally Syntax storm control flowcontrol no storm control flowcontrol no This command disables 802 3x flow control for the switch Default Setting Disabled Command Mode G...

Page 65: ...r Manual Page 65 1246 6 2 1 9 shutdown This command is used to disable a port Syntax shutdown no shutdown no This command enables a port Default Setting Enabled Command Mode Interface Config This comm...

Page 66: ...tion no This command removes the description of the port Default Setting None Command Mode Interface Config 6 2 1 11 mdi This command is used to configure the physical port MDI MDIX state i This comma...

Page 67: ...hat are separated by colons for example 01 23 45 67 89 AB In an IVL system the MAC address will be displayed as 8 bytes In an SVL system the MAC address will be displayed as 6 bytes Note This software...

Page 68: ...forwarding database entries the number of static and learnning mac address and the max address available on the switch Syntax show mac addr table count Default Setting None Command Mode Privileged Exe...

Page 69: ...will be displayed as 6 bytes Note This software version only supports IVL systems VLAN ID The VLAN id of that mac address Status The status of this entry The meanings of the values are Static The valu...

Page 70: ...tes Note This software version only supports IVL systems Interface The port on which this L2 MAC address was learned Status The status of this entry The meanings of the values are Static The value of...

Page 71: ...e Privileged Exec Display Message MAC Address A unicast MAC address for which the switch has forwarding and or filtering information The format is 6 or 8 two digit hexadecimal numbers that are separat...

Page 72: ...s for which the switch has forwarding and or filtering information The format is 6 or 8 two digit hexadecimal numbers that are separated by colons for example 01 23 45 67 89 AB In an IVL system the MA...

Page 73: ...which the switch has forwarding and or filtering information The format is 6 or 8 two digit hexadecimal numbers that are separated by colons for example 01 23 45 67 89 AB In an IVL system the MAC add...

Page 74: ...ax show mac address table stats Default Setting None Command Mode Privileged Exec Display Message Max MFDB Table Entries This displays the total number of entries that can possibly be in the MFDB Most...

Page 75: ...able agetime Default Setting None Command Mode Privileged Exec Display Message Address Aging Timout This displays the total number of seconds for Forwarding Database table 6 2 2 10 mac addr table agin...

Page 76: ...vileged Exec Display Message VLAN ID There is a VLAN Identifier vlanid associated with each VLAN The range of the VLAN ID is 1 to 4093 VLAN Name A string associated with this VLAN as a convenience It...

Page 77: ...ated by GVRP registration Interface Indicates by slot id and port number which port is controlled by the fields on this line It is possible to set the parameters for all ports by using the selectors o...

Page 78: ...s to allow the port to be dynamically registered in this VLAN via GVRP The port will not participate in this VLAN unless a join request is received on this port This is equivalent to registration norm...

Page 79: ...Enter a MAC Address to display the table entry for the requested MAC address Default Setting None Command Mode Privileged Exec Display Message MAC Address A unicast MAC address for which the switch h...

Page 80: ...ress and net mask If no IP Address and net mask are specified the VLAN associations of all the configured IP subnets are displayed Syntax show vlan association subnet ipaddr netmask ipaddr The IP addr...

Page 81: ...age This command displays the VLAN assigned to port based routing interfaces Syntax show vlan internal usage Default Setting None Command Mode Privileged Exec Display Message Base VLAN ID This is the...

Page 82: ...p name group name The group name of an entry in the Protocol based VLAN table no parameter Displays the entire table Default Setting None Command Mode Privileged Exec Display Message Group Name This f...

Page 83: ...able Frame Types Specifies the types of frames that may be received on this port The options are VLAN only and Admit All When set to VLAN only untagged frames or priority tagged frames received on thi...

Page 84: ...Mode Global Config 6 2 3 9 vlan This command creates a new VLAN and assigns it an ID The ID is a valid VLAN identification number ID 1 is reserved for the default VLAN VLAN range is 2 4093 Syntax vla...

Page 85: ...and sets the name of a VLAN to a blank string The VLAN ID is a valid VLAN identification number ID range is 1 4093 Default Setting The name for VLAN ID 1 is always Default The name for other VLANs is...

Page 86: ...s netmask The subnet mask vlandid VLAN identification number ID range is 1 4093 priority The priority value for untagged frames received Valid priority value is 0 to 7 no This command removes associat...

Page 87: ...protocol based VLAN identified by group name A group may only be associated with one VLAN at a time however the VLAN association can be changed Syntax protocol group group name vlanid no protocol gro...

Page 88: ...and assigned the value of the interface VLAN ID for this port With either option VLAN tagged frames are forwarded in accordance with the IEEE 802 1Q VLAN Specification Default Setting Admit all Comman...

Page 89: ...ial Layer 3 Managed Ethernet Switch _____________________________________________________________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 89 1246 Default Setting Adm...

Page 90: ...with VLAN IDs that do not match the VLAN membership of the receiving interface are admitted and forwarded to ports that are members of that VLAN Default Setting Disabled Command Mode Interface Config...

Page 91: ...agged frames per interface Syntax switchport native vlan vlanid no switchport native vlan vlanid vlanid VLAN ID Range 1 4093 no This command sets the VLAN ID per interface to 1 Default Setting 1 Comma...

Page 92: ...nt to registration fixed tagged All frames transmitted for this VLAN will be tagged untagged All frames transmitted for this VLAN will be untagged remove The interface is removed from the member of th...

Page 93: ...o Ltd Industrial Layer 3 Managed Ethernet Switch _____________________________________________________________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 93 1246 Comman...

Page 94: ...e range Use for range no This command configures the tagging behavior for a specific interface in a VLAN to disabled If tagging is disabled traffic is transmitted as untagged frames The ID is a valid...

Page 95: ...Range 1 4093 separate non consecutive IDs with and no spaces and no zeros in between the range Use for range add VLAND ID to add remove VLAND ID to remove no Remove the list of forbidden VLANs Default...

Page 96: ...ault Setting 0 Command Mode Global Config 6 2 3 22 switchport protocol group This command adds the physical slot port interface to the protocol based VLAN identified by group name A group may have mor...

Page 97: ...Config This command adds all physical interfaces to the protocol based VLAN identified by group name A group may have more than one interface associated with it Each interface and protocol combinatio...

Page 98: ...fail and the protocol will not be added to the group The possible values for protocol are ip arp and ipx Syntax switchport protocol group add protocol group name ip arp ipx no switchport protocol grou...

Page 99: ...e Privileged Exec Display Message Interfaces Enabled for DVLAN Tunneling Valid interface s support s DVLAN Tunneling When using sho w d o t 1q tunnel dvlan t u n n el int erf ace Interface Valid slot...

Page 100: ...el no switchport dvlan tunnel dot1q tunnel Default Setting Disable Command Mode Interface Config 6 2 4 3 switchport dvlan tunnel dot1q tunnel ethertype This command configures the ether type for speci...

Page 101: ...Extension 6 2 5 1 show bridge ext This command displays Generic Attributes Registration Protocol GARP information Syntax show bridge ext Default Setting None Command Mode Privileged Exec User Exec Di...

Page 102: ...nregister request for an attribute before deleting the attribute Current attributes are a VLAN or multicast group This may be considered a buffer time for another station to assert registration for th...

Page 103: ...nregister request for an attribute before deleting the attribute Current attributes are a VLAN or multicast group This may be considered a buffer time for another station to assert registration for th...

Page 104: ...arameter All interfaces Default Setting None Command Mode Privileged Exec User Exec Display Message Interface This displays the slot port of the interface that this row in the table describes GVRP Mod...

Page 105: ...mand enables GVRP Syntax bridge ext gvrp no bridge ext gvrp no This command disables GVRP Default Setting Disabled Command Mode Global Config 6 2 5 6 bridge ext gmrp This command enables GARP Multicas...

Page 106: ...p no This command disables GVRP GARP VLAN Registration Protocol for a specific port If GVRP is disabled Join Time Leave Time and Leave All Time have no effect Default Setting Disabled Command Mode Int...

Page 107: ...an interface which has GMRP enabled is enabled for routing or is enlisted as a member of a port channel LAG GMRP functionality will be disabled on that interface GMRP functionality will subsequently...

Page 108: ...sets the GVRP join time per port and per GARP to 20 centiseconds 0 2 seconds This command has an effect only when GVRP and GMRP are enabled Default Setting 20 centiseconds 0 2 seconds Command Mode Int...

Page 109: ...hen GVRP and GMRP are enabled Syntax garp timer leave 20 600 no garp timer leave 20 600 leave time Range 20 600 in centiseconds no This command sets the GVRP leave time per port to 60 centiseconds 0 6...

Page 110: ...rt and per GARP participation The time may range from 200 to 6000 centiseconds i This command has an effect only when GVRP and GMRP are enabled Syntax garp timer leaveall 200 6000 no garp timer leavea...

Page 111: ...anaged Ethernet SwitchUser Manual Page 111 1246 Syntax garp timer leaveall all 200 6000 no garp timer leaveall all 200 6000 leave time Range 200 6000 in centiseconds all All interfaces no This command...

Page 112: ...Snooping on the system Syntax ip igmp snooping no ip igmp snooping Default Setting Disabled Command Mode Global Config 6 2 6 2 ip igmp snooping interfacemode The user can go to the CLI Global Interfac...

Page 113: ...igmp snooping fast leave no ip igmp snooping fast leave Default Setting Disabled Command Mode Global Config Interface Config 6 2 6 4 ip igmp snooping groupmembershipinterval The user can go to the CLI...

Page 114: ...no ip igmp snooping mcrtrexpiretime 0 3600 The range is 0 to 3600 seconds A value of 0 indicates an infinite time out i e no expiration Default Setting 0 Command Mode Global Config Interface Config 6...

Page 115: ...to disable IGMP Snooping on a particular VLAN Syntax set igmp vlanid no set igmp vlanid vlanid VLAN ID Range 1 4093 Default Setting Disabled Command Mode VLAN database 6 2 6 8 set igmp fast leave The...

Page 116: ...groupmembership interval vlanid 2 3600 no set igmp groupmembership interval vlanid vlanid VLAN ID Range 1 4093 2 3600 The range of group membership interval time is 2 to 3600 seconds Default Setting...

Page 117: ...e 0 Syntax set igmp mcrtrexpiretime vlanid 0 3600 no set igmp mcrtrexpiretime vlanid vlanid VLAN ID Range 1 4093 0 3600 The range of the Multicat Router Present Expire time is 0 to 3600 seconds Defaul...

Page 118: ...e CPU VLANs Enabled for IGMP Snooping VLANs on which IGMP Snooping is enabled When you specify the slot port values the following information displays IGMP Snooping Admin Mode Indicates whether IGMP S...

Page 119: ...wait before removing an interface that is participating in the VLAN from the list of interfaces with multicast routers attached The interface is removed if a query is not received This value may be c...

Page 120: ...e Privilege Exec Display Message VLAN ID Displays the list of VLANs of which the interface is a member Slot Port Shows the interface on which multicast router information is being displayed 6 2 6 16 s...

Page 121: ...oping Privilege command Syntax show mac address table igmpsnooping Default Setting None Command Mode Privilege Exec Display Message MAC Address A multicast MAC address for which the switch has forward...

Page 122: ...uration command Use the no ip igmp snooping querier to disable Syntax ip igmp snooping querier no ip igmp snooping querier Default Setting Disabled Command Mode Global Config 6 2 7 2 ip igmp snooping...

Page 123: ...x ip igmp snooping querier query interval 1 1800 no ip igmp snooping querier query interval 1 1800 set IGMP snooping querier query interval Default Setting 60 Command Mode Global Config 6 2 7 4 ip igm...

Page 124: ...ing querier version return to default value Syntax ip igmp snooping querier version 1 2 no ip igmp snooping querier version 1 2 set IGMP version of the querier Default Setting 1 Command Mode Global Co...

Page 125: ...ping querier vlan vlanid address ip address no ip igmp snooping querier vlan vlanid address vlanid VLAN ID Range 1 4093 ip address ip address Default Setting 0 0 0 0 Command Mode Global Config 6 2 7 8...

Page 126: ...disable Querier Address Specify the Snooping Querier Address to be used as source address in periodic IGMP queries This address is used when no address is configured on the VLAN on which query is bei...

Page 127: ...r Election Participation Mode Displays the querier election participate mode on the VLAN When this mode is disabled up on seeing a query of the same version in the vlan the snooping querier move to no...

Page 128: ...ault is disable Querier Address Specify the Snooping Querier Address to be used as source address in periodic IGMP queries This address is used when no address is configured on the VLAN on which query...

Page 129: ...ulticast Control Frame Count Displays the number of MLD Control frames that are processed by the CPU VLANs Enabled for MLD Snooping VLANs on which MLD Snooping is enabled When you specify the slot por...

Page 130: ...Time Displays the amount of time to wait before removing an interface that is participating in the VLAN from the list of interfaces with multicast routers attached The interface is removed if a query...

Page 131: ...CLI Privilege Exec to display information about statically configured multicast router attached interfaces use the show ipv6 mld snooping mrouter vlan Privilege command Syntax show ipv6 mld snooping m...

Page 132: ...ay MLD snooping static information use the show ipv6 mld snooping static Privilege command Syntax show ipv6 mld snooping static Default Setting None Command Mode Privilege Exec User Exec Display Messa...

Page 133: ...for which the switch has forwarding or filtering information The format is twodigit hexadecimal numbers that are separated by colons for example 33 33 45 67 89 AB Type The type of entry which is eithe...

Page 134: ...configuration command Syntax clear mld snooping Default Setting None Command Mode Privilege Exec 6 2 8 8 ipv6 mld snooping interfacemode The user can go to the CLI Global Interface Configuration Mode...

Page 135: ...mode Syntax ipv6 mld snooping fast leave no ipv6 mld snooping fast leave Default Setting Disabled Command Mode Global Config Interface Config 6 2 8 10 ipv6 mld snooping groupmembershipinterval The us...

Page 136: ...no ipv6 mld snooping mcrtrexpiretime 0 3600 The range is 0 to 3600 seconds A value of 0 indicates an infinite time out i e no expiration Default Setting 0 Command Mode Global Config Interface Config 6...

Page 137: ...g static macaddr vlan vlan id interface slot port no ipv6 mld snooping static macaddr vlan vlan id interface slot port macaddr Static MAC address vlanid VLAN ID Range 1 4093 slot port Interface number...

Page 138: ...ax set mld fast leave vlanid no set mld fast leave vlanid vlanid VLAN ID Range 1 4093 Default Setting Disabled Command Mode VLAN database 6 2 8 16 set mld groupmembership interval The user can go to t...

Page 139: ...response time vlanid vlanid VLAN ID Range 1 4093 1 65 This value must be less than the MLD Query Interval time value The range is 1 to 65 seconds Default Setting 10 Command Mode VLAN database 6 2 8 1...

Page 140: ...ueries This address is used when no address is configured on the VLAN on which query is being sent Querier Address Specify the Snooping Querier Address to be used as source address in periodic MLD que...

Page 141: ...ier will participate in querier election where in the least ip address will win the querier election and operates as the querier in that VLAN The other querier moves to non querier state Querier Elect...

Page 142: ...nooping The default is disable Querier Address Specify the Snooping Querier Address to be used as source address in periodic MLD queries This address is used when no address is configured on the VLAN...

Page 143: ...tax ipv6 mld snooping querier no ipv6 mld snooping querier Default Setting Disabled Command Mode Global Config 6 2 9 5 ipv6 mld snooping querier address The user can go to the CLI Global Configuration...

Page 144: ...ipv6 mld snooping querier querier interval 1 1800 no ipv6 mld snooping querier querier interval 1 1800 set MLD snooping querier query interval Default Setting 60 Command Mode Global Config 6 2 9 7 ip...

Page 145: ...ooping querier vlan vlanid vlanid VLAN ID Range 1 4093 Default Setting Disabled Command Mode Global Config 6 2 9 9 ipv6 mld snooping querier vlan address The user can go to the CLI Global Configuratio...

Page 146: ...o to the CLI Global Configuration Mode to set MLD snooping querier vlan election participate mode use the ipv6 mld snooping querier vlan election participate vlanid global configuration command Use th...

Page 147: ...port channel Link State This field indicates whether the link is up or down Trap Flag This object determines whether or not to send a trap when link status changes The factory default is enabled Type...

Page 148: ...lly maintained Load Balance Option This field displays the load balance status whether a particular port channel LAG is maintained Mbr Ports A listing of the ports that are members of this port channe...

Page 149: ...The value of device timeout should be short 1 second or long 30 seconds Port Speed Speed of the port channel port Port Active This field lists the ports that are actively participating in the port ch...

Page 150: ...all no This command disables a port channel LAG The option all sets every configured port channel with the same administrative mode setting Default Setting Enabled Command Mode Global Config 6 2 10 4...

Page 151: ...port channel The option all sets every configured port channel with the same administrative mode setting Syntax port channel linktrap logical slot port all no port channel linktrap logical slot port a...

Page 152: ...ion MAC addresses src ip Sets the mode on the source IP address dst ip Sets the mode on the destination IP address dst src ip Sets the mode on the source and destination IP addresses no Restore the mo...

Page 153: ...Layer 3 Managed Ethernet Switch _____________________________________________________________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 153 1246 Default Setting dst s...

Page 154: ...to 15 characters This command is used to modify the name that was associated with the port channel when it was created Syntax port channel name logical slot port all name logical slot port The port ch...

Page 155: ...Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 155 1246 6 2 10 9 adminmode This command enables a port channel LAG members The interface is a logical slot and port for a configured port c...

Page 156: ...es Link Aggregation Control Protocol LACP on a port Syntax lacp no lacp no This command disables Link Aggregation Control Protocol LACP on a port Default Setting Enabled Command Mode Interface Config...

Page 157: ...t Default Setting Interface Number Command Mode Interface Config This command set actor partner admin state value of Link Aggregation Control Protocol LACP on a port Syntax lacp actor partner admin st...

Page 158: ...partner port priority priority value range 0 65535 no This command restores actor partner port priority value of Link Aggregation Control Protocol LACP on a port Default Setting 128 Command Mode Inte...

Page 159: ...This command restores collector max delay time of Link Aggregation Control Protocol LACP on a port channel Default Setting 0 Command Mode Interface Config 6 2 10 12 channel group This command adds on...

Page 160: ...slot and port number of a configured port channel Syntax delete channel group logical slot port logical slot port Port Channel Interface number Default Setting None Command Mode Interface Config This...

Page 161: ...vileged Exec Display Message Intf Displays interface number Mode Displays status of storm control broadcast Rate Displays rate in pps packet per second for storm control broadcast Action Shutdown or s...

Page 162: ...ser Manual Page 162 1246 This command is used to display unicast storm control information Syntax show storm control unicast Default Setting None Command Mode Privileged Exec Display Message Intf Disp...

Page 163: ...full implementation is depicted in the Broadcast Storm Recovery Thresholds table Syntax storm control broadcast no storm control broadcast no This command disables broadcast storm recovery mode on the...

Page 164: ...orm recovery mode on the selected interface Syntax storm control multicast no storm control multicast no This command disables multicast storm recovery mode on the selected interface Default Setting N...

Page 165: ...st storm recovery mode on the selected interface Syntax storm control unicast no storm control unicast no This command disables unicast storm recovery mode on the selected interface Default Setting No...

Page 166: ...cast traffic on each port Syntax switchport broadcast rate 1 14880000 1 14880000 Specify the threshold for broadcast traffic Note pps packet per second Default Setting 4160 Command Mode Interface Conf...

Page 167: ...cast traffic on each port Syntax switchport multicast rate 1 14880000 1 14880000 Specify the threshold for multicast traffic Note pps packet per second Default Setting 4160 Command Mode Interface Conf...

Page 168: ...unicast traffic on each port Syntax switchport unicast rate 1 14880000 1 14880000 Specify the threshold for unicast traffic Note pps packet per second Default Setting 4160 Command Mode Interface Confi...

Page 169: ...169 1246 6 2 12 L2 Priority 6 2 12 1 show queue cos map This command displays the class of service priority map on specific interface Syntax show queue cos map slot port slot port Interface number Def...

Page 170: ...2 12 2 queue cos map This command is used to assign class of service CoS value to the CoS priority queue Syntax queue cos map priority queue id no queue cos map queue id The queue id of the CoS priori...

Page 171: ...ault Setting None Command Mode Privileged Exec Display Message Session ID indicates the session ID Admin Mode indicates whether the Port Monitoring feature is enabled or disabled The possible values a...

Page 172: ...option the destination port monitors both ingress and egress packets Use the destination interface slot port to specify the interface to receive the monitored traffic Syntax port monitor session sessi...

Page 173: ...ession mode This command configures the mode parameter to enabled the administrative mode of the session If enabled the probe port monitors all the traffic received and transmitted on the physical mon...

Page 174: ...r Manual Page 174 1246 6 2 14 Link State 6 2 14 1 show link state Show link state information Syntax show link state Command Mode Global Config Display Message Admin Mode the link state admin mode Gro...

Page 175: ...state to enable the admin mode of redundant function and use no command to disable the function Create Destroy the link state group Use link state group to create a group Use no command to destroy the...

Page 176: ...d Ethernet SwitchUser Manual Page 176 1246 6 2 14 3 link state group Set upstream port or downstream port for a link state group Use link state group group id upstream to set the port to be monitored...

Page 177: ...ckup information Syntax show port backup Command Mode Privileged EXEC Display Message Admin Mode Indicates whether or not port backup is active on the switch Group ID The Group ID for each displayed r...

Page 178: ...nd use no command to disable a group Enable Disable a port backup group support the mac move update Use port backup group group id mac move update to enable individual group and use no command to disa...

Page 179: ...the Ring Currently JetNet 7850G 2XG 6852G can act as member mode of single ring 6 2 16 1 show Rapid Super Ring This command configures the member ports of the Rapid Super Ring Member mode Syntax show...

Page 180: ...rapid super ring no rapid super ring rapid super ring This is to enable the Rapid Super Ring Member mode no This command sets administrative mode of Rapid Super Ring Member mode to disabled Default Se...

Page 181: ...ress The IP address of the interface The factory default value is 0 0 0 0 Subnet Mask The IP subnet mask for this interface The factory default value is 0 0 0 0 Default Gateway The default gateway for...

Page 182: ...t IP Filter Address Table The admin mode status for IP filter Index The index of stations IP Address The IP address of stations that are allowed to make configuration changes to the Switch 6 3 1 3 mtu...

Page 183: ...nid vlanid VLAN ID Range 1 4093 Default Setting None Command Mode Global Config 6 3 1 5 ip address This command sets the IP Address and subnet mask The IP Address and the gateway must be on the same s...

Page 184: ...gateway gateway IP address of the default gateway no Restore the default IP address of the default gateway Default Setting IP address 0 0 0 0 Command Mode Global Config 6 3 1 7 ip address protocol Th...

Page 185: ...1246 6 3 1 8 ip filter This command is used to enable the IP filter function Syntax ip filter no ip filter no Disable ip filter Default Setting Disabled Command Mode Global Config This command is used...

Page 186: ...e 1200 2400 4800 9600 19200 38400 57600 and 115200 bauds Character Size The number of bits in a character The number of bits is always 8 Flow Control Whether Hardware Flow Control is enabled or disabl...

Page 187: ...o enter Line configuration mode Syntax line console Default Setting None Command Mode Global Config 6 3 2 3 baudrate This command specifies the communication rate of the terminal interface The support...

Page 188: ...ected indefinitely The time range is 0 to 160 Syntax exec timeout 0 160 0 160 max connect time Range 0 160 0 forever no This command sets the maximum connect time in minutes without console activity t...

Page 189: ...essible after the number of unsuccessful logon tries exceeds the threshold value Syntax silent time 0 65535 0 65535 silent time Range 0 65535 in seconds no This command sets the maximum value to the d...

Page 190: ...535 where the default value is 23 debug Display current enabled telnet options line Set the outbound telnet operational mode as linemode where by default the operational mode is character mode localec...

Page 191: ...hen set to no The factory default value is yes Telnet Server Admin Mode The telnet server admin mode status The factory default is enable Password Threshold When the logon attempt threshold is reached...

Page 192: ...0 Changing the timeout value for active sessions does not become effective until the session is reaccessed Any keystroke will also activate the new timeout duration Syntax exec timeout 1 160 no exec t...

Page 193: ...Syntax terminal length 10 100 10 100 Columns per page Range 10 100 no This command sets the value to the default Default Setting 24 Command Mode Line Vty 6 3 3 7 maxsessions This command specifies th...

Page 194: ...no server enable no This command disables telnet server If telnet server is disabled all telnet sessions are droped Default Setting Enabled Command Mode Line Vty 6 3 3 9 sessions This command regulate...

Page 195: ...an be established An established session remains active until the session is ended or an abnormal network error ends it Syntax telnet sessions no telnet sessions no This command disables new outbound...

Page 196: ...mmand sets the outbound telnet session timeout value in minute Changing the timeout value for active sessions does not become effective until the session is reaccessed Any keystroke will also activate...

Page 197: ...w telnet Default Setting None Command Mode Privileged Exec User Exec Display Message Outbound Telnet Login Timeout in minutes Indicates the number of minutes an outbound telnet session is allowed to r...

Page 198: ...6 3 4 1 ssh This command establishes a new outbound ssh connection to a remote host Syntax ssh ip address hostname username port 1 65535 protocol protocollevel protocol protocollevel port 1 65535 ip a...

Page 199: ...n can be established An established session remains active until the session is ended or an abnormal network error ends it Syntax sshc sessions no sshc sessions no This command disables new outbound s...

Page 200: ...x connect time Range 1 160 no This command sets the remote connection session timeout value in minutes to the default Default Setting 5 Command Mode Global Config 6 3 4 5 show sshc This command displa...

Page 201: ...d SSH connection Syntax ssh ip address hostname username port 1 65535 protocol protocollevel ip address hostname The destination host ip address or host name This field is required username The userna...

Page 202: ...this entry grants access A valid entry is a case sensitive alphanumeric string of up to 16 characters Each row of this table must contain a unique community name Client IP Address An IP address or po...

Page 203: ...nk Up Down Flag May be enabled or disabled The factory default is enabled Indicates whether link status traps will be sent Multiple Users Flag May be enabled or disabled The factory default is enabled...

Page 204: ...the switch The range for name is from 1 to 31 alphanumeric characters Syntax snmp server sysname name name Range is from 1 to 31 alphanumeric characters Default Setting None Command Mode Global Config...

Page 205: ...ndustrial Layer 3 Managed Ethernet SwitchUser Manual Page 205 1246 6 3 5 5 snmp server contact This command sets the organization responsible for the network The range for contact is from 1 to 31 alph...

Page 206: ...ame from the table The name is the community name to be deleted Default Setting Two default community names public and private You can replace these default community names with unique identifiers for...

Page 207: ...lue of 255 255 255 255 will allow access from only one station and will use that machine s IP address for the client IP Address A value of 0 0 0 0 will allow access from any IP address The name is the...

Page 208: ...ng with the client IP mask value to denote a range of IP addresses from which SNMP clients may use that community to access the device A value of 0 0 0 0 allows access from any IP address Otherwise th...

Page 209: ...pflags no snmp server enable traps acl trapflags no This command disables the acl trap Default Setting Disabled Command Mode Global Config This command enables the Authentication trap Syntax snmp serv...

Page 210: ...nabled see snmp trap link status command Syntax snmp server enable traps linkmode no snmp server enable traps linkmode no This command disables Link Up Down traps for the entire switch Default Setting...

Page 211: ...bad packet virt config error if rx all if rx packet lsa all lsa maxage lsa originate overflow all lsdb overflow lsdb approaching overflow retransmit all packets virt packets rtb all rtb entry info sta...

Page 212: ...nge all if state change neighbor state change virtif statechange virtneighbor state change no snmp server enable traps ospfv3 all errors all authentication failure bad packet config error virtauthenti...

Page 213: ...3 Managed Ethernet SwitchUser Manual Page 213 1246 This command enables the sending of new root traps and topology change notification traps Syntax snmp server enable traps stpmode no snmp server ena...

Page 214: ...ric characters This string is case sensitive IP Address Hostname The IP or IPv6 Address or domain name to receive SNMP Informs from this device SNMP Version The trap version to be used by the receiver...

Page 215: ...Page 215 1246 6 3 6 2 snmptrap snmpversion This command configures the version for snmp trap Syntax snmptrap snmpversion name ipAddr ipv6Addr hostname snmpversion name SNMP trap name Range up to 16 c...

Page 216: ...nmpserver enable traps linkmode command Syntax snmp trap link status no snmp trap link status no This command disables link status traps by interface Default Setting Disabled Command Mode Interface Co...

Page 217: ...The maximum length of the name is 16 case sensitive alphanumeric characters Syntax snmptrap name ipAddr ipv6Addr hostname port port snmpversion snmpversion no snmptrap name ipAddr ipv6Addr hostname na...

Page 218: ...maximum length of name is 16 case sensitive alphanumeric characters IP addresses in the SNMP trap receiver table must be unique for the same community name If you make multiple entries using the same...

Page 219: ...rap mode name ipAddr ipv6Addr hostname name SNMP trap name ipAddr ipv6Addr hostname an IPv4 or IPv6 address or hostname no This command deactivates an SNMP trap Trap receivers are inactive not able to...

Page 220: ..._____________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 220 1246 6 3 6 8 snmp server enable informs This command enables snmp inform Syntax snmp server enable informs...

Page 221: ...rver inform retries retries no snmp server informs retries retries Number of times to retry an Inform request The range is between 0 and 100 no This command resets snmp inform retries Default Setting...

Page 222: ...MP The maximum length of the name is 24 characters no This command removes snmp engineID Default Setting None Command Mode Global Config 6 3 6 11 snmp server user This command configures snmp server u...

Page 223: ...should SNMP Inform wait when not success SNMP Inform Name The community string of the SNMP trap packet sent to the trap manager This may be up to 16 alphanumeric characters This string is case sensiti...

Page 224: ...orm receiver version SNMP inform version SNMPv2 or SNMPv3 Default Setting SNMPv2 Command Mode Global Config 6 3 7 3 snmpinform name ipAddr ipv6Addr hostname version snmpversion This command adds an SN...

Page 225: ...16 case sensitive alphanumeric characters IP addresses in the SNMP inform receiver table must be unique for the same community name or user name If you make multiple entries using the same IP address...

Page 226: ...Enabled inform receivers are active able to receive informs Disabled inform receivers are inactive not able to receive informs Syntax snmpinform mode name ipAddr ipv6Addr hostname no snmpinform mode n...

Page 227: ...the port configured for HTTP HTTP Mode Secure This field indicates whether the administrative mode of secure HTTP is enabled or disabled Secure Port This field specifies the port configured for SSLT S...

Page 228: ...the Web interface When access is disabled the user cannot view the Java applet Syntax ip javamode no ip javamode no This command disallows access to the Java applet in the header frame of the Web inte...

Page 229: ...Web server Disabling the Web interface takes effect immediately All interfaces are affected Syntax ip http server no ip http server no This command disables access to the switch through the Web interf...

Page 230: ...d to disable the secure socket layer for secure HTTP Default Setting Disabled Command Mode Global Config 6 3 8 7 ip http secure protocol This command is used to set protocol levels versions The protoc...

Page 231: ...icates whether the administrative mode of SSH is enabled or disabled Protocol Levels The protocol level may have the values of version 1 version 2 or both versions SSH Sessions Currently Active This f...

Page 232: ...ax ip ssh no ip ssh no This command is used to disable SSH Default Setting Disabled Command Mode Global Config 6 3 9 3 ip ssh protocol This command is used to set or remove protocol levels or versions...

Page 233: ...2 Command Mode Global Config 6 3 9 5 ip ssh timeout This command sets the SSH connection session timeout value in minutes A session is active as long as the session has been idle for the value set A v...

Page 234: ...HTTPS Syntax crypto certificate generate no crypto certificate generate no This command is used to delete the HTTPS certificate file from the device regardless of whether they are self signed or down...

Page 235: ...ient request Syntax ip dhcp restart Default Setting None Command Mode Global Config 6 3 11 2 ip dhcp client identifier This command is used to specify the DCHP client identifier for this switch Use th...

Page 236: ...cifies the network of IPv6 configuration protocol to be used If you modify this value the change is effective immediately Syntax ipv6 address protocol dhcp6 none dhcp6 Obtains IPv6 address from DHCPv6...

Page 237: ...effective immediately Syntax serviceport protocol bootp dhcp dhcp6 none dhcp6 bootp Obtains IP address from BOOTP dhcp Obtains IP address from DHCP dhcp6 Obtains IPv6 address from DHCPv6 none Obtains...

Page 238: ...me since the client was powered up Packets will only be forwarded when the time stamp exceeds the minimum wait time Admin Mode Administrative mode of the relay When you select enable BOOTP DHCP reques...

Page 239: ...thernet SwitchUser Manual Page 239 1246 6 3 13 2 bootpdhcprelay maxhopcount This command is used to set the maximum relay agent hops for BootP DHCP Relay on the system Syntax bootpdhcprelay maxhopcoun...

Page 240: ...Uniquely identifies the version and implementation of this MIB IP Address The IP address associated with this agent 6 3 14 2 show sflow pollers The user can go to the CLI Privilege Exec to get the sF...

Page 241: ...s Privilege command Syntax show sflow receivers Default Setting None Command Mode Privilege Exec Display Message Receiver Index The sFlow Receiver associated with the sampler poller Owner String The i...

Page 242: ...the switch use the show sflow samplers Privilege command Syntax show sflow samplers Default Setting None Command Mode Privilege Exec Display Message Sampler Data Source The sFlowDataSource slot port...

Page 243: ...to a higher sub layer Broadcast Packets Received Rate The number of broadcast packets rate delivered by this sub layer to a higher sub layer Discarded Packets Received Rate The number of inbound packe...

Page 244: ...interface configuration command Use the no sflow rate return to default value zero Syntax sflow rate 0 3600 no sflow rate Default Setting 0 Command Mode Global Config 6 3 14 7 set sflow maximum heade...

Page 245: ...global configuration command Use the no sflow receiver index maxdatagram return to default value 1400 Syntax sflow receiver index maxdatagram 200 9116 no sflow receiver index maxdatagram Default Setti...

Page 246: ...535 global configuration command Use the no sflow collector port return to default UDP port 6343 Syntax sflow receiver index port 1 65535 no sflow receiver index port Default Setting 6343 Command Mode...

Page 247: ...ance use the sflow sampler index interface configuration command Use the no sflow sampler return to default setting Syntax sflow sampler index no sflow sampler Default Setting None Command Mode Interf...

Page 248: ...fault value is 0 0 0 0 Default Gateway The default gateway for this IP interface The factory default value is 0 0 0 0 IPv6 Administrative Mode Whether enabled or disabled Default value is enabled IPv6...

Page 249: ...n the last Reachable Time milliseconds that the forward path to the neighbor was functioning properly While in REACH state the device takes no special action as packets are sent Stale More than Reacha...

Page 250: ...port configuration protocol If you modify this value the change is effective immediately If you use the bootp parameter the switch periodically sends requests to a BootP server until a response is rec...

Page 251: ...ort Default Setting None Command Mode Global Config 6 3 15 6 serviceport ipv6 address Use this command to configure IPv6 global addressing i e Default routers information for the service port Syntax s...

Page 252: ...Syntax serviceport ipv6 gateway gateway address no serviceport ipv6 gateway gateway address Gateway address in IPv6 global or link local address format no This command remove IPv6 gateways on the serv...

Page 253: ...ACL 6 3 16 1 Show Commands 6 3 16 1 1 show time range Use this command to display a time range and all the absolute periodic time entries that are defined for the time range Use the name parameter to...

Page 254: ...or one or more periodic time entries The name parameter is a case sensitive alphanumeric string from 1 to 31 characters that uniquely identifies the time range An alpha numeric string is defined as co...

Page 255: ...ing into effect The time is expressed in a 24 hour clock in the form of hours minutes For example 8 00 is 8 00 am and 20 00 is 8 00 pm The date is expressed in the format day month year If no start ti...

Page 256: ...gument can be any single day or combinations of days Monday Tuesday Wednesday Thursday Friday Saturday Sunday Other possible values are daily Monday through Sunday weekdays Monday through Friday weeke...

Page 257: ...ng tree Default Setting None Command Mode Privileged Exec Display Message Bridge Priority Configured value Bridge Identifier The MAC Address for the Bridge from which the Bridge Identifiers used by th...

Page 258: ...Associated VLANs List of VLAN IDs currently associated with this instance 6 4 1 2 show spanning tree interface This command displays the settings and parameters for a specific switch port within the...

Page 259: ...tocol Bridge Protocol Data Units received MSTP BPDUs Transmitted Multiple Spanning Tree Protocol Bridge Protocol Data Units sent MSTP BPDUs Received Multiple Spanning Tree Protocol Bridge Protocol Dat...

Page 260: ...ge MST Instance ID The multiple spanning tree instance ID MST Bridge Priority The bridge priority of current MST MST Bridge Identifier The bridge ID of current MST Time Since Topology Change In second...

Page 261: ...e identifiers associated with this instance Associated VLANs List of VLAN IDs associated with this instance This command displays the detailed settings and parameters for a specific switch port within...

Page 262: ...The configured path cost for the specified interface Auto calculate External Port Path Cost Displays whether the external path cost is automatically calculated Enabled or not Disabled External Path c...

Page 263: ...ry is displayed for one or all ports within the common and internal spanning tree Syntax show spanning tree mst port summary 0 4094 slot port active 0 4094 multiple spanning tree instance ID slot port...

Page 264: ...mand Mode Privileged Exec Display Message Spanning Tree Adminmode Enabled or disabled Spanning Tree Forward BPDU Enabled or disabled Spanning Tree Version Version of 802 1 currently supported IEEE 802...

Page 265: ...for the bridge In this case the following details are displayed Syntax show spanning tree brief Default Setting None Command Mode Privileged Exec Display Message Bridge Priority Configured value Brid...

Page 266: ...abled the spanning tree configuration is retained and can be changed but is not activated Default Setting Disabled Command Mode Global Config 6 4 2 2 spanning tree protocol migration This command enab...

Page 267: ...and resets the Configuration Identifier Name to its default Default Setting The base MAC address displayed using hexadecimal notation as specified in IEEE 802 standard Command Mode Global Config This...

Page 268: ...802 1s functionality supported Syntax spanning tree mode stp rstp mstp no spanning tree mode no This command sets the Force Protocol Version parameter to the default value that is mstp Default Setting...

Page 269: ...e Hello Time 1 Syntax spanning tree max age 6 40 no spanning tree max age 6 40 the Bridge Max Age value Range 6 40 no This command sets the Bridge Max Age parameter for the common and internal spannin...

Page 270: ...spanning tree to the default value Default Setting 6 Command Mode Global Config 6 4 2 9 spanning tree mst This command adds a multiple spanning tree instance to the switch The instance 1 4094 is a nu...

Page 271: ...panning tree mst priority 0 4094 0 61440 no spanning tree mst priority 0 4094 0 4094 multiple spanning tree instance ID 0 61440 priority value Range 0 61440 no This command sets the bridge priority fo...

Page 272: ...his command sets the path cost for this port within a multiple spanning tree instance or the common and internal spanning tree instance depending on the 1 4094 parameter The pathcost can be specified...

Page 273: ...epending on the 1 4094 parameter The port priority value is a number in the range of 0 to 240 in increments of 16 Syntax spanning tree mst 1 4094 port priority 0 240 no spanning tree mst 1 4094 port p...

Page 274: ...ort to enabled Syntax spanning tree port mode no spanning tree port mode no This command sets the Administrative Switch Port State for this port to disabled Default Setting Disabled Command Mode Inter...

Page 275: ...port to enabled Syntax spanning tree auto edge no spanning tree auto edge no This command sets the auto edge for this port to disabled Default Setting Disabled Command Mode Interface Config 6 4 2 12...

Page 276: ...delay Syntax spanning tree edgeport no spanning tree edgeport no This command specifies that this port is not an Edge Port within the common and internal spanning tree Default Setting None Command Mod...

Page 277: ...tax spanning tree edgeport bpduguard no spanning tree edgeport bpduguard no This command sets the Edgeport BPDU Guard to the default value that is Disabled Default Setting Disabled Command Mode Global...

Page 278: ...ot1d mode Syntax spanning tree bpduguard no spanning tree bpduguard no This command sets the Edgeport BPDU Guard to the default value that is Disabled Default Setting Disabled Command Mode Interface C...

Page 279: ...ets the Guard Mode to loop guard on this interface none This command sets the Guard Mode to none root This command sets the Guard Mode to root guard on this interface no This command sets the Guard Mo...

Page 280: ...ode for console logging Console Logging Severity Filter The minimum severity to log to the console log Messages with an equal or lower numerical severity are logged Buffered Logging The mode for buffe...

Page 281: ...The message that has been logged i Message log information is not retained across a switch reset 6 5 1 3 show logging traplog This command displays the trap log maintained by the switch The trap log c...

Page 282: ...witch reset 6 5 1 4 show logging hosts This command displays all configured logging hosts Syntax show logging hosts Default Setting None Command Mode Privileged Exec Display Message Index used for del...

Page 283: ...in memory log where up to 128 logs are kept Syntax logging buffered no logging buffered no This command disables logging to in memory log Default Setting None Command Mode Global Config This command e...

Page 284: ...e following keywords emergency 0 alert 1 critical 2 error 3 warning 4 notice 5 informational 6 debug 7 no This command disables logging to the console Default Setting None Command Mode Global Config 6...

Page 285: ...les logging for the terminal session Default Setting None Command Mode Privileged Exec 6 5 2 5 logging host This command enables logging to a host where up to eight hosts can be configured Syntax logg...

Page 286: ...286 1246 This command disables logging to hosts Syntax logging host remove hostindex hostindex Index of the log server Default Setting None Command Mode Globla Config This command reconfigures the IP...

Page 287: ...1246 6 5 2 6 logging syslog This command enables syslog logging Syntax logging syslog no logging syslog no Disables syslog logging Default Setting None Command Mode Globla Config This command sets the...

Page 288: ...________________________________________________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 288 1246 6 5 2 7 clear logging buffered This command clears all in memory lo...

Page 289: ...p the running configuration and then starts applying the commands in the script file Application of the commands stops at the first failure of a command Syntax script apply scriptname scriptname The n...

Page 290: ...ists all scripts present on the switch as well as the total number of files present Syntax script list Default Setting None Command Mode Privileged Exec Display Message Configuration Script Name The f...

Page 291: ...___________________________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 291 1246 6 6 4 script validate This command displays the content of a script file Syntax script v...

Page 292: ...ay be up to eight characters and is not case sensitive Two users are included as the factory default admin and guest User Access Mode Shows whether the operator is able to change parameters on the swi...

Page 293: ...ad write Lockout Status Indicates whether the user account is locked out true or false Password Expiration Date The current password expiration date in date format 6 7 1 3 show passwords configuration...

Page 294: ...passwords Minimum Password Numeric Characters Minimum number of numeric characters required when changing passwords Minimum Password Special Characters Minimum number of special characters required w...

Page 295: ...ht characters in length If a user is authorized for authentication or encryption is enabled the password must be eight alphanumeric characters in length The username and password are not case sensitiv...

Page 296: ...cation protocol to be used for the specified login user The valid authentication protocols are none md5 or sha If md5 or sha are specified the user login password will be used as the snmpv3 authentica...

Page 297: ...e The key may be up to 16 characters If the des protocol is specified but a key is not provided the user will be prompted to enter the key If none is specified a key must not be provided The username...

Page 298: ...in again when the local user s password expires Syntax passwords aging 1 365 no passwords aging 1 365 Number of days until password expires Default Setting 0 Command Mode Global Config 6 7 2 6 Set the...

Page 299: ...nfiguration command Use the no passwords lock out to return to default value 0 Syntax passwords lock out 1 5 no passwords lock out 1 5 the number of password failures before account lock Default Setti...

Page 300: ...strength check return to default disable Syntax passwords strength check no passwords strength check Default Setting Disable Command Mode Global Config 6 7 2 10 Set the password strength maximum The u...

Page 301: ...special characters uppercase letters return to default value 2 Syntax passwords strength minimum character classes lowercase letters numeric characters special characters uppercase letters 0 15 no pas...

Page 302: ...s all users and all authentication login information It also displays the authentication login list assigned to the default user Syntax show users authentication Default Setting None Command Mode Priv...

Page 303: ...thentication login listname Enable Authentication Method Lists This displays the authentication enable listname 6 8 1 3 show authentication users This command displays information about the users assi...

Page 304: ...lt Setting None Command Mode Privileged Exec Display Message Administrative mode Indicates whether authentication control on the switch is enabled or disabled VLAN Assignment Mode Indicates whether as...

Page 305: ...mand is used to display the Dot1x Authentication History Log for the specified port or all ports Syntax show dot1x authentication history all slot port Default Setting None Command Mode Privileged Exe...

Page 306: ...by the client to authenticate to the server Supp MAC Address The supplicant device MAC address Session Time The time since the supplicant is logged on VLAN Id The VLAN assigned to the port VLAN Assig...

Page 307: ...d ForceUnauthorized Backend Authentication State Current state of the backend authentication state machine Possible values are Request Response Success Fail Timeout Idle and Initialize Quiet Period Th...

Page 308: ...if reauthentication is enabled on this port Possible values are True or False Key Transmission Enabled Indicates if the key is transmitted to the supplicant for the specified port Possible values are...

Page 309: ...ator EAPOL Start Frames Received The number of EAPOL start frames that have been received by this authenticator EAPOL Logoff Frames Received The number of EAPOL logoff frames that have been received b...

Page 310: ...x configuration for a specified port or all ports Syntax show dot1x summary slot port slot port is the desired interface number no parameter All interfaces Default Setting None Command Mode Privileged...

Page 311: ...aged Ethernet SwitchUser Manual Page 311 1246 6 8 1 10 show dot1x users This command displays 802 1x port security user information for locally configured users Syntax show dot1x users slot port slot...

Page 312: ...or disabled Disable Reason If CP is disabled this field displays the reason which can be None Administratively Disabled No IPv4 Address or Routing Enabled but no IPv4 routing interface Captive Portal...

Page 313: ...IP address of the client if applicable Protocol Mode Shows the current connection protocol which is either HTTP or HTTPS Verification Mode Shows the current account type which is Guest Local or RADIUS...

Page 314: ...1 10 Syntax show captive portal configuration 1 10 Default Setting None Command Mode Privileged Exec Display Message CP ID Shows the captive portal ID CP Name Shows the captive portal name Operational...

Page 315: ...client status Default Setting None Command Mode Privileged Exec Display Message CP ID Shows the captive portal ID the connected client is using CP Name Shows the name of the captive portal the connec...

Page 316: ...face slot port Default Setting None Command Mode Privileged Exec Display Message CP ID Shows the captive portal ID CP Name Shows the captive portal name Interface Valid slot and port number separated...

Page 317: ...ges Locale Link The names of the languages 6 8 1 18 show captive portal configuration cp id status This command displays information of all configured captive portal configurations or a specific capti...

Page 318: ...have a session Timeout limit Idle Timeout seconds Shows the number of seconds the user can remain idle before the switch automatically logs the user out A value of 0 means that the user will not be l...

Page 319: ...number separated by a forward slash Interface Description Describes the interface Type Shows the type of interface If you use the optional slot port information the following additional information ap...

Page 320: ...face to configuration assignments for all captive portal configurations or a specific configuration Syntax show captive portal interface configuration 1 10 status Default Setting None Command Mode Pri...

Page 321: ...are reported in the Cluster Controller The reporting interval is in the range of 0 15 3600 seconds where 0 disables statistical reporting Authentication Timeout Displays the number of seconds to keep...

Page 322: ...Privileged Exec Display Message Client Authentication Failure Traps Shows whether the SNMP agent sends a trap when a client attempts to authenticate with a captive portal but is unsuccessful Client C...

Page 323: ...he user name Session Timeout Displays the number of seconds the user can remain in a session before being disconnected from the Captive Portal Idle Timeout Displays the number of seconds the user can...

Page 324: ...ng Server Groups The number of configured named RADIUS Accounting server groups Number of Retransmits The configured value of the maximum number of times a request packet is retransmitted Timeout Dura...

Page 325: ...ort The port in use by the RADIUS accounting server Secret Configured Yes or No If the optional token ipaddr ipv6addr hostname is included RADIUS Accounting Server IP Address IP Address of the configu...

Page 326: ...d RADIUS Accounting Response packets received from this server Malformed packets include packets with an invalid length Bad authenticators and unknown types are not included as malformed accounting re...

Page 327: ...quest packet is retransmitted Timeout Duration The configured timeout value in seconds for request re transmissions RADIUS Accounting Mode A global parameter to indicate whether the accounting mode fo...

Page 328: ...between the most recent Access Reply Access Challenge and the Access Request that matched it from the RADIUS authentication server Access Requests The number of RADIUS Access Request packets sent to...

Page 329: ...ets Dropped The number of RADIUS packets received from this server on the authentication port and dropped for some other reason 6 8 1 29 show tacacs This command display configured information and sta...

Page 330: ...User Manual Page 330 1246 6 8 1 30 show ldap Use this command to display LDAP configuration Syntax show ldap Default Setting None Command Mode Privileged Exec User Exec Display Message Server Ip The I...

Page 331: ...ec Display Message Port Security Administration Mode Port lock mode for the entire system This command shows the port security settings for a particular interface or all interfaces Syntax show port se...

Page 332: ...dynamic slot port Default Setting None Command Mode Privileged Exec Display Message MAC address Dynamically locked MAC address This command shows the statically locked MAC addresses for port Syntax s...

Page 333: ...___ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 333 1246 This command displays the source MAC address of the last packet that was discarded on a locked port Syntax show port security vi...

Page 334: ...ted The value of tacacs indicates that the user s ID and password will be authenticated using the TACACS The value of ldap indicates that the user s ID and password will be authenticated using the LDA...

Page 335: ...mand assigns the authentication login list to use for non configured users when attempting to log in to the system This setting is overridden by the authentication login list assigned to a specific us...

Page 336: ...he username must be a configured username and the listname must be a configured login list If the user is assigned a login list that requires remote authentication all access to the interface from all...

Page 337: ...thenticator PAE unconditionally sets the controlled port to unauthorized force authorized The authenticator PAE unconditionally sets the controlled port to authorized auto The authenticator PAE sets t...

Page 338: ...nditionally sets the controlled port to authorized auto The authenticator PAE sets the controlled port mode to reflect the outcome of the authentication exchanges between the supplicant authenticator...

Page 339: ...system auth control monitor no dot1x system auth control monitor no This command is used to disable the dot1x authentication support on the switch Default Setting Disabled Command Mode Global Config 6...

Page 340: ...AN capability on this interface Default Setting Disabled Command Mode Interface Config 6 8 3 6 dot1x max req This command sets the maximum number of times the authenticator state machine on this port...

Page 341: ...tation If no dot1x max users command is executed the system will reset the maximum users to infinity If the maximum users is specified or modified the system should use the new one Syntax dot1x max us...

Page 342: ...supplicant for the specified port Syntax dot1x re authentication no dot1x re authentication no This command disables re authentication of the supplicant for the specified port Default Setting Disabled...

Page 343: ...set the authentication mode on the specified port Syntax dot1x supplicant port control auto force authorized force unauthorized no dot1x supplicant port control Default Setting auto Command Mode Inte...

Page 344: ...is command configure the held period value Syntax dot1x supplicant timeout held period seconds no dot1x supplicant timeout held period seconds Range 1 65535 Default Setting 60 Command Mode Interface C...

Page 345: ...n has been configured on that specific port reauth period Sets the value in seconds of the timer used by the authenticator state machine on this port to determine when re authentication of the supplic...

Page 346: ...Value in the range 0 65535 no This command sets the value in seconds of the timer used by the authenticator state machine on this port to the default values Depending on the token used the correspondi...

Page 347: ...e portal Default Setting Command Mode Global Config 6 8 4 2 captive portal authentication timeout This command configures the authentication timeout If the captive portal user does not enter valid cre...

Page 348: ...l configuration identified by CP ID 1 is the default CP configuration You can create up to nine additional captive portal configurations The system supports a total of ten CP configurations The Captiv...

Page 349: ...of 0 65535 excluding port numbers 80 and 443 which are reserved The HTTP port default is 0 which denotes no additional port and the default port 80 is used Syntax http port 0 65535 no http port Defau...

Page 350: ...ptional parameters Syntax trapflags client auth failure client connect client db full client disconnect no trapflags client auth failure client connect client db full client disconnect Default Setting...

Page 351: ...range of 1 to 128 The timeout variable is a number that represents the idle timeout in seconds Use 0 to indicate that the timeout is not enforced Syntax user 1 128 idle timeout 0 900 no user 1 128 id...

Page 352: ...denotes using the default value configured for the captive portal Syntax user 1 128 max bandwidth up 0 536870911 no user 1 128 max bandwidth up Default Setting 0 Command Mode Captive Portal Config 6...

Page 353: ...note unlimited transmission Syntax user 1 128 max output octets 0 4294967295 no user 1 128 max output octets Default Setting 0 Command Mode Captive Portal Config 6 8 4 14 Captive Portal max total allo...

Page 354: ...characters The username variable is the name of the user and can have up to 32 alphanumeric characters Syntax user 1 128 name name Default Setting None Command Mode Captive Portal Config 6 8 4 16 Capt...

Page 355: ...ptive portal configuration The timeout variable is a number that represents the session timeout in seconds Use 0 to indicate that the timeout is not enforced Syntax user 1 128 session timeout 0 86400...

Page 356: ...t the destination group must already exist before a move is successful The group id and destination group id variables are each a number in the range of 1 10 Syntax user group 1 10 moveusers destinati...

Page 357: ...Portal authentication page using a wellknown color name or RGB value For example red or RGB hex code i e FF0000 The range of colorcode is 1 32 characters Syntax background color color code no backgrou...

Page 358: ...ual Page 358 1246 6 8 4 23 Captive Portal clear configuration This command sets the configuration for this instance to the default values Syntax clear Default Setting None Command Mode Captive Portal...

Page 359: ...lknown color name or RGB value For example red or RGB hex code i e FF0000 The range of colorcode is 1 32 characters Syntax foreground color color code no foreground color Default Setting 999999 Comman...

Page 360: ...onfiguration The timeout variable is a number that represents the idle timeout in seconds Use 0 to indicate that the timeout is not enforced Syntax idle timeout 0 900 no idle timeout Default Setting 0...

Page 361: ...e and customize captive portal web content The command is primarily used by the FASTPATH show running config command and process as it provides the ability to save and restore configurations using a t...

Page 362: ...nt can send data into the network Syntax max bandwidth up 0 536870911 no max bandwidth up Default Setting 0 Command Mode Captive Portal Instance 6 8 4 32 Captive Portal configuration max bytes allowed...

Page 363: ...isconnected If the value is set to 0 then the limit is not enforced Syntax max output octets 0 4294967295 no max output octets Default Setting 0 Command Mode Captive Portal Instance 6 8 4 34 Captive P...

Page 364: ...This command configures the name for a captive portal configuration The name can contain up to 32 alphanumeric characters Syntax name cp name no name Default Setting None Command Mode Captive Portal...

Page 365: ...uthentication server Use this command to configure a captive portal configuration RADIUS authentication server Syntax radius auth server server name no radius auth server Default Setting Disable Comma...

Page 366: ...if the URL Redirect Mode is enabled This command is only available if the redirect mode is enabled Syntax redirect url url Default Setting None Command Mode Captive Portal Instance 6 8 4 40 Captive Po...

Page 367: ...ation The timeout variable is a number that represents the session timeout in seconds Use 0 to indicate that the timeout is not enforced Syntax session timeout no session timeout Default Setting 0 Com...

Page 368: ...e one of the following Guest The user does not need to be authenticated by a database Local The switch uses a local database to authenticated users RADIUS The switch uses a database on a remote RADIUS...

Page 369: ...eptance text This command is to Captive Portal configuration user acceptance text Syntax accept text UTF 16 no accept text Default Setting None Command Mode Captive Portal Locale Mode 6 8 4 46 Captive...

Page 370: ...l name for accounting identification This command is to Captive Portal configuration label name for accounting identification Syntax account label UTF 16 no account label Default Setting None Command...

Page 371: ...appearence This command is to Captive Portal configuration image name for background appearence Syntax background image image name no background image Default Setting None Command Mode Captive Portal...

Page 372: ...ve Portal text intended for browser title This command is to Captive Portal configuration text intended for browser title Syntax browser title UTF 16 no browser title Default Setting None Command Mode...

Page 373: ...1246 6 8 4 53 Captive Portal locale code This command is to Captive Portal configuration locale code Syntax code locale code no code Default Setting None Command Mode Captive Portal Locale Mode 6 8 4...

Page 374: ...preferred fonts for this locale This command is to Captive Portal configuration preferred fonts for this locale Syntax font list font font no font list Default Setting None Command Mode Captive Portal...

Page 375: ...ion This command is to Captive Portal configuration locale link text for user identification Syntax link UTF 16 no link Default Setting None Command Mode Captive Portal Locale Mode 6 8 4 58 Captive Po...

Page 376: ...on This command is to Captive Portal configuration text for logout button Syntax logout button label UTF 16 no logout button label Default Setting None Command Mode Captive Portal Locale Mode 6 8 4 60...

Page 377: ...figuration image name for background appearence Syntax logout success background image image name no logout success background image Default Setting None Command Mode Captive Portal Locale Mode 6 8 4...

Page 378: ...ss content This command is to Captive Portal configuration text for logout success content Syntax logout success text UTF 16 no logout success text Default Setting None Command Mode Captive Portal Loc...

Page 379: ...ortal text for logout instructions This command is to Captive Portal configuration text for logout instructions Syntax logout text UTF 16 no logout text Default Setting None Command Mode Captive Porta...

Page 380: ...is command is to Captive Portal configuration text to remind user to allow popups from our web site Syntax popup text UTF 16 no popup text Default Setting None Command Mode Captive Portal Locale Mode...

Page 381: ...sage indicating authentication timeout This command is to Captive Portal configuration error message indicating authentication timeout Syntax timeout msg UTF 16 no timeout msg Default Setting None Com...

Page 382: ...4 71 Captive Portal user input label This command is to Captive Portal configuration user input label Syntax user label UTF 16 no user label Default Setting None Command Mode Captive Portal Locale Mod...

Page 383: ...to greet user This command is to Captive Portal configuration main title used to greet user Syntax welcome title UTF 16 no welcome title Default Setting None Command Mode Captive Portal Locale Mode 6...

Page 384: ...accounting mode no radius accounting mode no This command is used to set the RADIUS accounting function to the default value that is the RADIUS accounting function is disabled Default Setting Disable...

Page 385: ...radius server Syntax radius server attribute 4 ipaddr no radius server attribute 4 no use this command to reset the NAS IP address for the radius server Default Setting None Command Mode Global Config...

Page 386: ...nfigure the UDP port number to use to connect to the configured RADIUS server In order to configure the UDP port number the IP address must match that of a previously configured RADIUS authentication...

Page 387: ...IP address of the previously configured RADIUS authentication accounting server Default Setting None Command Mode Global Config 6 8 4 82 radius sever key This command is used to configure the shared s...

Page 388: ...15 no This command sets the maximum number of times a request packet is re transmitted when no response is received from the RADIUS server to the default value that is 4 Default Setting 4 Command Mod...

Page 389: ...ADIUS authentication server for this RADIUS client The primary server is the one that is used by default for handling RADIUS requests The remaining configured servers are only used if the primary serv...

Page 390: ...er host ip address ipv6Addr hostname no tacacs server host ip address ipv6Addr hostname ip address hostname The IPv4 v6 address or hostname of the TACACS server no This command is used to remove all o...

Page 391: ...uthentication and encryption key Syntax key key string encrypted key string Note that the length of the secret key is up to 128 characters key string The valid value of the key encrypted the key strin...

Page 392: ...st priority Syntax priority priority priority The valid priority number Range 0 65535 Default Setting 0 Command Mode TACACS Host Config 6 8 5 3 tacacs server timeout This command is used to configure...

Page 393: ...____________________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 393 1246 This command is used to configure the TACACS connection timeout value Syntax timeout timeout ti...

Page 394: ...command to indicate the base DN Syntax ldap baseDN baseDN no ldap baseDN baseDN The top level of the LDAP directory tree no This command is used to remove base DN setting Default Setting None Command...

Page 395: ...port number that server are listening Syntax ldap baseDN port no ldap port port Range from 1 to 65535 no Use no command to default value Default Setting None Command Mode Global Config 6 8 6 4 ldap r...

Page 396: ...______ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 396 1246 6 8 6 5 ldap racName Use this command to indicate which attribute that store the user name Syntax ldap racName racName no lda...

Page 397: ...stem level Global Config or port level Interface Config Syntax port security no port security Default Setting None Command Mode Global Config Interface Config 6 8 7 2 port security max dynamic This co...

Page 398: ...curity max static no This command resets the maximum number of statically locked MAC addresses allowed on a specific port to its default value Default Setting 20 Command Mode Interface Config 6 8 7 4...

Page 399: ...namically locked MAC addresses to statically locked addresses Syntax port security mac address move Default Setting None Command Mode Interface Config 6 8 7 6 port security violation shutdown This com...

Page 400: ...e enabled or disabled The factory default is disabled Max ICMPv6 Payload Size The range is 0 16376 The factory default is 512 ICMP Fragment Mode May be enabled or disabled The factory default is disab...

Page 401: ...Destination IP Address SIP DIP Denial of Service prevention Default Setting Disabled Command Mode Global Config 6 8 8 2 2 dos control tcpfrag This command enables Minimum TCP Header Size Denial of Ser...

Page 402: ...rstfrag no This command disabled IP First Fragment Denial of Service protection Default Setting Disabled Command Mode Global Config 6 8 8 2 4 dos control tcpflag This command enables TCP Flag Denial o...

Page 403: ...rt applications such as RIP may experience packet loss which would render the application inoperable Syntax dos control l4port no dos control l4port no This command disables L4 Port Denial of Service...

Page 404: ...abled Syntax dos control udpport no dos control udpport no This command disables the UDP L4 source destination port number Source UDP Port Destination UDP Port Denial of Service protection Default Set...

Page 405: ...l icmpv6 no dos control icmpv6 no This command disables Maximum ICMPv6 Payload Size Denial of Service protections Default Setting Disabled Command Mode Global Config 6 8 8 2 10 dos control icmpv4 This...

Page 406: ...he mode is enabled Syntax dos control icmpv6 0 16376 no dos control icmpv6 0 16376 This command sets maximum ICMPV6 payload size no This command resets the Maximum ICMPV6 Payload Size Denial of Servic...

Page 407: ...dos control smacdmac no This command disables the Source MAC address Destination MAC address SMAC DMAC Denial of Service protection Default Setting Disabled Command Mode Global Config 6 8 8 2 14 dos c...

Page 408: ...mode is enabled Syntax dos control tcpflagseq no dos control tcpflagseq no This command disables the TCP Control Flags 0 and SEQ 0 checking Denial of Service protections Default Setting Disabled Comm...

Page 409: ...f the mode is enabled Syntax dos control tcpsynfin no dos control tcpsynfin no This command disables the TCP SYN FIN Denial of Service protection Default Setting Disabled Command Mode Global Config 6...

Page 410: ...______ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 410 1246 6 8 8 2 19 dos control all This command enables the Denial of Service protection checks globally Syntax dos control all no do...

Page 411: ...w Commands 6 9 1 1 show cdp This command displays the CDP configuration information Syntax show cdp Default Setting None Command Mode Privileged Exec Display Message CDP Admin Mode CDP enable or disab...

Page 412: ...g None Command Mode Privileged Exec Display Message Device Id Identifies the device name in the form of a character string Local Intf The CDP neighbor information receiving port Holdtime The length of...

Page 413: ...ce name in the form of a character string Entry Address es The L3 addresses of the interface that has sent the update Platform Describes the hardware platform name of the device for example the L3 Net...

Page 414: ...Page 414 1246 6 9 1 4 show cdp traffic This command displays the CDP traffic counters information Syntax show cdp traffic Default Setting None Command Mode Privileged Exec Display Message Incoming pac...

Page 415: ...Configuration Commands 6 9 2 1 cdp This command is used to enable CDP Admin Mode Syntax cdp no cdp no This command is used to disable CDP Admin Mode Default Setting Enabled Command Mode Global Config...

Page 416: ...terfaces Syntax cdp run all no cdp run all all All interfaces no This command is used to disable CDP for all interfaces Default Setting Enabled Command Mode Global Config 6 9 2 3 cdp timer This comman...

Page 417: ...______________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 417 1246 6 9 2 4 cdp holdtime This command is used to configure the hold time seconds of CDP Syntax cdp holdtime 10 255 10 255...

Page 418: ...None Command Mode Privileged Exec Display Message Last Update Time Time of last clock update Last Unicast Attempt Time Time of last transmit query in unicast mode Last Attempt Status Status of the la...

Page 419: ...cast Poll Interval Poll interval value for SNTP clients in seconds as a power of two This command displays configured SNTP servers and SNTP server settings Syntax show sntp server Default Setting None...

Page 420: ...___ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 420 1246 Port Server Port Number Last Attempt Time Last server attempt time for the specified server Last Update Status Last server attem...

Page 421: ...6 10 2 1 sntp broadcast client poll interval This command will set the poll interval for SNTP broadcast clients in seconds as a power of two where poll interval can be a value from 6 to 10 Syntax snt...

Page 422: ...ent mode broadcast unicast multicast no sntp client mode no This command will disable Simple Network Time Protocol SNTP client mode i The SNTP IPv4 multicast address is 224 0 1 1 The SNTP IPv6 multica...

Page 423: ...nterval It s 2 value seconds where value is 6 to 10 no This command will reset the poll interval for SNTP unicast clients to its default value Default Setting The default value is 6 Command Mode Globa...

Page 424: ...246 6 10 2 6 sntp unicast client poll retry This command will set the poll retry for SNTP unicast clients in seconds Syntax sntp unicast client poll retry poll retry no sntp unicast client poll retry...

Page 425: ...or dns The optional priority can be a value of 1 3 the version is a value of 1 4 and the port id is a value of 1 65535 Syntax sntp server ipaddress ipv6address domain name addresstype 1 3 version port...

Page 426: ...59 Number of minutes before after UTC Range 0 59 minutes before utc Sets the local time zone before east of UTC after utc Sets the local time zone after west of UTC Default Setting Taipei 08 00 After...

Page 427: ...status The voice vlan status Enable Disable Voice Vlan ID The specified VLAN to vloce vlan Voice Name The voice name is the name of the voice device which is to help the device management MAC Address...

Page 428: ...ified only the global mode of the Voice VLAN is displayed Syntax show voice vlan interface slot port Default Setting None Command Mode Privileged Exec User Exec Display Message Voice VLAN Mode The adm...

Page 429: ...6 11 2 Configuration Commands 6 11 2 1 voice vlan This command is used to enable disable Voice VLAN Admin Mode Syntax voice vlan no voice vlan no This command is used to disable Voice VLAN Admin Mode...

Page 430: ...oice name no voice vlan mac mac address mask mac mask name voice name all mac address Configs voice vlan mac address mac mask Configs voice vlan mac mask priority id Configs voice vlan priority voice...

Page 431: ...igure th IP phone to use 802 1p priority tagging for voice traffic and to use the default native VLAN 0 to carry all traffic The valid priority range is 0 to 7 none Allow the IP phone to use its own c...

Page 432: ...d uses to display a summary of the current LLDP configuration Syntax show lldp Default Setting None Command Mode Privileged Exec Display Message Transmit Interval Shows how frequently the system trans...

Page 433: ...pecific interface Default Setting None Command Mode Privileged Exec Display Message Interface Shows the interface in a slot port format Link Shows whether the link is up or down Transmit Shows whether...

Page 434: ...t inserted due to insufficient resources Total Ageouts Total number of times a complete remote data entry was deleted because the Time to Live interval expired The table contains the following column...

Page 435: ...1 4 show lldp remote device This command uses to display summary information about remote devices that transmit current LLDP data to the system You can show information about LLDP remote data receive...

Page 436: ...device Port ID Shows the port number that transmitted the LLDPDU System Name Shows the system name of the remote device System Description Describes the remote system by identifying the system name a...

Page 437: ...feeding the voltage to the data cable Power Class PoE power class Link Aggregation Aggregation Status Indicates the link aggregation capabilities and the current aggregation status Aggregation Port Id...

Page 438: ...Message Interface Identifies the interface in a slot port format Port ID Shows the port ID associated with this interface Port Description Shows the port description associated with the interface 6 12...

Page 439: ...to Negetitation Identifies the auto negotiation support and current status of the local device PMD Auto Negetitation The duplex and bit rate capability of the port of the local device Operational MAU...

Page 440: ...ivileged Exec Display Message Fast Start Repeat Count Specifies the number of LLDP PDUs that will be transmitted when the protocol is enabled The range is from 1 to 10 Default value of fast repeat cou...

Page 441: ...lot port Privilege command Syntax show lldp med interface slot port slot port Displays a specific interface Default Setting None Command Mode Privileged Exec Display Message Interface Specifies all th...

Page 442: ...cing streammingvideo vidoesignalling Each application type that is received has the VLAN id priority DSCP tagged bit status and unknown bit status A port may receive one or many such application types...

Page 443: ...ype Specifies power device type Extended POE PSE Specifies if extended PSE TLV is present in LLDP frame Available Specifies available power sourcing equipment s power value in tenths of watts on the p...

Page 444: ...ed remote device slot port Default Setting None Command Mode Privileged Exec Display Message Interface Specifies the list of all the ports on which LLDP MED is enabled Remote ID An internal identifier...

Page 445: ...Policies Specifies if network policy TLV is received in the LLDP frames on this port Media Policy Application Type Specifies the application type Types of application types are unknown voicesignaling...

Page 446: ...the location information as a string for given type of location id Extended POE Specifies if remote device is a PoE device Device Type Specifies remote device s PoE device type connected to this port...

Page 447: ...ns Default Setting Disbaled Command Mode Interface Config 6 12 2 2 lldp notification interval This command is used to configure how frequently the system sends remote data change notifications The int...

Page 448: ...e the LLDP receive capability Syntax lldp receive no lldp receive no This command is used to return the reception of LLDPDUs to the default value Default Setting Disabled Command Mode Interface Config...

Page 449: ...pe length values TLVs in the 802 1AB basic management set are transmitted in the LLDPDUs Use sys name to transmit the system name TLV To configure the system name please refer to snmp server command U...

Page 450: ...n local data LLDPDUs The multiplier range is 2 10 The reinit seconds is the delay before re initialization and the range is 1 0 seconds Syntax lldp timers interval interval seconds hold hold value rei...

Page 451: ...determines the number of seconds to wait between transmitting local data LLDPDUs The range is 1 8192 seconds Syntax lldp tx delay delay seconds no lldp tx delay no This command is used to return retu...

Page 452: ...46 6 12 2 10 lldp med confignotification The user can go to the CLI Interface Configuration Mode to set all the ports to send the topology change notification use the lldp med confignotification Inter...

Page 453: ...icy Interface configuration command Use the no lldp med transmit tlv capabilities ex pd ex pse inventory location network policy to remove the TLVs Syntax lldp med transmit tlv capabilities ex pd ex p...

Page 454: ...med all to disable LLDP MED on all the ports Syntax lldp med all no lldp med all Default Setting Disabled Command Mode Global config 6 12 2 13 lldp med confignotification all The user can go to the C...

Page 455: ...Page 455 1246 6 12 2 14 lldp med faststartrepeatcount The user can go to the CLI Global Configuration Mode to set the fast start repeat count use the lldp med faststartrepeatcount Global configuratio...

Page 456: ...guration command Use the no lldp med transmit tlv all capabilities ex pd ex pse inventory location network policy to remove Type Length Values TLVs in the LLDP MED Syntax lldp med transmit tlv all cap...

Page 457: ...ements received by this switch on its trunk ports Subset advertisements received Number of subset advertisements received by this switch on its trunk ports Request advertisements received Number of ad...

Page 458: ...Setting None Command Mode Privileged Exec Display Message VTP Status Indicates whether VTP is enabled or disabled VTP Version Displays the VTP version operating on the switch Configuration Revision D...

Page 459: ...last modified Displays the time stamp of the last configuration modification and the IP address of the switch that caused the configuration change to the database Local updater ID Displays the Local...

Page 460: ..._______________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 460 1246 6 13 2 Configuration Commands 6 13 2 1 vtp This command uses to configure global VTP administrative mode Syn...

Page 461: ...ain This command uses to set VTP administrative domain name Syntax vtp domain string no vtp domain string Configures the string for domain name maximum length 32 bytes no This command resets the domai...

Page 462: ...parent Syntax vtp mode client server transparent no vtp mode client This command set client mode for VTP server This command set server mode for VTP transparent This command set transparent mode for V...

Page 463: ...ve domain password Syntax vtp password password no vtp password password Configures VTP administrative domain password Max length 64 bytes no This command resets the VTP domain password to default val...

Page 464: ...rative domain trunk port for all of interfaces Syntax vtp trunkport all no vtp trunkport all no This command resets the adminstrative domain trunk port to default value Default Setting Disabled Comman...

Page 465: ...mmands 6 14 1 1 show switchport protected This command displays the status of all the interfaces including protected and unprotected interfaces Syntax show switchport protected 0 2 Default Setting Non...

Page 466: ...ce switchport protected This command displays the status of the interface protected unprotected under the groupid Syntax show interface switchport protected slot port groupid Default Setting None Comm...

Page 467: ...n a single switch Protected port configuration does not affect traffic between ports on two different switches No traffic forwarding is possible between two protected ports Syntax switchport protected...

Page 468: ...Filters If you select all all the Static MAC Filters in the system are displayed If you supply a value for macaddr you must also enter a value for vlanid and the system displays Static MAC Filter info...

Page 469: ...imal number in the format of b1 b2 b3 b4 b5 b6 The restricted MAC Addresses are 00 00 00 00 00 00 01 80 C2 00 00 00 to 01 80 C2 00 00 0F 01 80 C2 00 00 20 to 01 80 C2 00 00 21 and FF FF FF FF FF FF Th...

Page 470: ...C address of macaddr and VLAN of vlanid The macaddr parameter must be specified as a 6 byte hexadecimal number in the format of b1 b2 b3 b4 b5 b6 The vlanid parameter must identify a valid VLAN Syntax...

Page 471: ...MAC address of macaddr and vlanid You must specify the macaddr parameter as a 6 byte hexadecimal number in the format of b1 b2 b3 b4 b5 b6 The vlanid parameter must identify a valid VLAN Syntax macfil...

Page 472: ...Ethernet SwitchUser Manual Page 472 1246 6 16 System Utilities 6 16 1 clear 6 16 1 1 clear arp This command causes all ARP entries of type dynamic to be removed from the ARP cache Syntax clear arp Def...

Page 473: ...16 1 3 clear eventlog This command is used to clear the event log which contains error messages from the system Syntax clear eventlog Default Setting None Command Mode Privileged Exec 6 16 1 4 clear l...

Page 474: ...ry defaults without powering off the switch The switch is automatically reset when this command is processed You are prompted to confirm that the reset should proceed Syntax clear config Default Setti...

Page 475: ...gument Syntax clear counters slot port all slot port is the desired interface number all All interfaces Default Setting None Command Mode Privileged Exec 6 16 1 8 clear dns This command sets the DNS c...

Page 476: ...246 6 16 1 9 clear cdp This command is used to clear the CDP neighbors information and the CDP packet counters Syntax clear cdp traffic traffic this command is used to clear the CDP packet counters De...

Page 477: ...1246 6 16 1 11 clear igmp snooping This command clears the tables managed by the IGMP Snooping function and will attempt to delete these entries from the Multicast Forwarding Database Syntax clear ig...

Page 478: ...e 478 1246 6 16 1 13 clear ip filter This command is used to clear all ip filter entries Syntax clear ip filter Default Setting None Command Mode Privileged Exec 6 16 1 14 clear dot1x authentication h...

Page 479: ...lear dot1x statistics This command resets the 802 1x statistics for the specified port or for all ports Syntax clear dot1x statistics all slot port slot port is the desired interface number all All in...

Page 480: ...et SwitchUser Manual Page 480 1246 6 16 1 17 clear domain list This command is used to clear all entries domain names for incomplete host names Syntax clear domain list Default Setting None Command Mo...

Page 481: ...ddress mac addr interface slot port mac addr mac address you want to remove slot port mac address learning on this interface will be removed Default Setting None Command Mode Privileged Exec 6 16 1 20...

Page 482: ...itchUser Manual Page 482 1246 6 16 1 21 clear lldp statistics This command will use to reset all LLDP statistics Syntax clear lldp statistics Default Setting None Command Mode Privileged Exec 6 16 1 2...

Page 483: ...nges Privileged EXEC password Syntax enable passwd 0 password 0 Plain text password Default Setting None Command Mode Global Config 6 16 1 24 enable passwd encrypted This command allows the administra...

Page 484: ...fy the interface Default Setting None Command Mode Privileged Exec 6 16 1 26 clear ipv6 statistics This command will use to clear IPv6 statistics for all interfaces or for a specific interface includi...

Page 485: ...naged Ethernet SwitchUser Manual Page 485 1246 6 16 1 27 clear ipv6 dhcp This command will use to clear DHCPv6 statistics for all interfaces or for a specific interface Use the slot port parameter to...

Page 486: ...ge respectively The command can be used to the save the running config to flash by specifying the source as running config and the destination as startup config filename The command can also be used t...

Page 487: ...url sslpem root sslpem server sslpem dhweak sslpem dhstrong copy url script destfilename where url xmodem tftp ipaddr path file ftp user pass ipaddr path file destfilename name of the image file or th...

Page 488: ...g configuration file into flash Syntax copy running config startup config filename filename name of the configuration file Default Setting None Command Mode Privileged Exec 6 16 2 4 This command uploa...

Page 489: ...________________________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 489 1246 6 16 3 delete This command is used to delete a configuration or image file Syntax delete fi...

Page 490: ...Flash memory Syntax dir config opcode filename filename name of the configuration or image file config configuration file opcode run time operation code Default Setting None Command Mode Privileged Ex...

Page 491: ...ommand is used to display which files were booted when the system powered up Syntax whichboot Default Setting None Command Mode Privileged Exec 6 16 6 boot system This command is used to specify the f...

Page 492: ...s must have the ping utility enabled and running on top of TCP IP The switch can be pinged from any IP workstation with which the switch is connected through the default VLAN VLAN 1 as long as there i...

Page 493: ...be pinged from any IP workstation with which the switch is connected through the default VLAN VLAN 1 as long as there is a physical path between the switch and the workstation The terminal interface...

Page 494: ...long as there is a physical path between the switch and the workstation The terminal interface sends three pings to the target station Use the interface keyword to ping an interface by using the link...

Page 495: ...initiated from the CLI Syntax traceroute ipaddr hostname initTtl initTtl maxTtl maxTtl interval interval count count ipaddr hostname The IP address or destination host you want to trace initTtl The U...

Page 496: ...pv6 ipv6 address hostname initTtl initTtl maxTtl maxTtl interval interval count count ipv6 address hostname A valid IPv6 address or hostname ipaddr The IP address or destination host you want to trace...

Page 497: ...___ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 497 1246 6 16 9 logging cli command This command enables the CLI command Logging feature The Command Logging component enables the switch...

Page 498: ...hh mm ss hh in 24 hour format Range 0 23 mm Range 0 59 ss Range 0 59 Default Setting None Command Mode Privileged Exec 6 16 11 reload This command resets the switch without powering it off Reset mean...

Page 499: ...Ethernet SwitchUser Manual Page 499 1246 6 16 12 configure This command is used to activate global configuration mode Syntax configure Default Setting None Command Mode Privileged Exec 6 16 13 disconn...

Page 500: ...trial Layer 3 Managed Ethernet SwitchUser Manual Page 500 1246 6 16 14 hostname This command is used to set the prompt string Syntax hostname prompt_string prompt_string Prompt string Default Setting...

Page 501: ...rking correctly Open The cable is disconnected or there is a faulty connector Short There is an electrical short in the cable Cable Test Failed The cable status could not be determined The cable may i...

Page 502: ...gives you a way to differentiate between untrusted interfaces connected to the end user and trusted interfaces connected to the DHCP server or another switch DHCP snooping enforces the following secur...

Page 503: ...p snooping This command displays the DHCP Snooping global configurations and per port configurations Syntax show ip dhcp snooping Default Setting None Command Mode Privileged Exec Display Message Inte...

Page 504: ...interface Static Restrict the output based on static entries VLAN Restrict the output based on VLAN Syntax show ip dhcp snooping binding static dynamic interface slot port vlan id Default Setting None...

Page 505: ...17 1 3 show ip dhcp snooping database This command displays the DHCP Snooping configuration related to the database persistency Syntax show ip dhcp snooping database Default Setting None Command Mode...

Page 506: ...ace The IP address of the interface in slot port format MAC Verify Failures Represents the number of DHCP messages that were filtered on an untrusted interface because of source MAC address and client...

Page 507: ...nterface This command display statistics specific to DHCP Option 82 configuration interface Syntax show ip dhcp snooping information stats interface interface num Default Setting None Command Mode Pri...

Page 508: ...rmation vlan This command display the DHCP Option 82 configuration specific to VLAN Syntax show ip dhcp snooping information vlan vlan range Default Setting None Command Mode Privileged Exec 6 17 1 9...

Page 509: ...ormation remote id vlan This command display the DHCP Option 82 remote id configuration specific to VLAN Syntax show ip dhcp snooping information remote id vlan vlan range Default Setting None Command...

Page 510: ...mmand enables the DHCP Snooping globally Syntax ip dhcp snooping no ip dhcp snooping no This command disables the DHCP Snooping globally Default Setting Disabled Command Mode Global Config 6 17 2 2 ip...

Page 511: ...ddress in the received DCHP message Syntax ip dhcp snooping verify mac address no ip dhcp snooping verify mac address no This command disables the verification of the source MAC address with the clien...

Page 512: ...86400 seconds Syntax ip dhcp snooping database write delay in seconds no ip dhcp snooping database write delay no This command sets the write delay value to the default value Default Setting 300 secon...

Page 513: ...command removes the DHCP static entry from the DHCP Snooping database Default Setting None Command Mode Global Config 6 17 2 8 ip dhcp snooping limit This command controls the rate at which the DHCP...

Page 514: ...filtration by the DHCP Snooping application Syntax ip dhcp snooping log invalid no ip dhcp snooping log invalid no This command disables the logging DHCP messages filtration by the DHCP Snooping appl...

Page 515: ...ip dhcp snooping binding interface slot port Command Mode Privileged EXEC 6 17 2 12 clear ip dhcp snooping statistics Use this command to clear all DHCP Snooping statistics Syntax clear ip dhcp snoopi...

Page 516: ...snooping information option circuit id Use this command to enable the DHCP Snooping information option circuit id on a range of VLANs When enabled the circuit ID is added in DHCP Option 82 Use this co...

Page 517: ...is reset using this command the Client DHCP requests that fall under this service subscription are not added with Option 82 Remote id The remote ID format should be in the form of LLLLXXXXX LLLL is t...

Page 518: ...ual Page 518 1246 6 17 2 18 ip dhcp snooping information option trust Use this command to configure an interface as trusted for Option 82 reception Syntax ip dhcp snooping information option trust no...

Page 519: ...affic on the port is blocked except for DHCP packets that are captured by the DHCP snooping process When a client receives a valid IP address from the DHCP server or when a static IP source binding is...

Page 520: ...e Is one of two values ip mac User has configured MAC address filtering on this interface ip Only IP address filtering on this interface 6 18 1 2 show ip verify source This command displays the IPSG i...

Page 521: ...VLAN for the binding rule 6 18 1 3 show ip source binding This command displays the IPSG bindings Syntax show ip source binding static dhcp snooping interface slot port vlan id Default Setting None Co...

Page 522: ...ased on the IP address With the port security option the data traffic will be filtered based on the IP and MAC addresses Syntax ip verify source port security no ip verify source port security no This...

Page 523: ...ess to IP address bindings stored in a trusted database This database is built at runtime by DHCP snooping provided this feature is enabled on VLANs and on the switch DAI relies on DHCP snooping DHCP...

Page 524: ...19 1 2 show ip arp inspection This command displays the Dynamic ARP Inspection global configuration and configuration on all the VLANs With the vlan list argument i e comma separated VLAN ranges the c...

Page 525: ...s the values for that interface whether the interface is enabled for DAI or not Syntax show ip arp inspection interfaces slot port slot port Interface Number Default Setting None Command Mode Privileg...

Page 526: ...tion on the received ARP packets Syntax ip arp inspection validate src mac dst mac ip no ip arp inspection validate src mac dst mac ip no This command disables the additional validation checks on the...

Page 527: ...ts on a list of comma separated VLAN ranges Default Setting Disabled Command Mode Global Config 6 19 2 4 ip arp inspection filter This command configures the ARP ACL used to filter invalid ARP packets...

Page 528: ...usted for Dynamic ARP Inspection Default Setting Disabled Command Mode Interface Config 6 19 2 6 ip arp inspection limit This command configures the rate limit and burst interval values for an interfa...

Page 529: ...cl name no arp access list acl name no This command deletes a configured ARP ACL Default Setting None Command Mode Global Config 6 19 2 8 permit ip host mac host This command configures a rule for a v...

Page 530: ..._________________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 530 1246 6 19 2 9 clear ip arp inspection statistics This command resets the statistics for Dynamic ARP Ins...

Page 531: ...e defined on a per class instance basis and it is these attributes that are applied when a match occurs Packet processing begins by testing the match criteria for a packet A policy is applied to a pac...

Page 532: ...diffserv This command sets the DiffServ operational mode to active While disabled the DiffServ configuration is retained and can be changed but it is not activated When enabled Diffserv services are...

Page 533: ...cannot be changed or deleted the entire class must be deleted and re created The CLI command root is class map 6 20 2 1 class map This command defines a new DiffServ class of type match all match any...

Page 534: ...default is reserved and is not allowed here This command may be issued at any time if the class is currently referenced by one or more policies or by any other class this deletion attempt shall fail...

Page 535: ...conditions defined for another class Syntax match class map refclassname refclassname is the name of an existing DiffServ class whose match conditions are being referenced by the specified class defi...

Page 536: ...med by the complete reference class chain includes both predecessor and successor classes must not exceed a platform specific maximum In some cases each removal of a refclass rule reduces the maximum...

Page 537: ...Page 537 1246 6 20 2 7 match cos This command adds to the specified class definition a match condition for the Class of Service value the only tag in a single tagged packet or the first or outer 802 1...

Page 538: ...address parameter is any layer 2 MAC address formatted as six two digit hexadecimal numbers separated by colons e g 00 11 22 dd ee ff The mac mask parameter is a layer 2 MAC address bit mask which ne...

Page 539: ...l Page 539 1246 6 20 2 9 match dstip This command adds to the specified class definition a match condition based on the destination IP address of a packet Syntax match dstip ipaddr ipmask ipaddr speci...

Page 540: ...e of the supported port name keywords The currently supported portkey values are domain echo ftp ftpdata http smtp snmp telnet tftp www Each of these translates into its equivalent port number which i...

Page 541: ...based on the value of the ethertype The ethertype value is specified as one of the following keywords appletalk arp ibmsna ipv4 ipv6 ipx mplsmcast mplsucast netbios novell pppoe rarp or as a custom e...

Page 542: ...order two bits are not checked Syntax match ip dscp value dscpval value is specified as either an integer from 0 to 63 or symbolically through one of the following keywords af11 af12 af13 af21 af22 a...

Page 543: ...efined as the high order three bits of the Service Type octet in the IP header the low order five bits are not checked The precedence value is an integer from 0 to 7 Syntax match ip precedence 0 7 The...

Page 544: ...hexadecimal number from 00 to ff The tosmask denotes the bit positions in tosbits that are used for comparison against the IP TOS field in a packet For example to check for an IP TOS value having bits...

Page 545: ...or a numeric value notation Syntax match protocol protocol name 0 255 protocol name is one of the supported protocol name keywords The currently supported values are icmp igmp ip tcp udp Note that a...

Page 546: ...address parameter is any layer 2 MAC address formatted as six two digit hexadecimal numbers separated by colons e g 00 11 22 dd ee ff The macmask parameter is a layer 2 MAC address bit mask which may...

Page 547: ...al Page 547 1246 6 20 2 17 match srcip This command adds to the specified class definition a match condition based on the source IP address of a packet Syntax match srcip ipaddr ipmask ipaddr specifie...

Page 548: ...keywords listed below The currently supported portkey values are domain echo ftp ftpdata http smtp snmp telnet tftp www Each of these translates into its equivalent port number which is used as both...

Page 549: ...entifier field the only tag in a single tagged packet or the first or outer tag of a double VLAN tagged packet The VLAN ID is an integer from 1 to 4095 i This command is not available on the Broadcom...

Page 550: ...s command adds to the specified class definition a match condition based on the source IP address of a packet Syntax match srcip6 source ipv6 prefix prefix length Default Setting None Command Mode IPv...

Page 551: ...service The user specifies the policy name when the policy is created The DiffServ CLI does not necessarily require that users associate only one traffic class to one policy In fact multiple traffic c...

Page 552: ...h the associated traffic stream is assigned The queueid is an integer from 0 to n 1 where n is the number of egress queues supported by the device Syntax assign queue 0 7 0 7 Queue ID Command Mode Pol...

Page 553: ...to a specific egress interface physical port or LAG i This command is not available on the Broadcom 5630x platform Syntax mirror slot port slot port Interface Number Default Setting None Command Mode...

Page 554: ...isting Diffserv class map where different ones must be used for the conform and exceed colors Syntax conform color class map name class map name Name of an existing Diffserv class map where different...

Page 555: ...ubsequent policy attribute statements Syntax class classname classname is the name of an existing DiffServ class Note that this command causes the specified policy to create a reference to the class d...

Page 556: ...ified as either an integer from 0 to 63 or symbolically through one of the following keywords af11 af12 af13 af21 af22 af23 af31 af32 af33 af41 af42 af43 be cs0 cs1 cs2 cs3 cs4 cs5 cs6 cs7 ef Command...

Page 557: ...specified as an integer from 0 7 Syntax police simple 1 4294967295 1 128 conform action drop set prec transmit 0 7 set dscp transmit 0 63 set cos transmit 0 7 transmit violate action drop set prectra...

Page 558: ...et dscp transmit 0 63 transmit violate action drop set cos as sec cos set cos transmit 0 7 set sec cos transmit 0 7 set prec transmit 0 7 set dscp transmit 0 63 transmit conform action violate action...

Page 559: ...to the inbound traffic direction as indicated by the in parameter Syntax policy map policyname in out no policy map policyname no this command is to delete this policy in out The direction value is ei...

Page 560: ...specified by the policy commands to an interface in the incoming direction Service Provisioning Assign a DiffServ service provisioning policy as specified by the policy commands to an interface in th...

Page 561: ...isting DiffServ policy whose type must match the interface direction Note that this command causes a service to create a reference to the policy This command effectively enables DiffServ on an interfa...

Page 562: ...to detach a policy from a specific interface Alternatively the command can be used in the Global Config mode to detach this policy from all system interfaces to which it is currently attached The dire...

Page 563: ...ec User Exec Display Message Class Name The name of this class Class Type The class type all any or acl indicating how the match criteria are evaluated for this class A class type of all means every m...

Page 564: ...ffserv This command displays the DiffServ General Status Group information which includes the current administrative mode setting as well as the current and maximum number of rows in each of the main...

Page 565: ...interest Default Setting None Command Mode Privileged Exec Display Message DiffServ Admin Mode The current setting of the DiffServ administrative mode An attached policy is only in effect on an inter...

Page 566: ...ervice brief in Default Setting None Command Mode Privileged Exec Display Message DiffServ Admin Mode The current setting of the DiffServ administrative mode An attached policy is only active on an in...

Page 567: ...ed as the DSCP for traffic matching this class This is not displayed if mark ip description is not specified using the police two rate command or if policing is in use for the class under this policy...

Page 568: ...s are used for handling packets belonging to the class Drop Drop a packet upon arrival This is useful for emulating access control list operation using DiffServ especially when DiffServ and ACL cannot...

Page 569: ...t port Direction The traffic direction of this interface service either in or out Operational Status The current operational status of this DiffServ service interface Policy Name The name of the polic...

Page 570: ...ector client relies on a route reflector to re advertise its routes to the entire AS The possible values for this field are enable and disable Syntax show service policy in Command Mode Privileged Exe...

Page 571: ...Action Displays the action associated with each rule The possible values are Permit or Deny Source MAC Address Displays the source MAC address for this rule Source MAC Mask Displays the source MAC ma...

Page 572: ...Setting None Command Mode Privileged Exec Display Message Current number of all ACLs The number of user configured rules defined for this ACL Maximum number of all ACLs The maximum number of ACL rules...

Page 573: ...The possible values are Permit or Deny Match ALL Match all packets or not IPv4 Protocol This displays the protocol to filter for this rule Source IP Address This displays the source IP address for th...

Page 574: ...naged Ethernet SwitchUser Manual Page 574 1246 Redirect Interface This field displays the slot port to which packets matching this rule are forwarded Time Range Name Displays the name of the time rang...

Page 575: ...Type This displays ACL type is IP IPv6 or MAC ACL ID Access List name for a MAC or IPv6 access list or the numeric identifier for an IP access list Sequence Number An optional sequence number may be...

Page 576: ...ACL identified by name consisting of classification fields defined for the Layer 2 header of an Ethernet frame The name parameter is a case sensitive alphanumeric string from 1 to 31 characters uniqu...

Page 577: ...ess Control List ACL The name parameter is the name of an existing MAC ACL The newname parameter is a case sensitive alphanumeric string from 1 to 31 characters uniquely identifying the MAC access lis...

Page 578: ...ecified access list replaces the currently attached access list using that sequence number If the sequence number is not specified for this command a sequence number that is one greater than the highe...

Page 579: ...alue s The vlan and cos parameters refer to the VLAN identifier and 802 1p user priority fields respectively of the VLAN tag For packets containing a double VLAN tag this is the first or outer tag The...

Page 580: ...ask parameters The source layer 4 port match condition for the ACL rule is specified by the port key parameter portkey uses a single keyword notation and currently has the values of domain echo ftp ft...

Page 581: ...ccess list This command deletes an ACL that is identified by the parameter accesslistnumber from the system or remove an ACL rule that is identified by the parameter 1 28 from the an IP ACL accesslist...

Page 582: ...eplaces the currently attached IP access list using that sequence number If the sequence number is not specified for this command a sequence number that is one greater than the highest sequence number...

Page 583: ...name already exists this command enters IPv4 Access_List config mode to allow updating the existing IP ACL The CLI mode changes to IPv4 Access List Configuration mode when you successfully execute thi...

Page 584: ...r Deny Match All Indicates whether this access list applies to every packet Possible values are True or False IPv6 Protocol The protocol to filter for this rule Source IP Address The source IP address...

Page 585: ...Co Ltd Industrial Layer 3 Managed Ethernet Switch _____________________________________________________________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 585 1246 the...

Page 586: ...eader of an IPv6 frame The name parameter is a case sensitive alphanumeric string from 1 to 31 characters uniquely identifying the IPv6 access list If an IPv6 ACL by this name already exists this comm...

Page 587: ...d changes the name of an IPv6 ACL The name parameter is the name of an existing IPv6 ACL The newname parameter is a case sensitive alphanumeric string from 1 to 31 characters uniquely identifying the...

Page 588: ...f a particular hardware queue for handling traffic that matches this rule The allowed queue id value is 0 n 1 where n is the number of user configurable queues available for the hardware platform The...

Page 589: ...6 access list replaces the currently attached IPv6 access list using that sequence number If the sequence number is not specified for this command a sequence number that is one greater than the highes...

Page 590: ...The slot port parameter is optional and is only valid on platforms that support independent per port class of service mappings If specified the 802 1p mapping table of the interface is displayed If om...

Page 591: ...s The ipdscp value is specified as either an integer from 0 to 63 or symbolically through one of the following keywords af11 af12 af13 af21 af22 af23 af31 af32 af33 af41 af42 af43 be cs0 cs1 cs2 cs3 c...

Page 592: ...e port trust mode of each interface in the system is shown If the platform does not support independent per port class of service mappings the output represents the system wide port trust mode used fo...

Page 593: ...face If displaying the global configuration this output line is replaced with a Global Config indication Interface Shaping Rate The maximum transmission bandwidth limit for the interface as a whole It...

Page 594: ...ue cos map 0 7 The range of queue priority is 0 to 7 0 7 The range of mapped traffic class is 0 to 7 no Reset to the default mapping of the queue priority and the mapped traffic class Default Setting...

Page 595: ...can also set the interface mode to untrusted If you configure an interface to use Dot1p the mode does not appear in the output of the show running config command because Dot1p is the default Syntax q...

Page 596: ...nge is 0 to 100 in increments of 5 and the total sum is less than or equal to 100 no This command restores the default for each queue s minimum bandwidth value Default Setting None Command Mode Interf...

Page 597: ...1 queue id 6 no queue cos queue strict queue id 0 queue id 1 queue id 6 no This command restores the default weighted scheduler mode for each specified queue on a per port basis Default Setting None C...

Page 598: ...tax queue cos queue traffic shape bw no queue cos queue traffic shape bw Valid range is 0 to 100 in increments 1 no This command restores the default shaping rate value Default Setting None Command Mo...

Page 599: ...call control protocols Session Initiation Protocol SIP H 323 Skinny Client Control Protocol SCCP When a call control protocol is detected the switch assigns the traffic in that session to the highest...

Page 600: ...is command to enable VoIP Profile on the interfaces of the switch Syntax auto voip all no auto voip all no Use this command to disable VoIP Profile on the interfaces of the switch Default Setting Disa...

Page 601: ...shed by monitoring traffic to detect packets used by iSCSI stations to establish iSCSI sessions and connections Data from these exchanges is used to create classification rules that assign the traffic...

Page 602: ...splay Message Example 1 show iscsi sessions Session 0 Target iqn 2006 03 com kernsafe q97041406 ImageDisk0 Initiator iqn 2003 06 com starwindsoftware starport ap111111 ISID 801234567890 Example 2 show...

Page 603: ...Layer 3 Managed Ethernet SwitchUser Manual Page 603 1246 6 25 2 Configuration Commands 6 25 2 1 iscsi enable This command globally enables iSCSI awareness Syntax iscsi enable no iscsi enable no This...

Page 604: ...efault setting for egress queues scheduling is Weighted Round Robin WRR You may complete the QoS setting by configuring the relevant ports to work in other scheduling and queue management modes via th...

Page 605: ...ent sessions will be timed out according to the new value When aging time is decreased any sessions that have been dormant for a time exceeding the new setting will be immediately deleted from the tab...

Page 606: ...command These names are not used to match with the iSCSI session information acquired by snooping A maximum of 16 TCP ports can be configured either bound to IP or not Syntax iscsi target port tcp po...

Page 607: ...yer 3 Managed Ethernet SwitchUser Manual Page 607 1246 6 26 Domain Name Server Relay Commands 6 26 1 Show Commands 6 26 1 1 show hosts This command displays the static host name to address mapping tab...

Page 608: ...atus Enable or disable the IP Domain Naming System DNS based host name to address translation function Domain Relay Status Enable or disable the IP Domain Naming System DNS based host name to address...

Page 609: ...ow dns cache This command displays all entries in the DNS cache table Syntax show dns cache Default Setting None Command Mode Privileged Exec Display Message Domain Name List Domain Name IP Address IP...

Page 610: ...entry in the DNS table that maps a host name to an IP address There are maximum 8 entries for IPv4 and 8 entries for IPv6 Syntax ip host name ipaddr no ip host name name Host name ipaddr IPv4 or IPv6...

Page 611: ...e This command defines the default domain name to be appended to incomplete host names i e host names passed from a client are not formatted with dotted notation Syntax ip domain name name no ip domai...

Page 612: ...ip domain list name no ip domain list name name Default domain name used to complete unqualified host names Do not include the initial period that separates an unqualified name from the domain name R...

Page 613: ...servers to use for name to address resolution There are maximum 6 entries for IPv4 and 6 entries for IPv6 in the Domain Name Server Table Syntax ip name server ipaddr no ip name server ipaddr ipaddr...

Page 614: ...Syntax ip domain lookup no ip domain lookup no This command disables the IP Domain Naming System DNS based host name to address translation Default Setting Enabled Command Mode Global Config 6 26 2 7...

Page 615: ...er 3 Managed Ethernet SwitchUser Manual Page 615 1246 6 26 2 8 clear domain list This command clears all entries in the domain name list table Syntax clear domain list Default Setting None Command Mod...

Page 616: ...d Ethernet SwitchUser Manual Page 616 1246 6 26 2 10 clear dns cache This command clears all entries in the DNS cache table Syntax clear dns cache Default Setting None Command Mode Privileged Exec 6 2...

Page 617: ...erval of the selected port This section will be hidden if the port doesn t enable udld Timeout interval Specifies the runtime Timeout Interval of the selected port This section will be hidden if the p...

Page 618: ...Configuration Commands 6 27 2 1 udld aggressive Enable Disable UDLD protocol in aggressive mode on fiber ports except where locally configured Syntax udld aggressive no udld aggressive Default Settin...

Page 619: ...2 3 udld message time Set UDLD message time period in 7 90 range The message time is to use between sending of messages in steady Default value of UDLD message time is 15 Syntax udld message time 7 90...

Page 620: ...______________________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 620 1246 6 27 2 5 udld port aggressive Enable Disable UDLD protocol in aggressive mode on the interfac...

Page 621: ...ber of times an ARP request is retried This value was configured into the unit Cache Size Is the maximum number of entries in the ARP table This value was configured into the unit Dynamic renew mode D...

Page 622: ...the unit Age time is measured in seconds Response Time Is the time it takes for an ARP request timeout This value was configured into the unit Response time is measured in seconds Retries Is the maxi...

Page 623: ...net SwitchUser Manual Page 623 1246 7 1 1 3 show ip arp static This command displays the static Address Resolution Protocol ARP table information Syntax show ip arp static Default Setting None Command...

Page 624: ...a MAC address for that device The format is 6 two digit hexadecimal numbers that are separated by colons for example 00 06 29 32 81 40 no This command deletes an ARP entry Default Setting None Comman...

Page 625: ...ARP on an interface Syntax ip local proxy arp no ip local proxy arp no This command disables Local Proxy ARP on a router interface Default Setting Disabled Command Mode Interface Config 7 1 2 4 arp c...

Page 626: ...ic when they age out Syntax arp dynamicrenew no arp dynamicrenew no This command disables ARP component from automatically renewing ARP entries of type dynamic when they age out Default Setting Disabl...

Page 627: ...sptime 1 10 The range of default response time is 1 to 10 seconds no This command configures the default response timeout time Default Setting The default response time is 1 Command Mode Global Config...

Page 628: ...00 Represents the IP ARP entry ageout time in seconds The range is 15 to 21600 seconds no This command configures the default ageout time for IP ARP entry Default Setting The default value is 1200 Com...

Page 629: ...the final destination Routing Mode Show whether the routing mode is enabled or disabled Maximum Next Hops The maximum number of hops supported by this switch Maximum Routes The maximum number of rout...

Page 630: ...ation The possible values are enable or disable This value is configurable Administrative Mode The administrative mode of the specified interface The possible values of this field are enable or disabl...

Page 631: ...tax show ip interface brief Default Setting None Command Mode Privileged Exec User Exec Display Message Interface Valid slot and port number separated by forward slashes State Indicate the operational...

Page 632: ...he best route If you use the connected keyword for protocol the all option is not available because there are no best or non best connected routes Syntax show ip route ip address protocol ip address m...

Page 633: ...eged Exec Display Message Total Number of Routes The total number of routes Network Address Is an IP route prefix for the destination Subnet Mask Is a mask of the network and host portion of the IP ad...

Page 634: ...k Address Is a valid network address identifying the network on the specified interface Subnet Mask Is a mask of the network and host portion of the IP address for the attached network Protocol Tells...

Page 635: ...t The command displays the routing tables in the following format Code IP Address Mask Preference Metric via Next Hop Interface Code The codes for the routing protocols that created the routes IP Addr...

Page 636: ...appear in the routing table output The command displays the routing tables in the following format Code IP Address Mask Preference Metric via Next Hop Interface Code The codes for the routing protocol...

Page 637: ...appear in the routing table output The command displays the routing tables in the following format Code IP Address Mask Preference Metric via Next Hop Interface Code The codes for the routing protoco...

Page 638: ...the routing table output The command displays the routing tables in the following format Code IP Address Mask Preference Metric via Next Hop Interface Code The codes for the routing protocols that cr...

Page 639: ...n best routes To include only the number of best routes do not use the optional parameter Syntax show ip route summary all Default Setting None Command Mode Privileged Exec Display Message Connected R...

Page 640: ...how ip route preferences Default Setting None Command Mode Privileged Exec User Exec Display Message Local This field displays the local route preference value Static This field displays the static ro...

Page 641: ...______________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 641 1246 7 2 1 13 show ip stats This command displays IP statistical information Refer to RFC 1213 for more in...

Page 642: ...guration Commands 7 2 2 1 routing This command enables routing for an interface Syntax routing no routing no Disable routing for an interface Default Setting Disabled Command Mode Interface Config 7 2...

Page 643: ...a secondary IP address no Delete an IP address from an interface Default Setting None Command Mode Interface Config 7 2 2 4 ip address dhcp This command enables the DHCPv4 client on an in band interfa...

Page 644: ...IP address of the next hop router 1 255 The precedence value of this route The range is 1 to 255 Null0 Null interface no delete all next hops to a destination static route If the optional nextHopRtr...

Page 645: ...fault commands allow you to optionally set the distance preference of an individual static route The default distance is used when no distance is specified in these commands Changing the default dista...

Page 646: ...ropped if they exceed the IP MTU of the outgoing interface Packets originated on the router such as OSPF packets may be fragmented by the IP stack OSPF advertises the IP MTU in the Database Descriptio...

Page 647: ...7 1246 7 2 2 9 encapsulation This command configures the link layer encapsulation type for the packet Syntax encapsulation ethernet snap ethernet The link layer encapsulation type is ethernet snap The...

Page 648: ...RFC 1583 Compatibility Indicates whether 1583 compatibility is enabled or disabled This is a configured value External LSDB Limit The maximum number of non default AS external LSA link state advertise...

Page 649: ...ow When the number of non default external LSAs exceeds the configured limit External LSDB Limit OSPF goes into LSDB overflow state In this state OSPF withdraws all of its self originated non default...

Page 650: ...Routers ABR This command takes no options Syntax show ip ospf abr Default Setting None Command Mode Privileged Eexc User Exec Display Messages Type The type of the route to the destination It can be e...

Page 651: ...LSA s Area LSA Checksum A number representing the Area LSA Checksum for the specified AreaID excluding the external LS type 5 link state advertisements Flood List Length Length of the area s LSA flood...

Page 652: ...ers ASBR This command takes no options Syntax show ip ospf asbr Default Setting None Command Mode Privileged Exec User Exec Display Messages Type The type of the route to the destination It can be one...

Page 653: ...ernal Use nssa external to display NSSA external LSAs opaque area Use opaque area to display area opaque LSAs opaque as Use opaque as to display AS opaque LSAs opaque link Use opaque link to display l...

Page 654: ...database summary Default Setting None Command Mode Privileged Exec User Exec Display Messages Router Total number of router LSAs in the OSPF link state database Network Total number of network LSAs i...

Page 655: ...etwork on this interface that the OSPF is running on Router Priority A number representing the OSPF Priority for the specified interface Retransmit Interval A number representing the OSPF Retransmit I...

Page 656: ...object or virtual interface tables Syntax show ip ospf interface brief Default Setting None Command Mode Privileged Exec User Exec Display Messages Interface Valid slot and port number separated by a...

Page 657: ...number of times the specified OSPF interface has changed its state or an error has occurred Virtual Events The number of state changes or errors that occurred on this virtual link Neighbor Events The...

Page 658: ...on type specified in the OSPF header does not match the authentication type configured on the ingress interface Authentication Failure The number of OSPF packets dropped because the sender is not an e...

Page 659: ...nterface The priority of an interface is a priority integer from 0 to 255 A value of 0 indicates that the router is not eligible to become the designated router on this network IP Address The IP addre...

Page 660: ...e neighbor s optional OSPF capabilities are also listed in its Hello packets This enables received Hello Packets to be rejected i e neighbor relationships will not even start to form if there is a mis...

Page 661: ...eaid The areaid identifies the OSPF area whose ranges are being displayed Syntax show ip ospf range areaid Default Setting None Command Mode Privileged Exec User Exec Display Messages Area ID The area...

Page 662: ...For each of the 15 most recent SPF runs the table lists how long ago the SPF ran how long the SPF took and the reasons why the SPF was scheduled Syntax show ip ospf statistics Default Setting None Co...

Page 663: ...lized on the switch Syntax show ip ospf stub table Default Setting None Command Mode Privileged Exec User Exec Display Messages Area ID A 32 bit identifier for the created stub area Type of Service Th...

Page 664: ...vileged Exec User Exec Display Messages Area ID The area id of the requested OSPF area Neighbor Router ID The input neighbor Router ID Hello Interval The configured hello interval for the OSPF virtual...

Page 665: ...stem Syntax show ip ospf virtual link brief Default Setting None Command Mode Privileged Exec User Exec Display Messages Area ID The area id of the requested OSPF area Neighbor The neighbor interface...

Page 666: ...Configuration Commands 7 3 2 1 router ospf Use this command to enter Router OSPF mode Syntax router ospf Default Setting None Command Mode Global Config 7 3 2 2 enable Use enable command resets the de...

Page 667: ...dress wildcard mask area area id no network ip address wildcard mask area area id Default Setting Disable d Command Mode Router OSPF Config Mode 7 3 2 4 ip ospf area Use ip ospf area command to enable...

Page 668: ...according to RFC 2328 OSPF 1583 compatibility mode should be disabled 1583compatibility command enables OSPF 1583 compatibility no 1583compatibility command disables OSPF 1583 compatibility Syntax 15...

Page 669: ...ult info originate command configures the metric value and type for the default route advertised into the NSSA The optional metric parameter specifies the metric of the default route and is to be in a...

Page 670: ...he NSSA no area nssa no redistribute command disables the NSSA ABR so that learned external routes are redistributed to the NSSA Syntax area areaid nssa no redistribute no area areaid nssa no redistri...

Page 671: ...anslator role from the specified area id Syntax area areaid nssa translator role always candidate no area areaid nssa translator role always candidate Default Setting None Command Mode Router OSPF Con...

Page 672: ...cified area range The ipaddr is a valid IP address The subnetmask is a valid subnet mask Syntax area areaid range ipaddr subnetmask summarylink nssaexternallink advertise not advertise no area areaid...

Page 673: ...mode for the stub area identified by areaid Syntax area areaid stub no summary no area areaid stub no summary Default Setting Disable d Command Mode Router OSPF Config Mode 7 3 2 16 area virtual link...

Page 674: ...default password key nor the default key id are configured no area virtual link authentication command configures the default authentication type for the OSPF virtual interface identified by areaid an...

Page 675: ...ID of the neighbor Syntax area areaid virtual link neighbor hello interval 1 65535 no area areaid virtual link neighbor hello interval Default Setting 10 Command Mode Router OSPF Config Mode 7 3 2 20...

Page 676: ...ing them more attractive in route selection The configuration parameters in the auto cost reference bandwidth and bandwidth commands give you control over the default link cost You can configure for O...

Page 677: ...Co Ltd Industrial Layer 3 Managed Ethernet Switch _____________________________________________________________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 677 1246 Rout...

Page 678: ...andwidth for port based routing interfaces and to 10 Mbps for VLAN routing interfaces This command does not affect the actual speed of an interface Use no bandwidth command to set the interface bandwi...

Page 679: ...Ethernet SwitchUser Manual Page 679 1246 7 3 2 25 clear ip ospf Use this command to disable and re enable OSPF Syntax clear ip ospf Default Setting None Command Mode Privileged Exec 7 3 2 26 clear ip...

Page 680: ...e statistics Syntax clear ip ospf counters Default Setting None Command Mode Privileged Exec 7 3 2 28 clear ip ospf neighbor Use this command to drop the adjacency with all OSPF neighbors On each neig...

Page 681: ...e optional parameter slot port To drop adjacency with a specific router ID on a specific interface use the optional parameter ipaddr Syntax clear ip ospf neighbor interface slot port vlan vlan id ipAd...

Page 682: ...command is used to control the advertisement of default routes Syntax default information originate always metric 0 16777214 metric type 1 2 no default information originate metric metric type Defaul...

Page 683: ...sets the default route preference value of OSPF routes in the router The type of OSPF can be intra inter or external All the external type routes are given the same preference value Syntax distance o...

Page 684: ...exit overflow interval seconds no exit overflow interval Default Setting 0 Command Mode Router OSPF Config Mode 7 3 2 36 external lsdb limit external lsdb limit command configures the external LSDB li...

Page 685: ...e type is encrypt the key may be up to 16 bytes If the type is encrypt a keyid in the range of 0 and 255 must be specified Unauthenticated interfaces do not need an authentication key or authenticatio...

Page 686: ...some multiple of the Hello Interval i e 4 Valid values range in seconds from 1 to 2147483647 no ip ospf dead interval command sets the default OSPF dead interval for the specified interface Syntax ip...

Page 687: ...as a point to point network For point to point networks OSPF does not elect a designated router or generate a network link state advertisement LSA Both endpoints of the link must be configured to oper...

Page 688: ...uest packets Valid values range from 0 to 3600 1 hour no ip ospf retransmit command sets the default OSPF retransmit Interval for the specified interface Syntax ip ospf retransmit interval 0 3600 no i...

Page 689: ...rface When a router receives a Database Description packet it examines the MTU advertised by the neighbor By default if the MTU is larger than the router can accept the Database Description packet is...

Page 690: ...col routers Syntax redistribute rip bgp static connected metric 0 16777214 metric type 1 2 tag 0 4294967295 subnets no redistribute rip bgp static connected metric 0 16777214 metric type 1 2 tag 0 429...

Page 691: ...or all interfaces Any interface previously configured to be passive reverts to non passive mode Syntax passive interface default no passive interface default Default Setting Disable d Command Mode Rou...

Page 692: ...___________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 692 1246 7 3 2 51 timers spf Use this command to configure the SPF delay time and hold time The valid range for both parameters i...

Page 693: ...Technology Co Ltd Industrial Layer 3 Managed Ethernet Switch _____________________________________________________________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 6...

Page 694: ...y Default Setting None Command Mode Privileged Exec User Exec Display Message Maximum Hop Count Is the maximum allowable relay agent hops Minimum Wait Time Seconds Is the minimum wait time Admin Mode...

Page 695: ...CP Relay on the system Syntax bootpdhcprelay cidoptmode no bootpdhcprelay cidoptmode no This command is used to disable the circuit ID option mode for BootP DHCP Relay on the system Default Setting Di...

Page 696: ...o 16 no Set the maximum hop count to 4 Default Setting The default value is 4 Command Mode Global Config 7 4 2 4 bootpdhcprelay minwaittime This command configures the minimum wait time in seconds for...

Page 697: ...naged Ethernet SwitchUser Manual Page 697 1246 7 4 2 5 bootpdhcprelay serverip This command configures the server IP Address for BootP DHCP Relay on the system Syntax bootpdhcprelay serverip ipaddr no...

Page 698: ...ntax show ip helper address Default Setting None Command Mode Privileged Exec User Exec Display Message Interface The relay configuration is applied to packets that arrive on this interface This field...

Page 699: ...ges relayed The number of DHCP server messages relayed to a client UDP client messages received The number of valid UDP messages received UDP client messages relayed The number of valid UDP messages r...

Page 700: ...ime no ip helper address ipaddr udp port dhcp domain isakmp mobile ip nameserver netbios dgm netbios ns ntp pim auto rp rip tacacs tftp time no This command is used to delete the address Default Setti...

Page 701: ...r to specify multiple server addresses for a given UDP port number or to specify multiple UDP port numbers handled by a specific server Syntax ip helper address ipaddr udp port dhcp domain isakmp mobi...

Page 702: ...____________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 702 1246 7 5 2 5 clear ip helper statistics This command is used this command to clear the information of UDP packets pr...

Page 703: ...luded in updates sent to the router from which it was learned but the metric will be set to infinity The default is simple Auto Summary Mode Select enable or disable from the pulldown menu If you sele...

Page 704: ...2 Both This is a configured value RIP Admin Mode RIP administrative mode of router RIP operation enable disable it This is a configured value Link State Indicates whether the RIP interface is up or d...

Page 705: ...Syntax show ip rip interface brief Default Setting None Command Mode Privileged Exec Display Message Interfacet Valid slot and port number separated by forward slashes IP Address The IP source address...

Page 706: ...6 2 1 enable rip This command resets the default administrative mode of RIP in the router active Syntax enable no enable no This command sets the administrative mode of RIP in the router to inactive D...

Page 707: ...ummarization mode Syntax auto summary no auto summary no This command disables the RIP auto summarization mode Default Setting Disabled Command Mode Router RIP Config 7 6 2 4 default information origi...

Page 708: ...ric 1 15 a value for default metric no This command is used to reset the default metric of distributed routes to its default value Default Setting Not configured Command Mode Router RIP Config 7 6 2 6...

Page 709: ...s command sets the RIP split horizon mode None mode will not use RIP split horizon mode Simple mode will be that a route is not advertised on the interface over which it is learned Poison mode will be...

Page 710: ...e access list to filter routes received from the source protocol Source protocols have OSPF Static and Connected Syntax distribute list 1 199 out ospf static connected no distribute list 1 199 out osp...

Page 711: ...d Internal routes are redistributed by default Source protocols have OSPF Static and Connetced Match types will have internal external 1 external 2 nssa external 1 and nssa external 2 Syntax Format fo...

Page 712: ...andard displayable non control keystrokes from a Standard 101 102 key keyboard If the value of type is encrypt a keyid in the range of 0 and 255 must be specified Syntax ip rip authentication none sim...

Page 713: ...ntrol packets of the specified version s to be received The value for mode is one of rip1 to receive only RIP version 1 formatted packets rip2 for RIP version 2 both to receive packets from either for...

Page 714: ...d version to be sent The value for mode is one of rip1 to broadcast RIP version 1 formatted packets rip1c RIP version 1 compatibility mode which sends RIP version 2 formatted packets via broadcast rip...

Page 715: ...vileged Exec User Exec Display Message Ad Mode Displays the advertise mode which indicates whether router discovery is enabled or disabled on this interface Advertise Address Addresses to be used to a...

Page 716: ...er Discovery on an interface Syntax ip irdp no ip irdp no Disable Router Discovery on an interface Default Setting Disabled Command Mode Interface Config 7 7 2 2 ip irdp address This command configure...

Page 717: ...ertinterval to 9000 seconds no This command configures the default value in seconds of the holdtime field of the router advertisement sent from this interface Default Setting The default value is 3 ma...

Page 718: ...rval no ip irdp minadvertinterval 3 maxadvertinterval The range is 3 to maxadvertinterval seconds no This command sets the minimum time to 450 Default Setting The default value is 450 Command Mode Glo...

Page 719: ...Syntax show ip vlan Default Setting None Command Mode Privileged Exec User Exec Display Message MAC Address used by Routing VLANs Is the MAC Address associated with the internal bridgerouter interface...

Page 720: ...er 3 Managed Ethernet SwitchUser Manual Page 720 1246 7 8 2 Configuration Commands 7 8 2 1 vlan routing This command creates routing on a VLAN Syntax vlan routing vlanid vlan index no vlan routing vla...

Page 721: ...displays some global parameters which are required for monitoring Syntax show ip vrrp Default Setting None Command Mode Privileged Exec User Exec Display Message Admin Mode Displays the administrativ...

Page 722: ...on about each virtual router configured on the switch Syntax show ip vrrp brief Default Setting None Command Mode Privileged Exec User Exec Display Message Interface Valid slot and port number separat...

Page 723: ...rimary IP Address This field represents the configured IP Address for the Virtual router VMAC address Represents the VMAC address of the specified router Authentication type Represents the authenticat...

Page 724: ...router state has changed to MASTER Advertisement Received Represents the total number of VRRP advertisements received by this virtual router Advertisement Interval Errors Represents the total number o...

Page 725: ...246 Invalid Authentication Type Represents the total number of VRRP packets received with unknown authentication type Authentication Type Mismatch Represents the total number of VRRP advertisements re...

Page 726: ...s the administrative mode of VRRP in the router Syntax ip vrrp no ip vrrp Default Setting Disable d Command Mode Global Config This command sets the virtual router ID on an interface for Virtual Route...

Page 727: ...router ID is 1 to 255 addr Secondary IP address of the router ID no This command removes all VRRP configuration details of the virtual router configured on a specific interface Default Setting None C...

Page 728: ...no Use this command to prevent the VRRP Master from accepting ping packets sent to one of the virtual router s IP addresses Default Setting Disabled Command Mode Interface Config 7 9 2 5 ip vrrp authe...

Page 729: ...the preemption mode value for the virtual router configured on a specified interface Syntax ip vrrp 1 255 preempt delay 0 3600 no ip vrrp 1 255 preempt delay 1 255 The range of virtual router ID is 1...

Page 730: ...ddress owner is always 255 so that the address owner is always master If the master has a priority less than 255 it is not the address owner and you configure the priority of another router in the gro...

Page 731: ...ers advertise This command sets the advertisement value for a virtual router in seconds Syntax ip vrrp 1 255 timers advertise 1 255 ip vrrp 1 255 timers advertise 1 255 The range of virtual router ID...

Page 732: ...t value A VRRP configured interface can track more than one interface When a tracked interface goes down then the priority of the router will be decreased by 10 the default priority decrement for each...

Page 733: ...efault priority decrement for each downed route By default no routes are tracked If you specify just the route to be tracked without giving the optional priority then the default priority will be set...

Page 734: ...1 show ip dvmrp This command displays the system wide information for DVMRP Syntax show ip dvmrp Default Setting None Command Mode Privileged Exec User EXEC Admin Mode This field indicates whether DVM...

Page 735: ...ace Mode This field indicates whether DVMRP is enabled or disabled on the specified interface This is a configured value Interface Metric This field indicates the metric of this interface This is a co...

Page 736: ...ays the state of the neighboring router The possible value for this field are ACTIVE or DOWN Up Time This field indicates the time since this neighboring router was learned Expiry Time This field indi...

Page 737: ...t datagrams Syntax show ip dvmrp nexthop Default Setting None Command Mode Privileged Exec User Exec Display Message Source IP This field displays the sources for which this entry specifies a next hop...

Page 738: ...ormation Syntax show ip dvmrp prune Default Setting None Command Mode Privileged Exec User Exec Display Message Group IP This field identifies the multicast Address that is pruned Source IP This field...

Page 739: ...ress of the source group Source Mask This field displays the IP Mask for the source group Upstream Neighbor This field indicates the IP Address of the neighbor which is the source for the packets for...

Page 740: ...he router to active IGMP must be enabled before DVMRP can be enabled Syntax ip dvmrp no ip dvmrp no This command sets administrative mode of DVMRP in the router to inactive IGMP must be enabled before...

Page 741: ...vmrp metric This command configures the metric for an interface This value is used in the DVMRP messages as the cost to reach this network Syntax ip dvmrp metric value no ip dvmrp metric value value T...

Page 742: ...s and options of the switch For every configuration command there is a show command that will display the configuration setting 8 2 1 Show Commands 8 2 1 1 show ip igmp This command displays the syste...

Page 743: ...IGMP in Querier mode or Non Querier mode Groups This displays the list of multicast groups that are registered on this interface If detail is specified the following fields are displayed Multicast IP...

Page 744: ...ion 1 or 2 Query Interval secs This field indicates the frequency at which IGMP Host Query packets are transmitted on this interface This is a configured value Query Max Response Time 1 10 of a second...

Page 745: ...erier mode Group Compatibility Mode The group compatibility mode v1 v2 or v3 for the specified group on this interface Source Filter Mode The source filter mode Include Exclude for the specified group...

Page 746: ...tatus This field indicates the status of the IGMP router whether it is running in Querier mode or Non Querier mode Querier IP Address This field displays the IP Address of the IGMP Querier on the IP s...

Page 747: ...command sets the administrative mode of IGMP in the router to active Syntax ip igmp no ip igmp no This command sets the administrative mode of IGMP in the router to inactive Default Setting Disabled...

Page 748: ...er no This command resets the version of IGMP for this interface The version is reset to the default value Default Setting 3 Command Mode Interface Config 8 2 2 3 ip igmp last member query count This...

Page 749: ...d resets the Maximum Response Time being inserted into Group Specific Queries sent in response to Leave Group messages on the interface to the default value Default Setting 10 tenths of a second Comma...

Page 750: ...5 tenths of a second no This command resets the maximum response time interval for the specified interface which is the maximum query response time advertised in IGMPv2 queries on this interface to th...

Page 751: ...20 no This command resets the number of Queries sent out on startup separated by the Startup Query Interval on the interface to the default value Default Setting 2 Command Mode Interface Config 8 2 2...

Page 752: ...ed value IPv4 Protocol State This field indicates the current state of the IPv4 multicast protocol Possible values are Operational or Non Operational IPv6 Protocol State This field indicates the curre...

Page 753: ...his command displays all the configured administrative scoped multicast boundaries Syntax show ip mcast boundary slot port vlan vlan id slot port Interface number vlan id VLAN ID The range of VLAN ID...

Page 754: ...mcast interface This command displays the multicast information for the specified interface Syntax show ip mcast interface slot port vlan vlan id slot port Interface number vlan id VLAN ID The range o...

Page 755: ...displays the IP address of the destination of the multicast packet Expiry Time secs This field displays the time of expiry of this entry in seconds Up Time secs This field displays the time elapsed s...

Page 756: ...llow fields are displayed Source IP This field displays the IP address of the multicast data source Group IP This field displays the IP address of the destination of the multicast packet Expiry Time s...

Page 757: ...meter is specified the follow fields are displayed Source IP This field displays the IP address of the multicast data source Group IP This field displays the IP address of the destination of the multi...

Page 758: ...ast routing is enabled while IGMP is disabled However the IP multicast mode configuration is stored in the multicast configuration file and is automatically enabled once IGMP is enabled Syntax ip mult...

Page 759: ...up IP address and mask is a group IP mask Syntax ip mcast boundary groupipaddr mask no ip mcast boundary groupipaddr mask groupipaddr the multicast group address for the start of the range of addresse...

Page 760: ...eshold is the TTL threshold which is to be applied to the multicast Data packets which are to be forwarded from the interface The value for ttlthreshold has range from 0 to 255 Syntax ip multicast ttl...

Page 761: ...displays the system wide information for PIM DM or PIM SM Syntax show ip pim Default Setting None Command Mode Privileged Exec User Exec Display Message PIM Mode Indicates whether the PIM mode is dens...

Page 762: ...Mode Privileged Exec User Exec Display Message BSR Address IP address of the BSR BSR Priority Priority as configured in the ip pim bsr candidate command BSR Hash Mask Length Length of a mask maximum 3...

Page 763: ...e PIM mode enabled on the interface is dense or sparse Hello Interval The frequency at which PIM hello messages are transmitted on this interface By default the value is 30 seconds Join Prune Interval...

Page 764: ...ed interfaces Syntax show ip pim neighbor slot port vlan vlan id slot port Interface number vlan id VLAN ID The range of VLAN ID is 1 to 4093 Default Setting None Command Mode Privileged Exec User Exe...

Page 765: ...BSR Use the optional parameters to limit the display to a specific RP address or to view group to candidate RP or group to Static RP mapping information Syntax show ip pim rp mapping rp address candi...

Page 766: ...Setting None Command Mode Privileged Exec User Exec Display Message RP Address The IP address of the RP for the group specified Type Indicates the mechanism BSR or static by which the RP was selected...

Page 767: ...ngth The range of the mask is 0 to 32 priority BSR priority The range of the priority is 0 to 255 no This command is used to disable the router to announce its candidacy as a bootstrap router BSR Defa...

Page 768: ...onfigure the RP address for one or more multicast groups The parameter rp address is the IP address of the RP The parameter groupaddress is the group address supported by the RP The parameter groupmas...

Page 769: ...group address group mask slot port Valid slot and port number separated by forward slashes vlan id VLAN ID The range of VLAN ID is 1 to 4093 group address Specifies the group address group mask Speci...

Page 770: ...logy Co Ltd Industrial Layer 3 Managed Ethernet Switch _____________________________________________________________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 770 1246...

Page 771: ...to set the Data Threshold rate for the RP router to the default value Default Setting 0 Command Mode Global Config i This command takes effect only when PIM SM is configured as the PIM mode 8 4 2 7 i...

Page 772: ...o This command sets the administrative mode of PIM on an interface to disabled Default Setting Disabled Command Mode Interface Config 8 4 2 9 ip pim bsr border Use this command to prevent bootstrap ro...

Page 773: ...483647 no ip pim dr priority no Use this command to reset the priority value for which a router is elected as the designated router DR Default Setting 1 Command Mode Interface Config i This command ta...

Page 774: ...ified in seconds This parameter can be configured to a value from 0 to 18000 Syntax ip pim join prune interval 0 18000 no ip pim join prune interval no Use this command to set the join prune interval...

Page 775: ...oxy Syntax show ip igmp proxy Default Setting No ne Command Mode Privileged Exec User Exec Display Message Interface index The interface number of the IGMP Proxy Admin Mode States whether the IGMP Pro...

Page 776: ...___________________________________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 776 1246 Older Version 2 Querier Timeout The interval used to timeout the older version 2...

Page 777: ...mand Mode Privileged Exec User Exec Display Message Interface The interface number of the IGMP Proxy Group Address The IP address of the multicast group Last Reporter The IP address of host that last...

Page 778: ...ss The IP address of the multicast group Last Reporter The IP address of host that last sent a membership report for the current group on the network attached to the IGMP Proxy interface upstream inte...

Page 779: ...ys the following parameters only when you enable IGMP Proxy Syntax show ip igmp proxy interface Default Setting None Command Mode Privileged Exec User Exec Display Message Interface Index Shows the sl...

Page 780: ...router you must enable multicast forwarding Also make sure that there are no multicast routing protocols enabled on the router Syntax ip igmp proxy no ip igmp proxy no This command disables the IGMP...

Page 781: ...rprt interval This command sets the unsolicited report interval for the IGMP Proxy router This command is valid only when you enable IGMP Proxy on the interface The value of interval can be 1 260 seco...

Page 782: ...way you can use your Web browser to manage the Switch from any remote PC station just as if you were directly connected to the Network Switch s console port The 8 menu options available are Management...

Page 783: ...es users to configure switch securities including Port Access Control Port Security Captive portal RADIUS TACACS LDAP Access Control Lists IP Filter Secure HTTP Secure Shell and Denial of Service 4 QO...

Page 784: ...1 1 Viewing ARP Cache The Address Resolution Protocol ARP dynamically maps physical MAC addresses to Internet IP addresses This panel displays the current contents of the ARP cache For each connection...

Page 785: ...The unique box serial number for this switch FRU Number The field replaceable unit number Part Number The manufacturing part number Maintenance Level The identification of the hardware change level M...

Page 786: ...ng SFP Transceiver module Below 1G interface information depends on plugging SFP Transceiver module Interface y The yth 10 Giga information of switch 1 10 Gigabit Ethernet Compliance Codes Transceiver...

Page 787: ...indicates CPU Utilization Notification feature is disabled Free Memory Threshold The CPU Free Memory threshold in kilobytes A zero threshold value indicates CPU Free Memory Notification feature is dis...

Page 788: ..._____________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 788 1246 Command Buttons Submit Update the switch with the values on the screen If you want the switch to retain the new values...

Page 789: ...acters The factory default is blank System Contact Enter the contact person for this switch You may use up to 255 alpha numeric characters The factory default is blank Non Configurable Data IP Address...

Page 790: ...the interface that was last found to be conflicting Last Conflicting MAC Address The MAC address of the remote host associated with the IP address that was last found to be conflicting Time Since Con...

Page 791: ...if the network configuration protocol is configured to None IPv6 Selection Critieria IPv6 Mode Enable Disable IPv6 Service Port Configuration Protocol Enable or Disable DHCPv6 Client protocol on the m...

Page 792: ...te from the Add Delete IPv6 Addresses drop down menu IPv6 Gateway The default gateway for the IPv6 interface The factory default value is None IPv4 Non Configurable Data Burned in MAC Address The burn...

Page 793: ...Mac Address The MacAddress of the neighboring switch isRtr true 1 if the neighbor machine is a router false 2 otherwise Neighbor State The state of the neighboring switch reachable 1 The neighbor is r...

Page 794: ...ved Number of DHCPv6 packets that are received malformed on the service port Total DHCPv6 Packets Received Total number of DHCPv6 packets received on the service port DHCPv6 Solicit Packets Transmitte...

Page 795: ...gateway You can configure the IP information using any of the following BOOTP DHCP Terminal interface via the EIA 232 port Once you have established in band connectivity you can change the IP informat...

Page 796: ...ue must be in the range of 1 to 65535 Port 80 is the default value The currently configured value is shown when the web page is displayed IPv4 Non Configurable Data Burned In MAC Address The burned in...

Page 797: ...Connection NDP Summary Page This screen displays IPv6 Network Port Neighbor entries Non Configurable Data IPv6 Address The Ipv6 Address of a neighbor switch visible to the Network Port Mac Address The...

Page 798: ...mber of DHCPv6 packets that are received malformed on the network interface Total DHCPv6 Packets Received Total number of DHCPv6 packets received on the network interface DHCPv6 Solicit Packets Transm...

Page 799: ...tions Configuration Selection Criteria DHCP Vendor Class ID Mode Enable Disable the vendor class identifier mode Configurable Data DHCP Vendor Class ID String The string that would be added to DHCP re...

Page 800: ...ion Hard Timeout This field is used to set the hard timeout for HTTP sessions This timeout is unaffected by the activity level of the session The value must be in the range of 0 to 168 hours A value o...

Page 801: ...o shuts down the telnet port If the admin mode is set to disable then all existing telnet connections are disconnected The default value is Enable Configurable Data Telnet Session Timeout minutes Spec...

Page 802: ...ction Criteria Admin Mode Specifies if the Outbound Telnet service is Enable or Disable Default value is Enable Maximum Sessions Specifies the maximum number of Outbound Telnet Sessions allowed Defaul...

Page 803: ...tion Criteria Admin Mode Specifies if the Outbound Telnet service is Enable or Disable Default value is Enable Maximum Sessions Specifies the maximum number of Outbound Telnet Sessions allowed Default...

Page 804: ...d is reached on the console port the system interface becomes silent for a specified amount of time before allowing the next logon attempt Use the silent time command to set this interval When this th...

Page 805: ...on Changed Page Command Buttons Save Click this button to have configuration changes you have made saved across a system reboot All changes submitted since the previous save or system reboot will be r...

Page 806: ...n will reset all of the system login passwords to their default values If you want the switch to retain the new values across a power cycle you must perform a save 9 2 3 4 Erase Startup Configuration...

Page 807: ...xxx xxx send count 5 receive count n Selection Criteria Ping Protocol Select using which type of address type IPv4 IPv6 to ping Interface Select an IPv6 interface Ping Select Global or Link Local for...

Page 808: ...Manual Page 808 1246 Link Local Address Enter the link local address of the station you want the switch to ping The initial value is blank The Link Local Address you enter is not retained across a po...

Page 809: ...Name V6 to trace IPv6 Select the way IPv6 Address to trace IP Address Hostname Enter the IP address or Hostname of the station you want the switch to discover path The initial value is blank Hostnames...

Page 810: ...net Switch _____________________________________________________________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 810 1246 Traceroute Display the result of traceroute...

Page 811: ...the update will be stopped SSH 1 RSA Key File SSH 1 Rivest Shamir Adleman RSA Key File SSH 2 RSA Key PEM File SSH 2 Rivest Shamir Adleman RSA Key File PEM Encoded SSH 2 DSA Key PEM File SSH 2 Digital...

Page 812: ...file is located You may enter up to 160 characters The factory default is blank Transfer File Name Enter the name on the TFTP server of the file you want to download You may enter up to 32 characters...

Page 813: ...r Address Enter the IP address of the TFTP server The factory default is 0 0 0 0 Link Local Address Indicate whether to use IPv6 link local address to transfer Transfer File Path Enter the path on the...

Page 814: ...time operation codes Non Configurable Data Current Configuration File Current Configuration files Current Runtime File Current Run time operation codes Command Buttons Submit Send the updated screen t...

Page 815: ...start up configuration file from the running configuration file on switch Configurable Data File Name Enter the name you want to give the file being copied You may enter up to 32 characters The factor...

Page 816: ...re an existing account or to create a new one Use this pull down menu to select one of the existing accounts or select Create to add a new one provided the maximum of five Read Only accounts has not b...

Page 817: ...you selected DES in the Encryption Protocol field enter the SNMPv3 Encryption Key here Otherwise this field is ignored Valid keys are 8 to 64 characters The Apply checkbox must be checked in order to...

Page 818: ...u to select defaultList networkList enableList Create Select create to define a new list When you create a new list undefined is set initially Method 1 Use the dropdown menu to select the method that...

Page 819: ...ifth in the selected authentication list This is the method that will be used if the fourth method times out If you select a method that does not time out as the fifth method the sixth method will not...

Page 820: ...2 5 3 Viewing Login Session Page Non Configurable Data ID Identifies the ID of this row User Name Shows the user name of user who made the session Connection From Shows the IP from which machine the u...

Page 821: ...authentication 3 Local the user s locally stored ID and password will be used for authentication 4 None the user is not authenticated 5 Radius the user s ID and password will be authenticated using th...

Page 822: ...secure and encrypted remote connections to a device Login or Enable Specify the login list and enable list which will be used to validate switch or port access for the users associated with the list H...

Page 823: ...is the method that will be used if the second method times out If you select a method that does not time out as the third method the fourth method will not be tried Method 4 Use the dropdown menu to...

Page 824: ...e password appears in the format or based on the browser used Command Buttons Submit Update the switch with the values on the screen If you want the switch to retain the new values across a power cycl...

Page 825: ...igured user If you assign the non configured user to a login list that specifies authentication via the RADIUS server you will not need to create an account for all users on each switch However by def...

Page 826: ...strength check feature Enabling this feature forces the user to configure passwords that comply with the strong password configuration Default value is Disable History The number of previous passwords...

Page 827: ...s 0 Minimum Character Classes Valid range for user passwords is 0 to 4 number of characters Default value is 4 Exclude Keyword The password to be configured should not contain the keyword mentioned in...

Page 828: ...You can use this screen to reconfigure an existing account or to create a new one Use this pull down menu to select one of the existing accounts or select Create to add a new one provided the maximum...

Page 829: ...hernet SwitchUser Manual Page 829 1246 Submit Update the switch with the values on the screen If you want the switch to retain the new values across a power cycle you must perform a save Delete Delete...

Page 830: ...t and severity On stackable systems this log exists only on the top of stack platform Other platforms in the stack forward their messages to the top of stack log Selection Criteria Admin Status A log...

Page 831: ...237 Interface 12 transitioned to root state on message age timer expiry The above example indicates a user level message 1 with severity 7 debug on a system that is not stack and generated by compone...

Page 832: ...______ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 832 1246 9 2 6 3 Configuring Command Logger Page Configurable Criteria Admin Mode Enable Disable the operation of the CLI Command logg...

Page 833: ...or Disable logging by selecting the corresponding line on the pull down entry field Severity Filter A log records messages equal to or above a configured severity threshold Select the severity option...

Page 834: ...on the platform and OS and is erased when an attempt is made to add an entry after it is full The event log is preserved across system resets Non Configurable Data Entry The number of the entry within...

Page 835: ...RFC 1034 3 5 Preferred name syntax for specifying the Host names Severity Filter A log records messages equal to or above a configured severity threshold Select the severity option by selecting the co...

Page 836: ...terminals A log that is Enabled shall log messages to connected terminals Enable or Disable logging by selecting the corresponding line on the pull down entry field Severity Filter A log records messa...

Page 837: ...e operation of the syslog function by selecting the corresponding line on the pull down entry field Local UDP Port This is the port on the local host from which syslog messages are sent The default po...

Page 838: ...lticast Packets Received The total number of packets received that were directed to a multicast address Note that this number does not include packets directed to the broadcast address Broadcast Packe...

Page 839: ...tries that have been learned by this switch since the most recent reboot Address Entries in Use The number of Learned and static entries in the Forwarding Database Address Table for this switch Maximu...

Page 840: ...er layer protocol Packets Transmitted Without Errors The total number of packets transmitted out of the interface Broadcast Packets Transmitted The total number of packets that higher level protocols...

Page 841: ...transmitted that were between 65 and 127 octets in length inclusive excluding framing bits but including FCS octets Packets RX and TX 128 255 Octets The total number of packets including bad packets...

Page 842: ...s The total number of packets including bad packets received that were between 1024 and 1518 octets in length inclusive excluding framing bits but including FCS octets Packets Received 1518 Octets The...

Page 843: ...t were 64 octets in length excluding framing bits but including FCS octets Packets Transmitted 65 127 Octets The total number of packets including bad packets received that were between 65 and 127 oct...

Page 844: ...ssion on a particular interface fails due to excessive collisions STP BPDUs Received Number of STP BPDUs received at the selected port STP BPDUs Transmitted Number of STP BPDUs transmitted from the se...

Page 845: ...rs Last Cleared The elapsed time in days hours minutes and seconds since the statistics for this port were last cleared Command Buttons Clear Counters Clear all the counters resetting all statistics f...

Page 846: ...r protocol Broadcast Packets Received The total number of good packets received that were directed to the broadcast address Note that this does not include multicast packets Packets Transmitted withou...

Page 847: ...menu to select one of the existing community names or select Create to add a new one Access Mode Specify the access level for this community by selecting Read Write or Read Only from the pull down me...

Page 848: ...is allowed from any IP address Otherwise every client s IP address is ANDed with the mask as is the Client IP Address and if the values are equal access is allowed For example if the Client IP Addres...

Page 849: ...yption Protocol are None or DES User Name Enter SNMP user name you want to create You can only enter data in this field when you are creating a new account User names are up to 8 characters in length...

Page 850: ...ate to add a new one Configurable Data Protocol Select IPv4 or IPv6 to configure the corresponding attributes IP Address Enter the IP address of SNMP host which will receive SNMP trap inform from this...

Page 851: ...e type of protocol used for the SNMP Trap Receiver Configuration IPv4 Choose IPv4 to enter the address in IPv4 format IPv6 Choose IPv6 to enter the address in IPv6 format DNS Choose DNS to enter the a...

Page 852: ...imes Inform Timeout Specify how many seconds does the switch to wait for the inform ACK If the inform ACK is not received within the configured timeout value switch will resend the inform according to...

Page 853: ...y field The factory default is enabled This trap is triggered when the same user ID is logged into the switch more than once at the same time either via telnet or the serial port Spanning Tree Enable...

Page 854: ...disabled Configuration Error This trap signifies that a packet has been received on a non virtual interface from a router whose configuration parameters conflict with this router s configuration param...

Page 855: ...disabled State Change Traps Interface State Change This trap signifies that there has been a change in the state of a non virtual OSPF interface This trap should be generated when the interface state...

Page 856: ...Traps If you enable this field the SNMP agent sends a trap when a client authenticates with and connects to a captive portal Client Database Full Traps If you enable this field the SNMP agent sends a...

Page 857: ...acity The maximum number of traps stored in the log If the number of traps exceeds the capacity the entries will overwrite the oldest entries Number of Traps Since Log Last Viewed The number of traps...

Page 858: ...________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 858 1246 9 2 8 10 Viewing SNMP supported MIBs Page This is a list of all the MIBs supported by the switch Non configurable Data Name...

Page 859: ...as Internet wide scope Multicast SNTP operates in the same manner as multicast mode and uses a local multicast address Port Specifies the local UDP port to listen for responses broadcasts Allowed rang...

Page 860: ...ent last updated the system clock Last Attempt Time Specifies the local date and time UTC of the last SNTP request or receipt of an unsolicited message Last Attempt Status Specifies the status of the...

Page 861: ...received valid packet Server Stratum Specifies the claimed stratum of the server for the last received valid packet Reference Clock Id Specifies the reference clock identifier of the server for the l...

Page 862: ...each time a SNTP request is sent to it Port Specifies the port on the server to which SNTP requests are to be sent Allowed range is 1 to 65535 Default value is 123 Priority Specifies the priority of...

Page 863: ...tion values Success The SNTP operation was successful and the system time was updated Request Timed Out A directed SNTP request timed out without receiving a response from the SNTP server Bad Date Enc...

Page 864: ...9 5 Configuring Current Time Settings Page Configurable Data Year Year 4 digit Range 2000 2037 Month Month Range 1 12 Day Day of month Range 1 31 Hour Hour in 24 hour format Range 0 23 Minute Minute...

Page 865: ...is not set the switch will only record the time from the factory default set at the last bootup Selection Criteria Direction before utc Sets the local time zone before east of UTC after utc Sets the...

Page 866: ...gure the parameters for CDP which is used to discover a CISCO device on the LAN Selection Criteria Admin Mode CDP administration mode which are Enable and Disable Interface Specifies the list of ports...

Page 867: ...g it Capability Describes the device s functional capability in the form of a device type for example a switch Platform Describes the hardware platform name of the device for example FSC the L2 Networ...

Page 868: ...tics Non Configurable Data Incoming Packet Number Received legal CDP packets number from neighbors Outgoing Packet Number Transmitted CDP packets number from this device Error Packet Number Received i...

Page 869: ...Aggressive Interface Specifies the list of all the physical ports on which UDLD can be configured Port Mode Specifies the UDLD Port mode for the selected interface It has three options Disable Normal...

Page 870: ...cted port This section will be hidden if the port doesn t enable UDLD Current Timeout Interval Specifies the runtime Timeout Interval of the selected port This section will be hidden if the port doesn...

Page 871: ...transmit delay in seconds The range is from 1 to 8192 Default value is 2 seconds Hold Multiplier Specifies the multiplier on Transmit Interval to assign TTL The range is from 2 to 10 Default value is...

Page 872: ...DP 802 1AB notification mode for the selected interface Configurable Data Transmit Management Information Specifies whether management address is transmitted in LLDP frames for the selected interface...

Page 873: ...2 1AB can be configured Link Status Specifies the Link Status of the ports whether it is Up Down Transmit Specifies the LLDP 802 1AB transmit mode of the interface Receive Specifies the LLDP 802 1AB r...

Page 874: ...he complete set of information advertised by a particular MAC Service Access Point MSAP has been deleted from tables associated with the remote systems because the information timeliness interval has...

Page 875: ...on the local ports TLV 802 1 Specifies the total number of LLDP TLVs received on the local ports which are of type 802 1 TLV 802 3 Specifies the total number of LLDP TLVs received on the local ports w...

Page 876: ...describes the source of the port identifier Port ID Specifies the string that describes the source of the port identifier System Name Specifies the system name of the local system System Description...

Page 877: ...n Status Specifies the capability and current aggregation status of the link Link Aggregation Port Id Specifies the aggregated port identifier Maximum Frame Size Specifies the maximum supported IEEE 8...

Page 878: ...ge 878 1246 9 2 12 7 Viewing LLDP Remote Device Information Page Selection Criteria Local Interface Specifies all the local ports which can receive LLDP frames Non Configurable Data Remote ID Specifie...

Page 879: ...ss of the remote system Type Specifies the type of the management address MAC PHY Configuration Status Auto Negotiation Specifies whether the auto negotiation is supported and whether the auto negotia...

Page 880: ...local port which can receive LLDP frames advertised by a remote system Chassis ID Specifies the chassis component associated with the remote system Port ID Specifies the port component associated wit...

Page 881: ...st repeat count is 3 Non Configurable Data Device Class Specifies local device s MED Classification There are four different kinds of devices three of them represent the actual end points classified a...

Page 882: ...ecked LLDP MED Mode Specifies the Link Layer Data Protocol Media End Point LLDP MED mode for the selected interface By enabling MED we will be effectively enabling transmit and receive function of LLD...

Page 883: ...all the ports on which LLDP MED can be configured Link Status Specifies the link status of the ports whether it is Up Down MED Status Specifies the LLDP MED mode is enabled or disabled on this interf...

Page 884: ...transmitted only then would this information be displayed VLAN ID Specifies the VLAN id associated with a particular policy type Priority Specifies the priority associated with a particular policy typ...

Page 885: ...fies available power sourcing equipment s power value in tenths of watts on the port of local device Source Specifies power source of this port Priority Specifies PSE port power priority Extended PoE...

Page 886: ...tion type Types of application types are unknown voicesignaling guestvoice guestvoicesignalling softphonevoice videoconferencing streammingvideo vidoesignalling Each application type that is received...

Page 887: ...on information as a string for given type of location id Extended PoE Specifies if remote device is a PoE device Device Type Specifies remote device s PoE device type connected to this port Extended P...

Page 888: ...ring must have the following structure MIB Version Organization Software Revision where MIB Version 1 3 the version of this MIB Organization Broadcom Corp Revision 1 0 Agent Address The IP address ass...

Page 889: ...remaining before the sampler is released and stops sampling A management entity wanting to maintain control of the sampler is responsible for setting a new value before the old one expires Allowed ra...

Page 890: ...lot Port sFlowDataSource for this sFlow sampler This Agent will support Physical ports only Configurable Data Receiver Index The sFlowReceiver associated with this counter poller Allowed range is 1 to...

Page 891: ...e receivers can be set If a receiver expires then all samplers associated with the receiver will also expire Allowed range is 1 to 8 Sampling Rate The statistical sampling rate for packet sampling fro...

Page 892: ...e broadcast address Broadcast Packets Received Rate The total number of packets received rates that were directed to the broadcast address Note that this does not include multicast packets Discarded P...

Page 893: ...adcast Packets Transmitted Rate The total number of packets rates that higher level protocols requested be transmitted to the Broadcast address including those that were discarded or not sent Discarde...

Page 894: ...or DHCP server has been moved to a different domain the network portion of the address provided to the client will be based on this new domain Command Buttons Reset Send the updated screen to the swit...

Page 895: ...o include a client identifier in all communications with the DHCP server The identifier type depends on the requirements of your DHCP server Selection Criteria DHCP Identifier Specifies the type of DH...

Page 896: ...a Time Range A new Time Range may be created or an existing Time Range can be deleted based on selection Configurable Data Time Range Name Specifies Time Range Name string which may include alphabetic...

Page 897: ...nge Summary Non Configurable Data Time Range Name Time Range identifier Time Range Status Status of the Time Range Active Inactive Periodic Entry Count The number of periodic time entries currently co...

Page 898: ...ype Specify what type of entry should be created The choices are Absolute or Periodic Start Date Select the day of the month of the absolute entry s start date Start Month Select the month of the abso...

Page 899: ...tiple days can be selected On selecting multiple days for the Start Day field the End Day field takes the same input Hence selecting multiple days for the start day does not require any input for the...

Page 900: ...the concept of a domain name server which holds a cache or database of names mapped to IP addresses To map domain names to IP addresses you must first identify the host names specify the name server t...

Page 901: ...ecifies all the existing domain names along with an additional option Create When the user selects Create another text box Domain Name appears where the user may enter domain name to be configured Con...

Page 902: ...er may enter domain name server to be configured Configurable Data Protocol Select IPv4 or IPv6 to configure the corresponding attributes IP Address Specifies the address of the domain name server Non...

Page 903: ...ain Name System DNS dynamically maps domain name to Internet IP addresses This panel displays the current contents of the DNS cache Non Configurable Data Domain Name List The domain name associated wi...

Page 904: ...omain Specifies all the existing hosts along with an additional option Create When the user selects Create another text box Domain Name appears where the user may enter host to be configured Configura...

Page 905: ...Selects the server type of DDNS server You can choose any of the following type EASYDNS DYNDNS DHS ODS DYNS ZONEEDIT TZO Configurable Data Host Name The hostname you want to be updated Length is must...

Page 906: ...ng database Configurable Data Aging Interval secs The forwarding database contains static entries which are never aged out and dynamically learned entries which are removed if they are not updated wit...

Page 907: ...xists that entry will be displayed as the first entry followed by the remaining greater MAC addresses An exact match is required Non Configurable Data MAC Address A unicast MAC address for which the s...

Page 908: ...blocks discards the broadcast traffic The factory default is disabled Broadcast Rate Set the packet rate value on selected interface The valid values are from 1 to 14880000 pps Multicast Storm Control...

Page 909: ...default is enabled Maximum Frame Size The maximum Ethernet frame size the interface supports or is configured including Ethernet header CRC and payload 1518 to 9216 The default maximum frame size is...

Page 910: ...n Configurable Port Status Data Interface Identifies the port Port Type For normal ports this field will be blank Otherwise the possible values are Port Channel the port is a member of a Link Aggregat...

Page 911: ...status is unknown when a port is down Physical Status Indicates the port speed and duplex mode Link Status Indicates whether the Link is up or down Link Trap Indicates whether or not the port will sen...

Page 912: ...string to be attached to a port It can be up to 64 characters in length Non Configurable Data Interface Identifies the port Physical Address Displays the physical address of the specified interface P...

Page 913: ...ssion Mode is disabled Destination Port Acts as a probe port and will receive all the traffic from configured mirrored port s Default value is blank Configurable Data Source Port s Specifies the sourc...

Page 914: ...s disabled Configurable Data Error Disable Recovery Interval This specifies the interval value for Error Disable Recovery The factory default is 300 seconds The range of Interval is 30 to 86400 Non Co...

Page 915: ...DHCP Snooping Configuration Page Configurable Data DHCP Snooping Mode Enables or disables the DHCP Snooping feature The factory default is disabled MAC Address Validation Enables or disables the valid...

Page 916: ...guration Page Selection Criteria VLAN ID Select the VLAN for which information to be displayed or configured for DHCP Snooping Application Configurable Data DHCP Snooping Mode Enables or disables the...

Page 917: ...for DHCP Snooping purpose If the incoming rate of DHCP packets exceeds the value of this object for consecutively burst interval seconds the port will be shutdown If this value is None there is no lim...

Page 918: ...figurable data Static Binding List Lists all the DHCP snooping static binding entries page by page Ex Page 1 displays first 15 available static entries Page 2 displays Next 15 available static entries...

Page 919: ...ection Criteria Local Check the Local Checkbox to disable the Remote objects like Remote File Name and Remote IP Remote Check the Remote Checkbox to Enable the Remote objects like Remote File Name and...

Page 920: ...d and snooping enabled interface for which statistics to be displayed Non Configurable Data MAC Verify Failures Number of packets that were dropped by DHCP Snooping as there is no matching DHCP Snoopi...

Page 921: ...DHCP Snooping Information Option 82 9 3 4 1 Configuring DHCP Snooping Information Option 82 Global Configurable Data DHCP Snooping Information Option 82 Mode Enables or Disables the DHCP Snooping Info...

Page 922: ...Data DHCP Snooping Information Option 82 Mode Enables or Disables DHCP Snooping Information Option 82 Mode on selected interface The factory default is Disable DHCP Snooping Information Option 82 Tru...

Page 923: ...ure on selected VLAN The factory default is Disable DHCP Snooping Information Option 82 Circuit Id Enables or Disables the DHCP Snooping Information Option 82 Circuit Identifier feature on selected VL...

Page 924: ...P Snooping Information Option 82 interface Untrusted Client Messages with Option 82 Number of DHCP Request packets received with Option 82 on untrusted DHCP Snooping Information Option 82 interface Tr...

Page 925: ...is not in DHCP Snooping Binding database The factory default is disabled IPSG Port Security Enables or disables the IPSG Port Security on the selected interface If IPSG Port Security is enabled then...

Page 926: ...y page Ex Page 1 displays first 15 static entries Page 2 displays Next 15 static entries Interface interface MAC Address MAC address VLAN ID VLAN id IP Address IP address Filter Type Filter Type Remov...

Page 927: ...ndustrial Layer 3 Managed Ethernet SwitchUser Manual Page 927 1246 Page Number from this list to display the particular Page entries Command Buttons Add Adds DHCP snooping binding entry into the datab...

Page 928: ...this field when you are creating a new VLAN The range of the VLAN ID is 1 to 4093 VLAN Name Use this optional field to specify a name for the VLAN It can be up to 32 alphanumeric characters long inclu...

Page 929: ...in this VLAN unless it receives a GVRP request This is equivalent to registration normal in the IEEE 802 1Q standard Tagging Select the tagging behavior for this port in this VLAN The factory default...

Page 930: ...D The VLAN Identifier VID of the VLAN The range of the VLAN ID is 1 to 4093 VLAN Name The name of the VLAN VLAN ID 1 is always named Default VLAN Type The VLAN type Default VLAN ID 1 always present St...

Page 931: ...mitUntaggedOnly the port discard tagged frames it receives If you select Admit All untagged and priority tagged frames received on the port will be accepted and assigned the value of the Port VLAN ID...

Page 932: ...agged frames or priority tagged frames received on this port are accepted and assigned the value of the Port VLAN ID for this port With either option VLAN tagged frames are forwarded in accordance to...

Page 933: ...parameters will be reset to their factory default values Also all VLANs except for the default VLAN will be deleted The factory default values are All ports are assigned to the default VLAN of 1 All p...

Page 934: ...pecifies the administrative mode via which Double VLAN Tagging can be enabled or disabled The default value for this is Disable Interface EtherType The two byte hex EtherType to be used as the first 1...

Page 935: ...1246 9 3 7 2 DVLAN Interface Summary Non Configurable Data Interface The physical interface for which data is being displayed Interface Mode This specifies the administrative mode via which Double VLA...

Page 936: ...group The selection box lists all the possible protected port Group IDs supported for the current platform The valid range of the Group ID is 0 to 2 Configurable Data Group Name It is a name associate...

Page 937: ...fic can flow between protected ports belonging to different groups but not within the same group The valid range of the Group ID is 0 to 2 Group Name Displays the alphanumeric string associated with a...

Page 938: ...ifically assigned to the port using the Port VLAN Configuration screen You define a protocol based VLAN by creating a group Each group has a one to one relationship with a VLAN ID can include one to t...

Page 939: ...included in the group Note that a given interface can only belong to one group for a given protocol If you have already added interface 0 1 to a group for IP you cannot add it to another group that a...

Page 940: ...assigned when you created the group Protocol s The protocol s that belongs to the group There are three configurable protocols IP IPX and ARP IP IP is a network layer protocol that provides a connecti...

Page 941: ...ects the IP Address bound to a VLAN ID To add another IP Subnet based VLAN select Add option Configurable Data IP Address Valid IP Address bound to VLAN ID This field is configurable only when a new I...

Page 942: ...ased VLAN Information Page Non Configurable Data IP Address The IP Address of the subnet that is being bound to a VLAN ID Subnet Mask Subnet mask of the IP Address bound to VLAN ID VLAN ID VLAN ID to...

Page 943: ...urce MAC address of the packet is looked up If an entry is found the corresponding VLAN ID is assigned to the packet If the packet is already priority tagged it will maintain this value otherwise the...

Page 944: ...Managed Ethernet SwitchUser Manual Page 944 1246 9 3 11 2 Viewing MAC based VLAN Information Page Non Configurable Data MAC Address MAC Address bound to a VLAN ID VLAN ID The VLAN ID to which a MAC A...

Page 945: ...Submit Applies the new configuration and causes the changes to take effect These changes will not be retained across a power cycle unless a save configuration is performed 9 3 12 2 MAC based Voice VLA...

Page 946: ...figuring The priority id is the priority of the voice traffic the valid range is 0 to 7 Voice VLAN Name Use this field to specify the name of the voice device It is to help the device management Comma...

Page 947: ...r which you want to configure data Voice VLAN Interface Mode Select the Voice VLAN mode for selected interface Disable Default value None Allow the IP phone to use its own configuration to send untagg...

Page 948: ...e selected the Create option Configurable Data MAC Address The MAC address of the filter in the format 00 01 1A B2 53 4D You can only change this field when you have selected the Create Filter option...

Page 949: ...tchUser Manual Page 949 1246 9 3 14 2 MAC filter Summary Page Non Configurable Data MAC Address The MAC address of the filter in the format 00 01 1A B2 53 4D VLAN ID The VLAN ID associated with the fi...

Page 950: ...ges to take effect Configurable Data GVRP Mode Choose the GARP VLAN Registration Protocol administrative mode for the switch by selecting enable or disable from the pull down menu The factory default...

Page 951: ...fy the time between the transmission of GARP PDUs registering or re registering membership for a VLAN or multicast group in centiseconds Enter a number between 10 and 100 0 1 to 1 0 seconds The factor...

Page 952: ...s switch is enabled or disabled The factory default is disabled Switch GMRP Indicates whether the GARP Multicast Registration Protocol administrative mode for this switch enabled or disabled The facto...

Page 953: ...t for each port Permissible values are 30 to 600 centiseconds 0 3 to 6 0 seconds The factory default is 60 centiseconds 0 6 seconds Leave All Time centiseconds This Leave All Time controls how frequen...

Page 954: ...the VTP device mode client server and transparent The default operational mode of VTP device is server Pruning Mode Enable or disable the VTP pruning mode V2 Mode Enable or disable the VTP version 2 m...

Page 955: ...TP supported VLANs Maximum number of VLANs supported locally Support VLAN number Number of existing VLANs Operating mode Displays VTP operating mode Domain Name Displays the name that identifies the a...

Page 956: ...RP packets will be enabled The factory default is disable Validate Destination MAC Choose the DAI Destination MAC Validation Mode for the switch by selecting Enable or Disable from the pull down menu...

Page 957: ...enabled on this VLAN If this object is set to Enable it will log the Invalid ARP Packets information If this object is set to Disable Dynamic ARP Inspection logging is disabled ARP ACL Name Name of AR...

Page 958: ...lt is disable Rate Limit Specifies rate limit value for Dynamic ARP Inspection purpose If the incoming rate of ARP packets exceeds the value of this object for consecutively burst interval seconds ARP...

Page 959: ...age Configurable Data ARP ACL Name This is used to create New ARP ACL for DAI Remove This is used to select the particular ACLs which you want to delete Non Configurable Data ARP ACL Name This will li...

Page 960: ...ble Data Sender IP Address This is used to create new Rule for the Selected ARP ACL This indicates Sender IP address match value for the ARP ACL Sender MAC Address This is used to create new Rule for...

Page 961: ...g binding entry found ACL Permits Number of ARP packets that were permitted by DAI as there is a matching ARP ACL rule found for this VLAN Bad Source MAC Number of ARP packets that were dropped by DAI...

Page 962: ...Admin Mode Select the administrative mode for IGMP Snooping for the switch from the pulldown menu The default is disable Non Configurable Data Multicast Control Frame Count The number of multicast co...

Page 963: ...ult is disable Configurable Data Group Membership Interval Specify the amount of time you want the switch to wait for a report for a particular group on a particular interface before it deletes that i...

Page 964: ...nooping Fast Leave Mode for the specified VLAN ID Group Membership Interval Sets the value for group membership interval of IGMP Snooping for the specified VLAN ID Valid range is Maximum Response Time...

Page 965: ...N ID Fast Leave Admin Mode Fast Leave Mode for VLAN ID Group Membership Interval Group Membership Interval of IGMP Snooping for the specified VLAN ID Valid range is 2 to 3600 Maximum Response Time Max...

Page 966: ...ged Ethernet SwitchUser Manual Page 966 1246 9 3 18 5 Configuring Multicast Router Page Selection Criteria Interface The select box lists all interfaces Select the interface for which you want Multica...

Page 967: ...ewing Multicast Router Statistics Page Selection Criteria Interface The single select box lists all physical and LAG interfaces Select the interface for which you want to display the statistics Non Co...

Page 968: ...outer may be enabled or disabled using this Configurable Data VLAN ID VLAN ID for which the Multicast Router Mode is to be Enabled or Disabled Command Buttons Submit Update the switch with the values...

Page 969: ...AN ID The VLAN ID used with the MAC address to fully identify packets you want L2Mcast Group You can only change this field when you have selected the Create Filter option Configurable Data MAC Addres...

Page 970: ...se entries are used by the transparent bridging function to determine how to forward a received frame Non Configurable Data VLAN L2Mcast Group s VLAN ID value MAC Address A multicast MAC address for w...

Page 971: ...disable Configurable Data Snooping Querier Address Specify the Snooping Querier Address to be used as source address in periodic IGMP queries This address is used when no address is configured on the...

Page 972: ...Mode Enable or disable the IGMP Snooping Querier participate in election mode When this mode is disabled up on seeing other querier of same version in the VLAN the snooping querier move to non querie...

Page 973: ...the record exists that entry will be displayed An exact match is required Querier Election Participate Mode Displays the querier election participate mode on the VLAN When this mode is disabled up on...

Page 974: ...rier in the VLAN it moves to non querier mode Non Querier Snooping switch is in Non Querier mode in the VLAN If the querier expiry interval timer is expires the snooping switch will move into querier...

Page 975: ...riteria Admin Mode Select the administrative mode for MLD Snooping for the switch from the pulldown menu The default is disable Non Configurable Data Multicast Control Frame Count The number of multic...

Page 976: ...he group The valid range is from 2 to 3600 seconds The configured value must be greater than Max Response Time The default is 260 seconds Max Response Time Specify the amount of time you want the swit...

Page 977: ...the specified VLAN ID Fast Leave Admin Mode Enable or disable the MLD Snooping Fast Leave Mode for the specified VLAN ID Group Membership Interval Sets the value for group membership interval of MLD S...

Page 978: ...VLAN ID Fast Leave Admin Mode Fast Leave Mode for VLAN ID Group Membership Interval Group Membership Interval of MLD Snooping for the specified VLAN ID Valid range is 2 to 3600 Maximum Response Time M...

Page 979: ...bled Configurable Data Multicast Router Enable or disable Multicast Router on the selected Slot Port Command Buttons Submit Update the switch with the values you entered 9 3 20 6 Configuring MLD Snoop...

Page 980: ...ch the Multicast Router Mode is to be Enabled or Disabled Multicast Router For the VLAN ID multicast router may be enabled or disabled using this Command Buttons Submit Update the switch with the valu...

Page 981: ...VLAN ID The VLAN ID used with the MAC address to fully identify packets you want L2Mcast Group You can only change this field when you have selected the Create Filter option Configurable Data MAC Add...

Page 982: ...se entries are used by the transparent bridging function to determine how to forward a received frame Non Configurable Data VLAN L2Mcast Group s VLAN ID value MAC Address A multicast MAC address for w...

Page 983: ...is disable Snooping Querier Address Specify the Snooping Querier Address to be used as source address in periodic MLD queries This address is used when no address is configured on the VLAN on which q...

Page 984: ...e Mode Enable or disable the MLD Snooping Querier participate in election mode When this mode is disabled up on seeing other querier of same version in the VLAN the snooping querier move to non querie...

Page 985: ...splay the administrative mode for MLD Snooping for the switch Querier Election Participate Mode Displays the querier election participate mode on the VLAN When this mode is disabled up on seeing a que...

Page 986: ...e snooping switch sees a better querier in the VLAN it moves to non querier mode Non Querier Snooping switch is in Non Querier mode in the VLAN If the querier expiry interval timer is expires the snoo...

Page 987: ...xists that entry will be displayed An exact match is required Non Configurable Data MAC Address The multicast MAC address for which you requested data Component This is the component that is responsib...

Page 988: ...itch has forwarding and or filtering information The format is 8 two digit hexadecimal numbers that are separated by colons for example 00 01 23 45 67 89 AB CD Type This displays the type of the entry...

Page 989: ...00 01 23 45 67 89 AB CD Type This displays the type of the entry Static entries are those that are configured by the user Dynamic entries are added to the table as a result of a learning process or pr...

Page 990: ...00 01 23 45 67 89 AB CD Type This displays the type of the entry Static entries are those that are configured by the user Dynamic entries are added to the table as a result of a learning process or pr...

Page 991: ...ta Max MFDB Entries The maximum number of entries that the Multicast Forwarding Database table can hold Most MFDB Entries Since Last Reset The largest number of entries that have been present in the M...

Page 992: ...Name Enter the name you want assigned to the Port Channel You may enter any string of up to 15 alphanumeric characters A valid name has to be specified in order to create the Port Channel Link Trap Sp...

Page 993: ...ort specify whether it is to be included as a member of this Port Channel or not The default is excluded There can be a maximum of 8 ports assigned to a Port Channel Non Configurable Data Slot Port Sl...

Page 994: ...Static Mode Indicates whether port channel is static or dynamic Link Trap Whether or not a trap will be sent when link status changes The factory default is enabled Configured Ports A list of the port...

Page 995: ...1s The default value is IEEE 802 1w Edgeport BPDU Filter Specifies whether Edgeport BPDU Filter is enabled on the switch Value is enabled or disabled Edgeport BPDU Guard Specifies whether Edgeport BPD...

Page 996: ...Table consisting of the VLAN IDs and the corresponding FID associated with each of them FID Table Table consisting of the FIDs and the corresponding VLAN IDs associated with each of them Command Butto...

Page 997: ...20 Bridge Hello Time Specifies the bridge hello time for the Common and Internal Spanning tree CST with the value being less than or equal to Bridge Max Age 2 1 The default hello time value is 2 Brid...

Page 998: ...ted Root for the CST Forward Delay Derived value of the Root Port Bridge Forward Delay parameter Hello Time Derived value of the Root Port Bridge Hello Time parameter Hold Time Minimum time between tr...

Page 999: ...nce Non configured VLANs can be added to or deleted from the MST instance by selecting Add Delete option and entering the VLAN ID in the VLAN ID Individual Range text box Non Configurable Data Bridge...

Page 1000: ..._____________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 1000 1246 not be retained across a power cycle unless a save configuration is performed Delete Deletes the selected MST...

Page 1001: ...tive Mode associated with the port or port channel The possible values are Enable or Disable Auto Edge Configuring the auto edge mode of a port allows the port to become an edge port if it does not se...

Page 1002: ...me Since Counters Last Cleared Time since the counters were last cleared displayed in Days Hours Minutes and Seconds Port Forwarding State The Forwarding State of this port Port Role Each MST Bridge P...

Page 1003: ...anaged Ethernet SwitchUser Manual Page 1003 1246 Command Buttons Submit Applies the new configuration and causes the changes to take effect These changes will not be retained across a power cycle unle...

Page 1004: ...the specified port in the selected MST instance It takes a value in the range of 1 to 200000000 Non Configurable Data Auto calculate Port Path Cost Displays whether the path cost is automatically cal...

Page 1005: ...the bridge Designated Port Port Identifier on the Designated Bridge that offers the lowest cost to the LAN It is made up from the port priority and the interface number of the port Loop Inconsistent...

Page 1006: ...he switch Non Configurable Data STP BPDUs Received Number of STP BPDUs received at the selected port STP BPDUs Transmitted Number of STP BPDUs transmitted from the selected port RSTP BPDUs Received Nu...

Page 1007: ...this port for rapidly fail over of redundant LAN ports Downstream Choose downstream ports for a group Switch will associate these downstream ports with upstream port If the upstream port is link down...

Page 1008: ...atus of all currently configured link state Selection Criteria Admin Mode The administrative mode of the link state function Group ID The group identify of the link state The range of the group ID is...

Page 1009: ...of the existing groups or select Create to add a new one Configurable Data Admin Mode Choose the port backup administrative mode for the switch by selecting enable or disable from the pull down menu...

Page 1010: ...Mode The administrative mode of the port backup function Group ID The group identify of the port backup The range of the group ID is 1 6 Mode The administrative mode of this group Active port The conf...

Page 1011: ...nfiguration Configurable Data Ring Port Interface Select the target ring ring The 0 1 represents to port 1 of the unit 0 the 0 2 represents to port 2 of the unit 0 etc Interface Mode Configure Ring po...

Page 1012: ...r Ring Summary Display Message RSR Ring ID This field indicates the RSR Ring ID leant from the RSR Hello packet RSR Version This field indicates the Ring Version Ring Ports This field display the conf...

Page 1013: ...mode Enable and Disable The default value is Disable Dynamic VLAN Creation Mode This selector lists the two options for Dynamic VLAN Creation Mode Enable and Disable The default value is Disable Monit...

Page 1014: ...ion server mac based The authenticator PAE sets the controlled port mode to reflect the outcome of the authentication exchanges between the supplicant authenticator and the authentication server on a...

Page 1015: ...y the authenticator state machine on this port to timeout the supplicant The supplicant timeout must be a value in the range of 1 to 65535 The default value is 30 Changing the value will not change th...

Page 1016: ...t be retained across a power cycle unless a save is performed Refresh Update the information on the page 9 4 1 3 Configuring Port Access Control PAE Capability Selection Criteria Interface the port to...

Page 1017: ...state machine on the specified port to determine when to send the next EAPOL start frame to the Authenticator on previous authentication failure The Held period must be a number in the range of 1 and...

Page 1018: ...onfigured control mode for the specified port Options are force unauthorized The authenticator port access entity PAE unconditionally sets the controlled port to unauthorized force authorized The auth...

Page 1019: ...iod secs This field displays the configured quiet period for the selected port This quiet period is the value in seconds of the timer used by the authenticator state machine on this port to define per...

Page 1020: ...displays the configured reauthentication period for the selected port The reauthentication period is the value in seconds of the timer used by the authenticator state machine on this port to determin...

Page 1021: ...port control mode for the selected interface is mac based Possible values are Initialize Disconnected Connecting Authenticating Authenticated Aborting Held ForceAuthorized Backend Authentication State...

Page 1022: ...ort to unauthorized Force Authorized The authenticator PAE unconditionally sets the controlled port to authorized Auto The authenticator PAE sets the controlled port mode to reflect the outcome of the...

Page 1023: ...tion Enabled This field shows whether reauthentication of the supplicant for the specified port is allowed The possible values are true and false If the value is true reauthentication will occur Other...

Page 1024: ...ceived by this authenticator EAPOL Logoff Frames Received This displays the number of EAPOL logoff frames that have been received by this authenticator Last EAPOL Frame Version This displays the proto...

Page 1025: ...in the most recently received EAPOL frame EAP Response Id Frames Received This displays the number of EAP response identity frames that have been received by this supplicant EAP Response Frames Receiv...

Page 1026: ...vice Command Buttons Refresh Update the information on the page 9 4 1 9 Defining Port Access Client Summary Page Selection Criteria Interface Selects the port to be displayed When the selection is cha...

Page 1027: ...he supplicant device Command Buttons Refresh Update the information on the page 9 4 1 10 Defining Access Control User Login Page Selection Criteria Users Selects the user name that will use the select...

Page 1028: ...ing each Port Access Privileges Page Selection Criteria Interface Selects the port to configure Configurable Data Users Selects the users that have access to the specified port or ports Command Button...

Page 1029: ...__________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 1029 1246 9 4 1 12 Viewing each Port Access Privileges Summary Page Non Configurable Data Interface Displays the port in S...

Page 1030: ...Access Control History Log Summary Selection Criteria Interface Selects the port to configure Configurable Data Users Selects the users that have access to the specified port or ports Command Buttons...

Page 1031: ...Buttons Submit Applies the new configuration and causes the changes to take effect These changes will not be retained across a power cycle unless a save configuration is performed 9 4 2 2 Configuring...

Page 1032: ...er of Statically Locked MAC Addresses Allowed Sets the maximum number of statically locked MAC addresses on the selected interface Valid range is 0 to 20 Default value is 20 Convert dynamically learne...

Page 1033: ...ser input for the VLAN ID corresponding to the MAC address being deleted MAC Address Accepts user input for the MAC address to be deleted Non configurable data Delete a Static MAC Address Deletes the...

Page 1034: ...ess Page Selection Criteria Interface Select the physical interface for which you want to display data Non configurable data MAC Address Displays the MAC addresses learned on a specific port VLAN ID D...

Page 1035: ...plays the source MAC address of the last packet that was discarded at a locked port VLAN ID Displays the VLAN ID corresponding to the Last Violation MAC address Command Buttons Refresh Refresh the dat...

Page 1036: ...for HTTPS traffic Enter a port number between 0 65535 excluding ports 80 443 and the configured switch management port Authentication Timeout To access the network through a portal the client must fir...

Page 1037: ...erify clients Guest The user does not need to be authenticated by a database Local The switch uses a local database to authenticated users RADIUS The switch uses a database on a remote RADIUS server t...

Page 1038: ...be disconnected Max Transmit Enter the maximum number of bytes that a client is allowed to transmit when using the captive portal After this limit has been reached the user will be disconnected Max T...

Page 1039: ...ogo Background Image Select the name of the image to display as the page background Use the drop down menu to display the file names of the available images Click the button to display the available i...

Page 1040: ...Select the colors to use for the CP page Click the button and then select the color to use The sample account information is updated with the colors you choose Account Image Select the image that will...

Page 1041: ...cks the button to connect to the network Timeout Message Enter the text to display when the system has rejected authentication because the authentication transaction took too long This could be due to...

Page 1042: ...branding image on the Welcome Page This field can be modified from the CP WEB Customization Global Parameters page Welcome Title Enter the title to display to greet the user after he or she successful...

Page 1043: ...uctional Text Enter the detailed text to display that confirms that the user has been authenticated and instructs the user how to deauthenticate Button Label Enter the text to display on the button th...

Page 1044: ...nt branding image on the Logout Success page This field can be modified from the CP WEB Customization Global Parameters page Browser Title Enter the text to display on the title bar of the Logout Succ...

Page 1045: ...on Timeout value is reached the user is logged out automatically Idle Timeout Shows the number of seconds the user can remain idle before the switch automatically logs the user out A value of 0 means...

Page 1046: ...3 9 Captive Portal Add a Local User Page Configurable Data User Name Enter the name of the user Password Enter a password for the user The password length can be from 8 to 64 characters User Group Ass...

Page 1047: ...t Max Up Rate Enter the maximum speed in bytes per second that the user can transmit traffic when using the captive portal This setting limits the bandwidth at which the user can send data into the ne...

Page 1048: ...ciated Interfaces Lists the wireless interfaces that are currently associated with the selected captive portal The interface is identified by its wireless network number and SSID Interface List Lists...

Page 1049: ...he number of entries that the Local User database supports Configured Local Users Shows the number of local users configured on the switch System Supported Users Shows the number of authenticated user...

Page 1050: ...CP capability Blocked Status Indicates whether authentication attempts to the captive portal are currently blocked Use the Block and Unblock buttons to control the blocked status If the CP is blocked...

Page 1051: ...rtal is active on the specified interface Disable Reason If the selected CP is disabled on this interface this field indicates the reason which can be one of the following Interface Not Attached Disab...

Page 1052: ...from each client Bytes Transmitted Counter Shows whether the interface supports displaying the number of bytes transmitted to each client Roaming Support Shows whether the interface supports client r...

Page 1053: ...er words the cluster controller was not the authenticator IP Address Identifies the IP address of the wireless client if applicable User Displays the user name or Guest ID of the connected client Prot...

Page 1054: ...t connection protocol which is either HTTP or HTTPS Session Time Shows the amount of time that has passed since the client was authorized Captive Portal Client Auth Fail Count Shows the numberof times...

Page 1055: ...1055 1246 9 4 3 18 Captive Portal Client Statistics Page Non Configurable Data Bytes Transmitted Total bytes the client has transmitted Bytes Received Total bytes the client has received Packets Trans...

Page 1056: ...AC address is marked with an asterisk the authenticated client is authenticated by a peer switch In order words the cluster controller was not the authenticator IP Address Identifies the IP address of...

Page 1057: ...risk the authenticated client is authenticated by a peer switch In order words the cluster controller was not the authenticator IP Address Identifies the IP address of the wireless client if applicabl...

Page 1058: ...s 1 30 Consideration to maximum delay time should be given when configuring RADIUS maxretransmit and RADIUS timeout If multiple RADIUS servers are configured the max retransmit value on each will be e...

Page 1059: ...ting Servers Displays the number of RADIUS Accounting Servers configured The value can range from 0 to 32 Number of Named Authentication Server Groups Displays the number of Named RADIUS server Authen...

Page 1060: ...ct cannot be changed after creation Port The UDP port used by this server The valid range is 0 65535 The default port for RADIUS authentication is 1812 Secret The shared secret for this server This is...

Page 1061: ...r this server has been configured Command Buttons Submit Sends the updated screen to the switch and causes the changes to take effect on the switch but these changes will not be retained across a powe...

Page 1062: ...is directed to the server selected as the current server Initially the primary server is selected as the current server If the primary server fails one of the other servers becomes the current server...

Page 1063: ...ing both valid and invalid packets that were received from this server Access Rejects The number of RADIUS Access Reject packets including both valid and invalid packets that were received from this s...

Page 1064: ...m of 253 characters This object cannot be changed after creation Port Specifies the UDP Port to be used by the accounting server The valid range is 0 65535 If the user has READONLY access the value is...

Page 1065: ...information on the page 9 4 4 6 RADIUS Named Accounting Server Status The RADIUS Named Accounting Server Status page shows summary information about the accounting servers configured on the system No...

Page 1066: ...ons Displays the number of RADIUS Accounting Request packets retransmitted to this RADIUS accounting server Accounting Responses Displays the number of RADIUS packets received on the accounting port f...

Page 1067: ...____________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 1067 1246 Command Buttons Refresh Update the information on the page 9 4 4 8 Resetting All RADIUS Statistics Page Comman...

Page 1068: ...between the device and the TACACS server The valid range is 0 128 characters The key must match the key configured on the TACACS server Connection Timeout The maximum number of seconds allowed to est...

Page 1069: ...0 It should be within the range 0 65535 Port Specifies the authentication port Default value is 49 It should be within the range 0 65535 Key String Specifies the authentication and encryption key for...

Page 1070: ...sword is 1234 Then the bind DN is cn root dc test dc com and password is 1234 OU stands for Organization Unit DC stands for Domain Component Configurable Data IP Address Specifies the LDAP server s IP...

Page 1071: ...IP ACL Make a selection from the pulldown menu A new IP Access Control List may be created or the configuration of an existing IP ACL can be updated Configurable Data IP ACL ID IP ACL ID must be a wh...

Page 1072: ...IP Access Control List Summary Page Non Configurable Data IP ACL ID Name The IP ACL identifier Rules The number of rules currently configured for the IP ACL Direction The direction of packet traffic...

Page 1073: ...Extended IP ACL must first be selected to configure rules for The rule identification and the Action and Match Every parameters must be specified next If Match Every is set to false a new screen will...

Page 1074: ...ulldown menu True signifies that all packets will match the selected IP ACL and Rule and will be either permitted or denied In this case since all packets match the rule the option of configuring othe...

Page 1075: ...as the high order six bits of the Service Type octet in the IP header This is an optional configuration Enter an integer from 0 to 63 The IP DSCP is selected by possibly selection one of the DSCP keyw...

Page 1076: ...tatus Summary Page Non Configurable Data IP ACL Name IP ACL identifier Rule Rule number Time Range Name Indicates the name of the time range associated to the rule Rule Status Indicates the status of...

Page 1077: ...pecified created using the IPv6 ACL Rule Configuration menu Selection Criteria IPv6 ACL A new IPv6 ACL may be created or the configuration of an existing IPv6 ACL can be updated by selecting right opt...

Page 1078: ...ist Summary Page Non Configurable Data IPv6 ACL Name Exiting IPv6 ACL identifier Rules The number of rules currently configured for the IPv6 ACL Direction The direction of packet traffic affected by t...

Page 1079: ...an existing rule from the pull down menu or select Create New Rule New rules cannot be created if the maximum number of rules has been reached For each rule a packet must match all the specified crite...

Page 1080: ...from 0 to 255 after selecting protocol keyword other This number represents the IP protocol Select name of a protocol from the existing list of Internet Protocol IP Transmission Control Protocol TCP U...

Page 1081: ...ered Command Buttons Configure Configure the corresponding match criteria for the selected rule Delete Remove the currently selected Rule from the selected ACL These changes will not be retained acros...

Page 1082: ...n menu Selection Criteria MAC ACL A new MAC Access Control List may be created or the configuration of an existing MAC ACL can be updated based on selection Configurable Data MAC ACL Name Specifies MA...

Page 1083: ...ing MAC Access Control List Summary Page Non Configurable Data MAC ACL Name MAC ACL identifier Rules The number of rules currently configured for the MAC ACL Direction The direction of packet traffic...

Page 1084: ...tatus Summary Page Non Configurable Data MAC ACL Name MAC ACL identifier Rule Rule number Time Range Name Indicates the name of the time range associated to the rule Rule Status Indicates the status o...

Page 1085: ...on Criteria MAC ACL Select the MAC ACL for which to create or update a rule Rule Select an existing rule or select Create New Rule to add a new Rule New rules cannot be created if the maximum number o...

Page 1086: ...e where the matching traffic stream is copied in addition to being forwarded normally by the device This field cannot be set if a Redirect Interface is already configured for the ACL rule This field i...

Page 1087: ...id range of values is 1 to 4093 Either VLAN Range or VLAN can be configured Match Every Specifies an indication to match every Layer 2 MAC packet Valid values are True Signifies that every packet is c...

Page 1088: ...all IP ACLs This field is visible only if the user has selected IP ACL as ACL Type IPv6 ACL Specifies list of all IPv6 ACLs This field is visible only if the user has selected IPv6 ACL as ACL Type MAC...

Page 1089: ...ed interface and direction ACL Identifier Displays the ACL Number in case of IP ACL or ACL Name in case of MAC ACL identifying the ACL assigned to selected interface and direction Sequence Number Disp...

Page 1090: ...Type IPv6 ACL Specifies list of all IPv6 ACLs This field is visible only if the user has selected IPv6 ACL as ACL Type MAC ACL Specifies list of all MAC ACLs This field is visible only if the user has...

Page 1091: ...dentifier Displays the ACL Number in case of IP ACL or ACL Name in case of IPv6 ACL and MAC ACL identifying the ACL assigned to selected VLAN and direction Sequence Number Displays the Sequence Number...

Page 1092: ...o which the IP ACL applies VLAN s VLAN s to which the IP ACL applies Direction The direction of packet traffic affected by the IP ACL Direction can only be one of the following Inbound Outbound ACL Ty...

Page 1093: ...s from which clients may access this device Every client s IP address is ANDed with the mask as is the Client IP Address and if the values are equal access is allowed For example if the Client IP Addr...

Page 1094: ...al Layer 3 Managed Ethernet Switch _____________________________________________________________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 1094 1246 values across a po...

Page 1095: ...alue The currently configured value is shown when the web page is displayed HTTPS Session Soft Timeout This field is used to set the inactivity timeout for HTTPS sessions The value must be in the rang...

Page 1096: ...6 Download Certificates Link to the File Transfer page for the SSL Certificate download Note that to download SSL Certificate files SSL must be administratively disabled Generate Certificate Begin gen...

Page 1097: ...shown when the web page is displayed The range of acceptable values for this field is 0 5 Configurable Data SSH Session Timeout Minutes This text field is used to configure the inactivity timeout val...

Page 1098: ...t Switch _____________________________________________________________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 1098 1246 Delete Use to delete the corresponding key f...

Page 1099: ...switch to drop ICMP v6 packets that have a type set to ECHO_REQ ping and a size payload greater than the configured ICMPv6 payload Size The factory default is disabled Denial of Service ICMP Fragment...

Page 1100: ...ld Enabling TCP SYN FIN DoS prevention causes the switch to drop packets that have TCP Flags SYN and FIN set The factory default is disabled Denial of Service First Fragment Enable or disable this opt...

Page 1101: ...cket processing begins by testing the match criteria for a packet The all class type option defines that each match criteria within a class must evaluate to true for a packet to match that class The a...

Page 1102: ...retained across a power cycle unless a save is performed 9 5 1 2 Configuring DiffServ Class Configuration Page Selection Criteria Class Selector Along with an option to create a new class this lists...

Page 1103: ...e type Moreover a Remove Class Reference button appears on the screen that can be invoked to remove the current class reference Configurable Data Class Name This is a case sensitive alphanumeric strin...

Page 1104: ...Viewing DiffServ Class Summary Page Non Configurable Data Class Name Displays names of the configured DiffServ classes Class Type Displays types of the configured classes with the layer 3 protocol of...

Page 1105: ...specific to outbound traffic direction Only when a new policy is created this field is a selector field After policy creation this becomes a non configurable field displaying the configured policy typ...

Page 1106: ...ce is to be removed is this field a selector field After removal of the policy class instance this becomes a non configurable field Available Class List Displays all the member classes for the specifi...

Page 1107: ...Layer 3 Managed Ethernet SwitchUser Manual Page 1107 1246 9 5 1 5 Viewing DiffServ Policy Summary Page Non Configurable Data Policy Name Displays name of the DiffServ policy Policy Type Displays type...

Page 1108: ...sts all existing DiffServ classes currently defined as members of the specified Policy from which one can be selected This list is automatically updated as a new class is added to or removed from the...

Page 1109: ...Attribute Summary Page Non Configurable Data Policy Name Displays name of the specified DiffServ policy Policy Type Displays type of the specified policy as In or Out Class Name Displays name of the...

Page 1110: ...m the interface in this direction This field is not shown for Read Write users where inbound service policy attachment is not supported by the platform Policy Out This lists all the policy names of ty...

Page 1111: ...Policy Name Shows the name of the attached policy Command Buttons Refresh Refresh the displayed data 9 5 1 10 Viewing DiffServ Service Statistics Page This screen displays service level statistical i...

Page 1112: ...face and direction Selection Criteria Slot Port List of all valid slot number and port number combinations in the system that have a DiffServ policy currently attached in either direction from which o...

Page 1113: ...P sets match criteria to UDP protocol HTTP sets match criteria to HTTP destination port FTP sets match criteria to FTP destination port Telnet sets match criteria to Telnet destination port Any sets m...

Page 1114: ...where High sets policy to mark ipdscp ef Med sets policy to mark ipdscp af31 Low set policy to mark ipdscp be Class Layer 3 Protocol Indicates how to interpret the any layer 3 This lists types of pack...

Page 1115: ...o VoIP feature is intended to provide an easy classification mechanism for voice packets so that they can be prioritized above data packets in order to provide better QoS The Auto VoIP feature explici...

Page 1116: ...VoIP configurable interfaces The option All represents the most recent configuration settings done for All Ports These may be overridden on a per interface basis Configurable Data Auto VoIP Mode It is...

Page 1117: ...ng Auto VoIP Summary Page Use the Auto VoIP Summary page to display the Auto VoIP settings Non Configurable Data Interface Specifies the port whose settings are displayed in the current table row Auto...

Page 1118: ...ns links to the following web pages iSCSI Global Configuration iSCSI Targets Table iSCSI Sessions iSCSI Sessions Detailed 9 5 4 1 Configuring iSCSI Global Configuration Page Use the iSCSI Optimization...

Page 1119: ...tch 9 5 4 2 Configuring iSCSI Targets Page Use the iSCSI Targets Table page to assign target ports port IP address combinations for iSCSI Optimization on the switch Non Configurable Data TCP Port Show...

Page 1120: ...ons page to view iSCSI sessions Non Configurable Data Target Name Shows the name assigned to the target Initiator Name Shows the name of the initiator ISID Initiator Session ID Shows the unique indent...

Page 1121: ...for aging out in Seconds Show the time in seconds left before the session is set to expire ISID Initiator Session ID Shows the unique indentifier an initiator assigns to the session endpoint When it i...

Page 1122: ...on a per interface basis Interface Trust Mode Specifies whether or not to trust a particular packet marking at ingress Interface Trust Mode can only be one of the following untrusted trust dot1p trust...

Page 1123: ...e retained across a power cycle unless a save is performed Restore Defaults Restores default settings 9 5 5 2 Managing DSCP Mapping Configuration Page Selection Criteria Interface Specifies all CoS co...

Page 1124: ...__________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 1124 1246 Submit Send the updated configuration to the switch Configuration changes take effect immediately These...

Page 1125: ...ct the physical interface for which you want to display or configure data Select All to set the parameters for all ports to the same values Configurable Data Traffic Class Specify which internal traff...

Page 1126: ...andwidth allowed typically used to shape the outbound transmission rate This value is controlled independently of any per queue maximum bandwidth configuration It is effectively a second level shaping...

Page 1127: ...face This is only used if device supports independent settings per queue Queue Management Type can only be taildrop Default value is taildrop Configurable Data Minimum Bandwidth Allocated Specifies th...

Page 1128: ...he most recent global configuration settings These may be overridden on a per interface basis Non Configurable Data Queue ID Specifies the queueID Minimum Bandwidth Specifies the minimum guaranteed ba...

Page 1129: ...d MAC Address appear where the user may enter IP address and MAC address to be configured IP Address Enter the IP address you want to add It must be the IP address of a device on a subnet attached to...

Page 1130: ...ut You must enter a valid integer which represents the number of seconds the switch will wait for a response to an ARP request The range for this field is 1 to 10 seconds The default value for Respons...

Page 1131: ...restarted whenever the ARP table Cache Size value is changed Active Static Entries Total number of Active Static Entries in the ARP table Configured Static Entries Total number of Configured Static En...

Page 1132: ...f ICMP error packets are allowed per burst interval By default Rate Limit is 100 packets sec i e burst interval is 1000 msec To disable ICMP Rate limiting set this field to 0 Valid Rate Interval must...

Page 1133: ...mum number of hops supported by the switch This is a compile time constant Maximum Routes The maximum number of routes routing table size supported by the switch This is a compile time constant Comman...

Page 1134: ...ceived in error IpInHdrErrors The number of input datagrams discarded due to errors in their IP headers including bad checksums version number mismatch other format errors time to live exceeded errors...

Page 1135: ...s The number of IP datagrams discarded because no route could be found to transmit them to their destination Note that this counter includes any packets counted in ipForwDatagrams which meet this no r...

Page 1136: ...ch this entity did not send due to problems discovered within ICMP such as a lack of buffers This value should not include errors discovered outside the ICMP layer such as the inability of IP to route...

Page 1137: ...lect how network directed broadcast packets should be handled If you select enable from the pull down menu network directed broadcasts will be forwarded If you select disable they will be dropped The...

Page 1138: ...peed Data Rate The physical link data rate of the specified interface Active State The state of the specified interface is either Active or Inactive An interface is considered active if it the link is...

Page 1139: ...isable OSPF After you set the new Router ID you must re enable OSPF to have the change take effect The default value is 0 0 0 0 although this is not a valid Router ID OSPF Admin Mode Select enable or...

Page 1140: ...wo consecutive SPF calculations It can be an integer from 0 to 65535 The default time is 10 seconds A value of 0 means that there is no delay that is two SPF calculations can be done one immediately a...

Page 1141: ...ink state database and to compare the link state databases of two routers AS_OPAQUE LSA Count The number of opaque LSAs with domain wide flooding scope AS_OPAQUE LSA Checksum The sum of the LS checksu...

Page 1142: ...Wildcard Mask Use Wildcard Mask to filter IP range Area Configure the OSPF Router Area for the Network Area setting Non Configurable Data IP Show IP for the Network Area setting Wildcard Mask Show Wi...

Page 1143: ...fault it is 1 NSSA Specific Parameters Metric Value Set the Metric value for NSSA The valid range of values is 1 to 16777214 By default it is 10 Metric Type Select the type of metric specified in the...

Page 1144: ...e This sum excludes external LS type 5 link state advertisements The sum can be used to determine if there has been a change in a router s link state database and to compare the link state database of...

Page 1145: ...Configurable Data Area ID The Area ID of the Stub area Type of Service The type of service associated with the stub metric The switch supports Normal only Metric Value Set the metric value you want a...

Page 1146: ...enable the address range will be advertised outside the area via a Network Summary LSA The default is enable Remove Check box to remove the particular entry from the table Non Configurable Data Area I...

Page 1147: ...Technology Co Ltd Industrial Layer 3 Managed Ethernet Switch _____________________________________________________________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 11...

Page 1148: ...ill be displayed only if OSPF is enabled Selection Criteria Interface Select the interface for which data is to be displayed or configured or configured Non Configurable Data OSPF Area ID The OSPF are...

Page 1149: ...received OSPF packets discarded where the ingress interface is in a non backbone area and the OSPF header identifies the packet as belonging to the backbone but OSPF does not have a virtual link to th...

Page 1150: ...s interface by this router LS Requests Received The number of LS Requests received on this interface by this router LS Updates Sent The number of LS updates sent on this interface by this router LS Up...

Page 1151: ...er is not eligible to become the designated router on this network Retransmit Interval secs Enter the OSPF retransmit interval for the specified interface This is the number of seconds between link st...

Page 1152: ...rk All routers on the network must be configured with the same key Encrypt If you select Encrypt you will be prompted to enter both an authentication key and an authentication ID Encryption uses the M...

Page 1153: ...yer 3 Managed Ethernet Switch _____________________________________________________________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 1153 1246 transmissions which mus...

Page 1154: ...d to the network Backup Designated Router This router is itself the Backup Designated Router on the attached network It will be promoted to Designated Router if the present Designated Router fails The...

Page 1155: ...ology Co Ltd Industrial Layer 3 Managed Ethernet Switch _____________________________________________________________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 1155 12...

Page 1156: ...about a neighbor is given The information below will only be displayed if OSPF is enabled Selection Criteria Interface Selects the interface for which data is to be displayed or configured Slot 0 is t...

Page 1157: ...onships will not even start to form if there is a mismatch in certain crucial OSPF capabilities Router Priority Displays the OSPF priority for the specified neighbor The priority of a neighbor is a pr...

Page 1158: ...Full In this state the neighboring routers are fully adjacent These adjacencies will now appear in router LSAs and network LSAs Events The number of times this neighbor relationship has changed state...

Page 1159: ...te ID identifies the piece of the routing domain that is being described by the advertisement The value of the LS ID depends on the advertisement s LS type Age The time since the link state advertisem...

Page 1160: ...his field is the checksum of the complete contents of the advertisement except the LS age field AS Opaque LSDB Table LSA Type The format and function of the link state advertisement One of the followi...

Page 1161: ...econds Dead Interval Enter the OSPF dead interval for the specified interface in seconds This specifies how long a router will wait to see a neighbor router s Hello packets before declaring that the r...

Page 1162: ...inclusive Non Configurable Data State The current state of the selected Virtual Link One of Down This is the initial interface state In this state the lower level protocols have indicated that the int...

Page 1163: ...all routers attached to a network Dead Interval secs The OSPF dead interval for the virtual link in units of seconds This specifies how long a router will wait to see a neighbor router s Hello packet...

Page 1164: ...the source was pre configured otherwise 0 and can be modified The valid values are 0 to 4294967295 Default value is 0 Subnets Sets whether the subnetted routes should be redistributed or not Default v...

Page 1165: ...he redistribution for the selected source protocol It has to be enabled to be able to configure any of the route redistribution attributes except the Distribute List field Default value is Disable Com...

Page 1166: ...The Metric of redistributed routes for the given Source Route Display Unconfigured when not configured Metric Type The OSPF metric types of redistributed routes Tag The tag field in routes redistribu...

Page 1167: ...red in the Server IP address field in IP Helper module Minimum Wait Time secs Enter a time in seconds This value will be compared to the time stamp in the client s request packets which should represe...

Page 1168: ...ch should represent the time since the client was powered up Packets will only be forwarded when the time stamp exceeds the minimum wait time Circuit ID Option Mode This is the Relay agent option whic...

Page 1169: ...ect enable or disable from the pull down menu User must enable Relay Mode to relay any other protocols for which an IP helper address has been configured By Default UDP Relay Mode is disabled Remove R...

Page 1170: ...e protocol from the menu If the user wants to configure other than the listed protocols select Other from the menu Then user will be prompted with the UDP Destination Port field Select the DefaultSet...

Page 1171: ...nu to get the relay entries configured on a particular interface If All is selected all the configured relay entries on all interfaces will be displayed Remove Removes the specified UDP Relay Entry wh...

Page 1172: ...he pull down menu or configure the port number to configure the Relay Entry on selected interface Discard If True packets arriving on the given interface with the given destination UDP port are discar...

Page 1173: ...number of DHCP responses received from the DHCP server This count only includes messages that the DHCP server unicasts to the relay agent for relay to the client DHCP Server Messages Relayed Specifies...

Page 1174: ...er 3 Managed Ethernet SwitchUser Manual Page 1174 1246 UDP TTL Expired Pkts Received Specifies the number of UDP packets received with expired TTL UDP Pkts Discarded Specifies the number of UDP packet...

Page 1175: ...pdates sent to the router from which it was learned but the metric will be set to infinity The default is simple Auto Summary Mode Select enable or disable from the pulldown menu If you select enable...

Page 1176: ...hernet Switch _____________________________________________________________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 1176 1246 immediately These changes will not be r...

Page 1177: ...RIP 1c RIP version 1 compatibility mode RIP version 2 formatted packets will be transmitted using broadcast RIP 2 RIP version 2 packets will be sent using multicast None RIP control packets will not b...

Page 1178: ...n Select what RIP control packets the interface will accept from the pulldown menu The value is one of the following RIP 1 accept only RIP version 1 formatted packets RIP 2 accept only RIP version 2 f...

Page 1179: ...e simple or encrypt the key may be up to 16 octets long The key value will only be displayed if you are logged on with Read Write privileges otherwise it will be displayed as asterisks Non Configurabl...

Page 1180: ...access list all routes are permitted The valid values for Access List IDs are 1 to 199 When used for route filtering the only fields in an access list that get used are Source IP Address and netmask D...

Page 1181: ...dustrial Layer 3 Managed Ethernet Switch _____________________________________________________________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 1181 1246 configured f...

Page 1182: ...a Source The Source Route to be Redistributed by RIP Metric The Metric of redistributed routes for the given Source Route Displays Unconfigured when not configured Match List of Routes redistributed w...

Page 1183: ...r the maximum time in seconds allowed between router advertisements sent from the interface Minimum Advertise Interval secs Enter the minimum time in seconds allowed between router advertisements sent...

Page 1184: ...Interval secs The maximum time in seconds allowed between router advertisements sent from the interface Minimum Advertise Interval secs The minimum time in seconds allowed between router advertisemen...

Page 1185: ...hed network IPv4 Protocol This field tells which protocol created the specified route The possibilities are one of the following Local Static Default RIP Next Hop Interface The outgoing router interfa...

Page 1186: ...f the IP interface address that identifies the attached network IPv4 Protocol This field tells which protocol created the specified route The possibilities are one of the following Local Static Defaul...

Page 1187: ...e prefix for the destination Subnet Mask Also referred to as the subnet network mask this indicates the portion of the IP interface address that identifies the attached network Next Hop IP Address The...

Page 1188: ...r protocol Routes with a preference of 255 arenot used for forwarding The best route to a destination is chosen by selecting the route with the lowest preference value When there are multipleroutes to...

Page 1189: ...Command Buttons Create Send the updated configuration to the switch Configuration changes take effect immediately These changes will not be retained across a power cycle unless a save is performed Del...

Page 1190: ...urrent table row Slot Port The Slot Port assigned to the VLAN Routing Interface MAC Address The MAC Address assigned to the VLAN Routing Interface IP Address The configured IP Address of the VLAN Rout...

Page 1191: ...Managing VRRP 9 6 10 1 Configuring VRRP Configurable Data VRRP Admin Mode This sets the administrative status of VRRP in the router to active or inactive Select enable or disable from the pulldown me...

Page 1192: ...cept Mode Select enable or disable from the pull down menu If you select enable the VRRP master will accept all types of data packets addressed to IP address es associated with the virtual router and...

Page 1193: ...ayer 3 Managed Ethernet Switch _____________________________________________________________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 1193 1246 1 Key Authentication w...

Page 1194: ...operational priority of the VRRP router This is relative to the configured priority The operational priority is depending upon the configured priority and the priority decrements configured through t...

Page 1195: ...for the interface This address must be a member of one of the subnets currently configured on the interface This value is readonly once configured Non Configurable Data Interface The interface for whi...

Page 1196: ...ace The interface for which data is to be displayed Virtual Router ID The Virtual Router ID for which data is to be displayed S No The serial number for this row Tracking Interface The Tracked interfa...

Page 1197: ...n to this loopback and tunnels could not be tracked Configurable Data Priority Decrement The priority decrement for the tracked interface The valid range is 1 254 default value is 10 Non Configurable...

Page 1198: ...ce for which Tracking data is to be displayed Virtual Router ID he Virtual Router ID for which Tracking data is to be displayed S No The serial number for this row Tracking Route Pfx The Prefix of the...

Page 1199: ...fix length of the route Priority Decrement The priority decrement for the Route The valid range is 1 254 Default value is 10 Non Configurable Data Interface The interface for which data is to be displ...

Page 1200: ...f its priority is greater Advertisement Interval secs the time in seconds between the transmission of advertisement packets by this virtual router Virtual IP Address The IP Address associated with the...

Page 1201: ...hnology Co Ltd Industrial Layer 3 Managed Ethernet Switch _____________________________________________________________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 1201...

Page 1202: ...________________________________________________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 1202 1246 Secondary IP Address The seconda IP address Command Buttons Refres...

Page 1203: ...ived with an invalid VRID for this virtual router VRID the VRID for the selected Virtual Router Slot Port The Slot Port for the selected Virtual Router Up Time The time in days hours minutes and secon...

Page 1204: ...received by the virtual router with an invalid value in the type field Address List Errors The total number of packets received for which the address list does not match the locally configured list fo...

Page 1205: ...IPv6 Address When Add is chosen from the IPv6 Address selector this IPv6 address input field becomes visible Address must be entered in the format prefix length The user also has the option to specif...

Page 1206: ...___________________________________________________________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 1206 1246 Delete Selected Secondary Remove the selected Secondary...

Page 1207: ...yer 3 Managed Ethernet SwitchUser Manual Page 1207 1246 9 6 11 2 Viewing Loopbacks Summary Page This page displays a summary of the configured Loopback interfaces Non Configurable Data Loopback Interf...

Page 1208: ...able Non Configurable Data Protocol State The operational state of the multicast forwarding module Table Maximum Entry Count The maximum number of entries in the IP Multicast routing table Protocol Th...

Page 1209: ...om the dropdown menu Configurable Data TTL Threshold Enter the TTL threshold below which a multicast data packet will not be forwarded from the selected interface You should enter a number between 0 a...

Page 1210: ...nfigurable Data Protocol State The operational state of the multicast forwarding module Table Maximum Entry Count The maximum number of entries in the IP Multicast routing table Protocol The multicast...

Page 1211: ...to which the administratively scoped address range is applied Group IP The multicast group address for the start of the range of addresses to be excluded Group Mask The mask that is applied to the mul...

Page 1212: ...tive status of DVMRP to active or inactive The default is disable Non Configurable Data Version The current value of the DVMRP version string The default value is 3 Total Number of Routes The number o...

Page 1213: ...nterface Otherwise you will see a message telling you that no router interfaces are available and the configuration screen will not be displayed Configurable Data Interface Mode Select enable or disab...

Page 1214: ...col on the selected interface either operational or non operational Local Address The IP address used as a source address in packets sent from the selected interface Interface Metric The metric used t...

Page 1215: ...le if the neighbor router s state is down Generation ID The DVMRP generation ID for the specified neighbor on the selected interface Major Version The DVMRP Major Version for the specified neighbor on...

Page 1216: ...le Data Source IP The IP address used with the source mask to identify the source network for this table entry Source Mask The network mask used with the source IP address Next Hop Interface The outgo...

Page 1217: ...ork which has been pruned Source Mask The subnet mask to be combined with the source IP address to identify the source or source network which has been pruned Expiry Time The amount of time remaining...

Page 1218: ...sources for this entry Upstream Neighbor The address of the upstream neighbor e g RPF neighbor from which IP Datagram s from these sources are received Interface The interface on which IP Datagram s...

Page 1219: ...246 9 7 6 Managing IGMP 9 7 6 1 Configuring IGMP Global Configuration Configurable Data Admin Mode Select enable or disable from the pull down menu to set the administrative status of IGMP in the rout...

Page 1220: ...or this parameter IGMP is robust to robustness variable 1 packet losses Valid values are from 1 to 255 The default value is 2 Query Interval Enter the frequency in seconds at which IGMP host query pac...

Page 1221: ...________________________________________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 1221 1246 Command Buttons Submit Update the switch with the values on the screen If...

Page 1222: ...the IP address of the selected interface Operational Mode The operational state of IGMP on the selected interface Version The version of IGMP configured on the selected interface Query Interval sec Th...

Page 1223: ...Indicates whether the selected interface is in querier or non querier mode Querier Up Time hh mm ss The time in seconds since the IGMP interface querier was last changed Querier Expiry Time hh mm ss T...

Page 1224: ...IGMP version 1 members on the IP subnet attached to this interface When an IGMPv1 membership report is received this timer is reset to the group membership timer While this timer is non zero the local...

Page 1225: ...Interface Select the interface for which data is to be displayed Non Configurable Data Group Compatibility Mode This parameter shows group compatibility mode v1 v2 and v3 for this group on the specif...

Page 1226: ...enable or disable from the pull down menu to set the administrative status of IGMP Proxy on the selected interface The default is disable Routing IGMP and Multicast global admin modes should be enable...

Page 1227: ...IGMP Proxy interface in the cache table Version The version of IGMP configured on the IGMP Proxy interface Unsolicited Report Interval The Unsolicited Report Interval is the time between repetitions...

Page 1228: ..._________________________________________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 1228 1246 Command Buttons Refresh Refresh the data on the screen with the present s...

Page 1229: ...ddress of the source of the last membership report received for the IP Multicast group address on the IGMP Proxy interface Up Time hh mm ss The time elapsed since this entry was created in hours minut...

Page 1230: ...embers of this multicast address Expiry Time This parameter shows expiry time interval against each source address which is a member of this multicast group This is the amount of time after which the...

Page 1231: ...ministrative status of PIM DM in the router The default is disabled Data Threshold Rate kbps Enter the rate in K bits second above which the last hop router will switch to a source specific shortest p...

Page 1232: ...dmin Mode Select enable or disable from the pulldown menu to set the administrative status of PIM DM in the router The default is disabled Data Threshold Rate kbps Enter the rate in K bits second abov...

Page 1233: ...s Enter the time in seconds between the Transmission of which PIM Hello messages on this interface The valid values are from 0 to 18000 seconds The default value is 30 seconds Join Prune Interval secs...

Page 1234: ...ch PIM hello messages are transmitted on the selected interface Join Prune Interval secs The frequency in seconds at which PIM Join Prune messages are transmitted on this PIM interface This field is a...

Page 1235: ...age 1235 1246 Neighbor IP Address The IP address of the PIM neighbor for this entry Uptime The time in hours minutes seconds since this PIM neighbor last became a neighbor of the local router Expiry T...

Page 1236: ...SM Group Mask Enter the source specific multicast group ip address mask Non Configurable Data SSM Group Address Displays the source specific multicast group ip address SSM Group Mask Displays the sour...

Page 1237: ...same group ranges Non Configurable Data RP Address IP Address of the RP for the group range created or deleted Group Address Group Address for which the static RP is to be created or deleted Group Mas...

Page 1238: ...P Advertisements Group Mask The group address mask transmitted in Candidate RP Advertisements Delete Check box to delete the particular entry from the table Non Configurable Data Next CRP Advertisemen...

Page 1239: ...zero This is especially important for this field which is part of the index of this entry Any non zero bits would signify an entirely different entry Group Mask The multicast group prefix length that...

Page 1240: ...h mask length to be advertised in bootstrap messages This hash mask length will be used in the hash algorithm for selecting the RP for a particular group The valid values are from 0 to 32 Default valu...

Page 1241: ...Candidate Summary Non Configurable Data BSR Address Displays the IP address of the Elected BSR BSR Priority Displays the Priority of the Elected BSR BSR Hash Mask Length Displays hash mask length of...

Page 1242: ...reated Expiry Time The time in hours minutes seconds before this entry will age out and be removed from the table RPF Neighbor The IP address of the Reverse Path Forwarding neighbor Protocol The multi...

Page 1243: ...ayer 3 Managed Ethernet SwitchUser Manual Page 1243 1246 DM PIM SM MLD Proxy Flags The value displayed in this field is valid if the multicast routing protocol running is PIMSM The possible values are...

Page 1244: ...IP Address Enter the address of the Multicast data source Source Mask Enter the network mask for the IP address of the Multicast data source to be configured RPF Next Hop Enter the RPF Address for th...

Page 1245: ...n Configurable Data Source IP The address of the Multicast data source Source Mask The network mask for the IP address of the Multicast data source to be configured RPF Next Hop The RPF Address for th...

Page 1246: ...Technology Co Ltd Industrial Layer 3 Managed Ethernet Switch _____________________________________________________________________________ Industrial Layer 3 Managed Ethernet SwitchUser Manual Page 12...

Reviews:

No comments

Related manuals for 6852G Series

Vaisala TERMBOX-1200 User Manual preview
TERMBOX-1200
Brand: Vaisala Pages: 32
HELVAR Imagine 920 Installation Manual preview
Imagine 920
Brand: HELVAR Pages: 2
iDirect iNFINITI 3000 Installation And Commissioning Manual preview
iNFINITI 3000
Brand: iDirect Pages: 72
Barracuda CloudGen Firewall Revision preview
CloudGen Firewall
Brand: Barracuda Pages: 8
8e6 Technologies HL-002-006 Quick Start Manual preview
HL-002-006
Brand: 8e6 Technologies Pages: 94
ACTi GNR-410 Quick Installation Manual preview
GNR-410
Brand: ACTi Pages: 12
H3C WT2024-U-PWR Compliance And Safety Manual preview
WT2024-U-PWR
Brand: H3C Pages: 51
NETGEAR DG834GUV5 User Manual preview
DG834GUV5
Brand: NETGEAR Pages: 120
SMC Networks EZ Switch SMC-1026DT V.2 User Manual preview
EZ Switch SMC-1026DT V.2
Brand: SMC Networks Pages: 27
Comnet CNGE28FX4TX24MS2 Installation And Operation Manual preview
CNGE28FX4TX24MS2
Brand: Comnet Pages: 154
Paradyne JetFusion 2004 User Manual preview
JetFusion 2004
Brand: Paradyne Pages: 216
Geneko GWR-A362 Quick Start Manual preview
GWR-A362
Brand: Geneko Pages: 8
Avaya VSP 8284XSQ-AC Quick Install Manual preview
VSP 8284XSQ-AC
Brand: Avaya Pages: 2
Brother Network Card (Portuguese) Manual Do Utilizador preview
Network Card
Brand: Brother Pages: 251
D-Link DES-1016D - Switch Quick Installation Manual preview
DES-1016D - Switch
Brand: D-Link Pages: 32
D-Link Amplifi DIR-657 Technical Specifications preview
Amplifi DIR-657
Brand: D-Link Pages: 3
D-Link DES-1005P Manual preview
DES-1005P
Brand: D-Link Pages: 16
D-Link DES-1005F Quick Installation Manual preview
DES-1005F
Brand: D-Link Pages: 35

Brands by name

Popular brands

Load more brands