IP ACLs, Access Control Lists | SMC Networks SMC6224M manual

ACCESS CONTROL LIST COMMANDS

•This switch supports ACLs for ingress filtering only. You can only bind one IP ACL to any port and one MAC ACL globally for ingress filtering. In other words, only two ACLs can be bound to an interface - Ingress IP ACL and Ingress MAC ACL.

The order in which active ACLs are checked is as follows:

1.User-defined rules in the Ingress MAC ACL for ingress ports.

2.User-defined rules in the Ingress IP ACL for ingress ports.

3.Explicit default rule (permit any any) in the ingress IP ACL for ingress ports.

4.Explicit default rule (permit any any) in the ingress MAC ACL for ingress ports.

5.If no explicit rule is matched, the implicit default is permit all.

Table 4-33 Access Control Lists

Command	Function	Page
Groups

IP ACLs	Configures ACLs based on IP addresses, TCP/UDP	4-117
	port number, protocol type, and TCP control code

MAC ACLs	Configures ACLs based on hardware addresses, packet	4-127
	format, and Ethernet type

ACL Information	Displays ACLs and associated rules; shows ACLs	4-133
	assigned to each port

IP ACLs

Table 4-34 IP ACLs

Command	Function	Mode	Page
access-list ip	Creates an IP ACL and enters configuration	GC	4-118
	mode

permit, deny	Filters packets matching a specified source	STD-ACL	4-119
	IP address

permit, deny	Filters packets meeting the specified criteria,	EXT-ACL	4-120
	including source and destination IP address,
	TCP/UDP port number, protocol type, and
	TCP control code

4-117

Image 365

SMC Networks SMC6224M manual IP ACLs, Access Control Lists

Contents

TigerStack 10/100 Page TigerStack 10/100 Management Guide Trademarks Limited Warranty Limited Warranty Contents Contents Contents Command Line Interface Vii Viii Contents Contents Contents Xii Xiii Xiv Glossary Index Appendices Xvi Xvii Tables Xviii Xix Tables Xxi Figures 39 Binding a Port to an ACL 37 ACL Configuration Extended IP ACL Configuration MAC Xxiii Xxiv Key Features Key Features Lacp Description of Software Features Description of Software Features Introduction Description of Software Features Introduction System Defaults System Defaults Snmp Dhcp Introduction Configuration Options Connecting to the Switch Required Connections Connecting to the Switch Remote Connections Unit Numbering Stack Operations Resilient IP Interface for Management Access Recovering from Stack Failure or Topology Change Console Connection Basic Configuration Setting Passwords Manual Configuration Setting an IP Address Dynamic Configuration Enabling Snmp Management Access Community Strings Trap Receivers Saving Configuration Settings Enter the name of the start-up file. Press Enter Managing System Files Managing System Files Initial Configuration Using the Web Interface Configuring the Switch Configuring the Switch Home Navigating the Web Browser Interface Panel Display Configuration Options Main Menu Main Menu ACL IP Filter Sets IP addresses of clients allowed Vlan 157 Vlan ID Field Attributes Displaying System Information System Information CLI Specify the hostname, location and contact information Displaying Switch Hardware/Software Versions Switch Information Displaying Bridge Extension Capabilities CLI Use the following command to display version information Bridge Extension Configuration CLI Enter the following command Setting the Switch’s IP AddressCommand Attributes Manual IP Configuration Dhcp IP Configuration Using DHCP/BOOTP 250 Range SMC6224M 1-8, SMC6248M 1-4, mixed stack Managing FirmwareSource/Destination Unit Stack unit Operation Code Image File Transfer Downloading System Software from a Server Select Start-Up Operation File Saving or Restoring Configuration Settings Source/Destination Unit Stack unit 11 Copy Configuration Settings Downloading Configuration Settings from a Server 12 Setting the Startup Configuration Settings Console Port Settings 13 Console Port Settings Telnet Settings Basic Configuration 14 Enabling Telnet System Log Configuration Configuring Event Logging Level Severity Name Description Logging Levels 15 System Logs Remote Log Configuration Configuring the Switch 16 Remote Logs CLI This example shows the event message stored in RAM Displaying Log Messages Sending Simple Mail Transfer Protocol Alerts 18 Enabling and Configuring Smtp Alerts 19 Resetting the System Resetting the System Configuring Sntp Setting the System Clock 20 Sntp Configuration 21 Setting the System Clock Setting the Time Zone Simple Network Management Protocol Setting Community Access Strings Specifying Trap Managers and Trap Types Access Mode 23 Configuring IP Trap Managers Configuring User Accounts User Authentication 24 Access Levels Configuring Local/Remote Logon Authentication Command Usage Tacacs Settings Radius Settings 25 Authentication Settings 100 Configuring Https Web Browser Operating System Https System Support 26 Https Settings Replacing the Default Secure-site Certificate Configuring the Secure Shell Command Usage User Authentication Generating the Host Key Pair 27 SSH Host-Key Settings SSH server includes basic settings for authentication Configuring the SSH Server 28 SSH Server Settings Configuring Port Security Command Usage 29 Configuring Port Security Configuring 802.1X Port AuthenticationPage 802.1X protocol provides client authentication Displaying 802.1X Global Settings802.1X System Authentication Control The global setting for Web Click Security, 802.1X, Information CLI This example shows the default global setting for Configuring 802.1X Global Settings CLI This example enables 802.1X globally for the switch Configuring Port Settings for Authorized 32 802.1X Port Configuration 108 802.1X Statistics Displaying 802.1X Statistics CLI This example displays the 802.1X statistics for port 33 Displaying 802.1X Port Statistics Filtering Addresses for Management Access 34 Creating a Web IP Filter List CLI This example allows Snmp access for a specific client Access Control ListsConfiguring Access Control Lists Setting the ACL Name and Type CLI This example creates a standard IP ACL named david 35 Selecting ACL Type Configuring a Standard IP ACL Command Attributes 36 ACL Configuration Standard IP Configuring an Extended IP ACL Command Attributes Configuring the Switch 37 ACL Configuration Extended IP 120 Configuring a MAC ACL Command Attributes 38 ACL Configuration MAC Binding a Port to an Access Control List 39 Binding a Port to an ACL Field Attributes Web Port ConfigurationDisplaying Connection Status Web Click Port, Port Information or Trunk Information Field Attributes CLI Current Status CLI This example shows the connection status for Port Configuring Interface Connections Configuring the Switch Creating Trunk Groups 41 Port/Trunk Configuration Command Usage Statically Configuring a Trunk Command Usage 42 Static Trunk Configuration 163 Enabling Lacp on Selected Ports Command Usage 43 Lacp Trunk Configuration 164 100 44 Lacp Aggregation Port 101 169 102 Displaying Lacp Port Counters 103You can display statistics for Lacp protocol messages Lacp Port Counters Lacp Internal Configuration Information Displaying Lacp Settings and Status for the Local Side104 CLI The following example displays Lacp counters 105 46 Lacp Port Internal Information 106 107 Displaying Lacp Settings and Status for the Remote SideLacp Neighbor Configuration Information 47 Lacp Port Neighbors Information 108 109 Setting Broadcast Storm Thresholds 48 Port Broadcast Control 110 111 Configuring Port Mirroring 112 49 Mirror Port Configuration Rate Limit Granularity Configuring Rate Limits113 114 Rate Limit Configuration 115 Showing Port Statistics Port Statistics 116 Port Statistics 117 Rmon Statistics 118 119 52 Port Statistics 120 CLI This example shows statistics for port 121 122 Address Table SettingsSetting Static Addresses 123 53 Configuring a Static Address Table 124 Displaying the Address Table 125 54 Configuring a Dynamic Address Table Changing the Aging Time Spanning Tree Algorithm Configuration126 CLI This example sets the aging time to 400 seconds 127 128 Displaying Global Settings 129 56 STA Information 130 193 131 132 Configuring Global SettingsGlobal settings apply to the entire switch 133 Root Device Configuration 134 Configuration Settings for Rstp 135 57 STA Configuration 136 Displaying Interface Settings 137 138 58 STA Port Information 139 CLI This example shows the STA attributes for port Configuring Interface Settings140 141 142 Ieee 802.1Q VLANs Vlan Configuration143 CLI This example sets STA attributes for port Assigning Ports to VLANs 144 145 146 Forwarding Tagged/Untagged Frames 147 CLI This example enables Gvrp for the switch Enabling or Disabling Gvrp Global Setting148 Displaying Basic Vlan Information 149 Command Attributes WebDisplaying Current VLANs Web Click VLAN, 802.1Q VLAN, Basic Information 150 Command Attributes CLI Creating VLANs 151 CLI This example creates a new Vlan 152 Adding Static Members to VLANs Vlan Index 153 154 155 64 Configuring a Vlan Static Table Adding Static Members to VLANs Port Index 156 157 Configuring Vlan Behavior for Interfaces 158 159 66 Vlan Port Configuration 160 Private VLANs Displaying Current Private VLANs 161 67 Private Vlan Information 162 163 Configuring Private VLANs Each community Vlan must be associated with a primary Vlan 164Associating VLANs Displaying Private Vlan Interface Information 165 166 Configuring Private Vlan Interfaces 167 168 71 Private Vlan Port Configuration Layer 2 Queue Settings Class of Service ConfigurationSetting the Default Priority for Interfaces 169 170 CLI This example assigns a default priority of 5 to port Mapping CoS Values to Egress Queues 17110 Mapping CoS Values to Egress Queues 11 CoS Priority Levels 73 Traffic Classes 172 173 Selecting the Queue Mode 174 Setting the Service Weight for Traffic Classes Mapping Layer 3/4 Priorities to CoS Values Layer 3/4 Priority Settings175 Mapping IP Precedence 176Selecting IP Precedence/DSCP Priority 12 Mapping IP Precedence 177 13 Mapping Dscp Priority Values 178Mapping Dscp Priority 78 Mapping IP Dscp Priority Values 179 Mapping IP Port Priority 180 79 IP Port Priority Status 181 14 Egress Queue Priority Mapping 182Mapping CoS Values to ACLs 81 ACL CoS Priority 183 184 Multicast Filtering 185 Configuring Igmp Snooping and Query ParametersLayer 2 Igmp Snooping and Query 186 187 82 Igmp Configuration Displaying Interfaces Attached to a Multicast Router 188 Specifying Static Interfaces for a Multicast Router 189 190 Displaying Port Members of Multicast Services 85 IP Multicast Registration Table 191 192 Assigning Ports to Multicast Services 86 Igmp Member Port Table 193 194 Accessing the CLI Using the Command Line Interface Telnet Connection Using the Command Line Interface This section describes how to enter CLI commands Entering CommandsKeywords and Arguments Minimum Abbreviation Getting Help on Commands Command Completion Showing Commands Partial Keyword Lookup Negating the Effect of CommandsUsing Command History Command Modes Understanding Command ModesExec Commands Configuration Commands Mode Command Prompt Configuration Modes Command Line Processing Command Line Processing Command Groups Command Groups Command Groups Line Commands Line Commands Line Syntax Login local no login LoginLogin local Line Configuration Username 4-35 password PasswordSyntax Password 0 7 password no password No password is specified CLI Disabled 0 seconds Telnet 600 seconds Timeout login responseLogin 4-16password-thresh4-20 To set the timeout to two minutes, enter this command Exec-timeoutSilent-time4-21exec-timeout Syntax Exec-timeout seconds no exec-timeout Silent-time4-21 Timeout login response Password-threshSyntax Password-thresh threshold no password-thresh Default value is three attempts To set the silent time to 60 seconds, enter this command Default value is no silent-timePassword-thresh4-20 Silent-time Databits To specify 7 data bits, enter this commandSyntax Databits 7 8 no databits Seven data bits per character Eight data bits per character Speed ParitySyntax Parity none even odd no parity Syntax Speed bps no speed Syntax stopbits 1 Stopbits Show line DisconnectSyntax disconnect session-id Syntax Show line console vty General Commands General CommandsTo show all lines, enter this command Syntax enable level EnableDisable Enable password Level None DisableConfigure Show history End Reload Exit This command exits the configuration programQuit Any System Management Commands System Management CommandsThis example shows how to quit a CLI session Device Designation Commands Device Designation CommandsPrompt Syntax Prompt string no prompt User Access Commands User Access CommandsHostname Syntax Hostname name no hostname Username 10 Default Login Settings Default is level Default password is super Enable password 11 IP Filter Commands IP Filter CommandsEnable 4-27 authentication enable All addresses Management Show management 12 Web Server Commands Web Server Commands Syntax No ip http server Default Setting Default Setting Command ModeIp http port Ip http server Ip http port Syntax No ip http secure-server Default SettingIp http secure-server 13 Https System Support Ip http secure-portIp http secure-port4-43 Copy tftp https-certificate Portnumber The UDP port used for HTTPS. Range 14 Telnet Server Commands Telnet Server CommandsIp telnet port Ip http secure-server4-42 Ip telnet server Syntax No ip telnet server Default SettingIp telnet server Ip telnet port 15 SSH Commands Secure Shell Commands Public key type Command Line Interface Ip ssh server Syntax No ip ssh server Default SettingDisabled Syntax Ip ssh timeout seconds no ip ssh timeout Ip ssh timeoutExec-timeout4-19 show ip ssh Ip ssh crypto host-key generate 4-52 show ssh Ip ssh server-key size Ip ssh authentication-retriesShow ip ssh Key-size- The size of server key. Range 512-896 bits Ip ssh crypto host-key generate Delete public-keySyntax Delete public-key username dsa rsa Syntax Ip ssh crypto host-key generate dsa rsa Syntax Ip ssh crypto zeroize dsa rsa Ip ssh crypto zeroize Ip ssh save host-key This command saves host key from RAM to flash memorySyntax Ip ssh save host-key dsa rsa Saves both the DSA and RSA key Show ip ssh This command displays the current SSH server connectionsShow ssh 16 show ssh display description Syntax Show public-key user username host Show public-keyUsername Name of an SSH user. Range 1-8 characters Shows all public keys Console#show public-key host Host 17 Event Logging Commands Event Logging CommandsSyntax No logging on Default Setting Logging on 18 Logging Levels Logging historyLogging history 4-59 clear logging Logging host Flash errors level 3 RAM warnings level 6Syntax No logging host hostipaddress Hostipaddress The IP address of a syslog server Syntax No logging facility type Logging facility Syntax Logging trap level no logging trap Enabled Level 6Logging trap Show logging Clear loggingSyntax Clear logging flash ram Syntax Show logging flash ram sendmail trap 19 show logging flash/ram display description Following example displays settings for the trap function Show log Syntax Show log flash ram login tail20 show logging trap display description Show logging sendmail Following example shows sample messages stored in RAM Smtp Alert Commands21 Smtp Alert Commands Syntax No logging sendmail host ipaddress Logging sendmail host Syntax Logging sendmail level level Logging sendmail level Logging sendmail destination-email Logging sendmail source-emailSyntax No logging sendmail source-email email-address This example will set the source email john@acme.com Show logging sendmail Syntax No logging sendmail Default SettingLogging sendmail 22 Time Commands Time Commands Sntp server 4-73 sntp poll 4-74 show sntp Syntax No sntp client Default SettingSntp client Sntp client 4-72 sntp poll 4-74 show sntp Sntp serverSyntax Sntp server ip1 ip2 ip3 Show sntp Sntp pollSyntax Sntp poll seconds no sntp poll Sntp client Clock timezone Show sntp Calendar setSyntax Year Year 4-digit. Range This command displays the system clock System Status Commands23 System Status Commands Show calendar Syntax Light unit unit Show startup-configLight unit Example Show running-config4-80 Show running-config Example Show system Show startup-config4-78This command displays system information Show version Show users 24 Frame Size Commands Frame Size CommandsSyntax No jumbo frame Default Setting Jumbo frame 25 Flash/File Commands Flash/File Commands Copy Privileged Exec Following example shows how to download a configuration file Delete This command deletes a file or image Syntax Dir unit boot-rom config opcode filename This command displays a list of files in flash memoryDir Dir Delete public-key4-52 Following example shows how to display all file information WhichbootSyntax whichboot unit File information is shown below Syntax Boot system unit boot-romconfig opcode filename Boot system Authentication Sequence Authentication CommandsDir 4-90 whichboot 27 Authentication Commands Local Authentication login Username for setting the local user names and passwords Authentication enable Radius Client 29 Radius Client Commands Timeout 5 seconds Default Setting Auth-portRetransmit Command Mode Radius-server host Radius-server key Radius-server portSyntax Radius-server port portnumber no radius-server port 1812 Radius-server retransmit Radius-server timeout Show radius-server TACACS+ Client 30 Tacacs CommandsTacacs-server host Hostipaddress IP address of a TACACS+ server Tacacs-server key Tacacs-server portSyntax Tacacs-server port portnumber no tacacs-server port Syntax Tacacs-server key keystring no tacacs-server key Show tacacs-server Port Security Commands Status Disabled Action None Maximum Addresses 31 Port Security CommandsInterface Configuration Ethernet Port security 105 32 802.1X Port Authentication 802.1X Port Authentication Syntax No system-auth-control Default Setting Dot1x defaultDot1x system-auth-control Dot1x max-req Interface Configuration Default Command ModeDefault Dot1x port-control Single-host Dot1x operation-mode Dot1x re-authentication Dot1x re-authenticateSyntax Dot1x re-authenticate interface Syntax No dot1x re-authentication Command Mode Seconds The number of seconds. Range Dot1x timeout quiet-periodDot1x timeout re-authperiod Show dot1x Dot1x timeout tx-periodSyntax Show dot1x statistics interface interface Statistics Displays dot1x status for each port Before re-transmitting EAP packet Supplicant-timeout- Supplicant timeout Max Count Access this portState Current state including initialize, reauthenticate 115 Access Control Lists Access Control List Commands 34 IP ACLs 33 Access Control ListsIP ACLs Syntax No access-list ip standard extended aclname Access-list ip Standard ACL Permit, deny Ip access-group4-123 show ip access-list4-123Syntax No permit deny any source bitmask host source No permit deny tcp Access-list ip Extended ACL Precedence source-port control-flag 122 Ip access-group Show ip access-listSyntax Show ip access-list standard extended aclname Syntax No ip access-group aclname This command shows the ports assigned to IP ACLs Show ip access-groupShow ip access-list4-123 Syntax No map access-list ip aclname cos cos-value Map access-list ipQueue cos-map4-224 Show map access-list ip 35 Egress Queue Priority Mapping Map access-list ip Show map access-list ipSyntax Show map access-list ip interface Syntax No access-list mac aclname Access-list macMAC ACLs 36 MAC ACLs Syntax No permit deny Permit, deny MAC ACL MAC ACL Mac access-group Show mac access-listSyntax Show mac access-list aclname Syntax Mac access-group aclname Map access-list mac Show mac access-groupShow mac access-list4-130 This command shows the ports assigned to MAC ACLs Queue cos-map4-224 Show map access-list mac Show map access-list macSyntax Show map access-list mac interface 37 Egress Queue Priority Mapping 38 ACL Information Show access-listACL Information Privileged Executive Show access-groupThis command shows the port assignments of ACLs Snmp-server community Snmp Commands39 Snmp Commands Syntax Snmp-server contact string no snmp-server contact Snmp-server contact Syntax Snmp-server location text no snmp-server location Snmp-server location Host Address None Snmp Version Snmp-server host Issue authentication and link-up-down traps Snmp-server enable traps Show snmp This command checks the status of Snmp communications 141 40 Interface Commands Interface Commands Description InterfacePort-channel channel-idRange Syntax Description string no description Following example adds a description to port Interface Configuration Ethernet, Port ChannelSpeed-duplex Negotiation 4-145 capabilities Syntax No negotiation Default SettingNegotiation Capabilities 4-146speed-duplex4-144 Following example configures port 11 to use autonegotiationCapabilities Negotiation 4-145speed-duplex4-144 flowcontrol Syntax No flowcontrol Default SettingFlowcontrol Shutdown Following example enables flow control on portNegotiation Capabilities flowcontrol, symmetric Syntax No shutdown Following example disables port Switchport broadcast packet-rateAll interfaces are enabled Port-channel channel-idRange Default Setting This command clears statistics on an interfaceClear counters Syntax Clear counters interface Show interfaces status This command displays the status for an interfaceFollowing example clears statistics on port Syntax Show interfaces status interface Show interfaces counters This command displays interface statisticsSyntax Show interfaces counters interface Shows the counters for all interfaces 153 Syntax Show interfaces switchport interface Show interfaces switchportThis example shows the configuration setting for port Shows all interfaces 41 Interfaces Switchport Statistics 42 Mirror Port Commands Mirror Port CommandsInterface Configuration Ethernet, destination port Port monitor Show port monitor This command displays mirror informationSyntax Show port monitor interface Shows all sessions 43 Rate Limit Commands Rate Limit CommandsFollowing shows mirroring configured from port 6 to port Actual rate limit = Rate limit level * Granularity Rate-limitFast Ethernet Gigabit Ethernet Rate-limit granularity Global Configuration Ethernet, Port Channel Show rate-limit Link Aggregation CommandsUse this command to display the rate limit granularity Guidelines for Creating Trunks 44 Link Aggregation Commands Syntax Channel-group channel-idno channel-group Channel-groupChannel-id- Trunk index Range Current port will be added to this trunk Following example creates trunk 1 and then adds port Syntax no lacp Default SettingLacp 165 32768 Lacp system-priority Lacp admin-keyEthernet Interface Interface Configuration Port Channel Lacp admin-key Port Channel Lacp port-priority Port Channel all This command displays Lacp informationShow lacp 45 show lacp counters display description 46 show lacp internal display description Expected to be enabled in the absence of administrative 47 show lacp neighbors display description 48 show lacp sysid display description Address Table Commands49 Address Table Commands Mac-address- MAC address Mac-address-table staticEthernet unit/port -unit- Stack unit Vlan-id- Vlan ID Range Mac-address- MAC address Mask Bits to match in the address Clear mac-address-table dynamicShow mac-address-table 178 Show mac-address-table aging-time Mac-address-table aging-time 50 Spanning Tree Commands Spanning Tree Commands Spanning-tree Syntax No spanning-tree Default SettingSpanning tree is enabled Rstp Spanning-tree modeSyntax Spanning-tree mode stp rstp no spanning-tree mode Spanning-tree hello-time Spanning-tree forward-time Spanning-tree max-age Spanning-tree priority Spanning-tree transmission-limit Spanning-tree pathcost methodLong method Count The transmission limit in seconds. Range This command limits the maximum transmission rate for BPDUs Spanning-tree spanning-disabledSyntax No spanning-tree spanning-disabled Default Setting This example disables the spanning tree algorithm for port Syntax Spanning-tree cost cost no spanning-tree cost Spanning-tree cost Spanning-tree edge-port Spanning-tree port-priorityPriority The priority for a port. Range 0-240, in steps Syntax No spanning-tree edge-port Spanning-tree portfast Syntax No spanning-tree portfast Default Setting Spanning-treeedge-port4-189 Spanning-tree link-type Spanning-tree protocol-migration Port-channel channel-idRange Command ModeAuto Syntax Spanning-tree protocol-migration interface Syntax Show spanning-tree interface This command shows the configuration for the spanning treeShow spanning-tree 194 Editing Vlan Groups Vlan Commands195 Vlan database Vlan 196 197 By default only Vlan 1 exists and is activeVlan Database Configuration 53 Configuring Vlan Interfaces Configuring Vlan Interfaces198 Interface vlan 199 Switchport modeAll ports are in hybrid mode with the Pvid set to Vlan Switchport acceptable-frame-types4-200 Switchport acceptable-frame-types200 All frame types 201 Switchport ingress-filteringSyntax No switchport ingress-filtering Default Setting 202 Switchport native vlan 203 Switchport allowed vlan No VLANs are included in the forbidden list Switchport forbidden vlan204 Displaying Vlan Information 54 Show Vlan Commands205 Show vlan 206 Configuring Private VLANsFollowing example shows how to display information for Vlan 207 55 Private Vlan Commands Private-vlan 208 209 No private-vlan primary-vlan-idassociation 210Private vlan association Normal Vlan Switchport mode private-vlan211 Switchport private-vlan isolated Switchport private-vlan host-association212 Isolated-vlan-id- ID of isolated VLAN. Range 213 Switchport private-vlan mapping Syntax Show vlan private-vlan community isolated primary 214Show vlan private-vlan 56 Gvrp and Bridge Extension Commands Gvrp and Bridge Extension CommandsSyntax No bridge-ext gvrp Default Setting 215 Show bridge-ext 216 Show gvrp configuration Switchport gvrpSyntax No switchport gvrp Default Setting Syntax Show gvrp configuration interface 218 Garp timer Syntax Show garp timer interface Show garp timerShows all Garp timers 219 Priority Commands Layer Priority Commands57 Priority Commands 58 Priority Commands Layer Syntax Queue mode strict wrr no queue mode Queue modeWeighted Round Robin 221 222 Switchport priority default Queue bandwidth 223 Queue cos-map 59 Default CoS Priority Levels224 This command shows the current queue mode Show queue mode225 Show queue cos-map4-226 226 This command shows the class of service priority mapShow queue bandwidth Show queue cos-map 227 Priority Commands Layer 360 Priority Commands Layer 3 228 Syntax No map ip port Default Setting 229 Syntax No map ip precedence Default Setting 61 Mapping IP Precedence Values List below shows the default priority mapping230 231 Syntax No map ip dscp Default Setting 62 IP Dscp to CoS Values 232 233 Use this command to show the IP port priority mapShow map ip port Syntax Show map ip port interface 234 This command shows the IP precedence priority mapShow map ip precedence Syntax Show map ip precedence interface 235 This command shows the IP Dscp priority mapShow map ip dscp Syntax Show map ip dscp interface Igmp Snooping Commands Multicast Filtering Commands63 Multicast Filtering Commands 64 Igmp Snooping Commands Following example enables Igmp snooping Syntax No ip igmp snooping Default Setting237 Ip igmp snooping 238 Following configures the switch to use Igmp VersionIp igmp snooping version Igmp Version Show mac-address-table multicast 239Show ip igmp snooping 240 Igmp Query Commands Layer65 Igmp Query Commands Layer 241 Syntax No ip igmp snooping querier Default SettingIp igmp snooping querier Ip igmp snooping query-count 242 Following shows how to configure the query count toIp igmp snooping query-interval Ip igmp snooping query-max-response-time4-243 Ip igmp snooping query-max-response-time Seconds The report delay advertised in Igmp queries. Range243 Ip igmp snooping router-port-expire-time Switch must use IGMPv2 for this command to take effect244 66 Static Multicast Routing Commands Static Multicast Routing Commands245 Ip igmp snooping vlan mrouter 246 Displays multicast router ports for all configured VLANsShow ip igmp snooping mrouter Syntax Show ip igmp snooping mrouter vlan vlan-id 67 IP Interface Commands IP Interface CommandsIp address 247 248 Interface Configuration Vlan Syntax Ip default-gateway gateway no ip default-gateway Ip default-gatewayIp dhcp restart 249 Show ip interface This command displays the settings of an IP interface250 All interfaces Ping Show ip redirects251 Syntax Ping host size size count count Interface 252 Software Features Management Features Standards Groups 1, 2, 3, 9 Statistics, History, Alarm, Event Management Information Bases Problems Accessing the Management Interface Appendix B Troubleshooting Table B-1 Troubleshooting Chart Symptom Action Using System Logs Troubleshooting Glossary-1 Glossary-2 Glossary-3 Glossary-4 Glossary-5 Glossary-6 Glossary-7 User Datagram Protocol UDP Glossary-8Virtual LAN Vlan XModem Index-1 Numerics Igmp Index-2 Snmp Snmp Index-3 Index-4 Page For Technical SUPPORT, Call