Configuring a MAC ACL Mask | SMC Networks SMC8624/48T specification

CONFIGURING THE SWITCH

Console(config)#access-list ip	standard A2	3-118
Console(config-std-acl)#permit	10.1.1.0 255.255.255.0	3-119
Console(config-std-acl)#deny 10.1.1.1 255.255.255.255
Console(config-std-acl)#exit
Console(config)#access-list ip	mask-precedence in	3-123
Console(config-ip-mask-acl)#mask host any		3-125
Console(config-ip-mask-acl)#mask 255.255.255.0 any
Console(config-ip-mask-acl)#

Configuring a MAC ACL Mask

This mask defines the fields to check in the packet header.

Command Usage

You must configure a mask for an ACL rule before you can bind it to a port.

Command Attributes

•Source/Destination MAC – Use “Any” to match any address, “Host” to specify the host address for a single node, or “MAC” to specify a range of addresses. (Options: Any, Host, MAC; Default: Any)

•Source/Destination MAC Bitmask – Address of rule must match this bitmask.

•VID Bitmask – VLAN ID of rule must match this bitmask.

•Ethernet Type Bitmask – Ethernet type of rule must match this bitmask.

•Packet Format Bitmask – A packet format must be specified in the rule.

3-74

Image 122

SMC Networks SMC8624/48T manual Configuring a MAC ACL Mask, This mask defines the fields to check in the packet header

Contents

TigerSwitch 10/100/1000 Page TigerSwitch 10/100/1000 Management Guide Trademarks Limited Warranty Limited Warranty Contents Contents Contents Command Line Interface Vii Viii Contents Contents Contents Xii Xiii Xiv Contents Tables Xvi Xvii Figures Xviii Xix 61. Displaying Vlan Information by Port Membership Figures Key Features Key Features Description of Software Features Description of Software Features Introduction Description of Software Features Introduction System Defaults System Defaults System Defaults Dhcp Introduction Connecting to the Switch Configuration Options Required Connections Connecting to the Switch Console Connection Basic ConfigurationRemote Connections Setting Passwords Setting an IP Address Manual Configuration Dynamic Configuration Initial Configuration Enabling Snmp Management Access Community Strings Initial Configuration Saving Configuration Settings Trap Receivers Managing System Files Managing System Files Initial Configuration Configuring the Switch Using the Web Interface Configuring the Switch Navigating the Web Browser Interface Home Configuration Options Panel Display Main Menu Main Menu ACL Lacp STA 141 Vlan ID DNS Displaying System Information Field Attributes System Information CLI Specify the hostname, location and contact information Management Software Displaying Switch Hardware/Software VersionsMain Board Web Click System, Switch Information Switch Information Displaying Bridge Extension Capabilities Web Click System, Bridge Extension Setting the Switch’s IP AddressCLI Enter the following command Command Attributes Manual IP Configuration Using DHCP/BOOTP Dhcp IP Configuration 288 Managing Firmware Downloading System Software from a Server Operation Code Image File Transfer Saving or Restoring Configuration Settings Downloading Configuration Settings from a Server 10. Downloading Configuration Settings from a Server Resetting the System CLI Use the reload command to restart the switch Setting the System Clock Configuring Sntp 13. Sntp Configuration Setting the Time Zone 14. Setting the Time Zone Setting Community Access Strings Simple Network Management Protocol Access Mode Specifying Trap Managers and Trap Types 16. Specifying Trap Managers and Trap Types User Authentication Configuring the Logon Password Configuring Local/Remote Logon Authentication 17. Configuring the Logon Password Command Usage Radius Settings Tacacs Settings 18. Setting Local, Radius and Tacacs Authentication Configuring Https 19. Https Settings Https Support Replacing the Default Secure-site Certificate Configuring the Secure Shell Configuring the Switch Generating the Host Key Pair Field Attributes 20. SSH Host-Key Settings Configuring the SSH Server SSH server includes basic settings for authentication 21. SSH Server Settings Configuring Port Security Command Usage 22. Configuring Port Security Configuring 802.1x Port Authentication Displaying 802.1x Global Settings 802.1x client Radius server 23 .1x Information 111 Configuring 802.1x Global Settings Configuring Port Authorization Mode 24 .1x Configuration 25 .1x Port Configuration Authorized 1x Statistics Displaying 802.1x StatisticsStatistical Values 26 .1x Statistics CLI This example displays the 802.1x statistics for port Access Control ListsConfiguring Access Control Lists Setting the ACL Name and Type 27. Naming and Choosing ACLs CLI This example creates a standard IP ACL named bill Configuring a Standard IP ACL Command Attributes 28. Configuring Standard IP ACLs Configuring an Extended IP ACL Command Attributes Access Control Lists 29. Configuring Extended IP ACLs Configuring a MAC ACL Command Attributes 120 Command Usage 30. Configuring MAC ACLs Specifying the Mask Type Configuring ACL MasksCommand Usage Configuring an IP ACL Mask This mask defines the fields to check in the IP header Configuring the Switch 32. Configuring an IP based ACL Configuring a MAC ACL Mask This mask defines the fields to check in the packet header 33. Configuring a MAC based ACL Binding a Port to an Access Control List 148 34. Mapping ACLs to Port Ingress/Egress Queues Filtering Management Access 35. Filtering Management Access Field Attributes Web Port ConfigurationDisplaying Connection Status Field Attributes CLI Web Click Port, Port Information or Trunk Information Current status CLI This example shows the connection status for Port 178 Configuring Interface Connections Port Configuration 37. Configuring Port Attributes Creating Trunk Groups Command Usage Statically Configuring a Trunk Command Usage 38. Static Trunk Configuration Enabling Lacp on Selected Ports Command Usage 189 39. Lacp Port Configuratio 190 Command Attributes 40. Lacp Aggregation Port Configuration You can display statistics for Lacp protocol messages Displaying Lacp Port CountersCounter Information Lacp Port Counter Information 41. Displaying Lacp Port Counters Information Lacp Settings Displaying Lacp Settings and Status for the Local SideInternal Configuration Information Link Passive 1 Active 42. Displaying Lacp Port Information Lacp Remote Side Settings Displaying Lacp Settings and Status for the Remote SideNeighbor Configuration Information 100 43. Displaying Remote Lacp Port Information Setting Broadcast Storm Thresholds 101 102 44. Enabling Port Broadcast Control Configuring Port Mirroring 103 Configuring Rate Limits 104 Command Attribute 105 Showing Port Statistics 106 107 Port Statistics 108 109 Rmon Statistics 110 47. Displaying Port Statistics 111 48. Displaying Etherlike and Rmon Statistics 112 Address Table SettingsSetting Static Addresses CLI This example shows statistics for port 113 49. Mapping Ports to Static Addresses Displaying the Address Table 114 CLI This example sets the aging time to 400 seconds Changing the Aging Time115 Spanning Tree Algorithm Configuration 116 Displaying Global Settings 117 118 119 120 52. Displaying the Spanning Tree Algorithm 121 Configuring Global SettingsGlobal settings apply to the entire switch Basic Configuration of Global Settings 122 Root Device Configuration 123 Configuration Settings for Rstp 124 53. Configuring the Spanning Tree Algorithm 125 Displaying Interface Settings 126 127 Rules defining port status are 128 AD B 129 CLI This example shows the STA attributes for port Configuring Interface Settings130 131 132 CLI This example sets STA attributes for port Configuring Multiple Spanning Trees133 134 135 Vlan ID Vlan to assign to this selected MST instance. Range 136 Displaying Interface Settings for Mstp 137 138 Configuring Interface Settings for Mstp 139 58. Mstp Port Configuration 140 141 Vlan ConfigurationOverview CLI This example sets the Mstp attributes for port 142 Assigning Ports to VLANs 143 144 145 Forwarding Tagged/Untagged Frames Displaying Basic Vlan Information Enabling or Disabling Gvrp Global SettingCLI This example enables Gvrp for the switch 146 147 Command Attributes WebDisplaying Current VLANs Web Click VLAN, 802.1Q VLAN, Basic Information Command Attributes CLI 148 Creating VLANs 149 150 CLI This example creates a new Vlan Adding Static Members to VLANs Vlan Index 151 63. Configuring Vlan Port Attributes 152 Adding Static Members to VLANs Port Index 153 Configuring Vlan Behavior for Interfaces 154 155 156 65. Configuring Vlan Ports 157 158 Configuring Private VLANsCLI This example enables private VLANs Enabling Private VLANs 159 Configuring Protocol-Based VLANsConfiguring Uplink and Downlink Ports Create a protocol group for one or more protocols Configuring Protocol Groups160 161 Mapping Protocols to VLANs 162 69. Mapping Protocols to VLANs 163 Class of Service ConfigurationSetting the Default Priority for Interfaces CLI This example assigns a default priority of 5 to port 164 Egress Queue Priority Mapping Mapping CoS Values to Egress Queues165 10. CoS Priority Levels 71. Configuring Ports and Trunks for Class of Service 166 Selecting the Queue Mode 167 Setting the Service Weight for Traffic Classes 168 Mapping Layer 3/4 Priorities to CoS Values 169 Selecting IP Precedence/DSCP Priority 170 11. IP Precedence Prioruty Mapping IP Precedence171 75. Mapping IP Precedence to Class of Service Values 172 Mapping Dscp Priority 173 76. Mapping IP Dscp Priority to Class of Service Values 174 Mapping IP Port Priority 175 176 78. IP Port Priority Mapping 13. CoS to ACL Mapping Mapping CoS Values to ACLs177 Changing Priorities Based on ACL Rules 178 179 180 79. Changing Priorities Based on ACL Rules Multicast Filtering 181 182 Configuring Igmp Snooping and Query ParametersLayer 2 Igmp Snooping and Query 183 80. Configuring Internet Group Management Protocol 184 Displaying Interfaces Attached to a Multicast Router Command Attributes185 186 Specifying Static Interfaces for a Multicast Router Displaying Port Members of Multicast Services 187 Assigning Ports to Multicast Services 188 189 84. Specifying Multicast Port Membership 190 Configuring Domain Name ServiceConfiguring General DNS Server Parameters 191 85. Configuring DNS 192 Configuring Static DNS Host to Address Entries 193 194 86. Mapping IP Addresses to a Host Name Displaying the DNS Cache 195 196 Web Select DNS, Cache Using the Command Line Interface Accessing the CLI Telnet Connection Using the Command Line Interface Keywords and Arguments Entering CommandsThis section describes how to enter CLI commands Minimum Abbreviation Command Completion Getting Help on Commands Showing Commands Partial Keyword Lookup Negating the Effect of CommandsUsing Command History Command Modes Understanding Command ModesExec Commands Configuration Commands Configuration Commands Mode Command Prompt Command Line Processing Keystroke Function Command Groups Command Group Index 255 Line Commands Line Command Syntax Line Default SettingCommand Mode Syntax Line console vty Syntax Login local no login LoginRelated Commands Syntax Password 0 7 password no password PasswordUsername 4-35 password No password is specified Syntax Exec-timeout seconds no exec-timeout Exec-timeoutLogin 4-16password-thresh4-19 CLI No timeout Telnet 10 minutes Syntax Password-thresh threshold no password-thresh Password-threshTo set the timeout to two minutes, enter this command Default value is three attempts Silent-time Syntax Silent-time seconds no silent-time Syntax Databits 7 8 no databits To specify 7 data bits, enter this commandDatabits Seven data bits per character Eight data bits per character Syntax Parity none even odd no parity To specify no parity, enter this commandParity None No parity Even Even parity Odd Odd parity Syntax Speed bps no speed To specify 57600 bps, enter this commandSpeed Auto Syntax Stopbits 1 StopbitsDisconnect Syntax Disconnect session-id Show line Syntax Show line console vty General Commands General CommandsEnable Syntax Enable level Normal Exec DisableDisable Enable password None Configure Show history This command restarts the system Reload This command returns to Privileged Exec mode This command resets the entire systemThis example shows how to reset the switch End Quit This command exits the configuration programExit Any System Mangement Commands System Management CommandsThis example shows how to quit a CLI session Prompt Device Designation CommandsDevice Designation Commands Syntax Prompt string no prompt Hostname User Access CommandsUser Access Commands Syntax Hostname name no hostname Username Enable password Default is level Default password is super IP Filter Commands 10. IP Filter Commands Management All addresses Show management Web Server Commands 11. Web Server Command Ip http port Default Setting Command ModeSyntax No ip http server Default Setting Ip http server Ip http port Copy tftp https-certificate Syntax No ip http secure-server Default SettingIp http secure-server Ip http secure-port4-44 Copy tftp https-certificate 443 Ip http secure-portPortnumber The UDP port used for HTTPS/SSL. Range Ip http secure-server4-42 Secure Shell Commands 12. Secure Shell Commands 12. Secure Shell Commands System Management Commands Ip ssh server Syntax Ip ssh server no ip ssh server Default SettingDisabled Ip ssh crypto host-key generate 4-52 show ssh Ip ssh timeoutSyntax Ip ssh timeout seconds no ip ssh timeout Seconds Show ip ssh Ip ssh authentication-retriesExec-timeout4-18 show ip ssh Syntax Delete public-key username dsa rsa Ip ssh server-key sizeDelete public-key Dsa DSA key type Rsa RSA key type Ip ssh crypto host-key generateSyntax Ip ssh crypto host-key generate dsa rsa Generates both the DSA and RSA key pairs Ip ssh crypto zeroize 4-53 ip ssh save host-key4-54 Use this command to clear the host key from memory i.e. RAMIp ssh crypto zeroize Syntax Ip ssh crypto zeroize dsa rsa Syntax Ip ssh save host-key dsa rsa Ip ssh save host-keyShow ip ssh Show ssh 13. SSH Information Username Name of an SSH user. Range 1-8 characters Show public-keySyntax Show public-key user username host Shows all public keys RSA Syntax No logging on Default Setting Event Logging Commands14. Event Logging Commands Logging on Logging history Logging history 4-59 clear logging Syntax No logging host hostipaddress Flash errors level 3 RAM warnings level 7Logging host Hostipaddress The IP address of a syslog server Logging facility Syntax No logging facility type Syntax Logging trap level no logging trap Logging trapClear logging Syntax Clear logging flash ram Syntax Show logging flash ram sendmail trap Show loggingShow logging Following example displays settings for the trap function Show logging sendmail Smtp Alert Commands15. Smtp Alert Commands Logging sendmail host Syntax No logging sendmail host ipaddress Syntax Logging sendmail level level Logging sendmail levelLogging sendmail source-email Syntax Logging sendmail source-email email-address Logging sendmail destination-email Syntax No logging sendmail destination-email email-address Show logging sendmail Syntax No logging sendmail Default SettingLogging sendmail Time Commands 16. Time Commands Sntp poll 4-72 show sntp Sntp serverSyntax Sntp server ip1 ip2 ip3 Sntp client Related CommandsSntp poll Syntax Sntp poll seconds no sntp poll Disabled Show sntp Syntax No sntp broadcast client Default SettingSntp broadcast client Clock timezone Show sntp Show calendar This command displays the system clockCalendar set Syntax 17. System Status Commands System Status CommandsShow startup-config Command Usage Show running-config4-80 Show running-config Show startup-config4-77 This command displays system information Show system Show users Show version Syntax No jumbo frame Default Setting Frame Size Commands18. Frame Size Commands Jumbo frame Flash/File Commands 19. Flash/File Commands Copy Command Usage Following example shows how to download a configuration file Delete This command deletes a file or imageFilename Name of the configuration file or image name Dir This command displays a list of files in flash memorySyntax Dir boot-rom config opcode filename Dir Delete public-key4-51 Whichboot Following example shows how to display all file information Boot system Syntax Boot system boot-romconfig opcode filename Dir 4-90 whichboot Authentication CommandsAuthentication Sequence 20. Authentication Commands Authentication login Local Radius Client Username for setting the local user names and passwords22. Radius Client Commands Radius-server host Syntax Radius-server port portnumber no radius-server port Radius-server port10.1.0.1 1812 Syntax Radius-server key keystring no radius-server key Radius-server keyRadius-server retransmit Radius-server timeout Show radius-server Tacacs-server host 23. TACACS+ Client CommandsTACACS+ Client Hostipaddress IP address of a TACACS+ server Tacacs-server port Syntax Tacacs-server port portnumber no tacacs-server port Syntax Tacacs-server key keystring no tacacs-server key Tacacs-server keyShow tacacs-server Port security Port Security Commands24. Port Security Commands Status Disabled Action None Maximum Addresses Interface Configuration Ethernet 802.1x Port Authentication 25 .1x Port Authentication Commands Authentication dot1x default Default Command Mode Dot1x defaultSyntax Dot1x default Command Mode Dot1x max-req Dot1x port-control DefaultInterface Configuration Force-authorized Dot1x operation-mode Dot1x re-authenticateSyntax Dot1x re-authenticate interface Ethernet unit/port Syntax No dot1x re-authentication Command Mode Dot1x re-authenticationDot1x timeout quiet-period Seconds The number of seconds. Range Dot1x timeout re-authperiod Dot1x timeout tx-period Show dot1x Show dot1x statistics interface interface Authenticator State Machine State- Current state including initialize, reauthenticate 113 Access Control List Commands Access Control Lists Access Control List Commands 27. IP ACL Commands Masks for Access Control Lists26. Access Control List Commands IP ACLs EXT-ACL Access-list ip Syntax No access-list ip standard extended aclname Permit, deny Ip access-group4-129 show ip access-list4-123 Standard ACL Access-list ip No permit deny tcp Extended ACL 122 Syntax Show ip access-list standard extended aclname Show ip access-listAccess-list ip mask-precedence Syntax No access-list ip mask-precedence in out Mask IP ACL 4-125 ip access-group4-129 Syntax No mask protocol IP Mask 126 127 Show access-list ip mask-precedence Syntax Show access-list ip mask-precedence in out Mask IP ACL Ip access-groupSyntax No ip access-group aclname in out Show ip access-list4-123 Show ip access-groupMap access-list ip This command shows the ports assigned to IP ACLs Queue cos-map4-260 Show map access-list ip Map access-list ip Show map access-list ipSyntax Show map access-list ip interface Match access-list ip Show marking Match access-list ipShow marking 28. MAC ACL Commands MAC ACLs Access-list mac Syntax No access-list mac aclname Permit, deny MAC ACL Any host destination destination address-bitmask MAC ACL This command displays the rules for configured MAC ACLs Show mac access-listAccess-list mac mask-precedence Syntax Show mac access-list aclname Mask MAC ACL 4-140 mac access-group4-144 Mask MAC ACL MAC Mask 142 This example creates an Egress MAC ACL Show access-list mac mask-precedenceSyntax Show access-list mac mask-precedence in out Show mac access-list4-139 Mac access-groupSyntax Mac access-group aclname in out This command shows the ports assigned to MAC ACLs Show mac access-groupMap access-list mac Syntax No map access-list mac aclname cos cos-value Syntax Show map access-list mac interface Show map access-list macQueue cos-map4-260 Show map access-list mac Match access-list mac 29. ACL Information Show access-listACL Information This command shows the port assignments of ACLs Snmp CommandsShow access-group 30. Snmp Commands Snmp community Syntax Snmp community string rorw no snmp community string Syntax Snmp contact string no snmp contact Snmp contactSnmp location Syntax Snmp-server location text no snmp-server location Snmp host Host Address None Snmp Version Consoleconfig#snmp-server host 10.1.19.23 batman Issue authentication and link-up-down traps Snmp enable trapsSyntax No snmp enable traps authentication link-up-down This command checks the status of Snmp communications Show snmp 156 DNS Commands 31. DNS Commands This example maps two address to a host name Ip hostNo static entries Syntax Clear host name Clear hostIp domain-name Syntax Ip domain-name name no ip domain-name Ip domain-list Syntax No ip domain-list name Ip domain-name4-159 Ip name-server Server-address1- IP address of domain-name server Ip domain-name4-159 ip domain-lookup4-163 Syntax No ip domain-lookup Default SettingIp domain-lookup Show hosts Ip domain-name4-159 ip name-server4-162 Show dns This command displays the configuration of the DNS serverThis command displays entries in the DNS cache Show dns cache This command clears all entries in the DNS cache Clear dns cache 167 Interface Commands 32. Interface Commands Port-channel channel-idRange InterfaceDescription Syntax Description string no description Following example adds a description to port Interface Configuration Ethernet, Port ChannelSpeed-duplex Negotiation 4 -170 capabilities 4 Syntax No negotiation Default SettingNegotiation Following example configures port 11 to use autonegotiation Capabilities 4 -172speed-duplex 4 Capabilities Flowcontrol Syntax No flowcontrol Default SettingFlow control enabled Negotiation 4 -170speed-duplex 4 -169 flowcontrol 4 Combo-forced-mode Following example enables flow control on portSyntax Combo-forced-mode mode no combo-forced-mode Negotiation 4 Capabilities flowcontrol, symmetric Following example disables port Syntax No shutdown Default SettingAll interfaces are enabled Shutdown Switchport broadcast packet-rate Clear counters This command clears statistics on an interfacePort-channel channel-idRange Default Setting Following example clears statistics on port Syntax Show interfaces status interface This command displays the status for an interfaceShow interfaces status Shows the status for all interfaces Syntax Show interfaces counters interface This command displays interface statisticsShow interfaces counters Shows the counters for all interfaces 180 This example shows the configuration setting for port Show interfaces switchportSyntax Show interfaces switchport interface Shows all interfaces Shows if acceptable Vlan frames include all types or Interface Configuration Ethernet, destination port Mirror Port Commands33. Mirror Port Commands Port monitor Show port monitor This command displays mirror informationUnit Switch unit Port Port number Syntax Show port monitor interface 34. Rate Limit Commands Rate Limit CommandsFollowing shows mirroring configured from port 6 to port Rate-limit Mbps Link Aggregation Commands 35. Link Aggregation Commands Guidelines for Creating Trunks General Guidelines Channel-id- Trunk index Range Channel-groupSyntax Channel-group channel-idno channel-group Current port will be added to this trunk Syntax No lacp Default Setting Lacp 191 Lacp system-priority 32768 Lacp admin-keyEthernet Interface Interface Configuration Port Channel Lacp admin-key Port ChannelSyntax Lacp admin-key key no lacp admin-key Lacp port-priority Port Channel all This command displays Lacp informationShow lacp 197 198 199 200 Address Table Commands36. Adress Table Commands Mac-address- MAC address Mac-address-table static201 Vlan-id- Vlan ID Range 202 Clear mac-address-table dynamicShow mac-address-table Mac-address- MAC address Mask Bits to match in the address Mac-address-table aging-time 203 Show mac-address-table aging-time 204 205 Spanning Tree Commands37. Spanning Tree Commands 206 Spanning tree is enabledSpanning-tree No spanning-tree Rstp Spanning-tree mode207 208 Spanning-tree forward-time 209 210 Spanning-tree hello-timeSpanning-tree max-age Spanning-tree priority 211 Long method Spanning-tree pathcost method212 Spanning-tree transmission-limit Spanning-tree mst-configurationThis command limits the maximum transmission rate for BPDUs 213 214 MST ConfigurationMst vlan Mst priority 215 216 Switch’s MAC addressName Syntax Name name Revision 4 Revision217 Syntax Revision number Name 4 Max-hops218 Spanning-tree cost Spanning-tree spanning-disabledSyntax No spanning-tree spanning-disabled Default Setting 219 Priority The priority for a port. Range 0-240, in steps Spanning-tree port-priority220 128 221 Syntax No spanning-tree edge-port Default SettingSpanning-tree edge-port Spanning-tree cost 4 222 Syntax No spanning-tree portfast Default SettingSpanning-tree portfast Spanning-tree portfast 4 Spanning-treeedge-port 4 Spanning-tree link-type223 Spanning-tree mst cost 224 225 Spanning-tree mst port-priority 4 Spanning-tree mst cost 4 Spanning-tree mst port-priority226 227 Port-channel channel-idRange Command ModeSpanning-tree protocol-migration Syntax Spanning-tree protocol-migration interface Syntax Show spanning-tree interface mst instanceid Show spanning-tree228 229 Syntax Show spanning-tree mst configuration Command Mode Show spanning-tree mst configurationThis command shows the multiple spanning tree configuration 230 Editing Vlan Groups Vlan Commands38. Vlan Commands 231 Show vlan 4 232Vlan database 233 By default only Vlan 1 exists and is activeVlan Database Configuration Vlan 234 Configuring Vlan Interfaces40. Configuring Vlan Interfaces Syntax Interface vlan vlan-id 235Interface vlan Shutdown 4 All ports are in hybrid mode with the Pvid set to Vlan Switchport modeSyntax Switchport mode trunk hybrid no switchport mode Switchport acceptable-frame-types 4 237 Switchport acceptable-frame-typesSwitchport mode 4 All frame types 238 Switchport ingress-filteringSyntax No switchport ingress-filtering Default Setting Switchport native vlan 239 Switchport allowed vlan 240 No VLANs are included in the forbidden list Switchport forbidden vlan241 Show vlan Displaying Vlan Information242 41. Displaying Vlan Information 243 Following example shows how to display information for Vlan42. Protocol-based Vlan Commands 244 Protocol-vlan protocol-group Configuring GroupsNo protocol groups are configured No protocol groups are mapped for any interface Protocol-vlan protocol-group Configuring Interfaces245 Syntax Show protocol-vlan protocol-group group-id 246Show protocol-vlan protocol-group Group-id- Group identifier for a protocol group. Range Show interfaces protocol-vlan protocol-group This shows protocol group 1 configured for IP over Ethernet247 Mapping for all interfaces is displayed Pvlan 43. Private Vlan Commands248 No private VLANs are defined Show pvlan This command displays the configured private Vlan249 Syntax No bridge-ext gvrp Default Setting Gvrp and Bridge Extension Commands44. Gvrp and Bridge Extension Commands 250 251 Show bridge-ext Syntax No switchport gvrp Default Setting Switchport gvrpShow gvrp configuration Syntax Show gvrp configuration interface Garp timer 253 Syntax Show garp timer interface Show garp timerShow garp timer 4 Shows all Garp timers 45. Priority Commands Priority CommandsGarp timer 4 255 46. Priority Commands Layer Priority Commands LayerSwitchport priority default 256 257 Weighted Round Robin Queue modeSyntax Queue mode strict wrr no queue mode 258 Show queue bandwidth 4 259Queue bandwidth 260 Queue cos-map 261 Show queue modeThis command shows the current queue mode Show queue cos-map 4 Show queue bandwidth This command shows the class of service priority map262 Show queue cos-map 263 Priority Commands Layer 347. Priority Commands Layer 3 Syntax Map ip port no map ip port Default Setting 264 Syntax No map ip precedence Default Setting 265 List below shows the default priority mapping 266 Syntax No map ip dscp Default Setting 267 Map ip dscp Interface Configuration 268 Show map ip port Use this command to show the IP port priority map269 Syntax Show map ip port interface Show map ip precedence This command shows the IP precedence priority map270 Syntax Show map ip precedence interface Show map ip dscp This command shows the IP Dscp priority map271 Syntax Show map ip dscp interface 48. Multicast Filtering Commands Multicast Filtering CommandsIgmp Snooping Commands 49. Igmp Snooping Commands Ip igmp snooping Following example enables Igmp snooping273 No ip igmp snooping 274 Ip igmp snooping vlan static Ip igmp snooping version Following configures the switch to use Igmp Version275 Igmp Version Show mac-address-table multicast 276Show ip igmp snooping 277 Igmp Query Commands Layer50. Igmp Query Commands Layer Ip igmp snooping querier Syntax No ip igmp snooping querier Default Setting278 Ip igmp snooping query-count Ip igmp snooping query-interval Following shows how to configure the query count to279 Ip igmp snooping query-max-response-time 4 Ip igmp snooping query-max-response-time Seconds The report delay advertised in Igmp queries. Range280 Ip igmp snooping router-port-expire-time Switch must use IGMPv2 for this command to take effect281 282 Static Multicast Routing Commands51. Static Multicast Routing Commands Ip igmp snooping vlan mrouter Show ip igmp snooping mrouter Displays multicast router ports for all configured VLANs283 Syntax Show ip igmp snooping mrouter vlan vlan-id 52. Basic IP Configuration commands IP Interface CommandsBasic IP Configuration 284 Ip address Interface Configuration Vlan285 IP address Netmask Ip dhcp restart This command submits a Bootp or Dhcp client request286 Ip dhcp restart 4 287 Ip default-gatewaySyntax Ip default-gateway gateway no ip default-gateway Show ip redirects 288Show ip interface Ping This command has no default for the host289 Syntax Ping host count countsize size 290 Interface 4 291 Dhcp Client Port Configuration Software FeaturesAuthentication Flow Control Port Mirroring Class of ServiceAdditional Features Rate Limits In-Band Management Management FeaturesStandards Out-of-Band Management Management Information Bases Appendix B Troubleshooting Table B-1. Troubleshooting Chart Troubleshooting Glossary-1 Glossary-2 Glossary-3 Glossary-4 Glossary-5 Glossary-6 Glossary-7 Virtual LAN Vlan Glossary-8User Datagram Protocol UDP XModem Numerics Index-1 Index-2 Igmp Index-3 Snmp Snmp Index-4 Page For Technical SUPPORT, Call