NEC N8406-022 manual Accessing the switch, # ssh user@1Gb Intelligent L2 Switch IP address

Page 8

The supported SSH encryption and authentication methods are listed below.

Server Host Authentication—Client RSA authenticates the switch in the beginning of every connection

Key Exchange—RSA

Encryption:

AES256-CBC

AES192-CBC

AES128-CBC

3DES-CBC

3DES

ARCFOUR

User Authentication—Local password authentication; Remote Authentication Dial-in User Service (RADIUS) The following SSH clients are supported:

SSH 3.0.1 for Linux (freeware)

SecureCRT® 4.1.8 (VanDyke Technologies, Inc.)

OpenSSH_3.9 for Linux (FC 3)

FedoraCore 3 for SCP commands

PuTTY Release 0.58 (Simon Tatham) for Windows

NOTE: This switch implementation of SSH is based on versions 1.5 and 2.0, and supports SSH clients from version 1.0 through version 2.0. SSH clients of other versions are not supported. You may configure the client software to use protocol SSH version 1 or version 2.

By default, SSH service is not enabled on the switch. Once the IP parameters are configured, you can access the ISCLI to enable SSH.

To establish an SSH connection with the switch, run the SSH program on the workstation by issuing the ssh command, followed by the user account name and the switch IP address:

>># ssh <user>@<1Gb Intelligent L2 Switch IP address>

You will then be prompted to enter your password.

NOTE: The first time you run SSH from the workstation, a warning message might appear. At the prompt, enter yes to continue.

Accessing the switch

To enable better switch management and user accountability, this switch provides different levels or classes of user access. Levels of access to the CLI and Web management functions and screens increase as needed to perform various switch management tasks. The three levels of access are:

User— Interaction with the switch is completely passive—nothing can be changed on this switch. Users may display information that has no security or privacy implications, such as switch statistics and current operational state information.

Operator— Interaction with the switch is completely passive—nothing can be changed on this switch. Users may display information that has no security or privacy implications, such as switch statistics and current operational state information.

Administrator— Administrators are the only ones that may make permanent changes to the switch configuration—changes that are persistent across a reload/reset of the switch. Administrators can access switch functions to configure and troubleshoot problems on this switch. Because administrators can also make temporary (operator-level) changes as well, they must be aware of the interactions between temporary and permanent changes.

Access to switch functions is controlled through the use of unique usernames and passwords. Once you are connected to the switch via the local console, Telnet, or SSH, you are prompted to enter a password. The password entered determines the access level. The default user names/password for each access level is listed in the following table.

NOTE: It is recommended that you change default switch passwords after initial configuration and as regularly as required under your network security policies. For more information, see the “Setting passwords” section in the “First-time configuration” chapter.

ISCLI Reference 8

Page 7 Page 9
Image 8
Page 7 Page 9
Contents N8406-022 1Gb Intelligent L2 Switch Page Contents Statistics commands Operations Commands Connecting to the switch Iscli ReferenceIntroduction Additional referencesSetting an IP address Telnet 1Gb Intelligent L2 Switch IP addressEstablishing a Telnet connection Establishing an SSH connectionAccessing the switch # ssh user@1Gb Intelligent L2 Switch IP addressIdle timeout Typographical conventionsPing IP address Show portchannel 1-12hashinformationShow ip interface Show spanning-tree stpIscli basics Accessing the IscliIscli Command Modes Global commands Command line interface shortcuts Command abbreviationSwitchconfig# spanning-tree stp 1 bridge hello Switchconfig# sp stp 1 br hInformation Commands System Information commands SNMPv3 Information commandsSNMPv3 USM User Table information SNMPv3 View Table informationUser Name ProtocolSNMPv3 Access Table information View NameGroup Name PrefixSNMPv3 Group Table information SNMPv3 Community Table informationSec Model Index Name User Name Tag Trap1 Public V1v2only V1v2trapSec Level SNMPv3 Target Address Table informationSNMPv3 Target Parameters Table information SNMPv3 Notify Table information NameTag V1v2trapv1v2trapShow snmp-server v3 Command mode All SNMPv3 dumpSystem information System user information Usernames Enabled Oper Disabled Admin Always EnabledShow recent syslog messages Layer 2 information FDB information commands Show all FDB informationSpanning Tree information Show spanning-tree stp 1-32informationRapid Spanning Tree and Multiple Spanning Tree information Priority bridge Designated bridgeCommon Internal Spanning Tree information Desg 8000-000342fa3b80 8001 P2P, Edge 128 2000Desg 8000-000342fa3b80 8002 128 2000 128 2000Discarding DISC, Learning LRN, Forwarding FWD, or Disabled DSBCist Root Vlan information Trunk group 1, Enabled port state STG 1 forwardingTrunk group information Layer 3 information ARP informationShow layer3 information Command mode All IP informationShow all ARP entry information ARP address list informationIgmp multicast group information Igmp multicast router port informationRmon Information Rmon history informationInterval Rmon alarm informationShow rmon alarm Rmon event information Show rmon eventLink status information VLANs Port informationPort Tag Rmon Pvid Uplink Failure Detection information Show geaport Command mode AllLogical Port to GEA Port mapping Information dump Statistics commands Port StatisticsBridging statistics Ethernet statisticsDot3StatsAlignmentErrors Dot3StatsFCSErrorsDot3StatsInternalMacTransmitError Dot3StatsSingleCollisionFramesInterface statistics Internet Protocol IP statistics Show interface gigabitethernet port number ip-countersLayer 2 statistics Link statisticsFDB statistics Show interface gigabitethernet port number link-countersLayer 3 statistics IP statisticsARP statistics ARP statistics ArpEntriesCur ArpEntriesHighWaterDNS statistics DnsInRequests DnsOutRequests DnsBadRequests DNS statisticsIcmp statistics TCP statistics UDP statistics Management Processor statistics Igmp Multicast Group statisticsShow mp tcp-block Show mp udp-block161 10ad41e8/10ad5790All UDP allocated control blocks Listen Snmp statistics Show snmp-server counters Command mode All except User ExecCPU statistics Decoding Snmp messages received Show ntp counters Command mode All NTP statisticsUplink Failure Detection statistics Statistics dumpConfiguration Commands Saving the configurationSystem configuration Viewing and saving changesSystem host log configuration Secure Shell Server configuration Radius server configuration TACACS+ server configuration NTP server configuration System Snmp configuration SNMPv3 configuration User Security Model configuration Privacy-password passwordPrivacy-protocol desnone No snmp-server userSNMPv3 View configuration View-based Access Control Model configurationSNMPv3 Group configuration SNMPv3 Community Table configurationSNMPv3 Target Address Table configuration SNMPv3 Target Parameters Table configurationManagement Networks configuration SNMPv3 Notify Table configurationSystem Access configuration User Access Control configuration User ID configurationHttps Access configuration Port configuration Temporarily disabling a portLayer 2 configuration Port link configurationSpanning-tree mrst Mode Spanning-tree mrst EnableSpanning-tree mstp NameCommon Internal Spanning Tree configuration Cist bridge configurationCist port configuration Spanning Tree configuration Bridge Spanning Tree configuration Spanning Tree port configuration Static FDB configuration Forwarding Database configurationTrunk configuration Layer 3 configuration Vlan configurationIP interface configuration Default Gateway configurationIgmp snooping configuration Address Resolution Protocol configurationIgmp configuration Igmp static multicast router configuration Igmp filtering configurationIgmp filter definition Domain Name System configurationIgmp filtering port configuration Rmon event configuration Remote Monitoring configurationRmon history configuration Rmon alarm configuration Port-based port mirroring Uplink Failure Detection configurationPort mirroring Configuration Dump Failure Detection Pair configurationLink to Monitor configuration Link to Disable configurationSaving the active switch configuration Restoring the active switch configurationOperations Commands Operations-level port optionsBoot Options Updating the switch software imageDownloading new software to the switch Router# copy tftp image1image2boot-imageUploading a software image from the switch Routerconfig# boot image image1image2Switch# copy image1image2boot-image tftp Selecting a software image to runAccessing the AOS CLI Selecting a configuration blockResetting the switch Forwarding Database maintenance Maintenance CommandsSystem maintenance ARP cache maintenance Debugging optionsUuencode flash dump Igmp Snooping maintenanceIgmp Mrouter maintenance Panic command Switch# copy flash-dump tftp server filenameSwitch# clear flash-dump Tftp system dump putUnscheduled system dumps Index
Related manuals
Manual 62 pages 46.6 Kb

N8406-022 specifications

The NEC N8406-022 is a robust and versatile networking device designed primarily for organizations requiring high-performance connectivity solutions. As part of NEC's extensive portfolio of networking equipment, the N8406-022 is engineered to address the demands of modern enterprise environments, ensuring seamless communication and data processing capabilities.

One of the key features of the N8406-022 is its multi-layer switching functionality. This device supports Layer 2 and Layer 3 switching, allowing for efficient data routing and reducing latency within local area networks (LANs). This capability is particularly beneficial for businesses that rely on real-time data access and transfer, such as those in financial services, media, and telecommunications.

The N8406-022 is equipped with advanced Quality of Service (QoS) features that help prioritize critical network traffic. This means that voice and video data packets can be given precedence over less time-sensitive information, ensuring that essential communication remains clear and uninterrupted. This is crucial for organizations leveraging VoIP and video conferencing solutions.

In terms of connectivity, the NEC N8406-022 offers a variety of ports, including multiple Gigabit Ethernet ports, which facilitate high-speed data transfer and enable seamless integration into existing network infrastructures. The device may also include 10 Gigabit SFP+ ports, providing the flexibility for high-capacity uplinks to support bandwidth-intensive applications and storage solutions.

Security is another focal point of the NEC N8406-022, with integrated features such as VLAN support, access control lists (ACLs), and port security measures. These capabilities protect sensitive data from unauthorized access and ensure that only legitimate users and devices can connect to the network.

Moreover, the N8406-022 often incorporates advanced energy-efficient technologies that minimize power consumption without compromising performance. This not only contributes to operational cost savings but also supports organizations in their sustainability efforts.

With its combination of performance, security, and energy efficiency, the NEC N8406-022 stands out as a reliable networking solution suitable for a wide range of enterprises looking to enhance their connectivity and operational efficiency. Whether deployed in data centers or as part of a corporate network, this device is built to meet the evolving demands of today’s digital landscape.
Top Page Image Contents