802.1X Port Authentication | SMC Networks SMC6224M guide

COMMAND LINE INTERFACE

802.1X Port Authentication

The switch supports IEEE 802.1X (dot1x) port-based access control that prevents unauthorized access to the network by requiring users to first submit credentials for authentication. Client authentication is controlled centrally by a RADIUS server using EAP (Extensible Authentication Protocol).

Table 4-32 802.1X Port Authentication

Command	Function	Mode	Page
dot1x	Enables dot1x globally on the switch.	GC	4-107
system-auth-control

dot1x default	Resets all dot1x parameters to their	GC	4-107
	default values

dot1x max-req	Sets the maximum number of times that	IC	4-107
	the switch retransmits an EAP request/
	identity packet to the client before it
	times out the authentication session

dot1x port-control	Sets dot1x mode for a port interface	IC	4-108

dot1x	Allows single or multiple hosts on an	IC	4-109
operation-mode	dot1x port

dot1x re-authenticate	Forces re-authentication on specific ports	PE	4-110

dot1x	Enables re-authentication for all ports	IC	4-110
re-authentication

dot1x timeout	Sets the time that a switch port waits after	IC	4-111
quiet-period	the Max Request Count has been
	exceeded before attempting to acquire a
	new client

dot1x timeout	Sets the time period after which a	IC	4-111
re-authperiod	connected client must be
	re-authenticated

dot1x timeout	Sets the time period during an	IC	4-112
tx-period	authentication session that the switch
	waits before re-transmitting an EAP
	packet

show dot1x	Shows all dot1x related information	PE	4-112

4-106

Image 354

SMC Networks SMC6224M manual 32 802.1X Port Authentication

Contents

TigerStack 10/100 Page TigerStack 10/100 Management Guide Trademarks Limited Warranty Limited Warranty Contents Contents Contents Command Line Interface Vii Viii Contents Contents Contents Xii Xiii Xiv Appendices Glossary Index Xvi Tables Xvii Xviii Xix Tables Figures Xxi 37 ACL Configuration Extended IP ACL Configuration MAC 39 Binding a Port to an ACL Xxiii Xxiv Key Features Key Features Description of Software Features Lacp Description of Software Features Introduction Description of Software Features Introduction System Defaults System Defaults Snmp Dhcp Introduction Connecting to the Switch Configuration Options Required Connections Connecting to the Switch Remote Connections Stack Operations Unit Numbering Recovering from Stack Failure or Topology Change Resilient IP Interface for Management Access Basic Configuration Console Connection Setting Passwords Setting an IP Address Manual Configuration Dynamic Configuration Enabling Snmp Management Access Community Strings Saving Configuration Settings Trap Receivers Managing System Files Enter the name of the start-up file. Press Enter Managing System Files Initial Configuration Configuring the Switch Using the Web Interface Configuring the Switch Navigating the Web Browser Interface Home Configuration Options Panel Display Main Menu Main Menu ACL IP Filter Sets IP addresses of clients allowed Vlan 157 Vlan ID Displaying System Information Field Attributes System Information Displaying Switch Hardware/Software Versions CLI Specify the hostname, location and contact information Switch Information CLI Use the following command to display version information Displaying Bridge Extension Capabilities Bridge Extension Configuration Setting the Switch’s IP Address Command AttributesCLI Enter the following command Manual IP Configuration Using DHCP/BOOTP Dhcp IP Configuration 250 Managing Firmware Source/Destination Unit Stack unitRange SMC6224M 1-8, SMC6248M 1-4, mixed stack Downloading System Software from a Server Operation Code Image File Transfer Select Start-Up Operation File Saving or Restoring Configuration Settings Source/Destination Unit Stack unit Downloading Configuration Settings from a Server 11 Copy Configuration Settings 12 Setting the Startup Configuration Settings Console Port Settings 13 Console Port Settings Telnet Settings Basic Configuration 14 Enabling Telnet Configuring Event Logging System Log Configuration Logging Levels Level Severity Name Description Remote Log Configuration 15 System Logs Configuring the Switch 16 Remote Logs Displaying Log Messages CLI This example shows the event message stored in RAM Sending Simple Mail Transfer Protocol Alerts 18 Enabling and Configuring Smtp Alerts Resetting the System 19 Resetting the System Setting the System Clock Configuring Sntp 20 Sntp Configuration Setting the Time Zone 21 Setting the System Clock Setting Community Access Strings Simple Network Management Protocol Access Mode Specifying Trap Managers and Trap Types 23 Configuring IP Trap Managers User Authentication Configuring User Accounts 24 Access Levels Configuring Local/Remote Logon Authentication Command Usage Radius Settings Tacacs Settings 25 Authentication Settings Configuring Https 100 Https System Support Web Browser Operating System Replacing the Default Secure-site Certificate 26 Https Settings Configuring the Secure Shell Command Usage User Authentication Generating the Host Key Pair 27 SSH Host-Key Settings Configuring the SSH Server SSH server includes basic settings for authentication 28 SSH Server Settings Configuring Port Security Command Usage Configuring 802.1X Port Authentication 29 Configuring Port SecurityPage 802.1X System Authentication Control The global setting for Displaying 802.1X Global Settings802.1X protocol provides client authentication Web Click Security, 802.1X, Information Configuring 802.1X Global Settings CLI This example shows the default global setting for Configuring Port Settings for CLI This example enables 802.1X globally for the switch 32 802.1X Port Configuration Authorized 108 Displaying 802.1X Statistics 802.1X Statistics 33 Displaying 802.1X Port Statistics CLI This example displays the 802.1X statistics for port Filtering Addresses for Management Access 34 Creating a Web IP Filter List Access Control Lists Configuring Access Control ListsCLI This example allows Snmp access for a specific client Setting the ACL Name and Type 35 Selecting ACL Type CLI This example creates a standard IP ACL named david Configuring a Standard IP ACL Command Attributes Configuring an Extended IP ACL Command Attributes 36 ACL Configuration Standard IP Configuring the Switch 37 ACL Configuration Extended IP Configuring a MAC ACL Command Attributes 120 38 ACL Configuration MAC Binding a Port to an Access Control List 39 Binding a Port to an ACL Port Configuration Displaying Connection StatusField Attributes Web Field Attributes CLI Web Click Port, Port Information or Trunk Information Current Status Configuring Interface Connections CLI This example shows the connection status for Port Configuring the Switch 41 Port/Trunk Configuration Creating Trunk Groups Command Usage Statically Configuring a Trunk Command Usage 42 Static Trunk Configuration Enabling Lacp on Selected Ports Command Usage 163 43 Lacp Trunk Configuration 164 100 101 44 Lacp Aggregation Port 102 169 You can display statistics for Lacp protocol messages 103Displaying Lacp Port Counters Lacp Port Counters 104 Displaying Lacp Settings and Status for the Local SideLacp Internal Configuration Information CLI The following example displays Lacp counters 105 106 46 Lacp Port Internal Information Displaying Lacp Settings and Status for the Remote Side Lacp Neighbor Configuration Information107 108 47 Lacp Port Neighbors Information Setting Broadcast Storm Thresholds 109 110 48 Port Broadcast Control Configuring Port Mirroring 111 49 Mirror Port Configuration 112 Configuring Rate Limits 113Rate Limit Granularity Rate Limit Configuration 114 Showing Port Statistics 115 116 Port Statistics 117 Port Statistics 118 Rmon Statistics 119 120 52 Port Statistics 121 CLI This example shows statistics for port Address Table Settings Setting Static Addresses122 53 Configuring a Static Address Table 123 Displaying the Address Table 124 54 Configuring a Dynamic Address Table 125 126 Spanning Tree Algorithm ConfigurationChanging the Aging Time CLI This example sets the aging time to 400 seconds 127 Displaying Global Settings 128 129 130 56 STA Information 131 193 Configuring Global Settings Global settings apply to the entire switch132 Root Device Configuration 133 Configuration Settings for Rstp 134 57 STA Configuration 135 Displaying Interface Settings 136 137 138 139 58 STA Port Information Configuring Interface Settings 140CLI This example shows the STA attributes for port 141 142 143 Vlan ConfigurationIeee 802.1Q VLANs CLI This example sets STA attributes for port 144 Assigning Ports to VLANs 145 146 147 Forwarding Tagged/Untagged Frames 148 Enabling or Disabling Gvrp Global SettingCLI This example enables Gvrp for the switch Displaying Basic Vlan Information Displaying Current VLANs Command Attributes Web149 Web Click VLAN, 802.1Q VLAN, Basic Information Command Attributes CLI 150 151 Creating VLANs 152 CLI This example creates a new Vlan 153 Adding Static Members to VLANs Vlan Index 154 64 Configuring a Vlan Static Table 155 156 Adding Static Members to VLANs Port Index Configuring Vlan Behavior for Interfaces 157 158 66 Vlan Port Configuration 159 Private VLANs 160 161 Displaying Current Private VLANs 162 67 Private Vlan Information Configuring Private VLANs 163 164 Associating VLANsEach community Vlan must be associated with a primary Vlan 165 Displaying Private Vlan Interface Information Configuring Private Vlan Interfaces 166 167 71 Private Vlan Port Configuration 168 Setting the Default Priority for Interfaces Class of Service ConfigurationLayer 2 Queue Settings 169 CLI This example assigns a default priority of 5 to port 170 10 Mapping CoS Values to Egress Queues 171Mapping CoS Values to Egress Queues 11 CoS Priority Levels 172 73 Traffic Classes Selecting the Queue Mode 173 Setting the Service Weight for Traffic Classes 174 Layer 3/4 Priority Settings 175Mapping Layer 3/4 Priorities to CoS Values 176 Selecting IP Precedence/DSCP PriorityMapping IP Precedence 177 12 Mapping IP Precedence 178 Mapping Dscp Priority13 Mapping Dscp Priority Values 179 78 Mapping IP Dscp Priority Values 180 Mapping IP Port Priority 181 79 IP Port Priority Status 182 Mapping CoS Values to ACLs14 Egress Queue Priority Mapping 183 81 ACL CoS Priority Multicast Filtering 184 Configuring Igmp Snooping and Query Parameters Layer 2 Igmp Snooping and Query185 186 82 Igmp Configuration 187 188 Displaying Interfaces Attached to a Multicast Router 189 Specifying Static Interfaces for a Multicast Router Displaying Port Members of Multicast Services 190 191 85 IP Multicast Registration Table Assigning Ports to Multicast Services 192 193 86 Igmp Member Port Table 194 Using the Command Line Interface Accessing the CLI Telnet Connection Using the Command Line Interface Keywords and Arguments Entering CommandsThis section describes how to enter CLI commands Minimum Abbreviation Command Completion Getting Help on Commands Showing Commands Negating the Effect of Commands Using Command HistoryPartial Keyword Lookup Understanding Command Modes Exec CommandsCommand Modes Configuration Commands Configuration Modes Mode Command Prompt Command Line Processing Command Line Processing Command Groups Command Groups Command Groups Line Commands Line Commands Line Login local LoginSyntax Login local no login Line Configuration Syntax Password 0 7 password no password PasswordUsername 4-35 password No password is specified Timeout login response Login 4-16password-thresh4-20CLI Disabled 0 seconds Telnet 600 seconds Silent-time4-21exec-timeout Exec-timeoutTo set the timeout to two minutes, enter this command Syntax Exec-timeout seconds no exec-timeout Syntax Password-thresh threshold no password-thresh Password-threshSilent-time4-21 Timeout login response Default value is three attempts Password-thresh4-20 Default value is no silent-timeTo set the silent time to 60 seconds, enter this command Silent-time Syntax Databits 7 8 no databits To specify 7 data bits, enter this commandDatabits Seven data bits per character Eight data bits per character Syntax Parity none even odd no parity ParitySpeed Syntax Speed bps no speed Stopbits Syntax stopbits 1 Syntax disconnect session-id DisconnectShow line Syntax Show line console vty General Commands To show all lines, enter this commandGeneral Commands Disable Enable password EnableSyntax enable level Level Disable ConfigureNone Show history Reload End Quit This command exits the configuration programExit Any System Management Commands This example shows how to quit a CLI sessionSystem Management Commands Prompt Device Designation CommandsDevice Designation Commands Syntax Prompt string no prompt Hostname User Access CommandsUser Access Commands Syntax Hostname name no hostname 10 Default Login Settings Username Enable password Default is level Default password is super IP Filter Commands Enable 4-27 authentication enable11 IP Filter Commands Management All addresses Show management Web Server Commands 12 Web Server Commands Ip http port Default Setting Command ModeSyntax No ip http server Default Setting Ip http server Syntax No ip http secure-server Default Setting Ip http secure-serverIp http port Ip http secure-port4-43 Copy tftp https-certificate Ip http secure-port13 Https System Support Portnumber The UDP port used for HTTPS. Range Ip telnet port Telnet Server Commands14 Telnet Server Commands Ip http secure-server4-42 Ip telnet server Syntax No ip telnet server Default SettingIp telnet server Ip telnet port Secure Shell Commands 15 SSH Commands Public key type Command Line Interface Syntax No ip ssh server Default Setting DisabledIp ssh server Exec-timeout4-19 show ip ssh Ip ssh timeoutSyntax Ip ssh timeout seconds no ip ssh timeout Ip ssh crypto host-key generate 4-52 show ssh Show ip ssh Ip ssh authentication-retriesIp ssh server-key size Key-size- The size of server key. Range 512-896 bits Syntax Delete public-key username dsa rsa Delete public-keyIp ssh crypto host-key generate Syntax Ip ssh crypto host-key generate dsa rsa Ip ssh crypto zeroize Syntax Ip ssh crypto zeroize dsa rsa Syntax Ip ssh save host-key dsa rsa This command saves host key from RAM to flash memoryIp ssh save host-key Saves both the DSA and RSA key Show ssh This command displays the current SSH server connectionsShow ip ssh 16 show ssh display description Username Name of an SSH user. Range 1-8 characters Show public-keySyntax Show public-key user username host Shows all public keys Console#show public-key host Host Syntax No logging on Default Setting Event Logging Commands17 Event Logging Commands Logging on Logging history Logging history 4-59 clear logging18 Logging Levels Syntax No logging host hostipaddress Flash errors level 3 RAM warnings level 6Logging host Hostipaddress The IP address of a syslog server Logging facility Syntax No logging facility type Enabled Level 6 Logging trapSyntax Logging trap level no logging trap Syntax Clear logging flash ram Clear loggingShow logging Syntax Show logging flash ram sendmail trap Following example displays settings for the trap function 19 show logging flash/ram display description 20 show logging trap display description Syntax Show log flash ram login tailShow log Show logging sendmail Smtp Alert Commands 21 Smtp Alert CommandsFollowing example shows sample messages stored in RAM Logging sendmail host Syntax No logging sendmail host ipaddress Logging sendmail level Syntax Logging sendmail level level Syntax No logging sendmail source-email email-address Logging sendmail source-emailLogging sendmail destination-email This example will set the source email john@acme.com Syntax No logging sendmail Default Setting Logging sendmailShow logging sendmail Time Commands 22 Time Commands Syntax No sntp client Default Setting Sntp clientSntp server 4-73 sntp poll 4-74 show sntp Sntp server Syntax Sntp server ip1 ip2 ip3Sntp client 4-72 sntp poll 4-74 show sntp Syntax Sntp poll seconds no sntp poll Sntp pollShow sntp Sntp client Clock timezone Syntax Calendar setShow sntp Year Year 4-digit. Range 23 System Status Commands System Status CommandsThis command displays the system clock Show calendar Show startup-config Light unitSyntax Light unit unit Example Show running-config Show running-config4-80 Example Show startup-config4-78 This command displays system informationShow system Show users Show version Syntax No jumbo frame Default Setting Frame Size Commands24 Frame Size Commands Jumbo frame Flash/File Commands 25 Flash/File Commands Copy Privileged Exec Following example shows how to download a configuration file This command deletes a file or image Delete Dir This command displays a list of files in flash memorySyntax Dir unit boot-rom config opcode filename Dir Delete public-key4-52 Syntax whichboot unit WhichbootFollowing example shows how to display all file information File information is shown below Boot system Syntax Boot system unit boot-romconfig opcode filename Dir 4-90 whichboot Authentication CommandsAuthentication Sequence 27 Authentication Commands Authentication login Local Authentication enable Username for setting the local user names and passwords 29 Radius Client Commands Radius Client Retransmit Command Mode Default Setting Auth-portTimeout 5 seconds Radius-server host Syntax Radius-server port portnumber no radius-server port Radius-server portRadius-server key 1812 Radius-server timeout Radius-server retransmit Show radius-server Tacacs-server host 30 Tacacs CommandsTACACS+ Client Hostipaddress IP address of a TACACS+ server Syntax Tacacs-server port portnumber no tacacs-server port Tacacs-server portTacacs-server key Syntax Tacacs-server key keystring no tacacs-server key Port Security Commands Show tacacs-server Interface Configuration Ethernet 31 Port Security CommandsStatus Disabled Action None Maximum Addresses Port security 105 802.1X Port Authentication 32 802.1X Port Authentication Dot1x system-auth-control Dot1x defaultSyntax No system-auth-control Default Setting Dot1x max-req Default Default Command ModeInterface Configuration Dot1x port-control Dot1x operation-mode Single-host Syntax Dot1x re-authenticate interface Dot1x re-authenticateDot1x re-authentication Syntax No dot1x re-authentication Command Mode Dot1x timeout quiet-period Dot1x timeout re-authperiodSeconds The number of seconds. Range Syntax Show dot1x statistics interface interface Dot1x timeout tx-periodShow dot1x Statistics Displays dot1x status for each port Supplicant-timeout- Supplicant timeout Before re-transmitting EAP packet Access this port State Current state including initialize, reauthenticateMax Count 115 Access Control List Commands Access Control Lists 33 Access Control Lists IP ACLs34 IP ACLs Access-list ip Syntax No access-list ip standard extended aclname Permit, deny Ip access-group4-123 show ip access-list4-123 Syntax No permit deny any source bitmask host sourceStandard ACL Access-list ip No permit deny tcp Precedence source-port control-flag Extended ACL 122 Syntax Show ip access-list standard extended aclname Show ip access-listIp access-group Syntax No ip access-group aclname Show ip access-group Show ip access-list4-123This command shows the ports assigned to IP ACLs Queue cos-map4-224 Show map access-list ip Map access-list ipSyntax No map access-list ip aclname cos cos-value 35 Egress Queue Priority Mapping Show map access-list ip Syntax Show map access-list ip interfaceMap access-list ip MAC ACLs Access-list macSyntax No access-list mac aclname 36 MAC ACLs Permit, deny MAC ACL Syntax No permit deny MAC ACL Syntax Show mac access-list aclname Show mac access-listMac access-group Syntax Mac access-group aclname Show mac access-list4-130 Show mac access-groupMap access-list mac This command shows the ports assigned to MAC ACLs Syntax Show map access-list mac interface Show map access-list macQueue cos-map4-224 Show map access-list mac 37 Egress Queue Priority Mapping Show access-list ACL Information38 ACL Information Show access-group This command shows the port assignments of ACLsPrivileged Executive Snmp Commands 39 Snmp CommandsSnmp-server community Snmp-server contact Syntax Snmp-server contact string no snmp-server contact Snmp-server location Syntax Snmp-server location text no snmp-server location Snmp-server host Host Address None Snmp Version Snmp-server enable traps Issue authentication and link-up-down traps This command checks the status of Snmp communications Show snmp 141 Interface Commands 40 Interface Commands Port-channel channel-idRange InterfaceDescription Syntax Description string no description Interface Configuration Ethernet, Port Channel Speed-duplexFollowing example adds a description to port Syntax No negotiation Default Setting NegotiationNegotiation 4-145 capabilities Following example configures port 11 to use autonegotiation CapabilitiesCapabilities 4-146speed-duplex4-144 Syntax No flowcontrol Default Setting FlowcontrolNegotiation 4-145speed-duplex4-144 flowcontrol Negotiation Capabilities flowcontrol, symmetric Following example enables flow control on portShutdown Syntax No shutdown Switchport broadcast packet-rate All interfaces are enabledFollowing example disables port Clear counters This command clears statistics on an interfacePort-channel channel-idRange Default Setting Syntax Clear counters interface Following example clears statistics on port This command displays the status for an interfaceShow interfaces status Syntax Show interfaces status interface Syntax Show interfaces counters interface This command displays interface statisticsShow interfaces counters Shows the counters for all interfaces 153 This example shows the configuration setting for port Show interfaces switchportSyntax Show interfaces switchport interface Shows all interfaces 41 Interfaces Switchport Statistics Interface Configuration Ethernet, destination port Mirror Port Commands42 Mirror Port Commands Port monitor Syntax Show port monitor interface This command displays mirror informationShow port monitor Shows all sessions Rate Limit Commands Following shows mirroring configured from port 6 to port43 Rate Limit Commands Rate-limit Fast Ethernet Gigabit EthernetActual rate limit = Rate limit level * Granularity Global Configuration Ethernet, Port Channel Rate-limit granularity Link Aggregation Commands Use this command to display the rate limit granularityShow rate-limit 44 Link Aggregation Commands Guidelines for Creating Trunks Channel-id- Trunk index Range Channel-groupSyntax Channel-group channel-idno channel-group Current port will be added to this trunk Syntax no lacp Default Setting LacpFollowing example creates trunk 1 and then adds port 165 Lacp system-priority 32768 Lacp admin-keyEthernet Interface Lacp admin-key Port Channel Interface Configuration Port Channel Lacp port-priority This command displays Lacp information Show lacpPort Channel all 45 show lacp counters display description 46 show lacp internal display description Expected to be enabled in the absence of administrative 47 show lacp neighbors display description Address Table Commands 49 Address Table Commands48 show lacp sysid display description Ethernet unit/port -unit- Stack unit Mac-address-table staticMac-address- MAC address Vlan-id- Vlan ID Range Clear mac-address-table dynamic Show mac-address-tableMac-address- MAC address Mask Bits to match in the address 178 Mac-address-table aging-time Show mac-address-table aging-time Spanning Tree Commands 50 Spanning Tree Commands Syntax No spanning-tree Default Setting Spanning tree is enabledSpanning-tree Spanning-tree mode Syntax Spanning-tree mode stp rstp no spanning-tree modeRstp Spanning-tree forward-time Spanning-tree hello-time Spanning-tree max-age Spanning-tree priority Long method Spanning-tree pathcost methodSpanning-tree transmission-limit Count The transmission limit in seconds. Range Syntax No spanning-tree spanning-disabled Default Setting Spanning-tree spanning-disabledThis command limits the maximum transmission rate for BPDUs This example disables the spanning tree algorithm for port Spanning-tree cost Syntax Spanning-tree cost cost no spanning-tree cost Priority The priority for a port. Range 0-240, in steps Spanning-tree port-prioritySpanning-tree edge-port Syntax No spanning-tree edge-port Syntax No spanning-tree portfast Default Setting Spanning-tree portfast Spanning-tree link-type Spanning-treeedge-port4-189 Auto Port-channel channel-idRange Command ModeSpanning-tree protocol-migration Syntax Spanning-tree protocol-migration interface This command shows the configuration for the spanning tree Show spanning-treeSyntax Show spanning-tree interface 194 195 Vlan CommandsEditing Vlan Groups Vlan database 196 Vlan By default only Vlan 1 exists and is active Vlan Database Configuration197 198 Configuring Vlan Interfaces53 Configuring Vlan Interfaces Interface vlan Switchport mode All ports are in hybrid mode with the Pvid set to Vlan199 200 Switchport acceptable-frame-typesSwitchport acceptable-frame-types4-200 All frame types Switchport ingress-filtering Syntax No switchport ingress-filtering Default Setting201 Switchport native vlan 202 Switchport allowed vlan 203 Switchport forbidden vlan 204No VLANs are included in the forbidden list 205 54 Show Vlan CommandsDisplaying Vlan Information Show vlan Configuring Private VLANs Following example shows how to display information for Vlan206 55 Private Vlan Commands 207 208 Private-vlan 209 210 Private vlan associationNo private-vlan primary-vlan-idassociation Switchport mode private-vlan 211Normal Vlan 212 Switchport private-vlan host-associationSwitchport private-vlan isolated Isolated-vlan-id- ID of isolated VLAN. Range Switchport private-vlan mapping 213 214 Show vlan private-vlanSyntax Show vlan private-vlan community isolated primary Syntax No bridge-ext gvrp Default Setting Gvrp and Bridge Extension Commands56 Gvrp and Bridge Extension Commands 215 216 Show bridge-ext Syntax No switchport gvrp Default Setting Switchport gvrpShow gvrp configuration Syntax Show gvrp configuration interface Garp timer 218 Shows all Garp timers Show garp timerSyntax Show garp timer interface 219 57 Priority Commands Priority CommandsPriority Commands Layer 58 Priority Commands Layer Weighted Round Robin Queue modeSyntax Queue mode strict wrr no queue mode 221 Switchport priority default 222 223 Queue bandwidth 59 Default CoS Priority Levels 224Queue cos-map 225 Show queue modeThis command shows the current queue mode Show queue cos-map4-226 Show queue bandwidth This command shows the class of service priority map226 Show queue cos-map Priority Commands Layer 3 60 Priority Commands Layer 3227 Syntax No map ip port Default Setting 228 Syntax No map ip precedence Default Setting 229 List below shows the default priority mapping 23061 Mapping IP Precedence Values Syntax No map ip dscp Default Setting 231 232 62 IP Dscp to CoS Values Show map ip port Use this command to show the IP port priority map233 Syntax Show map ip port interface Show map ip precedence This command shows the IP precedence priority map234 Syntax Show map ip precedence interface Show map ip dscp This command shows the IP Dscp priority map235 Syntax Show map ip dscp interface 63 Multicast Filtering Commands Multicast Filtering CommandsIgmp Snooping Commands 64 Igmp Snooping Commands 237 Syntax No ip igmp snooping Default SettingFollowing example enables Igmp snooping Ip igmp snooping Ip igmp snooping version Following configures the switch to use Igmp Version238 Igmp Version 239 Show ip igmp snoopingShow mac-address-table multicast Igmp Query Commands Layer 65 Igmp Query Commands Layer240 Ip igmp snooping querier Syntax No ip igmp snooping querier Default Setting241 Ip igmp snooping query-count Ip igmp snooping query-interval Following shows how to configure the query count to242 Ip igmp snooping query-max-response-time4-243 Seconds The report delay advertised in Igmp queries. Range 243Ip igmp snooping query-max-response-time Switch must use IGMPv2 for this command to take effect 244Ip igmp snooping router-port-expire-time 245 Static Multicast Routing Commands66 Static Multicast Routing Commands Ip igmp snooping vlan mrouter Show ip igmp snooping mrouter Displays multicast router ports for all configured VLANs246 Syntax Show ip igmp snooping mrouter vlan vlan-id Ip address IP Interface Commands67 IP Interface Commands 247 Interface Configuration Vlan 248 Ip dhcp restart Ip default-gatewaySyntax Ip default-gateway gateway no ip default-gateway 249 250 This command displays the settings of an IP interfaceShow ip interface All interfaces 251 Show ip redirectsPing Syntax Ping host size size count count 252 Interface Software Features Management Features Groups 1, 2, 3, 9 Statistics, History, Alarm, Event Standards Management Information Bases Appendix B Troubleshooting Problems Accessing the Management Interface Table B-1 Troubleshooting Chart Symptom Action Using System Logs Troubleshooting Glossary-1 Glossary-2 Glossary-3 Glossary-4 Glossary-5 Glossary-6 Glossary-7 Virtual LAN Vlan Glossary-8User Datagram Protocol UDP XModem Numerics Index-1 Index-2 Igmp Index-3 Snmp Snmp Index-4 Page For Technical SUPPORT, Call