Access Control Lists | SMC Networks SMC6224M instruction

ACCESS CONTROL LISTS

CLI – This example allows SNMP access for a specific client.

Console(config)#management snmp-client 10.1.2.3			4-38
Console(config)#end
Console#show management all-client
Management IP Filter
HTTP-Client:		End IP address
Start IP address
-----------------------------------------------
1.	10.1.2.1	10.1.2.254
SNMP-Client:		End IP address
Start IP address
-----------------------------------------------
1.	10.1.2.3	10.1.2.3
TELNET-Client:		End IP address
Start IP address
-----------------------------------------------

Console#

Access Control Lists

Access Control Lists (ACL) provide packet filtering for IP frames (based on address, protocol, Layer 4 protocol port number or TCP control code) or any frames (based on MAC address or Ethernet type). To filter incoming packets, first create an access list, add the required rules and then bind the list to a specific port.

Configuring Access Control Lists

An ACL is a sequential list of permit or deny conditions that apply to IP addresses, MAC addresses, or other more specific criteria. This switch tests ingress or egress packets against the conditions in an ACL one by one. A packet will be accepted as soon as it matches a permit rule, or dropped as soon as it matches a deny rule. If no rules match for a list of all permit rules, the packet is dropped; and if no rules match for a list of all deny rules, the packet is accepted.

3-77

Image 131

SMC Networks SMC6224M Configuring Access Control Lists, CLI This example allows Snmp access for a specific client

Contents

TigerStack 10/100 Page TigerStack 10/100 Management Guide Trademarks Limited Warranty Limited Warranty Contents Contents Contents Command Line Interface Vii Viii Contents Contents Contents Xii Xiii Xiv Glossary Index Appendices Xvi Xvii Tables Xviii Xix Tables Xxi Figures 39 Binding a Port to an ACL 37 ACL Configuration Extended IP ACL Configuration MAC Xxiii Xxiv Key Features Key Features Lacp Description of Software Features Description of Software Features Introduction Description of Software Features Introduction System Defaults System Defaults Snmp Dhcp Introduction Configuration Options Connecting to the Switch Required Connections Connecting to the Switch Remote Connections Unit Numbering Stack Operations Resilient IP Interface for Management Access Recovering from Stack Failure or Topology Change Console Connection Basic Configuration Setting Passwords Manual Configuration Setting an IP Address Dynamic Configuration Enabling Snmp Management Access Community Strings Trap Receivers Saving Configuration Settings Enter the name of the start-up file. Press Enter Managing System Files Managing System Files Initial Configuration Using the Web Interface Configuring the Switch Configuring the Switch Home Navigating the Web Browser Interface Panel Display Configuration Options Main Menu Main Menu ACL IP Filter Sets IP addresses of clients allowed Vlan 157 Vlan ID Field Attributes Displaying System Information System Information CLI Specify the hostname, location and contact information Displaying Switch Hardware/Software Versions Switch Information Displaying Bridge Extension Capabilities CLI Use the following command to display version information Bridge Extension Configuration CLI Enter the following command Setting the Switch’s IP AddressCommand Attributes Manual IP Configuration Dhcp IP Configuration Using DHCP/BOOTP 250 Range SMC6224M 1-8, SMC6248M 1-4, mixed stack Managing FirmwareSource/Destination Unit Stack unit Operation Code Image File Transfer Downloading System Software from a Server Select Start-Up Operation File Saving or Restoring Configuration Settings Source/Destination Unit Stack unit 11 Copy Configuration Settings Downloading Configuration Settings from a Server 12 Setting the Startup Configuration Settings Console Port Settings 13 Console Port Settings Telnet Settings Basic Configuration 14 Enabling Telnet System Log Configuration Configuring Event Logging Level Severity Name Description Logging Levels 15 System Logs Remote Log Configuration Configuring the Switch 16 Remote Logs CLI This example shows the event message stored in RAM Displaying Log Messages Sending Simple Mail Transfer Protocol Alerts 18 Enabling and Configuring Smtp Alerts 19 Resetting the System Resetting the System Configuring Sntp Setting the System Clock 20 Sntp Configuration 21 Setting the System Clock Setting the Time Zone Simple Network Management Protocol Setting Community Access Strings Specifying Trap Managers and Trap Types Access Mode 23 Configuring IP Trap Managers Configuring User Accounts User Authentication 24 Access Levels Configuring Local/Remote Logon Authentication Command Usage Tacacs Settings Radius Settings 25 Authentication Settings 100 Configuring Https Web Browser Operating System Https System Support 26 Https Settings Replacing the Default Secure-site Certificate Configuring the Secure Shell Command Usage User Authentication Generating the Host Key Pair 27 SSH Host-Key Settings SSH server includes basic settings for authentication Configuring the SSH Server 28 SSH Server Settings Configuring Port Security Command Usage 29 Configuring Port Security Configuring 802.1X Port AuthenticationPage Web Click Security, 802.1X, Information Displaying 802.1X Global Settings802.1X protocol provides client authentication 802.1X System Authentication Control The global setting for CLI This example shows the default global setting for Configuring 802.1X Global Settings CLI This example enables 802.1X globally for the switch Configuring Port Settings for Authorized 32 802.1X Port Configuration 108 802.1X Statistics Displaying 802.1X Statistics CLI This example displays the 802.1X statistics for port 33 Displaying 802.1X Port Statistics Filtering Addresses for Management Access 34 Creating a Web IP Filter List CLI This example allows Snmp access for a specific client Access Control ListsConfiguring Access Control Lists Setting the ACL Name and Type CLI This example creates a standard IP ACL named david 35 Selecting ACL Type Configuring a Standard IP ACL Command Attributes 36 ACL Configuration Standard IP Configuring an Extended IP ACL Command Attributes Configuring the Switch 37 ACL Configuration Extended IP 120 Configuring a MAC ACL Command Attributes 38 ACL Configuration MAC Binding a Port to an Access Control List 39 Binding a Port to an ACL Field Attributes Web Port ConfigurationDisplaying Connection Status Web Click Port, Port Information or Trunk Information Field Attributes CLI Current Status CLI This example shows the connection status for Port Configuring Interface Connections Configuring the Switch Creating Trunk Groups 41 Port/Trunk Configuration Command Usage Statically Configuring a Trunk Command Usage 42 Static Trunk Configuration 163 Enabling Lacp on Selected Ports Command Usage 43 Lacp Trunk Configuration 164 100 44 Lacp Aggregation Port 101 169 102 Lacp Port Counters 103Displaying Lacp Port Counters You can display statistics for Lacp protocol messages CLI The following example displays Lacp counters Displaying Lacp Settings and Status for the Local SideLacp Internal Configuration Information 104 105 46 Lacp Port Internal Information 106 107 Displaying Lacp Settings and Status for the Remote SideLacp Neighbor Configuration Information 47 Lacp Port Neighbors Information 108 109 Setting Broadcast Storm Thresholds 48 Port Broadcast Control 110 111 Configuring Port Mirroring 112 49 Mirror Port Configuration Rate Limit Granularity Configuring Rate Limits113 114 Rate Limit Configuration 115 Showing Port Statistics Port Statistics 116 Port Statistics 117 Rmon Statistics 118 119 52 Port Statistics 120 CLI This example shows statistics for port 121 122 Address Table SettingsSetting Static Addresses 123 53 Configuring a Static Address Table 124 Displaying the Address Table 125 54 Configuring a Dynamic Address Table CLI This example sets the aging time to 400 seconds Spanning Tree Algorithm ConfigurationChanging the Aging Time 126 127 128 Displaying Global Settings 129 56 STA Information 130 193 131 132 Configuring Global SettingsGlobal settings apply to the entire switch 133 Root Device Configuration 134 Configuration Settings for Rstp 135 57 STA Configuration 136 Displaying Interface Settings 137 138 58 STA Port Information 139 CLI This example shows the STA attributes for port Configuring Interface Settings140 141 142 CLI This example sets STA attributes for port Vlan ConfigurationIeee 802.1Q VLANs 143 Assigning Ports to VLANs 144 145 146 Forwarding Tagged/Untagged Frames 147 Displaying Basic Vlan Information Enabling or Disabling Gvrp Global SettingCLI This example enables Gvrp for the switch 148 Web Click VLAN, 802.1Q VLAN, Basic Information Command Attributes Web149 Displaying Current VLANs 150 Command Attributes CLI Creating VLANs 151 CLI This example creates a new Vlan 152 Adding Static Members to VLANs Vlan Index 153 154 155 64 Configuring a Vlan Static Table Adding Static Members to VLANs Port Index 156 157 Configuring Vlan Behavior for Interfaces 158 159 66 Vlan Port Configuration 160 Private VLANs Displaying Current Private VLANs 161 67 Private Vlan Information 162 163 Configuring Private VLANs Each community Vlan must be associated with a primary Vlan 164Associating VLANs Displaying Private Vlan Interface Information 165 166 Configuring Private Vlan Interfaces 167 168 71 Private Vlan Port Configuration 169 Class of Service ConfigurationLayer 2 Queue Settings Setting the Default Priority for Interfaces 170 CLI This example assigns a default priority of 5 to port 11 CoS Priority Levels 171Mapping CoS Values to Egress Queues 10 Mapping CoS Values to Egress Queues 73 Traffic Classes 172 173 Selecting the Queue Mode 174 Setting the Service Weight for Traffic Classes Mapping Layer 3/4 Priorities to CoS Values Layer 3/4 Priority Settings175 Mapping IP Precedence 176Selecting IP Precedence/DSCP Priority 12 Mapping IP Precedence 177 13 Mapping Dscp Priority Values 178Mapping Dscp Priority 78 Mapping IP Dscp Priority Values 179 Mapping IP Port Priority 180 79 IP Port Priority Status 181 14 Egress Queue Priority Mapping 182Mapping CoS Values to ACLs 81 ACL CoS Priority 183 184 Multicast Filtering 185 Configuring Igmp Snooping and Query ParametersLayer 2 Igmp Snooping and Query 186 187 82 Igmp Configuration Displaying Interfaces Attached to a Multicast Router 188 Specifying Static Interfaces for a Multicast Router 189 190 Displaying Port Members of Multicast Services 85 IP Multicast Registration Table 191 192 Assigning Ports to Multicast Services 86 Igmp Member Port Table 193 194 Accessing the CLI Using the Command Line Interface Telnet Connection Using the Command Line Interface Minimum Abbreviation Entering CommandsThis section describes how to enter CLI commands Keywords and Arguments Getting Help on Commands Command Completion Showing Commands Partial Keyword Lookup Negating the Effect of CommandsUsing Command History Command Modes Understanding Command ModesExec Commands Configuration Commands Mode Command Prompt Configuration Modes Command Line Processing Command Line Processing Command Groups Command Groups Command Groups Line Commands Line Commands Line Line Configuration LoginSyntax Login local no login Login local No password is specified PasswordUsername 4-35 password Syntax Password 0 7 password no password CLI Disabled 0 seconds Telnet 600 seconds Timeout login responseLogin 4-16password-thresh4-20 Syntax Exec-timeout seconds no exec-timeout Exec-timeoutTo set the timeout to two minutes, enter this command Silent-time4-21exec-timeout Default value is three attempts Password-threshSilent-time4-21 Timeout login response Syntax Password-thresh threshold no password-thresh Silent-time Default value is no silent-timeTo set the silent time to 60 seconds, enter this command Password-thresh4-20 Seven data bits per character Eight data bits per character To specify 7 data bits, enter this commandDatabits Syntax Databits 7 8 no databits Syntax Speed bps no speed ParitySpeed Syntax Parity none even odd no parity Syntax stopbits 1 Stopbits Syntax Show line console vty DisconnectShow line Syntax disconnect session-id General Commands General CommandsTo show all lines, enter this command Level EnableSyntax enable level Disable Enable password None DisableConfigure Show history End Reload Any This command exits the configuration programExit Quit System Management Commands System Management CommandsThis example shows how to quit a CLI session Syntax Prompt string no prompt Device Designation CommandsDevice Designation Commands Prompt Syntax Hostname name no hostname User Access CommandsUser Access Commands Hostname Username 10 Default Login Settings Default is level Default password is super Enable password 11 IP Filter Commands IP Filter CommandsEnable 4-27 authentication enable All addresses Management Show management 12 Web Server Commands Web Server Commands Ip http server Default Setting Command ModeSyntax No ip http server Default Setting Ip http port Ip http port Syntax No ip http secure-server Default SettingIp http secure-server Portnumber The UDP port used for HTTPS. Range Ip http secure-port13 Https System Support Ip http secure-port4-43 Copy tftp https-certificate Ip http secure-server4-42 Telnet Server Commands14 Telnet Server Commands Ip telnet port Ip telnet port Syntax No ip telnet server Default SettingIp telnet server Ip telnet server 15 SSH Commands Secure Shell Commands Public key type Command Line Interface Ip ssh server Syntax No ip ssh server Default SettingDisabled Ip ssh crypto host-key generate 4-52 show ssh Ip ssh timeoutSyntax Ip ssh timeout seconds no ip ssh timeout Exec-timeout4-19 show ip ssh Key-size- The size of server key. Range 512-896 bits Ip ssh authentication-retriesIp ssh server-key size Show ip ssh Syntax Ip ssh crypto host-key generate dsa rsa Delete public-keyIp ssh crypto host-key generate Syntax Delete public-key username dsa rsa Syntax Ip ssh crypto zeroize dsa rsa Ip ssh crypto zeroize Saves both the DSA and RSA key This command saves host key from RAM to flash memoryIp ssh save host-key Syntax Ip ssh save host-key dsa rsa 16 show ssh display description This command displays the current SSH server connectionsShow ip ssh Show ssh Shows all public keys Show public-keySyntax Show public-key user username host Username Name of an SSH user. Range 1-8 characters Console#show public-key host Host Logging on Event Logging Commands17 Event Logging Commands Syntax No logging on Default Setting 18 Logging Levels Logging historyLogging history 4-59 clear logging Hostipaddress The IP address of a syslog server Flash errors level 3 RAM warnings level 6Logging host Syntax No logging host hostipaddress Syntax No logging facility type Logging facility Syntax Logging trap level no logging trap Enabled Level 6Logging trap Syntax Show logging flash ram sendmail trap Clear loggingShow logging Syntax Clear logging flash ram 19 show logging flash/ram display description Following example displays settings for the trap function Show logging sendmail Syntax Show log flash ram login tailShow log 20 show logging trap display description Following example shows sample messages stored in RAM Smtp Alert Commands21 Smtp Alert Commands Syntax No logging sendmail host ipaddress Logging sendmail host Syntax Logging sendmail level level Logging sendmail level This example will set the source email john@acme.com Logging sendmail source-emailLogging sendmail destination-email Syntax No logging sendmail source-email email-address Show logging sendmail Syntax No logging sendmail Default SettingLogging sendmail 22 Time Commands Time Commands Sntp server 4-73 sntp poll 4-74 show sntp Syntax No sntp client Default SettingSntp client Sntp client 4-72 sntp poll 4-74 show sntp Sntp serverSyntax Sntp server ip1 ip2 ip3 Sntp client Sntp pollShow sntp Syntax Sntp poll seconds no sntp poll Clock timezone Year Year 4-digit. Range Calendar setShow sntp Syntax Show calendar System Status CommandsThis command displays the system clock 23 System Status Commands Syntax Light unit unit Show startup-configLight unit Example Show running-config4-80 Show running-config Example Show system Show startup-config4-78This command displays system information Show version Show users Jumbo frame Frame Size Commands24 Frame Size Commands Syntax No jumbo frame Default Setting 25 Flash/File Commands Flash/File Commands Copy Privileged Exec Following example shows how to download a configuration file Delete This command deletes a file or image Dir Delete public-key4-52 This command displays a list of files in flash memorySyntax Dir unit boot-rom config opcode filename Dir File information is shown below WhichbootFollowing example shows how to display all file information Syntax whichboot unit Syntax Boot system unit boot-romconfig opcode filename Boot system 27 Authentication Commands Authentication CommandsAuthentication Sequence Dir 4-90 whichboot Local Authentication login Username for setting the local user names and passwords Authentication enable Radius Client 29 Radius Client Commands Radius-server host Default Setting Auth-portTimeout 5 seconds Retransmit Command Mode 1812 Radius-server portRadius-server key Syntax Radius-server port portnumber no radius-server port Radius-server retransmit Radius-server timeout Show radius-server Hostipaddress IP address of a TACACS+ server 30 Tacacs CommandsTACACS+ Client Tacacs-server host Syntax Tacacs-server key keystring no tacacs-server key Tacacs-server portTacacs-server key Syntax Tacacs-server port portnumber no tacacs-server port Show tacacs-server Port Security Commands Port security 31 Port Security CommandsStatus Disabled Action None Maximum Addresses Interface Configuration Ethernet 105 32 802.1X Port Authentication 802.1X Port Authentication Dot1x max-req Dot1x defaultSyntax No system-auth-control Default Setting Dot1x system-auth-control Dot1x port-control Default Command ModeInterface Configuration Default Single-host Dot1x operation-mode Syntax No dot1x re-authentication Command Mode Dot1x re-authenticateDot1x re-authentication Syntax Dot1x re-authenticate interface Seconds The number of seconds. Range Dot1x timeout quiet-periodDot1x timeout re-authperiod Statistics Displays dot1x status for each port Dot1x timeout tx-periodShow dot1x Syntax Show dot1x statistics interface interface Before re-transmitting EAP packet Supplicant-timeout- Supplicant timeout Max Count Access this portState Current state including initialize, reauthenticate 115 Access Control Lists Access Control List Commands 34 IP ACLs 33 Access Control ListsIP ACLs Syntax No access-list ip standard extended aclname Access-list ip Standard ACL Permit, deny Ip access-group4-123 show ip access-list4-123Syntax No permit deny any source bitmask host source No permit deny tcp Access-list ip Extended ACL Precedence source-port control-flag 122 Syntax No ip access-group aclname Show ip access-listIp access-group Syntax Show ip access-list standard extended aclname This command shows the ports assigned to IP ACLs Show ip access-groupShow ip access-list4-123 35 Egress Queue Priority Mapping Map access-list ipSyntax No map access-list ip aclname cos cos-value Queue cos-map4-224 Show map access-list ip Map access-list ip Show map access-list ipSyntax Show map access-list ip interface 36 MAC ACLs Access-list macSyntax No access-list mac aclname MAC ACLs Syntax No permit deny Permit, deny MAC ACL MAC ACL Syntax Mac access-group aclname Show mac access-listMac access-group Syntax Show mac access-list aclname This command shows the ports assigned to MAC ACLs Show mac access-groupMap access-list mac Show mac access-list4-130 37 Egress Queue Priority Mapping Show map access-list macQueue cos-map4-224 Show map access-list mac Syntax Show map access-list mac interface 38 ACL Information Show access-listACL Information Privileged Executive Show access-groupThis command shows the port assignments of ACLs Snmp-server community Snmp Commands39 Snmp Commands Syntax Snmp-server contact string no snmp-server contact Snmp-server contact Syntax Snmp-server location text no snmp-server location Snmp-server location Host Address None Snmp Version Snmp-server host Issue authentication and link-up-down traps Snmp-server enable traps Show snmp This command checks the status of Snmp communications 141 40 Interface Commands Interface Commands Syntax Description string no description InterfaceDescription Port-channel channel-idRange Following example adds a description to port Interface Configuration Ethernet, Port ChannelSpeed-duplex Negotiation 4-145 capabilities Syntax No negotiation Default SettingNegotiation Capabilities 4-146speed-duplex4-144 Following example configures port 11 to use autonegotiationCapabilities Negotiation 4-145speed-duplex4-144 flowcontrol Syntax No flowcontrol Default SettingFlowcontrol Syntax No shutdown Following example enables flow control on portShutdown Negotiation Capabilities flowcontrol, symmetric Following example disables port Switchport broadcast packet-rateAll interfaces are enabled Syntax Clear counters interface This command clears statistics on an interfacePort-channel channel-idRange Default Setting Clear counters Syntax Show interfaces status interface This command displays the status for an interfaceShow interfaces status Following example clears statistics on port Shows the counters for all interfaces This command displays interface statisticsShow interfaces counters Syntax Show interfaces counters interface 153 Shows all interfaces Show interfaces switchportSyntax Show interfaces switchport interface This example shows the configuration setting for port 41 Interfaces Switchport Statistics Port monitor Mirror Port Commands42 Mirror Port Commands Interface Configuration Ethernet, destination port Shows all sessions This command displays mirror informationShow port monitor Syntax Show port monitor interface 43 Rate Limit Commands Rate Limit CommandsFollowing shows mirroring configured from port 6 to port Actual rate limit = Rate limit level * Granularity Rate-limitFast Ethernet Gigabit Ethernet Rate-limit granularity Global Configuration Ethernet, Port Channel Show rate-limit Link Aggregation CommandsUse this command to display the rate limit granularity Guidelines for Creating Trunks 44 Link Aggregation Commands Current port will be added to this trunk Channel-groupSyntax Channel-group channel-idno channel-group Channel-id- Trunk index Range Following example creates trunk 1 and then adds port Syntax no lacp Default SettingLacp 165 32768 Lacp system-priority Lacp admin-keyEthernet Interface Interface Configuration Port Channel Lacp admin-key Port Channel Lacp port-priority Port Channel all This command displays Lacp informationShow lacp 45 show lacp counters display description 46 show lacp internal display description Expected to be enabled in the absence of administrative 47 show lacp neighbors display description 48 show lacp sysid display description Address Table Commands49 Address Table Commands Vlan-id- Vlan ID Range Mac-address-table staticMac-address- MAC address Ethernet unit/port -unit- Stack unit Mac-address- MAC address Mask Bits to match in the address Clear mac-address-table dynamicShow mac-address-table 178 Show mac-address-table aging-time Mac-address-table aging-time 50 Spanning Tree Commands Spanning Tree Commands Spanning-tree Syntax No spanning-tree Default SettingSpanning tree is enabled Rstp Spanning-tree modeSyntax Spanning-tree mode stp rstp no spanning-tree mode Spanning-tree hello-time Spanning-tree forward-time Spanning-tree max-age Spanning-tree priority Count The transmission limit in seconds. Range Spanning-tree pathcost methodSpanning-tree transmission-limit Long method This example disables the spanning tree algorithm for port Spanning-tree spanning-disabledThis command limits the maximum transmission rate for BPDUs Syntax No spanning-tree spanning-disabled Default Setting Syntax Spanning-tree cost cost no spanning-tree cost Spanning-tree cost Syntax No spanning-tree edge-port Spanning-tree port-prioritySpanning-tree edge-port Priority The priority for a port. Range 0-240, in steps Spanning-tree portfast Syntax No spanning-tree portfast Default Setting Spanning-treeedge-port4-189 Spanning-tree link-type Syntax Spanning-tree protocol-migration interface Port-channel channel-idRange Command ModeSpanning-tree protocol-migration Auto Syntax Show spanning-tree interface This command shows the configuration for the spanning treeShow spanning-tree 194 Vlan database Vlan CommandsEditing Vlan Groups 195 Vlan 196 197 By default only Vlan 1 exists and is activeVlan Database Configuration Interface vlan Configuring Vlan Interfaces53 Configuring Vlan Interfaces 198 199 Switchport modeAll ports are in hybrid mode with the Pvid set to Vlan All frame types Switchport acceptable-frame-typesSwitchport acceptable-frame-types4-200 200 201 Switchport ingress-filteringSyntax No switchport ingress-filtering Default Setting 202 Switchport native vlan 203 Switchport allowed vlan No VLANs are included in the forbidden list Switchport forbidden vlan204 Show vlan 54 Show Vlan CommandsDisplaying Vlan Information 205 206 Configuring Private VLANsFollowing example shows how to display information for Vlan 207 55 Private Vlan Commands Private-vlan 208 209 No private-vlan primary-vlan-idassociation 210Private vlan association Normal Vlan Switchport mode private-vlan211 Isolated-vlan-id- ID of isolated VLAN. Range Switchport private-vlan host-associationSwitchport private-vlan isolated 212 213 Switchport private-vlan mapping Syntax Show vlan private-vlan community isolated primary 214Show vlan private-vlan 215 Gvrp and Bridge Extension Commands56 Gvrp and Bridge Extension Commands Syntax No bridge-ext gvrp Default Setting Show bridge-ext 216 Syntax Show gvrp configuration interface Switchport gvrpShow gvrp configuration Syntax No switchport gvrp Default Setting 218 Garp timer 219 Show garp timerSyntax Show garp timer interface Shows all Garp timers 58 Priority Commands Layer Priority CommandsPriority Commands Layer 57 Priority Commands 221 Queue modeSyntax Queue mode strict wrr no queue mode Weighted Round Robin 222 Switchport priority default Queue bandwidth 223 Queue cos-map 59 Default CoS Priority Levels224 Show queue cos-map4-226 Show queue modeThis command shows the current queue mode 225 Show queue cos-map This command shows the class of service priority map226 Show queue bandwidth 227 Priority Commands Layer 360 Priority Commands Layer 3 228 Syntax No map ip port Default Setting 229 Syntax No map ip precedence Default Setting 61 Mapping IP Precedence Values List below shows the default priority mapping230 231 Syntax No map ip dscp Default Setting 62 IP Dscp to CoS Values 232 Syntax Show map ip port interface Use this command to show the IP port priority map233 Show map ip port Syntax Show map ip precedence interface This command shows the IP precedence priority map234 Show map ip precedence Syntax Show map ip dscp interface This command shows the IP Dscp priority map235 Show map ip dscp 64 Igmp Snooping Commands Multicast Filtering CommandsIgmp Snooping Commands 63 Multicast Filtering Commands Ip igmp snooping Syntax No ip igmp snooping Default SettingFollowing example enables Igmp snooping 237 Igmp Version Following configures the switch to use Igmp Version238 Ip igmp snooping version Show mac-address-table multicast 239Show ip igmp snooping 240 Igmp Query Commands Layer65 Igmp Query Commands Layer Ip igmp snooping query-count Syntax No ip igmp snooping querier Default Setting241 Ip igmp snooping querier Ip igmp snooping query-max-response-time4-243 Following shows how to configure the query count to242 Ip igmp snooping query-interval Ip igmp snooping query-max-response-time Seconds The report delay advertised in Igmp queries. Range243 Ip igmp snooping router-port-expire-time Switch must use IGMPv2 for this command to take effect244 Ip igmp snooping vlan mrouter Static Multicast Routing Commands66 Static Multicast Routing Commands 245 Syntax Show ip igmp snooping mrouter vlan vlan-id Displays multicast router ports for all configured VLANs246 Show ip igmp snooping mrouter 247 IP Interface Commands67 IP Interface Commands Ip address 248 Interface Configuration Vlan 249 Ip default-gatewaySyntax Ip default-gateway gateway no ip default-gateway Ip dhcp restart All interfaces This command displays the settings of an IP interfaceShow ip interface 250 Syntax Ping host size size count count Show ip redirectsPing 251 Interface 252 Software Features Management Features Standards Groups 1, 2, 3, 9 Statistics, History, Alarm, Event Management Information Bases Problems Accessing the Management Interface Appendix B Troubleshooting Table B-1 Troubleshooting Chart Symptom Action Using System Logs Troubleshooting Glossary-1 Glossary-2 Glossary-3 Glossary-4 Glossary-5 Glossary-6 Glossary-7 XModem Glossary-8User Datagram Protocol UDP Virtual LAN Vlan Index-1 Numerics Igmp Index-2 Snmp Snmp Index-3 Index-4 Page For Technical SUPPORT, Call