ACL Troubleshooting Help | Accton Technology ES4710BD guide

ES4710BD 10 Slots L2/L3/L4 Chassis Switch

Command mode: Admin Mode

Usage Guide:

Example:

Switch#show firewall

Firewall Status: Enable.

Firewall Default Rule: Permit.

Displayed information	Explanation
Firewall Status: Enable.	Enables packet filtering function
Firewall Default Rule: Permit.	The default action for packet filtering is
	“permit”

12.4.2 ACL Troubleshooting Help

&Checking for entries in the ACL is done in a top-down order and ends whenever an entry is matched.

&Default rule will be used only if no ACL is bound to the specific direction of the port, or no ACL entry is matched.

&Applies to IP packets incoming on all ports, and has no effect on other types of packets.

&One port can bound to only one incoming ACL.

&The number of ACLs that can be successfully bound depends on the content of the ACL bound and the hardware resource limit. Users will be prompted if an ACL cannot be bound due to hardware resource limitation.

&If an access list contains same filtering information but conflicting action rules, binding to the port will fail with an error message. For instance, configuring “permit tcp any-source any-destination” and ”deny tcp any-source any-destination” at the same time is not permitted.

&Viruses such as “worm.blaster” can be blocked by configuring ACL to block certain ICMP packets.

12.5WEB MANAGEMENT

By clicking the ACL configuration icon, it will open up the ACL sub-sections which include the following parts:

zNumeric ACL Configuration – Standard and Extended types

zACL Name Configuration – Standard and Extended types

zFilter Configuration -- enable global configuration and the default action to bind ACL to the ports

278

Page 279

Image 279

Accton Technology ES4710BD manual ACL Troubleshooting Help, Command mode Admin Mode Usage Guide Example

Contents

ES4710BD Slots L2/L3/L4 Chassis Switch User’s Guide Preface Content Chapter Hardware Installation Chapter Setup Configuration Main Module Front Panel Basic Switch Configuration Configuring Switch Ipaddresses Switch Upgrade Chapter Device Management Port Configuration MAC Table Configuration MAC Address Function Extension Chapter Vlan Configuration Mstp Configuration Mstp Example Chapter ACL Configuration Chapter Port Channel Configuration Chapter Dhcp Configuration Sntp Configuration Commands 15.4 IP Forwarding Route Table 18.2.4 Ospf 404 18.4.1 445 Chapter Multicast Protocol Configuration 19.5 501 802.1X Configuration Vrrp Configuration 21.4.10 Configure Authentication String For Vrrp 546 Product Brief Product OverviewIntroduction Features „ QoS „ IEEE802.1x Access Authentication„ Layer 3 Forwarding „ Layer 3 Routing Protocols Main Features „ MIB Library Technical specifications„ Protocols and Standards „ Management Protocols and Methods Physical Specifications Hardware ComponentsChassis Board Rack Power Supply Ventilation and Cooling SystemIntroduction to ES4710BD cards Front Panel Front Panel IndicatorPanel Symbol Status Description 2.1 EM4710BD-AGENT Property Specification Front Panel Console PortFront Panel Management Port Front Panel Swap Button Front Panel Reset ButtonPanel Status Description Symbol 2.2 EM4700BD-12GT-RJ45 Port Type Specification Front Panel Port Description2.3 EM4700BD-12GX-SFP EM4700BD-12GX-SFP Front Panel view 2.4 EM4700BD-2XG-XENPAK Xenpak Panel Status Description Indicator Symbol 2.5 EM-7600-ES and EM-7600-ES-2GB SFP 3 EM4710BD-AC and EM-7608-DC Power Distribution Box 3.1 EM4710BD-AC Alternating Current Power Module3.2 EM-7608-DC Direct Current Power Module Power module Front Panel System Backplane Fan TrayDust Gauze Side Panels Rear Panel Flash System Features Hot Line Work Safety Guidelines Safety InformationHardware Installation Safety Warning ES4710BD 10 Slots L2/L3/L4 Chassis Switch Site Requirements Temperature and Humidity Requirements Dust and Particles Rack Configuration Preventing Electrostatic Discharge DamageAnti-interference Requirements Preparing for Installation Power Supply RequirementsChecking Switch Hardware Configuration and Accessories Hardware Installation Required Tools and UtilitiesItem No Part name Number Memo ES4710BD 10 Slots L2/L3/L4 Chassis Switch Switch Installation Desktop installation Installation StepsRack-mounting ES4710BD Wearing an ESD Wrist Strap Switch grounding Electromagnetic compliance grounding Card and module installationProper grounding Lightning protection grounding Removing and Installing the Cards Removing and installing the Dust GauzeRemoving and Installing the Fan Tray Removing and Installing Power Supply Modules Connecting to the console Connecting to the Management Port SFP transceiver installationXenpak transceiver installation Ethernet cable connection Power supply connectionConnection procedure for fibers are listed below Copper Cable/Fiber Cable Connection ES4710BD 10 Slots L2/L3/L4 Chassis Switch Setup Configuration Setup ConfigurationMain Setup Menu Configuring Vlan1 Interface Setup Submenu Configuring switch hostname Telnet Server Configuration 器的状 Configuring Web Server Configuring Snmp 配置 Traps 主机 IP 地址和 Exiting Setup Configuration Mode Device Name Description Switch ManagementManagement Options Out-of-band Management Type a name for opening HyperTerminal, such as Switch 5The HyperTerminal window appears SWITCH# Management via Telnet In-band Management Connect with Ethernet cable Telnet-user user password 07 password Switch#config SwitchConfig#telnet-user test password 0 test Management Interface Managing the Switch through ECview Configuration Modes User ModeCLI Interface Admin Mode Global ModeInterface Mode ACL Mode Vlan ModeDhcp Address Pool Mode Route Mode Cmdtxt variable enum1 … enumN option Configuration SyntaxShortcut Key Support Extended Returned Information success Returned Information errorHelp function Input verification Web Management Main Fuzzy match support Module Front Panel Enable Basic Switch Configuration CommandsBasic Switch Configuration Config Exec timeout Enable password Exit HelpIp host Set default HostnameReload Write Maintenance and Debug CommandsSetup Language Telnet Introduction to Telnet Password Telnet Task SequenceIp-addr Telnet Commands MonitorTelnet Telnet-server enable Telnet-server securityipTelnet-user Show Related command ip hostCommand show clock Traceroute Show debugging Show flashShow history Show memory Show running-configCommand show memory Command show running-config Command show switchport interface ethernet interface-list Show startup-configShow switchport interface Command show startup-config Show telnet login Show tcpShow udp Show telnet user Show versionDebug No ip address ipaddress mask Configuring Switch IP AddressesConfiguring Switch IP Addresses Task Sequence Secondary Command deletes Commands for Configuring Switch IP Addresses Ip address Ip bootp-client enableCommand ip bootp-client enable no ip bootp-client enable Configuring Snmp Ip dhcp-client enableIntroduction to Snmp Introduction to MIB Introduction to Rmon Configuring Snmp Snmp Configuration Task Sequence Host-addr Snmp Configuration CommandsRmon Snmp-server community Snmp-server enable traps Snmp-server enable Snmp-server securityip Typical Snmp Configuration ExamplesCommand snmp-server host host-addr community-string Snmp-server host Snmp Troubleshooting Help Monitor and Debug Commands Command show snmpShow snmp Total number of Snmp packet inputs Command show snmp status Show snmp statusSystem name Debug snmp packet Switch UpgradeSnmp Troubleshooting Help Command debug snmp packet no debug snmp packet Step BootROM Upgrade 192.168.1.66 Other commands in BootROM mode 2 FTP/TFTP Upgrade Introduction to FTP/TFTP 124 2.2.1 FTP/TFTP Configuration Task Sequence 2.2 FTP/TFTP Configuration Dir ftpServerUrl Copy source-url destination-url ascii Interval 2.2.2 FTP/TFTP Configuration Commands Copy（FTP）Command copy source-urldestination-urlascii binary Number Ftp server ip address Related command writeCommand dir ftp-server-url 2.2.4 dir Command ftp-server timeout seconds Ftp-server enableFtp-server timeout Related command ip ftp Copy（TFTP） Ip ftp Related command tftp-server timeout Tftp-server enable Command tftp-server transmission-timeout seconds 2.3 FTP/TFTP Configuration ExamplesTftp-server transmission-timeout Command tftp-server retransmission-number number 133 134 135 Command show ftp 2.4 FTP/TFTP Troubleshooting HelpMonitor and Debug Commands Show ftp FTP Configuration FTP Troubleshooting Help Show tftp Command show tftp Tftp Troubleshooting Help Basicconfig Switch basic configuration Configure exec timeout Snmp configurationSnmp manager configuration Configure IP address of Snmp manager Trap manager configuration Snmp statistics Rmon and trap configuration Switch upgrade Tftp client configurationTftp server configuration FTP server configuration FTP client configuration Maintenance and debug command Show vlan port property Debug command Others Basic introduction to switch Switch on-off information Switch MaintenanceWeb server user configuration Reboot with the default configuration Exit current web configurationSave current running-config Reboot Telnet security IP Show slot Device Management ConfigurationDevice Management Brief Device Management Parameters N/A Show fan Command show fanShow power Command show power Debug devsm Card Hot-Swap OperationCard Hot-Insertion Card Hot-Remove Active-Standby Alternation Configuration Recover Rules Show slot Reset specific module Show power Show fanShow module in slot Introduction to Port Port Configuration No name Port ConfigurationNames or cancels the name of specified ports Name string Bandwidth Ethernet Port Configuration Commands Combo-forced-mode Flow control Command flow control no flow control Interface ethernet Loopback1.2.6 mdi Negotiation Command name string no nameCommand negotiation onoff Name Command shutdown no shutdown Rate-suppressionShutdown Speed-duplex Enter Vlan Mode Ip address Vlan Interface Configuration CommandsVlan-id command Interface vlan Enter the network management port configuration mode Duplex Network Management Port Configuration Commands Command interface ethernet interface-name Port Mirroring Configuration Introduction to Port Mirroring Command speed auto force10 force100Speed Port Mirroring Configuration Task Sequence Port Mirroring ConfigurationMonitor session source interface Monitor session destination interface Device Mirroring Troubleshooting HelpMonitor and Debug Commands Show monitor Port Mirroring Examples Device Mirroring Troubleshooting Help Port Configuration Example Port Troubleshooting Help Monitor and Debug Commands Clear countersPort-channel-number interface-name Show interface Port Troubleshooting Help Ethernet port configuration Physical port configurationBandwidth control Allocate IP address for L3 port Vlan interface configuration Mirror configuration 2.2 L3 port IP addr mode configuration Show port information Port debug and maintenance Introduction to MAC Table MAC Table Configuration PC1 PC2 PC3 PC4 Obtaining MAC Table Forward or Filter Interface-name MAC Table ConfigurationMac-address-table aging-time Mac-address-table static Mac-address-table blackhole Typical Configuration Examples Command show mac-address-table aging-time Troubleshooting Help Troubleshooting Help Show mac-address-table staticShow mac-address-table blackhole MAC Address Function Extension MAC Address Binding ConfigurationMAC Address Binding Configuration Task Sequence Enable MAC address binding function for the ports Mac-address Switchport port-security mac-addressNo switchport port-security Mac-address Command deletes static secure MAC address Switchport port-security convert Switchport port-security lockCommand switchport port-security convert Switchport port-security mac-address Switchport port-security timeout Clear port-security dynamic Switchport port-security maximum Mac Address Binding Troubleshooting Help Switchport port-security violationCommand show port-security Show port-security interface Command show port-security interface interface-id Show port-security address Command show port-security address interface interface-id Mac address table configuration Unicast address configurationMAC Address Binding Troubleshooting Help MAC address query Delete unicast address Show MAC address table Lock port Enable port MAC-BindingEnable port MAC-Binding Lock port Enable port security timeout Binding MACClearing port MAC MAC binding attribution configuration Maximum port security IP number configurationPort violation mode Show MAC binding security address MAC binding debug Introduction to Vlan Vlan Configuration Name vlan-name Vlan ConfigurationVlan Configuration Task Sequence Vlan vlan-id Vlan Configuration Commands Name Switchport access vlanCommand name vlan-nameno name Command mode Vlan Mode Command switchport mode trunkaccess Switchport interfaceSwitchport mode Switchport trunk allowed vlan Switchport trunk native vlan Vlan ingress disableCommand vlan ingress disable no vlan ingress disable Typical Vlan Application Configuration Configuration description Switch B Switch a Gvrp Configuration Task Sequence Gvrp Configuration Garp timer leave Gvrp Commands Garp timer join Command gvrp no gvrp Garp timer holdGarp timer leaveall Command garp timer hold timer-valueno garp timer hold Typical Gvrp Application Global Gvrp Vlan Troubleshooting Help Command show vlan brief summary id vlan-id name vlan-nameMonitor and Debug Information Show vlan Show garp Show gvrpDebug gvrp Vlan Troubleshooting Help Create/remove VlanVID allocation VID attribution configuration Allocate port for VlanAllocate port for Vlan Set port modetrunk/access Port type configuration Vlan setting for trunk port Trunk port configuration Enable/Disable Vlan ingress rule Vlan setting for access portSet allow Vlan Disable Vlan ingress rule Gvrp configurationEnable global Gvrp Enable port Gvrp Vlan debug and maintenance Introduction to Mstp Mstp Configuration MST field operation Mstp field Port role MST inter-field operation Mstp configuration task sequence Mstp Configuration Mapping between a Vlan and Instance Creates a Instance and configuresInstance instance-id vlan vlan-list No instance instance-id vlan vlan-list Introduction to Mstp configuration commands Abort Command abortInstance vlan Revision-level Command name name no name Spanning-tree hello-time Command spanning-tree no spanning-treeSpanning-tree Spanning-tree forward-time Spanning-tree maxage Spanning-tree link-type p2p Command spanning-tree mcheck Spanning-tree max-hopSpanning-tree mcheck Spanning-tree mst configuration Spanning-tree mode Spanning-tree mst port-priority Spanning-tree mst cost Command spanning-tree portfast no spanning-tree portfast Spanning-tree mst prioritySpanning-tree portfast SW4 Mstp Example Switch SW2 Configurations adjustment Switch SW4 Switch SW3 Instance0 topology after Mstp change Monitor and Debug Command Show spanning-tree Mstp Troubleshooting Help FWD Mstr Ext.RootPathCost Bridge informationInstance Information Root Id Show mst-pending Show mst configurationCommand show spanning-tree mst config Command show mst-pending Mstp Troubleshooting Help Command debug spanning-tree no debug spanning-treeDebug spanning-tree Revision level control Instance configurationMstp field operation Field operation Mstp mode Edge port settingPort priority setting Port route cost setting Mstp global control Set switch to spanning tree mode Set the max age time for Bpdu information in the switch Mstp field information Show Mstp setting Instance information Introduction to Igmp Snooping Igmp Snooping ConfigurationIgmp Snooping Configuration Igmp Snooping Configuration Task Igmp Snooping Configuration Command Ip igmp snooping Ip igmp snooping vlan mrouter Ip igmp snooping vlan No ip igmp snooping vlan vlan-idstatic multicast-ip-addr Ip igmp snooping vlan staticIp igmp snooping vlan immediate-leave Ip igmp snooping vlan query Ip igmp snooping vlan query robustness Ip igmp snooping vlan query intervalIp igmp snooping vlan query max-response-time Igmp Snooping Example Configuration steps are listed below Multicast Configuration Igmp Snooping listening resultScenario 2. Igmp Query Igmp Snooping Troubleshooting Help Monitor and Debug Commands Show ip igmp snoopingCommand show ip igmp snooping vlan vlan-id 259 260 Debug igmp snooping Command show mac-address-table multicast vlan vlan-idCommand debug ip igmp snooping no debug ip igmp snooping Show mac-address-table multicast Turning on the Igmp snooping function Igmp Snooping Troubleshooting Help Query configuration Snooping configurationConfiguration display Igmp snooping display Igmp snooping static multicast configuration 265 Access list Action and Global Default Action ACL ConfigurationAccess list Access-group ACL Configuration Task Sequence ACL configuration DIpAddr Icmp-type SMaskSIpAddr DIpAddr DMask Tos DIpAddr Icmp-type Icmp-code Host-source sIpAddr dIpAddr dMask Port the no ip access-group name ACL Configuration Commands Access-listextended Firewall Access liststandardFirewall default Command firewall enable disable Command firewall default permit deny Ip access extendedIp access standard Ip access-group Permit denyextended ACL Example Permit denystandardScenario Command show access lists numacl-name ACL Troubleshooting HelpACL Debug and Monitor Commands Show access lists Configuration result Parameters N/A Default N/A Show access-groupCommand show access-group interface name Command show firewall Command mode Admin Mode Usage Guide Example ACL Troubleshooting Help Numeric standard ACL configuration Configure the numeric extended ACLDelete numeric IP ACL 280 281 Firewall configuration Configure extended ACL name configuration ACL port binding Introduction to Port Channel Port Channel Configuration Port Channel Configuration Task Sequence Port Channel Configuration No port-groupport-group-number Port Channel Configuration Commands Port-groupPort-group mode Their mode Interface port-channel Command port-group port-group-numbermode activepassiveonCommand interface port-channel port-channel-number Command mode Global Mode Default Port Channel Example Scenario 1 Configuring Port Channel in Lacp Switch2 Config-If-Port-Channel2# Monitor and Debug Commands Show port-group Port Channel Troubleshooting Help 291 Machine state and port state of the port are as follows 293 Debug lacp Command debug lacp no debug lacp Lacp port group configuration Port Channel Troubleshooting Help Display port member Lacp port configuration Introduction to Dhcp Dhcp Configuration Dhcp Server Configuration Dhcp Sever Configuration Task SequenceNetwork-number High-address Bootfile filenameMber｝ Option code ascii string hex hex Dhcp Server Configuration Commands Bootfile Client-identifierClient-identifierunique-identifier Client-name Default-routerCommand default-routeraddress1address2…address8 Command dns-serveraddress1address2…address8 Host Command host address mask prefix-lengthDomain-name Hardware-address Ip dhcp excluded-address Related command hardware-address, client-identifierRelated command clear ip dhcp conflict Ip dhcp conflict logging Loghost dhcp Command ip dhcp pool name no ip dhcp pool nameCommand loghost dhcp ip-address port no loghost dhcp Ip dhcp pool Netbios-name-server Netbios-node-typeCommand lease days hoursminutes infinite no lease Next-server Command network-addressnetwork-number mask prefix-lengthCommand next-serveraddress1address2…address8 Network-address Dhcp Relay Configuration Service dhcpCommand service dhcp no service dhcp Enable Dhcp relay Dhcp Relay Configuration Task Sequence Ip dhcp relay information policy drop Dhcp Relay Configuration Command Ip forward-protocol udpDrop Information policy drop command allows Ip helper-address Ip dhcp relay information policy drop Dhcp Configuration Example 311 312 Dhcp Troubleshooting Help Monitor and Debug Commands Clear ip dhcp bindingClear ip dhcp conflict Show ip dhcp binding Command clear ip dhcp server statisticsRelated command show ip dhcp server statistics Clear ip dhcp server statistics Show ip dhcp server statistics Command show ip dhcp conflictCommand show ip dhcp server statistics Show ip dhcp conflict Dhcpforward Debug ip dhcp server Web management Dhcp Troubleshooting HelpDhcp server configuration Enable Dhcp Address pool configuration Client dns server configuration Client’s default gateway configuration Dhcp file server address configuration Client wins server configuration Dhcp network parameter configuration Excluded address configuration Manual address pool configuration Dhcp packet statistics Dhcp relay configuration Delete binding log Dhcp debugging Show conflict-logging Delete conflict logDelete Dhcp server statistics log Show IP-Mac binding Sntp Configuration Sntp polltime Sntp Configuration CommandsCommand sntp timezone name add subtract timedifference Sntp server Typical Sntp Configuration Examples Debug sntp Sntp Troubleshooting HelpMonitor and Debug Commands Show sntp SNMP/NTP server configuration Request interval configuration Time differenceShow Snmp QoS Configuration Introduction to QoSQoS Terms Basic QoS Model QoS Implementation Ingress actions Finish Star Start QoS Configuration Task Sequence QoS Configuration Ip-precedence-list vlan vlan-list Class-mapclass-map-nameNo class-mapclass-map-name Dscp-list No policy-mappolicy-map-name No class class-map-name commandAggregate-policer-name command Policy-mappolicy-map-name Policy-map-name Policy-map-name output Weight3 weight4 weight5 weight6 weight7Weight8 Policy-map-name Qos map cos-dscp dscp-cos QoS Configuration Commands Mls qosClass-map Match Class Command policy-map policy-map-nameCommand class class-map-nameno class class-map-name Policy-map Police 16.2.2.6 set No mls qos aggregate-policer aggregate-policer-name Mls qos aggregate-policer Parameters aggregate-policer-name is the policy set name Default No trust Command mode Interface ModePolice aggregate Mls qos trust Mls qos cos Service-policyCommand mls qos cos default-cos no mls qos cos Command mode Interface Mode Usage Guide Priority-queue out Command priority-queue out no priority-queue outMls qos dscp-mutation Wrr-queue bandwidth Parameters Default CoS-to-Egress-Queue Map when QoS is EnabledWrr-queue cos-map Mls qos map QoS Example SWITCH#CONFIG Scenario QoS domain Parameters N/A Default N/A Command mode Admin Mode QoS Troubleshooting HelpQoS Debug and Monitor Commands Show mls-qos Command show mls-qos Show mls qos interface WFQ Show mls qos maps Show policy-map Command show class-map class-map-nameCommand show policy-map policy-map-name Show class-map Enable QoS QoS Troubleshooting Help 16.5.2.1 Add/Remove class-Map Class-map configuration 16.5.3.1 Add/Remove policy-map Policy-map priority configuration Policy-map bandwidth configuration Apply aggregate policy 16.5.3.4 Add/Remove aggregate policy Apply QoS to port Port trust mode configuration Port default CoS configuration Apply policy-map to portApply Dscp mutation mapping Egress-queue WRR weight configuration Egress-queue configuration Mapping CoS values to egress queue Egress-queue Work mode configuration CoS-to-DSCP mapping QoS mapping configuration Dscp mutation mapping DSCP-to-CoS mapping Dscp mark down mapping IP-precedence-to-DSCP mapping Create Layer 3 Interface L3 Forward ConfigurationLayer 3 Interface Introduction to Layer 3 Interface Introduction to IP Forwarding Layer 3 Interface Configuration CommandsCommand interface vlan vlan-idno interface vlan vlan-id IP Forwarding IP Route Aggregation Configuration Command Ip fib optimizeShow ip traffic Fragmented, 0 couldnt fragment, 0 fragment sent 17.3 ARP Introduction to ARPDebug ip packet Ipaddress Macaddress ARP configuration ARP Configuration Task SequenceARP Forwarding Configuration Commands 17.3.2.2.1 Arp Command ip proxy-arp no ip proxy-arp Ip proxy-arpShow arp Example： Command debug arp no debug arpClear arp-cache Debug arp ARP configuration ARP Troubleshooting Help17.4.1 L3 port configuration IP route aggregation configuration Show ARP Configure static ARPProxy ARP configuration Clear ARP Route Table Routing Protocol Configuration Introduction to Static Route Static Route Introduction to Default Route Static Route Configuration CommandsIp route Show ip route Configuration Scenario Troubleshooting Help Monitor and Debug Commands Introduction to RIP 18.3 RIP 385 No router rip RIP Configuration RIP Configuration Task SequenceEnable RIP Configure RIP protocol parameters Value Update Invalid Name-of-chainHolddown No ip rip output RIP Configuration CommandsDisable RIP No ip rip input Default-metric Ip rip authentication key-chainAuto-summary Command ip rip metricin value no ip rip metricin Ip rip authentication modeRelated command ip rip authentication Related command ip rip authentication key-chain Ip rip receive version Ip rip metricoutIp rip input Ip rip output Ip rip send version Ip rip workIp split-horizon Rip broadcast Command rip broadcast no rip broadcastCommand rip checkzero no rip checkzero Redistribute Router rip Timer basicCommand timer basic update invalid holddown Rip preference Show ip protocols Command version 1 2 no versionCommand show ip protocols Version V12 Command show ip ripShow ip rip Vlan4 Debug ip rip packet Command debug ip rip packet no debug ip rip packet Debug ip rip send Command debug ip rip recv no debug ip rip recvCommand debug ip rip send no debug ip rip send Debug ip rip recv Vl an2 Typical RIP Scenario 401 No debug ip rip recv RIP Troubleshooting HelpShow ip rip No debug ip rip packet （2）show ip route Total route items is 2, the matched route items is（3）show ip protocols RIP Troubleshooting OspfIntroduction to Ospf 405 406 Configuration Task Sequence Ospf Configuration Keyid Router id routeridScope the no network network mask area Authkey Metric costvalue Routerid Ospf Configuration Commands Default redistribute cost Default redistribute interval Default redistribute limitDefault redistribute tag Ip ospf cost Default redistribute typeIp ospf authentication Command ip ospf cost cost no ip ospf cost Ip ospf dead-interval Ospf enable areaCommand ip ospf dead-interval time no ip ospf dead-interval Command ip ospf enable area areaid no ip ospf enable area Ip ospf priority Related command ip ospf dead-intervalCommand ip ospf priority priority no ip ospf priority Ip ospf passive-interface No network network mask area areaid Ip ospf transmit-delayIp ospf retransmit-interval Network No redistribute ospfase bgp connected static rip Command preference ase preference no preference asePreference Redistribute ospfase Router ospf Command router id routerid no router idCommand router ospf no router ospf Router id Show ip ospf Command stub cost cost area areaid no stub area areaidStub cost Virtuallink neighborid Command show ip ospf Command show ip ospf aseShow ip ospf ase Show ip ospf cumulative Command show ip ospf cumulative Lsrtr 3 Lsnet 3 Lssumnet Lssumasb Lsase Show ip ospf database RouteTag Show ip ospf interface Command show ip ospf interface interface Show ip ospf neighbor Command show ip ospf neighbor Show ip ospf virtual-links Command show ip ospf routingCommand show ip ospf virtual-links Show ip ospf routing Switch#show ip ospf virtual-links no virtual-link Debug ip ospf event Debug ip ospf lsaDebug ip ospf packet Command debug ip ospf spf no debug ip ospf spf Typical Ospf ScenarioDebug ip ospf spf 430 431 Typical complex Ospf autonomous system 433 434 435 Monitor and Debugging Commands Ospf Troubleshooting Help （1）show ip ospf Example （4）show ip ospf cumulative （3）show ip ospf ase （5）show ip ospf database Cost Checksum Router ID 11.11.2.1 （6）show ip ospf interface （7）show ip ospf neighbor （8）show ip ospf routing （9）show ip ospf virtual-links（10）show ip protocols Ase perference=150 Static route configuration RIP configurationStatic route RIP configuration Enable RIP Enable port to receive/transmit RIP packetRIP parameter configuration Enable imported route RIP imported route Metricin/out configuration Global RIP configuration Ospf Set RIP timerEnable Ospf protocol Enable/Disable Ospf protocol Ospf network range configuration Router-ID configuration Configure Ospf area for port Ospf TX-parameter configurationConfigure Ospf authentication parameter configuration Sending packet cost configuration Passive interface configuration Ospf imported route parameter configuration Imported route parameter configurationImport external routing information Other parameter configuration Ospf priority configurationOspf Stub area and default route cost configuration Ospf virtual link configuration Port DR priority configurationOspf debug Display routing table Multicast Address Multicast protocol ConfigurationMulticast Protocol Overview Introduction to Multicast IP Multicast Packets Forwarding Show ip mroute Common Multicast ConfigurationsCommon Multicast Configuration Commands Application of Multicast Incoming interfaces Introduction to PIM-DM PIM-DM Interval PIM-DM Configuration PIM-DM Configuration Task SequencePIM-DM Configuration Commands Ip pim dense-mode Typical PIM-DM Scenario Ip pim query-interval PIM-DM Troubleshooting Help Show ip pim mroute dm Command show ip pim mroute dm Show ip pim interface Command show ip pim neighbor ifnameCommand show ip pim interface ifname Show ip pim neighbor Command debug ip pim Parameters N/A Default Disabled Command mode Admin ModeDebug ip pim PIM-SM Introduction to PIM-SM PIM-SM Configuration PIM-SM Configuration Task Sequence PIM-SM Configuration Commands Ip pim sparse-modeHashlength Priority Ip pim query-interval Command ip pim sparse-mode no ip pim sparse-modeCommand ip pim bsr-border no ip pim bsr-border Ip pim bsr-border Ip pim rp-candidate Ip pim bsr-candidate Typical PIM-SM Scenario PIM-SM Troubleshooting Help Monitor and Debug Commands Command show ip pim bsr-routerShow ip pim bsr-router Show ip pim interface Command show ip pim mroute sm Show ip pim mroute smShow ip pim neighbor Command show ip pim rp mapping group-address Show ip pim rpDebug ip pim PIM-SM Troubleshooting Command debug ip pim bsrDebug ip pim bsr Introduction to Dvmrp Dvmrp Enable Dvmrp Dvmrp configuration Configuration Task Sequence C.D Metricval Dvmrp Configuration Commands Ip dvmrp graft-interval Ip dvmrp enableCommand ip dvmrp enable no ip dvmrp enable Ip dvmrp cisco-compatible Ip dvmrp nbr-timeout Command ip dvmrp metric metricval no ip dvmrp metricIp dvmrp metric Ip dvmrp route-timeout Ip dvmrp probe-intervalIp dvmrp report-interval Ip dvmrp tunnel Typical Dvmrp Scenario Dvmrp Troubleshooting Help Command show ip dvmrp mrouteShow ip dvmrp mroute Show ip dvmrp route Command show ip dvmrp neighbor ifnameCommand show ip dvmrp route Show ip dvmrp neighbor Show ip dvmrp tunnel Command show ip dvmrp tunnel ifname Debug ip dvmrp pruning Command debug ip dvmrp detailCommand debug ip dvmrp pruning no debug ip dvmrp pruning Debug ip dvmrp detail Dvmrp Troubleshooting IgmpIntroduction to Igmp Igmp configuration Configuration Task Sequence Aclname Enable IgmpIp dvmrp enable ip pim dense-mode Interface the no ip igmp access-group Timeval Igmp Configuration CommandsIgmp query interval No ip igmp query-interval Ip igmp access-group Ip igmp static-group commandIp igmp join-group Ip igmp query-timeout Ip igmp query-intervalIp igmp query-max-response-time Ip igmp version Command ip igmp version version no ip igmp versionTypical Igmp Scenario Ip igmp static-group Igmp Troubleshooting Help Command show ip igmp groups ifname groupaddrShow ip igmp groups Debug ip igmp event Command show ip igmp interface ifnameCommand debug ip igmp event Show ip igmp interface Igmp Troubleshooting Command debug ip igmp packetDebug ip igmp packet Multicast public monitor command PIM-DM configuration Enable PIM-DMPIM-DM parameter configuration PIM-SM configuration Enable PIM-SM PIM-SM parameter configurationSet interface as PIM-SM BSR border Dvmrp configuration Enable Dvmrp Set router as BSR candidateSet router as RP candidate Cisco-compatible configuration Dvmrp parameter configurationDvmrp global parameter configuration Igmp configuration Igmp additive parameter configuration Dvmrp tunnel configuration Multicast monitor configuration Show ip pim interface Igmp version configuration Show ip dvmrp mroute Show ip pim bsr-routerShow ip pim mroute sm Show ip pim rp Introduction to 802.1x Configuration 20.2 802.1x Configuration 20.2.1 802.1x Configuration Task SequenceEnable 802.1x function of the switch No aaa-accounting enable Aaa enableNo aaa enable Aaa-accounting enable Interface interface-name Seconds Minutes 20.2.2 802.1x Configuration Commands Aaa enableHost IPaddress port Host IPaddress 20.2.2.3 dot1x accept-mac Aaa-accounting enableCommand aaa-accounting enable no aaa-accounting enable Command mode Global Mode Default N/A Command dot1x eapor enable no dot1x eapor enable 20.2.2.4 dot1x eapor enable20.2.2.5 dot1x enable 20.2.2.6 dot1x privateclient enable 20.2.2.8 dot1x max-req 20.2.2.7 dot1x macfilter enableCommand dot1x macfilter enable no dot1x macfilter enable Command dot1x max-req count no dot1x max-req 20.2.2.11 dot1x port-method 20.2.2.12 dot1x re-authenticateCommand dot1x re-authenticate interface interface-name 20.2.2.10 dot1x port-control Command dot1x re-authentication no dot1x re-authentication 20.2.2.13 dot1x re-authentication20.2.2.14 dot1x timeout quiet-period 20.2.2.15 dot1x timeout re-authperiod Radius-server accounting host 20.2.2.16 dot1x timeout tx-period Radius-server dead-time Radius-server authentication host Radius-server timeout Radius-server keyRadius-server retransmit Radi us Ser v er 10 20.3 802.1x Application Example 20.4 802.1x Troubleshooting 2o.4.1 802.1x Debug and Monitor Commands Show aaa configCommand show aaa config Command show aaa authenticated-user Show aaa authenticated-user Show radius count Show aaa authenticating-userCommand show aaa authenticating-user Command show radius authencated-userauthencating-user count Show dot1x Command show dot1x interface interface-list Command debug aaa no debug aaa Command mode Admin Mode Parameters N/ADebug aaa 20.4.2 802.1x Troubleshooting Command debug dot1x no debug dot1xDebug dot1x Radius global configuration Radius client configuration Radius authentication configuration Radius accounting configuration 20.5.2 802.1X configuration20.5.2.1 802.1X configuration 20.5.2.2 802.1X port authentication configuration 20.5.2.4 802.1X port status list 20.5.2.3 802.1X port mac configuration 533 Introduction to Vrrp Vrrp Configuration 535 Virtual-ip Vrrp Configuration Commands Router vrrp Interface Commands virtual-ip A.B.C.D master backup no virtual-ipCommands interfaceIFNAME Vlan ID no interface Commands enable Commands disable DisableVrrp authentication mode Vrrp authentication string Priority Commands preempt-modetrue falseCommands priority value no priority Preempt Circuit-failover Advertisement-interval Typical Vrrp Scenario Vrrp Troubleshooting Help Debug vrrp Monitor and Debug Commands Show vrrpCommands show vrrp vrid Command mode All Modes Example Create Vrrp Number Vrrp Troubleshooting Help Activate Virtual Router Configure Vrrp Dummy IPConfigure Vrrp Port Configure Preemptive Mode For Vrrp Configure Authentication Mode For Vrrp Configure Vrrp priorityConfigure Vrrp Timer interval Configure Vrrp Interface Monitor Configure Authentication String For Vrrp

Accton Technology ES4710BD ACL Troubleshooting Help, Command mode Admin Mode Usage Guide Example

Models: ES4710BD