Powered by Accton
Page
ES4524D Gigabit Ethernet Switch
ES4524D ES4548D F0.0.0.4 E112006-CS-R01 149100030400A
Contents
Setting the System Clock 10-1
Vii
Access Control Lists 15-1
Viii
Vlan Configuration 23-1
Multicast Filtering 28-1
File Management Commands 35-1
Smtp Alert Commands 38-1
Xii
802.1X Port Authentication 43-1
Xiii
Access Control List Commands 44-1
Xiv
Address Table Commands 50-1
Private Vlan Commands 53-1
Xvi
Quality of Service Commands 56-1
Xvii
IPv4 Interface Commands 59-1
Xviii
Xix
Tables
Page
Xxi
Xxii
Xxiii
Figures
Xxiv
Figures IP Filter 12-14 Port Security 13-2
Xxv
Figures
Xxvi
Section I Getting Started
Getting Started
Key Features
Key Features
Feature Description
Introduction
Introduction
Description of Software Features
Description of Software Features
Introduction
Description of Software Features
System Defaults
System Defaults
Function Parameter Default
Password super
Snmp
View defaultview
Traffic Prioritization Ingress Port Priority Queue Mode
System Defaults Function Parameter
Disabled Igmp Snooping Snooping Enabled
System Log Status Enabled Messages Logged
Initial Configuration
Connecting to the Switch
Configuration Options
Remote Connections
Required Connections
Basic Configuration
Setting Passwords
Console Connection
Assigning an IPv4 Address
Setting an IP Address
45-1
Assigning an IPv6 Address
59-1
59-2
60-10
60-4
60-12
60-3
59-3
Obtaining an IPv4 Address
59-4
35-2
60-2
Obtaining an IPv6 Address
60-6
Enabling Snmp Management Access
40-5
40-3
40-10
Managing System Files
40-11
40-14
Saving Configuration Settings
Initial Configuration
Section II Switch Management
Page
Using the Web Interface
Configuring the Switch
Home
Navigating the Web Browser Interface
Panel Display
Web Page Configuration Buttons
Apply Revert Help
Action
Main Menu
Switch Main Menu Description
System System Information
IPv6 Neighbor
12-8
11-1
15-1
12-13
17-1
Lacp
23-1
Class-of-service value
Current Table
23-5
28-2
26-9
Query Multicast Router
28-4
Basic System Settings
Displaying System Information
Field Attributes
System Information
CLI Specify the hostname, location and contact information
Displaying Switch Hardware/Software Versions
Main Board
Management Software
34-8
Switch Information
Displaying Bridge Extension Capabilities
Displaying Bridge Extension Configuration
CLI Enter the following command
Configuring Support for Jumbo Frames
Command Usage
Command Attributes
CLI Use the reload command to restart the switch
Resetting the System
Renumbering the Stack
CLI This example renumbers all units in the stack
Basic System Settings
Setting the Switch’s IP Address IP Version
Setting an IP Address
IPv4 Interface Configuration Manual
Manual Configuration
IPv4 Interface Configuration Dhcp
Using DHCP/BOOTP
Configuring an IPv6 Address
Setting the Switch’s IP Address IP Version 6
IP Address
Setting the Switch’s IP Address IP Version 6
Current Address Table
IPv6 Interface Configuration
Configuring an IPv6 General Network Prefix
60-13
60-14
Protocol Settings
IPv6 General Prefix Configuration
Current Neighbor Cache Table
Adding Static Neighbors IPv6 Neighbor -- Add
60-26
60-22
Managing Firmware
Managing System Files
Copy Firmware
Downloading System Software from a Server
35-7
Deleting Files
Saving or Restoring Configuration Settings
Downloading Configuration Settings for Start-Up
Downloading Configuration Settings from a Server
Console#copy tftp startup-config
Console Port Settings
36-2
36-1
36-3
36-4
Telnet Settings
Configuring the Telnet Interface
System Log Configuration
Configuring Event Logging
Error resource exhausted
Logging Levels
37-1
Remote Log Configuration
37-2
37-5
37-4
37-3
Sending Simple Mail Transfer Protocol Alerts
Displaying Log Messages
CLI This example shows the event message stored in RAM
37-7
Enabling and Configuring Smtp Alerts
38-2
38-1
38-3
38-4
Configuring Sntp
Setting the System Clock
39-1
Setting the Time Zone
39-3
39-2
Snmp Overview
Simple Network Management Protocol
SNMPv3 Security Models and Levels
Enabling the Snmp Agent
Level Group Read View Write View Notify View Security
User defined
Setting Community Access Strings
CLI The following example enables Snmp on the switch
40-2
Specifying Trap Managers and Trap Types
11-5
40-7
Configuring SNMPv3 Management Access
Specifying a Remote Engine ID
Setting a Local Engine ID
CLI This example sets an SNMPv3 engine ID
40-8
CLI This example specifies a remote SNMPv3 engine ID
Configuring SNMPv3 Users
Configuring SNMPv3 Users
40-15
Configuring Remote SNMPv3 Users
Configuring Remote SNMPv3 Users
Configuring SNMPv3 Groups
Any of its configured ports transitions from
Topology Change Timer immediately
That its configuration may have been altered
Authenticated. While all implementations
Supported Notification Messages
40-13
Configuring SNMPv3 Groups
Configuring SNMPv3 Views
Setting SNMPv3 Views
11-17
Simple Network Management Protocol 11-18
Configuring User Accounts
User Authentication
41-1
Configuring Local/Remote Logon Authentication
Global Provides globally applicable Radius settings
Radius Settings
Web Telnet
TACACS+ server
Authentication Server Settings
Tacacs Settings
Configuring Https
Replacing the Default Secure-site Certificate
Address server ip-address
Copy Https Certificate
Configuring the Secure Shell
Authenticating SSH v1.5 Clients
Generating the Host Key Pair
Authenticating SSH v2 Clients
41-20
41-21
41-23
SSH server includes basic settings for authentication
Configuring the SSH Server
41-17
Filtering IP Addresses for Management Access
41-18
41-19
41-25
41-24
Configuring Port Security
42-1
Port Security
Configuring 802.1X Port Authentication
802.1X protocol provides port authentication
Displaying 802.1X Global Settings
CLI This example shows the default global setting for
Web Click Security, 802.1X, Information
Configuring Port Settings for
Configuring 802.1X Global Settings
CLI This example enables 802.1X globally for the switch
43-1
Authorized
802.1X Port Configuration
43-2
43-4
43-5
Displaying 802.1X Statistics
802.1X Statistics
Parameter Description
CLI This example displays the dot1x statistics for port
802.1X Port Statistics
Configuring 802.1X Port Authentication 14-8
Access Control Lists
Setting an ACL Name and Type
Overview
Configuring a Standard IPv4 ACL
CLI This example creates a standard IP ACL named bill
44-2
ACL Configuration Standard IPv4
Configuring an Extended IPv4 ACL
15-4
44-3
ACL Configuration Extended IPv4
Configuring a MAC ACL
44-13
Configuring a Standard IPv6 ACL
44-8
Configuring an Extended IPv6 ACL
15-9
44-9
ACL Configuration Extended IPv6
This switch supports ACLs for ingress filtering only
Binding a Port to an Access Control List
44-6
44-15
Access Control Lists 15-12
Port Configuration
Displaying Connection Status
Field Attributes Web
Field Attributes CLI
Configuration
Basic information
Current status
45-8
CLI This example shows the connection status for Port
Configuring Interface Connections
45-6
45-2
45-3
45-4
Showing Port Statistics
Port Statistics
Etherlike Statistics
Rmon Statistics
Formed
Oversize Frames
Fragments
16-9
45-9
CLI This example shows statistics for port
Creating Trunk Groups
Static Trunk Configuration
Statically Configuring a Trunk
46-2
Setting a Load-Balance Mode for Trunks
Trunk Load Balance Mode
Enabling Lacp on Selected Ports
46-3
46-11
46-4
Lacp Trunk Configuration
Dynamically Creating a Port Channel
Configuring Lacp Parameters
Lacp Aggregation Port
Displaying Lacp Port Counters
You can display statistics for Lacp protocol messages
Lacp Port Counters
Type
Parameter Description Marker Unknown Pkts
Marker Illegal Pkts
Badly formed PDU or an illegal value of Protocol Subtype
Displaying Lacp Settings and Status for the Local Side
Lacp Internal Configuration Information
Field Description
Lacp Port Internal Information
Lacp Neighbor Configuration Information Field Description
Displaying Lacp Settings and Status for the Remote Side
17-14
Broadcast Storm Control
Setting Broadcast Storm Thresholds
45-10
47-1
Configuring Port Mirroring
48-1
Mirror Port Configuration
Command Attribute
Configuring Rate Limits
49-1
Setting Static Addresses
Address Table Settings
50-1
Displaying the Address Table
50-3
Dynamic Addresses
Changing the Aging Time
CLI This example sets the aging time to 400 seconds
50-4
Spanning Tree Algorithm Configuration
For this Region
Region R
Displaying Global Settings
22-4
STA Information
Web Click Spanning Tree, STA, Information
Global settings apply to the entire switch
Configuring Global Settings
Root Device Configuration
Basic Configuration of Global Settings
Configuration Settings for Mstp
Configuration Settings for Rstp
STA Global Configuration
Displaying Interface Settings
22-11
STA Port Information
Configuring Interface Settings
CLI This example shows the STA attributes for port
51-18
22-14
CLI This example sets STA attributes for port
Configuring Multiple Spanning Trees
Mstp Vlan Configuration
51-8
Mstp Port Information
Displaying Interface Settings for Mstp
Configuring Interface Settings for Mstp
51-16
CLI This example sets the Mstp attributes for port
Assigning Ports to VLANs
Vlan Configuration
23-2
Forwarding Tagged/Untagged Frames
Enabling or Disabling Gvrp Global Setting
CLI This example enables Gvrp for the switch
Displaying Basic Vlan Information
Command Attributes Web
Displaying Current VLANs
Max support Vlan numbers 256 Max support Vlan ID 4093
Command Attributes CLI
Creating VLANs
52-17
CLI This example creates a new Vlan
Adding Static Members to VLANs Vlan Index
52-5
52-6
Vlan Static Table Adding Static Members
52-11
Adding Static Members to VLANs Port Index
Configuring Vlan Behavior for Interfaces
Vlan Port Configuration
Configuring Ieee 802.1Q Tunneling
QinQ Tunneling
Layer 2 Flow for Packets Coming into a Tunnel Access Port
Layer 2 Flow for Packets Coming into a Tunnel Uplink Port
General Configuration Guidelines for QinQ
Configuration Limitations for QinQ
CLI This example sets the switch to operate in QinQ mode
Enabling QinQ Tunneling on the Switch
52-14
52-16
Adding an Interface to a QinQ Tunnel
52-15
Tunnel Port Configuration
CLI This example enables private VLANs
Configuring Private VLANs
Enabling Private VLANs
53-1
53-2
Configuring Uplink and Downlink Ports
Configuring Protocol-Based VLANs
Configuring Protocol Groups
Create a protocol group for one or more protocols
54-1
Mapping Protocols to VLANs
54-2
Protocol Vlan Port Configuration
Configuring Protocol-Based VLANs 25-4
Class of Service Configuration
Layer 2 Queue Settings
Setting the Default Priority for Interfaces
55-3
CLI This example assigns a default priority of 5 to port
Mapping CoS Values to Egress Queues
Mapping CoS Values to Egress Queues
CoS Priority Levels
Priority Level Traffic Type
Selecting the Queue Mode
55-4
55-6
Setting the Service Weight for Traffic Classes
55-2
55-5
Queue Scheduling
Mapping Layer 3/4 Priorities to CoS Values
Layer 3/4 Priority Settings
Selecting IP Precedence/DSCP Priority
55-8
Mapping IP Precedence Priority Level Traffic Type
Mapping IP Precedence
Mapping Dscp Priority
Mapping Dscp Priority IP Dscp Value CoS Value
10, 12, 14 18, 20, 22 26, 28, 30, 32, 34 38, 40
55-13
55-10
IP Port Priority Status
Mapping IP Port Priority
55-11
Configuring Quality of Service Parameters
Quality of Service
Class Configuration
Configuring a Class Map
Match Class Settings
Class map is used for matching packets to a specified class
Configuring Class Maps
Policy Map
Creating QoS Policies
56-2
56-3
Policy Configuration
Policy Rule Settings Class Settings
Policy Options
Configuring Policy Maps
56-4
Attaching a Policy Map to Ingress Queues
56-5
56-6
Quality of Service 27-8
Layer 2 Igmp Snooping and Query
Multicast Filtering
Configuring Igmp Snooping and Query Parameters
57-4
57-1
57-5
57-6
57-9
Displaying Interfaces Attached to a Multicast Router
57-8
Specifying Static Interfaces for a Multicast Router
IP Multicast Registration Table
Displaying Port Members of Multicast Services
Igmp Member Port Table
Assigning Ports to Multicast Services
28-8
Configuring General DNS Service Parameters
Configuring Domain Name Service
58-4
58-3
58-5
58-7
Configuring Static DNS Host to Address Entries
58-6
58-1
DNS Cache
Displaying the DNS Cache
29-6
Cluster Configuration
Switch Clustering
Web Click Cluster, Configuration
Cluster Member Configuration
Adds Candidate switches to the cluster as Members
61-1
Displays current cluster Member switch information
Web Click Cluster, Member Configuration
Cluster Member Information
61-3
61-5
Cluster Candidate Information
Section IIICommand Line Interface
Page
Using the Command Line Interface
Accessing the CLI
Telnet Connection
31-2
Command Completion
Entering Commands
Getting Help on Commands
Keywords and Arguments
Showing Commands
Negating the Effect of Commands
Using Command History
Partial Keyword Lookup
Understanding Command Modes
Exec Commands
General Command Modes
Configuration Commands
Consoleconfig-if# 45-1
Configuration Command Modes Prompt
Command Line Processing
Keystroke Commands
Keystroke Function
Using the Command Line Interface 31-10
Command Group Index Description
CLI Command Groups
Class of Service
55-1
57-1
Enable
General Commands
Configure
Disable
Related Commands
Example
Normal Exec, Privileged Exec
Show history
End
Prompt
Exit
Syntax Prompt string no prompt
This command exits the configuration program
This example shows how to quit a CLI session
Quit
General Commands 33-6
System Management Commands Function Mode
System Management Commands
Hostname
Syntax Hostname name no hostname
Switch renumber
Syntax Switch all renumber Default Setting
Reload
Syntax No jumbo frame Default Setting
Show startup-config
Jumbo frame
Show ipv6 mtu
34-4
Show running-config34-5
Show running-config
Show startup-config34-3
This command displays system information
Show system
Show users
Show version
34-9
System Management Commands 34-10
Saving or Restoring Configuration Settings
File Management Commands
Flash/File Commands Function Mode
Managing Firmware
Copy
35-3
Delete
This command deletes a file or image
Syntax
Delete unit filename
Syntax Dir unit boot-rom config opcode filename
This command displays a list of files in flash memory
Dir
Dir Delete public-key41-20
Syntax whichboot unit
Whichboot
File Directory Information
Column Heading Description
Boot system
Syntax Boot system unit boot-romconfig opcode filename
Dir 35-5 whichboot
File Management Commands 35-8
Line Commands Function Mode
Line Commands
Line
Syntax Line console vty
Syntax Login local no login
Login
Username 41-1 password
Password
Syntax Password 0 7 password no password
No password is specified
Timeout login response
Exec-timeout
Syntax Exec-timeout seconds no exec-timeout
CLI No timeout Telnet 10 minutes
Password-thresh
Syntax Password-thresh threshold no password-thresh
Default value is three attempts
Databits
Silent-time
Syntax Silent-time seconds no silent-time
Syntax Databits 7 8 no databits
Syntax Parity none even odd no parity
Parity
Stopbits
Speed
Syntax Speed bps no speed
Syntax Stopbits 1
Show line
Disconnect
Syntax Disconnect session-id
Syntax Show line console vty
To show all lines, enter this command
Event Logging Commands Function Mode
Event Logging Commands
Syntax No logging on Default Setting
Logging on
Flash errors level 3 RAM warnings level 7
Logging history
Logging history 37-2 logging trap 37-4 clear log
Logging host
Default Setting Command Mode
Logging facility
Syntax No logging host hostipaddress
Disabled Level 7
Logging trap
Syntax Logging trap level no logging trap
Show logging
Clear log
Syntax Clear log flash ram
Syntax Show logging flash ram sendmail trap
Logging facility command
Show logging flash/ram display description
Show logging trap display description
Show log
Syntax Show log flash ram
Following example shows the event message stored in RAM
Event Logging Commands 37-8
Smtp Alert Commands Function Mode
Smtp Alert Commands
Logging sendmail host
38-4
Logging sendmail source-email
Logging sendmail level
Syntax Logging sendmail level level
Syntax Logging sendmail source-email email-address
Logging sendmail destination-email
Syntax No logging sendmail Default Setting
Logging sendmail
Syntax No logging sendmail destination-email email-address
Show logging sendmail
Time Commands Function Mode
Time Commands
Syntax No sntp client Default Setting
Sntp client
Sntp server
Sntp server 39-2 sntp poll 39-3 show sntp
Syntax Sntp server ip1 ip2 ip3
Show sntp
Sntp poll
Sntp client 39-1 sntp poll 39-3 show sntp
Syntax Sntp poll seconds no sntp poll
Clock timezone
Calendar set
This command displays the system clock
Show calendar
Calendar set hour min sec day month year month day year
Time Commands 39-6
Snmp Commands Function Mode
Snmp Commands
Syntax No snmp-server Default Setting
Snmp-server
Show snmp
Snmp-server community
Snmp-server location
Snmp-server contact
Syntax Snmp-server contact string no snmp-server contact
Syntax Snmp-server location text no snmp-server location
Host Address None Notification Type Traps
Snmp-server host
Snmp Version UDP Port
Snmp-server enable traps
Snmp-server enable traps
Issue authentication and link-up-down traps
Snmp-server engine-id
This command shows the Snmp engine ID
This example shows the default engine ID
Show snmp engine-id
Snmp-server view
Defaultview includes access to the entire MIB tree
Examples
This view includes MIB-2
Show snmp view
This command shows information on the Snmp views
Snmp-server group
Show snmp view display description
40-12
Show snmp group
Show snmp group display description
Field Description Groupname Name of an Snmp group
Snmp-server user
Show snmp user
This command shows information on Snmp users
Show snmp user display description
User Account Commands
User Authentication Commands
Authentication Commands Command Group Function
User Access Commands Function Mode
Enable password
Default Login Settings Username Access-level Password
Guest Admin
Authentication Sequence
Authentication login
Authentication Sequence Commands Function Mode
Tacacs Use Tacacs server password
Authentication enable
Username for setting the local user names and passwords
Local
Show radius-server Shows the current Radius settings 41-8
Radius Client Commands Function Mode
Radius Client
41-8
Retransmit Command Mode
Default Setting Auth-port
Radius-server host
Radius-server port
Radius-server key
Radius-server retransmit
Syntax Radius-server key keystring no radius-server key
Show radius-server
Radius-server timeout
TACACS+ Client
TACACS+ Client Commands Function Mode
Tacacs-server host
Tacacs-server port
Tacacs-server key
Show tacacs-server
Syntax Tacacs-server key keystring no tacacs-server key
Web Server Commands
Ip http port
Ip http server
Syntax No ip http secure-server Default Setting
Ip http secure-server
Ip http port
Ip http secure-port
Ip http secure-port41-13copy tftp https-certificate
Portnumber The UDP port used for HTTPS. Range
Telnet Server Commands
Telnet Server Commands Function Mode
Ip telnet server
10 Secure Shell Commands Function Mode
Secure Shell Commands
Configuration Guidelines
Sets the SSH server key size 41-19 Copy tftp public-key
41-16
Ip ssh server
Syntax No ip ssh server Default Setting
Syntax Ip ssh timeout seconds no ip ssh timeout
Ip ssh timeout
Exec-timeout36-4 show ip ssh
Ip ssh crypto host-key generate 41-20 show ssh
Ip ssh server-key size
Ip ssh authentication-retries
Key-size- The size of server key. Range 512-896 bits
Bits
Ip ssh crypto host-key generate
Delete public-key
Syntax Delete public-key username dsa rsa
Syntax Ip ssh crypto host-key generate dsa rsa
Ip ssh save host-key
Ip ssh crypto zeroize
Syntax Ip ssh crypto zeroize dsa rsa
Syntax Ip ssh save host-key dsa rsa
Show ip ssh
This command displays the current SSH server connections
Show ssh
Ip ssh crypto host-key generate
Show public-key
Terminology
Syntax Show public-key user username host
12 IP Filter Commands Function Mode
IP Filter Commands
Management
41-25
Show management
41-26
Port Security Commands Function Mode
Port Security Commands
Port security
Max-mac-count
Shutdown 45-6mac-address-table static
802.1X Port Authentication Commands Function Mode
802.1X Port Authentication
Syntax No dot1x system-auth-control Default Setting
Dot1x system-auth-control
Default Command Mode
Dot1x default
Dot1x max-req
Dot1x port-control
Dot1x operation-mode
Force-authorized
Single-host
Dot1x re-authentication
Dot1x re-authenticate
Syntax Dot1x re-authenticate interface
Syntax No dot1x re-authentication Command Mode
Dot1x timeout re-authperiod
Dot1x timeout quiet-period
Dot1x timeout re-authperiod43-5
Seconds The number of seconds. Range
Show dot1x
Dot1x timeout tx-period
Syntax Show dot1x statistics interface interface
Statistics Displays dot1x status for each port Interface
Backend State Machine
Authenticator State Machine
State- Current state including initialize, reauthenticate
Reauthentication State Machine
Access Control List Commands Command Groups Function
Access Control List Commands
IPv4 ACL Commands Function Mode
IPv4 ACLs
Syntax No access-list ip standard extended aclname
Access-list ip
Permit, deny Ip access-group44-6 show ip access-list44-5
Syntax No permit deny any source bitmask host source
Access-list ip
Standard IPv4 ACL
No permit deny tcp
Extended IPv4 ACL
This command displays the rules for configured IPv4 ACLs
Show ip access-list
Syntax Show ip access-list standard extended aclname
Permit, deny Ip access-group44-6
Show ip access-group
Ip access-group
Syntax No ip access-group aclname
Show ip access-list44-5
IPv6 ACL Commands Function Mode
Access-list ipv6
Syntax No access-list ipv6 standard extended aclname
IPv6 ACLs
Access-list ipv6
Standard IPv6 ACL
New rules are appended to the end of the list
Any destination-ipv6-address/prefix-length
Syntax No permit deny
Next-header next-header dscp dscp flow-label flow-label
Extended IPv6 ACL
This command displays the rules for configured IPv6 ACLs
Show ipv6 access-list
Ipv6 access-group
Show ipv6 access-group
Syntax No ipv6 access-group aclname
MAC ACL Commands Function Mode
Access-list mac
Syntax No access-list mac aclname
MAC ACLs
No permit deny tagged-eth2
Permit, deny MAC ACL
No permit deny untagged-eth2
No permit deny tagged-802.3
Show mac access-list
This command displays the rules for configured MAC ACLs
Syntax Show mac access-list aclname
Mac access-group
Show mac access-group
Syntax Mac access-group aclname
Show access-group
Show access-list
ACL Information Commands Function Mode
ACL Information
44-17
Access Control List Commands 44-18
Interface Commands Function Mode
Interface Commands
Interface
Port-channel channel-idRange
Description
Speed-duplex
Syntax Description string no description
Syntax No negotiation Default Setting
Negotiation
Negotiation 45-3 capabilities
Following example configures port 11 to use autonegotiation
Capabilities
Capabilities 45-4speed-duplex45-2
Following example enables flow control on port
Syntax No flowcontrol Default Setting
Flowcontrol
Negotiation 45-3speed-duplex45-2 flowcontrol
Syntax No shutdown Default Setting
Syntax Media-type mode no media-type
Media-type
Shutdown
Port-channel channel-idRange Default Setting
Clear counters
Syntax Clear counters interface
Show interfaces status
This command displays the status for an interface
Syntax Show interfaces status interface
Shows the status for all interfaces
Show interfaces counters
This command displays interface statistics
Syntax Show interfaces counters interface
Shows the counters for all interfaces
Show interfaces switchport
Syntax Show interfaces switchport interface
Show interfaces switchport display description
Indicates the default priority for untagged frames
Indicates membership mode as Trunk or Hybrid
Allowed Vlan
Indicates tagged
Interface Commands 45-12
Link Aggregation Commands
Link Aggregation Commands
Guidelines for Creating Trunks
Channel-group
Dynamically Creating a Port Channel
Syntax Channel-group channel-idno channel-group
Src-dst-ip
Port channel load-balance
Lacp
Syntax No lacp Default Setting
32768
Lacp system-priority
Lacp admin-keyEthernet Interface
Lacp admin-key Port Channel
Syntax Lacp admin-key key no lacp admin-key
Interface Configuration Port Channel
This command displays Lacp information
Lacp port-priority
Show lacp
Show lacp counters display description
Port Channel all
Type
LACPDUs Illegal Pkts
Show lacp neighbors display description
Show lacp internal display description
Show lacp sysid display description
Show port-channel load-balance
46-12
Switchport broadcast packet-rate
Broadcast Storm Control Commands
Broadcast Storm Control Commands Function Mode
Enabled for all ports Packet-rate limit 500 pps
Broadcast Storm Control Commands 47-2
Mirror Port Commands Function Mode
Mirror Port Commands
Interface Configuration Ethernet, destination port
Port monitor
Following shows mirroring configured from port 6 to port
This command displays mirror information
Show port monitor
Syntax Show port monitor interface
Rate Limit Commands Function Mode
Rate Limit Commands
Rate-limit
Gigabit Ethernet 1000 Mbps
Rate Limit Commands 49-2
Address Table Commands Function Mode
Address Table Commands
Mac-address-table static
Action
Clear mac-address-table dynamic
Show mac-address-table
Mac-address- MAC address Mask Bits to match in the address
Show ipv6 neighbors
Show mac-address-table aging-time
Mac-address-table aging-time
Spanning Tree Commands Function Mode
Spanning Tree Commands
Syntax No spanning-tree Default Setting
Spanning-tree mode
Spanning tree is enabled
Spanning-tree
Spanning-tree forward-time
Spanning-tree forward-time
Spanning-tree forward-time 51-3spanning-tree max-age
Spanning-tree hello-time
Spanning-tree max-age
Spanning-tree priority
Spanning-tree forward-time 51-3spanning-tree hello-time
Long method
Spanning-tree pathcost method
This command limits the maximum transmission rate for BPDUs
Spanning-tree mst-configuration
Spanning-tree transmission-limit
Count The transmission limit in seconds. Range
MST Configuration
Mst vlan
No mst instanceid vlan vlan-range
Name
Mst priority
Mst instanceid priority priority no mst instanceid priority
Syntax Name name
Syntax Revision number
Revision
Number Revision number of the spanning tree. Range
Name
Syntax No spanning-tree spanning-disabled Default Setting
Spanning-tree spanning-disabled
This example disables the spanning tree algorithm for port
Max-hops
Syntax Spanning-tree cost cost no spanning-tree cost
Spanning-tree cost
Spanning-tree port-priority
Syntax No spanning-tree edge-port Default Setting
Spanning-tree edge-port
Priority The priority for a port. Range 0-240, in steps
Spanning-tree portfast
Syntax No spanning-tree portfast Default Setting
Spanning-treeedge-port51-13
Spanning-tree link-type
Spanning-tree mst port-priority51-17
Spanning-tree mst cost
Spanning-tree mst port-priority
Spanning-tree protocol-migration
Syntax Spanning-tree protocol-migration interface
Syntax Show spanning-tree interface mst instanceid
Show spanning-tree
51-19
Show spanning-tree mst configuration
Gvrp and Bridge Extension Commands
Vlan Commands
Vlan Commands Command Groups Function
Gvrp and Bridge Extension Commands Function Mode
Syntax No bridge-ext gvrp Default Setting
Bridge-ext gvrp
Show bridge-ext
Show gvrp configuration
Switchport gvrp
Syntax No switchport gvrp Default Setting
Syntax Show gvrp configuration interface
Garp timer
Syntax Show garp timer interface
Show garp timer
Commands for Editing Vlan Groups Function Mode
Editing Vlan Groups
Vlan Database Configuration
By default only Vlan 1 exists and is active
Vlan
Show vlan
Commands for Configuring Vlan Interfaces Function Mode
Configuring Vlan Interfaces
Interface vlan
Interface vlan
Syntax Switchport mode hybrid trunk no switchport mode
Switchport mode
All ports are in hybrid mode with the Pvid set to Vlan
Switchport acceptable-frame-types52-9
Switchport ingress-filtering
Switchport acceptable-frame-types
Switchport mode
Syntax No switchport ingress-filtering Default Setting
Switchport native vlan
Switchport allowed vlan
No VLANs are included in the forbidden list
Switchport forbidden vlan
General Configuration Guidelines for QinQ
Ieee 802.1Q Tunneling Commands Function Mode
Dot1q-tunnel
52-14
Show dot1q-tunnel52-16 Show interfaces switchport
Syntax No dot1q-tunnel system-tunnel-control Default Setting
0x8100
Switchport dot1q-tunnel tpid
Displaying Vlan Information
Commands for Displaying Vlan Information Function Mode
Following example shows how to display information for Vlan
This command shows Vlan information
Show vlan
Syntax Show vlan id vlan-idname vlan-name
Vlan Commands 52-18
Private Vlan Commands Function Mode
Private Vlan Commands
Pvlan
No private VLANs are defined
Show pvlan
This command displays the configured private Vlan
Protocol-vlan protocol-group Configuring Groups
Protocol-based Vlan Commands
Protocol-based Vlan Commands Function Mode
54-4
Protocol-vlan protocol-group Configuring
No protocol groups are configured
No protocol groups are mapped for any interface
Show protocol-vlan protocol-group
This shows protocol group 1 configured for IP over Ethernet
Syntax Show protocol-vlan protocol-group group-id
Group-id- Group identifier for a protocol group. Range
Mapping for all interfaces is displayed
Show interfaces protocol-vlan protocol-group
Priority Commands Layer
Class of Service Commands
Priority Commands Command Groups Function
Priority Commands Layer Function Mode
Syntax Queue mode strict wrr no queue mode
Queue mode
Weighted Round Robin
Queue bandwidth 55-4 show queue mode
Switchport priority default
Queue bandwidth
Queue bandwidth weight1...weight4 no queue bandwidth
Queue cos-map
Queue cos-mapqueueid cos1 ... cosn no queue cos-map
Default CoS Priority Levels
Show queue mode
This command shows the current queue mode
Show queue cos-map55-6
Show queue bandwidth
This command shows the class of service priority map
Show queue cos-map
Syntax Show queue cos-map interface
Priority Commands Layer 3
Priority Commands Layer 3 Function Mode
Syntax No map ip port Default Setting
Syntax No map ip precedence Default Setting
Following example shows how to map Http traffic to CoS value
List below shows the default priority mapping
Map ip precedence Interface Configuration
Map ip dscp dscp-value cos cos-value no map ip dscp
Syntax No map ip dscp Default Setting
Show map ip port
This command shows the IP port priority map
Mapping IP Dscp to CoS Values IP Dscp Value
Syntax Show map ip port interface
This command shows the IP precedence priority map
Show map ip precedence
Syntax Show map ip precedence interface
This command shows the IP Dscp priority map
Show map ip dscp
Syntax Show map ip dscp interface
55-14
Quality of Service Commands Function Mode
Quality of Service Commands
Class-map
Syntax No class-map class-map-namematch-any
Show class map
Match
Class Map Configuration
Class
Policy-map
No policy-mappolicy-map-name
No class class-map-name
Set
Policy Map Configuration
Police
Policy Map Class Configuration
Syntax No police rate-kbpsburst-byteexceed-action drop set
Drop out-of-profile packets
Service-policy
Syntax No service-policy input policy-map-name
No policy map is attached to an interface
Show policy-map
Show class-map
Syntax Show class-map class-map-name
Show policy-mappolicy-map-name class class-map-name
Port-channel channel-idRange Command Mode
Show policy-map interface
Syntax Show policy-map interface interface input
Quality of Service Commands 56-10
Multicast Filtering Commands
Igmp Snooping Commands
Ip igmp snooping
Ip igmp snooping vlan static
Ip igmp snooping version
Igmp Version
Show mac-address-table multicast
Show ip igmp snooping
Igmp Query Commands Function Mode
Igmp Query Commands
Syntax No ip igmp snooping querier Default Setting
Ip igmp snooping querier
Ip igmp snooping query-count
Following shows how to configure the query count to
Ip igmp snooping query-interval
Times
Ip igmp snooping query-max-response-time
Seconds The report delay advertised in Igmp queries. Range
Ip igmp snooping router-port-expire-time
Switch must use IGMPv2 for this command to take effect
Static Multicast Routing Commands Function Mode
Static Multicast Routing Commands
No static multicast router ports are configured
Ip igmp snooping vlan mrouter
Show ip igmp snooping mrouter
Displays multicast router ports for all configured VLANs
Multicast Filtering Commands 57-10
DNS Commands Function Mode
Domain Name Service Commands
Ip host
No ip host name address1 address2 … address8
Clear host
This command deletes entries from the DNS table
This example maps two address to a host name
Syntax Clear host name
Ip domain-list
Ip domain-name
Syntax Ip domain-name name no ip domain-name
Ip domain-list58-3 ip name-server58-4 ip domain-lookup58-5
Ip name-server
Ip domain-name58-3
Server-address1- IP address of domain-name server
Syntax No ip domain-lookup Default Setting
Ip domain-lookup
Ip domain-name58-3 ip domain-lookup58-5
Ip domain-name58-3 ip name-server58-4
Show hosts
Show dns
Show dns cache
Show dns cache display description
Clear dns cache
This command clears all entries in the DNS cache
IPv4 Interface Commands
IPv4 Configuration Commands Function Mode
Ip address
Syntax Ip default-gateway gateway no ip default-gateway
Ip default-gateway
Gateway IP address of the default gateway
Ip dhcp restart 59-3 ipv6 address
Show ip redirects 59-4 ipv6 default-gateway60-12
Following example defines a default gateway for this device
This command submits an IPv4 Bootp or Dhcp client request
Ip dhcp restart
Ip default-gateway59-2 Show ipv6 default-gateway60-12
This command displays the settings of an IPv4 interface
Show ip interface
Show ip redirects
Ping
This command has no default for the host
Syntax Ping host count countsize size
Interface 45-1 ping ipv6
59 IPv4 Interface Commands 59-6
IPv6 Configuration Commands
IPv6 Interface Commands
Syntax No ipv6 enable Default Setting
Ipv6 enable
IPv6 is disabled
Ipv6 address link-local60-9 show ipv6 interface
Ipv6 general-prefix
No general prefix is defined
Show ipv6 general-prefix60-4
Show ipv6 general-prefix
This command displays all configured IPv6 general prefixes
Ipv6 address
No IPv6 addresses are defined
60-5
Syntax No ipv6 address autoconfig Default Setting
Ipv6 address autoconfig
Ipv6 address Show ipv6 interface
Ipv6 address eui-64
Ipv6 address autoconfig 60-6 show ipv6 interface
Ipv6 address link-local
Ipv6 enable Show ipv6 interface
Show ipv6 interface
Show ipv6 interface display description Field
FF022, and solicited nodes FF021FFXXXXXX as described below
Show ipv6 interface display description
Appending those bits to the prefix
Maximum transmission unit for this interface
Ipv6 default-gateway
Show ipv6 default-gateway
Syntax Ipv6 default-gateway ipv6-addressno ipv6 address
Syntax Ipv6 mtu size no ipv6 mtu
Ipv6 mtu
Show ipv6 traffic
Show ipv6 mtu
Following example shows the MTU cache for this device
Show ipv6 mtu display description
60-15
Format errors
Received in error
Errors discovered in processing their IPv6 options, etc
Ipv6 rcvd Rcvd total
Ipv6 sent
Show ipv6 traffic display description
Ipv6 icmp input Input
Checksum errors
Input interface for the messages
Prohibited messages received by the interface
Ipv6 icmp output
Clear ipv6 traffic
Ping ipv6
Repeat 5 timeout 2 seconds
Ipv6 neighbor
Ipv6 nd dad attempts
Show ipv6 neighbors 60-26mac-address-table static
Syntax Ipv6 nd dad attempts count no ipv6 nd dad attempts
Ipv6 nd ns interval 60-25 show ipv6 neighbors
Milliseconds is used for neighbor discovery operations
Ipv6 nd ns interval
Show ipv6 neighbors
Syntax Show ipv6 neighbors vlan vlan-id ipv6-address
Show ipv6 neighbors display description Field Description
Show ipv6 neighbors display description
Clear ipv6 neighbors
60 IPv6 Interface Commands 60-28
Switch Cluster Commands Function Mode
Switch Cluster Commands
Syntax No cluster Default Setting
Cluster
Syntax No cluster commander Default Setting
Cluster commander
Cluster ip-pool
Syntax Cluster ip-pool ip-addressno cluster ip-pool
No Members
Cluster member
Syntax Rcommand id member-id
Rcommand
Member-id- The ID number of the Member switch. Range
This command shows the switch clustering configuration
This command shows the current switch cluster members
Show cluster members
Show cluster candidates
Switch Cluster Commands 61-6
Section IVAppendices
Appendices
Software Features
Appendix a Software Specifications
Groups 1, 2, 3, 9 Statistics, History, Alarm, Event
Management Features
Standards
Icmp RFC Igmp RFC
Management Information Bases a
Management Information Bases
Software Specifications
Problems Accessing the Management Interface
Appendix B Troubleshooting
Table B-1 Troubleshooting Chart
Symptom Action
Using System Logs
Glossary
Access Control List ACL
See Generic Attribute Registration Protocol
Extended Universal Identifier EUI
Defines frame extensions for Vlan tagging
Ieee 802.1Q
See Port Trunk
IP Precedence
See Ieee
Port Mirroring
TCP/IP protocol commonly used for software downloads
Secure Shell SSH
User Datagram Protocol UDP
Glossary Glossary-8
Numerics
Index
Index-2
Index-3
Index-4
Page
ES4524D ES4548D E112006-CS-R01 149100030400A
