Ip access-group, Deny, Permit 192.168.10.10 | Avaya 106760804

	Policy

ip access-group
Command Mode	Global Configuration
Description	Enables an access control list (ACL) and optionally sets the default action to
	deny.

CAUTION:

Syntax

The default-action-denyoption is a global setting and is not available in the Web Agent. If you use the CLI to enable the default-action-denyoption and then use the Web Agent to enable a different ACL, the default-action- deny option remains enabled. When this option is enabled, the switch blocks all traffic that does not match an access rule in the enabled ACL.

Do not use the Web Agent to enable a different ACL if the default- action-deny option is enabled. Because the option remains enabled, you can unexpectedly lose connectivity to the switch.

To ensure that you never inadvertently lose all connectivity to the switch, you can add an access rule that always permits a specific connection. You must add the rule to all ACLs on the switch, though, so that regardless of the ACL that is enabled, the default-action-denyoption does not block the connection.

For example, to ensure that you can always connect to the switch from a PC that has an IP address of 192.168.10.10, add the following access rule to all ACLs on the switch: ip access-list<access-list- name> <access-list-index>

permit 192.168.10.10 0.0.0.0.

The no form of this command disables the access control list. The default action is by default set to permit.

To Enable:	ip access-group <access-list-name>[default-action-deny]

To	[no] ip access-group <access-list-name>
Disable:

Document No. 10-300090, Issue 1

20-9

Image 423

Avaya 106760804 manual Ip access-group, Deny, Permit 192.168.10.10

Contents

Software Version Page Table of Contents Buffering Hunt Groups Intelligent Multicast Document No -300090, Issue Vii IP-RIP Layer 3 Forwarding Cache Logging Policy Power Cool RAM Series QoS SSH Switch Fabric Temperatures User Interface Vrrp Command Mode Summaries Main Command Mode SummariesMode Description To Access Prompt Routerprotocol # Entering and Exiting the Command ModesEntering and Exiting the Command Modes Mode To Access Prompt Displayed To Exit Command Description Example Basic FunctionsBasic Functions Keys Function Command Syntax ConventionsConvention Description History Buffer Key Sequence Accessing the CLI Using Telnet Accessing the CLI Chapter Overview AFT Name Definition Configure# clear aft instance invalid-learned-entries vlanClear aft instance invalid-learned-entries vlan Parameters, Keywords, Arguments Clear aft instance learned-entries vlan Configure# clear aft instance learned-entries vlan Configure# set aft agetime Set aft agetimeAge-time-value Configure# set aft auto-sizing-threshold Set aft auto-sizing-thresholdThreshold-value To Configure Set aft entryTo Delete Entry-priority Enter Da-priority aft Set aft instance vlan auto-increment Set aft instance vlan hash-table-size Value Configure# set aft super-agetimeSet aft super-agetime Super-age-time Show aft config Show aft config Show aft entry Show aft entry Vlan Show aft instance10. Parameters, Keywords, Arguments Show aft instance Appletalk Config-ifserial0#appletalk access-group Appletalk access-groupTo Enable To Disable Appletalk access-list Configuration# no appletalk access-list Name Definition Appletalk address Config-ifserial0#appletalk admin-state down Appletalk admin-state Sample Output Appletalk cable-range Syntax Appletalk echo To Restore Default Config-ifserial0#appletalk mac-format ethv2Appletalk mac-format Appletalk routing Appletalk static cable-range Adams Configure# appletalk static cable-range 110-120 to 1.5 zone Appletalk vlan Appletalk zone 11. Parameters, Keywords, Arguments Clear appletalk arp Network Config# clear appletalk routeClear appletalk route 12. Parameters, Keywords, Arguments Clear appletalk traffic 13. Parameters, Keywords, Arguments Ping appletalk Show appletalk access-list Show appletalk access-lists Show appletalk arp 14. Parameters, Keywords, ArgumentsShow appletalk arp Show appletalk globals Show appletalk globals Interface Show appletalk interface15. Parameters, Keywords, Arguments Show appletalk interface brief jerry Show appletalk nbp Show appletalk nbp Starting-range Show appletalk route16. Parameters, Keywords, Arguments Show appletalk route Starting Show appletalk static cable-range17. Parameters, Keywords, Arguments Show appletalk static cable-range Show appletalk traffic Show appletalk traffic Show appletalk zone 18. Parameters, Keywords, ArgumentsShow appletalk zone Zone1 Chapter Buffering Set buffering fabric-port age-timer Fabric-portSpec Set buffering fabric-port hipri-alloc AllocFabric-port-spec Service-ratio 9999-to-1 Set buffering fabric-port hipri-service-ratio Set buffering fabric-port pri-threshold Set buffering port age-timer Set buffering port hipri-alloc Set buffering port hipri-service-ratio 15-to-1Mod-port-spec Set buffering port pri-threshold Show buffering fabric-port 4/1-4/10 Show buffering fabric-port Show buffering port 6/19 Show buffering port Chapter Console Set console baud Configure# set console baud Set console databits Configure# set console databits Set console flowcontrol Configure# set console flowcontrol none Set console initcmd Configure# set console initcmd AT&D0S0=1 Set console parity Configure# set console parity even Set console stopbits Configure# set console stopbits Set console transfer ppp Configure# set console transfer ppp Set console type Configure# set console type ppp Show console Show console DNS Ip domain-lookup Configure# ip domain-lookup Ip name-server Configure# ip name-server Ip domain-list Configure# ip domain-list avaya.com Ip domain-name Configure# ip domain-name avaya.com Show host Dvmrp Ip dvmrp Config-ifboston#ip dvmrp interface-metric Ip dvmrp interface-metricDvmrp interface metric Ip dvmrp interface type Config-ifboston#ip dvmrp interface type IPIPTunnel Ip dvmrp min-route-flash-update To RestoreDefault Ip dvmrp neighbor-probe-interval Ip dvmrp neighbor-timeout Ip dvmrp prune-message-lifetime Configure if1# ip dvmrp remote-tunnel-address Ip dvmrp remote-tunnel-addressInterface Thousand, five hundred Ip dvmrp route-limit Ip dvmrp stats-reset Ip dvmrp timers basic Ip multicast prune-source Configure if1# ip multicast prune-source host-addr Only outbound broadcasts are accepted Ip multicast ttl-threshold Router dvmrp Show ip dvmrp Show ip dvmrp For ip address 20.0.4.0 and mask Show ip dvmrp designated forwarders Neighbor routers for ip address 20.0.4.0 and mask Show ip dvmrp downstream dependent routers Show ip dvmrp forwarding cache Show ip dvmrp forwarding cache Show ip dvmrp interface Show ip dvmrp interface Show ip dvmrp interface neighbors Show ip dvmrp interface neighbors Show ip dvmrp routes Show ip dvmrp routes Hunt Groups Set huntgroup Set huntgroup auto-flush Configure# set huntgroup hg1 redistribute Set huntgroup redistributeHuntgroup-name Configure# set huntgroup internal-error-shutdown enable Set huntgroup internal-error-shutdown Show huntgroup Show huntgroup Show huntgroup detailed Show huntgroup detailed Configure# show huntgroup internal-error-config Show huntgroup internal-error-config Igmp Ip igmp Interface labelled Boston to Config-ifboston#ip igmp max-groupsIp igmp max-groups Following example sets the maximum number of Igmp groups on Ip igmp process-leaves Config-ifboston#ip igmp process-leaves Ip igmp querier Config-ifboston#ip igmp querier-timeout Ip igmp querier-timeout Ip igmp query-interval Ip igmp query-max-response-time Config-ifboston#ip igmp query-timeout Ip igmp query-timeout Ip igmp robustness Ip igmp version Ip mtrace Ip mtrace Destination Mtrace# mtrace 10.0.2.129 10.0.4.177 Source Router igmp Configure# no router igmp Show ip igmp groups Show ip igmp groups Show ip igmp interface Show ip igmp interface Show ip igmp statistics Show ip igmp statistics Chapter Intelligent Multicast Chapter Clear cgmp statistics Configure# clear cgmp statistics Clear igmp-snooping statistics Configure# clear igmp snooping statistics Clear intelligent-multicast client-port Session-idPort All VLANs bound to port 3/4 Clear intelligent-multicast router-port Clear intelligent-multicast session Configure# clear intelligent-multicast session Mac-address Clear intelligent-multicast static-client-portVlan all port 3/2 Group-address All Clear intelligent-multicast static-session Clear lgmp client statistics Configure# clear lgmp client statistics Clear lgmp server statistics Configure# clear lgmp server statistics Set cgmp Configure# set cgmp enable Set igmp-snooping Configure# set igmp-snooping enable Set intelligent-multicast Configure# set intelligent-multicast enable Set intelligent-multicast client-leave-processing Set intelligent-multicast client-port-pruning Minutes Set intelligent-multicast client-port-pruning time Following example adds a multicast router port Set intelligent-multicast router-port Set intelligent-multicast router-port-pruning Set intelligent-multicast router-port-pruning time Set intelligent-multicast session-pruning Configure# set intelligent-multicast session-pruning disable Set intelligent-multicast session-pruning time Configure# set intelligent-multicast session-pruning time Configure# set intelligent-multicast static-client-port Set intelligent-multicast static-client-portVlan 4 port 3/11 Vlan name adams Set intelligent-multicast static-session Set lgmp client Configure# set lgmp client enable Set lgmp server Configure# set lgmp server disable Set lgmp server priority Set lgmp server proxy Configure# set lgmp server proxy enable Configure# set lgmp server router-report-time Set lgmp server router-report-timeRrt-seconds Configure# set lgmp server robust-variable Set lgmp server robust-variableRv-val Show cgmp statistics Show cgmp statistics Show igmp-snooping statistics Show igmp-snooping statistics Show intelligent-multicast client-port 19. Parameters, Keywords, ArgumentsShow intelligent-multicast client-port Show intelligent-multicast configuration Show intelligent-multicast configuration Show intelligent-multicast router-port Show intelligent-multicast router-port Show intelligent-multicast session 20. Parameters, Keywords, ArgumentsShow intelligent-multicast session Show intelligent-multicast static-client 21. Parameters, Keywords, ArgumentsShow intelligent-multicast static-client 225.1.1.2 vlan all Show intelligent-multicast static-session Show intelligent-multicast static-session Show lgmp client 22. Parameters, Keywords, ArgumentsShow lgmp client statistics Show lgmp server 23. Parameters, Keywords, ArgumentShow lgmp server statistics 11 IP Chapter Document No -300090, Issue 11-3 To Create Arp Arp timeout Clear arp-cache Configure# clear arp-cache Clear ip route Remote-ip-address Clear tcpLocal-ip-address Local-tcp-port Interface Ip address To AssignTo Remove Ip admin-state Ip bootp-dhcp agent-info Ip bootp-dhcp circuit-info Ip bootp-dhcp relay Address Add an entry Ip bootp-dhcp serverIP address of the BOOTP/DHCP server for which you want to To Add Default gateway Configure# ip default-gateway Ip default-gateway Ip directed broadcast Config-ifboston#ip directed-broadcast Command removes the domain name Document No -300090, Issue 11-19 Ip domain-name Configure# ip http port Ip http10. Keywords, Arguments, and Options Ip irdp Ip irdp holdtime Irdp maxadvertinterval Ip irdp minadverinterval Ip irdp multicast Ip irdp preference Ip mac-format Ip max-arp-entries Configure# ip max-route-entries Ip max-route-entriesRouting table as Ip multicast-routing Configure# ip multicast-routing Following example adds the DNS address Ip netbios-rebroadcast Ip netmask-format Configure# ip netmask-format bitcount Ip proxy-arp Configure# ip proxy-arp-default-route Ip proxy-arp-default-route Ip proxy-arp-limit Configure# ip proxy-arp-limit Ip redirects Configure# ip reset-stats Ip reset-stats Ip route Configure# ip route 10.10.10.1 255.255.0.0 10.15.1.1 low Ip route-preference Configure# ip route-preference rip Ip routing Ip routing-mode Config-ifboston#ip routing-mode Mgmtonly P580 and P882 Ip short-lived23. Keywords, Arguments, and Options Keyword, Argument, or Definition Option Ip source-route Configure# no ip source-route Seconds Configure# ip telnet inactivity-period Ip telnet inactivity-period24. Parameters, Keywords, Arguments Configure# ip telnet port Ip telnet25. Parameters, Keywords, Arguments Ip vlan 26. Parameters, Keywords, ArgumentsVlan-id ID of the Vlan Vlan-name Name of the Vlan 27. Parameters, Keywords, Arguments Ping Redistributes Routes to RedistributeTo Redistribute Routes to To Delete an Entry that 28. Parameters, Keywords, Arguments Access-list Ip-addr Show arp29. Parameters, Keywords, Arguments Show arp Show hosts Show hosts Show ip arp 30. Parameters, Keywords, ArgumentsShow ip arp Interface-name Show ip interface31. Parameters, Keywords, Arguments Show ip interface boston Show ip irdp 32. Parameters, Keywords, ArgumentsShow ip irdp Show ip redistribute Show ip redistributeUser Displays IP redistribute list entries Show ip route 33. Parameters, Keywords, ArgumentsShow ip route static Show ip route summary Show ip short-lived Show ip traffic Show ip traffic Show tcp configuration Show tcp configuration Show tcp connections Show tcp statistics Displays TCP connection statisticsShow tcp statistics Show udp statistics IP-RIP Labeled boston to Default-metric To Clear Ip rip authentication key Ip rip authentication mode Ip rip default-route-mode Ip rip poison-reverse Config-ifboston#ip rip poison-reverse Ip rip receive version Config-ifboston#ip rip receive version Ip rip send version Config-ifboston#ip rip send version Ip rip send-receive-mode Config-ifboston#ip rip send-receive-mode listen-only Network Output-delay Router rip Timers basic Triggered updates Show ip rip statistics Show ip rip statistics Chapter 13 IPX Chapter Clear ipx route Configure# clear ipx route Service-name Clear ipx serviceConfigure# clear ipx service Service-type Config-ifboston# ipx advertise-default-route-only Ipx advertise-default-route-only Configure# ipx default-route Ipx default-route Ipx delay Ipx down Config-ifboston# ipx gns-reply-disable Ipx gns-reply-disable Ipx gns-response-delay Ipx network Config-ifboston#ipx network 2 encapsulation snap Ipx output-rip-delay Ipx output-sap-delay Ipx rip Ipx rip-filter Config-ifboston#ipx rip-filter 5 2 3 both allow 10000 Filter-ticksFilter-hops Ipx rip-max-packetsize Config-ifboston#ipx rip-max-packetsize Ipx rip-multiplier Configure Configure# ipx route 50 100.02e03b004563Ipx route Ipx router Ipx routing Ipx sap Ipx sap-max-packetsize Config-ifboston#ipx sap-max-packetsize Ipx sap-multiplier Ipx sap-name-filter Config-ifboston#ipx sap-name-filter 2 netbios 1 both allow Ipx sap-network-filter Config-ifboston#ipx sap-network-filter 1 3 2 both allow Ipx send-receive-mode Ipx send-triggered-updates Ipx service Following example adds a static service to the service table Ipx type-20-propagation Ipx update interval Ipx vlan Configure To Disable Show ipx cache Show ipx cache command Enter the show ipx interface command Show ipx interfaceIntf-name Show ipx rip statistics Show ipx rip-filter Show ipx route Show ipx route command Show ipx sap statistics Show ipx sap-name-filter Show ipx sap-network-filter Show ipx service command Show ipx service Show ipx traffic Show ipx traffic command Layer 3 Forwarding Cache Ip multicast route-cache aging Configure# ip multicast route-cache aging Ip multicast route-cache hash-mode Following example enables IP multicast route cache max size Entries Configure# ip multicast route-cache max-sizeIp multicast route-cache max-size Timeout-interval Ip multicast route-cache readd-timeout Configure# ip multicast route-cache readd-timeout Ip-multicast-period Ip multicast route-cache update-timeout Ip unicast route-cache aging Configure# ip unicast route-cache aging Configure To Restore Configure# ip unicast route-cache hash-mode da-onlyIp unicast route-cache hash-mode Ip unicast route-cache max-size 10000 Configure# ip unicast route-cache max-size Ip unicast route-cache update-timeout Command and sets it to 60 secondsConfigure# ip unicast route-cache update-timeout Ipx route-cache aging Configure# ipx route-cache aging disabled Ipx route-cache hash-mode Configure# ipx route-cache hash-mode sa-da Ipx route-cache max-size Configure# ipx route-cache max-size Configure# ipx route-cache update-timeout Ipx route-cache update-timeoutGlobal Configuration This command restores the default of 120 seconds Show ip multicast cache Show ip multicast cache Show ip unicast cache Show ip unicast cache Show ipx cache Ldap To Stop ErrorConfigure# ldap execution-option ignore-errors Ldap execution-option Ldap search-base Search base default is ou=Devices, ov=CajunRules, o=Avaya Ldap server primary Ldap server secondary Show ldap Show ldap Logging Logging clear Logging console Parameters, Keywords, Arguments Document No -300090, Issue 16-5 Syntax Logging history Document No -300090, Issue 16-7 Systems Logging history size Configure# logging history size Logging protocol event Configure# logging protocol event ldap fault Logging shutdown size Configure# logging shutdown size Logging traps Configure# logging traps switchfabric Set syslog Name Set syslog facility Logging Systems Set syslog serverip Set syslog severity Syslog Severity LevelsSeverity Level Description Show alarms Show alarms Show logging Show logging shutdownNum-events Show syslog buffer Show syslog config Module Reset-module Configure# reset-moduleMod-num Configure# set module name 3 MIS dept module Set module nameMod-name Mod-notes Set module notes Show module Show module Show module-inventory Show module inventory Nedr and Iedr For all ports in hunt groups Parameters, Keywords, Argument Set internal-error-threshold Swport-spec Set port internal-error-shutdownConfigure# set port internal-error-shutdown 3 enable Mod-num mod Set port network-error-detection Configure# set port network-error-detection 3/1-5 Global Iedr threshold setting Show port internal-error-config Show port network-error detection Chapter Ospf Chapter Area Area ase-filter Area default-cost Following command sets nssa on the indicated area Following command removes nssa from the indicated areaArea nssa Area range Area stub External Configure routerospf# area 2.0.0.0 translate-nssa-toArea translate-nssa-to-external On the indicated Ospf area Area virtual-link Ospf Ip ospf as-boundary-router Password Ip ospf authentication-key Ip ospf auto-vlink-create Config-ifintf3#ip ospf auto-vlink-create Ip ospf cost Ip ospf dead-interval Ip ospf ext-route-metric Configure# ip ospf ext-route-metric rip type2 Ip ospf hello-interval Config-ifintf3#ip ospf hello-interval Ip ospf max-paths Configure# ip ospf max-paths Config-ifintf3#ip ospf message-digest-key 155 md5 jerry Ip ospf message-digest-key md5With a key ID of 155, and a key labeled jerry Ip ospf packet tracing Configure# ip ospf packet tracing Ip ospf poll interval Configure# ip ospf reset-stats Ip ospf reset-stats Ip ospf retransmit-interval Following command sets the router id for interface 123 to Config-if123#ip ospf router-idIp ospf router-id Seconds Config-if123#ip ospf transmit-delay Ip ospf transmit-delay Disable Network areaArea-id Area ID for the interface Passive-interface Router ospf Show ip ospf Show ip ospf Show ip ospf database Show ip ospf database Show ip ospf interface intf5 Show ip ospf interface Neighbor-id Show ip ospf neighbor23. Parameters, Keywords, Arguments Show ip ospf neighbor Show ip ospf stats Show ip ospf stats Show ip ospf virtual-links Configure# show ip ospf virtual-link Timers lsa-group-pacing Following command sets the LSA timers toConfigure# timers lsa-group-pacing Timers spf Chapter Policy Access-list Parameters, Keywords, and Arguments Host source-ip-addr Protocol-idSource-ip-addr Source-wildcard Enter Sample Standard ACL Rules Sample Extended ACL Rules Extended ACL Rules Document No -300090, Issue 20-7 Systems Ip access-group DenyPermit 192.168.10.10 Configure# ip access-group fwdrules Ip access-list Keywords, Arguments, and Options Ip acl-logging Time-in-seconds Ip acl-logging logging-interval Show access-group Show access-lists Following command displays the access listsShow access-lists Show acl-match-timer Show ip access-lists Show ip access-listsAccess-list-name Chapter Port Chapter Configure# clear port counters Configure# clear port counters 5/7Clear port counters Set port 3com-mapping-table Set port allow-learning Set port auto-flush Set port auto-negotiation Set port auto-negotiation-duplex-advertisement Set port auto-negotiation-flow-control- advertisement Set port auto-negotiation-speed-advertisement Set port auto-vlan-create Set port category Set port disable Set port duplex Configure# set port duplex 5/7-11 full-duplex Set port edge admin state Set port enable Ethernet ports Configure# set port flow-control 3 enable-receive-onlySet port flow-control Control with aggressive backoff for specified fast Set port frame-tags Configure# set port frame-tags 3/2,5/7-11 use Set port huntgroup Configure# set port huntgroup 5/1 huntgroupsales 18. Parameters, Keywords, Argument Set port intrusion-trap Set port intrusion-trap-timer Set port known-mode Set port mirror Sampling always piggyback-port 4/4 Port that has 2 fabric ports Parameter Definition Set port mirror Fabricmode2 24. Port Ranges for Fabric Mode 2 Port Mirroring Parameter DefinitionModule Port ranges that you can mirror Systems Configure# set port name 3/2 Really fast port Set port nameSpec Port-name 26. Parameters, Keywords, Argument Document No -300090, Issue 21-31 Set port pace-priority-mode Configure# set port pace-priority-mode 3,5/7-11 enable Set port point-to-point admin status Set port rate-limit-burst-size Set port rate-limit-mode Set port rate-limit-rate Set port-redundancy Set port-redundancy name Set port remote-fault-detect 34. Parameters, Keywords, Arguments Set port spanning-tree-mode 35. Parameters, Keywords, Arguments Set port speed 36. Parameters, Keywords, Arguments Set port trunking-format 37. Parameters, Keywords, Arguments Set port vlan 38. Parameters, Keywords, Arguments Set port vlan-binding-method Configure# set port vtp-snooping 3/2,5/7-11 enable Set port vtp-snooping39. Parameters, Keywords, Arguments Show port 40. Parameters, Keywords, ArgumentsShow port 41. Parameters, Keywords, Arguments Show port counters Show port mirror 42. Parameters, Keywords, ArgumentsShow port mirror Show port mirror Fabricmode2 Show port mirror Fabricmode2 Show port physical 43. Parameters, Keywords, ArgumentsShow port physical Show port status 44. Parameters, Keywords, ArgumentsShow port status 45. Parameters, Keywords, Arguments Show port redundancy Power Cool RAM Show system fans Show system fans Show system power Show system power Show system ram Show system ram 23 80-Series QoS An ACL Rule Or ACL Dscp Dscp Parameters, Keywords, Arguments Diffserv mask 10.10.60.0 Examples Standard ACL Rules Diffserv mask host Examples Extended ACL Rules MyAccessList2 4 permit remark l2 P550R and P880, 80-series modules only Reset port queue counters Reset port queue counters 3 ingress Vlan-name port-binding filter forward mod-port Priority that you want to assign to the source Binding forward 3/1 sa-priority aft Examples set aft entry Binding forward 3/1 da-priority Set diffserv plp Dscp-start-rangeDscp-end-range Set diffserv priority Configure# set diffserv priority 7 dscp 15 Configure# set port default-priority 3/1-5 Configure# set port default-priority 3 Configure# set port default-priority 3/1-5,6/1 Set port ignore-tag-priority 802.1p tag priority Configure# set port ignore-tag-priority 3 onConfigure# set port ignore-tag-priority 3/1-5 off Configure# set port ignore-tag-priority 3/1-5,6/1 on Set port mask-diffserv Configure# set port mask-diffserv 3 on Set port police Configure# set port police 3 all-ports Set port queue service cbq Set port queue service cbwfq Series QoS Configure# set port queue service 5/1-12 strict-priority Set port queue service strict-priority Set port queue service wfq Set port use-diffserv Configure# set port use-diffserv 6/4-12 on Show diffserv table Show diffserv table Show port Show port police Show port queue buffer Show port queue counters Show port queue counters 3 all Show port queue service Radius Configure# set radius authentication enable Set radius authentication Set radius authentication group Configure# set radius authentication group avaya switchesConfigure# clear radius authentication group Set radius authentication realm Configure# set radius authentication realm avayaConfigure# clear radius authentication realm Set radius authentication retry-number Set radius authentication retry-time Set radius authentication server Set radius authentication source-ip Following command sets the source IP address toConfigure# set radius authentication source-ip Set radius authentication switch-service-type- required Configure# set radius authentication switch-service-typeRequired enabled Configure# set radius authentication udp-port Set radius authentication udp-port Configure# show radius authentication Show radius authentication Chapter Snmp Snmp-server Slot Snmp-server atm-communityField Definition Community Groupname Snmp-server community Snmp-server contact Snmp-server engineid Snmp-server group Command Mode Description Systems Snmp-server location Snmp-server notify Switch prompts you to enter the new password or passwords. Snmp-server password HMAC-MD5 Snmp-server user Document No -300090, Issue 25-13 Snmp-server view Show snmp Show snmp community Displays the currently configured engine ID of the switch Show snmp engineidShow snmp engineid Show snmp group Groupname Group for which you want to view Configuration Show snmp user Username User for which you want to view Configuration Viewname Show snmp view 26 SSH Ends an SSH session Clear ssh Ip ssh Username SshKeyword, Argument or Definition Option Tcp-port Generates an SSH server key Ssh keygen Ssh timeout Show ssh Sample output of the show ssh config command is as follows 27 SSL Ip https Subject Public Key Info Show ssl cert 128aea193294d0d51b 3f670a56708675aefcba42726425a84ba910 Show ssl certreq 52d1 Show ssl ciphers Show ssl config Ssl backcert Keyword, Argument or Option Definition Ssl certreq Ssl restart Ssl selfcert Rapid Spanning Tree Protocol Set port edge admin state Document No -300090, Issue 28-3 Enables or disables Spanning Tree on a port Set port spantree force-protocol-migration Systems Set port spantree priority Systems Spanning Tree, in User Guide for the Avaya P580 and P882 Multiservice Switches, Software VersionSet spantree Tree, in User Guide for the Avaya P580 and P882 P550R, P580, P880,and P882 Configure# set spantree disable 802.1D Configure# set spantree config ieee Set spantree config Set spantree default-path-cost Software Version Set spantree fwddelay Configure# set spantree fwddelay 12 802.1D Set spantree hello Set spantree hold-count Set spantree maxage Configure# set spantree maxage 25 802.1D Set spantree portcost Set spantree portcost mod-swport-range ...,mod-swport-range Configure# set spantree portcost 5/1 15 802.1D Set spantree priority Systems Set spantree version User Guide for the Avaya P580 and P882 Multiservice Switches, Software VersionShow spantree Show spantree all Show spantree blocked Show spantree config Show spantree config Show spantree port Show spantree port vlan 802.1D Show spantree version Switch Fabric Configure# set fabric configure-redundant-hardware disable Set fabric configure-redundant-hardware Set fabric enable-redundant-element Set fabric toggle-active-controller Show fabric status Show fabric status Chapter System Chapter System Configure# boot system flash cardapp2 Boot system flash Calendar set Fire Clear utilization high-threshold Clear utilization monitoring Clear utilization threshold-event Clock set Monday at 200 a.m Clock summer-time recurring Clock timezone # copy ripcfg.txt test.txt Copy Configure# copy 51.txt running-config Copy filename running-config # copy ripcfg.txt startup-config Copy filename startup-config # copy jadams/test.txt tftp Copy filenameoptpath tftp # copy card-image bootflash boot cardboot Copy card-image bootflash Copy card-image flash Configure# copy card-image flash app1 cardapp2 Copy filename1 pcmcia filename2 Copy pcmcia filename1 filename2 Copy running-config Following example shows the copy running-configcommand# copy running-config text.txt # copy running-config startup-config Copy running-config startup-config Copy running-config tftp Copy startup-config Configure# copy startup-config running-config Copy startup-config running-config Copy startup-config tftp Copy tftp Copy tftp bootflash Configure# copy tftp bootflash m55rbootv3.0.0.binTftp-server Imageoptpath Copy tftp flash Copy tftp pcmcia Configure# copy tftp pcmcia cardapp2 m5500ra4.0.2.bin Configure# copy tftp running-config jadams/ripcfg.txt Copy tftp running-config Copy tftp startup-config Cpuredundancy console Cpuredundancy hello-interval Seconds Configure# cpuredundancy hello-interval Cpu-redundancy mac-prefix Cpuredundancy synchronize Configure# cpuredundancy synchronize Delete pcmcia Configure# delete pcmcia jerry2.txt Dir DirFilename Erase # erase legacy-configs Erase legacy-configs # erase scripts Erase scripts # erase startup-config Erase startup-config Get 48portmode Configure# get 48portmode Get Fabricmode Configure# get Fabricmode Configure# hostname Avaya HostnameHost-name Ip http help server Nvram initialize Configure# nvram initialize Pcmcia initialize Configure# pcmcia initialize Reload Following example reloads the switch software Reset Resets the switch and reloads the softwareReset Https SSH Secure-mode Set 48portmode Set debug Set Fabricmode 35. Keywords, Arguments, and Options Set utilization high-threshold Utilization-percent 36. Keywords, Arguments, and Options Set utilization monitoring 37. Keywords, Arguments, and Options Set utilization threshold-event Setup Show boot Show boot Show calendar Show clock Configure# show clock details Show cpu Show cpu config Show cpuredundancy status Show cpuredundancy # show filename startup.txt Show filename Show flash Show flash # show running-config Show running-config Show secure-mode Show secure-mode Show sntp # show startup-config Show startup-config Show time zone Configure# show time zone Show utilization results cpu Chip-fabportChip-index Show utilization settings Show version Show version Chapter Temperatures Component Shutdown Upper Lower Low Limit Clear temperaturesDefault Shutdown and Warning Temperatures Configure# clear temperatures Set temperature shutdown Configure# set temperature shutdown cpu-sensorTemperature Set temperature warning Default Warning TemperaturesComponent Upper Lower Low Limit Following example sets the backplane-sensor upper warning Show temperature Show temperatures User Interface Chapter # configure Configure Connect Custom-access-type Switching # disable Disable Enable Enable End Exit Help Help Length Password Set custom-access-type Module-port-mgmt rw Configure# custom-access-type CAT1 sys-configuration ro Problems Set login Show custom-access-type Show history Show history Show login Show sessions Show sessions Show username Telnet # telnet# telnet 192.168.0.126 Terminal databits Configure# terminal databits Terminal flowcontrol Configure# terminal flowcontrol xon/xoff To Set Terminal length No terminal output pause Terminal output pause Configure# terminal parity none Terminal parityTerminal parity none even odd Terminal speed Configure# terminal speed Configure# terminal stopbits Terminal stopbitsTerminal stopbits 1 Characters Screen width 40+ characters Terminal width Expiration Period To Enable Or DisableUsername Exp-warning CatNameUser Guide for the Avaya P580 and P882 Exp-period Width Vlan Set 3com-mapping-table Set vlan Set vlan frame format Configure# set vlan 1 4/1 frame-format clear To Remove Ports To Bind Ports Configure# clear vlan 100 4/1, 4/3-4 Configure# set vlan 100 4/1, 4/3-4 Configure# set vtp-snooping domain Corporate Set vtp-snooping domainTo Define Show 3com-mapping-table Show 3com-mapping-table To Display One Vlan Configure# show vlan detailedShow vlan To Display All VLANs Configure# show vtp-snooping configuration Show vtp-snooping configure Vrrp Router vrrp Ip vrrp Config-ifboston#ip vrrp 1 address Ip vrrp vr-idVr-id Config-ifboston#ip vrrp 1 auth-key jerry Ip vrrp auth-keyKey-string Ip vrrp override Config-ifboston#ip vrrp 1 override address owner Ip vrrp preempt Enabled Ip vrrp priority Ip vrrp timer Show ip vrrp Show ip vrrp Index Cgmp Dvmrp 10-38 14-7 IN-6 Lgmp 10-22 21-8 10-15,10-16 Show ip route 18-2,18-4,18-5,21-30ip route Sntp TCP Vlan all 10-37VLAN commands set vlan