HP 2500 160

Using Passwords, Port Security, and Authorized IP Managers To Protect Against Unauthorized Access

Configuring and Monitoring Port Security

Using Passwords, Port Security, and Authorized IP

C a u t i o n

N o t e

To add a second authorized device to port 1, execute a port-security command for for port 1 that raises the address limit to 2 and specifies the additional device’s MAC address. For example:

HP2512(config)# port-security 1 mac-address 0c0090-456456 address-limit 2

Removing a Device From the “Authorized” List for a Port. This command option removes unwanted devices (MAC addresses) from the Authorized Addresses list. (An Authorized Address list is available for each port for which Learn Mode is currently set to “Static”. See the “Address List” entry in the table on page 7-15.)

When learn mode is set to static, the Address Limit (address-limit) parameter controls how many devices are allowed in the Authorized Addresses (mac- address) for a given port. If you remove a MAC address from the Authorized Addresses list without also reducing the Address Limit by 1, the port may subsequently detect and accept as authorized a MAC address that you do not intend to include in your Authorized Address list. Thus, if you use the CLI to remove a device that is no longer authorized, it is recommended that you first reduce the Address Limit (address-limit) integer by 1, as shown below. This prevents the possibility of the same device or another unauthorized device on the network from automatically being accepted as “authorized” for that port.

To remove a device (MAC address) from the “Authorized” list and when the current number of devices equals the Address Limit value, you should first reduce the Address Limit value by 1, then remove the unwanted device.

You can reduce the address limit below the number of currently authorized addresses on a port. This enables you to subsequently remove a device from the “Authorized” list without opening the possibility for an unwanted device to automatically become authorized.

7-20

Contents

hp procurve series 2500 switches www.hp.com/go/procurve Page HP ProCurve Switches 2512 and Page Use of This Guide and Other ProCurve Switch Documentation Page 1: Selecting a Management Interface 2. Using the Menu Interface 3. Using the Command Line Interface (CLI) 4. Using the HP Web Browser Interface 5.Configuring IP Addressing, Interface Access, and System Information 6.Optimizing Port Usage Through Traffic Control and Port Trunking 8: Configuring for Network Management Applications 9: Configuring Advanced Features Page 10: Monitoring and Analyzing Switch Operation 11: Troubleshooting A:Transferring an Operating System or Startup Configuration File B: MAC Address Management C: Switch Memory and Configuration D: Daylight Savings Time on HP ProCurve Switches Page Selecting a Management Interface Selecting a Management Understanding Management Interfaces Advantages of Using the Menu Interface Figure 1-1.Example of the Console Interface Display Provides quick, easy management access Offers out-of-band Advantages of Using the CLI Figure 1-2.Example of The Command Prompt CLI Usage Advantages of Using the HP Web Browser Interface Figure 1-3.Example of the HP Web Browser Interface Easy access Familiar browser interface Advantages of Using HP TopTools for Hubs & Switches Figure 1-4.Example of HP TopTools Main Screen Page Page Using the Menu Interface Menu Interface N o t e Menu Interaction with Other Interfaces Starting and Ending a Menu Session How To Start a Menu Interface Session How To End a Menu Session and Exit from the Console: Figure 2-2.An Asterisk Indicates a Configuration Change Requiring a Reboot Switch Configuration Reboot Switch Main Menu Features Figure 2-3.The Main Menu View with Manager Privileges Status and Counters: Switch Configuration: Console Passwords: Command Line (CLI): Reboot Switch: Download OS: Run Setup: Logout: Screen Structure and Navigation Figure 4-1.Elements of the Screen Structure Table 4-1.How To Navigate in the Menu Interface Help Figure 4-2.Example Showing How To Display Help Rebooting the Switch Figure 4-3.The Reboot Switch Option in the Main Menu Figure 4-4.Indication of a Configuration Change Requiring a Reboot Menu Features List Where To Go From Here Page Using the Command Line Interface (CLI) Accessing the CLI Command Line (CLI) Using the CLI Privilege Levels at Logon Privilege Level Operation Manager Privileges config Context Configuration level: Changing Interfaces Table 3-1.Privilege Level Hierarchy show <command setup ping <argument How To Move Between Levels Listing Commands and Command Options Figure 3-4.Example of the Manager-LevelCommand Listing - - MORE Command Option Displays Figure 3-5.Exampleof Command Option Conventions Displaying CLI "Help Figure 3-7.Example of Context-Sensitive Command-ListHelp Syntax: <command string> help interface Interface (CLI) Figure 3-8.Example of How To Display Help for a Specific Command Configuration Commands and the Context Configuration Modes Figure 3-10. Context-SpecificCommands Affecting Port Context VLAN Context (CLI) Interface Figure 3-11. Context-SpecificCommands Affecting VLAN Context CLI Control and Editing Using the HP Web Browser Interface the HP Web Browser Agent Enabled General Features Web Browser Interface Requirements Table 4-1.System Requirements for Accessing the HP Web Browser Interface PCs: Using a Standalone Web Browser in a PC or UNIX Workstation Using HP TopTools for Hubs & Switches Figure 4-1.Example of Status Overview Screen Viewing the “First Time Install” Window Creating Usernames and Passwords in the Browser Interface Figure 4-3.The Device Passwords Window secure access to the device Using the Passwords Figure 4-4.Example of the Password Window in the Web Browser Interface Using the User Names If You Lose a Password Online Help for the HP Web Browser Interface Support/Mgmt URLs Feature Support URL Management Server URL Figure 4-6.The Default Support/Mgmt URLs Window Support URL Help and the Management Server URL http://www.hp.com/rnd/device_help Figure 4-7.How To Access Web Browser Interface Online Help The Overview Window The Port Utilization and Status Displays Maximum Activity Indicator: Utilization Guideline To change the amount of bandwidth the Port Utilization bar graph shows Figure 4-10.Changing the Graph Area Scale Port Status Figure 4-12.The Port Status Indicators and Legend Port Connected Port Not Connected Port Disabled The Alert Log Alert Types Table 4-2.Alert Strings and Descriptions Viewing Detail Views of Alert Log Entries Acknowledge Event Delete Event Cancel Button Figure 4-14.Example of Alert Log Detail View The Status Bar Setting Fault Detection Policy High Sensitivity Medium Sensitivity Low Sensitivity Never Apply Changes Page Configuring IP Addressing, Interface Access, and System Information IP Addressing Access, and Why Configure IP Addressing IP Configuration IP Configuration Features Default Gateway Operation Packet Time-To-Live Just Want a Quick Start IP Addressing with Multiple VLANs IP Addressing in a Stacking Environment Menu: Configuring IP Address, Gateway, Time-To-Live(TTL), and Timep To Configure IP Addressing 2.Switch Configuration 5.IP Configuration Figure 5-1.Example of the IP Service Configuration Screen without Multiple VLANs Configured CLI: Configuring IP Address, Gateway, Time-To-Live(TTL), and Timep Syntax: show ip Figure 5-2.Example of the Switch’s Default IP Addressing show ip Figure 5-3.Example of Show IP Listing with Non-DefaultIP Addressing Configured Page Web: Configuring IP Addressing How IP Addressing Affects Switch Operation Table 5-1.Features Available With and Without IP Addressing on the Switch DHCP/Bootp Operation Page Bootp Database Record Entries /etc/bootptab Network Preparations for Configuring DHCP/Bootp Globally Assigned IP Network Addresses Interface Access: Console/Serial Link Web, and Inbound Telnet Interface Access Features Menu: Modifying the Interface Access CLI: Modifying the Interface Access Syntax: console boot Figure 5-6.Example of Executing the Console Command with Multiple Parameters Figure 5-7.Example of Executing a Series of Console Commands System Information System Information Features System Name: System Contact and Location: MAC Age Interval: Menu: Viewing and Configuring System Information CLI: Viewing and Configuring System Information Figure 5-10.System Information Listing After Executing the Preceding Commands Configure the Time Zone and Daylight Time Rule. These commands: Web: Configuring System Parameters Page Optimizing Port Usage Through Traffic Control and Port Trunking Viewing Port Status and Configuring Port Parameters Port Status and ConfigurationFeatures Table 6-1.Status and Parameters for Each Port Type Page Menu: Viewing Port Status and Configuring Port Parameters CLI: Viewing Port Status and Configuring Port Parameters Figure 6-1.Example of a Show Interface Command Listing Figure 6-2.Example of a Show Interface Config Command Listing int ethernet int e Web: Viewing Port Status and Configuring Port Parameters Port Trunking Figure 6-3.Conceptual Example of Port Trunking Table 6-2.Bandwidth Capacity for Trunk Groups Configured for Full-Duplex Switch 2512 and 2524 Port Trunk Features and Operation Trunk Configuration Methods Table 6-4.Trunk Configuration Protocols Table 6-5.General Operating Rules for Port Trunks Dyn1 Page Menu: Viewing and Configuring a Static Trunk Group I m p o r t a n t 2.Switch Configuration Figure 6-4.Example of the Menu Screen for Configuring a Port Trunk Group Usage Port Optimizing Figure 6-5.Example of the Configuration for a Two-PortTrunk Group Trunk FEC CLI: Viewing and Configuring a Static or Dynamic Port Trunk Group Figure 6-7.Example of a Show Trunk Listing Without Specifying Ports Figure 6-8.Example of a Show LACP Listing Figure 6-9.Example of a Dynamic LACP Trunk with One Standby Link Using the CLI To Configure a Static or Dynamic Trunk Group Page Page Web: Viewing Existing Port Trunk Groups Trunk Group Operation Using LACP Default Port Operation Table 6-7.LACP Port Status Data LACP Notes and Restrictions Changing Trunking Methods Static LACP Trunks VLANs and Dynamic LACP STP and IGMP Trunk Group Operation Using the “Trunk” Option Trunk Operation Using the “FEC” Option How the Switch Lists Trunk Data Outbound Traffic Distribution Across Trunked Links Figure 6-11.Example of Port-TrunkedNetwork Through Traffic Control and Optimizing Port Usage Authorized and Security Port Passwords, Using Using Passwords, Port Manager and Operator passwords Port Security (page 9): Authorized IP Managers Using Password Security Menu: Setting Manager and Operator passwords Figure 7-1.The Set Password Screen Enter new password again To Delete Password Protection (Including Recovery from a Lost Password): Set Passwords CLI: Setting Manager and Operator Passwords Web: Configuring User Names and Passwords Basic Operation Authorized (MAC) Addresses: Blocking Unauthorized Traffic Planning Port Security show log CLI: Port Security Command Options and Operation Table 7-1.Port Security Parameters <[ethernet] port-list address-limit action CLI: Displaying Current Port Security Settings Using the CLI To Display Port Security Settings port-security CLI: Configuring Port Security Page Page Page Web: Displaying and Configuring Port Security Features Reading Intrusion Alerts and Resetting Alert Flags Figure 7-6.Example of Multiple Intrusion Log Entries for the Same Port Keeping the Intrusion Log Current by Resetting Alert Flags Menu: Checking for Intrusions, Listing Intrusion Alerts, and Resetting Alert Flags Figure 7-7.Example of Port Status Screen with Intrusion Alert on Port Figure 7-8.Example of the Intrusion Log Display Page Page Figure 7-11.Example of Port Status Screen After Alert Flags Reset Using the Event Log To Find Intrusion Alerts From the CLI ffi security violation Operating Notes for Port Security Page Using IP Authorized Managers Authorized IP Manager Features Access Levels Defining Authorized Management Stations Overview of IP Mask Operation Menu: Viewing and Configuring IP Authorized Managers CLI: Viewing and Configuring Authorized IP Managers Configuring IP Authorized Managers for the Switch Web: Configuring IP Authorized Managers Building IP Masks Analysis of IP Mask for Single-StationEntries Configuring Multiple Stations Per Authorized Manager IP Entry Port IP Analysis of IP Mask for Multiple-StationEntries Operating and Troubleshooting Notes Security, and Authorized IP Configuring for Network Management Applications and Managing SNMP Management Features Configuring for SNMP Access to the Switch 6.SNMP Community Names Page SNMP Communities SNMP Community Features Menu: Viewing and Configuring SNMP Communities To View, Edit, or Add SNMP Communities: Figure 8-1.The SNMP Communities Screen (Default Values) Add Figure 8-2.The SNMP Add or Edit Screen Need Help elp CLI: Viewing and Configuring Community Names Configuring Identity Information Configuring Community Names and Values operator manager Trap Receivers and Authentication Traps Trap Features snmp-server host CLI: Configuring and Displaying Trap Receivers Using the CLI To Enable Authentication Traps RMON Extended RMON Page Configuring Advanced Features Port-Based Virtual LANs (Static VLANs) Page ■Port-BasedVLANs — Page 9-50: ■GVRP — Page 9-77: Multimedia Traffic Control with IP Multicast (IGMP) — Page Spanning Tree Protocol (STP) (Page HP ProCurve Stack Management Which Devices Support Stacking Components of HP ProCurve Stack Management General Stacking Operation Operating Rules for Stacking Specific Rules Page Overview of Configuring and Bringing Up a Stack Table 9-3.Stacking Configuration Guide General Steps for Creating a Stack Figure 9-4.Use of System Name to Help Identify Individual Switches Page Using the Menu Interface To View Stack Status And Configure Stacking Figure 9-6.The Default Stack Configuration Screen Figure 9-7.The Default Commander Configuration in the Stack Configuration Screen Using the Menu To Manage a Candidate Switch Table 9-4.CandidateConfiguration Options in the Menu Interface Using the Menu To “Push” a Switch Into a Stack, Modify the Switch’s Figure 9-8.The Default Stack Configuration Screen Using the Commander To Manage The Stack Using the Commander’s Menu To Manually Add a Candidate to a Stack Figure 9-9.Example of the Stack Management Screen Figure 9-10.Example of Candidate List in Stack Management Screen Figure 9-11.Example of Stack Management Screen After New Member Added Using the Commander’s Menu To Move a Member From One Stack to Member MAC Addresses N o t e : Figure 9-14.Example of Selecting a Member for Removal from the Stack Using the Commander To Access Member Switches for Configuration Changes and Monitoring Traffic Figure 9-16.Example of the Stack Access Screen Converting a Commander or Member to a Member of Another Stack 9.Stacking 2.Stacking Status (All) ack 3.Stack Configuration Monitoring Stack Status Table 9-5.Stack Status Environments Viewing Commander Status Figure 9-19.Example of the Commander’s Stacking Status Screen Figure 9-20.Example of a Member’s Stacking Status Screen Viewing Candidate Status Figure 9-21.Example of a Candidate’s Stacking Screen Using the CLI To View Stack Status and Configure Stacking Page Using the CLI To View Stack Status Figure 9-22.Example of Using the Show Stack Command To List the Stacking Configuration for an Individual Switch Viewing the Status of Candidates the Commander Has Detected Figure 9-23.Example of Using the Show Stack Candidates Command To List Viewing the Status of all Stack-EnabledSwitches Discovered in the IP Viewing the Status of the Commander and Current Members of the Commander’s Stack Using the CLI To Configure a Commander Switch Commander Discovered Syntax: no stack Adding to a Stack or Moving Switches Between Stacks Auto-Grab Using the Commander’s CLI To Manually Add a Candidate to the show stack view show stack candidates Figure 9-29.Example of How To Determine MAC Addresses of Discovered Figure 9-30.Example Showing the Stack After Adding a New Member Status: Figure 9-31.Example of “Pushing” a Candidate Into a Stack Using the Destination Commander CLI To “Pull” a Member from Another Stack Figure 9-32.Example of Stack Listing with Two Stacks in the Subnet Using the CLI To Remove a Member from a Stack Figure 9-34.Example of a Commander and Three Switches in a Stack Using the Member’s CLI To Remove the Member from a Stack Figure 9-35.Example of How To Identify the Commander’s MAC Address from a Member Switch Page SNMP Community Operation in a Stack Figure 9-37.Example of SNMP Community Operation with Stacking SNMP Management Station Access to Members Via the Commander @sw<switch number Using the CLI To Disable or Re-EnableStacking Transmission Interval Stacking Operation with Multiple VLANs Configured Web: Viewing and Configuring Stacking Status Messages Port-BasedVirtual LANs (Static VLANs) Figure 9-39.Example of Routing Between VLANs via an External Router Figure 9-40.Example of Overlapping VLANs Using the Same Server Figure 9-41.Example of Connecting Multiple VLANs Through the Same Link Introducing Tagged VLAN Technology into Networks Running Legacy (Untagged) VLANs Overview of Using VLANs show vlan Per-PortStatic VLAN Configuration Options Figure 9-43.Comparing Per-PortVLAN Options With and Without GVRP Table 9-7. Per-PortVLAN Configuration Options General Steps for Using VLANs Notes on Using VLANs Menu: Configuring VLAN Parameters Figure 9-45.VLAN Menu Screen Indicating the Need To Reboot the Switch Adding or Editing VLAN Names 2.VLAN Names Figure 9-46.The Default VLAN Names Screen Name Figure 9-47.Example of VLAN Names Screen with a New VLAN Added Adding or Changing a VLAN Port Assignment 3.VLAN Port Assignment Figure 9-48.Example of VLAN Port Assignment Screen Untagged, or Forbid) Untagged VLANs CLI: Configuring VLAN Parameters VLAN Commands Used in this Section Figure 9-50.Example of “Show VLAN” Listing (GVRP Enabled) Displaying the Configuration for a Particular VLAN . This command Figure 9-51.Example of “Show VLAN” for a Specific Static VLAN Figure 9-52.Example of “Show VLAN” for a Specific Dynamic VLAN Page Creating a New Static VLAN Changing the VLAN Context Level Page Web: Viewing and Configuring VLAN Parameters VLAN Tagging Information Figure 9-54.Example of Tagged and Untagged VLAN Port Assignments Page Figure 9-56.Example of Networked 802.1Q-CompliantDevices with Multiple VLANs on Some Ports Switch Y Effect of VLANs on Other Switch Features VLAN MAC Addresses Port Trunks Port Monitoring VLAN Restrictions HP Router Requirements Symptoms of Duplicate MAC Addresses in VLAN Environments GVRP General Operation Switch “D” GVRP On Figure 9-58.Example of GVRP Operation Per-PortOptions for Handling GVRP “Unknown VLANs” Table 9-8.Options for Handling “Unknown VLAN” Advertisements: show gvrp Figure 9-59.Example of GVRP Unknown VLAN Settings Per-PortOptions for Dynamic VLAN Advertising and Joining GVRP and VLAN Access Control Planning for GVRP Operation Configuring GVRP On a Switch Figure 9-60.The VLAN Support Screen (Default Configuration) GVRP Enabled Unknown VLAN CLI: Viewing and Configuring GVRP GVRP Commands Used in This Section Figure 9-62.Example of “Show GVRP” Listing with GVRP Disabled Figure 9-63.Example of Show GVRP Listing with GVRP Enabled Enabling and Disabling GVRP on the Switch. This command enables Syntax: gvrp show vlans Figure 9-64.Example of Listing Showing Dynamic VLANs GVRP Operating Notes Page Multimedia Traffic Control with IP Multicast (IGMP) IGMP Operating Features CLI: Configuring and Displaying IGMP Figure 9-65.Example Listing of IGMP Configuration for All VLANs in the Switch Page Configuring Per-PortIGMP Packet Control. Use this command in the Default: auto Default: normal Web: Enabling or Disabling IGMP How IGMP Operates Query: Report: Leave Group: Role of the Switch Figure 9-67.The Advantage of Using IGMP Figure 9-68.Isolating IP Multicast Traffic in a Network IP Multicast Filters Number of IP Multicast Addresses Allowed Interaction with Multicast Traffic/Security Filters Spanning Tree Protocol (STP) single-instance STP Menu: Configuring STP Figure 9-69.Example of the STP Configuration Screen Actions line CLI: Configuring STP Table 9-10.GeneralSTP Operating Parameters Reconfiguring Per-PortSTP Operation on the Switch. This command Table 9-11.Per-PortSTP Parameters Web: Enabling or Disabling STP How STP Operates Figure 9-71.Example of Redundant Paths Between Two Nodes STP Fast Mode To Configure Fast Mode for a Switch Port: STP Operation with 802.1Q VLANs Figure 9-72.Example of Using a Trunked Link with STP and VLANs Page Monitoring and Analyzing Switch Operation and Analyzing Status: Counters: Event Log Alert Log: Status and Counters Data Menu Access To Status and Counters General System Information Switch Management Address Information Port Status Viewing Port and Trunk Group Statistics Menu Access to Port and Trunk Statistics 4.Port Counters Figure 10-5.Example of Port Counters on the Menu Interface how Details Figure 10-6.Example of the Display for Show details on a Selected Port CLI Access To Port and Trunk Group Statistics To Display a Detailed Traffic Summary for a Specific Port. This com Web Browser Access To View Port and Trunk Group Statistics Viewing the Switch’s MAC Address Tables Menu Access to the MAC Address Views and Searches 5.Address Table Figure 10-7.Example of the Address Table (Switch 4000M) earch Figure 10-8.Example of Menu Indicating Located MAC Address 6.Port Address Table Figure 10-9.Listing MAC Addresses for a Specific Port Determining Whether a Specific Device Is Connected to the Selected Port CLI Access for MAC Address Views and Searches To List All Learned MAC Addresses on the Switch, with The Port Number on Which Each MAC Address Was Learned To List All Learned MAC Addresses on one or more ports, with Their Corresponding Port Numbers Spanning Tree Protocol (STP) Information Figure 10-11.Exampleof STP Port Information CLI Access to STP Data Internet Group Management Protocol (IGMP) Status VLAN Information Listing the VLAN ID (VID) and Status for Specific Ports Figure 10-14.Exampleof VLAN Listing for Specific Ports Listing Individual VLAN Status Web Browser Interface Status Information Port Monitoring Features Menu: Configuring Port Monitoring Figure 10-17.How To Select a Monitoring Port Monitor •To monitor individual ports: Action •To monitor all ports in a VLAN: CLI: Configuring Port Monitoring Figure 10-19.Exampleof Monitored Port Listing Configuring the Monitor Port Web: Configuring Port Monitoring Troubleshooting Page Troubleshooting Approaches Browser or Console Access Problems Cannot access the web browser interface: Web Agent Enabled 1.IP Configuration 2.Switch Management Address Information Cannot Telnet into the switch console from a station on the network: Inbound Telnet Enabled Note Unusual Network Activity General Problems The network runs slow; processes fail; users cannot access servers or other devices Duplicate IP Addresses IGMP-RelatedProblems IP Multicast Traffic Floods Out All Ports; IGMP Does Not Appear To Filter Traffic Try Using the Web Browser Interface: Using the Switch Console Interface: Problems Related to Spanning-TreeProtocol (STP) Broadcast Storms Appearing in the Network. This can occur when Stacking-RelatedProblems Timep or Gateway Problems The Switch Cannot Find the Timep Server or the Configured VLAN-RelatedProblems None of the devices assigned to one or more VLANs on an 802.1Q Link Configured for Multiple VLANs Does Not Support Traffic for One Figure 11-1.Example of Correct VLAN Port Assignments on a Link Page Using the Event Log To Identify Problem Sources 08/05/98 10:52:32 ports: port 1 enabled Menu: Entering and Navigating in the Event Log CLI: Ping and Link Tests Web: Executing Ping or Link Tests Figure 11-12.Linkand Ping Test Screen on the Web Browser Interface Successes Failures Number of Packets to Send CLI: Ping or Link Tests Ping Tests Figure 11-13.Examplesof Ping Tests Link Tests Figure 11-14.Exampleof Link Tests Displaying the Configuration File CLI Administrative and Troubleshooting Commands Restoring the Factory-Default Configuration CLI: Resetting to the Factory-DefaultConfiguration Clear/Reset: Resetting to the Factory-DefaultConfiguration Transferring an Operating System or Startup Configuration File Downloading an Operating System (OS) Download OS Using TFTP To Download the OS File from a Server Menu: TFTP Download from a Server Figure A-15.Example of the Download OS Screen (Default Values) Method TFTP TFTP Server CLI: TFTP Download from a Server Validating and Writing System Software to FLASH Logon Default Using the SNMP-BasedSoftware Update Utility Series 2500 Switch-to-SwitchDownload Using Xmodem to Download the OS File From a PC CLI: Xmodem Download from a PC or Unix Workstation Check the Firmware revision line Troubleshooting TFTP Downloads Figure A-18.Example of Message for Download Failure Transferring Switch Configurations TFTP: Retrieving a Configuration from a Remote Host TFTP: Copying a Configuration to a Remote Host sw2512 Xmodem: Copying a Configuration from the Switch to a Serially Xmodem: Copying a Configuration from a Serially Connected PC or MAC Address Management Determining MAC Addresses Use the CLI Menu: Viewing the Switch’s MAC Addresses CLI: Viewing the Port and VLAN MAC Addresses Switch Memory and Configuration Overview of Configuration File Management Figure C-10.Conceptual Illustration of Switch Memory Operation Running Config File: Startup-config reload In the menu interface: In the web browser interface: Using the CLI To Implement Configuration Changes How To Cancel Changes You Have Made to the Running-ConfigFile Factory Default Configuration Changes Using Save and Cancel in the Menu Interface Cancel Cancelled memory Rebooting from the Menu Interface Figure 11-73.TheReboot Switch Option in the Main Menu Rebooting To Activate Configuration Changes 2. Switch Configuration 8. VLAN Menu Using the Web Browser Interface To Implement Configuration Changes Daylight Savings Time on HP ProCurve Switches Middle Europe and Portugal: Southern Hemisphere: Western Europe: ProCurve Switches Figure D-1.Menu Interface with "User-Defined"Daylight Time Rule Option Switches ProCurve Page Index Numerics