ACL Troubleshooting Help | Accton Technology ES4710BD specification

ES4710BD 10 Slots L2/L3/L4 Chassis Switch

Switch(Config-Ethernet1/10)#ip access-group 110 in

Switch(Config-Ethernet1/10)#exit

Switch(Config)#exit

Configuration result.:

Switch#show firewall Firewall Status: Enable. Firewall Default Rule: Permit. Switch#show access lists access list 110(used 1 time(s))

access list 110 deny tcp 10.0.0.0 0.0.0.255 any-destination d-port 21

Switch#show access-group interface ethernet 1/10 interface name:Ethernet1/10

the ingress acl use in firewall is 110.

12.4ACL Troubleshooting Help

12.4.1 ACL Debug and Monitor Commands

12.4.1.1show access lists

Command: show access lists [<num><acl-name>]

Function: Displays the access list configured.

Parameters: <acl-name>is the specified access list naming string; <num> is the specified access list number.

Default: N/A.

Command mode: Admin Mode

Usage Guide: When access list name is not specified, all access list will be displayed; used x time(s) indicates the number the ACL is referred to.

Example:

Switch#show access lists access list 10(used 0 time(s))

access list 10 deny any-source

access list 100(used 1 time(s))

access list 100 deny ip any-source any-destination access list 100 deny tcp any-source any-destination

276

Image 277

Accton Technology ES4710BD manual ACL Troubleshooting Help, ACL Debug and Monitor Commands Show access lists

Contents

ES4710BD Slots L2/L3/L4 Chassis Switch User’s Guide Preface Content Chapter Hardware Installation Chapter Setup Configuration Main Module Front Panel Basic Switch Configuration Configuring Switch Ipaddresses Switch Upgrade Chapter Device Management Port Configuration MAC Table Configuration MAC Address Function Extension Chapter Vlan Configuration Mstp Configuration Mstp Example Chapter ACL Configuration Chapter Port Channel Configuration Chapter Dhcp Configuration Sntp Configuration Commands 15.4 IP Forwarding Route Table 18.2.4 Ospf 404 18.4.1 445 Chapter Multicast Protocol Configuration 19.5 501 802.1X Configuration Vrrp Configuration 21.4.10 Configure Authentication String For Vrrp 546 Product Overview Product BriefIntroduction Features „ Layer 3 Forwarding „ IEEE802.1x Access Authentication„ Layer 3 Routing Protocols „ QoS Main Features „ Protocols and Standards Technical specifications„ Management Protocols and Methods „ MIB Library Hardware Components Physical SpecificationsChassis Board Rack Ventilation and Cooling System Power SupplyIntroduction to ES4710BD cards Panel Symbol Status Description Front Panel Indicator2.1 EM4710BD-AGENT Front Panel Front Panel Console Port Property SpecificationFront Panel Management Port Panel Status Description Symbol Front Panel Reset Button2.2 EM4700BD-12GT-RJ45 Front Panel Swap Button Front Panel Port Description Port Type Specification2.3 EM4700BD-12GX-SFP EM4700BD-12GX-SFP Front Panel view 2.4 EM4700BD-2XG-XENPAK Xenpak Panel Status Description Indicator Symbol 2.5 EM-7600-ES and EM-7600-ES-2GB SFP 3 EM4710BD-AC and EM-7608-DC 3.2 EM-7608-DC Direct Current Power Module 3.1 EM4710BD-AC Alternating Current Power ModulePower module Front Panel Power Distribution Box Fan Tray System BackplaneDust Gauze Side Panels Rear Panel Flash System Features Hardware Installation Safety InformationSafety Warning Hot Line Work Safety Guidelines ES4710BD 10 Slots L2/L3/L4 Chassis Switch Site Requirements Temperature and Humidity Requirements Dust and Particles Preventing Electrostatic Discharge Damage Rack ConfigurationAnti-interference Requirements Power Supply Requirements Preparing for InstallationChecking Switch Hardware Configuration and Accessories Required Tools and Utilities Hardware InstallationItem No Part name Number Memo ES4710BD 10 Slots L2/L3/L4 Chassis Switch Installation Steps Switch Installation Desktop installationRack-mounting ES4710BD Wearing an ESD Wrist Strap Switch grounding Proper grounding Card and module installationLightning protection grounding Electromagnetic compliance grounding Removing and installing the Dust Gauze Removing and Installing the CardsRemoving and Installing the Fan Tray Removing and Installing Power Supply Modules Connecting to the console SFP transceiver installation Connecting to the Management PortXenpak transceiver installation Connection procedure for fibers are listed below Power supply connectionCopper Cable/Fiber Cable Connection Ethernet cable connection ES4710BD 10 Slots L2/L3/L4 Chassis Switch Setup Configuration Setup ConfigurationMain Setup Menu Configuring Vlan1 Interface Setup Submenu Configuring switch hostname Telnet Server Configuration 器的状 Configuring Web Server Configuring Snmp 配置 Traps 主机 IP 地址和 Exiting Setup Configuration Mode Management Options Switch ManagementOut-of-band Management Device Name Description Type a name for opening HyperTerminal, such as Switch 5The HyperTerminal window appears SWITCH# Management via Telnet In-band Management Connect with Ethernet cable Telnet-user user password 07 password Switch#config SwitchConfig#telnet-user test password 0 test Management Interface Managing the Switch through ECview User Mode Configuration ModesCLI Interface Global Mode Admin ModeInterface Mode Dhcp Address Pool Mode Vlan ModeRoute Mode ACL Mode Shortcut Key Support Configuration SyntaxExtended Cmdtxt variable enum1 … enumN option Help function Returned Information errorInput verification Returned Information success Web Management Main Fuzzy match support Module Front Panel Basic Switch Configuration Basic Switch Configuration CommandsConfig Enable Exec timeout Enable password Help ExitIp host Hostname Set defaultReload Setup Maintenance and Debug CommandsLanguage Write Telnet Introduction to Telnet Telnet Task Sequence PasswordIp-addr Monitor Telnet CommandsTelnet Telnet-server securityip Telnet-server enableTelnet-user Command show clock Related command ip hostTraceroute Show Show flash Show debuggingShow history Command show memory Show running-configCommand show running-config Show memory Show switchport interface Show startup-configCommand show startup-config Command show switchport interface ethernet interface-list Show tcp Show telnet loginShow udp Show version Show telnet userDebug Configuring Switch IP Addresses Task Sequence Configuring Switch IP AddressesSecondary Command deletes No ip address ipaddress mask Ip bootp-client enable Commands for Configuring Switch IP Addresses Ip addressCommand ip bootp-client enable no ip bootp-client enable Ip dhcp-client enable Configuring SnmpIntroduction to Snmp Introduction to MIB Introduction to Rmon Configuring Snmp Snmp Configuration Task Sequence Rmon Snmp Configuration CommandsSnmp-server community Host-addr Snmp-server enable traps Snmp-server enable Command snmp-server host host-addr community-string Typical Snmp Configuration ExamplesSnmp-server host Snmp-server securityip Command show snmp Snmp Troubleshooting Help Monitor and Debug CommandsShow snmp Total number of Snmp packet inputs Show snmp status Command show snmp statusSystem name Snmp Troubleshooting Help Switch UpgradeCommand debug snmp packet no debug snmp packet Debug snmp packet Step BootROM Upgrade 192.168.1.66 Other commands in BootROM mode 2 FTP/TFTP Upgrade Introduction to FTP/TFTP 124 2.2.1 FTP/TFTP Configuration Task Sequence 2.2 FTP/TFTP Configuration Dir ftpServerUrl Copy source-url destination-url ascii Command copy source-urldestination-urlascii binary 2.2.2 FTP/TFTP Configuration Commands Copy（FTP）Number Interval Command dir ftp-server-url Related command write2.2.4 dir Ftp server ip address Ftp-server timeout Ftp-server enableRelated command ip ftp Command ftp-server timeout seconds Copy（TFTP） Ip ftp Related command tftp-server timeout Tftp-server enable Tftp-server transmission-timeout 2.3 FTP/TFTP Configuration ExamplesCommand tftp-server retransmission-number number Command tftp-server transmission-timeout seconds 133 134 135 Monitor and Debug Commands Show ftp 2.4 FTP/TFTP Troubleshooting HelpFTP Configuration Command show ftp FTP Troubleshooting Help Show tftp Command show tftp Tftp Troubleshooting Help Basicconfig Switch basic configuration Snmp configuration Configure exec timeoutSnmp manager configuration Configure IP address of Snmp manager Trap manager configuration Snmp statistics Rmon and trap configuration Tftp client configuration Switch upgradeTftp server configuration FTP server configuration FTP client configuration Maintenance and debug command Show vlan port property Debug command Others Basic introduction to switch Switch Maintenance Switch on-off informationWeb server user configuration Save current running-config Exit current web configurationReboot Reboot with the default configuration Telnet security IP Device Management Brief Device Management ConfigurationDevice Management Show slot Show power Show fan Command show fanCommand show power Parameters N/A Card Hot-Insertion Card Hot-Swap OperationCard Hot-Remove Debug devsm Active-Standby Alternation Configuration Recover Rules Show slot Reset specific module Show fan Show powerShow module in slot Introduction to Port Port Configuration Names or cancels the name of specified ports Port ConfigurationName string No name Bandwidth Ethernet Port Configuration Commands Combo-forced-mode Flow control Command flow control no flow control Loopback Interface ethernet1.2.6 mdi Command negotiation onoff Command name string no nameName Negotiation Rate-suppression Command shutdown no shutdownShutdown Speed-duplex Enter Vlan Mode Vlan-id command Vlan Interface Configuration CommandsInterface vlan Ip address Enter the network management port configuration mode Duplex Network Management Port Configuration Commands Command interface ethernet interface-name Command speed auto force10 force100 Port Mirroring Configuration Introduction to Port MirroringSpeed Port Mirroring Configuration Port Mirroring Configuration Task SequenceMonitor session source interface Monitor and Debug Commands Show monitor Device Mirroring Troubleshooting HelpPort Mirroring Examples Monitor session destination interface Device Mirroring Troubleshooting Help Port Configuration Example Monitor and Debug Commands Clear counters Port Troubleshooting HelpPort-channel-number interface-name Show interface Port Troubleshooting Help Physical port configuration Ethernet port configurationBandwidth control Allocate IP address for L3 port Vlan interface configuration Mirror configuration 2.2 L3 port IP addr mode configuration Show port information Port debug and maintenance Introduction to MAC Table MAC Table Configuration PC1 PC2 PC3 PC4 Obtaining MAC Table Forward or Filter Mac-address-table aging-time MAC Table ConfigurationMac-address-table static Interface-name Mac-address-table blackhole Typical Configuration Examples Command show mac-address-table aging-time Troubleshooting Help Show mac-address-table static Troubleshooting HelpShow mac-address-table blackhole MAC Address Binding Configuration Task Sequence MAC Address Binding ConfigurationEnable MAC address binding function for the ports MAC Address Function Extension No switchport port-security Mac-address Switchport port-security mac-addressCommand deletes static secure MAC address Mac-address Switchport port-security lock Switchport port-security convertCommand switchport port-security convert Switchport port-security mac-address Switchport port-security timeout Clear port-security dynamic Switchport port-security maximum Switchport port-security violation Mac Address Binding Troubleshooting HelpCommand show port-security Show port-security interface Command show port-security interface interface-id Show port-security address Command show port-security address interface interface-id Unicast address configuration Mac address table configurationMAC Address Binding Troubleshooting Help MAC address query Delete unicast address Show MAC address table Enable port MAC-Binding Enable port MAC-BindingLock port Lock port Binding MAC Enable port security timeoutClearing port MAC Maximum port security IP number configuration MAC binding attribution configurationPort violation mode Show MAC binding security address MAC binding debug Introduction to Vlan Vlan Configuration Vlan Configuration Task Sequence Vlan ConfigurationVlan vlan-id Name vlan-name Vlan Configuration Commands Command name vlan-nameno name Switchport access vlanCommand mode Vlan Mode Name Switchport mode Switchport interfaceSwitchport trunk allowed vlan Command switchport mode trunkaccess Vlan ingress disable Switchport trunk native vlanCommand vlan ingress disable no vlan ingress disable Typical Vlan Application Configuration Configuration description Switch B Switch a Gvrp Configuration Task Sequence Gvrp Configuration Garp timer leave Gvrp Commands Garp timer join Garp timer leaveall Garp timer holdCommand garp timer hold timer-valueno garp timer hold Command gvrp no gvrp Typical Gvrp Application Global Gvrp Command show vlan brief summary id vlan-id name vlan-name Vlan Troubleshooting HelpMonitor and Debug Information Show vlan Show gvrp Show garpDebug gvrp Create/remove Vlan Vlan Troubleshooting HelpVID allocation Allocate port for Vlan VID attribution configurationAllocate port for Vlan Set port modetrunk/access Port type configuration Vlan setting for trunk port Trunk port configuration Vlan setting for access port Enable/Disable Vlan ingress ruleSet allow Vlan Enable global Gvrp Gvrp configurationEnable port Gvrp Disable Vlan ingress rule Vlan debug and maintenance Introduction to Mstp Mstp Configuration MST field operation Mstp field Port role MST inter-field operation Mstp configuration task sequence Mstp Configuration Instance instance-id vlan vlan-list Creates a Instance and configuresNo instance instance-id vlan vlan-list Mapping between a Vlan and Instance Command abort Introduction to Mstp configuration commands AbortInstance vlan Revision-level Command name name no name Spanning-tree Command spanning-tree no spanning-treeSpanning-tree forward-time Spanning-tree hello-time Spanning-tree maxage Spanning-tree link-type p2p Spanning-tree max-hop Command spanning-tree mcheckSpanning-tree mcheck Spanning-tree mst configuration Spanning-tree mode Spanning-tree mst port-priority Spanning-tree mst cost Spanning-tree mst priority Command spanning-tree portfast no spanning-tree portfastSpanning-tree portfast SW4 Mstp Example Switch SW2 Configurations adjustment Switch SW4 Switch SW3 Instance0 topology after Mstp change Monitor and Debug Command Show spanning-tree Mstp Troubleshooting Help FWD Mstr Instance Information Bridge informationRoot Id Ext.RootPathCost Command show spanning-tree mst config Show mst configurationCommand show mst-pending Show mst-pending Command debug spanning-tree no debug spanning-tree Mstp Troubleshooting HelpDebug spanning-tree Mstp field operation Instance configurationField operation Revision level control Port priority setting Edge port settingPort route cost setting Mstp mode Mstp global control Set switch to spanning tree mode Set the max age time for Bpdu information in the switch Mstp field information Show Mstp setting Instance information Igmp Snooping Configuration Igmp Snooping ConfigurationIgmp Snooping Configuration Task Introduction to Igmp Snooping Igmp Snooping Configuration Command Ip igmp snooping Ip igmp snooping vlan mrouter Ip igmp snooping vlan Ip igmp snooping vlan immediate-leave Ip igmp snooping vlan staticIp igmp snooping vlan query No ip igmp snooping vlan vlan-idstatic multicast-ip-addr Ip igmp snooping vlan query interval Ip igmp snooping vlan query robustnessIp igmp snooping vlan query max-response-time Igmp Snooping Example Configuration steps are listed below Igmp Snooping listening result Multicast ConfigurationScenario 2. Igmp Query Monitor and Debug Commands Show ip igmp snooping Igmp Snooping Troubleshooting HelpCommand show ip igmp snooping vlan vlan-id 259 260 Command debug ip igmp snooping no debug ip igmp snooping Command show mac-address-table multicast vlan vlan-idShow mac-address-table multicast Debug igmp snooping Turning on the Igmp snooping function Igmp Snooping Troubleshooting Help Snooping configuration Query configurationConfiguration display Igmp snooping display Igmp snooping static multicast configuration 265 Access list ACL ConfigurationAccess-group Access list Action and Global Default Action ACL Configuration Task Sequence ACL configuration SIpAddr SMaskDIpAddr DMask DIpAddr Icmp-type Tos DIpAddr Icmp-type Icmp-code Host-source sIpAddr dIpAddr dMask Port the no ip access-group name ACL Configuration Commands Access-listextended Firewall default Access liststandardCommand firewall enable disable Firewall Ip access standard Ip access extendedIp access-group Command firewall default permit deny Permit denyextended Permit denystandard ACL ExampleScenario ACL Debug and Monitor Commands Show access lists ACL Troubleshooting HelpConfiguration result Command show access lists numacl-name Command show access-group interface name Show access-groupCommand show firewall Parameters N/A Default N/A Command mode Admin Mode Usage Guide Example ACL Troubleshooting Help Configure the numeric extended ACL Numeric standard ACL configurationDelete numeric IP ACL 280 281 Firewall configuration Configure extended ACL name configuration ACL port binding Introduction to Port Channel Port Channel Configuration Port Channel Configuration Task Sequence Port Channel Configuration Port-group mode Port Channel Configuration Commands Port-groupTheir mode No port-groupport-group-number Command interface port-channel port-channel-number Command port-group port-group-numbermode activepassiveonCommand mode Global Mode Default Interface port-channel Port Channel Example Scenario 1 Configuring Port Channel in Lacp Switch2 Config-If-Port-Channel2# Monitor and Debug Commands Show port-group Port Channel Troubleshooting Help 291 Machine state and port state of the port are as follows 293 Debug lacp Command debug lacp no debug lacp Lacp port group configuration Port Channel Troubleshooting Help Display port member Lacp port configuration Introduction to Dhcp Dhcp Configuration Dhcp Sever Configuration Task Sequence Dhcp Server ConfigurationNetwork-number Mber｝ Bootfile filenameOption code ascii string hex hex High-address Client-identifier Dhcp Server Configuration Commands BootfileClient-identifierunique-identifier Command default-routeraddress1address2…address8 Default-routerCommand dns-serveraddress1address2…address8 Client-name Domain-name Command host address mask prefix-lengthHardware-address Host Related command clear ip dhcp conflict Related command hardware-address, client-identifierIp dhcp conflict logging Ip dhcp excluded-address Command loghost dhcp ip-address port no loghost dhcp Command ip dhcp pool name no ip dhcp pool nameIp dhcp pool Loghost dhcp Netbios-node-type Netbios-name-serverCommand lease days hoursminutes infinite no lease Command next-serveraddress1address2…address8 Command network-addressnetwork-number mask prefix-lengthNetwork-address Next-server Service dhcp Dhcp Relay ConfigurationCommand service dhcp no service dhcp Enable Dhcp relay Dhcp Relay Configuration Task Sequence Drop Information policy drop command allows Dhcp Relay Configuration Command Ip forward-protocol udpIp helper-address Ip dhcp relay information policy drop Ip dhcp relay information policy drop Dhcp Configuration Example 311 312 Monitor and Debug Commands Clear ip dhcp binding Dhcp Troubleshooting HelpClear ip dhcp conflict Related command show ip dhcp server statistics Command clear ip dhcp server statisticsClear ip dhcp server statistics Show ip dhcp binding Command show ip dhcp server statistics Command show ip dhcp conflictShow ip dhcp conflict Show ip dhcp server statistics Dhcpforward Debug ip dhcp server Dhcp server configuration Dhcp Troubleshooting HelpEnable Dhcp Web management Address pool configuration Client dns server configuration Client’s default gateway configuration Dhcp file server address configuration Client wins server configuration Dhcp network parameter configuration Excluded address configuration Manual address pool configuration Dhcp packet statistics Dhcp relay configuration Delete binding log Dhcp debugging Delete Dhcp server statistics log Delete conflict logShow IP-Mac binding Show conflict-logging Sntp Configuration Command sntp timezone name add subtract timedifference Sntp Configuration CommandsSntp server Sntp polltime Typical Sntp Configuration Examples Monitor and Debug Commands Show sntp Sntp Troubleshooting HelpSNMP/NTP server configuration Debug sntp Time difference Request interval configurationShow Snmp Introduction to QoS QoS ConfigurationQoS Terms Basic QoS Model QoS Implementation Ingress actions Finish Star Start QoS Configuration Task Sequence QoS Configuration No class-mapclass-map-name Class-mapclass-map-nameDscp-list Ip-precedence-list vlan vlan-list Aggregate-policer-name command No class class-map-name commandPolicy-mappolicy-map-name No policy-mappolicy-map-name Weight8 Weight3 weight4 weight5 weight6 weight7Policy-map-name Policy-map-name Policy-map-name output Class-map QoS Configuration Commands Mls qosMatch Qos map cos-dscp dscp-cos Command class class-map-nameno class class-map-name Command policy-map policy-map-namePolicy-map Class Police 16.2.2.6 set No mls qos aggregate-policer aggregate-policer-name Mls qos aggregate-policer Police aggregate Default No trust Command mode Interface ModeMls qos trust Parameters aggregate-policer-name is the policy set name Command mls qos cos default-cos no mls qos cos Service-policyCommand mode Interface Mode Usage Guide Mls qos cos Mls qos dscp-mutation Command priority-queue out no priority-queue outWrr-queue bandwidth Priority-queue out Wrr-queue cos-map Default CoS-to-Egress-Queue Map when QoS is EnabledMls qos map Parameters QoS Example SWITCH#CONFIG Scenario QoS domain QoS Debug and Monitor Commands Show mls-qos QoS Troubleshooting HelpCommand show mls-qos Parameters N/A Default N/A Command mode Admin Mode Show mls qos interface WFQ Show mls qos maps Command show policy-map policy-map-name Command show class-map class-map-nameShow class-map Show policy-map Enable QoS QoS Troubleshooting Help 16.5.2.1 Add/Remove class-Map Class-map configuration 16.5.3.1 Add/Remove policy-map Policy-map priority configuration Policy-map bandwidth configuration Apply aggregate policy 16.5.3.4 Add/Remove aggregate policy Apply QoS to port Port trust mode configuration Apply policy-map to port Port default CoS configurationApply Dscp mutation mapping Egress-queue WRR weight configuration Egress-queue configuration Mapping CoS values to egress queue Egress-queue Work mode configuration CoS-to-DSCP mapping QoS mapping configuration Dscp mutation mapping DSCP-to-CoS mapping Dscp mark down mapping IP-precedence-to-DSCP mapping Layer 3 Interface L3 Forward ConfigurationIntroduction to Layer 3 Interface Create Layer 3 Interface Command interface vlan vlan-idno interface vlan vlan-id Layer 3 Interface Configuration CommandsIP Forwarding Introduction to IP Forwarding Ip fib optimize IP Route Aggregation Configuration CommandShow ip traffic Fragmented, 0 couldnt fragment, 0 fragment sent Introduction to ARP 17.3 ARPDebug ip packet ARP Forwarding Configuration Commands ARP configuration ARP Configuration Task Sequence17.3.2.2.1 Arp Ipaddress Macaddress Ip proxy-arp Command ip proxy-arp no ip proxy-arpShow arp Clear arp-cache Command debug arp no debug arpDebug arp Example： 17.4.1 L3 port configuration ARP Troubleshooting HelpIP route aggregation configuration ARP configuration Proxy ARP configuration Configure static ARPClear ARP Show ARP Route Table Routing Protocol Configuration Introduction to Static Route Static Route Static Route Configuration Commands Introduction to Default RouteIp route Show ip route Configuration Scenario Troubleshooting Help Monitor and Debug Commands Introduction to RIP 18.3 RIP 385 Enable RIP RIP Configuration RIP Configuration Task SequenceConfigure RIP protocol parameters No router rip Value Name-of-chain Update InvalidHolddown Disable RIP RIP Configuration CommandsNo ip rip input No ip rip output Ip rip authentication key-chain Default-metricAuto-summary Related command ip rip authentication Ip rip authentication modeRelated command ip rip authentication key-chain Command ip rip metricin value no ip rip metricin Ip rip input Ip rip metricoutIp rip output Ip rip receive version Ip rip work Ip rip send versionIp split-horizon Command rip checkzero no rip checkzero Command rip broadcast no rip broadcastRedistribute Rip broadcast Command timer basic update invalid holddown Timer basicRip preference Router rip Command show ip protocols Command version 1 2 no versionVersion Show ip protocols Show ip rip Command show ip ripVlan4 V12 Debug ip rip packet Command debug ip rip packet no debug ip rip packet Command debug ip rip send no debug ip rip send Command debug ip rip recv no debug ip rip recvDebug ip rip recv Debug ip rip send Vl an2 Typical RIP Scenario 401 Show ip rip RIP Troubleshooting HelpNo debug ip rip packet No debug ip rip recv Total route items is 2, the matched route items is （2）show ip route（3）show ip protocols Ospf RIP TroubleshootingIntroduction to Ospf 405 406 Configuration Task Sequence Ospf Configuration Scope the no network network mask area Router id routeridAuthkey Keyid Metric costvalue Routerid Ospf Configuration Commands Default redistribute cost Default redistribute limit Default redistribute intervalDefault redistribute tag Ip ospf authentication Default redistribute typeCommand ip ospf cost cost no ip ospf cost Ip ospf cost Command ip ospf dead-interval time no ip ospf dead-interval Ospf enable areaCommand ip ospf enable area areaid no ip ospf enable area Ip ospf dead-interval Command ip ospf priority priority no ip ospf priority Related command ip ospf dead-intervalIp ospf passive-interface Ip ospf priority Ip ospf retransmit-interval Ip ospf transmit-delayNetwork No network network mask area areaid Preference Command preference ase preference no preference aseRedistribute ospfase No redistribute ospfase bgp connected static rip Command router ospf no router ospf Command router id routerid no router idRouter id Router ospf Stub cost Command stub cost cost area areaid no stub area areaidVirtuallink neighborid Show ip ospf Command show ip ospf ase Command show ip ospfShow ip ospf ase Show ip ospf cumulative Command show ip ospf cumulative Lsrtr 3 Lsnet 3 Lssumnet Lssumasb Lsase Show ip ospf database RouteTag Show ip ospf interface Command show ip ospf interface interface Show ip ospf neighbor Command show ip ospf neighbor Command show ip ospf virtual-links Command show ip ospf routingShow ip ospf routing Show ip ospf virtual-links Switch#show ip ospf virtual-links no virtual-link Debug ip ospf lsa Debug ip ospf eventDebug ip ospf packet Typical Ospf Scenario Command debug ip ospf spf no debug ip ospf spfDebug ip ospf spf 430 431 Typical complex Ospf autonomous system 433 434 435 Monitor and Debugging Commands Ospf Troubleshooting Help （1）show ip ospf Example （4）show ip ospf cumulative （3）show ip ospf ase （5）show ip ospf database Cost Checksum Router ID 11.11.2.1 （6）show ip ospf interface （7）show ip ospf neighbor （9）show ip ospf virtual-links （8）show ip ospf routing（10）show ip protocols Ase perference=150 RIP configuration Static route configurationStatic route Enable port to receive/transmit RIP packet RIP configuration Enable RIPRIP parameter configuration Enable imported route RIP imported route Metricin/out configuration Global RIP configuration Enable Ospf protocol Set RIP timerEnable/Disable Ospf protocol Ospf Ospf network range configuration Router-ID configuration Ospf TX-parameter configuration Configure Ospf area for portConfigure Ospf authentication parameter configuration Sending packet cost configuration Passive interface configuration Imported route parameter configuration Ospf imported route parameter configurationImport external routing information Ospf priority configuration Other parameter configurationOspf Stub area and default route cost configuration Port DR priority configuration Ospf virtual link configurationOspf debug Display routing table Multicast Protocol Overview Multicast protocol ConfigurationIntroduction to Multicast Multicast Address IP Multicast Packets Forwarding Common Multicast Configuration Commands Common Multicast ConfigurationsApplication of Multicast Show ip mroute Incoming interfaces Introduction to PIM-DM PIM-DM PIM-DM Configuration Commands PIM-DM Configuration PIM-DM Configuration Task SequenceIp pim dense-mode Interval Typical PIM-DM Scenario Ip pim query-interval PIM-DM Troubleshooting Help Show ip pim mroute dm Command show ip pim mroute dm Command show ip pim interface ifname Command show ip pim neighbor ifnameShow ip pim neighbor Show ip pim interface Parameters N/A Default Disabled Command mode Admin Mode Command debug ip pimDebug ip pim PIM-SM Introduction to PIM-SM PIM-SM Configuration PIM-SM Configuration Task Sequence Ip pim sparse-mode PIM-SM Configuration CommandsHashlength Priority Command ip pim bsr-border no ip pim bsr-border Command ip pim sparse-mode no ip pim sparse-modeIp pim bsr-border Ip pim query-interval Ip pim rp-candidate Ip pim bsr-candidate Typical PIM-SM Scenario Command show ip pim bsr-router PIM-SM Troubleshooting Help Monitor and Debug CommandsShow ip pim bsr-router Show ip pim interface Show ip pim mroute sm Command show ip pim mroute smShow ip pim neighbor Show ip pim rp Command show ip pim rp mapping group-addressDebug ip pim Command debug ip pim bsr PIM-SM TroubleshootingDebug ip pim bsr Introduction to Dvmrp Dvmrp Enable Dvmrp Dvmrp configuration Configuration Task Sequence C.D Metricval Dvmrp Configuration Commands Command ip dvmrp enable no ip dvmrp enable Ip dvmrp enableIp dvmrp cisco-compatible Ip dvmrp graft-interval Command ip dvmrp metric metricval no ip dvmrp metric Ip dvmrp nbr-timeoutIp dvmrp metric Ip dvmrp probe-interval Ip dvmrp route-timeoutIp dvmrp report-interval Ip dvmrp tunnel Typical Dvmrp Scenario Command show ip dvmrp mroute Dvmrp Troubleshooting HelpShow ip dvmrp mroute Command show ip dvmrp route Command show ip dvmrp neighbor ifnameShow ip dvmrp neighbor Show ip dvmrp route Show ip dvmrp tunnel Command show ip dvmrp tunnel ifname Command debug ip dvmrp pruning no debug ip dvmrp pruning Command debug ip dvmrp detailDebug ip dvmrp detail Debug ip dvmrp pruning Igmp Dvmrp TroubleshootingIntroduction to Igmp Igmp configuration Configuration Task Sequence Ip dvmrp enable ip pim dense-mode Enable IgmpInterface the no ip igmp access-group Aclname Igmp query interval Igmp Configuration CommandsNo ip igmp query-interval Timeval Ip igmp static-group command Ip igmp access-groupIp igmp join-group Ip igmp query-interval Ip igmp query-timeoutIp igmp query-max-response-time Typical Igmp Scenario Command ip igmp version version no ip igmp versionIp igmp static-group Ip igmp version Command show ip igmp groups ifname groupaddr Igmp Troubleshooting HelpShow ip igmp groups Command debug ip igmp event Command show ip igmp interface ifnameShow ip igmp interface Debug ip igmp event Command debug ip igmp packet Igmp TroubleshootingDebug ip igmp packet PIM-DM configuration Enable PIM-DM Multicast public monitor commandPIM-DM parameter configuration PIM-SM parameter configuration PIM-SM configuration Enable PIM-SMSet interface as PIM-SM BSR border Set router as BSR candidate Dvmrp configuration Enable DvmrpSet router as RP candidate Dvmrp parameter configuration Cisco-compatible configurationDvmrp global parameter configuration Igmp configuration Igmp additive parameter configuration Dvmrp tunnel configuration Multicast monitor configuration Show ip pim interface Igmp version configuration Show ip pim mroute sm Show ip pim bsr-routerShow ip pim rp Show ip dvmrp mroute Introduction to 802.1x Configuration 20.2.1 802.1x Configuration Task Sequence 20.2 802.1x ConfigurationEnable 802.1x function of the switch No aaa enable Aaa enableAaa-accounting enable No aaa-accounting enable Interface interface-name Seconds Host IPaddress port 20.2.2 802.1x Configuration Commands Aaa enableHost IPaddress Minutes Command aaa-accounting enable no aaa-accounting enable Aaa-accounting enableCommand mode Global Mode Default N/A 20.2.2.3 dot1x accept-mac 20.2.2.5 dot1x enable 20.2.2.4 dot1x eapor enable20.2.2.6 dot1x privateclient enable Command dot1x eapor enable no dot1x eapor enable Command dot1x macfilter enable no dot1x macfilter enable 20.2.2.7 dot1x macfilter enableCommand dot1x max-req count no dot1x max-req 20.2.2.8 dot1x max-req Command dot1x re-authenticate interface interface-name 20.2.2.12 dot1x re-authenticate20.2.2.10 dot1x port-control 20.2.2.11 dot1x port-method 20.2.2.14 dot1x timeout quiet-period 20.2.2.13 dot1x re-authentication20.2.2.15 dot1x timeout re-authperiod Command dot1x re-authentication no dot1x re-authentication Radius-server accounting host 20.2.2.16 dot1x timeout tx-period Radius-server dead-time Radius-server authentication host Radius-server key Radius-server timeoutRadius-server retransmit Radi us Ser v er 10 20.3 802.1x Application Example 2o.4.1 802.1x Debug and Monitor Commands Show aaa config 20.4 802.1x TroubleshootingCommand show aaa config Command show aaa authenticated-user Show aaa authenticated-user Command show aaa authenticating-user Show aaa authenticating-userCommand show radius authencated-userauthencating-user count Show radius count Show dot1x Command show dot1x interface interface-list Command mode Admin Mode Parameters N/A Command debug aaa no debug aaaDebug aaa Command debug dot1x no debug dot1x 20.4.2 802.1x TroubleshootingDebug dot1x Radius global configuration Radius client configuration Radius authentication configuration 20.5.2 802.1X configuration Radius accounting configuration20.5.2.1 802.1X configuration 20.5.2.2 802.1X port authentication configuration 20.5.2.4 802.1X port status list 20.5.2.3 802.1X port mac configuration 533 Introduction to Vrrp Vrrp Configuration 535 Virtual-ip Vrrp Configuration Commands Router vrrp Commands interfaceIFNAME Vlan ID no interface Commands virtual-ip A.B.C.D master backup no virtual-ipCommands enable Interface Vrrp authentication mode DisableVrrp authentication string Commands disable Commands priority value no priority Commands preempt-modetrue falsePreempt Priority Circuit-failover Advertisement-interval Typical Vrrp Scenario Vrrp Troubleshooting Help Commands show vrrp vrid Monitor and Debug Commands Show vrrpCommand mode All Modes Example Debug vrrp Create Vrrp Number Vrrp Troubleshooting Help Configure Vrrp Port Configure Vrrp Dummy IPConfigure Preemptive Mode For Vrrp Activate Virtual Router Configure Vrrp Timer interval Configure Vrrp priorityConfigure Vrrp Interface Monitor Configure Authentication Mode For Vrrp Configure Authentication String For Vrrp