Configuring 802.1X Port Authentication | SMC Networks SMC6224M

CONFIGURING THE SWITCH

Web – Click Security, Port Security. Set the action to take when an invalid address is detected on a port, mark the checkbox in the Status column to enable security for a port, set the maximum number of MAC addresses allowed on a port, and click Apply.

Figure 3-29 Configuring Port Security

CLI – This example selects the target port, sets the port security action to send a trap and disable the port and sets the maximum MAC addresses allowed on the port, and then enables port security for the port.

Console(config)#interface ethernet 1/5
Console(config-if)#port security action trap-and-shutdown	4-104

Console(config-if)#port security max-mac-count 20

Console(config-if)#port security

Console(config-if)#

Configuring 802.1X Port Authentication

Network switches can provide open and easy access to network resources by simply attaching a client PC. Although this automatic configuration and access is a desirable feature, it also allows unauthorized personnel to easily intrude and possibly gain access to sensitive network data.

The IEEE 802.1X (dot1X) standard defines a port-based access control procedure that prevents unauthorized access to a network by requiring users to first submit credentials for authentication. Access to all switch ports in a network can be centrally controlled from a server, which means that authorized users can use the same credentials for authentication from any point within the network.

3-66

Image 120

SMC Networks SMC6224M manual Configuring 802.1X Port Authentication, Configuring Port Security

Contents

TigerStack 10/100 Page TigerStack 10/100 Management Guide Trademarks Limited Warranty Limited Warranty Contents Contents Contents Command Line Interface Vii Viii Contents Contents Contents Xii Xiii Xiv Appendices Glossary Index Xvi Tables Xvii Xviii Xix Tables Figures Xxi 37 ACL Configuration Extended IP ACL Configuration MAC 39 Binding a Port to an ACL Xxiii Xxiv Key Features Key Features Description of Software Features Lacp Description of Software Features Introduction Description of Software Features Introduction System Defaults System Defaults Snmp Dhcp Introduction Connecting to the Switch Configuration Options Required Connections Connecting to the Switch Remote Connections Stack Operations Unit Numbering Recovering from Stack Failure or Topology Change Resilient IP Interface for Management Access Basic Configuration Console Connection Setting Passwords Setting an IP Address Manual Configuration Dynamic Configuration Enabling Snmp Management Access Community Strings Saving Configuration Settings Trap Receivers Managing System Files Enter the name of the start-up file. Press Enter Managing System Files Initial Configuration Configuring the Switch Using the Web Interface Configuring the Switch Navigating the Web Browser Interface Home Configuration Options Panel Display Main Menu Main Menu ACL IP Filter Sets IP addresses of clients allowed Vlan 157 Vlan ID Displaying System Information Field Attributes System Information Displaying Switch Hardware/Software Versions CLI Specify the hostname, location and contact information Switch Information CLI Use the following command to display version information Displaying Bridge Extension Capabilities Bridge Extension Configuration Setting the Switch’s IP Address Command AttributesCLI Enter the following command Manual IP Configuration Using DHCP/BOOTP Dhcp IP Configuration 250 Managing Firmware Source/Destination Unit Stack unitRange SMC6224M 1-8, SMC6248M 1-4, mixed stack Downloading System Software from a Server Operation Code Image File Transfer Select Start-Up Operation File Saving or Restoring Configuration Settings Source/Destination Unit Stack unit Downloading Configuration Settings from a Server 11 Copy Configuration Settings 12 Setting the Startup Configuration Settings Console Port Settings 13 Console Port Settings Telnet Settings Basic Configuration 14 Enabling Telnet Configuring Event Logging System Log Configuration Logging Levels Level Severity Name Description Remote Log Configuration 15 System Logs Configuring the Switch 16 Remote Logs Displaying Log Messages CLI This example shows the event message stored in RAM Sending Simple Mail Transfer Protocol Alerts 18 Enabling and Configuring Smtp Alerts Resetting the System 19 Resetting the System Setting the System Clock Configuring Sntp 20 Sntp Configuration Setting the Time Zone 21 Setting the System Clock Setting Community Access Strings Simple Network Management Protocol Access Mode Specifying Trap Managers and Trap Types 23 Configuring IP Trap Managers User Authentication Configuring User Accounts 24 Access Levels Configuring Local/Remote Logon Authentication Command Usage Radius Settings Tacacs Settings 25 Authentication Settings Configuring Https 100 Https System Support Web Browser Operating System Replacing the Default Secure-site Certificate 26 Https Settings Configuring the Secure Shell Command Usage User Authentication Generating the Host Key Pair 27 SSH Host-Key Settings Configuring the SSH Server SSH server includes basic settings for authentication 28 SSH Server Settings Configuring Port Security Command Usage Configuring 802.1X Port Authentication 29 Configuring Port SecurityPage Displaying 802.1X Global Settings 802.1X protocol provides client authentication802.1X System Authentication Control The global setting for Web Click Security, 802.1X, Information Configuring 802.1X Global Settings CLI This example shows the default global setting for Configuring Port Settings for CLI This example enables 802.1X globally for the switch 32 802.1X Port Configuration Authorized 108 Displaying 802.1X Statistics 802.1X Statistics 33 Displaying 802.1X Port Statistics CLI This example displays the 802.1X statistics for port Filtering Addresses for Management Access 34 Creating a Web IP Filter List Access Control Lists Configuring Access Control ListsCLI This example allows Snmp access for a specific client Setting the ACL Name and Type 35 Selecting ACL Type CLI This example creates a standard IP ACL named david Configuring a Standard IP ACL Command Attributes Configuring an Extended IP ACL Command Attributes 36 ACL Configuration Standard IP Configuring the Switch 37 ACL Configuration Extended IP Configuring a MAC ACL Command Attributes 120 38 ACL Configuration MAC Binding a Port to an Access Control List 39 Binding a Port to an ACL Port Configuration Displaying Connection StatusField Attributes Web Field Attributes CLI Web Click Port, Port Information or Trunk Information Current Status Configuring Interface Connections CLI This example shows the connection status for Port Configuring the Switch 41 Port/Trunk Configuration Creating Trunk Groups Command Usage Statically Configuring a Trunk Command Usage 42 Static Trunk Configuration Enabling Lacp on Selected Ports Command Usage 163 43 Lacp Trunk Configuration 164 100 101 44 Lacp Aggregation Port 102 169 103 Displaying Lacp Port CountersYou can display statistics for Lacp protocol messages Lacp Port Counters Displaying Lacp Settings and Status for the Local Side Lacp Internal Configuration Information104 CLI The following example displays Lacp counters 105 106 46 Lacp Port Internal Information Displaying Lacp Settings and Status for the Remote Side Lacp Neighbor Configuration Information107 108 47 Lacp Port Neighbors Information Setting Broadcast Storm Thresholds 109 110 48 Port Broadcast Control Configuring Port Mirroring 111 49 Mirror Port Configuration 112 Configuring Rate Limits 113Rate Limit Granularity Rate Limit Configuration 114 Showing Port Statistics 115 116 Port Statistics 117 Port Statistics 118 Rmon Statistics 119 120 52 Port Statistics 121 CLI This example shows statistics for port Address Table Settings Setting Static Addresses122 53 Configuring a Static Address Table 123 Displaying the Address Table 124 54 Configuring a Dynamic Address Table 125 Spanning Tree Algorithm Configuration Changing the Aging Time126 CLI This example sets the aging time to 400 seconds 127 Displaying Global Settings 128 129 130 56 STA Information 131 193 Configuring Global Settings Global settings apply to the entire switch132 Root Device Configuration 133 Configuration Settings for Rstp 134 57 STA Configuration 135 Displaying Interface Settings 136 137 138 139 58 STA Port Information Configuring Interface Settings 140CLI This example shows the STA attributes for port 141 142 Vlan Configuration Ieee 802.1Q VLANs143 CLI This example sets STA attributes for port 144 Assigning Ports to VLANs 145 146 147 Forwarding Tagged/Untagged Frames Enabling or Disabling Gvrp Global Setting CLI This example enables Gvrp for the switch148 Displaying Basic Vlan Information Command Attributes Web 149Displaying Current VLANs Web Click VLAN, 802.1Q VLAN, Basic Information Command Attributes CLI 150 151 Creating VLANs 152 CLI This example creates a new Vlan 153 Adding Static Members to VLANs Vlan Index 154 64 Configuring a Vlan Static Table 155 156 Adding Static Members to VLANs Port Index Configuring Vlan Behavior for Interfaces 157 158 66 Vlan Port Configuration 159 Private VLANs 160 161 Displaying Current Private VLANs 162 67 Private Vlan Information Configuring Private VLANs 163 164 Associating VLANsEach community Vlan must be associated with a primary Vlan 165 Displaying Private Vlan Interface Information Configuring Private Vlan Interfaces 166 167 71 Private Vlan Port Configuration 168 Class of Service Configuration Layer 2 Queue SettingsSetting the Default Priority for Interfaces 169 CLI This example assigns a default priority of 5 to port 170 171 Mapping CoS Values to Egress Queues10 Mapping CoS Values to Egress Queues 11 CoS Priority Levels 172 73 Traffic Classes Selecting the Queue Mode 173 Setting the Service Weight for Traffic Classes 174 Layer 3/4 Priority Settings 175Mapping Layer 3/4 Priorities to CoS Values 176 Selecting IP Precedence/DSCP PriorityMapping IP Precedence 177 12 Mapping IP Precedence 178 Mapping Dscp Priority13 Mapping Dscp Priority Values 179 78 Mapping IP Dscp Priority Values 180 Mapping IP Port Priority 181 79 IP Port Priority Status 182 Mapping CoS Values to ACLs14 Egress Queue Priority Mapping 183 81 ACL CoS Priority Multicast Filtering 184 Configuring Igmp Snooping and Query Parameters Layer 2 Igmp Snooping and Query185 186 82 Igmp Configuration 187 188 Displaying Interfaces Attached to a Multicast Router 189 Specifying Static Interfaces for a Multicast Router Displaying Port Members of Multicast Services 190 191 85 IP Multicast Registration Table Assigning Ports to Multicast Services 192 193 86 Igmp Member Port Table 194 Using the Command Line Interface Accessing the CLI Telnet Connection Using the Command Line Interface Entering Commands This section describes how to enter CLI commandsKeywords and Arguments Minimum Abbreviation Command Completion Getting Help on Commands Showing Commands Negating the Effect of Commands Using Command HistoryPartial Keyword Lookup Understanding Command Modes Exec CommandsCommand Modes Configuration Commands Configuration Modes Mode Command Prompt Command Line Processing Command Line Processing Command Groups Command Groups Command Groups Line Commands Line Commands Line Login Syntax Login local no loginLogin local Line Configuration Password Username 4-35 passwordSyntax Password 0 7 password no password No password is specified Timeout login response Login 4-16password-thresh4-20CLI Disabled 0 seconds Telnet 600 seconds Exec-timeout To set the timeout to two minutes, enter this commandSilent-time4-21exec-timeout Syntax Exec-timeout seconds no exec-timeout Password-thresh Silent-time4-21 Timeout login responseSyntax Password-thresh threshold no password-thresh Default value is three attempts Default value is no silent-time To set the silent time to 60 seconds, enter this commandPassword-thresh4-20 Silent-time To specify 7 data bits, enter this command DatabitsSyntax Databits 7 8 no databits Seven data bits per character Eight data bits per character Parity SpeedSyntax Parity none even odd no parity Syntax Speed bps no speed Stopbits Syntax stopbits 1 Disconnect Show lineSyntax disconnect session-id Syntax Show line console vty General Commands To show all lines, enter this commandGeneral Commands Enable Syntax enable levelDisable Enable password Level Disable ConfigureNone Show history Reload End This command exits the configuration program ExitQuit Any System Management Commands This example shows how to quit a CLI sessionSystem Management Commands Device Designation Commands Device Designation CommandsPrompt Syntax Prompt string no prompt User Access Commands User Access CommandsHostname Syntax Hostname name no hostname 10 Default Login Settings Username Enable password Default is level Default password is super IP Filter Commands Enable 4-27 authentication enable11 IP Filter Commands Management All addresses Show management Web Server Commands 12 Web Server Commands Default Setting Command Mode Syntax No ip http server Default SettingIp http port Ip http server Syntax No ip http secure-server Default Setting Ip http secure-serverIp http port Ip http secure-port 13 Https System SupportIp http secure-port4-43 Copy tftp https-certificate Portnumber The UDP port used for HTTPS. Range Telnet Server Commands 14 Telnet Server CommandsIp telnet port Ip http secure-server4-42 Syntax No ip telnet server Default Setting Ip telnet serverIp telnet server Ip telnet port Secure Shell Commands 15 SSH Commands Public key type Command Line Interface Syntax No ip ssh server Default Setting DisabledIp ssh server Ip ssh timeout Syntax Ip ssh timeout seconds no ip ssh timeoutExec-timeout4-19 show ip ssh Ip ssh crypto host-key generate 4-52 show ssh Ip ssh authentication-retries Ip ssh server-key sizeShow ip ssh Key-size- The size of server key. Range 512-896 bits Delete public-key Ip ssh crypto host-key generateSyntax Delete public-key username dsa rsa Syntax Ip ssh crypto host-key generate dsa rsa Ip ssh crypto zeroize Syntax Ip ssh crypto zeroize dsa rsa This command saves host key from RAM to flash memory Ip ssh save host-keySyntax Ip ssh save host-key dsa rsa Saves both the DSA and RSA key This command displays the current SSH server connections Show ip sshShow ssh 16 show ssh display description Show public-key Syntax Show public-key user username hostUsername Name of an SSH user. Range 1-8 characters Shows all public keys Console#show public-key host Host Event Logging Commands 17 Event Logging CommandsSyntax No logging on Default Setting Logging on Logging history Logging history 4-59 clear logging18 Logging Levels Flash errors level 3 RAM warnings level 6 Logging hostSyntax No logging host hostipaddress Hostipaddress The IP address of a syslog server Logging facility Syntax No logging facility type Enabled Level 6 Logging trapSyntax Logging trap level no logging trap Clear logging Show loggingSyntax Clear logging flash ram Syntax Show logging flash ram sendmail trap Following example displays settings for the trap function 19 show logging flash/ram display description Syntax Show log flash ram login tail Show log20 show logging trap display description Show logging sendmail Smtp Alert Commands 21 Smtp Alert CommandsFollowing example shows sample messages stored in RAM Logging sendmail host Syntax No logging sendmail host ipaddress Logging sendmail level Syntax Logging sendmail level level Logging sendmail source-email Logging sendmail destination-emailSyntax No logging sendmail source-email email-address This example will set the source email john@acme.com Syntax No logging sendmail Default Setting Logging sendmailShow logging sendmail Time Commands 22 Time Commands Syntax No sntp client Default Setting Sntp clientSntp server 4-73 sntp poll 4-74 show sntp Sntp server Syntax Sntp server ip1 ip2 ip3Sntp client 4-72 sntp poll 4-74 show sntp Sntp poll Show sntpSyntax Sntp poll seconds no sntp poll Sntp client Clock timezone Calendar set Show sntpSyntax Year Year 4-digit. Range System Status Commands This command displays the system clock23 System Status Commands Show calendar Show startup-config Light unitSyntax Light unit unit Example Show running-config Show running-config4-80 Example Show startup-config4-78 This command displays system informationShow system Show users Show version Frame Size Commands 24 Frame Size CommandsSyntax No jumbo frame Default Setting Jumbo frame Flash/File Commands 25 Flash/File Commands Copy Privileged Exec Following example shows how to download a configuration file This command deletes a file or image Delete This command displays a list of files in flash memory Syntax Dir unit boot-rom config opcode filenameDir Dir Delete public-key4-52 Whichboot Following example shows how to display all file informationSyntax whichboot unit File information is shown below Boot system Syntax Boot system unit boot-romconfig opcode filename Authentication Commands Authentication SequenceDir 4-90 whichboot 27 Authentication Commands Authentication login Local Authentication enable Username for setting the local user names and passwords 29 Radius Client Commands Radius Client Default Setting Auth-port Timeout 5 secondsRetransmit Command Mode Radius-server host Radius-server port Radius-server keySyntax Radius-server port portnumber no radius-server port 1812 Radius-server timeout Radius-server retransmit Show radius-server 30 Tacacs Commands TACACS+ ClientTacacs-server host Hostipaddress IP address of a TACACS+ server Tacacs-server port Tacacs-server keySyntax Tacacs-server port portnumber no tacacs-server port Syntax Tacacs-server key keystring no tacacs-server key Port Security Commands Show tacacs-server 31 Port Security Commands Status Disabled Action None Maximum AddressesInterface Configuration Ethernet Port security 105 802.1X Port Authentication 32 802.1X Port Authentication Dot1x default Syntax No system-auth-control Default SettingDot1x system-auth-control Dot1x max-req Default Command Mode Interface ConfigurationDefault Dot1x port-control Dot1x operation-mode Single-host Dot1x re-authenticate Dot1x re-authenticationSyntax Dot1x re-authenticate interface Syntax No dot1x re-authentication Command Mode Dot1x timeout quiet-period Dot1x timeout re-authperiodSeconds The number of seconds. Range Dot1x timeout tx-period Show dot1xSyntax Show dot1x statistics interface interface Statistics Displays dot1x status for each port Supplicant-timeout- Supplicant timeout Before re-transmitting EAP packet Access this port State Current state including initialize, reauthenticateMax Count 115 Access Control List Commands Access Control Lists 33 Access Control Lists IP ACLs34 IP ACLs Access-list ip Syntax No access-list ip standard extended aclname Permit, deny Ip access-group4-123 show ip access-list4-123 Syntax No permit deny any source bitmask host sourceStandard ACL Access-list ip No permit deny tcp Precedence source-port control-flag Extended ACL 122 Show ip access-list Ip access-groupSyntax Show ip access-list standard extended aclname Syntax No ip access-group aclname Show ip access-group Show ip access-list4-123This command shows the ports assigned to IP ACLs Map access-list ip Syntax No map access-list ip aclname cos cos-valueQueue cos-map4-224 Show map access-list ip 35 Egress Queue Priority Mapping Show map access-list ip Syntax Show map access-list ip interfaceMap access-list ip Access-list mac Syntax No access-list mac aclnameMAC ACLs 36 MAC ACLs Permit, deny MAC ACL Syntax No permit deny MAC ACL Show mac access-list Mac access-groupSyntax Show mac access-list aclname Syntax Mac access-group aclname Show mac access-group Map access-list macShow mac access-list4-130 This command shows the ports assigned to MAC ACLs Show map access-list mac Queue cos-map4-224 Show map access-list macSyntax Show map access-list mac interface 37 Egress Queue Priority Mapping Show access-list ACL Information38 ACL Information Show access-group This command shows the port assignments of ACLsPrivileged Executive Snmp Commands 39 Snmp CommandsSnmp-server community Snmp-server contact Syntax Snmp-server contact string no snmp-server contact Snmp-server location Syntax Snmp-server location text no snmp-server location Snmp-server host Host Address None Snmp Version Snmp-server enable traps Issue authentication and link-up-down traps This command checks the status of Snmp communications Show snmp 141 Interface Commands 40 Interface Commands Interface DescriptionPort-channel channel-idRange Syntax Description string no description Interface Configuration Ethernet, Port Channel Speed-duplexFollowing example adds a description to port Syntax No negotiation Default Setting NegotiationNegotiation 4-145 capabilities Following example configures port 11 to use autonegotiation CapabilitiesCapabilities 4-146speed-duplex4-144 Syntax No flowcontrol Default Setting FlowcontrolNegotiation 4-145speed-duplex4-144 flowcontrol Following example enables flow control on port ShutdownNegotiation Capabilities flowcontrol, symmetric Syntax No shutdown Switchport broadcast packet-rate All interfaces are enabledFollowing example disables port This command clears statistics on an interface Port-channel channel-idRange Default SettingClear counters Syntax Clear counters interface This command displays the status for an interface Show interfaces statusFollowing example clears statistics on port Syntax Show interfaces status interface This command displays interface statistics Show interfaces countersSyntax Show interfaces counters interface Shows the counters for all interfaces 153 Show interfaces switchport Syntax Show interfaces switchport interfaceThis example shows the configuration setting for port Shows all interfaces 41 Interfaces Switchport Statistics Mirror Port Commands 42 Mirror Port CommandsInterface Configuration Ethernet, destination port Port monitor This command displays mirror information Show port monitorSyntax Show port monitor interface Shows all sessions Rate Limit Commands Following shows mirroring configured from port 6 to port43 Rate Limit Commands Rate-limit Fast Ethernet Gigabit EthernetActual rate limit = Rate limit level * Granularity Global Configuration Ethernet, Port Channel Rate-limit granularity Link Aggregation Commands Use this command to display the rate limit granularityShow rate-limit 44 Link Aggregation Commands Guidelines for Creating Trunks Channel-group Syntax Channel-group channel-idno channel-groupChannel-id- Trunk index Range Current port will be added to this trunk Syntax no lacp Default Setting LacpFollowing example creates trunk 1 and then adds port 165 Lacp system-priority 32768 Lacp admin-keyEthernet Interface Lacp admin-key Port Channel Interface Configuration Port Channel Lacp port-priority This command displays Lacp information Show lacpPort Channel all 45 show lacp counters display description 46 show lacp internal display description Expected to be enabled in the absence of administrative 47 show lacp neighbors display description Address Table Commands 49 Address Table Commands48 show lacp sysid display description Mac-address-table static Mac-address- MAC addressEthernet unit/port -unit- Stack unit Vlan-id- Vlan ID Range Clear mac-address-table dynamic Show mac-address-tableMac-address- MAC address Mask Bits to match in the address 178 Mac-address-table aging-time Show mac-address-table aging-time Spanning Tree Commands 50 Spanning Tree Commands Syntax No spanning-tree Default Setting Spanning tree is enabledSpanning-tree Spanning-tree mode Syntax Spanning-tree mode stp rstp no spanning-tree modeRstp Spanning-tree forward-time Spanning-tree hello-time Spanning-tree max-age Spanning-tree priority Spanning-tree pathcost method Spanning-tree transmission-limitLong method Count The transmission limit in seconds. Range Spanning-tree spanning-disabled This command limits the maximum transmission rate for BPDUsSyntax No spanning-tree spanning-disabled Default Setting This example disables the spanning tree algorithm for port Spanning-tree cost Syntax Spanning-tree cost cost no spanning-tree cost Spanning-tree port-priority Spanning-tree edge-portPriority The priority for a port. Range 0-240, in steps Syntax No spanning-tree edge-port Syntax No spanning-tree portfast Default Setting Spanning-tree portfast Spanning-tree link-type Spanning-treeedge-port4-189 Port-channel channel-idRange Command Mode Spanning-tree protocol-migrationAuto Syntax Spanning-tree protocol-migration interface This command shows the configuration for the spanning tree Show spanning-treeSyntax Show spanning-tree interface 194 Vlan Commands Editing Vlan Groups195 Vlan database 196 Vlan By default only Vlan 1 exists and is active Vlan Database Configuration197 Configuring Vlan Interfaces 53 Configuring Vlan Interfaces198 Interface vlan Switchport mode All ports are in hybrid mode with the Pvid set to Vlan199 Switchport acceptable-frame-types Switchport acceptable-frame-types4-200200 All frame types Switchport ingress-filtering Syntax No switchport ingress-filtering Default Setting201 Switchport native vlan 202 Switchport allowed vlan 203 Switchport forbidden vlan 204No VLANs are included in the forbidden list 54 Show Vlan Commands Displaying Vlan Information205 Show vlan Configuring Private VLANs Following example shows how to display information for Vlan206 55 Private Vlan Commands 207 208 Private-vlan 209 210 Private vlan associationNo private-vlan primary-vlan-idassociation Switchport mode private-vlan 211Normal Vlan Switchport private-vlan host-association Switchport private-vlan isolated212 Isolated-vlan-id- ID of isolated VLAN. Range Switchport private-vlan mapping 213 214 Show vlan private-vlanSyntax Show vlan private-vlan community isolated primary Gvrp and Bridge Extension Commands 56 Gvrp and Bridge Extension CommandsSyntax No bridge-ext gvrp Default Setting 215 216 Show bridge-ext Switchport gvrp Show gvrp configurationSyntax No switchport gvrp Default Setting Syntax Show gvrp configuration interface Garp timer 218 Show garp timer Syntax Show garp timer interfaceShows all Garp timers 219 Priority Commands Priority Commands Layer57 Priority Commands 58 Priority Commands Layer Queue mode Syntax Queue mode strict wrr no queue modeWeighted Round Robin 221 Switchport priority default 222 223 Queue bandwidth 59 Default CoS Priority Levels 224Queue cos-map Show queue mode This command shows the current queue mode225 Show queue cos-map4-226 This command shows the class of service priority map 226Show queue bandwidth Show queue cos-map Priority Commands Layer 3 60 Priority Commands Layer 3227 Syntax No map ip port Default Setting 228 Syntax No map ip precedence Default Setting 229 List below shows the default priority mapping 23061 Mapping IP Precedence Values Syntax No map ip dscp Default Setting 231 232 62 IP Dscp to CoS Values Use this command to show the IP port priority map 233Show map ip port Syntax Show map ip port interface This command shows the IP precedence priority map 234Show map ip precedence Syntax Show map ip precedence interface This command shows the IP Dscp priority map 235Show map ip dscp Syntax Show map ip dscp interface Multicast Filtering Commands Igmp Snooping Commands63 Multicast Filtering Commands 64 Igmp Snooping Commands Syntax No ip igmp snooping Default Setting Following example enables Igmp snooping237 Ip igmp snooping Following configures the switch to use Igmp Version 238Ip igmp snooping version Igmp Version 239 Show ip igmp snoopingShow mac-address-table multicast Igmp Query Commands Layer 65 Igmp Query Commands Layer240 Syntax No ip igmp snooping querier Default Setting 241Ip igmp snooping querier Ip igmp snooping query-count Following shows how to configure the query count to 242Ip igmp snooping query-interval Ip igmp snooping query-max-response-time4-243 Seconds The report delay advertised in Igmp queries. Range 243Ip igmp snooping query-max-response-time Switch must use IGMPv2 for this command to take effect 244Ip igmp snooping router-port-expire-time Static Multicast Routing Commands 66 Static Multicast Routing Commands245 Ip igmp snooping vlan mrouter Displays multicast router ports for all configured VLANs 246Show ip igmp snooping mrouter Syntax Show ip igmp snooping mrouter vlan vlan-id IP Interface Commands 67 IP Interface CommandsIp address 247 Interface Configuration Vlan 248 Ip default-gateway Syntax Ip default-gateway gateway no ip default-gatewayIp dhcp restart 249 This command displays the settings of an IP interface Show ip interface250 All interfaces Show ip redirects Ping251 Syntax Ping host size size count count 252 Interface Software Features Management Features Groups 1, 2, 3, 9 Statistics, History, Alarm, Event Standards Management Information Bases Appendix B Troubleshooting Problems Accessing the Management Interface Table B-1 Troubleshooting Chart Symptom Action Using System Logs Troubleshooting Glossary-1 Glossary-2 Glossary-3 Glossary-4 Glossary-5 Glossary-6 Glossary-7 Glossary-8 User Datagram Protocol UDPVirtual LAN Vlan XModem Numerics Index-1 Index-2 Igmp Index-3 Snmp Snmp Index-4 Page For Technical SUPPORT, Call