D-Link DGS-3100 SERIES, Cli Manual

Page 1: ...D Link DGS 3100 Series Gigabit Stackable Managed Switch CLI Manual V1 00...

Page 2: ...cy energy and if not installed and used in accordance with this user s guide may cause harmful interference to radio communications Operation of this equipment in a residential area is likely to cause...

Page 3: ...web 17 save 18 reboot 18 reset 18 login 19 logout 19 ping 19 show cpu utilization 20 show configuration 21 enable jumbo_frame 21 disable jumbo_frame 22 show jumbo_frame 22 locate 22 SWITCH PORT COMMA...

Page 4: ...act 44 config snmp system_location 45 config snmp system_name 45 DOWNLOAD UPLOAD COMMANDS 46 download 46 upload 47 NETWORK MONITORING COMMANDS 48 show packet ports 48 show error ports 49 show utilizat...

Page 5: ...02 1p user_priority 80 show 802 1p user_priority 80 config 802 1p default_priority 81 show 802 1p default_priority 82 config scheduling_mechanism 82 show scheduling_mechanism 83 config rate_limit 84 s...

Page 6: ...auth_protocol 108 config 802 1x reauth 108 config radius add 109 config radius delete 109 config radius 110 show radius 110 config 802 1x auth_mode 111 config guest_vlan 111 config guest_vlan ports 11...

Page 7: ...rypto certificate request 139 crypto certificate import 140 config ssl certificate 140 show crypto certificate mycertificate 141 ACCESS AUTHENTICATION CONTROL COMMANDS 142 create authen_login method_l...

Page 8: ...s 160 show poe 160 ACCESS CONTROL LIST COMMANDS 162 create access_profile Ethernet 162 create access_profile IP 163 config access_profile Ethernet 164 config access_profile IP 166 config access_profil...

Page 9: ...a terminal emulation program capable of emulating a VT 100 terminal and a serial port configured as above is then connected to the Switch s serial port via an RS 232 DB 9 cable With the serial port pr...

Page 10: ...xxx xxx yyy yyy yyy yyy Where the x s represent the IP address to be assigned to the IP interface named System and the y s represent the corresponding subnet mask 2 Alternatively you can enter config...

Page 11: ...he Switch when its IP address is 0 0 0 0 NOTE The DGS 3100 series of switches have the pability to be config d for an IP addre of 0 0 0 0 or in essence have no IP address Th functions of the Switch Wh...

Page 12: ...itch is rebooted If the Switch is rebooted without using the save command the last configuration saved to NV RAM will be loaded Connecting to the Switch Your terminal parameters will need to be set to...

Page 13: ...nd Parameter Help In this case the command config account was entered with the parameter username The CLI will then prompt to enter the username with the message command config account Every command i...

Page 14: ...Command example the command config account was entered without the required pa config account prompt The up arrow cursor contro s command fig account c ccount at the command prompt Now the appropriate...

Page 15: ...for the show command are displayed At the next command w was used to re enter the show command followed by the account parameter The CLI then displays the user accounts configured on the Switch examp...

Page 16: ...angle brackets Example Command create account admin newadmin1 square brackets Purpose Encloses a required value or set of required arguments One value or argument can be specified Syntax create accoun...

Page 17: ...oggle on and off When toggled on inserts text and shifts previous text to the right Left Arrow Moves the cursor to the left Right Arrow Moves the cursor to the right Up Arrow Repeats the previously en...

Page 18: ...ual 10 q s the display of remaining pages when multiple pages are to be layed Stop disp r Re y displayed freshes the pages currentl a Displays the remaining pages without pausing between pages Enter D...

Page 19: ...serial_port config serial_port te 9600 19200 38400 auto_logout never 2_minutes 5_minutes 10_minutes 15_minutes baud_ra enable clipaging disable clipaging delete acc user ount name 15 enable we tcp_p...

Page 20: ...username dlink ation DGS3100 create account admin dlink Enter a case sensitive password Enter the password again for confirm Success DGS3100 config account Purpose ccount To change the password for a...

Page 21: ...rently logged in users Syntax show session Description and displays a list of all the users that are d in user 1 for the next witch The show session comm logged in at the time the command is issued Th...

Page 22: ...t Subnet M 55 255 224 fault G Boot PRO Firmware Hardware ystem Name DGS 3100 stem L System Contact Julius_Erving_212 555 6666 d Enabled Enabled TCP 80 informatio Device Type ress DA 10 21 00 00 01 s 1...

Page 23: ...no er input for 5 minutes 10_minutes The console will log out the current user if there is no user input for 10 minutes 15_minutes The console will log out the current user if there is no user input f...

Page 24: ...console screen at the end of each page when issuing a command which would display more than one screen of information This causes the console screen to rapidly scroll through several pages Parameters...

Page 25: ...en 1 and 65535 The well known port for the Web based management software is 80 Restrictions Only administrator level users can issue this command Example usage To enable HTTP a figure the TCP port num...

Page 26: ...ck it may be rebooted individually without affecting the other members of the stack Syntax reboot box_id 1 6 Description The reboot command restarts the Switch Parameters ox_id 1 6 The unit s current...

Page 27: ...e Switch s console Syntax Logout Description The logout command terminates the current user s session on the Switch s console Parameters None Restrictions None Example usa To te e current user 100 ge...

Page 28: ...4 times 3 10 6 150 34 with 56 bytes of data 6 bytes from 10 6 150 34 icmp_seq 1 time 0 ms om 10 6 150 34 icmp_seq 2 time 0 ms 6 bytes from 10 6 150 34 icmp_seq 3 time 0 ms 10 6 150 34 PING Statistics...

Page 29: ...nfig snmp system_name DGS 3100 create vlan 2 tag 2 enable 802 1x config 802 1x auth_protocol radius config radius add 10 6 41 226 key 123456 auth_port 1812 acct_port 1813 priori ty first config ports...

Page 30: ...frame configuration Syntax show jumbo_frame Description e The show jumbo_frame command displays the jumbo fram configuration Parameters None Restrictions None Example usa To show the jumbo_frames co...

Page 31: ...23 Parameters None Restrictions None Example usage To display the curren ocate Success 100 tly active switch DGS3100 l DGS3...

Page 32: ...config ports command configures the Switch s Ethernet port Only the ports listed in the portlist will be affected settings Parameters portlist A port or range of ports to be configured nfigures all p...

Page 33: ...nabled Auto Disabled Link Down Enabled 1 2 Enabled Auto Disabled Link Down Enabled 1 3 Enabled Auto Disabled 100M Full Disabled Enabled 1 4 Enabled Auto Disabled 100M Full Disabled Enabled 1 5 Enabled...

Page 34: ...ion of an interface or a range of interfaces To delete a descrip Syntax delete ports description portlist Description The delete ports description interface or a range of interfac command deletes a de...

Page 35: ...27 To display the description of port 1 DGS3100 show ports description 1 1 Port Description 1 1 For testing purposes only DG S3100...

Page 36: ...view_name 30 create snmp communit _string 20 view view_name 30 read_only read_write y community delete snm community comm p unity_string 20 show snmp community community_string 20 config snm defau p e...

Page 37: ...cifying the key in hex form below This method is not recommended th The user may also choose the type of authentication ms used to authenticate the snmp user The choices are md5 Specifies that the HMA...

Page 38: ...SNMP group To remove an SNMP user from an SNMP the ass Syntax delete snmp user username 24 Description The delete snmp user command removes an SNMP user from its eletes the associated SNMP group SNMP...

Page 39: ...ted oid The object ID that identifies an object tree MIB tree that will be included or excluded from access by an SNMP manager included Includes this object in the list of objects that an SNMP manager...

Page 40: ...cription an SNMP view previously The show snmp view command displays created on the Switch Parameters view_name 30 A string of up to 30 alphanumeric characters that identifies the SNMP view to be disp...

Page 41: ...at to identify the group of MIB objects that a remote SNMP s allowed to access on the Switch ly Specifies that SNMP community members using the community string created with this command can only read...

Page 42: ...mmunity strings that are configured on the Switch Parameters community_string 20 A string of up to 20 alphanumeric characters that is used to identify members of an SNMP community This string is used...

Page 43: ...and displays the identification of P engine on the Switch Parameters None Restrictions None Example usa To di nt name o DGS3100 5636666 DGS3100 ge splay the curre f the SNMP engine on the Switch show...

Page 44: ...A string of up to 30 alphanumeric ifies the group of MIB objects that a er is allowed to access on the Switch at the SNMP group being created can sages generated by the Switch s SNMP e 30 A string of...

Page 45: ...roups currently configured To display the group names o on the Switch The security model level and status of each group are also displayed Syntax show snmp groups Description splays the group names of...

Page 46: ...Priv Group Name ReadGroup me CommunityView me Notify Vie Security NMPv2 Security Group Na ReadView w Name NotifyView Model Level authNoPriv me Group5 Name ReadView Name WriteVie w Name NotifyView Mode...

Page 47: ...authentication and encrypting packets over the network SNMP v3 s Message integrity ensures that packets have not been tampered with during transit Authentication determines if an SNMP message is from...

Page 48: ...ceiv DGS3100 create snmp Success DGS3100 delete snmp host Purpose To remove a recipient of SNMP traps generated by the Switch s SNMP agent Syntax delete snmp host ipaddr Description The delete snmp ho...

Page 49: ...he y up to four IP addresses that are allowed via in band SNMP or TELNET based se IP addresses must be members of the pecified then there is ress from accessing the Switch name and Password Switch all...

Page 50: ...ate trusted_host command above Syntax delete trusted_host ipaddr Description command deletes a trusted host entry _host command above The delete trusted_host made using the create trusted Parameters i...

Page 51: ...m the Switch To preven DGS3100 disable snmp traps Success DGS3100 enable snmp authenticate trap Purpose To enable SNMP authentication trap support Syntax enable snmp authenticate trap Description mman...

Page 52: ...administrator level users can issue this command Example usage To vi SNMP tra DGS3100 SNMP Tr Authentic DGS3100 ew the current p support show snmp traps aps enabled ate Trap enabled config snmp system...

Page 53: ...ctions Only administrator level users can issue this command Example usa To co ocation DGS3100 s DGS3100 ge nfigure the Switch l for HQ 5F config snmp system_location HQ 5F Succes config snmp system_n...

Page 54: ...boot or switch configuration file from a TFTP server Parameters Downloads a switch configuration file from a TFTP The IP address of the TFTP server path_filename 64 The DOS path and filename of the fi...

Page 55: ...tion file is to be uploaded ipaddr The IP address of the TFTP server The TFT must be on the same IP subne path_filename 64 The loc the TFTP server This file will be replaced by the uploaded file from...

Page 56: ...l1 l5 local6 local7 udp_port udp_port_number ipaddress ipaddr all index 1 4 severity local2 local3 local4 loca delete syslog host index 1 4 all show syslog host index 1 4 Each command is listed in det...

Page 57: ...ose To display the error statistics for a port or a range of ports Syntax show error ports portlist Description The show error ports command displays all of the packet error he Switch for a given port...

Page 58: ...0 4 0 0 0 0 0 0 0 0 0 0 0 10 0 0 0 0 0 0 0 0 15 0 0 0 16 0 0 0 0 0 0 0 19 0 CTRL C ESC q Quit SPACE n Next Page ENTER Next Entry a ALL le usage To display the port utilization statistics 1 0 2 0 0 0 0...

Page 59: ...tion The show log command displays the contents of the Switch s history log Parameters index value The number of entries in the history log to display Restrictions None Example usage To display the Sw...

Page 60: ...ote host To enable the system log to be se Syntax enable syslog Description s the system log to be sent to a The enable syslog command enable remote host Parameters None Restrictions e this command On...

Page 61: ...create syslog host command creates a new syslog host Parameters vailable 4 r These are Alert action must be taken immediately ritical conditions Error error conditions Warning warning conditions ditio...

Page 62: ...of the operating system daemons and processes have be n assigned Facility values Processes and daemons that have not been explicitly assigned a Facility may use any of the local use facilities or the...

Page 63: ...this command Example usage To create syslog host DGS3100 crea 4 severity all facility local0 Success DGS3100 te syslog host 1 ipaddress 10 53 13 9 config s slog host y Purpose To configure the syslog...

Page 64: ...messages 5 messages generated internally by syslog 6 line printer subsystem 7 network news subsystem 8 UUCP subsystem 9 clock daemon 10 security authorization messages 11 FTP daemon 12 NTP subsystem 1...

Page 65: ...st above local3 Specifies that local use 3 messages are to be sent to the remote host This corresponds to number 19 from the list above local5 S local6 Specifies that local use 6 messages are to be se...

Page 66: ...og hosts that are currently configured on the Switch Parameters 1 to 4 index 1 4 The syslog host index id There are four available indices numbered Restrictions None Example usage To show Syslog host...

Page 67: ...t in 00000000 priority value 0 240 stance_id value 0 15 internalCost auto value 1 2 Each command is listed in detail as follows config stp Purpose To setup STP RSTP and MSTP on the Switch Syntax nfig...

Page 68: ...hop co held for the port will age out The value may be betwee The default is 20 hellotim tra switches utilizing the Multiple Spanning Tree Protocol forwarddelay seconds that the root device will wait...

Page 69: ...ort to have p2p status whenever possible 2p status were true If the port cannot s status for example if the port is forced to half duplex eration the p2p status changes to operate as if the p2p value...

Page 70: ...yntax enable stp Description The enable stp command sets the Spanning Tree Protocol to be globally enabled on the Switch Parameters None Restrictions Only administrator level users can issue this comm...

Page 71: ...ed with STP compatible version DGS3100 show stp STP Status Enabled ompatible STP Version STP C Max Age 20 Hello Time 2 Forward Delay 15 Max Hops 20 d Forwarding BPDU Enable DGS3100 Status 2 STP enable...

Page 72: ...of the port list range are separated by a dash For example 1 3 specifies switch number 1 port 3 2 4 specifies switch number 2 port 4 1 3 2 4 specifies all of the ports between switch 1 port 3 and swit...

Page 73: ...ch show stp instance 0 Type CIST Instan Status Enabled Priority 32768 nce Operational Status ed Root Bridge Extern Root Cost 200012 Root Port Max Age 20 F Last Topo T show stp mst_config_id Purpose To...

Page 74: ...ly and have the same configuration revision_level number and the same name Parameters value 1 15 The value of the instance_id The value may be between 1 and 15 The Switch supports 16 STP regions with...

Page 75: ...value for instance_id 2 as 4096 DGS3100 config stp priority 4096 instance_id 2 Success DGS3100 config stp mst_config_id Purpose To update the MSTP configuration identification Syntax config stp mst_c...

Page 76: ...ort 3 2 4 specifies switch number 2 port 4 1 3 2 4 specifies all of the ports between switch 1 port 3 and switch 2 an STP instance The ecifies setting the quickest route automatically and rnalCost rep...

Page 77: ...69 DGS3100 Success...

Page 78: ...time Each co as follows mmand is listed in detail create fdb Purpose To create a static entry in the unicast MAC address forwarding table ase datab Syntax create fdb vlan_name 32 macaddr port port De...

Page 79: ...the Switch s multicast MAC address forwarding To configure database Syntax te config multicast_fdb vlan_name 32 macaddr add dele portlist Description cast MAC The config multicast_fdb command configu...

Page 80: ...n is too short however many entries may be aged out too soon This will result i addresses cannot be found in the forwarding table in which case the Switch will broadcast the packet to all ports negati...

Page 81: ...100 show multicast_fdb Purpose To display the contents of the Switch s multicast forwarding database Syntax show multicast_fdb vlan vlan_name 32 mac_address macaddr Description The show multicast_fdb...

Page 82: ...ictions None Example usa To di MAC addr DGS3100 Unicast M ID VLA 1 defau 1 default 1 default 1 default 72 2D 10 Dynamic 1 defau 1 defau 1 defau 1 defau defau 1 default 00 00 E2 7F 6B 53 10 Dynamic mic...

Page 83: ...75 show fdb aging_time C Address Aging Time 5 DGS3100 DGS3100 Unicast MA...

Page 84: ...ticast storm control Parameters portlist A port or range of ports to be configured be configured e The type of broadcast storm for which to configure the trol The options are broadcast Enables broadca...

Page 85: ...1 4 3500 disable disable disable 1 5 3500 disable disable disable disable disable disable 1 7 3500 disable disable disable 1 8 35 1 9 35 disable disable 0 35 1 11 35 1 12 35 1 13 35 4 35 disable disab...

Page 86: ...s Syntax config scheduling class_id 0 3 max_packet value 1 15 Description The config scheduling command configures traffic scheduling for The Switch contains four hardware classes of service Incoming...

Page 87: ...llowing the next lower priority class of service to ets The value may be between 1 and 15 packets e is 1 for class_id 0 2 for class_id 1 4 for class_id s_id 3 class_id 0 3 The hardw config scheduling...

Page 88: ...hart 2 1p Value Switch Priority Queue 0 1 1 0 2 0 3 1 4 2 5 2 6 3 7 3 Switch maps an incoming packe tag to one of the four hardware p on the S priority the follo 80 Parameters riority 0 7 The 802 1p p...

Page 89: ...an 802 1p priority tag to an inco has no 802 1p priority tag Syntax t_priority portlist all priority 0 7 config 802 1p defaul Description The config 802 1p default_priority command specifies the 802 1...

Page 90: ...incoming packet before being forwarded to its destination show configured untagged Parameters A port or range of ports to be displayed portlist Restrictions None Example usage To display the curr lt p...

Page 91: ...s four h packets must be map rotation b order lowest pri of the pa que be hig hig allo que Parameters ass_id 0 3 This specifies to which of the four hardware sses of service the config scheduling_mech...

Page 92: ...ters sables rate limiting be portlist A port or range of ports to be set all Specifies that all ports are to be configured disable Di value 3500 1000000 The rate limit value The value may between 3500...

Page 93: ...ho Port Ra 35 2 3500 10 3500 11 3500 500 13 3500 14 35 15 35 35 17 35 RL C ESC q Quit SPACE n Next Page ENTER Next Entry a ALL ge ow a port w rate_limit all Current rate limit te Limit 1 00 3 3500 4 3...

Page 94: ...d port where a network sniffer or other n monitor the network traffic In addition you can specify that only traffic received by or sent by one or both is mirrored to the target port also sent device c...

Page 95: ...Restrictions Only administrator level users can issue this command Example usage To delete a mirroring configuration delete mirror source 1 target port 2 ingress DGS3100 DGS3100 Success show mirror Pu...

Page 96: ...disable gvrp show vlan vlan_name 32 show gvrp portlist ch1 32 Each command is listed in detail as follows create vlan Purpose create a VLAN on the Switch To Syntax create vlan vlan_name 32 tag vlanid...

Page 97: ...ured VLAN You can specify the the port list of a previously con additional ports as tagging untagging or forbidden The default is to assign the ports as untagged Parameters to be added to a previously...

Page 98: ...can accept tagged and untagged admit_all 094 Specifies the default VLAN associated with the port by VLAN ID portlist A port or range of ports for ch 1 32 all Sp che acceptable_frame frame accepted Acc...

Page 99: ...show vlan Purpose To display the current VLAN configuration on the Switch Syntax show vlan vlan_name 32 Description The show vlan command displays summary information about each VLAN including the VLA...

Page 100: ...ameters portlist Specifies a port or range of ports for which the GVRP status is to be displayed ch1 32 Specifies a port channel Restrictions None Example usa GVRP port status ow gvrp 1 1 5 lobal GVRP...

Page 101: ...aggregation groups to be configured The group number identifies each of the groups type Specify the type of link aggregation used for the group If the type is not specified the default type is static...

Page 102: ...rts portlist state enable disable Description The config link_aggregation command configures a link aggregation group that was created with the create link_aggregation command above Parameters allows...

Page 103: ...isplays the current link aggregation configuration of the Switch Parameters group_id value 1 32 Specifies the group ID The Switch allows gation groups to be configured The group h of the groups up to...

Page 104: ...The IP interface name to be configured The default IP name on the Switch is System All IP interface configurations done will be executed through this interface name dress IP address and netmask of th...

Page 105: ...interfac on the Switch Parameters stem The name of the IP interface whose settings are to be ayed Always System sy displ Restrictions None Example usage To di ipif System Interface P Addres Subnet M V...

Page 106: ...the Switch Syntax config igmp_snooping vlan_name 32 all host_timeout sec 60 16711450 router_timeout sec 1 16711450 leave_timer sec 0 16711450 state enable disable Description The config igmp_snooping...

Page 107: ...meters The name of the VLAN on which the router port te Specifies whether to add or delete ports defined in parameter portlist to the router port function will be configured as router vlan_name 32 res...

Page 108: ...ue this command Example usage TTo nooping o itch DGS3100 disable igmp_snooping disable IGMP s n the Sw Success DGS3100 show ig g mp_snoopin Purpose To show the current status of IGMP snooping on the S...

Page 109: ...efault lticast group 224 0 0 2 ss 01 00 5E 00 00 02 M orts 1 t Member 3 al Entries 1 S3100 show igmp_snooping forwarding Purpose To display the IGMP snooping forwarding table entries on the Switch Syn...

Page 110: ...t command displays the router ports currently configured on the Switch Parameters vlan vlan_name 32 The name of the VLAN on which the router port resides statically configured plays router ports that...

Page 111: ...ased ports portli config 802 auth_prot radiu 1x ocol s none config 802 1x reauth port_based ports portlist all config radius add serve auth_port udp_port_number 1 65535 r_ip key passwd 32 default acct...

Page 112: ...1x server on the Switch Syntax show 802 1x auth_state ports portlist Description The show 802 1x auth_state command displays the current 802 1x ng nt s hows the current state of the Backend Authentica...

Page 113: ...rolled Port that is unauthorized will exert control over communication in both receiving and transmitting directions or just the receiving direction OpenCrlDir Both In Shows whether a controlled Port...

Page 114: ...PACE n Next Page Enter Next Entry a All 802 1X E ation Mode Port_based ation Method None ber 1 AdminCrl O Dir both ir both forceAuthorized Q iod 60 sec SuppTimeout 30 sec ServerTimeout 30 sec MaxReq 2...

Page 115: ...e length of time to wait for a response from a RADIUS server max_req value 1 10 Configures the number of times to retry sending packets to a supplicant user reauth_period sec 300 4294967295 Configures...

Page 116: ...entication Restrictions Only administrator level users can issue this command Example usage To configure the RADIUS AAA authentication protocol on the Switch DGS3100 config 802 1x auth_protocol radius...

Page 117: ...efault udp port number in both the auth_port and acct_port settings auth_port udp_port_number 1 65535 The UDP port number for authentication requests The default is 1812 acct_port udp_port_number 1 65...

Page 118: ...ret key used by the RADIUS server and the Switch Up to 32 characters can be used auth_port udp_port_number 1 65535 The UDP port number for authentication requests The default is 1812 acct_port udp_por...

Page 119: ...sers can issue this command Example usage To configure 802 1x authentication by MAC address DGS3100 config 802 1x auth_mode mac_based Success DGS3100 config guest_vlan Purpose Enables or disables netw...

Page 120: ...tor can use the Guest VLAN to deny internal network access via port based authentication but grant Internet access to unauthorized users Parameters portlist A port or range of ports to be configured t...

Page 121: ...erval 1 1000000 Description The config port_security command configures port security settings for specific ports Parameters portlist A port or range of ports to be configured all Configures port secu...

Page 122: ...rts The information displayed includes port security admin state maximum number of learning address and lock mode Parameters portlist A port or range of ports whose settings are to be displayed Restri...

Page 123: ...command is listed in detail as follows config sntp Purpose To setup SNTP service Syntax config sntp primary ipaddr secondary ipaddr poll interval int 60 86400 Description The config sntp command conf...

Page 124: ...me Source System Clock SNTP Disabled SNTP Primary Server 10 1 1 1 SNTP Secondary Server 10 1 1 2 SNTP Poll Interval 30 sec DGS3100 enable sntp Purpose To enable SNTP server support Syntax enable sntp...

Page 125: ...d date settings These will be overridden if SNTP is configured and enabled Parameters date ddmthyyyy Specifies the date using two numerical characters for the day of the month three alphabetical chara...

Page 126: ...le repeating week day month hh mm week day month hh mm offset 30 60 90 120 annual date month hh mm date month hh mm offset 30 60 90 120 Description The config dst command disables or configures Daylig...

Page 127: ...e is as follows and in the order listed date 1 31 The day of the month to begin DST expressed numerically month 1 12 The month of the year to begin DST expressed numerically hh mm The time of day to b...

Page 128: ...lay the current system time Parameters None Restrictions None Example usage To show the time cuurently set on the Switch s System clock DGS3100 show time Current Time Source System Clock Boot Time 4 M...

Page 129: ...the Switch s routing table ipaddr The gateway IP address for the next hop router metric 1 65535 The routing protocol metric entry representing the number of routers between the Switch and the IP addre...

Page 130: ...tch s current IP routing table Syntax show iproute Description The show iproute command displays the Switch s current IP routing table Parameters None Restrictions None Example usage To display the co...

Page 131: ...rs an IP address and the corresponding MAC address into the Switch s ARP table Parameters ipaddr The IP address of the end node or station macaddr The MAC address corresponding to the IP address above...

Page 132: ...entry Purpose To delete a static entry from the ARP table Syntax delete arpentry ipaddr all Description The delete arpentry command deletes a static ARP entry made using the create arpentry command ab...

Page 133: ...IP Address MAC Address Type System 10 6 41 33 00 00 b0 07 07 49 dynamic System 10 6 41 49 00 20 18 2a 56 18 dynamic Total Entries 2 DGS3100 config arp_aging time Purpose To configure the age out timer...

Page 134: ...escription The clear arptable command is used to remove dynamic ARP table entries from the Switch s ARP table Static ARP table entries are not affected Parameters None Restrictions Only administrator...

Page 135: ...e Command Line Interface CLI Parameters command Lists all the corresponding parameters for the specified command along with a brief description of the command s function and similar commands having th...

Page 136: ...scription The show command_history command displays the command history Parameters None Restrictions None Example usage To display the command history DGS3100 show command_history show show vlan show...

Page 137: ...authen server group More space Quit q One line return config command_history Purpose To configure the command history Syntax config command_history value 10 237 Description The config command_history...

Page 138: ...out sec 120 600 port tcp_port_number 1 65535 show ssh server show ssh algorithm config ssh crypto username 1 48 rsa dsa show ssh crypto delete ssh crypto username 1 48 Each command is listed in detail...

Page 139: ...tion mode for users attempting to access the Switch Parameters publickey Specifies that a publickey configuration set on a SSH server is to be used for authentication enable disable Enables or disable...

Page 140: ...may be between 120 and 600 seconds The default is 120 seconds port tcp_port_number 1 65535 The TCP port number of the server TCP ports are numbered between 1 and 65535 The well known port for the SSH...

Page 141: ...thms cuurently set on the Switch DGS3100 show ssh algorithm Encryption Algorithm 3des cbc AES128 AES192 AES256 RC4 Data Integrity Algorithm MD5 SHA1 Public Key Algorithm RSA DSA DGS3100 config ssh cry...

Page 142: ...pto Description The show ssh crypto command displays the SSH public key stored on the device Parameters None Restrictions Only administrator level users can issue this command Example usage To display...

Page 143: ...135 DGS3100 Delete ssh crypto bob Success DGS3100...

Page 144: ...ion 1 64 st state 1 64 cu country 1 2 crypto certificate number 1 2 import config ssl certificate number 1 2 show crypto certificate mycertificate number 1 2 Each command is listed in detail as follow...

Page 145: ...usage To disable the SSL status on the Switch DGS3100 disable ssl Success DGS3100 show ssl Purpose To view the SSL status and the certificate file status on the Switch Syntax show ssl Description The...

Page 146: ...650 Description The crypto certificate generate command generates a self signed HTTPS certificate for the device Parameters number Specifies the certificate number Range 1 2 key generate Regenerates t...

Page 147: ...gned certificate Parameters number Specifies the certificate number Range 1 2 common name Specifies the fully qualified URL or IP address of the device Range 1 64 organization unit Specifies the organ...

Page 148: ...on however the certificate imported by this command is saved in the private configuration which is never displayed to the user or backed up to another device Parameters number Specifies the certificat...

Page 149: ...AwUzELMAkGA1UEBhMCICAxCjAIBgNV BAgTASAxCjAIBgNVBAcTASAxFDASBgNVBAMTCzEwLjYuMjIuMTExMQowCAYDVQQK EwEgMQowCAYDVQQLEwEgMB4XDTA1MDEwMzAyMzM1NFoXDTA2MDEwMzAyMzM1NFow UzELMAkGA1UEBhMCICAxCjAIBgNVBAgTASAxCjA...

Page 150: ...hen_enable default method_list_name string 12 method tacacs radius local_enable none delete authen_enable method_list_name string 12 show authen_enable all default method_list_name string 12 config au...

Page 151: ...to the Switch The sequence of methods implemented in this command will affect the authentication result For example if a user enters a sequence of methods like tacacs xtacacs local the Switch will se...

Page 152: ...er is to be authenticated using the local user account database on the Switch Specifies that no authentication is required to access the Switch the loca none NOTE Entering none or local as an authenti...

Page 153: ...red method list name Method Name Defines which security protocols are implemeted per method list name Restrictions None Example usage To view all authentication login method list names DGS3100 show au...

Page 154: ...strator privileges on the Switch which is defined by the Administrator A maximum of eight 8 enable method lists can be implemented simultaneously on the Switch The sequence of methods implemented in t...

Page 155: ...to access the Switch Restrictions Only administrator level users can issue this command Example usage To configure the user defined method list Permit with authentication methods TACACS RADIUS and lo...

Page 156: ...ethod List Name The name of a previously configured method list name Method Name Defines which security protocols are implemeted per method list name Restrictions None Example usage To display all met...

Page 157: ...me Restrictions Only administrator level users can issue this command Example usage To configure the default method list for the command line interface DGS3100 config authen application console login...

Page 158: ...acs Specifies that the server host utilizes the TACACS protocol radius Specifies that the server host utilizes the RADIUS protocol port int 1 65535 The virtual port number of the authentication protoc...

Page 159: ...re tacacs Specifies that the server host utilizes the TACACS protocol radius Specifies that the server host utilizes the RADIUS protocol port int 1 65535 The virtual port number of the authentication...

Page 160: ...tacacs Success DGS3100 show authen server_host Purpose To view a user defined authentication server host Syntax show authen server_host Description The show authen server_host command displays user de...

Page 161: ...t which has the username enable and a password configured by the administrator that will support the enable function This function becomes inoperable when the authentication policy is disabled Paramet...

Page 162: ...istrator level users can issue this command Example usage To configure the password for the local_enable authentication method DGS3100 config admin local_enable Enter the old password Enter the case s...

Page 163: ...e of ports in an LACP group Parameters portlist A port or range of ports to be configured priority 1 65535 Specifies the LACP priority value for a port or range of ports to be configured The default i...

Page 164: ...lays the current LACP status for all ports Restrictions None Example usage To display LACP port mode settings DGS3100 show lacp Port Priority Timeout 1 1 1 90 sec 1 2 1 90 sec 1 3 1 90 sec 1 4 1 90 se...

Page 165: ...d value 1 6 Specifies the unit s current stack membership number new_box_id auto 1 2 3 4 5 6 Specifies the units s new stack membership number If auto is specified the system automatically defines the...

Page 166: ...t Ethernet Switch Manual 158 DGS3100 show stack_information Master ID 1 Backup ID 2 Box ID User Set Boot version Firmware version H W version 1 Auto 1 0 0 03 1 0 0 28 00 00 01 2 2 1 0 0 03 1 0 0 28 00...

Page 167: ...number system_power_limit ps1 ps2 ps3 Specifies the power budget of the whole PoE system according to the type of power supply used ps1 ps2 ps3 disconnect_method Configures the power management discon...

Page 168: ...configured PoE ports These ports will be the first ports to receive power and the last to disconnect power high Specifies that these ports have the second highest priority for receiving power and shu...

Page 169: ...161 Parameters None Restrictions None Example usage To display the power settings for the Switch DGS3100 show poe Port State Priority Power Limit DGS3100...

Page 170: ...ion_ip ipaddr dscp value 0 63 icmp type value 0 255 code value 0 255 igmp type value 0 255 tcp src_port value 0 65535 dst_port value 0 65535 flag flag 1 24 udp src_port value 0 65535 dst_port value 0...

Page 171: ...00 create access_profile IP Purpose To create an access profile on the Switch by examining the IP part of the packet header Masks entered can be combined with the values the Switch finds in the specif...

Page 172: ...pecifies the appropriate flag_mask parameter All incoming packets have TCP port numbers contained in them as the forwarding criterion These numbers have flag bits associated with them which are parts...

Page 173: ...determine if it is to be filtered or forwarded based on one or more of the following vlan vlan_name 32 Specifies that the access profile applies only to this previously created VLAN source_mac macadd...

Page 174: ...alue 1 15 add access_id auto assign value 1 255 ip source_ip ipaddr destination_ip ipaddr dscp value 0 63 icmp type value 0 255 code value 0 255 igmp type value 0 255 tcp src_port value 0 65535 dst_po...

Page 175: ...g packets have TCP port numbers contained in them as the forwarding criterion These numbers have flag bits associated with them which are parts of a packet that determine what to do with the packet Th...

Page 176: ...id 2 add access_id 2 ip protocol_id 2 port 2 deny Success DGS3100 config access_profile Purpose To delete a specific rule from the access profile on the Switch Syntax config access_profile profile_id...

Page 177: ...the Switch Syntax show access_profile profile_id value 1 15 Description The show access_profile command displays the currently configured access profiles Parameters profile_id value 1 15 Specifies th...

Page 178: ...DGS 3100 Gigabit Ethernet Switch Manual 170 Ports 2 2 Total Entries 2 DGS3100...

Page 179: ...ange of ports or a port channel to be configured for traffic segmentation forward_list Specifies a port or range of ports to receive forwarded frames from the ports specified in the portlist above nul...

Page 180: ...The port lists for segmentation and the forward list must be on the same Switch Example usage To display the current traffic segmentation configuration on the Switch DGS3100 show traffic_segmentation...

Page 181: ...s per port Forwarding Table Age Time Max age 10 1000000 seconds Default 300 Physical and Environmental AC Inputs 100 240 VAC 50 60 Hz internal universal power supply Power Consumption 45 watts maximum...

Page 182: ...00 meters max EIA TIA 568 150 ohm STP 100 meters max 100BASE TX UTP Cat 5 100 meters max EIA TIA 568 150 ohm STP 100 meters max 1000BASE T UTP Cat 5e 100 meters max UTP Cat 5 100 meters max EIA TIA 56...

Page 183: ...ber module 10km DEM 311GT SFP Transceiver for 1000BASE SX Multi mode fiber module 550m DEM 314GT SFP Transceiver for 1000BASE LHX Single mode fiber module 40km DEM 315GT SFP Transceiver for 1000BASE Z...

Page 184: ...y the original purchaser for the defective Hardware will be refunded by D Link upon return to D Link of the defective Hardware All Hardware or part thereof that is replaced by D Link or for which the...

Page 185: ...way that is not contemplated in the documentation for the product or if the model or serial number has been altered tampered with defaced or removed Initial installation installation and removal of th...

Page 186: ...may be reproduced in any form or by any means or used to make any derivative such as translation transformation or adaptation without permission from D Link Corporation D Link Systems Inc as stipulat...

Page 187: ...______________________________ 4 What network operating system s does your organization use D Link LANsmart Novell NetWare NetWare Lite SCO Unix Xenix PC NFS 3Com 3 Open Banyan Vines DECnet Pathwork W...

Page 188: ......

Page 189: ...or other sales in which D Link the sellers or the liquidators expressly disclaim their warranty obligation pertaining to the product and in that case the product is being sold As Is without any warran...

Page 190: ...D Link Systems Inc Other trademarks or registered trademarks are the property of their respective owners Copyright Statement No part of this publication or documentation accompanying this product may...

Page 191: ...egistration Register online your D Link product at http support dlink com register Product registration is entirely voluntary and failure to complete or return this form will not diminish your warrant...

Page 192: ...day to Friday 8 00am to 8 00pm EST Saturday 9 00am to 1 00pm EST D Link Technical Support over the Internet http www dlink com au email support dlink com au Tech Support for customers within New Zeala...

Page 193: ...site Tech Support for customers within South Eastern Asia and Korea D Link South Eastern Asia and Korea Technical Support over the Telephone 65 6895 5355 Monday to Friday 9 00am to 12 30pm 2 00pm 6 00...

Page 194: ...customers within India D Link Technical Support over the Telephone 91 22 26526741 91 22 26526696 ext 161 to 167 Monday to Friday 9 30am to 7 00pm D Link Technical Support over the Internet http ww dli...

Page 195: ...e duration of the warranty period on this product Customers can contact D Link technical support through our web site or by phone Tech Support for customers within the Russia D Link Technical Support...

Page 196: ...ink Technical Support over the Telephone 972 9 9715701 Sunday to Thursday 9 00am to 5 00pm D Link Technical Support over the Internet http www dlink co il support e mail support dlink co il Tech Suppo...

Page 197: ...tomers within South Africa and Sub Sahara Region D Link South Africa and Sub Sahara Technical Support over the Telephone 27 12 665 2165 08600 DLINK For South Africa only Monday to Friday 8 30am to 9 0...

Page 198: ...alvador 800 6137 Monday to Friday 06 00am to 19 00pm Guatemala 1800 300 0017 Monday to Friday 06 00am to 19 00pm Panama 00 800 052 54 65 Monday to Friday 07 00am to 20 00pm Peru 0800 00 968 Monday to...

Page 199: ...D Link D Link D Link D Link 495 744 00 99 http www dlink ru email support dlink ru...

Page 200: ...p Desk Chile Tel fono 800 8 35465 Lunes a Viernes 08 00 am a 21 00 pm Soporte T cnico Help Desk Colombia Tel fono 01 800 952 54 65 Lunes a Viernes 07 00 am a 20 00 pm Soporte T cnico Help Desk Ecuador...

Page 201: ...brasil com br A D Link fornece suporte t cnico gratuito para clientes no Brasil durante o per odo de vig ncia da garantia deste produto Suporte T cnico para clientes no Brasil Telefone S o Paulo 11 21...

Page 202: ...D Link D Link D Link 0800 002 615 8 30 7 00 http www dlink com tw dssqa_service dlink com tw D Link http www dlink com tw...

Page 203: ...can contact D Link technical support through our website or by phone Tech Support for customers within the United States D Link Technical Support over the Telephone 877 354 6555 Monday to Friday 8 00...

Page 204: ...within The United Kingdom Ireland D Link UK Ireland Technical Support over the Internet http www dlink co uk ftp ftp dlink co uk D Link UK Ireland Technical Support over the Telephone 08456 12 0003 U...

Page 205: ...port dlink de Telefon 49 1805 2787 0 12 Min aus dem Festnetz der Deutschen Telekom Telefonische technische Unterst tzung erhalten Sie Montags bis Freitags von 09 00 bis 17 30 Uhr Unterst tzung erhalte...

Page 206: ...Assistance technique D Link par t l phone 0820 0803 03 N INDIGO 0 12 TTC min Prix en France M tropolitaine au 3 mars 2005 Du lundi au samedi de 9h00 19h00 Assistance technique D Link sur internet htt...

Page 207: ...ink ofrece asistencia t cnica gratuita para clientes residentes en Espa a durante el periodo de garant a del producto Asistencia T cnica de D Link por tel fono 34 902 30 45 45 Lunes a Viernes de 9 00...

Page 208: ...ito D Link Supporto tecnico per i clienti residenti in Italia D Link Mediterraneo S r L Via N Bonnet 6 B 20154 Milano Supporto Tecnico dal luned al venerd dalle ore 9 00 alle ore 19 00 con orario cont...

Page 209: ...s D Link Technical Support over the Telephone 0900 501 2007 Monday to Friday 9 00 am to 10 00 pm D Link Technical Support over the Internet www dlink nl Tech Support for customers within Belgium D Lin...

Page 210: ...n pomoc techniczn klientom w Polsce w okresie gwarancyjnym produktu Klienci z Polski mog si kontaktowa z dzia em pomocy technicznej firmy D Link za po rednictwem Internetu lub telefonicznie Telefonicz...

Page 211: ...y D Link D Link poskytuje sv m z kazn k m bezplatnou technickou podporu Z kazn ci mohou kontaktovat odd len technick podpory p es webov str nky mailem nebo telefonicky Web http www dlink cz suppport E...

Page 212: ...t munkanapokon h tf t l cs t rt kig 9 00 16 00 r ig s p nteken 9 00 14 00 r ig k rhet a 1 461 3001 telefonsz mon vagy a support dlink hu emailc men Magyarorsz gi technikai t mogat s D Link Magyarorsz...

Page 213: ...ider D Link tilbyr sine kunder gratis teknisk support under produktets garantitid Kunder kan kontakte D Links teknisk support via v re hjemmesider eller p tlf Teknisk Support D Link Teknisk telefon Su...

Page 214: ...support til kunder i Danmark i hele produktets garantiperiode Danske kunder kan kontakte D Link s tekniske support via vores hjemmeside eller telefonisk D Link teknisk support over telefonen D Link te...

Page 215: ...a teknist tukea asiakkailleen Tuotteen takuun voimassaoloajan Tekninen tuki palvelee seuraavasti Arkisin klo 9 21 numerosta 0800 114 677 Internetin kautta Ajurit ja lis tietoja tuotteista http www dli...

Page 216: ...annan anv ndarinformation D Link tillhandah ller teknisk support till kunder i Sverige under hela garantitiden f r denna produkt Teknisk Support f r kunder i Sverige D Link Teknisk Support via telefon...

Page 217: ...te de D Link Portugal http www dlink pt A D Link fornece suporte t cnico gratuito para clientes no Portugal durante o per odo de vig ncia de garantia deste produto Suporte T cnico para clientes no Por...

Page 218: ...software updates D Link D Link D Link 210 86 11 114 210 86 53 172 09 00 17 00 e mail support dlink gr D Link Internet http www dlink gr ftp ftp dlink it...

Page 219: ...71 C1 202 100025 8008296688 028 66052968 028 85176948 71 C1 202 100025 010 58635800 010 58635799 http www dlink com cn 09 00 18 00...

Page 220: ...URL www dlink pl Hungary R70 Irodahaz 1 emelet Rakoczi ut 70 72 Budapest H 1074 Magyarorszag TEL 36 0 1 461 30 00 FAX 36 0 1 461 30 09 URL www dlink hu Singapore 1 International Business Park 03 12 T...