manualshive.com logo in svg

Ruckus Wireless ZoneSwitch 4124, User Manual

The Ruckus Wireless ZoneSwitch 4124 offers seamless connectivity for businesses. Easily configure and manage your network with the included User Manual, available for free download from manualshive.com. This manual provides step-by-step instructions for setting up and maintaining your network, ensuring optimal performance and efficiency.

Share
Download
background image

16

Introducing Ruckus Wireless ZoneSwitch

Layer 2 Functional Specifications

9. ACL

The ACL (access control list) provides packet filtering features for all 
packets that filter on source MAC addresses, destination MAC 
addresses, source IP addresses, destination IP addresses, protocol, 
source TCP/UDP port numbers, and destination TCP/UDP port 
numbers. To filter incoming packets, create access lists, add rules 
to the list, then bind the access lists to physical ports. 

The ACL is a sequential list which contains "permit" or "deny" rules. 

The switch checks incoming packets against the rules in the ACL 
one-by-one. If the packet meets the "permit" rule, it is forwarded. 
If the packet meets the "deny" rule, it is dropped. If the packet 
doesn't meet any rules, it is forwarded. The default behavior of all 
data packets is forward. Users should add a "deny any" rule to filter 
out packets at the end of the list. 

The system supports maximum 128 rules. 

The maximum number of rules per list is 32.

ACL is bound to a physical port.

A port may bind at most one inbound access list.

ACL and Diffserv cannot be enabled at the same time.

NOTE:  

Diffserv must be disabled before you can successfully enable ACL.

ACL rules can specify the below items.

(1) "permit" or "deny"

(2) Source MAC address

(3) Destination MAC address

(4) Source IP address and subnet mask

(5) Destination IP address and subnet mask

(6) Protocol number (TCP, UDP, ICMP, etc.)

(7) Source TCP/UDP port number

(8) Destination TCP/UDP port number

Summary of Contents for ZoneSwitch 4124

Page 1: ...Ruckus Wireless ZoneSwitch 4124 4224 User Guide Part Number 800 70292 001 Revision B Published July 2011 www ruckuswireless com...

Page 2: ......

Page 3: ...tructions in the release notes Most user guides and release notes are available in Adobe Acrobat Reader Portable Document Format PDF or HTML on the Ruckus Wireless Support Web site at http support ruc...

Page 4: ...ireless is interested in improving its documentation and welcomes your comments and suggestions You can e mail your comments to Ruckus Wireless at docs ruckuswireless com When contacting us please inc...

Page 5: ...de Panel 6 Right Side Panel 6 Rear Panel 6 ZoneSwitch 4224 7 Buttons LEDs Ports and Connectors 7 Front Panel 9 Left Side Panel 9 Right Side Panel 9 Rear Panel 9 Hardware Features 10 Software Features...

Page 6: ...Graphical User Interface 51 Overview 52 GUI Layout 53 Dashboard 53 Menu Bar 53 Workspace 53 Navigation 55 General Information 56 General Info 56 System Admin 58 Access 58 SNMP Config 70 Tools 80 Ports...

Page 7: ...bors Info 130 LLDP Traffic 131 LLDP Errors 132 QoS 133 Policy Config 133 Access List 140 Queue Config 142 Storm Control 144 RMON 145 RMON Global Status 145 RMON Statistics 146 History Control 147 Hist...

Page 8: ...82 show SNMP server viewtree 184 SNMP server agent 185 SNMP server location 186 SNMP server contact 187 SNMP server user usm 188 SNMP server group 189 SNMP server access 190 SNMP server viewtree 191 S...

Page 9: ...3 show port protected 224 Link Aggregation Commands 225 lacp 225 lacp mode 227 lacp system priority 228 lacp port priority 228 show lacp 229 MAC Address Commands 230 secure mac 230 mac address table a...

Page 10: ...nfiguration 253 show spanning tree mst cist configuration 254 show spanning tree mst cist interface 255 show spanning tree mst instance configuration 256 show spanning tree mst instance interface 257...

Page 11: ...fserv meter 291 diffserv outprofile 292 diffserv policy 293 diffserv policy status enable 294 diffserv portlist 295 show diffserv classifier 296 show diffserv inprofile 298 show diffserv meter 299 sho...

Page 12: ...show LLDP configuration 327 show LLDP interface 328 show LLDP neighbors 329 show LLDP traffic 331 show LLDP errors 332 clear LLDP 332 LLDP shutdown 333 LLDP enable 333 LLDP timer 334 LLDP holdtime mul...

Page 13: ...6 aaa authentication login mode show 356 no TACACS server host 357 show TACACS server 358 show TACACS statistics 359 TACACS server host 361 TACACS trace level 362 TACACS use server address 363 RMON Co...

Page 14: ...xii Contents Electromagnetic Emissions 383 Safety Agency Approvals 383 Industry Canada Statement 383 Australia Statement 383 European Union Notices 383 Disposal Recycling 383 7 Index 385...

Page 15: ...view 2 General Specifications 3 Physical Features 4 ZoneSwitch 4124 4 ZoneSwitch 4224 7 Hardware Features 10 Software Features 11 Switching Features 11 Quality of Service QOS and Access List ACL Featu...

Page 16: ...d Power Over Ethernet POE functionality for network devices such as Ruckus Wireless ZoneFlex Access Points and Wi Fi Wall Switches The ZoneSwitch 4124 supports IEEE802 3af PoE on all 24 ports with a t...

Page 17: ...BASE TX port Cabling Type Cat 5 Cat 5e orCat 6cablesforRJ 45ports 1 to 24 Optical fiber cables for SFP ports 21 to 24 LEDs Link ACT POE on ports 1 through 24 Dimensions Width x Height x Depth 44 0 cm...

Page 18: ...LEDs Ports and Connectors Front Side and Rear Panel Layout Figure 1 ZoneSwitch 4124 Buttons LEDs Ports and Connectors Table 1 describes the buttons LEDs ports and connectors on ZoneSwitch 4124 Table...

Page 19: ...lid Amber On 802 3af at powered device detected ZS4124 supports IEEE 802 3af 180W max 15 4W per port Supports dedicated POE at minimum 51V and dynamic power allocation to high priority ports 5 Uplink...

Page 20: ...6 Introducing Ruckus Wireless ZoneSwitch Physical Features Front Panel 3 4 5 1 2 Left Side Panel 6 7 Right Side Panel 6 7 Rear Panel 10 9 8...

Page 21: ...ZoneSwitch 4224 Label Description 1 Reset Pressed less than 5 seconds switch will reboot Pressed for more than 5 seconds system will reset to default settings and reboot 2 Power LED Green Power is ON...

Page 22: ...high priority ports 5 Uplink combo Ports 21 to 24 Consists of a combined RJ 45 and SFP interface When combo port is active its corresponding RJ 45 port number will be disabled Supports 1000 Base SX a...

Page 23: ...9 Introducing Ruckus Wireless ZoneSwitch Physical Features Front Panel 3 4 5 1 2 Left Side Panel 10 6 Right Side Panel 7 6 Rear Panel 9 8...

Page 24: ...over all 24 ports total POE power budget 180W ZS4224 supports IEEE 802 3at over all 24 ports total POE power budget 375W MDI MDI X auto sense on all ports and IEEE 802 3ab Auto MDI MDI X on all 100 1...

Page 25: ...802 3at concurrent full 802 1d Spanning Tree Protocol STP 802 1w Rapid Spanning Tree Protocol RSTP 802 1s Multiple Spanning Tree Protocol MSTP Optional Static 802 3ad link aggregation 802 3ad LACP Po...

Page 26: ...t 802 3af capable 12 port 802 3af concurrent full 24 port 802 3af concurrent full 12 port 802 3at concurrent full 802 1Q P based Layer 2 QoS DSCP based Recognition DSCP based Marking Remarking Priorit...

Page 27: ...e 24 port 802 3af capable 12 port 802 3af concurrent full 24 port 802 3af concurrent full 12 port 802 3at concurrent full RADIUS Authentication Authorization Accounting TACACS Authentication Authoriza...

Page 28: ...eb based GUI Device Configuration Event Trap View Abnormal Event Full CLI Command Line Interface Telnet Client TFTP client SNTP SYSLOG SNMP v1 v2 v3 v3 Optional MIB I II RMON v1 v2 DHCP client Port mi...

Page 29: ...uration to factory default settings 4 Storm Rate Control The ingress rate limit for Broadcast Multicast or DLF packets can be configured individually for each port The rate can be configured from 1 00...

Page 30: ...permit rule it is forwarded If the packet meets the deny rule it is dropped If the packet doesn t meet any rules it is forwarded The default behavior of all data packets is forward Users should add a...

Page 31: ...Introducing Ruckus Wireless ZoneSwitch Layer 2 Functional Specifications ACL Action Flow Incoming Packets No match Rule 1 Rule 2 Rule n Action No match No match Match Match Match Pass Drop Deny Permi...

Page 32: ...em to a policy The switch checks incoming packets against policies one by one If the packet doesn t meet any policy it is forwarded The default behavior for all data packets is forwarding The system s...

Page 33: ...ackets or other FF FF llc Users may only specify up to 10 protocol VLAN groups If there is a port attached with a VLAN group this group can not be deleted Management VLAN supports only clients which b...

Page 34: ...ature by enabling the global secure MAC function 17 802 1X The system supports port based IEEE 802 1X and EAP MD5 Also supports enabled disabled forwarding of EAP frame when 802 1X is disabled 18 RADI...

Page 35: ...bled forwarding of BPDU frame when STP is disabled Also supports 802 1s multiple spanning trees with the force version to compatible 802 1d stp and 802 1w rstp Up to 31 mstp instances and one default...

Page 36: ...rict DSCP Diffserv and TOS IP Precedence Also supports the enabling disabling of DSCP TOS priority and provides traffic class table QoS Decision Flow Yes QoS E Port TOS Di Taq No No No Yes Yes Go to Q...

Page 37: ...SSL session The system supports SSL cipher suites RSA NULL MD5 RSA NULL SHA RSA DES SHA RSA 3DES SHA DH RSA DES SHA DH RSA 3DES SHA and RSA EXP1024 DES SHA 30 LLDP The LLDP Link Layer Discovery Proto...

Page 38: ...802 3at and PoE may be enabled disabled for each port on the system Users may set PoE priority as Critical High Low for each port on the system ZS4124 supports 802 3af on all 24 ports and a 180W total...

Page 39: ...Before you Begin 26 Package Contents 26 Equipment 26 Environment 26 Desktop Installation 27 Rack Mount Installation 28 Cabling and Powering On the Switch 30 Preparing your Computer for Switch Setup 3...

Page 40: ...min PC running Windows 2000 XP Server Vista 7 or MAC OSX 10 4 5 6 Internet Explorer 6 or later Firefox 3 5 or later or Safari 3 0 installed on Admin PC A grounded electrical power strip or surge suppr...

Page 41: ...eSwitch may be installed on a sturdy desktop or shelf area Locate the four rubber feet included in the packaging and install them at the appropriate indentations located at the four corners of the bot...

Page 42: ...rack Line up the screw holes on the mounting brackets to the holes on the rack Use a Phillips 1 screw driver and the included four rack screws round head Phillips screws provided in the mounting kit t...

Page 43: ...the equipment to the supply circuit and the effect that overloading of the circuits might have on over current protection and supply wiring Appropriate consideration of equipment nameplate ratings sho...

Page 44: ...S4124 4224 connect the other end to your computer If using an optional Network cable Connect one end of the Network cable to any RJ 45 port on the front panel of the ZS4124 4224 connect the other end...

Page 45: ...e and understanding of current and widely used Microsoft and Apple Computer operating systems If you are running Linux or other non described operating systems please consult your software user manual...

Page 46: ...ions window appears right click the icon for Local Area Connection and select Properties When the Local Area Connection Properties dialog box appears select Internet Protocol TCP IP from the scrolling...

Page 47: ...et mask 255 255 255 0 Default gateway 192 168 10 1 Preferred DNS server 192 168 10 1 Leave the Alternate DNS Server field empty IMPORTANT Write down all of the currently active settings so you can res...

Page 48: ...Setup Preparing your Computer for Switch Setup Windows 7 Setup 1 On your Admin PC right click on the Networking icon and select Open Network and Sharing Center Menu Bar Networking icon Open Network an...

Page 49: ...for Switch Setup 2 When the Network and Sharing Center window appears click Change Adapter Settings A list of the communications devices and network connectivity will open in the main window Right cli...

Page 50: ...36 Installation Setup Preparing your Computer for Switch Setup 3 When the Local Area Connection Properties dialog box opens select Internet Protocol Version 4 TCP IPv4 and click Properties...

Page 51: ...et mask 255 255 255 0 Default gateway 192 168 10 1 Preferred DNS server 192 168 10 1 Leave the Alternate DNS Server field empty IMPORTANT Write down all of the currently active settings so you can res...

Page 52: ...wn menu will appear Click System Preferences and the System Preferences panel will open or you may access the System Preferences directly from its icon in the dock depending on how your computer is se...

Page 53: ...h Setup 2 When the Network window opens the Location menu should be set to Automatic and the Show menu should be set to Network Status which will display all network connectivity on your computer Clic...

Page 54: ...x network other than 192 168 10 1 which is being used by the switch Subnet mask 255 255 255 0 Router default gateway 192 168 10 1 DNS servers 192 168 10 1 IMPORTANT Write down all of the currently ac...

Page 55: ...41 Accessing the Switch 3 Accessing the Switch In this Chapter Overview 42 Graphical User Interface Access 43 Command Line Interface Access 45 Simple Network Protocol Management SNMP Access 49...

Page 56: ...art switch locally or remotely Users can access the switch via Graphical User Interface GUI Command Line Interface CLI or the Simple Network Management Protocol SNMP Interface Detailed descriptions an...

Page 57: ...s of supported browsers Data presented in graphical format Visually appealing and user friendly interface layout The following steps should be used to properly access the ZS4124 4224 via Ethernet port...

Page 58: ...s follows http 192 168 10 1 2 Press the enter return key and the ZS4124 4224 GUI will load 3 Enter the default Admin name and Password at the login screen Admin Name admin Password admin 4 You are now...

Page 59: ...XP Vista 7 and Apple MAC OSX 10 4 5 6 operating systems The following steps should be used to properly access the ZS4124 4224 via the rear panel console port 9 pin D sub RS 232 serial port and an avai...

Page 60: ...cable to the console port at the rear panel of the ZS4124 4224 connect the other end to an available console port your computer then open the HyperTerminal as follows Start Menu Programs Accessories...

Page 61: ...ch Com port the console cable on your computer is connected press OK 4 The next prompt asks you to confirm the Com properties Match the settings in the illustration and press Apply then OK Depending o...

Page 62: ...word admin Insert Image Here 6 You are now ready to configure a new network change passwords or change IP address to match your network settings See CLI Chapter for more details 7 You may connect devi...

Page 63: ...lable for display While SNMP Access is supported on the switch it requires 3rd party proprietary or open source ManagementInformationBase MIB levelsoftwarepackages SNMPmanagement software Please acqui...

Page 64: ...50 Accessing the Switch Overview...

Page 65: ...erface 4 Graphical User Interface In this Chapter Overview 52 GUI Layout 53 General Information 56 System Admin 58 Ports 88 VLANs 100 IGMP Snooping 106 Forwarding DB 111 Spanning Tree 115 LLDP 123 QoS...

Page 66: ...a specific action for configuring device settings or returning information about the status of a specific device feature This chapter is written for service operators and system administrators who are...

Page 67: ...into your ZoneSwitch with the GUI the Dashboard appears displaying a product identifying bar at the top a menu bar to the left and a workspace to the right Menu Bar The left side column of Dashboard...

Page 68: ...Menu Bar Workspace Dashboard Current Active Page 54 Graphical User Interface GUI Layout System date time User ID click to log out Product Name...

Page 69: ...allows access to all switch commands and viewable information The Main menu is divided into 11 Menu groups General Information System Admin Ports etc and each menu group has an associated sub menu an...

Page 70: ...an overview of the ZoneSwitch 4124 4224 software configuration hardware information administration information and system address information General Info General Information General Info The General...

Page 71: ...aud Rate Console port baud rate in bits per second Flash Size Total switch flash memory in megabytes Manufacture Name of switch manufacturer Administration Information System Name Current switch name...

Page 72: ...SNMP Configuration and Tools Access System Admin Access The Access sub menu presents menu items that configure how the switch interacts with connected devices which IP addresses and servers to connect...

Page 73: ...ch MAC address IP Address Sets the switch IP address Subnet Mask Sets the switch subnet mask address Default Gateway Sets the switch default gateway address DHCP Client Config DHCP Client Mode Enables...

Page 74: ...I timeout Timeout may be 0 no timeout to 60 minutes Default 5 minutes Telnet UI Idle Timeout Sets the time in minutes for telnet UI timeout May be 1 to 60 minutes Default 5 minutes Telnet Server Statu...

Page 75: ...CACS shared secret May be an integer up to 63 characters Default 123456 Single connection Configures single connection as yes default or no TCP Port Sets the TCP Port Default 49 TimeOut Sets TACACS se...

Page 76: ...rface System Admin TACACS Statistics System Admin Access TACACS Statistics The TACACS Statistics menu item displays all TACACS statistical information on the system You may refresh this menu item to v...

Page 77: ...Enables default or disables the SSH Server SSH UI Idle Timeout Sets the SSH UI idle timeout in minutes May be 1 to 60 minutes Default 5 minutes SSH Listen Port Sets the SSH listen port May be 1025 to...

Page 78: ...64 Graphical User Interface System Admin SSH Server Key System Admin Access SSH Server Key The SSH Server Key menu item displays all Secure Shell SSH Server key information...

Page 79: ...Sets the SSL Cipher list default RSA DES SHA RSA 3DES SHA RSA EXP 0124 DES SHA SSL Cert Country Sets the SSL certification country as a 2 letter code ex US SSL Cert Organization Sets the SSL Cert Orga...

Page 80: ...66 Graphical User Interface System Admin SSL Certification Info System Admin Access SSL Certification Info The SSL Certification Info menu item displays all SSL Server Certification information...

Page 81: ...to change the system Username and Password User Name Password Change Current User Name Enters the current user name to change Current Password Enters the current user password New User Name Sets the n...

Page 82: ...may communicate with the system Access Control Config Network Sets the network IP address Mask Sets the network mask address Protocol Sets the access control protocol May choose up to five protocols...

Page 83: ...address Shared Secret Sets the RADIUS shared secret May be an integer up to 46 characters Default 123456 Response Time Sets RADIUS server response time in seconds May be 1 to 120 seconds Default 5 sec...

Page 84: ...0 view tree 10 notify 10 target address and 10 target parameter entries System Info System Admin SNMP Config System Info The System Info menu item allows you to set the System Name Location and Contac...

Page 85: ...r Name Sets the user name to create and or configure Authentication Protocol Sets the user authentication protocol Default No Authen tication Authentication Key Sets the user authentication key Privac...

Page 86: ...NMP group settings SNMP Group Settings Group Name Sets the group name to create and or configure User Name Sets the user name to and within a group Security Model Sets the group security model Default...

Page 87: ...p security level May be noAuthNoPriv authNoPriv or authPriv Default NoAuthNoPriv Security Model Sets the group security model May be v1 v2c or v3 Default v1 Read View Sets the read view name Default n...

Page 88: ...menu item creates configures and displays view tree settings SNMP ViewTree Settings View Name Sets the view name to create and or configure SubTree Sets the view tree identification Mask Sets the view...

Page 89: ...tify Settings menu item configures and displays notify settings SNMP ViewTree Settings Notify Name Sets the notify name to create and or configure Transport Tag Sets the notify tag name Default none S...

Page 90: ...and it must be unique for every SNMP community table May be up to 32 characters Community Name Sets the community name May be up to 32 characters Security Name Sets the security name Transport Tag Set...

Page 91: ...addresses SNMP Target Address Settings Target Name Sets the target address host name Target IP Address Sets the target IP host address Param Name Sets the address parameters Transport Tag Sets the tra...

Page 92: ...ings Param Name Sets the target parameter name User Name Sets the user name Security Level Sets the authentication and privacy settings May be No Authentica tion Authentication No Privacy or Authentic...

Page 93: ...ilure Enables or disables default notification if authentication failure Bridge New Root Enables or disables default notification if new root change Bridge Topology Change Enables or disables default...

Page 94: ...that configure what communications protocols the switch uses configuration settings as well as uploading and downloading software on the system Software Management System Admin Tools Software Manageme...

Page 95: ...oad default or upload files to the switch File Type Sets the file type to upload or download Default Normal Image File Name Sets the file name to upload or download May be up to 32 characters HTTP Man...

Page 96: ...oot menu item allows you to reboot the switch System Reboot Reboot Type Sets the type of reboot to execute May be normal reboot reboots the system to last saved running configuration settings or facto...

Page 97: ...min Save Config System Admin Tools Save Config The Save Config menu item saves all user defined configuration settings to non volatile flash memory NOTE Remember to save configuration often to avoid l...

Page 98: ...me HH MM SS Displays the current system time Date YYYY MM DD Displays the current system date and day of the week SNTP Server IP Sets the SNTP Server IP address SNTP Polling Interval Sets the SNTP Pol...

Page 99: ...Settings Server IP Sets the server IP to log UDP Port Sets the UDP Port Default 514 Severity Sets the severity of the alert to log May be emergencies alerts critical errors warnings notifications inf...

Page 100: ...86 Graphical User Interface System Admin System Log System Admin Tools System Log The System Log menu item displays and clears system log events...

Page 101: ...Config The Upload Download Config menu item sets the TFTP Server IP address and configura tion file to upload or download TFTP Configuration TFTP Server IP Sets the TFTP Server IP address to access th...

Page 102: ...c Port Config Ports Basic Port Config The Basic Port Config sub menu presents menu items that configure and display how each individual port on the switch interacts with connected devices Port Status...

Page 103: ...to configure make changes and click Apply Admin Status Enables default or disables a port Mode Sets the speed duplex on a port Default Auto Jumbo Enables or disables default jumbo frame control on a p...

Page 104: ...unters The Port Counters menu item configures and displays port counter data transmission information Port Counters Select Port Sets the port to refresh or reset Refresh Time Sets the time in seconds...

Page 105: ...us Status Enables or disables default port mirroring on the system Monitoring Config Monitoring Port Sets the monitoring port Monitored Port Sets the port to be monitored Direction Sets the data trans...

Page 106: ...ddresses Global Status Setting Global Status Enables or disables default global secure MAC settings Add New Entry Port Sets the port status to add VID Sets the VLAN ID of the port status to add May be...

Page 107: ...93 Graphical User Interface Ports 802 1x Ports Port Security 802 1x The 802 1x menu item configures advanced 802 1x protocol security settings in the system...

Page 108: ...ational port control direction Default both Administrative Port Control Direction Sets the administrative port control direction Default both Quiet Period Sets the timeout quiet period in seconds May...

Page 109: ...e the link speed and increase redundancy for higher availability System Priority Ports Link Aggregation System Priority The System Priority menu item configures and displays system priority settings S...

Page 110: ...em creates configures and displays link aggregation groups Add Group Group Admin Key Sets the unique group admin key May be 0 to 65535 Group Mode Sets the group mode Default Manual Group Member Select...

Page 111: ...rt Priority The Port Priority menu item configures and displays port priority status Port Priority Port Sets the port to configure Port Priority Sets the port priority May be 0 to 255 Default 1 Port P...

Page 112: ...ted The Port Protected sub menu presents menu items that configure individual port protec tion Port Protected Ports Port Protected Port Protected The Port Protected menu item sets and displays the por...

Page 113: ...ts the port to configure Status Enables or disables default port protection Interface Type Sets the interface type Default Ethernet Uplink Sets the uplink port Port Protected Uplink Status Displays a...

Page 114: ...e and display VLANs Create Modify VLAN VLANs 802 1Q Vlan Create Modify VLAN The Create Modify VLAN menu item creates configures and displays VLANs on the system Create VLAN VLAN ID Sets the port to co...

Page 115: ...02 1Q Trunk settings Global GVRP Enables or disables default Global GVRP on the system 802 1Q Trunk config Enables or disables default Global GVRP on the system Port Number Sets the port to configure...

Page 116: ...102 Graphical User Interface VLANs VLANs by Port VLANs 802 1Q Vlan VLANs by Port The VLANs by Port menu item displays and configures VLANs by port...

Page 117: ...otocol Vlan Status VLANs Protocol Vlan Protocol Vlan Status The Protocol Vlan Status menu item configures global and individual VLAN status settings Global Protocol VLAN Status Enables or disables def...

Page 118: ...tings Frame Type Sets the VLAN encap frame type May be enet v2 snap or llc Default enet v2 Protocol Value Sets the protocol value May be IP novell netbios appletalk or other user defined aa aa Default...

Page 119: ...l port VLAN protocol settings Port VLAN Protocol Settings Port Sets the port to configure Group ID Sets the group ID to associate with the selected port VLAN ID Sets the VLAN ID to associate with the...

Page 120: ...the packets sent over the network IGMP Snooping Config IGMP Snooping IGMP Snooping Config The IGMP Snooping Config menu item configures IGMP snooping and host port age out timers IGMP Snooping Status...

Page 121: ...er Table The VLAN Filter Table menu item configures and displays VLAN filters VLAN Filter setting VLAN ID Sets the VLAN ID May be 1 to 4094 Status Filters default or accepts all data packets sent thro...

Page 122: ...108 Graphical User Interface IGMP Snooping Router Port Table IGMP Snooping Router Port Table The Router Port Table menu item displays a table of VLANs and associated router ports...

Page 123: ...figures and displays the Static MAC address associated with a VLAN Static Multicast Config Allows you to add or remove MAC address VLAN settings VLAN ID Sets the host port timer in seconds Default 260...

Page 124: ...ember Config VLAN ID Sets the VLAN to configure Multicast address Sets the multicast address to associated with a VLAN ID Static Displays the static address of the VLAN ID Group Member Displays the gr...

Page 125: ...DB Entries Forwarding DB Add Static FDB Entries The Add Static FDB Entries menu item adds removes and displays forwarding database setting on the system Static FDB Entries configure Add New Entry Sets...

Page 126: ...ng DB FDB by Port The FDB by Port menu item configures and displays forwarding database age out time by port Age Out Time Sets the age out time in seconds May be 10 to 630 Default 300 FDB Entries By P...

Page 127: ...MAC Forwarding DB FDB by MAC The FDB by MAC menu item configures and displays forwarding database age out time by MAC address Age Out Time Sets the age out time in seconds May be 10 to 630 Default 300...

Page 128: ...ng DB FDB by VID The FDB by VID menu item configures and displays forwarding database age out time by VLAN ID Age Out Time Sets the age out time in seconds May be 10 to 630 Default 300 FDB Entries by...

Page 129: ...ures MSTP settings on the system Global Configuration Global STP Status Enables default or disables MSTP on the system Protocol Version Sets the protocol version Default MSTP Forward Bpdu Enables or d...

Page 130: ...D CIST Bridge Priority Sets the CIST bridge priority CIST Bridge Hello Time Sets the time in seconds for bridge hello time May be 1 to 10 seconds Default 2 seconds CIST Bridge Maximum Age Sets the tim...

Page 131: ...Graphical User Interface Spanning Tree CIST Basic Port Config Spanning Tree CIST Basic Port Config The CIST Basic Port Config menu item configures and displays individual port priority path and STP st...

Page 132: ...ty Hex Selects and sets the port priority Default 0x80 Path Cost 1 200000000 Selects and sets the CIST path cost Default 2000000 STP Status Selects then Enables default or disables STP status Port Set...

Page 133: ...Port Config menu item configures and displays administrative operator port settings Port Configure Admin OperEdge Selects and sets Administrator or Operator edge Default True Admin OperPtoP Selects an...

Page 134: ...STP Instance ID Sets the MSTP instance ID May be 1 to 31 VLAN ID Sets the VLAN ID May be 2 to 4093 or multiple VLANs 2 5 7 12 MST Instance Port Config Sets the MSTP instance ID May be 1 to 31 MST Inst...

Page 135: ...1 Graphical User Interface Spanning Tree Designated Topology Info Spanning Tree Designated Topology Info The Designated Topology Info menu item displays all designated topology information on the syst...

Page 136: ...122 Graphical User Interface Spanning Tree Regional Topology Info Spanning Tree Regional Topology Info The Regional Topology Info menu item displays all regional topology information on the system...

Page 137: ...sets basic discovery protocol settings LLDP Basic Settings LLDP System Control Starts default or stops LLDP system control LLDP Status Enables or disables default LLDP on the system Hold time Multipl...

Page 138: ...124 Graphical User Interface LLDP LLDP Port Settings LLDP LLDP Port Settings The LLDP Port Settings menu item configures and displays LLDP ports settings to transmit or receive state...

Page 139: ...figure Transmit State Selects enables default or disables LLDP transmit state on a port Receive Status Selects enables default or disables LLDP transmit state on a port Port Setting Information Select...

Page 140: ...126 Graphical User Interface LLDP LLDP Basic Tlv Settings LLDP LLDP Basic Tlv Settings The LLDP Basic Tlv Settings menu item sets and displays basic tlv settings...

Page 141: ...ts enables default or disables system name System Description Selects enables default or disables system description System Capability Selects enables default or disables system capability Management...

Page 142: ...128 Graphical User Interface LLDP LLDS Dot1 Dot3 Tlv Settings LLDP LLDP Dot1 Dot3 Tlv Settings The LLDP Dot1 Dot3 Tlv Settings menu item sets and displays Dot1 Dot3 tlv settings...

Page 143: ...les port Vlan ID Dot3 Tlv MAC PHY Config Selects enables default or disables MAC PHY config Power Via MDI Selects enables default or disables power via MDI Link Aggregation Selects enables default or...

Page 144: ...hical User Interface LLDP LLDP Neighbors Info LLDP LLDP Neighbors Info The LLDP Neighbors Info menu item displays all or specific LLDP neighbor information by port You may also clear the displayed inf...

Page 145: ...131 Graphical User Interface LLDP LLDP Traffic LLDP LLDP Traffic The LLDP Traffic menu item displays all or specific LLDP traffic information by port You may also clear the displayed information...

Page 146: ...132 Graphical User Interface LLDP LLDP Errors LLDP LLDP Errors The LLDP Errors menu item displays all LLDP errors on the system...

Page 147: ...flows orto guarantee acertain levelof performance to a data flow Policy Config QoS Policy Config The Policy Config sub menu presents menu items that configure and display QoS policies on the system Cr...

Page 148: ...ets the DSCP ID May be 0 to 63 Protocol Sets the protocol May be 1 to 255 e g TCP is 6 UDP is 17 ICMP is 1 IGMP is 2 RSVP is 46 Source IP Address Sets the source IP address Destination IP Address Sets...

Page 149: ...ion The Create Modify In Profile Action menu item sets and displays in profile actions Create In Profile Index Sets the in profile index May be 1 to 65535 Action Sets the in profile action Default dro...

Page 150: ...Modify Meter The Create Modify Meter menu item sets and displays meter actions Create Meter ID Sets the meter ID May be 1 to 65535 Rate Sets the meter rate May be 64 to 1048512 Bucket Size Sets the b...

Page 151: ...le Action The Create Modify Out Profile Action menu item sets and displays out profile actions Create Out Profile Index Sets the out profile index May be 1 to 65535 Meter Sets the out profile meter Va...

Page 152: ...reate Modify Port List The Create Modify Port List menu item sets and displays port lists Create Port List Index Sets the out profile index May be 1 to 65535 Port List Sets the port list e g 1 1 1 2 1...

Page 153: ...be 1 to 65535 Classifier Index Sets the classifier index to add to a policy May be 1 to 65535 In Profile Action Index Sets the in profile action index to add to a policy May be 1 to 65535 Out Profile...

Page 154: ...estination IP address protocol source TCP UDP port numbers and destination TCP UDP port numbers Access List Config QoS Access List Access List Config The Access List Config menu item creates sets disp...

Page 155: ...141 Graphical User Interface QoS Access List Binding QoS Access List Access List Port Binding The Access List Port Binding menu item sets and displays access lists to bind...

Page 156: ...ueue Mapping menu item sets and displays queue mapping settings Queue Trust Mode Selects Up default or DSCP mapping mode Queue Mapping QoS Status Enables or disables default QoS status on the system Q...

Page 157: ...QoS DSCP Mapping QoS Queue Config DSCP Mapping The DSCP Mapping menu item sets all DSCP to Queue mapping on the system DSCP to Queue Mapping Sets the priority for each DSCP ID on the system Low prior...

Page 158: ...Setting No Selects the port to configure DLF Enables or disables default DLF Destination Lookup Failure Broadcast Enables or disables default storm control broadcast Multicast Enables or disables def...

Page 159: ...ring RMON menu group configures the monitoring and protocol analysis of LANs RMON Global Status RMON RMON Global Status The RMON Global Status menu item enables or disables RMON status on the switch G...

Page 160: ...N RMON Statistics The RMON Statistics menu item selects and displays SNMP access settings by port SNMP Access Settings Interface Selects a port to display and refreshes current information RMON Interf...

Page 161: ...ex May be 1 to 65535 Source Interface Selects a port Buckets Requested Sets the number of buckets for the RMON collection history group May be 1 to 65535 Default 50 Sampling Interval Sets the interval...

Page 162: ...148 Graphical User Interface RMON History Table RMON History Table The History Table menu item selects a history entry number and displays its associated history table statistics...

Page 163: ...be up to 127 characters Type Sets the type of notification generated by the device about the event Values may be none default log trap or log trap If the specified notification type is trap an SNMP tr...

Page 164: ...150 Graphical User Interface RMON Events Log RMON Events Log The Events Log menu item displays event logs...

Page 165: ...fault or delta Startup Alarm Selects whether to use rising default or falling startup alarms Rising Threshold Sets the rising threshold Rising Event Sets the event index used when a rising threshold i...

Page 166: ...d enable disable POE for each port on the system Users may set POE priority as Critical High Low for each port on the system ZS4124 supports 802 3af on all 24 ports and total 180W budget ZS4224 suppor...

Page 167: ...s the port to configure Power Inline Selects the port power inline settings May be auto default or never Power Priority Selects the port power priority May be critical default high or low Power Inform...

Page 168: ...154 Graphical User Interface POE...

Page 169: ...174 Basic System Management Commands 197 Layer 2 Interface Commands 209 Link Aggregation Commands 225 MAC Address Commands 230 Multiple Spanning Tree Commands 236 IGMP Snooping Commands 258 VLAN Comma...

Page 170: ...156 Command Line Interface RMON Commands 364 POE Commands 374 Configuration File Example 378...

Page 171: ...ttings or returning information about the status of a specific device feature This chapter is written for service operators and system administrators who are responsible for managing configuring and t...

Page 172: ...inter tab Switch config interface GigabitEthernet GigabitEthernet IEEE 802 3z Switch config interface gigabitEthernet 1 4 Switch config if sp Available commands Syntax speed duplex auto 10 100 H 10 10...

Page 173: ...mst instance cost cost Switch config if spanning spanning tree mst cost 55 Switch config if interface GigabitEthernet vlan port num or vlan id getport end shutdown no shutdown flow control no flow co...

Page 174: ...xec Global Configuration Mode config Interface Configuration Mode config if ACL Configuration Mode config access A specific value is presented for each command mode at the prompt line You must use spe...

Page 175: ...it CLI Privileged EXEC privExec Switch Enable to enter from User EXEC mode Logout to quit CLI disable or exit to User EXEC Global Configuration config Switch config Configure to enter from Privileged...

Page 176: ...ommands name Default VLAN untagged 1 1 24 Global configuration commands hostname switch Global Configuration Commands Port Interface Commands VLAN Interface Commands ACL Commands ACL commands deny 00...

Page 177: ...uration options for all other commands on the system config Allows access to the Global Configuration config command mode Command Mode Privileged EXEC Example Switch config Switch config disable Retu...

Page 178: ...nfiguration mode to Privileged EXEC mode Command Mode All Command Modes Example Switch config if end Switch exit Exits from the current mode to the parent mode Command Mode All Command Modes Example S...

Page 179: ...ample switch help config disable show interface info show system mtu show sys info show SNMP show storm control show mls qos show priority queue cos map show interface counters interface port show int...

Page 180: ...obal Configuration Syntax interface interface name Example Switch config interface GigabitEthernet 1 1 Switch config if Switch config interface VLAN 1 Switch config if logout Logs you out of the CLI s...

Page 181: ...ce Basic Commands mode Displays all available modes Command Mode All Command Modes Syntax mode show Example Switch mode show ENABLE CONFIG config IF_PORT config if IF_VLAN config if TACACS TACACS ACCE...

Page 182: ...ess n count Number of times to ping w timeout sec The duration seconds for timeout if replies are not received Example Switch ping 172 16 3 152 Type Ctrl C to abort Reply Received From 172 16 3 152 Ti...

Page 183: ...s the switch and prompts you whether the running configuration has changed and if to save it or not factory default reboots the switch to factory default settings without any aditional configuration p...

Page 184: ...s the Config file Command Mode Privileged EXEC Syntax run download config file tftp IP address filename Description IP address IP address filename file name to download Example Switch run download con...

Page 185: ...d bank for all stacking units Command Mode Privileged EXEC Syntax run download image tftp IP address filename Description IP address IP address filename file name to download Example Switch run downlo...

Page 186: ...me to download Example Switch run download bootloader tftp 172 16 3 152 bootloader rom Downloading From Remote Server Type Ctrl C to abort 53678 Download Successful run save config to flash Save curre...

Page 187: ...name Description IP address IP address filename file name to download Example Switch run upload config file tftp 172 16 3 152 config txt Please wait a minute 2581 bytes data transferred Switch show ru...

Page 188: ...s SNMP trap control supports Authentication Failure Link Up Down Port New Root Topology Change Cold Start Warm Start and RMON Alarm show SNMP server agent Displays the SNMP agent status Command Mode P...

Page 189: ...tch exact VACM Access Read View read only VACM Access Write View read only VACM Access Notify View read only VACM Access Storage volatile VACM Access Status active VACM Access Group initial VACM Acces...

Page 190: ...Notify View internet VACM Access Storage volatile VACM Access Status active VACM Access Group initial VACM Access Context Prefix default VACM Access SecModel v3 VACM Access Sec Level authPriv VACM Acc...

Page 191: ...ed EXEC Syntax show SNMP server community Example Switch show SNMP server community SNMP Community Mapping Table SNMP Community Index 1 SNMP Community Name gs5240 SNMP Community SecName gs5240 SNMP Co...

Page 192: ...MP Security To Group Table VACM SecurityModel v3 VACM Security Name initial VACM Group Name initial VACM StorageType volatile VACM Status active VACM SecurityModel v3 VACM Security Name templateMD5 VA...

Page 193: ...NMP notify information Command Mode Privileged EXEC Syntax show SNMP server notify Example Switch show SNMP server notify SNMP Notification Table SNMP Notify Index notify SNMP Notify Tag tag1 SNMP Not...

Page 194: ...ommand Mode Privileged EXEC Syntax show SNMP server targetaddr Example Switch show SNMP server targetaddr SNMP Target Address Details Target Address Name taddr Target Address 192 168 0 25 Target Tag L...

Page 195: ...Syntax show SNMP server targeparam Example Switch show SNMP server targetparam SNMP Target Param Details Target Params Name addrparam Target Params MP Model v2c Target Params Security Model v2c Targe...

Page 196: ...e gs5240 USM Auth Protocol none USM Priv Protocol none USM User Storage Type volatile USM User Status active USM User Name initial USM Engine ID 8000081c044653 USM Security Name initial USM Auth Proto...

Page 197: ...Command Line Interface SNMP Commands USM Engine ID 8000081c044653 USM Security Name templateSHA USM Auth Protocol SHA USM Priv Protocol DES_CBC USM User Storage Type volatile USM User Status active Sw...

Page 198: ...1 3 6 VACM ViewTree Mask 1 1 1 VACM ViewTree Family Type included VACM ViewTree Storage volatile VACM ViewTree Status active VACM ViewTree ViewName internet VACM ViewTree SubTree 1 3 6 1 VACM ViewTree...

Page 199: ...ystem Command Mode Global Configuration Syntax no SNMP server agent Description SNMP server agent Enables SNMP server agent default no SNMP server agent Disables SNMP server agent Example Enables SNMP...

Page 200: ...iption server location Sets the name of the system location String may be up to 50 characters in lenth no SNMP server location Removes any location string from the system This is the default setting E...

Page 201: ...contact Sets the contact information of the system String may be up to 50 characters in lenth no SNMP server contact Removes any contact information string from the system This is the default setting...

Page 202: ...1 to 32 characters Password not required pri protocol DES none Sets pri protocol to DES or none priv passwd passwd none Sets privacy password May be 1 to 32 characters Password not required no SNMP s...

Page 203: ...roupname Sets the group name string user usm secname Identifies the security name to be added to the group sec model v1 v2c v3 Selects the security model of the group no SNMP server group Disables the...

Page 204: ...ettings noAuthNoPriv disables this feature authNoPriv enables message digest MD5 or Secure Hash Algorithm SHA packet authentication authPriv enables both authentication and privacy sec model v1 v2c v3...

Page 205: ...e ViewName subtree OID mask mask OID format Description ViewName Sets the viewtree name subtree OID The object identifier for the group mask mask OID format Defines the view s subtree no SNMP server v...

Page 206: ...ty access string for SNMP v1 v2c and it must be unique for every SNMP community table May be a string of up to 32 characters community name CommunityName Sets the community name May be a string of up...

Page 207: ...rver notify NotifyName tag TagName none Description NotifyName Sets the notification name tag TagName none Sets the tag value Value must match the tag list in the snmpTargetAddressTable no SNMP server...

Page 208: ...ddress host name IP addr ip_addr Sets the target IP host address address paramname AddrParams Sets the address parameters tag list TagName none Sets the tag list name no SNMP server targetaddr Disable...

Page 209: ...me Specifies the security name sec level noAuthNoPriv authNoPriv authPriv Selects the authentication and privacy settings noAuthNoPriv disables this feature authNoPriv enables message digest MD5 or Se...

Page 210: ...n option Specifies the option for notification no SNMP server enable traps Disables SNMP notifications Notification Type Notification Option Default Value SNMP authentication Disabled SNMP coldstart E...

Page 211: ...obal Configuration Syntax console inactivity timer minute Description minute Sets the time in minutes for console inactivity May be 0 to 60 minutes 0 minutes disables timeout Default 5 minutes Example...

Page 212: ...ars disables the system host name Example Sets system host name to switch_1 Switch config hostname switch_1 Switch config Clears disables system name Switch config no hostname Switch config monitor en...

Page 213: ...to 255 255 240 0 Switch config IP address 172 16 5 151 255 255 240 0 Switch config IP address dhcp Enables or disables the system to acquire its IP address through the DHCP protocol Command Mode Globa...

Page 214: ...ig IP address renew Switch config IP http server Enables or disables access to the system s embedded web server Enabled by default Command Mode Global Configuration Syntax no IP http server Example En...

Page 215: ...Sets the mask for the associated IP subnet Default mask 0 0 0 0 HTTP Selects HTTP protocol to access web browser interface HTTPS Selects HTTPS protocol to access web browser interface SNMP Selects SNM...

Page 216: ...plays IP authorized managers information Command Mode Privileged EXEC Syntax show IP authorized managers Example Switch show IP authorized managers IP Manager Table Authorised Manager IP IP Mask Proto...

Page 217: ...how IP http server Example Switch show IP http server Web Server Enabled Switch show IP conf Displays IP address and subnet mask information Command Mode Privileged EXEC Syntax show IP conf Example Sw...

Page 218: ...e 9 0 0 0 Build 28 Tue Aug 24 23 26 43 2010 Hardware Information Version A1 DRAM Size 128MB Fixed Baud Rate 115200bps Flash Size 16MB Manufacture Ruckus Wireless Inc Administration Information Switch...

Page 219: ...de Privileged EXEC Syntax show console Example Switch show console Console UI Idle Timeout 5 Min Console Active Switch show telnet server Displays telnet configuration information Command Mode Privile...

Page 220: ...net server IP address port Sets the telnet server port number Default port 23 Example Switch config telnet 192 168 0 8 23 Switch config telnet server enable Enables and Disables the telnet server Comm...

Page 221: ...he telnet server timeout value in minutes Command Mode Global Configuration Syntax telnet server inactivity timer minute Description minute Sets the telnet server inactivity timer Default 5 minutes Ex...

Page 222: ...new username Example Sets username to ruckus and password to switch Default username and default password are admin Switch config username ruckus Enter default password admin Old Password Enter new pa...

Page 223: ...ces in the network environment flow control Enables or Disables the flow control for a port Disabled by default Command Mode Interface Configuration Syntax no flow control Example Enables flow control...

Page 224: ...fig if getport Module 1 Port 1 Switch config if jumbo Enables or disables jumbo framecontrol for a port Command Mode Interface Configuration Syntax no jumbo Example Enables Jumbo control on port 3 Swi...

Page 225: ...on Sets the data direction to be monitored may be rx tx or both rx monitors received packets tx monitors transmitted packages both monitors received and transmitted packets no port monitor Disables po...

Page 226: ...e interface port counter information to display Example Switch show interface counters 1 2 refreshtime 300 s Total TX RX Bytes Total TX RX Pkts Good Broadcast Good Multicast 44348050 356972 92843 1123...

Page 227: ...information Command Mode Privileged EXEC Syntax show interface counters error interface port Description interface port Specifies the interface port counter error information to display Example Switch...

Page 228: ...counters Clears interface counter statistics information Command Mode Privileged EXEC Syntax clear interface counters interface port Description interface port Specifies the interface port counter in...

Page 229: ...led Disabled 1 8 1000T Enabled Down Auto Disabled Disabled 1 9 1000T Enabled Down Auto Disabled Disabled 1 10 1000T Enabled Down Auto Disabled Disabled 1 11 1000T Enabled Down Auto Disabled Disabled 1...

Page 230: ...itor Displays port monitoring information Command Mode Privileged EXEC Syntax show monitor Example Displays monitor information Switch show monitor Port monitor status is ENABLED Monitoring unit port...

Page 231: ...on Command Mode Privileged EXEC Syntax show storm control Example Switch show storm control Port Storm Control Setting Unit Port DLF Broadcast Multicast Threshold 1 1 Disabled Disabled Disabled 2000 1...

Page 232: ...ult The shutdown command is disabled by default Command Mode Interface Configuration Syntax no shutdown Example Enables port 3 Switch config interface GigabitEthernet 1 3 Switch config if no shutdown...

Page 233: ...tion option Sepcifies the port speed and duplex mode Option Description auto Auto negotiation mode default 10 h 10 Mbps half duplex mode 10 f 10 Mbps full duplex mode 100 h 100 Mbps half duplex mode 1...

Page 234: ...esh timer in seconds Example Switch config statistics refresh timer 100 Switch config storm control broadcast Enables or disables storm control broadcast for all ports Disabled by default Command Mode...

Page 235: ...m control multicast Switch config if Disables multicast storm control Switch config if no storm control multicast Switch config if storm control threshold Specifies storm control threshold in kbits pe...

Page 236: ...tination Lookup Failure storm control for all ports Disabled by default Command Mode Interface Configuration Syntax no storm control unicast Example Enables unicast storm control Switch config if stor...

Page 237: ...annel to be used as an uplink interface no switchport protected uplink Disables port isolation Example Enables port isolation on port 4 and sets the uplink to port 20 Switch config interface GigabitEt...

Page 238: ...bled by default Command Mode Privileged EXEC Syntax show port protected port list Description port list Specifies a list of port instances or a single port instance such as 1 1 1 2 or 1 1 2 or 1 1 2 3...

Page 239: ...CP trunk key port list Specifies a list of port instances ex 1 1 2 or 1 1 1 2 1 3 or 1 1 2 3 5 mode Specifies the LACP mode as active passive or manual no lacp LACP key port list Removes port instance...

Page 240: ...Aggregation Commands Sets ports 5 through 7 to be link aggregation ports LACP key is 12 and mode is manual Switch config lacp 12 1 5 7 manual Switch config Removes port 5 from LACP key 10 Switch conf...

Page 241: ...CP key Specifies the LACP group ID mode Specifies the LACP mode as active passive or manual LACP Mode Description Active LACP negotiation on without conditions Passive LACP negotiation starts when LAC...

Page 242: ...to 65 535 Default value 32768 Example Sets the LACP system priority to 40000 Switch config lacp system priority 40000 Switch config lacp port priority Sets LACP port priority Command Mode Interface C...

Page 243: ...LACP key to display If no key specified all LACP system information will be displayed Example Displays all LACP system information Switch show lacp System Priority 1 Key Mode Member port list 2 Activ...

Page 244: ...nables global port secure MAC status Switch config secure mac Switch config Disables global port secure MAC status Switch config no secure mac Switch config mac address table aging time Specifies the...

Page 245: ...face Specifies the port instance vlan vlan id Specifies the VLAN ID no mac address table static Disables removes static MAC addresses all Disables removes all static MAC addresses mac mac address Sele...

Page 246: ...the port instance vlan vlan id Specifies the VLAN ID no mac address table secure Disables removes secure MAC addresses all Disables removes all secure MAC addresses mac mac address Selects the secure...

Page 247: ...ble aging time Aging Time 300 Sec s Switch show mac address table interface Displays MAC address tables by port Command Mode Privileged EXEC Syntax show mac address table interface interface Descripti...

Page 248: ...e mac MAC Address Port 00 00 00 22 33 44 CPU 00 04 76 4A 28 58 1 1 00 0B 45 23 44 CA 1 2 00 20 ED 4D 88 77 1 11 00 40 33 AA A4 4B 1 21 00 40 33 D3 43 F8 1 22 Switch show mac address table static Displ...

Page 249: ...tatus Disable Destination Address Vlan Destination Port 00 00 00 00 00 11 1 GigabitEthernet1 1 Switch show mac address table vlan Displays MAC address tables by VLANs Command Mode Privileged EXEC Synt...

Page 250: ...de Global Configuration Syntax no spanning tree mst enable Example Enables the multiple spanning tree protocol Switch config spanning tree mst enable Switch config Disables the multiple spanning tree...

Page 251: ...ies the MSTP region name as be ruckus Switch config spanning tree mst name ruckus switch config spanning tree mst revision Specifies a multiple spanning tree protocol region version Command Mode Globa...

Page 252: ...ommand Mode Global Configuration Syntax spanning tree mst version ver Description ver Specifies the spanning tree bridge force version Force Version Description stpCompatible STP compatible rstp RSTP...

Page 253: ...anning tree mst priority priority Description priority Specifies the bridge priority value Default value 32786 Valid values include 4096 8192 12288 16384 20480 24576 28672 32768 36864 40960 45056 4915...

Page 254: ...ion seconds Specifies the time in seconds for bridge hello time Default is 2 seconds May be an integer from 1 to 10 and enforce the following relationships Hello Time Relationship 2 Bridge_Forward_Del...

Page 255: ...seconds Specifies the time in seconds for bridge forward time Default is 15 seconds May be an integer from 4 to 30 and enforce the following relationships Forward Time Relationship 2 Bridge_Forward_D...

Page 256: ...pecifies the time in seconds for bridge maximum age Default is 20 seconds May be an integer from 6 to 40 and enforce the following relationships Maximum Age Relationship 2 Bridge_Forward_Delay 1 0 sec...

Page 257: ...nfig spanning tree mst instance priority Specifies the bridge priority instance Command Mode Global Configuration Syntax spanning tree mst instance priority priority Description instance Specifies the...

Page 258: ...Description instance id Specifies the instance ID as an integer from 1 to 31 vlan vlan range Specifies the vlan range as an integer from 2 to 4094 no spanning tree mst instance Removes VLAN mapping fr...

Page 259: ...on port 4 Switch config interface GigabitEthernet 1 4 Switch config if no spanning tree mst shutdown Switch config if spanning tree mst port priority Specifies port priority Command Mode Interface Co...

Page 260: ...d from port speed 20000 for Gigabit Example Sets port 4 path cost to 4000 Switch config interface GigabitEthernet 1 4 Switch config if spanning tree mst cost 4000 Switch config if spanning tree mst in...

Page 261: ...e Configuration Syntax no spanning tree mst edgeport Example Enables edge port status on port 4 Switch config interface GigabitEthernet 1 4 Switch config if spanning tree mst edgeport Switch config if...

Page 262: ...s Description status Specifies the point to point status as forcetrue forcefalse or auto Default is auto Status Description forcetrue Force TRUE enables P2P status forcefalse Force FALSE disables P2P...

Page 263: ...tion instance Specifies the instance to configure May be an integer from 1 to 31 no spanning tree mst instance shutdown Enables mstp on the interface Example Disables MSTP on port 4 for instance 5 Swi...

Page 264: ...re rejected Example Configures port 4 for instance 8 to port priority 64 Switch config interface GigabitEthernet 1 4 Switch config if spanning tree mst 8 port priority 64 Switch config if spanning tre...

Page 265: ...e Switch show spanning tree configuration Global Spanning tree Status Enabled Forward BPDU Disabled Protocol Version MSTP Root Port 1 7 Time Since Topology Change 17 Root Path Cost 40029 Topology Chan...

Page 266: ...port list Specifies a list of port instances such as 1 1 2 3 or 1 1 1 2 or 1 1 2 3 5 Example Switch show spanning tree interface 1 7 Unit Port 1 7 Port Status Enabled Link Up Trunk Admin OperEdge True...

Page 267: ...eged EXEC Syntax show spanning tree mst configuration Example Switch show spanning tree mst configuration Global MSTP Status Enabled Protocol Version MSTP Msti Config ID Selector 0 Msti Region Name 00...

Page 268: ...ee mst cist configuration Cist Root Port 1 7 Time Since Topology Change 186 Sec Cist Root Path Cost 40029 Topology Change Count 1 Cist Root 6004 001647146500 Cist Regional Root Cost 0 Cist Bridge ID 8...

Page 269: ...h as 1 1 2 3 or 1 1 1 2 or 1 1 2 3 5 Example Switch show spanning tree mst cist interface 1 7 Unit Port 1 7 Port Status Enabled Link Up Trunk CIST Admin OperEdge True False CIST Admin OperPtoP Auto Tr...

Page 270: ...Syntax show spanning tree mst instance instance configuration Description instance Specifies the instance to display May be an integer from 1 to 31 Example Switch show spanning tree mst instance 2 con...

Page 271: ...of port instances such as 1 1 2 3 or 1 1 1 2 or 1 1 2 3 5 Example Switch show spanning tree mst instance 10 interface 1 1 2 Mst Instance 10 Port 1 Port Status Enabled Link Down Trunk N A Port state Di...

Page 272: ...osts and routers by processing the packets sent over the network IP igmp snooping enable Enables or disables igmp snooping in the system Disabled by default Command Mode Global Configuration Syntax no...

Page 273: ...in seconds May be an integer from 60 to 600 Default is 125 seconds host Specifies the host port aging time in seconds May be an integer from 130 to 1225 Default is 260 seconds sec Specifies the igmp...

Page 274: ...nooping vlan filter vlan vlan id Description vlan id Specifies the vlan ID no IP igmp snooping vlan filter vlan Disables igmp snooping filtering Example Enables igmp snooping filtering on vlan 1 igmp...

Page 275: ...lan id Description mc mac Specifies the multicast MAC address vlan id Specifies the vlan id no mac address table multicast entry Disables a multicast entry Example Enables a multicast entry on vlan 1...

Page 276: ...vlan id ports Description mc mac Specifies the multicast MAC address vlan id Specifies the vlan id ports Specifies the port list no mac address table multicast entry Disables a multicast entry Example...

Page 277: ...mp snooping conf IGMP Snooping Status Enabled Host Port Age Out Time 260 sec Router Port Age Out Time 300 sec Switch show mac address table mutlicast Displays layer 2 multicast entries Command Mode Pr...

Page 278: ...ged EXEC Syntax show IP igmp snooping vlan filter table Example Switch show IP igmp snooping vlan filter table VLAN ID Status 1 Filtered Switch show IP igmp snooping mrouter Displays mrouter ports for...

Page 279: ...aneously and multiple management VLAN configuration vlan init Resets vlan settings to factory default Disabled by default Command Mode Global Configuration Syntax vlan init Example Resets VLAN setting...

Page 280: ...ts and adds members into a VLAN Switch config interface vlan 3 Switch config if member 1 1 5 Switch config if forbidden Configures the forbidden ports on a static vlan Command Mode Interface Configura...

Page 281: ...fies the vlan to disable Example Disables deletes vlan 3 Switch config no interface vlan 3 Switch config Disables deletes vlan 3 Switch config interface vlan 1 Switch config if no interface vlan 3 Swi...

Page 282: ...ts tag only Configures frame type to accept only tagged packets Example Sets port 2 to frame type all accept all packets Switch config interface GigabitEthernet 1 2 Switch config if frame type all Swi...

Page 283: ...ed member ports for a static vlan Command Mode Interface Configuration Syntax untagged port list Description port list Specifies the port list to configure such as 1 2 6 10 1 3 Example Switch config i...

Page 284: ...ation vlan id Displays specific vlan information one vlan Example Switch show vlan all VLAN Name Mgmt Type Ports 1 UP Permanent 1 Ge1 1 Ge2 1 Ge3 1 Ge4 1 Ge5 1 Ge6 1 Ge7 1 Ge8 1 Ge9 1 Ge10 1 Ge11 1 Ge...

Page 285: ...ig Disables GVRP in the system default Switch config no gvrp Switch config gvrp Enables or disables gvrp protocol for a port Disabled by default Command Mode Interface Configuration Syntax no gvrp Exa...

Page 286: ...sed vlan on all ports Disabled by default Command Mode Global Configuration Syntax no protocol vlan Example Enables protocol based VLAN on all ports Switch config protocol vlan Switch config Disables...

Page 287: ...enet v2 snap llc Specifies the encap frame type protocols group Group id 0 2147483647 Specifies the protocol group ID no map protocol Disables deletes protocol vlan groups Example Enables creates vlan...

Page 288: ...ode Interface Configuration Syntax no port protocol vlan Example Enables protocol based VLAN on port 4 Switch config interface GigabitEthernet 1 4 Switch config if port protocol vlan Switch config if...

Page 289: ...witchport map protocols group Disables detaches protocol vlan groups from a vlan Example Attaches port 1 4 with protocol group 1 to vlan 1 Switch config interface GigabitEthernet 1 4 Switch config if...

Page 290: ...Disabled 1 3 1 Admit All Disabled 1 4 1 Admit All Disabled 1 5 1 Admit All Disabled 1 6 1 Admit All Disabled 1 7 1 Admit All Disabled 1 8 1 Admit All Disabled 1 9 1 Admit All Disabled 1 10 1 Admit All...

Page 291: ...y port Command Mode Privileged EXEC Syntax show vlan by port Example Switch show vlan by port Unit Port VLAN ID 1 1 1 1 2 1 1 3 1 1 4 1 1 5 1 1 6 1 1 7 1 1 8 1 1 9 1 1 10 1 1 11 1 1 12 1 1 13 1 1 14 1...

Page 292: ...s show vlan protocols group Displays vlan protocol group Command Mode Privileged EXEC Syntax show vlan protocols group Example Switch show vlan protocols group Protocol Group Table Frame Type Protocol...

Page 293: ...face VLAN Commands show protocol vlan Displays port protocol vlan groups Command Mode Privileged EXEC Syntax show protocol vlan Example Switch show vlan protocols group Port Protocol Table Port Group...

Page 294: ...s in the system Disabled by default Command Mode Global Configuration Syntax no mls qos Example Disables Quality of Service commands default Switch config no mls qos Switch config Enables Quality of S...

Page 295: ...User Priority Switch priority queue cos map Dispays QoS trust mode settings Command Mode Global Configuration Syntax priority queue cos map traffic class priority Description traffic class Specifies t...

Page 296: ...s the traffic class as an integer from 0 to 3 Example Configures traffic class Queue 1 mapping to dscp 13 Switch config dscp to cos map 13 1 Switch config qos schedule Sets QoS scheduler as strict or...

Page 297: ...Command Line Interface Quality of Service Commands show mls qos Displays QoS status Command Mode Privileged EXEC Syntax show mls qos Example Switch show mls qos Quality of Service Status Disabled Swi...

Page 298: ...show dscp to cos map Example Switch show dscp to cos map DSCP Traffic cls DSCP Traffic cls DSCP Traffic cls DSCP Traffic cls 0 0 1 1 2 2 3 3 4 0 5 1 6 2 7 3 8 0 9 1 10 2 11 3 12 0 13 1 14 2 15 3 16 0...

Page 299: ...285 Command Line Interface Quality of Service Commands 48 0 49 1 50 2 51 3 52 0 53 1 54 2 55 3 56 0 57 1 58 2 59 3 60 0 61 1 62 2 63 3 Switch...

Page 300: ...rity queue cos map Displays priority queue cos map information Command Mode Privileged EXEC Syntax show priority queue cos map Example Switch show priority queue cos map QoS scheduler WRR Weight 1 2 3...

Page 301: ...on MAC address vlan id vid Sets the classifier vlan ID dscp value Sets the 6 bit dscp value in the classifier IP header protocol pro num Sets the 8 bit protocol value in the classifier IP header May b...

Page 302: ...8 1 255 Switch config diffserv classifier 1 src IP 192 168 1 0 255 255 255 0 Switch config Creates a classifier on vlan 100 with dscp 27 and protocol 2 Switch config diffserv classifier 2 vlan id 100...

Page 303: ...led before you can successfully configure diffserv features ACL must be disabled before you can enable and use diffserv Command Mode Global Configuration Syntax no diffserv enable Example Enables diff...

Page 304: ...rv inprofile id drop dscp value cos value forward Description id Sets the diffserv in profile index ID drop Drops traffic packets dscp value Sets the 6 bit dscp value in the IP header cos value Sets t...

Page 305: ...048512 bucketsize 4K 8K 16K 32K 64K Description meter id Sets the meter index ID as an integer from 1 to 65535 rate 64 1048512 Sets the in meter rate rounded to the nearest multiple of 64 kbs 64 kbs t...

Page 306: ...ntax no diffserv outprofile id meter meter id drop dscp value Description id Sets the diffserv out profile index ID meter id Sets the meter index ID May be an integer from 1 to 65535 drop Drops traffi...

Page 307: ...for the port and resource involved and the command will be ignored Command Mode Global Configuration Syntax no diffserv policy index portlist index classifier index in profile index out profile index...

Page 308: ...Enables a diffserv policy Enabled by default Command Mode Global Configuration Syntax diffserv policy index status enable Description index Sets the diffserv policy index ID Example Enables index 1 d...

Page 309: ...eleting a port list entry bound to any policy action is not allowed Command Mode Global Configuration Syntax no diffserv portlist datapath id 1 2 6 10 3 2 Description datapath id Sets the diffserv por...

Page 310: ...ource IP Addr 192 168 1 1 Dest IP Addr Ignore Source IP mask 255 255 255 0 Dest IP Mask Ignore Source MAC Addr Ignore Dest MAC Addr Ignore Source Port Ignore Dest L4 Port Ignore DSCP Ignore Protocol I...

Page 311: ...ine Interface Diffserv Commands Source IP Mask Ignore Dest IP Mask Ignore Source MAC Addr 00 00 01 02 03 04 Dest MAC Addr Ignore Source Port Ignore Dest L4 Port Ignore DSCP Ignore Protocol Ignore VLAN...

Page 312: ...XEC Syntax show diffserv inprofile inprofile id Description inprofile id Displays in profile ID specific information Example Displays all in profile information Switch show diffserv inprofile In Profi...

Page 313: ...command will display all meter information Command Mode Privileged EXEC Syntax show diffserv meter meter id Description meter id Displays meter ID specific information Example Switch show diffserv met...

Page 314: ...iffserv outprofile outprofile id Description outprofile id Displays out profile ID specific information Example Displays out profile ID 2 information Switch show diffserv outprofile 2 Out Profile Acti...

Page 315: ...ID MFClfr ID InProf ID OutProf ID Meter ID DataPath ID Status 22 23 23 Enable 23 1 1 Enable Displays policy ID specific information Switch show diffserv policy 22 Policy ID 22 Classifier ID 23 Source...

Page 316: ...tion Command Mode Privileged EXEC Syntax show diffserv portlist portlist number Description portlist number Displays port list ID specific information Example Displays all diffserv port list informati...

Page 317: ...port numbers and destination TCP UDP port numbers access list Enables access lists NOTE Diffserv must be disabled before you can successfully enable ACL Command Mode Global Configuration Syntax no acc...

Page 318: ...ss list list_name Description list_name Sets the access list name Can create up to 128 lists with up to 32 rules per list no access list Disables the access list Example Creates an access list Switch...

Page 319: ...ress and mask protocol protocol_no Sets the IP protocol number src_port port_no Sets the source TCP UDP port number dsc_port port_no Sets the destination TCP UDP port number no deny Disables ACL deny...

Page 320: ...Interface Configuration Syntax no IP access list list_name Description list_name Sets the list name to apply on an interface no IP access list Removes access list rules from an interface Example Appli...

Page 321: ...UDP port number dsc_port port_no Sets the destination TCP UDP port number no deny Disables ACL permit rules Example Enables ACL permit rules with source IP and destination IP Switch config access list...

Page 322: ...t rules in use access list name Specifies the access list informaiton to display Example Displays list of access lists Switch show access list list1 list2 list3 Switch Switch show access list list1 AC...

Page 323: ...Enabled by default Command Mode Global Configuration Syntax no dot1x system auth control Example Enables dot1x default Switch config dot1x system auth control Switch config Disables dot1x Switch conf...

Page 324: ...ifier Switch config dot1x RADIUS fsNas1 Switch config dot1x re authentication Enables or disables 802 1x port re authentication Disabled by default Command Mode Global Configuration Syntax no dot1x re...

Page 325: ...Sets the re authentication time to 120 seconds on port 7 Switch config interface gigabitEthernet 1 7 Switch config if dot1x timeout re authperiod 120 Switch config if dot1x timeout supp timeout Config...

Page 326: ...period to 120 seconds on port 7 Switch config interface gigabitEthernet 1 7 Switch config if dot1x timeout quiet period 120 Switch config if dot1x timeout server Configuresthedot1x servertimeout in se...

Page 327: ...ut to 60 seconds on port 7 Switch config interface gigabitEthernet 1 7 Switch config if dot1x timeout tx period 60 Switch config if dot1x max req Sets the number of requests the switch will send an EA...

Page 328: ...uthenticate Example Re authenticates port 7 Switch config interface gigabitEthernet 1 7 Switch config if dot1x re authenticate Switch config if dot1x init Initializes the status on an 802 1x authorize...

Page 329: ...n Syntax dot1x control direction both in Description both Controls dot1x authentication on incoming and outgoing traffic in Controls dot1x authentication on incoming traffic Example Sets bi directiona...

Page 330: ...uthorized or unauthorized states based on 802 1x authentication exchanges between the server and the client force authorized All traffic will be allowed without any restrictions default force unauthor...

Page 331: ...as 1 1 1 2 1 5 or 1 1 2 5 6 or 1 1 Example Displays dot1x information on port list 1 Switch show dot1x 1 1 NAS ID DNINas1 Dot1x Status Enabled Flood Eapol Status Disabled Port No 1 1 Port Status Auth...

Page 332: ...Command Mode Global Configuration Syntax RADIUS server host IP key string timeout sec s retransmit retries priority index Description IP Sets the IP address or hostname of the RADIUS server host key s...

Page 333: ...Selects whether to short all RADIUS by priority or by IP address Example Switch show RADIUS server sort priority RADIUS extension server table Index 5 Priority 10 Server address 50 0 0 7 Shared secret...

Page 334: ...s over packet switched variable latency data networks show SNTP Displays SNTP configuration information Command Mode Privileged EXEC Syntax show SNTP Example Switch show SNTP Date YYYY MM DD 03 41 07...

Page 335: ...lt setting Example Enables daylight savings Switch config SNTP daylight saving Switch config Disables daylight savings Switch config no SNTP daylight saving Switch config SNTP poll interval Configures...

Page 336: ...s the IP address of the recipient server Hosts are not assigned by default Example Switch config SNTP server 172 16 5 198 Switch config SNTP timezone Sets time zone Command Mode Global Configuration S...

Page 337: ...s or performance logging on Sets the system log status Command Mode Global Configuration Syntax logging on Example Switch config logging on Switch config logging console Sets the console events to log...

Page 338: ...ddress to log port port Sets the port number severity emergencies alerts critical errors warnings notifications informational debugging Selects the severity level facility local0 local1 local2 local3...

Page 339: ...8 transits to state Discarding 009 1900 01 01 00 00 17 mstp 6 Port 1 9 transits to state Discarding 010 1900 01 01 00 00 18 mstp 6 Port 1 10 transits to state Discarding 011 1900 01 01 00 00 19 mstp...

Page 340: ...46 auth 5 Logout via Console user manager from console success 029 1900 01 01 00 39 31 auth 6 Login via Console user manager from console success 030 1900 01 01 00 53 36 auth 5 Logout via Console user...

Page 341: ...via MDI and link aggrega tion Supports eable disable LLDP globally as well as enable disable LLDP transmit receive on an interface LLDP timers can be configured to transmit interval time to live or r...

Page 342: ...isplay Example Switch show LLDP interface gigabitEthernet 1 1 4 interface 1 1 Tx State Enabled Rx State Enabled Tx SEM State IDLE Rx SEM State WAIT FOR FRAME Enabled Tx Tlvs Port Description System Na...

Page 343: ...neighbor information Example Displays al LLDP neighbor information Switch show LLDP neighbors Capability Codes R Router B Bridge T Telephone C DOCSIS Cable Device W WLAN Access Point P Repeater S Stat...

Page 344: ...Interface System Name Aricent Linux Router Ver 1 0 System Desc SNMPV2 Local Intf 1 3 Time Remaining 118 Seconds System Capabilities Supported B R System Capabilities Enabled B R Management Addresses I...

Page 345: ...nd Mode Privileged EXEC Syntax show LLDP traffic interface GigabitEthernet 1 1 2 5 or 1 3 1 4 Description interface GigabitEthernet 1 1 2 5 or 1 3 1 4 Specifies the port to display Example Switch show...

Page 346: ...errors Total Memory Allocation Failures 0 Total Input Queue Overflows 0 Total Table Overflows 0 Switch clear LLDP Resets LLDP traffic counters or table of neigbors information Command Mode Privileged...

Page 347: ...n LLDP on the system Switch config LLDP shutdown Switch config Starts LLDP on the system default Switch config no LLDP shutdown Switch config LLDP enable Enables or disables LLDP on the system Disable...

Page 348: ...nfig LLDP holdtime multiplier Configures the multiplier value used to calculate the time to live value TTL holdtime multiplier x transmit interval that determins how long LLDP information will be held...

Page 349: ...ample Switch config LLDP reinit 4 Switch config LLDP transmit receive Enables or disables LLDP transmit or receive on an interface Command Mode Interface Configuration Syntax no LLDP transmit receive...

Page 350: ...ransmission system description Sets system description tlv transmission system capability Sets system capability tlv transmission management address Sets management address tlv transmission all Enable...

Page 351: ...port vlan id Switch config if LLDP tlv select dot3tlv Enables or disables 802 3 tlv transmission on a given port Disabled by default Command Mode Interface Configuration Syntax no LLDP tlv select dot...

Page 352: ...use all CLI commands over an SSH session after successful login Supports password based user authentication including TACACS and Local Supports des cbc 3des cbc ciper hmac sha1 and hmac md5 MAC algor...

Page 353: ...ion informtion Command Mode Privileged EXEC Syntax show IP ssh configuration Example Switch show IP ssh configuration SSH Server Configuration SSH Server Listen Port 22 SSH Server Idle Timeout 5 Min S...

Page 354: ...d 07 fe f9 47 61 b9 e5 b1 b5 ce 88 d6 35 48 40 85 76 2c 4e 5d 8e fa d4 e2 38 58 6f e8 01 a9 84 9f fb 15 b0 ce 14 3b 1e 13 publicExponent 35 0x23 privateExponent 37 12 e2 a8 ba ae 67 86 4b 62 07 c9 57...

Page 355: ...39 74 db 39 2e f1 76 81 9a 74 b1 ae 26 44 93 17 b1 61 f4 c3 4c c0 16 0c 97 a7 21 c3 6f c0 40 59 45 0c 55 77 47 bf e7 41 b6 c3 b4 14 fb 41 cd 29 1d exponent2 00 a9 ac 55 b8 dd 50 60 f6 62 22 37 fe 1a...

Page 356: ...bedded ssh server on the system Command Mode Global Configuration Syntax no IP ssh service Example Enables ssh server Switch config IP ssh service SSH Service is Enabled now Switch config Disables ssh...

Page 357: ...to 65535 Default port 22 Example Configures ssh listen port 1025 Switch config IP ssh port 1025 Switch config IP ssh inactivity timer Configures ssh session inactivity timeout Command Mode Global Conf...

Page 358: ...t Default 3des cbc cipher2 Sets second cipher algorithm list Example Switch config IP ssh cipher list 3des cbc des cbc Switch config IP ssh mac list Configures ssh MAC algorithm list May be one or mor...

Page 359: ...crypto ssh generate key SSH key generation is in progress This might take a few minutes Please wait Done SSH Generate Key success Switch config crypto ssh save key Saves ssh server key in the system C...

Page 360: ...fied bits 512 or 1024 The SSL certificate can be generated with the key and configured using country and organization name The SSL certificate holds the public key used for encryption of the SSL sessi...

Page 361: ...untry SSL Server Cert Organization SSL Server Certification Certificate Data Version 3 0x2 Serial Number 66 b8 34 03 c5 67 8d b3 46 dd 12 89 6c b3 9b 73 Signature Algorithm md5WithRSAEncryption Issuer...

Page 362: ...nent 65537 0x10001 Signature Algorithm md5WithRSAEncryption 03 a5 32 b6 d5 45 7e 99 cc eb 33 df b4 d6 15 44 23 63 1e dc 44 81 46 6d 50 ce a4 b3 5e e3 7e 85 e3 48 4c 31 27 41 f0 bb 4c fd c7 c5 32 9f bc...

Page 363: ...erver Enabled by default Command Mode Global Configuration Syntax no IP ssl service Example Enables access to ssl server Switch config IP ssl service SSL Service is Enabled now Switch config Disables...

Page 364: ...pher list cipher1 cipher2 cipher3 cipher4 cipher5 cipher6 cipher7 Description cipher1 Sets the first cipher algorithm list Default RSA DES SHA RSA 3DES SHA and RSA EXP1024 DES SHA cipher2 Sets second...

Page 365: ...yntax IP ssl default ciphers Example switch config IP ssl default ciphers Switch config crypto ssl gen key rsa Generates an ssl server key Command Mode Global Configuration Syntax crypto ssl gen key r...

Page 366: ...Sets RSA key type Example Switch config crypto ssl gen cert req algo rsa SSL Generate Cert success Switch config crypto ssl save key cert Saves ssl rsa key and certification in the system Command Mode...

Page 367: ...be null or any two letter country code Example Switch config crypto ssl cert country name US Switch config crypto ssl cert organization name Sets ssl certification organization name Command Mode Glob...

Page 368: ...tion dot1x local RADIUS TACACS Description local Sets local authentication mode RADIUS Sets RADIUS authentication mode TACACS Sets TACACS authentication mode Example Sets the dot1x authentication mode...

Page 369: ...default RADIUS Sets RADIUS accounting mode TACACS Sets TACACS accounting mode Example Set the dot1x accounting mode to TACACS Switch config aaa accounting dot1x TACACS Switch config aaa accounting do...

Page 370: ...e to local default TACACS Sets RADIUS accounting mode Example Set the authentication login mode to TACACS Switch config aaa authentication login TACACS Switch config aaa authentication login mode show...

Page 371: ...rver table Command Mode TACACS Configuration Syntax no TACACS server host IP address Description IP address Specifies the TACACS server address to be disabled deleted Example Deletes disables TACACS s...

Page 372: ...leged EXEC Syntax show TACACS server address IP address Description IP address Specifies the TACACS server address to be displayed Example Displays TACACS server infomation Switch show TACACS server S...

Page 373: ...es sent 0 Authen Aborts sent 0 Authen Pass rvcd 0 Authen Fails rcvd 0 Authen Get User rcvd 0 Authen Get Pass rcvd 0 Authen Get Data rcvd 0 Authen Errors rcvd 0 Authen Follows rcvd 0 Authen Restart rcv...

Page 374: ...360 Command Line Interface TACACS Commands Acct Sess timeouts 0 Malformed Pkts rcvd 0 Socket failures 0 Connection failures 0 Switch...

Page 375: ...nnection attribute port TCP port Sets the TCP port timeout seconds Sets session timeout value in seconds key secret key Sets server secret key Example Configures TACACS server Switch config Switch con...

Page 376: ...CACS Configuration Syntax TACACS trace level bit mapped trace level in hexa decimal Trace Level Hexa decimal trace value no trace 0x00000000 default info 0x00000001 errors 0x00000002 tx pkt dump 0x000...

Page 377: ...iption IP address Sets the TACACS server IP address for use Example Switch config Switch config TACACS Switch TACACS TACACS use server address 192 168 1 10 Switch Switch show TACACS server Server 1 Ad...

Page 378: ...onfigure the monitoring and protocol analysis of LANs rmon enable Enables or disables RMON in the system Command Mode Global Configuration Syntax rmon enable disable Description enable Enables RMON in...

Page 379: ...buckets for the RMON collection history group Default 50 interval poll time 1 3600 Sets the interval in seconds for each polling cycle from 1 to 36000 Default 1800 owner string Specifies the RMON his...

Page 380: ...p to 127 characters log trap CommunityIndex Specifies the type of notification generated by the device about the event Values may be none log trap or log trap If the specified notification type is tra...

Page 381: ...294967295 absolute delta Specifies the method used for sampling the selected vari able and calculating the value to be compared against the thresholds rising threshold RisingThreshold Specifies the ri...

Page 382: ...lticast packets 0 undersized and 0 oversized packets 0 fragments and 0 jabbers 0 CRC alignment errors and 0 collisions of dropped packet events due to lack of resources 0 of packets received of length...

Page 383: ...by Monitors ifIndex 75 which has Received 64 octets 1 packets 1 broadcast and 0 multicast packets 0 undersized and 0 oversized packets 0 fragments and 0 jabbers 0 CRC alignment errors and 0 collisions...

Page 384: ...econd s Requested of time intervals ie buckets is 20 Granted of time intervals ie buckets is 20 Sample 1 Start Interval at 1900 01 01 04 29 41 0 octets 0 packets 0 broadcast and 0 multicast packets 0...

Page 385: ...nment errors and 0 collisions of dropped packet events is 0 Network utilization is estimated at 0 Switch show rmon history RMON is enabled Entry 1 is valid and owned by Monitors ifIndex 1 every 20 sec...

Page 386: ...tion Index 1 65535 Specifies the statistics group index from 1 to 65535 If no value entered diplays all RMON event information Example Switch show rmon events RMON is enabled Event 1 is valid owned by...

Page 387: ...1 65535 Specifies the alarm group index from 1 to 65535 Example Switch show rmon alarms RMON is enabled Alarm 1 is valid owned by Monitors 1 3 6 1 2 1 16 1 1 1 4 1 every 20 second s Taking absolute sa...

Page 388: ...r each port on the system ZS4124 supports 802 3af on all 24 ports and total 180W budget ZS4224 supportS 802 3at on all 24 ports and total 375W budget power inline Enables or disables the Power Over Et...

Page 389: ...mand Mode Interface Configuration Syntax power priority critical high low Description critical Sets highest interface priority high Sets high interface priority low Sets low interface priority Default...

Page 390: ...earching 0 Low 0 00 2 Up Searching 0 Low 0 00 3 Up Searching 0 Low 0 00 4 Up Searching 0 Low 0 00 5 Up Searching 0 Low 0 00 6 Up Searching 0 Low 0 00 7 Up Searching 0 Low 0 00 8 Up Searching 0 Low 0 0...

Page 391: ...377 Command Line Interface POE Commands 21 Up Searching 0 Low 0 00 22 Up Searching 0 Low 0 00 23 Up Searching 0 Low 0 00 24 Up Searching 0 Low 0 00 Switch...

Page 392: ...tart of config file enable config no SNMP server enable traps linkupdown qos schedule strict interface vlan 1 exit interface GigabitEthernet 1 1 no shutdown interface GigabitEthernet 1 2 no shutdown i...

Page 393: ...erface GigabitEthernet 1 9 no shutdown interface GigabitEthernet 1 10 no shutdown interface GigabitEthernet 1 11 no shutdown interface GigabitEthernet 1 12 no shutdown interface GigabitEthernet 1 13 n...

Page 394: ...itEthernet 1 19 no shutdown interface GigabitEthernet 1 20 no shutdown interface GigabitEthernet 1 21 no shutdown interface GigabitEthernet 1 22 no shutdown interface GigabitEthernet 1 23 no shutdown...

Page 395: ...381 Safety and CE Regulations Safety and CE Regulations In this Chapter Safety Notices 382 Compliance Statements 383...

Page 396: ...s and power cord should be placed in a dry indoor area away from any wet or damp environments with exposure to moisture sprays drips or running water Keep the device away from extreme environments bey...

Page 397: ...ass A CE Class A VCCI Class A Safety Agency Approvals UL CUL Industry Canada Statement This product complies with CSA C22 2 No 60950 1 07 2nd Edition 2007 03 Australia Statement The produce complies w...

Page 398: ...384 Safety and CE Regulations...

Page 399: ...trol 68 Access List 140 Access List Binding 141 Access List Config 140 access list 303 304 ACL Commands 303 Add Modify Group 96 Add Static FDB Entries 111 Alarms 151 Australia Statement 383 B Basic Co...

Page 400: ...en key rsa 351 crypto ssl save key cert 352 D Dashboard 53 deny 305 Designated Topology Info 121 Desktop Installation 27 diffserv classifier 287 diffserv enable 289 diffserv inprofile 290 diffserv met...

Page 401: ...nts Control 149 Events Log 150 exit 164 F FDB by MAC 113 FDB by Port 112 FDB by VID 114 Federal Communications Commission Notices 383 flow control 209 forbidden 266 Forwarding DB 111 frame type 268 G...

Page 402: ...service 342 ip ssl cipher list 350 ip ssl default ciphers 351 ip ssl service 349 J jumbo 210 L lacp 225 lacp mode 227 lacp port priority 228 lacp system priority 228 Layer 2 Functional Specifications...

Page 403: ...able static 231 Management Access 60 Management and Operation Features 14 map protocol 273 member 266 Menu Bar 53 mls qos 280 mode 167 MSTP Global Config 115 MSTP Instance Config 120 Multicast Members...

Page 404: ...Access List ACL Features 12 Quality of Service Commands 280 Queue Config 142 Queue Mapping 142 R Rack Mount Installation 28 Radius Commands 318 RADIUS Server Config 69 radius server host 318 reboot 16...

Page 405: ...ow ip http server 201 202 203 show ip igmp snooping conf 261 262 263 show ip igmp snooping mrouter 264 show ip igmp snooping vlan filter table 264 show ip ssh configuration 339 show ip ssh key 340 sho...

Page 406: ...52 show spanning tree mst cist configuration 254 show spanning tree mst cist interface 255 show spanning tree mst configuration 253 show spanning tree mst instance configuration 256 show spanning tree...

Page 407: ...geport 247 spanning tree mst enable 236 spanning tree mst forward time 241 spanning tree mst hello time 240 spanning tree mst init migration 246 spanning tree mst instance cost 250 spanning tree mst i...

Page 408: ...ystem Info 70 System Log 86 System Priority 95 System Reboot 82 T TACACS Server Config 61 TACACS Statistics 62 tacacs trace level 362 tacacs use server address 363 TACACS Commands 354 tacacs server ho...

Page 409: ...395 Index Workspace 53 Z ZoneSwitch 4124 4 ZoneSwitch 4224 7...

Page 410: ...396 Index...

Reviews:

No comments

Related manuals for ZoneSwitch 4124

D-Link TM DES-6500 Command Line Interface Reference Manual preview
TM DES-6500
Brand: D-Link Pages: 267
H3C S3100 Series Command Manual preview
S3100 Series
Brand: H3C Pages: 1089
Cabletron Systems SmartCell 6A000 User Manual preview
SmartCell 6A000
Brand: Cabletron Systems Pages: 114
Cabletron Systems MRX Installation Manual preview
MRX
Brand: Cabletron Systems Pages: 62
Cabletron Systems CyberSWITCH CSX150 Quick Start Manual preview
CyberSWITCH CSX150
Brand: Cabletron Systems Pages: 49
Cabletron Systems Cabletron CyberSWITCH CSX5500 User Manual preview
Cabletron CyberSWITCH CSX5500
Brand: Cabletron Systems Pages: 729
Eaton COOPER POWER SERIES Service Instructions Manual preview
COOPER POWER SERIES
Brand: Eaton Pages: 24
Eaton COOPER POWER SERIES Installation And Adjustment Instructions preview
COOPER POWER SERIES
Brand: Eaton Pages: 16
Eaton Crouse-hinds series Manual preview
Crouse-hinds series
Brand: Eaton Pages: 16
Eaton Cutler-Hammer AMPGARD Instructions preview
Cutler-Hammer AMPGARD
Brand: Eaton Pages: 4
IBM RackSwitch G8264T Product Manual preview
RackSwitch G8264T
Brand: IBM Pages: 20
Perel EMS113 User Manual preview
EMS113
Brand: Perel Pages: 4
Conrad 97 49 89 Operating Instructions Manual preview
97 49 89
Brand: Conrad Pages: 8
A-Neuvideo ANI-3AUTOHDMI Instruction Manual preview
ANI-3AUTOHDMI
Brand: A-Neuvideo Pages: 16
Black Box SW045A-FFF Manual preview
SW045A-FFF
Brand: Black Box Pages: 9
Abseco AFI-2M0S1B Installation Manual preview
AFI-2M0S1B
Brand: Abseco Pages: 10
Crestron CLW-SW1/4RF Operation Manual preview
CLW-SW1/4RF
Brand: Crestron Pages: 36
Maiwe MISCOM7220G-4GF-16GT User Manual preview
MISCOM7220G-4GF-16GT
Brand: Maiwe Pages: 6

Brands by name

Popular brands

Load more brands