manualshive.com logo in svg

SMC Networks TigerSwitch 100, Management Manual

Unlock the full potential of your SMC Networks TigerSwitch 100 with our Management Manual. This comprehensive manual provides detailed guidance on how to optimize the performance of your network switch. Download the manual for free from manualshive.com and enhance your network management skills today.

Share
Download
background image

S

ECURITY

2-15

CLI

 – Assign a user name to access-level 15 (i.e., administrator), then 

specify the password.

Configuring RADIUS/TACACS Logon Authentication

You can configure this switch to authenticate users logging into the system 
for management access using local, RADIUS, or  authentication 
methods.

RADIUS and  are logon authentication protocols that use 
software running on a central server to control access to RADIUS-aware 
or -aware devices on the network. An authentication server 
contains a database of multiple user name, password pairs with associated 
privilege levels for each user that requires management access to a switch.

Like RADIUS, Terminal Access Controller Access Control System Plus 
() is a system that uses a central server to control authentication 
for access to switches on the network.

RADIUS uses UDP while  uses TCP. UDP only offers best 
effort delivery, while TCP offers a connection-oriented transport. Also, 
note that RADIUS encrypts only the password in the access-request 
packet from the client to the server, while  encrypts the entire 
body of the packet.

Command Usage

By default, management access is always checked against the 
authentication database stored on the local switch. If a remote 
authentication server is used, you must specify the authentication 
sequence and the corresponding parameters for the remote 
authentication protocol.

Console(config)#username bob access-level 15

3-27

Console(config)#username bob password 0 smith
Console(config)#

Summary of Contents for TigerSwitch 100

Page 1: ...g switching architecture Support for a redundant power unit Spanning Tree Protocol Up to six LACP or static 4 port trunks Layer 2 3 4 CoS support through four priority queues Full support for VLANs wi...

Page 2: ......

Page 3: ...38 Tesla Irvine CA 92618 Phone 949 679 8000 TigerSwitch 10 100 1000 Management Guide From SMC s Tiger line of feature rich workgroup LAN solutions February 2003 Pub 150200016900A...

Page 4: ...d by implication or oth erwise under any patent or patent rights of SMC SMC reserves the right to change specifications at any time without notice Copyright 2003 by SMC Networks Inc 38 Tesla Irvine CA...

Page 5: ...ervice_warranty All products that are replaced become the property of SMC Replacement products may be either new or reconditioned Any replaced or repaired product carries either a 30 day limited warra...

Page 6: ...S OR OTHER FINANCIAL LOSS ARISING OUT OF OR IN CONNECTION WITH THE SALE INSTALLATION MAINTENANCE USE PERFORMANCE FAILURE OR INTERRUPTION OF ITS PRODUCTS EVEN IF SMC OR ITS AUTHORIZED RESELLER HAS BEEN...

Page 7: ...1 Navigating the Web Browser Interface 2 2 Home Page 2 2 Configuration Options 2 3 Panel Display 2 4 Main Menu 2 5 Basic Configuration 2 8 Displaying System Information 2 8 Setting the IP Address 2 10...

Page 8: ...64 Displaying Basic VLAN Information 2 65 Displaying Current VLANs 2 66 Creating VLANs 2 68 Adding Interfaces Based on Membership Type 2 70 Adding Interfaces Based on Static Membership 2 72 Configurin...

Page 9: ...e CLI 3 1 Console Connection 3 1 Telnet Connection 3 2 Entering Commands 3 3 Keywords and Arguments 3 3 Minimum Abbreviation 3 4 Command Completion 3 4 Getting Help on Commands 3 4 Partial Keyword Loo...

Page 10: ...er 3 35 disconnect ssh 3 36 show ssh 3 37 show ip ssh 3 37 logging on 3 38 logging history 3 39 logging host 3 40 logging facility 3 41 logging trap 3 42 clear logging 3 43 show logging 3 43 show star...

Page 11: ...ver enable traps 3 63 snmp ip filter 3 64 show snmp 3 65 IP Commands 3 67 ip address 3 67 ip dhcp restart 3 69 ip default gateway 3 70 show ip interface 3 70 show ip redirects 3 71 ping 3 72 Line Comm...

Page 12: ...4 Spanning Tree Commands 3 105 spanning tree 3 106 spanning tree mode 3 107 spanning tree forward time 3 108 spanning tree hello time 3 109 spanning tree max age 3 109 spanning tree priority 3 110 spa...

Page 13: ...mac address table multicast 3 142 ip igmp snooping querier 3 143 ip igmp snooping query count 3 144 ip igmp snooping query interval 3 145 ip igmp snooping query max response time 3 145 ip igmp snoopi...

Page 14: ...66 channel group 3 167 lacp 3 168 A Troubleshooting A 1 Troubleshooting Chart A 1 B Upgrading Firmware via the Serial Port B 1 C Pin Assignments C 1 Console Port Pin Assignments C 1 DB 9 Port Pin Assi...

Page 15: ...6 The switch s HTTP Web agent allows you to configure switch parameters monitor port connections and display statistics graphically using a standard Web browser such as Netscape Navigator version 6 2...

Page 16: ...duplex mode for any port Configure up to 255 IEEE 802 1Q VLANs Enable GVRP automatic VLAN registration Configure IGMP multicast filtering Upload and download of system firmware via TFTP Upload and dow...

Page 17: ...unning terminal emulation software and tighten the captive retaining screws on the DB 9 connector 2 Connect the other end of the cable to the RS 232 serial port on the switch 3 Make sure the terminal...

Page 18: ...for this switch is assigned via DHCP by default To manually configure this address or enable dynamic address assignment via DHCP or BOOTP see Setting an IP Address on page 1 6 Note This switch support...

Page 19: ...he switch has a default user name and password for each level To log into the CLI at the Privileged Exec level using the default user name and password perform these steps 1 To initiate your console c...

Page 20: ...ssword Press Enter Setting an IP Address You must establish IP address information for the switch to obtain management access through the network This can be done in either of the following ways Manua...

Page 21: ...numbers 0 to 255 separated by periods Anything outside this format will not be accepted by the CLI program Note The IP address for this switch is assigned via DHCP by default Before you can assign an...

Page 22: ...bootp or dhcp option is saved to the startup config file then the switch will start broadcasting service requests as soon as it is powered on To automatically configure the switch by communicating wit...

Page 23: ...e the switch to 1 respond to SNMP requests or 2 generate SNMP traps When SNMP management stations send requests to the switch either to return information or to set a parameter the switch provides the...

Page 24: ...recommended that you delete both of the default community strings If there are no community strings then SNMP management access to the switch is disabled To prevent unauthorized access to the switch v...

Page 25: ...server enable traps command Type snmp server enable traps type where type is either authentication or link up down Press Enter Saving Configuration Settings Configuration commands only modify the run...

Page 26: ...ving or Restoring Configuration Settings on page 2 24 for more information Operation Code System software that is executed after boot up also known as run time code This code runs the switch operation...

Page 27: ...To reset the switch defaults this file should be set as the startup configuration file See Saving or Restoring Configuration Settings on page 2 24 The following table lists some of the basic system de...

Page 28: ...led Port Status Admin Status Enabled Auto negotiation Enabled Flow Control Disabled 10 100 1000 Mbps Port Capability 10 Mbps half duplex 10 Mbps full duplex 100 Mbps half duplex 100 Mbps full duplex 1...

Page 29: ...bin Class 0 16 Class 1 64 Class 2 128 Class 3 240 IP Precedence Priority Disabled IP DSCP Priority Disabled Multicast Filtering IGMP Snooping Enabled Act as Querier Enabled Broadcast Storm Protection...

Page 30: ...SWITCH MANAGEMENT 1 16...

Page 31: ...For more information on using the CLI refer to Chapter 3 Command Line Interface Prior to accessing the switch from a Web browser be sure you have first performed the following tasks 1 Configure the s...

Page 32: ...n set the switch port attached to your management station to fast forwarding to improve the switch s response time to management commands issued through the Web interface See STP Port and Trunk Config...

Page 33: ...ration change has been made on a page be sure to click on the Apply or Apply Changes button to confirm the new setting The following table summarizes the Web page configuration buttons Button Action R...

Page 34: ...eck for newer versions of stored pages should be Every visit to the page 2 When using Internet Explorer 5 0 you may have to manually refresh the screen after making configuration changes by pressing t...

Page 35: ...e HTTP settings 2 19 SSH Settings Configures Secure Shell settings 2 21 Firmware Manages code image files 2 23 Configuration Manages switch configuration files 2 24 Reset Restarts the switch Bridge Ex...

Page 36: ...rmation Configures individual trunk settings for STP 2 54 STP Port Configuration Configures individual port settings for STP 2 58 STP Trunk Configuration Configures individual trunk settings for STP 2...

Page 37: ...ice value 2 86 Trunk LACP Configuration Allows ports to dynamically join trunks 2 90 Trunk Configuration Specifies ports to group into static trunks 2 92 SNMP SNMP Configuration Configures community s...

Page 38: ...Administrator responsible for the system System Up Time Length of time the management agent has been up MAC Address The physical layer address for the switch Web server Shows if management access via...

Page 39: ...T result Shows results of the power on self test CLI Only Web Click System System Information Specify the system name location and contact information for the system administrator then click Apply Thi...

Page 40: ...alid IP addresses consist of four decimal numbers 0 to 255 separated by periods Anything outside this format will not be accepted by the CLI program Console config hostname Test Switch 3 27 Console co...

Page 41: ...configuration Static Dynamic Host Configuration Protocol DHCP or Boot Protocol BOOTP If DHCP BOOTP is enabled IP will not function until a reply has been received from the server Requests will be broa...

Page 42: ...ly configured by these services Web Click System IP Specify the Management VLAN set the IP Address Mode to DHCP or BOOTP Then click Apply to save your changes The switch will broadcast a request for I...

Page 43: ...onger functioning you will not be able to renew the IP settings via the Web interface You can only restart DHCP service via the Web interface if the current address is still available CLI Enter the fo...

Page 44: ...min with the password admin Note that user names can only be assigned via the CLI Command Attributes User Name The name of the user Maximum length 8 characters case sensitive maximum number of users 1...

Page 45: ...RADIUS Terminal Access Controller Access Control System Plus TACACS is a system that uses a central server to control authentication for access to switches on the network RADIUS uses UDP while TACACS...

Page 46: ...st be configured on the authentication server You can specify up to three authentication methods for any user to indicate the authentication sequence For example if you select 1 RADIUS 2 TACACS and 3...

Page 47: ...times the switch will try to authenticate logon access via the RADIUS server Range 1 30 Default 2 Timeout for a reply secs The number of seconds the switch waits for a reply from the RADIUS server bef...

Page 48: ...k System Authentication Settings To configure local or remote authentication preferences specify the authentication sequence i e one to three methods fill in the parameters for RADIUS or TACACS authen...

Page 49: ...S you must indicate this in the URL For example https device port_number Console config authentication login radius 3 51 Console config radius server host 192 168 1 25 3 52 Console config radius serve...

Page 50: ...to enable disable the HTTPS server feature on the switch Default Enabled HTTPS Port Specifies the UDP port number used for HTTPS SSL connection to the switch s Web interface The default is port 443 We...

Page 51: ...the switch Default enabled SSH authentication timeout Specifies the time interval in seconds that the SSH server waits for a response from a client during an authentication attempt Range 1 to 120 sec...

Page 52: ...riting the previous version Command Attributes TFTP Server IP Address The IP address of a TFTP server Console config ip ssh server 3 35 Console config ip ssh timeout 100 3 34 Console config ip ssh aut...

Page 53: ...ntime code you can specify the Destination File Name to replace the current image or first download the file using a different name from the current runtime code file and then set the new file as the...

Page 54: ...guration file can be later downloaded to restore the switch s settings Command Attributes TFTP Server IP Address The IP address of a TFTP server Destination File Name File names are case sensitive The...

Page 55: ...ce it Note that the file Factory_Default_Config cfg can be copied to the TFTP server but cannot be used as a destination file name on the switch Web Click System Configuration Enter the IP address of...

Page 56: ...ing Configuration to a File You can save the current running configuration to a new file name and then set it as the startup file Enter a name for the new configuration file and then click Copy to Fil...

Page 57: ...the key variables or to configure the global setting for GARP VLAN Registration Protocol GVRP Command Attributes Extended Multicast Filtering Services This switch does not support the filtering of in...

Page 58: ...port Refer to VLAN Configuration on page 2 61 Local VLAN Capable This switch does not support multiple local bridges i e multiple Spanning Trees GMRP GARP Multicast Registration Protocol GMRP allows n...

Page 59: ...mmand Console show bridge ext 3 137 Max support vlan numbers 255 Max support vlan ID 4094 Extended multicast filtering services No Static entry individual port Yes VLAN learning IVL Configurable PVID...

Page 60: ...version of the main board Internal Power Status Displays the status of the internal power supply Redundant Power Status Displays the status of the redundant power supply CLI only Management Software...

Page 61: ...d to display version information Console show version 3 49 Unit1 Serial number A217056372 Service tag NONE Hardware version R0C Number of ports 24 Main power status up Redundant power status not prese...

Page 62: ...f port type 1000Base TX or 1000Base SFP Admin Status Shows if the interface is enabled or disabled Oper Status Indicates if the link is Up or Down Speed Duplex Status Shows the current speed and duple...

Page 63: ...5 Information of Eth 1 13 Basic information Port type 1000T Mac address 00 00 11 11 22 2F Configuration Name Port admin Up Speed duplex Auto Capabilities 10half 10full 100half 100full 1000full Broadca...

Page 64: ...ontrol Allows automatic or manual selection of flow control Autonegotiation Port Capabilities Allows auto negotiation to be enabled disabled Specifies the capabilities to be advertised for a port duri...

Page 65: ...abled Advertised capabilities for 100BASE TX 10half 10full 100half 100full 1000BASE T 10half 10full 100half 100full 1000full 1000BASE SX LX LH 1000full Trunk Indicates if a port is a member of a trunk...

Page 66: ...ed threshold will then be dropped Command Usage Broadcast Storm Control is enabled by default The default threshold is 500 packets per second Broadcast control does not effect IP multicast traffic The...

Page 67: ...d Default Enabled Web Click Port Port Broadcast Control Set the threshold for all ports and then click Apply CLI Specify the required interface and then enter the threshold The following sets broadcas...

Page 68: ...st match otherwise traffic may be dropped from the monitor port The switch supports only one port mirror session The source and target port have to be either both in the port group of 1 to 12 or both...

Page 69: ...port and sending a trap message To use port security first allow the switch to dynamically learn the source MAC address VLAN pair for frames received on a port for an initial period and then enable po...

Page 70: ...eb Click Port Port Security Action Specify the security action for a port intrusion then click Apply Port Security Configuration On the Port Port Security Status page you can enable disable security f...

Page 71: ...orts All the addresses learned by monitoring traffic are stored in the dynamic address table You can also manually configure static addresses that are bound to a specific port Setting Static Addresses...

Page 72: ...tatic address table but sets it to be deleted when the switch is reset Displaying the Address Table The Dynamic Address Table contains the MAC addresses learned by monitoring the source address for tr...

Page 73: ...or VLAN Web Click Address Table Dynamic Addresses Specify the search type i e Interface MAC Address or VLAN the method of sorting the displayed addresses then click Query For example the following sc...

Page 74: ...onds Spanning Tree Protocol Configuration The Spanning Tree Protocol STP can be used to detect and disable network loops and to provide backup links between switches bridges or routers This allows the...

Page 75: ...all root ports and designated ports and disables all other ports Network packets are therefore only forwarded between root ports and designated ports eliminating any possible network loops Once a sta...

Page 76: ...for designated ports should receive configuration messages at regular intervals If the root port ages out STP information provided in the last configuration message a new root port is selected from am...

Page 77: ...vice ports except for designated ports should receive configuration messages at regular intervals If the root port ages out STA information provided in the last configuration message a new root port i...

Page 78: ...CONFIGURING THE SWITCH 2 48 CLI only Web Click Spanning Tree STP Information to display current Spanning Tree information...

Page 79: ...112222 Current root port 0 Current root cost 0 Number of topology changes 1 Last topology changes time sec 10811 Transmission limit 3 Path Cost Method long Eth 1 1 information Admin status enable Role...

Page 80: ...ives an RSTP BPDU after the migration delay expires RSTP restarts the migration delay timer and begins using RSTP BPDUs on that port Command Attributes Spanning Tree State Enables or disables the Span...

Page 81: ...tervals Any port that ages out STP information provided in the last configuration message becomes the designated port for the attached LAN If it is a root port a new root port is selected from among t...

Page 82: ...sed to determine the range of values that can be assigned to each interface Long Specifies 32 bit based values that range from 1 200 000 000 Short Specifies 16 bit based values that range from 1 65535...

Page 83: ...tributes Console config spanning tree mode rstp 3 107 Console config spanning tree 3 106 Console config spanning tree forward time 15 3 108 Console config spanning tree hello time 2 3 109 Console conf...

Page 84: ...addresses Forwarding Port forwards packets and continues learning addresses The rules defining port status are A port on a network segment with no other STA compliant bridging device is always forward...

Page 85: ...ting for Admin Edge Port in the STP Port Trunk Configuration page i e true or false but will be set to false if a BPDU is received indicating that another bridge is attached to this port Port Role Rol...

Page 86: ...he priority and MAC address of the device in the Spanning Tree that this switch has accepted as the root device Fast forwarding This field provides the same information as Admin Edge port and is only...

Page 87: ...nning tree to reconfigure when the interface changes state and also overcomes other STA related timeout problems However remember that Edge Port should only be enabled for ports connected to an end no...

Page 88: ...and trunks Command Attributes STP State Displays current state of this port within the Spanning Tree Discarding Port receives STP configuration messages but does not forward packets Learning Port has...

Page 89: ...Range 0 240 in steps of 16 Path Cost This parameter is used by the STP to determine the best path between devices Therefore lower values should be assigned to ports attached to faster media and highe...

Page 90: ...red to rebuild address tables during reconfiguration events does not cause the Spanning Tree to initiate reconfiguration when the interface changes state and also overcomes other STP related timeout p...

Page 91: ...networks that handle traffic such as IPX or NetBEUI By using IEEE 802 1Q compliant VLANs you can organize any group of network nodes into separate broadcast domains thus confining broadcast traffic to...

Page 92: ...high level of network security since traffic must pass through a configured Layer 3 link to reach a different VLAN Up to 255 VLANs based on the IEEE 802 1Q standard Distributed VLAN learning across mu...

Page 93: ...omain of the frame Port Overlapping Port overlapping can be used to allow access to commonly shared network resources among different VLAN groups such as file servers or printers Note that if you impl...

Page 94: ...nd core switches in the network enable GVRP on the links between these devices You should also determine security boundaries in the network and disable GVRP on ports to prevent advertisements being pr...

Page 95: ...ives an untagged frame from a VLAN unaware device it first decides where to forward the frame and then inserts a VLAN tag reflecting the ingress port s default VID Displaying Basic VLAN Information Co...

Page 96: ...d VLAN 1 4094 no leading zeroes Up Time at Creation Time this VLAN was created i e System Up Time Status Shows how this VLAN was added to the switch Dynamic GVRP Automatically learned via GVRP Permane...

Page 97: ...AN ID of configured VLAN 1 4094 no leading zeroes Type Shows how this VLAN was added to the switch Dynamic Automatically learned via GVRP Static Added as a static entry Name Name of the VLAN 1 to 32 c...

Page 98: ...efault untagged VLAN New Allows you to specify the name and numeric identifier for a new VLAN group The VLAN name is only used for management on this system it is not added to the VLAN tag VLAN ID ID...

Page 99: ...AN group from the current list If any port is assigned to this group as untagged it will be reassigned to VLAN group 1 as untagged Web Click VLAN VLAN Static List Enter the VLAN ID and VLAN name mark...

Page 100: ...nnected to VLAN unaware devices frames will be passed to the untagged VLAN group this port has been assigned to under the VLAN Port Configuration page Command Attributes Port Port identifier Trunk Tru...

Page 101: ...face is not a member of the VLAN Packets associated with this VLAN will not be transmitted by the interface Trunk Member Indicates if a port is a member of a trunk To add a trunk to the selected VLAN...

Page 102: ...tes Interface Port or trunk identifier Member VLANs for which the selected interface is a tagged member Non Member VLANs for which the selected interface is not a tagged member Console config interfac...

Page 103: ...r configuring VLAN membership for each interface click Apply CLI This example adds Port 3 to VLAN 1 as a tagged port and removes Port 3 from VLAN 2 Configuring VLAN Behavior for Interfaces You can con...

Page 104: ...you assign its PVID to this VLAN the interface will automatically be added to VLAN 1 as an untagged member For all other VLANs an interface must first be configured as an untagged member before you c...

Page 105: ...al between transmitting requests queries to participate in a VLAN group Range 20 1000 centiseconds Default 20 GARP Leave Timer The interval a port waits before leaving a VLAN group This time should be...

Page 106: ...a hybrid VLAN interface The port may receive or transmit tagged or untagged frames Trunk Member Indicates if a port is a member of a trunk To add a trunk to the selected VLAN use the last table on the...

Page 107: ...orted into the appropriate priority queue at the output port Command Usage This switch provides four priority queues for each port It uses Weighted Round Robin to prevent head of queue blockage The de...

Page 108: ...sses The number of queue buffers provided for each port Web Click Priority Default Port Priority or Default Trunk Priority Modify the default priority for any interface then click Apply CLI This examp...

Page 109: ...s network applications are shown in the following table However you can map the priority levels to the switch s output queues in any way that benefits application traffic for your own network Priority...

Page 110: ...o CoS priority queue 0 value 3 to CoS priority queue 1 values 4 and 5 to CoS priority queue 2 and values 6 and 7 to CoS priority queue 3 Console config interface ethernet 1 1 3 85 Console config queue...

Page 111: ...assign a weight to each of these queues and thereby to the corresponding traffic priorities This weight sets the frequency at which each queue will be polled for service and subsequently affects the r...

Page 112: ...the traffic then sent to the corresponding output queue Because different priority information may be contained in the traffic this switch maps priority values to the output queues in the following ma...

Page 113: ...oS octet in the IPv4 header includes three precedence bits defining eight different priority levels ranging from highest priority for network control packets to lowest priority for routine traffic The...

Page 114: ...Table Shows the IP Precedence to CoS map Class of Service Value Maps a CoS value to the selected IP Precendence value Note that 0 represents low priority and 7 represent high priority 4 Flash Override...

Page 115: ...Priority Select an IP Precedence value from the IP Precedence Priority Table by clicking on it with your cursor enter a value in the Class of Service Value field and then click Apply Be sure to also s...

Page 116: ...bled devices will not conflict with the DSCP mapping Based on network policies different kinds of traffic can be marked for different kinds of forwarding The DSCP default values are defined in the fol...

Page 117: ...that 0 represents low priority and 7 represent high priority Web Click Priority IP DSCP Priority Select a DSCP priority value from the DSCP Priority Table by clicking on it with your cursor enter a v...

Page 118: ...ks have to be manually configured at both ends of the link and the switches must comply with the Cisco EtherChannel standard On the other hand LACP configured ports can automatically negotiate a trunk...

Page 119: ...onnect the corresponding network cables between switches to avoid creating a loop You can create up to six trunks on the switch with up to four ports per trunk The ports at both ends of a connection m...

Page 120: ...n the connected ports the trunk will be activated automatically A trunk formed with another switch using LACP will automatically be assigned the next available trunk ID If more than four ports attache...

Page 121: ...TRUNK CONFIGURATION 2 91 Web Click Trunk LACP Configuration Select any of the switch ports from the scroll down port list and click Add After you have completed adding ports to the member list click A...

Page 122: ...also disconnect the ports before removing a static trunk via the configuration interface Console config interface ethernet 1 17 3 85 Console config if lacp 3 168 Console config if exit Console config...

Page 123: ...93 Web Click Trunk Trunk Configuration Enter a trunk ID of 1 6 in the Trunk field select any of the switch ports from the scroll down port list and click Add After you have completed adding ports to t...

Page 124: ...for configuring community strings and related trap functions are described in the following sections Console config interface port channel 1 3 85 Console config if exit Console config interface ethern...

Page 125: ...at acts like a password and permits access to the SNMP protocol Access Mode Read Only Specifies read only access Authorized management stations are only able to retrieve MIB objects Read Write Specifi...

Page 126: ...er to configure the switch to send SNMP notifications you must enter at least one host IP address The switch can send SNMP version 1 or version 2c traps to a host IP address depending on the SNMP vers...

Page 127: ...reate a list of up to 16 IP addresses or IP address groups that are allowed access to the switch via SNMP management software IP addresses that are permitted SNMP access are specified by an IP address...

Page 128: ...tly configured for SNMP access IP address Specifies a new IP address to add to the IP Filter List Subnet Mask Specifies a single IP address or group of addresses If the IP is the address of a single m...

Page 129: ...ry CLI The following is an example of configuring an SNMP IP filter Multicast Configuration Multicasting is used to support real time applications such as video conferencing or streaming audio A multi...

Page 130: ...icast filtering is to optimize a switched network s performance so multicast packets will only be forwarded to those ports containing multicast group hosts or multicast routers switches instead of flo...

Page 131: ...osts want to receive multicast traffic This is also referred to as IGMP Snooping Default Disabled Act as IGMP Querier When enabled the switch can serve as the Querier which is responsible for asking h...

Page 132: ...r compatibility with other devices on the network Default 2 Range 1 2 Notes 1 All systems on the subnet must support the same version 2 Some attributes are only enabled for IGMPv2 including IGMP Repor...

Page 133: ...st Router Command Attributes VLAN ID ID of configured VLAN 1 4094 Multicast Router List Multicast routers dynamically discovered by this switch or those that are statically assigned to an interface on...

Page 134: ...nections IGMP snooping may not always be able to locate the IGMP querier Therefore if the IGMP querier is a known multicast router switch connected over the network to an interface port or trunk on yo...

Page 135: ...multicast traffic and then click Add After you have completed adding interfaces to the list click Apply CLI This example configures port 11 as a multicast router port within VLAN 1 Displaying Port Mem...

Page 136: ...multicast IP address The switch will display all the ports that are propagating this multicast service CLI This example displays all the known multicast services supported on VLAN 1 along with the po...

Page 137: ...ating hosts to a common VLAN and then assign the multicast service to that VLAN group Command Usage Static multicast addresses are never aged out When a multicast address is assigned to specific VLAN...

Page 138: ...pported on VLAN 1 Showing Device Statistics You can display standard statistics on network traffic from the Interfaces Group and Ethernet like MIBs as well as a detailed breakdown of traffic based on...

Page 139: ...r layer protocol Received Multicast Packets The number of packets delivered by this sub layer to a higher sub layer which were addressed to a multicast address at this sub layer Received Broadcast Pac...

Page 140: ...number of outbound packets which were chosen to be discarded even though no errors had been detected to prevent their being transmitted One possible reason for discarding such a packet could be to fr...

Page 141: ...A count of frames received on a particular interface that exceed the maximum permitted frame size Deferred Transmissions A count of frames for which the first transmission attempt on a particular inte...

Page 142: ...mes The total number of frames received that were longer than 1518 octets excluding framing bits but including FCS octets and were otherwise well formed Fragments The total number of frames received t...

Page 143: ...HOWING DEVICE STATISTICS 2 113 Web Click Statistics Port Statistics Select the required interface and then click Query You can also use the Refresh button at the bottom of the page to update the scree...

Page 144: ...rrors 0 FCS errors 0 Single Collision frames 0 Multiple collision frames 0 SQE Test errors 0 Deferred transmissions 0 Late collisions 0 Excessive collisions 0 Internal mac transmit errors 0 Internal m...

Page 145: ...tering commands on a UNIX system Console Connection To access the switch through the console port perform these steps 1 At the console prompt enter the user name and password The default user names ar...

Page 146: ...access the switch through a Telnet session you must first set the IP address for the switch and set the default gateway if you are managing the switch from a different IP subnet For example If your c...

Page 147: ...al access mode i e Normal Exec 3 Enter the necessary commands to complete your desired tasks 4 When finished exit the session with the quit or exit command After entering the Telnet command the login...

Page 148: ...ssword for the administrator enter Console config username admin password 0 smith Minimum Abbreviation The CLI will accept a minimum number of characters that uniquely identify a command For example t...

Page 149: ...interfaces ip IP information line TTY line information logging Show the contents of logging buffers mac address table Set configuration of the address table map Map priority port Characteristics of th...

Page 150: ...s a history of commands that have been entered You can scroll back through the history of commands by pressing the up arrow key Any command displayed in the history list can be executed again or first...

Page 151: ...ivilege Exec mode open a new console session with the user name admin or enter the enable command followed by the privileged level password if so configured The command prompt displays as Console for...

Page 152: ...r community Interface Configuration These commands modify the port configuration such as speed duplex and negotiation Line Configuration These commands modify the console port configuration and includ...

Page 153: ...from any other currently available commands or parameters You can use the Tab key to complete partial commands or enter a partial command followed by the character to display a list of possible matche...

Page 154: ...configures community access strings and trap managers 3 58 IP Configures the IP address and gateway for management access displays the default gateway or pings a specified device 3 67 Line Sets commun...

Page 155: ...meters and specifies ports attached to a multicast router 3 138 Priority Sets port priority for untagged frames relative weight for each priority queue also sets priority for IP precedence and DSCP 3...

Page 156: ...ileged Exec Enter level 15 to access Privileged Exec mode Default Setting Level 15 Command Mode Normal Exec Command Function Mode Page enable Activates privileged mode NE 3 12 disable Returns to norma...

Page 157: ...as no effect You cannot set a null password with the enable password command You will have to enter a password to access the Privileged Exec mode Example Related Commands disable 3 13 enable password...

Page 158: ...n mode You must enter this mode to modify any settings on the switch You must also enter Global Configuration mode prior to enabling some of the other configuration modes including Interface Configura...

Page 159: ...The command repeats commands from the Execution command history buffer when you are in Normal Exec or Privileged Exec Mode and commands from the Configuration command history buffer when you are in an...

Page 160: ...e copy running config startup config command Default Setting None Command Mode Privileged Exec Command Usage This command resets the entire system Example This example shows how to reset the switch en...

Page 161: ...t the configuration program Default Setting None Command Mode Any Example This example shows how to return to the Privileged Exec mode from the Global Configuration mode and then quit the CLI session...

Page 162: ...Flash memory and a TFTP server When you save the system code or configuration settings to a file on a TFTP server that file can later be downloaded to the switch to restore Console quit Press ENTER t...

Page 163: ...you to copy to from a TFTP server https certificate Copies an HTTPS certificate from an TFTP server to the switch Default Setting None Command Mode Privileged Exec Command Usage The system prompts for...

Page 164: ...e shows how to upload the configuration settings to a file on the TFTP server The following example shows how to copy the running configuration to a startup file The following example shows how to dow...

Page 165: ...ge name Default Setting None Command Mode Privileged Exec Command Usage If the file type is used for system startup then this file cannot be deleted Factory_Default_Config cfg cannot be deleted Exampl...

Page 166: ...me Name of the file or image If this file exists but contains errors information on this file cannot be shown Default Setting None Command Mode Privileged Exec Command Usage If you enter the command d...

Page 167: ...the previous page for a description of the file information displayed by this command Console dir file name file type startup size byte diag_0060 Boot Rom image Y 111360 run_01642 Operation Code N 10...

Page 168: ...ot ROM config Configuration file opcode Run time operation code The colon is required filename Name of the configuration file or image name Default Setting None Command Mode Global Configuration Comma...

Page 169: ...umbo Frame Command jumbo frame Allows jumbo frames to pass through the switch GC 3 30 Web Server Commands ip http port Specifies the port to be used by the Web browser interface GC 3 31 ip http server...

Page 170: ...ogging of syslog messages GC 3 41 logging trap Limits syslog messages saved to a remote server based on severity GC 3 42 clear logging Clears messages from the logging buffer PE 3 43 show logging Disp...

Page 171: ...rname Use this command to require user name authentication at login Use the no form to remove a user name Syntax username name access level level nopassword password 0 7 password no username name name...

Page 172: ...Command Usage The encrypted password is required for compatiblity with legacy password settings i e plain text or encrypted when reading the configuration file during system bootup or when downloadin...

Page 173: ...ord applies The device has two predefined privilege levels 0 Normal Exec 15 Privileged Exec Only level 15 is valid for this command 0 7 0 means plain password 7 means encrypted password password passw...

Page 174: ...o frames significantly reduces the per packet overhead required to process protocol encapsulation fields To use jumbo frames both the source and destination end nodes such as a computer or server must...

Page 175: ...number The TCP port to be used by the browser interface Range 1 65535 Default Setting 80 Command Mode Global Configuration Example Related Commands ip http server 3 31 ip http server Use this command...

Page 176: ...disable this function Syntax ip http secure server no ip http secure server Default Setting Enabled Command Mode Global Configuration Command Usage Both HTTP and HTTPS service can be enabled independe...

Page 177: ...s ip http secure port 3 33 ip http secure port Use this command to specify the UDP port number used for HTTPS SSL connection to the switch s Web interface Use the no form to restore the default port S...

Page 178: ...Related Commands ip http secure server 3 32 ip ssh Use this command to configure authentication control parameters for the Secure Shell SSH server on this switch Use the no form to restore the default...

Page 179: ...has been established the timeout for user input is controlled by the exec timeout command for vty sessions Example Related Commands show ip ssh 3 37 ip ssh server Use this command to enable the Secure...

Page 180: ...tch and then negotiates with the client to select either DES 56 bit or 3DES 168 bit for data encryption Example Related Commands show ssh 3 37 disconnect ssh Use this command to terminate a Secure She...

Page 181: ...sion The Secure Shell version number Encrypt method The encryption method Options cipher des cipher 3des Negotiation state The authentication negotiation state Example show ip ssh Use this command to...

Page 182: ...guration Command Usage The logging process controls error messages saved to switch memory or sent to remote syslog servers You can use the logging history command to control the type of error messages...

Page 183: ...ory i e permanent memory ram Event history stored in temporary RAM i e memory flushed on power reset level One of the level arguments listed below Messages sent include the selected level up through l...

Page 184: ...logging host Use this command to add a syslog server host IP address that will receive logging messages Use the no form to remove a syslog server host Syntax logging host host_ip_address no logging h...

Page 185: ...s command to set the facility type for remote logging of syslog messages Use the no form to return the type to the default Syntax logging facility type no logging facility type type A number that indi...

Page 186: ...evel up through level 0 Default Setting Level 3 0 Command Mode Global Configuration Example Level Argument Level Description Syslog Definition emergencies 0 System unusable LOG_EMERG alerts 1 Immediat...

Page 187: ...d on power reset Default Setting None Command Mode Privileged Exec Example Related Commands show logging 3 43 show logging Use this command to display the logging configuration for system and event me...

Page 188: ...ype Warning conditions REMOTELOG server ip address 10 1 0 3 REMOTELOG server ip address 10 1 0 4 REMOTELOG server ip address 0 0 0 0 REMOTELOG server ip address 0 0 0 0 REMOTELOG server ip address 0 0...

Page 189: ...801fc3 username guest access level 0 username guest password 7 084e0343a0486ff05530df6c705c8bb4 enable password level 15 7 1b3231655cebb7a1f783eddf27d254ca vlan database vlan 1 name DefaultVlan media...

Page 190: ...ation stored in non volatile memory This command displays settings for key command modes Each mode group is separated by symbols and includes the configuration mode command and corresponding commands...

Page 191: ...own by this command refer to Displaying System Information on page 2 8 The POST results should all display PASS If any POST test indicates FAIL contact your distributor for assistance Console show run...

Page 192: ...System description SMC8624T System OID string 1 3 6 1 4 1 202 20 25 System information System Up time 0 days 1 hours 23 minutes and 44 61 seconds System Name SMC8624T switch System Location Boston Sys...

Page 193: ...Command Mode Normal Exec Privileged Exec Command Usage See Displaying System Information on page 2 8 for detailed information on the items displayed by this command Console show users Username account...

Page 194: ...with associated privilege levels for each user or group that require management access to a switch Console show version Unit1 Serial number A217056372 Service tag NONE Hardware version R0C Number of...

Page 195: ...offers best effort delivery while TCP offers a connection oriented transport Also note that RADIUS encrypts only the password in the access request packet from the client to the server RADIUS and TAC...

Page 196: ...entication login radius tacacs local the user name and password on the RADIUS server is verified first If the RADIUS server is not available then authentication is attempted on the TACACS server If th...

Page 197: ...65535 Default Setting 1812 Command Mode Global Configuration Example radius server key Use this command to set the RADIUS encryption key Use the no form to restore the default Syntax radius server key...

Page 198: ...store the default Syntax radius server retransmit number_of_retries no radius server retransmit number_of_retries Number of times the switch will try to authenticate logon access via the RADIUS server...

Page 199: ...nds the switch waits for a reply before resending a request Range 1 65535 Default Setting 5 Command Mode Global Configuration Example show radius server Use this command to display the current setting...

Page 200: ...efault Setting 10 11 12 13 Command Mode Global Configuration Example tacacs server port Use this command to specify the TACACS server network port Use the no form to restore the default Syntax tacacs...

Page 201: ...used to authenticate logon access for the client Do not use blank spaces in the string Maximum length 20 characters Default Setting None Command Mode Global Configuration Example show tacacs server U...

Page 202: ...ey with radius server Server port number 49 Console Command Function Mode Page snmp server community Sets up the community access string to permit access to SNMP commands GC 3 58 snmp server contact S...

Page 203: ...write access Authorized management stations are able to both retrieve and modify MIB objects Default Setting public Read only access Authorized management stations are only able to retrieve MIB objec...

Page 204: ...ct information Maximum length 255 characters Default Setting None Command Mode Global Configuration Example Related Commands snmp server location 3 60 snmp server location Use this command to set the...

Page 205: ...addr host addr Name or Internet address of the host the targeted recipient Maximum host addresses 5 trap destination IP address entries community string Password like community string sent with the no...

Page 206: ...e traps command to specify which SNMP notifications are sent globally For a host to receive notifications at least one snmp server enable traps command and the snmp server host command for that host m...

Page 207: ...order to configure this device to send SNMP notifications you must enter at least one snmp server enable traps command If you enter the command with no keywords all notification types are enabled If y...

Page 208: ...of decimal numbers that represent the address bits to match Default Setting None Command Mode Global Configuration Command Usage You can create a list of up to 16 IP addresses or IP address groups tha...

Page 209: ...ws SNMP management access to client IP 10 1 2 3 and client IP group 10 1 3 0 to 10 1 3 255 Related Commands show snmp 3 65 show snmp Use this command to check the status of SNMP communications Default...

Page 210: ...or community name supplied 0 Encoding errors 0 Number of requested variables 0 Number of altered variables 0 Get request PDUs 0 Get next PDUs 0 Set request PDUs 0 SNMP packets output 0 Too big errors...

Page 211: ...o form to restore the default IP address Syntax ip address ip address netmask bootp dhcp no ip address ip address IP address netmask Network mask for the associated IP subnet This mask identifies the...

Page 212: ...r DHCP reply has been received Requests will be broadcast periodically by this device in an effort to learn its IP address BOOTP and DHCP values can include the IP address default gateway and subnet m...

Page 213: ...P server has been moved to a different domain the network portion of the address provided to the client will be based on this new domain Example In the following example the device is reassigned the s...

Page 214: ...ss of the default gateway Default Setting No static route is established Command Mode Global Configuration Command Usage A gateway must be defined if the management station is located in a different I...

Page 215: ...directs 3 71 show ip redirects Use this command to show the default gateway configured for this device Default Setting None Command Mode Privileged Exec Example Related Commands ip default gateway 3 7...

Page 216: ...Setting This command has no default for the host Command Mode Normal Exec Privileged Exec Command Usage Use the ping command to see if another site on the network can be reached Following are some re...

Page 217: ...timeout is 5 seconds response time 10 ms response time 10 ms response time 10 ms response time 10 ms response time 0 ms Ping statistics for 10 1 0 9 5 packets transmitted 5 packets received 100 0 pack...

Page 218: ...w users However the serial communication parameters e g databits do not affect Telnet connections silent time Sets the amount of time the management console is inaccessible after the number of unsucce...

Page 219: ...d with the username command Default Setting By default virtual terminals require a password If you do not set a password for a virtual terminal it will respond to attempted connections by displaying a...

Page 220: ...ontrols login authentication via the switch itself To configure user names and passwords for remote authentication servers you must use the RADIUS software installed on those servers Example Related C...

Page 221: ...for compatiblity with legacy password settings i e plain text or encrypted when reading the configuration file during system bootup or when downloading the configuration file from a TFTP server There...

Page 222: ...ole and Telnet connections The timeout for Telnet cannot be disabled Example To set the timeout to two minutes enter this command password thresh Use this command to set the password intrusion thresho...

Page 223: ...cal console and Telnet connections Example To set the password threshold to five attempts enter this command Related Commands silent time 3 79 silent time Use this command to set the amount of time th...

Page 224: ...ts Example To set the silent time to 60 seconds enter this command Related Commands password thresh 3 78 databits Use this command to set the number of data bits per character that are interpreted and...

Page 225: ...If no parity is required specify 8 data bits per character Example To specify 7 data bits enter this command Related Commands parity 3 81 parity Use this command to define generation of a parity bit...

Page 226: ...s Use the no form to restore the default setting Syntax speed bps no speed bps Baud rate in bits per second Options 9600 57600 38400 19200 115200 bps Default Setting 9600 bps Command Mode Line Configu...

Page 227: ...tting 1 stop bit Command Mode Line Configuration Example To specify 2 stop bits enter this command show line Use this command to display the terminal line s parameters Syntax show line console vty con...

Page 228: ...eractive timeout 65535 Console Command Function Mode Page interface Configures an interface type and enters interface configuration mode GC 3 85 description Adds a description to an interface configur...

Page 229: ...1 4094 Default Setting None Command Mode Global Configuration Example To specify the Ethernet port enter the following command port security Enables port security on an interface IC 3 93 clear counte...

Page 230: ...and Mode Interface Configuration Ethernet Port Channel Example The following example adds a description to Ethernet port 15 speed duplex Use this command to configure the speed and duplex mode of a gi...

Page 231: ...force operation to the speed and duplex mode specified in a speed duplex command use the no negotiation command to disable auto negotiation on the selected interface When using the negotiation comman...

Page 232: ...te the best settingsn for a link based on the capabilities command When auto negotiation is disabled you must manually specify the link attributes with the speed duplex and flowcontrol commands If aut...

Page 233: ...f Supports 100 Mbps half duplex operation 10full Supports 10 Mbps full duplex operation 10half Supports 10 Mbps half duplex operation flowcontrol Supports flow control symmetric Gigabit only When spec...

Page 234: ...l Use the no form to disable flow control Syntax flowcontrol no flowcontrol Default Setting Flow control enabled Command Mode Interface Configuration Ethernet Port Channel Command Usage Flow control c...

Page 235: ...flow control on a port connected to a hub unless it is actually required to solve a problem Otherwise back pressure jamming signals may degrade overall performance for the segment attached to the hub...

Page 236: ...urity reasons Example The following example disables port 5 switchport broadcast Use this command to configure broadcast storm control Use the no form to disable broadcast storm control Syntax switchp...

Page 237: ...storm control at 64 packets per second on port 5 port security Use this command to enable and configure port security on a port Use the no form to disable port security or reset the intrusion action t...

Page 238: ...he mac address table static command or turn off port security to reenable the learning function long enough for new VLAN members to be registered Learning may then be disabled again if desired for sec...

Page 239: ...mmand sets the base value for displayed statistics to zero for the current management session However if you log out and back into the management interface the statistics displayed will show the absol...

Page 240: ...escription of the items displayed by this command see Displaying Connection Status on page 2 32 Example Console show interface status ethernet 1 5 Information of Eth 1 5 Basic information Port type 10...

Page 241: ...w interfaces counters interface interface ethernet unit port unit This is device 1 port Port number port channel channel id Range 1 6 Default Setting Shows the counters for all interfaces Command Mode...

Page 242: ...tats Multi cast input 0 Multi cast output 3064 Broadcast input 262 Broadcast output 1 Ether like stats Alignment errors 0 FCS errors 0 Single Collision frames 0 Multiple collision frames 0 SQE Test er...

Page 243: ...or Hybrid page 3 125 Ingress rule Shows if ingress filtering is enabled or disabled page 3 127 Acceptable frame type Shows if acceptable VLAN frames include all types or tagged frames only page 3 126...

Page 244: ...nd Lacp status Disabled VLAN membership mode Hybrid Ingress rule Disabled Acceptable frame type All frames Native VLAN 1 Priority for untagged traffic 0 Gvrp status Enabled Allowed Vlan 1 u Forbidden...

Page 245: ...rmanent Command Mode Global Configuration Command Usage The static address for a host device can be assigned to a specific port within a specific VLAN Use this command to add static addresses to the M...

Page 246: ...thernet unit port unit This is device 1 port Port number port channel channel id Range 1 4 vlan id VLAN ID Range 1 4094 sort Sort by address vlan or interface Default Setting None Command Mode Privile...

Page 247: ...FF FF means any The maximum number of address entries is 8191 Example clear mac address table dynamic Use this command to remove any learned entries from the forwarding database and to clear the trans...

Page 248: ...ration Command Usage The aging time is used to age out dynamically learned forwarding information Example show mac address table aging time Use this command to show the aging time for entries in the a...

Page 249: ...age GC 3 109 spanning tree priority Configures the spanning tree bridge priority GC 3 110 spanning tree path cost method Configures the path cost method for RSTP GC 3 111 spanning tree transmission l...

Page 250: ...d to detect and disable network loops and to provide backup links between switches bridges or routers This allows the switch to interact with other bridging devices that is an STP compliant switch bri...

Page 251: ...ently disabled to prevent network loops thus isolating group members STP uses RSTP for the internal state machine but sends only 802 1D BPDUs Rapid Spanning Tree Protocol RSTP supports connections to...

Page 252: ...2 1 Default Setting 15 seconds Command Mode Global Configuration Command Usage This command sets the maximum time in seconds the root device will wait before changing states i e discarding to learnin...

Page 253: ...Global Configuration Command Usage This command sets the time interval in seconds at which the root device transmits a configuration message Example spanning tree max age Use this command to configure...

Page 254: ...ion message becomes the designated port for the attached LAN If it is a root port a new root port is selected from among the device ports attached to the network Example spanning tree priority Use thi...

Page 255: ...e Use the no form to restore the default Syntax spanning tree pathcost method long short no spanning tree pathcost method long Specifies 32 bit based values that range from 1 200 000 000 short Specifi...

Page 256: ...default Syntax spanning tree transmission limit count no spanning tree transmission limit count The transmission limit in seconds Range 1 10 Default Setting 3 Command Mode Global Configuration Command...

Page 257: ...lf duplex 2 000 000 full duplex 1 000 000 trunk 500 000 Fast Ethernet half duplex 200 000 full duplex 100 000 trunk 50 000 Gigabit Ethernet full duplex 10 000 trunk 5 000 Command Mode Interface Config...

Page 258: ...Port Channel Command Usage This command defines the priority for the use of an interface in the Spanning Tree Protocol If the path cost for all interfaces on a switch are the same the interface with...

Page 259: ...nodes cannot cause forwarding loops they can be passed through the spanning tree state changes more quickly than allowed by standard convergence time Fast forwarding can achieve quicker convergence fo...

Page 260: ...can pass directly through to the Spanning Tree forwarding state Specifying Edge Ports provides quicker convergence for devices such as workstations or servers retains the current forwarding database...

Page 261: ...ange 1 6 Command Mode Privileged Exec Command Usage If at any time the switch detects STP BPDUs including Configuration or Topology Change Notification BPDUs it will automatically set the selected int...

Page 262: ...annel Command Usage Specify a point to point link if the interface can only be connected to exactly one other bridge or a shared link if it can be connected to two or more bridges When automatic detec...

Page 263: ...ice 1 port number port channel channel id Range 1 6 Default Setting None Command Mode Privileged Exec Command Usage Use the show spanning tree command with no parameters to display the Spanning Tree c...

Page 264: ...8 000011112222 Current root port 0 Current root cost 0 Number of topology changes 1 Last topology changes time sec 25067 Transmission limit 3 Path Cost Method long Eth 1 1 information Admin status ena...

Page 265: ...AN including VID name and state VC 3 123 Configure VLAN Interfaces interface vlan Enters interface configuration mode for specified VLAN IC 3 124 switchport mode Configures VLAN membership mode for an...

Page 266: ...mand mode to define the port membership mode and add or remove ports from a VLAN The results of these commands are written to the running configuration file and you can display this file by entering t...

Page 267: ...ethernet Ethernet media type state Keyword to be followed by the VLAN state active VLAN is operational suspend VLAN is suspended Suspended VLANs do not pass packets Default Setting By default only VL...

Page 268: ...ax interface vlan vlan id vlan id ID of the configured VLAN Range 1 4094 no leading zeroes Default Setting None Command Mode Global Configuration Example The following example shows how to set the int...

Page 269: ...N However note that frames belonging to the port s default VLAN i e associated with the PVID are sent untagged hybrid Specifies a hybrid VLAN interface The port may transmit tagged or untagged frames...

Page 270: ...d tagged The port only passes tagged frames Default Setting All frame types Command Mode Interface Configuration Ethernet Port Channel Command Usage When set to receive all frame types any received fr...

Page 271: ...VLANs for which it is not a member these frames will be flooded to all other ports except for those VLANs explicitly forbidden on this port If ingress filtering is enabled and a port receives frames...

Page 272: ...rface is not a member of VLAN 1 and you assign its PVID to this VLAN the interface will automatically be added to VLAN 1 as an untagged member For all other VLANs an interface must first be configured...

Page 273: ...Interface Configuration Ethernet Port Channel Command Usage If switchport mode is set to trunk then you can only assign an interface to VLAN groups as a tagged member Frames are always tagged within t...

Page 274: ...ve vlan list Separate nonconsecutive VLAN identifiers with a comma and no spaces use a hyphen to designate a range of IDs Do not enter leading zeros Range 1 4094 Default Setting No VLANs are included...

Page 275: ...tring from 1 to 32 characters Default Setting Shows all VLANs Command Mode Normal Exec Privileged Exec Example The following example shows how to display information for VLAN 1 Console config interfac...

Page 276: ...nd to enable GVRP for a port Use the no form to disable it Syntax switchport gvrp no switchport gvrp Command Function Mode Page Interface Commands switchport gvrp Enables GVRP for an interface IC 3 13...

Page 277: ...figuration interface interface ethernet unit port unit This is device 1 port Port number port channel channel id Range 1 6 Default Setting Shows both global and interface specific configuration Comman...

Page 278: ...iseconds leave 60 centiseconds leaveall 1000 centiseconds Command Mode Interface Configuration Ethernet Port Channel Command Usage Group Address Registration Protocol is used by GVRP and GMRP to regis...

Page 279: ...garp timer 3 135 show garp timer Use this command to show the GARP timers for the selected interface Syntax show garp timer interface interface ethernet unit port unit This is device 1 port Port numbe...

Page 280: ...GVRP defines a way for switches to exchange VLAN information in order to register VLAN members on ports across the network This function should be enabled to permit automatic VLAN registration and to...

Page 281: ...rmation on page 2 65 and Displaying Bridge Extension Capabilities on page 2 27 for a description of the displayed items Example Console show bridge ext Max support vlan numbers 255 Max support vlan ID...

Page 282: ...atic Adds an interface as a member of a multicast group GC 3 140 ip igmp snooping version Configures the IGMP version for snooping GC 3 141 show ip igmp snooping Shows the IGMP snooping configuration...

Page 283: ...igmp snooping Default Setting Enabled Command Mode Global Configuration Example The following example enables IGMP snooping Mulitcast Router Commands ip igmp snooping vlan mrouter Adds a multicast ro...

Page 284: ...vlan id static ip address interface vlan id VLAN ID Range 1 4094 ip address IP address for multicast group interface ethernet unit port unit This is device 1 port Port number port channel channel id...

Page 285: ...e All systems on the subnet must support the same version If there are legacy devices in your network that only support Version 1 you will also have to configure this switch to use Version 1 Some comm...

Page 286: ...lticast addresses Syntax show mac address table multicast vlan vlan id user igmp snooping vlan id VLAN ID 1 to 4094 user Display only the user configured multicast entries igmp snooping Display only e...

Page 287: ...Use the no form to disable it Syntax ip igmp snooping querier no ip igmp snooping querier Default Setting Enabled Command Mode Global Configuration Command Usage If enabled the switch will serve as qu...

Page 288: ...lobal Configuration Command Usage The query count defines how long the querier waits for a response from a multicast client before taking action If a querier has sent a number of queries defined by th...

Page 289: ...ting 125 seconds Command Mode Global Configuration Example The following shows how to configure the query interval to 100 seconds ip igmp snooping query max response time Use this command to configure...

Page 290: ...p snooping query count but a client has not responded a countdown timer is started using an initial value set by this command If the countdown finishes and the client still has not responded then that...

Page 291: ...the switch waits after the previous querier stops before it considers the router port i e the interface which had been receiving query packets to have expired Range 300 500 Default Setting 300 second...

Page 292: ...Default Setting No static multicast router ports are configured Command Mode Global Configuration Command Usage Depending on your network connections IGMP snooping may not always be able to locate th...

Page 293: ...id vlan id VLAN ID Range 1 4094 Default Setting Displays multicast router ports for all configured VLANs Command Mode Privileged Exec Command Usage Multicast router port types displayed include Static...

Page 294: ...tive weight of each queue and the mapping of frame priority tags to the switch s priority queues Command Function Mode Page Layer 2 Priority Commands switchport priority default Sets a port priority f...

Page 295: ...y is not set and the default value for untagged frames received on the interface is zero Command Mode Interface Configuration Ethernet Port Channel Command Usage The precedence for priority mapping is...

Page 296: ...priority for all ingress ports is zero Therefore any inbound frames that do not have priority tags will be placed in queue 0 of the output port Note that if the output port is an untagged member of t...

Page 297: ...mand to assign class of service CoS values to the priority queues i e hardware output queues 0 3 Use the no form set the CoS map to the default values Syntax queue cos map queue_id cos1 cosn no queue...

Page 298: ...n Ethernet Port Channel Command Usage CoS assigned at the ingress port is used to select a CoS priority at the egress port Example The following example shows how to map CoS values 0 1 and 2 to CoS pr...

Page 299: ...ass of service CoS priority queues Default Setting None Command Mode Privileged Exec Example show queue cos map Use this command to show the class of service priority map Syntax show queue cos map int...

Page 300: ...ap ip precedence no map ip precedence Default Setting Disabled Command Mode Global Configuration Command Usage The precedence for priority mapping is IP Precedence or IP DSCP and default switchport pr...

Page 301: ...rm to restore the default table Syntax map ip precedence ip precedence value cos cos value no map ip precedence precedence value 3 bit precedence value Range 0 7 cos value Class of Service value Range...

Page 302: ...l interfaces Example The following example shows how to map IP precedence value 1 to CoS value 0 map ip dscp Global Configuration Use this command to enable IP DSCP mapping i e Differentiated Services...

Page 303: ...ntiated Services Code Point priority Use the no form to restore the default table Syntax map ip dscp dscp value cos cos value no map ip dscp dscp value 8 bit DSCP value Range 0 255 cos value Class of...

Page 304: ...1p standard and then mapped to the queue defaults This command sets the DSCP Priority for all interfaces Example The following example shows how to map IP DSCP value 1 to CoS value 0 show map ip prece...

Page 305: ...ip dscp Use this command to show the IP DSCP priority map Syntax show map ip dscp interface interface ethernet unit port unit This is device 1 port Port number port channel channel id Range 1 6 Defau...

Page 306: ...ds map ip dscp Global Configuration 3 158 map ip dscp Interface Configuration 3 159 Maps CoS values to IP DSCP values Console show map ip dscp ethernet 1 1 DSCP mapping status disabled Port DSCP COS E...

Page 307: ...nit port source port unit Switch unit 1 port Port number rx Mirror received packets tx Mirror transmitted packets both Mirror both received and transmitted packets Default Setting No mirror session is...

Page 308: ...affic may be dropped from the source port You can create only one port mirror session The source and destination ports have to be either both in the port range 1 12 or both in the port range 13 24 Exa...

Page 309: ...rt and mirror mode i e RX TX RX TX Example The following shows mirroring configured from port 6 to port 11 Related Commands port monitor 3 163 Console config interface ethernet 1 11 Console config if...

Page 310: ...h of 4 Gbps when operating at full duplex Guidelines for Creating Trunks Finish configuring port trunks before you connect the corresponding network cables between switches to avoid creating a loop A...

Page 311: ...dd a port to a trunk Use the no form to remove a port from a trunk Syntax channel group channel id no channel group channel id Trunk index Range 1 6 Default Setting A new trunk contains no ports Comma...

Page 312: ...plex either by forced mode or auto negotiation A trunk formed with another switch using LACP will automatically be assigned the next available port channel ID If the target switch has also enabled LAC...

Page 313: ...sole config if exit Console config interface ethernet 1 13 Console config if lacp Console config if exit Console config exit Console show interfaces status port channel 1 Information of Trunk 1 Basic...

Page 314: ...COMMAND LINE INTERFACE 3 170...

Page 315: ...ect using Telnet you may have exceeded the maximum number of concurrent Telnet sessions permitted Try connecting again at a later time Cannot access the on board configuration program via a serial por...

Page 316: ...TROUBLESHOOTING A 2...

Page 317: ...interface to download runtime code via TFTP Downloading large runtime code files via TFTP is normally much faster than downloading via the switch s serial port You can upgrade switch firmware by conn...

Page 318: ...atch the 115200 baud rate Press Enter to reset communications with the switch 8 Check that the switch has sufficient flash memory space for the new code file before starting the download You can store...

Page 319: ...mage File to specify the type of code file Press R for runtime code D for diagnostic code or L for loader code Caution If you select L for loader code be sure the file is a valid loader code file for...

Page 320: ...al connection back to 9600 baud 14 Set your PC s terminal emulation software baud rate back to 9600 baud Press Enter to reset communications with the switch 15 Press Q to quit the firmware download mo...

Page 321: ...m can be accessed from a terminal or a PC running a terminal emulation program The pin assignments used to connect to the serial port are provided in the following tables Figure C 1 DB 9 Console Port...

Page 322: ...DTE Port on PC Switch s 9 Pin Serial Port Null Modem PC s 9 Pin DTE Port 2 RXD TXD 3 TXD 3 TXD RXD 2 RXD 5 SGND SGND 5 SGND No other pins are used Switch s 9 Pin Serial Port Null Modem PC s 25 Pin DTE...

Page 323: ...g Auto negotiation Signalling method allowing each node to select its optimum operational mode e g 10 100 or 1000 Mbps and half or full duplex based on the capabilities of the node to which it is conn...

Page 324: ...d by DEC Intel and Xerox using baseband transmission CSMA CD access logical bus topology and coaxial cable The successor IEEE 802 3 standard provides for integration into the OSI model and extends the...

Page 325: ...communication system based on Ethernet and the CSMA CD access method Group Attribute Registration Protocol See Generic Attribute Registration Protocol IEEE 802 1D Specifies a general method for the o...

Page 326: ...igabit Ethernet IGMP Snooping Listening to IGMP Query and IGMP Report packets transferred between IP Multicast Routers and IP Multicast host groups to identify IP Multicast group members Internet Cont...

Page 327: ...LACP Allows ports to automatically negotiate a trunked link with LACP configured ports on another device Media Access Control MAC A portion of the networking protocol that governs access to the trans...

Page 328: ...cluding specific error types Simple Network Management Protocol SNMP The application protocol in the Internet suite of protocols which offers network management services Spanning Tree Protocol STP A t...

Page 329: ...less of their physical location or connection point in the network A VLAN serves as a logical workgroup with no physical barriers and allows users to share information and resources as though located...

Page 330: ...GLOSSARY Glossary 8...

Page 331: ...02 E edge port STP 3 116 F firmware version displaying 2 30 firmware upgrading 2 23 H hardware version displaying 2 30 HTTP secure server 3 32 HTTPS 3 32 I IEEE 802 1D 3 107 IEEE 802 1w 3 107 IGMP con...

Page 332: ...ty string 2 95 enabling traps 2 96 trap manager 2 96 software downloads 2 23 software version displaying 2 30 Spanning Tree Protocol 2 44 SSL 3 32 startup files displaying 2 23 setting 2 23 statistics...

Page 333: ......

Page 334: ...31 33 455 72 88 Fax 31 33 455 73 30 Central Europe 49 0 89 92861 0 Fax 49 0 89 92861 230 Switzerland 41 0 1 9409971 Fax 41 0 1 9409972 Nordic 46 0 868 70700 Fax 46 0 887 62 62 Northern Europe 44 0 11...

Reviews:

No comments

Related manuals for TigerSwitch 100

Fortinet FortiAP S311C Quick Start Manual preview
FortiAP S311C
Brand: Fortinet Pages: 20
DPtech LSW3003 Series Manual preview
LSW3003 Series
Brand: DPtech Pages: 39
KPN MIK820 Quick Start Manual preview
MIK820
Brand: KPN Pages: 14
ZyXEL Communications P-336M Specifications preview
P-336M
Brand: ZyXEL Communications Pages: 2
AOpen 4-Port 10/100Mbps Ethernet Broadband Router User Manual preview
4-Port 10/100Mbps Ethernet Broadband Router
Brand: AOpen Pages: 41
Juniper NFX250 Quick Start Manual preview
NFX250
Brand: Juniper Pages: 7
Z Microsystems TranzStor 8X User Manual preview
TranzStor 8X
Brand: Z Microsystems Pages: 51
Enterasys Enterasys Matrix 2G4082-25 Hardware Installation Manual preview
Enterasys Matrix 2G4082-25
Brand: Enterasys Pages: 58
Idis DR-1204P Installation Manual preview
DR-1204P
Brand: Idis Pages: 22
ANEP P4GU VoLTE Technical Data Sheet preview
P4GU VoLTE
Brand: ANEP Pages: 48
Alcatel-Lucent Service Aggregation Router 7705 Installation Manual preview
Service Aggregation Router 7705
Brand: Alcatel-Lucent Pages: 20
LevelOne NVR-0432 User Manual preview
NVR-0432
Brand: LevelOne Pages: 142
ORiNG IES-3082GC User Manual preview
IES-3082GC
Brand: ORiNG Pages: 101
Avaya X330W-2USP Quick Start Manual preview
X330W-2USP
Brand: Avaya Pages: 16
ATEN Altusen SN0100 Series User Manual preview
Altusen SN0100 Series
Brand: ATEN Pages: 178
Ubiquiti Amplifi AFi-LR Quick Start Manual preview
Amplifi AFi-LR
Brand: Ubiquiti Pages: 32
Western Digital Passport WDXML1000UE Product Specifications preview
Passport WDXML1000UE
Brand: Western Digital Pages: 2
Geneko GWR-A362 Quick Start Manual preview
GWR-A362
Brand: Geneko Pages: 8

Brands by name

Popular brands

Load more brands