ZyXEL Communications ES-2108, ES-2108-G 158

		ES-2108/ES-2108-G User’s Guide
Table 58 Command Summary: Configuration Mode (continued)

COMMAND			DESCRIPTION

		https	Disables secure web browser
			access to the switch.
		icmp	Disables ICMP access to the
			switch such as pinging and
			tracerouting.
		snmp	Disables SNMP management.
		ssh	Disables SSH (Secure Shell)
			server access to the switch.
		telnet	Disables telnet access to the
			switch.
	snmp-server	trap-destination	Disables sending of SNMP
		<ip>	traps to a station.
	spanning-tree		Disables STP.
		<port-list>	Disables STP on listed ports.
	ssh	key <rsa1rsadsa>	Disables the secure shell server
			encryption key. Your switch
			supports SSH versions 1 and 2
			using RSA and DSA
			authentication.
		known-hosts	Removes all remote hosts.
		known-hosts <host-	Removes the specified remote
		ip>	hosts from the list of all known
			hosts.
		known-hosts <host-	Removes remote known hosts
		ip> [1024ssh-	with the specified public key
		rsassh-dsa]	(1024-bit RSA1, RSA or DSA).
		rsassh-dsa]
	storm-control		Disables broadcast storm
			control.
	timesync		Disables timeserver settings.
	trunk	<T1T2>	Disables the specified trunk
			group.
		<T1T2> interface	Removes ports from the
		<port-list>	specified trunk group.
		<T1T2> lacp	Disables LACP in the specified
			trunk group.
	vlan	<vlan-id>	Deletes the static VLAN entry.
	vlan1q	gvrp	Disables GVRP on the switch.
		ingress-check	Disables VLAN tag checking on
			incoming traffic.
		port-isolation	Disables port isolation.
password			Change the password for
			Enable mode.
port-access-			Enables 802.1x authentication
authenticator			on the switch.

Chapter 27 Introducing the Commands

157

Contents

User’s Guide Copyright Disclaimer Interference Statements and Warnings FCC Statement FCC Warning CE Mark Warning: Taiwanese BSMI (Bureau of Standards, Metrology and Inspection) A Warning: Certifications Registration Safety Warnings ZyXEL Limited Warranty Note Customer Support Page Table of Contents The Web Configurator Basic Setting Page Broadcast Storm Control Mirroring Link Aggregation Static Route Page ARP Table Introducing the Commands Page IEEE 802.1Q Tagged VLAN Commands Appendix A Product Specifications Appendix B List of Figures Page Page Page List of Tables Page Preface About This User's Guide Related Documentation Syntax Conventions Graphics Icons Key User Guide Feedback Getting to Know Your Switch 1.1 Introduction 1.2 Software Features DHCP Client VLAN Queuing Port Mirroring Static Route IGMP Snooping STP (Spanning Tree Protocol) / RSTP (Rapid STP) 1.3Hardware Features Ethernet Ports Gigabit Ethernet Port Mini-GBICSlot Console Port 1.4.2 Bridging Example 1.4.3 High Performance Switched Example 1.4.4 IEEE 802.1Q VLAN Application Examples 1.4.4.1 Tag-basedVLAN Example 1.4.4.2 VLAN Shared Server Example Hardware Installation and Connection 2.1 Freestanding Installation 2.2 Mounting the Switch on a Rack 2.2.1Rack-mountedInstallation Requirements 2.2.1.1Precautions 2.2.2Attaching the Mounting Brackets to the Switch 2.2.3Mounting the Switch on a Rack Page Page Hardware Overview 3.1 Front Panel Connection 3.1.1 Console Port 3.1.2 Ethernet Ports 3.1.2.1 Default Ethernet Settings 3.1.3Mini-GBICSlot 3.1.3.1 Transceiver Installation 3.1.3.2 Transceiver Removal 3.2 Rear Panel 3.2.1 Power Connector 3.3 Front Panel LEDs Page The Web Configurator 4.1 Introduction 4.2System Login 4.3The Status Screen Page Page 4.3.1 Change Your Password 4.4 Switch Lockout 4.5 Resetting the Switch 4.5.1 Reload the Factory-defaultConfiguration File 4.6 Logging Out of the Web Configurator 4.7 Help Page Initial Setup Example 5.1 Overview 5.1.1Creating a VLAN 5.1.2Setting Port VID 5.1.3Configuring Switch Management IP Address 3Click Basic Setting and IP Setup in the navigation panel VID Static VLAN System Status and Port Statistics 6.1 Overview 6.2 Port Status Summary 6.2.1 Status: Port Details Page Page Page Page Basic Setting 7.1 Overview 7.2 System Information 7.3 General Setup 7.4 Introduction to VLANs 7.5 IGMP Snooping 7.6 Switch Setup Screen Page 7.7 IP Setup 7.7.1 Management IP Addresses Figure 29 IP Setup Table 11 IP Setup 7.8 Port Setup Figure 30 Port Setup Page VLAN 8.1 Introduction to IEEE 802.1Q Tagged VLAN 8.1.1 Forwarding Tagged and Untagged Frames 8.2 Automatic VLAN Registration 8.2.1 GARP 8.2.1.1 GARP Timers 8.2.2 GVRP 8.3 Port VLAN Trunking 8.4 Select the VLAN Type 8.5 Static VLAN 8.5.1 Static VLAN Status 8.5.2 Configure a Static VLAN Page 8.5.3 Configure VLAN Port Settings 8.6 Port-basedVLAN Setup 8.6.1 Configure a Port-basedVLAN Page Page Static MAC Forwarding 9.1 Overview 9.2 Configuring Static MAC Forwarding Page Filtering 10.1 Overview 10.2 Configure a Filtering Rule Page Spanning Tree Protocol 11.1 Overview 11.1.1 STP Terminology 11.1.2 How STP Works 11.1.3 STP Port States 11.2 STP Status Page 11.3 Configure STP Page Page Bandwidth Control 12.1 Bandwidth Control Setup Page Broadcast Storm Control 13.1 Overview 13.2 Broadcast Storm Control Setup Page Mirroring 14.1 Overview 14.2 Port Mirroring Setup Page Link Aggregation 15.1 Overview 15.2 Dynamic Link Aggregation 15.2.1 Link Aggregation ID 15.3 Link Aggregation Status 15.4 Link Aggregation Setup Page Port Authentication 16.1 Overview 16.1.1 RADIUS 16.2 Port Authentication Configuration 16.2.1 Activate IEEE 802.1x Security 16.2.2 Configuring RADIUS Server Settings Page Port Security 17.1 Overview 17.2 Port Security Setup Page Queuing Method 18.1 Overview 18.1.1 Strict Priority Queuing (SPQ) 18.1.2 Weighted Round Robin Scheduling (WRR) 18.2 Configuring Queuing Method Static Route 19.1 Configuring Static Route Page Differentiated Services 20.1 Overview 20.1.1 DSCP and Per-HopBehavior 20.1.2 DiffServ Network Example 20.2 Activating DiffServ 20.3 DSCP-to-IEEE802.1pPriority Mapping 20.3.1 Configuring DSCP Settings Page Maintenance 21.1 The Maintenance Screen 21.2 Firmware Upgrade 21.3 Restore a Configuration File 21.4 Backing Up a Configuration File 21.5Load Factory Defaults 21.6Reboot System 21.7FTP Command Line 21.7.1 Filename Conventions 21.7.1.1 Example FTP Commands 21.7.2 FTP Command Line Procedure 21.7.3GUI-basedFTP Clients 21.7.4 FTP Restrictions Access Control 22.1Overview 22.2 The Access Control Main Screen 22.3 About SNMP 22.3.1 Supported MIBs 22.3.2SNMP Traps 22.3.3 Configuring SNMP 22.4 Setting Up Login Accounts 22.5 SSH Overview 22.6 How SSH works 22.7SSH Implementation on the Switch 22.7.1 Requirements for Using SSH 22.7.2 SSH Login Example 22.8 Introduction to HTTPS 22.9 HTTPS Example 22.9.1 Internet Explorer Warning Messages 22.9.2 Netscape Navigator Warning Messages 22.9.3 The Main Screen 22.10 Service Port Access Control 22.11 Remote Management Page Diagnostic 23.1 Diagnostic Page Cluster Management 24.1 Overview 24.2 Cluster Management Status 24.2.1 Cluster Member Switch Management 24.2.1.1 Uploading Firmware to a Cluster Member Switch 24.3 Configuring Cluster Management Page Page MAC Table 25.1 Overview 25.2 Viewing the MAC Table ARP Table 26.1 Overview 26.1.1 How ARP Works 26.2 Viewing the ARP Table Figure 90 ARP Table Table 55 ARP Table Introducing the Commands 27.1 Overview 27.1.1 Switch Configuration File 27.2 Accessing the CLI 27.2.1Access Priority 27.2.2The Console Port 27.2.2.1Initial Screen 27.2.3 Telnet 27.2.4 SSH 27.3 The Login Screen 27.4 Command Syntax Conventions 27.5Getting Help 27.5.1List of Available Commands 27.5.2 Detailed Command Information 27.6 Command Modes 27.7 Using Command History 27.8 Saving Your Configuration 27.8.1 Logging Out 27.9 Command Summary 27.9.1 User Mode 27.9.2 Enable Mode Page Page 27.9.3 General Configuration Mode Page Page Page Page Page Page 27.9.4 interface port-channelCommands Page 27.9.5 config-vlanCommands Page Page Command Examples 28.1 Overview 28.2 show Commands 28.2.1 show system-information 28.2.2 show ip 28.2.3 show logging 28.2.4 show interface 28.2.5 show mac address-table 28.3 ping 28.4 traceroute 28.5 Enabling RSTP 28.6 Configuration File Maintenance 28.6.1 Restarting the Switch 28.6.2 Resetting to the Factory Default 28.7 no Command Examples 28.7.1 no mirror-port 28.7.2 no https timeout 28.7.3 no trunk 28.7.4 no port-access-authenticator 28.7.5 no ssh 28.8 spq 28.9 wrr 28.10 interface Commands 28.10.1 interface port-channel 28.10.2 bmstorm-limit 28.10.3 bandwidth-limit 28.10.4 mirror 28.10.5 gvrp 28.10.6 frame-type 28.10.7 egress set 28.10.8 qos priority 28.10.9 name 28.10.10 speed-duplex IEEE 802.1Q Tagged VLAN Commands 29.1 IEEE 802.1Q Tagged VLAN Overview 29.2 VLAN Databases 29.2.1 Static Entries (SVLAN Table) 29.3 Configuring Tagged VLAN 29.4 Global VLAN1Q Tagged VLAN Configuration Commands 29.4.1 GARP Status 29.4.2 GARP Timer 29.4.3 GVRP Timer 29.4.4 Enable GVRP 29.4.5 Disable GVRP 29.4.6 Enable Ingress Checking 29.5 Port VLAN Commands 29.5.1 Set Port VID 29.5.2 Set Acceptable Frame Type 29.5.3 Enable or Disable Port GVRP 29.5.4 Modify Static VLAN 29.5.4.1Modify a Static VLAN Table Example 29.5.4.2 Forwarding Process Example Tagged Frames Untagged Frames 29.5.5Delete VLAN ID 29.6 Enable VLAN 29.7 Disable VLAN 29.8 Show VLAN Setting Page Troubleshooting 30.1 Problems Starting Up the Switch 30.2 Problems Accessing the Switch 30.2.1 Pop-upWindows, JavaScripts and Java Permissions 30.2.1.1 Internet Explorer Pop-upBlockers 2Select Settings…to open the Pop-upBlocker Settings screen Allowed sites 30.2.1.2JavaScripts Custom Level Scripting Active scripting Enable Scripting of Java applets 30.2.1.3 Java Permissions Advanced 2make sure that Use Java 2 for <applet> under Java (Sun) is selected 30.3 Problems with the Password Page Product Specifications Page Page Page IP Subnetting IP Addressing IP Classes Subnet Masks Subnetting Example: Two Subnets Page Example: Four Subnets Example Eight Subnets Subnetting With Class A and Class B Networks Page Symbols Numerics Index