Manuals / SMC Networks / Computer Equipment / Switch

SMC Networks SMC6824M manual 127

Models: SMC6824M

1 608

Download 608 pages 58 Kb

Page 419

Image 419

COMMAND LINE INTERFACE

with the address for each IP packet entering the port(s) to which this ACL has been assigned.

•You can specify both Precedence and ToS in the same rule. However, if DSCP is used, then neither Precedence nor ToS can be specified.

•The control-code bitmask is a decimal number (representing an equivalent bit mask) that is applied to the control code. Enter a decimal number, where the equivalent binary bit “1” means to match a bit and “0” means to ignore a bit. The following bits may be specified:

-1 (fin) – Finish

-2 (syn) – Synchronize

-4 (rst) – Reset

-8 (psh) – Push

-16 (ack) – Acknowledgement

-32 (urg) – Urgent pointer

•For example, use the code value and mask below to catch packets with the following flags set:

-SYN flag valid, use “control-code 2 2”

-Both SYN and ACK valid, use “control-code 18 18”

-SYN valid and ACK invalid, use “control-code 2 18”

Example

This example accepts any incoming packets if the source address is within subnet 10.7.1.x. For example, if the rule is matched; i.e., the rule (10.7.1.0 & 255.255.255.0) equals the masked address (10.7.1.2 & 255.255.255.0), the packet passes through.

Console(config-ext-acl)#permit 10.7.1.1 255.255.255.0 any Console(config-ext-acl)#

This allows TCP packets from class C addresses 192.168.1.0 to any destination address when set for destination TCP port 80 (i.e., HTTP).

Console(config-ext-acl)#permit 192.168.1.0 255.255.255.0 any destination-port 80

Console(config-ext-acl)#

4-127

Page 419

Image 419

Contents

TigerStack III 10/100 Page TigerStack III 10/100 Management Guide Trademarks Limited Warranty Limited Warranty Table of Contents Table of Contents Table of Contents Table of Contents Vii Command Line InterfaceViii Table of Contents Table of Contents Table of Contents Xii Xiii Xiv Table of Contents Xvi Xvii Glossary IndexXviii Xix TablesTables Xxi Xxii Xxiii Figures37 802.1X Global Information XxivXxv Xxvi Feature Description Key FeaturesKey Features Lacp Description of Software FeaturesDescription of Software Features Introduction Description of Software Features Introduction Function Parameter Default System DefaultsSystem Defaults Https Pvid Dhcp Configuration Options Connecting to the SwitchInitial Configuration Required Connections Remote Connections Selecting the Stack Master Recovering from Stack Failure or Topology ChangeStack Operations Console Connection Basic ConfigurationResilient IP Interface for Management Access Setting an IP Address Setting PasswordsManual Configuration Dynamic Configuration Enabling Snmp Management Access Community Strings for Snmp version 1 and 2c clients Clients, we recommend that you delete both of the defaultTrap Receivers Configuring Access for Snmp Version 3 ClientsSaving Configuration Settings Managing System Files Configuring Power over Ethernet Initial Configuration Using the Web Interface Configuring the SwitchConfiguring the Switch Home Navigating the Web Browser InterfaceAction Web Page Configuration ButtonsButton Panel Display Front Panel IndicatorsMenu Description Switch Main MenuMain Menu Sntp ACL Vlan Mstp 206 Vlan ID Field Attributes Displaying System InformationSystem Information CLI Specify the hostname, location and contact information Displaying Switch Hardware/Software VersionsManagement Software General Switch Information Web Click System, Switch InformationField Attributes Displaying Bridge Extension CapabilitiesWeb Click System, Bridge Extension Setting the IP AddressCLI Enter the following command Command Attributes IP Interface Configuration Manual Manual ConfigurationIP Interface Configuration Dhcp Using DHCP/BOOTPManaging Firmware Command AttributesCopy Firmware Downloading System Software from a ServerSetting the Startup Code Command Usage Saving or Restoring Configuration SettingsBasic Configuration 11 Downloading Configuration Settings for Start-Up Downloading Configuration Settings from a Server12 Setting the Startup Configuration Settings Command Attributes Console Port SettingsCLI only 13 Console Port Settings Command Attributes Telnet Settings14 Configuring the Telnet Interface System Log Configuration Configuring Event LoggingLogging Levels Command Attributes15 System Logs Remote Log Configuration16 Remote Logs 17 Displaying Logs Displaying Log MessagesCLI This example shows the event message stored in RAM Sending Simple Mail Transfer Protocol Alerts18 Enabling and Configuring Smtp Alerts 19 Resetting the Switch Resetting the SystemCLI Use the reload command to reboot the system Setting the System ClockConfiguring Sntp 20 Sntp Configuration Setting the Time ZoneSimple Network Management Protocol 21 Setting the Time ZoneConfiguring the Switch Model Level Group Read Write Notify Security View SNMPv3 Security Models and LevelsEnabling the Snmp Agent Setting Community Access StringsCLI The following example enables Snmp on the switch 23 Configuring Snmp Community Strings Specifying Trap Managers and Trap Types Command UsageCommand Attributes 24 Configuring Snmp Trap Managers Setting the Local Engine ID Configuring SNMPv3 Management AccessCLI This example sets an SNMPv3 engine ID Specifying a Remote Engine IDCLI This example specifies a remote SNMPv3 engine ID Configuring SNMPv3 UsersConfiguring the Switch 27 Configuring SNMPv3 Users 169 Configuring Remote SNMPv3 UsersCommand Attributes 28 Configuring Remote SNMPv3 Users Configuring SNMPv3 Groups Object Label Object ID Description Supported Notification MessagesObject Label Object ID Description Rmon Events SwIpFilterRejectTrap 29 Configuring SNMPv3 Groups 165 Setting SNMPv3 Views30 Configuring SNMPv3 Views 163 User AuthenticationCommand Attributes Configuring User Accounts31 Configuring User Accounts On a central server to Configuring Local/Remote Logon AuthenticationThat use software running Radius Settings Command Attributes32 Authentication Server Settings Tacacs Settings104 Configuring HttpsWeb Browser Operating System Https Support33 Https Settings Replacing the Default Secure-site CertificateConfiguring the Secure Shell Command Usage Configuring the Switch Field Attributes Generating the Host Key Pair34 SSH Host-Key Settings SSH server includes basic settings for authentication Configuring the SSH Server35 SSH Server Settings Command Usage Configuring Port SecurityCommand Attributes 36 Enabling Port Security Configuring 802.1X Port Authentication Web Click Security, 802.1X, Information Displaying 802.1X Global Settings802.1X protocol provides client authentication 802.1X System Authentication Control The global setting forCLI This example enables 802.1X globally for the switch Configuring 802.1X Global SettingsCLI This example shows the default global setting for Configuring Port Settings for Authorized 39 802.1X Port ConfigurationUser Authentication Parameter Description Displaying 802.1X Statistics802.1X Statistics CLI This example displays the 802.1X statistics for port 40 Displaying 802.1X StatisticsCommand Usage Filtering IP Addresses for Management Access41 Entering IP Addresses to be Filtered Configuring Access Control Lists Access Control ListsCommand Attributes Setting the ACL Name and TypeCLI This example creates a standard IP ACL named bill Configuring a Standard IP ACL Command Attributes100 101 Configuring an Extended IP ACL Command Attributes102 103 44 Configuring Extended IP ACLs104 Configuring a MAC ACL Command Attributes105 Command Usage106 45 Configuring MAC ACLsSpecifying the Mask Type Configuring ACL Masks107 This mask defines the fields to check in the IP header Configuring an IP ACL Mask108 109 47 Configuring an IP based ACLThis mask defines the fields to check in the packet header Configuring a MAC ACL Mask110 111 48 Configuring an ACL MAC Mask112 Binding a Port to an Access Control List49 Mapping ACLs to Port Ingress/Egress Queues 113114 Port ConfigurationCommand Attributes Web Displaying Connection StatusWeb Click Port, Port Information or Trunk Information 115Field Attributes CLI Current status 116CLI This example shows the connection status for Port Configuring Interface Connections117 118 119 51 Configuring Port Attributes120 Creating Trunk Groups121 Statically Configuring a Trunk Command Usage122 52 Static Trunk Configuration123 Enabling Lacp on Selected Ports Command Usage124 53 Lacp Port Configuration125 126 127 54 Lacp Aggregation Port Configuration128 Lacp Port Counters 129Displaying Lacp Port Counters You can display statistics for Lacp protocol messages130 Displaying Lacp Settings and Status for the Local SideLacp Internal Configuration Information 131 56 Displaying Lacp Port Information 132133 Displaying Lacp Settings and Status for the Remote Side10 Lacp Neighbor Configuration Information 57 Displaying Remote Lacp Port Information 134135 Setting Broadcast Storm Thresholds136 Configuring Port Mirroring137 59 Configuring a Mirror Port138 Configuring Rate LimitsCommand Attribute 139 Showing Port Statistics11 Port Statistics 140141 Rmon Statistics 142143 61 Port Statistics 144CLI This example shows statistics for port Power Over Ethernet Settings145 146 Switch Power StatusDisplays the Power over Ethernet parameters for the switch 147 Setting a Switch Power BudgetWeb Click PoE, Power Status 148 Displaying Port Power Status149 Configuring Port PoE PowerWeb Click PoE, Power Port Status 150 65 Configuring Port PoE Power151 Address Table SettingsSetting Static Addresses 152 Displaying the Address Table67 Displaying the MAC Dynamic Address Table 153CLI This example sets the aging time to 300 seconds Spanning Tree Algorithm ConfigurationChanging the Aging Time 154155 156 Displaying Global Settings157 158 Web Click Spanning Tree, STA Information 159160 Configuring Global SettingsGlobal settings apply to the entire switch 161 Basic Configuration of Global Settings162 Root Device Configuration163 Configuration Settings for Rstp164 70 Configuring the Spanning Tree Algorithm165 Displaying Interface Settings166 AD B 16771 STA Port Information 168169 Configuring Interface Settings170 171 72 Configuring Spanning Tree Algorithm per PortCLI This example sets STA attributes for port Configuring Multiple Spanning Trees172 173 73 Mstp Vlan Configuration174 175 Displaying Interface Settings for Mstp176 177 Configuring Interface Settings for MstpCLI This example sets the Mstp attributes for port 178179 Vlan ConfigurationIeee 802.1Q VLANs Assigning Ports to VLANs 180181 Forwarding Tagged/Untagged Frames 182183 Enabling or Disabling Gvrp Global SettingCLI This example enables Gvrp for the switch Web Click VLAN, 802.1Q VLAN, Basic Information 184Displaying Basic Vlan Information Displaying Current VLANs 185Creating VLANs Command Attributes CLI186 79 Vlan Static List Creating VLANs 187CLI This example creates a new Vlan 188Adding Static Members to VLANs Vlan Index 189 Command AttributesAdding Static Members to VLANs Port Index 190191 Configuring Vlan Behavior for Interfaces192 193 194 Private VLANsDisplaying Current Private VLANs Vlan ID ID of configured Vlan195 83 Displaying Private Vlan Port Information 196197 Configuring Private VLANsEach community Vlan must be associated with a primary Vlan 198Associating Community VLANs Displaying Private Vlan Interface Information 199200 Configuring Private Vlan Interfaces201 87 Configuring Private Vlan Ports202 Class of Service ConfigurationLayer 2 Queue Settings Setting the Default Priority for Interfaces203 CLI This example assigns a default priority of 5 to port13 CoS Priority Levels 204Mapping CoS Values to Egress Queues 12 Mapping CoS Values to Egress Queues205 89 Configuring Traffic Classes206 Selecting the Queue Mode207 Setting the Service Weight for Traffic ClassesSelecting IP Precedence/DSCP Priority Layer 3/4 Priority Settings208 Mapping Layer 3/4 Priorities to CoS Values14 Mapping IP Precedence 209Mapping IP Precedence 210 93 Mapping IP Precedence to Class of Service ValuesIP Dscp Value CoS Value 211Mapping Dscp Priority 15 Mapping Dscp Priority212 94 Mapping IP Dscp Priority to Class of Service ValuesMapping IP Port Priority 21395 Globally Enabling the IP Port Priority Status 214215 Copy Settings16 CoS to ACL Mapping CLI This feature not supported through the CLI216 Mapping CoS Values to ACLs98 Mapping CoS Values to ACLs 217Changing Priorities Based on ACL Rules 21899 Changing Priorities Based on ACL Rules 219220 Multicast FilteringIgmp Protocol 221 Layer 2 Igmp Snooping and Query222 Configuring Igmp Snooping and Query Parameters223 100 Configuring Internet Group Management ProtocolDisplaying Interfaces Attached to a Multicast Router 224Specifying Interfaces Attached to a Multicast Router 225226 Displaying Port Members of Multicast Services227 103 Displaying Port Members of Multicast Services228 Assigning Ports to Multicast Services229 Configuring Domain Name ServiceConfiguring General DNS Server Parameters 230 231 105 Configuring DNS232 Configuring Static DNS Host to Address Entries106 Mapping IP Addresses to a Host Name 233234 Displaying the DNS CacheWeb Select DNS, Cache 235236 Console Connection Using the Command Line InterfaceAccessing the CLI Telnet Connection Keywords and Arguments Entering CommandsThis section describes how to enter CLI commands Minimum Abbreviation Command CompletionGetting Help on Commands Showing CommandsCommand Line Interface Partial Keyword Lookup Negating the Effect of CommandsUsing Command History Understanding Command ModesClass Mode Exec CommandsCommand Modes Configuration Commands Mode Command Prompt Configuration Command ModesKeystroke Function Command Line ProcessingKeystroke Commands Command Group Description Command GroupsCommand Group Index Configures DNS services 286 Password-thresh command Line CommandsLine Commands Command Function ModeLine Line Configuration LoginSyntax Login local no login Login localNo password is specified PasswordUsername 4-34password Syntax Password 0 7 password no passwordTo set the timeout to two minutes, enter this command Timeout login responseLogin 4-15password-thresh CLI Disabled 0 seconds Telnet 300 secondsCLI and Telnet 600 seconds 10 minutes Exec-timeoutSyntax Exec-timeout seconds no exec-timeout Default value is three attempts Password-threshSyntax Password-thresh threshold no password-thresh Syntax Databits 7 8 no databits Silent-timeDatabits Syntax Silent-time seconds no silent-timeSyntax Parity none even odd no parity ParitySyntax Speed bps no speed To specify no parity, enter this commandTo specify 57600 bps, enter this command SpeedSyntax disconnect session-id StopbitsDisconnect Stopbits 1Syntax Show line console vty Show lineSyntax enable level General CommandsEnable General CommandsNone DisableDisable Enable password Show history ConfigureReload This command restarts the systemThis command resets the entire system Exit This example shows how to reset the switchThis command returns to Privileged Exec mode EndQuit Use this command to exit the configuration programThis example shows how to quit a CLI session Command Group Function System Management CommandsSystem Management Commands Syntax Prompt string no prompt Device Designation CommandsDevice Designation Commands PromptSyntax Light unit unit HostnameLight unit Syntax Hostname name no hostnameUsername User Access CommandsUser Access Commands Username Access-level Password 10 Default Login SettingsDefault is level is level Default password is super Enable passwordManagement IP Filter CommandsEnable 4-25authentication enable 11 IP Filter CommandsShow management 12 Web Server Commands Web Server CommandsIp http server Default Setting Command ModeSyntax No ip http server Default Setting Ip http portIp http secure-server Syntax No ip http secure-server Default SettingPortnumber The UDP port used for HTTPS. Range Ip http secure-port13 Https System Support Ip http secure-port4-42 Copy tftp https-certificateIp http secure-server4-41 Telnet Server Commands14 Telnet Server Commands Ip telnet serverServer Enabled Server Port Secure Shell CommandsCommand Function Mode 15 Secure Shell CommandsSystem Management Commands Ip ssh server Syntax No ip ssh server Default SettingDisabled Seconds Ip ssh timeoutSyntax Ip ssh timeout seconds no ip ssh timeout Ip ssh crypto host-key generate 4-51 show sshExec-timeout4-18 show ip ssh Ip ssh authentication-retriesSyntax Delete public-key username dsa rsa Ip ssh server-key sizeDelete public-key Generates both the DSA and RSA key pairs Ip ssh crypto host-key generateSyntax Ip ssh crypto host-key generate dsa rsa Dsa DSA Version 2 key type Rsa RSA Version 1 key typeSyntax Ip ssh save host-key dsa rsa Ip ssh crypto zeroizeIp ssh save host-key Syntax Ip ssh crypto zeroize dsa rsaSaves both the DSA and RSA key This command displays the current SSH server connectionsShow ip ssh Show sshTerminology 16 show ssh display descriptionShows all public keys Show public-keySyntax Show public-key user username host Username Name of an SSH user. Range 1-8 characters17 Event Logging Commands Event Logging CommandsLogging history 4-57clear logging Syntax No logging on Default SettingLogging on Logging historyLevel Severity Name Description Flash errors level 3 RAM informational level 618 Logging Levels Hostipaddress The IP address of a syslog server Logging hostLogging facility Syntax No logging host hostipaddressSyntax Logging trap level no logging trap Disabled Level 7Logging trap Syntax Show logging flash ram sendmail trap Clear logShow logging Syntax Clear log flash ram19 show logging flash/ram display description Following example displays settings for the trap functionSyntax Show log flash ram Show log20 show logging trap display description Following example shows the event message stored in RAM Smtp Alert Commands21 Smtp Commands Logging sendmail hostSyntax Logging sendmail level level Logging sendmail levelSyntax Logging sendmail source-email email-address Logging sendmail source-emailSyntax No logging sendmail destination-email email-address Syntax No logging sendmail Default SettingLogging sendmail destination-email Logging sendmailShow logging sendmail Time Commands22 Time Commands Sntp client Syntax No sntp client Default SettingSyntax Sntp server ip1 ip2 ip3 Sntp serverSntp server 4-70 sntp poll 4-71 show sntp Syntax Sntp poll seconds no sntp poll Sntp pollSntp client 4-69 sntp poll 4-71 show sntp Sntp client Show sntpNone Clock timezoneSyntax This command displays the system clockCalendar set Show calendar23 System Status Commands System Status CommandsShow startup-config Example Related Commands Show running-configShow startup-config Show system This command displays system informationShow version Show users24 Flash/File Commands Flash/File CommandsPrivileged Exec CopyCommand Usage Following example shows how to download a configuration file Command Line Interface Dir Delete public-key This command deletes a file or imageDelete 25 File Directory Information This command displays a list of files in flash memorySyntax Dir unit boot-rom config opcode filename DirFollowing example shows how to display all file information WhichbootDir 4-87whichboot Boot systemSyntax Boot system unit boot-romconfig opcode filename Command Group Function Mode Power over Ethernet Commands26 PoE Commands Syntax No power inline compatible Power mainpower maximum allocationPower inline compatible Syntax Power mainpower maximum allocation watts unit unitCompatible Mode Enabled Syntax No power inline Default Setting Power inlinePower inline maximum allocation Low Power inline priorityUnit Stack unit. Range Port Port number. Range Show power inline statusSyntax Show power inline status interface EthernetMainpower maximum allocation on Show power mainpower27 show power inline status parameters 28 show power mainpower parameters30 Authentication Sequence Command Authentication CommandsAuthentication Sequence 29 Authentication CommandsLocal Authentication loginUsername for setting the local user names and passwords Authentication enableRadius Client 31 Radius Client CommandsRadius-server host Default Setting Auth-portTimeout 5 seconds Retransmit Command Mode1812 Radius-server portRadius-server key Syntax Radius-server port portnumber no radius-server portRadius-server retransmit Radius-server timeoutPrivileged Exec Show radius-serverHostipaddress IP address of a TACACS+ server 32 TACACS+ Client CommandsTACACS+ Client Tacacs-server hostSyntax Tacacs-server key keystring no tacacs-server key Tacacs-server portTacacs-server key Syntax Tacacs-server port portnumber no tacacs-server portShow tacacs-server Port Security CommandsPort security 33 Port Security CommandsStatus Disabled Action None Maximum Addresses Interface Configuration Ethernet109 34 802.1X Port Authentication Commands 802.1X Port AuthenticationDot1x max-req Dot1x defaultSyntax No dot1x system-auth-control Default Setting Dot1x system-auth-controlForce-authorized Default Command ModeDefault Dot1x port-controlSingle-host Dot1x operation-modeSyntax No dot1x re-authentication Command Mode Dot1x re-authenticateDot1x re-authentication Syntax Dot1x re-authenticate interfaceSeconds The number of seconds. Range Dot1x timeout quiet-periodDot1x timeout re-authperiod Statistics Displays dot1x status for each port Interface Dot1x timeout tx-periodShow dot1x Syntax Show dot1x statistics interface interface117 State- Current state including initialize, reauthenticate Authenticator State MachineAccess Control Lists Access Control List CommandsAccess Control List Commands Command Groups Function Masks for Access Control Lists35 Access Control List Commands IP ACLs 36 IP ACL CommandsSyntax No access-list ip standard extended aclname Access-list ipPermit, deny Standard ACL Access-list ip extended fragment-auto-maskStandard ACL Permit, deny Extended ACLExtended ACL No permit deny tcp127 Permit, deny Ip access-group4-134 Show ip access-listThis command displays the rules for configured IP ACLs Syntax Show ip access-list standard extended aclnameMask IP ACL 4-130 ip access-group4-134 Access-list ip mask-precedenceSyntax No access-list ip mask-precedence in out IP Mask Syntax No mask protocol131 132 Syntax Show access-list ip mask-precedence in out Show access-list ip mask-precedenceSyntax No ip access-group aclname in out Ip access-groupThis command shows the ports assigned to IP ACLs Show ip access-groupMap access-list ip Show ip access-list4-12837 Egress Queue Priority Mapping Show map access-list ipQueue cos-map4-257 Show map access-list ip Syntax Show map access-list ip interfaceMap access-list ip Match access-list ipMAC ACLs Match access-list ip38 MAC ACL Commands Show markingSyntax No access-list mac aclname Access-list macSyntax No permit deny Permit, deny MAC ACLMAC ACL Permit, deny Mac access-group4-146 Show mac access-listThis command displays the rules for configured MAC ACLs Syntax Show mac access-list aclnameMask MAC ACL 4-144 mac access-group4-146 Access-list mac mask-precedenceMAC Mask Syntax No mask pktformatThis example creates an Egress MAC ACL 145Syntax Mac access-group aclname in out Show access-list mac mask-precedenceMac access-group Syntax Show access-list mac mask-precedence in outThis command shows the ports assigned to MAC ACLs Show mac access-groupMap access-list mac Show mac access-list4-14239 Mapping CoS Values to MAC ACL Rules Show map access-list macQueue cos-map4-257 Show map access-list mac Syntax Show map access-list mac interfaceMap access-list mac Match access-list mac40 ACL Information Show access-listACL Information 41 Snmp Commands Snmp CommandsShow access-group This command shows the port assignments of ACLsSnmp-server Syntax No snmp-server Default SettingNone Show snmpSyntax Snmp-server contact string no snmp-server contact Snmp-server communitySnmp-server contact Syntax Snmp-server location text no snmp-server location Snmp-server locationSnmp-server host 156157 158 Issue authentication and link-up-down traps Snmp-server enable trapsSnmp-server host Snmp-server engine-idShow snmp engine-id This command shows the Snmp engine IDThis example shows the default engine ID 42 show snmp engine-id display description Defaultview includes access to the entire MIB treeSnmp-server view This view includes MIB-2 This command shows information on the Snmp viewsShow snmp view ExamplesSnmp-server group 164Show snmp group Command Usage44 show snmp group display description 166Snmp-server user Default Setting168 45 show snmp user display description This command shows information on Snmp usersShow snmp user 46 Interface Commands Interface CommandsSyntax Description string no description InterfaceDescription Port-channel channel-idRangeFollowing example adds a description to port Interface Configuration Ethernet, Port ChannelSpeed-duplex Negotiation 4-173capabilities Syntax No negotiation Default SettingNegotiation Negotiation 4-173speed-duplex Following example configures port 11 to use autonegotiationCapabilities Negotiation 4-173speed-duplex4-172 flowcontrol Syntax No flowcontrol Default SettingFlow control enabled FlowcontrolShutdown Following example enables flow control on portSyntax No shutdown Default Setting All interfaces are enabledFollowing example disables port Switchport broadcast packet-rateSyntax Clear counters interface This command clears statistics on an interfacePort-channel channel-idRange Default Setting Clear countersShows the status for all interfaces This command displays the status for an interfaceShow interfaces status Syntax Show interfaces status interfaceShows the counters for all interfaces This command displays interface statisticsShow interfaces counters Syntax Show interfaces counters interface181 Shows all interfaces Show interfaces switchportSyntax Show interfaces switchport interface This example shows the configuration setting for portField Description 47 show interfaces switchport display descriptionPort monitor Mirror Port Commands48 Mirror Port Commands Interface Configuration Ethernet, destination portShows all sessions This command displays mirror informationShow port monitor Syntax Show port monitor interface49 Rate Limit Commands Rate Limit CommandsFollowing shows mirroring configured from port 6 to port Rate-limit Interface Configuration Ethernet, Port Channel50 Link Aggregation Commands Link Aggregation CommandsGeneral Guidelines Guidelines for Creating TrunksSyntax Channel-group channel-idno channel-group Syntax no lacp Default SettingChannel-group Lacp191 32768 Lacp system-priorityLacp admin-keyEthernet Interface Syntax Lacp admin-key key no lacp admin-key Lacp admin-key Port ChannelLacp port-priority Default Setting51 show lacp counters display description This command displays Lacp informationShow lacp Port Channel all52 show lacp internal display description 197Partner 53 show lacp neighbors display description 19954 show lacp sysid display description Address Table Commands55 Address Table Commands Vlan-id- Vlan ID Range Mac-address-table staticMac-address- MAC address Mac-address- MAC address Mask Bits to match in the address Clear mac-address-table dynamicShow mac-address-table Seconds Mac-address-table aging-timeShow mac-address-table aging-time Spanning Tree Commands56 Spanning Tree Commands RSTP/MSTP Spanning-tree Syntax No spanning-tree Default SettingSpanning tree is enabled Rstp Spanning-tree modeSpanning-tree forward-time 208Seconds Spanning-tree hello-timeSpanning-tree max-age 210Ieee 802.1t format Spanning-tree default prioritySpanning-tree priority Long method Spanning-tree pathcost methodCount -The transmission limit in seconds. Range This command limits the maximum transmission rate for BPDUsSpanning-tree transmission-limit Syntax No spanning-tree backup-root Default Setting Spanning-tree backup-rootSpanning-tree mst-configuration Mst vlan MST ConfigurationMst instanceid priority priority no mst instanceid priority Mst priorityName Name of the spanning tree Switch’s MAC addressName Syntax name nameNumber Revision number of the spanning tree. Range RevisionMax-hops Syntax revision numberThis example disables the Spanning Tree Algorithm for port Spanning-tree spanning-disabledSyntax No spanning-tree spanning-disabled Default Setting Syntax Spanning-tree cost cost no spanning-tree cost Spanning-tree costSyntax No spanning-tree edge-port Spanning-tree port-prioritySpanning-tree edge-port Priority The priority for a port. Range 0-240, in stepsSpanning-tree portfast Syntax No spanning-tree portfast Default SettingSpanning-treeedge-port4-221 Spanning-tree link-typeAuto Spanning-tree mst costSpanning-tree mst port-priority4-225 Spanning-tree mst port-prioritySyntax Spanning-tree protocol-migration interface Port-channel channel-idRange Command ModeSpanning-tree protocol-migration Syntax Show spanning-tree interface mst instanceid Show spanning-tree228 229 Show spanning-tree mst configurationVlan database Vlan Commands57 Vlan Commands Editing Vlan GroupsVlan By default only Vlan 1 exists and is active59 Configuring Vlan Interfaces Configuring Vlan InterfacesVlan Database Configuration Shutdown Interface vlanSyntax Interface vlan vlan-id All ports are in hybrid mode with the Pvid set to Vlan Switchport modeSyntax Switchport mode trunk hybrid no switchport mode All frame types Switchport acceptable-frame-typesSyntax No switchport ingress-filtering Default Setting Switchport ingress-filtering237 Switchport native vlan238 Switchport allowed vlanNo VLANs are included in the forbidden list Switchport forbidden vlan239 60 Displaying Vlan Information 240Displaying Vlan Information Show vlan241 Following example shows how to display information for Vlan61 Private Vlan Commands 242 Private-vlan 243No private-vlan primary-vlan-idassociation 244Private-vlan association Normal Vlan Switchport mode private-vlan245 246 Switchport private-vlan host-associationSwitchport private-vlan mapping Syntax Show vlan private-vlan community primary 247Show vlan private-vlan 248 Gvrp and Bridge Extension Commands62 Gvrp and Bridge Extension Commands Show bridge-ext Syntax No bridge-ext gvrp Default Setting249 Bridge-ext gvrpSyntax Show gvrp configuration interface Switchport gvrpShow gvrp configuration Syntax No switchport gvrp Default Setting251 Garp timerShows both global and interface-specific configuration 252 Show garp timerSyntax Show garp timer interface Shows all Garp timers253 Priority Commands63 Priority Commands Syntax Queue mode strict wrr no queue mode Priority Commands LayerQueue mode 64 Priority Commands LayerQueue bandwidth 255256 Switchport priority defaultQueue cos-map 257258 65 Default CoS Priority LevelsShow queue bandwidth Show queue modeThis command shows the current queue mode 259Show queue cos-map Priority Commands Layer 366 Priority Commands Layer 3 260261 Syntax No map ip port Default Setting262 Syntax No map ip precedence Default Setting67 Mapping IP Precedence to CoS Values List below shows the default priority mapping263 264 Syntax No map ip dscp Default Setting68 Mapping IP Dscp to CoS Values 265Syntax Show map ip port interface This command shows the IP port priority map266 Show map ip portSyntax Show map ip precedence interface This command shows the IP precedence priority map267 Show map ip precedenceSyntax Show map ip dscp interface This command shows the IP Dscp priority map268 Show map ip dscp70 Igmp Snooping Commands Multicast Filtering CommandsIgmp Snooping Commands 69 Multicast Filtering CommandsIp igmp snooping Syntax No ip igmp snooping Default SettingFollowing example enables Igmp snooping 270Igmp Version Following configures the switch to use Igmp Version271 Ip igmp snooping versionShow mac-address-table multicast 272Show ip igmp snooping Ip igmp snooping querier Igmp Query Commands Layer71 Igmp Query Commands Layer 273Times 274Ip igmp snooping query-count Ip igmp snooping query-interval Following shows how to configure the query count to275 Ip igmp snooping query-max-response-time Seconds The report delay advertised in Igmp queries. Range276 Ip igmp snooping router-port-expire-time Switch must use IGMPv2 for this command to take effect277 Ip igmp snooping vlan mrouter Static Multicast Routing Commands72 Static Multicast Routing Commands 278Syntax Show ip igmp snooping mrouter vlan vlan-id Displays multicast router ports for all configured VLANs279 Show ip igmp snooping mrouterIp address IP Interface Commands73 IP Interface Command Syntax 280281 Interface Configuration VlanIp dhcp restart Ip default-gatewaySyntax Ip default-gateway gateway no ip default-gateway 282Show ip interface 283Ping This command has no default for the host284 Show ip redirects285 286 DNS Commands74 DNS Commands This example maps two address to a host name 287Ip host No static entriesSyntax Clear host name 288Clear host Ip domain-nameSyntax No ip domain-list name 289Ip domain-list Ip domain-name4-288 290Ip name-server Ip domain-name4-288 ip domain-lookup4-291 Syntax No ip domain-lookup Default Setting291 Ip domain-lookupIp domain-name4-288 ip name-server4-290 292Show hosts Show dns This command displays the configuration of the DNS serverThis command displays entries in the DNS cache 29375 Show DNS Output Description This command clears all entries in the DNS cache294 Clear dns cachePoE AuthenticationAccess Control Lists Dhcp Client Port ConfigurationSpanning Tree Protocol Class of ServiceAdditional Features Port TrunkingSNMPv3 StandardsManagement Information Bases Symptom Action Problems Accessing the Management InterfaceTable B-1 Troubleshooting Chart Cannot access Using System Logs Troubleshooting Glossary-1 Glossary-2 Glossary-3 Glossary-4 Glossary-5 Glossary-6 Glossary-7 XModem Glossary-8Virtual LAN Vlan Index-1 IndexIgmp Index-2Index-3 Index-4 Page For Technical SUPPORT, Call