manualshive.com logo in svg

NEC N8406-022A, Reference Manual

The NEC N8406-022A Reference Manual is a comprehensive guide that provides detailed instructions on operating and troubleshooting the product. Available for free download from manualshive.com, this manual offers valuable insights and aid to ensure optimal user experience, allowing you to make the most of your NEC N8406-022A device.

Share
Download
background image

Command Line Interface  65  

 
 

RADIUS server configuration 

Command:   

/cfg/sys/radius

 

[RADIUS Server Menu] 
    prisrv   - Set primary RADIUS server address 
    secsrv   - Set secondary RADIUS server address 
    secret   - Set primary RADIUS server secret 
    secret2  - Set secondary RADIUS server secret 
    port     - Set RADIUS port 
    retries  - Set RADIUS server retries 
    timeout  - Set RADIUS server timeout 
    bckdoor  - Enable/disable RADIUS backdoor for telnet/ssh/http/https 
    secbd    - Enable/disable RADIUS secure backdoor for telnet/ssh/http/https 
    on       - Turn RADIUS authentication ON 
    off      - Turn RADIUS authentication OFF 
    cur      - Display current RADIUS configuration

 

 

 

NOTE:    See the 

Application Guide

 for information on RADIUS. 

 

The following table describes the RADIUS Server Configuration Menu options. 

Table 61  RADIUS Server Configuration Menu options 

Command Description 

prisrv <

IP address

Sets the primary RADIUS server address. 

secsrv <

IP address

Sets the secondary RADIUS server address. 

secret <

1-32 characters

This is the shared secret between the switch and the RADIUS 
server(s). 

secret2 <

1-32 characters

This is the secondary shared secret between the switch and the 
RADIUS server(s).

 

port <

UDP port number

Enter the number of the User Datagram Protocol (UDP) port to be 
configured, between 1500-3000. The default is 1645. 

retries <

1-3

Sets the number of failed authentication requests before switching to a 
different RADIUS server. The range is 1-3 requests The default is 3 
requests. 

timeout <

1-10

Sets the amount of time, in seconds, before a RADIUS server 
authentication attempt is considered to have failed. The range is 1-10 
seconds. The default is 3 seconds.

 

 

bckdoor enable|disable 

Enables or disables the RADIUS back door for telnet/SSH/ 
HTTP/HTTPS. The default value is disabled. This command does not 
apply when secure backdoor (

secbd

) is enabled.  

secbd enable|disable 

Enables or disables the RADIUS back door using secure password for 
telnet/SSH/ HTTP/HTTPS. The default value is disabled. This 
command does not apply when backdoor (

bckdoor

) is enabled.  

on 

Enables the RADIUS server. 

off 

Disables the RADIUS server. This is the default. 

cur 

Displays the current RADIUS server parameters. 

 

 

IMPORTANT:   

If RADIUS is enabled, you must login using RADIUS authentication when connecting via the 

console or Telnet/SSH/HTTP/HTTPS. Backdoor for console is always enabled, so you can connect using 
noradius and the administrator password even if the backdoor (

bckdoor

) or secure backdoor (

secbd

) are 

disabled.  

If backdoor is enabled (

bckdoor ena

), type in 

noradius

 

as a backdoor to bypass RADIUS checking, and 

use the administrator password to log into the switch. The switch allows this even if RADIUS servers are 
available.  

If secure backdoor is enabled (

secbd ena

), type in 

noradius

 

as a backdoor to bypass RADIUS checking, 

and use the administrator password to log into the switch. The switch allows this only if RADIUS servers are 
not available.  

 

Summary of Contents for N8406-022A

Page 1: ...N8406 022A 1Gb Intelligent L2 Switch Smart Panel Reference Guide Part number 856 126757 406 00 First edition July 2008...

Page 2: ...rued as constituting an additional warranty NEC shall not be liable for technical or editorial errors or omissions contained herein Microsoft Windows and Windows NT are U S registered trademarks of Mi...

Page 3: ...t Settings 15 VLAN 16 PVID 16 802 1Q VLAN Tagging 16 Port VLAN ID configuration 16 Non Default Virtual LANs 17 Management 18 Local User Administration 19 Remote User Administration 20 Time Services 21...

Page 4: ...46 Introduction 46 Port Statistics Menu 47 Layer 2 statistics Menu 51 Layer 3 statistics Menu 52 Management Processor statistics 57 NTP statistics 59 Statistics dump 59 Configuration Menu 60 Introduc...

Page 5: ...nstalling and configuring the switch is available in the following guides which are attached in this product N8406 022A 1Gb Intelligent L2 Switch User s Guide N8406 022A 1Gb Intelligent L2 Switch Appl...

Page 6: ...rface is assigned through Dynamic Host Control Protocol DHCP Gateway 4 This gateway is the default gateway for the management interface Connecting to the switch You can access the command line interfa...

Page 7: ...how to configure SSH Establishing an HTTP connection By default HTTP is enabled on the switch You can configure the switch using the Web browser For more information see the Browser based interface ch...

Page 8: ...e operator manages all functions of the switch The operator can reset ports or the entire switch By default the operator account is disabled and has no password admin The super user administrator has...

Page 9: ...and require no additional set up However you should check your Web browser s features and configuration to be sure frames and JavaScript are enabled NOTE JavaScript is not the same as Java Be sure tha...

Page 10: ...er are properly configured you will be asked to enter a password Enter the account name and password for the switch 4 Allow the BBI Dashboard page to load When the proper account name and password com...

Page 11: ...upon The Configuration Area is used to configure selected items Port Status Area The Status Area contains port icons that display status information about each port Click a port icon to display detai...

Page 12: ...off the switch and exits the BBI Configuration Area Use the Configuration Area to configure SmartPanel settings When a feature is selected from the Menu Area a configuration form is displayed in the...

Page 13: ...ristics Each Port Group must contain at least one external port 20 24 and one internal server blade port 1 16 All external ports in a Port Group must have the same configuration Each port in the Port...

Page 14: ...ample Port 1 4 20 21 are assigned to Group1 and Port 5 8 22 23 are assigned to Group2 The others are assigned to Spare Ports Group Internal Port Settings On the BBI choose Internal Port Settings to en...

Page 15: ...e assigned port name appears next to the port number on some information and statistics screens Switch Port State Enables or disables the port Link configuration Sets the link speed The choices includ...

Page 16: ...ains at least one external port and one internal server blade port For the configuration see the Port VLAN ID configuration section later in this chapter NOTE Spare Ports Group for unused ports is ass...

Page 17: ...to create VLANs and assign them to Port Groups The non default VLAN ID is placed in the frame header of a packet in forwatding from the port The following describes the steps to add VLAN ID 1 Click A...

Page 18: ...of 64 characters System Location Configures the name of the system location The location can have a maximum of 64 characters System Log Server Settings IP Address of Primary Server Sets the IP addres...

Page 19: ...s Local User Administration to configure the user The following table describes the user configuration Table 9 Local User Administration Command Description Username Defines the user name of maximum e...

Page 20: ...witch and the RADIUS server s Radius Secondary Server Configures the secondary Radius server address Radius Secret for Secondary Server Defines the secondary shared secret up to 32 characters between...

Page 21: ...time to reflect local changes to Daylight Savings Time etc Daylight Savings Disables or enables daylight savings time in the system clock When enabled the switch will add an extra hour to the system...

Page 22: ...ion becomes relatively even Built In Fault Tolerance Since trunk groups are comprised of multiple physical links each trunk group is inherently fault tolerant As long as one connection is available th...

Page 23: ...nal ports of the Port Group When the internal ports are disabled it causes the NIC team on the affected server blade to failover from the primary to the backup NIC This process is called a failover ev...

Page 24: ...llows the SmartPanel to forward multicast traffic only to those ports that request it IGMP Snooping prevents multicast traffic from being flooded to all ports The SmartPanel learns which server hosts...

Page 25: ...he method to use for transfer TFTP FTP or HTTP HTTP is available only for Get Image Settings for using FTP or TFTP Server Server Address Enter the IP address of the TFTP or FTP server from which you w...

Page 26: ...t Crash Dump Uploads the core PANIC dump file to the TFTP or FTP server specified in Remote Filename Clear Crash Dump Deletes the core dump in flash memory IMPORTANT When the switch software is change...

Page 27: ...global command exit Exit global command always available Menu summary The Main Menu displays the following submenus Information Menu The Information Menu provides submenus for displaying information...

Page 28: ...Applies pending configuration changes save Saves the active configuration to backup and saves the current configuration as active save n saves the current configuration as active without saving the a...

Page 29: ...s is or edited using the options below Ctrl n or Down arrow key Recalls the next command from the history list This can be used multiple times to work forward through the last ten commands The recalle...

Page 30: ...be abbreviated by entering the first characters that distinguish the command from the others in the same menu or submenu For example the command shown above could also be entered as Main c sys ssn n...

Page 31: ...ptions Command Usage sys Displays system information l2 Displays the Layer 2 Information Menu l3 Displays the Layer 3 Information Menu link Displays configuration information about each port including...

Page 32: ...rmation view Show vacmViewTreeFamily table information access Show vacmAccess table information group Show vacmSecurityToGroup table information comm Show community table information taddr Show target...

Page 33: ...se to access the switch Protocol This indicates whether messages sent on behalf of this user are protected from disclosure using a privacy protocol switch software supports DES algorithm for privacy T...

Page 34: ...Level Displays the minimum level of security required to gain rights of access For example noAuthNoPriv authNoPriv or auth Priv ReadV Displays the MIB view to which this entry authorizes the read acc...

Page 35: ...es which are used to select target addresses for a particular SNMP message Params The value of this object identifies an entry in the snmpTargetParamsTable The identified entry contains SNMP parameter...

Page 36: ...0 03 00 0F 6A F8 EF 00 usmUser Table User Name Protocol admin NO AUTH NO PRIVACY adminmd5 HMAC_MD5 DES PRIVACY adminsha HMAC_SHA DES PRIVACY v1v2only NO AUTH NO PRIVACY vacmAccess Table Group Name Mod...

Page 37: ...umber 1 Switch is up 0 days 14 hours 56 minutes and 22 seconds Last boot power cycle MAC address 00 17 ef 80 7a 00 IP If 256 address 10 14 4 16 Revision Switch Serial No MY3644052B Spare Part No 856 1...

Page 38: ...rt 5 Jul 8 17 25 42 NOTICE system link up on port 10 Jul 8 17 25 42 NOTICE system link up on port 9 Each message contains a date and time field and has a severity level associated with it One of eight...

Page 39: ...er 2 information menu options Command Usage fdb Displays the Forwarding Database Information Menu trunk When trunk groups are configured you can view the state of each port in the various trunk groups...

Page 40: ...VLAN The range is 1 4095 state unknown forward trunk Displays all FDB entries that match a particular state dump Displays all entries in the Forwarding Database Show all FDB information Command info...

Page 41: ...r 3 information menu options Command Usage arp Displays the Address Resolution Protocol ARP Information Menu ip Displays IP Information IP information includes IP interface information Interface numbe...

Page 42: ...VLAN addr Displays the ARP address list IP address IP mask MAC address and VLAN flags dump Displays all ARP entries including IP address and MAC address of each entry Address status flag The VLAN and...

Page 43: ...ed by the switch Table 32 IGMP Multicast Group menu options Command Usage mrouter Displays the Multicast Router Menu find IP address Displays a single IGMP multicast group by its IP address vlan 1 409...

Page 44: ...any any any yes down 23 any any yes yes down 24 any any yes yes down Use this command to display link status information about each port on a switch including Port number Port speed 10 Mb s 100 Mb s 1...

Page 45: ...nabled IGMP Disabled Failover Enabled Failover Limit 0 This displays the information of Port Group 1 5 and Spare Ports Group Information dump Command info dump Use the dump command to dump all switch...

Page 46: ...t Use this command to display traffic statistics on a port by port basis Traffic statistics are included in SNMP Management Information Base MIB objects clrports Clears the statistics for all ports l2...

Page 47: ...frames that have been received by this port from its segment A frame received on the interface corresponding to this port is counted by this object if and only if it is for a protocol being processed...

Page 48: ...C user Received frames for which multiple error conditions obtained are according to the conventions of IEEE 802 3 Layer Management counted exclusively according to the error status presented to the L...

Page 49: ...sAlignmentErrors object or the dot3StatsFCSErrors object The precise meaning of the count represented by an instance of this object is implementation specific In particular an instance of this object...

Page 50: ...er protocol this includes both group and functional addresses This object is a 64 bit version of ifOutMulticastPkts Discards IfHCOut The number of outbound packets that were chosen to be discarded eve...

Page 51: ...Protocol statistics FDB statistics Command stats l2 fdb FDB statistics current 91 hiwat 91 This menu option enables you to display statistics regarding the use of the forwarding database including the...

Page 52: ...plays all Layer 3 statistics IP statistics Command stats l3 ip IP statistics ipInReceives 36475 ipInHdrErrors 0 ipInAddrErrors 905 ipInUnknownProtos 0 ipInDiscards 0 ipInDelivers 4103 ipOutRequests 30...

Page 53: ...if any such packets met this discretionary discard criterion ipDefaultTTL The default value inserted into the Time To Live TTL field of the IP header of datagrams originated at this switch whenever a...

Page 54: ...es received icmpInEchoReps The number of ICMP Echo Reply messages received icmpInTimestamps The number of ICMP Timestamp request messages received icmpInTimestampReps The number of ICMP Timestamp Repl...

Page 55: ...witch can support In entities where the maximum number of connections is dynamic this object should contain the value 1 tcpActiveOpens The number of times TCP connections have made a direct transition...

Page 56: ...icQueries 0 txIgmpLeaves 0 rxIgmpV3CurrentStateRecords 0 rxIgmpV3SoruceListChangeRecords 0 rxIgmpV3FilterChangeRecords 0 This menu option enables you to display statistics regarding the use of the IGM...

Page 57: ...ample statistic allocs Total number of packet allocations from the packet buffer pool by the TCP IP protocol stack frees Total number of times the packet buffers are freed released to the packet buffe...

Page 58: ...ommand stats mp ucb All UDP allocated control blocks 161 listen The following table describes the User Datagram Protocol UDP control block UCB statistics shown in this example Table 54 UDP statistics...

Page 59: ...he total number of times the switch updated its time based on the NTP responses received from the primary NTP server Secondary Server Requests Sent The total number of NTP requests the switch sent to...

Page 60: ...ys the System Menu port port number Displays the Port Menu spgroup Displays the Spare Ports Group Menu group group number Displays the Group Menu dump Dumps current configuration to a script file ptcf...

Page 61: ...If you do not save the changes they will be lost the next time the system is rebooted To save the new configuration enter the following command at any prompt save When you save configuration changes t...

Page 62: ...the Watchdog Menu date Prompts the user for the system date time Configures the system time using a 24 hour clock format timezone Configures the time zone where the switch resides You are prompted to...

Page 63: ...he second syslog host For example 100 10 1 2 sever 1 7 Sets the severity level of the first syslog host displayed The default is 7 which means log all the severity levels sever2 1 7 Sets the severity...

Page 64: ...server key auto generation is disabled If the switch has been busy performing any other key generation and the assigned time of interval expires the RSA server will skip generating the key scpadm Def...

Page 65: ...witching to a different RADIUS server The range is 1 3 requests The default is 3 requests timeout 1 10 Sets the amount of time in seconds before a RADIUS server authentication attempt is considered to...

Page 66: ...uthentication authorization and accounting The following table describes the TACACS Server Configuration Menu options Table 62 TACACS Server Configuration Menu options Command Description prisrv IP ad...

Page 67: ...rv Set primary NTP server address secsrv Set secondary NTP server address intrval Set NTP server resync interval on Turn NTP service ON off Turn NTP service OFF cur Display current NTP configuration T...

Page 68: ...contact Use of the SNMP system authentication trap function Read community string Write community string The following table describes the System SNMP Configuration Menu options Table 64 System SNMP...

Page 69: ...when you have to process retrieval or modification request from an SNMP entity The range is 1 32 group 1 16 Configures an SNMP group A group maps the user name to the access group names and their acc...

Page 70: ...privacy protocol protects messages from disclosure The options are des CBC DES Symmetric Encryption Protocol or none If you specify des as the privacy protocol then be sure that you have selected one...

Page 71: ...e group up to a maximum of 32 characters model usm snmpv1 snmpv2 Selects the security model to be used level noAuthNoPriv authN oPriv authPriv Defines the minimum level of security required to gain ac...

Page 72: ...x name Set community string uname Set USM user name tag Set community tag del Delete communityTable entry cur Display current communityTable configuration This command is used for configuring the comm...

Page 73: ...dress port that can be used in the generation of SNMP traps taglist 1 255 characters Configures a list of tags up to 255 characters maximum that are used to select target addresses for a particular op...

Page 74: ...otocol The authPriv means that the SNMP message will be sent both with authentication and using a privacy protocol del Deletes the targetParamsTable entry cur Displays the current targetParamsTable co...

Page 75: ...he switch It is enabled by default tnport TCP port number Sets an optional telnet server port number for cases where the server listens for telnet sessions on a non standard port The default is telnet...

Page 76: ...r she can view all switch information and statistics and can reset ports or the entire switch admpw 1 128 characters Sets the administrator admin password maximum 128 characters The super user adminis...

Page 77: ...r code JP State or Province Name full name Tokyo Locality Name for example city Fuchu Organization Name for example company NEC Organizational Unit Name for example section SIGMABLADE Common Name for...

Page 78: ...be changed fctl rx tx both none Sets the flow control The choices include Receive rx flow control Transmit tx flow control Both receive and transmit flow control default No flow control auto on off E...

Page 79: ...t is automatically assigned when the Group is used igmp disable enable Enables or disables IGMP snooping for the Port Group failover disable enable Enables or disables Failover for the Port Group The...

Page 80: ...be viewed with editors that require carriage returns such as Microsoft Notepad NOTE If the FTP TFTP server is running SunOS or the Solaris operating system the specified ptcfg file must exist prior t...

Page 81: ...urrent password in use for validation clrlog Clears all Syslog messages This command is available only from an administrator login tnetsshc Closes the telnet and SSH connections ntpreq Allows the user...

Page 82: ...ng the new image onto a FTP or TFTP server on your network Downloading the new image from the FTP or TFTP server to the switch Selecting the new software image to be loaded into switch memory the next...

Page 83: ...Download in progress Image download complete 1333953 bytes Writing to flash This takes about 90 seconds Please wait Write complete 1333953 bytes now verifying FLASH Verification of new image2 in FLASH...

Page 84: ...1 Confirm upload operation y n y Selecting a configuration block When you make configuration changes to the switch you must save the changes so that they are retained beyond the next time the switch...

Page 85: ...ion enter the following Boot Options cur Currently set to boot software image2 factory default config block Current FLASH software image1 version 1 2 0 downloaded 0 15 51 Mon Jan 2 2006 NormalPanel im...

Page 86: ...Maintenance Menu options Command Usage sys Displays the System Maintenance Menu fdb Displays the Forwarding Database Manipulation Menu debug Displays the Debug Menu arp Displays the ARP Cache Manipula...

Page 87: ...entry rem Removes a FDB entry clear Clears the entire Forwarding Database from switch memory then adds the static entries to the Forwarding Database Debugging options Command maint debug Miscellaneou...

Page 88: ...enu clear Clear group and mrouter tables The following table describes the IGMP Multicast Group Maintenance Menu options Table 90 IGMP Multicast Group Menu options Command Usage snoop Displays the IGM...

Page 89: ...and dump information is presented in uuencoded format This format makes it easy to capture the dump information as a file or a string of characters If you want to capture dump information to a file se...

Page 90: ...rname for FTP server or hit return for TFTP server userID Enter the password for the FTP server if prompted Enter password for username on FTP server password Clearing dump information Command maint c...

Reviews:

No comments

Related manuals for N8406-022A

Hama 78499 Operating Instructions Manual preview
78499
Brand: Hama Pages: 10
Hama 11467 Operating Instruction preview
11467
Brand: Hama Pages: 14
IBM 8275-416 User Manual preview
8275-416
Brand: IBM Pages: 156
Magnetrol B75 Installation And Operating Manual preview
B75
Brand: Magnetrol Pages: 28
3onedata IES2016-16T Series Quick Installation Manual preview
IES2016-16T Series
Brand: 3onedata Pages: 3
Duxbury Networking N.JGS516PE-100EUS Installation Manual preview
N.JGS516PE-100EUS
Brand: Duxbury Networking Pages: 4
Netis ST-3131 User Manual preview
ST-3131
Brand: Netis Pages: 9
Lantech IGS-3208MGSFP User Manual preview
IGS-3208MGSFP
Brand: Lantech Pages: 27
SMART-AVI QuadKVM Installation Manual preview
QuadKVM
Brand: SMART-AVI Pages: 8
DigitaLinx DL-A31 Installation Manual preview
DL-A31
Brand: DigitaLinx Pages: 4
ABB ATS021 Installation And Operating Instructions Manual preview
ATS021
Brand: ABB Pages: 36
ABB 1SLC805002F0001 User Manual preview
1SLC805002F0001
Brand: ABB Pages: 26
ABB ATS-16 A Operating Manual preview
ATS-16 A
Brand: ABB Pages: 18
ABB ABB-free@home LS-1.1 Product Manual preview
ABB-free@home LS-1.1
Brand: ABB Pages: 11
ABB DWTL1 User Manual preview
DWTL1
Brand: ABB Pages: 60
ABB 3292U-A00003 Instructions For Installation And Use preview
3292U-A00003
Brand: ABB Pages: 2
ABB 3299-11500 Instructions For Installation And Use preview
3299-11500
Brand: ABB Pages: 2
ABB 6953 EB-101-500 Manual preview
6953 EB-101-500
Brand: ABB Pages: 71

Brands by name

Popular brands

Load more brands