SMC Networks SMC6224M guide

RADIUS/

TACACS+ server

Web

Telnet

1. Client attempts management access.

2. Switch contacts authentication server.

3. Authentication server challenges client.

4. Client responds with proper password or key.

5. Authentication server approves access.

6. Switch grants management access.

console

CONFIGURING THE SWITCH

CLI – Assign a user name to access-level 15 (i.e., administrator), then specify the password.

Console(config)#username bob access-level 15

4-35

Console(config)#username bob password 0 smith

Console(config)#

Configuring Local/Remote Logon Authentication

Use the Authentication Settings menu to restrict management access based on specified user names and passwords. You can manually configure access rights on the switch, or you can use a remote access authentication server based on RADIUS or TACACS+ protocols.

Remote

Authentication Dial-in User Service (RADIUS) and

Terminal Access Controller Access Control System Plus (TACACS+) are logon

authentication protocols that use

software running on a central server to control access to RADIUS-aware or TACACS-aware devices on the network. An authentication server contains a database of multiple user name/password pairs with associated privilege levels for each user that requires management access to the switch.

RADIUS uses UDP while TACACS+ uses TCP. UDP only offers best effort delivery, while TCP offers a connection-oriented transport. Also, note that RADIUS encrypts only the password in the access-request packet from the client to the server, while TACACS+ encrypts the entire body of the packet.

3-50

Image 104

SMC Networks SMC6224M manual Configuring Local/Remote Logon Authentication

Contents

TigerStack 10/100 Page TigerStack 10/100 Management Guide Trademarks Limited Warranty Limited Warranty Contents Contents Contents Command Line Interface Vii Viii Contents Contents Contents Xii Xiii Xiv Appendices Glossary Index Xvi Tables Xvii Xviii Xix Tables Figures Xxi 37 ACL Configuration Extended IP ACL Configuration MAC 39 Binding a Port to an ACL Xxiii Xxiv Key Features Key Features Description of Software Features Lacp Description of Software Features Introduction Description of Software Features Introduction System Defaults System Defaults Snmp Dhcp Introduction Connecting to the Switch Configuration Options Required Connections Connecting to the Switch Remote Connections Stack Operations Unit Numbering Recovering from Stack Failure or Topology Change Resilient IP Interface for Management Access Basic Configuration Console Connection Setting Passwords Setting an IP Address Manual Configuration Dynamic Configuration Enabling Snmp Management Access Community Strings Saving Configuration Settings Trap Receivers Managing System Files Enter the name of the start-up file. Press Enter Managing System Files Initial Configuration Configuring the Switch Using the Web Interface Configuring the Switch Navigating the Web Browser Interface Home Configuration Options Panel Display Main Menu Main Menu ACL IP Filter Sets IP addresses of clients allowed Vlan 157 Vlan ID Displaying System Information Field Attributes System Information Displaying Switch Hardware/Software Versions CLI Specify the hostname, location and contact information Switch Information CLI Use the following command to display version information Displaying Bridge Extension Capabilities Bridge Extension Configuration CLI Enter the following command Setting the Switch’s IP AddressCommand Attributes Manual IP Configuration Using DHCP/BOOTP Dhcp IP Configuration 250 Range SMC6224M 1-8, SMC6248M 1-4, mixed stack Managing FirmwareSource/Destination Unit Stack unit Downloading System Software from a Server Operation Code Image File Transfer Select Start-Up Operation File Saving or Restoring Configuration Settings Source/Destination Unit Stack unit Downloading Configuration Settings from a Server 11 Copy Configuration Settings 12 Setting the Startup Configuration Settings Console Port Settings 13 Console Port Settings Telnet Settings Basic Configuration 14 Enabling Telnet Configuring Event Logging System Log Configuration Logging Levels Level Severity Name Description Remote Log Configuration 15 System Logs Configuring the Switch 16 Remote Logs Displaying Log Messages CLI This example shows the event message stored in RAM Sending Simple Mail Transfer Protocol Alerts 18 Enabling and Configuring Smtp Alerts Resetting the System 19 Resetting the System Setting the System Clock Configuring Sntp 20 Sntp Configuration Setting the Time Zone 21 Setting the System Clock Setting Community Access Strings Simple Network Management Protocol Access Mode Specifying Trap Managers and Trap Types 23 Configuring IP Trap Managers User Authentication Configuring User Accounts 24 Access Levels Configuring Local/Remote Logon Authentication Command Usage Radius Settings Tacacs Settings 25 Authentication Settings Configuring Https 100 Https System Support Web Browser Operating System Replacing the Default Secure-site Certificate 26 Https Settings Configuring the Secure Shell Command Usage User Authentication Generating the Host Key Pair 27 SSH Host-Key Settings Configuring the SSH Server SSH server includes basic settings for authentication 28 SSH Server Settings Configuring Port Security Command Usage Configuring 802.1X Port Authentication 29 Configuring Port SecurityPage Displaying 802.1X Global Settings 802.1X protocol provides client authentication802.1X System Authentication Control The global setting for Web Click Security, 802.1X, Information Configuring 802.1X Global Settings CLI This example shows the default global setting for Configuring Port Settings for CLI This example enables 802.1X globally for the switch 32 802.1X Port Configuration Authorized 108 Displaying 802.1X Statistics 802.1X Statistics 33 Displaying 802.1X Port Statistics CLI This example displays the 802.1X statistics for port Filtering Addresses for Management Access 34 Creating a Web IP Filter List CLI This example allows Snmp access for a specific client Access Control ListsConfiguring Access Control Lists Setting the ACL Name and Type 35 Selecting ACL Type CLI This example creates a standard IP ACL named david Configuring a Standard IP ACL Command Attributes Configuring an Extended IP ACL Command Attributes 36 ACL Configuration Standard IP Configuring the Switch 37 ACL Configuration Extended IP Configuring a MAC ACL Command Attributes 120 38 ACL Configuration MAC Binding a Port to an Access Control List 39 Binding a Port to an ACL Field Attributes Web Port ConfigurationDisplaying Connection Status Field Attributes CLI Web Click Port, Port Information or Trunk Information Current Status Configuring Interface Connections CLI This example shows the connection status for Port Configuring the Switch 41 Port/Trunk Configuration Creating Trunk Groups Command Usage Statically Configuring a Trunk Command Usage 42 Static Trunk Configuration Enabling Lacp on Selected Ports Command Usage 163 43 Lacp Trunk Configuration 164 100 101 44 Lacp Aggregation Port 102 169 103 Displaying Lacp Port CountersYou can display statistics for Lacp protocol messages Lacp Port Counters Displaying Lacp Settings and Status for the Local Side Lacp Internal Configuration Information104 CLI The following example displays Lacp counters 105 106 46 Lacp Port Internal Information 107 Displaying Lacp Settings and Status for the Remote SideLacp Neighbor Configuration Information 108 47 Lacp Port Neighbors Information Setting Broadcast Storm Thresholds 109 110 48 Port Broadcast Control Configuring Port Mirroring 111 49 Mirror Port Configuration 112 Rate Limit Granularity Configuring Rate Limits113 Rate Limit Configuration 114 Showing Port Statistics 115 116 Port Statistics 117 Port Statistics 118 Rmon Statistics 119 120 52 Port Statistics 121 CLI This example shows statistics for port 122 Address Table SettingsSetting Static Addresses 53 Configuring a Static Address Table 123 Displaying the Address Table 124 54 Configuring a Dynamic Address Table 125 Spanning Tree Algorithm Configuration Changing the Aging Time126 CLI This example sets the aging time to 400 seconds 127 Displaying Global Settings 128 129 130 56 STA Information 131 193 132 Configuring Global SettingsGlobal settings apply to the entire switch Root Device Configuration 133 Configuration Settings for Rstp 134 57 STA Configuration 135 Displaying Interface Settings 136 137 138 139 58 STA Port Information CLI This example shows the STA attributes for port Configuring Interface Settings140 141 142 Vlan Configuration Ieee 802.1Q VLANs143 CLI This example sets STA attributes for port 144 Assigning Ports to VLANs 145 146 147 Forwarding Tagged/Untagged Frames Enabling or Disabling Gvrp Global Setting CLI This example enables Gvrp for the switch148 Displaying Basic Vlan Information Command Attributes Web 149Displaying Current VLANs Web Click VLAN, 802.1Q VLAN, Basic Information Command Attributes CLI 150 151 Creating VLANs 152 CLI This example creates a new Vlan 153 Adding Static Members to VLANs Vlan Index 154 64 Configuring a Vlan Static Table 155 156 Adding Static Members to VLANs Port Index Configuring Vlan Behavior for Interfaces 157 158 66 Vlan Port Configuration 159 Private VLANs 160 161 Displaying Current Private VLANs 162 67 Private Vlan Information Configuring Private VLANs 163 Each community Vlan must be associated with a primary Vlan 164Associating VLANs 165 Displaying Private Vlan Interface Information Configuring Private Vlan Interfaces 166 167 71 Private Vlan Port Configuration 168 Class of Service Configuration Layer 2 Queue SettingsSetting the Default Priority for Interfaces 169 CLI This example assigns a default priority of 5 to port 170 171 Mapping CoS Values to Egress Queues10 Mapping CoS Values to Egress Queues 11 CoS Priority Levels 172 73 Traffic Classes Selecting the Queue Mode 173 Setting the Service Weight for Traffic Classes 174 Mapping Layer 3/4 Priorities to CoS Values Layer 3/4 Priority Settings175 Mapping IP Precedence 176Selecting IP Precedence/DSCP Priority 177 12 Mapping IP Precedence 13 Mapping Dscp Priority Values 178Mapping Dscp Priority 179 78 Mapping IP Dscp Priority Values 180 Mapping IP Port Priority 181 79 IP Port Priority Status 14 Egress Queue Priority Mapping 182Mapping CoS Values to ACLs 183 81 ACL CoS Priority Multicast Filtering 184 185 Configuring Igmp Snooping and Query ParametersLayer 2 Igmp Snooping and Query 186 82 Igmp Configuration 187 188 Displaying Interfaces Attached to a Multicast Router 189 Specifying Static Interfaces for a Multicast Router Displaying Port Members of Multicast Services 190 191 85 IP Multicast Registration Table Assigning Ports to Multicast Services 192 193 86 Igmp Member Port Table 194 Using the Command Line Interface Accessing the CLI Telnet Connection Using the Command Line Interface Entering Commands This section describes how to enter CLI commandsKeywords and Arguments Minimum Abbreviation Command Completion Getting Help on Commands Showing Commands Partial Keyword Lookup Negating the Effect of CommandsUsing Command History Command Modes Understanding Command ModesExec Commands Configuration Commands Configuration Modes Mode Command Prompt Command Line Processing Command Line Processing Command Groups Command Groups Command Groups Line Commands Line Commands Line Login Syntax Login local no loginLogin local Line Configuration Password Username 4-35 passwordSyntax Password 0 7 password no password No password is specified CLI Disabled 0 seconds Telnet 600 seconds Timeout login responseLogin 4-16password-thresh4-20 Exec-timeout To set the timeout to two minutes, enter this commandSilent-time4-21exec-timeout Syntax Exec-timeout seconds no exec-timeout Password-thresh Silent-time4-21 Timeout login responseSyntax Password-thresh threshold no password-thresh Default value is three attempts Default value is no silent-time To set the silent time to 60 seconds, enter this commandPassword-thresh4-20 Silent-time To specify 7 data bits, enter this command DatabitsSyntax Databits 7 8 no databits Seven data bits per character Eight data bits per character Parity SpeedSyntax Parity none even odd no parity Syntax Speed bps no speed Stopbits Syntax stopbits 1 Disconnect Show lineSyntax disconnect session-id Syntax Show line console vty General Commands General CommandsTo show all lines, enter this command Enable Syntax enable levelDisable Enable password Level None DisableConfigure Show history Reload End This command exits the configuration program ExitQuit Any System Management Commands System Management CommandsThis example shows how to quit a CLI session Device Designation Commands Device Designation CommandsPrompt Syntax Prompt string no prompt User Access Commands User Access CommandsHostname Syntax Hostname name no hostname 10 Default Login Settings Username Enable password Default is level Default password is super 11 IP Filter Commands IP Filter CommandsEnable 4-27 authentication enable Management All addresses Show management Web Server Commands 12 Web Server Commands Default Setting Command Mode Syntax No ip http server Default SettingIp http port Ip http server Ip http port Syntax No ip http secure-server Default SettingIp http secure-server Ip http secure-port 13 Https System SupportIp http secure-port4-43 Copy tftp https-certificate Portnumber The UDP port used for HTTPS. Range Telnet Server Commands 14 Telnet Server CommandsIp telnet port Ip http secure-server4-42 Syntax No ip telnet server Default Setting Ip telnet serverIp telnet server Ip telnet port Secure Shell Commands 15 SSH Commands Public key type Command Line Interface Ip ssh server Syntax No ip ssh server Default SettingDisabled Ip ssh timeout Syntax Ip ssh timeout seconds no ip ssh timeoutExec-timeout4-19 show ip ssh Ip ssh crypto host-key generate 4-52 show ssh Ip ssh authentication-retries Ip ssh server-key sizeShow ip ssh Key-size- The size of server key. Range 512-896 bits Delete public-key Ip ssh crypto host-key generateSyntax Delete public-key username dsa rsa Syntax Ip ssh crypto host-key generate dsa rsa Ip ssh crypto zeroize Syntax Ip ssh crypto zeroize dsa rsa This command saves host key from RAM to flash memory Ip ssh save host-keySyntax Ip ssh save host-key dsa rsa Saves both the DSA and RSA key This command displays the current SSH server connections Show ip sshShow ssh 16 show ssh display description Show public-key Syntax Show public-key user username hostUsername Name of an SSH user. Range 1-8 characters Shows all public keys Console#show public-key host Host Event Logging Commands 17 Event Logging CommandsSyntax No logging on Default Setting Logging on 18 Logging Levels Logging historyLogging history 4-59 clear logging Flash errors level 3 RAM warnings level 6 Logging hostSyntax No logging host hostipaddress Hostipaddress The IP address of a syslog server Logging facility Syntax No logging facility type Syntax Logging trap level no logging trap Enabled Level 6Logging trap Clear logging Show loggingSyntax Clear logging flash ram Syntax Show logging flash ram sendmail trap Following example displays settings for the trap function 19 show logging flash/ram display description Syntax Show log flash ram login tail Show log20 show logging trap display description Show logging sendmail Following example shows sample messages stored in RAM Smtp Alert Commands21 Smtp Alert Commands Logging sendmail host Syntax No logging sendmail host ipaddress Logging sendmail level Syntax Logging sendmail level level Logging sendmail source-email Logging sendmail destination-emailSyntax No logging sendmail source-email email-address This example will set the source email john@acme.com Show logging sendmail Syntax No logging sendmail Default SettingLogging sendmail Time Commands 22 Time Commands Sntp server 4-73 sntp poll 4-74 show sntp Syntax No sntp client Default SettingSntp client Sntp client 4-72 sntp poll 4-74 show sntp Sntp serverSyntax Sntp server ip1 ip2 ip3 Sntp poll Show sntpSyntax Sntp poll seconds no sntp poll Sntp client Clock timezone Calendar set Show sntpSyntax Year Year 4-digit. Range System Status Commands This command displays the system clock23 System Status Commands Show calendar Syntax Light unit unit Show startup-configLight unit Example Show running-config Show running-config4-80 Example Show system Show startup-config4-78This command displays system information Show users Show version Frame Size Commands 24 Frame Size CommandsSyntax No jumbo frame Default Setting Jumbo frame Flash/File Commands 25 Flash/File Commands Copy Privileged Exec Following example shows how to download a configuration file This command deletes a file or image Delete This command displays a list of files in flash memory Syntax Dir unit boot-rom config opcode filenameDir Dir Delete public-key4-52 Whichboot Following example shows how to display all file informationSyntax whichboot unit File information is shown below Boot system Syntax Boot system unit boot-romconfig opcode filename Authentication Commands Authentication SequenceDir 4-90 whichboot 27 Authentication Commands Authentication login Local Authentication enable Username for setting the local user names and passwords 29 Radius Client Commands Radius Client Default Setting Auth-port Timeout 5 secondsRetransmit Command Mode Radius-server host Radius-server port Radius-server keySyntax Radius-server port portnumber no radius-server port 1812 Radius-server timeout Radius-server retransmit Show radius-server 30 Tacacs Commands TACACS+ ClientTacacs-server host Hostipaddress IP address of a TACACS+ server Tacacs-server port Tacacs-server keySyntax Tacacs-server port portnumber no tacacs-server port Syntax Tacacs-server key keystring no tacacs-server key Port Security Commands Show tacacs-server 31 Port Security Commands Status Disabled Action None Maximum AddressesInterface Configuration Ethernet Port security 105 802.1X Port Authentication 32 802.1X Port Authentication Dot1x default Syntax No system-auth-control Default SettingDot1x system-auth-control Dot1x max-req Default Command Mode Interface ConfigurationDefault Dot1x port-control Dot1x operation-mode Single-host Dot1x re-authenticate Dot1x re-authenticationSyntax Dot1x re-authenticate interface Syntax No dot1x re-authentication Command Mode Seconds The number of seconds. Range Dot1x timeout quiet-periodDot1x timeout re-authperiod Dot1x timeout tx-period Show dot1xSyntax Show dot1x statistics interface interface Statistics Displays dot1x status for each port Supplicant-timeout- Supplicant timeout Before re-transmitting EAP packet Max Count Access this portState Current state including initialize, reauthenticate 115 Access Control List Commands Access Control Lists 34 IP ACLs 33 Access Control ListsIP ACLs Access-list ip Syntax No access-list ip standard extended aclname Standard ACL Permit, deny Ip access-group4-123 show ip access-list4-123Syntax No permit deny any source bitmask host source Access-list ip No permit deny tcp Precedence source-port control-flag Extended ACL 122 Show ip access-list Ip access-groupSyntax Show ip access-list standard extended aclname Syntax No ip access-group aclname This command shows the ports assigned to IP ACLs Show ip access-groupShow ip access-list4-123 Map access-list ip Syntax No map access-list ip aclname cos cos-valueQueue cos-map4-224 Show map access-list ip 35 Egress Queue Priority Mapping Map access-list ip Show map access-list ipSyntax Show map access-list ip interface Access-list mac Syntax No access-list mac aclnameMAC ACLs 36 MAC ACLs Permit, deny MAC ACL Syntax No permit deny MAC ACL Show mac access-list Mac access-groupSyntax Show mac access-list aclname Syntax Mac access-group aclname Show mac access-group Map access-list macShow mac access-list4-130 This command shows the ports assigned to MAC ACLs Show map access-list mac Queue cos-map4-224 Show map access-list macSyntax Show map access-list mac interface 37 Egress Queue Priority Mapping 38 ACL Information Show access-listACL Information Privileged Executive Show access-groupThis command shows the port assignments of ACLs Snmp-server community Snmp Commands39 Snmp Commands Snmp-server contact Syntax Snmp-server contact string no snmp-server contact Snmp-server location Syntax Snmp-server location text no snmp-server location Snmp-server host Host Address None Snmp Version Snmp-server enable traps Issue authentication and link-up-down traps This command checks the status of Snmp communications Show snmp 141 Interface Commands 40 Interface Commands Interface DescriptionPort-channel channel-idRange Syntax Description string no description Following example adds a description to port Interface Configuration Ethernet, Port ChannelSpeed-duplex Negotiation 4-145 capabilities Syntax No negotiation Default SettingNegotiation Capabilities 4-146speed-duplex4-144 Following example configures port 11 to use autonegotiationCapabilities Negotiation 4-145speed-duplex4-144 flowcontrol Syntax No flowcontrol Default SettingFlowcontrol Following example enables flow control on port ShutdownNegotiation Capabilities flowcontrol, symmetric Syntax No shutdown Following example disables port Switchport broadcast packet-rateAll interfaces are enabled This command clears statistics on an interface Port-channel channel-idRange Default SettingClear counters Syntax Clear counters interface This command displays the status for an interface Show interfaces statusFollowing example clears statistics on port Syntax Show interfaces status interface This command displays interface statistics Show interfaces countersSyntax Show interfaces counters interface Shows the counters for all interfaces 153 Show interfaces switchport Syntax Show interfaces switchport interfaceThis example shows the configuration setting for port Shows all interfaces 41 Interfaces Switchport Statistics Mirror Port Commands 42 Mirror Port CommandsInterface Configuration Ethernet, destination port Port monitor This command displays mirror information Show port monitorSyntax Show port monitor interface Shows all sessions 43 Rate Limit Commands Rate Limit CommandsFollowing shows mirroring configured from port 6 to port Actual rate limit = Rate limit level * Granularity Rate-limitFast Ethernet Gigabit Ethernet Global Configuration Ethernet, Port Channel Rate-limit granularity Show rate-limit Link Aggregation CommandsUse this command to display the rate limit granularity 44 Link Aggregation Commands Guidelines for Creating Trunks Channel-group Syntax Channel-group channel-idno channel-groupChannel-id- Trunk index Range Current port will be added to this trunk Following example creates trunk 1 and then adds port Syntax no lacp Default SettingLacp 165 Lacp system-priority 32768 Lacp admin-keyEthernet Interface Lacp admin-key Port Channel Interface Configuration Port Channel Lacp port-priority Port Channel all This command displays Lacp informationShow lacp 45 show lacp counters display description 46 show lacp internal display description Expected to be enabled in the absence of administrative 47 show lacp neighbors display description 48 show lacp sysid display description Address Table Commands49 Address Table Commands Mac-address-table static Mac-address- MAC addressEthernet unit/port -unit- Stack unit Vlan-id- Vlan ID Range Mac-address- MAC address Mask Bits to match in the address Clear mac-address-table dynamicShow mac-address-table 178 Mac-address-table aging-time Show mac-address-table aging-time Spanning Tree Commands 50 Spanning Tree Commands Spanning-tree Syntax No spanning-tree Default SettingSpanning tree is enabled Rstp Spanning-tree modeSyntax Spanning-tree mode stp rstp no spanning-tree mode Spanning-tree forward-time Spanning-tree hello-time Spanning-tree max-age Spanning-tree priority Spanning-tree pathcost method Spanning-tree transmission-limitLong method Count The transmission limit in seconds. Range Spanning-tree spanning-disabled This command limits the maximum transmission rate for BPDUsSyntax No spanning-tree spanning-disabled Default Setting This example disables the spanning tree algorithm for port Spanning-tree cost Syntax Spanning-tree cost cost no spanning-tree cost Spanning-tree port-priority Spanning-tree edge-portPriority The priority for a port. Range 0-240, in steps Syntax No spanning-tree edge-port Syntax No spanning-tree portfast Default Setting Spanning-tree portfast Spanning-tree link-type Spanning-treeedge-port4-189 Port-channel channel-idRange Command Mode Spanning-tree protocol-migrationAuto Syntax Spanning-tree protocol-migration interface Syntax Show spanning-tree interface This command shows the configuration for the spanning treeShow spanning-tree 194 Vlan Commands Editing Vlan Groups195 Vlan database 196 Vlan 197 By default only Vlan 1 exists and is activeVlan Database Configuration Configuring Vlan Interfaces 53 Configuring Vlan Interfaces198 Interface vlan 199 Switchport modeAll ports are in hybrid mode with the Pvid set to Vlan Switchport acceptable-frame-types Switchport acceptable-frame-types4-200200 All frame types 201 Switchport ingress-filteringSyntax No switchport ingress-filtering Default Setting Switchport native vlan 202 Switchport allowed vlan 203 No VLANs are included in the forbidden list Switchport forbidden vlan204 54 Show Vlan Commands Displaying Vlan Information205 Show vlan 206 Configuring Private VLANsFollowing example shows how to display information for Vlan 55 Private Vlan Commands 207 208 Private-vlan 209 No private-vlan primary-vlan-idassociation 210Private vlan association Normal Vlan Switchport mode private-vlan211 Switchport private-vlan host-association Switchport private-vlan isolated212 Isolated-vlan-id- ID of isolated VLAN. Range Switchport private-vlan mapping 213 Syntax Show vlan private-vlan community isolated primary 214Show vlan private-vlan Gvrp and Bridge Extension Commands 56 Gvrp and Bridge Extension CommandsSyntax No bridge-ext gvrp Default Setting 215 216 Show bridge-ext Switchport gvrp Show gvrp configurationSyntax No switchport gvrp Default Setting Syntax Show gvrp configuration interface Garp timer 218 Show garp timer Syntax Show garp timer interfaceShows all Garp timers 219 Priority Commands Priority Commands Layer57 Priority Commands 58 Priority Commands Layer Queue mode Syntax Queue mode strict wrr no queue modeWeighted Round Robin 221 Switchport priority default 222 223 Queue bandwidth Queue cos-map 59 Default CoS Priority Levels224 Show queue mode This command shows the current queue mode225 Show queue cos-map4-226 This command shows the class of service priority map 226Show queue bandwidth Show queue cos-map 227 Priority Commands Layer 360 Priority Commands Layer 3 Syntax No map ip port Default Setting 228 Syntax No map ip precedence Default Setting 229 61 Mapping IP Precedence Values List below shows the default priority mapping230 Syntax No map ip dscp Default Setting 231 232 62 IP Dscp to CoS Values Use this command to show the IP port priority map 233Show map ip port Syntax Show map ip port interface This command shows the IP precedence priority map 234Show map ip precedence Syntax Show map ip precedence interface This command shows the IP Dscp priority map 235Show map ip dscp Syntax Show map ip dscp interface Multicast Filtering Commands Igmp Snooping Commands63 Multicast Filtering Commands 64 Igmp Snooping Commands Syntax No ip igmp snooping Default Setting Following example enables Igmp snooping237 Ip igmp snooping Following configures the switch to use Igmp Version 238Ip igmp snooping version Igmp Version Show mac-address-table multicast 239Show ip igmp snooping 240 Igmp Query Commands Layer65 Igmp Query Commands Layer Syntax No ip igmp snooping querier Default Setting 241Ip igmp snooping querier Ip igmp snooping query-count Following shows how to configure the query count to 242Ip igmp snooping query-interval Ip igmp snooping query-max-response-time4-243 Ip igmp snooping query-max-response-time Seconds The report delay advertised in Igmp queries. Range243 Ip igmp snooping router-port-expire-time Switch must use IGMPv2 for this command to take effect244 Static Multicast Routing Commands 66 Static Multicast Routing Commands245 Ip igmp snooping vlan mrouter Displays multicast router ports for all configured VLANs 246Show ip igmp snooping mrouter Syntax Show ip igmp snooping mrouter vlan vlan-id IP Interface Commands 67 IP Interface CommandsIp address 247 Interface Configuration Vlan 248 Ip default-gateway Syntax Ip default-gateway gateway no ip default-gatewayIp dhcp restart 249 This command displays the settings of an IP interface Show ip interface250 All interfaces Show ip redirects Ping251 Syntax Ping host size size count count 252 Interface Software Features Management Features Groups 1, 2, 3, 9 Statistics, History, Alarm, Event Standards Management Information Bases Appendix B Troubleshooting Problems Accessing the Management Interface Table B-1 Troubleshooting Chart Symptom Action Using System Logs Troubleshooting Glossary-1 Glossary-2 Glossary-3 Glossary-4 Glossary-5 Glossary-6 Glossary-7 Glossary-8 User Datagram Protocol UDPVirtual LAN Vlan XModem Numerics Index-1 Index-2 Igmp Index-3 Snmp Snmp Index-4 Page For Technical SUPPORT, Call