Manuals / Brands / Computer Equipment / Switch / HP / Computer Equipment / Switch

HP BL P-CLASS GBE2 331404-008 cur, cur, ftp, ssh, cur, Name, smtp, time, name, tftp, http, Table, reset, sport, dport, flags, reset, whois, above, flags, reset, Number, telnet, domain

1 176

Download 176 pages, 1.29 Mb

Table 175	IPv4 Filter Configuration Menu options

Command	Description

reset	Resets the IPv4 parameters for the ACL to their default values.

cur	Displays the current IPV4 parameters.

ACL TCP/UDP Filter configuration

Command: /cfg/acl/acl <1-4096>/tcpudp[Filtering TCP/UDP Menu]


sport	- Set to filter on			TCP/UDP source port
dport	- Set to filter		on TCP/UDP destination port
flags	- Set to filter		TCP/UDP flags
reset	-	Reset all fields
cur	-	Display current parameters

This menu allows you to define TCP/UDP matching criteria for an ACL. The following table describes the TCP/UDP Filter Configuration Menu options.

Table 176 TCP/UDP Filter Configuration Menu options

Command	Description

sport <1-65535>	Defines a source port for the ACL. If defined, traffic with the specified TCP or UDP
	source port will match this ACL. Specify the port number. Listed below are some of
	the well-known ports:
	Number	Name
	20	ftp-data
	21	ftp
	22	ssh
	23	telnet
	25	smtp
	37	time
	42	name
	43	whois
	53	domain
	69	tftp
	70	gopher
	79	finger
	80	http

dport <1-65535>	Defines a destination port for the ACL. If defined, traffic with the specified TCP or
	UDP destination port will match this ACL. Specify the port number, just as with
	sport above.

flags <value (0x0-0x3f)>	Defines a TCP/UDP flag for the ACL.

reset	Resets the TCP/UDP parameters for the ACL to their default values.

cur	Displays the current TCP/UDP Filtering parameters.

Configuration Menu 152

Contents

Command Reference Guide Legal notices © 2004, 2007 Hewlett-PackardDevelopment Company, L.P Contents RMON history information RMON alarm information RMON event information Statistics Menu 802.1x statistics Configuration Menu Page VRRP Virtual Router configuration VRRP Virtual Router Priority Tracking configuration VRRP Virtual Router Group configuration VRRP Virtual Router Group Priority Tracking configuration Access Control List configuration Page Command line interface Page •Encryption: •AES256-CBC •AES192-CBC •AES128-CBC Accessing the GbE2 Interconnect Switch User—User Operator—Operators Administrator—Only Table 2 User access levels Idle timeout Typographical conventions The following table describes the typographic styles used in this guide: Table 3 Typographic conventions AaBbCc123 Main# Menu basics Global commands For help on a specific command, type help. The following screen displays: Global Commands: [can be issued from any menu] help print Command line history and editing Table 5 Command line history and editing options Option Displays a numbered list of the last ten previously entered commands Repeats the last entered command Command line interface shortcuts First-timeconfiguration Setting passwords Page 5.Enter the current administrator password at the prompt Changing USER password; validation required 6.Enter the new user password at the prompt: Enter new user password: 7.Enter the new user password, again, at the prompt: Information Menu System Information Menu Command: /info/sys snmpv3 - SNMPv3 Information Menu general SNMPv3 USM User Table information Command: /info/sys/snmpv3/usm usmUser Table: User Name Protocol SNMPv3 View Table information Command: /info/sys/snmpv3/view View Name Subtree Mask SNMPv3 Group Table information Command: /info/sys/snmpv3/group Sec Model The following table describes the SNMPv3 Group Table information Table 12 Group Table parameters SNMPv3 Target Address Table information Command: /info/sys/snmpv3/taddr Transport Addr Taglist Params SNMPv3 Notify Table information Command: /info/sys/snmpv3/notify NameTag v1v2trapv1v2trap The following table describes the SNMPv3 Notify Table information SNMPv3 dump System information Show last 100 syslog messages System user information Layer 2 information Command: /info/l2 [Layer 2 Menu] fdb - Forwarding Database Information Menu FDB information menu Command: /info/l2/fdb [Forwarding Database Menu] find Link Aggregation Control Protocol information LACP dump Hot Links Trigger information 802.1p information ACL information 802.1x information Command: /info/l2/8021x System capability : Authenticator System status Spanning Tree information The following table describes the STP parameters Table 25 STP parameters Current Root priority (hex) and MAC address of the root between bridges (up to the root bridge) Rapid Spanning Tree and Multiple Spanning Tree information Spanning Tree Group 1: On (RSTP) VLANs: Current Root: Port Hello MaxAge FwdDel Aging auto-negotiated following: Discarding (DISC), Learning (LRN), Forwarding (FWD), or Disabled (DSB) (MAST), or Unknown (UNK) are AUTO, P2P, or SHARED Common Internal Spanning Tree information The following table describes the CIST parameters Table 27 Common Internal Spanning Tree parameter descriptions CIST Root Shows information about the root bridge for the Common Internal Spanning Tree Trunk group information Command: /info/l2/trunk Trunk group 1, port state: 1:STG 1 forwarding 2:STG 1 forwarding VLAN information Layer 2 general information Layer 3 information type tag local broadcast addr rip The following table describes the Address Resolution Protocol Menu options Table 33 ARP information Displays a single ARP entry by IP address Displays the ARP entries on a single port Displays the ARP entries on a single VLAN OSPF information Command: /info/l3/ospf [OSPF Information Menu] aindex - Show area(s) information OSPF general information OSPF interface information OSPF Database information menu The following table describes the OSPF Database information menu options Table 36 OSPF Database information advrtr <router-id(A.B.C.D) asbrsum <adv-rtr(A.B.C.D)>| <link_state_id (A.B.C.D>|<self E2 172.18.1.8/32 via RIP user configuration IP information IGMP multicast group information tion: 1:vrid 2, 205.178.18.210, if 1, renter, prio 100, master, server 2:vrid 1, 205.178.18.202, if 1, renter, prio 100, backup 3:vrid 3, 205.178.18.204, if 1, renter, prio 100, master, proxy •Activity status RMON Information Menu Command: /info/rmon [RMON Information Menu] hist - Show RMON History group information Command: /info/rmon/alarm RMON Alarm group configuration: rLimit fLimit rEvtIdx Link status information Command: /info/link Speed Duplex Flow Ctrl Port information Logical Port to GEA Port mapping Uplink Failure Detection information Information dump Statistics Menu Port Statistics Menu Command: /stats/port <port number [Port Statistics Menu] - Show 802.1x stats brg Command: /stats/port <port number>/8021x Authenticator Statistics: eapolFramesRx eapolFramesTx eapolStartFramesRx AUTHENTICATED to CONNECTING, as a result of a re-authentication request AUTHENTICATED to CONNECTING, as a result of an EAPOL-Start message being received from the Supplicant AUTHENTICATED to DISCONNECTED, as a result of an EAPOLLogoff The following table describes the bridging statistics for a selected port: Table 47 Bridging statistics for port dot1PortInFrames function, including bridge management frames dot1PortOutFrames dot3StatsFCSErrors dot3StatsSingleCollisionFrames dot3StatsMultipleCollisionFrames dot3StatsLateCollisions dot3StatsExcessiveCollisions Command: /stats/port <port number>/if Interface statistics for port 1: ifHCIn Counters ifHCOut Counters Octets: Command: /stats/port <port number>/ip GEA IP statistics for port 1: ipInReceives : ipInHeaderError: ipInDiscards : Table 52 RMON Statistics etherStatsDropEvents etherStatsOctets etherStatsPkts etherStatsBroadcastPkts Layer 2 statistics Command: /stats/l2 [Layer Statistics Menu] - Show FDB Hot Links statistics Command: /stats/l2/hotlink Hot Links Trigger Stats: Trigger 1 statistics: Trigger Name: all Table 58 IP statistics error ipInHdrErrors discovered in processing their IP options, and so on ipInAddrErrors Command: /stats/l3/arp ARP statistics: arpEntriesCur: 2 arpEntriesHighWater: The following table describes the Address Resolution Protocol (ARP) statistics: icmpInParmProbs The number of ICMP Parameter Problem messages received icmpInSrcQuenchs The number of ICMP Source Quench (buffer almost full, stop sending data) messages received Command: /stats/l3/tcp TCP statistics: tcpRtoAlgorithm: tcpRtoMin: tcpRtoMax: Command: /stats/l3/udp UDP statistics: udpInDatagrams: udpOutDatagrams: udpInErrors: Command: /stats/l3/ospf [OSPF stats Menu] - Show global stats area(s) stats interface(s) stats Tx Database Rx ls Requests Tx ls Requests Rx ls Acks Tx ls Acks interface across all OSPF areas Timers Kickoff: send Hello packet) across all OPSF areas and interfaces across all OSPF areas and interfaces Management Processor statistics Command: /stats/mp [MP-specificStatistics Menu] tcb - Show All TCP control blocks in use Page Hits for ACL 1, port 20: Hits for ACL 2, port 21: Meters for ACL Group 1, Port 22: Out of profile: Meters for ACL Group 2, Port 23: Out of profile: Table 74 SNMP statistics snmpInPkts snmpInBadVersions snmpInBadC'tyNames snmpInBadC'tyUses Last update based on response from primary server Last update time: 18:04:16 Tue Feb 27 Current system time: 18:55:49 Tue Feb 27 The following table describes the NTP statistics: Table 75 NTP statistics Primary Server server to synchronize time NTP server Page Configuration Menu Viewing, applying, reverting, and saving changes Viewing pending changes Applying pending changes Reverting changes Saving the configuration Reminders >> Layer 2# vlan VLAN number 5 with name "VLAN 5" created Reminder: VLAN 5 needs to be enabled >> VLAN 5# add The following table describes the System Configuration Menu options Table 80 System Configuration Menu options idle <1-60 notice <1-1024character multi line> <'-'to end Command: /cfg/sys/syslog [Syslog Menu] host - Set IP address of first syslog host host2 Command: /cfg/sys/sshd [SSHD Menu] interval– Set Interval for generating the RSA server key scpadm secret2 telnet secbd enable|disable cmap enable|disable usermap <0-15 user|oper|admin|none Command: /cfg/sys/ssnmp [SNMP Menu] - SNMPv3 Menu name - Set SNMP "sysName Command: /cfg/sys/ssnmp/snmpv3 [SNMPv3 Menu] - usmUser Table Menu - vacmViewTreeFamily Table Menu - vacmAccess Table Menu Command: /cfg/sys/ssnmp/snmpv3/usm [SNMPv3 usmUser 1 Menu] Set USM user name Set authentication protocol The following table describes the SNMPv3 View Configuration Menu options Table 89 SNMPv3 View Configuration Menu options name <1-32characters tree <1-32characters mask <1-32characters Page Table 92 SNMPv3 Community Table Configuration Menu options index <1-32 32 characters Defines the name as defined in /cfg/sys/ssnmp/snmpv3/usm/name. The name can have a maximum of 32 characters Command: /cfg/sys/ssnmp/snmpv3/tparam [SNMPv3 snmpTargetParamsTable 1 Menu] mpmodel - Set message processing model - Delete targetParamsTable entry Table 95 SNMPv3 Notify Table Configuration Menu options entries in the Target Address Table. Any entry in the snmpTargetAddrTable, that matches the value of this tag, is selected Deletes the notify table entry Displays the current notify table configuration Command: /cfg/sys/access/mgmt [Management Networks Menu] add - Add mgmt network definition rem Command: /cfg/sys/access/user/uid <1-10 [User ID cos - Set class of service - Set user name Port configuration Command: /cfg/port <port number [Port 1 Menu] gig - Gig Phy Menu Port Configuration Menu options Main# /oper/port <port number>/dis Command: /cfg/port <port number>/gig [Gigabit Link speed Command: /cfg/port <port number>/fiber [Fiber Link Menu] txctrl - Enable/Disable TX control txpulse Command: /cfg/port <port number>/aclqos/meter [Metering Menu] cir Set committed rate in KiloBits/s mbsize Command: /cfg/port <port number>/aclqos/re-mark <1-63>/inprof [Re-marking- In Profile up1p - Set Update User Priority Menu updscp Layer 2 configuration Command: /cfg/l2 - 802.1x Menu mrst - Multiple Spanning Tree/Rapid Spanning Tree Menu 802.1x Global configuration Command: /cfg/l2/8021x/global [802.1x Global Configuration Menu] Set access control mode 802.1x Port configuration Command: /cfg/l2/8021x/port <port number [802.1x Port Configuration Menu] - Set access control mode qtperiod - Set EAP-Request/Identityquiet time interval Rapid Spanning Tree Protocol / Multiple Spanning Tree Protocol configuration Command: /cfg/l2/mrst [Multiple Spanning Tree Menu] - Common and Internal Spanning Tree menu - Set MST region name Common Internal Spanning Tree configuration Command: /cfg/l2/mrst/cist [Common Internal Spanning Tree Menu] CIST Bridge parameter menu CIST port configuration Command: /cfg/l2/mrst/cist/port <port number [CIST Port - Set port Priority (0-240) cost Spanning Tree configuration Command: /cfg/l2/stp [Spanning Tree Group 1 Menu] - Bridge parameter menu - Port parameter menu remove <1-4095 Command: /cfg/l2/stp/brg [Bridge Spanning Tree Menu] - Set bridge Priority [0-65535] - Set bridge Hello Time [1-10secs] When configuring STP bridge parameters, the following formulas must be used: •2*(fwd-1) >mxage 2 -1) •2*(hello+1) <mxage Forwarding Database configuration Command: /cfg/l2/fdb [FDB Menu] - Static FDB Menu aging Trunk configuration Command: /cfg/l2/thash/set [set IP Trunk Hash Settings Menu] smac - Enable/disable smac hash Command: /cfg/l2/lacp/port <port number [LACP Port 2 Menu] - Set LACP mode - Set LACP port priority adminkey Command: /cfg/l2/hotlink/trigger <trigger number [Trigger 1 Menu] - Master Menu - Backup Menu fdelay ena Layer 3 configuration addr <IP address mask <IP subnet mask mask relay disable|enable Command: /cfg/l3/gw <1-4 IP Static Route configuration Address Resolution Protocol configuration ARP Static configuration Table 138 Static ARP Configuration Menu options add <IP address> <MAC address IP Forwarding configuration Command: /cfg/l3/frwd [IP Forwarding Menu] dirbr - Enable/disable forwarding directed broadcasts [IP Route Map 1 Menu] alist - Access List number aspath - AS Filter Menu IP Access List configuration Autonomous System Path configuration Routing Information Protocol configuration split disable|enable Enables or disables split horizon. The default value is enabled trigg disable|enable Enables or disables Triggered Updates. Triggered Updates are used to speed messages immediately, even if it is not yet time for the update message. The Open Shortest Path First configuration Command: /cfg/l3/ospf [Open Shortest Path First Menu] - OSPF Area (index) Menu range Command: /cfg/l3/ospf/aindex <0-2 [OSPF Area (index) 1 Menu] areaid - Set area ID - Set area type addr mask aindex <0-2 hide disable|enable enable dead <1-65535 trans <1-3600 retra <1-3600 key <key string>|none mdkey <1-255>|none [OSPF Host Entry 1 Menu] - Set host entry IP address - Set area - Set cost IGMP configuration Command: /cfg/l3/igmp/snoop [IGMP Snoop Menu] - Set report timeout mrto - Set multicast router timeout Page Command: /cfg/l3/igmp/igmpflt/filter <1-16 [IGMP Filter 1 Definition Menu] range - Set IP Multicast address range action - Set filter action ena - Enable filter dis - Disable filter del - Delete filter cur - Display current IGMP filter configuration prima Virtual Router Redundancy Protocol configuration Command: /cfg/l3/vrrp [Virtual Router Redundancy Protocol VRRP Virtual Router Table 164 Virtual Router Configuration Menu options Displays the VRRP Priority Tracking Menu for this virtual router. Tracking is a used for electing the master router vrid <1-255 device must be configured with the same virtual router: one that shares the Command: /cfg/l3/vrrp/vr <1-255>/track Router 1 Priority Tracking Menu] vrs - Enable/disable tracking master virtual routers ifs Table 166 Virtual Router Group Configuration Menu options is a proprietary extension to VRRP, used for modifying the standard priority system used for electing the master router Defines the virtual router ID the same as any virtual server) can be any integer between 1 and 255. All Table 167 Virtual Router Group Priority Tracking Configuration Menu options Command: /cfg/l3/vrrp/if <1-255 [VRRP Interface Set authentication types passw Quality of Service configuration Command: /cfg/qos [QOS Menu] 8021p - 802.1p Menu Table 170 QoS Configuration Menu options - Access Control List Item Config Menu block - Access Control List Block Config Menu Access Control List Group Config Menu Display current ACL configuration Command: /cfg/acl/acl <1-4096>/ethernet [Filtering Ethernet to filter on source MAC on destination MAC IPv4 Filter Configuration Menu options Resets the IPv4 parameters for the ACL to their default values Displays the current IPV4 parameters Command: /cfg/acl/acl <1-4096>/tcpudp [Filtering TCP/UDP Menu] Page Remote Monitoring configuration Command: /cfg/rmon [RMON Menu] - RMON History Menu Event Menu Command: /cfg/rmon/event <1-65535 [RMON Event 1 Menu] descn - Set description for the event - Set event type Port mirroring Command: /cfg/pmirr [Port Mirroring mirror Enable/Disable Mirroring Uplink Failure Detection configuration Command: /cfg/ufd/fdp [FDP Menu] ltm - Link to Monitor Menu Dump Command: /cfg/dump Configuration# dump Saving the active GbE2 Interconnect Switch configuration Command: /cfg/ptcfg <TFTP server> <filename Restoring the active GbE2 Interconnect Switch configuration Command: /cfg/gtcfg <TFTP server> <filename /cfg/gtcfg Configuration# gtcfg <TFTP server> <filename Operations Menu Command: /oper/port <port number>/8021x [802.1x Operation Menu] Reinitialize 802.1x access control on this port Initiate reauthentication on this port now Table 192 Operations-LevelPort 802.1x Menu options Boot Options Menu Page Selecting a software image to run Uploading a software image from your GbE2 Interconnect Switch Selecting a configuration block Resetting the GbE2 Interconnect Switch Accessing the ISCLI mode iscli >>Switch# boot cli-modeaos Maintenance Menu Command: /maint/sys [System Maintenance Menu] flags - Set NVRAM flag word The following table describes the System Maintenance Menu options Table 195 System Maintenance Menu options •Events traced by the management processor (MP) •Events traced to a buffer area when a reset occurs The following table describes the Miscellaneous Debug Menu options: Table 197 Miscellaneous Debug Menu options shown: Page Page Command: /maint/ptdmp <server> <filename Use this command to put (save) the system dump to a FTP or TFTP server To save dump information via FTP/TFTP, at the Maintenance# prompt, enter: Maintenance# ptdmp <server> <filename <server Unscheduled system dumps Index