D-Link DGS-6600-48TS страница 483 Скачать руководство пользователя

Страница: 483 / 972

DGS-6604

permit | deny (ip access-list)

CLI Reference Guide

473

permit | deny (ip access-list)

Use the

permit

command to define the rule for packets to be access based on

their IP header information. Use the

no permit

command to remove a permit

entry. Use the

deny

command to add a deny entry. Use the

no deny

command

to remove a deny entry.

{permit | deny} tcp {any | host

SRC-IP-ADDR

SRC-IP-ADDR MASK

} [

OPERATOR

PORT

] {any

| host

DST-IP-ADDR

DST-IP-ADDR MASK

} [

OPERATOR PORT

] [precedence

PRECEDENCE

tos

TOS

|dscp DSCP] [time-range

PROFILE-NAME

] [priority

PRIORITY

]

{permit | deny} udp {any | host

SRC-IP-ADDR

SRC-IP-ADDR MASK

} [

OPERATOR PORT

] {any

| host

DST-IP-ADDR

DST-IP-ADDR MASK

} [

OPERATOR PORT

] [precedence

PRECEDENCE

tos

TOS

|dscp

DSCP

] [time-range

PROFILE-NAME

] [priority

PRIORITY

]

{permit | deny} [gre | esp | eigrp | icmp | igmp | ospf | pim | vrrp | protocol-id

PROTOCOL-ID

]

{any | host

SRC-IP-ADDR

SRC-IP-ADDR MASK

} {any | host

DST-IP-ADDR

MASK

} [precedence

PRECEDENCE

| tos

TOS

| dscp

DSCP

] [time-range

PROFILE-NAME

]

[priority

PRIORITY

]

no {permit | deny} tcp {any | host

SRC-IP-ADDR

SRC-IP-ADDR MASK

} [

OPERATOR

PORT

]

{any | host

DST-IP-ADDR

DST-IP-ADDR MASK

} [

OPERATOR PORT

] [precedence

PRECEDENCE

| tos

TOS

| dscp

DSCP

] [time-range]

no {permit | deny} udp {any | host

SRC-IP-ADDR

SRC-IP-ADDR MASK

} [

OPERATOR

PORT

]

{any | host

DST-IP-ADDR

DST-IP-ADDR MASK

} [

OPERATOR

PORT

] [precedence

PRECEDENCE

| tos

TOS

| dscp

DSCP

] [time-range]

no {permit | deny} [gre | esp | eigrp | icmp | igmp | ospf | pim | vrrp | protocol-id

PROTOCOL-

] {any | host

SRC-IP-ADDR

SRC-IP-ADDR MASK

} {any | host

DST-IP-ADDR

MASK

} [precedence

PRECEDENCE

tos

TOS

dscp

DSCP

] [time-range]

Syntax Description

any

Means any source IP address or any destination IP address.

host

SRC-IP-ADDR

Specifies a specific source IP address.

SRC-IP-ADDR MASK

Specifies a group of source IP addresses by using mask.

host

DST-IP-ADDR

Specifies a specific destination IP address.

DST-IP-ADDR MASK

Specifies a group of destination IP addresses by using mask.

precedence

PRECEDENCE

(Optional) Packets can be filtered by precedence level, as specified by a
number from 0 to 7.

dscp

DSCP

(Optional) Specifies the Differentiated Services Control pointer (DSCP)
value, as specified by a number from 0 to 63.

tos

TOS

(Optional) Packets can be filtered by the type of service level, as specified
by a number from 0 to 255.

Содержание DGS-6600-48TS

Страница 1: ...0 9 3...

Страница 2: ...lease 2 10 011 Date March 1 2012 Copyright Statement D Link Corporation 2011 2012 All rights reserved Without our written permission this document may not be excerpted reproduced transmitted or otherw...

Страница 3: ...ch will be generally referred to as the switch within this manual This manual is written in a way that assumes that you already have the experience and knowledge of Ethernet and modern networking prin...

Страница 4: ...d to be used with the command Square brackets enclose an optional value or set of optional arguments a b c Braces enclose alternative keywords separated by vertical bars Generally one of the keywords...

Страница 5: ...n the command line interface CLI The set of commands available to the user depends on both the mode the user is currently in and their privilege level For each case the user can see all the commands t...

Страница 6: ...strator level user accounts As for sub configuration modes a subset of those can only be accessed by users who have the highest secure administrator level privileges In user EXEC mode at advanced user...

Страница 7: ...basic user level except that a user in this mode and at this level can enter privileged EXEC mode by entering the enable command Privileged EXEC mode at Power User level For changing both local and g...

Страница 8: ...ced user in privileged EXEC mode and uses the disable command to return to user EXEC mode at advanced user level Privileged EXEC Mode at Power User Level Users logged into the Switch in privileged EXE...

Страница 9: ...a privilege level of 15 The second method requires a user to login to the Switch in as a user with an advanced user or power user level and and use the enable privilege LEVEL command In this command m...

Страница 10: ...he exit command is used to exit global configuration mode and return to privileged EXEC mode The procedures to enter the different sub configuration modes can be found in the related chapters in this...

Страница 11: ...t vlan 174 dot1x initialize 176 dot1x max req 177 dot1x pae authenticator 178 dot1x port control 179 dot1x re authenticate 180 dot1x re authentication 181 dot1x system auth control 182 dot1x timeout 1...

Страница 12: ...y ip access list 473 permit deny ipv6 access list 476 permit deny mac access list 478 resequence access list 527 show access group 576 show access list 577 show time range 770 time range 905 Access Ma...

Страница 13: ...w username 773 show user session 774 telnet 892 terminal length 897 terminal timeout 898 terminal width 899 username 916 Basic IPv4 arp 53 arp timeout 54 clear arp cache 90 ip address 226 show arp 578...

Страница 14: ...face 706 show ipv6 interface brief 707 show ipv6 neighbors 708 Basic Switch show environment 603 show system 766 show unit 772 show version 775 BGP address family ipv4 37 aggregate address 38 bgp alwa...

Страница 15: ...dvertisement interval 444 neighbor description 445 neighbor filter list 446 neighbor peer group create group 447 neighbor peer group add group member 448 neighbor remote as 449 neighbor route map 450...

Страница 16: ...gp 904 Broadcast Storm show storm control 764 storm control Interface 878 storm control action Interface 879 storm control level Interface 881 storm control timer Global 883 Chassis reboot 516 Digital...

Страница 17: ...prefix 704 DHCP Relay IPv4 ip dhcp relay 253 ip dhcp relay address 254 ip dhcp relay hops 255 ip dhcp relay information check 256 ip dhcp relay information option 257 ip dhcp relay information policy...

Страница 18: ...lear ip dhcp conflict 101 clear ip dhcp server statistics 103 default router 155 dns server 162 domain name 163 ip address list 229 ip dhcp ping packets 250 ip dhcp ping timeout 251 ip dhcp pool 252 l...

Страница 19: ...ion option 234 ip dhcp snooping trust 235 ip dhcp snooping verify MAC address 247 ip dhcp snooping vlan 248 show ip dhcp snooping 634 show ip dhcp snooping binding 792 show ip dhcp snooping database 7...

Страница 20: ...ps domain 796 show erps erpi 798 Errdisable errdisable recovery 205 show errdisable recovery 601 File System delete 156 dir 158 GVRP clear gvrp statistics interface 94 gvrp Global 209 gvrp Interface 2...

Страница 21: ...ip igmp snooping multicast router 274 ip igmp snooping immediate leave 276 ip igmp snooping querier 277 ip igmp snooping static group 278 show ip igmp snooping 645 show ip igmp snooping group 647 sho...

Страница 22: ...dhcp snooping 241 ip source binding 242 show ip source binding 808 show ip verify source 810 IPv6 Tunnel interface tunnel 223 ipv6 nd suppress ra 349 tunnel destination 913 tunnel mode 914 tunnel sou...

Страница 23: ...ldp med clear lldp statistics 110 clear lldp neighbors 109 lldp dot1 tlv select 382 lldp dot3 tlv select 385 lldp fast count 387 lldp hold multiplier 388 lldp management address 389 lldp med tlv selec...

Страница 24: ...etection 725 Management Port ddm log 137 ip address management port 228 ip mtu management port 284 ipv6 address management port 333 ipv6 default gateway management port 334 mgmt if 430 show mgmt if 73...

Страница 25: ...t cost 39 area nssa 41 area range 43 area stub 45 area virtual link 47 auto cost reference bandwidth 55 clear ip ospf 104 default information originate BGP 146 default metric OSPF 151 host area 217 ip...

Страница 26: ...663 show ip ospf database network 664 show ip ospf database nssa external 666 show ip ospf database router 668 show ip ospf database summary 671 show ip ospf host route 673 show ip ospf interface 674...

Страница 27: ...f area 368 passive interface IPv6 OSPF 464 redistribute IPv6 OSPF 520 router id IPv6 534 router ipv6 ospf 536 show ipv6 ospf 709 show ipv6 ospf border routers 711 show ipv6 ospf database 712 show ipv6...

Страница 28: ...interval 310 show ip pim 679 show ip pim bsr 680 show ip pim interface 681 show ip pim mroute 683 show ip pim neighbor 685 show ip pim rp mapping 687 show ip pim rp hash 688 POE poe port priority 482...

Страница 29: ...how ip protocols 689 show ip route 693 show ip route summary 697 QoS class 86 class map 87 color aware 121 match 419 police 487 police aggregate 492 police cir 493 policy map 497 qos aggregate policer...

Страница 30: ...el 781 show vlan tunnel ctag mapping 784 vlan encapsulation 920 vlan remarking 922 vlan tunnel 924 vlan tunnel ctag mapping dynamic 925 vlan tunnel ctag mapping static 926 vlan tunnel ingress checking...

Страница 31: ...653 show ip rip database 691 show ip rip interface 692 timers 901 version 918 RIPng clear ipv6 rip 108 default information originate RIP IPv6 149 default metric RIP IPv6 154 ipv6 rip metric offset 358...

Страница 32: ...ce 556 set ip default next hop 559 set ipv6 next hop 561 set default interface 563 set ipv6 default next hop 557 show route map 748 Safeguard clear cpu protect counters 93 cpu protect type 132 cpu pro...

Страница 33: ...846 snmp server engineID local 848 snmp server group 849 snmp server host 851 snmp server location 853 snmp server user 854 snmp server view 856 system name 891 SSH crypto key 136 ip ssh 321 show ip...

Страница 34: ...ree tcnfilter 874 spanning tree transmit hold count 875 Switch Port duplex 185 flowcontrol 207 media type 429 shutdown interface 789 speed 876 Syslog clear logging 111 logging file 401 logging host 40...

Страница 35: ...ation 771 traffic segmentation forward 910 VLAN access vlan 36 acceptable frame 33 dot1v binding protocol group 167 dot1v protocol group 168 hybrid vlan VLAN ID 218 ingress checking 219 mac base VLAN...

Страница 36: ...ference Guide 26 vrrp preempt 938 vrrp priority 940 vrrp shutdown 942 vrrp timers advertise 943 Voice Vlan show vlan voice vlan 801 switchport voice vlan state 840 voice vlan 931 voice vlan cos 932 vo...

Страница 37: ...x Description login Optional Enable authentication for normal login mode Enter the console telnet or http keyword If neither login nor enable are specified both login and enable are implied enable Opt...

Страница 38: ...o 2 defined methods The process continues until either the user is authenticated successfully or all methods listed are exhausted Note that if at any point access is denied by an authentication method...

Страница 39: ...will use configuration settings authorized by the RADIUS server in addition to the RADIUS server authentication function Settings can include VLAN assignment user priority assignment and bandwidth ass...

Страница 40: ...p server command to enter AAA group server mode If the group name specified does not exist the switch creates the new group Once in AAA group server mode use the server command to define and configure...

Страница 41: ...CP server validates the value to ensure it matches the hardware type and client hardware address If the values match the DHCP server provides service to the client If the values do not match the DHCP...

Страница 42: ...he command If only the circuit id or remote id is specified it implies that it only accepts DHCP packets containing either only a circuit id or a remote id Examples The following example sets DHCP poo...

Страница 43: ...frame type is tagged only only tagged packets of incoming packets will be received by the interface and untagged packets will be dropped If untagged only only untagged packets will be received and ta...

Страница 44: ...ecified by the key command is valid to be received The syntax can be either of the following HH MM SS MONTH DATE YEAR HH MM SS DATE MONTH YEAR HH hours MM minutes SS seconds MONTH first three letters...

Страница 45: ...config if exit Switch config router rip Switch config router network 172 19 0 0 8 Switch config router version 2 Switch config router exit Switch config key chain chain1 Switch config keychain key 1...

Страница 46: ...efault the port has access VLAN 1 The following applies to access VLANs An interface can be specified with only one access VLAN The succeed ing command overwrites the previous command When this comman...

Страница 47: ...hbor remote as command unless the no bgp default ipv4 unicast command is used before configuring the neighbor remote as command For all settings configured for IPv4 unicast the settings also appear in...

Страница 48: ...c routes to all neighbors The as set parameter creates an aggregate entry advertising the path for this route consisting of all elements contained in all paths being summarized Use the as set paramete...

Страница 49: ...routers and access servers attached to the stub area the area should be configured as a stub area using the area stub option the area default cost command is used only on an ABR attached to the stub...

Страница 50: ...ea command Use the area default cost command only on an ABR attached to the stub area The default cost option provides the metric for the summary default route generated by the ABR into the stub area...

Страница 51: ...The identifier can be specified as either a decimal value or an IP address no redistribution Optional Type 7 external routes will not be re distributed to the NSSA When the user specifies to redistri...

Страница 52: ...NSSA re distribution external routes will only be redistributed to the NSSA when redistribution is configured for the associated OSPF process The external routes from other areas within the same AS w...

Страница 53: ...for many different sets of address ranges For the same area this command can also be specified multiple times Example This example shows how to set one summary route to be advertised by the ABR to oth...

Страница 54: ...h address range Examples The following example specifies one summary route to be advertised by the Area Border Routers to other areas for IPv6 prefix 2001 0DB8 0 1 64 and for the Router ID 20 0 1 10 S...

Страница 55: ...o the stub area configure the area using the area stub command Use the area default cost command only for ABRs attached to the stub area To prevent advertising LSA summaries into a stub area use the n...

Страница 56: ...e generated by the ABR into the stub area Use the no summary argument with this command to define a totally stubby area When routers in the area do not require to learn about summary LSAs from other a...

Страница 57: ...ng is 1 65535 dead interval SECONDS Specifies the interval in seconds during which no packets are received and after which a neighbor is regarded as off line The valid setting is 1 65535 transmit dela...

Страница 58: ...attached to a common network A short hello interval results in the router detecting topological changes faster but also an increase in the routing traffic As with the hello interval the value of dead...

Страница 59: ...the first one authenticated by key 100 and the second one authenticated by key 101 Rollover allows neighboring routers to continue communication while the network administrator is updating them with t...

Страница 60: ...ettings by entering the show ip ospf virtual links command Switch configure terminal Switch config router ospf 1 Switch config router area virtual link 192 168 255 1 authentication key yourpass Switch...

Страница 61: ...ich the virtual link is configured is known as a transit area and it must have the full routing information The transit area cannot be a stub area Syntax Description AREA ID Specifies the area ID assi...

Страница 62: ...e of dead interval must be the same for all routers and access servers attached to a common network The retransmit interval is the expected round trip delay between any two routers in a network Set th...

Страница 63: ...re the IP addresses and the corresponding MAC address so that the addresses will not have to be repeatedly resolved Static and permanent entries are used for devices that exchange data on a regular ba...

Страница 64: ...VLAN interfaces are valid for this command Example This example shows how to set the ARP timeout to 12000 seconds to allow entries to time out faster than the default setting Verify the settings by us...

Страница 65: ...th is 100Mbps For example a 100Mbps will have a metric of 1 and a 64K link will have a metric of 1562 The auto cost command is used to differentiate high bandwidth links For multiple links with high b...

Страница 66: ...efault MBPS 100 Command Mode Router configuration Usage Guideline The IPv6 OSPF metric is calculated as the Mbps value divided by the bandwidth with Mbps equal to 100 by default and bandwidth determin...

Страница 67: ...nter the banner login command followed by a desired display string and then execute the command by pressing ENTER to complete the modification When a multiple lines banner is needed use special charac...

Страница 68: ...e 58 Example This example shows how to modify the banner login message Switch 12 config banner login DGS 6604 Chassis Ethernet Switch Command Line Interface Access for authorized users only Please ent...

Страница 69: ...the DHCP server validates the value to ensure the client identifier optional field matches the configured Client Identifier If the values match the DHCP server provides service to the client If the va...

Страница 70: ...VIDs created by based on c vid commands take effect on the corresponding DHCP address pool However this command will be combined with logical AND operations with the other rules set by other based on...

Страница 71: ...on Usage Guideline An additional rule can be set for a DHCP address pool based on interface IP address All of the DHCP IP address assignment rules take effect on the corresponding DHCP address pool A...

Страница 72: ...ations with the other rules is set by all other based on commands For example if the first rule is based on mac address 00 80 00 11 22 00 00 80 00 11 22 FF and there is another based on c vid 200 comm...

Страница 73: ...line An additional rule can be set for DHCP address pool for each relay IP address All of the DHCP IP address assignment rules take effect to the corresponding DHCP address pool All of the based on co...

Страница 74: ...all of S VID created by based on s vid commands take effect on the corresponding DHCP address pools However this command will be combined using logical AND operations with the other rules set by other...

Страница 75: ...ations with the other rules set by all the other based on commands For example if the first rule is based on user class alpha and there is another based on c vid 200 command the address pool will only...

Страница 76: ...D string is compared with the specified string If the received string is longer than the specified string then the excess characters are ignored For example specifying MSFT will match both Win98SE ME...

Страница 77: ...the parameters that is considered when selecting the best path among many alternative paths The path with a lower MED is preferred over a path with a higher MED During the best path selection process...

Страница 78: ...S numbers in the range from 65536 to 4294967295 RFC 5396 documents three methods of representing autonomous system numbers BGP has implemented the following two methods Asplain Decimal value notation...

Страница 79: ...65636 80 i Total Entries 2 entries 2 routes Switch config terminal Switch config router bgp 1 6553465636 Switch config router bgp asnotation dot Switch config router end Switch clear ip bgp Switch sh...

Страница 80: ...determination then the largest LOCAL_PREF is used to determine the preferred route 4 If the preferred route can still not be determined then the route with the short est AS_PATH list is preferred 5 If...

Страница 81: ...gnore bgp bestpath compare router id or bgp default local preference to customize the path selection process Example This example shows how to configure to ignore the AS path as the best path for auto...

Страница 82: ...e When comparing similar routes from peers the BGP router does not consider the router ID of the routes By default it selects the first received route Use this command to include the router ID in the...

Страница 83: ...n bgp default ipv4 unicast no bgp default ipv4 unicast Syntax None Default bgp default ipv4 unicast Command Mode Router configuration Usage Guideline The bgp default ipv4 unicast command is used to en...

Страница 84: ...used to apply a degree of preference to a route during the BGP best path selection process This attribute is exchanged only between iBGP peers and used to determine local policy The route with the hig...

Страница 85: ...s system will be grouped together and sorted by the ascending MED value received only paths are ignored and not grouped or sorted The best path selection algorithm then picks the best paths using the...

Страница 86: ...l neighbor that do not have the neighbor s configured Autonomous System AS at the beginning of the AS path in the received update must be denied Enabling this feature adds to the security of the BGP n...

Страница 87: ...bor resets might indicate high error rates or high packet loss in the network and should be investigated The neighbor status change messages are not tracked if the bgp log neighbor changes command is...

Страница 88: ...physical interface Command Mode Router configuration Address family configuration Usage Guideline The bgp router id command is used to configure a fixed router ID for a BGP routing The router ID spec...

Страница 89: ...date and an error message to be displayed During initialization the factory default configuration is used when the boot config setting does not exist or when it is null such as at a first time start u...

Страница 90: ...s the startup configuration file Verify the settings by entering the show boot command The following example shows the result of specifying the incorrectly formed file yyy config as the startup config...

Страница 91: ...the default boot image for a Dynamic Host Configuration Protocol DHCP client The boot image can be located in the same DHCP server or other network servers Examples The following example specifies mdu...

Страница 92: ...user to check a new image file format to verify whether it is suitable to be a boot image or not The option verfies and displays information such as the file name content version number time stamp it...

Страница 93: ...Guide 83 Verify the settings by entering the show boot command Switch configure terminal Switch config boot image flash images switch_image1 had Checking image at local flash images switch_image1 had...

Страница 94: ...ical port interface is allowed to specify the channel group The no command removes the interface from the channel group If the channel group has no member port left after removal it is deleted automat...

Страница 95: ...e speed setting in the same channel group LACP protocol behavior will choose the members that have the same speed to for the link aggregation Example This example shows how to configure a channel grou...

Страница 96: ...mmand and police command to define the QoS policy for the class class default is the reserved name for the default class All the traffic that does not match any defined class will be classified to cla...

Страница 97: ...d against the match criteria for a class map to determine if the packets belong to that class When configuring a class map use one or more match commands to specify multiple match criteria For example...

Страница 98: ...ser or match ipv6 protocol will be included in class_home_user Verify the settings by entering the show class map command Switch config class map match any class_home_user Switch config cmap match acc...

Страница 99: ...e put onto the locked out list This command can be used to unlock the locked out users If the USERNAME you specified doesn t exist an error message will be shown Example This example shows how to unlo...

Страница 100: ...mmand is used to delete dynamic entries from the ARP cache The user can select to delete all dynamic entries specific dynamic entries or dynamic entries that are associated with a specific IP interfac...

Страница 101: ...es This example shows how to clear counters of interface eth3 10 The following example will clear all of physical ports statistic counters The following example will clear eth 3 1 3 24 physical port s...

Страница 102: ...oS prevention to zero Examples This example shows how to clear counters Below is an example of using the show dos_prevention command to display the DoS frame counts Switch config clear dos_prevention...

Страница 103: ...following example shows how to clear all cpu protect related statistics Syntax Description sub interface manage protocol route Option Clear the cpu protect related counters of all sub interfaces if no...

Страница 104: ...and clears the GVRP counters If the interface ID is not specified all GVRP counters for all interfaces will be cleared Example This example shows how to clear the GVRP statistics on all interfaces Syn...

Страница 105: ...und neighbor sessions will not be reset Use this form of the command in the following situations Additions or modifications are made to the BGP related access lists Modifying the BGP related weights M...

Страница 106: ...ituations Additions or modifications to BGP related access lists Modifying the BGP related weights Modifying the BGP related distribution lists Modifying the BGP related route maps If inbound routing...

Страница 107: ...nfigured for inbound or outbound sessions Use this command whenever any of the following changes occur Additions or modifications to the BGP related access lists Modifications to BGP related weights M...

Страница 108: ...apability use the clear ip bgp peer group command with the in keyword It is not necessary to use the soft keyword because soft reset is automatically assumed when the route refresh capability is suppo...

Страница 109: ...both the pool NAME option and the ADDRESS option are not specified it is assumed that all bindings in all pools are to be deleted If the pool NAME option is specified without the ADDRESS option being...

Страница 110: ...I Reference Guide 100 The following example deletes address binding 10 13 2 99 from the address pool named pool2 Verify the settings by entering the show ip dhcp binding command switch clear ip dhcp p...

Страница 111: ...ADDRESS is speci fied the system parses all the DHCP pools for the address of the speci fied conflict If the pool NAME option is not specified and no IP ADDRESS is speci fied then the system deletes...

Страница 112: ...DGS 6604 m clear ip dhcp conflict CLI Reference Guide 102 The following example deletes all the address conflicts from the address pool named pool1 switch clear ip dhcp conflict pool pool1 switch...

Страница 113: ...Protocol DHCP server counters clear ip dhcp server statistics Syntax None Default None Command Mode Privileged EXEC Usage Guideline This command clears all of the DHCP statistic counters That is all...

Страница 114: ...tart the OSPF routing process The following is a situation where this command can be used When a new route ID is configured it will not take effect until next time the switch is booted When the OSPF p...

Страница 115: ...and restarts DHCP for an IPv6 client on a specified interface after first releasing and un configuring the previously acquired prefixes and other configuration options for example Domain Name System D...

Страница 116: ...IPv6 neighbor information clear ipv6 neighbors IFNAME Syntax None Default None Command Mode Privileged EXEC Usage Guideline The command clear ipv6 neighbors will only clear dynamic entries Example Thi...

Страница 117: ...repopulated the SPF algorithm will be performed Use the PROCESS ID option to clear only one IPv6 OSPF process If the PROCESS ID option is not specified all IPv6 OSPF processes are cleared Example The...

Страница 118: ...he IPv6 RIP routing table use the clear ipv6 rip command clear ipv6 rip Syntax None Default None Command Mode Privileged EXEC Usage Guideline All IPv6 RIP routes are deleted Examples The following exa...

Страница 119: ...hout interface keyword all neighboring information on all interfaces will be deleted Example This example shows how to delete all neighboring information on all interfaces Syntax Description INTERFACE...

Страница 120: ...e s If the command clear lldp statistics is issued without interface keyword only global LLDP statistics will be cleared Example This example shows how to reset all LLDP statistics Syntax Description...

Страница 121: ...ges from the system logging buffer clear logging Syntax None Default None Command Mode Privileged EXEC Usage Guideline Use this command to clear log messages from the logging buffer Example The follow...

Страница 122: ...and Mode Privileged EXEC Usage Guideline When using the address MAC ADDR argument only the dynamic entries will be cleared Example This example shows how to remove a specific MAC address from the dyna...

Страница 123: ...addresses from the MAC address table If the clear port security interface INTERFACE ID command is entered all the secure MAC addresses auto learned on the specified interface are removed from the MAC...

Страница 124: ...he system When the clear running config factory defaults command is entered the system resets the running configuration with the factory default settings Since the command clears all of system configu...

Страница 125: ...1D BPDUs on one of its ports when it is connected to a legacy bridge An MST bridge can detect that a port is at the boundary of a region when it receives a legacy BPDU or an MST BPDU that is associat...

Страница 126: ...s between a customer VLAN tag and source IP in the switch software When the setting of a VLAN tunnel is changed as for example its interface type or TPID then the new setting could for example cause t...

Страница 127: ...configured clock will not be stored in the configuration file If the clock is manually set and the SNTP server is configured the system will still try to sync the clock with the server If time sync i...

Страница 128: ...k day week and month Use the date mode to make the time change begin and end on specified calender dates The syntax for both modes uses the first portion of the parameter to express the beginning of t...

Страница 129: ...pecify that summer time starts on the first Sunday in April at 2 a m and ends on the last Sunday in October at 2 a m Verify the settings by entering the show clock command Switch configure terminal Sw...

Страница 130: ...r refers to the UTC time The local time will be calculated based on UTC time time zone and the daylight saving configuration Example The following example shows how to set the time zone to Pacific Sta...

Страница 131: ...based on the CoS to color map If the configured policer operates in color blind mode then the policer metering result determines the final color Examples The following example creates the policy map...

Страница 132: ...in the prompt Either one or both settings can be changed If the user selects to use the product name or the system name as the prompt only the first 8 characters are taken The prompt will be changed i...

Страница 133: ...23 The following example shows how to hide the privilege information from the console prompt This example shows define alpha as the console prompt DGS 6600 15 command prompt no level DGS 6600 DGS 6600...

Страница 134: ...gure terminal Syntax None Default None Command Mode Privileged EXEC Usage Guideline Entering into the configuration mode allows configuration settings of the switch to be entered or modified i e perfo...

Страница 135: ...p configuration If the system log is specified as the SOURCE URL the system log can be retrieved to TFTP server If the startup config is specified as the SOURCE URL the purpose is to upload the startu...

Страница 136: ...Notice If the source is a system log and the destination is a file the current system log information is saved to NVRAM with the specified name Be aware that any copy running config action does not im...

Страница 137: ...memory and use it for the next boot configuration Switch copy tftp 10 1 1 254 config switch config txt running config Configure using 10 1 1 254 config switch config txt y n n y Finished network downl...

Страница 138: ...VLAN remarking Syntax Description NEW COS Specifies the new COS value to be added into the outer priority tag for VLAN encapsulation Alternatively it is used to replace the priority tag for VLAN rema...

Страница 139: ...ets at Ethernet 4 1 as priority of 7 4 Remark C VID 101 packet priority as 3 and others use priority 7 remarking 5 Change the interface as CoS trusted That is C VID 101 will be priority remarking C VI...

Страница 140: ...ay to limit the bandwidth is project dependent You can use the command cpu protect safeguard to configure the threshold and enable the Safeguard Engine The command no cpu protect safeguard is used to...

Страница 141: ...LI Reference Guide 131 The following example shows how to disable Safeguard Engine and reset threshold to default value You can verify your settings by entering show cpu protect safeguard command Swit...

Страница 142: ...the reference for the supported protocols for the cpu protect type command According to the purpose of packets destined to CPU the router creates three virtual sub interfaces to process the packets ma...

Страница 143: ...l icmp Internet Control Message Protocol IPv4 protocol icmpv6 ndp ICMP Neighbor Discover Protocol NS NA RS RA Redirect IPv6 protocol icmpv6 other ICMP except NDP NS NA RS RA Redirect IPv6 protocol igm...

Страница 144: ...cpu protect type CLI Reference Guide 134 The following example shows how to remove threshold of OSPF protocol packet Verifying the settings by show cpu protect type command Switch config no cpu protec...

Страница 145: ...ress or default route is not specified some packets will be sent to CPU for software routing The user can use this command to limit the rate of routed packets to avoid CPU spending too much time for r...

Страница 146: ...quired to specify the size of the key pair Example This example shows how to create an RSA key 1024 bits Syntax Description rsa Configure an RSA key pair dsa Configure a DSA key pair NBITS Specifies t...

Страница 147: ...Syntax Description none Default disable Command Mode Global configuration Usage Guideline Users can enable this configuration than a log message will be generated when the system detects the SFP s ab...

Страница 148: ...status even if the configuration on the port DDM state is enabled When the DDM supported SFP inserts into a port which is configured as DDM disabled the system will not detect the SFP s abnormal statu...

Страница 149: ...The port shutdown is controlled by the error disable module without a recovery timer it is possible to force enable the port by the command shutdown then no shutdown Users can verify error disabled i...

Страница 150: ...status detection will be performed by software instead of the SFP s alarm warning flag fields Be careful to configure threshold values please reference the SFP module vendor s data sheet for default...

Страница 151: ...mal status detection will be performed by software instead of the SFP s alarm warning flag fields Be careful to configure threshold values please reference the SFP module vendor s data sheet for defau...

Страница 152: ...bnormal status detection will be performed by software instead of the SFP s alarm warning flag fields Be careful to configure threshold values please reference the SFP module vendor s data sheet for d...

Страница 153: ...al status detection will be performed by software instead of the SFP s alarm warning flag fields Be careful to configure threshold values please reference the SFP module vendor s data sheet for defaul...

Страница 154: ...status detection will be performed by software instead of the SFP s alarm warning flag fields Be careful to configure threshold values please reference the SFP module vendor s data sheet for default v...

Страница 155: ...0 0 0 Command Mode Management interface Usage Guideline The management port will send out IP packets for other IP subnets through this IP address Example This example shows how to set 10 1 1 254 as th...

Страница 156: ...ocess to advertise a default route network 0 0 0 0 A redistribution statement must also be configured to complete this configuration or the default route will not be advertised The configuration of th...

Страница 157: ...d the default route exists in the redistributed routes Example This example shows how to advertise the default route regardless whether a default route exists in the configuration or not Syntax Descri...

Страница 158: ...default information originate no default information originate Syntax None Default Disabled Command Mode Router configuration Usage Guideline Issuing this command generates a default route into RIP T...

Страница 159: ...Default Disabled Command Mode Router configuration Usage Guideline Originating a default IPv6 route into RIP also forces the advertisement of the route in router updates sent on the interface The adv...

Страница 160: ...must be created first Example This example shows how to default the IPv6 nd prefix instance Syntax Description X X X X M IPv6 network address This argument must be in the form documented in RFC2373 w...

Страница 161: ...default metric helps solve the problem of redistributing routes with an incompatible metric Whenever a metric does not convert using a default metric provides a reasonable substitute and enables the r...

Страница 162: ...metric value for all redistributed routes A default metric helps solve the problem of redistributing routes with an incompatible metric Whenever a metric does not convert using a default metric provi...

Страница 163: ...A default metric helps solve the problem of redistributing routes with an incompatible metric Whenever a metric does not convert using a default metric provides a reasonable substitute and enables th...

Страница 164: ...se the current routing protocol to use the same metric value for all redistributed routes A default metric helps solve the problem of redistributing routes with an incompatible metric Whenever a metri...

Страница 165: ...as the client subnet If the number of servers is more than one then execute this command multiple times with different server IP addresses Routers are listed in order of preference address1 is the mo...

Страница 166: ...from the Flash card inserted in cf1 If the file to be deleted is used as boot up image or configuration file then it cannot be deleted and an error message will be displayed Syntax Description FILE SY...

Страница 167: ...lt None Command Mode Interface configuration Usage Guideline None Example This example shows how to add a description for interface eth 3 10 Verify the settings by entering the show interface command...

Страница 168: ...the file system on the system s cf1 flash Syntax Description FILES SYSTEM Specifies the file system The valid values are flash and cf1 where flash represents the compact FLASH CF storage of the contr...

Страница 169: ...e Privileged EXEC mode disable Syntax None Default None Command Mode Privileged EXEC Usage Guideline The command will go to the User EXEC level from the power user level Example This example shows how...

Страница 170: ...trative distance of 255 means that the routing information source cannot be trusted at all and should be ignored Use the distance command to set the administrative distance for all the routes that fal...

Страница 171: ...ound has failed then this route will be automatically deactivated and the route with the next lower distance will be the active route If the switch is operated in the multi path enabled mode then rout...

Страница 172: ...he IP address list of DNS servers available to DHCP clients under the DHCP pool configuration mode Servers are listed in order of preference If the number of servers is more than 1 then execute this c...

Страница 173: ...DOMAIN no domain name Default None Command Mode DHCP pool configuration Usage Guideline This command configures the domain name for a DHCP client Example This example shows how to specify domain name...

Страница 174: ...ble action trap_log The following example shows how to remove action trap_log Syntax Description action ACTION Specify the action the device should take when an attacking event occurs User can specify...

Страница 175: ...It may cause a target device to reply to itself continuously blat_attack This type of attack will send packets with TCP UDP source ports equal to destination ports of the target device It may cause a...

Страница 176: ...xample shows how to enable the DoS prevention mechanism for a land_attack The following example shows how to enable the DoS prevention mechanism for all supported types The following example shows how...

Страница 177: ...nd a protocol VLAN group with a VLAN ID As a result the packet that matches the specified protocol group will be associated with the VLAN binding with this group The VLAN does not need to exist for th...

Страница 178: ...an existing protocol VLAN group If a specific protocol is specified with the no command then this specific protocol will be removed from the specified group Example This example shows how to create a...

Страница 179: ...the show dot1x auth configuration command Syntax Description port based Specifies the authentication mode as port based When in the port based mode if one supplicant is successfully authenticated othe...

Страница 180: ...command on page 184 to create new user accounts If radius is specified a RADIUS server should be configured for authentication Please refer to the server command on page 541 in AAA Feature Commands on...

Страница 181: ...controlled based on this command When the port is in force authorized or authorized state the traffic is allowed in both directions Example The following example shows how to specifies the direction...

Страница 182: ...ansmit an EAP request frame to the supplicant before restarting the authentication process is 2 The quiet period reauth period server timeout supp timeout and tx period are 60 3600 30 30 and 30 second...

Страница 183: ...Mode Interface configuration Usage Guideline This command is only valid for physical port interface When the 802 1X functionality is disabled and dot1x forward pdu is configured for a port the receiv...

Страница 184: ...st VLAN is enabled and the authentication state is unauthor ized the port belongs to the guest VLAN If the guest VLAN is enabled with the authentication state authorized and if RADIUS is authorizing V...

Страница 185: ...the guest VLAN Verify the settings by entering show do1x auth configuration and show vlan interface command Switch configure terminal Switch config interface eth4 1 Switch config if dot1x guest vlan...

Страница 186: ...hentication state machine on eth4 1 This example shows how to initialize the authentication state machine associated with MAC address 00 40 10 28 19 78 on eth4 1 Syntax Description interface INTERFACE...

Страница 187: ...Usage Guideline This command is only valid for physical port interface Example This example shows how to set the maximum number of retransmit times on port eth4 1 to be 3 Verify the settings with the...

Страница 188: ...able global 802 1x function before enabling 802 1X authentication on a specific port A port can be configured as a 1x enable port only if the port is not a member port of a port channel or a destinati...

Страница 189: ...a specific port Example This example shows how to deny all access on eth4 1 Verify the settings with the show dot1x auth configuration command Syntax Description auto The state authorized or unauthori...

Страница 190: ...r all MAC addresses associated with 1x enabled port in the host based mode Examples This example shows how to re authenticate eth4 1 This example shows how to re authenticate MAC address 00 40 10 28 1...

Страница 191: ...hysical port interface The number of seconds between re authentication attempts can be configured using the dot1x timeout command on page 183 with the reauth period keyword Examples This example enabl...

Страница 192: ...ot1x system auth control Syntax None Default Disabled Command Mode Global configuration Usage Guideline None Examples This example shows how to globally enable 802 1X authentication on a switch This e...

Страница 193: ...on quiet period SECONDS Number of seconds that the switch remains in the quiet state following a failed authentication exchange with the client The range is 0 to 65535 reauth period SECONDS Number of...

Страница 194: ...is project dependent Examples This example creates a local account with a user name yourname and password yourpass This example deletes a local account with a user name as yourname Verify the setting...

Страница 195: ...duplex is set to auto then only duplex mode is negotiated The advertised capability will be both full and half duplex mode combined with the configured speeds For combo port interfaces users must assi...

Страница 196: ...mode from the power user level The command only accepts level 12 and 15 An error message will appear if other levels are specified If the enable password is configured for a level the user will be re...

Страница 197: ...password for privilege level 15 with MyEnablePassword Verify the settings by entering the show enable password command Syntax Description privilege LEVEL Sets the privilege level the password will pro...

Страница 198: ...mmand Mode Any configuration mode Usage Guideline Using this command will end the configuration task in any configuration mode and go back to the Privileged EXEC mode If the current mode in any of the...

Страница 199: ...Default None Command Mode Any Usage Guideline The user can exit the current configuration mode and go back to the last mode used When the user is in User EXEC mode this command will logout the session...

Страница 200: ...configuration mode Usage Guideline Enable ERPS function globally will also enable all ERP instances which state are enabled by using erpi enable command And disable ERPS function globally will disable...

Страница 201: ...Global configuration mode Usage Guideline Use the erps domain command to create or modify an ERPS domain and enter the ERPS domain configuration mode Example The following example shows how to create...

Страница 202: ...l disabled state 1 The configured R APS controlled VLAN does not exist 2 The configured ring ports are not the tag member port of the R APS controlled VLAN In addition to R APS controlled VLAN and rin...

Страница 203: ...Ns protected by one instance is a subset of the set of VLANs protected by another instance If multiple ERP instances are configured then one of them should be the major instance and the rest of them a...

Страница 204: ...DGS 6604 m erpi type CLI Reference Guide 194 Switch config erps domain no erpi 1 Switch config erps domain...

Страница 205: ...d to exist to configure the command If user removes the R APS controlled VLAN when the ERP instance is in operation the ERP instance will enter operational disabled state Different ERP instances can n...

Страница 206: ...r all ring nodes of an ERP instance should be the same Example The following example shows how to configure ring MEL value to 6 of ERP instance 1 The following example shows how to return ring MEL val...

Страница 207: ...face eth3 1 as the east ring port of ERP instance 1 The following example shows how to configure interface eth3 2 as the west ring port of ERP instance 1 The following example shows how to configure i...

Страница 208: ...ort to shared ring port of ERP instance 2 sub ERP instance The following example shows how to remove shared ring port of ERP instance 2 sub ERP instance Switch config erps domain no erpi 1 ring port e...

Страница 209: ...The following example shows how to enable RPL owner and configure RPL port to east ring port of ERP instance 1 The following example shows how to enable RPL owner and configure RPL port to west ring...

Страница 210: ...stances generally the VLANs protected by them should be consistent Example The following example shows how to configure service protected VLAN as 3 of ERP instance 1 The following example shows how to...

Страница 211: ...201 The following example shows how to remove all service protected VLANs of ERP instance 1 Switch config erps domain erpi 1 protected vlan remove 3 Switch config erps domain Switch config erps domain...

Страница 212: ...s how to configure guard timer to 700 milliseconds hold off timer to 100 milliseconds of ERP instance 1 The following example shows how to configure WTR timer to 1 minutes of ERP instance 1 Syntax Des...

Страница 213: ...erpi timer CLI Reference Guide 203 The following example shows how to configure hold off timer as default time value of ERP instance 1 Switch config erps domain no erpi 1 timer hold off Switch config...

Страница 214: ...e command setting only takes effect for the sub ERP instance Example The following example shows how to enable tc propagation state of sub ERP instance 2 in ERPS domain 1 The following example shows h...

Страница 215: ...r receive any packets An error disabled port can be either manual recovered or automatically restored by using this command The user can enter shutdown and then no shutdown commands to recover an inte...

Страница 216: ...following example shows how to enable the auto recovery for loopback detection You can verify your settings by entering the show errdisable recovery command Switch configure terminal Switch config err...

Страница 217: ...then the final flow control setting will be determined by the configured flow control setting If auto negotiation is enabled i e the speed or duplex setting is set to auto the final flow control setti...

Страница 218: ...s example shows how to turn on the flow control send capability of interface eth3 1 Verify the settings by entering the show interface command Switch configure terminal Switch config interface eth3 1...

Страница 219: ...e the no gvrp command to disable the GVRP function globally gvrp no gvrp Syntax None Default Disabled Command Mode Global configuration Usage Guideline None Example This example shows how to enable th...

Страница 220: ...uration command to enable disable the GVRP protocol state Both physical port and port channel interfaces are valid for this command If a physical port is member of a port channel then this command sho...

Страница 221: ...s to which the specified interface belongs will be enabled Both physical port and port channel interfaces are valid for this command If a physical port is member of a port channel then this command sh...

Страница 222: ...N has been configured to be advertised under the config VLAN mode GVRP protocol will advertise this VLAN if it has any member ports However the command takes effect only in the running configuration i...

Страница 223: ...creation Syntax None Default Disabled Command Mode Global configuration Usage Guideline When gvrp dynamic vlan creation is enabled and a port learns a new VLAN membership where the VLAN does not exist...

Страница 224: ...terfaces are specified the command can be executed partially Error messages are sent if the interfaces fail to execute this command When the gvrp forbidden command is configured all VLANs will be forb...

Страница 225: ...R Example This example shows how to set the leave all timer to 5 seconds using the value 500 hundredths of a second Verify the settings by entering the show gvrp configuration interface command Syntax...

Страница 226: ...st the keywords and arguments associated with a command enter a question mark in place of a keyword or argument on the command line This form of help is called command syntax help because it lists the...

Страница 227: ...vertised in the router LSA as stub link Example This following example shows how to configure a stub host 172 16 10 100 at area 1 Verify the settings by entering the show ip ospf host route command Sy...

Страница 228: ...agged VLAN applying this command in un tagged VLAN mode will remove that membership If a VLAN has already been defined as a un tagged VLAN applying this command in tagged VLAN mode will remove that me...

Страница 229: ...command are physical ports Use the ingress checking interface command to enable ingress checking at the switch interfaces When ingress checking is enabled if the port is not a member port of the VLAN...

Страница 230: ...y unmapped VLAN is mapped to the CIST instance Examples This example shows how to map a range of VLANs to instance 2 This example shows how to map a VLAN to instance 5 Verify the settings by entering...

Страница 231: ...n Usage Guideline The interface command puts the command line interface into interface configuration mode for a specified interface For the port channel interface it must be an existing channel group...

Страница 232: ...n mode for the specified range of interfaces The interfaces specified in a range can be different types such as eth2 1 2 5 vlan100 200 Example This example shows how to enter the interface configurati...

Страница 233: ...terface tunnel tunnel ID Default None Command Mode Global configuration Usage Guideline None Examples The following example will add a tunnel of 2 and then enter into the interface configuration mode...

Страница 234: ...the command is applied successfully the number of remaining entries is displayed If the access group contains a rule with a port operator e g gt lt operator the number of remaining rules for the port...

Страница 235: ...An IP access list can not be deleted if it is applied at an interface An IP extended access list can only be grouped with an interface but not any other S W modules such as PIM DM etc Examples This ex...

Страница 236: ...reated like the primary address except that the system does not generate datagrams other than a routing update packet with secondary source addresses For example an SNMP trap is always generated with...

Страница 237: ...ow ip interface command Switch configure terminal Switch config interface vlan100 Switch config if ip address 10 108 1 27 255 255 255 0 Switch config if ip address 192 31 7 17 255 255 255 0 secondary...

Страница 238: ...nfiguration Usage Guideline This is the IP address used for management access to the system Use no ip address command to restore the default IP address 10 90 90 90 8 Example This example shows how to...

Страница 239: ...t for the all IP addresses Specify a host by specifying the IP address explicitly or specify a range of IP addresses using a hyphen between the start IP address and end IP address Both the host and th...

Страница 240: ...ver screening function If a port is configured to enable DHCP server screening function it will deny all DHCP server packets UDP source port 67 You can add a permit binding rule by command ip dhcp scr...

Страница 241: ...The user needs turn on the port s DHCP Server Screening to make all DHCP server packets are denied by default by command ip dhcp screening ports If a port s DHCP Server Screening doesn t turn on the...

Страница 242: ...x None Default Disabled Command Mode Global configuration mode Usage Guideline Use this command to enable the function of trap log It will log illegal server IP address ingress port and send trap if a...

Страница 243: ...enabled VLAN The binding database provides IP and MAC binding information that can be further used by the IP source guard and dynamic ARP inspection process Use the ip dhcp snooping command to globall...

Страница 244: ...P packets when it arrives at the port on the VLAN that is enabled for DHCP snooping By default the validation process will drop the packet If gateway address 0 or option 82 is present Use the ip dhcp...

Страница 245: ...age should be all sent by the client If the message is sent by the DHCP server the message will be dropped 2 If ip dhcp snooping verify mac address is enabled the source MAC in the Ethernet header mus...

Страница 246: ...uration mode Usage Guideline Use this command to set the interval that device will send trap when illegal DHCP server is detected The same illegal DHCP server IP address detected just is send once to...

Страница 247: ...e Usage Guideline The command is available for physical port configuration When an interface is in ip arp inspection trust state the ARP packets arriving at the interface will not be inspected When an...

Страница 248: ...rce MAC validation This example shows how to disable source MAC validation Syntax Description src mac Optional Specify to check for both ARP request response packets the consistency of the source MAC...

Страница 249: ...DGS 6604 ip arp inspection validate CLI Reference Guide 239 Switch configure terminal Switch config no ip arp inspection validate src mac Switch config...

Страница 250: ...arriving at the un trusted interface will be validated If the IP to MAC address binding pair the source MAC address and the source IP address in the Ethernet header is not permitted by the ARP ACL or...

Страница 251: ...source guard the IP packet arrives at the port will be validated via port ACL Port ACL is a hardware mechanism and its entry can come from either the manual configured entry or the DHCP snooping bind...

Страница 252: ...already exist the existing binding entry is updated The interface specified for the command can be a physical port interface Example This example shows how to configure an IP Source Guard entry with...

Страница 253: ...s how to delete an IP Source Guard entry with IP address 10 1 1 1 and MAC address 00 01 02 03 04 05 at VLAN 2 on interface eth3 10 Switch configure terminal Switch config no ip source binding 00 01 02...

Страница 254: ...or deny condition applies Use this command to define the BGP access list globally use the neighbor filter list command in the router configuration mode to apply a specific access list Multiple command...

Страница 255: ...tems It includes community values that are 32 bits long This command can be applied multiple times In the command no ip community access list COMMUNITY LIST NAME if a permit or deny keyword is not spe...

Страница 256: ...LI Reference Guide 246 named mycommlist that permit routes from network 10 in autonomous system 50000 Verify the settings by entering the show ip community list command Switch config ip community list...

Страница 257: ...bal configuration Usage Guideline The DHCP snooping function validates the DHCP packets when it arrives at the port on the VLAN that is enabled for DHCP snooping By default DHCP snooping will verify t...

Страница 258: ...packets that come from an un trusted interface can be validated and a DHCP binding database will be constructed for the DHCP snooping enabled VLAN The binding database provides IP and MAC binding info...

Страница 259: ...on range of VLAN This example shows how to disable DHCP snooping on range of VLAN Switch configure terminal Switch config no ip dhcp snooping vlan 10 Switch config Switch configure terminal Switch co...

Страница 260: ...Usage Guideline Before a DHCP server attempts to assign a pool address a to client it tries to ping the specific pool address If the ping packet is unanswered the DHCP server assumes this pool addres...

Страница 261: ...re the DHCP server attempts to assign a pool address to a client it tries to ping the specific pool address If the ping packet is unanswered the DHCP server assumes this pool address is currently avai...

Страница 262: ...In this mode the administrator can configure pool parameters for example the IP subnet number and default router list Note that the DHCP pool name can play an important role if the DHCP host requests...

Страница 263: ...sable DHCP relay agent features ip dhcp relay no ip dhcp relay Syntax None Default Disabled Command Mode Global configuration Usage Guideline Use this command to enable DHCP relay function The DHCP re...

Страница 264: ...rface is an IP interface For layer 2 devices the DHCP servers need to be specified on the system IP interface All the DHCP request packets received by a device will be relayed to these DHCP servers Fo...

Страница 265: ...ts can traverse Example This example shows how to set maximum number of router relay hops 5 Verify the settings by entering the show ip dhcp relay command Syntax Description HOP COUNT The number of re...

Страница 266: ...for the reply packet is enabled the device will check that the option 82 field in DHCP reply packets it receives from the DHCP server is valid If an invalid message is received the relay agent drops...

Страница 267: ...n 82 contains 2 sub options circuit ID and remote ID sub options If the switch is standalone then the module field within the circuit ID sub option is always set to zero The following describes the fo...

Страница 268: ...ide 258 Example This example shows how to enable insertion of the option 82 field during the relay of DHCP request packets Verify the settings by entering the show ip dhcp relay command Switch configu...

Страница 269: ...IP address of the predecessor DHCP relay agent Example This example shows how to set the policy to drop the DHCP request packet that is relayed by other DHCP relay agent and already has option 82 inse...

Страница 270: ...lay agent information option is present in the packet then the DHCP relay agent will accept the packet When the packet is not trusted then it will be discarded This command is under global configurati...

Страница 271: ...d Command Mode VLAN interface configuration Usage Guideline When IP DHCP relay information is trusted if the gateway address in the DHCP request packet is set to all zeros but the relay agent informat...

Страница 272: ...bled Before enabling DVMRP function on an interface it is necessary to enable IP multicast routing with the ip multicast routing command in global configuration mode Only one multicast routing protoco...

Страница 273: ...he source network DVMRP uses the infinite or unreachable metric which is defined to be 32 This limits the breadth across the entire DVMRP network and is necessary to place an upper boundary on the con...

Страница 274: ...HTTP server function ip http server no ip http server Syntax None Default HTTP interface is enabled Command Mode Global configuration Usage Guideline This command enables HTTP server function Example...

Страница 275: ...ervice port Default Port 80 Command Mode Global configuration Usage Guideline This command configures the TCP port number for HTTP Example This example set HTTP TCP port number to 100 Verify the setti...

Страница 276: ...o membership of only those S G channels that are permitted by an IP basic access list An IGMP access list accepts only an IP basic access list allowing membership reports to be filtered based only on...

Страница 277: ...e show ip igmp interface command Switch configure terminal Switch config ip access list igmp_filter Switch config ip acl permit any 226 1 1 1 255 255 255 255 Switch config ip acl exit Switch config in...

Страница 278: ...will be carried within IGMP group specific queries or group source specific with IGMP Version 3 query messages The last member query count will have the same value as the robustness variable When IGM...

Страница 279: ...packets for specific groups that is indicating that the host wants to become a member of the group IGMP query messages are addressed to the all hosts multicast group which has the address 224 0 0 1 a...

Страница 280: ...mand applies to interfaces configured for both IGMP Layer 3 multicast protocols and IGMP Snooping L2 mode and the interface function as a querier The group membership interval is equal to query interv...

Страница 281: ...lue to 5 on interface VLAN 1000 Verify the settings by entering the show ip igmp interface command Syntax Description VALUE Provides fine tuning to allow for expected packet loss on a subnet The value...

Страница 282: ...hen the user executes the command under global configuration it will enable disable all existing VLAN IGMP snooping function However the command takes effect only in the running configuration and it w...

Страница 283: ...P Snooping for all existing VLANs This example shows how to enable IGMP Snooping on VLAN1 Verify the settings by entering the show ip igmp snooping command Switch config ip igmp snooping Switch config...

Страница 284: ...and DVMRP packet to identify whether the partner device is a multicast router To add a multicast router port statically use the ip igmp snooping mrouter designate configuration On the opposite side it...

Страница 285: ...nterface is not eligible to be designated as a multicast router interface Verify the settings by entering the show ip igmp snooping mrouter command Switch configure terminal Switch config interface vl...

Страница 286: ...bled Command Mode VLAN Interface configuration Usage Guideline The ip igmp snooping immediate leave command allows IGMP Snooping membership of an interface to be removed immediately without any furthe...

Страница 287: ...structs the client to report within the time period specified If the IGMP snooping entity does not receive a report from a client for a specific group after a specific time period the port is removed...

Страница 288: ...s port or port channel interface does not belong to the VLAN where this command is going to apply the specified interfaces then the system returns an error message to indicate that the command is igno...

Страница 289: ...s for IGMP Snooping Verify the settings by entering the show ip igmp snooping group command Switch configure terminal Switch config interface vlan1 Switch config if ip igmp snooping static group 226 1...

Страница 290: ...t Leave messages are ignored This version will apply to both IGMP and IGMP snooping operation Example This example shows how to configure IGMP version It configures the IGMP version to 3 Verify the se...

Страница 291: ...ulticast data source within network 192 168 7 0 24 to be accessible with the neighbor router 10 1 1 1 and with the distance value of 100 The following example configures the multicast data source with...

Страница 292: ...ute CLI Reference Guide 282 The following example removes a previously configured ip mroute entry of 192 168 8 0 24 Verify the settings using the show running config command Switch config no ip mroute...

Страница 293: ...s such as OSPF will use this value to advertise routing updates Examples This example shows how to set ip mtu as 6000 bytes at vlan 4 This example shows how to restore the default ip mtu Verify the se...

Страница 294: ...and Mode Management interface configuration Usage Guideline IP packets sent by the device will be fragmented based on this value Example This example shows how to set the ip mtu of the Management Port...

Страница 295: ...t routing no ip multicast routing Syntax None Default Disabled Command Mode Global configuration Usage Guideline If the no ip multicast routing command is used the device stops routing multicast packe...

Страница 296: ...essage digest key for authentication When it is specified to use the authentication key but the key is not configured then null key will be used When it is specified to use the message digest but the...

Страница 297: ...rd exchange OSPF routing data Use the ip ospf authentication command to enable authentication Simple password authentication allows a password to be configured for each interface Configure the routers...

Страница 298: ...e bandwidth of an interface The cost can be either manually assigned or be automatically determined By default the cost of an interface is calculated based on the bandwidth 10E8 bandwidth use the ip o...

Страница 299: ...o packet from a neighbor before declaring the neighbor down This value is advertised in the router s hello packets It must be the same for all routers on a specific network Specifying a smaller dead i...

Страница 300: ...al for all routers on a specific network A shorter hello interval ensures faster detection of topological changes but results in more routing traffic When configuring the hello interval if the hello i...

Страница 301: ...inue communication while the network administrator is updating them with a new password The router will stop sending duplicate packets once it detects that all of its neighbors have adopted the new pa...

Страница 302: ...higher router priority becomes the DR If the router priority is the same for two routers the router with the higher router ID takes precedence Only routers with nonzero router priority values are eli...

Страница 303: ...A until it receives an acknowledgement In case the router does not receive an acknowledgement during the set time the retransmit interval value it retransmits the LSA Set the retransmission interval v...

Страница 304: ...o place the OSPF protocol on a specific interface into shutdown mode If no interface is specified with this command the entire protocol will shutdown in the least disruptive manner and notify its neig...

Страница 305: ...me to the age field of an update If the delay is not added the time in which the LSA transmits over the link is not considered This command is especially useful for low speed links Remember to add tra...

Страница 306: ...tection is enabled Command Mode Interface configuration Usage Guideline OSPF checks whether neighbors are using the same MTU on a common interface This check is performed when neighbors exchange Datab...

Страница 307: ...icast routing protocol can be enabled on one interface When the command ip pim dense mode is issued PIM dense mode will be configured on the interface Therefore when the command ip pim sparse mode is...

Страница 308: ...horized sources from registering with the RP If an unauthorized source sends a register message to the RP the RP will immediately send back a register stop message Example The following example shows...

Страница 309: ...R Functionality of hash mask is defined in RFC4601 4 7 2 The hash function is used by all routers within a domain to map a group to one of the RPs from the matching set of group range to RP mappings a...

Страница 310: ...following example shows how to configure the IP address of the router on VLAN 1 to be a candidate BSR with hash mask length of 20 and priority of 192 Verify the settings by using the show ip pim comm...

Страница 311: ...ed as the DR If this priority value is the same on multiple routers then the router with the highest IP address configured on an interface will be elected as the DR If a router does not advertise a pr...

Страница 312: ...he period would be longer for lower speed links or for routers in the center of the network that expect to have a larger number of entries For SM mode the router will periodically send the join messag...

Страница 313: ...limit timer which limits the Pruning rate on a LAN It is only used when the Upstream S G state machine is in the Pruned state A Prune cannot be sent if this timer is running This timer is normally set...

Страница 314: ...PIM hello messages to detect PIM routers For SM hello messages are also used to determine which router will be the designated router for each LAN segment If the router has interfaces operating in the...

Страница 315: ...with other manufacturer devices per the following This command is used to inter operate with some legacy CISCO manufactured routers using older CISCO IOS versions This command is needed for the first...

Страница 316: ...should be configured on the designated router Note the parameter Register Probe Time in RFC 4601 is fixed to 5 not configurable It is fixed to 5 because the value of the Register Probe Time must be le...

Страница 317: ...mand needs to be configured across all of the routers in the PIM domain Multiple RP addresses can be specified by the command Only one access list can be specified for an RP The new setting overrides...

Страница 318: ...of the PIM domain That is a stub router that relies on an on demand dialup link to connect to the rest of the PIM domain is not a good candidate RP Example The following example on the next page show...

Страница 319: ...identified by VLAN interface 1 and with priority 3 Verify the settings by using the show ip pim command Switch config ip access list PIM Control Switch config ip acl permit any 239 0 0 0 255 0 0 0 Swi...

Страница 320: ...rpose of this message is to reduce overhead spent on the cycle in flooding and pruning of traffic For each state refresh origination interval the first hop router will initiate this message and send i...

Страница 321: ...ic characteristics If IP access list is used with the match ip address command all of the matching criteria in the access list will be checked The packet that matches that permit statement will be act...

Страница 322: ...acl to next hop 20 1 1 254 You can verify your settings by entering show ip policy command Switch config route map pbr map Switch config route map match ip address pbr acl Switch config route map set...

Страница 323: ...ommand ip rip authentication key chain NAME OF KEY no ip rip authentication key chain Default No authentication is provided for RIP packets Command Mode Interface configuration Usage Guideline If no k...

Страница 324: ...cation mode text Switch config if exit Switch config router rip Switch config router network 172 19 0 0 8 Switch config router version 2 Switch config router exit Switch config key chain chain1 Switch...

Страница 325: ...ext authentication text Command Mode Interface configuration Usage Guideline Only VLAN interfaces at which IP addresses are configured are valid interfaces for this command RIP Version 1 does not supp...

Страница 326: ...n 1 and Version 2 packets The following example shows how to configure the interface VLAN 1 to only accept RIP Version 1 packets Verify the settings by entering the show ip rip interface command Synta...

Страница 327: ...ersion 2 packets The following example shows how to configure the interface VLAN 100 to send only RIP Version 2 packets Verify the settings by entering the show ip rip interface command Syntax Descrip...

Страница 328: ...o not listen to multicast broadcasts Version 2 updates requests and responses will be sent to the IP broadcast address e g 10 70 89 255 instead of the IP multicast address 224 0 0 9 In order to reduce...

Страница 329: ...s are equidistant then one of them must be chosen as the active route For the single path mode the route with the best distance and route type is selected as the primary active path the other distance...

Страница 330: ...he route operation mode multi path or not to select the routes that will be active For the no command it disables the multiple path function Only one of the multiple paths will be active Note The acti...

Страница 331: ...ver does not receive any messages from the client the session will be released The SSH server can be configured with extra authentication retries for setting up an SSH session The connection will be f...

Страница 332: ...ber of authentication retries reaches 2 tries without success This example shows how to change the service port to 3000 The SSH client must connect using this service port number Verify the settings b...

Страница 333: ...used on the Internet or local area networks to provide a general bidirectional interactive communications facility Using the Telnet protocol users can control a device through a TCP connection which...

Страница 334: ...guration Usage Guideline This command configures the TCP port number for the TELNET server The Telnet server listens on port number 23 for connection requests in the default configuration Example This...

Страница 335: ...nfigured trusted hosts are allowed access to the access interfaces associated with their entry If an access interface is not specified in the trusted host list then all access to that access interface...

Страница 336: ...Guide 326 This example shows how to remove the trusted host with IP address 163 10 50 126 for all access interfaces You can verify your settings by entering the show ip trusted host command Switch co...

Страница 337: ...ort operator gt lt operator the number of remaining port operators will be displayed If the resources are insufficient to commit the command an error message will be displayed There is limitation on t...

Страница 338: ...328 Example This example shows how to specify the IPv6 access list ip6 control as an IPv6 access group for eth3 3 Verify the settings by entering show access group Switch config interface eth3 3 Swit...

Страница 339: ...the allowed number is exceeded after the execution of the command An IPv6 access list can not be deleted if it is applied to interfaces The access list is always terminated by an implicit deny stateme...

Страница 340: ...dress is configured When using the no ipv6 address command without other parameters it removes all ipv6 global addresses configured on this interface Example This example shows how to add an IPv6 addr...

Страница 341: ...st bits In this case the leading bits of the address are defined in a general prefix which is globally configured or learned for example through use of DHCP PD and then applied using the prefix name a...

Страница 342: ...ve a general prefix named my prefix on the interface The following example shows how to manually configure a global address After the command is entered the global address 3ffe 22 22 22 2 64 will be i...

Страница 343: ...s Default Default IPv6 address is 0 Command Mode Management interface configuration Usage Guideline Users can manage the system by accessing this IPv6 address Use the no ipv6 address command to restor...

Страница 344: ...efault gateway IPv6 ADDRESS no ipv6 default gateway Default Command Mode Management interface configuration Usage Guideline The management port will send out IPv6 packets destined for other IP subnets...

Страница 345: ...n several situations In unstable environments where unexpected changes are likely to occur For planned changes including renumbering an administrator can grad ually decrease the time as the planned ev...

Страница 346: ...s the configuration of an IPv6 prefix That prefix will be included in DHCHv6 solicit and request messages sent by the interface s IPv6 client DHCP The included prefixes in the messages are sent as a h...

Страница 347: ...nal Switch config interface vlan2 Switch config if ipv6 address dhcp prefix 0 0 0 7272 72 64 Switch config if exit Switch config interface vlan1 Switch config if ipv6 dhcp client pd dhcp prefix Switch...

Страница 348: ...tion addresses A link scoped unicast or multicast IPv6 address for which a user must specify an output interface A global or site scoped unicast or multicast IPv6 address for which a user CANNOT speci...

Страница 349: ...rvice is disabled on the interface DHCP for the IPv6 client server and relay functions is mutually exclusive on an interface When one of these functions is already enabled and a user tries to configur...

Страница 350: ...ce must be created before Usage Guideline The interface must be created before used ipv6 enable command When the interface up ipv6 enable will also add link local address to the interface and vice ver...

Страница 351: ...ult Hop limit 64 Command Mode VLAN interface configuration Usage Guideline The VLAN interface must be created first before this command can be used Example This example shows how to configure IPv6 hop...

Страница 352: ...nd turns off this flag ipv6 nd managed config flag no ipv6 nd managed config flag Syntax None Default Off Command Mode VLAN interface configuration Usage Guideline The VLAN interface must be created f...

Страница 353: ...his flag ipv6 nd other config flag no ipv6 nd other config flag Syntax None Default other configure flag off Command Mode VLAN interface configuration Usage Guideline The VLAN interface must be create...

Страница 354: ...n Usage Guideline The VLAN interface must be created first before this command can be used Example This example shows how to configure IPv6 prefix information incidence Syntax Description X X X X M IP...

Страница 355: ...mmand can be used If the minimum interval value is not configured the minimum interval value will be automatically assigned per the following rules 1 If maximum timer 9 seconds then it is configured t...

Страница 356: ...etime 0 9000 no ipv6 nd ra lifetime Default 1800 Command Mode VLAN interface configuration Usage Guideline The VLAN interface must be created first before this command can be used Example This example...

Страница 357: ...nfiguration Usage Guideline The VLAN interface must be created first before this command can be used When the reachable time is set to the default value or set to 0 the system will run for 30 seconds...

Страница 358: ...figuration Usage Guideline The VLAN interface must be created first before this command can be used When the reachable time is set to the default value or set to 0 the system will use 1 second for thi...

Страница 359: ...6 nd suppress ra Syntax None Default Suppress RA Sending of IPv6 router advertisements is disabled by default on an ISATAP tunnel interface Command Mode VLAN interface configuration Usage Guideline Th...

Страница 360: ...uration Usage Guideline None Example This example shows how to configure an IPv6 neighbor entry Syntax Description X X X X IPv6 address This argument must be in the form documented by RFC2373 where th...

Страница 361: ...the metric manually using the ipv6 ospf cost command Using the bandwidth command changes the link cost as long as the ipv6 ospf cost command is not used The link state metric is advertised as the link...

Страница 362: ...rface configuration Usage Guideline The interval is advertised in router hello packets This value must be the same for all routers and access servers on a specific network Example The following exampl...

Страница 363: ...The shorter the hello interval the earlier topological changes will be detected but more routing traffic will ensue This value must be the same for all routers and access servers on a specific network...

Страница 364: ...ter with the higher router priority becomes the DR If the router priority is the same for two routers the router with the higher router ID takes precedence Only routers with non zero router priority v...

Страница 365: ...uter does not receive an acknowledgement during the set time the retransmit interval value it retransmits the LSA Set the retransmission interval value conservatively to avoid needless retransmissions...

Страница 366: ...will shutdown the protocol in the least disruptive manner and notify its neighbors that it is leaving All traffic that has another path through the network will be directed to that alternate path Note...

Страница 367: ...entally changed by the amounts specified in the seconds The value assigned should take into account the transmission and propagation delays for the interface If the delay is not added before transmiss...

Страница 368: ...ip metric offset command is added before the route is inserted into the routing table Increasing the IPv6 RIP metric value of an interface will increase the metric value of IPv6 RIP routes received ov...

Страница 369: ...updates If split horizon is configured on interfaces where the networks are learned then the advertisement of networks sent out from those same interfaces is suppressed When both split horizon and po...

Страница 370: ...Mode Interface configuration Usage Guideline This command configures poison reverse processing of IPv6 RIP router updates When poison reverse is configured routes learned via RIP are advertised with...

Страница 371: ...and Mode Interface configuration mode Usage Guideline IPv6 OSPF checks whether neighbors are using the same MTU on a common interface This check is performed when neighbors exchange DBD packets If the...

Страница 372: ...xt hop that can be used to reach the specified network Note An interface must be specified when using a link local address as the next hop the link local next hop must also be an adjacent router If an...

Страница 373: ...ected IPv6 nodes to communicate with nodes on Internet This example shows how to create a default route After configuring the default route the edge router will forward the unknown IPv6 traffic to the...

Страница 374: ...IP traffic to this address if there is no matched forwarding rule by default Examples Imagine the topology as illustrated below There is a proxy server to access the Intranet All the users on the Int...

Страница 375: ...tes can also be allowed to back up static routes since each route in a system has its own distance To establish floating static IPv6 routes use the ipv6 route command in global configuration mode To r...

Страница 376: ...the same destination as an existing static route However an operator would like to select the calculation of the best route to choose from the routing protocols first To do that the operator needs to...

Страница 377: ...After CMD enable users cannot add static routes with longer prefix when the check ACL table is full Default No static routes are established Examples This example shows how to create a static route wi...

Страница 378: ...ands that can be used on the router At least two interfaces must be configured for IPv6 OSPF to run If the configuration is based on a specific process then the no form of the command must include the...

Страница 379: ...lt Disabled Command Mode Interface configuration Usage Guideline The ipv6 router rip interface configuration command is used to enable IPv6 RIP explicitly on required interfaces In IPv4 the network ne...

Страница 380: ...Guideline If the log is enabled When an IPv6 route with a prefix longer than 64 bits won t work due to an ACL configuration table failure a syslog will be recorded When an IPv6 route configured to an...

Страница 381: ...prefix longer than 64 bits to configure the ACL table This is an enhancement feature This command does not support ECMP routes When ECMP routes with a prefix longer than 64 bits it will only allow one...

Страница 382: ...a sample for an error message output from an ipv6 route longprefix enable command when the ACL table is full Switch enable Switch configure terminal Switch config ipv6 unicast routing long prefix The...

Страница 383: ...ve multiple keys on a key chain so that the software can sequence through the keys as they become invalid over a period of time This is based on the accept lifetime send lifetime and key chain key com...

Страница 384: ...Switch config if exit Switch config router rip Switch config router network 172 19 0 0 8 Switch config router version 2 Switch config router exit Switch config key chain chain1 Switch config keychain...

Страница 385: ...onfigured Command Mode Global configuration Usage Guideline Routing Information Protocol RIP Version 2 uses key chains for authentication To enable authentication a key chain with named keys must firs...

Страница 386: ...xt Switch config if exit Switch config router rip Switch config router network 172 19 0 0 8 Switch config router version 2 Switch config router exit Switch config key chain chain1 Switch config keycha...

Страница 387: ...lt No key chains are configured Command Mode key chain key configuration Usage Guideline Routing Information Protocol RIP Version 2 uses key chains for authentication Each key can have only one key st...

Страница 388: ...tication mode text Switch config if exit Switch config router rip Switch config router network 172 19 0 0 8 Switch config router version 2 Switch config key chain chain1 Switch config keychain key 1 S...

Страница 389: ...which ports can join a port channel and which ports are specified to be in backup mode In a port priority comparison a numerically lower value has a higher priority If two or more ports have the same...

Страница 390: ...switch uses port priority to determine whether the port status will be in backup mode or active mode The LACP system priority determines which switch controls the port priority for the aggregated link...

Страница 391: ...es The following is a sample of configuring the lease in address pool pool1 to 1 day The following is sample of configuring the lease in address pool pool1 to 1 hour Syntax Description DAYS Specifies...

Страница 392: ...e Port And Protocol VLAN ID PPVID TLV to send The Port and Protocol VLAN ID TLV is an optional TLV that allows a bridge port to advertise a port and protocol VLAN ID VLAN ID Specify the ID of the VLAN...

Страница 393: ...uration of protocol vlan on that interface and the VLAN exists then the PPVID TLV for that VLAN will be sent Only when the interface is a member port of the configured VLAN ID the VLAN will be adverti...

Страница 394: ...vlan3 This example shows how to enable LACP Protocol Identify TLV advertisement This example shows how to disable LACP Protocol Identify TLV advertisement Switch config if lldp dot1 tlv select protoco...

Страница 395: ...f the sending IEEE 802 3 LAN node link aggregation Optional Specify the Link Aggregation TLV to send The Link Aggregation TLV indicates contains the following information Whether the link is capable o...

Страница 396: ...he optional IEEE 802 3 Organizationally Specific TLVs The respective TLV will be encapsulated in LLDPDU and sent to other devices if the advertisement state is enabled Example This example shows how t...

Страница 397: ...mes Command Mode Global configuration mode Usage Guideline When an LLDP MED Capabilities TLV is detected the application layer shall start fast start mechanism This command is used to configure the fa...

Страница 398: ...the TTL value in an LLDPDU The lifetime is determined by hold multiplier times tx interval and up to 65535 At the partner switch when the time to live for a given advertisement expires the advertised...

Страница 399: ...ress no management address TLV will be advertised Once user configures an address no matters what it is IP or IPv6 address both of the default IP and IPv6 management address become inactive and won t...

Страница 400: ...e shows how to delete all management address es on eth3 5 and then no Management Address TLV will be sent on eth3 5 Switch config interface range eth3 3 3 4 Switch config if range lldp management addr...

Страница 401: ...m the interface If you disable transmitting Capabilities TLV LLDP MED on the physical interface will be disabled at the same time In other words all LLDP MED TLVs will not be sent even other LLDP MED...

Страница 402: ...e shows how to enable transmitting LLDP MED TLVs and LLDP MED Capabilities TLV will be sent This example shows how to enable transmitting LLDP MED Inventory Management TLV Switch config if lldp med tl...

Страница 403: ...is enabled on all supported interfaces Command Mode Interface Configuration mode Usage Guideline This command is used to enable a physical interface to receive LLDP mes sage When LLDP is not running w...

Страница 404: ...Global configuration Usage Guideline A re enabled LLDP physical interface will wait for re initialization delay after last disable command before re initializing Example This example shows how to set...

Страница 405: ...art to transmit LLDP packets and receive and process the LLDP packets However the transmission and receiving of LLDP can be controlled respectively by the command lldp transmit and lldp receive in int...

Страница 406: ...ted optional 802 1AB basic management TLVs This example shows how to enable advertising System Name TLV This example shows how to disable advertising System Name TLV Syntax Description port descriptio...

Страница 407: ...DGS 6604 m lldp tlv select CLI Reference Guide 397 Switch config if no lldp tlv select system name...

Страница 408: ...ywords Default LLDP transmit is enabled on all supported interfaces Command Mode Interface Configuration mode Usage Guideline This command is used to enable LLDP transmission on a physical interface W...

Страница 409: ...Mode Global configuration Usage Guideline The LLDP transmission interval tx interval must be greater than or equal to four times of transmission delay timer Example This example shows how to set the...

Страница 410: ...Mode Global configuration Usage Guideline This interval controls the rate at which LLDP packets are sent Examples This example shows how to set LLDP updates are sent every 50 seconds This example show...

Страница 411: ...o FLASH memory from the logging buffer logging file Syntax None Default None Command Mode Global configuration Usage Guideline Use this command to save log messages from the logging buffer to flash Ex...

Страница 412: ...and IPv6 address are supported port UDP PORT Optional The UDP port number to be used for the syslog server Valid values are 514 or any value from 1024 to 65535 severity optional Specifies the severit...

Страница 413: ...evel For example if the severity is debugging all logs in the Syslog daemon are sent to the log server host If the level of log is alert then only alert and emergency logs are sent The keyword facilit...

Страница 414: ...emergency logs will be logged to buffer Example The below example limits logs with severity alert and emergency to be logged to buffer for all facilities Verify the settings by entering the show loggi...

Страница 415: ...ogging on Syntax None Default Logging of system messages is on Command Mode Global configuration Usage Guideline To enable logging of system messages use the logging on command in global configuration...

Страница 416: ...TELNET connection if all of the attempts fail the connection will be returned to the logout state For a direct console connection the session will also be returned to the logout state Example This ex...

Страница 417: ...terminal session by logging off the switch logout Syntax None Default None Command Mode User EXEC Usage Guideline Close an active terminal session by logging off the device using the logout command E...

Страница 418: ...to which this port belonged When the switch detects that a CTP packet sent out by the port has been looped back to the packet originating port it will put this port into error disabled state or block...

Страница 419: ...DGS 6604 m loopback detection interface CLI Reference Guide 409 You can verify your settings by entering the show loopback detection command...

Страница 420: ...ed member of VLAN then this port will send out the tagged packet with one of the VLAN ID to which this port belonged When the switch detects that a CTP packet sent out by the port has been looped back...

Страница 421: ...P packets periodically per port On the other side vlan based mode makes switch will per port per VLAN send the CTP packets periodically This mode can detect loopback based on VLAN If switch detects lo...

Страница 422: ...odically to detect a loop back event If the loopback detection mode is port based LBD will per port send the CTP packets Oppositely LBD will per port per VLAN send the CTP packets periodically on VLAN...

Страница 423: ...error message will be displayed The keyword in specifies the ingress direction check One MAC access list one IP access list and one IPv6 access list can be applied to the same interface The associatio...

Страница 424: ...e among access lists Access list names are case sensitive A configured access list is always terminated by an implicit deny statement for all addresses An error message will appears if the allowed num...

Страница 425: ...ered update function is always enabled When a user enables the destination MAC address triggered update function by entering the mac address table aging destination hit command the hit bit of MAC addr...

Страница 426: ...al configuration Usage Guideline Set the aging time to 0 to disable the MAC address table aging out function Example This example shows how to set the aging time to 200 seconds Verify the setting by e...

Страница 427: ...t MAC entry will be removed An error message will appear if the entry to be removed does not exist Example This example shows how to add static address C2 F3 22 0A 12 F4 to the MAC address table When...

Страница 428: ...uideline Use the mac base command to create a MAC based VLAN ID assignment entry Any frame with a source MAC address matching the entry is classified as a member of the VLAN associated with the entry...

Страница 429: ...basis of a Layer 2 class of service CoS marking use the match cos command in class map configuration mode To remove a specific Layer 2 CoS marking as a match criterion use the no form of this command...

Страница 430: ...class map on the basis of the specified protocol use the match protocol command in class map configuration mode To remove protocol based match criterion from a class map use the no form of this comma...

Страница 431: ...e user and configures the access list named acl home user to be used as the match criteria for that class ssh Secured shell telnet Telnet tftp Trivial File Transfer Protocol Protocol Description Switc...

Страница 432: ...ss Verify the settings by entering the show class map command Switch config class map voice Switch config cmap match cos 7 Switch config cmap exit Switch config class map video n data Switch config cm...

Страница 433: ...map can have several parts Any route that does not match at least one match clause relating to a route map command will be ignored that is the route will not be advertised for outbound route maps and...

Страница 434: ...P When exact is specified the communities of the route must be exactly the same as the permitted communities specified in the community list by the command ip community list When exact is not specifie...

Страница 435: ...o define rule for matching routes against IP standard access list Example The following example create an IP access list myacl first and create a route map entry to match against the create IP access...

Страница 436: ...mode to define rule for matching routes against IP standard access list Example The following example create an IP access list aclv6cfg first and create a route map entry to match against the create I...

Страница 437: ...R PATHS 6 Command Mode Global configuration Usage Guideline None Example The following example shows how to allow a maximum of 8 paths to a destination for an Open Shortest Path First OSPF routing pro...

Страница 438: ...stem to optimize server to server performance When a port is removed from the port channel member list the max rcv frame size setting for the port will be reset to the default setting Examples This ex...

Страница 439: ...primary medium no matter what the link status and the other medium will be inactive Auto failover function can t work when the copper medium is linked with copper configured as the primary medium and...

Страница 440: ...s entered in this mode will be applied to the management port mgmt if Syntax None Default None Command Mode Global configuration Usage Guideline None Example The following example displays how to ente...

Страница 441: ...as a monitor source port or destination port For a monitor session multiple source interfaces can be specified How ever only one destination interface can be specified An interface cannot be a source...

Страница 442: ...hysical port eth3 1 as a destination port and three source physical ports eth3 2 eth3 3 and eth3 4 as mirrored ports This example shows how to remove two source ports from a created port mirroring ses...

Страница 443: ...ical port or a port channel Use the monitor session source interface command to configure the source ports whose packets will be monitored Use the remote span command in vlan config mode to specify a...

Страница 444: ...ow monitor session command Switch configure terminal Switch config vlan 100 Switch config vlan remote span Switch config vlan exit Switch config monitor session 2 source interface eth2 2 2 4 Switch co...

Страница 445: ...e can be configured as destination interface of multiple sessions but it can be a source interface of only one session If direction is not specified both transmitted and received traffic are monitored...

Страница 446: ...1 You can verify your settings by entering the show monitor session command Switch configure terminal Switch config monitor session 1 destination interface eth2 1 Switch config monitor session 1 sour...

Страница 447: ...Use the monitor session destination interface command to configure the destination port Use the remote span command in vlan config mode to specify a VLAN as a RSPAN VLAN When a VLAN is specified as a...

Страница 448: ...span Switch config vlan exit Switch config interface eth2 1 Switch config vlan trunk allowed vlan 100 Switch config vlan exit Switch config interface eth2 4 Switch config vlan access vlan 100 Switch c...

Страница 449: ...removed from the port channel member list the MTU setting for the port will be reset to the default setting One should set appropriate values to these MTUs to avoid unexpected results In the general c...

Страница 450: ...le This example shows how to set the multicast filtering mode to filter unregistered Verify the setting by entering the show multicast filtering mode command Syntax Description forward all Flood all m...

Страница 451: ...fferent Use the name command to differentiate MST regions Caution Use care when the name command is used to set the name of an MST region A mistake can put the switch in a wrong or different region Th...

Страница 452: ...ting information can be exchanged between a subset of routers and access servers on a LAN Example In the following example RIP updates are sent to all interfaces except vlan1 on network 10 0 0 0 8 How...

Страница 453: ...it is used in combination with the passive interface router configuration command routing information can be exchanged between a subset of routers and access servers on a LAN Example In the following...

Страница 454: ...figuration Usage Guideline When a BGP peer group is specified using the PEER GROUP NAME argument all the members of the peer group inherit the characteristic configured with this command Example The f...

Страница 455: ...E argument all the members of the peer group inherit the characteristics configured with this command Example The following example shows how to configure a description for the neighbor 172 16 10 10 V...

Страница 456: ...with IP address 172 16 1 1 to not send advertisements about any path which is through or from the adjacent autonomous system 123 Verify the settings in User Exec Mode by entering the show ip protocols...

Страница 457: ...line Often in a BGP or multi protocol BGP speaker multiple neighbors are configured with the same update policies that is the same outbound route maps distribution lists filter lists update source and...

Страница 458: ...on Address family configuration Usage Guideline The neighbor at the specified IP address inherits all the configured options of the peer group Example This example shows how to add a group member 10 1...

Страница 459: ...stem Otherwise the neighbor will be considered as external When a BGP peer group is specified using the PEER GROUP NAME argument all the members of the peer group inherit the characteristics configure...

Страница 460: ...of the route map When a BGP peer group is specified using the PEER GROUP NAME argument all the members of the peer group inherit the characteristic configured with this command Specifying the command...

Страница 461: ...the peer group inherit the characteristics configured with this command Example The following example using the address family configuration mode sets the send community with the both option standard...

Страница 462: ...nate any active session for the specified neighbor or peer group and remove all associated routing information In the case of a peer group a large number of peering sessions could be suddenly terminat...

Страница 463: ...xample The following example shows how to configure the KEEP ALIVE timer to 120 seconds and the HOLD TIME timer to 360 seconds for the neighbor 172 16 10 10 Verify the settings by entering the show ip...

Страница 464: ...ault The best local address is used Command Mode Router configuration Usage Guideline Use this command in conjunction with any specified interface on the router Example The following example shows how...

Страница 465: ...ration Router configuration Usage Guideline The weight specified by this command determines the weight to be associated with the routes learned from a specified neighbor Example The following address...

Страница 466: ...will use to register and resolve names b node The broadcast system uses broadcasts p node A p node system uses only point to point name queries to a name server WINS m node An m node system broadcast...

Страница 467: ...onfiguration Usage Guideline The Scope ID is a character string which is appended to the NetBIOS name for all NetBIOS communications over TCP IP It provides a method to isolate a collection of compute...

Страница 468: ...ure a primary and secondary WINS server The primary preference is the old WINS The maximum number of configurable WINS servers is dependent on each project Examples The following example configures a...

Страница 469: ...etwork will not be advertised in any RIP update Example The following example shows how to define RIP as the routing protocol to be used on all interfaces connected to networks 192 168 70 0 24 and net...

Страница 470: ...and from static route sources Use this command to specify a network as local to this autonomous system this will then add it to the BGP routing table For exterior protocols the network command control...

Страница 471: ...led per IPv4 subnet basis Each subnet can belong to one particular OSPF area Network addresses can be defined using the prefix length or a wild card mask If there are conflicts error messages will be...

Страница 472: ...ses of next server are used as a boot server in the DHCP client s boot process Typically servers are Trivial File Transfer Protocol TFTP servers and are listed in order of preference Example The follo...

Страница 473: ...interface for this configuration is VLAN If an interface is passive no adjacency can be formed on the passive interface and the OSPF protocol packets are not sent or received through the specified in...

Страница 474: ...sending of routing updates is disabled on an interface the particular address prefix will continue to be advertised to other interfaces and updates from other routers on that interface continue to be...

Страница 475: ...g of routing updates is disabled on an interface the particular subnet will continue to be advertised to other interfaces In addition updates from other routers on that interface will continue to be r...

Страница 476: ...he sending of routing updates is disabled on an interface the particular subnet will continue to be advertised to other interfaces In addition updates from other routers on that interface will continu...

Страница 477: ...the username prompt or command prompt is shown When the specific key is inputted user can enter reset configuration mode In this mode user can use the command password recovery to 1 Update the config...

Страница 478: ...input user account alex Please input user password Do you want to update privilege password y n n y Please input privilege password Do you want to force switching authentication function of AAA module...

Страница 479: ...essage will be prompt Switch reset config show username Password Encryption Disabled Username Access Level Password Encrypted aaa 15 123456 bbb 15 123456 ccc 15 123456 ddd 15 123456 Total Entries 4 Sw...

Страница 480: ...set config show aaa Console Session Login authentication Local Authentication yes Enable authentication Local Authentication yes Telnet Session Login authentication Local Authentication yes Enable aut...

Страница 481: ...in the configuration file and can be applied to the system later If the password encryption is enabled the password will be in encrypted form When password encryption is disabled and the user specifie...

Страница 482: ...ing the show time range command Syntax Description daily HH MM to HH MM Specifies the time of day with an hour minute format HH MM using a 24 hour clock for example 14 30 The first HH MM time entered...

Страница 483: ...DR SRC IP ADDR MASK OPERATOR PORT any host DST IP ADDR DST IP ADDR MASK OPERATOR PORT precedence PRECEDENCE tos TOS dscp DSCP time range no permit deny udp any host SRC IP ADDR SRC IP ADDR MASK OPERAT...

Страница 484: ...ime range or priority The priority value must be unique in the domain of an access list If a priority value that is already present is entered an error message will be shown Example This example shows...

Страница 485: ...entering the show access list command Switch config ip access list extended Strict Control Switch config ip ext acl permit tcp any 10 20 0 0 255 255 0 0 Switch config ip ext acl permit tcp any host 1...

Страница 486: ...MASK any host DST IPV6 ADDR DST IPV6 ADDR MASK traffic class TRAFFIC CLASS time range Syntax Description Any An abbreviation for the IPv6 prefix 0 host SRC IPV6 ADDR Specifies a specific source IPv6...

Страница 487: ...riority The priority value must be unique in the domain of an access list If a priority value entered is already present an error message will be shown Example This example shows create three entries...

Страница 488: ...ddress or any destination MAC address host SRC MAC ADDR Specifies a specific source MAC address SRC MAC ADDR MASK Specifies a group of source MAC addresses using a mask host DST MAC ADDR Specifies a s...

Страница 489: ...ludes all optional parameters but time range and priority are excluded The time range option in no form of this command means to remove the time range association from this entry To update the time ra...

Страница 490: ...ending each packet Default is to wait one second between each packet This option is incompatible with A option and it will be ignored when it is along with A option Q TOS Set Quality of Service on ICM...

Страница 491: ...the host with IPv6 address 2001 e10 5c00 2 101 150 Switch ping 172 50 71 123 PING 172 50 71 123 172 50 71 123 56 84 data bytes 64 bytes from 172 50 71 123 icmp_seq 1 ttl 128 time 0 226 ms 64 bytes fro...

Страница 492: ...l get power first Then there is a possibility low priority port power could be cut off because of a new higher priority port is connected with a PD and power budget is limited The relinquishment of Po...

Страница 493: ...length string Command Mode Interface configuration Usage Guideline This command could be used to configure a per port description to indicate the type of powered device that is connected to the port...

Страница 494: ...power management as long as its priority is higher than all other serviced ports In the situation of containing units which is not PoE capable in the system there will be a message displayed for remin...

Страница 495: ...6 2W for class 0 class 1 class 2 and class 3 respectively These threshold value will also used as the allocated power for that port The maximum power threshold value in static mode is designed as 17W...

Страница 496: ...o enable detection of a powered device and to automatically power a PoE port for interface eth3 1 3 5 The following is an example showing how to configure a PoE interface eth3 1 allows class 1 or a cl...

Страница 497: ...alues are project dependent min 4KB max 16MB default 4KB Unit is KB police BPS BURST NORMAL BURST MAX exceed action ACTION violate action ACTION For the above case the explicit BURST NORMAL BURST MAX...

Страница 498: ...ming packet They will not be applied to the exceeding packet and the violating packets Note Either one of police command and police cir command can be activated for the refereed traffic class The latt...

Страница 499: ...ly set to the full size the full size is the number of bytes specified as the normal burst size When a packet of a given size for example B bytes arrives at specific time time T the following actions...

Страница 500: ...icer rate 8 bytes The policer rate here is average rate BPS If the number of bytes in the conform bucket is greater than or equal to B the packet conforms and the conform action is taken on the packet...

Страница 501: ...fy the settings by entering the show policy map command Switch config class map access match Switch config cmap match access list acl_rd Switch config cmap exit Switch config policy map police setting...

Страница 502: ...policy map Example This example shows how to configure a named aggregate policer parameters and apply the policer to multiple classes in a policy map An aggregate policer with single rate policing nam...

Страница 503: ...the peak information rate in bits per second The peak information rate is the second token bucket for the two rate metering min 64KB max 32GB CONFORM BURST Specifies the burst size for the first token...

Страница 504: ...nd setting within the same traffic class The following example show the precedence between police and police cir comands create a policy map police map1 and have a traffic class class movie with a two...

Страница 505: ...in this scenario the token buckets are updated as follows Tc t min CIR t t1 Tc t1 Bc Tp t min PIR t t1 Tp t1 Be Marking Traffic The two rate policer marks packets as either conforming exceeding or vio...

Страница 506: ...p command Switch config class map police Switch config cmap match access list 101 Switch config cmap policy map policy1 Switch config pmap class police Switch config pmap c police cir 64 bc 128 pir 12...

Страница 507: ...figure class policies in a policy map only if the classes have match criteria defined for them Use the class map and match commands to configure the match criteria for a class Because a maximum of 32...

Страница 508: ...he settings by entering the show policy map command Switch config class map class1 Switch config cmap match access list acl_rd Switch config cmap exit Switch config policy map policy Switch config pma...

Страница 509: ...can be specified Example This example shows how to configure load balance algorithm for src ip Verify the settings by entering the show channel group load balance EXEC command Syntax Description dst...

Страница 510: ...The PHY Power Saving function could be enabled or disabled per system base There are two operation modes low power mode and normal mode When power saving is enabled the chips automatically enter low...

Страница 511: ...ed to change PVID of Trunk or Hybrid port When an interface is Access mode use the access VLAN command to change its PVID instead of this command This command does not affect the VLAN membership and t...

Страница 512: ...to 32 characters is case sensitive and may include a z A Z 0 9 the dash character the underscore character _ and the period character The policer names must start with an alphabetic character not a di...

Страница 513: ...aggregate policer NAME setting once the reference aggregator name are the same PEAK BURST PEAK BURST Specifies the burst size for the second token bucket in bytes min 4KB max 16MB default 4KB exceed a...

Страница 514: ...and class2 traffic class in the policy2 policy map Verify the settings by entering the show qos aggregate policer command Switch config qos aggregate policer agg policer5 10000 128 exceed action drop...

Страница 515: ...r this command The specified limitation should not exceed the maximum speed of the specified interface For ingress bandwidth limitation the ingress will send pause frame or flow control frame when the...

Страница 516: ...ode Interface configuration Usage Guideline Only physical ports are valid Example In the following example default COS of eth3 1 is set to 3 Verify the settings by entering the show qos interface cos...

Страница 517: ...vice to the higher CoS classes of traffic DRR operates by serving a mount of backlogged credits into the transmit queue in round robin order Initially each queue sets its credit counter to a configura...

Страница 518: ...xt lower priority CoS queue is serviced in turn All queues are serviced until their weight is zero and a packet is transmitted completely As this condition happens the weights are replenished When the...

Страница 519: ...by entering the show qos interface command Switch config interface eth3 1 Switch config if qos weight round robin 0 weight 2 Switch config if qos weight round robin 2 weight 2 Switch config if qos we...

Страница 520: ...nd Use this command to attach an ingress DSCP mutation table to a physical port interface Use the qos map dscp mutation on page 514 to configure an ingress DSCP mutation table The ingress DSCP mutatio...

Страница 521: ...colored based on either the DSCP to color map as the port is trust DSP or CoS to color map as the port is trust CoS Use the qos map cos color command in interface configuration mode to configure the...

Страница 522: ...the port is trust CoS Use the qos map dscp color command in interface configuration mode to configure the DSCP to color map If the ingress port is set to trust DSCP the received IP packet will be ini...

Страница 523: ...CoS to queue map configured by the qos map cos command Only physical ports are valid for this command All of the DSCP to CoS maps are globally defined The map applies to all ports Example This example...

Страница 524: ...ch mutated DSCP value Up to 15 ingress DSCP mutation maps can be configured to mutate the incoming DSCP value before any QoS operation After the ingress DSCP mutation map creation use qos dscp mutatio...

Страница 525: ...the arriving packet is a non IP packet the CoS is trusted When the interface is in trust CoS state the CoS of the coming packet will be the internal CoS and determine the CoS queue based on the CoS t...

Страница 526: ...privilege level 15 and above This command can be used to reboot a module in a specific slot If no unit ID is specified all of the modules in the system will be rebooted If the CM module is specified t...

Страница 527: ...he OSPF process routes into BGP process You can verify your settings by entering the show ip protocols bgp command Syntax Description PROTOCOL Specifies the protocol whose routes are to be redistribut...

Страница 528: ...der 1 If the redistribute metric is specified use the user specified value 2 If the redistribute route is default route the metric will be 1 3 If default metric is configured use the specified value S...

Страница 529: ...the metric will be 20 BGP RIP can be redistributed to OSPF If a metric is not specified OSPF puts a default value of 20 and redistributes routes from all other protocols except Border Gateway Example...

Страница 530: ...re redistributed into IPv6 OSPF from protocols other than IPv6 OSPF and no metric has been specified with the metric type keyword and type value argument IPv6 OSPF will use 20 as the default metric Wh...

Страница 531: ...cannot be used to affect the metric used to advertise connected routes Example In the example IPv6 OSPF redistributes any prefixes that have been learned through IPv6 Switch enable Switch configure te...

Страница 532: ...e redistributed route from other protocols to RIP process will be determined by the value of the default met ric command Syntax Description PROTOCOL Source protocol from which routes are being redistr...

Страница 533: ...tric value specified in the redistributed command supersedes the metric value specified using the default metric command Examples This example shows OSPF routes are redistributed into a RIP domain The...

Страница 534: ...tatic route or connected route will be 1 2 If the metric is not specified the metric for the redistributed route from other protocols to RIP process will be determined by the value of the default met...

Страница 535: ...ple The following example causes the specified OSPF process routes to be redistributed into an RIPng domain The metric will be remapped to 10 Switch enable Switch configure terminal Switch config rout...

Страница 536: ...nvolved in the RSPAN session For the middle switch involved in a RSPAN session the port that the monitored packet arrives from and the port that the monitored packets will be sent out need to configur...

Страница 537: ...t priority value with least priority in that access list and is placed at the end of the list Example This example shows how to re sequence the priority of IP access list named R D Syntax Description...

Страница 538: ...hen they are considered to be part of two different regions Caution Be careful when using the revision command to set the revision number of the MST configuration because a mistake can put the switch...

Страница 539: ...atistical information about the traffic for the interface The administrator can also perform operations on the supported MIB RMON groups Examples This example shows how to create two RMON entries on E...

Страница 540: ...s specified with no SEQUENCE NUM argument the entire route map is deleted Syntax Description MAP NAME A meaningful name for the route map Multiple route maps may share the same map tag name permit Opt...

Страница 541: ...dd the policy routing entry with name myPolicy Verify the settings by entering the show running config command Switch config route map myPolicy permit 1 Switch config route map match community Mycommu...

Страница 542: ...al use The AS Number size is defined as 2 bytes in RFC1771 and RFC4271 Private autonomous system numbers can be used for internal routing domains but must be translated for traffic that is routed out...

Страница 543: ...OSPF protocol This number uniquely identifies the router within an Autonomous System Each router must be configured with a unique router id If this command is used on an active OSPF router process al...

Страница 544: ...eline Router ID is a 32 bit number assigned to each router running the IPv6 OSPF protocol This number uniquely identifies the router within an Autonomous System Each router must be configured with a u...

Страница 545: ...uter ipv6 rip command is similar to the router rip command except that it is IPv6 specific Use this command to enable an IPv6 RIP routing process globally Using this command places the router in route...

Страница 546: ...tion Usage Guideline Use this command to enter the router configuration mode of IPv6 OSPF In this mode there are other setting of IPv6 OSPF that can be configured Example The following example enables...

Страница 547: ...ospf Syntax None Default Not configured Command Mode Global configuration Usage Guideline This command is used to enable OSPF routing processes and enter into router configuration mode then other OSP...

Страница 548: ...Mode Global configuration Usage Guideline This command is used to enable the RIP function and enter the Router configuration mode of RIP protocol Executing the no form of the command will remove the c...

Страница 549: ...keys during a specific period of time then no authentication will be performed Syntax Description START TIME The beginning time that the key specified by the key command is valid to be received The sy...

Страница 550: ...config if exit Switch config router rip Switch config router network 172 19 0 0 8 Switch config router version 2 Switch config router exit Switch config key chain chain1 Switch config keychain key 1 S...

Страница 551: ...project Syntax Description tacacs Specifies tacacs authentication xtacacs Specifies xtacacs authentication tacacs Specifies tacacs authentication radius Specifies radius authentication IP ADDRESS Spe...

Страница 552: ...privilege level in TACACS RADIUS server is not configured the system will give the default privilege level of 2 Example The following example shows the network access server configured to recognize tw...

Страница 553: ...he no form of this command to disable DHCP server features service dhcp no service dhcp Syntax None Default Disabled Command Mode Global configuration Usage Guideline Use this command to enable DHCP s...

Страница 554: ...2 classes For cust1 classes gold is configured to use CoS Queue 6 and policed by a single rate policer with an average rate set to 64 Kbits per second and a normal burst size set to 128 Kbytes Silver...

Страница 555: ...policy map cust1 classes Swtich config pmap class gold Switch config pmap c police 64 128 exceed action set dscp transmit 0 Switch config pmap c exit Switch config pmap class silver Switch config pma...

Страница 556: ...d Switch config pmap c police 128 256 exceed action set dscp transmit 0 Switch config pmap c exit Switch config pmap class silver Switch config pmap c police 128 256 exceed action set dscp transmit 0...

Страница 557: ...ld of the outgoing packet If the policer is applied as the policy for the traffic class the set actions configured by this command will be applied to the conforming packets They will not be applied to...

Страница 558: ...cond and the normal burst size set to 256 Kbytes Verify the settings by entering the show policy map command Switch config policy map policy1 Switch config pmap class class1 Switch config pmap c set i...

Страница 559: ...em path string to be pre pended to BGP routes Usually the local autonomous system number is pre pended multiple times increasing the autonomous system path length When as path is not modified by the r...

Страница 560: ...efined communities in the route will be replaced User defined community is transitive Well known community is not transitive This command is useful for routes received from EBGP and to be transmitted...

Страница 561: ...This example shows how to set a community 0 1 to the route map entry with name myPolicy Verify the settings by entering the show route map command Switch config route map myPolicy permit 1 Switch con...

Страница 562: ...s ordering the set next hop clauses and the set interface clauses will be evaluated before look up of the routing table If route cannot be found for the packets the set ip default next hop and set def...

Страница 563: ...auses and the set interface clauses will be evaluated before look up of the routing table If route cannot be found for the packets the set ip default next hop and set default interface command will be...

Страница 564: ...list Strict Control Switch config ip acl permit 10 1 1 0 255 255 255 0 any Switch config ip acl exit Switch config route map myPolicy permit 1 Switch config route map match ip address Strict Control S...

Страница 565: ...ame Example The following example sets the IP Precedence value to 5 critical for packets that pass the route map match You can verify your settings by entering the show route map privileged EXEC comma...

Страница 566: ...this ordering the set next hop clauses and the set interface clauses will be evaluated before look up of the routing table If route cannot be found for the packets the set ip default next hop and set...

Страница 567: ...ace With this ordering the set interface clauses and the set interface clauses will be evaluated before look up of the routing table If route cannot be found for the packets the set ip default next ho...

Страница 568: ...xtended Strict Control Switch config ip acl permit 2000 3 4 ffff 0 any Switch config ip acl exit Switch config route map myPolicy permit 1 Switch config route map match ipv6 address Strict Control Swi...

Страница 569: ...erface With this ordering the set next hop clauses and the set interface clauses will be evaluated before look up of the routing table If route cannot be found for the packets the set ip default next...

Страница 570: ...w route map privileged EXEC command Switch config ip access list Strict Control Switch config ip acl permit 10 1 1 0 255 255 255 0 any Switch config ip acl exit Switch config route map myPolicy permit...

Страница 571: ...t next hop clauses and the set interface clauses will be evaluated before look up of the routing table If route cannot be found for the packets the set ip default next hop and set default interface co...

Страница 572: ...map privileged EXEC command Switch config ipv6 access list extended Strict Control Switch config ip acl permit 2000 3 4 ffff 0 any Switch config ip acl exit Switch config route map myPolicy permit 1...

Страница 573: ...next hop 4 set default interface With this ordering the set next hop clauses and the set interface clauses will be evaluated before look up of the routing table If route cannot be found for the packe...

Страница 574: ...he match commands are met The no route map command deletes the route map The set route map configuration commands specify the redistribution set actions to be performed when all of the match criteria...

Страница 575: ...is matched override the weights assigned by global neighbor commands In other words the weights assigned with the set weight route map configuration command override the weights assigned using the nei...

Страница 576: ...e sFlow functions sflow no sflow Syntax None Default sFlow is disabled by default Command Mode Global configuration mode Usage Guideline When sFlow is disabled Receivers stop to countdown and do not s...

Страница 577: ...can not configure the owner name as an empty string Once the owner is configured it cannot be changed directly It can only be reset by the no sflow receiver command Syntax Description INDEX Index of...

Страница 578: ...iration timer starts to count down when its value is configured The user cannot configure the expiry timer as 0 Example This example shows how to configure the Receiver of INDEX 1 with owner name as c...

Страница 579: ...cause the system to sample one packet for every N packets arriving on the monitored interface The sampled packet is sent to the sFlow Receiver Setting the sampling rate to 0 will disable the sampling...

Страница 580: ...DGS 6604 m sflow sampler CLI Reference Guide 570 switch config if sflow sampler 1 receiver 1 sampling rate 1024 max header size 128...

Страница 581: ...to delete all Pollers The user can only specify a Receiver that has its owner name setup If the Receiver associated with the Poller has its owner name is reset the Poller will be reset to the default...

Страница 582: ...rver list of the associating method list will be skipped Syntax Description login Optional Displays the login authentication information enable Optional Displays the enable authentication information...

Страница 583: ...RADIUS 1812 5 2 Telnet Session Login authentication Group Name serverlist1 Local Authentication no IP Address Protocol Port Timeout Retransmit Key 122 248 150 251 RADIUS 1812 5 2 Enable authenticatio...

Страница 584: ...f Application Method Server group Local console login yes console enable serverlist1 no telnet login serverlist1 no telnet enable yes ssh login serverlist1 no ssh enable yes http login yes http enable...

Страница 585: ...ups This example shows how to display an authentication server group named authserv Syntax Description GROUP NAME Optional Specifies the name of the server method list to be displayed The valid length...

Страница 586: ...ID Optional Specifies the interface to be displayed If not specified the access groups for all interfaces will be displayed ip Optional Specifies that only the ip access group on the specified interf...

Страница 587: ...s list R D Syntax Description ip Optional Specifies to display a listing for all ip access lists mac Optional Specifies to display a listing for all mac access lists ipv6 Optional Specifies to display...

Страница 588: ...his example shows how to display the ARP cache The field of IP Interface is indicated with the Interface ID Syntax Description ARP MODE Optional Displays the entries that are in a specific ARP mode Th...

Страница 589: ...next boot image file show boot Syntax None Default None Command Mode User EXEC Usage Guideline None Example The following example shows the display information for the system boot information Switch...

Страница 590: ...annel group information will be shown Examples This example shows how to display the neighbor information for port channel 3 Syntax Description CHANNEL NO Channel group ID channel Optional Display inf...

Страница 591: ...ive mode LACP state bndl Port is attached to an aggregator and bundled with other ports hot sby Port is in a hot standby state indep Port is in an independent state not bundled but able to switch data...

Страница 592: ...l information for all port channels This example shows how to display the load balance information for all channel groups Switch show channel group channel protocol Group Protocol 1 LACP 2 Static Tota...

Страница 593: ...information This example shows how to display the information of all the port channels in brief format Switch show channel group sys id 32765 00 02 4b 29 3a 00 Switch Switch show channel group Group...

Страница 594: ...ss map and its matching criteria will be displayed Example In the following example two class maps are defined Packets that match access list acl_home_user belong to class c3 IP packets belong to clas...

Страница 595: ...ge Guideline This command will also indicate the clock source The clock source can be one of No Time Source or SNTP Example The following example shows how to display the current time Switch show cloc...

Страница 596: ...fault none Command Mode Privileged EXEC mode Usage Guideline The command show cpu protect safeguard is used to display the settings and status of Safeguard Engine Example The following example shows h...

Страница 597: ...following example is a sample output of the show cpu protect type arp command The configured rate is 300 pps and there exists one IO card on slot 3 Syntax Description PROTOCOL NAME UNIT ID the config...

Страница 598: ...DGS 6604 m show cpu protect type CLI Reference Guide 588 Switch show cpu protect type arp Type arp Pps 300 Slot Total Drop 1 CM card 30 0 3 30 0 Switch...

Страница 599: ...put of the show cpu protect sub interface manage command The configured rate is 300 packets per second and there exists one IO card on slot 3 The following is a sample output of the show cpu protect s...

Страница 600: ...ing show ddm Syntax None Default None Command Mode EXEC mode or any configuration mode Usage Guideline It is possible to use this command to verify the global setting of DDM Example The following exam...

Страница 601: ...s of the SFP module for the specified ports Example The following example shows how to display DDM statuses of all valid ports Syntax Description INTERFACE ID It is possible to specify multiple interf...

Страница 602: ...m eth3 23 to eth3 26 eth3 23 with non DDM SFP module eth3 24 with empty port slot and SFP modules supported DDM are inserted in eth3 25 and eth3 26 Syntax Description INTERFACE ID It is possible to sp...

Страница 603: ...ius V mA mW mW High Alarm 75 000 3 630 10 500 1 4125 1 5849 High Warning 70 000 3 465 9 000 0 7079 0 7943 Low Warning 0 000 3 135 2 500 0 1862 0 1023 Low Alarm 5 000 2 970 2 000 0 0741 0 0407 Interfac...

Страница 604: ...ease note that enable dos prevention to block blat_attack may block the Syslog packets The Action row shows users have enabled Drop Log actions The original received attacking packets of Land Attack B...

Страница 605: ...mple This example shows how to display protocol VLAN binding of interface ports 3 1 to 3 3 Syntax Description protocol group Show the protocol VLAN table entry information GROUP ID Specifies the dot1v...

Страница 606: ...o display the authentication state configuration statistics diagnostics or session statistics This option is only valid for a physical port interface auth state Display information of 802 1X state aut...

Страница 607: ...ace eth4 1 statistics eth4 1 EAPOL Frames RX 0 EAPOL Frames TX 0 EAPOL Start Frames RX 0 EAPOL Logoff Frames RX 0 EAPOL Resp Id Frames RX 0 EAPOL Resp Frames RX 0 EAPOL Req Id Frames TX 0 EAPOL Req Fr...

Страница 608: ...WhileAuthenticating 0 ReauthsWhileAuthenticating 0 EAP StartsWhileAuthenticating 0 EAP LogoffsWhileAuthenticating 0 ReauthsWhileAuthenticated 0 EAP StartsWhileAuthenticated 0 EAP LogoffsWhileAuthentic...

Страница 609: ...o show the vlan assigned by dot1x module show dot1x vlan Syntax None Default None Command Mode EXEC mode or any configuration mode Usage Guideline None Example This example shows the output of this co...

Страница 610: ...al accounts for 802 1x authentication show dot1x user Syntax None Default None Command Mode User EXEC or any configuration mode Usage Guideline None Example This example shows the output of this comma...

Страница 611: ...ge Guideline You can use this command to verify the setting of error disable recovery timer Example This example shows how to display the setting of error disable recovery timer Switch show errdisable...

Страница 612: ...at privilege level 15 Usage Guideline Issuing this command will display the password of the privilege enable function for either or both privilege level 12 or 15 Example This example shows how to disp...

Страница 613: ...power temperature Default None Command Mode User EXEC or any configuration mode Usage Guideline If a specific environment type is not specified then all types of environment information will be displa...

Страница 614: ...nt operation range current operation range current operation range 1 35 C 0 75 C 35 C 0 75 C N A 2 42 C 0 70 C 38 C 0 80 C 38 C 0 80 C 3 37 C 0 76 C 36 C 0 77 C 43 C 0 75 C 4 42 C 0 76 C 36 C 0 77 C 3...

Страница 615: ...the display for the power module Field Description Max power The configured maximum power for the unit Used power The allocated power for the unit Power status In operation The power rectifier is in n...

Страница 616: ...y displays GVRP related configuration information Example This example shows how to display gvrp configuration Syntax Description interface Display the gvrp settings of the interface INTERFACE ID Opti...

Страница 617: ...Switch show gvrp configuration interface eth3 5 6 Port GVRP Status Join Leave Leave All 1 100 Secs eth3 5 Enabled 20 60 1000 eth3 6 Enabled 20 60 1000 Total Entries 2 Port based Forbidden VLAN Configu...

Страница 618: ...how to display statistics for a range of gvrp ports Syntax Description INTERFACE ID Optional Specifies the interface to display If no interface is specified the statistics on all interfaces will be sh...

Страница 619: ...e switch saves a record of the commands that the user entered The recorded commands can be recalled to the screen prompt by pressing the following key CTRL P or Up Arrow key They will both recall the...

Страница 620: ...03 04 00 bia 00 01 02 03 04 00 Description Full duplex 100Mb s medium type is Fiber GBIC type is 100BASE FX admin Send flow control is off receive flow control is off oper Send flow control is off re...

Страница 621: ...ow interface port channel1 port channel1 is down line protocol is down notconnect Hardware is Ethernet address is 00 00 00 00 00 00 bia 00 00 00 00 00 00 Description Members in this channel 2 Member 0...

Страница 622: ...scription None Default None Command Mode EXEC mode or any configuration mode Usage Guideline You can use this command to verify which interfaces has been disabled because of an error condition Example...

Страница 623: ...rguments are specified this command will display all as path access lists However the as path ACCESS LIST NAME can be specified when entering the show ip as path access list command This option is use...

Страница 624: ...address entered to filter the output to display only a particular host or network in the BGP routing table MASK LENGTH Optional Mask length to filter or match hosts that are part of the specified net...

Страница 625: ...nternal S Stale Origin codes i IGP e EGP incomplete Network Next Hop Metric LocPrf Weight Path 201 0 1 0 24 11 0 9 1 0 0 1701 i 201 0 2 0 24 11 0 9 1 0 0 1701 i 11 0 9 2 0 0 101 i 201 0 3 0 24 11 0 9...

Страница 626: ...st MarketingCoommunity BGP table version is 716977 local router ID is 192 168 32 1 Status codes s suppressed valid best i internal S Stale Origin codes i IGP e EGP incomplete Network Next Hop Metric L...

Страница 627: ...Entry originated from an Interior Gateway Protocol IGP and was advertised with a network router configuration command e Entry originated from an Exterior Gateway Protocol EGP Origin of the path is not...

Страница 628: ...s 172 16 72 24 Status codes s suppressed valid best i internal Origin codes i IGP e EGP incomplete Network Next Hop Metric LocPrf Weight Path 172 16 0 0 172 16 72 30 0 109 108 172 16 1 0 172 16 72 30...

Страница 629: ...lishment and maintenance When BGP neighbors use multiple levels of peer templates it can be difficult to determine which policies are applied to the neighbor The output of this command displays all ad...

Страница 630: ...capabilities Route refresh advertised and received old and new 4 Byte AS number advertised and received AS TRANS Address family IPv4 Unicast advertised and received Received 0 in queue Sent 0 in queue...

Страница 631: ...0 50 71 254 Last Reset 0DT0H39M28S due to BGP Notification sent Notification Error Message Cease Unspecified Error Subcode Switch Switch show ip bgp neighbors 172 16 232 178 advertised routes BGP tabl...

Страница 632: ...ill display all community lists However the community list name can be specified when entering the show ip community list command This option can be useful for filtering the output of this command and...

Страница 633: ...be displayed If no IP address is specified all bound IP addresses are applied for this command pool NAME Optional Specifies the pool name for the conflict IP address If no pool name is specified all...

Страница 634: ...following example shows the binding status of IP address 10 1 1 1 in DHCP address pool pool1 switch show ip dhcp binding pool pool1 10 1 1 1 IP address Hardware address Lease start Lease expiration 10...

Страница 635: ...IP address is detected by the DHCP server the Detection Method will be marked as ping and if the duplicate IP address is detected by the DHCP client the Detection Method will be marked as Gratuitous A...

Страница 636: ...nd Mode User EXEC or any configuration mode Usage Guideline Use this command to examine the current utilization level and configuration setting of the address pool If the NAME argument is not used the...

Страница 637: ...networks com Lease 3600 seconds NetBIOS node type hybrid NetBIOS scpoe ID alpha Next server 10 1 2 1 Subnet 255 255 0 0 Based on mac address 00 01 02 03 04 05 00 01 02 03 04 FF Based on mac address 00...

Страница 638: ...DNS server available to DHCP clients NetBIOS node type the NetBIOS node type NetBIOS scpoe ID the NetBIOS scope id WINS server The IP address of WINS server Based on mac address The address binding r...

Страница 639: ...guration Example This example shows how to display the DHCP relay agent configuration Switch show ip dhcp relay DHCP Relay Enabled Relay Hop Count 4 DHCP Relay Information Option Enabled DHCP Relay In...

Страница 640: ...relay information trusted sources Syntax None Default None Command Mode User EXEC or any configuration mode Usage Guideline Display the DHCP relay agent configuration Example The following is sample...

Страница 641: ...Command Mode Privileged EXEC Usage Guideline Display the DHCP server status and user configured pool Example This example shows how to display the status of DHCP server Switch show ip dhcp server DHCP...

Страница 642: ...rs to zero The table below describes the significant fields in the display Display Field Descriptions Significant field descriptions for command show ip dhcp server statistics switch show ip dhcp serv...

Страница 643: ...counter is incrementally increased when a new renew message has arrived after the first renew message Message The DHCP message type that was received by the DHCP server Received The number of DHCP me...

Страница 644: ...ble Command Mode EXEC mode or any configuration mode Usage Guideline Use the command to display DHCP snooping configuration setting Example This example shows how to display DHCP Snooping configuratio...

Страница 645: ...Optional Specifies a single interface a range of interfaces separated by a hyphen or a series of interfaces separated by a comma If no interface is specified the switch displays DVRMP information on a...

Страница 646: ...ional The IP address of the neighbor detail Optional Show the neighbor information in detail Switch show ip dvmrp neighbor Interface Neighbor Address Generation ID ExpTime vlan1 10 10 10 11 0035ef6d 0...

Страница 647: ...show ip dvmrp neighbor detail Capability Flags N Network S SNMP M MTRACE G GENID P PRUNE L LEAF Neighbor address 10 10 10 11 Interface vlan1 UpTime 0DT0H23M49S ExpTime 0DT0H0M30S Generation ID 0035ef6...

Страница 648: ...ble Generation ID If a DVMRP router is restarted it will not be aware of any previous prunes that it had sent or received In order for the neighbor to detect that the router has restarted a non decrea...

Страница 649: ...50 P 0DT1H45M44S Off 10 0 7 131 32 239 255 255 250 P 0DT1H47M30S Off 10 1 52 99 32 229 55 150 208 P N 0DT1H44M36S 0DT0H3M50S Total Entries 3 Display Field Description Source Network The address of the...

Страница 650: ...hbor Metric Learned Interface State ExpTime 10 0 0 0 8 10 78 62 51 1 Local vlan99 Total Entries 1 DGS 6600 15 Display Field Description Source Network The address of the source IP address or source ne...

Страница 651: ...Field Descriptions show ip igmp group Field Descriptions Syntax Description IP ADDRESS Optional Specifies the Group IP address to display If no IP address is specified all IGMP group information will...

Страница 652: ...will not be displayed Switch show ip igmp group 224 1 1 1 detail Interface vlan1000 Group 224 1 1 1 Uptime 0DT0H0M42S Expires stopped Group mode Include dynamic Last reporter 192 168 50 111 Group sou...

Страница 653: ...termined by this expire timer If the router is in Include mode for a group then the whole group entry times out after the last source entry has timed out unless the mode is changed to Exclude mode bef...

Страница 654: ...000 Syntax Description INTERFACE ID Optional Specifies a single interface a range of interfaces separated by a hyphen or a series of interface separated by a comma If no interface is specified the swi...

Страница 655: ...splay IGMP Snooping configurations Syntax Description VLAN VLAN ID Optional Specifies a VLAN The VLAN ID range is 1 to 4094 If no VLAN is specified then this command shows IGMP Snooping Information fo...

Страница 656: ...system will immediately remove the port from the multicast group membership Disable IGMP Snooping immediate leave response function is disabled which means the member port of the VLAN interface will...

Страница 657: ...ntax Description IP ADDRESS Optional Specifies the Group IP address to display If no IP address is specified all IGMP Snooping group information will be displayed VLAN VLAN ID Optional Specifies the V...

Страница 658: ...played Switch show ip igmp snooping group 224 1 1 1 detail IGMP version V3 Interface vlan1000 Group 224 1 1 1 Port eth3 12 Uptime 0DT0H0M42S Expires stopped Group mode Include dynamic Last reporter 19...

Страница 659: ...time out because a local receiver is on the router for this entry stopped indicates that the time out of this entry is not determined by this expire timer If the router is set to Include mode for a g...

Страница 660: ...ate auto and not allowed interfaces are displayed When the specified VLAN does not exist or the specified VLAN is without IGMP snooping enabled a warning message will appear indicating this Example Th...

Страница 661: ...erface type is specified then information for that specific interface is displayed This command only supports VLAN interface types If no optional arguments are specified then information for all the i...

Страница 662: ...e shows how to display the ip interface information for VLAN 1 Switch show ip interface vlan1 vlan1 is up Internet address is 100 0 0 1 24 Internet address is 110 0 0 1 24 secondary MAC Address is 08...

Страница 663: ...ain Syntax Description NAME OF KEY Optional Specifies the name of a key chain to display Switch show ip key chain Key Chain tree Key 1 text stringforkey1 accept lifetime 13 30 00 Jan 25 2008 15 29 59...

Страница 664: ...or the multicast data stream The Expires timer value is based on either the PIM Sparse and Dense Mode RFCs RFC 4601 and RFC 3973 or DVMRP If the multicast data continues to arrive at the device the ti...

Страница 665: ...M S PIM SM V DVMRP Timers Uptime Expires 10 10 1 52 224 0 1 3 vlan1 0DT0H1M32S 0DT0H3M20S Flags D Switch show ip mroute IP Multicast Routing Table 1 entry Flags D PIM DM S PIM SM V DVMRP Timers Uptime...

Страница 666: ...f Syntax None Default None Command Mode User EXEC Usage Guideline Display general OSPF protocol information It provides system wide statistics and per area statistics for OSPF The LSDB database overfl...

Страница 667: ...f LSA originated 138 Number of LSA received 1441 Number of current LSA 1426 LSDB database overflow limit is 24576 Number of areas attached to this router 5 Area 0 0 0 0 BACKBONE Number of interfaces i...

Страница 668: ...border routers command Switch show ip ospf border routers OSPF process internal Routing Table Codes i Intra area route I Inter area route i 10 47 65 181 1 via 47 65 51 2 vlan51 ABR ASBR TransitArea 0...

Страница 669: ...d to display a database summary for OSPF information show ip ospf database Syntax None Default None Command Mode User EXEC Usage Guideline Display information about the database summary for OSPF infor...

Страница 670: ...ink States Area 0 0 0 0 Link ID ADV Router Age Seq CkSum 10 47 65 160 10 47 65 181 1786 0x80000003 0xb756 Router Link States Area 0 0 0 61 NSSA Link ID ADV Router Age Seq CkSum Link count 10 47 65 160...

Страница 671: ...nate adv router IP ADDRESS Default None Command Mode User EXEC Usage Guideline Displays information about the Autonomous System Boundary Router ASBR summary LSAs Example The following page shows a sam...

Страница 672: ...65 160 AS Boundary Router address Advertising Router 10 47 65 181 LS Seq Number 80000003 Checksum 0xb756 Length 28 Network Mask 0 TOS 0 Metric 1 ASBR Summary Link States Area 0 0 0 1 LS age 927 Option...

Страница 673: ...w ip ospf database external command Syntax Description LINK STATE ID Link State ID as an IP address self originate Self originated link states adv router Displays all the LSAs of the specified router...

Страница 674: ...adv router IP ADDRESS Default None Command Mode User EXEC Usage Guideline Display information about the network LSAs Example This is a sample output on the next page from the show ip ospf database ne...

Страница 675: ...ter 47 65 49 111 LS Seq Number 80000001 Checksum 0x33da Length 32 Network Mask 24 Attached Router 47 65 49 111 Attached Router 10 47 65 160 Net Link States Area 0 0 0 1 LS age 1015 Options 0x2 E LS Ty...

Страница 676: ...inate adv router IP ADDRESS Default None Command Mode User EXEC Usage Guideline Display information about the nssa external LSAs Example This is a sample output on the next page from the show ip ospf...

Страница 677: ...80000001 Checksum 0x82e6 Length 36 Network Mask 24 Metric Type 2 Larger than any link state path TOS 0 Metric 20 NSSA Forward Address 110 201 0 1 External Route Tag 0 LS age 1097 Options 0x0 LS Type A...

Страница 678: ...dv router IP ADDRESS Default None Command Mode User EXEC Usage Guideline Display information about the router LSAs Example The following pages shows a sample output from the show ip ospf database rout...

Страница 679: ...dress 47 65 49 111 Link Data Router Interface address 47 65 49 1 Number of TOS metrics 0 TOS 0 Metric 1 Link connected to a Virtual Link Link ID Neighboring Router ID 10 47 65 181 Link Data Router Int...

Страница 680: ...cs 0 TOS 0 Metric 0 LS age 1063 Options 0x2 E Flags 0x3 ABR ASBR LS Type router LSA Link State ID 10 47 65 181 Advertising Router 10 47 65 181 LS Seq Number 80000006 Checksum 0xb55d Length 48 Number o...

Страница 681: ...adv router IP ADDRESS Default None Command Mode User EXEC Usage Guideline Display information about the summary LSAs Example The following page shows a sample output from the show ip ospf database sum...

Страница 682: ...ink State ID 2 1 1 0 summary Network Number Advertising Router 10 47 65 160 LS Seq Number 80000001 Checksum 0xe359 Length 28 Network Mask 24 TOS 0 Metric 1 LS age 1225 Options 0x2 E LS Type summary LS...

Страница 683: ...OSPF show ip ospf host route Syntax None Default None Command Mode User EXEC Usage Guideline Use this command to display host route information for OSPF Example The following is a sample output of th...

Страница 684: ...Command Mode User EXEC Usage Guideline Use this command to display interface information for OSPF If no IFNAME is specified the OSPF information for all interfaces will be displayed Example The follo...

Страница 685: ...LS Upd received 2 sent 947 LS Ack received 588 sent 3 Discarded 0 Current Authentication Type none vlan51 is up line protocol is up Internet Address 47 65 51 1 29 Area 0 0 0 1 MTU 1500 Router ID 10 47...

Страница 686: ...ription IFNAME Optional Specifies the type of the interface to display the neighbor information for NEIGHBOR ID Optional Neighbor ID detail Optional Detail of neighbors Switch show ip ospf neighbor Ne...

Страница 687: ...links Use this command to display virtual link information show ip ospf virtual links Syntax None Default None Command Mode User EXEC Usage Guideline Use this command to display virtual link informat...

Страница 688: ...ncy state Full Current Authentication Type simple text Authentication Key Configuration Authentication type simple text Authentication key 12345678 Virtual Link to router 10 47 65 183 is up Transit ar...

Страница 689: ...o display the global information of PIM Example The following example displays PIM global information Switch show ip pim PIM Configurations Register Checksum Include Data Disabled group list None Regi...

Страница 690: ...on a BSR router with the Candidate RP information on the router s interface vlan100 The following example displays the BSR information on a non BSR router with Candidate RP information on the router s...

Страница 691: ...faces will be shown Examples The following example displays interface information On the following page is an example which displays the interface information in detail Syntax Description INTERFACE ID...

Страница 692: ...3000 milliseconds Effect Propag Delay 1000 milliseconds Effect Override Interval 3000 milliseconds Join Suppression Enabled Enabled Bidir Capable False vlan200 Address 50 111 111 111 Mode Dense Neigh...

Страница 693: ...uting table The switch populates the multicast routing table by creating source group S G entries from star group G entries The star refers to all source addresses the S refers to a single source addr...

Страница 694: ...ghbor None RPF Interface None Register State Pruned Register Stop Timer 20 secs Upstream Interface Join State Joined Join Timer off KAT 22 secs Downstream Interface List Vlan2 JP State No Info ET 20 s...

Страница 695: ...eighbor information for If INTERFACE ID is not specified the information on all interfaces will be displayed Switch show ip pim neighbor Mode B Bidir Capable DR Designated Router N Default DR Priority...

Страница 696: ...al mode neighbor is using the Bidirectional PIM Capable option DR indicates the neighbor is the Designated Neighbor If an empty string is displayed it indicates the neighbor is not a DR S State Refres...

Страница 697: ...eld Descriptions The table below shows the ip pim rp mapping detailed field descriptions Switch show ip pim rp mapping PIM Group to RP Mappings Group s 224 0 0 0 4 RP 90 1 1 3 Info source 90 1 1 3 via...

Страница 698: ...also shows whether this RP was selected by Auto RP or the PIM Version 2 bootstrap mechanism Example The following is sample output from the show ip pim rp hash command with the group address 239 1 1 1...

Страница 699: ...s displayed ospf Optional Display OSPF global settings which are related to the overall IP routing function bgp Optional Display entries in the Border Gateway Protocol BGP routing table Specifies the...

Страница 700: ...n will be thrown flushed out Default version control Specifies the version of RIP packets that are sent and received Redistributing Lists the protocol that is being redistributed Routing Specifies the...

Страница 701: ...ficant display fields Switch Show ip rip database Codes R RIP Rc RIP connected Rs RIP static K Kernel C Connected S Static O OSPF I IS IS B BGP Network Next Hop Metric From If Time Rc 10 0 0 0 8 1 vla...

Страница 702: ...ID Optional Specifies the interface ID to display the RIP information for If no INTERFACE ID is specified the RIP information on all interfaces will be shown Switch Show ip rip interface vlan1 is up...

Страница 703: ...es Display all active static routes with both the show ip route and show ip route static commands Syntax Description IP ADDRESS Optional Address about which routing information should be displayed MAS...

Страница 704: ...e default S static B Border Gateway Protocol BGP derived E2 Type of route It can be one of the following values Indicates the last path used when a packet was forwarded It pertains only to the nonfast...

Страница 705: ...RIP B BGP O OSPF IA OSPF inter area N1 OSPF NSSA external type 1 N2 OSPF NSSA external type 2 E1 OSPF external type 1 E2 OSPF external type 2 i IS IS L1 IS IS level 1 L2 IS IS level 2 ia IS IS inter a...

Страница 706: ...onnected vlan10 O 10 50 71 253 32 110 0 is a summary Null 0DT1H7M18S C 11 0 0 0 8 is directly connected vlan110 O E1 11 0 1 0 24 110 1 via 11 50 71 200 vlan110 0DT1H6M19S C 12 0 0 0 8 is directly conn...

Страница 707: ...mmand Mode User EXEC or any configuration mode Usage Guideline None Example The following is sample output from the show ip route summary command Switch show ip route summary IP routing table name is...

Страница 708: ...ny configuration mode Usage Guideline Use the show ip ssh command to view the status of configured options such as retries and timeouts This command displays if SSH is enabled or disabled Example This...

Страница 709: ...ne This command displays the trusted host information Example This example shows how to display trusted hosts information for all access interfaces Syntax Description snmp http https telnet ssh Option...

Страница 710: ...the DHCPv6 client s DUID The following example shows the DHCPv6 client for interface vlan1 when vlan1 is DHCPv6 client disabled Syntax Description interface Specifies to show the interface DHCPv6 Clie...

Страница 711: ...1 Interface vlan1 is in DHCPv6 client mode General prefix aaa State REQUEST Server IP N A Server DUID N A Preference 0 Event expire 10 IA is not acquired Switch enable Switch show ipv6 dhcp interface...

Страница 712: ...IP fe80 21d 92ff fe2b af48 eth0 Server DUID 0001000611D6EE73001D922BAF48 Preference 87 Event expire 17 IA Type PD IA ID 0003 T1 300 T2 800 Prefer Lifetime 3600 Valid Lifetime 7200 Prefix 3000 1 2 48...

Страница 713: ...e Usage Guideline The show ipv6 dhcp relay command shows the DHCP for IPv6 relay configuration and running information of the specified VLAN interface Example The following example shows the DHCPv6 cl...

Страница 714: ...The following example shows how to display all IPv6 general prefixes on the switch Syntax Description PREFIX NAME The name of the general prefix to be showed If the general prefix name is not specifie...

Страница 715: ...e following example shows how to display information for a specified general prefix named my prefix Switch enable Switch show ipv6 general prefix my prefix IPv6 prefix my prefix Acquired via Manual co...

Страница 716: ...link local address is fe80 a01 2ff fe39 1 global unicast address is 3ffe 501 ffff 100 a01 2ff fe39 1 64 DAD check fail MAC Address is 08 01 02 39 00 01 IP MTU is 1500 bytes IPv6 Hop Limit is 64 ICMP...

Страница 717: ...ed from the routing table Removing the entry allows the software to use dynamic routing protocols to determine backup routes to the network If you specify an optional interface type you see informatio...

Страница 718: ...e last ReachableTime in milliseconds that the forward path to the neighbor was properly functioning While in the REACH state the device takes no special action as packets are sent STALE More than the...

Страница 719: ...line The information displayed by the show ipv6 ospf command is useful in debugging OSPF routing operations Example The following is sample output from the show ipv6 ospf command The output after exec...

Страница 720: ...Number of LSA received 13 Number of current LSA 31 LSDB database overflow limit is 12288 Number of areas in this router is 3 Area 0 0 0 0 BACKBONE active Number of interfaces in this area is 1 active...

Страница 721: ...IPv6 OSPF processes Example This is a sample output from the show ipv6 ospf border routers command The result after executing this command is as follows Syntax Description PROCESS ID Optional Interna...

Страница 722: ...abase command to provide more detailed information If the PROCESS ID argument is not specified display all IPv6 OSPF processes Example The following is sample output from the show ipv6 ospf database c...

Страница 723: ...e IPv6 OSPF process Switch enable Switch show ipv6 ospf interface vlan2 is up line protocol is up Interface ID 1026 IPv6 Prefixes fe80 a01 2ff fe36 2 64 Link Local Address 3ffe 4 30 64 OSPFv3 Process...

Страница 724: ...ws Syntax Description PROCESS ID Optional Internally used identification parameter for an IPv6 OSPF routing process It is locally assigned and can be any positive integer A unique value is assigned fo...

Страница 725: ...sed identification parameter for an IPv6 OSPF routing process It is locally assigned and can be any positive integer A unique value is assigned for each IPv6 OSPF routing process Switch enable Switch...

Страница 726: ...SPF processes Example The following is sample output from the show ipv6 ospf virtual links command Syntax Description PROCESS ID Optional Internally used identification parameter for an IPv6 OSPF rout...

Страница 727: ...ting information Examples The following is sample output from the show ipv6 protocols ospf command Syntax Description rip Optional Herein RIPng protocol information is displayed ospf Optional Display...

Страница 728: ...ting Protocol is ripng Sending updates every 30 seconds with 50 next due in 20 seconds Timeout after 180 seconds garbage collect after 120 seconds Outgoing update filter list for all interface is not...

Страница 729: ...sample output from the show ipv6 rip database command The result after executing this command is as follows Syntax Description database If specified the command displays the details of the entries in...

Страница 730: ...ses The show ipv6 rip interface command also displays the parameters that IPv6 RIP is using on this interface including any configured features If the argument IFNAME is not used then all IPv6 RIP int...

Страница 731: ...IPv6 network that is the destination of the static route PREFIX LENGTH Optional The length of the IPv6 prefix A decimal value that indicates how many of the high order contiguous bits of the address...

Страница 732: ...S 192 0 244 2 64 1 0 via 20 50 71 1 2 S a100 64 1 0 via fe80 250 baff fe91 bb28 vlan111 1 0 via fe80 a00 1ff fe02 6 vlan10 Total Entries 8 entries 10 routes Switch Switch enable Switch show ipv6 rout...

Страница 733: ...Mode User EXEC or any configuration mode Usage Guideline None Example The following is sample output from the show ipv6 route summary command Swtich show ipv6 route summary IPv6 routing table name is...

Страница 734: ...prefix of more than 64 bits show ipv6 unicast routing long prefix status Syntax None Default None Command Mode User EXEC or any configuration mode Usage Guideline None Example The following displays...

Страница 735: ...yntax Description cr To show all the loopback detection protocol information interface INTERFACE ID Specify the interface ID which you want to display Optional Specify a series of interfaces or separa...

Страница 736: ...pback detection Status Enabled Mode VLAN Based Interval 20 sec Interface LoopDetect State Result Time Left sec eth3 1 Enabled Normal eth3 8 Enabled Normal eth4 5 Enabled Loop on Vlan 2 120 Loop on Vla...

Страница 737: ...e of the command show logging with the keyword host Syntax Description host Optional Displays the logging hosts buffer Optional Only display the content of system logging buffer START INDEX Optional T...

Страница 738: ...0 65 45 34 informational local7 514 35 4 56 2 critical local4 1300 DGS 6600 15 show logging buffer 3 Total logs 401 Index Date Log Text 3 12 12 04 2010 08 14 Interface eth4 47 is up 2 12 12 04 2010 08...

Страница 739: ...8 53 14 2010 09 20 Interface vlan1 is up 257 08 45 08 2010 09 20 eth4 1 state change from LRN to FWD for MSTID 0 256 08 45 08 2010 09 20 eth4 1 state change from BLK to LRN for MSTID 0 255 08 45 07 20...

Страница 740: ...ne None Examples This is an example of output from the show mac address table address command Syntax Description dynamic Optional Displays dynamic MAC address table entries only static Optional Displa...

Страница 741: ...able static Vlan Mac Address Type Ports 1 01 00 0c cc cc cc Static CPU 1 01 80 c2 00 00 00 Static CPU 1 01 00 0c cc cc cd Static CPU 1 01 80 c2 00 00 01 Static CPU 1 01 80 c2 00 00 04 Static CPU 1 01...

Страница 742: ...tatus of destination MAC address triggered update function show mac address table aging destination hit Syntax None Default None Command Mode User EXEC or any configuration mode Usage Guideline None E...

Страница 743: ...le aging time command to display the aging time show mac address table aging time Syntax None Default None Command Mode User EXEC or any configuration mode Usage Guideline None Example This is an exam...

Страница 744: ...nd Mode User EXEC management interface mode or any configuration mode Usage Guideline None Example This example shows how to display the status of the management port Switch show mgmt if Management In...

Страница 745: ...ions are displayed Examples This example shows how to display a created port mirroring session with session number 1 This example shows how to display all the created port mirroring sessions Syntax De...

Страница 746: ...2 4 RX eth1 5 TX eth1 7 Session 2 Session type local session Destination Port eth2 1 Source Ports Both eth2 2 4 RX eth1 5 TX eth1 7 Session 3 Session type remote source session Destination remote VLA...

Страница 747: ...rfaces This is an example of output from the show multicast filtering mode for the vlan 1 interface Syntax Description INTERFACE ID Optional Specifies the interface to display the filtering mode on on...

Страница 748: ...w policy map command As shown below in the policy map called policy1 two rate traffic policing has been configured for the class called police Two rate traffic policing has been configured to limit tr...

Страница 749: ...t eth3 1 Switch show policy map policy1 Policy Map policy1 Class police police tr tcm cir 500000 bc 10000 pir 1000000 be 10000 exceed action set dscp transmit 2 violate action drop Total Entries 1 Swi...

Страница 750: ...ified with show port security command all of the port security information is displayed Examples This example shows how to display the port security setting of interface port eth4 1 Syntax Description...

Страница 751: ...o display the power saving information show power saving Default None Command Mode User EXEC or any configuration mode Usage Guideline None Example The following example shows how to display power sav...

Страница 752: ...figuration mode Usage Guideline None Example This example shows how to display the aggregate policer Syntax Description NAME Optional Specifies the name of the aggregate policer Switch show qos aggreg...

Страница 753: ...ption interface INTERFACE ID Specifies the interface ID to display Specify multiple interface IDs which are separated by a comma or hyphen No space is before or after the comma or hyphen cos Displays...

Страница 754: ...s eth3 1 to 3 2 Switch show qos interface eth3 2 3 5 trust Interface Trust State eth3 2 trust DSCP eth3 3 trust CoS eth3 4 trust DSCP eth3 5 trust CoS Total Entries 4 Switch Switch show qos interface...

Страница 755: ...ith Control Table Interface Ingress Rate Kbps Egress Rate Kbps eth3 1 64 qos 128 qos eth3 2 256 dot1x 256 dot1x Total Entries 2 Switch show qos interface eth3 1 3 2 map dscp color eth3 1 DSCP 0 7 44 6...

Страница 756: ...for ports eth3 1 Switch show qos interface eth3 1 map dscp cos eth3 1 0 1 2 3 4 5 6 7 8 9 00 00 00 00 00 00 00 00 00 01 01 10 01 01 01 01 01 01 02 02 02 02 20 02 02 02 02 03 03 03 03 03 01 30 03 03 0...

Страница 757: ...ample displays the global DSCP mutation map Syntax Description MAP NAME Optional Specifies the name of the DSCP mutation map to display Switch show qos map dscp mutation DSCP Mutation mutemapl Attachi...

Страница 758: ...mation that pertains to the route map in the same display without having to execute a show route map command to display each ACL that is associated with the route map Example This example shows how to...

Страница 759: ...ege EXEC at level 15 Usage Guideline The show running config command output for the current running system configuration Example The following example shows how to display the contents of the current...

Страница 760: ...le output from the command show snmp host Syntax Description community Display SNMP community information host Display SNMP trap recipient information view Display SNMP view information group Display...

Страница 761: ...ded CommunityView 1 3 6 1 6 3 1 Included Total Entries 8 Switch Switch show snmp group groupname ILMI security model v1 readview ilmi writeview ilmi notifyview no notifyview specified row status activ...

Страница 762: ...DGS 6604 m show snmp CLI Reference Guide 752 This example is sample output from the command show snmp engineID Switch show snmp engineID Local SNMP engineID 00000009020000000C025808 Switch...

Страница 763: ...ified the state control for all trap notifications will be shown Examples This example shows how to display the SNMP server configuration This example shows how to display the state control for all tr...

Страница 764: ...Mode Privileged EXEC or global configuration Usage Guideline An SNMP user must be part of an SNMP group as configured using the snmp server user USER NAME GROUP NAME command When the username argumen...

Страница 765: ...es 1 Display Field Description User Name A string identifying the name of the SNMP user Engine ID Per snmp user s engineID is copied from the local system engineID Authentication Protocol Identifies w...

Страница 766: ...rver show sntp Syntax None Default None Command Mode User EXEC or any configuration mode Usage Guideline None Example The following example shows how to display the SNTP information Switch show sntp S...

Страница 767: ...STP compatible mode Issuing the command without any argument displays all the spanning tree protocol information An error message will appear when the operating mode is MSTP Examples The example on th...

Страница 768: ...gured as enabled Configured link type A Auto P point to point S shared Priority Link Interface Role State Cost Port Type Edge FA eth3 3 designated forwarding 20000 128 3 p2p edge FA eth3 5 backup bloc...

Страница 769: ...example shows how to MSTP summary information Syntax Description configuration Specifies to display a table of the mapping relationship between VLANs and MSTP Instances digest Specifies to display the...

Страница 770: ...pe A Auto S Shared P Point to point Priority Link Interface Role State Cost Port Type Edge FA eth3 3 designated forwarding 20000 128 3 p2p edge FA eth3 5 backup blocking 200000 128 5 p2p non edge A et...

Страница 771: ...LI Reference Guide 761 This example shows how to display the MSTP MD5 digest information Switch show spanning tree mst digest Name region1 Revision 2 Instances configured 3 Digest 3C 60 DB F2 4B 03 EB...

Страница 772: ...on information such as timeouts and retries Example This example shows how to display SSH connections information Display Field Descriptions Description of significant display fields Switch show ssh S...

Страница 773: ...ommand to display the system configuration contents of the file which is specified with the boot config command If no boot config command is applied the factory default system configuration content is...

Страница 774: ...ar If no traffic type is specified then all types of storm control settings will appear If there is no configuration on the interface specified the interface will not be displayed Examples This exampl...

Страница 775: ...e 80 eth3 1 Unicast Drop percentage 80 eth3 2 Broadcast Shutdown percentage 90 eth3 2 Multicast Drop percentage 80 eth3 3 Broadcast Shutdown percentage 85 Total Entries 6 Switch show storm control int...

Страница 776: ...plays information about the overall Switch system Use keyword of protocol state to show the information about the administrative and operational state of the supported protocols Example This example o...

Страница 777: ...s es 1 Slot 2 Hardware Version 0A0 2 Bootloader Version 1 00 002 Firmware Version 1 00 018 S N QT101AC000001 Model Name DGS 6600 48P First MAC Address 08 03 04 37 00 00 Number of MAC Address es 48 Slo...

Страница 778: ...DGS 6604 m show system CLI Reference Guide 768 The following shows the output for the command show system protocol state command...

Страница 779: ...led RIP Disabled OSPF Disabled BGP Disabled Multicast Routing Disabled DVMRP Enabled PIM DM Enabled PIM SM Enabled IGMP Snooping Enabled IGMP Enabled DHCPv4 Relay Disabled DHCPv4 Client Enabled DHCPv4...

Страница 780: ...le shows how to display the content of the configured time range profile named trange1 Syntax Description NAME Optional The name of the time range profile to be displayed If no NAME argument is specif...

Страница 781: ...tion for all ports is displayed Otherwise only the specified interface s traffic segmentation is shown Example This example shows the configuration of traffic segmentation for eth3 1 Syntax Descriptio...

Страница 782: ...he display text and format may differ depending on the SW release Display Field Descriptions Description of significant display fields Syntax Description UNIT ID Optional Slot ID to indicate which slo...

Страница 783: ...o display all of the usernames configured in the switch The table below describes the significant fields shown in the display Syntax Description NAME Optional A specified name of a user account Only o...

Страница 784: ...g all interfaces will be displayed Example This example shows how to display all session information Syntax Description console Optional displays the information of the current console users telnet Op...

Страница 785: ...about the Switch Example This example shows how to display the software and hardware versions on a DGS 6604 switch Switch show version GS 6604 System Version Backplane H W version 0A1G PCBA version 0...

Страница 786: ...on Syntax Description VLAN ID Optional Display information about a single VLAN identified by VLAN id number The VLAN id range is 1 to 4094 Separate non consecutive VLAN IDs with a comma use a hyphen t...

Страница 787: ...Configuration using an access VLAN command 2 VLAN assignment from a RADIUS server Use the command show vlan subnet base mac base to display a Subnet based VLAN or MAC based VLAN respectively If no op...

Страница 788: ...th4 19 eth4 20 eth4 21 eth4 22 eth4 23 eth4 24 eth4 25 eth4 26 eth4 27 eth4 28 eth4 29 eth4 30 eth4 31 eth4 32 eth4 33 eth4 34 eth4 35 eth4 36 eth4 37 eth4 38 eth4 39 eth4 40 eth4 41 eth4 42 eth4 44 e...

Страница 789: ...1 4 3 eth4 1 PVID 99 GVRP State Disabled Ingress checked Enabled Access VLAN 99 Advertise VLAN 1 4094 Forbidden VLAN Acceptable frame types admit all eth4 2 PVID 1 GVRP State Disabled Ingress checked...

Страница 790: ...ase VLAN table Switch config show vlan mac base MAC Address VLAN ID 00 80 cc 00 00 11 100 00 80 cc 00 00 21 100 00 80 cc 00 00 12 200 00 80 cc 00 00 31 300 00 80 cc 00 00 33 300 Total Entries 5 Switch...

Страница 791: ...ific interface s in the VLAN translation table If no argument is specified only the status of VLAN tunnel mode will be shown Syntax Description INTERFACE ID Optional Multiple interfaces can be specifi...

Страница 792: ...oS encapsulation 1001 2002 5 2003 5 2004 5 encapsulation 1002 1002 5 2003 5 3004 6 remarking 2 102 4 remarking 3 103 5 remarking 4 104 5 eth4 2 NNI port TPID 0x88a8 eth4 3 UNI port CoS remarking disab...

Страница 793: ...ion and remarking pairs S VID C VID Indicates the service provider VLAN ID and customer VLAN ID of the VLAN tunneling pair CoS The CoS remarking setting for the VLAN tunneling pair Field Description S...

Страница 794: ...tag mapping static command to show each static customer VLAN tag mapping entries that user configured Examples This example shows how to display the state of dynamic learned customer VLAN tag mechanis...

Страница 795: ...ured in the interface vlan1 a VRID 5 configured in interface vlan2 and a VRID 1 configured in interface vlan3 Syntax Description INTERFACE ID Optional The interface name of a configured IP interface W...

Страница 796: ...n disabled Priority is 200 Critical IP address is 0 0 0 0 Master router is 20 0 1 1 local Master Down interval is 3 218 sec vlan2 VRID 5 State is Initialize Virtual IP address is 30 1 1 254 Virtual MA...

Страница 797: ...e vlan1 and VRID 8 Switch show vrrp interface vlan1 8 vlan1 VRID 8 State is Master Virtual IP address is 20 1 1 2 Virtual MAC address is 00 00 5e 00 01 08 Advertisement interval is 1 sec Preemption di...

Страница 798: ...ll virtual routers including virtual routers in a shutdown state Switch show vrrp brief Interface VRID Prio Time Own Pre State Master Addr VRouter Addr vlan1 7 255 3 003 Y Y Master 20 0 1 1 20 0 1 1 v...

Страница 799: ...ort interfaces are valid for this configuration The command will change the state of a port to be disabled In the disabled state the port will not be able to receive or transmit any packets Using the...

Страница 800: ...shutdown Syntax None Default Enabled Command Mode Management interface Usage Guideline This command will disable the management port Users cannot access or manage the system using the management port...

Страница 801: ...configuration mode Usage Guideline Use the command to display DHCP snooping configuration setting Example This example shows how to display DHCP Snooping configuration Switch show ip dhcp snooping DH...

Страница 802: ...RESS Optional Display the binding entry based on IP address MAC ADDRESS Optional Display the binding entry based on MAC address vlan VLAN ID Optional Display the binding entry based on VLAN interface...

Страница 803: ...C 00 01 02 00 00 05 Switch show ip dhcp snooping binding 10 1 1 1 Mac Address IP Address Lease seconds Type VLAN Interface 00 01 02 03 04 05 10 1 1 1 1500 dhcp snooping 100 eth3 5 Total Entry 1 Switch...

Страница 804: ...s Lease seconds Type VLAN Interface 00 01 02 03 04 05 10 1 1 1 1500 dhcp snooping 100 eth3 5 Total Entry 1 Switch Switch show ip dhcp snooping binding vlan 100 Mac Address IP Address Lease seconds Typ...

Страница 805: ...yntax None Default Not applicable Command Mode EXEC mode or any configuration mode Usage Guideline User can use this command to display DHCP snooping database statistics Example This example shows how...

Страница 806: ...displays brief instance information of all created ERP instances in an ERPS domain on a device Example The following example displays instance information of all created ERPS domains when ERPS is glo...

Страница 807: ...le East Blocked West Forwarding campus1 2 Sub Protection East Virtual Channel West Forwarding campus2 3 Major Disabled East West Total ERPS domains 2 Total ERP instances 3 Switch Switch show erps doma...

Страница 808: ...ter INSTANCE ID and it will also display sub ring information for the sub ERP instance For the enabled ERP instance it will display operational value of parameters but if the operational and configure...

Страница 809: ...P instance 1 Domain name campus1 Instance type Major Instance state Enabled Instance status Idle R APS controlled VLAN 2 Ring MEL 1 East ring port eth3 1 East ring port state Blocked West ring port et...

Страница 810: ...controlled VLAN 3 Ring MEL 1 East ring port eth3 2 Shared East ring port state West ring port eth3 3 West ring port state RPL owner port Not configured Service protected VLANs 15 25 Guard Timer 500 m...

Страница 811: ...ings Syntax Description oui Optional Display OUI information of voice VLAN interface Optional Display voice VLAN port information INTERFACE ID Optional Specify the port to display Optional Specifies a...

Страница 812: ...ff 00 00 00 Avaya 00 0f e2 00 00 00 ff ff ff 00 00 00 Huawei 3COM 00 60 b9 00 00 00 ff ff ff 00 00 00 NEC Philips 00 d0 1e 00 00 00 ff ff ff 00 00 00 Pingtel 00 e0 75 00 00 00 ff ff ff 00 00 00 Verit...

Страница 813: ...eth3 1 00 03 6b 00 00 02 eth3 1 00 03 6b 00 00 05 eth3 2 00 03 6b 00 00 09 eth3 2 00 03 6b 00 00 0a Total Entries 5 Switch Switch show vlan voice vlan lldp med device Interface eth3 1 Chassis ID Subty...

Страница 814: ...licy Syntax Not applicable Default Not applicable Command Mode EXEC mode Usage Guideline The user can use the command to display the policy based routing configured on interfaces Example The following...

Страница 815: ...n the system are displayed Example This example shows how to display the statistics of packets that have been processed by DAI for VLAN 10 Syntax Description interfaces PORT Specifies a port a range o...

Страница 816: ...spection statistics VLAN Forwarded Dropped DHCP Drops 1 0 0 0 2 0 0 0 10 21546 145261 145261 100 0 0 0 200 0 0 0 1024 0 0 0 VLAN DHCP Permits Source MAC Failures 1 0 0 2 0 0 10 21546 0 100 0 0 200 0 0...

Страница 817: ...to display the trust state of interfaces on the switch Switch show ip arp inspection interfaces eth3 3 Interface Trust State eth3 3 untrusted Switch Switch show ip arp inspection interfaces Interface...

Страница 818: ...DDRESS Optional Display the IP source guard binding entry based in IP address MAC ADDRESS Optional Display the IP source guard binding entry based on MAC address dhcp snooping Optional Display IP sour...

Страница 819: ...ng by DHCP snooping Switch show ip source binding 10 1 1 11 MAC Address IP Address Lease sec Type VLAN Interface 00 01 01 01 01 01 10 1 1 11 infinite static 100 eth3 3 Total Entry 1 Switch Switch show...

Страница 820: ...binds 10 1 1 10 MAC address 00 01 01 01 01 01 on VLAN 100 and 10 1 1 11 MAC address 00 01 01 01 01 10 on VLAN 101 Syntax Description INTERFACE ID Specifies a port or a range of ports to configure Opt...

Страница 821: ...P server screening Example The following example shows the configuration which enables functions on port range from eth4 1 to eth4 23 and adds a binding composed of server IP 10 1 1 1 and client MAC a...

Страница 822: ...all types of sFlow objects information The flow samples and counter samples of eth3 1 are sent to 10 1 1 2 The flow samples and counter samples of eth3 2 are sent to both 10 1 1 2 and 10 1 1 3 Syntax...

Страница 823: ...ntdown Time 0 Max Datagram Size 1400 Address 0 0 0 0 Port 6343 Datagram Version 5 Index 4 Owner NULL Current Countdown Time 0 Max Datagram Size 1400 Address 0 0 0 0 Port 6343 Datagram Version 5 Sample...

Страница 824: ...show lldp command show lldp Syntax This command has no arguments or keywords Default Not applicable Command Mode EXEC mode or any configuration mode Usage Guideline This command is used to show LLDP...

Страница 825: ...DP MED System Information Device Class Network Connectivity Device Hardware Revision 0A Firmware Revision XXXXXXXXXX Software Revision XXXXXXXXXX Serial Number 123456789 123456789 123456789 01 Manufac...

Страница 826: ...command displays the LLDP each physical interface configuration for advertisement options Examples The following is sample output from the show lldp interface command To display a specific physical in...

Страница 827: ...ess 3ffe 501 ffff 100 a01 2ff fe39 1 FE80 250 A2FF FEBF A056 IEEE 802 1 Organizationally Specific TLVs Port VLAN ID Disabled Enabled Port and Protocol VLAN ID 6 7 Enabled VLAN Name 1 5 8 10 Enabled Pr...

Страница 828: ...g System Name use the command show lldp to get them Example The following is sample output from the show lldp local interface command to display outbound LLDP advertisements for eth4 4 in detailed mod...

Страница 829: ...nt Address Count 2 Subtype IPv4 Address 10 1 1 1 IF Type IfIndex OID 1 3 6 1 4 1 171 10 36 1 11 Subtype IPv6 Address FE80 250 A2FF FEBF A056 IF Type IfIndex OID 1 3 6 1 4 1 171 10 36 1 11 PPVID Entrie...

Страница 830: ...ion Operational MAU Type 0000 hex Power Via MDI Port Class PES PSE MDI Power Support Supported PSE MDI Power State Enable PSE Pairs Control Ability Uncontrollable PSE Power Pair 0 Power Class 2 Link A...

Страница 831: ...nts for eth3 1 in brief mode Inventory Support Network Policy Application type Voice VLAN ID 100 Priority 7 DSCP 0 Unknown False Tagged True Extended Power Via MDI TLV Power priority High Power value...

Страница 832: ...17 00 03 Port Description RMON Port 1 on Unit 3 Port VLAN ID 1 Management Address Count 2 PPVID Entries Count 3 VLAN Name Entries Count 3 Protocol Identity Entries Count 2 MAC PHY Configuration Status...

Страница 833: ...ss es will be displayed Example The following is sample output from the show lldp management address command to display the LLDP management address information for 192 168 254 10 This example shows ho...

Страница 834: ...10 118 3 Advertising Ports eth3 1 3 3 Address 2 Subtype IPv4 Address 10 90 90 90 IF Type IfIndex OID 1 3 6 1 4 1 171 10 118 3 Advertising Ports eth3 4 Address 3 Subtype IPv4 Address 172 18 1 1 IF Type...

Страница 835: ...This command display the information learned from the neighbor devices Syntax Description INTERFACE ID Valid interfaces must be physical Optional Specifies a series of interfaces or separate a range...

Страница 836: ...1 Chassis ID Subtype MAC Address Chassis ID 00 01 02 03 04 05 Port ID Subtype Local Port ID 1 5 Port Description RMON Port System Name Switch1 System Description Stackable Ethernet Switch System Capab...

Страница 837: ...ot Support Extended power via MDI Support Inventory Support LLDP MED capabilities enabled LLDP MED capabilities Enabled Network Policy Enabled Location identification Enabled Extended power via MDI En...

Страница 838: ...m Description Stackable Ethernet Switch System Capabilities Supported Repeater Bridge System Capabilities Enabled Repeater Bridge Management Address Count 1 Port VLAN ID 1 PPVID Entries Count 5 VLAN N...

Страница 839: ...it 2 System Name Switch2 System Description Stackable Ethernet Switch System Capabilities Supported Repeater Bridge System Capabilities Enabled Repeater Bridge Management Address Count 2 Port VLAN ID...

Страница 840: ...04 02 Port ID Subtype Local Port ID eth1 4 Port Description RMON Port 1 on Unit 4 Port ID eth3 2 Remote Entities Count 3 Entity 1 Chassis ID Subtype MAC Address Chassis ID 00 01 02 03 04 03 Port ID S...

Страница 841: ...atistics command show lldp statistics Syntax This command has no arguments or keywords Default Not applicable Command Mode EXEC mode or any configuration mode Usage Guideline EXEC mode or any configur...

Страница 842: ...command displays each physical interface LLDP statistics Example To display statistics information of eth3 1 Syntax Description INTERFACE ID Valid interfaces must be physical Optional Specifies a seri...

Страница 843: ...nd the format of the list will be 2 4 If you just want to check some units specifically like unit 3 and unit 4 which is not continuously arranged and the comma sign can be used Example This example sh...

Страница 844: ...tem service policy preemptive unit priority allocated W consumed W remaining W 2 1st 750 740 3 2nd 630 115 4 3rd 120 14 Total 1500 869 900 Switch show poe power system unit 2 4 parameters unit max por...

Страница 845: ...ll be shown As list of an INTERFACE ID list is specified and not all of ports in the list are PoE capable only the PoE capable interfaces are displayed If there is a non PoE capable port listed in the...

Страница 846: ...mW Used W Time Range 3 1 1st on delivering auto class 1 4000 3 5 3 2 1st on delivering auto class 2 7000 6 7 rdtime 4 1 1st on delivering static class 3 15400 15 0 4 2 1st on delivering auto class 3 1...

Страница 847: ...Reference Guide 837 switch show poe power inline measurement Interface Voltage V Current mA Temp C Power W 3 1 54 2 109 2 35 5 9 3 2 55 196 1 38 10 8 4 1 54 6 197 7 32 10 7 4 2 54 8 286 2 36 15 7 4 3...

Страница 848: ...t you should use ssh command under management interface mode by entering mgmt if command first Example The following example shows how to ssh to the ip address 20 74 19 200 with default port 22 option...

Страница 849: ...dmin 20 74 19 200 admin 20 74 19 200 s password Chassis based High Speed Switch Command Line Interface Firmware 2 10 001 Copyright c 2007 D Link Corporation All rights reserved Switch Switch ssh c aes...

Страница 850: ...e disable the voice VLAN function on ports The command is available for physical port and port channel interface configuration Example This example shows how to enable voice VLAN function on physical...

Страница 851: ...figuration Usage Guideline The remote SNMP manager sends SNMP requests to agents and receives SNMP responses and notifications from agents When the SNMP agent is enabled the remote SNMP manager can qu...

Страница 852: ...t to CommunityView a default view than a new view will be created The other command that the user can use to create a community string is the snmp server user command A community string is unable to b...

Страница 853: ...mp server community CLI Reference Guide 843 This example shows how to remove the community comaccess Verify the settings by entering the show snmp community command Switch config no snmp server commun...

Страница 854: ...Usage Guideline Configures the system s snmp contact information on the switch Example This example shows how to set the system s snmp contact information as the string MIS Department II Verify the se...

Страница 855: ...host traps command To configure the router to send these SNMP notifications enter at least one snmp server enable traps command When entering the command with no keywords all notification types are e...

Страница 856: ...ding of SNMP authentication failure notifications An authenticationFailure 4 trap signifies that the sending device is the addressee of a protocol message that is not properly authenticated The authen...

Страница 857: ...t 10 9 18 100 using the community string defined as public The following example shows the enabling all SNMP trap types then the disabling of only the linkUp and linkDown trap This example shows how t...

Страница 858: ...pecify a manually configured ID note that it is not necessary to specify the entire 24 character engine ID if the ID specified contains trailing zeros Specify only the portion of the Engine ID up unti...

Страница 859: ...haracters The syntax is a general string that does not allow space v1 Specifies that SNMPv1 the least secure of the possible SNMP security models should be used for the group v2c Specifies that SNMPv2...

Страница 860: ...binding objects that are associated with the notification packet If the trap manager does not own the notification view to the binding objects then the notification will not be sent to a trap manager...

Страница 861: ...tax Description IP ADDRESS Name IPv4 or IPv6 address of the SNMP notification host version Optional Version of the SNMP used to send the traps The default is 1 If you use the version keyword one of th...

Страница 862: ...an error message displayed if user inputs a user name as WORD option To create an SNMP host the community string for user must be created first An error message will be generated to indicate if it is...

Страница 863: ...Mode Global configuration Usage Guideline Configure the system location information on the switch Example This example shows how to set up the system location information with string HQ 15F Verify the...

Страница 864: ...e encrypted and or auth keywords encrypted Optional Specifies whether the password appears in encrypted format a series of digits masking the true characters of the string auth Optional Specifies whic...

Страница 865: ...for a password is one character although it is recommended to use at least eight characters for security If a password is forgotten it cannot be recovered and it and will need to manually reconfigured...

Страница 866: ...at privilege level 15 Usage Guideline Use this command to create a view for the MIB object trees The view needs to be specified when the snmp server group command is used to define a user group Syntax...

Страница 867: ...shows how to set the access rights for a group called guestgroup to SNMPv3 authentication read mode Verify the settings by entering the show snmp view command Switch config snmp server view interface...

Страница 868: ...but it does not provide the complex filtering and statistical mechanisms of NTP In addition SNTP does not authenticate traffic although it can be configured with extended access lists to provide some...

Страница 869: ...e Default Disable Command Mode Global configuration Usage Guideline When the no spanning tree command is used globally to disable STP an STP BPDU will be treated as a normal multicast packet and it wi...

Страница 870: ...port state calculation If the global spanning tree state is disabled no matter STP is disabled enabled at the interface then STP BPDU is treated as a normal multicast packet and will be flooded to th...

Страница 871: ...atisfied This configuration will take effect on STP version and RSTP version only In MSTP mode Use the command spanning tree mst timers to configure the MSTP timers Example This example shows how to c...

Страница 872: ...is command In RSTP STP Compatible mode the administrative path cost is used by the single spanning tree when accumulating the path cost to reach the Root In MSTP mode the administrative path cost is u...

Страница 873: ...tations otherwise an accidental topology loop could cause a data packet loop and disrupt the switch and network operations During linkup when an interface with fast forwarding mode enabled is moved di...

Страница 874: ...cal port and port channel interfaces Usage Guideline This feature is used in a service provider environment where the network administrator needs to prevent a low speed port becoming a root port for t...

Страница 875: ...e a point to point connection whereas conversely a half duplex port is considered to have a shared connection The port cannot transit into forwarding state rapidly by setting the link type to shared m...

Страница 876: ...ill restart again therefore all of the stable spanning tree port states will transit into discarding states Caution Be careful when using the spanning tree mode command to switch between STP RSTP and...

Страница 877: ...higher costs When entering the cost do not include a comma in the entry for example enter 1000 not 1 000 Smaller port priority PRIORITY values indicate higher priorities Examples This example shows ho...

Страница 878: ...2 Bridge_Forward_Delay 1 0 seconds Bridge_Max_Age Bridge_Max_Age 2 Bridge_Hello_Time 1 0 seconds Example This example shows how to configure bridge timers for MSTP version Syntax Description forward t...

Страница 879: ...The MST configuration consists of three main parameters Instance VLAN mapping See the instance command Region name See the name MST configuration submode command Configuration revision number See the...

Страница 880: ...ideline The MSTP hello time is only referenced in MSTP mode Both physical ports and port channel interfaces are valid for this command Example This example shows how to configure the port hello time t...

Страница 881: ...n as the spanning tree priority on page 873 within the STP command set but it can specify different priorities for each distinct MSTP instance Example This example shows how to configure bridge priori...

Страница 882: ...will be used in the computation of the port s role This parameter is used only in RSTP STP Compatible mode only The port priority value must be divisible by 16 and a lower priority value number repre...

Страница 883: ...The bridge priority value must be divisible by 4096 and a lower priority value number represents a higher priority This configuration will take effect only when using STP version and RSTP mode In MSTP...

Страница 884: ...Interface configuration Usage Guideline Both physical ports and port channel interfaces are valid for this command TCN filtering can be set to enabled or disabled If set to enabled it stops the port...

Страница 885: ...if the counter reaches the transmit hold count This parameter will be is used in common by STP RSTP and MSTP Changing this parameter to a higher value may have a significant impact on CPU utilization...

Страница 886: ...all possible speeds If speed is to set to a fixed speed and Syntax Description 10 Specifies to set the port speed to transmit at 10 Mbps 100 Specifies to set the port speed to transmit at 100 Mbps 100...

Страница 887: ...necessary Although a command was provided to disable auto negotiation for 1000Base T setting it to enable is recommended to prevent an unexpected link status For combo port interfaces the user must a...

Страница 888: ...control if the storm control action is to drop then packets exceeding the level will be dropped If the storm control action is set to shutdown then the interface will be shutdown whenever the packets...

Страница 889: ...The Shutdown action is only available for broadcast and multicast storm control For unicast storm control the software level is unable to identify unknown unicast DLF storm events due to the hardware...

Страница 890: ...ol action on interface eth3 1 Verify the settings by entering the show storm control interface command Switch configure terminal Switch config interface eth3 1 Switch config if storm control broadcast...

Страница 891: ...s 1512 bytes Examples This example shows how to configure Broadcast storm control LEVEL by pps mode It assigns the pps threshold level of interface eth3 1 for incoming broadcast packets to 500 and dro...

Страница 892: ...control level on interface eth3 1 Verify the settings by entering the show storm control interface command Switch configure terminal Switch config interface eth3 1 Switch config if storm control broad...

Страница 893: ...mode if the receiving rate is higher than the falling threshold 80 of the threshold and lower than the threshold the port will exit the shutdown mode after a period of time and the timer will then be...

Страница 894: ...count of 180 seconds then the port will be changed to shutdown forever mode This example shows how to configure the auto recovery timer When a port is in shutdown forever mode it will be automatically...

Страница 895: ...on a port its source IP address will be used to match the subnet VLAN entries If the source IP matches the subnet of an entry the packet will be classified to the VLAN of this entry The number of sub...

Страница 896: ...rver is uses to assign to DHCP clients It is valid for the associated DHCP address pools only Examples The following is an example of configuring 255 0 0 0 as the DHCP pool s subnet mask Syntax Descri...

Страница 897: ...ist for the command to succeed When the mode is permanent the learned entries will be stored automatically and restored after a reboot Syntax Description maximum VALUE Optional Specifies the maximum a...

Страница 898: ...rictions The port security function cannot be enabled simultaneously with dot1x which provides more advanced secure capability A port which is in private vlan mode can not enable port security If a po...

Страница 899: ...This example shows how to set the action to be taken when a security violation is detected Verify the settings by entering the show port security command Switch configure terminal Switch config interf...

Страница 900: ...aker does not advertise a route to an external neighbor unless that route is local or exists in the IGP By default synchronization between BGP and an IGP is disabled to allow the switch to advertise a...

Страница 901: ...Usage Guideline Configure the system name information on the switch Example This example shows how to set up the system name information with the string DES xxxxs Stackable switch Verify the settings...

Страница 902: ...neric terminal control functions to operating system specific functions To issue a special Telnet command enter the escape sequence and then a command character The default escape sequence is Ctrl _ p...

Страница 903: ...e management interface and logs in successfully Switch telnet 20 74 19 200 Connecting to 20 74 19 200 Connected to 20 74 19 200 Escape character is Ctrl _ Telnet connecting Chassis based High Speed Sw...

Страница 904: ...ch telnet 10 74 19 2 Connecting to 10 74 19 2 Could not open connection to the host on port 23 Network is unreachable Switch Switch configure terminal Switch config mgmt if Switch mgmt if telnet 20 74...

Страница 905: ...Switch telnet 20 74 19 200 Connecting to 20 74 19 200 Connected to 20 74 19 200 Escape character is Ctrl _ Telnet connecting Chassis based High Speed Switch Command Line Interface Firmware 2 10 001 C...

Страница 906: ...nnecting Escape character is Ctrl _ Telnet connecting Chassis based High Speed Switch Command Line Interface Firmware 2 10 001 Copyright c 2010 D Link Corporation All rights reserved Switch Supported...

Страница 907: ...ore prompt At the More prompt press Ctrl C q or Q to interrupt the output and return to the prompt press the Spacebar to display an additional screen of output or press Return to display one more line...

Страница 908: ...ct serial connection telnet connection or SSH connection Examples This example shows how to setup the terminal session to never timeout Verify the settings by entering the show running config command...

Страница 909: ...s such as Telnet the auto negotiation result of terminal width will take precedence over the global configuration if the negotiation is successful Otherwise the global configuration takes effect After...

Страница 910: ...uide 900 The following example shows how to adjust the terminal session width to 120 as the system configuration setting for terminal width This setting will affect all subsequently opened terminal se...

Страница 911: ...mand Syntax Description update SECONDS Specifies the rate in seconds at which updates are sent This is the fundamental timing parameter of the RIP routing protocol The default is 30 seconds The range...

Страница 912: ...e routing table The basic timing parameters for IPv6 RIP are adjustable IPv6 RIP is executing a distributed asynchronous routing algorithm therefore it is important that these timers be the same for a...

Страница 913: ...DGS 6604 m timers basic CLI Reference Guide 903 Switch enable Switch configure terminal Switch config router ipv6 rip Switch config router timers basic 5 15 30...

Страница 914: ...ssion is established only if the remote peer is advertising a HOLD TIME that is equal to or greater than the minimum acceptable HOLD TIME interval If the minimum acceptable HOLD TIME interval is great...

Страница 915: ...r message will be shown as below Warning The time range can not be deleted because it is in use Examples This example shows how to enter the time range configuration mode for the time range profile na...

Страница 916: ...e maximum TTL value for outgoing ICMP datagrams The allowed range for MAX_TTL is from 1 to 255 p DEST_PORT Optionally used to specify the base UDP destination port number used in traceroute datagrams...

Страница 917: ...ram to the next router The second router sees a TTL value of 1 discards the datagram and returns the time exceeded message to the source This process continues until the TTL is incrementally increased...

Страница 918: ...04 m traceroute CLI Reference Guide 908 Switch traceroute 172 50 71 123 traceroute to 172 50 71 123 172 50 71 123 30 hops max 40 byte packets 1 172 50 71 123 172 50 71 123 0 847 ms 0 344 ms 0 376 ms S...

Страница 919: ...ss of this router 30 hops max 40 byte packets Maximum TTL value and the size of the ICMP datagrams being sent 0 847 ms 0 344 ms 0 376 ms Total time in milliseconds for each ICMP datagram three ICMP pr...

Страница 920: ...tion forward member list The traffic segmentation member list can be comprised of different interface types for example eth3 1 can be with a port channel in the same traffic segmentation list If the f...

Страница 921: ...xample shows how to configure traffic segmentation It restricts the flooding domain of eth3 1 to a set of ports which are eth4 1 4 6 This example shows how to remove some ports eth4 2 4 3 from the for...

Страница 922: ...VLANs If the VLAN does not exist an error message will return to indicate it When this command is applied the port will change to trunk mode If the mode is changed the setting for the previous mode w...

Страница 923: ...face Tunnel interfaces are valid for this command Only manually configured tunnels need to set the tunnel destination Examples This example shows how to add the destination IPv4 address for the tunnel...

Страница 924: ...in the IPv6 address is used to locate the far end of the automatic tunnel The IPv4 address of the border router is extracted from the IPv6 address that as an example starts with the prefix 2002 16 wh...

Страница 925: ...configure the source IPv4 address for a tunnel interface Tunnel interfaces are valid for this command Examples This example shows how to add the source IPv4 address for the tunnel interface 2 This ex...

Страница 926: ...r the Privileged EXEC mode The Privileged EXEC mode can be either level 12 or 15 The user can specify the password in encrypted form or in plain text form If it is in plain text form but password encr...

Страница 927: ...de using the enable password If the enable password is not set then the user only needs to use the command enable on page 186 Examples This example shows how to create a username and password pair It...

Страница 928: ...ly specified for the interface for example interface command ip rip receive version on page 316 Example The following example shows how to configure the RIP version to version 2 Verify the settings by...

Страница 929: ...ports later The no vlan global configuration command must be used to remove VLANs When removing a non existing VLAN an error message will be sent Default VLAN with VLAN ID 1 cannot be removed Removing...

Страница 930: ...g is decided by following the following conditions 1 If the there is a CoS remarking pair for the customer VLAN the priority tag value of the outer VLAN value is set to the same value as the cos remar...

Страница 931: ...ame The VLAN name length must be 1 to 32 and it must be unique within the administrative domain The error message will be returned if an invalid name or a duplicated name is specified Use no vlan name...

Страница 932: ...iority by the cos remarking command the priority tag value of the outgoing tag is decided by the configuration associated with the ingress port and inner VID 2 Otherwise the priority tag value of the...

Страница 933: ...r VID 200 and 103 104 that is because when C VID is not specified with COS rearming policy explicitly its COS is changed according to cos remarking NEW COS or no cos remarking commands but remark COS...

Страница 934: ...g mode is applied with the following setting 1 All interfaces are set as Network to Network Interfaces NNI port 2 All existing static VLANs will run as SP VLANs All dynamically learned L2 addresses wi...

Страница 935: ...kets When a Layer 3 control packet is sent and its destination IP is the same value as the source IP of dynamic learned customer VLAN tag mapping entry then the control packet will be added to the mat...

Страница 936: ...IP subnet Examples This example shows how to add a static customer VLAN tag mapping entry Using the following configuration the C VID 500 is used to add the out going control packet which has destinat...

Страница 937: ...capsulation and VLAN remarking is searched using the packet VLAN ID and the ingress port If there is an entry missing then the packet can optionally be dropped or have a SP VLAN service provider VLAN...

Страница 938: ...This command sets the interface type at the port used by the VLAN tunnel application uni User to Network Interface nni Networks to Network Interface Example This example shows how to set Ethernet eth...

Страница 939: ...Disabled Command Mode Interface configuration only available for UNI ports only Usage Guideline The command is available only for a UNI port If an incoming packet has an inner tag C TAG and the packe...

Страница 940: ...PID specified by the vlan tunnel tpid command is used for the S tag outer tag TPID b As a packet is transmitted at an NNI port for VLAN remarking replace ment a TPID specified by the vlan tunnel tpid...

Страница 941: ...ill add a VLAN tag with the specified voice VLAN ID and the specified priority to the received un tagged voice packets The received packets are determined as voice packets if the source MAC addresses...

Страница 942: ...eline The voice VLAN priority will be the priority associated with the voice VLAN traffic to distinguish the QoS of the voice traffic from data traffic Example The example shows how to configure the p...

Страница 943: ...ify the voice traffic if voice VLAN is enabled If the source MAC addresses of received packets comply with the configured OUI addresses the received packets are determined as voice packets The default...

Страница 944: ...S 6604 m voice vlan oui CLI Reference Guide 934 You can verify your settings by show vlan voice vlan oui command Switch config voice vlan oui 01 02 03 04 05 06 ff ff ff ff ff ff Switch config end Swit...

Страница 945: ...ace IP address on Router X that connects to Router 1 is 60 5 1 1 IP address 60 5 1 1 is the critical IP address for the master router Configure the critical IP address on the master router and the mas...

Страница 946: ...with priority 200 on interface vlan1 The following example shows how to remove the critical ip address for virtual router 7 on interface vlan1 Switch config interface vlan1 Switch config if vrrp 7 ip...

Страница 947: ...er A master will be elected in a group of virtual routers which have the same virtual router identifier for forwarding the packets from the host that sends to this virtual router Examples The followin...

Страница 948: ...router if it has a higher priority than the current master router After using the no form of this command the preempt mode changes to disabled and the backup router will not attempt to preempt the ma...

Страница 949: ...6604 m vrrp preempt CLI Reference Guide 939 The following example shows how to configure the router to disable preempt of a virtual router Switch config interface vlan1 Switch config if no vrrp 7 pree...

Страница 950: ...ly configured to have the same highest priority then one of them will become the master which depends on which one of them sends the advertisement packet out first If the advertisement packets are sen...

Страница 951: ...DGS 6604 m vrrp priority CLI Reference Guide 941 The following example shows how to restore the default priority of the virtual router Switch config interface vlan1 Switch config if no vrrp 7 priority...

Страница 952: ...he following example shows how to disable one VRRP VRID 7 on interface vlan1 while retaining the VRRP VRID 8 The following example shows how to re activate VRRP protocol on VRID 7 of interface vlan1 S...

Страница 953: ...he master router to be down All routers in a VRRP group must use the same timer values Examples The following example shows how to configure the router to send advertisements every 10 seconds The foll...

Страница 954: ...hallenge Handshake Authentication Protocol CIR Committed Information Rate CIST Common and Internal Spanning Tree CLI Command Line Interface CLNS Connection Less Network Service CoS Class of Service CP...

Страница 955: ...Table FIB Forwarding Information Base FTP File Transfer Protocol GARP General Attribute Registration Protocol GBIC Gigabit Interface Converter GMRP GARP Multicast Registration Protocol GVRP GARP VLAN...

Страница 956: ...of Standardization LACP Link Aggregation Control Protocol LACPDU Link Aggregation Control Protocol data unit LAN Local Area Network LAPB Link Access Procedure Balanced LCP Link Control Protocol LLC Lo...

Страница 957: ...rk Service Access Point NSF Non Stop Forwarding NTP Network Time Protocol NVRAM Non Volatile RAM OAM Operation Administration and Maintenance OSI Open System Interconnection OSPF Open Shortest Path Fi...

Страница 958: ...ice RADIUS Remote Access Dial In User Service RAM Random Access Memory RIB Routing Information Base RMON Remote Network Monitor ROM Read Only Memory RP Route Processor RSTP Rapid Spanning Tree Protoco...

Страница 959: ...nce bandwidth 55 auto cost reference bandwidth IPv6 56 banner login 57 based on client id 59 based on c vid 60 based on interface ip address 61 based on mac address 62 based on relay ip address 63 bas...

Страница 960: ...ig factory defaults 114 clear spanning tree detected protocols 115 clear vlan tunnel ctag mapping dynamic 116 clock set 117 clock summer time 118 clock timezone 120 color aware 121 command prompt 122...

Страница 961: ...efault 172 dot1x forward pdu 173 dot1x guest vlan 174 dot1x initialize 176 dot1x max req 177 dot1x pae authenticator 178 dot1x port control 179 dot1x re authenticate 180 dot1x re authentication 181 do...

Страница 962: ...35 ip dhcp screening suppress duration 236 ip arp inspection trust 237 ip arp inspection validate 238 ip arp inspection vlan 240 ip verify source vlan dhcp snooping 241 ip source binding 242 ip as pat...

Страница 963: ...priority 292 ip ospf retransmit interval 293 ip ospf shutdown 294 ip ospf transmit delay 295 ip ospf mtu ignore 296 ip pim 297 ip pim accept register 298 ip pim bsr candidate 299 ip pim dr priority 3...

Страница 964: ...t 351 ipv6 ospf dead interval 352 ipv6 ospf hello interval 353 ipv6 ospf priority 354 ipv6 ospf retransmit interval 355 ipv6 ospf shutdown 356 ipv6 ospf transmit delay 357 ipv6 rip metric offset 358 i...

Страница 965: ...h 423 match community 424 match ip address 425 match ipv6 address 426 maximum paths 427 max rcv frame size 428 media type 429 mgmt if 430 monitor session 431 monitor session destination remote vlan 43...

Страница 966: ...482 poe port description 483 poe service policy 484 poe power inline 485 police 487 police aggregate 492 police cir 493 policy map 497 port channel load balance 499 power saving 500 pvid VLAN ID 501...

Страница 967: ...p 561 set default interface 563 set origin 564 set weight 565 sflow 566 sflow receiver 567 sflow sampler 569 sflow poller 571 show aaa 572 show aaa group server 575 show access group 576 show access l...

Страница 968: ...vmrp neighbor 636 show ip dvmrp prune 639 show ip dvmrp route 640 show ip igmp group 641 show ip igmp interface 644 show ip igmp snooping 645 show ip igmp snooping group 647 show ip igmp snooping mrou...

Страница 969: ...how ipv6 ospf virtual links 716 show ipv6 protocols 717 show ipv6 rip database 719 show ipv6 rip interface 720 show ipv6 route 721 show ipv6 route summary 723 show ipv6 unicast routing long prefix sta...

Страница 970: ...w ip policy 804 show ip arp inspection 805 show ip source binding 808 show ip verify source 810 show ip dhcp screening 811 show sflow 812 show lldp 814 show lldp interface 816 show lldp local interfac...

Страница 971: ...73 spanning tree tcnfilter 874 spanning tree transmit hold count 875 speed 876 storm control Interface 878 storm control action Interface 879 storm control level Interface 881 storm control timer Glob...

Страница 972: ...hecking 927 vlan tunnel interface type 928 vlan tunnel remove inner tag 929 vlan tunnel tpid 930 voice vlan 931 voice vlan cos 932 voice vlan oui 933 vrrp critical ip 935 vrrp ip 937 vrrp preempt 938...

Результаты поиска

Содержание DGS-6600-48TS

Отзывы:

Похожие инструкции для DGS-6600-48TS

Бренды по названию

Популярные бренды

D-Link DGS-6600-48TS, Руководство пользователя

Результаты поиска

Содержание DGS-6600-48TS

Отзывы:

Похожие инструкции для DGS-6600-48TS

Бренды по названию

Популярные бренды