manualshive.com logo in svg

Supermicro L2, Configuration Manual

The Yamaha L2 Command Reference Manual is a comprehensive guide that provides detailed instructions and information about the product. This essential manual is available for free download on our website, manualshive.com, allowing users to access it easily and conveniently. Gain complete control and maximize the potential of your Yamaha L2 with this indispensable resource.

Share
Download
background image

 

 

 

 

 

L2/L3 Switches  

System 

Configuration Guide 

 

 

 

Revision 1.0 

 

 

Summary of Contents for L2

Page 1: ...L2 L3 Switches System Configuration Guide Revision 1 0 ...

Page 2: ...ia County of Santa Clara shall be the exclusive venue for the resolution of any such disputes Super Micro s total liability for all claims will not exceed the price paid for the hardware product FCC Statement This equipment has been tested and found to comply with the limits for a Class A digital device pursuant to Part 15 of the FCC Rules These limits are designed to provide reasonable protection...

Page 3: ...ble Password 12 1 2 4 IP Authorized Manager 12 1 3 Web Access 14 1 3 1 HTTP Enable Disable 15 1 3 2 HTTP Port 15 1 3 3 WEB Session Timeout 16 1 3 4 Statistics Refresh Timer 17 1 4 Interface Properties 17 1 4 1 Description 18 1 4 2 Negotiation 20 1 4 3 Speed 22 1 4 4 Duplex Operation 24 1 4 5 MTU 26 1 4 6 Flow Control 28 1 4 7 Storm Control 30 1 5 Time Management 32 1 5 1 NTP Server 33 1 5 2 Enable...

Page 4: ...1 7 3 Console Log 54 1 7 4 Log File 55 1 7 5 Logging Buffer 56 1 7 6 Facility 58 1 7 7 MAC Table Logging 59 1 7 8 Trap 59 1 7 9 Clear Log Buffer 62 1 7 10 Clear Log File 62 1 8 Security Features 63 1 8 1 Login Authentication Mode 64 1 8 2 RADIUS 65 1 8 3 TACACS 67 1 8 4 SSH 71 1 8 5 SSL 73 1 9 Configuration Management 77 1 9 1 Save Startup Configuration 77 1 9 2 Save Running Configuration To File ...

Page 5: ...Supermicro L2 L3 Switches Configuration Guide 5 1 9 6 Deleting Saved Configurations 81 1 9 7 Firmware Upgrades 82 1 9 8 Boot up Options 83 1 9 9 Reset to Factory Defaults 84 ...

Page 6: ...o all the above listed models Throughout this document the common term switch refers to any of the above listed Supermicro switch product models unless a particular switch product model is noted 1 1 Management IP Supermicro switches come with a default static management IP address of 192 168 100 102 In TOR switches the management IP address is assigned to a default VLAN 1 interface The management ...

Page 7: ...e terminal Enters the configuration mode Step 2 ip address ip address ip address prefix length subnet mask Configures the management interface IP address manually ip address A valid IPv4 Address ip address prefix length A valid IPv4 Address with a prefix length value of 1 32 subnet mask A valid IP subnet mask Step 3 end Exits the configuration mode Step 4 show ip interface Displays the management ...

Page 8: ...ays the management interface IP configuration The IP address dhcp configuration is saved automatically as part of the start up configuration The no ip address dhcp command disables the configuring of the management interface IP address through the DHCP server The example below shows the commands used to configure the management interface IP address through DHCP SMIS configure terminal SMIS config ...

Page 9: ... below Step Command Description Step 1 configure terminal Enters the configuration mode Step 2 ip route 0 0 0 0 0 0 0 0 ip address Configure the IP gateway address ip address IP address of a directly connected gateway Step 3 end Exits the configuration mode Step 4 show ip route Displays the IP route configuration Step 5 write startup config Optional step saves this configuration to be part of the ...

Page 10: ...evel while accessing the switch Users with a privilege level 1 or above can execute all show commands To execute configuration commands access with privilege level 15 is required Follow the steps below to configure the username Step Command Description Step 1 configure terminal Enters the configuration mode Step 2 username user name password passwd privilege 1 15 Configures the username and passwo...

Page 11: ... stackuser 1 user1 15 SMIS show users Line User Peer Address 0 con user1 Local Peer 1 2 2 Enable Supermicro switches provide support for configuring access to various CLI commands This is achieved by Enable password and privilege levels A total of 15 privilege levels can be specified Follow the steps below to enable a privilege level Step Command Description Step 1 configure terminal Enters the co...

Page 12: ...s saved automatically as part of the start up configuration Enable password configuration is not displayed with the show running config command The no enable password level 1 15 command disables the enable password parameters The example below shows the commands used to configure enable password SMIS configure terminal SMIS config enable password level 10 pwd1 1 2 4 IP Authorized Manager Supermicr...

Page 13: ... ethernet gi extreme ethernet ex qx ethernet qx vlan interface id is in slot port format for all physical interfaces It may be the VLAN identifier for VLAN interfaces vlan Specifies the vlan id through which the IP authorized manager can access the switch service Specifies the services that can be accessed by the authorized manager Step 3 end Exits the configuration mode Step 4 show authorized man...

Page 14: ...Gi0 9 Gi0 10 Gi0 11 Gi0 12 Gi0 13 Gi0 14 Gi0 15 Gi0 16 Gi0 17 Gi0 18 Gi0 19 Gi0 20 Gi0 21 Gi0 22 Gi0 23 Gi0 24 Ex0 1 Ex0 2 Ex0 3 Vlans allowed All Available Vlans IP Address 200 200 200 10 IP Mask 255 255 255 255 Services allowed TELNET Ports allowed Gi0 1 Gi0 2 Gi0 3 Gi0 4 Gi0 5 Gi0 6 Gi0 7 Gi0 8 Gi0 9 Gi0 10 Gi0 11 Gi0 12 Gi0 13 Gi0 14 Gi0 15 Gi0 16 Gi0 17 Gi0 18 Gi0 19 Gi0 20 Gi0 21 Gi0 22 Gi0 ...

Page 15: ...ration Step 5 write startup config Optional step saves this configuration to be part of the startup configuration The set ip http enable command enables HTTP The example below shows the commands used to disable HTTP SMIS configure terminal SMIS config set ip http disable SMIS config end SMIS show http server status HTTP server status Disabled HTTP port is 80 When HTTP is enabled Supermicro switche...

Page 16: ...ip http port 500 SMIS config end SMIS show http server status HTTP server status Enabled HTTP port is 500 1 3 3 WEB Session Timeout When a user session in the web interface is inactive the user is logged out In Supermicro switches the session timeout for inactive WEB access users is configurable The default web session time out value is 600 seconds Follow the steps below to configure the web sessi...

Page 17: ...ptional step saves this configuration to be part of the startup configuration The example below shows the commands used to configure the Statistics Refresh Timer SMIS configure terminal SMIS config statistics refresh timer 5000 SMIS config end 1 4 Interface Properties Supermicro switches support various types of interfaces physical interfaces port channel interfaces and VLAN interfaces Each interf...

Page 18: ...terface configuration mode interface type may be any of the following gigabitethernet gi extreme ethernet ex qx ethernet qx vlan interface id is in slot port format for all physical interfaces It may be the VLAN identifier for VLAN interfaces To configure multiple interfaces use the interface range command To provide a range use a hyphen between the start and end interface numbers E g int range gi...

Page 19: ...he interface description SMIS configure terminal SMIS config interface Gi 0 22 SMIS config if description server1 server2 SMIS config if end SMIS show interface description Interface Status Protocol Description Gi0 1 up down Gi0 2 up down Gi0 3 up down Gi0 4 up down Gi0 5 up down Gi0 6 up down Gi0 7 up down Gi0 8 up down Gi0 9 up down Gi0 10 up down Gi0 11 up down Gi0 12 up down Gi0 13 up down Gi0...

Page 20: ...tiation Step Command Description Step 1 configure terminal Enters the configuration mode Step 2 interface interface type interface id or interface range interface type interface id Enters the interface configuration mode interface type may be any of the following gigabit ethernet gi extreme ethernet ex interface id is in slot port format for all physical interfaces To configure multiple interfaces...

Page 21: ...erface Gi 0 22 SMIS config if no negotiation SMIS config if end SMIS show interface status Port Status Duplex Speed Negotiation Gi0 1 not connected Full 1 Gbps Auto Gi0 2 not connected Full 1 Gbps Auto Gi0 3 not connected Full 1 Gbps Auto Gi0 4 not connected Full 1 Gbps Auto Gi0 5 not connected Full 1 Gbps Auto Gi0 6 not connected Full 1 Gbps Auto Gi0 7 not connected Full 1 Gbps Auto Gi0 8 not con...

Page 22: ...interfaces in SSE G24 TG4 SSE G48 TG4 SBM GEM X2C SBM GEM X2C and SBM GEM X3S switches can operate only at the fixed 10Gb speed 10Gb interfaces in SSE X24S SBM XEM X10S SSE X3348S and SSE X3348T switches can be configurable to operate at 1Gb or 10Gb speed 40Gb interfaces are fixed to operate only at the 40Gb speed Follow the steps below to configure the interface speed Step Command Description Ste...

Page 23: ...ode Step 5 show interface status Displays the interface configuration Step 6 write startup config Optional step saves this configuration to be part of the startup configuration The no speed command restores the default interface speed The example below shows the commands used to configure the interface speed SMIS configure terminal SMIS config interface Gi 0 22 SMIS config if speed 10 SMIS config ...

Page 24: ...ted Half 1 Gbps Auto Gi0 22 not connected Full 10 Mbps No Negotiation Gi0 23 not connected Half 1 Gbps Auto Gi0 24 not connected Half 1 Gbps Auto Ex0 1 not connected Full 10 Gbps No Negotiation Ex0 2 not connected Full 10 Gbps No Negotiation Ex0 3 not connected Full 10 Gbps No Negotiation 1 4 4 Duplex Operation Supermicro switches support configuring physical interfaces to full duplex or half dupl...

Page 25: ...Step 3 duplex full half Configure as duplex operation Step 4 end Exits the configuration mode Step 5 show interface status Displays the interface configuration Step 6 write startup config Optional step saves this configuration to be part of the startup configuration The no duplex command restores the default interface to full duplex operation The example below shows the commands used to configure ...

Page 26: ... not connected Full 1 Gbps Auto Gi0 20 not connected Full 1 Gbps Auto Gi0 21 not connected Half 1 Gbps Auto Gi0 22 not connected Half 1 Gbps No Negotiation Gi0 23 not connected Half 1 Gbps Auto Gi0 24 not connected Half 1 Gbps Auto Ex0 1 not connected Full 10 Gbps No Negotiation Ex0 2 not connected Full 10 Gbps No Negotiation Ex0 3 not connected Full 10 Gbps No Negotiation 1 4 5 MTU The default ma...

Page 27: ...t step will perform the particular configuration on all these interfaces Step 3 mtu frame size 1500 9216 Configure interface MTU to a range of 1500 9216 Step 4 end Exits the configuration mode Step 5 show interface status Displays the interface configuration Step 6 write startup config Optional step saves this configuration to be part of the startup configuration The no mtu command restores the in...

Page 28: ...n Trap is enabled Reception Counters Octets 3549 Unicast Packets 0 Broadcast Packets 13 Multicast Packets 26 Pause Frames 0 Undersize Frames 0 Oversize Frames 0 CRC Error Frames 0 Discarded Packets 39 Error Packets 0 Unknown Protocol 0 Transmission Counters Octets 7198 Unicast Packets 0 Non Unicast Packets 59 Pause Frames 0 Discarded Packets 0 Error Packets 0 SMIS config if show interface mtu Gi 0...

Page 29: ...ion mode Step 2 interface interface type interface id or interface range interface type interface id Enters the interface configuration mode interface type may be any of the following gigabit ethernet gi extreme ethernet ex qx ethernet qx interface id is in slot port format for all physical interfaces To configure multiple interfaces use the interface range command To provide a range use a hyphen ...

Page 30: ...ays the Interface Flow control configuration Step 6 write startup config Optional step saves this configuration to be part of startup configuration The example below shows the commands used to configure flow control SMIS configure terminal SMIS config interface Gi 0 22 SMIS config if flowcontrol send on SMIS config if end SMIS show flow control interface Gi 0 22 Port TxFlowControl Rx FlowControl T...

Page 31: ...umes normal forwarding Follow the steps below to configure storm control Step Command Description Step 1 configure terminal Enters the configuration mode Step 2 interface interface type interface id or interface range interface type interface id Enters the interface configuration mode interface type may be any of the following gigabit ethernet gi extreme ethernet ex qx ethernet qx interface id is ...

Page 32: ...ntrol The example below shows the commands used to configure storm control SMIS configure terminal SMIS config interface Gi 0 22 SMIS config if storm control broadcast level 50000 SMIS config if end SMIS show interfaces Gi 0 22 storm control Gi0 22 DLF Storm Control Disabled Broadcast Storm Control Enabled Broadcast Storm Control 50000 Multicast Storm Control Disabled 1 5 Time Management The syste...

Page 33: ...n be used to specify a preferred NTP server when multiple NTP servers are configured in the switch Only one server can be configured as prefer at a time Step 3 end Exits the configuration mode Step 4 show ntp Displays the NTP configuration Step 5 write startup config Optional step saves this configuration to be part of the startup configuration The enable agent command enables the agent NTP server...

Page 34: ...guration mode Step 2 ntp enable Enables NTP in the switch Step 3 end Exits the configuration mode Step 4 show ntp Displays the NTP configuration Step 5 write startup config Optional step saves this configuration to be part of the startup configuration The ntp disable command disables NTP in the switch NTP can be enabled in Supermicro switches only after configuring at least 1 NTP server The exampl...

Page 35: ...Command Description Step 1 configure terminal Enters the configuration mode Step 2 ntp key key_number 1 65535 key_text Configures NTP authentication key Key number key number in the range of 1 65535 used for MD5 Key text NTP key text to be used along with the key number for MD5 Step 3 end Exits the configuration mode Step 4 show ntp Displays the NTP configuration Step 5 write startup config Option...

Page 36: ...ers the configuration mode Step 2 ntp broadcast authentication Configures the NTP broadcast authentication If specified NTP authentication is enabled for broadcast mode Step 3 end Exits the configuration mode Step 4 show ntp Displays the NTP configuration Step 5 write startup config Optional step saves this configuration to be part of the startup configuration The no ntp broadcast command disables...

Page 37: ...ock set hh mm ss day 1 31 month january february march april may june july august september october november december year 2000 2035 Configures the system clock hh mm ss Time in Hours Minutes Seconds format day Day in 1 31 format month Month in January December format year Year in yyyy format Step 2 show clock Displays the system clock The example below shows the commands used to configure system ...

Page 38: ... to configure the timezone offset SMIS configure terminal SMIS config tz offset 12 30 SMIS config end SMIS show system information Switch Name SMIS Switch Base MAC Address 00 30 48 e3 70 bc SNMP EngineID 80 00 08 1c 04 46 53 System Contact http www supermicro com support System Location Supermicro Logging Option Console Logging Login Authentication Mode Local Snoop Forward Mode MAC based Config Re...

Page 39: ...ed Port mirroring direction Both 1 6 1 Switch Name Supermicro switches can be assigned a name for identification purposes The default switch name is SMIS The switch name is also used as a prompt Follow the steps below to configure the switch name Step Command Description Step 1 configure terminal Enters the configuration mode Step 2 device name devname 15 Configures switch name and prompt Devname ...

Page 40: ...sed Config Restore Status Not Initiated Config Restore Option No restore Config Restore Filename iss conf Config Save IP Address 0 0 0 0 Device Up Time 0 days 0 hrs 1 mins 11 secs Boot up Flash Area Normal NTP Broadcast Mode No NTP ntp is disabled Server Key Prefer Key Key Time zone offset not set 1 6 2 Switch Contact Supermicro switches provide an option to configure the switch in charge Contact ...

Page 41: ...the commands used to configure a switch contact SMIS configure terminal SMIS config system contact User1 at CA SMIS config end SMIS show system information Switch Name SMIS Switch Base MAC Address 00 30 48 e3 70 bc SNMP EngineID 80 00 08 1c 04 46 53 System Contact User1 at CA System Location Supermicro Logging Option Console Logging Login Authentication Mode Local Snoop Forward Mode MAC based Conf...

Page 42: ...on Step 5 write startup config Optional step saves this configuration to be part of the startup configuration The System Location configuration is automatically stored as part of the startup configuration file The example below shows the commands used to configure system location SMIS configure terminal SMIS config system location Santa Clara SMIS config end SMIS show system information Switch Nam...

Page 43: ...Follow the steps below to configure the system MTU Step Command Description Step 1 configure terminal Enters the configuration mode Step 2 system mtu frame size 1500 9216 Configures system MTU frame size Specifies the MTU of frames from 1500 9216 Step 3 end Exits the configuration mode Step 4 show interface mtu Displays the interface MTU Step 5 write startup config Optional step saves this configu...

Page 44: ...TU size is 9200 Gi0 7 MTU size is 9200 Gi0 8 MTU size is 9200 Gi0 9 MTU size is 9200 Gi0 10 MTU size is 9200 Gi0 11 MTU size is 9200 Gi0 12 MTU size is 9200 Gi0 13 MTU size is 9200 Gi0 14 MTU size is 9200 Gi0 15 MTU size is 9200 Gi0 16 MTU size is 9200 Gi0 17 MTU size is 9200 Gi0 18 MTU size is 9200 Gi0 19 MTU size is 9200 Gi0 20 MTU size is 9200 Gi0 21 MTU size is 9200 Gi0 22 MTU size is 9200 ...

Page 45: ... address has been configured is flooded to all ports and not learned A static address is created by specifying the destination MAC unicast address and the VLAN from which it is received Packets received with this destination address are forwarded to the interface specified with the interface id option Follow the steps below to configure a static MAC address Step Command Description Step 1 configur...

Page 46: ...MAC address is not deleted even after a switch reboot deleteOnReset Static MAC address is deleted on switch reset reboot deleteOnTimeout Static MAC address is deleted along with dynamic MAC entries after the aging time times out Step 3 end Exits the configuration mode Step 4 show mac address table static multicast vlan vlan range address aa aa aa aa aa aa interface interface type interface id show...

Page 47: ... 75 vlan 1 interface Gi 0 14 status permanent SMIS config end SMIS show mac address table static unicast Vlan Mac Address Status Ports 1 90 4e e5 0c 03 75 Permanent Gi0 14 Total Mac Addresses displayed 1 1 6 6 MAC Aging Dynamic MAC address table entries are addresses learned by the switch which age when they are not in use The MAC aging time can be configured by the user Follow the steps below to ...

Page 48: ...Port mirroring allows network traffic monitoring by copying each incoming and outgoing packet from one port called the monitored port to another port called the monitoring port The packets can then be analyzed from the monitoring port Supermicro switches support only one session of port mirroring at a time N 1 source destination mirroring i e multiple source ports can be mirrored by one destinatio...

Page 49: ...be the VLAN identifier for VLAN interfaces rx Packets received on source port are monitored ingress tx Packets transmitted on source port are monitored egress both Packets received and transmitted on source port are monitored NOTE Source and destination port cannot be the same Step 3 end Exits the configuration mode Step 4 show port monitoring Displays the port monitoring configuration Step 5 writ...

Page 50: ...MIS config monitor session source interface gigabitethernet 0 25 SMIS config end SMIS show port monitoring Port Monitoring is enabled Monitor Port Gi0 48 Port Ingress Monitoring Egress Monitoring Gi0 1 Disabled Disabled Gi0 2 Disabled Disabled Gi0 3 Disabled Disabled Gi0 4 Disabled Disabled Gi0 5 Disabled Disabled Gi0 6 Disabled Disabled Gi0 7 Disabled Disabled Gi0 8 Disabled Disabled Gi0 9 Disabl...

Page 51: ...sabled Gi0 41 Disabled Disabled Gi0 42 Disabled Disabled Gi0 43 Disabled Disabled Gi0 44 Disabled Disabled Gi0 45 Disabled Disabled Gi0 46 Disabled Disabled Gi0 47 Disabled Disabled Gi0 48 Disabled Disabled Ex0 1 Disabled Disabled Ex0 2 Disabled Disabled Ex0 3 Disabled Disabled Ex0 4 Disabled Disabled 1 7 System Logging Syslog Supermicro switches send system output messages to a logging process Th...

Page 52: ... the Syslog configuration Step 5 write startup config Optional step saves this configuration to be part of the startup configuration The logging enable command enables the Syslog feature The example below shows the commands used to disable Syslog SMIS configure terminal SMIS config logging disable SMIS config end SMIS show logging System Log Information Syslog logging disabled Number of messages 0...

Page 53: ...plays the Syslog configuration Step 5 write startup config Optional step saves this configuration to be part of the startup configuration The no logging ip address command deletes the Syslog server The example below shows the commands used to configure the Syslog server SMIS configure terminal SMIS config logging 192 168 1 3 SMIS config end SMIS show logging System Log Information Syslog logging e...

Page 54: ...te startup config Optional step saves this configuration to be part of the startup configuration The no logging console command disables console logging The example below shows the commands used to enable the Syslog console SMIS configure terminal SMIS config logging console SMIS config end SMIS show logging System Log Information Syslog logging enabled Number of messages 0 Console logging enabled...

Page 55: ...ion mode Step 4 show logging Displays the Syslog configuration Step 5 write startup config Optional step saves this configuration to be part of the startup configuration The no logging file command disables the logging of system messages in a file The example below shows the commands used to enable storing logs in a file SMIS configure terminal SMIS config logging file log1 SMIS config end SMIS sh...

Page 56: ...1 06 2013 DHC 7 Rcvd Event 4 135 Apr 29 10 11 06 2013 DHC 7 Rcvd Msg 13cf4448 type 1 135 Apr 29 10 11 07 2013 DHC 7 Rcvd Event 4 135 Apr 29 10 11 07 2013 DHC 7 Rcvd Msg 13cf4908 type 1 129 Apr 29 10 11 31 2013 INTF 1 Interface Gi0 22 status changed to UP LogFile 2 Entries 129 Apr 29 10 11 30 2013 INTF 1 Interface Gi0 22 status changed to UP 129 Apr 29 10 11 31 2013 INTF 1 Interface Gi0 22 status c...

Page 57: ...d 200 SMIS config end SMIS show logging System Log Information Syslog logging enabled Number of messages 0 Console logging disabled Number of messages 0 File logging disabled Number of messages 0 Log File Name File Max Entries 500 TimeStamp option enabled Trap logging Critical Log server IP None Facility Default local0 Buffered size 200 Entries LogBuffer 11 Entries 135 Apr 29 10 11 05 2013 DHC 7 E...

Page 58: ...e Syslog facility Step Command Description Step 1 configure terminal Enters the configuration mode Step 2 logging facility local0 local1 local2 local3 local4 local5 local6 local7 Configures the Syslog facility Step 3 end Exits the configuration mode Step 4 show logging Displays the Syslog configuration Step 5 write startup config Optional step saves this configuration to be part of the startup con...

Page 59: ... Step Command Description Step 1 configure terminal Enters the configuration mode Step 2 logging mac address table Enables the logging of MAC address table updates Step 3 end Exits the configuration mode Step 4 show logging Displays the Syslog configuration Step 5 write startup config Optional step saves this configuration to be part of the startup configuration The no logging mac address table co...

Page 60: ... Used for logging messages that require immediate attention Level 2 Critical Used for logging critical errors Level 3 Errors Used for error messages Level 4 Warning Used for logging warning messages Level 5 Notification Used for logging messages that require attention but are not errors Level 6 Informational Used for logging informational messages Level 7 Debugging Used for logging debug messages ...

Page 61: ... IP None Facility Default local0 Buffered size 200 Entries LogBuffer 11 Entries 135 Apr 29 10 11 05 2013 DHC 7 Exitting DHCPC Task Init 135 Apr 29 10 11 05 2013 DHC 7 Entered in DhcpCIntSelectTaskMain fn 135 Apr 29 10 11 05 2013 DHC 7 Entered in DhcpCSocketOpen fn 135 Apr 29 10 11 07 2013 DHC 7 Rcvd Event 4 135 Apr 29 10 11 07 2013 DHC 7 Rcvd Msg 13cb8128 type 1 135 Apr 29 10 11 07 2013 DHC 7 Rcvd...

Page 62: ...tional step saves this configuration to be part of the startup configuration The example below shows the commands used to clear the logging buffer SMIS configure terminal SMIS config clear log buffer SMIS config end SMIS show logging System Log Information Syslog logging enabled Number of messages 0 Console logging disabled Number of messages 0 File logging disabled Number of messages 0 Log File N...

Page 63: ...ging enabled Number of messages 0 Console logging disabled Number of messages 0 File logging disabled Number of messages 0 Log File Name File Max Entries 500 TimeStamp option enabled Trap logging Critical Log server IP None Facility Default local0 Buffered size 50 Entries LogBuffer 0 Entries LogFile 0 Entries 1 8 Security Features Supermicro switches support four methods of user authentication RAD...

Page 64: ...ication local radius tacacs Configures the login authentication mechanism to be used for switch access Local Uses the local database in a switch to authenticate users Radius Uses a RADUIS server to authenticate users Tacacs Uses a TACACS server to authenticate users Step 3 end Exits the configuration mode Step 4 show system information Displays the login authentication mechanism Step 5 write start...

Page 65: ...t set 1 8 2 RADIUS A sequence of events occurs during RADIUS client server communication whenever a user logs in The username and password are encrypted by the client and sent to the RADIUS server The client receives a response from the RADIUS server o ACCEPT User authentication is successful o REJECT User authentication failed User is prompted to re enter the username password or access is denied...

Page 66: ...r the purpose of authenticating or accounting or both ip address server s IP address timeout Specifies the RADIUS server timeout from 1 120 retransmit Specifies the number of retries to attempt to connect to the RADIUS server from 1 254 key Specifies the authentication key Step 3 end Exits the configuration mode Step 4 show radius server show radius statistics Displays the RADIUS configuration Ste...

Page 67: ...o of request packets 0 No of retransmitted packets 0 No of access accept packets 0 No of access reject packets 0 No of access challenge packets 0 No of malformed access responses 0 No of bad authenticators 0 No of pending requests 0 No of time outs 0 No of unknown types 0 1 8 3 TACACS TACACS provides access control to a switch through a client server model similar to RADIUS except that it provides...

Page 68: ...on is specified only one connection to one of the configured TACACS servers is permitted port Specifies the TCP port from 1 65535 timeout Specifies the TACACS server timeout from 0 255 seconds key Authentication key with a maximum length of 64 characters Step 3 end Exits the configuration mode Step 4 show tacacs Displays the TACACS configuration Step 5 write startup config Optional step saves this...

Page 69: ... Fails rcvd 0 Author Errors rcvd 0 Author Follows rcvd 0 Author Sess timeouts 0 Acct start reqs sent 0 Acct WD reqs sent 0 Acct Stop reqs sent 0 Acct Success rcvd 0 Acct Errors rcvd 0 Acct Follows rcvd 0 Acct Sess timeouts 0 Malformed Pkts rcvd 0 Socket failures 0 Connection failures 0 1 8 3 2 Server Re tries Supermicro switches will retry transmitting messages to the TACACS server if there is no ...

Page 70: ...ers can specify one of these available servers to be used at a time Follow the steps below to configure the TACACS server to be used Step Command Description Step 1 configure terminal Enters the configuration mode Step 2 tacacs use server address ip address Configures TACACS server to be used Step 3 end Exits the configuration mode Step 4 show tacacs Displays the TACACS configuration Step 5 write ...

Page 71: ...then Get Data rcvd 0 Authen Errors rcvd 0 Authen Follows rcvd 0 Authen Restart rcvd 0 Authen Sess timeouts 0 Author Requests sent 0 Author Pass Add rcvd 0 Author Pass Repl rcvd 0 Author Fails rcvd 0 Author Errors rcvd 0 Author Follows rcvd 0 Author Sess timeouts 0 Acct start reqs sent 0 Acct WD reqs sent 0 Acct Stop reqs sent 0 Acct Success rcvd 0 Acct Errors rcvd 0 Acct Follows rcvd 0 Acct Sess t...

Page 72: ...ion 1 and version 2 SSL messages cipher Specifies the encryption algorithm auth Specifies the authentication algorithm port Specifies the SSH port from 1024 65535 Step 3 end Exits the configuration mode Step 4 show ip ssh Displays the SSH configuration Step 5 write startup config Optional step saves this configuration to be part of the startup configuration The no ip ssh version compatibility ciph...

Page 73: ... well as HTTP client authentication to allow secure HTTP communications To use this feature the cryptographic encrypted software image must be installed on the switch Defaults SSL Parameter Default Value HTTP Secure server status Enabled HTTP Secure server encryption rsa null md5 HTTP Secure server keys None SSL Server certificate None SSL Server certificate request None 1 8 5 1 Secure HTTP https ...

Page 74: ... des sha crypto key rsa usage keys 512 1024 command enables the agent The example below shows the commands used to configure a secure HTTP SMIS configure terminal SMIS config no ip http secure server SMIS config end SMIS show ip http secure server status HTTP secure server status Disabled HTTP secure server ciphersuite RSA DES SHA RSA 3DES SHA RSA EXP1024 DES SHA HTTP crypto key rsa 1024 1 8 5 2 C...

Page 75: ...9lw9iq9yOySOlvxY6IoYNsg O JS02khz0SAbpRkhtGuwmBiZQtSj 8Ea3dG8ReoixpcYDVVdIrDQIDAQABoAAw DQYJKoZIhvcNAQEEBQADgYEAXR8Nz40QeC8wqwzqy iozT5iUMKOkelXTE8mDydt AvRyc7a3EPraGjyOL5W1H94z wW2wkxXTRzKuLzAEYRH9f84XB2uCAdL jkuSBJc 5qd3j4yBtOIu pxOsdKKwuq6LWbi44DCXg97SkE pOYa7nWojVkjc2SbjvK5CTgG 89s END CERTIFICATE REQUEST SMIS show ssl server cert Certificate Data Version 1 0x0 Serial Number 10 0xa Signature A...

Page 76: ...shared with anyone The public key is incorporated into the SSL certificate and is shared with web browsers Identification information E g When you request an SSL certificate a third party such as Thawte verifies your organization s information and issues a unique certificate to you with that information SSL certificates can be configured in Supermicro switches The certificate should be specified i...

Page 77: ...t the Enter Certificate prompt This prompt appears after entering the ssl serv cert command in CLI This step would configure the certificate and save it to flash Step 6 show ssl server cert Displays the SSL configuration 1 9 Configuration Management This section describes the steps to save and manage the configuration files on the switch It also describes the firmware upgrade and the restore to fa...

Page 78: ...9 2 Save Running Configuration To File Switch configurations can be saved to a file either in local flash memory or to a remote TFTP server Follow the steps below to write an existing switch configuration to a file Step Command Description Step 1 write flash filename tftp ip address filename usb filename Configure the writing of the switch configuration to a file in the local flash memory in a rem...

Page 79: ...exit 1 9 3 Configuring Startup Configuration File Name Supermicro switches provide an option to select a file stored in flash memory as the startup configuration file that gets loaded when the switch is powered ON or restarted Follow the steps below to configure the Startup configuration Step Command Description Step 1 configure terminal Enters the configuration mode Step 2 set startup config file...

Page 80: ...fig flash filename tftp ip address filename usb filename Copy from the startup configuration to a file in remote location or flash or the external USB memory filename name of the configuration file The example below shows the commands used to copy from the startup configuration to a file in flash SMIS copy startup config flash config5 txt Copied startup config flash mnt config5 txt SMIS 1 9 5 Copy...

Page 81: ...348S or SSE X3348T switches Copies a remote file to external USB memory in SSE X24S SSE X3348S or SSE X3348T switches Makes a copy of the file in the USB external memory in SSE X24S SSE X3348S or SSE X3348T switches filename name of the configuration file The example below shows the commands used to copy a file to another file in a remote site flash SMIS copy flash config1 txt flash switch1 conf C...

Page 82: ...ation or a file SMIS erase flash config1 txt Do you really want to delete file config1 txt y n Deleted file config1 txt SMIS SMIS erase startup config Do you really want to delete startup configuration y n Deleted startup configuration file SMIS 1 9 7 Firmware Upgrades Supermicro switches support dual firmware images The default firmware image is referred as normal and the backup firmware image is...

Page 83: ... the fallback firmware image use the command set boot up normal fallback 1 9 8 Boot up Options Supermicro switches support dual firmware images as normal and fallback The switch boots up from the normal firmware image by default Users can also configure the switch to boot from the fallback firmware image Follow the steps below to configure the switch boot up firmware option Step Command Descriptio...

Page 84: ... Config Restore Status Not Initiated Config Restore Option No restore Config Restore Filename iss conf ConfigSave IP Address 0 0 0 0 Device Up Time 0 days 0 hrs 0 mins 53 secs Boot up Flash Area Fallback NTP Broadcast Mode No NTP ntp is disabled Server Key Prefer Key Key Time zone offset not set 1 9 9 Reset to Factory Defaults Supermicro switches can be reset to factory defaults using a CLI comman...

Page 85: ... be managed using the default management IP address 192 168 100 102 with the default administrator user name ADMIN and password ADMIN The example below shows the command to reset to the factory defaults SMIS config reset to factory defaults This command will reset settings to the factory defaults After resetting to the factory defaults a switch will be reloaded immediately Do you really want to ex...

Reviews:

No comments

Related manuals for L2

A-Neuvideo ANI-3AUTOHDMI Instruction Manual preview
ANI-3AUTOHDMI
Brand: A-Neuvideo Pages: 16
Black Box SW045A-FFF Manual preview
SW045A-FFF
Brand: Black Box Pages: 9
hager WBMSLL Quick Start Manual preview
WBMSLL
Brand: hager Pages: 2
HIKVISION DS-3E0108P-E User Manual preview
DS-3E0108P-E
Brand: HIKVISION Pages: 25
Milestone pro MP-SU21T-KVM User Manual preview
MP-SU21T-KVM
Brand: Milestone pro Pages: 32
Vagner Pool PRO PIEZO 1 Instruction Manual preview
PRO PIEZO 1
Brand: Vagner Pool Pages: 5
Watt Stopper WI-200 Installation Instructions preview
WI-200
Brand: Watt Stopper Pages: 2
Steren FASTHOME 550-030 Installation Manual preview
FASTHOME 550-030
Brand: Steren Pages: 4
System Q ScatterBox POE308 Quick Start Manual preview
ScatterBox POE308
Brand: System Q Pages: 2
3onedata IES6100 Series Quick Installation Manual preview
IES6100 Series
Brand: 3onedata Pages: 4
Tekmar tekmarNet 4 User Switch 481 Data Brochure preview
tekmarNet 4 User Switch 481
Brand: Tekmar Pages: 12
Panduit Atlona JunoX 451 Installation Manual preview
Atlona JunoX 451
Brand: Panduit Pages: 8
EG Juniper EX Manual preview
Juniper EX
Brand: EG Pages: 22
Teltronics SEB NET-PATH Installation And Operation Manual preview
SEB NET-PATH
Brand: Teltronics Pages: 82
Eaton NetDirector B064-016-02-IPH Installation Instructions Manual preview
NetDirector B064-016-02-IPH
Brand: Eaton Pages: 12
Eaton DILMP Series Instruction Leaflet preview
DILMP Series
Brand: Eaton Pages: 3
J-Tech Digital JTD-2874 User Manual preview
JTD-2874
Brand: J-Tech Digital Pages: 8
Eaton NZM3-XKR Instruction Leaflet preview
NZM3-XKR
Brand: Eaton Pages: 4

Brands by name

Popular brands

Load more brands