Manuals / SMC Networks / Computer Equipment / Switch

SMC Networks TigerSwitch manual 32 802.1X Port Authentication

Models: TigerSwitch

1 518

Download 518 pages 30.84 Kb

Page 350

COMMAND LINE INTERFACE

•You can also manually add secure addresses with the mac-address-table static command.

•A secure port has the following restrictions:

-Cannot use port monitoring.

-Cannot be a multi-VLAN port.

-Cannot be connected to a network interconnection device.

-Cannot be a trunk port.

•If a port is disabled due to a security violation, it must be manually re-enabled using the no shutdown command.

Example

The following example enables port security for port 5, and sets the response to a security violation to issue a trap message:

Console(config)#interface ethernet 1/5

Console(config-if)#port security action trap

Related Commands

shutdown (4-151)mac-address-table static (4-179) show mac-address-table(4-181)

802.1X Port Authentication

The switch supports IEEE 802.1X (dot1x) port-based access control that prevents unauthorized access to the network by requiring users to first submit credentials for authentication. Client authentication is controlled centrally by a RADIUS server using EAP (Extensible Authentication Protocol).

Table 4-32 802.1X Port Authentication

Command	Function	Mode	Page
dot1x	Enables dot1x globally on the switch.	GC	4-109
system-auth-control

dot1x default	Resets all dot1x parameters to their	GC	4-110
	default values

4-108

Image 350

SMC Networks TigerSwitch manual 32 802.1X Port Authentication

Contents

TigerSwitch 10/100 Page TigerSwitch 10/100 Management Guide Trademarks Limited Warranty Limited Warranty Contents Contents Contents Command Line Interface Vii Viii Contents Contents Contents Xii Xiii Xiv Glossary Index Xvi Tables XviiXviii Xix Figures Xxi Queue Mode 172 XxiiKey Features Key FeaturesDescription of Software Features LacpDescription of Software Features Introduction Description of Software Features Introduction System Defaults System DefaultsSnmp Dhcp Introduction Connecting to the Switch Configuration OptionsRequired Connections Connecting to the Switch Remote Connections Selecting the Stack Master Recovering from Stack Failure or Topology ChangeStack Operations Console Connection Basic ConfigurationResilient IP Interface for Management Access Setting Passwords Setting an IP Address Manual ConfigurationDynamic Configuration Enabling Snmp Management Access Community Strings Saving Configuration Settings Trap ReceiversManaging System Files Enter the name of the start-up file. Press EnterInitial Configuration Configuring the Switch Using the Web InterfaceConfiguring the Switch Navigating the Web Browser Interface HomeConfiguration Options Panel DisplayMain Menu Main MenuACL IP Filter Sets IP addresses of clients allowed Vlan 156 Vlan ID Displaying System Information Field AttributesSystem Information Displaying Switch Hardware/Software Versions CLI Specify the hostname, location and contact informationSwitch Information CLI Use the following command to display version information Displaying Bridge Extension CapabilitiesBridge Extension Configuration CLI Enter the following command Setting the Switch’s IP AddressCommand Attributes Manual IP Configuration Using DHCP/BOOTP Dhcp IP Configuration251 Managing Firmware Downloading System Software from a Server Operation Code Image File TransferSelect Start-Up Operation File Saving or Restoring Configuration Settings Basic Configuration Downloading Configuration Settings from a Server 11 Copy Configuration Settings12 Setting the Startup Configuration Settings Console Port Settings 13 Console Port Settings Telnet Settings Basic Configuration 14 Enabling Telnet Configuring Event Logging System Log ConfigurationLogging Levels Level Severity Name DescriptionRemote Log Configuration 15 System LogsConfiguring the Switch 16 Remote Logs Displaying Log Messages CLI This example shows the event message stored in RAMSending Simple Mail Transfer Protocol Alerts 18 Enabling and Configuring Smtp Alerts Resetting the System 19 Resetting the SystemSetting the System Clock Configuring Sntp20 Sntp Configuration Setting the Time Zone 21 Setting the System ClockSetting Community Access Strings Simple Network Management ProtocolAccess Mode Specifying Trap Managers and Trap Types23 Configuring IP Trap Managers User Authentication Configuring User Accounts24 Access Levels Configuring Local/Remote Logon Authentication Command Usage Radius Settings Tacacs Settings25 Authentication Settings Configuring Https Compatible Operating Systems Web Browser Operating SystemReplacing the Default Secure-site Certificate 26 Https SettingsConfiguring the Secure Shell Command Usage User Authentication Generating the Host Key Pair 27 SSH Host-Key Settings Configuring the SSH Server SSH server includes basic settings for authentication28 SSH Server Settings Configuring Port Security Command Usage Configuring 802.1X Port Authentication 29 Configuring Port SecurityPage Web Click Security, 802.1X, Information Displaying 802.1X Global Settings802.1X System Authentication Control The global setting for Configuring 802.1X Global Settings CLI This example shows the default global setting forConfiguring Port Settings for CLI This example enables 802.1X globally for the switch32 802.1X Port Configuration Authorized111 Displaying 802.1X Statistics 802.1X StatisticsDisplaying 802.1X Port Statistics CLI This example displays the 802.1X statistics for portFiltering Addresses for Management Access 34 Creating a Web IP Filter List CLI This example allows Snmp access for a specific client Access Control ListsConfiguring Access Control Lists Setting the ACL Name and Type 35 Selecting ACL Type CLI This example creates a standard IP ACL named davidConfiguring a Standard IP ACL Command Attributes Configuring an Extended IP ACL Command Attributes 36 ACL Configuration Standard IPConfiguring the Switch 37 ACL Configuration Extended IP Configuring a MAC ACL Command Attributes 12338 ACL Configuration MAC Binding a Port to an Access Control List 39 Binding a Port to an ACL Field Attributes Web Port ConfigurationDisplaying Connection Status Field Attributes CLI Web Click Port, Port Information or Trunk InformationCurrent Status Configuring Interface Connections CLI This example shows the connection status for PortConfiguring the Switch 41 Port/Trunk Configuration Creating Trunk GroupsCommand Usage Statically Configuring a Trunk Command Usage 42 Configuring Port Trunks Enabling Lacp on Selected Ports Command Usage 16643 Lacp Configuration 167 100 44 Lacp Port Configuration 101102 172You can display statistics for Lacp protocol messages 103Displaying Lacp Port Counters Lacp Port Counters104 Displaying Lacp Settings and Status for the Local SideLacp Internal Configuration Information CLI The following example displays Lacp counters105 106 46 Lacp Port Internal Information107 Displaying Lacp Settings and Status for the Remote SideLacp Neighbor Configuration Information 108 47 Lacp Port Neighbors InformationSetting Broadcast Storm Thresholds 109110 48 Port Broadcast ControlConfiguring Port Mirroring 11149 Mirror Port Configuration 112Rate Limit Granularity Configuring Rate Limits113 Rate Limit Configuration 114Showing Port Statistics 115116 Port Statistics117 Port Statistics118 Rmon Statistics119 120 52 Port Statistics121 CLI This example shows statistics for port122 Address Table SettingsSetting Static Addresses Interface Indicates a port or trunk Displaying the Address Table123 54 Configuring a Dynamic Address Table 124125 Spanning Tree Algorithm ConfigurationChanging the Aging Time CLI This example sets the aging time to 400 seconds126 Displaying Global Settings 127128 129 56 STA Information130 196131 Configuring Global SettingsGlobal settings apply to the entire switch Root Device Configuration 132Configuration Settings for Rstp 13357 STA Configuration 134Displaying Interface Settings 135136 137 138 58 STA Port InformationCLI This example shows the STA attributes for port Configuring Interface Settings139 140 141 142 Vlan ConfigurationIeee 802.1Q VLANs CLI This example sets STA attributes for port143 Assigning Ports to VLANs144 145 146 Forwarding Tagged/Untagged Frames147 Enabling or Disabling Gvrp Global SettingCLI This example enables Gvrp for the switch Displaying Basic Vlan InformationDisplaying Current VLANs Command Attributes Web148 Web Click VLAN, 802.1Q VLAN, Basic InformationCommand Attributes CLI 149150 Creating VLANs151 CLI This example creates a new Vlan152 Adding Static Members to VLANs Vlan Index153 Interface Port or trunk identifier 154Adding Static Members to VLANs Port Index 155 65 Vlan Static Membership by PortConfiguring Vlan Behavior for Interfaces 156157 66 Vlan Port Configuration 158Private VLANs 159160 Displaying Current Private VLANs161 Configuring Private VLANsVlan ID ID of configured Vlan 68 Private Vlan Configuration 162163 Associating VLANs164 Displaying Private Vlan Interface InformationConfiguring Private Vlan Interfaces 165166 71 Private Vlan Port Configuration 167Setting the Default Priority for Interfaces Class of Service ConfigurationLayer 2 Queue Settings 168CLI This example assigns a default priority of 5 to port 16910 Egress Queue Priority Mapping 170Mapping CoS Values to Egress Queues 11 CoS Priority Levels171 73 Traffic ClassesSelecting the Queue Mode 172Setting the Service Weight for Traffic Classes 173Mapping Layer 3/4 Priorities to CoS Values Layer 3/4 Priority Settings174 Mapping IP Precedence 175Selecting IP Precedence/DSCP Priority 176 12 Mapping IP Precedence13 Mapping Dscp Priority Values 177Mapping Dscp Priority 178 78 Mapping IP Dscp Priority Values179 Mapping IP Port Priority180 79 IP Port Priority Status14 Egress Queue Priority Mapping 181Mapping CoS Values to ACLs 182 81 ACL CoS PriorityMulticast Filtering 183184 Configuring Igmp Snooping and Query ParametersLayer 2 Igmp Snooping and Query 185 82 Igmp Configuration 186187 Displaying Interfaces Attached to a Multicast Router188 Specifying Static Interfaces for a Multicast RouterDisplaying Port Members of Multicast Services 189190 85 IP Multicast Registration TableAssigning Ports to Multicast Services 191192 86 Igmp Member Port TableUsing the Command Line Interface Accessing the CLITelnet Connection Using the Command Line Interface Keywords and Arguments Entering CommandsThis section describes how to enter CLI commands Minimum AbbreviationCommand Completion Getting Help on CommandsShowing Commands Partial Keyword Lookup Negating the Effect of CommandsUsing Command History Command Modes Understanding Command ModesExec Commands Configuration Commands Configuration Modes Mode Command PromptCommand Line Processing Command Line ProcessingCommand Groups Command GroupsACL Access Control List Configuration Line Commands Line CommandsLine Login local LoginSyntax Login local no login Line ConfigurationSyntax Password 0 7 password no password PasswordUsername 4-36 password No password is specifiedSyntax Timeout login response seconds no silent-time Timeout login responseLogin 4-16password-thresh4-20 CLI Disabled 0 seconds Telnet 600 secondsSilent-time4-21exec-timeout Exec-timeoutTo set the timeout to two minutes, enter this command Syntax Exec-timeout seconds no exec-timeoutSyntax Password-thresh threshold no password-thresh Password-threshSilent-time4-21 Timeout login response Default value is three attemptsPassword-thresh4-20 Default value is no silent-timeTo set the silent time to 60 seconds, enter this command Silent-timeSyntax Databits 7 8 no databits To specify 7 data bits, enter this commandDatabits Seven data bits per character Eight data bits per characterSyntax Parity none even odd no parity ParitySpeed Syntax Speed bps no speedStopbits Syntax stopbits 1Syntax disconnect session-id DisconnectShow line Syntax Show line console vtyTo show all lines, enter this command General Commands General CommandsEnable Syntax enable levelNormal Exec DisableDisable Enable password NoneConfigure Show historyThis command restarts the system ReloadEnd ExitQuit This command exits the configuration programThis example shows how to quit a CLI session System Management Commands System Management CommandsDevice Designation Commands Device Designation CommandsSyntax Prompt string no prompt PromptHostname Syntax Hostname name no hostnameUser Access Commands User Access Commands10 Default Login Settings UsernameEnable password Default is level Default password is super11 IP Filter Commands IP Filter CommandsEnable 4-27 authentication enable Management All addressesShow management Web Server Commands 12 Web Server CommandsIp http port Default Setting Command ModeSyntax No ip http server Default Setting Ip http serverIp http port Syntax No ip http secure-server Default SettingIp http secure-server Ip http secure-port4-44 Copy tftp https-certificate Ip http secure-port13 Https System Support Portnumber The UDP port used for HTTPS/SSL. RangeIp telnet port Telnet Server Commands14 Telnet Server Commands Ip http secure-server4-43Ip telnet server Syntax No ip telnet server Default SettingIp telnet server Ip telnet portSecure Shell Commands 15 SSH CommandsPublic key type System Management Commands Ip ssh server Syntax No ip ssh server Default SettingDisabled Exec-timeout4-19 show ip ssh Ip ssh timeoutSyntax Ip ssh timeout seconds no ip ssh timeout Ip ssh crypto host-key generate 4-53 show sshShow ip ssh Ip ssh authentication-retriesIp ssh server-key size Key-size- The size of server key. Range 512-896 bitsSyntax Delete public-key username dsa rsa Delete public-keyIp ssh crypto host-key generate Syntax Ip ssh crypto host-key generate dsa rsaIp ssh crypto zeroize Syntax Ip ssh crypto zeroize dsa rsaSyntax Ip ssh save host-key dsa rsa This command saves host key from RAM to flash memoryIp ssh save host-key Saves both the DSA and RSA keyShow ssh This command displays the current SSH server connectionsShow ip ssh 16 show ssh display descriptionUsername Name of an SSH user. Range 1-8 characters Show public-keySyntax Show public-key user username host Shows all public keysConsole#show public-key host Host Syntax No logging on Default Setting Event Logging Commands17 Event Logging Commands Logging on18 Logging Levels Logging historyLogging history 4-60 clear logging Syntax No logging host hostipaddress Flash errors level 3 RAM warnings level 7Logging host Hostipaddress The IP address of a syslog serverLogging facility Syntax No logging facility typeSyntax Logging trap level no logging trap Enabled Level 7Logging trap Syntax Clear logging flash ram Clear loggingShow logging Syntax Show logging flash ram sendmail trap19 show logging flash/ram display description Show log Following example displays settings for the trap functionSyntax Show log flash ram login tail 20 show logging trap display descriptionFollowing example shows sample messages stored in RAM Logging sendmail host Smtp Alert Commands21 Smtp Alert Commands Syntax No logging sendmail host ipaddressLogging sendmail level Syntax Logging sendmail level levelSyntax No logging sendmail source-email email-address Logging sendmail source-emailLogging sendmail destination-email This example will set the source email john@acme.comShow logging sendmail Syntax No logging sendmail Default SettingLogging sendmail Time Commands 22 Time CommandsSntp server 4-74 sntp poll 4-75 show sntp Syntax No sntp client Default SettingSntp client Sntp client 4-73 sntp poll 4-75 show sntp Sntp serverSyntax Sntp server ip1 ip2 ip3 Syntax Sntp poll seconds no sntp poll Sntp pollShow sntp Sntp clientClock timezone Syntax Calendar setShow sntp Year Year 4-digit. Range23 System Status Commands System Status CommandsThis command displays the system clock Show calendarSyntax Light unit unit Show startup-configLight unit Command Line Interface Show running-config4-82 Show running-config Example Show system Show startup-config4-79This command displays system information Show users DramShow version Syntax No jumbo frame Default Setting Frame Size Commands24 Frame Size Commands Jumbo frameFlash/File Commands 25 Flash/File CommandsCopy Example Following example shows how to download a configuration file Dir Syntax Dir unit boot-rom config opcode filenameDelete Following example shows how to display all file information 26 File Directory InformationSyntax whichboot unit WhichbootBoot system Syntax Boot system unit boot-romconfig opcode filename27 Authentication Commands Authentication CommandsDir 4-92 whichboot Unit* Specifies the unit number Colon is required28 Authentication Sequence Authentication SequenceAuthentication login LocalAuthentication enable Username for setting the local user names and passwordsEnable password sets the password for changing command modes Radius-server host 29 Radius Client CommandsRadius Client Radius-server port Default Setting Auth-portRetransmit Command Mode Syntax Radius-server port portnumber no radius-server portSyntax Radius-server key keystring no radius-server key Radius-server keyRadius-server retransmit Radius-server timeout Show radius-server30 Tacacs Commands TACACS+ ClientHostipaddress IP address of a TACACS+ server Tacacs-server hostTacacs-server port 10.11.12.13Syntax Tacacs-server key keystring no tacacs-server key Tacacs-server keyShow tacacs-server Port Security Commands 31 Port Security CommandsPort security Status Disabled Action None Maximum AddressesInterface Configuration Ethernet Max-mac-count802.1X Port Authentication 32 802.1X Port AuthenticationSyntax No system-auth-control Default Setting Dot1x system-auth-controlDefault Command Mode Dot1x defaultSyntax Dot1x default Command Mode Dot1x max-reqForce-authorized DefaultDot1x port-control Dot1x operation-mode Single-hostSyntax Dot1x re-authenticate interface Dot1x re-authenticateDot1x re-authentication Syntax No dot1x re-authentication Command ModeSeconds The number of seconds. Range Dot1x timeout quiet-periodDot1x timeout re-authperiod Syntax Show dot1x statistics interface interface Dot1x timeout tx-periodShow dot1x Statistics Displays dot1x status for each portSupplicant-timeout- Supplicant timeout Before re-transmitting EAP packetAuthenticator State Machine State Current state including initialize, reauthenticate118 Access Control List Commands Access Control Lists34 IP ACLs 33 Access Control ListsIP ACLs Access-list ip Syntax No access-list ip standard extended aclnameStandard ACL Permit, deny Ip access-group4-126 show ip access-list4-126Syntax No permit deny any source bitmask host source Access-list ip No permit deny tcpPrecedence source-port control-flag Extended ACL125 Syntax Show ip access-list standard extended aclname Show ip access-listIp access-group Syntax No ip access-group aclnameThis command shows the ports assigned to IP ACLs Show ip access-groupShow ip access-list4-126 Queue cos-map4-226 Show map access-list ip Map access-list ipSyntax No map access-list ip aclname cos cos-value 35 Egress Queue Priority MappingMap access-list ip Show map access-list ipSyntax Show map access-list ip interface Unit This is device Port Port numberMAC ACLs Access-list macSyntax No access-list mac aclname 36 MAC ACLsPermit, deny MAC ACL Syntax No permit denyMAC ACL Syntax Show mac access-list aclname Show mac access-listMac access-group Syntax Mac access-group aclnameThis command shows the ports assigned to MAC ACLs Show mac access-groupMap access-list mac Syntax No map access-list mac aclname cos cos-valueSyntax Show map access-list mac interface Show map access-list macQueue cos-map4-226 Show map access-list mac 37 Egress Queue Priority Mapping38 ACL Information Show access-listACL Information Privileged Executive Show access-groupThis command shows the port assignments of ACLs Snmp-server community Snmp Commands39 Snmp Commands Snmp-server contact Syntax Snmp-server contact string no snmp-server contactSnmp-server location Syntax Snmp-server location text no snmp-server locationSnmp-server host Host Address None Snmp VersionSnmp-server enable traps Issue authentication and link-up-down trapsThis command checks the status of Snmp communications Show snmp144 Interface Commands 40 Interface CommandsPort-channel channel-idRange InterfaceDescription Syntax Description string no descriptionFollowing example adds a description to port Interface Configuration Ethernet, Port ChannelSpeed-duplex Negotiation 4 -148 capabilities 4 Syntax No negotiation Default SettingNegotiation Capabilities 4 -149speed-duplex 4 Following example configures port 11 to use autonegotiationCapabilities Flowcontrol Syntax No flowcontrol Default SettingFlow control enabled Negotiation 4 -148speed-duplex 4 -147 flowcontrol 4All interfaces are enabled Following example enables flow control on portSyntax No shutdown Default Setting ShutdownSwitchport broadcast packet-rate Following example disables portClear counters This command clears statistics on an interfacePort-channel channel-idRange Default Setting Syntax Clear counters interfaceShows the status for all interfaces This command displays the status for an interfaceShow interfaces status Syntax Show interfaces counters interface This command displays interface statisticsShow interfaces counters Shows the counters for all interfaces156 This example shows the configuration setting for port Show interfaces switchportSyntax Show interfaces switchport interface Shows all interfaces41 Interfaces Switchport Statistics Interface Configuration Ethernet, destination port Mirror Port Commands42 Mirror Port Commands Port monitorSyntax Show port monitor interface This command displays mirror informationShow port monitor Shows all sessions43 Rate Limit Commands Rate Limit CommandsFollowing shows mirroring configured from port 6 to port Actual rate limit = Rate limit level * Granularity Rate-limitRate-limit granularity Show rate-limit Global Configuration Ethernet, Port ChannelUse this command to display the rate limit granularity Link Aggregation Commands 44 Link Aggregation CommandsTrunk Status Display Command Guidelines for Creating TrunksChannel-id- Trunk index Range Channel-groupSyntax Channel-group channel-idno channel-group Current port will be added to this trunkSyntax no lacp Default Setting LacpLacp system-priority 32768 Lacp admin-keyEthernet Interface Lacp admin-key Port Channel Interface Configuration Port ChannelLacp port-priority Port Channel all This command displays Lacp informationShow lacp 45 show lacp counters display description 46 show lacp internal display description Expected to be enabled in the absence of administrative 47 show lacp neighbors display description 48 show lacp sysid display description Address Table Commands49 Address Table Commands Vlan-id- Vlan ID Range Mac-address-table staticMac-address- MAC address Clear mac-address-table dynamic Show mac-address-table Mac-address- MAC address Mask Bits to match in the addressMac-address-table aging-time Show mac-address-table aging-timeSpanning Tree Commands 50 Spanning Tree CommandsSpanning-tree Syntax No spanning-tree Default SettingSpanning tree is enabled Rstp Spanning-tree modeSyntax Spanning-tree mode stp rstp no spanning-tree mode Spanning-tree forward-time Spanning-tree hello-time Spanning-tree max-ageSpanning-tree priority Spanning-tree pathcost method Long methodSpanning-tree cost This command limits the maximum transmission rate for BPDUsSpanning-tree transmission-limit Count The transmission limit in seconds. RangeSpanning-tree port-priority Priority The priority for a port. Range 0-240, in stepsSpanning-tree cost 4 Syntax No spanning-tree edge-port Default SettingSpanning-tree edge-port 193 Syntax No spanning-tree portfast Default SettingSpanning-tree portfast Spanning-tree portfast 4Spanning-treeedge-port 4 Spanning-tree link-type194 Auto195 Port-channel channel-idRange Command ModeSpanning-tree protocol-migration Syntax Spanning-tree protocol-migration interface196 This command shows the configuration for the spanning treeShow spanning-tree Syntax Show spanning-tree interface197 198 Vlan CommandsEditing Vlan Groups Vlan databaseShow vlan 4 199Vlan 200 By default only Vlan 1 exists and is activeVlan Database Configuration 201 Configuring Vlan Interfaces53 Configuring Vlan Interfaces Interface vlan202 Switchport modeAll ports are in hybrid mode with the Pvid set to Vlan Shutdown 4203 Switchport acceptable-frame-typesSwitchport acceptable-frame-types 4 All frame typesSyntax No switchport ingress-filtering Default Setting Switchport ingress-filteringSwitchport mode 4 204Switchport native vlan 205Switchport allowed vlan 206No VLANs are included in the forbidden list Switchport forbidden vlan207 208 54 Show Vlan CommandsDisplaying Vlan Information Show vlan55 Private Vlan Commands Configuring Private VLANsFollowing example shows how to display information for Vlan 209210 Private-vlanNo private-vlan primary-vlan-idassociation 211Private vlan association 212 Normal Vlan Switchport mode private-vlan213 214 Switchport private-vlan host-associationSwitchport private-vlan mapping Syntax Show vlan private-vlan community isolated primary 215Show vlan private-vlan 216 Gvrp and Bridge Extension Commands56 Gvrp and Bridge Extension Commands Bridge-ext gvrp Syntax No bridge-ext gvrp Default Setting217 Show bridge-ext218 Switchport gvrpSyntax No switchport gvrp Default Setting Syntax Show gvrp configuration interface Show gvrp configurationGarp timer 219Show garp timer 4 220Shows all Garp timers Show garp timerSyntax Show garp timer interface Garp timer 457 Priority Commands Priority CommandsPriority Commands Layer 58 Priority Commands LayerWeighted Round Robin Queue modeSyntax Queue mode strict wrr no queue mode 223Switchport priority default 224225 Queue bandwidthQueue cos-map 59 Default CoS Priority Levels226 Show queue bandwidth 4227 Show queue modeThis command shows the current queue mode Show queue bandwidthShow queue cos-map This command shows the class of service priority map228 Syntax Show queue cos-map interface229 Priority Commands Layer 360 Priority Commands Layer 3 Syntax No map ip portMap ip port Interface Configuration 230Syntax No map ip precedence Default Setting 23161 Mapping IP Precedence Values List below shows the default priority mapping232 Syntax No map ip dscp Default Setting 233234 62 IP Dscp to CoS ValuesShow map ip port Use this command to show the IP port priority map235 Syntax Show map ip port interfaceShow map ip precedence This command shows the IP precedence priority map236 Syntax Show map ip precedence interfaceShow map ip dscp This command shows the IP Dscp priority map237 Syntax Show map ip dscp interface63 Multicast Filtering Commands Multicast Filtering CommandsIgmp Snooping Commands 64 Igmp Snooping Commands239 Syntax No ip igmp snooping Default SettingFollowing example enables Igmp snooping Ip igmp snoopingIp igmp snooping version Following configures the switch to use Igmp Version240 Igmp VersionShow mac-address-table multicast 241Show ip igmp snooping 242 Igmp Query Commands Layer65 Igmp Query Commands Layer Ip igmp snooping querier Syntax No ip igmp snooping querier Default Setting243 Ip igmp snooping query-countIp igmp snooping query-interval Following shows how to configure the query count to244 Ip igmp snooping query-max-response-time 4Ip igmp snooping query-max-response-time Seconds The report delay advertised in Igmp queries. Range245 Ip igmp snooping router-port-expire-time Switch must use IGMPv2 for this command to take effect246 Ip igmp snooping version 4247 Static Multicast Routing Commands66 Static Multicast Routing Commands Ip igmp snooping vlan mrouterShow ip igmp snooping mrouter Displays multicast router ports for all configured VLANs248 Syntax Show ip igmp snooping mrouter vlan vlan-idIp address IP Interface Commands67 IP Interface Commands 249Ip dhcp restart 4 Interface Configuration Vlan250 251 This command submits a Bootp or Dhcp client requestIp dhcp restart Ip address 4Show ip interface Ip default-gatewaySyntax Ip default-gateway gateway no ip default-gateway 252Ping Ip default-gateway 4Show ip redirects 253Interface 4 This command has no default for the host254 Software Features Management Features Groups 1, 2, 3, 9 Statistics, History, Alarm, Event StandardsManagement Information Bases Appendix B Troubleshooting Problems Accessing the Management InterfaceTable B-1 Troubleshooting Chart Symptom Action Using System Logs Troubleshooting Glossary-1 Glossary-2 Glossary-3 Glossary-4 Glossary-5 Glossary-6 Glossary-7 Virtual LAN Vlan Glossary-8User Datagram Protocol UDP XModemNumerics Index-1Index-2 IgmpIndex-3 Snmp SnmpIndex-4 Page For Technical SUPPORT, Call