MRV Communications EM316LNXNM-OT Скачать руководство пользователя страница 86 | Manualshive

Страница: 86 / 181

background image

EM316LNXNM-OT

Authentication, Authorization, and

Accounting

PN 1275005-100 Rev E6

79

Chapter 10. Authentication,
Authorization, and Accounting

...users, groups, and policies to secure network administration

Authentication, Authorization, and Accounting (AAA) in a Media Cross Connect includes two server
options:

•

• Radius

The commands

and

Radius

control each server type, respetively. Each of these server

commands uses the same command line options. The commands and options to secure the Fiber Driver
system are described in this section.

Authentication maintains user credentials to access the system. Each user must provide a user name and
password. When the remote server authenticates the credentials, the user can access the system.

Authorization maintains specific access rights to the system for each user. The remote server provides the
class level to the system. The class level can be VIEW, NORMAL, or SUPER for each user account. The
user class provides general access to features associated with the assigned level. Specific elements access
rights may be set only on the local system level.

On the local system level, port authorization works in two ways: If the user is specified locally, that user's
group assignments are transferred to the remote user for element access. If user is not specified locally,
element access is set to a special user named "remote" that transfers its group assignments to the remote
user. If neither the accessing user nor the special "remote" user are not present on the system, then the
user receives no group assignments.

Accounting is a series of records sent from the system to the remote server to keep track of activities on
the system. The system records only when users receive access into the system and when they log out
of the system.

General Notes

The system allows up to five ordered servers to be contacted. If the first server does not respond or denies
access, then the second, third, fourth, and fifth servers are contacted in order until a server permits access.
If no server responds, AAA duties return to the local Fiber Driver EM316LNXNM-OT.

Authentication and accounting are independent processes in the system. Either process may be activated
without the other.

«
...
84
85
86
87
88
...
»

Содержание EM316LNXNM-OT

Страница 1: ...LNXNM OT Network Manager with Linux Fiber Driver Optical Multi Service Platform Published 2012 10 17 15 28 24 P N 1275005 100 Revision E6 build r21138 For EM316LNXNM v4 7 fdr 39 built Oct 16 2012 19 0...

Страница 2: ...heir respective owners This document includes electronic links and URLs that may require internet access Some references may not be obvious on printed pages The user assumes sole responsibility for ap...

Страница 3: ...ng Fibers 11 3 5 2 Working with Fiber Optic Transceivers 12 4 EM316LNXNM Hardware 13 4 1 The EM316LNXNM Front Panels 13 4 2 Access Ports and Connectors 14 4 3 LED Legend 14 4 4 Command Line Interface...

Страница 4: ...7 3 Protecting Passwords 54 6 7 4 Groups 55 6 7 5 Port Slot Chassis Control 56 6 7 6 Login Access 57 6 7 7 Access by Address 58 6 7 8 Forcing User Logouts 59 6 8 EM316LNXNM Reboot 60 6 9 Configuration...

Страница 5: ...Features Table 105 12 8 3 Dynamic Element Parameters 106 12 8 4 Example MetaMIB Session get 107 12 8 5 Example MetaMIB Session set 108 Appendix 109 1 Equivalent EM316NM Commands 109 2 EM316LNXNM Comma...

Страница 6: ...ring from a failed upgrade command 171 4 7 System resources low access denied message appears while trying to log in 171 4 8 System state does not match show command display 171 5 LNXNM Quick Setup Re...

Страница 7: ...bles current and previous versions 15 5 1 Special CLI Keystrokes 20 3 Command Map Table 109 4 Initial Command Context Table 110 5 Main Configuration Context Table 116 6 Chassis Configuration Context T...

Страница 8: ...ion including a description of the host network environment 7 Attenuation data for applicable high speed fiber links 8 Urgency of the issue 1 2 User Guides and Related Documents Download Fiber Driver...

Страница 9: ...sceivers FCC Part 15 Class A IC Class A EMC Directive Emission Class A and Immunity LVD Directive Electrical Safety CE Marking TUV UL CSA RoHS Directive REACH SVHC Directive WEEE Directive ETSI NEBS E...

Страница 10: ...the CE Marking Directive is applied to MRV products Contact MRV s EU authorized representative international mrv com for routing information to return EU equipment for WEEE collection Canada This Cla...

Страница 11: ...ed service personnel IEC 60950 1 should install or service this equipment 1 7 Electrical Safety Provide proper grounding to avoid ESD damage to components during service and operation Use antistatic c...

Страница 12: ...ocation that is accessible only to authorized personnel with laser safety training WARNING Laser products labeled as Class 1M may have internal laser diodes containing Class 3B lasers Caution use of c...

Страница 13: ...iguration but management features are consistent between the modules except as stated 2 2 Features EM316LNXNM modules provide powerful and extensive tools for managing Fiber Driver and MCC systems The...

Страница 14: ...dules MRV offers MegaVision Pro It is a powerful NMS with unique graphical user interfaces GUI for managed MRV network components including Fiber Driver and MCC A limited version of MegaVision called...

Страница 15: ...placement or spare 3 2 Unpacking the NM Module This information is primarily for the FD NM that is sold independently but the general information below can also apply to the spare MCC NM Follow the st...

Страница 16: ...ers electronic devices in antistatic packaging to limit electrical damage during shipping Avoid electrostatic discharge when unpacking and handling all electronic equipment Use grounding straps and an...

Страница 17: ...crewdriver or disengage any thumb screws by hand Remove the required blank panels To comply with FCC regulations and for optimal cooling air flow a cover panel or a module must cover every chassis slo...

Страница 18: ...rty or mistreated fiber may cause errors and degradation of signal quality that affect network performance or module functionality 3 5 1 1 Cleaning Supplies 1 Optical cleaner cartridge 2 Can of compre...

Страница 19: ...ove the dust caps and clean them with 1 25 millimeter cleaners Optical transceiver cleaners 3 5 2 1 Cleaning Fiber Optic Transceivers Use the 1 25mm cleaners shown above and the steps below to clean o...

Страница 20: ...16LNXNM Front Panels The EM316LNXNM OT front panel designed for Fiber Driver is shown below The EM316LNXNM MCC designed for the MCC system is similar but it has no SFP sockets Serial Ethernet and SFP...

Страница 21: ...nstalled in each of these sockets for addition network connections Refer to the transceiver documentation for connection information not covered in this document or appendices 4 3 LED Legend LED indic...

Страница 22: ...2001 001R Cable and adapter previous 151 3028 REV F AI 04 04 and 350 0308 REV B MRG 20028 2 Configure the terminal serial parameters with the following values 38400 baud 8 data bits 1 stop bit no pari...

Страница 23: ...lly or remotely through the serial or Ethernet ports The LNXNM provides a command line interface CLI that is accessible either through a local serial console or from the IP network using SSH or Telnet...

Страница 24: ...the updated information back from the device to display the updates in the user interfaces such as the show command in the CLI The Command latency depends on the type and quantity of modules managed i...

Страница 25: ...hub The LNXNM Fiber Driver model also includes two SFP ports on the front panel MSA compliant pluggable transceivers may be installed for additional network access options Contact MRV sales or visit h...

Страница 26: ...RAM 64 MB FLASH 16 5 MB Net FEC ETHERNET Hit any key to stop autoboot 0 Detecting flash layout no magic header Detected extended flash layout JFFS2 loading uImage initrd to 0x800000 Scanning JFFS2 FS...

Страница 27: ...b Command completion see below Tab Tab Command completion see below The Tab key completes partially entered commands It searches the available CLI command list for commands that begin with the text en...

Страница 28: ...l After entering a command there may be a delay of several seconds before the action displays in the show command 5 4 2 1 Command Truncation As with many operating environments the CLI recognizes part...

Страница 29: ...nfig aaa remote server host 1 1 2 3 4 mySecret 1 2 3 fiberdriver config show aaa remote server hosts aaa remote server host 1 1 2 3 4 mySecret 1 2 3 The next box below shows the same command with too...

Страница 30: ...d partially on the specific hardware component being accessed These three states are roughly hierarchical corresponding to the hardware represented a chassis contains slots which contain ports The CLI...

Страница 31: ...ains slots modules which in turn contain ports Operations on the larger component often affect the components contained in the larger target device The next command is a short cut for navigating to th...

Страница 32: ...go down to previous context restart Reboot the NM card rm Remove files scp Use SCP to transfer files small config files only show Show running system information sleep Pause CLI for scripting source...

Страница 33: ...administrative IP status license Displays licensing information about this system log Show logging configuration and log entries map Display port map mapping types Show mapping type info memory Show...

Страница 34: ...7 Aug 2 2011 14 02 31 U Boot 1 0 3 4 Sep 1 2010 01 58 56 Linux kernel v2 6 32 1 mrv 1 Mon Dec 14 15 13 11 PST 2009 EM316LNXNM firmware 5c 1c 00 20 1a 02 83 c8 Copyright c MRV Corp 1993 2010 fiberdrive...

Страница 35: ...100 Mbps N A N A SFP at 1 1 2 1 1 3 enable no Signal N A 100 Mbps N A N A SFP at 1 1 3 1 1 4 enable link N A 100 Mbps N A N A RJ 45 at 1 1 1 2 1 enable no Signal enable N A N A N A RJ48 at 1 2 1 1 2 2...

Страница 36: ...s Management access is controlled through group and user permissions Display the current system groups and users with the commands shown below fiberdriver show groups System group configuration group...

Страница 37: ...erver community write encrypted 1 wZCHI9 6H3mce5Y15iLhtdpoXBoa1 snmp server community read encrypted 1 hZyZkA1 xiJTxyGDfVb1bcAYyW9Wi1 snmp server sys name fiberdriver ip interface dhcp chassis 1 type...

Страница 38: ...re 5c 13 00 20 1a 02 48 28 Copyright c MRV Corp 1993 2007 ip interface 192 168 14 201 24 username admin password encrypted 1 kQ2rIq Ob8wFa2EWXC4TnN7wJ class super username admin group all username deb...

Страница 39: ...en trap port change gen trap port diags gen trap switchover fiberdriver 5 5 12 show config The show config command displays the operating parameters for the specified system component fiberdriver show...

Страница 40: ...ings that do not support EM316LNXNM hot swap are reloaded from startup config For example port slot and chassis names cannot be read from the hardware so the EM316LNXNM software uses these values as s...

Страница 41: ...lem User the ping command to verify network connectivity between IP devices Type the destination IP address in dotted decimal notation e g 192 168 1 1 Use C Ctrl C to stop the ping command in the EM31...

Страница 42: ...st gratutitous ARP when IP address changes or network comes up interface System interface configuration ssh server Enable ssh server tables iptables configuration telnet server Enable TELNET server we...

Страница 43: ...e management access through secure shell SSH Use the open command to open a user CLI session Use the quit command to exit the CLI and close the Telnet connection 5 5 17 3 Secure Remote CLI SSH Contact...

Страница 44: ...sfers can t be initiated by an SCP client running on an external host Use the scp command to start a file transfer To copy a file to the local system from a remote host with IP Address 192 168 1 1 for...

Страница 45: ...ecified by tftp host ip use the tftp get 10 1 1 2 script txt command fiberdriver con t fiberdriver config sys tftp host ip 10 1 1 1 fiberdriver config exit fiberdriver tftp get script txt Fetching scr...

Страница 46: ...4 5 the source command does not process script command lines that reset default values Previous versions simply processed each script line sequentially Contact customer support if scripts behave diffe...

Страница 47: ...use upgrade scp where scp means Secure Copy fiberdriver upgrade 169 254 192 116 uImage initrd Fetching uImage initrd from 169 254 192 116 Use SCP to upgrade the system with the command fiberdriver upg...

Страница 48: ...ng from a failed upgrade command section in the Troubleshooting chapter 5 5 22 LNXNM Firmware Downgrades Before upgrading the system software always make a backup of the current startup config file Th...

Страница 49: ...e working copy before upgrading Use the tftp get command fiberdriver tftp get 10 1 1 15 old startup config startup config Fetching old startup config from 10 1 1 15 Copying fiberdriver Do not execute...

Страница 50: ...egate a command ntp Enable NTP ntp server NTP server configuration pager Pause scrolling when screen is full port Configure a port quit Exit current context and go down to previous context scp Use SCP...

Страница 51: ...system restarts 6 2 Restoring Default Parameters Use the default command to discard changes applied to the module configuration The example below illustrates returning the entire module to the origina...

Страница 52: ...8 1 The new IP information configured does not load until restarting the system or using the command fiberdriver config ip interface update Use the following command to save the configuration into per...

Страница 53: ...ges or network comes up interface System interface configuration ssh server Enable ssh server tables iptables configuration telnet server Enable TELNET server web server Enable web server fiberdriver...

Страница 54: ...0 seconds server ID 192 168 11 21 Internet Address 192 168 12 105 Netmask 255 255 255 0 Broadcast 192 168 12 255 Default Gateway 192 168 12 1 802 1q VLAN ID unconfigured fiberdriver With DHCP enabled...

Страница 55: ...the command below to change the CLI prompt string fiberdriver config snmp server sys name someprompt someprompt config The prompt cannot include the characters or The CLI prompt maximum length is 40...

Страница 56: ...ab Use the t sequence to insert a tab within the string Use the n sequence to insert a newline within the string fiberdriver config sys login banner STRING fiberdriver config For example sys login ban...

Страница 57: ...tion prompt use the command default sys login banner The default banner string is at the beginning of this section Displaying the current LNXNM banner Use the show sys login banner command from the co...

Страница 58: ...and community strings Super access allows users to add remove or change access to user accounts Change the active user in a CLI session by using logging out and logging back into the CLI with the othe...

Страница 59: ...e User account management fiberdriver config username NAME User name fiberdriver config list username username NAME username NAME class debug view normal super username NAME group NAME username NAME g...

Страница 60: ...in groups all username david2 password encrypted 1 ER4TU 7 m 4mcdXwlOjM LVEHW fiberdriver config The system does not automatically save configurations to permanent storage Use the write file command t...

Страница 61: ...ut When the passwords are entered interactively as in the example beloow the system does not display or save them in the command history fiberdriver config username foouser password Password Password...

Страница 62: ...control over two types of user permissions 1 Port Slot Chassis Control which Fiber Driver components can each set of users manage 2 Login Access which user interfaces each set of users is allowed to l...

Страница 63: ...config Similar commands exist for read write access rights Use write instead of read in the above commands The system checks chassis slot and port access rights on each command If a user has permissio...

Страница 64: ...elnet Enable telnet service access fiberdriver config Group permissions may be added or removed by any SUPER user Each user account is denied access to an interface only if no associated group allows...

Страница 65: ...listed below Refer to online documentation e g http www netfilter org for more information ip tables AD chain rule specification options ip tables I chain rulenum rule specification options ip tables...

Страница 66: ...cific session or sessions sys disconnect pid PID Second a rogue user may be logged into the system through multiple connections All connections belonging to this user can be terminated by a Super user...

Страница 67: ...nd it reconfigures all modules according to startup config Use this command to ensure that the configuration in startup config is applied to the hardware 6 9 Configuration Backup and Restoration Once...

Страница 68: ...mand releases the slot as if it was not previously occupied The no sys lock types command releases all the slot type restrictions When type locking is disabled a slot device may be replaced with any s...

Страница 69: ...lled module until all the manageable modules in the chassis are configured If the module was previously configured then the EM316LNXNM tries to read the operating parameter values from the module The...

Страница 70: ...0 0 0 Remote Level memo fiberdriver config To specify the remote syslog server address use the log remote server command To change the remote syslog message level use the log level remote command fib...

Страница 71: ...driver config show log Running Level info Nvram Level disabled Trap Level error Email Level disabled Remote Server 0 0 0 0 Remote Level memo fiberdriver config The LNXNM can also use onboard NVRAM to...

Страница 72: ...messages may be displayed on the monitor running log or routed to syslog An example of a typical audit log message is shown below fdrd 119 kern info Oct 15 15 25 10 1 2 3 cli user admin set nbsCmmcPo...

Страница 73: ...n and reduced operating expenses The LNXNM provides a command line interface CLI that is accessible either through the secure serial port or the Ethernet port The Ethernet port supports SSH or Telnet...

Страница 74: ...mmand context exit Exit current context and go down to previous context gen trap Enable trap generation for the chassis list Print command list logout Logout of the system loopback timeout Adjust loop...

Страница 75: ...default Restore parameter s to defaults description Set slot name echo Display text for scripting end End current context and go down to initial command context exit Exit current context and go down t...

Страница 76: ...own to initial command context exit Exit current context and go down to previous context list Print command list logout Logout of the system next Configure next element no Negate a command pager Pause...

Страница 77: ...ion displays in the show command The next command changes a slot description fiberdriver config slot 1 1 fiberdriver slot 1 1 description myslot1 1 fiberdriver slot 1 1 exit fiberdriver config The nex...

Страница 78: ...n and downloads Contact MRV sales or support for purchasing and technical questions MegaVision presents the administrative controls with a realistic representation of the device Each Fiber Driver syst...

Страница 79: ...ssis details below by clicking the Chassis 1 button at the left edge of the window In the example above the EM316LNXNM OT resides in the first chassis slot Open the slot and port management windows by...

Страница 80: ...dow provides access to slot level manager commands The example below shows the EM316LNXNM OT module itself Open the port level management windows by clicking on the picture of the port in the chassis...

Страница 81: ...EM316LNXNM OT Managing Fiber Driver Devices PN 1275005 100 Rev E6 74 The port window examples below show the serial and Ethernet ports on an EM316LNXNM OT module...

Страница 82: ...n more detail below The foreach command is available in the configuration context as show below in the interactive CLI help display fiberdriver configure terminal fiberdriver config foreach foreach Ex...

Страница 83: ...ches from S to E inclusive The range syntax allows for the inclusion of a continuous span of components For example foreach 1 2 1 5 command string executes command string on ports 1 2 3 4 and 5 of slo...

Страница 84: ...iver configure terminal fiberdriver config ntp server host A B C D fiberdriver config Use one of the many public servers that offer NTP if you do not have any local NTP servers Avoid using more than f...

Страница 85: ...1953 2 81735 192 168 14 106 192 168 14 140 16 64 0 0 00000 0 000000 0 00000 fiberdriver config 9 5 NTP with sys rdate and sys date If the system time is not synchronized with the configured NTP server...

Страница 86: ...he assigned level Specific elements access rights may be set only on the local system level On the local system level port authorization works in two ways If the user is specified locally that user s...

Страница 87: ...3 0 aaa remote server host 2 192 168 14 102 sharedsecret2 0 3 0 10 1 2 Choosing a Protocol Use the command aaa protocol to select either Radius or TACACS security protocols Radius is the default selec...

Страница 88: ...fault 0 means the normal port for the chosen AAA protocol fiberdriver config aaa remote server 1 5 port 0 65535 Set the number of seconds to timeout a server response default 3 fiberdriver config aaa...

Страница 89: ...server host above with the following command fiberdriver config no aaa remote server host 1 10 1 4 Configuring Authentication By default authentication is disabled To turn on authentication use the c...

Страница 90: ...ee access classes on the given server The system applies the highest access class that is not more than the user s Priv Lvl The default access class minimum level values are as follows 1 VIEW User 3 N...

Страница 91: ...uthentication Authorization and Accounting PN 1275005 100 Rev E6 84 10 2 1 Cisco Secure ACS Express Add a Device Group Network Resources Device Groups The following example shows a new Media Cross Con...

Страница 92: ...75005 100 Rev E6 85 Add a Device Network Resources Devices Attach the device to the Device Group from the previous step Enter the IP address of the new Fiber Driver device Select a secure shared secre...

Страница 93: ...EM316LNXNM OT Authentication Authorization and Accounting PN 1275005 100 Rev E6 86 Add a User Group Users Identity Stores User Groups Set Status to enabled...

Страница 94: ...EM316LNXNM OT Authentication Authorization and Accounting PN 1275005 100 Rev E6 87 Add Users User Identity Stores Users Make sure to attach the user to the user group created in the last step...

Страница 95: ...PN 1275005 100 Rev E6 88 Add TACACS Access Service Access Policies TACACS Access Service Set Status to enabled Attach the network device group created above Attach the user group created above Set th...

Страница 96: ...ntry in the configuration file for an MCC device There are two required parameters IP Address Shared Secret host 192 168 14 12 key secret123 The example below shows a typical addition of a user into t...

Страница 97: ...he user class level is set to SUPER If using the Cisco AVPair attribute Class View The user class level is set to VIEW Class Normal The user class level is set to NORMAL Class Super The user class lev...

Страница 98: ...ictionary file is loaded when FreeRADIUS is started INCLUDE dictionary mikrotik INCLUDE dictionary mrv INCLUDE dictionary navini Edit the host configuration file that is typically located at etc FreeR...

Страница 99: ...to load the MRV dictionary file when the SBR server starts marc dct mrv dct nautica dct Edit the vendor information file to include the MRV dictionary Typically this file is named vendor ini vendor p...

Страница 100: ...d Accounting PN 1275005 100 Rev E6 93 Login to the SBR server and add the Fiber Driver device as a Radius client Select MRV Communications as the Make or model of the Radius client Add the IP address...

Страница 101: ...100 Rev E6 94 When configuring users add the attribute MRV Security Level as an item in the return list This attribute uses the following values view Set the user as a VIEW level user normal Set the...

Страница 102: ...nd then save the configuration fiberdriver rm ssh_config fiberdriver rm sshd_config fiberdriver write f After removing these files you may upgrade your software safely There is no way to update sshd_c...

Страница 103: ...ard multicasts layer 2 frames to announce its presence to other NM cards connected via OSC ports To see the list of discovered NM cards use the show discovery hosts command fiberdriver show discovery...

Страница 104: ...iver configure terminal fiberdriver config sys lmp fiberdriver config To disable LMP fiberdriver configure terminal fiberdriver config no sys lmp fiberdriver config LMP only breaks rings on segments c...

Страница 105: ...atch your IP network with the ip interface command 2 Set the default gateway address using the ip default gateway command This address must be an interface on a local subnet device that can route IP p...

Страница 106: ...trap receiver table Each receiving device must include management capabilities to interpret SNMP traps MRV recommends MegaVision which includes special support for graphical management of MRV products...

Страница 107: ...river chassis 1 no gen trap lin fiberdriver chassis 1 no gen trap link fiberdriver chassis 1 no gen trap loopback fiberdriver chassis 1 show Model EM316 16BU Name EM316 16 Temp C 23 Temp Min C 5 Temp...

Страница 108: ...s when a configuration file containing SNMPv3 passwords is moved form one NM to another NM Example The following commands create some SNMPv3 users fiberdriver config snmp server user fdrNoAuth fiberdr...

Страница 109: ...names are listed in the MIB file For example the no trap nbsCmmcTrapPortEnabled command disables the PortEnabled trap For easier CLI configuration start by issuing a show traps command All traps for...

Страница 110: ...ommunication with the EM316LNXNM manager will not be re established The example below shows the port change using the CLI fiberdriverconfig snmp server port 150 fiberdriverconfig snmp server trap port...

Страница 111: ...ssage level use the log level trap command fiberdriver config snmp server host 169 254 1 100 fiberdriver config snmp server host 169 254 1 101 fiberdriver config show snmp server hosts snmp server hos...

Страница 112: ...use 12 8 2 Features Table MetaMIB Object Description metaMibFeatureTableSize Returns how many MetaMIB features are available metaMibFeatureID X Returns the ID of MetaMIB feature X metaMibFeatureFamil...

Страница 113: ...nt operational value for this variable If the object cannot report the current operational value It will report N A if metaMibVariableType is string It will be zero length otherwise If Caps reports no...

Страница 114: ...aMibFeatureDesc 11 STRING Input Equalization NBS META MIB metaMibFeatureUnits 11 STRING NBS META MIB metaMibFeatureType 11 INTEGER enum 1 NBS META MIB metaMibVariableTableSize 0 INTEGER 8 NBS META MIB...

Страница 115: ...ualization object from the previous section we can change the value from disabled to medium We know medium is an available option by looking at what was returned from metaMibVariableCaps 104001 11 and...

Страница 116: ...nsitive command line help Make configuration changes in the configure context To enter the configure context type configure terminal command at the fiberdriver prompt fiberdriver configure terminal fi...

Страница 117: ...previous context flush Wait for changes to be flushed to hardware list Print command list list MATCH Print command list logout Logout of the system ls List files more FILE Display file mv FROM TO Rena...

Страница 118: ...iguration for this location and all of its children show config C S P Port show config C S P all Show configuration for this location and all of its children show config NAME Show administrative confi...

Страница 119: ...for all slots in this chassis show flows C S Show flow configuration for this slot show groups Show group configuration show history Display the session command history show hw config Show hardware co...

Страница 120: ...hout graphics show map names Map list with full port names show map simple Map list without graphics show mapping types Show mapping type info show mapping types C Show mapping type info show mapping...

Страница 121: ...ne readable format show table protocol Display protocol table show table protocol dump Dump in machine readable format show table slot dump Dump in machine readable format show tech support Generate i...

Страница 122: ...for log messages displayed on the CLI terminal width 0 512 Set number of columns on a screen tftp get A B C D REMOTE Get file tftp get A B C D REMOTE LOCAL Get file tftp get REMOTE Get file tftp get R...

Страница 123: ...otocol tacacs pap Use TACACS PAP password authentication default aaa remote server 1 5 Restore most remote AAA server parameters default aaa remote server 1 5 port Restore remote AAA server port to it...

Страница 124: ...1 5 A B C D SECRET 0 65535 Configure remote AAA server aaa remote server host 1 5 A B C D SECRET 0 65535 1 10 Configure remote AAA server aaa remote server host 1 5 A B C D SECRET 0 65535 1 10 0 10 Co...

Страница 125: ...api service access no group GROUP access console Enable console service access group GROUP access none Remove access via any services no group GROUP access ssh Enable ssh service access no group GROUP...

Страница 126: ...web traffic list Print command list list MATCH Print command list default no log level nvram Disable flash logging log level nvram alarm Set log threshold to alarm similar to LOG_WARNING 4 log level n...

Страница 127: ...to LOG_ERR 3 log remote server host 1 5 A B C D 0 65535 info Set log threshold to LOG_INFO 6 log remote server host 1 5 A B C D 0 65535 notice Set log threshold to LOG_NOTICE 5 log remote server host...

Страница 128: ...d mappings map NAME not to C S P Enter port location map NAME not to NAME Remove the source port from that destination port map NAME only to C S P Enter port location map NAME only to NAME Map to a po...

Страница 129: ...show config C S P Port show config C S P all Show configuration for this location and all of its children show config NAME Show administrative configuration for a location show config NAME all Show co...

Страница 130: ...C S Show flow configuration for this slot show groups Show group configuration show history Display the session command history show hw config Show hardware configuration settings e g jumper DIP swit...

Страница 131: ...hout graphics show mapping types Show mapping type info show mapping types C Show mapping type info show mapping types C S no description yet show mapping types C S P no description yet show memory Sh...

Страница 132: ...nmapped Show unmapped ports show unmapped C Enter slot location show unmapped C S Enter port location show unmapped C S P Show unmapped ports show user class User class debug super etc show users User...

Страница 133: ...arning 1 65535 Set host trap threshold to LOG_WARNING 4 default snmp server port Port that the SNMP server listens on snmp server port 1 65535 Port that the SNMP server listens on default no snmp serv...

Страница 134: ...log Enable the audit log sys clear counters Clear counters system wide sys date DATESTR Set the system clock sys disconnect pid PID Disconnect a specific session s sys disconnect user USER Disconnect...

Страница 135: ...s sys tftp host ip A B C D Set TFTP host address default no sys timezone Use UTC GMT sys timezone TIMEZONE Timezone no terminal echo commands Echo commands when sourcing scripts no terminal progress S...

Страница 136: ...nfigure the system username NAME password class view has read only access to system username NAME password encrypted PASS Encrypted password username NAME password encrypted PASS class debug has acces...

Страница 137: ...load firmware reload Reload firmware from primary non volatile area firmware swap primary Swap between primary and backup firmware flush Wait for changes to be flushed to hardware default no gen trap...

Страница 138: ...t show defaults all Show default configuration for this object and all of its children show digital diagnostics Show Digital Diagnostics summary show dump Dump machine readable status show firmware Sh...

Страница 139: ...ature limit deg C temperature limit 100 100 no description yet default temperature min Adjust low temperature limit deg C temperature min 100 100 no description yet default no trap Enable trap generat...

Страница 140: ...en chassis C A chassis location chassis NAME Configure a chassis clear counters Clear counters for all ports in this slot clear type Clear Type if locking types default no cos specify frame priority c...

Страница 141: ...configured not active dscp map 0 63 notInService DSCP row configured not active default no dscp remark DSCP Remarking echo Display text for scripting echo LINE Display text for scripting end End curr...

Страница 142: ...lect trunk based on MAC addresses and IP info link aggregation on xor sd select trunk based on both MAC addresses default link toggle action Start or stop link toggle of group members link toggle acti...

Страница 143: ...ps vid 1 4095 Specify VLAN ID for MAPS packets default maps mode Restore maps mode to its default state maps mode master no description yet maps mode slave no description yet default me Restore defaul...

Страница 144: ...t power mode operation type preamp appc no description yet operation type redundant Self Healing Link operation type remote Remote Management Card operation type repeater Repeater operation type repea...

Страница 145: ...CP Map show dump Dump machine readable status show eusm Show EUSM slot info show firmware Show onboard non volatile areas show firmware sessions Show firmware download sessions show flows Show flow co...

Страница 146: ...hardware display default toggle rate Adjust toggling rate microseconds Value will be rounded to the closest HW value toggle rate 1 2147483647 Adjust toggling rate microseconds Value will be rounded to...

Страница 147: ...4095 0 4095 notInService VID row configured not active vid map 0 4095 active VID row active vid map 0 4095 notInService VID row configured not active who Show user sessions whoami Who am I write file...

Страница 148: ...ifier output power APC mode output power amplifier output power 2147483647 2147483647 no description yet default attenuation Attenuation in dB attenuation ATTEN Set attenuation in dB default attenuati...

Страница 149: ...n 655 Set to 534 655 feet cable len long haul no description yet cable len short haul no description yet cable test Test copper user cable for opens shorts impedance problems chassis C A chassis locat...

Страница 150: ...ber Speed on line side of RJ45 port to default setting fiber speed 100 Set Fiber Speed on line side of RJ45 port to 100 fiber speed 1000 Set Fiber Speed on line side of RJ45 port to 1000 default no fl...

Страница 151: ...High to default setting link threshhold tx power high WORD Configure Link Threshold Tx Power High default link threshhold tx power low Restore Link Threshold Tx Power Low to default setting link thre...

Страница 152: ...links mapping type open This port would be available for all types of mappings mapping type source This port would only be able to map to other ports mapping type source helper This port would only be...

Страница 153: ...ion yet default pattern check update freq Restore update freq to its default state pattern check update freq 0 4294967294 no description yet default pattern gen duration Restore duration to its defaul...

Страница 154: ...l e carrier e1 E1 2 048 Mbps protocol e carrier e1 ami E1 AMI 2 048 Mbps protocol e carrier e1 hdb3 E1 HDB3 2 048 Mbps protocol e carrier e3 E3 34 368 Mbps protocol e carrier e3 hdb3 E3 HDB3 34 368 Mb...

Страница 155: ...s protocol fibrechannel 8gfc 8GFC 8 5 Gbps protocol ibm escon ESCON 200 MHz protocol ibm ficon FICON 200 MHz protocol infiniband 10g 10G 10 Gbps protocol infiniband 2 5g 2 5G 2 5 Gbps protocol infinib...

Страница 156: ...Set remote chassis connectivity information rm chassis 0 4294967294 Set remote chassis connectivity information default rm port Set remote port connectivity information rm port 0 4294967294 Set remot...

Страница 157: ...olds Show thresholds detected by OSA show traffic gen 10 Display traffic gen 10 settings show traps Show trap filter configuration show tunable channel Display tunable channel settings and allowable r...

Страница 158: ...ffic gen action start Start traffic generation traffic gen action stop Stop traffic generation default traffic gen all no description yet default traffic gen da Egress bytes 0 5 random fixed increment...

Страница 159: ...da Egress bytes 0 5 random fixed incrementing traffic gen 10 da fixed WORD no description yet traffic gen 10 da increment WORD no description yet traffic gen 10 da random no description yet default tr...

Страница 160: ...ble channel tunable channel FREQ Hz Hertz tunable channel FREQ MHz Set tunable channel tunable channel FREQ PHz Set tunable channel tunable channel FREQ THz Set tunable channel up Configure parent ele...

Страница 161: ...Enum disabled enabled Access Read write CLI command fiber auto neg Default disabled 3 1 2 Fiber Mode Set RJ45 port to work with fiber port on its line side Type Enum disabled enabled Access Read writ...

Страница 162: ...OT Appendix PN 1275005 100 Rev E6 155 3 2 Hd Pmc Port Config 3 2 1 Path Transmitters The transmitter on each port in a data path Type Enum disable all enable all Access Read write CLI command path tr...

Страница 163: ...275005 100 Rev E6 156 3 3 PS Info 3 3 1 PS 1 Info Power Supply 1 Information Type String Access Read only CLI command ps monitor 1 3 3 2 PS 2 Info Power Supply 2 Information Type String Access Read on...

Страница 164: ...EM316LNXNM OT Appendix PN 1275005 100 Rev E6 157 3 4 Port De emphasis 3 4 1 De emphasis in dB Output De emphasis Type Enum 0 2 4 6 Access Read write CLI command de emphasis...

Страница 165: ...EM316LNXNM OT Appendix PN 1275005 100 Rev E6 158 3 5 Port Equal Config 3 5 1 Equal config Equal Config Type Enum disabled adaptive manual Access Read write CLI command equal config Default adaptive...

Страница 166: ...EM316LNXNM OT Appendix PN 1275005 100 Rev E6 159 3 6 Port Equalization 3 6 1 Equalization in level Input Equalization Type Integer Range 1 to 15 Access Read write CLI command equalization Default 2...

Страница 167: ...EM316LNXNM OT Appendix PN 1275005 100 Rev E6 160 3 7 Port Swing 3 7 1 Swing in level Output Swing Type Integer Range 1 to 6 Access Read write CLI command swing Default 3...

Страница 168: ...led enabled Access Read write CLI command de emphasis Default disabled 3 8 2 Equalization Input Equalization Type Enum disabled low medium high Access Read write CLI command equalization Default disab...

Страница 169: ...hold Rx Power Low Type Float Access Read write CLI command link threshhold rx power low Default Inf 3 9 3 Tx Bias high in mA Link Threshold Tx Bias High Type Float Access Read write CLI command link t...

Страница 170: ...dix PN 1275005 100 Rev E6 163 CLI command link threshhold tx power high Default Inf 3 9 6 Tx Power low in dB Link Threshold Tx Power Low Type Float Access Read write CLI command link threshhold tx pow...

Страница 171: ...XNM OT Appendix PN 1275005 100 Rev E6 164 3 10 Switch Parameter 3 10 1 Aging Timer in Seconds Switch Aging Timer in seconds Type Integer Range 1 to 86400 Access Read write CLI command aging timer Defa...

Страница 172: ...l 3 11 1 User OAM 1 User OAM Channel 1 Type Enum notSupported discard passthru Access Read write CLI command user oam 1 Default discard 3 11 2 User OAM 2 User OAM Channel 2 Type Enum notSupported disc...

Страница 173: ...Float Access Read only CLI command volt monitor 2 3 12 3 Voltage NM in Volts Slot 5 Voltage Monitoring Type Float Access Read only CLI command volt monitor 5 3 12 4 Voltage Slot 1 in Volts Slot 1 Volt...

Страница 174: ...EM316LNXNM OT Appendix PN 1275005 100 Rev E6 167 Access Read only CLI command volt monitor 4...

Страница 175: ...pology has changed recently e g a network management station has been moved from one segment to another you may have to wait for the entries in the ARP cache to time out 4 2 Hot swap issues If the LNX...

Страница 176: ...current release 3 At the prompt type set baudrate 9600 and ENTER The baud rate 9600 shown above is an example Any of the following values may be used 9600 19200 38400 57600 115200 If prompted hit ENT...

Страница 177: ...s listed sh 3 2 mv config startup config config old startup config This command changes the startup config file name so that the failed configuration is not automatically used in the boot process The...

Страница 178: ...iate for your specific network Set serverip to the IP address of the TFTP server hosting the uImage initrd file setenv ipaddr 10 1 125 127 setenv netmask 255 255 0 0 setenv serverip 10 1 1 13 setenv g...

Страница 179: ...cally used to connect to a Local Area Network LAN The factory default IP address is 192 168 14 201 24 netmask 255 255 255 0 The EM316LNXNM OT for Fiber Driver also has SFP ports that can be used to co...

Страница 180: ...69 254 88 200 16 fiberdriver config Set your gateway information using the ip default gateway command Again the address 169 254 88 1 shown below is for example only fiberdriver config ip default gatew...

Страница 181: ......

Отзывы:

Нет отзывов

Похожие инструкции для EM316LNXNM-OT

Бренд: IBM Страницы: 86

Бренд: XMG Страницы: 5

Бренд: Habitat Страницы: 48

Бренд: NAD Страницы: 2

Бренд: Qualys Страницы: 2

Бренд: F5 Страницы: 72

Бренд: Dahua Страницы: 6

Бренд: Direct IP Страницы: 76

eXtremeRAID 1100

Бренд: Mylex Страницы: 74

Бренд: WHOOP Страницы: 26

Бренд: U.S. Products Страницы: 80

Бренд: Abocom Страницы: 2

Бренд: BEC Страницы: 159

Бренд: HighPoint Страницы: 10

Бренд: ANEP Страницы: 48

Бренд: Advantech Страницы: 66

Бренд: Wave Wireless Networking Страницы: 167

Бренд: Navitar Страницы: 1

Бренды по названию

0 1 2 3 4 5 6 7 8 9 A B C D E F G H I J K L M N O P Q R S T U V W X Y Z

Популярные бренды

Загрузить еще бренды