Zte ZXR10 5250 Series Command Reference Manual Download Page 344

Page: 344 / 708

ZXR10 5250 Series Command Reference

Guidelines

The

IPv6-UDP

rule

can

match

source-specified

IPv6,

any

source

IPv6,

destination-specified IPv6, any destination IPv6, UDP source port numbers, UDP

destination port numbers, and VLAN fields.

4.13.72 egress-acl hybrid rule type-tcp

Purpose

This command sets the rule that the hybrid egress ACL matches IPv4-TCP packets.

Command Mode

Hybrid egress ACL configuration mode

Syntax

rule

1-500

permit

deny

}

tcp

source-ipaddr

sip-mask

any

}[

source-port

0-65535

port-mask

>]{<

destination-ipaddr

dip-mask

any

}[

dest-port

0-65535

dport-mask

>][

dscp

0-63

>][

fragment

][

cos

0-7

>][<

vlan-id

>[<

vlan-mask

>]][<

source-mac

smac-mask

any

][<

st-mac

dmac-mask

any

]

Parameter Description

Parameter

Description

1-500

Rule number.

permit

If the condition matches, access is permitted.

deny

If the condition matches, access is denied.

tcp

This rule is only valid for TCP packet. Other packets ignore this

rule.

source-ipaddr

IP address of the source network or host transmitting packets. It is

a 32-bit IP address expressed in dotted decimal notation.

sip-mask

Source mask and used for source. It is a 32-bit IP address

expressed in dotted decimal notation.

source-port

0-65535

TCP source port number of the transmitted packet

The parameters of source-port can resolve the some known port

numbers. Also the port number and mask can be directly inputted.

sport-mask

Source port mask.

any

(first)

The any keyword is used as the abbreviation of the source 0.0.0.0

and the source mask 0.0.0.0.

destination-ipaddr

Destination network or host of the transmitted packet. It is a 32-bit

IP address expressed in dotted decimal notation.

4-286

SJ-20131111172707-003|2013-11-27 (R1.0)

ZTE Proprietary and Confidential

Summary of Contents for ZXR10 5250 Series

Page 1: ...ort Intelligent Switch Command Reference Version 2 05 11 ZTE CORPORATION No 55 Hi tech Road South ShenZhen P R China Postcode 518057 Tel 86 755 26771900 Fax 86 755 26770801 URL http ensupport zte com cn E mail support zte com cn ...

Page 2: ...non infringement ZTE CORPORATION and its licensors shall not be liable for damages resulting from the use of or reliance on the information contained herein ZTE CORPORATION or its licensors may have current or pending intellectual property rights or applications covering the subject matter of this document Except as expressly provided in any written license between ZTE CORPORATION and its licensee...

Page 3: ...2 1 12 Global Ingress ACL Configuration Mode 2 5 2 1 13 Basic Egress ACL Configuration Mode 2 5 2 1 14 Extended Egress ACL Configuration Mode 2 5 2 1 15 Layer 2 Egress ACL Configuration Mode 2 5 2 1 16 Hybrid Egress ACL Configuration Mode 2 6 2 1 17 MAC Based VLAN Configuration Mode 2 6 2 1 18 User Defined Ingress ACL Configuration Mode 2 6 2 2 Common Parameters in Commands 2 6 Chapter 3 File Syst...

Page 4: ...nagement Configuration 4 2 4 1 1 config group 4 2 4 1 2 config router 4 2 4 1 3 config snmp 4 2 4 1 4 config tffs 4 3 4 1 5 config nas 4 3 4 1 6 exit 4 3 4 1 7 enable 4 4 4 1 8 list 4 4 4 1 9 set auto reset 4 4 4 1 10 line vty timeout 4 5 4 1 11 set date 4 5 4 1 12 hostname 4 6 4 1 13 promptlen 4 7 4 1 14 sysLocation 4 7 4 1 15 reboot 4 8 4 1 16 reboot time 4 8 4 1 17 telnet 4 8 4 1 18 create user...

Page 5: ...vty 4 22 4 1 41 show loginauth 4 22 4 1 42 show adminauth 4 22 4 1 43 show terminal 4 23 4 1 44 show terminal log 4 23 4 1 45 clear terminal log 4 23 4 1 46 terminal monitor module 4 24 4 1 47 terminal log module 4 25 4 1 48 show user 4 25 4 1 49 show version 4 26 4 1 50 show running config 4 27 4 1 51 show start config 4 27 4 1 52 show date time 4 28 4 1 53 show reboot time 4 28 4 1 54 show cpu 4...

Page 6: ...4 40 4 1 79 command log toFile 4 40 4 1 80 command log timer 4 41 4 1 81 show command log user 4 41 4 1 82 show command log time range 4 42 4 1 83 show environment 4 43 4 1 84 show power module 4 43 4 1 85 check file 4 44 4 2 Port Configuration 4 45 4 2 1 set port enable disable 4 45 4 2 2 set port work mode 4 46 4 2 3 set port speedadvertise 4 46 4 2 4 set port duplex 4 47 4 2 5 set port speed 4 ...

Page 7: ...4 3 4 set poe port forcepower 4 65 4 3 5 set poe port extend detection 4 66 4 3 6 set poe power maxvalue 4 67 4 3 7 set poe port time range 4 67 4 3 8 show poe device 4 68 4 3 9 show poe status 4 68 4 3 10 show poe config 4 69 4 3 11 set poe port mode 4 70 4 3 12 set poe port power exceed 4 71 4 3 13 set poe port protect time 4 71 4 3 14 set poe port recover 4 72 4 4 Port Mirroring 4 72 4 4 1 set ...

Page 8: ...6 1 set vlan voice vlan 4 86 4 6 2 set vlan voice vlan oui 4 87 4 6 3 set vlan voice vlan qos profile 4 87 4 6 4 set vlan voice vlan qos profile disable 4 88 4 6 5 clear vlan voice vlan 4 88 4 6 6 clear vlan voice vlan port oui 4 89 4 6 7 clear vlan voice vlan port oui id 4 89 4 6 8 show vlan voice vlan 4 90 4 6 9 show vlan voice vlan port 4 90 4 6 10 show vlan voice vlan default oui 4 91 4 6 11 s...

Page 9: ...l 4 106 4 7 24 set mac protect port 4 107 4 7 25 set mac protect port action 4 107 4 7 26 show mac 4 108 4 7 27 show mac running config 4 109 4 7 28 show mac all type 4 109 4 7 29 show mac mix 4 110 4 7 30 show mac mac address 4 111 4 7 31 show mac unknown filter 4 111 4 7 32 show mac aging time 4 112 4 7 33 show mac filter 4 112 4 7 34 show mac logging alarm 4 113 4 7 35 set mac learning except s...

Page 10: ... 9 9 show trunk 4 127 4 9 10 show trunk vlan 4 128 4 9 11 show lacp 4 128 4 9 12 show lacp aggregator 4 129 4 9 13 show lacp aggregator aggid 4 129 4 9 14 show lacp port 4 130 4 9 15 clear trunk 4 131 4 10 IGMP Snooping Configuration 4 131 4 10 1 set igmp snooping enable disable 4 131 4 10 2 set igmp snooping add delete vlan 4 132 4 10 3 set igmp snooping add delete maxnum vlan port 4 133 4 10 4 s...

Page 11: ...ing vlan 4 148 4 10 28 show igmp snooping port 4 149 4 10 29 show igmp snooping v3 port trunk 4 150 4 10 30 show igmp filter report 4 150 4 10 31 show igmp filterreport vlan 4 151 4 10 32 show igmp filter query 4 152 4 10 33 show igmp filter query vlan 4 152 4 11 IPTV Configuration 4 153 4 11 1 iptv control enable disable 4 153 4 11 2 iptv channel group mvlan groupiplist name 4 153 4 11 3 iptv cha...

Page 12: ...n blackout 4 172 4 11 31 iptv cac rule enable disable 4 173 4 11 32 iptv port service 4 173 4 11 33 iptv port control mode 4 174 4 11 34 iptv port package 4 175 4 11 35 iptv port channel group 4 176 4 11 36 iptv port channel 4 177 4 11 37 iptv port cdr 4 177 4 11 38 iptv port mac base 4 178 4 11 39 clear iptv channel group 4 179 4 11 40 clear iptv channel 4 179 4 11 41 clear iptv package 4 180 4 1...

Page 13: ...4 201 4 12 14 set stp hellotime 4 202 4 12 15 set stp forwarddelay 4 203 4 12 16 set stp agemax 4 203 4 12 17 set stp hopmax 4 204 4 12 18 set stp name 4 204 4 12 19 set stp revision 4 205 4 12 20 set stp instance add delete vlan 4 205 4 12 21 set stp instance port trunk priority 4 206 4 12 22 set stp instance port trunk cost 4 207 4 12 23 set stp instance port trunk root guard 4 208 4 12 24 set s...

Page 14: ...ig ingress acl link 4 228 4 13 20 ingress acl link rule type ip 4 228 4 13 21 ingress acl link rule type arp 4 229 4 13 22 ingress acl link rule type other 4 230 4 13 23 ingress acl link rule type any 4 232 4 13 24 clear ingress acl link 4 232 4 13 25 config ingress acl hybrid 4 233 4 13 26 ingress acl hybrid rule type ip protocol 4 233 4 13 27 ingress acl hybrid rule type ip 4 235 4 13 28 ingress...

Page 15: ...clear egress acl extend 4 269 4 13 56 config egress acl link 4 269 4 13 57 egress acl link rule type ip 4 269 4 13 58 egress acl link rule type arp 4 270 4 13 59 egress acl link rule type other 4 271 4 13 60 egress acl link rule type any 4 273 4 13 61 clear egress acl link 4 274 4 13 62 config egress acl hybrid 4 274 4 13 63 egress acl hybrid rule type all 4 274 4 13 64 egress acl hybrid rule type...

Page 16: ...ty mapping qos profile dscp to dscp 4 303 4 14 5 set qos priority mapping port port to profile 4 303 4 14 6 set qos priority mapping qos profile dscp up to profile 4 304 4 14 7 set qos priority mapping qos profile 4 305 4 14 8 set qos priority mapping qos profile default 4 306 4 14 9 set qos queue schedule enhance 4 307 4 14 10 set qos queue schedule mode 4 308 4 14 11 set qos queue schedule port ...

Page 17: ...it 4 330 4 14 37 show qos traffic limit protect 4 331 4 14 38 show qos traffic limit trap 4 332 4 14 39 show qos traffic shaping 4 332 4 14 40 show anti dos 4 333 4 14 41 set qos policer mode 4 334 4 14 42 set qos policer exceed action 4 334 4 14 43 set qos policer exceed action remark profile 4 335 4 14 44 set qos policer counter mode 4 336 4 14 45 set qos policer counter 4 337 4 14 46 set policy...

Page 18: ...rotect time 4 352 4 15 PVLAN Configuration 4 353 4 15 1 set vlan pvlan session 4 353 4 15 2 clear vlan pvlan session 4 354 4 15 3 show vlan pvlan session 4 354 4 15 4 set vlan pvlan session 4 354 4 16 L2pt Configuration 4 355 4 16 1 set l2pt 4 355 4 16 2 show l2pt 4 356 4 17 IPv4 Layer 3 Configuration 4 356 4 17 1 ping 4 356 4 17 2 trace 4 357 4 17 3 set ipport enable disable 4 358 4 17 4 set ippo...

Page 19: ...pection validate enable disable 4 375 4 19 2 set arp inspection vlan enable disable 4 376 4 19 3 set arp inspection port trust untrust 4 376 4 19 4 set arp inspection port limit 4 377 4 19 5 show arp inspection 4 378 4 20 Access Service Configuration 4 379 4 20 1 set port vlanjump enable disable 4 379 4 20 2 dot1x re authenticate enable disable 4 380 4 20 3 dot1x re authenticate period 4 380 4 20 ...

Page 20: ...ent ip 4 395 4 20 30 show aaa control port 4 396 4 20 31 radius isp 4 397 4 20 32 radius isp add delete accounting 4 397 4 20 33 radius isp add delete authentication 4 398 4 20 34 radius isp client 4 399 4 20 35 radius isp sharedsecret 4 399 4 20 36 radius isp sharedsecret encrypt 4 400 4 20 37 radius isp fullaccount 4 401 4 20 38 radius isp defaultisp 4 402 4 20 39 radius isp description 4 403 4 ...

Page 21: ...on 4 418 4 23 1 set ntp add authentication key 4 418 4 23 2 set ntp delete authentication key 4 419 4 23 3 set ntp add trusted key 4 419 4 23 4 set ntp authenticate 4 420 4 23 5 set ntp server 4 420 4 23 6 set ntp second server 4 421 4 23 7 set ntp source 4 422 4 23 8 set ntp clock period 4 422 4 23 9 set ntp timezone 4 423 4 23 10 set ntp enable disable 4 423 4 23 11 set ntp src udp port 4 424 4 ...

Page 22: ...w dhcp ip source guard 4 442 4 25 18 show dhcp option82 4 442 4 25 19 show dhcp option82 port 4 443 4 25 20 show dhcp option82 device 4 444 4 25 21 set dhcp client enable disable 4 444 4 25 22 set dhcp client broadcast flag enable disable 4 445 4 25 23 show dhcp client 4 445 4 25 24 set ipport ipaddress dhcp 4 446 4 25 25 set ipport ipaddress dhcp release renew 4 446 4 25 26 set ipport dhcp client...

Page 23: ...lete 4 461 4 26 7 set dhcpv6 option37 enable disable 4 462 4 26 8 set dhcpv6 option37 add delete 4 462 4 26 9 set dhcpv6 option82 enable disable 4 463 4 26 10 set dhcpv6 option82 add delete 4 463 4 26 11 set dhcpv6 option82 ani 4 464 4 26 12 set dhcpv6 option82 sub option 4 464 4 26 13 clear dhcpv6 snp bind entry mac 4 465 4 26 14 clear dhcpv6 option82 ani 4 466 4 26 15 show dhcpv6 4 466 4 26 16 s...

Page 24: ...rward 4 481 4 29 7 set zesr ctrl vlan level seg preforward 4 481 4 29 8 set zesr link hello 4 482 4 29 9 set zesr link hello hello interval 4 483 4 29 10 set zesr protocol mac 4 483 4 29 11 set zesr restart time 4 484 4 29 12 set zesr ctrl vlan tcn sending 4 484 4 29 13 set zesr tcn sending 4 485 4 29 14 show zesr brief 4 485 4 29 15 show zesr ctrl vlan 4 486 4 30 SQinQ Configuration 4 486 4 30 1 ...

Page 25: ...ule 4 498 4 32 11 show protocol protect statistic 4 498 4 32 12 show protocol protect limit 4 499 4 32 13 show protocol protect priority 4 499 4 32 14 show protocol protect mac drop port 4 500 4 32 15 show protocol protect mac drop rule 4 501 4 33 LLDP Configuration 4 501 4 33 1 lldp hellotime 4 501 4 33 2 lldp holdtime 4 502 4 33 3 lldp max neighbor 4 503 4 33 4 lldp port enable disable 4 503 4 3...

Page 26: ...ow mld snp 4 520 4 34 18 show mld snp vlan 4 521 4 34 19 show mld snooping mr port info 4 523 4 34 20 show mld filter query 4 523 4 34 21 show mld filter query vlan 4 524 4 35 Single Port Loop Detection Configuration 4 525 4 35 1 set loopdetect sendpktinterval 4 525 4 35 2 set loopdetect blockdelay 4 525 4 35 3 set loopdetect port 4 526 4 35 4 set loopdetect port vlan 4 526 4 35 5 set loopdetect p...

Page 27: ...7 8 tacacs plus accounting update period 4 544 4 37 9 clear tacacs plus loginauthen default 4 544 4 37 10 clear tacacs plus loginauthor default 4 544 4 37 11 clear tacacs plus adminauthen default 4 545 4 37 12 clear tacacs plus accounting commands default 4 545 4 37 13 clear tacacs plus accounting exec default 4 545 4 37 14 clear tacacs plus accounting update 4 545 4 37 15 show tacacs plus 4 546 4...

Page 28: ...6 set pport dhcp relay 4 560 4 40 17 set dhcp relay server ip 4 561 4 40 18 set dhcp relay vlan enable disable 4 562 4 40 19 clear dhcp relay server 4 562 4 40 20 show dhcp vlan 4 563 4 40 21 set dhcp relay vlan 4 563 4 40 22 set dhcp hop 4 564 4 40 23 clear ipport dhcp relay 4 564 4 41 MFF Configuration 4 565 4 41 1 set mff vlan add port 4 565 4 41 2 set mff vlan delete port 4 565 4 41 3 set mff ...

Page 29: ...7 4 43 9 debug protocol dhcp statistics clear 4 577 4 43 10 debug protocol dot1x enable disable 4 578 4 43 11 debug protocol layer3 ip enable disable 4 578 4 43 12 debug protocol layer3 ip port 4 579 4 43 13 debug protocol layer3 ip port 4 579 4 43 14 debug protocol layer3 arp enable disable 4 579 4 43 15 debug protocol snmp enable disable 4 580 Chapter 5 Management Configuration 5 1 5 1 REMOTE AC...

Page 30: ...v3 5 18 5 4 14 set user v3 5 18 5 4 15 set trap macnotification enable disable 5 19 5 4 16 set trap macnotification history size interval 5 20 5 4 17 set trap macStationmove enable disable 5 21 5 4 18 set trap macStationmove history sizeinterval 5 21 5 4 19 clear host trap inform 5 22 5 4 20 clear community 5 23 5 4 21 clear view 5 23 5 4 22 clear group v3 5 24 5 4 23 clear user v3 5 25 5 4 24 cle...

Page 31: ...p hop 5 44 5 6 12 set ztp timer 5 45 5 6 13 set ztp portdelay 5 45 5 6 14 set ztp hopdelay 5 46 5 6 15 ztp start 5 47 5 6 16 show ztp 5 47 5 6 17 show ztp device 5 47 5 6 18 show ztp topology 5 49 5 6 19 show ztp mac 5 49 5 6 20 set group commander ipport 5 50 5 6 21 set group candidate 5 51 5 6 22 set group independent 5 51 5 6 23 set group add 5 52 5 6 24 set group delete member 5 53 5 6 25 set ...

Page 32: ...ress egress enable disable 5 62 5 7 5 set sflow ingress sample mode all forward 5 63 5 7 6 set sflow ingress egress packet sample off 5 63 5 7 7 set sflow ingress egress port packet sample on time range 5 64 5 7 8 clear sflow config 5 65 5 7 9 clear sflow statistic 5 65 5 7 10 show sFlow 5 66 5 8 Telnet 5 67 5 8 1 set telnet server enable disable 5 67 5 8 2 show telnet 5 67 5 8 3 set telnet listen...

Page 33: ...tains the following chapters Chapter Summary 1 Safety Instructions Describes safety instructions and signs 2 Overview Describes command modes and common parameters of ZXR10 5250 3 File System Configuration Describes commands for file system configuration of ZXR10 5250 4 Service Configuration Describes commands for service configuration of ZXR10 5250 5 Management Configuration Describes commands fo...

Page 34: ...f parameters Parameters or keywords in the square brackets are optional Parameters or keywords in the curly brackets are mandatory x y z Indicates that you must select one among x y and z x y z Parameters in the square brackets are optional If x is selected you must select either y or z in the curly brackets x Indicates that x can be repeated x y z Indicates that you can select one or more of x y ...

Page 35: ... is not recommended to run the debug commands when the network equipment operates properly ZTE Corporation bears no responsibility for consequences resulting from violation of general specifications for safety operations or of safety rules for design production and use of the equipment 1 2 Safety Signs Safety information that users should pay attention to during device installation operation and m...

Page 36: ...ZXR10 5250 Series Command Reference Note Provides additional safety information 1 2 SJ 20131111172707 003 2013 11 27 R1 0 ZTE Proprietary and Confidential ...

Page 37: ...de 10 Layer 2 ingress ACL configuration mode 11 Hybrid ingress ACL configuration mode 12 Global ingress ACL configuration mode 13 Basic egress ACL configuration mode 14 Extended egress ACL configuration mode 15 Layer 2 egress ACL configuration mode 16 Hybrid egress ACL configuration mode 17 Mac Based Vlan Configuration Mode 2 1 1 User Mode After logging in to the switch through HyperTerminal Telne...

Page 38: ...rn to user mode from global configuration mode run the exit command 2 1 3 SNMP Configuration Mode In global configuration mode you can run the config snmp command to enter SNMP configuration mode which is shown as follows zte cfg config snmp zte cfg snmp In SNMP configuration mode you can set the SNMP and RMON parameters To return to global configuration mode from SNMP configuration mode run the e...

Page 39: ...6 NAS Configuration Mode In global configuration mode you can run the config nas command to enter NAS configuration mode which is shown as follows zte cfg config nas zte cfg nas In NAS configuration mode you can configure the access service of the switch including user access authentication and management To return to global configuration mode from NAS configuration mode run the exit command or pr...

Page 40: ...tended ingress ACL To return to global configuration mode from extended ingress ACL configuration mode run the exit command or press Ctrl Z 2 1 10 Layer 2 Ingress ACL Configuration Mode In global configuration mode you can run the config ingress acl link number 200 299 command to enter layer 2 ingress ACL configuration mode which is shown as follows zte cfg config ingress acl link number 200 zte i...

Page 41: ...s basic acl In basic egress ACL configuration mode you can add delete and move rules for a basic egress ACL To return to global configuration mode from basic egress ACL configuration mode run the exit command or press Ctrl Z 2 1 14 Extended Egress ACL Configuration Mode In global configuration mode you can run the config egress acl extend number 500 599 command to enter extended egress ACL configu...

Page 42: ...ommand to enter MAC Based VLAN configuration mode which is shown as follows zte cfg config mac based vlan session 1 zte mac based vlan In Mac Based Vlan configuration mode you can add or delete rules for a specified session To return to global configuration mode from MAC Based VLAN configuration mode run the exit command or press Ctrl Z 2 1 18 User Defined Ingress ACL Configuration Mode In global ...

Page 43: ... or trunk ranges separated by commas for example 1 5 7 10 portname It indicates that only one port number or port name can be entered at a time vlanname It indicates that only one VLAN ID or VLAN name can be entered at a time trunkid It indicates that only one trunk ID can be entered at a time HH HH HH HH HH HH MAC address for example 11 22 33 44 55 66 A B C D IP address for example 10 40 47 254 A...

Page 44: ...ZXR10 5250 Series Command Reference This page intentionally left blank 2 8 SJ 20131111172707 003 2013 11 27 R1 0 ZTE Proprietary and Confidential ...

Page 45: ...oading a File Through FTP 3 8 Copying a File 3 9 Formatting the Flash Memory 3 10 Updating bootrom 3 11 Automatically Downloading Software Versions 3 11 Automatically Saving Configuration Files 3 12 3 1 Creating a Directory Purpose This command creates a directory Command Mode File system configuration mode Syntax md directory name Parameter Description Parameter Description directory name Directo...

Page 46: ...a DIR lost found DIR 254 132 224 bytes free 3 2 Deleting a File or Directory Purpose This command deletes a file or directory Command Mode File system configuration mode Syntax remove file name Example The following example deletes the temp directory zte cfg tffs ls DIR DIR temp DIR cfg DIR img DIR data DIR 3 2 SJ 20131111172707 003 2013 11 27 R1 0 ZTE Proprietary and Confidential ...

Page 47: ... Guidelines The img cfg and data directories created by default cannot be deleted Non empty directories cannot be deleted 3 3 Renaming a File or Directory Purpose This command changes the name of a file or directory Command Mode File system configuration mode Syntax rename file name file name Parameter Description Parameter Description file name First Original file name or directory name file name...

Page 48: ...te cfg tffs ls cfg DIR DIR permanent_mac dat 98 304 bytes 254 132 224 bytes free zte cfg tffs 3 4 Displaying Sub Directories and Files Purpose This command displays sub directories and files Command Mode File system configuration mode Syntax ls 3 5 Changing the Current Directory Purpose This command changes the current directory Command Mode File system configuration mode 3 4 SJ 20131111172707 003...

Page 49: ... directory to the temp directory zte cfg tffs ls DIR DIR temp DIR cfg DIR img DIR data DIR lost found DIR 254 132 224 bytes free zte cfg tffs cd temp zte cfg tffs ls temp DIR DIR 254 132 224 bytes free 3 6 Uploading or Downloading a File Through TFTP Purpose This command uploads a file to or downloads a file from the TFTP server Command Mode File system configuration mode 3 5 SJ 20131111172707 003...

Page 50: ...l path name of the file is cfg startrun dat assuming the current path of the local Flash memory is cfg remote file name Name of the file on the server The parameter can be in any of the following formats 1 If the parameter includes a path such as cfg startru n dat windows format the full path name of the file is D svn_5250 prj cfg startrun dat assuming the path of the TFTP server is D svn_5250 prj...

Page 51: ...e to the cluster commander local file name Name of the file in the local Flash memory The parameter can be in any of the following formats 1 If the parameter includes the absolute path such as cfg startrun dat device format the full path name of the file is cfg startrun dat 2 If the parameter includes the relative path such as cfg startrun dat the full path name of the file is cfg startrun dat ass...

Page 52: ...rtrun dat assuming the path of the cluster commander is D svn_5250 prj Guidelines l If the local file name and remote file name parameters are the same the remote file name parameter can be omitted l The TFTP command requires the configuration ofthe layer 3 port of the switch 3 8 Uploading or Downloading a File Through FTP Purpose This command uploads a file to or downloads a file from the FTP ser...

Page 53: ...in any of the following formats 1 If the parameter includes a path such as cfg startru n dat windows format the full path name of the file is D svn_5250 prj cfg startrun dat assuming the path of the FTP server is D svn_5250 prj 2 If the parameter does not include any path such as startrun dat the full path name of the file is D svn_5250 prj startrun dat assuming the path of the FTP server is D svn...

Page 54: ...temp_file dat file zte cfg tffs copy cfg permanent_mac dat temp temp_file dat 98 304 bytes copied zte cfg tffs cd temp zte cfg tffs ls temp DIR DIR temp_file dat 98 304 bytes 254 029 824 bytes free 3 10 Formatting the Flash Memory Purpose This command formats the Flash memory Command Mode File system configuration mode Syntax format Guidelines The format command clears all information of the Flash...

Page 55: ...able Purpose This command enables or disables the automatic download function of DHCP clients Command Mode Global configuration mode Syntax set dhcp download enable disable Parameter Description Parameter Description enable Enables the automatic download function disable Disables the automatic download function Guidelines This command is recorded by NVRAM and will not be lost upon power interrupti...

Page 56: ...ables the function Guidelines The function can be enabled only after serverip becomes valid with the set auto saveconfig serverip A B C D command Whenever the function is disabled previously set serverip and period are automatically restored to the default values Default This function is disabled 3 13 2 set auto saveconfig serverip Purpose This command configures the IP address of the TFTP server ...

Page 57: ...le command Default The default IP address of the TFTP server is 0 0 0 0 3 13 3 set auto saveconfig period Purpose This command configures the interval in days that the switch automatically uploads configuration files Command Mode Global configuration mode Syntax set auto saveconfig period 1 30 Parameter Description Parameter Description 1 30 Period natural days that the switch automatically upload...

Page 58: ...ding configuration files Command Mode All configuration modes Syntax show auto saveconfig Guidelines The contents to be displayed include whether the function of automatically uploading configuration files is enabled the upload period and the TFTP server s IP address 3 14 SJ 20131111172707 003 2013 11 27 R1 0 ZTE Proprietary and Confidential ...

Page 59: ...5 IPv4 Layer 3 Configuration 4 356 IPv6 Layer 3 Configuration 4 369 DAI Configuration 4 375 Access Service Configuration 4 379 QinQ Configuration 4 408 syslog Configuration 4 413 NTP Configuration 4 418 GARP GVRP Configuration 4 425 DHCP Configuration 4 431 DHCPv6 Configuration 4 457 VBAS Configuration 4 471 PPPoE PLUS Configuration 4 473 ZESR Configuration 4 477 SQinQ Configuration 4 486 VLAN Map...

Page 60: ...ose This command enters cluster management configuration mode Command Mode Global configuration mode Syntax config group 4 1 2 config router Purpose This command enters layer 3 interface configuration mode Command Mode Global configuration mode Syntax config router 4 1 3 config snmp Purpose This command enters SNMP configuration mode Command Mode Global configuration mode 4 2 SJ 20131111172707 003...

Page 61: ...ax config tffs Example zte cfg config tffs zte cfg tffs 4 1 5 config nas Purpose This command enters access service configuration mode Command Mode Global configuration mode Syntax config nas 4 1 6 exit Purpose This command returns the user to the previous mode Command Mode All configuration modes 4 3 SJ 20131111172707 003 2013 11 27 R1 0 ZTE Proprietary and Confidential ...

Page 62: ...uidelines After the enable command is run the system prompts the user to enter the management password The default value is null 4 1 8 list Purpose This command lists all available commands in the current mode Command Mode All configuration modes Syntax list 4 1 9 set auto reset Purpose This command sets the automatic logout time of the switch Command Mode Global configuration mode 4 4 SJ 20131111...

Page 63: ...me to 20 minutes zte cfg set auto reset 20 4 1 10 line vty timeout Purpose This command sets timeout duration for Telnet user login Command Mode Global configuration mode Syntax line vty timeout 1 12 Parameter Description Parameter Description 1 12 Timeout duration minutes Default 10 minutes 4 1 11 set date Purpose This command sets the date and time of the switch 4 5 SJ 20131111172707 003 2013 11...

Page 64: ... synchronization function of the switch can be enabled through Network Time Protocol NTP configuration For details of NTP configuration refer to the NTP Configuration section in this manual 4 1 12 hostname Purpose This command sets or changes the host name Command Mode Global configuration mode Syntax hostname name Parameter Description Parameter Description name Host name Example The following ex...

Page 65: ...he host name Default 32 characters Example The following example sets the length of the host name to 3 hello cfg hello cfg promptlen 3 hel cfg 4 1 14 sysLocation Purpose This command sets location information about the switch Command Mode Global configuration mode Syntax sysLocation string Parameter Description Parameter Description string Location of the switch 4 7 SJ 20131111172707 003 2013 11 2...

Page 66: ...d Mode Global configuration mode Syntax reboot time hh mm Parameter Description Parameter Description hh mm Automatic restart time The range is 00 00 to 23 59 Guidelines The write command is supported The switch can be restarted at specified time each day 4 1 17 telnet Purpose This command logs in to the remote Telnet server Command Mode Global configuration mode Syntax telnet A B C D A B C D 4 8 ...

Page 67: ...tes an administrator account The administrator can enter the configuration mode and have all the rights guest Creates a restricted account The account user can only enter the user mode and check switch information name User name 0 15 User rights By default the rights of the admin user is level 15 and the rights of a guest user is level 0 Guidelines Four accounts can be created in total including t...

Page 68: ...authentication is performed radius local RADIUS authentication is performed first If RADIUS authentication fails local authentication is performed tacacs plus Sets Terminal Access Controller Access Control System Plus TACACS authentication for the login user local tacacs plus Local authentication is performed first If local authentication fails TACACS authentication is performed tacacs plus local ...

Page 69: ...anagement authentication mode Command Mode Global configuration mode Syntax set adminauth local radius local radius radius local none tacacs plus local tacacs plus tac acs plus local Parameter Description Parameter Description local Sets management authentication to local authentication radius Sets management authentication to RADIUS authentication local radius Local authentication is performed fi...

Page 70: ...t user local admin password Purpose This command sets the management password of a local user Command Mode Global configuration mode Syntax set user local name admin password string Parameter Description Parameter Description name User name string Management password Guidelines If admin password is directly entered without any parameter it indicates that the management password is set to null Exam...

Page 71: ...s If login rights are set to admin a RADIUS user can enter the configuration mode the mode to modify configurations If login rights are set to guest the user can only query configurations in user mode the mode Default admin Example The following example enables RADIUS authentication users to have management rights zte cfg set user radius purview admin 4 1 24 set user radius admin password Purpose ...

Page 72: ... users login rights Command Mode Global configuration mode Syntax set user tacacs plus purview admin guest Parameter Description Parameter Description admin Management rights guest Access rights Guidelines All TACACS authentication users have the same login rights If login rights are set to admin a TACACS user can enter the configuration mode the mode to modify configurations If login rights are s...

Page 73: ...ing Management password Guidelines If admin password is directly entered without any parameter it indicates that the management password is set to null Example The following example sets TACACS authentication users management password to ok zte cfg set user tacacs plus admin password ok 4 1 27 set user multi user Purpose This command enables or disables multi user login Command Mode Global configu...

Page 74: ...sage Command Mode Global configuration mode Syntax cpu threshold 30 90 Parameter Description Parameter Description 30 90 Alarm threshold in the unit of When CPU usage exceeds this threshold alarm information is printed When CPU usage returns to the value that is 15 lower than the threshold fallback information is printed Default The alarm threshold for CPU usage is 80 by default Example The follow...

Page 75: ...rmation is printed When memory usage returns to the value that is 15 lower than the threshold fallback information is printed Default The alarm threshold for memory usage is 80 by default Example The following example sets the alarm threshold for memory usage to 70 zte cfg mem threshold 70 4 1 30 write Purpose This command saves the current configuration information to the Flash memory Command Mod...

Page 76: ...ed Example The following example deletes the user with the name of userx zte cfg clear user userx 4 1 32 clear reboot time Purpose This command clears the automatic reboot time Command Mode Global configuration mode Syntax clear reboot time 4 1 33 terminal monitor Purpose This command enables or disables the function of printing real time alarm information to the console terminal 4 18 SJ 201311111...

Page 77: ...e terminal 4 1 34 terminal log Purpose This command enables or disables log writing Command Mode Global configuration mode Syntax terminal log on off Parameter Description Parameter Description on Enables log writing off Disables log writing Guidelines Record log information in the RAM If it is required to save log information to the Flash memory use the command such as toFile timer 4 1 35 termina...

Page 78: ...al log timer Purpose This command configures the function of saving log information to the Flash memory automatically Command Mode Global configuration mode Syntax terminal log timer enable disable interval 1 720 Parameter Description Parameter Description enable Enables the function of saving log information to the Flash memory automatically disable Disables the function of saving log information...

Page 79: ...searches for all IGMP related commands zte cfg list include igmp 4 1 38 show terminal log include Purpose This command shows logs that contain the specified character string Command Mode All configuration modes Syntax show terminal log include string Parameter Description Parameter Description string Character string in the logs to be searched for Spaces are not supported Example The following exa...

Page 80: ...urpose This command shows the configuration for Telnet users login timeout duration Command Mode All configuration modes Syntax show line vty 4 1 41 show loginauth Purpose This command shows the login authentication mode Command Mode All configuration modes Syntax show loginauth 4 1 42 show adminauth Purpose This command shows the management authentication mode 4 22 SJ 20131111172707 003 2013 11 2...

Page 81: ...g and log configurations will be displayed 4 1 44 show terminal log Purpose This command shows the terminal log information saved in the RAM Command Mode All configuration modes Syntax show terminal log 4 1 45 clear terminal log Purpose This command clears terminal log information and the terminal_log dat file in the Flash memory Command Mode Global configuration mode 4 23 SJ 20131111172707 003 20...

Page 82: ...e all arp inspection dhcp radius AAA off on Parameter Description Parameter Description all Enables or disables the terminal monitor function for all modules By default the function is enabled arp inspection Enables or disables the terminal monitor function for the DAI module By default the function is enabled dhcp Enables or disables the terminal monitor function for the DHCP module By default th...

Page 83: ... DAI module By default the function is enabled dhcp Enables or disables the terminal log function for the DHCP module By default the function is enabled radius Enables or disables the terminal log function for the RADIUS module By default the function is enabled AAA Enables or disables the terminal log function for the AAA module By default the function is enabled off Disables the function of writ...

Page 84: ...er Operating System Software ZTE Corporation ZXR10 5250_52TM Version Number 5250 Series V2 05 11IT02 Copyright c 2001 2013 By ZTE Corporation Compiled 17 29 26 Jul 26 2013 System uptime is 0 years 0 days 0 hours 1 minutes 59 seconds Main processor arm926ejs Bootrom Version V2 00 Creation Date Jul 10 2013 System Memory 128 M bytes System Flash 256 M bytes EPLD Version Dno V1 1 PCB Version Dno V1 0 ...

Page 85: ...mmand lines that begin with the character string defined by the string parameter string Defines a character string Guidelines This command without any parameters can show all the non default configurations Example The following example shows configurations of the system zte cfg show running config 4 1 51 show start config Purpose This command shows all the non default configurations of the system ...

Page 86: ...04 00 00 by default 4 1 53 show reboot time Purpose This command shows the automatic reboot configuration Command Mode All configuration modes Syntax show reboot time 4 1 54 show cpu Purpose This command shows the CPU usage in 5 seconds 30 seconds and 2 minutes Command Mode All configuration modes Syntax show cpu Example The following example shows CPU usage zte cfg show cpu 4 28 SJ 20131111172707...

Page 87: ...The following example shows current RAM usage zte cfg show memory Current used 71 0 memory Used memory 75815 KB free memory 30856 KB 4 1 56 show fan Purpose This command shows the operational status of the fan Command Mode All configuration modes Syntax show fan Example The following example shows states of fans zte cfg show fan Switch Fans Info FANS MODE Auto DESIRED SPEED Level 0 FAN ID STATUS C...

Page 88: ...le shows the device power zte cfg show power The switch power consumption is 37 9 Watt 4 1 58 show bootpassword Purpose This command shows the plaintext of the password for entering the boot mode Command Mode All configuration modes Syntax show bootpassword 4 1 59 set bootpassword Purpose This command sets the password for entering the boot mode 4 30 SJ 20131111172707 003 2013 11 27 R1 0 ZTE Propr...

Page 89: ...nd Mode Global configuration mode Syntax set bootpassword clear 4 1 61 set fan mode auto Purpose This command sets automatic adjustment of the fan rotation speed Command Mode All configuration modes Syntax show fan Guidelines This command is invalid for the 5250 28SM switches Example The following example sets automatic adjustment of the fan rotation speed zte cfg set fan mode auto 4 31 SJ 2013111...

Page 90: ... the fan rotation speed zte cfg set fan mode manual 4 1 63 set fan speed Purpose This command sets the fan rotation speed Command Mode Global configuration mode Syntax set fan speed 0 3 7 Guidelines This command becomes effective only after the set fan mode manual command is run It is invalid for the 5250 28SM switches Switch Type Fan Rotation Speed Rotation Minute L0 L1 L2 L3 L4 L5 L6 L7 5250 28T...

Page 91: ...1500 14000 Example The following example sets the fan rotation speed to 1 zte cfg set fan speed 1 4 1 64 show Etag Purpose This command displays the electronic tag of a device Command Mode All configuration modes Syntax show Etag 4 1 65 readconfig Purpose This command reads a local file on the switch as the configuration of the switch Command Mode Global configuration mode Syntax readconfig filena...

Page 92: ...mer time one year repeating date yyyy mm dd hh mm ss yyyy mm dd hh mm ss week week day month year hh mm ss week day month year hh mm ss 60 1440 Parameter Description Parameter Description one year The DST is valid only in one year repeating The DST is valid every year date Sets the DST in year month day format week Sets the DST in week format yyyy mm dd Start date and end date of the DST hh mm ss ...

Page 93: ... 2012 00 00 00 to October 1 2012 00 00 00 zte cfg set date summer time one year date 2012 06 01 00 00 00 2012 10 01 00 00 00 2 The following example sets the DST to 00 00 00 on the first Monday in June 2012 to 00 00 00 on the last Sunday in October 2012 zte cfg set date summer time one year week 1st monday 6 2012 00 00 00 last sunday 10 2012 00 00 00 4 1 68 show summer time Purpose This command sh...

Page 94: ...an session 1 64 4 1 71 syscontact Purpose This command configures contact information for maintenance Command Mode Global configuration mode Syntax syscontact string 4 1 72 terminal record Purpose This command enables or disables the function of recording the command for modifying the latest configuration Command Mode Global configuration mode Syntax terminal record on off 4 36 SJ 20131111172707 0...

Page 95: ...nitor on terminal log on terminal log timer status disable terminal log timer interval 5 terminal record on terminal record status record time Thu Jul 1 00 27 14 2004 record user admin command line terminal record on zte cfg 4 1 73 clear running config Purpose This command clears all configuration except layer 3 interface configuration for example the device management IP address log configuration...

Page 96: ...ayed on the start screen length 1 32 characters The file path is cfg If the specified file exists the banner in the file it must be a text file is used after the system is restarted If the specified file does not exist you can write the banner and then save the banner in a file Example zte cfg set banner filename hide txt 4 1 75 set banner endwith Purpose This command sets the end identifier for e...

Page 97: ...g write Saving file please wait a minute Done 4 1 76 clear banner Purpose This command clears the banner displayed on the start screen Command Mode Global configuration mode Syntax clear banner Example The following example clears the banner displayed on the start screen zte cfg clear banner zte cfg write Saving file please wait a minute Done 4 1 77 clear login session Purpose This command deletes...

Page 98: ... off Parameter Description Parameter Description on Enables the log function off Disables the log function Guidelines This command stores logs in the RAM To save logs in the Flash memory run the toFile ti mer command 4 1 79 command log toFile Purpose This command saves logs stored in the RAM to the Flash memory Command Mode Global configuration mode Syntax command log toFile 4 40 SJ 20131111172707...

Page 99: ...obal configuration mode Syntax command log timer enable disable interval 1 720 Parameter Description Parameter Description enable Enables the automatic saving function disable Disables the automatic saving function interval Sets the interval of saving log information to the Flash memory 1 720 Interval of saving log information unit hours Default 24 hours Example The following example sets the inte...

Page 100: ...05 13 27 2004 set poe port 1 1 recover 4 1 82 show command log time range Purpose This command shows historical configuration commands based on time ranges Command Mode Global configuration mode Syntax show command log time range hh mm yyyy mm dd to hh mm yyyy mm dd Parameter Description Parameter Description hh mm Hour minute in 24 hour format yyyy mm dd Year month date Example The following exam...

Page 101: ...nment Example The following example shows environmental variables zte cfg show environment Switch System Info CURRENT POWER 8 8 Watt ENVI NAME CURRENT STATUS THRESHOLD HI THRESHOLD LOW TEMPERATURE 0 0 C 51 0 C 49 0 C CPU RATIO 37 6 80 0 65 0 MEM RATIO 67 2 80 0 75 0 4 1 84 show power module Purpose This command shows power supply module information including AC DC output voltage output current out...

Page 102: ...fg show power module 2 Power information DC AC AC output voltage 53 5V output current 0 218A output power rate 11 0W input power rate 12 0W power tag 65535 MFR information MFR ID MFR MODEL MFR REV MFR DATE MFR SERIAL ZTE PPC33 A012 V0 0 110906 229000000001 4 1 85 check file Purpose This command performs secondary validity check for a version file Command Mode File system configuration mode Syntax ...

Page 103: ... command enables or disables ports Command Mode Global configuration mode Syntax set port portlist enable disable Parameter Description Parameter Description portlist Port list enable Enables ports disable Disables ports Guidelines Ports are enabled by default which is not related to the optoelectronic status of combo ports Example The following example enables ports 1 5 6 7 and 11 zte cfg set por...

Page 104: ...ical mode first up Ports are up in order which means that the port that establishes the connection first is up first fiber Optical ports are up first copper Electrical ports are up first Guidelines After optoelectronic switching the configuration of some special ports such as the MDIX port may be restored to the default For example after the MDIX port is configured in copper mode if the mode is sw...

Page 105: ...figure what speed and duplex mode that a local port uses to negotiate with a peer port in the port negotiation process For example if a GE port is set to speed100 fullduplex the GE port will negotiate with the peer port at speed100 fullduplex If maxspeed is selected it is 100M fullduplex for a 100M port and 1000M fullduplex for a 1000M port Default By default maxspeed is selected 4 2 4 set port du...

Page 106: ...ose This command sets the port rate to 10 Mbps 100 Mbps or 1000 Mbps Command Mode Global configuration mode Syntax set port portlist speed 10 100 1000 auto Parameter Description Parameter Description portlist Port list 10 The port rate is 10 Mbps 100 The port rate is 100 Mbps 1000 The port rate is 1000 Mbps auto The port rate is determined by negotiation Default By default the port rate is determi...

Page 107: ...utomatic line sequence identification normal Ordinary line sequence crossover Crossover line sequence Guidelines Only copper mode ports support the MDIX function Default auto is selected 4 2 7 set port flowcontrol Purpose This command enables or disables the flow control or back pressure function of the specified ports Command Mode Global configuration mode Syntax set port portlist flowcontrol ena...

Page 108: ...e enabled Default The flow control and back pressure functions are disabled 4 2 8 set port description Purpose This command sets the description of a port Command Mode Global configuration mode Syntax set port portlist description string Parameter Description Parameter Description portlist Port list string Port description Guidelines A port description contains a maximum of 200 characters Example ...

Page 109: ... be received The untag messages will be dropped untag Only untag messages can be received The tag messages will be dropped all All messages can be handled Guidelines For this command the message types include untag and tag Default By default all messages can be handled 4 2 10 set jumbo port Purpose This command enables or disables the jumbo frame function Command Mode Global configuration mode Syn...

Page 110: ...frame function is disabled 4 2 11 set port pvid Purpose This command sets the default VLAN Identifier VID for ports Command Mode Global configuration mode Syntax set port portlist pvid 1 4094 Parameter Description Parameter Description portlist Port list 1 4094 4 2 12 set port statistics mode Purpose This command sets the message statistics mode Command Mode Global configuration mode 4 52 SJ 20131...

Page 111: ...ple messages of 64 bytes and messages of 65 to 127 bytes It does not affect the statistics for message receiving and sending Default ingress is selected 4 2 13 set sleep mode Purpose This command enables or disables the port sleep mode Command Mode Global configuration mode Syntax set sleep mode enable disable Parameter Description Parameter Description enable Enables the port sleep mode disable D...

Page 112: ...ters The numbers 1 to 255 cannot be used Guidelines Port names can be used for port configuration Example The following example names port 1 as userx zte cfg create port 1 name userx 4 2 15 clear port Purpose This command clears the names descriptions statistics and multicast filtering status flags of ports Command Mode Global configuration mode Syntax clear port portlist name statistics descripti...

Page 113: ...rpose This command shows configurations and operational status of ports Command Mode All configuration modes Syntax show port portlist Parameter Description Parameter Description portlist Port list The command without the portlist parameter shows the configurations and operational status of all ports Guidelines The port name and description will not be displayed if they are not configured Example ...

Page 114: ...ays 0 hours 0 minutes 2 seconds 4 2 17 show port statistics Purpose This command shows port statistics Command Mode All configuration modes Syntax show port portlist statistics 1min_unit 5min_unit Parameter Description Parameter Description portlist Port list 1min_unit Traffic statistics in 1 minute 5min_unit Traffic statistics in 5 minutes Guidelines The command without the 1min_unit and 5min_uni...

Page 115: ...Id 1 PortName Port rate input 0Kbps output 0Kbps Port utilization input 0 output 0 4 2 19 show port brief Purpose This command shows port brief information Command Mode All configuration modes Syntax show port portlist brief Parameter Description Parameter Description portlist Port list Guidelines if one end is auto negotiation ports and the other end is forced speed ports the interconnection resu...

Page 116: ...1 b Port summary PortId MediaType Mode Speed Link Description 1 1000BaseT full 1000Mbps up TheMaxSpeedOfThisPortIs1000Mbps 4 2 20 show port vlan Purpose This command shows the VLAN to which a port belongs Command Mode All configuration modes Syntax show port portlist vlan Parameter Description Parameter Description portlist Port list Example The following example shows the VLAN to which port 2 bel...

Page 117: ...st The command without the portlist parameter shows jumbo configurations of all ports 4 2 22 show vct Purpose This command shows the virtual line detection result of a port Command Mode All configuration modes Syntax show vct port portid Parameter Description Parameter Description portid ID of a port Guidelines Only copper mode ports support VCT detection 4 59 SJ 20131111172707 003 2013 11 27 R1 0...

Page 118: ... displayed For a GE port four pairs MDI 0 and MDI 1 of detection results are displayed 4 2 24 set port eee Purpose This command enables or disables the port energy saving function Command Mode All configuration modes Syntax set port portlist eee enable disable Parameter Description Parameter Description portlist Port list enable Enables the port energy saving function disable Disables the port ene...

Page 119: ...bled when the number of down times is greater than or equal to 3 within 30 seconds the port will be blocked for a protection period After the protection period expires the port becomes active again Default The port protection function is disabled Example The following example enables the port protection function for ports 1 5 6 7 and 11 zte cfg set port 1 5 7 11 protect enable 4 2 26 set port prot...

Page 120: ...figuration modes Syntax set cable diag enable disable Parameter Description Parameter Description enable Enables the function of virtual cables detecting logs disable Disables the function of virtual cables detecting logs Guidelines After the function of virtual cables detecting logs is enables you can view the logs by using the show cable diag command Default By default the function is disabled E...

Page 121: ...ccordance with port priorities including critical high and low If port priorities are the same power supply is provided from the port with the smallest port number to the port with the largest port number If the POE function is disabled power is removed from the port with the smallest port number to the port with the largest port number Default The POE function is disabled Example The following ex...

Page 122: ...he port is larger than the value configured power supply to the port may be affected Default Standard power 30 W Example The following example sets the maximum power of ports 1 3 and 5 to 30 W zte cfg set poe port 1 1 1 3 1 5 pd max power ext 30 4 3 3 set poe port priority Purpose This command sets POE priorities for ports Command Mode Global configuration mode Syntax set poe port portlist priorit...

Page 123: ...oe port forcepower Purpose This command enables or disables the forced power on function for ports Command Mode Global configuration mode Syntax set poe port portlist forcepower enable disable Parameter Description Parameter Description portlist Port list enable Enables the forced power on function disable Disables the forced power on function Guidelines When the forced power on function is enable...

Page 124: ...ortlist Port list enable Enables the extend detection function disable Disables the extend detection function Guidelines If the extend detection function is enabled power supply will be provided for ports when non standard PD devices such as Cisco high capacity devices are detected If the extend detection function is disabled power supply will be provided for ports only when standard PD devices ar...

Page 125: ...ut power power supply cannot be provided for this port until a power preemption event occurs Due to the event ports with lower priorities will be disabled and power supply will be provided for the port During power supply if the device s output power is larger than the maximum output power due to power consumption changes an alarm is activated If the device s output power is larger than the sum of...

Page 126: ... 8 show poe device Purpose This command shows POE status of the switch Command Mode Global configuration mode Syntax show poe device Example The following example shows POE status of the switch zte cfg show poe device PSE firmware version ZTE 3 3 PSE max power configed 250 watt PSE power threshold 15 watt PSE max power 250 watt PSE current power 0 watt PSE average power 0 watt PSE peak power 0 wat...

Page 127: ...f power device searching power device type not power device 802 3af classification unknown current power 0 watt avgerage power 0 watt peak power 0 watt port 1 2 power up off power device disabled power device type open no load 802 3af classification unknown current power 0 watt avgerage power 0 watt peak power 0 watt 4 3 10 show poe config Purpose This command shows power over Ethernet POE configu...

Page 128: ...ble 15 4w low disable disable 1 4 disable 15 4w low disable disable 1 5 disable 15 4w low disable disable 1 6 disable 15 4w low disable disable 4 3 11 set poe port mode Purpose The command sets the PoE mode to static class or lldp Command Mode Global configuration mode Syntax set poe port portlist mode class lldp static Parameter Description Parameter Description portlist Port list If this paramet...

Page 129: ... PoE port 1 1 exceeds the limit to shutdown zte cfg set poe port 1 1 power exceed shutdowm 4 3 13 set poe port protect time Purpose This command sets the recovery time when the power of a PoE port exceeds the limit Command Mode Global configuration mode Syntax set poe port portlist protect time time Parameter Description Parameter Description portlist Port list If this parameter is not specified i...

Page 130: ...ts Example The following example sets the recovery function after the power of PoE port 1 1 exceeds the limit zte cfg set poe port 1 1 recover 4 4 Port Mirroring 4 4 1 set mirror session add source port Purpose This command adds ingress egress mirroring source ports in accordance with a session Command Mode Global configuration mode Syntax set mirror session 1 3 add source port portlist ingress eg...

Page 131: ...ription Parameter Description 1 3 Mirror function session number Three sessions can be supported 1 28 Port number Port ranges vary with different device models ingress Ingress mirroring port In a session the egress mirroring port and ingress mirroring port can be different mirroring ports egress Egress mirroring port In a session the egress mirroring port and ingress mirroring port can be differen...

Page 132: ...he following example deletes the ingress mirroring source ports 1 5 6 7 and 12 zte cfg set mirror session 1 delete source port 1 5 7 12 ingress 4 4 4 set mirror session delete dest port Purpose This command deletes ingress egress mirroring destination ports in accordance with a session and disables the RSPAN function of the mirroring ports Command Mode Global configuration mode Syntax set mirror s...

Page 133: ...ion 1 delete dest port 1 ingress 4 4 5 set mirror rspan tag vlan id priority Purpose This command sets the RSPAN tag format including VLAN ID and priority Command Mode Global configuration mode Syntax set mirror rspan tag vlan id 1 4094 priority 0 7 ingress egress Parameter Description Parameter Description 1 4094 VLAN ID in the RSPAN tag 0 7 Priority field in the RSPAN tag ingress Sets the RSPAN ...

Page 134: ...ing rate is 1 2 If this parameter value is 1 the sampling rate is 1 1 100 egress Sets the egress sampling rate ingress Sets the ingress sampling rate Guidelines All sessions ingress mirroring ports share the same sampling rate and all sessions egress mirroring ports also share one sampling rate 4 4 7 clear mirror session Purpose This command clears mirror configurations in a session Command Mode G...

Page 135: ... Parameter Description 1 3 Mirror function session number Guidelines The content to be displayed includes the RSPAN tag information of ingress and egress Example The following example shows the configuration of mirror session 1 zte cfg show mirror session 1 Session 1 Ingress mirror information Source port none Destination port 2 Rspan tag vlan 2 priority 7 Egress mirror information Source port 1 5...

Page 136: ...span VLAN tag priority 7 vlan 2 Egress Rspan VLAN tag priority 6 vlan 2 4 4 10 show mirror statistical Purpose This command shows the ingress egress sampling rates Command Mode All configuration modes Syntax show mirror statistical Example The following example shows the ingress egress sampling rates zte cfg show mirror statistical Ingress statistical mirror sample interval 1 Egress statistical mi...

Page 137: ...LAN list enable Enables VLANs disable Disables VLANs Guidelines VLAN 1 cannot be disabled Default VLAN 1 is enabled and other VLANs are disabled Example The following example enables VLANs 5 6 7 and 12 zte cfg set vlan 5 7 12 enable 4 5 2 set vlan add port Purpose This command adds ports to VLANs and configures the attribute of the ports in the VLANs Command Mode Global configuration mode 4 79 SJ ...

Page 138: ... 9 10 and 18 to VLANs 1 5 6 7 and 12 zte cfg set vlan 1 5 7 12 add port 2 8 10 18 tag 4 5 3 set vlan delete port Purpose This command deletes ports from VLANs Command Mode Global configuration mode Syntax set vlan vlanlist delete port portlist Parameter Description Parameter Description vlanlist VLAN list portlist Port list Example The following example deletes ports 2 9 10 11 and 16 from VLANs 1 ...

Page 139: ...st tag Trunk tag is added to VLANs untag Trunk untag is added to VLANs Guidelines A logic link is named as trunk after link aggregation One trunk includes multiple physical ports Default The default trunk attribute is untag Example The following example adds trunk 1 with tag to VLANs 1 5 6 7 and 12 zte cfg set vlan 1 5 7 12 add trunk 1 tag 4 5 5 set vlan delete trunk Purpose This command deletes t...

Page 140: ...mand enables or disables the protocol VLAN function on ports Command Mode Global configuration mode Syntax set port portlist protocol vlan enable disable Parameter Description Parameter Description portlist Port list enable Enables the protocol VLAN function disable Disables the protocol VLAN function Default The protocol VLAN function is disabled Example The following example enables the protocol...

Page 141: ...r ethernet2 Matches ethernet2 type messages llc Matches llc type messages snap Matches snap type messages 0xHHHH Messages Ethernet type field 1 4094 VLAN ID allocated Guidelines Eight templates are supported 4 5 8 create vlan name Purpose This command creates a VLAN name Command Mode Global configuration mode Syntax create vlan 1 4094 name name Parameter Description Parameter Description 1 4094 VL...

Page 142: ...d clears a VLAN name Command Mode Global configuration mode Syntax clear vlan vlanlist name Parameter Description Parameter Description vlanlist VLAN list Example The following example clears the names of VLANs 1 5 6 7 and 12 zte cfg clear vlan 1 5 7 12 name 4 5 10 clear vlan protocol mapping session no Purpose This command clears the configuration of a protocol VLAN template Command Mode Global c...

Page 143: ...ter Description Parameter Description vlanlist VLAN list Example The following example shows all VLAN information zte cfg show vlan VlanType 802 1q vlan VlanId 1 VlanStatus enabled VlanName VlanMode Static Tagged ports Untagged ports 2 28 Untagged trunks 1 15 Forbidden ports 4 5 12 show vlan protocol mapping Purpose This command shows protocol VLAN configurations 4 85 SJ 20131111172707 003 2013 11...

Page 144: ...a port Command Mode Global configuration mode Syntax set vlan voice vlan port 1 52 ingress vlan vlanlist voice vlan 1 4094 Parameter Description Parameter Description 1 52 Port number Different devices have different port number ranges In the syntax the 5250 52TC device is used as an example vlanlist User VLAN id list 1 4094 Voice VLAN id Guidelines Port configurations cannot be modified or covere...

Page 145: ...50 52TC device is used as an example 1 32 OUI ID Up to 32 OUIs can be configured on a port HH HH HH HH HH HH first MAC address HH HH HH HH HH HH second MAC address mask 4 6 3 set vlan voice vlan qos profile Purpose This command modifies UP DSCP or both Command Mode Global configuration mode Syntax set vlan voice vlan 1 4094 qos profile 0 127 modify up dscp all Parameter Description Parameter Descr...

Page 146: ...lan voice vlan 1 4094 qos profile disable Parameter Description Parameter Description 1 4094 Voice VLAN ID 4 6 5 clear vlan voice vlan Purpose This command clears all voice VLAN configurations of a port Command Mode Global configuration mode Syntax clear vlan voice vlan port 1 52 Parameter Description Parameter Description 1 52 Port number Different devices have different port number ranges In the...

Page 147: ... 5250 52TC device is used as an example Guidelines In the port configuration voice VLAN this command fails no voice VLAN on port can be executed successfully 4 6 7 clear vlan voice vlan port oui id Purpose This command clears the specified OUI on a port Command Mode Global configuration mode Syntax clear vlan voice vlan port 1 52 oui id 1 32 Parameter Description Parameter Description 1 52 Port nu...

Page 148: ...Syntax show vlan voice vlan Guidelines The default OUI is not displayed 4 6 9 show vlan voice vlan port Purpose This command shows voice VLAN configurations on a port Command Mode Global configuration mode Syntax show vlan voice vlan port 1 52 Parameter Description Parameter Description 1 52 Port number Different devices have different port number ranges In the syntax the 5250 52TC device is used ...

Page 149: ...e vlan user table port Purpose This command shows the user table of a port Command Mode Global configuration mode Syntax show vlan voice vlan user table port 1 52 Parameter Description Parameter Description 1 52 Port number Different devices have different port number ranges In the syntax the 5250 52TC device is used as an example 4 6 12 show vlan voice vlan qos Purpose This command shows QoS conf...

Page 150: ...ption portlist Port list enable Enables the port security function disable Disables the port security function Guidelines If the port security function is enabled the port MAC learning function is disabled and unknown source MAC messages are not forwarded The port security function can work with the authentication function to enable the access service Default The port security function is disabled...

Page 151: ...kets disable Disables the unregistered multicast filtering function which means to forward the unregistered multicast packets Example The following example enables ports 1 5 6 7 and 11 to forward multicast packets zte cfg set port 1 5 7 11 multicast filter disable 4 7 3 set trunk multicast filter Purpose This command enables or disables the unregistered multicast filtering function for trunks Comm...

Page 152: ...H HH port 1 28 vlan 1 4094 Parameter Description Parameter Description HH HH HH HH HH HH MAC address Multicast addresses broadcast addresses and all zero addresses cannot be added 1 28 Port number Different devices have different port number ranges In the syntax the 5250 28TC device is used as an example 1 4094 VLAN ID Guidelines If a static MAC entry is added the MAC address will not be aging or ...

Page 153: ...mmand adds a MAC permanent entry based on port and VLAN Command Mode Global configuration mode Syntax set mac add permanent HH HH HH HH HH HH port 1 28 vlan 1 4094 Parameter Description Parameter Description HH HH HH HH HH HH MAC address Multicast addresses broadcast addresses and all zero addresses cannot be added 1 28 Port number Different devices have different port number ranges In the syntax ...

Page 154: ...sses cannot be added 1 15 Trunk ID 1 4094 VLAN ID Guidelines If a permanent MAC entry is added the MAC address will not be aging or floating and will disappear after the device is restarted 4 7 8 set mac delete Purpose This command deletes all MAC address entries Command Mode Global configuration mode Syntax set mac delete Guidelines Some special MAC address entries such as layer 3 interface addre...

Page 155: ...addresses can be deleted by using special methods as deleting layer 3 interfaces 4 7 10 set mac delete port trunk vlan Purpose This command deletes all dynamic static permanent MAC address entries based on port trunk VLAN Command Mode Global configuration mode Syntax set mac delete port 1 28 trunk 1 15 vlan 1 4094 dynamic static permanent Parameter Description Parameter Description port Deletes MA...

Page 156: ...h as layer 3 interface addresses cannot be deleted These MAC addresses can be deleted by using special methods as deleting layer 3 interfaces 4 7 11 set mac delete dynamic Purpose This command deletes all dynamic MAC address entries Command Mode Global configuration mode Syntax set mac delete dynamic Guidelines Some special MAC address entries such as layer 3 interface addresses cannot be deleted ...

Page 157: ...mmand deletes all static MAC address entries Command Mode Global configuration mode Syntax set mac delete static Guidelines Some special MAC address entries such as layer 3 interface addresses cannot be deleted These MAC addresses can be deleted by using special methods as deleting layer 3 interfaces 4 7 14 set mac aging time Purpose This command sets the device s MAC address aging time Command Mo...

Page 158: ...n Parameter Description source Source MAC address filtering destination Destination MAC address filtering both Source MAC address and destination MAC address bidirectional filtering HH HH HH HH HH HH MAC address to be filtered 1 4094 VLAN ID of the MAC address to be filtered Guidelines If a message matches the filtering configuration it will be dropped 4 7 16 set mac learning Purpose This command ...

Page 159: ... Disables the MAC address learning function mode Further controls the learning mode when the MAC address learning function is started automatic Automatic address learning cpu controlled CPU controlled learning Guidelines In various configuration modes if learning enabling conflicts with learning disabling the learning is disabled If automatic learning conflicts with CPU controlled learning CPU con...

Page 160: ...s the number of VLAN MAC addresses 1 4094 VLAN ID 0 16384 Number of the MAC addresses Guidelines If multiple configurations are in conflict use the one that reaches the threshold first When the threshold is reached the MAC address learning is disabled but messages can be forwarded Default The function of limiting the number of MAC addresses is disabled 4 7 18 set mac unknown filter Purpose This co...

Page 161: ... unknown sources is disabled 4 7 19 set mac to permanent Purpose This command sets the function of transforming MAC addresses from dynamic to permanent in batches Command Mode Global configuration mode Syntax set mac to permanent port 1 28 trunk 1 15 enable disable max number 1 128 Parameter Description Parameter Description port Sets on a port the function of transforming MAC addresses from dynam...

Page 162: ... transformed MAC addresses is exceeded the transformation is stopped If not the later learned MAC addresses are transformed to permanent addresses automatically until the maximum number is reached Permanent MAC addresses can be recovered after the device is restarted 4 7 20 set mac to permanent auto save time Purpose This command sets autosave time for MAC address transformation to permanent Comma...

Page 163: ...namic to static in batches 1 15 Trunk ID vlan Sets on a VLAN the function of transforming MAC addresses from dynamic to static in batches 1 4094 VLAN ID enable Enables the function of transforming MAC addresses from dynamic to static in batches disable Disables the function of transforming MAC addresses from dynamic to static in batches Guidelines If the function of transforming MAC addresses from...

Page 164: ...witch disable Disables the alarm switch Default The drift alarm switch is disabled The threshold alarm switch is enabled Example The following example enables the MAC event alarm function zte cfg set mac logging alarm station move enable 4 7 23 set mac logging alarm interval Purpose This command sets the interval for MAC event alarm output Command Mode Global configuration mode Syntax set mac logg...

Page 165: ... enable disable Parameter Description Parameter Description portlist Port list enable Enables the MAC protection function disable Disables the MAC protection function 4 7 25 set mac protect port action Purpose This command sets the MAC protection action Command Mode Global configuration mode Syntax set mac protect port portlist action shutdown restrict protect Parameter Description Parameter Descr...

Page 166: ...batch transformed and other configured MAC addresses Example zte cfg show mac Total MAC Address 6 MAC Address Peak value 6 MAC Address Peak time Thu Jul 1 00 05 03 2004 Flags Per permanent Stc static ToP to_permanent ToS to_static Sav auto saved mac address SrF source filter DsF destination filter Time day hour min sec Frm mac from where 0 LEARN 1 CONFIG 2 DUPLICATE 3 VPN 4 802 1X 5 LAYER 3 6 DHCP...

Page 167: ...unning config set mac aging time 60 set mac filter both 00 00 00 00 11 22 vlan 1 4 7 28 show mac all type Purpose This command shows MAC address entry contents based on port trunk VLAN Command Mode Global configuration mode Syntax show mac all type port 1 28 trunk 1 15 vlan 1 4094 Parameter Description Parameter Description port Shows MAC addresses based on port 1 28 Port number Different devices ...

Page 168: ...show mac dynamic learning limit permanent static port 1 28 trunk 1 15 vlan 1 4094 Parameter Description Parameter Description dynamic Shows dynamic MAC addresses only permanent Shows permanent MAC addresses only static Shows static MAC addresses only learning Shows MAC learning mode configurations limit Shows the configuration of MAC learning quantity limitation port Shows MAC addresses based on p...

Page 169: ... mode Syntax show mac mac address HH HH HH HH HH HH Parameter Description Parameter Description HH HH HH HH HH HH MAC address 4 7 31 show mac unknown filter Purpose This command shows the configuration of the unknown source message filtering function based on global port trunk Command Mode Global configuration mode Syntax show mac unknown filter port 1 28 trunk 1 15 Parameter Description Parameter...

Page 170: ...d shows the device s MAC address aging time Command Mode Global configuration mode Syntax show mac aging time Example zte cfg show mac aging time MAC global aging time 360 s 4 7 33 show mac filter Purpose This command shows the source destination MAC address filtering configurations Command Mode All configuration modes Syntax show mac filter Example zte cfg show mac filter MAC Filter Configuration...

Page 171: ...rm configurations Command Mode All configuration modes Syntax show mac logging alarm Example zte cfg show mac logging alarm MAC Logging Alarm Switch Table logging alarm station move enable logging alarm threshold state disable 4 7 35 set mac learning except session Purpose This command sets a session that does not learn specific MAC addresses Command Mode Global configuration modes Syntax set mac ...

Page 172: ...he VLAN 1 4094 VLAN ID Guidelines After a session is bound with a port trunk the session does not learn the matched MAC addresses but forwards them 4 7 36 set mac learning except session unbind Purpose This command removes the binding relationship between ports trunks and all sessions Command Mode Global configuration modes Syntax set mac learning except port portlist trunk trunklist session unbin...

Page 173: ...st trunk trunklist session 1 100 bind unbind Parameter Description Parameter Description port Ports bound with the session portlist Port list trunk Trunks bound with the session portlist Trunk list session Session in the binding relationship 1 100 Session ID bind Binds the ports trunks with the session unbind Unbinds the ports trunks from the session Guidelines This command binds ports trunks with...

Page 174: ...arning except bind Purpose This command shows the binding relationship between ports trunks and sessions Command Mode All configuration modes Syntax show mac learning except port portlist trunk trunklist Example zte cfg show mac learning except port 1 Mac Learning Exception Port Bind Session Port Id Session List 1 4 7 40 set mac delete peak Purpose This command deletes peak MAC value and time Comm...

Page 175: ...Parameter Description 1 120 MAC peak record interval minutes Default The MAC peak record interval is 5 minutes 4 7 42 show mac peak Purpose This command shows the MAC peak value Command Mode All configuration modes Syntax show mac peak Example The following example shows MAC peak value informations including the MAC and the maximum value and the utilization rate of CPU zte cfg show mac peak 4 117 ...

Page 176: ...tion modes Syntax show mac protect Guidelines The state enabled or disabled of the MAC protection function protection triggering configuration and protection state are displayed 4 8 MAC Authentication Configuration 4 8 1 aaa control mac authentication Purpose This command enables or disables the MAC authentication function Command Mode NAS configuration mode Syntax aaa control mac authentication e...

Page 177: ...nd Mode NAS configuration mode Syntax aaa control mac authentication session 1 3 range HH HH HH HH HH HH HH HH HH HH HH HH Parameter Description Parameter Description 1 3 Session number HH HH HH HH HH HH first MAC address HH HH HH HH HH HH second MAC mask Example The following example configures the MAC address of session 1 to 00 1d 0f 22 57 0c and the mask to ff ff ff ff 00 00 meaning that the MA...

Page 178: ...lowing example clears MAC addresses of session 1 zte cfg nas clear mac authentication session 1 4 8 4 clear mac authentication client Purpose This command clears all clients authenticated by MAC addresses Command Mode NAS configuration mode Syntax clear mac authentication client 4 8 5 clear mac authentication client mac Purpose This command clears the clients authenticated by the specified MAC Com...

Page 179: ...mmand Mode NAS configuration mode Syntax clear mac authentication client port portlist vlan vlanlist Parameter Description Parameter Description portlist Port list vlanlist VLAN list 4 8 7 show aaa mac authentication Purpose This command shows MAC authentication configurations Command Mode All configuration modes Syntax show aaa mac authentication Example The following example shows MAC authentica...

Page 180: ...mation about the clients that are authenticated by MAC addresses Command Mode All configuration modes Syntax show aaa mac authentication client Example The following example shows the status of the clients that are authenticated by MAC addresses zte cfg nas show aaa mac authentication client MaxClients 256 OnlineClients 0 4 9 LACP Configuration 4 9 1 set trunk pvid Purpose This command sets the de...

Page 181: ...ble Purpose This command enables or disables the Link Aggregation Control Protocol Command Mode Global configuration mode Syntax set lacp enable disable Parameter Description Parameter Description enable Enables the LACP disable Disables the LACP Default The LACP is disabled 4 9 3 set lacp aggregator port Purpose This command adds deletes the desired ports to from the specified LACP aggregator Com...

Page 182: ...ose This command sets an aggregation mode for aggregators Command Mode Global configuration mode Syntax set lacp aggregator 1 15 mode dynamic static mixed Parameter Description Parameter Description 1 15 Aggregator number static The aggregation mode is static dynamic The aggregation mode is dynamic mixed The aggregation mode is mixed Default The default mode is dynamic mode Example The following e...

Page 183: ...lines If the aggregation mode is dynamic the aggregation can be successful only when at least one end of the links is active If neither of the ends are active the aggregation fails To modify the aggregation mode of a port add the port to a LACP aggregation group first Default Active negotiation mode 4 9 6 set lacp port timeout Purpose This command sets timeout processing for the ports to be aggreg...

Page 184: ...cfg set lacp port 1 5 7 timeout long 4 9 7 set lacp priority Purpose This command sets the LACP priority Command Mode Global configuration mode Syntax set lacp priority 1 65535 Parameter Description Parameter Description 1 65535 Priority any number ranging from 1 to 65535 Default The default priority is 32768 4 9 8 set lacp load balance Purpose This command sets the LACP load balance mode Command ...

Page 185: ...ce is based on message L4 header data Guidelines All aggregation groups use the same load balance mode 4 9 9 show trunk Purpose This command shows trunks PVIDs and the configuration of unregistered multicast filtering Command Mode All configuration modes Syntax show trunk trunklist Parameter Description Parameter Description trunklist Trunk list Example The following example shows the PVID of trun...

Page 186: ...lowing example shows the VLAN to which trunk 1 belongs zte cfg show trunk 1 vlan TrunkId 1 Tagged in vlan Untagged in vlan 1 4 9 11 show lacp Purpose This command shows LACP global configurations Command Mode All configuration modes Syntax show lacp Example The following example shows LACP global configurations zte cfg show lacp Lacp is enabled Lacp priority is 1 Load balance is based on L2 hash m...

Page 187: ...cfg show lacp aggregator GroupNum Attached Ports Active Ports GroupMode 1 2 Null Dynamic 2 Null Null Dynamic 3 Null Null Dynamic 4 Null Null Dynamic 5 Null Null Dynamic 6 Null Null Dynamic 7 Null Null Dynamic 8 Null Null Dynamic 9 Null Null Dynamic 10 Null Null Dynamic 11 Null Null Dynamic 12 Null Null Dynamic 13 Null Null Dynamic 14 Null Null Dynamic 15 Null Null Dynamic 4 9 13 show lacp aggregat...

Page 188: ...ow lacp port portlist Parameter Description Parameter Description portlist Port list Example The following example shows the aggregation status of LACP member port 2 zte cfg show lacp port 2 PortID 2 Port status Select Unselected Loop False Aggnum 1 PartnerId Null Status Down PktForPrc 0 Lacp key Actor_key 258 Partner_key 256 ActorMachine Rec machine Port_Disabled Mux machine Detached ActorStatus ...

Page 189: ...uration modes Syntax clear trunk trunklist multicast filter Parameter Description Parameter Description trunklist Trunk list multicast filter Clears the multicast filtering enable disable flag and restores the default status Example The following example clears the multicast filtering flag of trunks 1 2 and 3 zte cfg clear trunk 1 3 multicast filter 4 10 IGMP Snooping Configuration 4 10 1 set igmp...

Page 190: ...ete vlan Purpose This command adds or deletes multicast snooping VLANs Command Mode Global configuration mode Syntax set igmp snooping add delete vlan vlanlist Parameter Description Parameter Description add Adds multicast snooping VLANs delete Deletes multicast snooping VLANs vlanlist VLAN list Guidelines ZXR10 5250 supports 1024 multicast snooping VLANs Example The following example configures m...

Page 191: ...t reaches the maximum limit and the port receives one more report packet the multicast group sending the latest report packet will replace the multicast group that does not respond to the query message for the longest time Example The following example sets the maximum number of multicast groups for VLANs 1 to 10 and ports 1 to 10 to 100 zte cfg set igmp snooping add maxnum 100 vlan 1 10 zte cfg s...

Page 192: ...disable Disables the IGMP multicast ring network function Guidelines The IGMP multicast ring network function can be realized simply by the IGMP module not depending on other ring network modules Default The IGMP multicast ring network function is disabled Example The following example enables the IGMP multicast ring network function zte cfg set igmp snooping multicast ring enable 4 10 6 set igmp ...

Page 193: ...cade port 51 52 4 10 7 set igmp snooping monitor ring enable disable Purpose This command enables or disables the IGMP ring network monitoring function Command Mode Global configuration mode Syntax set igmp snooping monitor ring enable disable Parameters Parameter Description enable Enables the ring network monitoring function disable Disables the ring network monitoring function Guidelines When t...

Page 194: ...ru nklist Parameter Description Parameter Description 1 4094 VLAN ID to from which a static group is to be added deleted add Adds a static group delete Deletes a static group A B C D Group IP address portlist Ports to be added to the static group trunklist Trunks to be added to the static group Example The following example adds the static multicast group 230 40 44 167 to VLAN 1 and adds ports 1 t...

Page 195: ...ollowing example adds routing ports 9 and 10 to VLAN 1 zte cfg set igmp snooping vlan 1 add smr port 9 10 4 10 10 set igmp snooping private group Purpose This command adds a private group and enables or disables the private group function Command Mode Global configuration mode Syntax set igmp snooping private group A B C D enable disable Parameter Description Parameter Description A B C D Private ...

Page 196: ...ooping timeout route host Purpose This command sets the aging time of router host Command Mode Global configuration mode Syntax set igmp snooping timeout host router time Parameter Description Parameter Description host Sets time out of hosts router Sets time out of routers time Aging time The value is 0 or ranges from 100 through 2147483647 unit 100 milliseconds The value 0 means that hosts or ro...

Page 197: ...meter Description 10 2147483647 Interval for the switch to send query messages The unit is 100 milliseconds Default By default the interval for the switch to send query messages is 125 seconds By default the aging time is the sum of the double query time and the response time 10 seconds Example The following example sets the interval for the switch to send query messages to 140 seconds zte cfg set...

Page 198: ...lt The waiting time is 100 that is 10 seconds Example The following example sets the waiting time to 15 seconds zte cfg set igmp snooping response interval 150 4 10 14 set igmp snooping last member query Purpose This command sets the querying circle of the last member Command Mode Global configuration mode Syntax set igmp snooping last member query 10 250 Parameter Description Parameter Descriptio...

Page 199: ...y function disable Disables the query function Default Disables query function Example The following example enables the query function for VLANs 1 to 10 zte cfg set igmp snooping query vlan 1 10 enable 4 10 16 set igmp snooping query version Purpose This command sets the IGMP version of query messages sent by the switch Command Mode Global configuration mode Syntax set igmp snooping query version...

Page 200: ...eave enable disable Parameters Parameter Description enable Enables the fast leave function disable Disables the fast leave function Default The fast leave function is disabled Example The following example enables the fast leave function zte cfg set igmp snooping fastleave enable 4 10 18 set igmp snooping v3 enable disable Purpose This command enables or disables the IGMP V3 function Command Mode...

Page 201: ...d sets the version that the switch responds to the query messages sent by the router Command Mode Global configuration mode Syntax set igmp snooping proxy version v2 auto Parameters Parameter Description v2 Sends V2 report messages to the router auto Self adaptive Automatically selects the version of report messages in accordance with the interaction with the router 4 10 20 set igmp snooping cross...

Page 202: ...is command enables or disables the multicast filtering function Command Mode Global configuration mode Syntax set igmp filter enable disable Parameters Parameter Description enable Enables the multicast filtering function disable Disables the multicast filtering function Default The multicast filtering function is disabled 4 10 22 set igmp filter add delete groupip vlan Purpose This command enable...

Page 203: ...fg set igmp filter add groupip 231 0 0 100 vlan 1 10 4 10 23 set igmp filter add delete grouplist mask vlan Purpose This command adds or deletes the filtering in one or multiple specified VLANs A maximum of 32 entries can be specified An IP and mask determines an entry Command Mode All configuration modes Syntax set igmp filter add delete grouplist A B C D mask A B C D vlan vlanlist Parameters Par...

Page 204: ...specified VLANs Command Mode Global configuration mode Syntax set igmp filter add delete sourceip A B C D vlan vlanlist Parameters Parameter Description add Enables the filtering of the specified source in the specified VLANs delete Disables the filtering of the specified source in the specified VLANs A B C D IP address of the source to be filtered vlanlist VLAN list 4 10 25 set igmp filter add de...

Page 205: ...and shows the global configuration of IGMP snooping Command Mode All configuration modes Syntax show igmp snooping Example The following example shows the global configuration of IGMP snooping zte cfg show igmp snooping IGMP snooping disabled RouterTimeout 2600 FastLeave disabled HostTimeout 2600 QueryInterval 1250 CrossVlan snooping disabled ResponseQueryInterval 100 LastMemberQueryInterval 10 Sn...

Page 206: ...l display the VLAN multicast group quantity limitation and snooping result The command with the host router parameter will display the configuration and listening of hosts routers in the VLAN Examples 1 The following example shows the global snooping result of the switch zte cfg show igmp snooping vlan Maximal group number 1024 Current group number 0 There s no active group 2 The following example...

Page 207: ...roups Command Mode All configuration modes Syntax show igmp snooping port portlist Parameter Parameter Description portlist Port list Example The following example shows all ports multicast information zte cfg show igmp snooping port PortId 1 Maximal group number 100 Current group number 0 Max groups action default PortId 2 Maximal group number 100 Current group number 0 Max groups action default ...

Page 208: ...ng v3 port 1 28 trunk 1 15 Parameter Description Parameter Description 1 28 Port number Different devices have different port number ranges In the syntax the 5250 28TC device is used as an example 1 15 Trunk ID Example The following example shows multicast group information of v3 snooped on port 1 zte cfg show igmp snooping v3 port 1 No source specific multicast address records The max group recor...

Page 209: ...0 0 10 255 255 255 0 1 10 4 10 31 show igmp filterreport vlan Purpose This command shows the multicast group filtering configuration of the specified VLAN Command Mode All configuration modes Syntax show igmp filter report vlan vlanlist Parameter Description Parameter Description vlanlist VLAN list Example The following example shows the multicast group filtering configuration of VLAN 1 zte cfg sh...

Page 210: ...ndex Interface VlanList 1 port 1 3 4 10 33 show igmp filter query vlan Purpose This command displays the configuration of packet filtering query for one or multiple specified VLANs Command Mode All configuration modes Syntax show igmp filter query vlan vlanlist Parameters Parameter Description vlanlist VLAN list Example The following example displays the configuration of packet filtering query for...

Page 211: ...nable Enables the IPTV control function disable Disables the IPTV control function Default The IPTV control function is disabled Example The following example enables the IPTV control function zte cfg nas iptv control enable 4 11 2 iptv channel group mvlan groupiplist name Purpose This command adds a channel group to a specified VLAN names the group and assigns an ID Command Mode NAS configuration...

Page 212: ...AME5 To configure the channel group name when creating a channel group select the channel group name parameter The channel group ID is optional but must be an unused one The channel group name cannot be chgnameN where N ranges from 0 to 255 Example The following example creates a channel group in VALN1 The start IP address in the group is 225 0 1 1 and the end IP address is 225 0 1 10 The channel ...

Page 213: ...lt values The channel ID is calculated internally If the value is 5 the corresponding channel name is CHNAME5 To configure the channel name when creating a channel select the channel name parameter The channel ID is optional but must be an unused one The channel name cannot be chgnameN where N ranges from 0 to 1031 Example The following example creates the channel 224 0 1 1 in VLAN 1 and sets the ...

Page 214: ...nnel group CCTV as CATV zte cfg nas iptv channel group name cctv rename catv 4 11 5 iptv channel groupname id list cdr Purpose This command enables or disables the log function for a channel group Command Mode NAS configuration mode Syntax iptv channel group name channel group name id list channel group list cdr enable disable Parameters Parameter Description channel group name Channel group name ...

Page 215: ...up name id list channel group list viewfile na me viewfile name viewfile id 0 1023 Parameters Parameter Description channel group name Specifies a preview file by channel group name channel group list Specifies a preview file by channel group list viewfile name Preview configuration file name which contains a maximum of 60 characters 0 1023 Preview configuration file ID Guidelines The system has a...

Page 216: ...l names which contains a maximum of 28 characters Guidelines If the prefix of channel names is set the names of the channels use the prefix followed by a number starting with 1 The channel names cannot be CHNAMEN where N ranges from 0 to 1031 Example The following example adds channels to VLAN 2 in batches The start IP address is 230 0 0 1 the number of channels is 10 and the name prefix is NET TV...

Page 217: ...el name rename new name Parameters Parameter Description channel name Original channel name new name New channel name Example The following example changes the channel name CCTV to CATV zte cfg nas iptv channel name cctv rename catv 4 11 9 iptv channel name id list cdr Purpose This command enables or disables the channel log function Command Mode NAS configuration mode Syntax iptv channel name cha...

Page 218: ...cdr enable 4 11 10 iptv channel name id list viewfile name id Purpose This command specifies a preview configuration file for a channel Command Mode NAS configuration mode Syntax iptv channel name channel name id list channel list viewfile name viewfile name viewfile id 0 1023 Parameter Description Parameter Description channel name Specifies a preview file by channel name channel list Specifies a...

Page 219: ... the Service Management System SMS server Command Mode NAS configuration mode Syntax iptv sms server A B C D Parameter Parameter Description A B C D IP address of the SMS server Default The IP address is 192 168 0 119 by default Example The following example sets the IP address of the SMS server to 10 40 89 78 zte cfg nas iptv sms server 10 40 89 78 4 11 12 iptv sms server port Purpose This comman...

Page 220: ... disable Purpose This command enables or disables the CDR function Command Mode NAS configuration mode Syntax iptv cdr enable disable Parameters Parameter Description enable Enables the CDR function disable Disables the CDR function Default The CDR function is disabled Example The following example enables the CDR function zte cfg nas iptv cdr enable 4 11 14 iptv cdr report Purpose This command re...

Page 221: ...mand Mode NAS configuration mode Syntax iptv cdr create period 1 65535 Parameter Parameter Description period Period seconds for regular CDR generation Default 3600 seconds Example The following example sets the period to 7200 seconds zte cfg nas iptv cdr create period 7200 4 11 16 iptv cdr deny right Purpose This command enables or disables the CDR function of the deny access right Command Mode N...

Page 222: ...11 17 iptv cdr prv right Purpose This command enables or disables the CDR function of the preview access right Configuration Mode NAS configuration mode Syntax iptv cdr prv right enable disable Parameters Parameter Description enable Enables the CDR function of the preview access right disable Disables the CDR function of the preview access right Default The CDR function of the preview access righ...

Page 223: ...ault The number of CDRs is 10 Example The following example sets the number of CDRs in the message reported every time to 32 zte cfg nas iptv cdr report threshold 32 4 11 19 iptv cdr report interval Purpose This command sets the interval for CDR timing report Command Mode NAS configuration mode Syntax iptv cdr report interval 1 65535 Parameter Parameter Description 1 65535 Report interval seconds ...

Page 224: ...This command sets the maximum number of CDRs in the buffer Command Mode NAS configuration mode Syntax iptv cdr max records 100 5000 Parameter Parameter Description 100 5000 Maximum number of records Default The maximum number is 1000 Example The following example sets the maximum number of CDRs in the buffer to 2000 zte cfg nas iptv cdr max records 2000 4 11 21 iptv cdr warning threshold Purpose T...

Page 225: ... iptv cdr warning threshold 80 4 11 22 iptv package name Purpose This command creates a multicast package Command Mode NAS configuration mode Syntax iptv package name package name id package id Parameters Parameter Description package name Package name which contains a maximum of 32 characters package id Package ID ranging from 0 to 127 Guidelines A package ID and package name are unique If no pac...

Page 226: ...ame d eny order preview Parameters Parameter Description package name Package name channel list Channel list channel name Channel name deny Video on demand is denied order Video on demand is allowed preview Preview is allowed Example The following example adds channels 100 103 104 and 107 to the package whose name is pkg1 zte cfg nas iptv package name pkg1 channel id list 100 103 104 107 order 4 1...

Page 227: ...w function zte cfg nas iptv prv enable 4 11 25 iptv prv reset Purpose This command resets the preview function Command Mode NAS configuration mode Syntax iptv prv reset Guidelines The reset contents include the number of preview records and the preview time 4 11 26 iptv prv autoreset Purpose This command resets the preview function automatically Command Mode NAS configuration mode 4 169 SJ 2013111...

Page 228: ...iptv prv recognition time Purpose This command sets the preview recognition time If the preview occurs in a very short time the time is ignored Command Mode NAS configuration mode Syntax iptv prv recognition time 1 65534 Parameter Parameter Description 1 65534 Threshold for effective preview time The unit is seconds Default 4 seconds Example The following example sets the preview recognition time ...

Page 229: ...n the preview time is overcount Default The CDR function is disabled Example The following example enable the CDR function when the preview time is overcount zte cfg nas iptv prv overcount cdr enable 4 11 29 iptv view profile name Purpose This command creates a preview configuration file Command Mode NAS configuration mode Syntax iptv view profile name viewfile name id 1 1023 Parameters Parameter ...

Page 230: ...urpose This command sets the maximum preview times the maximum duration of a single preview the minimum preview interval Command Mode NAS configuration mode Syntax iptv view profile name viewfile name count duration blackout 1 65535 Parameters Parameter Description viewfile name Preview configuration file name count 1 65535 The maximum preview times duration 1 65535 The maximum duration of a singl...

Page 231: ...00 4 11 31 iptv cac rule enable disable Purpose This command enables or disables the CAC function Command Mode NAS configuration mode Syntax iptv cac rule enable disable Parameters Parameter Description enable Enables the CAC function disable Disables the CAC function Default The channel access control function is disabled Example The following example enables the CAC function zte cfg nas iptv cac...

Page 232: ...s If the VLAN ID is not set the command sets the global service status Default Services are cancelled Example The following example starts services of port 1 in VLAN 1000 zte cfg nas iptv port 1 vlan 1000 service start 4 11 33 iptv port control mode Purpose This command sets a multicast control mode Command Mode NAS configuration mode Syntax iptv port portlist vlan 1 4094 control mode package chan...

Page 233: ...channel 4 11 34 iptv port package Purpose This command allocates packages for ports Command Mode NAS configuration mode Syntax iptv port portlist vlan 1 4094 package name package name id list package list Parameters Parameter Description portlist Port list vlan 1 4094 VLAN ID name package name Package name id list package list Package ID list Guidelines To enable the selection of packages the pack...

Page 234: ...ot set channel group access rights within all VLANs is assigned to the ports name channel group name Channel group name id list channel group list Channel group list deny The channel group access rights is deny order The channel group access rights is order preview The channel group access rights is preview query The channel group access rights is query Guidelines The configuration of channel grou...

Page 235: ...he channel access rights to deny order Configures the channel access rights to order preview Configures the channel access rights to preview query Configure the channel access rights to query Guidelines The configuration of channel is supported only when the channel mode is selected in control mode Example The following example sets the channel access rights to order for port 2 zte cfg nas iptv po...

Page 236: ...isabled 4 11 38 iptv port mac base Purpose This command enables or disables MAC based management Command Mode NAS configuration mode Syntax iptv port portlist vlan 1 4094 mac base enable disable Parameters Parameter Description portlist Port list vlan 1 4094 VLAN ID enable Enables MAC based management disable Disables MAC based management Default The MAC based management is disabled 4 178 SJ 20131...

Page 237: ...oup list Channel group list all Clears all channel groups Guidelines This command deletes IPTV users in accordance with various rules Without parameters it deletes all users Example The following example clears the catv channel group zte cfg nas clear iptv channel group name catv 4 11 40 clear iptv channel Purpose This command clears a channel Command Mode NAS configuration mode Syntax clear iptv ...

Page 238: ...s a channel package Command Mode NAS configuration mode Syntax clear iptv package name package name id list package idlist all Parameters Parameter Description name package name Package name id list package idlist Package list all Deletes all packages Example The following example clears the package named as ccc zte cfg nas clear iptv package name ccc 4 11 42 clear iptv view profile Purpose This c...

Page 239: ... nas clear iptv view profile name newtest 4 11 43 clear iptv port package Purpose This command clears packages that were allocated Command Mode NAS configuration mode Syntax clear iptv port portlist vlan 1 4094 package name package name id llist package idlist Parameters Parameter Description portlist Port list vlan 1 4094 VLAN ID name package name Package name id llist package idlist Package ID l...

Page 240: ...s users by MAC address port portlist Deletes users by port vlan 1 4094 Deletes users by VLAN Guidelines This command deletes IPTV users in accordance with various rules Without parameters it deletes all users Example The following example clears users on port 1 zte cfg nas clear iptv client port 1 4 11 45 show iptv control Purpose This command shows the IPTV global configuration Command Mode All c...

Page 241: ...S server ServerPort TCP port of the SMS server 4 11 46 show iptv channel Purpose This command shows the information about all channels or the specified channel Command Mode All configuration modes Syntax show iptv channel name channel name id channel id Parameters Parameter Description name channel name Channel name id channel id Channel ID Example 1 The following example shows the information abo...

Page 242: ...nel number Name Channel name GroupIp IP address of the multicast group MVlan VLAN to which the multicast group belongs 2 The following example shows the information about channel 0 zte cfg nas show iptv channel id 0 ChannelName CHNAME0 GroupAddress 224 0 1 1 MvlanId 1 CurOrdUserNum 0 HisOrdUserNum 0 CurPrvUserNum 0 HisPrvUserNum 0 CurUserNum 0 HisUserNum 0 CdrEnable enabled ViewProfileId 0 viewpro...

Page 243: ...mber of previews MaxPrvInter The maximum preview interval BlackoutInter The minimum preview interval 4 11 47 show iptv channel group Purpose This command shows the detailed information about all channel groups or the specified channel group Command Mode All configuration modes Syntax show iptv channel group name channe groupl name id channel group id Parameters Parameter Description name channel g...

Page 244: ...p name StartIp Start multicast group IP address EndIp Mask End multicast group IP address mask MVlan VLAN to which the channel group belongs to 2 The following example shows the detailed information about the channel group named as lsj zte cfg nas show iptv channel group name lsj ChannelGroupId 100 GroupStartAddress 225 0 1 1 GroupEndAddress 225 0 1 10 MvlanId 4000 CurOrdUserNum 0 HisOrdUserNum 0 ...

Page 245: ...le ID ViewProfileName Preview configuration file name MaxPrvCount Maximum preview times MaxPrvInter Maximum duration of a single preview BlackoutInter Minimum interval between two previews 4 11 48 show iptv package Purpose This command shows all allocated packages if no parameter is set If a parameter is set the channel list is displayed Command Mode All configuration modes Syntax show iptv packag...

Page 246: ...me 2 The following example shows the channel list in the package whose ID is 0 zte cfg nas show iptv package id 0 PackageName TAOCAN OrderChannelNum 0 PrvChannelNum 0 TotalChannelNum 0 The fields are described in the following table Field Description PackageName Package name OrderChannelNum Number of order channels PrvChannelNum Number of preview channels TotalChannelNum Number of statistic channe...

Page 247: ...t Cdr CDR function switch when the preview is overcount PrvRecognitionTime IPTV preview recognition time PrvAutoResetTime IPTV preview auto reset time 4 11 50 show iptv view profile Purpose This command shows the information about a preview configuration file Command Mode All configuration modes Syntax show iptv view profile name viewfile name id 0 1023 Parameters Parameter Description name viewfi...

Page 248: ...eview files that can be configured CurViewfileNum Number of currently configured preview files HisViewfileNum Number of preview files that were configured before Id Preview file ID View Profie Name Preview file name 2 The following example shows the configuration information about the preview configuration file named as vtcc zte cfg nas show iptv view profile name vtcc ViewProfile Id 1 MaxPrvCount...

Page 249: ...ecords in cache 0 The fields are described in the following table Field Description CDR CDR enabling switch CDR State CDR transmission status CDR Deny right Defines whether deny right users generate CDRs CDR Prw right Defines whether preview right users generate CDRs CDR Create Period CDR generation period MAX Records The maximum number of CDRs in the system Report Interval CDR timing report inter...

Page 250: ...ress of the users port portid Port number for the users to log in vlan 1 4094 ID of the VLAN to which the users belong Example The following example shows all IPTV users zte cfg nas show iptv client MaxClientNum 256 CurClientNum 0 HisClientNum 0 The fields are described in the following table Field Description MaxClientNum The maximum number of users CurClientNum Number of current users HisClientN...

Page 251: ...on zte cfg nas show iptv rule MaxRuleNum 64 CurRuleNum 21 HisRuleNum 21 Id Port Vlan Mbase Mode Service Cdr Order Preview Query PkgNum 1 1 1000 false package in disabled 0 0 0 0 2 1 false package in enabled 0 0 0 1 3 2 false package in disabled 0 0 0 0 4 3 false package in disabled 0 0 0 0 Omitted The fields are described in the following table Field Description MaxRuleNum The maximum number of ru...

Page 252: ...licate Index Port Mvlan Uvlan 0 2 4000 1 4 12 STP Configuration 4 12 1 set stp enable disable Purpose This command enables or disables the Spanning Tree Protocol STP Command Mode Global configuration mode Command Mode set stp enable disable Parameter Description Parameter Description enable Enables the STP disable Disables the STP Guidelines By default the Multiple Spanning Tree Protocol MSTP is e...

Page 253: ...r Description mstp Sets the STP force version to MSTP rstp Sets the STP force version to RSTP stp Sets the STP force version to STP Example The following example sets the STP force version to RSTP zte cfg set stp forceversion rstp 4 12 3 set stp port enable disable Purpose This command enables or disables the STP on the specified ports Command Mode Global configuration mode Syntax set stp port por...

Page 254: ...configuration mode Syntax set stp port portlist linktype point point shared Parameter Description Parameter Description portlist Port list point point Sets the port connection type to point to point shared Sets the port connection type to shared Default The port connection type is set to point to point 4 12 5 set stp port packettype Purpose This command sets the format of the packets received or s...

Page 255: ...e current STP protocol type and selects the best protocol Command Mode Global configuration mode Syntax set stp port portlist pcheck Parameter Description Parameter Description portlist Port list Guidelines When the MSTP is interconnected with the early protocols such as RSTP the pcheck command must be implemented on the ports for the recognition of messages When the MSTP is interconnected with th...

Page 256: ...able Disables the BPDU protection function for ports Guidelines If the protection function is enabled when the ports receive a BPDU message the ports will be disconnected Default The BPDU protection function is disabled Example The following example enables the BPDU protection function for port 2 zte cfg set stp port 2 bpdu guard enable 4 12 8 set stp bpdu interval Purpose This command sets the in...

Page 257: ...ollowing example sets the interval for BPDU protection recovery to 1000 zte cfg set stp bpdu interval 1000 4 12 9 set stp trunk enable disable Purpose This command enables or disables the STP for trunks Command Mode Global configuration mode Syntax set stp trunk trunklist enable disable Parameter Description Parameter Description trunklist Trunk list enable Enables the STP disable Disables the STP...

Page 258: ...nection type to point to point shared Sets the trunk connection type to shared Default The trunk connection type is set to point to point 4 12 11 set stp trunk packet type Purpose This command sets packet formats on trunks Command Mode Global configuration mode Syntax set stp trunk trunklist packettype IEEE CISCO HUAWEI HAMMER extend Parameter Description Parameter Description trunklist Trunk list...

Page 259: ...ortlist Parameter Description Parameter Description add Adds edge ports delete Deletes edge ports portlist Port list Guidelines The edge ports do not join STP calculation Generally they are connected to the terminals Example The following example sets port 2 as an STP edge port zte cfg set stp edge port add port 2 4 12 13 set stp hmd5 digest hmd5 key Purpose This command sets the hmd5 parameters w...

Page 260: ...meral 0 means to recover the default configuration 4 12 14 set stp hellotime Purpose This command sets the interval for the sending of STP messages Command Mode Global configuration mode Syntax set stp hellotime 1 10 Parameter Description Parameter Description 1 10 Interval seconds satisfying 2 forwarddelay 1 agemax and agemax 2 hellotime 1 Default The interval is 2 seconds Example The following e...

Page 261: ...conds satisfying 2 forwarddelay 1 agemax and agemax 2 hellotime 1 Guidelines The switch time is not less than the minimum time Default The minimum switch time is 15 seconds Example The following example sets the minimum switch time to 10 seconds zte cfg set stp forwarddelay 10 4 12 16 set stp agemax Purpose This command sets STP aging time Command Mode Global configuration mode Syntax set stp agem...

Page 262: ...command sets the MST maximum hop count between any two terminals Command Mode Global configuration mode Syntax set stp hopmax 1 40 Parameter Description Parameter Description 1 40 The maximum hop count Default The maximum hop count is 20 4 12 18 set stp name Purpose This command sets the MSTP domain name Command Mode Global configuration mode Syntax set stp name name 4 204 SJ 20131111172707 003 20...

Page 263: ... mode Syntax set stp revision 0 65535 Parameter Description Parameter Description 0 65535 MSTP revision level Guidelines The revision level is one of the bases for domain classification Devices in a domain have the same revision level Default The default MSTP revision level is 0 4 12 20 set stp instance add delete vlan Purpose This command adds deletes VLANs to from an MSTP instance Command Mode G...

Page 264: ...ing example adds VLANs 1 5 6 7 and 12 to instance 1 zte cfg set stp instance 1 add vlan 1 5 7 12 4 12 21 set stp instance port trunk priority Purpose This command sets the priority of a port or trunks in an instance Command Mode Global configuration mode Syntax set stp instance 0 63 port 1 52 trunk trunklist priority 0 240 Parameter Description Parameter Description 0 63 Instance ID port 1 52 Port...

Page 265: ... or trunks in an instance Command Mode Global configuration mode Syntax set stp instance 0 63 port 1 52 trunk trunklist cost 1 200000000 Parameter Description Parameter Description 0 63 Instance ID port 1 52 Port number Different devices have different port number ranges In the syntax the 5250 52TC device is used as an example trunk trunklist Trunk list 1 200000000 Path cost Guidelines For the typ...

Page 266: ...e trunk trunklist Trunk list enable Enables the root guard function disable Disables the root guard function Guidelines The root guard function is generally used in the condition that a root switch requires to be specified When the port enabling root guard receives a BPDU message with a higher priority the port will be blocked for network protection 4 12 24 set stp instance port trunk loop guard P...

Page 267: ...tance 1 zte cfg set stp instance 1 port 1 loop guard enable 4 12 25 set stp instance priority Purpose This command sets the priority of bridge in instance Command Mode Global configuration mode Syntax set stp instance 0 63 priority 0 61440 Parameter Description Parameter Description 0 63 Instance ID 0 61440 Priority of bridge Guidelines The priority must be a multiple of 4096 If the value you ente...

Page 268: ...s Instance 0 can not be deleted Example The following example deletes instance 10 zte cfg clear stp instance 10 4 12 27 clear stp instance port trunk cost Purpose This command sets the path cost of a port or trunk in an instance to the default value Command Mode Global configuration mode Syntax clear stp instance 0 63 port 1 52 trunk 1 15 cost Parameter Description Parameter Description 0 63 Insta...

Page 269: ...me 4 12 29 show stp Purpose This command shows the STP global configuration Command Mode All configuration modes Syntax show stp Example The following example shows the STP global configuration zte cfg show stp The spanning_tree protocol is enabled The STP ForceVersion is MSTP Revision 0 Name zte test Bpdu interval 1000 Cisco key 0x13ac06a62e47fd51f95d2ba243cd0346 Cisco digest 0x000000000000000000...

Page 270: ...tion about all instances Example The following example shows the information of instance 0 zte cfg show stp instance 0 RootID Priority 49152 Address 00 d0 d0 07 40 13 HelloTime s 10 MaxAge s 6 ForwardDelay s 15 Reg RootID Priority 49152 Address 00 d0 d0 07 40 13 RemainHops 10 BridgeID Priority 49152 Address 00 d0 d0 07 40 13 HelloTime s 10 MaxAge s 6 ForwardDelay s 15 MaxHops 10 Interface PortId C...

Page 271: ...tion of all ports Example The following example shows the STP configuration of port 1 zte cfg show stp port 1 The following port s are active PortId 1 MSTI 00 Priority 96 Cost Auto Status Forward Role Designated EdgePort Disabled GuardType None LinkType P2P PacketType IEEE 4 12 32 show stp trunk Purpose This command shows the STP configuration of a trunk or multiple trunks Command Mode All configu...

Page 272: ...cl mode Purpose This command sets the ACL binding mode of ports Command Mode Global configuration mode Syntax set port portlist acl mode port vlan Parameter Description Parameter Description portlist Port list port The specified ports match the ACL bound to the ports vlan The specified ports match the ACL bound to the VLANs that the ports belong to Guidelines The device supports the binding modes ...

Page 273: ...ist 1 799 801 828 ACL number The global ACL 800 can be valid without binding operations enable Binds an ACL instance to a port or ports disable Disables the binding Guidelines Each port can be bound with only one ACL instance at the same time Each instance can be bound with multiple ports at the same time Example The following example binds ACL 1 with port 10 zte cfg set port 10 acl 1 enable 4 13 ...

Page 274: ... can be bound with VLANs Example The following example binds ACL 1 with VLANs 1 to 10 zte cfg set vlan 1 10 acl 1 enable 4 13 4 set acl rule time range enable disable Purpose This command enables or disables ACL operations in the specified period Command Mode Global configuration mode Syntax set acl 1 799 801 828 rule 1 500 time range word enable disable Parameter Description Parameter Description...

Page 275: ...1 828 ACL number name ACL name which contains a maximum of 16 characters Guidelines After ACL names are created ACL configurations can be displayed by ACL name 4 13 6 clear acl name Purpose This command clears an ACL name Command Mode Global configuration mode Syntax clear acl 1 828 name Parameter Parameter Description 1 828 ACL number 4 217 SJ 20131111172707 003 2013 11 27 R1 0 ZTE Proprietary an...

Page 276: ...ode Port list 4 13 8 config ingress acl basic Purpose This command creates a basic ingress ACL instance and configures it Command Mode Global configuration mode Syntax config ingress acl basic number 1 99 Parameter Description Parameter Description 1 99 Number of the basic ingress ACL instance 4 13 9 ingress acl basic rule Purpose This command sets a basic ingress ACL rule 4 218 SJ 20131111172707 ...

Page 277: ...ddress expressed in dotted decimal notation any The any keyword is used as the abbreviation of the source 0 0 0 0 and the source mask 0 0 0 0 fragment This rule is only valid for fragment messages For non fragment messages this rule is ignored Guidelines The rule can match IPv4 packets with the specified source IP addresses any source IP address or IP fragment fields 4 13 10 clear ingress acl basi...

Page 278: ...the Internet Protocol version 4 IPv4 specified protocol field Command Mode Extended ingress ACL configuration mode Syntax rule 1 500 permit deny ip protocol source ipaddr sip mask any destination ipad dr dip mask any dscp 0 63 fragment Parameter Description Parameter Description 1 500 Rule number permit If the condition matches access is permitted deny If the condition matches access is denied ip ...

Page 279: ...estination mask 0 0 0 0 dscp 0 63 This rule is only valid for messages with the specified DSCP value Ignore this rule for other messages The range of the Differentiated Services Code Point DSCP value is 0 to 63 fragment This rule is only valid for fragment messages For non fragment messages this rule is ignored Guidelines The IP protocol rule can match IPv4 protocol fields with specified source IP...

Page 280: ...ond The any keyword is used as the abbreviation of the destination 0 0 0 0 and the destination mask 0 0 0 0 icmp type 0 254 This rule is only valid for messages with the specified icmp type value Ignore this rule for other messages The range of icmp type is 0 to 254 The icmp type parameter will resolve some known icmp types Also the type number can be directly entered icmp code This rule is only v...

Page 281: ...al notation sip mask Source mask used for sources It is a 32 bit IP address expressed in dotted decimal notation any first The any keyword is used as the abbreviation of the source 0 0 0 0 and the source mask 0 0 0 0 destination ipaddr Destination network or host of the transmitted packet It is a 32 bit IP address expressed in dotted decimal notation dip mask Destination mask used for destination ...

Page 282: ...ess is permitted deny If the condition matches access is denied tcp This rule only matches TCP message Non TCP message ignores this rule source ipaddr IP address of the source network or host transmitting packets It is a 32 bit IP address expressed in dotted decimal notation sip mask Source mask used for sources It is a 32 bit IP address expressed in dotted decimal notation any first The any keywo...

Page 283: ...rule for other messages dscp 0 63 This rule is only valid for messages with the specified DSCP value Ignore this rule for other messages The range of DSCP is 0 to 63 fragment This rule is only valid for fragment messages Non fragment messages ignore this rule Guidelines The TCP rule can match TCP packets with specified source IP addresses any source IP address specified destination IP addresses an...

Page 284: ...smitted packet It is a 32 bit IP address expressed in dotted decimal notation dip mask Destination mask used for destination It is a 32 bit IP address expressed in dotted decimal notation any second The any keyword is used as the abbreviation of the destination 0 0 0 0 and the destination mask 0 0 0 0 dest port 0 65535 UDP destination port number of the transmitted packet The parameters of dest po...

Page 285: ...ssed in dotted decimal notation sip mask Source mask and used for source It is a 32 bit IP address expressed in dotted decimal notation any first The any keyword is used as the abbreviation of the source 0 0 0 0 and the source mask 0 0 0 0 target ipaddr Target network or host of the ARP package It is a 32 bit IP address expressed in dotted decimal notation tip mask Destination mask used for destin...

Page 286: ...ACL instance 4 13 19 config ingress acl link Purpose This command creates a layer 2 ingress ACL instance and configures it Command Mode Global configuration mode Command Mode config ingress acl link number 200 299 Parameter Description Parameter Description 200 299 Number of the layer 2 ingress ACL instance 4 13 20 ingress acl link rule type ip Purpose This command sets the rule that the layer 2 i...

Page 287: ... VLAN ID is 1 to 4094 vlan mask Optional VLAN mask The default value is 0xfff source mac Source MAC address of the transmitted packet smac mask Source MAC mask any first The any keyword is used as the abbreviation of the source MAC address 00 00 00 00 00 00 and the mask 00 00 00 00 00 00 dest mac Destination MAC address of the transmitted packet dmac mask Destination MAC mask any second The any ke...

Page 288: ...AN ID is 1 to 4094 vlan mask Optional VLAN mask The default value is 0xfff source mac Source MAC address of the transmitted packet smac mask Source MAC mask any first The any keyword is used as the abbreviation of the source MAC address 00 00 00 00 00 00 and the mask 00 00 00 00 00 00 dest mac Destination MAC address of the transmitted packet dmac mask Destination MAC mask any second The any keywo...

Page 289: ... is only valid for the packet with specified dsap ssap value Ignore this rule for other messages The range of dsap ssap is 0 to 65535 cos 0 7 This rule is only valid for the cos specified message Ignore this rule for other messages The range of cos is 0 to 7 vlan id This rule is only valid for messages with the specified VLAN ID Ignore this rule for other messages The rule of VLAN ID is 1 to 4094 ...

Page 290: ...arameter Description Parameter Parameter 1 500 Rule number permit If the condition matches access is permitted deny If the condition matches access is denied any This rule can match any packet cos 0 7 This rule is only valid for the cos specified message Ignore this rule for other messages The range of cos is 0 to 7 vlan id This rule is only valid for messages with the specified VLAN ID Ignore thi...

Page 291: ... instance and configures it Command Mode Global configuration mode Syntax config ingress acl hybrid number 300 399 Parameter Description Parameter Description 300 399 Number of the hybrid ingress ACL instance 4 13 26 ingress acl hybrid rule type ip protocol Purpose This command sets the rule that the hybrid ingress ACL matches the packet with IPv4 specified field Command Mode Hybrid ingress ACL co...

Page 292: ...sk 0 0 0 0 destination ipaddr Destination network or host of the transmitted packet It is a 32 bit IP address expressed in dotted decimal notation dip mask Destination mask used for destination It is a 32 bit IP address expressed in dotted decimal notation any second The any keyword is used as the abbreviation of the destination 0 0 0 0 and the destination mask 0 0 0 0 dscp 0 63 This rule is only ...

Page 293: ...ess acl hybrid rule type ip Purpose This command sets the rule that the hybrid ingress ACL matches the IPv4 packet Command Mode Hybrid ingress ACL configuration mode Syntax rule 1 500 permit deny ip source ipaddr sip mask any destination ipaddr dip m ask any dscp 0 63 fragment cos 0 7 vlan id vlan mask source mac smac mask any dest mac dmac mask any Parameter Description Parameter Description 1 50...

Page 294: ...nly valid for messages with the specified VLAN ID Ignore this rule for other messages The rule of VLAN ID is 1 to 4094 vlan mask Optional VLAN mask The default value is 0xfff source mac Source MAC address of the transmitted packet smac mask Source MAC mask any third The any keyword is used as the abbreviation of the source MAC address 00 00 00 00 00 00 and the mask 00 00 00 00 00 00 dest mac Desti...

Page 295: ... notation source port 0 65535 TCP source port number of the transmitted packet The parameters of source port can resolve the some known port numbers Also the port number and mask can be directly inputted sport mask Source port mask any first The any keyword is used as the abbreviation of the source 0 0 0 0 and the source mask 0 0 0 0 destination ipaddr Destination network or host of the transmitte...

Page 296: ...dress 00 00 00 00 00 00 and the mask 00 00 00 00 00 00 dest mac Destination MAC address of the transmitted packet dmac mask Destination MAC address of the transmitted packet any fourth The any keyword is used as the abbreviation of the destination MAC address 00 00 00 00 00 00 and the mask 00 00 00 00 00 00 Guidelines The TCP rule can match source specified IPs any source IPs destination specified...

Page 297: ...source 0 0 0 0 and the source mask 0 0 0 0 destination ipaddr Destination network or host of the transmitted packet It is a 32 bit IP address expressed in dotted decimal notation dip mask Destination mask used for destination It is a 32 bit IP address expressed in dotted decimal notation any second The any keyword is used as the abbreviation of the destination 0 0 0 0 and the destination mask 0 0 ...

Page 298: ...he any keyword is used as the abbreviation of the destination MAC address 00 00 00 00 00 00 and the mask 00 00 00 00 00 00 Guidelines The UDP rule can match source specified IPs any source IPs UDP source port numbers destination specified IPs any destination IPs DSCP fields IP fragment fields cos fields VLAN fields source specified MACs any source MACs destination specified MACs and any destinatio...

Page 299: ...d the destination mask 0 0 0 0 cos 0 7 This rule is only valid for the cos specified message Ignore this rule for other messages The range of cos is 0 to 7 vlan id This rule is only valid for messages with the specified VLAN ID Ignore this rule for other messages The rule of VLAN ID is 1 to 4094 vlan mask Optional VLAN mask The default value is 0xfff source mac Source MAC address of the transmitte...

Page 300: ... ignore this rule The range of ether type is 1501 65535 cos 0 7 This rule is only valid for the cos specified message Ignore this rule for other messages The range of cos is 0 to 7 vlan id This rule is only valid for messages with the specified VLAN ID Ignore this rule for other messages The rule of VLAN ID is 1 to 4094 vlan mask Optional VLAN mask The default value is 0xfff source mac Source MAC ...

Page 301: ...ule only matches IPv6 message The non IPv6 message ignore this rule ip protocol This rule is only valid for messages with the specified IP protocol field Ignore this rule for other messages The range of IP protocol field value is 0 to 255 source ipv6addr IPv6 Source network or host of the transmitted package The standard IPv6 address format is used such as abcd EF12 123 4 sipv6 mask Source mask an...

Page 302: ...iguration mode Syntax rule 1 500 permit deny ipv6 tcp source ipv6addr sipv6 mask any source port 0 65535 sport mask destination ipv6addr dipv6 mask any dest port 0 65535 dpor t mask vlan id Parameter Description Parameter Description 1 500 Rule number permit If the condition matches access is permitted deny If the condition matches access is denied ipv6 tcp This rule is only valid for IPv6 TCP pac...

Page 303: ...eter resolve some known port number Also the port number and mask can be entered dport mask Destination port mask vlan id This rule is only valid for messages with the specified VLAN ID Ignore this rule for other messages The rule of VLAN ID is 1 to 4094 Guidelines The IPv6 TCP rule can match source specified IPv6 any source IPv6 destination specified IPv6 any destination IPv6 TCP source port numb...

Page 304: ...sk destination ipv6addr The destination network or host address of the transmitted IPv6 packet The standard IPv6 address format is used such as abcd EF12 123 4 dipv6 mask Destination mask It is used for destination and represented by one integer The value range is 1 to 128 any second Matches all destination IPv6 addresses The destination and destination mask are all 0s dest port 0 65535 TCP destin...

Page 305: ...23 4 sipv6 mask Source mask and used for source It is expressed by an integer The range is 1 to 128 any first Matches all source IPv6 addresses source and source mask are all 0s destination ipv6addr The destination network or host address of the transmitted IPv6 packet The standard IPv6 address format is used such as abcd EF12 123 4 dipv6 mask Destination mask It is used for destination and repres...

Page 306: ...500 Rule number permit If the condition matches access is permitted deny If the condition matches access is denied Guidelines All rules can match any packet 4 13 37 clear ingress acl hybrid Purpose This command clears the hybrid ingress ACL instance Command Mode Global configuration mode Syntax clear ingress acl hybrid number 300 399 Parameter Description Parameter Description 300 399 Hybrid ingre...

Page 307: ...ation ipaddr dip mask any dscp 0 63 fragment cos 0 7 vlan id vla n mask source mac smac mask any dest mac dmac mask any Parameter Description Parameter Description 1 16 Global rule number permit If the condition matches access is permitted deny If the condition matches access is denied 1 28 Binds the global rule to a port Different devices have different port number ranges In the syntax the 5250 2...

Page 308: ...ment messages this rule is ignored cos 0 7 This rule is only valid for the cos specified message Ignore this rule for other messages The range of cos is 0 to 7 vlan id This rule is only valid for messages with the specified VLAN ID Ignore this rule for other messages The rule of VLAN ID is 1 to 4094 vlan mask Optional VLAN mask The default value is 0xfff source mac Source MAC address of the transm...

Page 309: ... example any first Binds the global rule to all ports ip This rule only matches IP packet The non IP packet ignores this rule source ipaddr IP address of the source network or host transmitting packets It is a 32 bit IP address expressed in dotted decimal notation sip mask Source mask used for sources It is a 32 bit IP address expressed in dotted decimal notation any second The any keyword is used...

Page 310: ...00 00 00 and mask 00 00 00 00 00 00 dest mac Destination MAC address of the transmitted packet dmac mask Destination MAC address of the transmitted packet any fifth The any keyword is used as the abbreviation of the destination MAC address 00 00 00 00 00 00 and mask 00 00 00 00 00 00 Guidelines The IP rule can match source specified IPs any source IPs destination specified IPs any destination IPs ...

Page 311: ...rce port parameter resolve some known port number Also the port number and mask can be entered sport mask Source port mask any second The any keyword is used as the abbreviation of the destination 0 0 0 0 and the destination mask 0 0 0 0 destination ipaddr Destination network or host of the transmitted packet It is a 32 bit IP address expressed in dotted decimal notation dip mask Destination mask ...

Page 312: ...on MAC mask any fifth The any keyword is used as the abbreviation of destination MAC address 00 00 00 00 00 00 and mask 00 00 00 00 00 00 Guidelines The TCP rule can match source specified IPs any source IPs TCP source port numbers destination specified IPs any destination IPs TCP destination port numbers DSCP fields IP fragment fields cos fields VLAN fields source specified MACs any source MACs d...

Page 313: ...second The any keyword is used as the abbreviation of the destination 0 0 0 0 and the destination mask 0 0 0 0 destination ipaddr Destination network or host of the transmitted packet It is a 32 bit IP address expressed in dotted decimal notation dip mask Destination mask used for destination It is a 32 bit IP address expressed in dotted decimal notation any third The any keyword is used as the ab...

Page 314: ...he abbreviation of destination MAC address 00 00 00 00 00 00 and mask 00 00 00 00 00 00 Guidelines The UDP rule can match source specified IPs any source IPs UDP source port numbers destination specified IPs any destination IPs UDP destination port numbers DSCP fields IP fragment fields cos fields VLAN fields source specified MACs any source MACs destination specified MACs and any destination MACs...

Page 315: ... It is a 32 bit IP address expressed in dotted decimal notation any third The any keyword is used as the abbreviation of the destination 0 0 0 0 and the destination mask 0 0 0 0 cos 0 7 This rule is only valid for the cos specified message Ignore this rule for other messages The range of cos is 0 to 7 vlan id This rule is only valid for messages with the specified VLAN ID Ignore this rule for othe...

Page 316: ...on matches access is permitted deny If the condition matches access is denied 1 28 Binds the global rule to a port Different devices have different port number ranges In the syntax the 5250 28TC device is used as an example any first Binds the global rule to all ports any second This rule only matches non IPv6 packet The IPv6 packet ignores this rule ether type 1501 65535 This rule is only valid f...

Page 317: ...Any rule can match ether type field cos field VLAN field source specified MAC any source MAC destination specified MAC any destination MAC The rule can be bound to one or all ports 4 13 45 config egress acl basic Purpose This command creates the basic ingress ACL instance and configures it Command Mode Global configuration mode Syntax config egress acl basic number 400 499 Parameter Description Pa...

Page 318: ...ed decimal notation any The any keyword is used as the abbreviation of the source 0 0 0 0 and the source mask 0 0 0 0 fragment This rule is only valid for fragment messages For non fragment messages this rule is ignored Guidelines The rule can match IPv4 packets with the specified source IP addresses any source IP address or IP fragment fields 4 13 47 clear egress acl basic Purpose This command cl...

Page 319: ...ess ACL matches IPv4 specified protocol field Command Mode Extended egress ACL configuration mode Syntax rule 1 500 permit deny ip protocol source ipaddr sip mask any destination ipad dr dip mask any dscp 0 63 fragment Parameter Description Parameter Description 1 500 Rule number permit If the condition matches access is permitted deny If the condition matches access is denied ip protocol This rul...

Page 320: ...tion 0 0 0 0 and the destination mask 0 0 0 0 dscp 0 63 This rule is only valid for the message with the specified DSCP value Ignore this rule for other messages The range of DSCP value is 0 to 63 fragment This rule is only valid for fragment messages For non fragment messages this rule is ignored Guidelines The IP protocol rule can match IPv4 protocol fields with specified source IP addresses any...

Page 321: ...y keyword is used as the abbreviation of the destination 0 0 0 0 and the destination mask 0 0 0 0 icmp type 0 254 This rule is only valid for the message with the specified icmp type value Ignore this rule for other messages The range of icmp type is 0 to 254 The icmp type parameter will resolve some known icmp types Also the type number can be directly inputted icmp code This rule is only valid f...

Page 322: ... notation sip mask Source mask used for sources It is a 32 bit IP address expressed in dotted decimal notation any first The any keyword is used as the abbreviation of the source 0 0 0 0 and the source mask 0 0 0 0 destination ipaddr Destination network or host of the transmitted packet It is a 32 bit IP address expressed in dotted decimal notation dip mask Destination mask used for destination It...

Page 323: ...is permitted deny If the condition matches access is denied tcp This rule only matches TCP message Non TCP message ignores this rule source ipaddr IP address of the source network or host transmitting packets It is a 32 bit IP address expressed in dotted decimal notation sip mask Source mask used for sources It is a 32 bit IP address expressed in dotted decimal notation any first The any keyword i...

Page 324: ...Ignore this rule for other messages dscp 0 63 This rule is only valid for the message with the specified DSCP value Ignore this rule for other messages The range of DSCP is 0 to 63 fragment This rule is only valid for the fragment message Non fragment messages ignore this rule Guidelines The TCP rule can match TCP packets with specified source IP addresses any source IP address specified destinati...

Page 325: ...ed packet It is a 32 bit IP address expressed in dotted decimal notation dip mask Destination mask used for destination It is a 32 bit IP address expressed in dotted decimal notation any second The any keyword is used as the abbreviation of the destination 0 0 0 0 and the destination mask 0 0 0 0 dest port 0 65535 UDP destination port number of the transmitted packet The parameters of dest port ca...

Page 326: ...ssed in dotted decimal notation sip mask Source mask and used for source It is a 32 bit IP address expressed in dotted decimal notation any first The any keyword is used as the abbreviation of the source 0 0 0 0 and the source mask 0 0 0 0 target ipaddr Target network or host of the ARP package It is a 32 bit IP address expressed in dotted decimal notation tip mask Destination mask used for destin...

Page 327: ...L instance 4 13 56 config egress acl link Purpose This command creates a layer 2 egress ACL instance and configures it Command Mode Global configuration mode Command Mode config egress acl link number 600 699 Parameter Description Parameter Description 600 699 Number of the layer 2 egress ACL instance 4 13 57 egress acl link rule type ip Purpose This command sets the rule that the layer 2 egress A...

Page 328: ...e is only valid for messages with the specified VLAN ID Ignore this rule for other messages The rule of VLAN ID is 1 to 4094 vlan mask Optional VLAN mask The default value is 0xfff dest mac Destination MAC address of the transmitted packet dmac mask Destination MAC mask any The any keyword is used as the abbreviation of destination MAC address 00 00 00 00 00 00 and mask 00 00 00 00 00 00 Guideline...

Page 329: ... mask Optional VLAN mask The default value is 0xfff dest mac Destination MAC address of the transmitted packet dmac mask Destination MAC mask any The any keyword is used as the abbreviation of destination MAC address 00 00 00 00 00 00 and mask 00 00 00 00 00 00 Guidelines The ARP rule can match cos fields VLAN fields source specified MACs any source MACs destination specified MACs and any destinat...

Page 330: ...sages with the specified VLAN ID Ignore this rule for other messages The rule of VLAN ID is 1 to 4094 vlan mask Optional VLAN mask The default value is 0xfff source macvlan id Source MAC address of the transmitted packet mac mask Source MAC mask Compare the result of the source MAC address the mask of the packet with the result of source mac the mask to see whether the ACL rule is matched any The ...

Page 331: ...ssages The range of cos is 0 to 7 vlan id This rule is only valid for messages with the specified VLAN ID Ignore this rule for other messages The rule of VLAN ID is 1 to 4094 vlan mask Optional VLAN mask The default value is 0xfff dest mac Destination MAC address of the transmitted packet dmac mask Destination MAC mask Compare the result of the destination MAC address the mask of the packet with t...

Page 332: ...instance 4 13 62 config egress acl hybrid Purpose This command creates a hybrid egress ACL instance and configures it Command Mode Global configuration mode Syntax config egress acl hybrid number 700 799 Parameter Description Parameter Description 700 799 Number of the hybrid egress ACL instance 4 13 63 egress acl hybrid rule type all Purpose This command sets the rule that the hybrid egress ACL m...

Page 333: ...ion mode Syntax rule 1 500 permit deny any ether type 1501 65535 cos 0 7 vlan id vlan ma sk source mac smac mask any dest mac dmac mask any Parameter Description Parameter Description 1 500 Rule number permit If the condition matches access is permitted deny If the condition matches access is denied any This rule only matches non IPv6 packet IPv6 packet ignores this rule ether type 1501 65535 This...

Page 334: ...MAC mask any second The any keyword is used as the abbreviation of the destination MAC address 00 00 00 00 00 00 and mask 00 00 00 00 00 00 Guidelines Any rule can match ether type field cos field VLAN field source specified MAC any source MAC destination specified MAC and any destination MAC 4 13 65 egress acl hybrid rule type arp Purpose This command sets the rule that the hybrid egress ACL matc...

Page 335: ...rule is only valid for the cos specified message Ignore this rule for other messages The range of cos is 0 to 7 vlan id This rule is only valid for messages with the specified VLAN ID Ignore this rule for other messages The rule of VLAN ID is 1 to 4094 vlan mask Optional VLAN mask The default value is 0xfff source mac Source MAC address of the transmitted packet smac mask Source MAC mask any third...

Page 336: ... source network or host transmitting packets It is a 32 bit IP address expressed in dotted decimal notation sip mask Source mask used for sources It is a 32 bit IP address expressed in dotted decimal notation any first The any keyword is used as the abbreviation of the source 0 0 0 0 and the source mask 0 0 0 0 destination ipaddr Destination network or host of the transmitted packet It is a 32 bit...

Page 337: ...keyword is used as the abbreviation of the destination MAC address 00 00 00 00 00 00 and mask 00 00 00 00 00 00 Guidelines Ip protocol rule can match IPv4 specified protocol field source specified IP any source IP destination specified IP any destination IP DSCP field IP fragment field cos field VLAN field source specified MAC any source MAC destination specified MAC and any destination MAC 4 13 6...

Page 338: ... mask 0 0 0 0 dscp 0 63 This rule is only valid for the message with the specified DSCP value Ignore this rule for other messages The range of DSCP value is 0 to 63 fragment This rule is only valid for fragment messages For non fragment messages this rule is ignored cos 0 7 This rule is only valid for the cos specified message Ignore this rule for other messages The range of cos is 0 to 7 vlan id ...

Page 339: ...ss is permitted deny If the condition matches access is denied ipv6 any This rule is only valid for IPv6 packet Other packets ignore this rule source ipv6addr IPv6 Source network or host of the transmitted package The standard IPv6 address format is used such as abcd EF12 123 4 sipv6 mask Source mask and used for source It is expressed by an integer The range is 1 to 128 any first Matches all sour...

Page 340: ...esti nation ipv6addr dipv6 mask any vlan id Parameter Description Parameter Description 1 500 Rule number permit If the condition matches access is permitted deny If the condition matches access is denied ipv6 This rule only matches IPv6 message The non IPv6 message ignore this rule ip protocol This rule is only valid for messages with the specified IP protocol field Ignore this rule for other mes...

Page 341: ... IPv6 any destination IPv6 and VLAN field 4 13 70 egress acl hybrid rule type ipv6 tcp Purpose This command sets the rule that the hybrid egress ACL matches IPv6 TCP packets Command Mode Hybrid egress ACL configuration mode Syntax rule 1 500 permit deny ipv6 tcp source ipv6addr sipv6 mask any source port 0 65535 sport mask destination ipv6addr dipv6 mask any dest port 0 65535 dpor t mask vlan id P...

Page 342: ...ches all destination IPv6 addresses The destination and destination mask are all 0s dest port 0 65535 TCP destination port number of the transmitted packet The dest port parameter resolve some known port number Also the port number and mask can be entered dport mask Destination port mask vlan id This rule is only valid for messages with the specified VLAN ID Ignore this rule for other messages The...

Page 343: ... 65535 TCP source port number of the transmitted packet The source port parameter resolve some known port number Also the port number and mask can be entered sport mask Source port mask destination ipv6addr The destination network or host address of the transmitted IPv6 packet The standard IPv6 address format is used such as abcd EF12 123 4 dipv6 mask Destination mask It is used for destination an...

Page 344: ...ition matches access is permitted deny If the condition matches access is denied tcp This rule is only valid for TCP packet Other packets ignore this rule source ipaddr IP address of the source network or host transmitting packets It is a 32 bit IP address expressed in dotted decimal notation sip mask Source mask and used for source It is a 32 bit IP address expressed in dotted decimal notation so...

Page 345: ...rule is only valid for messages with the specified VLAN ID Ignore this rule for other messages The rule of VLAN ID is 1 to 4094 vlan mask Optional VLAN mask The default value is 0xfff source mac Source MAC address of the transmitted packet smac mask Source MAC mask any third The any keyword is used as the abbreviation of source MAC address 00 00 00 00 00 00 and mask 00 00 00 00 00 00 dest mac Dest...

Page 346: ...l notation source port 0 65535 UDP source port number of the transmitted packet The parameters of source port can resolve the some known port numbers Also the port number and mask can be directly inputted sport mask Source port mask any first The any keyword is used as the abbreviation of the source 0 0 0 0 and the source mask 0 0 0 0 destination ipaddr Destination network or host of the transmitt...

Page 347: ...e transmitted packet smac mask Source MAC mask any third The any keyword is used as the abbreviation of source MAC address 00 00 00 00 00 00 and mask 00 00 00 00 00 00 dest mac Destination MAC address of the transmitted packet dmac mask Destination MAC address of the transmitted packet any fourth The any keyword is used as the abbreviation of the destination MAC address 00 00 00 00 00 00 and mask ...

Page 348: ...uires to be moved The global ACL instance only supports 16 rules after Moves the source rule number after the destination rule number before Moves the source rule number before the destination rule number 1 500 second Destination rule number The global acl instance only supports 16 rules Guidelines All ACL configuration modes support the sorting command 4 13 76 clear rule Purpose This command clea...

Page 349: ...onfigured in batches Command Mode Global configuration mode Syntax show vlan range vlan range Parameter Description Parameter Description vlan range VLAN range Example The following example shows the VLAN ID and the corresponding VLAN mask when VLAN 1 1000 is matched zte cfg show vlan range 1 1000 index vlanId vlanMask 1 1 0xffff 2 2 0xfffe 3 4 0xfffc 4 8 0xfff8 5 16 0xfff0 6 32 0xffe0 7 64 0xffc0...

Page 350: ...lan vlanlist Parameter Description Parameter Description all Shows all the ACLs bound to ports port Shows the ACLs bound to the specified ports portlist Port list vlan Shows the ACLs bound to the VLANs vlanlist VLAN list Example The following example shows the ACL bound to ports 1 to 5 zte cfg show acl binding port 1 5 Id PortType AclNo 1 PhyPort 1 4 13 79 show acl config Purpose This command show...

Page 351: ...ction AclType Rules BindPort BindVlan 1 basic 1 ingress basic 3 2 0 100 ingress extend 4 0 0 200 ingress link 2 0 0 300 ingress hybrid 3 0 0 400 egress basic 0 0 0 500 egress extend 1 0 0 600 egress link 0 0 0 700 egress hybrid 0 0 0 800 ingress global 1 0 0 4 13 80 show acl config acl number acl name Purpose This command shows the detailed configuration of ACL instances Command Mode Global config...

Page 352: ...cy This command shows all rules defined with policy actions in the ACL instance rule 1 500 Rule ID snmp This command shows all rules created by SNMP in the ACL instance time range This command shows all rules bound with time range in the ACL instance 4 13 81 config ingress acl user define udb Purpose This command sets the matching location of a user defined byte Command Mode Global configuration m...

Page 353: ...ption Purpose This command sets the description of a user defined byte Command Mode Global configuration mode Syntax config ingress acl user define udb 1 15 description string Parameter Description Parameter Description 1 15 User defined byte description Description a maximum of 128 characters Example The following example sets the description of the user defined ACL named udb1 to aaa zte cfg conf...

Page 354: ...udb value udb mask udb8 udb value udb mask udb9 udb value udb mask udb10 udb value udb mask udb11 ud b value udb mask udb12 udb value udb mask udb13 udb value udb mask ud b14 udb value udb mask udb15 udb value udb mask Parameter Description Parameter Description 1 500 Serial number of a rule permit Permits accesses if conditions are matched deny Denies accesses of conditions are matched any Any pa...

Page 355: ...ghth user defined byte udb value The value that Udb8 must match udb mask The mask that Udb8 must match Udb9 Ninth user defined byte udb value The value that Udb9 must match udb mask The mask that Udb9 must match Udb10 Tenth user defined byte udb value The value that Udb10 must match udb mask The mask that Udb10 must match Udb11 Eleventh user defined byte udb value The value that Udb11 must match u...

Page 356: ...ured first Example The following example sets the action to deny udb1 the udb1 value to 0x01 and the mask to 0xff for rule 1 zte ingress user define acl rule 1 deny udb1 0x01 0xff 4 13 85 clear ingress acl user define Purpose This command deletes a user defined ingress ACL instance Command Mode Global configuration mode Syntax clear ingress acl user define number 801 828 Parameter Description Para...

Page 357: ...mand displays the configurations of user defined bytes Command Mode All configuration modes Syntax show acl udb Example zte cfg show acl udb Udb Anchor Offset length Description 1 L2 2 2 aaa 4 13 88 create acl description Purpose This command configures ACL descriptions Command Mode Global configuration mode Syntax create acl 1 828 description description 4 299 SJ 20131111172707 003 2013 11 27 R1 ...

Page 358: ...ommand Mode Global configuration mode Syntax clear acl 1 828 description Parameter Description Parameter Description 1 828 ACL serial number 4 14 QoS Configuration 4 14 1 set qos priority mapping port default up Purpose This command sets the default UP priority for a port Command Mode Global configuration mode Syntax set qos priority mapping port 1 28 default up 0 7 4 300 SJ 20131111172707 003 201...

Page 359: ...rofile user priority Parameter Description Parameter Description 1 28 Port number Different devices have different port number ranges In the syntax the 5250 28TC device is used as an example dscp priority Selects profile in accordance with the DSCP field of the message The corresponding relation between the DSCP and profile is decided by the qos profile configuration port profile Field in untruste...

Page 360: ...able disable Parameter Description Parameter Description 1 28 Port number Different devices have different port number ranges In the syntax the 5250 28TC device is used as an example remapping dscp Sets whether DSCP mapping can be enabled disabled remark Sets whether DSCP UP modification can be enabled disabled dscp priority Configures a DSCP modification rule user priority Configures an UP modifi...

Page 361: ...ng Guidelines The DSCP after mapping corresponds to the one before mapping one by one that is 0 to 0 63 to 63 Example The following example sets DSCP dscp remapping to map 2 to 20 zte cfg set qos priority mapping qos profile dscp to dscp 2 to 20 4 14 5 set qos priority mapping port port to profile Purpose This command sets the corresponding relation between a port and profile Command Mode Global c...

Page 362: ...o profile qos profile 20 4 14 6 set qos priority mapping qos profile dscp up to profile Purpose This command sets the corresponding relation between DSCP UP and profile Command Mode Global configuration mode Syntax set qos priority mapping qos profile up to profile 0 7 dscp to profile 0 63 qos pr ofile 0 127 Parameter Description Parameter Description up to profile Configures the binding relation ...

Page 363: ...os profile 0 127 drop priority red yellow green dscp prio rity 0 63 user priority 0 7 traffic class 0 7 Parameter Description Parameter Description 0 127 Template number drop priority Drop priority The flow of the application template is highlighted as the specified color red The flow is highlighted as red yellow The flow is highlighted as yellow green The flow is highlighted as green By default t...

Page 364: ...onfigured separately Example The following example sets the QoS profile 100 drop priority to yellow DSCP priority to 5 user priority to 2 and TC to 2 zte cfg set qos priority mapping qos 100 drop priority yellow zte cfg set qos priority mapping qos 100 dscp priority 5 zte cfg set qos priority mapping qos 100 user priority 2 zte cfg set qos priority mapping qos 100 traffic class 2 zte cfg show qos ...

Page 365: ...led use the dscp to profile configuration to select a profile If the configuration is enabled use the dscp to dscp configuration to map dscp fields After mapping the dscp value is used to implement the dscp to profile operation Example The following example recovers the default configuration of QoS profiles zte cfg set qos priority mapping qos profile default zte cfg show qos priority mapping qos ...

Page 366: ...rce allocation for a switch so that queue scheduling is more accurate when congestion on the egress is not serious 4 14 10 set qos queue schedule mode Purpose This command sets the QoS queue scheduling unit Command Mode Global configuration mode Syntax set qos queue schedule mode byte packet Parameter Description Parameter Description byte Configures the scheduling mode based on byte packet Config...

Page 367: ...different port number ranges In the syntax the 5250 28TC device is used as an example default The default Strict Priority SP policy is used session Scheduling policy template 1 7 Scheduling policy template number Example The following example binds port 2 to scheduling template 2 zte cfg set qos queue schedule port 2 session 2 The following example sets default scheduling mode for port 2 zte cfg s...

Page 368: ...Scheduling between a WRR group and an SP queue is performed based on strict priority settings For example the weights of cos0 cos7 respectively are 0 1 2 3 0 1 2 and 0 set qos queue schedule session 1 0 1 2 3 0 1 2 0 Their scheduling priorities are as follows cos7 cos5 and cos6 are mixed into group WRR0 The priority is 5 and they are scheduled in the 1 2 proportion cos4 cos1 to cos3 are mixed into...

Page 369: ...ue number 0 1 2 3 4 5 6 7 queue weight SP 10 20 SP 20 40 SP SP 4 14 13 set qos traffic limit mode Purpose This command sets the global ingress rate limit mode Command Mode Global configuration mode Syntax set qos traffic limit mode byte packet Parameter Description Parameter Description byte Sets the global ingress rate limit mode to byte based mode The unit of data rate is Kbps packet Sets the gl...

Page 370: ...cifies whether to apply the rate limit function to known unicast packets multicast Specifies whether to apply the rate limit function to multicast packets tcp syn Specifies whether to apply the rate limit function to packets initiated by TCP links unknown uc Specifies whether to apply the rate limit function to unknown unicast packets enable Enables the rate limit function for the specified packet...

Page 371: ... vary with global mode configurations disable Disables the port rate limit function Guidelines When globally configuring the ingress rate limit you can select either byte based or packet based rate limit For different rate limit modes the rate limit unit and granularity are different Example The following example sets the ingress rate limit to 100 kbps or 100 kpps for port 2 the unit is determined...

Page 372: ...limit number of packets length of packets The configuration is valid only in ingress rate limit global byte mode Example The following example sets the ingress rate limit to 100 pps and packet length to 64 bytes for port 2 zte cfg set qos traffic limit fe port 2 packet rate 100 packet length 64 4 14 17 set qos traffic limit ge port data rate Purpose This command sets the ingress rate limit for a G...

Page 373: ...ingress rate limit mode configured in global configuration mode zte cfg set qos traffic limit ge port 25 data rate 1000 4 14 18 set qos traffic limit ge port packet rate Purpose This command sets the ingress rate limit for a GE port Command Mode Global configuration mode Syntax set qos traffic limit ge port 25 28 packet rate 0 1488100 packet lenth 64 10240 disable Parameter Description Parameter D...

Page 374: ...ode Syntax set qos traffic limit xge port 2 1 2 4 data rate 0 10000000 disable Parameter Description Parameter Description 2 1 2 4 Number of a 10 GB port Different devices have different port number ranges In the syntax the 5250 52TC device is used as an example 0 10000000 Ingress rate limit in Kbps or Kpps The configuration granularity is 256 Kbps or 32 Kpps The unit and granularity vary with glo...

Page 375: ...ckets limited on the ingress port disable Disables the port rate limit function Guidelines This command sets the ingress rate limit function in accordance with this formula ingress rate limit number of packets length of packets The configuration is valid only in ingress rate limit global byte mode Example The following example sets the ingress rate limit to 10000 pps and packet length to 64 bytes ...

Page 376: ...raffic on the port exceeds the rate limit the port is shut down and becomes unavailable for a specified period Command Mode Global configuration mode Syntax set qos traffic limit port 1 28 protect enable disable time 1 10 Parameter Description Parameter Description 1 28 Port number The range varies with the device type Use the 5250 28TC as an example enable Enables the port protection function dis...

Page 377: ...ion mode Syntax set qos traffic limit port 1 28 trap enable disable Parameter Description Parameter Description 1 28 Port number The range varies with the device type Use the 5250 28TC as an example enable Enables the trap function disable Disables the trap function Guidelines This command is mutually exclusive with the set qos traffic limit port protect command Before configuring this command ena...

Page 378: ...Egress shaping rate 32 100000 Shaping rate limit The granularity is 32 Kbps burst size Burst rate 1 4094 Burst rate value The granularity is 4 KB disable Disables the egress shaping function Default The egress shaping function is disabled Example The following example sets the egress shaping limit to 1000 kbps and burst size to 32 KBytes for port 2 zte cfg set qos traffic shaping fe port 2 data ra...

Page 379: ...Burst rate value The granularity is 4 KB disable Disables the queue egress shaping function Default The queue egress shaping function is disabled Example The following example sets the egress shaping limit to 1000 kbps and burst size to 32 KBytes for queue 2 on port 2 zte cfg set qos traffic shaping fe port 2 queue 2 data rate 1000 burst size 8 4 14 26 set qos traffic shaping ge port data rate Pur...

Page 380: ...ping limit to 2 Mbps and burst size to 32 KBytes for port 25 zte cfg set qos traffic shaping ge port 25 data rate 2 burst size 8 4 14 27 set qos traffic shaping ge port queue data rate Purpose This command sets the egress shaping rate for a GE port based on queue Command Mode Global configuration mode Syntax set qos traffic shaping ge port 25 28 queue 0 7 data rate 2 1000 burst size 1 40 94 disabl...

Page 381: ... rate Purpose This command sets the egress traffic shaping rate for a 10 GB port Command Mode Global configuration mode Syntax set qos traffic shaping xge port 2 1 2 4 data rate 2 10000 burst size 8 4094 disabl e Parameter Description Parameter Description 2 1 2 4 Number of a 10 GB port Different devices have different port number ranges In the syntax the 5250 52TC device is used as an example dat...

Page 382: ... 4 queue 0 7 data rate 2 10000 burst size 8 4094 disable Parameter Description Parameter Description 2 1 2 4 10 GB port number Different devices have different port number ranges In the syntax the 5250 52TC device is used as an example 0 7 Queue ID data rate Egress traffic shaping rate of the queue 2 10000 Value of the traffic shaping rate The configuration granularity is 2 Mbps burst size Egress ...

Page 383: ...able disable Parameter Description Parameter Description enable Enables the anti DOS function disable Disables the anti DOS function Guidelines When the anti dos function is enabled filter the Null Scan SYN with sport 1024 Xmascan SYSFIN attacking messages Default The anti DOS function is disabled Example The following example enables the anti DOS function zte cfg set anti dos enable 4 14 31 show ...

Page 384: ...ority Mapping Table Flags DefaultUP Port Default User Priority PortProfile Port Qos Profile RemarkUP Enable Disable Remark Packet UP in accordance with Qos Profile RemarkDSCP Enable Disable Remark Packet DSCP in accordance with Qos Profile RemapDSCP Enable Disable Remap DSCP in accordance with DSCP to DSCP Table TrustMode Port Trust Mode PORT DefaultUP RemarkDSCP RemarkUP RemapDSCP PortProfile Tru...

Page 385: ...ority DSCPNew New User Priority Value If Remark DSCP Priority Enable UsrPriNew New User Priority Value If Remark User Priority Enable QosIndex TrafficClass DropPri DSCPNew UsrPriNew Profile 100 COS 0 GREEN 0 UP 0 2 The following example shows the DSCP remapping rule zte cfg show qos priority mapping qos profile dscp to dscp DSCP Remapping Table DSCP Value 0 1 2 3 4 5 6 7 DSCP NEW 0 1 2 3 4 5 6 7 D...

Page 386: ...s profile zte cfg show qos priority mapping qos profile up to profile UP To QoS Profile Mapping Table Flags UsrPri Packets User Priority QosIndex Priority Mapping Profile TrafficClass Local Traffic Class DropPri Local Drop Priority DSCPNew New User Priority Value If Remark DSCP Priority Enable UsrPriNew New User Priority Value If Remark User Priority Enable UsrPri QosIndex TrafficClass DropPri DSC...

Page 387: ... number Different devices have different port number ranges In the syntax the 5250 28TC device is used as an example Example The following example shows the scheduling policies of the queues of port 1 zte cfg show qos queue schedule port 1 Port Egress Queue Schedule Table Port ID 1 Session Bind Profile SP Schedule Mode byte mode queue number 0 1 2 3 4 5 6 7 queue weight SP SP SP SP SP SP SP SP 4 1...

Page 388: ... ID Profile 3 Schedule Mode byte mode queue number 0 1 2 3 4 5 6 7 queue weight SP SP SP SP SP SP SP SP Session ID Profile 4 Schedule Mode byte mode queue number 0 1 2 3 4 5 6 7 queue weight SP SP SP SP SP SP SP SP Session ID Profile 5 Schedule Mode byte mode queue number 0 1 2 3 4 5 6 7 queue weight SP SP SP SP SP SP SP SP Session ID Profile 6 Schedule Mode byte mode queue number 0 1 2 3 4 5 6 7 ...

Page 389: ...it TcpSynEn Enable TCP SYN Limit UucEn Enable Unknown unicast Limit PORT DataRate PktLen BcEn KucEn McEn TcpSynEn UucEn port 1 N A N A 1 1 1 1 1 port 2 50 N A 1 1 1 1 1 port 3 N A N A 1 1 1 1 1 4 14 37 show qos traffic limit protect Purpose This command shows port protection configuration Command Mode All configuration modes Syntax show qos traffic limit protect port 1 28 protect Parameter Descrip...

Page 390: ...on Parameter Description trap Shows port trap configuration of all ports port trap Shows port trap configuration of a specified port 1 28 Port number The range varies with the device type Use the 5250 28TC as an example Example The following example shows port trap configuration of port 1 zte cfg show qos traffic limit port 1 trap PORT Trap Status port 1 Disable 4 14 39 show qos traffic shaping Pu...

Page 391: ...rst Size N A Queue 1 Shaping Rate Kbps No Limit The Burst Size N A Queue 2 Shaping Rate Kbps No Limit The Burst Size N A Queue 3 Shaping Rate Kbps No Limit The Burst Size N A Queue 4 Shaping Rate Kbps No Limit The Burst Size N A Queue 5 Shaping Rate Kbps No Limit The Burst Size N A Queue 6 Shaping Rate Kbps No Limit The Burst Size N A Queue 7 Shaping Rate Kbps No Limit The Burst Size N A 4 14 40 s...

Page 392: ... Committed information rate Kbps cbs 20000 268435456 Committed burst size bytes ebs 20000 268435456 Excess burst size bytes pir 32 10485760 Peak rate Kbps pbs 20000 268435456 Peak burst size bytes Example The following example sets a flow policer to color sensitive mode cir 64 cbs 20000 pir 128 and pbs 30000 zte cfg set qos policer 0 mode aware cir 64 cbs 20000 pir 128 pbs 30000 policer 0 the real...

Page 393: ...e process of red yellow packets When the flow policer is configured if the action is not configured it is no operation by default 0 to 255 are used for ingress ACLs Red packets and yellow packets support no operation drop and remark 256 to 383 are used for egress ACLs Red packets support no operation and drop Yellow packets support no operation Default The packet with the related color is normally...

Page 394: ...etween policer and profile effective configure exceed action to remark first 4 14 44 set qos policer counter mode Purpose This command sets the traffic statistics mode for flow policers Command Mode Global configuration mode Syntax set qos policer counter mode L1 L2 L3 Parameter Description Parameter Description L1 The statistics includes preamble IPG L2 L3 Data and Cyclic Redundancy Check CRC L2 ...

Page 395: ...55 are used for ingress ACLs 256 to 383 are used for egress ACLs enable Enables the statistics function disable Disables the statistics function Guidelines Multiple flow policers can be bound to the same counter 4 14 46 set policy policing Purpose This command enables a flow policer and handles the specified flows by using the policer Command Mode Global configuration mode Syntax set policy polici...

Page 396: ...is 20000Bytes ebs is 40000Bytes zte cfg set qos policer 10 exceed action red remark yellow remar zte cfg set qos policer 10 exceed action remark profile 10 up enable modify dscp enable modify zte cfg config ingress acl basic number 1 zte ingress basic acl rule 1 permit 192 168 0 1 255 255 255 255 zte ingress basic acl rule 2 deny any zte ingress basic acl exit zte cfg zte cfg set policy policing i...

Page 397: ... policy remark egress acl Purpose This command uses the QoS profile to modify the specified UP DSCP fields that an egress ACL matches Command Mode Global configuration mode Syntax set policy remark in egress acl 400 799 rule 1 500 up no change 0 7 dscp no chan ge 0 63 Parameter Description Parameter Description 400 799 Egress ACL number The egress ACL can directly modify the UP DSCP fields of a fl...

Page 398: ...ring port and port mirroring session disable Disables the binding between flow mirroring monitoring port and port mirroring session Guidelines The flow mirroring function requires the monitoring port configured in port mirroring session 4 14 50 set policy mirror Purpose This command mirrors the specified flow to the specified port Command Mode Global configuration mode Syntax set policy mirror in ...

Page 399: ... policy redirect in acl 1 399 800 828 rule 1 500 cpu port 1 28 Parameters Parameter Description 1 399 800 828 Ingress ACL number Only ingress ACLs support flow mirroring 1 500 Rule number of the ingress ACL cpu Redirects the specified flow to CPU port 1 28 Destination port of flow redirection 4 14 52 set policy statistics Purpose This command sets the flow count function Command Mode Global config...

Page 400: ...d all Parameters Parameter Description 1 828 ACL number 1 500 Rule number of the ACL 1 4094 VLAN ID after modification nested Adds one layer of tag out of the tagged message replace The message holds one layer of tag untagged Adds one layer of tag out of the untagged message Tagged messages will not be processed tagged Modifies the tag of tagged messages to the specified VLAN ID The untagged messa...

Page 401: ...Parameter Description 1 828 ACL number 1 500 Rule number of the ACL 4 14 55 clear policy remark Purpose This command clears the configuration that qos profile is used to modify UP DSCP Command Mode Global configuration mode Syntax clear policy remark in acl 1 828 rule 1 500 Parameter Description Parameter Description 1 828 ACL number 1 500 Rule number of the ACL 4 343 SJ 20131111172707 003 2013 11...

Page 402: ...ion Parameter Description 1 828 ACL number 1 500 Rule number of the ACL 4 14 57 clear policy mirror Purpose This command clears the configuration of the specified flows mirroring to the specified ports Command Mode Global configuration mode Syntax clear policy mirror in acl 1 399 800 828 rule 1 500 Parameter Description Parameter Description 1 399 800 828 Ingress ACL number 1 500 Rule number of th...

Page 403: ...ription Parameter Description 1 828 ACL number 1 500 Rule number of the ACL 4 14 59 clear policy redirect Purpose This command clears the configuration that the specified flows are redirected to the specified ports Command Mode Global configuration mode Syntax clear policy redirect in acl 1 399 800 828 rule 1 500 Parameter Description Parameter Description 1 399 800 828 Ingress ACL number 1 500 Ru...

Page 404: ...Description Parameter Description 1 828 ACL number 1 500 Rule number of the ACL 4 14 61 clear policy harddrop Purpose This command clears the configuration that the specified flows implement harddrop operations Command Mode Global configuration mode Syntax clear policy harddrop in acl 1 828 rule 1 500 Parameter Description Parameter Description 1 828 ACL number 1 500 Rule number of the ACL 4 346 S...

Page 405: ...Flow counter list in the range of 0 to 1023 4 14 63 clear qos policer counter Purpose This command clears the flow policer counter Command Mode Global configuration mode Syntax clear qos policer counter counterlist Parameter Description Parameter Description counterlist Flow policer counter list in the range of 0 to 383 4 14 64 clear qos policer Purpose This command clears a flow policer 4 347 SJ ...

Page 406: ...how qos policer 0 383 Parameter Description Parameter Description 0 383 Flow policer ID Guidelines If the desired flow policer is not configured a prompt is given Example The following example shows the configuration of flow policers 0 and 10 zte cfg show qos policer 0 Policer Global Counter Mode L2 The policer is not existed zte cfg show qos policer 10 Policer Global Counter Mode L2 PolicerId 10 ...

Page 407: ... This command shows the counter of the specified flows Command Mode All configuration modes Syntax show qos policy counter 0 1023 Parameter Description Parameter Description 0 1023 Flow counter number Guidelines The command without a flow counter number shows all the counters 4 14 67 show qos policer counter Purpose This command shows the flow policer counter Command Mode All configuration modes S...

Page 408: ...nding configuration of flow statistics policing 0 383 Shows the binding configuration of a flow policer or all flow policers 0 to 255 are used for ingress ACLs 256 to 383 are used for egress ACLs vlan remark Shows the binding configuration of VLAN tag modification remark Shows the binding configuration of UP DSCP modification harddrop Shows the binding configuration of harddrop Guidelines The comm...

Page 409: ...Guidelines After the ICMP packet protection function is enabled the priority of the ICMP packets passing through the switch is increased and the priority field in the VLAN tag is modified to 7 Default The ICMP packet protection function is disabled 4 14 70 set qos traffic limit ge port fe port xge portprotect Purpose This command sets the rate limit protection function Command Mode Global configur...

Page 410: ...mand sets the port shutdown time when the port rate limit function is enabled Command Mode Global configuration mode Syntax set qos traffic limit ge port fe port xge port 1 24 protect time 1 10 Parameters Parameter Description 1 24 Port number Different devices have different port number ranges In the syntax the 5250 52TC device is used as an example protect Rate limit protection time Port shutdow...

Page 411: ...ort portlist promise trunk trunklist isolate p ort portlist isolate trunk trunklist communi port portlist communi trunk trunkli st Parameter Description Parameter Description 1 4 PLVAN session number trunklist Trunk port list portlist Physical port list Guidelines The promise port can interwork with any type of ports The isolate port can interwork with the promise port and ordinary ports but canno...

Page 412: ...eter Description 1 4 PLVAN session number 4 15 3 show vlan pvlan session Purpose This command shows PVLAN configurations Command Mode Global configuration mode Syntax show vlan pvlan session 1 4 Parameter Description Parameter Description 1 4 PLVAN session number 4 15 4 set vlan pvlan session Purpose This command sets only one PVLAN port type 4 354 SJ 20131111172707 003 2013 11 27 R1 0 ZTE Proprie...

Page 413: ...ted in one session 4 16 L2pt Configuration 4 16 1 set l2pt Purpose This command sets the mode for forwarding IEEE RESERVE MC messages Command Mode Global configuration mode Syntax set l2pt protocol list enable disable invalid Parameters Parameter Description protocol list IEEE RESERVE MC protocol address range 0x00 to 0x2F enable Enables layer 2 transparent transmission of protocol messages disabl...

Page 414: ...tate Enable none Disable none Invalid 0x00 0x02 0x03 0x04 0x05 0x06 0x07 0x08 0x09 0x0a 0x0b 0x0c 0x0d 0x0e 0x0f 0x10 0x11 0x12 0x13 0x14 0x15 0x16 0x17 0x18 0x19 0x1a 0x1b 0x1c 0x1d 0x1e 0x1f 0x20 0x21 0x22 0x23 0x24 0x25 0x26 0x27 0x28 0x29 0x2a 0x2b 0x2c 0x2d 0x2e 0x2f 4 17 IPv4 Layer 3 Configuration 4 17 1 ping Purpose This command detects network connectivity 4 356 SJ 20131111172707 003 2013 ...

Page 415: ... that echo request messages are sent is 5 l The length of a sent echo request message is 28 bytes l The TTL value of a sent echo request message is 64 l The time delay of waiting responses is 2 seconds l The source IP address is the address of the local egress directly connected to the next hop 4 17 2 trace Purpose This command performs a trace operation to determine the path of IP data packets Co...

Page 416: ...P port number of the destination device Default Default max ttl 30 Default min ttl 1 Default repeat 3 Default timeout 3 Default source The default source IP address is IP address of the local egress directly connected to the next hop Default udp port 33434 4 17 3 set ipport enable disable Purpose This command enables or disables a layer 3 port Command Mode Layer 3 configuration mode Syntax set ipp...

Page 417: ...ets the IP address and mask for a layer 3 port Command Mode Layer 3 configuration mode Syntax set ipport 0 63 ipaddress A B C D M A B C D A B C D Parameters Parameter Description 0 63 Number of a layer 3 port A B C D M IP address mask A B C D A B C D IP address and mask Guidelines To modify the ipaddress parameter disable the layer 3 port first 4 17 5 set ipport mac Purpose This command sets the M...

Page 418: ... This command binds a layer 3 port to a VLAN Command Mode Layer 3 configuration mode Syntax set ipport 0 63 vlan 1 4094 Parameters Parameter Description 0 63 Number of a layer 3 port 1 4094 VLAN ID Guidelines If the port to be configured is already bound to a VLAN use this command to replace the original VLAN with a new one To modify the VLAN disable the layer 3 port first Example The following ex...

Page 419: ... Metric description string Static route description Default The Metric is 1 Example The following example adds a static route to the network 192 168 1 0 24 with the gateway of 192 168 1 3 and metric of 3 zte cfg router iproute 192 168 1 0 24 192 168 1 255 3 zte cfg router iproute 192 168 1 0 255 255 255 0 192 168 1 3 3 4 17 8 arp add Purposes This command adds a static ARP entry Command Mode Layer...

Page 420: ...d corresponding port of layer 3 port 1 zte cfg router arp add 192 168 1 167 00 00 00 00 11 22 1 4 17 9 arp delete Purpose This command deletes an ARP entry Command Mode Layer 3 configuration mode Syntax arp delete A B C D Parameter Parameter Description A B C D IP address Example The following example deletes the static address resolution with IP address of 10 40 44 167 zte cfg router arp delete 1...

Page 421: ...s Example The following example sets the aging time of layer 3 port 1 to 100 minutes zte cfg router arp ipport 1 timeout 100 4 17 11 arp gratuitous send Purpose This command enables the free ARP function and sets the period for sending free ARP packets Command Mode Layer 3 configuration mode Syntax arp gratuitous send 5 4294967295 Parameter Description Parameter Description 5 4294967295 Period sec...

Page 422: ...ify the user of the IP address confliction 4 17 12 clear arp Purpose This command deletes dynamic ARP entries in batches Command Mode Layer 3 configuration mode Syntax clear arp Guidelines This command will delete all dynamic ARP entries of the switch To delete the manually added static ARP entries run the arp delete command 4 17 13 clear iproute Purpose This command deletes static route entries C...

Page 423: ...eletes configurations of a layer 3 port Command Mode Layer 3 configuration mode Syntax clear ipport 0 63 dhcp ipaddress mac vlan Parameters Parameter Description 0 63 Number of a layer 3 port dhcp Deletes the DHCP address configuration of a layer 3 port ipaddress Deletes the IP address configuration of a layer 3 port mac Deletes the MAC address configuration of a layer 3 port vlan Deletes the VLAN...

Page 424: ...and Mode Layer 3 configuration mode Syntax hardware iproute enable disable Parameter Description Parameter Description enable Enables the hardware routing function disable Disables the hardware routing function Default The hardware routing function is disabled 4 17 17 show arp Purpose This command shows ARP entry information and the free ARP function s status in accordance with various rules Comma...

Page 425: ...a layer 3 port A B C D Shows the ARP entries related to the IP address Example 1 The following example shows all ARP entries and the free ARP function s status zte cfg router show arp 2 The following example shows invalid ARP entries zte cfg router show arp invalid 3 The following example shows static ARP entries on layer 3 port 1 zte cfg router show arp ipport 1 static 4 The following example sho...

Page 426: ... 0 00 d0 d0 07 40 13 100 static 63 up 10 85 12 15 255 255 255 0 00 d0 d0 07 40 13 1 static 2 The following example shows the detailed information about layer 3 port 0 zte cfg router show ipport 0 Status up IpAddress 10 40 89 100 VlanId 100 Mask 255 255 255 0 ArpProxy disabled MacAddress 00 d0 d0 07 40 13 Timeout 600 s IpMode static En Disable enabled Dhcp client configuration as follows Class id C...

Page 427: ... 12 15 0 63 4 17 20 show hardware iproute Purpose This command shows the configuration of hardware routing Command Mode All configuration modes Syntax show hardware iproute Example zte cfg router show hardware iproute Hardware iproute is enabled 4 18 IPv6 Layer 3 Configuration 4 18 1 set ipv6port vlan Purpose This command binds an IPv6 layer 3 port to a VLAN Command Mode Layer 3 configuration mode...

Page 428: ...he address prefix An IPv6 128 bit address is represented as a series of eight 16 bit hexadecimal fields separated by colons in the format of n n n n n n n n for example 12ab 08CD 0000 0000 0000 0000 0000 0012 For easy implementation leading zeros in each field are optional The IPv6 address above also can be expressed as 12ab 8CD 0 0 0 0 0 12 You can also use two colons to represent successive hexa...

Page 429: ... Enables the IPv6 layer 3 port disable Enables the IPv6 layer 3 port 4 18 4 ipv6route default Purpose This command adds an IPv6 static route Command Mode Layer 3 configuration mode Syntax ipv6route default ipv6Addr Parameter Description Parameter Description ipv6Addr IPv6 address of the next hop Guidelines This command cannot be used for route forwarding on a route relay device but can be used for...

Page 430: ...delines To delete configurations of an IPv6 layer 3 port disable the port first This command without the ipv6Addr M parameter is used to delete all configurations of an IPv6 layer 3 port including the VLAN and ipv6address configurations 4 18 6 clear ipv6route default Purpose This command clears an IPv6 default route Command Mode Layer 3 configuration mode Syntax clear ipv6route default 4 18 7 show...

Page 431: ...2000 1 64 4 18 8 show ipv6route Purpose This command shows the IPv6 route configurations Command Mode All configuration modes Syntax show ipv6route Examples te cfg router show ipv6route Destination ipaddr mask Gateway default 2001 10 Total 1 4 18 9 show ipv6port nd Purpose This command shows neighbor information of an IPv6 device The function of this command is the same as that of the show arp com...

Page 432: ...eachable 4 18 10 ping6 Purpose This command detects network connectivity The function of this command is the same as that of the ping command in IPv4 Command Mode Global configuration mode Syntax ping6 ipv6Addr 0 65535 48 1280 1 255 0 65535 Parameter Description Parameter Description ipv6Addr Destination IPv6 address for example ab CD 12 0 65535 first Number of times that echo request messages are...

Page 433: ... Global configuration mode Syntax set arp inspection validate ip dst mac src mac enable disable Parameter Description Parameter Description ip Checks whether the source IP address and destination IP address are valid dst mac Checks whether the destination MAC is valid src mac Checks whether the source MAC is valid enable Enables the inspection disable Disables the inspection Default The inspection...

Page 434: ...I function disable Disables the DAI function Default The DAI function is disabled Example The following example enables the DAI function on VLANs 1 to 4094 zte cfg set arp inspection vlan 1 4094 enable 4 19 3 set arp inspection port trust untrust Purpose This command sets the trusted untrusted ports Command Mode Global configuration mode Syntax set arp inspection port portlist trust untrust Parame...

Page 435: ... arp inspection port limit Purpose This command sets the maximum number of ARP messages that a port processes in each second Command Mode Global configuration mode Syntax set arp inspection port portlist limit 1 100 infinite Parameter Description Parameter Description portlist Port list 1 100 The maximum number of ARP messages that a port processes in each second infinite The number of ARP message...

Page 436: ...rp inspection Purpose This command shows the configuration of the DAI function Command Mode All configuration modes Syntax show arp inspection Example The following example shows the configuration of the DAI function zte cfg show arp inspection Enabled validation ip dst mac src mac Enabled vlanlist 1 4094 PortId TrustType Limit pps 1 Trust 2 Untrust 3 Trust 5 Trust 6 Trust 7 Trust 8 Untrust 20 9 T...

Page 437: ...sable Parameter Description Parameter Description defaultauthvlan Configures the VLAN that users can access after authentication The default is VLAN 1 enable Enables the vlanjump function disable Disables the vlanjump function Guidelines If the vlanjump function is enabled but the defaultauthvlan parameter is not set it means jumping to VLAN 1 by default If the server distributes vlanjump informat...

Page 438: ...e re authentication function Command Mode NAS configuration mode Syntax dot1x re authenticate enable disable Parameter Description Parameter Description enable Enables the re authentication function disable Disables the re authentication function Default The re authentication function is disabled Example The following example enables the re authentication function zte cfg nas dot1x re authenticate...

Page 439: ...to 7200 seconds zte cfg nas dot1x re authenticate period 7200 4 20 4 dot1x quiet period Purpose This command sets authentication quiet time Command Mode NAS configuration mode Syntax dot1x quiet period 0 65535 Parameter Parameter Description 0 65535 Authentication quiet time seconds Guidelines The authentication quiet time is the interval between the rejection of one authentication request and the...

Page 440: ...figuration mode Syntax dot1x tx period 1 65535 Parameter Description Parameter Description 1 65535 Waiting time seconds Default 30 seconds Example The following example sets the waiting time to 120 seconds zte cfg nas dot1x tx period 120 4 20 6 dot1x supplicant timeout Purpose This command sets the timeout duration when the authentication system receives a data packet from the authentication clien...

Page 441: ...he authentication system receives a data packet from the authentication server Command Mode NAS configuration mode Syntax dot1x server timeout 1 65535 Parameter Parameter Description 1 65535 Timeout duration seconds of the authentication server Default 30 seconds 4 20 8 dot1x max request Purpose This command sets the overtime retransmission times of challenge responses received by the authenticati...

Page 442: ...d vlan mac Purpose This command sets the special destination MAC address used for authentication in the specified VLAN Command Mode NAS configuration mode Syntax dot1x add vlan 1 4094 mac HH HH HH HH HH HH Parameter Description Parameter Description 1 4094 VLAN ID HH HH HH HH HH HH MAC address Guidelines This function is used to be compatible with non standard authentication client systems Default...

Page 443: ... the special destination MAC address used for authentication in the specified VLAN Command Mode NAS configuration mode Syntax dot1x delete vlan 1 4094 Parameter Parameter Description 1 4094 VLAN ID 4 20 11 clear client Purpose This command deletes all client users Command Mode NAS configuration mode Syntax clear client 4 20 12 clear client index Purpose This command deletes the specified client us...

Page 444: ...d deletes client users of the specified port VLAN Command Mode NAS configuration mode Syntax clear client port portlist vlan vlanlist Parameter Description Parameter Description portlist Port list vlanlist VLAN list 4 20 14 show dot1x Purpose This command shows the dot1x configuration Command Mode All configuration modes Syntax show dot1x 4 386 SJ 20131111172707 003 2013 11 27 R1 0 ZTE Proprietary...

Page 445: ...the information about all access users Command Mode All configuration modes Syntax show client Example The following example shows the information about access users zte cfg nas show client MaxClients 256 HistoryAccessClientsTotal 0 OnlineClients 0 HistoryFailureClientsTotal 0 4 20 16 show client index Purpose This command shows the information about the specified access user Command Mode All conf...

Page 446: ... configuration modes Syntax show client mac HH HH HH HH HH HH Parameter Parameter Description HH HH HH HH HH HH MAC address 4 20 18 show client port Purpose This command shows the user information of the specified ports Command Mode All configuration modes Syntax show client port portlist Parameter Parameter Description portlist Port list 4 388 SJ 20131111172707 003 2013 11 27 R1 0 ZTE Proprietary...

Page 447: ...1x access authentication Default The 802 1x access authentication of ports is disabled Example The following example enables the 802 1x access authentication of port 1 zte cfg nas aaa control port 1 dot1x enable 4 20 20 aaa control port port mode Purpose This command sets the authentication control mode of the specified ports Command Mode NAS configuration mode Syntax aaa control port portlist por...

Page 448: ... mode Syntax aaa control port portlist protocol pap chap eap Parameter Description Parameter Description portlist Port list pap The authentication mode is pap chap The authentication mode is chap eap The authentication mode is eap Default eap is selected Example The following example sets the authentication mode of ports 1 3 and 5 to chap zte cfg nas aaa control port 1 3 5 protocol chap 4 20 22 aa...

Page 449: ...counting function for ports 1 3 and 5 zte cfg nas aaa control port 1 3 5 accounting enable 4 20 23 aaa control port multiple hosts Purpose This command enables or disables multiuser access for the specified ports Command Mode NAS configuration mode Syntax aaa control port portlist multiple hosts enable disable Parameter Description Parameter Description portlist Port list enable Enables multiuser ...

Page 450: ...m number of access users Guidelines If the maximum number of access users is 0 it means that the number of access users to the specified ports is not limited In this case the number of access users is limited by the maximum number of users allowed by the switch Default The maximum number of access users is 0 Example The following example sets the maximum number of access users to ports 1 3 and 5 t...

Page 451: ... enables abnormal offline detection on ports 1 3 and 5 zte cfg nas aaa control port 1 3 5 keepalive enable 4 20 26 aaa control port keepalive period Purpose This command sets the period of abnormal offline detection on the specified ports Command Mode NAS configuration mode Command Mode NAS mode aaa control port portlist keepalive period 1 3600 Parameter Description Parameter Description portlist ...

Page 452: ...acket analyse port detect service detect tcp session 1 65535 udp session 1 65535 Parameter Description Parameter Description portlist Port list add Enables the port anti deception function delete Disables the port anti deception function character detect Preventive agent program ip modified Limits users to modify the public network IP addresses multi card Limits users to install multiple network c...

Page 453: ...st keepalive antidhcp enable disable Parameter Description Parameter Description portlist Port list enable Enables the port anti DHCP deception function disable Disables the port anti DHCP deception function Default The port anti DHCP deception function is disabled Example The following example enables the anti dhcp deception function for ports 1 3 and 5 zte cfg nas aaa control port 1 3 5 keepaliv...

Page 454: ...enables ports 1 3 and 5 to get users IP addresses zte cfg nas aaa control port 1 3 5 keepalive client ip enable 4 20 30 show aaa control port Purpose This command shows the aaa configuration of the specified ports Command Mode All configuration modes Syntax show aaa control port portlist Parameter Description Parameter Description portlist Port list The command without this parameter means to show...

Page 455: ...rovider ISP domain Command Mode NAS configuration mode Syntax radius isp ispname enable disable Parameters Parameter Description ispname ISP name Four ISP domains can be added enable Adds the specified ISP disable Deletes the specified ISP Example The following example adds the ISP domain named as test zte cfg nas radius isp test enable 4 20 32 radius isp add delete accounting Purpose This command...

Page 456: ... domain named as test The default port number is used zte cfg nas radius isp test add accounting 10 40 89 78 4 20 33 radius isp add delete authentication Purpose This command adds deletes an authentication server to from the specified ISP domain Command Mode NAS configuration mode Syntax radius isp ispname add delete authenticate A B C D 0 65535 Parameters Parameter Description ispname ISP name ad...

Page 457: ... Syntax radius isp ispname client A B C D Parameter Description Parameter Description ispname ISP name A B C D Client IP address Guidelines As a RADIUS client the switch communicates with the server In general the RADIUS client address is set to a layer 3 port address of the switch Example The following example sets the RADIUS client address to 10 40 89 100 zte cfg nas radius isp test client 10 40...

Page 458: ...on to the RADIUS server for authentication Example The following example sets the shared password of the ISP domain named as test to radius interactive zte cfg nas radius isp test sharedsecret radius interactive 4 20 36 radius isp sharedsecret encrypt Purpose This command configures the encrypted shared key in an ISP domain Command Mode NAS configuration mode Syntax radius isp ispname sharedsecret...

Page 459: ... nas show radius NAS name ZXSWITCH NAS Retransmit times 3 Retransmit timeout 3 Keep time 0 Isp Delimiter Default Isp zte Vendor id 3902 Client 192 168 100 140 IspName zte DefaultIsp Yes Description FullAccounts No SharedSecret E90936C7842A7501489D7E767E85D787 8 2BA236729904C54 Authentication servers Auth port 192 168 100 131 1812 Accounting servers Acct port 192 168 100 132 1813 4 20 37 radius isp...

Page 460: ...8 radius isp defaultisp Purpose This command enables or disables the specified ISP domain as the default ISP Command Mode NAS configuration mode Syntax radius isp ispname defaultisp enable disable Parameter Description Parameter Description ispname ISP name enable Enables the specified ISP domain as the default ISP disable Disables the specified ISP domain as the default ISP Example The following ...

Page 461: ...meters Parameter Parameter ispname ISP name string Description information of the specified ISP domain 4 20 40 radius nasname Purpose This command sets the Network Access Server NAS name Command Mode NAS configuration mode Syntax radius nasname nasname Parameter Description Parameter Description nasname NAS name Default The NAS name is ZXSWITCH NAS 4 403 SJ 20131111172707 003 2013 11 27 R1 0 ZTE P...

Page 462: ... name delimiter is 4 20 42 radius keep time Purpose This command sets the saving time of accounting packages that fail to be sent Command Mode NAS configuration mode Syntax radius keep time 0 4294967295 Parameter Parameter Description 0 4294967295 Saving time of accounting packages that fail to be sent The unit is seconds Default The default setting is 0 which means the saving time is not limited ...

Page 463: ...55 Retransmission interval seconds Default The retransmission interval is 3 seconds 4 20 44 radius retransmit Purpose This command sets the retransmission times of remote authentication requests Command Mode NAS configuration mode Syntax radius retransmit 1 255 Parameter Parameter Description 1 255 Retransmission times Default The default retransmission times is 3 4 405 SJ 20131111172707 003 2013 ...

Page 464: ... example sets the vendor id to 10008 zte cfg nas radius vendor id 10008 4 20 46 clear accounting stop Purpose This command deletes the RADIUS accounting packages that fail to be transmitted Command Mode NAS configuration mode Syntax clear accounting stop session id session id user name user name isp name isp n ame server ip A B C D Parameters Parameter Description session id Deletes by session ID ...

Page 465: ...without this parameter shows all ISP configurations Example The following example shows all ISP configurations zte cfg nas show radius NAS name name of nas Retransmit times 3 Retransmit timeout 3 Keep time 3600 Isp Delimiter Default Isp test Vendor id 3902 Client 0 0 0 0 IspName test DefaultIsp Yes Description FullAccounts Yes SharedSecret radius interactive Authentication servers Auth port 10 40 ...

Page 466: ... Description session id Displays by session ID user name Displays by user name isp name Displays by ISP name A B C D Displays by ISP sever s IP address 4 21 QinQ Configuration 4 21 1 set vlan qinq customer port Purpose This command adds deletes the customer ports of QinQ Command Mode Global configuration mode Syntax set vlan qinq customer port portlist enable disable Parameter Description Paramete...

Page 467: ...x set vlan qinq uplink port portlist enable disable Parameter Description Parameter Description portlist Port list enable Adds uplink ports disable Deletes uplink ports Example The following example configures port 24 as an uplink port zte cfg set qinq uplink port 24 enable 4 21 3 set vlan egress tpid session Purpose This command sets the egress tpid of a template Command Mode Global configuration...

Page 468: ...te Command Mode Global configuration mode Syntax set vlan ingress tpid session 1 7 tpid value 0xHHHH Parameter Description Parameter Description 1 7 Serial number of an ingress tpid template 0xHHHH Ingress tpid value Example The following example sets the ingress tpid of template 1 to 0x9100 zte cfg set vlan ingress tpid sesion 1 tpid value 0x9100 4 21 5 set port egress tpid Purpose This command b...

Page 469: ...6 set port ingress tpid Purpose This command binds a port to a template Command Mode Global configuration mode Syntax set port portlist ingress tpid session sessionlist Parameter Description Parameter Description portlist Port list sessionlist Template to be bound Default The default ingress tpid session of a port is 0 Example The following example sets the ingress tpid session of port 7 to 1 zte ...

Page 470: ...e cfg show vlan egress tpid EGRESS TPID PROFILE TABLE SessionId TPID 0 0x8100 1 0xaaaa 2 0x0000 3 0x0000 4 0x0000 5 0x0000 6 0x0000 7 0x0000 4 21 8 show vlan ingress tpid Purpose This command shows ingress tpid values of templates Command Mode Global configuration mode Syntax show vlan ingress tpid Example The following example shows ingress tpid values of all templates zte cfg show vlan ingress t...

Page 471: ...rts of QinQ Command Mode Global configuration mode Syntax show vlan qinq Example The following example shows QinQ ports zte cfg show vlan qinq Customer port 1 5 Uplink port 8 4 22 syslog Configuration 4 22 1 set syslog module Purpose This command enables or disables the syslog function based on module Command Mode Global configuration mode 4 413 SJ 20131111172707 003 2013 11 27 R1 0 ZTE Proprietar...

Page 472: ...ult the function is disabled radius Enables or disables the syslog function of RADIUS modules By default the function is disabled AAA Enables or disables the syslog function of AAA modules enable Enables the syslog function disable Disables the syslog function Example The following example enables the syslog function of all modules zte cfg set syslog module all enable 4 22 2 set syslog level Purpo...

Page 473: ...l is higher than the selected level are filtered Default The default configuration is level 7 Example The following example sets the level of syslog information to 7 normal information zte cfg set syslog level informational 4 22 3 set syslog add server Purpose This command sets a syslog server Command Mode Global configuration mode Syntax set syslog add server 1 5 ipaddress A B C D name name 0 655...

Page 474: ... of the syslog server to be deleted Example The following example deletes the syslog server whose ID is 1 zte cfg set syslog delete server 1 4 22 5 set syslog enable disable Purpose This command enables or disables the syslog function Command Mode Global configuration mode Syntax set syslog enable disable Parameters Parameter Description enable Enables the syslog function disable Disables the sysl...

Page 475: ...figuration modes show syslog status Example The following example shows the syslog configuration Syslog status enable Syslog level informational Syslog enabled modules commandlog AAA radius Syslog disabled modules all others Syslog server IP UDP port Name 1 192 168 1 1 514 server1 4 22 7 show pppoe plus port Purpose This command shows port configuration information of PPPoE PLUS Command Mode All c...

Page 476: ...PPoE VST remote ID on port 1 1 ztezte 4 23 NTP Configuration 4 23 1 set ntp add authentication key Purpose This command sets the Network Time Protocol NTP authentication key Command Mode Global configuration mode Syntax set ntp add authentication key 1 255 md5 string Parameters Parameter Description 1 255 Authentication ID ranging from 1 to 255 string md5 authentication code containing 1 to 16 cha...

Page 477: ...sted key Purpose This command sets the trusted authentication key of the NTP Command Mode Global configuration mode Syntax set ntp add delete trusted key 1 255 Parameters Parameter Description add Adds the trusted authentication key delete Deletes the trusted authentication key 1 255 Authentication ID ranging from 1 to 255 Example The following example sets the trusted authentication key of the NT...

Page 478: ... function Default The NTP authentication function is disabled Example The following example enables the NTP authentication function zte cfg set ntp authenticate en 4 23 5 set ntp server Purpose This command sets the NTP server Command Mode Global configuration mode Syntax set ntp server A B C D version 1 2 3 key 1 255 Parameter Description Parameter Description A B C D IP address of the NTP server...

Page 479: ...y 1 255 Parameter Description Parameter Description A B C D The IP address of the NTP second server version 1 2 3 Configure the NTP second server s version default is 3 key 1 255 Configure the NTP second server s authentication key Defaults The default version of the NTP second server as 3 Example Configure the NTP second server s IP address as 192 168 1 1 use the protocol version 1 zte cfg set nt...

Page 480: ...ort address Guidelines If the entered IP address is 0 0 0 0 the source IP address is restored to the default setting which means it is null 4 23 8 set ntp clock period Purpose This command sets the NTP time synchronization period Command Mode Global configuration mode Syntax set ntp clock period 5 2147483647 Parameter Parameter Description 5 2147483647 Time synchronization period seconds Default 1...

Page 481: ...me synchronized by the NTP is the GMT standard time If local time is required configure the corresponding timezone information 4 23 10 set ntp enable disable Purpose This command enables or disables the NTP function Command Mode Global configuration mode Syntax set ntp enable disable Parameters Parameter Description enable Enables the NTP function disable Disables the NTP function Default The NTP ...

Page 482: ...ource UDP port of the sent NTP packets is 1000 Default The ID of the source UDP port is 1000 4 23 12 show ntp Purpose This command shows the NTP configuration Command Mode All configuration modes Syntax show ntp Example The following example shows the NTP configuration zte cfg show ntp ntp protocol is enabled ntp server address 10 40 89 78 ntp source address None ntp second server protocol version...

Page 483: ...ation mode Syntax set vlan vlanlist permit forbid port portlist trunk trunklist Parameter Description Parameter Description vlanlist VLAN ID ranging from 1 to 4094 permit Permits dynamically adding ports trunks forbid Forbids dynamically adding ports trunks port portlist Port list trunk trunklist Trunk list Guidelines When enabling the General VLAN Registration Protocol GVRP on ports trunks specif...

Page 484: ...Name VlanMode Static Tagged ports Untagged ports 1 28 Untagged trunks 1 15 Forbidden ports VlanId 3 VlanStatus disabled VlanName VlanMode Static Tagged ports Untagged ports Forbidden ports 3 5 VlanId 5 VlanStatus disabled VlanName VlanMode Static Tagged ports Untagged ports Forbidden ports 3 5 Total Vlans 3 zte cfg 4 24 2 set garp enable disable Purpose This command enables or disables the GARP fu...

Page 485: ... consumption is decreased to make the garp protocol packets carry more information The default value is 100 milliseconds join Join timer When the timer times out the garp protocol sends garp join packets The default value is 200 milliseconds and the range is 200 to 400 milliseconds leave Leave timer When the timer times out the garp protocol sends garp leave packets The default value is 600 millis...

Page 486: ... example shows the GARP configuration zte cfg show garp GARP is enabled GARP Timers Hold Timeout 100 milliseconds Join Timeout 200 milliseconds Leave Timeout 600 milliseconds LeaveAll Timeout 10000 milliseconds 4 24 5 set gvrp enable disable Purpose This command enables or disables the GVRP function Command Mode Global configuration mode Syntax set gvrp enable disable Parameter Description Paramet...

Page 487: ...able Parameter Description Parameter Description port portlist Port list trunk trunklist Trunk list enable Enables the GVRP disable Disables the GVRP Guidelines The set vlan permit forbid command can be run to specify VLANs that can dynamically add delete ports trunks Default The GVRP is disabled on ports trunks 4 24 7 set gvrp port trunk registration Purpose This command sets the registration typ...

Page 488: ...ve been learned cannot be deregistered forbidden The ports trunks does not send or receive GVRP packets VLAN attributes that have been learned can be deregistered Default Ports trunks can be added to dynamic VLANs 4 24 8 show gvrp Purpose This command shows the GVRP configuration Command Mode All configuration modes Syntax show gvrp Example The following example shows the GVRP configuration zte cf...

Page 489: ...d option82 functions disable Disables the DHCP snooping and option82 functions Default The DHCP snooping and option82 functions are disabled 4 25 2 set dhcp snooping add delete Purpose This command enables or disables the DHCP snooping function for the specified ports trunks Command Mode Global configuration mode Syntax set dhcp snooping add delete port portlist trunk trunklist Parameters Paramete...

Page 490: ... disabled 0x40000cf0 zte cfg set dhcp snooping and option82 enable zte cfg set dhcp snooping add port 10 4 25 3 set dhcp port server cascade client Purpose This command sets the property of a port in the DHCP snooping function Command Mode Global configuration mode Syntax set dhcp port 1 28 server cascade client Parameters Parameter Description 1 28 Port number Different devices have different por...

Page 491: ...d Mode set dhcp trunk trunklist server default Parameter Description Parameter Description trunklist Trunk list server Configures the ports to connect to the DHCP sever It is a trusted port default Default property Guidelines The default property indicates that the DHCP snooping function is ineffective The DHCP snooping function cannot be enabled on trunks when the trunks property is default Examp...

Page 492: ...d by the server to the client are recorded and the messages with other source IP addresses are filtered to prevent spoofing Before enabling the ip source guard function you must enable the DHCP snooping function Example The following example enables the ip source guard function for ports 9 and 10 zte cfg set dhcp ip source guard add port 9 10 Fail to enable ip source guard on port 9 DHCP snooping ...

Page 493: ...t to automatically learn dynamic entries The dynamic entries will disappear with time passing by or the change of port status To make the entries stable add static entries manually Example The following example adds the static user information binding entry with the MAC address of 00 d0 d0 00 00 01 IP address of 192 168 0 1 VLAN ID of 1 and port number of 10 zte cfg set dhcp snooping bind entry ma...

Page 494: ...ged entries are not deleted until the aging time is up Default The default configuration is drop 4 25 8 set dhcp option82 add delete Purpose This command enables or disables the DHCP option82 function for the specified ports trunks Command Mode Global configuration mode Syntax set dhcp option82 add delete port portlist trunk trunklist Parameters Parameter Description add Enables the option82 funct...

Page 495: ...mat string Character string Guidelines The device identification information can be used to locate the specified switch in the user positioning procedure Example The following example sets option82 ani to zte test zte cfg set dhcp option82 sub option device ani zte test 4 25 10 set dhcp option82 sub option Purpose This command sets the sub option of DHCP option82 Command Mode Global configuration ...

Page 496: ... henan rft format key The remote ID sub option is in key format string Character string manual Enables the circuit ID sub option and uses the customized format string Character string subscriber ID Adds a subscriber ID sub option on Enables the sub option string Character string off Disables the sub option reserve Adds a reserve sub option It is a customized option on Enables the sub option tag Ta...

Page 497: ...ption82 is received the packet is directly forwarded to the server in case of the default mode or discarded in case of the drop mode or modified in accordance with the local option82 and then forwarded to the server in case of the modify mode or appended with the local option82 and then forwarded to the server in case of the append mode 4 25 12 clear dhcp snp bind entry mac Purpose This command cl...

Page 498: ...ommand Mode All configuration modes Syntax show dhcp Example The following example shows the DHCP configuration DHCP download flag is disabled config file is found DHCP download will not startup when system reboot DHCP config file option 67 dat will be translated to ZXR10_5250 28TC dat DHCP snooping and option82 is enableDHCP snooping and option82 is enabled PortId PortType Snooping Option82 1 Cli...

Page 499: ...uration modes Syntax show dhcp snooping Example The following example shows the global configuration of DHCP snooping zte cfg show dhcp snooping DHCP snooping is enabled on the following port s PortId PortType 1 Client 2 Client DHCP snooping disabled vlan none 4 25 16 show dhcp snooping binding Purpose This command shows the entry information of DHCP snooping Command Mode All configuration modes S...

Page 500: ... s 10 MAC Address IP Address Lease sec Vlan Port Status Type 00 d0 d0 00 00 01 192 168 0 1 1 10 bound static 4 25 17 show dhcp ip source guard Purpose This command shows the ip source guard configuration of ports Command Mode All configuration modes Syntax show dhcp ip source guard Example The following example shows the ip source guard configuration of ports zte cfg show dhcp ip source guard Ip s...

Page 501: ...ommand Mode All configuration modes Syntax show dhcp option82 port portlist Parameter Description Parameter Description portlist One port number or multiple port numbers Example The following example shows the configuration of DHCP option82 on port 1 1 and 1 2 ztepm cfg show dhcp option82 port 1 1 2 Port 1 1 DHCP option82 sub option information on port 1 1 Circuit ID Enabled Format Manual Value 12...

Page 502: ...urpose This command shows device information including ANI and remote ID Command Mode All configuration modes Syntax show dhcp option82 device Example The following example shows the current device information zte cfg show dhcp option82 device DHCP option82 sub option information on device Access Node Identifier Remote ID Cisco 4 25 21 set dhcp client enable disable Purpose This command enables or...

Page 503: ...akes a broadcast procedure when replying to a packet Command Mode Global configuration mode Syntax set dhcp client broadcast flag enable disable Parameter Description Parameter Description enable The DHCP server takes a broadcast procedure when replying to a packet disable The DHCP server does not take a broadcast procedure when replying to a packet Default The DHCP server does not take a broadcas...

Page 504: ...of a layer 3 port through DHCP Command Mode Layer 3 configuration mode Syntax set ipport 0 63 ipaddress dhcp Parameter Description Parameter Description 0 63 Number of the layer 3 port Guidelines DHCP clients can get IP addresses only Other parameters such as MAC and VLAN require manual configuration 4 25 25 set ipport ipaddress dhcp release renew Purpose This command releases renews the IP addres...

Page 505: ...iguration mode Syntax set ipport 0 63 dhcp client class id characters string hex numbers hex string client id mac hostname string lease 0 365 0 23 0 59 infinite Parameter Description Parameter Parameter 0 63 Number of a layer 3 port class id characters string Configures class id in character format class id hex numbers hex string Configures class id in hex client id mac Uses the switch s MAC addre...

Page 506: ...address By default it is enabled domain name Requires the DHCP server to return the domain name server address By default it is enabled route Requires the DHCP server to return the default route By default it is enabled static route Requires the DHCP server to return the static route By default it is enabled tftp server name Requires the DHCP server to return the tftp server address By default it ...

Page 507: ...lay server A B C D Parameter Description Parameter Description 0 63 Layer 3 interface number A B C D Server address 4 25 30 set dhcp relay global ipport Purpose This command enables the DHCP relay function for an IP port Command Mode Global configuration mode Syntax set dhcp relay global ipport 0 63 enable disable Parameter Description Parameter Description 0 63 Layer 3 interface number enable Ena...

Page 508: ...tion Parameter Parameter 0 63 Number of a layer 3 port class id Clears the class id configuration client id Clears the client id configuration hostname Clears the hostname configuration lease Clears the lease configuration 4 25 32 clear ipport dhcp client request Purpose This command clears the configuration of requesting the DHCP server to return various information Command Mode Layer 3 configura...

Page 509: ...h memory Command Mode Global configuration mode Syntax set dhcp snooping bind entry database read 4 25 34 set dhcp snooping bind entry database recovery Purpose This command restores the binding table from the Flash memory after the device is restarted Command Mode Global configuration mode Syntax set dhcp snooping bind entry database recovery disable enable Parameter Description Parameter Descrip...

Page 510: ...able time 30 65535 Parameter Description Parameter Description disable Disables the function of scheduled writing of the DHCP binding table into the Flash memory enable Enables the function of scheduled writing of the DHCP binding table into the Flash memory time Sets the scheduled time 30 65535 Scheduled Time 4 25 36 set dhcp snooping bind entry database write Purpose This command writes the DHCP...

Page 511: ...base timer enable 5000 4 25 38 set dhcp special udp light check enable disable Purpose This command globally enables or disables the DHCP UDP checking function Command Mode Global configuration mode Syntax set dhcp special udp light check enable disable Parameter Description Parameter Description enable Enables the DHCP UDP checking function disable Disables the DHCP UDP checking function Default ...

Page 512: ...ion for the specified VLANs disable Disables the DHCP snooping function for the specified VLANs Default The DHCP snooping function is enabled 4 25 40 set dhcp snooping quota Purpose This command sets the quota of the binding table supported by DHCP snooping globally Command Mode Global configuration mode Syntax set dhcp snooping quota 0 8191 Parameter Description Parameter Description 0 8191 Quota...

Page 513: ...ing based on a VLAN Command Mode Global configuration mode Syntax set dhcp snooping vlan vlanlist quota 0 8191 Parameter Description Parameter Description vlanlist VLAN list 0 8191 Quota of the binding table Default By default the quota is not limited Example The following example sets the quota of the binding table supported by DHCP snooping to 100 in VLAN 1 zte cfg set dhcp snooping vlan 1 quota...

Page 514: ...f the binding table Default By default the quota is not limited 4 25 43 set dhcp snooping vlan port quota Purpose This command sets the quota of the binding table supported by DHCP snooping based on a VLAN and a port Command Mode Global configuration mode Syntax set dhcp snooping vlan vlanlist port 1 28 quota 0 8191 Parameter Description Parameter Description vlanlist VLAN list 1 28 Port number Th...

Page 515: ...hcp snooping quota 1 8191 Parameter Description Parameter Description 1 8191 Quota of the binding table Example The following example displays the configurations related to a DHCP quota zte cfg show dhcp snooping quota DHCP snooping global quota no limit Quota VlanId PortId 10 2 100 1 100 1 200 1094 231 100 1 255 2 2 4 26 DHCPv6 Configuration 4 26 1 set dhcpv6 snooping enable disable Purpose This ...

Page 516: ... dhcpv6 snooping add delete Purpose This command enables or disables the DHCPv6 snooping function for the specified ports Command Mode Global configuration mode Syntax set dhcpv6 snooping add delete port portlist Parameter Description Parameter Description add Enables the DHCPv6 snooping function delete Disables the DHCPv6 snooping function port portlist Port list Guidelines To make the snooping f...

Page 517: ...ption 1 28 Port number Different devices have different port number ranges In the syntax the 5250 28TC device is used as an example server Configures the port to connect to the DHCPv6 sever It is a trusted port cascade Configures the port to be cascaded It is an untrusted port client Configures the port to be directly connected to the DHCPv6 client It is an untrusted port Guidelines DHCPv6 Discove...

Page 518: ...eractions between the client and server the IP addresses allocated by the server to the client are recorded and the messages with other source IP addresses are filtered to prevent spoofing Before enabling the ip source guard function you must enable the DHCPv6 snooping function Examples The following example enables the ip source guard function for ports 9 and 10 zte cfg set dhcpv6 ip source guard...

Page 519: ...the DHCPv6 option18 function Default The DHCPv6 option18 function is disabled 4 26 6 set dhcpv6 option18 add delete Purpose This command enables or disables the DHCPv6 option18 function for the specified ports Command Mode Global configuration mode Syntax set dhcpv6 option18 add delete port portlist Parameter Description Parameter Description add Enables the DHCPv6 option18 function delete Disable...

Page 520: ...es Before enabling the DHCPv6 option37 function on a port globally enable the DHCPv6 option37 function Default The DHCPv6 option37 function is disabled 4 26 8 set dhcpv6 option37 add delete Purpose This command enables or disables the DHCPv6 option37 function for the specified ports Command Mode Global configuration mode Syntax set dhcpv6 option37 add delete port portlist Parameter Description Par...

Page 521: ...es the DHCPv6 option82 function disable Disables the DHCPv6 option82 function Guidelines Before enabling the DHCPv6 option82 function on a port globally enable the DHCPv6 option82 function Default The DHCPv6 option82 function is disabled 4 26 10 set dhcpv6 option82 add delete Purpose This command enables or disables the DHCPv6 option82 function for the specified ports Command Mode Global configura...

Page 522: ...yntax set dhcpv6 option82 ani string Parameter Description Parameter Description string Device identification information Guidelines The device identification information can be used to locate the specified switch in the user positioning procedure Examples The following example configures the option82 ani to zte lsj zte cfg set dhcpv6 option82 ani zte lsj 4 26 12 set dhcpv6 option82 sub option Pur...

Page 523: ...na tel Enables the circuit ID sub option and uses the china tel format dsl forum Enables the circuit ID sub option and uses the dsl forum format string Character string 1 255 ID of the tag of the sub option It cannot be 1 2 or 6 4 26 13 clear dhcpv6 snp bind entry mac Purpose This command clears ip source guard entries Command Mode Global configuration mode Syntax clear dhcpv6 snp bind entry mac H...

Page 524: ...s disabled DHCP v6 option82 is disabled PortId PortType Snooping IpSrcGrd Option18 Option37 Option82 1 Client Enabled Disabled Disabled Disabled Disabled 2 Client Disabled Disabled Disabled Disabled Disabled 3 Client Disabled Disabled Disabled Disabled Disabled 4 Client Disabled Disabled Disabled Disabled Disabled 5 Client Disabled Disabled Disabled Disabled Disabled 6 Client Disabled Disabled Dis...

Page 525: ... shows the global configuration of DHCPv6 snooping zte cfg show dhcpv6 snooping DHCP v6 snooping is enabled on the following port s PortId PortType 1 Client 9 Client 10 Client 4 26 17 show dhcpv6 snooping binding Purpose This command shows the entry information of DHCPv6 snooping Command Mode All configuration modes Syntax show dhcpv6 snooping port 1 28 Parameter Description Parameter Description ...

Page 526: ...urce guard configuration of ports Command Mode All configuration modes Syntax show dhcpv6 ip source guard Example The following example shows the ip source guard configuration of ports zte cfg show dhcpv6 ip source guard Ip source guard is configured on the following port s 9 10 4 26 19 show dhcpv6 option82 Purpose This command shows the configuration of DHCPv6 option82 Command Mode All configurat...

Page 527: ...r Description portlist One port number or multiple port numbers Example The following example shows the configuration of DHCPv6 option82 on port 1 1 and 1 2 zte cfg show dhcpv6 option82 port 1 1 2 Port 1 1 DHCP v6 option82 sub option information on port 1 1 Circuit ID Disabled Remote ID Enabled Format Cisco Subscriber ID Disabled Reserve Disabled Port 1 2 DHCP v6 option82 is disabled on port 1 2 4...

Page 528: ...mand shows the configuration of DHCPv6 option18 Command Mode All configuration modes Syntax show dhcpv6 option18 Example The following example shows the configuration of DHCPv6 option18 zte cfg show dhcpv6 option18 DHCP v6 option18 is enabled on the following port s PortId PortType 3 Client 4 26 23 show dhcpv6 option37 Purpose This command shows the configuration of DHCPv6 option37 Command Mode Al...

Page 529: ...e specified ports as Virtual Broadband Access Server VBAS trusted ports Command Mode Global configuration mode Syntax set vbas trust port portlist enable disable Parameters Parameter Description portlist Port list enable Enables the specified ports as trusted ports disable Disables the specified ports as trusted ports Default Ports are disabled as VBAS trusted ports Example The following example e...

Page 530: ...Guidelines By default ports are untrusted The untrusted ports will drop the received VBAS messages If switches are cascaded cascade ports should be configured on the switches so that VBAS messages can be forwarded properly Default Ports are disabled as VBAS cascade ports Example The following example enables port 8 as a VBAS cascade port zte cfg set vbas cascade port 8 enable 4 27 3 set vbas enabl...

Page 531: ...d Mode All configuration mode Syntax show vbas Example The following example shows the VBAS configuration zte cfg show vbas vbas disabled trust port 8 cascade port 6 4 28 PPPoE PLUS Configuration 4 28 1 set pppoe plus enable disable Purpose This command enables or disables the PPPoE function Command Mode Global configuration mode Syntax set pppoe plus enable disable 4 473 SJ 20131111172707 003 201...

Page 532: ...sl forum cisco china tel manual string Parameters Parameter Description 1 28 Port number Different devices have different port number ranges In the syntax the 5250 28TC device is used as an example dsl forum DSL forum tag format cisco Cisco tag format china tel China Telecom tag format manual Customized format string Character string format stands space stands stands which contains a maximum of 12...

Page 533: ... which contains a maximum of 63 characters Example The following example sets the rid character string of port 2 to port 2 zte cfg set pppoe plus rid 2 port2 4 28 4 show pppoe plus port Purpose This command shows port configuration information of PPPoE PLUS Command Mode All configuration mode Syntax show pppoe plus port 1 28 Parameter Description Parameter Description 1 28 Port number Different de...

Page 534: ... plus Example The following example shows the PPPoE global configuration zte cfg show pppoe plus PPPoE plus is enabled PPPoE Vendor Specific Tag format NULL 4 28 6 show pppoe plus port Purpose This command shows the remote ID of a port Command Mode All configuration mode Syntax show pppoe plus port 1 28 Parameter Description Parameter Description 1 28 Port number Different devices have different p...

Page 535: ...ts will not be modified drop Drop mode in which the packets carrying the pppoe tag information will be discarded modify Modify mode in which the pppoe tag information in packets will be replaced by the local pppoe tag information Guidelines When a PPPoE packet carrying the pppoe tag information is received the port directly forwards the packet to the server if the mode is default or discards the p...

Page 536: ...te cfg set zesr ctrl vlan 1 protect instance 1 4 29 2 clear zesr ctrl vlan protect instance Purpose This command release binding between a VLAN and an STP instance Command Mode Global configuration mode Syntax clear zesr ctrl vlan 1 4094 protect instance Parameter Description Parameter Description 1 4094 Control VLAN ID in a ZESR domain range 1 4094 Example The following example release binding be...

Page 537: ...node zess transit Sets a node as a zess transit node primary port port1 Primary port number The range varies with the device type primary trunk trunkId Primary trunk ID range 1 15 secondary port port2 Secondary port number The range varies with the device type secondary trunk trunkId Secondary trunk ID range 1 15 Example The following example sets port 1 2 as the primary port and 1 4 as the second...

Page 538: ...number The range varies with the device type secondary trunk trunkId Secondary trunk ID range 1 15 Example The following example sets port 1 2 as a primary port and 1 4 as a secondary port on a node in a ZESR control VLAN zte cfg set zesr ctrl vlan 10 level 1 seg 1 role mas primary port 1 2 secondary port 1 4 4 29 5 set zesr ctrl vlan level seg role edge assistant edge control Purpose This command...

Page 539: ...e and preup time of a major level ring Command Mode Global configuration mode Syntax set zesr ctrl vlan 1 4094 major level preforward 10 600 preup 0 500 Parameter Description Parameter Description 1 4094 Control VLAN ID in a ZESR domain range 1 4094 10 600 Preforward time range 10 600 default 10 unit seconds preup 0 500 Preup time range 0 500 default 0 unit seconds Example The following example se...

Page 540: ...ime to 11 and preup time to 1 for a node in level 1 segment 1 VLAN 1 in a ZESR control VLAN zte cfg set zesr ctrl vlan 1 level 1 seg 1 preforward 11 preup 1 4 29 8 set zesr link hello Purpose This command enables or disables the link hello function Command Mode Global configuration mode Syntax set zesr link hello port id normal special Parameter Description Parameter Description port id Port for w...

Page 541: ...ts default 1000 ms 3 10 Time out period of link hello packets default 5 Example The following example sets the interval of sending link hello packets on port 1 1 zte cfg set zesr link hello hello interval 10 fail times 5 4 29 10 set zesr protocol mac Purpose This command sets the mode of destination MAC addresses in protocol packets Command Mode Global configuration mode Syntax set zesr protocol m...

Page 542: ...rt time 30 600 Parameter Description Parameter Description 30 600 Restart time range 30 600 unit seconds Default 120 seconds Example The following example sets the restart time to 33 zte cfg set zesr restart time 33 4 29 12 set zesr ctrl vlan tcn sending Purpose This command enables or disables the TCN sending function in a ZESR domain Command Mode Global configuration mode Syntax set zesr ctrl vl...

Page 543: ...unction for a port Command Mode Global configuration mode Syntax set zesr tcn sending port portlist trunk trunklist enable disable Parameter Description Parameter Description port portlist Port number The range varies with the device type trunk trunklist Trunk list range 1 15 enable Enables the TCN sending function disable Disables the TCN sending function Example The following example enables the...

Page 544: ... ZESR domain Command Mode Global configuration mode Syntax show zesr ctrl vlan 1 4094 Parameter Description Parameter Description 1 4094 Control VLAN ID in a ZESR domain range 1 4094 The information about the ZESR domain where the control VLAN ID is located is displayed Guidelines If no control VLAN is specified information about all ZESR domains is displayed 4 30 SQinQ Configuration 4 30 1 set vl...

Page 545: ... supports eight VLANs vlan id SPVLAN Guidelines When SQinQ is enabled the uplink and downlink traffics are forwarded in SPVLAN normally SPVLAN tags on user side ports are removed 4 30 2 clear vlan sqinq Purpose This command deletes all SQinQ sessions Command Mode Global configuration mode Syntax clear vlan sqinq 4 30 3 clear vlan sqinq session Purpose This command deletes the specified SQinQ sessi...

Page 546: ...hows all SQinQ sessions Command Mode Global configuration mode Syntax show vlan sqinq 4 30 5 show vlan sqinq session Purpose This command shows the specified SQinQ session Command Mode Global configuration mode Syntax show vlan sqinq session 1 400 Parameter Description Parameter Description 1 400 SQinQ session ID 4 488 SJ 20131111172707 003 2013 11 27 R1 0 ZTE Proprietary and Confidential ...

Page 547: ... session number port id User side port number vlan list VLAN list of CVLAN One session supports eight vlan ranges vlan id SPVLAN Guidelines When VLAN Mapping is enabled the uplink traffic is forwarded in SPVLAN The downlink traffic is forwarded in SPVLAN When reaching the user port it will be changed to the corresponding CVLAN tag 4 31 2 clear vlan mapping Purpose This command deletes all VLAN Map...

Page 548: ...ssion number 4 31 4 clear vlan mapping user Purpose This command deletes the user information of all VLAN Mapping sessions Command Mode Global configuration mode Syntax clear vlan mapping user 4 31 5 clear vlan mapping user session Purpose This command deletes the user information of the specified VLAN Mapping session Command Mode Global configuration mode Syntax clear vlan mapping user session 1 ...

Page 549: ...apping 4 31 7 show vlan mapping session Purpose This command shows the specified VLAN Mapping session Command Mode All configuration modes Syntax show vlan mapping session 1 400 Parameter Description Parameter Description 1 400 VLAN Mapping session number 4 31 8 show vlan mapping user table Purpose This command shows the user information of all VLAN Mapping sessions 4 491 SJ 20131111172707 003 201...

Page 550: ...tion modes Syntax show vlan mapping user table session 1 400 Parameter Description Parameter Description 1 400 VLAN Mapping session number 4 32 PP Configuration 4 32 1 create protocol protect mac drop rule Purpose This command creates a MAC drop rule Command Mode Global configuration mode Syntax create protocol protect mac drop rule 1 128 src mac HH HH HH HH HH HH mask H H HH HH HH HH HH 4 492 SJ ...

Page 551: ... enable disable Purpose This command enables or disables the port based PP alarm function Command Mode Global configuration mode Syntax set protocol protect alarm port portlist enable disable Parameter Description Parameter Description portlist Port list enable Enables the PP function disable Disables the PP function Default The PP function is enabled Example The following example disables the PP ...

Page 552: ...VBAS DHCP EOAM PPPoE loopdetect DHCPv6 MLD IPv6 LLDP UDLD CFM and unknown 0 18000 30s alarm threshold value 0 indicates that alarms never occur Example The following example sets the alarm threshold of the STP protocol protection on port 1 to 3000 zte cfg set protocol protect alarm port 1 stp 3000 4 32 4 set protocol protect limit Purpose This command sets the rate limit value of the protocol pack...

Page 553: ...ommand sets the PP priority Command Mode Global configuration mode Syntax set protocol protect priority protocol name all 0 7 default Parameter Description Parameter Description protocol name Protocol names including 802 1x arp reply arp request DHCP DHCPv6 EOAM GM GVRP IGMP IP IPv6 LACP LLDP loopdetect MLD PPPoE STP UDLD VBAS and ZESR all All supported protocols 0 7 Priority value default Restore...

Page 554: ...bles the MAC drop function By default the function is disabled Example The following example enables the MAC drop function zte cfg set protocol protect mac drop enable 4 32 7 set protocol protect mac drop rule bind port Purpose This command binds a MAC drop rule with a port Command Mode Global configuration mode Syntax set protocol protect mac drop rule 1 128 bind port portlist Parameter Descripti...

Page 555: ... Parameter Description Parameter Description portlist Port list Example The following example clears dropped packet statistics on port 1 zte cfg clear protocol protect mac drop counter port 1 4 32 9 clear protocol protect mac drop port rule Purpose This command clears MAC drop rules on a specified port or all ports Command Mode Global configuration mode Syntax clear protocol protect mac drop port ...

Page 556: ... 128 Parameter Description Parameter Description 1 128 Rule index Example The following example clears MAC drop rule 1 zte cfg clear protocol protect mac drop rule 1 4 32 11 show protocol protect statistic Purpose This command shows the protocol protect statistics information on PP ports Command Mode All configuration modes Syntax show protocol protect statistic port portlist Parameter Description...

Page 557: ...d Mode All configuration modes Syntax show protocol protect limit Example The following example shows the rate limit value of the protocol packet sent to the CPU zte cfg show protocol protect limit ProtocolGroup 1s limit ProtocolGroup 1s limit ieee reserved1 128 zesr 128 loopdetect 128 arp reply 256 ieee reserved2 128 802 1x 128 igmp 256 dhcp 512 vbas 128 pppoe plus 128 arp request 256 sflow 768 u...

Page 558: ...ult gvrp default vbas default dhcp default eoam default pppoe plus default loopdetect default dhcpv6 default mld default ipv6 default lldp default udld default zesr default 4 32 14 show protocol protect mac drop port Purpose This command shows rules bound with a port and related statistics Command Mode Global configuration mode Syntax show protocol protect mac drop port portlist Parameter Descript...

Page 559: ...eter Description Parameter Description 1 128 Rule index Example The following example shows MAC drop rule 1 zte cfg show protocol protect mac drop rule 1 4 33 LLDP Configuration 4 33 1 lldp hellotime Purpose This command sets the interval that Link Layer Discovery Protocol LLDP neighbor discovery packets are sent Command Mode Global configuration mode Syntax lldp hellotime 5 32768 4 501 SJ 2013111...

Page 560: ... lldp hellotime 120 4 33 2 lldp holdtime Purpose This command sets the LLDP neighbor holdtime Command Mode Global configuration mode Syntax lldp holdtime 2 10 Parameter Description Parameter Description 2 10 Multiple of the time interval that neighbor discovery packets are sent Default The multiple of the time interval that neighbor discovery packets are sent is 4 Example The following example set...

Page 561: ...er of neighbors is 31 Example The following example sets the maximum number of neighbors that LLDP can globally discover to 10 zte cfg lldp max neighbor 10 4 33 4 lldp port enable disable Purpose This command enables or disables all LLDP functions on the specified ports Command Mode Global configuration mode Syntax lldp port portlist enable disable Parameter Description Parameter Description portl...

Page 562: ...rt portlist enable txdisable Parameter Description Parameter Description portlist Port list enable Enables the LLDP sending function txdisable Disables the LLDP sending function Example The following example enables the LLDP sending function on port 1 zte cfg lldp port 1 txenable 4 33 6 lldp port rxenable rxdisable Purpose This command enables or disables the LLDP receiving function on the specifi...

Page 563: ... Mode Global configuration mode Syntax lldp port portlist med tlv select capabilities tlv network policy tlv enable disable Parameter Description Parameter Description portlist Port list Guidelines The capabilities TLV must be enabled before other LLDP MED TLVs are enabled Other LLDP MED TLVs must be disabled before the capabilities TLV is disabled Example The following example enables the notific...

Page 564: ...ber of neighbors Default The maximum number of neighbors on ports is 8 Example The following example sets the maximum number of neighbors that port 1 can discover to 3 zte cfg lldp port 1 max neighbor 3 4 33 9 clear lldp neighbor Purpose This command clears the created LLDP neighbors Command Mode Global configuration mode Syntax clear lldp neighbor port portlist Parameter Description Parameter Des...

Page 565: ...istic port portlist Parameter Description Parameter Description portlist Port list Example The following example clears LLDP global statistics information zte cfg clear lldp statistic 4 33 11 show lldp config Purpose This command shows LLDP configurations Command Mode All configuration modes Syntax show lldp config port portlist Parameter Description Parameter Description portlist Port list 4 507 ...

Page 566: ...ommand shows LLDP neighbor summary information Command Mode All configuration modes Syntax show lldp neighbor port portlist Parameter Description Parameter Description portlist Port list Example The following example shows global neighbor summary information zte cfg show lldp neighbor Capability Codes P Repeater B Bridge W WLAN Access Point R Router T Telephone C DOCSIS Cable Device s Station S Sw...

Page 567: ...rt 33 Chassis ID 00 02 03 04 01 02 MAC Address Port ID port 7 Interface Name TTL ID 90 Time to live Port Description port 7 status is up media type is 1000BaseT pvid is 1 System Name zte System Description ZXR10 5250 28TC Version V2 05 11B10 System Capability Bridge Switch Management Address IPv4 10 40 89 105 ifIndex 0 OID Null 4 33 14 show lldp statistic Purpose This command shows LLDP statistics...

Page 568: ... Configuration 4 34 1 set mld snp enable disable Purpose This command enables or disables the multicast snooping function Command Mode Global configuration mode Syntax set mld snooping enable disable Parameter Description Parameter Description enable Enables the multicast snooping function disable Disables the multicast snooping function Default The multicast snooping function is disabled Example ...

Page 569: ...nlist VLAN list Guidelines All valid VLANs can be snooped Example The following example sets MLD snooping VLANs 1 to 10 zte cfg set mld snooping add vlan 1 10 4 34 3 set mld snp add maxnum vlan Purpose This command sets the maximum number of multicast groups on the specified VLANs Command Mode Global configuration mode Syntax set mld snooping add maxnum 1 256 vlan vlanlist Parameter Description Pa...

Page 570: ...atistic group Command Mode Global configuration mode Syntax set mld snooping vlan 1 4094 add group ipv6 address port portlist Parameter Description Parameter Description 1 4094 ID of the VLAN into from which the static group is added deleted add Adds a static group ipv6 address IPv6 address portlist List of ports added to deleted from the group Example The following example adds the statistic mult...

Page 571: ...ess portlist Deletes the ports in the group Example The following example deletes the static multicast group ff1e 22 from VLAN 1 and deletes ports 1 to 10 from the static group zte cfg set mld sn vlan 1 delete group ff1e 11 port 1 10 4 34 6 set mld snp vlan add delete mrouter port Purpose This command adds deletes an mrouter port to from the specified VLAN Command Mode Global configuration mode Sy...

Page 572: ...t port Command Mode Global configuration mode Syntax set mld snooping host time out mrouter time out 30 65535 Parameter Description Parameter Description 30 65535 Aging time seconds host time out Configures the timeout duration of the host port mrouter time out Configures the timeout duration of the mrouter port Guidelines When the aging time is reached mrouter ports and host ports are deleted fro...

Page 573: ...messages The unit is seconds Default The time interval that the switch sends query messages is 125 seconds The timeout duration is twice the query time that is 250 seconds Example The following example sets the time interval that the switch sends query messages to 140 seconds zte cfg set mld snooping query interval 140 4 34 9 set mld snp query response interval Purpose This command sets the waitin...

Page 574: ... switch sends report messages to 15 seconds zte cfg set mld snooping query response interval 15000 4 34 10 set mld snp last member query Purpose This command sets the waiting time for replies after the switch sends query messages when the last member leaves Command Mode Global configuration mode Syntax set mld snooping last member query 1 25 Parameter Description Parameter Description 1 25 Waiting...

Page 575: ...ery function Default The query function is disabled Example The following example enables the query function on VLANs 1 to 10 zte cfg set mld snooping query vlan 1 10 enable 4 34 12 set mld snp query version Purpose This command sets the MLD version of the query messages sent by the switch Command Mode Global configuration mode Syntax set mld snooping query vlan vlanlist version 1 2 Parameter Desc...

Page 576: ...n mode Syntax set mld snooping fastleave enable disable Parameter Description Parameter Description enable Enables the fastleave function disable Disables the fastleave function Default The fastleave function is disabled Example The following example enables the fastleave function zte cfg set mld snooping fastleave enable 4 34 14 set mld snp robustness Purpose This command sets the robustness valu...

Page 577: ...y Command Mode Global configuration mode Syntax set mld filter enable disable Parameter Description Parameter Description enable Enables the filtering function disable Disables the filtering function Defaults By default the filter function is disabled 4 34 16 set mld filter add delete query Purpose This command adds or deletes the filtering in the specified port and VLAN Command Mode Global config...

Page 578: ...filtering for port 1 and VLAN 1 zte cfg set mld filter add query port 1 vlan 1 4 34 17 show mld snp Purpose This command shows the global configuration of MLD Snooping Command Mode All configuration modes Syntax show mld snp Example The following example shows the global configuration of MLD Snooping zte cfg show mld sn MLD Snooping enabled RouterTimeout 260s FastLeave disabled HostTimeout 260s Wo...

Page 579: ...lay the basic condition about snooping groups in this VLAN The show mld snooping vlan 1 4094 group ipv6 address command is used to display host information in this VLAN The show mld snooping vlan 1 4094 port info command is used to display information about all snooped ports in the VLAN The show mld snooping vlan 1 4094 group source filter command is used to display group based source filtering in...

Page 580: ... 65535 1 ff1e 22 9 Static V2 65535 1 ff1e 22 8 Static V2 65535 1 ff1e 22 7 Static V2 65535 1 ff1e 22 6 Static V2 65535 1 ff1e 22 5 Static V2 65535 1 ff1e 22 4 Static V2 65535 1 ff1e 22 3 Static V2 65535 1 ff1e 22 2 Static V2 65535 1 ff1e 22 1 Static V2 65535 1 ff1e 11 9 Static V2 65535 The following example shows group based source filtering information in VLAN 1 zte cfg show mld sn vlan 1 group s...

Page 581: ...Purpose This command shows information about the MLD ports Command Mode All configuration modes Syntax show mld snooping mr port info Example The following example shows multicast information of all ports zte cfg show mld snooping mr port info Index Vlan Port State Version RemainTime 1 1 1 Static V2 65535 4 34 20 show mld filter query Purpose This command displays the configuration of query packet...

Page 582: ...ter query vlan Purpose This command displays the configuration of query packet filtering for one or multiple specified VLANs Command Mode All configuration modes Syntax show mld filter query vlan vlanlist Parameters Parameter Description vlanlist VLAN list Example The following example displays the configuration of query packet filtering for VLAN 3 zte cfg show mld filter query vlan 1 Index Vlan P...

Page 583: ...hat loopdetect sends packets Guidelines The interval that loopdetect sends packets is same for all ports Default The interval that loopdetect sends packets is 15 seconds 4 35 2 set loopdetect blockdelay Purpose This command sets the period that loopdetect blocks the loop port Command Mode Global configuration mode Syntax set loopdetect blockdelay 1 1080 Parameter Description Parameter Description ...

Page 584: ...n the specified ports disable Disables loop detection on all VLANs for the specified ports Guidelines The set loopdetect port command with enable is used to enable loop detection on ports that is detect whether there is a loop on the PVID for the ports The set loopdetect por t command with disable is used to disable loop detection on ports that is disable loop detection on all VLANs for the ports ...

Page 585: ...VID at the same time If the user configured VLAN ID is the same as PVID this operation is ignored The set loopdetect port vlan command with the disable parameter is used to disable loop detection of the specified ports in the specified VLANs Note that only the detection on the user defined VLAN IDs can be disabled Detection on PVID cannot be disabled 4 35 5 set loopdetect port protect Purpose This...

Page 586: ...ts Command Mode Global configuration mode Syntax set loopdetect extend port portlist enable disable Parameter Description Parameter Description portlist Port list enable Enables the cross device loop detection on ports disable Disables the cross device loop detection on ports Default The cross device loop detection is disabled on ports 4 35 7 set loopdetect trunk Purpose This command enables or di...

Page 587: ...bles or disables loop detection on the specified VLANs for the aggregation ports Command Mode Global configuration mode Syntax set loopdetect trunk trunklist vlan vlanlist enable disable Parameter Description Parameter Description trunklist Aggregation port list vlanlist VLAN list enable Enables loop detection on the specified VLANs for the aggregation ports disable Disables loop detection on the ...

Page 588: ...er Description trunklist Trunk port list enable Blocks a trunk port when loopback is detected on the port disable Activates an alarm when loopback is detected on a trunk port without blocking the port Guidelines This command enables or disables trunk port protection when trunk port loopback occurs If trunk port protection is enabled a trunk port is blocked when loopback is detected on the port If ...

Page 589: ...he following example shows loop detection status of all ports or trunks zte cfg show loopdetect The block delay of loopdetect 1 min The packet interval of loopdetect 5 sec PortId isUp isStp isProtect isExtend loopVlanNum loopType 10 Down No Yes No 0 Vlan 14 Down No Yes Yes 0 Port T1 Down No Yes No 0 Port The displayed information is described as follows l portId port ID or trunk ID l isUp Down or ...

Page 590: ... Description Parameter Description portlist Port list Examples The following example shows the port detection status zte cfg show loopdetect port 23 PortId 23 VlanId isLoop isBlock 1 Yes Yes For each port three parameters are displayed l VlanId VLAN ID l isLoop indicates whether the port encounters loopback in the VLAN l isBlock indicates whether the port is blocked in the VLAN 4 35 13 show loopde...

Page 591: ...layed l VlanId VLAN ID l isLoop indicates whether the trunk port encounters loopback in the VLAN l isBlock indicates whether the trunk port is blocked in the VLAN 4 35 14 clear loopdetect Purpose This command clears all loopdetect configurations Command Mode Global configuration mode Syntax clear loopdetect 4 36 UDLD Configuration 4 36 1 udld port enable disable Purpose This command enables or dis...

Page 592: ... 4 36 2 udld port mode Purpose This command sets the mode of the specified ports in the UDLD protocol Command Mode Global configuration mode Syntax udld port portlist mode aggressive normal Parameter Description Parameter Description portlist Port list aggressive Aggressive mode normal Normal mode Default normal mode Example The following example sets port 10 to aggressive mode zte cfg udld port 1...

Page 593: ...t Guidelines After the UDLD protocol enters the BiDirectional status it sends five Hello handshake messages at the period of seven seconds and then continuously sends Hello handshake messages at the interval configured by this command Default 15 seconds 4 36 4 udld port recovery enable disable Purpose This command enables or disables the UDLD automatic recovery function Command Mode Global configu...

Page 594: ...e automatic recovery period Command Mode Global configuration mode Syntax udld port portlist recovery timer 10 600 Parameter Description Parameter Description portlist Port list recovery timer 10 600 Link automatic recovery period seconds Guidelines When UDLD disables a port the function that the port creates the link will be automatically recovered after the configured recovery period Default The...

Page 595: ... This command shows UDLD configurations Command Mode All configuration modes Syntax show udld Example The following example shows UDLD configurations zte cfg show udld Udld configuration Flags AdminCfg Administrative configuration RecovCfg Recovery configuration ForceChk Force check configuration FCT Force check time s MTI Message time interval s RTI Recovery time interval s Id PortId Nor Normal m...

Page 596: ...udld port Purpose This command shows port configurations and neighbor detailed information Command Mode All configuration modes Syntax show udld port portlist Parameter Description Parameter Description portlist Port list Guidelines This command is used to display information about all ports or the specified ports 4 36 9 udld port force check enable disable Purpose This command enables or disables...

Page 597: ...ken in accordance with configurations Default The forced UDLD monologue detection function is disabled 4 36 10 udld port force check timer Purpose This command sets the forced UDLD monologue detection period Command Mode Global configuration mode Syntax udld port portlist force check timer 15 300 Parameter Description Parameter Description portlist Port list force check timer 15 300 Forced UDLD mo...

Page 598: ...figuration mode Syntax tacacs plus group group name enable disable Parameter Description Parameter Description group name Name of the TACACS server group containing 1 to 31 characters enable Enables the server group disable Disables the server group Guidelines The system can enable up to five server groups 4 37 2 tacacs plus group add delete host Purpose This command adds deletes a server to from ...

Page 599: ... Encrypted password of TACACS packets containing 1 to 63 characters The default setting is null meaning non encryption Guidelines One server group can support up to four servers 4 37 3 tacacs plus loginauthen default group Purpose This command sets the default server group used for TACACS login authentication Command Mode NAS configuration mode Syntax tacacs plus loginauthen default group group na...

Page 600: ...o 31 characters Guidelines The group must be enabled and has at least one member 4 37 5 tacacs plus adminauthen default group Purpose This command sets the default server group of TACACS management authentication Command Mode NAS configuration mode Syntax tacacs plus adminauthen default group group name Parameter Description Parameter Description group name Name of the TACACS server group containi...

Page 601: ...ng 1 to 31 characters Guidelines The group must be enabled and has at least one member 4 37 7 tacacs plus accounting exec default group Purpose This command sets the default server group of TACACS user accounting Command Mode NAS configuration mode Syntax tacacs plus accounting exec default group group name Parameter Description Parameter Description group name Name of the TACACS server group cont...

Page 602: ...of TACACS accounting users 4 37 9 clear tacacs plus loginauthen default Purpose This command clears the default server group of TACACS login authentication Command Mode NAS configuration mode Syntax clear tacacs plus loginauthen default 4 37 10 clear tacacs plus loginauthor default Purpose This command clears the default server group authorized by the TACACS login Command Mode NAS configuration mo...

Page 603: ...ult server group of TACACS command line accounting Command Mode NAS configuration mode Syntax clear tacacs plus accounting commands default 4 37 13 clear tacacs plus accounting exec default Purpose This command clears the default server group of TACACS user accounting Command Mode NAS configuration mode Syntax clear tacacs plus accounting exec default 4 37 14 clear tacacs plus accounting update Pu...

Page 604: ...ing example shows TACACS configurations zte cfg show tacacs plus Loginauthen defaut group zte Loginauthor defaut group zte Adminauthen defaut group zte Accounting commands defaut group test Accounting exec defaut group test Accounting update period test GroupName zte IpAddress Port Timeout Key 10 20 1 23 49 5 10 20 1 20 49 10 zxr10 GroupName test IpAddress Port Timeout Key 10 40 89 78 49 5 4 546 S...

Page 605: ...aracters hh mm first Starting time when operations are implemented hh mm second Time when operations are cancelled daily Implements everyday day off Implements on Saturday and Sunday day working Implements on working days that is from Monday to Friday monday Implements on Monday tuesday Implements on Tuesday wednesday Implements on Wednesday thursday Implements on Thursday friday Implements on Fri...

Page 606: ...e when operations are ended yyyy mm dd second Date when operations are ended Guidelines Operations are implemented at scheduled time 4 38 3 clear time range Purpose This command clears the time range configurations Command Mode Global configuration mode Syntax clear time range word Parameter Description Parameter Description word Name of the time range which contains a maximum of 16 characters Gui...

Page 607: ...ample shows the time range configurations zte cfg show time range Supported time range number 20 Configured time range number 2 name config active type range t1 enable yes absolute 03 22 2004 07 01 abc disable no absolute 13 01 2004 12 10 to 13 02 2004 12 10 The following example display time range t1 zte cfg show time range Name t1 Config enable Active yes Type absolute Range 03 22 2004 07 01 Bou...

Page 608: ...cription 1 1024 Rule ID mac address HH HH HH HH HH HH MAC address mac mask HH HH HH HH HH HH Mask vlan 1 4094 VLAN ID Guidelines After the MAC based VLAN function is enabled untag packets whose MAC addresses match the configured MAC address are assigned with the corresponding VLAN tags 4 39 2 clear mac based vlan rule Purpose This command clears a MAC based VLAN rule Command Mode MAC based VLAN co...

Page 609: ...bal Binds unbinds all ports port Binds unbinds the specified ports portlist Port list session Session to be bound 1 64 Session ID bind Binds the session with the specified ports or all ports unbind Unbinds the session with the specified ports or all ports 4 39 4 show vlan mac based session Purpose This command shows all rules of a session or all sessions of a MAC based VLAN Command Mode All config...

Page 610: ...Purpose This command globally enables or disables the DHCP relay function Command Mode Global configuration mode Syntax set dhcp relay enable disable Parameter Description Parameter Description enable Enables the DHCP relay function disable Disables the DHCP relay function Default The DHCP relay function is disabled 4 40 2 set dhcp relay option82 enable disable Purpose This command globally enable...

Page 611: ...ommand sets the ID of a switch node device Command Mode Global configuration mode Syntax set dhcp relay option82 sub option device ani string remote ID cisco key string manual string Parameter Description Parameter Description ani Access node ID string Device ID remote ID The remote ID sub option cisco The remote ID sub option is in cisco format key The circuit ID sub option is in key format strin...

Page 612: ...henan rft manual string off Parameter Description Parameter Description 1 28 Port number Different devices have different port number ranges In the syntax the 5250 28TC device is used as an example circuit ID Adds a circuit ID sub option on Enables the sub option off Disables the sub option cisco Enables the circuit ID sub option in cisco format china tel Enables the circuit ID sub option in china...

Page 613: ...e packet is replaced by the local option82 attribute append Append mode in which the local option82 attribute is appended to the packet Guidelines After the port receives a DHCP packet carrying the option82 attribute the port directly forwards the packet to the server if the mode is default or discards the packet if the mode is drop or replace the option82 attribute with the local option82 attribu...

Page 614: ... of retry times of sending packets to the server Command Mode Global configuration mode Syntax set dhcp relay server retry 5 1000 Parameter Description Parameter Description 5 1000 Number of retry times The default value is 10 4 40 8 set dhcp relay vclass id server Purpose This command sets the class id domain of the serve and the corresponding server IP address Command Mode Global configuration m...

Page 615: ...mand clears a configured DHCP relay vclass id Command Mode Global configuration mode Syntax clear dhcp relay vclass id characters string server A B C D hex numbers hex string server A B C D Parameter Description Parameter Description characters Deletes the vclass id in character string format string The vclass id in character string format server Deletes the server address of the vclass id A B C D...

Page 616: ...figurations Command Mode Global configuration mode Syntax show dhcp relay Example The following example shows DHCP relay configurations zte cfg show dhcp relay DHCP relay status disable DHCP server mode ipport DHCP server retry 10 DHCP relay option82 disable Global ipport 63 enable Global server IP 10 40 89 78 4 40 12 show dhcp vclass id Purpose This command shows DHCP relay option60 configuration...

Page 617: ...how dhcp relay binding port 1 28 trunk 1 15 Parameter Description Parameter Description port 1 28 Port number corresponding to a relay table entry trunk 1 15 Trunk number corresponding to a relay table entry Guidelines If no parameter is specified in the command the global status and all table entry information are displayed 4 40 14 show dhcp relay option82 port Purpose This command shows DHCP rel...

Page 618: ...ed Remote ID Enabled Format Cisco DHCP option82 mode information on port 1 Default 4 40 15 show dhcp relay option82 device Purpose This command shows device information including ANI and remote ID Command Mode All configuration modes Syntax show dhcp relay option82 device Example The following example shows device information zte cfg show dhcp relay option82 device DHCP relay option82 sub option i...

Page 619: ...dhcp relay agent zte cfg router set ipport 3 dhcp relay server 168 1 23 18 4 40 17 set dhcp relay server ip Purpose This command sets a global DHCP Relay server IP address Command Mode Global configuration mode Syntax set dhcp relay server ip A B C D Parameter Description Parameter Description A B C D IP address of a DHCP server A maximum of eight IP addresses can be set Example The following exam...

Page 620: ...the relay function when either this command or the relay agent command is used Command Mode Global configuration mode Syntax set dhcp relay vlan vlanlist enable disable Parameter Description Parameter Description enable Enables the DHCP relay function disable Disables the DHCP relay function By default the DHCP function is disabled 4 40 19 clear dhcp relay server Purpose This command deletes a DHC...

Page 621: ...VLANs for which the DHCP relay function is enabled zte cfg show dhcp relay vlan DHCP relay enabled vlan 10 4 40 21 set dhcp relay vlan Purpose This command enables or disables the DHCP relay function in a VLAN Command Mode Global configuration mode Syntax set dhcp relay vlan vlanlist enable disable Parameter Description Parameter Description vlanlist Vlan ID enable Enables the DHCP relay function ...

Page 622: ... set dhcp hop 1 16 Parameter Description Parameter Description 1 16 Hop limit of a DHCP relay Example The following example sets the hop limit of a DHCP relay to 10 zte cfg set dhcp hop 10 4 40 23 clear ipport dhcp relay Purpose This command clears the DHCP relay configuration on a port Command Mode Layer 3 configuration mode Syntax clear ipport 0 63 dhcp relay agent server A B C D 4 564 SJ 201311...

Page 623: ... VLANs Command Mode Global configuration mode Syntax set mff vlan vlanlist add port portlist userport network Parameter Description Parameter Description userport Sets ports as MFF user ports network Sets ports as MFF network ports 4 41 2 set mff vlan delete port Purpose This command deletes the MFF attribute for ports and VLANs Command Mode Global configuration mode Syntax set mff vlan vlanlist d...

Page 624: ...eway ip mac address Parameter Description Parameter Description ip Sets the gateway address type to IP address mac Sets the gateway address type to MAC address address IP address or MAC address 4 41 4 set mff user ip Purpose This command sets an MFF user table manually Command Mode Global configuration mode Syntax set mff user ip ip addr mac mac addr vlan vlan id gateway ip mac address 4 566 SJ 20...

Page 625: ...Syntax set mff gateway ip mac address Parameter Description Parameter Description ip Sets the address type to IP address mac Sets the address type to MAC address address IP address or MAC address 4 41 6 set mff gateway arp keepalive Purpose This command sets the MFF gateway ARP keep alive function Command Mode Global configuration mode Syntax set mff gateway arp keepalive add port portlist all tim...

Page 626: ...ARP keep alive function on the MFF gateway Command Mode Global configuration mode Syntax set mff gateway user keepalive add port portlist all timeout value enable disable Parameter Description Parameter Description portlist Adds the specified ports to the sending ports of user ARP keep alive packets all Adds all ports to the sending ports of user ARP keep alive packets timeout value Interval of se...

Page 627: ...f gateway arp keepalive port Purpose This command deletes ports sending MFF gateway ARP keep alive packets Command Mode Global configuration mode Syntax clear mff gateway arp keepalive port 4 41 11 clear mff gateway user keepalive port Purpose This command deletes ports sending MFF user ARP keep alive packets Command Mode Global configuration mode Syntax clear mff gateway user keepalive port 4 569...

Page 628: ...iption ip addr IP address of the MFF entry to be deleted vlan id VLAN ID 4 41 13 show mff user table Purpose This command shows MFF user entries Command Mode Global configuration mode Syntax show mff user table 4 41 14 show mff interface Purpose This command shows MFF port configuration Command Mode Global configuration mode Syntax show mff interface 4 570 SJ 20131111172707 003 2013 11 27 R1 0 ZTE...

Page 629: ... alive information Command Mode Global configuration mode Syntax show mff gateway keepalive info port Parameter Description Parameter Description port Shows information about the ports sending MFF gateway keep alive packets 4 42 SLL Configuration 4 42 1 set ssl enable disable Purpose This command enables or disables the SSL server function Command Mode Global configuration mode 4 571 SJ 2013111117...

Page 630: ...n mode Syntax create ca A B C D M A B C D A B C D Parameter Description Parameter Description A B C D M IP address and mask A B C D IP address A B C D Mask Guidelines The IP address configured in this command must be the same as the IP address of the SSL server The CA certificate must be created before the SSL server is enabled The CA certificate created includes a server certificate flash data se...

Page 631: ...y ca is creating please wait Rootcafile flash data root cer has created Servercafile flash data server pem has created Serverkeyfile flash data server key has created FS is releasing please wait Done 4 42 3 show ssl Purpose This command shows SSL server configuration and state Command Mode Global configuration mode Syntax show ssl Example The following example shows SSL server configuration and st...

Page 632: ...disable Disables or disables the debug function of the DHCPv6 module Defaults By default the debug function of the DHCPv6 module is disabled 4 43 2 debug protocol dhcp client enable disable Function This command enables or disables the debug function of the DHCP client Mode Global configuration Syntax debug protocol dhcp enable disable Parameters Parameter Description enable Enables the debug func...

Page 633: ...the ip port of the DHCP module 4 43 4 debug protocol dhcp relay enable disable Function This command enables or disables the debug function of the DHCP Relay module Mode Global configuration Syntax debug protocol dhcp relay enable disable Parameters Parameter Description enable Enables the debug function of the DHCP Relay module disable Disables the debug function of the DHCP Relay module Defaults...

Page 634: ...Mode Global configuration Syntax debug protocol dhcp snooping and option82 enable disable Parameters Parameter Description enable Enables or disables the debug function of the DHCP snooping and option82 disable Disables or disables the debug function of the DHCP snooping and option82 Defaults By default the debug function of the DHCP snooping and option82 is disabled 4 43 7 debug protocol dhcp sta...

Page 635: ...tatistical data of all ports on the DHCP Mode Global configuration Syntax debug protocol dhcp statistics clear 4 43 9 debug protocol dhcp statistics clear Function This command deletes statistical data of a port on the DHCP client Mode Global configuration Syntax debug protocol dhcp statistics port portid trunk trunkid clear Parameters Parameter Description portid ID of the physical port whose sta...

Page 636: ...Defaults By default the debug function of the dot1x module is disabled 4 43 11 debug protocol layer3 ip enable disable Function This command enables or disables the debug function of layer 3 IP messages Mode Global configuration Syntax debug protocol layer3 ip enable disable Parameters Parameter Description enable Enables the debug function of layer 3 IP messages disable Disables the debug functio...

Page 637: ...onfiguration Syntax debug protocol layer3 ip port 4 43 13 debug protocol layer3 ip port Function This command shows statistical data of an ip port Mode Global configuration Syntax debug protocol layer3 ip port portid Parameters Parameter Description portid ID of a layer 3 ip port 4 43 14 debug protocol layer3 arp enable disable Function This command enables or disables the debug function of ARP me...

Page 638: ... when the host sends and receives ARP messages 4 43 15 debug protocol snmp enable disable Function This command enables or disables the debug function for the SNMP protocol Mode Global configuration Syntax debug protocol snmp enable disable Parameters Parameter Description enable Enables the debug function for the SNMP protocol disable Disables the debug function for the SNMP protocol Defaults By ...

Page 639: ... Command Mode Global configuration mode Syntax set remote access any specific Parameters Parameter Description any Any IP address can manage the switch The filtering function is disabled specific Only specific IP addresses can manage the switch The filtering function is enabled Guidelines any specific is a global switch When any is selected the deny configuration based on protocols is not effectiv...

Page 640: ... second Mask snmp Configures whether the specified IP address or network segment can log in to the switch through SNMP telnet Configures whether the specified IP address or network segment can access the switch through Telnet ssh Configures whether the specified IP address or network segment can access the switch through SSH web Configures whether the specified IP address or network segment can ac...

Page 641: ... 168 0 1 255 255 255 0 telnet deny 5 1 3 clear remote access all Purpose This command deletes the configuration of all IP addresses Command Mode Global configuration mode Syntax clear remote access all Example The following example deletes the configuration of all IP addresses zte cfg clear remote access all 5 1 4 clear remote access ipaddress Purpose This command deletes the configuration of the ...

Page 642: ...lowing example shows the configuration of remote access zte cfg show remote access Whether check remote manage address YES Allowable remote manage address es and application s 10 40 89 0 255 255 255 0 snmp telnet ssh web 5 2 PRIVILEGE 5 2 1 privilege enable disable Purpose This command enables or disables the command grading function Command Mode Global configuration mode Syntax privilege enable d...

Page 643: ...mode key1 string key2 string key10 s tring Parameters Parameter Description 0 15 Command grade 1 1024 Rule index all The command exactly matches the key part The command partially matches the key mode Command mode Currently the following modes are supported user cfg router snmp tffs nas group ingress basic acl ingress extend acl ingress link acl ingress hybrid acl ingress global acl egress basic a...

Page 644: ...g set 5 2 3 clear privilege Purpose This command clears a command privilege rule Command Mode Global configuration mode Syntax clear privilege session 1 1024 Parameters Parameter Description 1 1024 Rule index Example The following example clears rule 1 zte cfg clear privilege session 1 5 2 4 show privilege Purpose This command shows a command privilege rule Command Mode All configuration modes Syn...

Page 645: ...5 3 SSH 5 3 1 set ssh enable disable Purpose This command enables or disables the SSH function Command Mode Global configuration mode Syntax set ssh enable disable Parameters Parameter Description enable Enables the SSH function disable Disables the SSH function Default The SSH function is disabled 5 3 2 set ssh regenerate Purpose This command generates a new SSH public key 5 7 SJ 20131111172707 0...

Page 646: ...nfiguration and status of SSH zte cfg show ssh SSH is enabled User admin from 10 40 89 78 has logged in this system 5 3 4 show sftp Purpose This command shows the configuration and status of SFTP Command Mode All configuration modes Syntax show sftp Example The following example shows the configuration and status of SFTP zte cfg show sftp SFTP is disabled There s no sftp user logging in this syste...

Page 647: ...on Parameter Description enable Enables the SFTP function disable Disables the SFTP function Default The SFTP function is disabled 5 4 SNMP 5 4 1 set engineID Purpose This command sets the device SNMP engine ID Command Mode SNMP configuration mode Syntax set engineID string Parameter Description Parameter Description string Engine ID octet string 5 9 SJ 20131111172707 003 2013 11 27 R1 0 ZTE Propr...

Page 648: ...the SNMP protocol stack can process in a second Default The number of SNMP messages that the SNMP protocol stack can process in a second is 40 Example The following example sets the number of SNMP messages that the SNMP protocol stack can process in a second to 80 zte cfg snmp set recvpacket 80 5 4 3 set src ipport Purpose This command sets the SNMP source IP address Command Mode SNMP configuratio...

Page 649: ...configuration mode Syntax create community string public private ingress acl basic number 1 99 Parameter Description Parameter Description string Community name public The attribute of the community is read only private The attribute of the community is read write 1 99 ID of the ingress ACL basic group bound with the community Example The following example creates a community named as Beijing and ...

Page 650: ...lude The view does not contain an MIB subtree mib oid Root node of the MIB subtree Example The following example creates a view named as bjView zte cfg snmp create view bjView 5 4 6 set community acl rule id Purpose This command specifies the ACL rule ID bound with a community Command Mode SNMP configuration mode Syntax set community string ingress acl basic number 1 99 Parameter Description Param...

Page 651: ...acl basic number Parameter Description Parameter Description communitystring Community name Example The following example deletes the ACL rule ID of the community named as beijing zte cfg snmp clear community beijing ingress acl basic number 5 4 8 set community view Purpose This command configures that the specified view contains the specified community Command Mode SNMP configuration mode Syntax ...

Page 652: ...de SNMP configuration mode Syntax set mib1493compatible enable disable Parameter Description Parameter Description enable Enables the 1493 compatible mode disable Disables the 1493 compatible mode Default The 1493 compatible mode is disabled 5 4 10 set host trap Purpose This command sets the host IP address community name user name version and security level of trap Command Mode SNMP configuration...

Page 653: ...IP address community name user name version and security level for the inform host Command Mode SNMP configuration mode Syntax set host A B C D inform v2c string v3 string auth noauth priv Parameter Description Parameter Description host A B C D Host IP address v2c string The SNMP version is V2c The string is a group name v3 string The SNMP version is v3 The string is a group name noauth Neither a...

Page 654: ...tpBridgeRoleChange stpPortSta teChange temperature topologychange trunkloopdetect udldunidirectional warmstart dismanpingnotifications crcLimit all enable disable Parameter Description Parameter Description adminPasswordNoChange If an admin user exists in the system and the user s password is the default password zhongxing a trap alarm is reported This alarm is reported one minute after the system...

Page 655: ...kets are received by the CPU in unit time trafficLimit Traffic limit on a port trafficLimitProtect Trap when a storm is restrained or cleared on a port duplexHalfMode Trap when a port work on half duplex mode remotediscovery OAM discovery event remotelinkstatus OAM remote link fault event stpBridgeRoleChange STP bridge role change stpPortStateChange STP port state change temperature Temperature al...

Page 656: ...roup name noauth Neither authentication nor encryption auth Authentication but no encryption priv Authentication and encryption read string Read view zteView by default write string Write view zteView by default notify string Notify view zteView by default Example The following example set a group named as BN and set the group s security level to priv and the read write and notify views to bjView ...

Page 657: ...mode to md5 auth and password to abc for SNMP V3 zte cfg snmp set user zte BN v3 md5 auth abc 5 4 15 set trap macnotification enable disable Purpose This command enables or disables the function of sending a trap notification if the MAC address is changed on the specified port or trunk Command Mode SNMP configuration mode Syntax set trap macnotification port 1 52 trunk 1 15 enable disable Paramete...

Page 658: ... MAC change notification traps are sent Command Mode SNMP configuration mode Syntax set trap macnotification history size 1 256 interval 1 3600 Parameter Description Parameter Description history size Maximum number of entries in the MAC notification history table When the number of entries in the MAC notification history table reaches the threshold traps are sent 1 256 Range of the maximum number...

Page 659: ...de SNMP configuration mode Syntax set trap macStationmove port 1 52 trunk 1 15 enable disable Parameter Description Parameter Description port 1 52 Port number The range varies with device type trunk 1 15 Trunk ID enable Enables the MAC move trap function disable Disables the MAC move trap function Example The following example shows enable the MAC move trap function for ports 1 and 5 zte cfg snmp...

Page 660: ...s not reach the threshold and the duration between the last time when a trap is sent and now reaches the interval a trap is sent Example The following example sets the threshold of sending MAC move traps to 200 and interval to 1 second zte cfg snmp set trap macStationmove history size 200 zte cfg snmp set trap macStationmove interval 1 zte cfg set mac logging alarm interval 1 zte cfg set mac loggi...

Page 661: ...st 10 40 44 167 trap cname 5 4 20 clear community Purpose This command deletes a community Command Mode SNMP configuration mode Syntax clear community string Parameter Description Parameter Description string Community name Example The following example deletes a community named as zte zte cfg snmp clear community zte 5 4 21 clear view Purpose This command deletes a view Command Mode SNMP configur...

Page 662: ...pose This command deletes a group Command Mode SNMP configuration mode Syntax clear group string v3 auth noauth priv Parameter Description Parameter Description string Group name auth Authentication but no encryption noauth Neither authentication nor encryption priv Authentication and encryption Example The following example deletes a group named as gname with the security level of auth zte cfg sn...

Page 663: ... The following example deletes a user named as text zte cfg snmp clear user text v3 5 4 24 clear engineID Purpose This command clears the SNMP engine ID and restores the default value Command Mode SNMP configuration mode Syntax clear engineID 5 4 25 show snmp Purpose This command shows all the SNMP configurations Command Mode All configuration modes 5 25 SJ 20131111172707 003 2013 11 27 R1 0 ZTE P...

Page 664: ...abled remoteDiscoveryTrap disabled powerDownTrap disabled dhcpChaddrCheckTrap disabled cpuUseratioThresholdTrap disabled memUseratioThresholdTrap disabled fanStatusCheckTrap disabled udldUnidirectionalTrap disabled protocolProtectTrap disabled trafficLimitProtectTrap disabled trafficLimitTrap disabled duplexHalfModeTrap disabled stpPortStateChangeTrap disabled stpBridgeRoleChangeTrap disabled arpO...

Page 665: ... test Include 1 3 6 1 zteView Include 1 3 6 1 5 4 26 show snmp community engineID group host trap user view Purpose This command shows the information of SNMP V1 V2c and V3 Command Mode All configuration modes Syntax show snmp community engineID group host trap user view Parameter Description Parameter Description community Shows community configurations engineID Shows the engine ID group Shows gr...

Page 666: ...adView zteView secLevel AuthNoPriv writeView zteView rowStatus Active notifyView zteView The following example shows the configuration of hosts zte cfg show snmp host HostIpAddress Comm User Version Type SecurityLevel 10 40 89 78 beijing Ver 2c Trap The following example shows the configuration of traps zte cfg show snmp trap coldStartTrap disabled warmStartTrap disabled linkDownTrap disabled link...

Page 667: ...sabled powerstatusTrap disabled ipConflictTrap disabled bootfileLostTrap disabled cfmFaultAlarmTrap disabled adminPasswordNoChangeTrap disabled dismanPingNotifications disabled crcLimit disabled macNotificationTrap disabled macStationmoveTrap disabled The following example shows the configuration of V3 users zte cfg snmp show snmp user UserName shanghai GroupName BN v3 EngineID 830900020300010289d...

Page 668: ...e Enables the RMON function disable Disables the RMON function Default The RMON function is disabled Example The following example enables the RMON function zte cfg snmp set rmon enable 5 5 2 set statistics Purpose This command sets a statistics group Command Mode SNMP configuration mode Syntax set statistics 1 65535 datasource 1 28 owner name status valid underCreation createRequest invalid 5 30 ...

Page 669: ...10 to port 1 zte cfg snmp set statistics 10 datasource 1 The following example sets the data source of the statistics group whose index is 10 to tom zte cfg snmp set statistics 10 owner tom The following example sets the status of the statistics group whose index is 10 to invalid zte cfg snmp set statistics 10 status invalid 5 5 3 set alarm Purpose This command sets an alarm group Command Mode SNM...

Page 670: ...id The status of the alarm group is invalid Examples The following example sets the time interval of the alarm group whose index is 10 to 100 seconds set alarm 10 interval 100 The following example sets the sampling object of the alarm group whose index is 10 to 1 3 6 2 19 2 zte cfg snmp set alarm 10 variable 1 3 6 2 19 2 The following example sets the sampling type of the alarm group whose index ...

Page 671: ... is non operation log The type of the event group is log snmptrap The type of the event group is trace logandtrap The type of the event group is trace and log owner name Name of the owner community name Name of the community valid The status of the event group is valid underCreation The status of the event group is underCreation createRequest The status of the event group is createRequest invalid ...

Page 672: ... valid underCreation createRequest invalid Parameter Description Parameter Description history 1 65535 Index of the history group 1 28 Port number Different devices have different port number ranges In the syntax the 5250 28TC device is used as an example bucketRequested 1 65535 buckerRequest value name Name of the owner 1 3600 Time interval seconds of the history group valid The status of the his...

Page 673: ...le sets the time interval of the history group whose index is 10 to 100 seconds zte cfg snmp set history 10 interval 100 The following example sets the status of the history group whose index is 10 to invalid zte cfg snmp set history 10 status invalid 5 5 6 show rmon Purpose This command shows the RMON global configuration Command Mode All configuration modes Syntax show rmon Example zte cfg snmp ...

Page 674: ...8to255Octets 0 Collisions 0 Pkts256to511Octets 0 CRCAlignErrors 0 Pkts512to1023Octets 0 UndersizePkts 0 Pkts1024to1518Octets 0 OversizePkts 0 DataSource port 1 3 6 1 2 1 2 2 1 1 10 Status valid Owner admin 5 5 8 show alarm Purpose This command shows the configuration of an alarm group or all alarm groups Command Mode All configuration modes Syntax show alarm 1 65535 Parameter Description Parameter...

Page 675: ...ation EventIndex R 0 Variable EventIndex F 0 Owner 5 5 9 show event Purpose This command shows the configuration of an event group or all event groups Command Mode All configuration modes Syntax show event 1 65535 Parameter Description Parameter Description 1 65535 Index of an event group Example The following example shows the RMON information of all event groups zte cfg snmp show event EventInde...

Page 676: ...following example shows the RMON information of all history groups zte cfg snmp show history ControlIndex 1 BucketsRequested 300 Interval 10 BucketsGranted 50 ControlStatus valid ControlOwner admin DataSource 1 3 6 1 2 1 2 2 1 1 28 5 6 ZGMP 5 6 1 set zdp enable disable Purpose This command enables or disables the ZTE Discovery Protocol ZDP Command Mode Cluster management configuration mode Syntax ...

Page 677: ...ration mode Syntax set zdp port portlist trunk trunklist enable disable Parameter Description Parameter Description port portlist Port list trunk trunklist Trunk list enable Enables the ZDP disable Disables the ZDP Default The ZDP is enabled Example The following example disables the ZDP on port 2 zte cfg group set zdp port 2 disable 5 6 3 set zdp timer Purpose This command sets the time interval ...

Page 678: ...al for sending ZDP packets Default The default time interval for sending ZDP packets is 30 seconds Example The following example sets the time interval for sending ZDP packets to five seconds zte cfg group set zdp timer 5 5 6 4 set zdp holdtime Purpose This command sets ZDP holdtime Command Mode Cluster management configuration mode Syntax set zdp holdtime 10 255 Parameter Description Parameter De...

Page 679: ...bal configurations zte cfg group show zdp Global ZDP enabled ZDP timer 5 s ZDP holdtime 100 s Enabled ZDP ports 1 3 28 Enabled ZDP trunks 1 15 5 6 6 show zdp neighbour Purpose This command shows ZDP neighbor information Command Mode All configuration modes Syntax show zdp neighbour Example The following example shows ZDP neighbor information zte cfg group show zdp neighbour Peer Device Local Port ...

Page 680: ...g group show zdp neighbour detail Local Port Port33 Peer Device 00 11 22 33 44 55 Peer Port Port7 Hold Time 164 Platform ZXR10 5250 28TC Hostname zte Version ZTE ZXR10 5250 28TC Software Version number V2 05 11B10 Version make date May 23 2013 Version make time 11 25 34 5 6 8 set ztp enable disable Purpose This command enables or disables the ZTE Topology Protocol ZTP Command Mode Cluster manageme...

Page 681: ...on mode Syntax set ztp port portlist trunk trunklist enable disable Parameter Description Parameter Description port portlist Port list trunk trunklist Trunk list enable Enables the ZTP disable Disables the ZTP Default The ZTP is enabled Example The following example disables the ZTP on port 2 zte cfg group set ztp port 2 disable 5 6 10 set ztp vlan Purpose This command specifies a VLAN to perform...

Page 682: ...up set ztp vlan 100 5 6 11 set ztp hop Purpose This command sets the range of topology collection hop counts Command Mode Cluster management configuration mode Syntax set ztp hop 1 128 Parameter Description Parameter Description 1 128 Topology collection range hop counts Guidelines Topology collection messages are sent by the local switch The forwarding hop will be decremented by 1 when each devic...

Page 683: ...sets the interval of automatic collection For manual collection refers to the ztp start command Default The default interval is 0 meaning that automatic collection is disabled Example The following example sets the interval of automatic topology collection to 2 minutes zte cfg group set ztp timer 2 5 6 13 set ztp portdelay Purpose This command sets the delay time before ports forward ZTP packets C...

Page 684: ...illiseconds zte cfg group set ztp portdelay 40 5 6 14 set ztp hopdelay Purpose This command sets the delay time before the device forwards topology collection packets to the next hop Command Mode Cluster management configuration mode Syntax set ztp hopdelay 1 1000 Parameter Description Parameter Description 1 1000 Delay time The unit is milliseconds Default The default setting is 200 milliseconds ...

Page 685: ...ode All configuration modes Syntax show ztp Syntax The following example shows the global configuration of ZTP zte cfg group show ztp Global ZTP disabled ZTP vlan 100 ZTP hop 4 ZTP timer 2 min ZTP hop delay 400 ms ZTP port delay 40 ms Enabled ZTP ports 1 28 Enabled ZTP trunks 1 15 5 6 17 show ztp device Purpose This command shows the devices collected by topology collection and the devices status ...

Page 686: ... vlan 1 Last collection time 200 ms Id MacAddress Hop Role HostName Platform 0 00 d0 d0 07 40 13 0 candi zte ZXR10 5250 28SM 1 00 11 22 33 44 55 1 candi zte ZXR10 5250 28TC 2 00 19 c6 32 f1 9c 2 candi zte ZXR10 5250 52TC The following example shows the detailed information of the 5250 52TC device with the device ID of 2 zte cfg group show ztp device 2 Device Mac 00 19 c6 32 f1 9c Device Id 2 Devic...

Page 687: ...ess Hostname MYSELF CAN 00 d0 d0 07 40 13 zte __CAN Port18 Port10 00 11 22 33 44 55 zte __CAN Port7 Port33 00 19 c6 32 f1 9c zte 5 6 19 show ztp mac Purpose This command shows the detailed device information by using the index of an MAC address collected by topology collection Command Mode All configuration modes Syntax show ztp mac HH HH HH HH HH HH Parameter Description Parameter Description HH ...

Page 688: ...t Status 00 11 22 33 44 55 Port33 Port7 Forward 5 6 20 set group commander ipport Purpose This command sets a switch as the commander specifies a layer 3 port for cluster management and sets an IP address pool for cluster members Command Mode Cluster management configuration mode Syntax set group commander ipport 0 63 ip pool A B C D M Parameter Description Parameter Description 0 63 Number of the...

Page 689: ...tch as candidate Command Mode Cluster management configuration mode Syntax set group candidate Guidelines This command can delete the commander A candidate switch can be added as the commander or a member machine 5 6 22 set group independent Purpose This command sets the role of a switch as an independent switch Command Mode Cluster management configuration mode Syntax set group independent Guidel...

Page 690: ...any of the IDs of the current members Without this parameter the program will automatically allocate a member machine ID device Adds a member machine in accordance with a device ID Device IDs can be queried by the show group candidate command idlist List of candidates Guidelines A member machine can only be selected from the candidates Example The following example adds a member machine Cmdr zte c...

Page 691: ...nterval for member switches to perform handshakes with the commander switch Command Mode Cluster management configuration mode Syntax set group handtime 1 300 Parameter Description Parameter Description 1 300 Time interval seconds for member switches to perform handshakes with the commander switch Default The default setting is eight seconds Example The following example sets the time interval to ...

Page 692: ...r information on member switches Default The default setting is 80 seconds 5 6 27 set group name Purpose This command sets the cluster name Command Mode Cluster management configuration mode Syntax set group name name Parameter Description Parameter Description name Cluster name containing a maximum of 32 characters Example The following example sets the cluster name to ZXR10 ECARRIER Cmdr zte cfg...

Page 693: ...00 10 address is used mac Uses the specified MAA address The value range is 01 80 C2 00 00 11 13 or 01 80 C2 00 00 16 1F HH HH HH HH HH HH MAC address Default The default address is 01 80 c2 00 00 09 Example The following example sets the protocol multicast address for cluster management to 01 80 c2 00 00 13 Cmdr zte cfg group set group mac mode extend mac 01 80 c2 00 00 13 5 6 29 set group syslog...

Page 694: ...ress of the cluster tftp server Command Mode Cluster management configuration mode Syntax set group tftpsvr A B C D Parameter Description Parameter Description A B C D IP address 5 6 31 show group Purpose This command shows global configurations for cluster management Command Mode All configuration modes Syntax show group Example The following example shows global configurations for cluster manage...

Page 695: ...urpose This command shows available candidate switches Command Mode All configuration modes Syntax show group candidate Guidelines If not all candidate switches are displayed run the ztp start command to manually trigger the topology discovery process 5 6 33 show group member Purpose This command shows the information of all specified member switches Command Mode All configuration modes Syntax sho...

Page 696: ...zte Up 5 6 34 save member Purpose This command saves the configurations of member switches to the configuration file Command Mode Cluster management configuration mode Syntax save member idlist all Parameter Description Parameter Description idlist IDs of the specified member switches all Saves the configurations of all member switches 5 6 35 erase member Purpose This command deletes member switch...

Page 697: ...e Syntax reboot member idlist all Parameter Description Parameter Description idlist IDs of the specified member switches all Restarts all member switches 5 6 37 rlogin Purpose This command remotely logs in to a cluster device Command Mode Global configuration mode Syntax rlogin commander member 1 253 Parameter Description Parameter Description commander A member switch logs in to the commander 5 ...

Page 698: ...Connecting Mem1 zte 5 7 SFlow 5 7 1 set sflow agent address Purpose This command sets the SFLOW agent Command Mode Global configuration mode Syntax set sflow agent address A B C D udp port 1 65535 Parameter Description Parameter Description A B C D IIP address of the SFLOW agent 1 65535 Number of the UDP port used to send SFLOW sampling messages Guidelines In SFLOW application the switch plays the...

Page 699: ... C D udp port 1 65535 Parameter Description Parameter Description A B C D IP address of the SFLOW collector 1 65535 Number of the UDP port used to send SFLOW sampling messages Default The number of the UDP port used to send SFLOW sampling messages is 6343 Example The following example sets the IP address of the SFLOW collector to 10 40 89 78 zte cfg set sflow collector address 10 40 89 78 5 7 3 se...

Page 700: ...ose This command enables or disables the ingress egress SFLOW function Command Mode Global configuration mode Syntax set sflow ingress egress enable disable Parameter Description Parameter Description ingress Configures the ingress SFLOW egress Configures the egress SFLOW enable Enables the SFLOW function disable Disables the SFLOW function Default The ingress egress SFLOW function is disabled Exa...

Page 701: ... Description all Samples all messages forward Samples the forwarded messages only Guidelines The sampling is all Example The following example configures to sample the forwarded messages only zte cfg set sflow ingress sample mode forward 5 7 6 set sflow ingress egress packet sample off Purpose This command disables the SFLOW sampling function on ports Command Mode Global configuration mode Syntax ...

Page 702: ...ing is enabled configure the sampling period Command Mode Global configuration mode Syntax set sflow ingress egress port portlist packet sample on frequency 2 16000000 tim e range word Parameter Description Parameter Description ingress Configures the ingress SFLOW egress Configures the egress SFLOW portlist Port list 2 16000000 Sampling period 2 means that one of every two messages is sampled to ...

Page 703: ... the time range named as abc zte cfg set sflow ingress port 2 packet sample on frequency 2000 zte cfg set sflow egress port 3 packet sample on frequency 3000 time range abc 5 7 8 clear sflow config Purpose This command clears SFLOW configurations of ports Command Mode Global configuration mode Syntax clear sflow config agent collector Parameter Description Parameter Description agent Clears agent ...

Page 704: ...hows SFLOW configurations zte cfg show sflow Agent address 10 40 89 100 udp port 6343 Collector address 10 40 89 78 udp port 6343 Version 5 Ingress Enable State Yes Reload Mode Continuous Sample Mode All PortId Port Freq CPU Freq Counter time range 15 5 None 0 Egress Enable State Yes Reload Mode Continuous PortId Port Freq CPU Freq Counter time range 9 17 None 0 789 16 15 None 0 5 66 SJ 2013111117...

Page 705: ...Enables the Telnet server function disable Disables the Telnet server function Default The Telnet server function is enabled 5 8 2 show telnet Purpose This command shows Telnet configurations and status Command Mode All configuration modes Syntax show telnet Example The following example shows Telnet configurations and status zte cfg show telnet Telnet server is enable Telnet server is listening o...

Page 706: ...mmand sets a listening port for a telnet server Command Mode Global configuration mode Syntax set telnet listen port port Parameter Description Parameter Description port Listening port for a telnet server 5 68 SJ 20131111172707 003 2013 11 27 R1 0 ZTE Proprietary and Confidential ...

Page 707: ... GVRP General VLAN Registration Protocol ICMP Internet Control Message Protocol IP Internet Protocol IPv6 Internet Protocol Version 6 LLDP Link Layer Discovery Protocol MAC Media Access Control MSTP Multiple Spanning Tree Protocol NAS Network Access Server NTP Network Time Protocol POE power over Ethernet QoS Quality of Service I SJ 20131111172707 003 2013 11 27 R1 0 ZTE Proprietary and Confidenti...

Page 708: ...gement System STP Spanning Tree Protocol TACACS Terminal Access Controller Access Control System Plus TFTP Trivial File Transfer Protocol UDLD Unidirectional Link Detection VBAS Virtual Broadband Access Server VID VLAN Identifier VLAN Virtual Local Area Network ZTP ZTE Topology Protocol II SJ 20131111172707 003 2013 11 27 R1 0 ZTE Proprietary and Confidential ...

Search results

Summary of Contents for ZXR10 5250 Series

Reviews:

Related manuals for ZXR10 5250 Series

Brands by name

Popular brands

Zte ZXR10 5250 Series, Command Reference Manual

Search results

Summary of Contents for ZXR10 5250 Series

Reviews:

Related manuals for ZXR10 5250 Series

Brands by name

Popular brands