Manuals / SMC Networks / Computer Equipment / Switch

SMC Networks TigerSwitch 100 manual Clear counters

Models: TigerSwitch 100

1 334

Download 334 pages 51.76 Kb

Page 238

COMMAND LINE INTERFACE

Command Usage

•If you enable port security, the switch will stop dynamically learning new addresses on the specified port. Only incoming traffic with source addresses already stored in the dynamic or static address table will be accepted.

•To use port security, first allow the switch to dynamically learn the <source MAC address, VLAN> pair for frames received on a port for an initial training period, and then enable port security to stop address learning. Be sure you enable the learning function long enough to ensure that all valid VLAN members have been registered on the selected port.

•To add new VLAN members at a later time, you can manually add secure addresses with the mac-address-table static command, or turn off port security to reenable the learning function long enough for new VLAN members to be registered. Learning may then be disabled again, if desired, for security.

•A secure port has the following restrictions:

-Cannot be connected to a network interconnection device.

-Cannot be a member of a static trunk.

•If a port is disabled due to a security violation, it must be manually re-enabled by using the no shutdown command.

•Although the port security action command is an Interface Configuration command, it applies globally to all switch ports.

Example

This example sets the port security action for the switch and enables port security for port 5.

Console(config)#interface ethernet 1/5 Console(config-if)#port security action trap-and-shutdown Console(config-if)#port security

Console(config-if)#

clear counters

Use this command to clear statistics on an interface.

3-94

Image 238

SMC Networks TigerSwitch 100 manual Clear counters

Contents

TigerSwitch 10/100/1000 Page TigerSwitch 10/100/1000 Management Guide Trademarks Limited Warranty Limited Warranty Contents Viii Command Line Interface Contents Contents Xii Xiii Glossary Index XivConnecting to the Switch Configuration OptionsSwitch Management Required Connections Remote Connections Setting Passwords Basic ConfigurationConsole Connection Setting an IP Address Manual Configuration Dynamic Configuration Enabling Snmp Management Access Community Strings Saving Configuration Settings Trap ReceiversManaging System Files System Defaults Function Parameter DefaultFunction Parameter Default Pvid Switch Management Configuring the Switch Using the Web InterfaceNavigating the Web Browser Interface HomeButton Action Panel Display Main Menu Menu DescriptionMenu Description Snmp Command Attributes Displaying System InformationCLI Only Setting the IP Address CLI Specify the hostname, location and contact informationBasic Configuration Manual Configuration Configuring the Logon Password SecurityCommand Attributes Configuring RADIUS/TACACS Logon Authentication Command UsageCommand Attributes Radius Settings Configuring the Switch Https Https SSH Managing Firmware Downloading System Software from a Server Saving or Restoring Configuration Settings Managing Firmware Copying the Running Configuration to a File Displaying Bridge Extension Capabilities Configuring the Switch 137 Main Board Displaying Switch Hardware/Software VersionsManagement Software Displaying Switch HARDWARE/SOFTWARE Versions Port Configuration Displaying Connection StatusPort Configuration Configuring Interface Connections Port Configuration Setting Broadcast Storm Thresholds Command AttributesPort Configuration Configuring Port Mirroring Configuring Port Security Port ConfigurationPort Security Action Address Table Settings Setting Static AddressesDisplaying the Address Table 102 Spanning Tree Protocol Configuration Changing the Aging TimeSpanning Tree Protocol Configuration STP Information Spanning Tree Protocol Configuration CLI only CLI This example shows the current Spanning Tree settings STP Configuration Command UsageSpanning Tree Protocol Configuration Configuring the Switch 107 STP Port and Trunk Information Spanning Tree Protocol Configuration Configuring the Switch Spanning Tree Protocol Configuration STP Port and Trunk Configuration Spanning Tree Protocol Configuration Configuring the Switch Vlan Configuration Assigning Ports to VLANs Vlan Configuration Forwarding Tagged/Untagged Frames Displaying Basic Vlan Information Command Attributes for Web Interface Displaying Current VLANsCommand Attributes for CLI Interface Creating VLANs 131122 Adding Interfaces Based on Membership Type Vlan Configuration Adding Interfaces Based on Static Membership 129Configuring Vlan Behavior for Interfaces Command Usage Vlan Configuration Configuring the Switch Class of Service Configuration Setting the Default Priority for InterfacesMapping CoS Values to Egress Queues Queue 155 Setting the Service Weight for Traffic Classes Mapping Layer 3/4 Priorities to CoS Values Selecting IP Precedence/DSCP PriorityMapping IP Precedence Flash Override Class of Service Configuration Mapping Dscp Priority 38, 40 Port Trunk Configuration Port Trunk Configuration Dynamically Configuring a Trunk with Lacp Port Trunk Configuration Statically Configuring a Trunk 168Port Trunk Configuration Configuring Snmp 167Setting Community Access Strings Access ModeSpecifying Trap Managers Snmp IP Filtering Command Attributes Multicast Configuration Configuring Igmp Parameters 100101 102 Interfaces Attached to a Multicast Router 103104 Specifying Interfaces Attached to a Multicast RouterDisplaying Port Members of Multicast Services 105106 Adding Multicast Addresses to VLANs 107Showing Device Statistics 108109 Statistical Values110 Parameter Description111 Rmon Statistics112 113 114 CLI This example shows statistics for portUsing the Command Line Interface Accessing the CLITelnet Connection Entering Commands Keywords and ArgumentsGetting Help on Commands Command CompletionMinimum Abbreviation Showing Commands Understanding Command Modes Negating the Effect of CommandsUsing Command History Partial Keyword LookupExec Commands Configuration Commands Command Line Processing Keystroke FunctionCommand Groups Command Description Group150 Syntax Enable level General CommandsEnable Default SettingRelated Commands DisableExample Configure Show history Reload EndExit QuitFlash/File Commands CopyFLASH/FILE Commands Following example shows how to download a configuration file Delete SyntaxSyntax Dir boot-rom config opcode filename DirWhichboot Following example shows how to display all file informationBoot system Syntax Boot system boot-romconfig opcode filenameSystem Management Commands Command Function ModeEvent Logging Commands Username HostnameSyntax Hostname name no hostname Username Access-level Password Guest Admin Enable password Syntax Jumbo frame no jumbo frame Default Setting Jumbo frameIp http port Default Setting Command ModeSyntax Ip http server no ip http server Default Setting Ip http serverIp http secure-server Ip http secure-port Syntax Ip http secure-port portnumber no ip http secure-portIp ssh Syntax Ip ssh server no ip ssh server Default Setting Ip ssh serverDisconnect ssh Syntax Disconnect ssh connection-idShow ssh Show ip sshSyntax Logging on no logging on Default Setting Logging onLogging history Level Argument Description Syslog DefinitionLogging host Logging facility Syntax Logging facility type no logging facility typeLogging trap Syntax Logging trap level no logging trap levelSyntax Clear logging flash ram Clear loggingShow logging Syntax Show logging flash ram trapShow startup-config Command Mode Show running-config Show system Show users Show version Authentication Commands Authentication login TACACS+ ClientRadius-server host Syntax Radius-server port portnumber no radius-server port Radius-server portRadius-server key Syntax Radius-server key keystring no radius-server keyRadius-server retransmit Radius-server timeout Show radius-serverTacacs-server port Tacacs-server hostSyntax Tacacs-server port portnumber no tacacs-server port Show tacacs-server Tacacs-server keySyntax Tacacs-server key keystring no tacacs-server key Snmp Commands Snmp-server communitySnmp Commands Syntax Snmp-server contact string no snmp-server contact Snmp-server contactSnmp-server location Syntax Snmp-server location text no snmp-server locationSnmp-server host Host Address None Snmp Version Snmp-server enable traps Snmp ip filter Show snmp Example IP Commands Ip addressDhcp Obtains IP address from Dhcp Ip dhcp restart Syntax Ip default-gateway gateway no ip default-gateway Ip default-gatewayShow ip interface Show ip redirects Ping Syntax Ping host count countsize sizeLine Commands Line Syntax Line console vtyLogin Syntax Login local no loginPassword Syntax Password 0 7 password no passwordExec-timeout Syntax Exec-timeout seconds no exec-timeoutPassword-thresh Syntax Password-thresh threshold no password-threshSilent-time Syntax Silent-time seconds no silent-timeDatabits Syntax Databits 7 8 no databitsParity Syntax Parity none even odd no paritySpeed Syntax Speed bps no speedSyntax Stopbits 1 StopbitsShow line Syntax Show line console vtyInterface Commands To show all lines, enter this commandEthernet unit/port InterfacePort-channel channel-idRange Speed-duplex DescriptionSyntax Description string no description Negotiation Capabilities Syntax Negotiation no negotiation Default Setting NegotiationDefault Setting CapabilitiesSyntax Flowcontrol no flowcontrol Default Setting FlowcontrolShutdown Syntax Shutdown no shutdownSwitchport broadcast Port security Clear counters Syntax Clear counters interface Port-channel channel-idRange Default SettingShow interfaces status Syntax Show interfaces status interfacePort-channel channel-idRange Show interfaces counters Syntax Show interfaces counters interfaceShow interfaces switchport Syntax Show interfaces switchport interfaceShows all interfaces Address Table Commands Mac-address-table staticAction Show mac-address-table Clear mac-address-table dynamic Mac-address-table aging-timeShow mac-address-table aging-time Spanning Tree Commands Command FunctionSyntax Spanning-tree no spanning-tree Default Setting Spanning-treeSpanning-tree mode Syntax Spanning-tree mode stp rstp no spanning-tree modeSpanning-tree forward-time Spanning-tree hello-time Spanning-tree max-ageSpanning-tree priority Spanning-tree pathcost method Spanning-tree transmission-limit Spanning-tree cost Syntax Spanning-tree cost cost no spanning-tree costSpanning-tree port-priority Spanning-tree portfast 115Spanning-tree edge-port 116117 Port-channel channel-idRange Command ModeSpanning-tree protocol-migration Syntax Spanning-tree protocol-migration interfaceSpanning-tree link-type 118119 Show spanning-treeSyntax Show spanning-tree interface 120 Vlan Commands 121Vlan database 122Vlan 123124 Interface vlanSyntax Interface vlan vlan-id Syntax Switchport mode trunk hybrid no switchport mode Switchport mode125 Switchport acceptable-frame-types 126Switchport ingress-filtering 127Switchport native vlan 128Switchport allowed vlan 129Switchport forbidden vlan 130131 Show vlanSyntax Show vlan id vlan-idname vlan-name Syntax Switchport gvrp no switchport gvrp Gvrp and Bridge Extension CommandsSwitchport gvrp 132Syntax Show gvrp configuration interface Show gvrp configuration133 Garp timer 134Syntax Show garp timer interface Show garp timer135 Bridge-ext gvrp Syntax Bridge-ext gvrp no bridge-ext gvrp Default Setting136 Show bridge-ext 137Igmp Snooping Commands 138Ip igmp snooping Syntax Ip igmp snooping no ip igmp snooping Default Setting139 Ip igmp snooping vlan static 140Show ip igmp snooping Ip igmp snooping version141 Show mac-address-table multicast 142Ip igmp snooping querier 143Ip igmp snooping query-count 144Ip igmp snooping query-max-response-time Ip igmp snooping query-interval145 146 Ip igmp snooping router-port-expire-time 147Ip igmp snooping vlan mrouter 148149 Show ip igmp snooping mrouterSyntax Show ip igmp snooping mrouter vlan vlan-id Priority Commands 150Switchport priority default 151Queue bandwidth 152Queue cos-map 153154 155 Show queue bandwidthShow queue cos-map Syntax Show queue cos-map interfaceMap ip precedence Global Configuration 156Map ip precedence Interface Configuration 157Syntax Map ip dscp no map ip dscp Default Setting Map ip dscp Global Configuration158 Map ip dscp Interface Configuration 159160 Show map ip precedenceSyntax Show map ip precedence interface 161 Show map ip dscpSyntax Show map ip dscp interface 162 Port monitor Mirror Port Commands163 164 Show port monitorSyntax Show port monitor interface Following shows mirroring configured from port 6 to port 165166 Port Trunking CommandsGuidelines for Creating Trunks 167 Channel-groupSyntax Channel-group channel-idno channel-group Lacp Syntax Lacp no lacp Default Setting168 169 170 Appendix a Troubleshooting Troubleshooting ChartTroubleshooting Appendix B Upgrading Firmware VIA Serial Port Upgrading Firmware VIA the Serial Port Page Upgrading Firmware VIA the Serial Port Console Port Pin Assignments DB-9 Port Pin AssignmentsConsole Port to 9-Pin DTE Port on PC Console Port to 25-Pin DTE Port on PCGlossary-1 Glossary-2 Glossary-3 Glossary-4 Glossary-5 Glossary-6 Virtual LAN Vlan Glossary-7XModem Glossary-8 Index Index-1Index-2 Page For Technical SUPPORT, Call