Manuals / Brands / Computer Equipment / Network Router / Enterasys Networks / Computer Equipment / Network Router

Enterasys Networks 1G58x-09, 1H582-xx, E1 Series manual - page 2

1 808
Download 808 pages, 5.83 Mb
Contents
Main Page NOTICE ENTERASYS NETWORKS, INC. FIRMWARE LICENSE AGREEMENT BEFORE OPENING OR UTILIZING THE ENCLOSED PRODUCT, CAREFULLY READ THIS LICENSE AGREEMENT. Page Page Contents ABOUT THIS GUIDE 1 2 3 Page Page 4 5 Page 6 Page 7 8 9 10 11 Page 12 13 Page 14 Page INDEX Page Figures Page Tab les Page About This Guide USING THIS GUIDE STRUCTURE OF THIS GUIDE RELATED DOCUMENTS DOCUMENT CONVENTIONS TYPOGRAPHICAL AND KEYSTROKE CONVENTIONS Page Page Introduction 1.1 OVERVIEW There are five ways to manage the Matrix E1 device: 1.2 GETTING HELP Page Management Terminal and Modem Setup Requirements 2.1 CONNECTING TO A CONSOLE PORT FOR LOCAL MANAGEMENT 2.1.1 What Is Needed 2.1.2 Connectin g to an IBM or Compatible Device 2.1.3 Connect ing to a VT Series Terminal 2.1.4 Connectin g to a Modem 2.1.4.1 Configuring the Modem to Not Send Login Requests Page 2.1.5 Adapter Wiring and Signal Assignments Page Startup and General Configuration 3.1 STARTUP AND GENERAL CONFIGURATION SUMMARY 3.1.1 Factory Default Settings Page Page Page Page Page Page Page Page 3.1.2 Command Defaults Descriptions 3.1.3 CLI Command Mod es 3.1.4 Using WebView 3.1.5 Process Overview: CLI Startup and General Configuration 3.1.6.2 Logging in with a Default User Account Figure 3-2 Console Port Initial Startup Screen Before User Authorization 3.1.6.3 Logging in With an Administratively Configured User Account 3.1.6.4 Using a Telnet Connection Page 3.1.7 Getting Help with CLI Syntax 3.1.8 Displaying Scrolling Screens 3.1.9 Basic Line Editing Commands 3.2 GENERAL CONFIGURATION COMMAND SET 3.2.1 Setting User Accounts and Passwords Purpose Commands 3.2.1.1 show system login Page 3.2.1.2 set system login 3.2.1.3 clear system login 3.2.1.4 set password 3.2.1.5 set system password length 3.2.1.6 set system password aging 3.2.1.7 set system password history 3.2.1.8 set system lockout attempts 3.2.1.9 set system lockout 3.2.2 Setting Basic Device Properties Purpose Commands 3.2.2.1 show system resources 3.2.2.2 show system 3.2.2.3 show time 3.2.2.4 set time 3.2.2.5 set prompt 3.2.2.6 show banner motd 3.2.2.7 set banner motd 3.2.2.8 clear banner motd 3.2.2.9 show version 3.2.2.10 set system name 3.2.2.11 set system location 3.2.2.12 set system contact 3.2.2.13 show terminal 3.2.2.14 set terminal 3.2.2.15 set system timeout 3.2.2.16 show summertime 3.2.2.17 set summertime 3.2.2.18 set summertime date 3.2.2.19 set summertime recurring Page 3.2.2.20 clear summertime 3.2.2.21 set console baud 3.2.2.22 show ip address 3.2.2.23 set ip address 3.2.3 Downloading a Firmware Image 3.2.3.1 Downloading via the Serial Port 3.2.3.2 Downloading via TFTP dload Page This example shows how to download a new firmware image via a TFTP server: 3.2.4 Configuring Telnet Commands 3.2.4.1 show telnet 3.2.4.2 set telnet Page 3.2.5 Managing Switch Configuration Files 3.2.5.1 dir 3.2.5.2 show config This example shows how to display system information in the clitxt.cfg file: 3.2.5.3 configure Page 3.2.5.4 summaryconfig This example shows a portion of the output created by the summaryconfig command: 3.2.5.5 copy Page 3.2.5.6 set system bootconfig 3.2.5.7 delete 3.2.6 Configuring Enterasys and Cisco Discovery Protocols 3.2.6.1 show cdp 3.2.6.2 set cdp Page 3.2.6.3 set cdp interval 3.2.6.4 show ciscodp Page 3.2.6.5 set ciscodp status 3.2.6.6 set ciscodp timer 3.2.6.7 set ciscodp holdtime 3.2.6.8 set ciscodp populatecdp 3.2.6.9 show port ciscodp info Page 3.2.6.10 show port ciscodp neighborinfo 3.2.6.11 set port ciscodp status 3.2.6.12 set port ciscodp trust-ext 3.2.6.13 set port ciscodp cos-ext 3.2.6.14 set port ciscodp vvid Page 3.2.7 Pausing, Clearing and Closing the CLI 3.2.7.1 wait 3.2.7.2 cls (clear screen) 3.2.7.3 exit Page 3.2.8 Resetting the Device Commands 3.2.8.1 show reset 3.2.8.2 reset 3.2.8.3 reset at 3.2.8.4 reset in 3.2.8.5 clear config Page 3.3 PREPARING THE DEVICE FOR ROUTER MODE 3.3.1 Pre-Routing Configuration Tasks 3.3.2 Configuring VLANs for IP Routing Page Figure 3-7 Configuring Two VLANs for IP Routing 3.3.3 Enabling Router Configuration Modes Page Page Port Configuration 4.1 PORT CONFIGURATION SUMMARY 4.1.1 Port Assignment Scheme Page Page 4.1.2 Port String Syntax Used in the CLI Examples 4.2 PROCESS OVERVIEW: PORT CONFIGURATION 4.3 PORT CONFIGURATION COMMAND SET 4.3.1 Reviewing Port Status 4.3.1.1 show port status Page 4.3.1.2 show port counters This example shows how to display all port counter statistics related to traffic through the device. Table 4-3 provides an explanation of the command output. 4.3.1.3 clear port counters 4.3.2 Disabling / Enabling Ports Commands 4.3.2.1 set port disable 4.3.2.2 set port enable 4.3.3 Setting Speed and Duplex Mode Commands 4.3.3.1 show port speed 4.3.3.2 set port speed 4.3.3.3 show port duplex 4.3.3.4 set port duplex 4.3.4 Enabling / Disabling Jumbo Frame Support Commands 4.3.4.1 show port jumbo 4.3.4.2 set port jumbo 4.3.5 Setting Port Auto-Negotiation and Advertised Ability Commands 4.3.5.1 show port negotiation 4.3.5.2 set port negotiation 4.3.5.3 show port advertised ability Page Page 4.3.5.4 set port advertised ability 4.3.6 Setting Flow Control and Thesholds About Managing Oversubscribed Ports Commands 4.3.6.1 show port flowcontrol 4.3.6.2 set port flowcontrol 4.3.6.3 show port buffer threshold 4.3.6.4 set port buffer threshold Page Page 4.3.6.5 show flow agetime 4.3.6.6 set flow agetime 4.3.6.7 clear flow agetime 4.3.6.8 show port holbp 4.3.6.9 set port holbp Page 4.3.7 Setting Port Traps Command 4.3.7.1 show port trap This example shows how to display SNMP link trap status for all ports: 4.3.7.2 set port trap 4.3.8 Over view: Port Mirroring 4.3.9 Setting Port Mirroring Commands 4.3.9.1 show port mirroring 4.3.9.2 set port mirroring 4.3.9.3 clear port mirroring 4.3.10 Configuring Link Aggregation 4.3.10.1 Matrix E1 Trunk and LAG Usage Considerations 4.3.10.2 Port Grouping Considerations 1.x 0.x Page 4.3.11 Configuring Static Port Trunking 4.3.11.1 show trunk Page Page 4.3.11.2 set trunkmode 4.3.11.3 set trunk 4.3.11.4 clear trunk 4.3.11.5 set trunk port 4.3.11.6 clear trunk port 4.3.11.7 set trunk algorithm Page 4.3.12 Link Aggregation Control Protocol (LACP) 4.3.12.1 LACP Operation 4.3.12.2 LACP Terminology 4.3.12.3 Matrix E1 LAG Usage Considerations Page 4.3.13 Configuring Link Aggregation 4.3.13.1 set lacp 4.3.13.2 set lacp static 4.3.13.3 clear lacp static 4.3.13.4 show port lacp This example shows how to display LACP counters for all Fast Ethernet front panel ports: This example shows how to display detailed LACP information for Fast Ethernet front panel port 1: 4.3.13.5 set port lacp Page 4.3.14 Configuring Port Broadcast Suppression Commands 4.3.14.1 show port broadcast 4.3.14.2 set port broadcast Page 4.3.15 Configuring Unknown Destination Address Suppression Commands 4.3.15.1 show port unknowndestsuppress 4.3.15.2 set port unknowndestsuppress 4.3.15.3 clear port unknowndestsuppress Page SNMP Configuration 5.1 SNMP CONFIGURATION SUMMARY 5.1.1 SNMPv1 and SNMPv2 5.1.2 SNMPv3 5.1.3 About SNMP Security Models and Levels 5.1.4 Process Overview: SNMP Configuration Page 5.2 SNMP COMMAND SET 5.2.1 Disabling / Enabling and Reviewing SNMP Statistics Commands 5.2.1.1 show snmp 5.2.1.2 set snmp 5.2.1.3 show snmp engineid 5.2.1.4 show snmp counters Page This example shows how to display SNMP counter values Table 5-3 shows a detailed explanation of the command output. Page Page Page Page 5.2.2 Configuring SNMP Users, Groups and Communities Commands 5.2.2.1 show snmp user 5.2.2.2 set snmp user 5.2.2.3 clear snmp user 5.2.2.4 show snmp group Page 5.2.2.5 set snmp group 5.2.2.6 clear snmp group 5.2.2.7 show community 5.2.2.8 set community 5.2.2.9 clear community 5.2.2.10 show snmp community 5.2.2.11 set snmp community 5.2.2.12 clear snmp community 5.2.3 Configuring SNMP Access Rights Commands 5.2.3.1 show snmp access Page 5.2.3.2 set snmp access Page 5.2.3.3 clear snmp access 5.2.3.4 show snmp authenticationtrap 5.2.3.5 set snmp authentication trap 5.2.4 Configuring SNMP MIB Views Commands 5.2.4.1 show snmp view Page 5.2.4.2 set snmp view 5.2.4.3 clear snmp view Page 5.2.5 Configuring SNMP Target Parameters Commands 5.2.5.1 show snmp targetparams Page 5.2.5.2 set snmp targetparams Page 5.2.5.3 clear snmp targetparams 5.2.6 Configuring SN MP Ta rget Addresses Commands 5.2.6.1 show snmp targetaddr Page 5.2.6.2 set snmp targetaddr Page 5.2.6.3 clear snmp targetaddr 5.2.7 Configuring SNMP Notification Parameters Commands 5.2.7.1 show trap 5.2.7.2 set trap 5.2.7.3 clear trap 5.2.7.4 show newaddrtrap 5.2.7.5 set newaddrtrap 5.2.7.6 show snmp notify Page 5.2.7.7 set snmp notify 5.2.7.8 clear snmp notify About SNMP Notify Filters 5.2.7.9 show snmp notifyfilter 5.2.7.10 set snmp notifyfilter 5.2.7.11 clear snmp notifyfilter 5.2.7.12 show snmp notifyprofile 5.2.7.13 set snmp notifyprofile 5.2.7.14 clear snmp notifyprofile Page 5.2.8 Basic SNMP Trap Configuration Page Spanning Tree Configuration RSTP MSTP 6.1.2 Spanning Tree Features 6.1.3 Process Overview: Spanning Tree Configuration Commands Page 6.2.1.1 show spantree stats Page Page 6.2.1.2 set spantree 6.2.1.3 show spantree version 6.2.1.4 set spantree version 6.2.1.5 clear spantree version 6.2.1.6 show spantree mstilist 6.2.1.7 set spantree msti 6.2.1.8 clear spantree msti 6.2.1.9 show spantree mstmap 6.2.1.10 set spantree mstmap 6.2.1.11 clear spantree mstmap 6.2.1.12 show spantree vlanlist 6.2.1.13 show spantree mstcfgid 6.2.1.14 set spantree mstcfgid 6.2.1.15 clear spantree mstcfgid 6.2.1.16 set spantree priority 6.2.1.17 clear spantree priority 6.2.1.18 show spantree bridgehellomode 6.2.1.19 set spantree bridgehellomode 6.2.1.20 clear spantree bridgehellomode 6.2.1.21 set spantree hello 6.2.1.22 clear spantree hello 6.2.1.23 set spantree maxage 6.2.1.24 clear spantree maxage 6.2.1.25 set spantree fwddelay 6.2.1.26 clear spantree fwddelay 6.2.1.27 show spantree autoedge 6.2.1.28 set spantree autoedge 6.2.1.29 clear spantree autoedge 6.2.1.30 show spantree legacypathcost 6.2.1.31 set spantree legacypathcost 6.2.1.32 clear spantree legacypathcost 6.2.1.33 show spantree tctrapsuppress 6.2.1.34 set spantree tctrapsuppress 6.2.1.35 clear spantree tctrapsuppress 6.2.1.36 show spantree txholdcount 6.2.1.37 set spantree txholdcount 6.2.1.38 clear spantree txholdcount 6.2.1.39 set spantree maxhops 6.2.1.40 clear spantree maxhops 6.2.2 Reviewing and Setting Spanning Tree Port Parameters Commands 6.2.2.1 show spantree portadmin 6.2.2.2 set spantree portadmin 6.2.2.3 clear spantree portadmin 6.2.2.4 show spantree blocked ports 6.2.2.5 show spantree portpri 6.2.2.6 set spantree portpri 6.2.2.7 clear spantree portpri 6.2.2.8 show spantree portcost 6.2.2.9 set spantree portcost 6.2.2.10 clear spantree portcost 6.2.2.11 show spantree adminedge 6.2.2.12 set spantree adminedge 6.2.2.13 clear spantree adminedge 6.2.2.14 show spantree spanguard 6.2.2.15 set spantree spanguard 6.2.2.16 clear spantree spanguard 6.2.2.17 show spantree spanguardtimeout 6.2.2.18 set spantree spanguardtimeout 6.2.2.19 clear spantree spanguardtimeout 6.2.2.20 show spantree spanguardlock 6.2.2.21 clear spantree spanguardlock 6.2.2.22 show spantree spanguardtrapenable 6.2.2.23 set spantree spanguardtrapenable 6.2.2.24 clear spantree spanguardtrapenable 6.2.2.25 show spantree adminpoint 6.2.2.26 set spantree adminpoint 6.2.2.27 clear spantree adminpoint 802.1Q VLAN Configuration 7.2 PROCESS OVERVIEW: 802.1Q VLAN CONFIGURATION Preparing for VLAN Configuration Page Page Page 7.3.1.2 show vlan static 7.3.1.3 show vlan portinfo Page 7.3.2 Creating and Naming Static VLANs 7.3.2.1 set vlan 7.3.2.2 set vlan name 7.3.2.3 clear vlan 7.3.2.4 clear vlan name 7.3.3 Assigning Port VLAN IDs (PVIDs) and Ingress Filtering 7.3.3.1 show port vlan 7.3.3.2 set port vlan 7.3.3.3 clear port vlan 7.3.3.4 show port ingress filter 7.3.3.5 set port ingress filter 7.3.4 Configuring the VLAN Egress List 7.3.4.1 set vlan forbidden 7.3.4.2 show port egress 7.3.4.3 set vlan egress 7.3.4.4 clear vlan egress 7.3.4.5 show vlan dynamic egress 7.3.4.6 set vlan dynamicegress 7.3.5 Assigning VL ANs According to Classification Rules Purpose 7.3.5.1 show vlan classification 7.3.5.2 set vlan classification Page 7.3.5.3 Valid Values for VLAN Classification and Frame Filtering Page Page Page 7.3.5.4 Classification Precedence Rules Page 7.3.5.5 clear vlan classification 7.3.5.6 set vlan classification ingress 7.3.5.7 clear vlan classification ingress Page 7.3.6 Setting the Host VLAN 7.3.6.1 show host vlan 7.3.6.2 set port vlan host 7.3.6.3 clear host vlan 7.3.7 Creating a Secu re Management VLAN 7.3.8 Enabling/Disabling GVRP (GARP VLAN Registration Protocol) Purpose More About GARP VLAN Registration Protocol (GVRP) VLAN Configuration Command Set Enabling/Disabling GVRP (GARP VLAN Registration Protocol) Matrix E1 Series (1G58x-09 and 1H582-xx) Configuration Guide 7-43 Figure 7-1 Example of VLAN Propagation via GVRP End Station A Switch 4Switch 5 = Port registered as a member of VLAN Blue = Port declaring VLAN Blue R 7.3.8.1 show gvrp 7.3.8.2 show garp timer Page 7.3.8.3 set gvrp 7.3.8.4 set garp timer Page Page Policy Classification Configuration 8.1 POLICY CLASSIFICATION CONFIGURATION SUMMARY 8.2 PROCESS OVERVIEW: POLICY CLASSIFICATION CONFIGURATION 8.3 POLICY CLASSIFICATION CONFIGURATION COMMAND SET 8.3.1 Configuring Policy Profiles Purpose 8.3.1.1 show policy profile Page 8.3.1.2 set policy profile 8.3.1.3 clear policy profile 8.3.1.4 show policy invalid action 8.3.1.5 set policy invalid action 8.3.1.6 clear policy invalid action 8.3.2 Assigning Classification R ules to Policy Profiles Purpose 8.3.2.1 show policy class 8.3.2.2 set policy classify Page Page Page Page 8.3.2.3 Classification Precedence Rules 8.3.2.4 clear policy class 8.3.2.5 show policy maptable 8.3.2.6 show vlanauthorization 8.3.2.7 set vlanauthorization 8.3.2.8 set policy maptable response 8.3.2.9 clear policy maptable response 8.3.2.10 set policy maptable 8.3.2.11 clear policy maptable 8.3.3 Assigning Ports to Policy Profiles Purpose 8.3.3.1 show policy port 8.3.3.2 set policy port 8.3.3.3 clear policy port Page Port Priority and Classification Configuration 9.1 PORT PRIORITY AND CLASSIFICATION CONFIGURATION SUMMARY 9.1.1 Priority Important Notice 9.1.2 Priority Queueing Modes (Algorithms) Strict Priority Queueing (SP) Weighted Round Robin (WRR) Hybrid Queueing 9.1.3 Port Classification Page 9.3.1.1 show port priority 9.3.1.2 set port priority 9.3.1.3 clear port priority 9.3.2 Configuring Priority to Transmit Queue Mapping 9.3.2.1 show priority queue Page 9.3.2.2 set priority queue Page 9.3.3 Configuring Quality of Ser vice (QoS) 9.3.3.1 show port qos 9.3.3.2 set port qos sp 9.3.3.3 set port qos wrr 9.3.3.4 set port qos hybrid Page 9.3.4 Configuring Priority Classification 9.3.4.1 show priority classification 9.3.4.2 set priority classification 9.3.4.3 Valid Values for Priority Classification Page Page 9.3.4.4 clear priority classification About ToS 9.3.4.5 set priority classification tosvalue Layer 2 Layer 3 - IP Packet Page 9.3.4.6 set priority classification tosstatus 9.3.4.7 show priority classification qtagoverride 9.3.4.8 set priority classification qtagoverride 9.3.5 Classification Preced ence Rules Page Page 9.3.5.1 set priority classification ingress 9.3.5.2 clear priority classification ingress Page 9.3.6 Configuring Port Traffic Rate Limiting 9.3.6.1 show port ratelimit Page 9.3.6.2 set port ratelimit 9.3.6.3 clear port ratelimit Page IGMP Configuration 10.1 IGMP CONFIGURATION SUMMARY 10.1.1 Process Overview: IGMP Configuration 10.2 IGMP CONFIGURATION COMMAND SET 10.2.1 Enabling / Disabling IGMP Commands 10.2.1.1 show igmp 10.2.1.2 set igmp 10.2.2 Setting IGMP Query Interval and Response Time 10.2.2.1 show igmp query-interval 10.2.2.2 set igmp query-interval 10.2.2.3 show igmp response-time 10.2.2.4 set igmp response-time 10.2.3 Reviewing IGMP Groups 10.2.3.1 show igmp groups Page 10.2.4 Configuring IGMP VLAN Registration 10.2.4.1 show igmp mode 10.2.4.2 set igmp mode vlan 10.2.4.3 set igmp mode ipaddress 10.2.4.4 set igmp mode 10.3 ABOUT IGMP 10.3.1 IGMP VLAN Registration Page Logging and Switch Network Management 11.1 PROCESS OVERVIEW: LOGGING AND NETWORK MANAGEMENT 11.2 LOGGING AND NETWORK MANAGEMENT COMMAND SET 11.2.1 Configuring System Logging 11.2.1.1 set logging 11.2.1.2 show logging all Page This example shows how to display all system logging information: Page 11.2.1.3 show logging console 11.2.1.4 set logging console 11.2.1.5 show logging server Page 11.2.1.6 set logging server 11.2.1.7 clear logging server 11.2.1.8 show logging default 11.2.1.9 set logging default Page 11.2.1.10clear logging default 11.2.1.11show logging application Page 11.2.1.12set logging application Page Page Page 11.2.1.13clear logging application 11.2.1.14show logging audit-trail 11.2.1.15copy audit-trail 11.2.2 Monitoring Switch Network Events and Status 11.2.2.1 show eventlog 11.2.2.2 clear eventlog 11.2.2.3 history 11.2.2.4 repeat Page 11.2.2.5 show history 11.2.2.6 set history 11.2.2.7 show netstat 11.2.2.8 show rmon stats Page Page 11.2.2.9 show users Page 11.2.2.10disconnect 11.2.3 Managing Switch Network Addresses Page 11.2.3.1 show arp 11.2.3.2 set arp 11.2.3.3 clear arp 11.2.3.4 show rad 11.2.3.5 set rad 11.2.3.6 show mac Page 11.2.3.7 set mac 11.2.3.8 clear mac 11.2.3.9 show mac agingtime 11.2.3.10set mac agingtime 11.2.3.11clear mac agingtime 11.2.3.12show port stopaging 11.2.3.13set port stopaging 11.2.3.14clear port stopaging 11.2.3.15set mac algorithm Page 11.2.3.16show dns 11.2.3.17set dns domain 11.2.3.18clear dns domain 11.2.3.19set dns server 11.2.3.20clear dns server 11.2.3.21clear dns 11.2.3.22ping This example shows how to ping IP address 10.1.10.1 with 10 packets: 11.2.3.23traceroute Page 11.2.3.24set mac multicast Page 11.2.3.25show mac multicast 11.2.4 Configuring Simple Network Time Protocol (SNTP) Commands 11.2.4.1 show sntp 11.2.4.2 set sntp client 11.2.4.3 set sntp broadcastdelay 11.2.4.4 set sntp poll-interval 11.2.4.5 set sntp server 11.2.4.6 clear sntp server 11.2.4.7 set timezone 11.2.4.8 clear timezone Page 11.2.5 Configuring Node Aliases Commands 11.2.5.1 show nodealias Page 11.2.5.2 show nodealias config 11.2.5.3 set nodealias 11.2.5.4 set nodealias maxentries 11.2.5.5 clear nodealias 11.2.5.6 clear nodealias config 11.2.6 Configuring Convergence End Points (CEP) Phone Detection About CEP Phone Detection Commands 11.2.6.1 show cep 11.2.6.2 set cep 11.2.6.3 set cep port 11.2.6.4 set cep policy 11.2.6.5 set cep detection 11.2.6.6 set cep detection type 11.2.6.7 set cep detection address 11.2.6.8 set cep detection protocol 11.2.6.9 set cep detection porthigh 11.2.6.10set cep initialize 11.2.6.11clear cep Page Page IP Configuration 12.1 PROCESS OVERVIEW: INTERNET PROTOCOL (IP) CONFIGURATION Page 12.2.1.1 show interface Page This example shows how to display information for all interfaces configured on the router: 12.2.1.2 interface 12.2.1.3 show ip interface 12.2.1.4 ip address 12.2.1.5 no shutdown 12.2.2 Reviewing and Saving the Routing Configuration 12.2.2.1 show running-config 12.2.2.2 write Page 12.2.2.3 no ip routing 12.2.3 Reviewing and Configuring the ARP Table 12.2.3.1 show ip arp Page Page 12.2.3.2 arp 12.2.3.3 ip gratuitous-arp-learning 12.2.3.4 ip proxy-arp 12.2.3.5 ip mac-address 12.2.3.6 arp timeout 12.2.3.7 clear arp-cache Page 12.2.4 Configuring Broadcast Settings 12.2.4.1 ip directed-broadcast 12.2.4.2 ip forward-protocol About DHCP/BOOTP Relay 12.2.4.3 ip helper-address Page 12.2.5 Reviewing IP Traffic and Configuring Routes 12.2.5.1 show ip protocols 12.2.5.2 show limits 12.2.5.3 show ip traffic Command Defaults If softpath is not specified, general IP traffic statistics will be displayed. This example shows how to display IP traffic statistics: 12.2.5.4 clear ip stats 12.2.5.5 show ip route Page 12.2.5.6 ip route 12.2.5.7 ip icmp 12.2.5.8 ping 12.2.5.9 traceroute Page Page Routing Protocol Configuration 13.1 PROCESS OVERVIEW: ROUTING PROTOCOL CONFIGURATION 13.1.1 Configuring RIP RIP Configuration Task List and Commands 13.1.1.1 router rip 13.1.1.2 network 13.1.1.3 neighbor 13.1.1.4 distance 13.1.1.5 ip rip offset 13.1.1.6 timers 13.1.1.7 ip rip send version 13.1.1.8 ip rip receive version About RIP Authentication 13.1.1.9 key chain 13.1.1.10key 13.1.1.11key-string 13.1.1.12accept-lifetime 13.1.1.13send-lifetime Page 13.1.1.14ip rip authentication keychain 13.1.1.15ip rip authentication mode 13.1.1.16no auto-summary 13.1.1.17ip rip disable-triggered-updates 13.1.1.18ip split-horizon 13.1.1.19passive-interface 13.1.1.20receive-interface 13.1.1.21distribute-list 13.1.1.22redistribute Page 13.1.2 Configuring OSPF OSPF Configuration Task List and Commands Page 13.1.2.1 router ospf 13.1.2.2 network 13.1.2.3 router id 13.1.2.4 ip ospf cost 13.1.2.5 ip ospf priority 13.1.2.6 timers spf 13.1.2.7 ip ospf retransmit-interval 13.1.2.8 ip ospf transmit-delay 13.1.2.9 ip ospf hello-interval 13.1.2.10ip ospf dead-interval 13.1.2.11ip ospf authentication-key 13.1.2.12ip ospf message digest key md5 13.1.2.13distance ospf 13.1.2.14area range 13.1.2.15area authentication 13.1.2.16area stub 13.1.2.17area default cost 13.1.2.18area nssa 13.1.2.19area virtual-link Page 13.1.2.20passive-ospf 13.1.2.21redistribute Page 13.1.2.22database-overflow 13.1.2.23show ip ospf Command Defaults None. This example shows how to display OSPF information: 13.1.2.24show ip ospf database Page 13.1.2.25show ip ospf border-routers 13.1.2.26show ip ospf interface Page 13.1.2.27show ip ospf neighbor Page 13.1.2.28show ip ospf virtual-links 13.1.2.29clear ip ospf process Page 13.1.3 Configuring DVMRP 13.1.3.1 ip dvmrp 13.1.3.2 ip dvmrp metric 13.1.3.3 show ip dvmrp route 13.1.3.4 show ip mroute Page 13.1.4 Configuring IRDP 13.1.4.1 ip irdp 13.1.4.2 ip irdp maxadvertinterval 13.1.4.3 ip irdp minadvertinterval 13.1.4.4 ip irdp holdtime 13.1.4.5 ip irdp preference 13.1.4.6 ip irdp address 13.1.4.7 no ip irdp multicast 13.1.4.8 show ip irdp Page 13.1.5 Configuring VRRP 13.1.5.1 router vrrp 13.1.5.2 create 13.1.5.3 address 13.1.5.4 priority Page 13.1.5.5 advertise-interval 13.1.5.6 critical-ip 13.1.5.7 preempt 13.1.5.8 enable 13.1.5.9 ip vrrp authentication-key 13.1.5.10ip vrrp message-digest-key 13.1.5.11show ip vrrp Page Page Security Configuration 14.1 OVERVIEW OF SECURITY METHODS 14.2 PROCESS OVERVIEW: SECURITY CONFIGURATION 14.3 SECURITY CONFIGURATION COMMAND SET 14.3.1 Configuring RADIUS 14.3.1.1 show radius Page 14.3.1.2 set radius 14.3.1.3 clear radius Page 14.3.1.4 show radius accounting Page 14.3.1.5 set radius accounting Page 14.3.1.6 clear radius accounting 14.3.2 Configuring 802.1X Authentication 14.3.2.1 show dot1x Page This example shows how to display authentication statistics for Fast Ethernet front panel port 1: 14.3.2.2 show dot1x auth-config 14.3.2.3 set dot1x 14.3.2.4 set dot1x auth-config Page 14.3.2.5 set dot1x port 14.3.2.6 clear dot1x auth-config 14.3.2.7 show eapol Page Page Page 14.3.2.8 set eapol 14.3.3 Configuring MAC Authentication 14.3.3.1 show macauthentication Page Page 14.3.3.2 show macauthentication session 14.3.3.3 set macauthentication 14.3.3.4 set macauthentication password 14.3.3.5 set macauthentication port 14.3.3.6 set macauthentication portinitialize 14.3.3.7 set macauthentication macinitialize 14.3.3.8 set macauthentication reauthentication 14.3.3.9 set macauthentication portreauthenticate 14.3.3.10set macauthentication macreauthenticate 14.3.3.11set macauthentication reauthperiod 14.3.3.12set macauthentication quietperiod 14.3.4 Configuring MAC Locking 14.3.4.1 show maclock This example shows how to display global MAC locking information: This example shows how to display MAC locking information for Fast Ethernet front panel port 8: Table 14-5 provides an explanation of the command output. 14.3.4.2 show maclock stations Page 14.3.4.3 set maclock enable 14.3.4.4 set maclock disable 14.3.4.5 set maclock 14.3.4.6 set maclock firstarrival 14.3.4.7 set maclock static 14.3.4.8 set maclock move 14.3.4.9 clear maclock static 14.3.4.10show maclock autostatic 14.3.4.11set maclock autostatic 14.3.4.12set maclock autostatic isl 14.3.4.13set maclock autostatic publicvlan 14.3.4.14set maclock autostatic publicmac 14.3.4.15set maclock autostatic passthroughmac 14.3.4.16clear maclock autostatic 14.3.4.17set maclock trap 14.3.4.18clear maclock 14.3.5 Configuring Port Web Authentication (PWA) About PWA 14.3.5.1 show pwa Page Page 14.3.5.2 set pwa 14.3.5.3 set pwa hostname 14.3.5.4 set pwa displaylogo 14.3.5.5 set pwa refreshtime 14.3.5.6 set pwa nameservices 14.3.5.7 set pwa ipaddress 14.3.5.8 set pwa protocol 14.3.5.9 set pwa enhancedmode 14.3.5.10set pwa guestname 14.3.5.11set pwa guestpassword 14.3.5.12set pwa gueststatus 14.3.5.13set pwa initialize 14.3.5.14set pwa quietperiod 14.3.5.15set pwa maxrequests 14.3.5.16set pwa portcontrol 14.3.6 Configuring Secure Shell (SSH) 14.3.6.1 show ssh 14.3.6.2 set ssh 14.3.6.3 ssh 14.3.6.4 set ssh ciphers 14.3.6.5 clear ssh ciphers 14.3.6.6 set ssh port 14.3.6.7 set ssh mac 14.3.6.8 clear ssh mac 14.3.6.9 set ssh rekeyintervalseconds 14.3.6.10set ssh passwordguesses 14.3.6.11set ssh logingracetime 14.3.6.12clear ssh keys 14.3.6.13clear ssh config 14.3.7 Configuring Access Lists 14.3.7.1 show access-lists 14.3.7.2 access-list (standard) 14.3.7.3 access-list (extended) Page Page 14.3.7.4 ip access-group 14.3.8 Configuring Denial of Service Prevention 14.3.8.1 show HostDos 14.3.8.2 HostDos Page 14.3.8.3 clear hostdos-counters 14.3.9 Configuring Flow Setup Throttling (FST) About FST 14.3.9.1 show flowlimit Page 14.3.9.2 set flowlimit 14.3.9.3 set flowlimit limit Page 14.3.9.4 set flowlimit class 14.3.9.5 clear flowlimit action 14.3.9.6 set flowlimit shutdown 14.3.9.7 set flowlimit notification 14.3.9.8 set flowlimit clearstats Page 14.4 WORKING WITH SECURITY CONFIGURATIONS 14.4.1 Host Access Control Authentication (HACA) 14.4.2 802.1X Port Based Network Access Control Overview 14.4.3 MAC Authentication Overview 14.4.3.1 Authentication Method Sequence 14.4.3.2 Concurrent Operation of 802.1X and MAC Authentication Page Page 14.4.4 MAC Authentication Control 14.4.5 RADIUS Filter-ID Attribute and Dynamic Policy Profile Assignment Filter-ID Attribute Formats Page Index Numerics A B C D E F G H M N O P Q R S T U V