D-Link TM DES-6500, Cli Manual

Page 1: ...Product Model TM DES 6500 Modular Layer 3 Chassis Ethernet Switch Release 3 CLI Manual...

Page 2: ...AN Commands 118 Link Aggregation Commands 127 IP Commands Including Multiple IP interfaces per VLAN 134 IGMP Commands Including IGMP v3 139 IGMP Snooping Commands 143 Access Authentication Control Com...

Page 3: ...RP Commands 290 PIM Commands 295 IP Multicasting Commands 299 MD5 Configuration Commands 301 OSPF Configuration Commands 303 Jumbo Frame Commands 323 Command History List 325 Technical Specifications...

Page 4: ...be used to configure and manage the Switch via the serial port or Telnet interfaces This manual provides a reference for all of the commands contained in the CLI Configuration and management of the sw...

Page 5: ...ngs window on the Configuration menu The IP address for the Switch must be set before it can be managed with the Web based manager The Switch IP address can be automatically set using BOOTP or DHCP pr...

Page 6: ...he Switch was assigned an IP address of 10 53 13 144 with a subnet mask of 255 0 0 0 The system message Success indicates that the command was executed successfully The Switch can now be configured an...

Page 7: ...n the Switch s NV RAM and reloaded when the Switch is rebooted If the Switch is rebooted without using the save command the last configuration saved to NV RAM will be loaded Connecting to the Switch T...

Page 8: ...ered at the command prompts DES 6500 4 There are a number of helpful features included in the CLI Entering the command will display a list of all of the top level commands Figure 2 2 The Command When...

Page 9: ...t press the up arrow cursor key The previous command will appear at the command prompt Figure 2 4 Using the Up Arrow to Re enter a Command In the above example the command config account was entered w...

Page 10: ...rrow the top level command This is equivalent to show what or config what Where the what is the next parameter For example if you enter the show command with no additional parameters the CLI will then...

Page 11: ...nterface name in the ipif_name space a VLAN name in the vlan_name 32 space and the network address in the network_address space Do not type the angle brackets Example Command create ipif Engineering 1...

Page 12: ...Moves the cursor to the right Up Arrow Repeat the previously entered command Each time the up arrow is pressed the command previous to that displayed appears This way it is possible to review the com...

Page 13: ...ername 15 show config current_config config_in_NVRAM show session show switch show device status show serial_port config serial_port auto_logout never 2_minutes 5_minutes 10_minutes 15_minutes enable...

Page 14: ...commands listed in this manual A username of up to 15 characters must be created with this command to identify the user Restrictions Only Administrator level users can issue this command Usernames can...

Page 15: ...Switch at one time Parameters None Restrictions None Example usage To display the accounts that have been created DES 6500 4 show account Command show account Current Accounts Username Access Level d...

Page 16: ...w config Purpose Used to display a list of configuration commands entered into the Switch Syntax show config current_config config_in_NVRAM Description This command displays a list of configuration co...

Page 17: ...onfig traffic control 2 1 2 24 broadcast disable multicast disable dlf disable CTRL C ESC q Quit SPACE n Next Page ENTER Next Entry a All show session Purpose Used to display a list of currently logge...

Page 18: ...al VLAN Name default Subnet Mask 255 0 0 0 Default Gateway 0 0 0 0 Boot PROM Version Build 00170B20 Firmware Version Build 2 00 B29 Hardware Version 2A1 Device S N System Name DES 6500_ 3 System Locat...

Page 19: ...tatus Command show device_status RPS1 Status Output voltage Normal FAN1 Normal FAN2 Normal RPS2 Status Not Exist System FAN1 Normal System FAN2 Normal System FAN3 Normal System FAN4 Normal DES 6500 4...

Page 20: ...ll log out the current user if there is no user input for 10 minutes 15_minutes The console will log out the current user if there is no user input for 15 minutes Restrictions Only administrator level...

Page 21: ...of the screen display when show command output reaches the end of the page DES 6500 4 disable clipaging Command disable clipaging Success DES 6500 4 enable telnet Purpose Used to enable communication...

Page 22: ...enable the HTTP based management software on the Switch Syntax enable web tcp_port_number 1 65535 Description This command is used to enable the Web based management software on the Switch The user ca...

Page 23: ...in the Switch s configuration to non volatile RAM Syntax save Description This command is used to enter the current switch configuration into non volatile RAM The saved switch configuration will be l...

Page 24: ...ied all of the factory default settings are restored on the Switch including the IP address user accounts and the Switch history log The Switch will not save or reboot system If the keyword system is...

Page 25: ...e session DES 6500 4 logout config command_prompt Purpose Used to configure the command prompt for the Command Line Interface Syntax config command_prompt string 16 username default Description This c...

Page 26: ...for the opening screen of the Command Line Interface Syntax config greeting_message default Description This command is used to configure the greeting message or login banner for the opening screen of...

Page 27: ...Erase all setting Ctrl L Reload original setting Success DES 6500 4 show greeting_message Purpose Used to view the currently configured greeting message configured on the Switch Syntax show greeting_m...

Page 28: ...the beginning port number on that switch separated by a colon Then the highest switch number and the highest port number of the range also separated by a colon are specified The beginning and end of t...

Page 29: ...00 4 config ports 1 1 1 3 speed 10_full learning enabled state enabled Command config ports 1 1 1 3 speed 10_full learning enable stated enabled Success DES 6500 4 show ports Purpose Used to display t...

Page 30: ...11 Enabled Auto Enabled Link Down Enabled 1 12 Enabled Auto Enabled Link Down Enabled 2 1 Enabled Auto Disabled Link Down Enabled 2 2 Enabled Auto Disabled Link Down Enabled 2 3 Enabled Auto Disabled...

Page 31: ...layed The port list is specified by listing the lowest slot number and the beginning port number on that slot separated by a colon Then the highest slot number and the highest port number of the range...

Page 32: ...fied by listing the lowest slot number and the beginning port number on that switch separated by a colon Then the highest slot number and the highest port number of the range also separated by a colon...

Page 33: ...port port Enter the corresponding port of the entry to delete The port is specified by listing the lowest slot number and the beginning port number on that slot separated by a colon For example 1 3 s...

Page 34: ...iv v3 MD5 or SHA Authentication is based on the HMAC MD5 or HMAC SHA algorithms AuthNoPriv v3 MD5 DES or SHA DES Authentication is based on the HMAC MD5 or HMAC SHA algorithms AuthPriv DES 56 bit encr...

Page 35: ...tion config snmp system name sw_name enable rmon disable rmon Each command is listed in detail in the following sections create snmp user Purpose Used to create a new SNMP user and adds the user to an...

Page 36: ...ecifies that the HMAC MD5 96 authentication level will be used md5 may be utilized by entering one of the following auth password 8 16 An alphanumeric sting of between 8 and 16 characters that will be...

Page 37: ...te snmp user dlink default encrypted by_password auth md5 auth_password priv none Success DES 6500 4 delete snmp user Purpose Used to remove an SNMP user from an SNMP group and also to delete the asso...

Page 38: ...w Purpose Used to assign views to community strings to limit which MIB objects and SNMP manager can access Syntax create snmp view view_name 32 oid view_type included excluded Description The create s...

Page 39: ...ews on the Switch will be deleted oid The object ID that identifies an object tree MIB tree that will be deleted from the Switch Restrictions Only administrator level users can issue this command Exam...

Page 40: ...IB objects that will be accessible to the SNMP community Read write or read only level permission for the MIB objects accessible to the SNMP community Syntax create snmp community community_string 32...

Page 41: ...ity This string is used like a password to give remote SNMP managers access to MIB objects in the Switch s SNMP agent Restrictions Only administrator level users can issue this command Example usage T...

Page 42: ...on The config snmp engineID command configures a name for the SNMP engine on the Switch Parameters snmp_engineID An alphanumeric string that will be used to identify the SNMP engine on the Switch Rest...

Page 43: ...trol network devices v2c Specifies that SNMP version 2c will be used The SNMP v2c supports both centralized and distributed network management strategies It includes improvements in the Structure of M...

Page 44: ...rs can issue this command Example usage To create an SNMP group named sg1 DES 6500 4 create snmp group sg1 v3 noauth_nopriv read_view v1 write_view v1 notify_view v1 Command create snmp group sg1 v3 n...

Page 45: ...ups Command show snmp groups Vacm Access Table Settings Group Name Group3 ReadView Name ReadView WriteView Name WriteView Notify View Name NotifyView Security Model SNMPv3 Security Level NoAuthNoPriv...

Page 46: ...yView Notify View Name CommunityView Security Model SNMPv2 Security Level NoAuthNoPriv Total Entries 10 DES 6500 4 create snmp host Purpose Used to create a recipient of SNMP traps generated by the Sw...

Page 47: ...Specifies that authorization will be required and that packets sent between the Switch and a remote SNMP manger will be encrypted auth_sting 32 An alphanumeric string used to authorize a remote SNMP...

Page 48: ...enerated by the Switch s SNMP agent Restrictions None Example usage To display the currently configured SNMP hosts on the Switch DES 6500 4 show snmp host Command show snmp host SNMP Host Table Host I...

Page 49: ...ion This command is used to display a list of trusted hosts entered on the Switch using the create trusted_host command above Parameters None Restrictions None Example Usage To display the list of tru...

Page 50: ...s Only administrator level users can issue this command Example usage To enable SNMP trap support on the Switch DES 6500 4 enable snmp traps Command enable snmp traps Success DES 6500 4 enable snmp au...

Page 51: ...4 disable snmp traps Purpose Used to disable SNMP trap support on the Switch Syntax disable snmp traps Description This command is used to disable SNMP trap support on the Switch Parameters None Restr...

Page 52: ...characters is allowed A NULL string is accepted if there is no contact Restrictions Only administrator level users can issue this command Example usage To configure the Switch contact to MIS Departmen...

Page 53: ...allowed A NULL string is accepted if no name is desired Restrictions Only administrator level users can issue this command Example usage To configure the Switch name for DES 6500 Chassis Switch DES 6...

Page 54: ...le RMON on the Switch Syntax disable rmon Description This command is used in conjunction with the enable rmon command above to enable and disable remote monitoring RMON on the Switch Parameters None...

Page 55: ...ine_card cpu unitid 1 8 cfg_fromTFTP ipaddr path_filename 64 increment Description This command is used to download a new firmware or a switch configuration file from a TFTP server or a CompactFlash m...

Page 56: ...end that the user save a configuration file of current settings before upgrading to R3 firmware upload Purpose Used to upload the current switch settings or the switch history log to a TFTP server or...

Page 57: ...255 The default is 0 timeout sec 1 99 Defines the time out period while waiting for a response from the remote device A value of 1 to 99 seconds can be specified The default is 1 second Pinging an IP...

Page 58: ...00 4 enable autoconfig Purpose Used to activate the autoconfiguration function for the Switch This will load a previously saved configuration file for current use Syntax enable autoconfig Description...

Page 59: ...figuration is loaded the Switch will automatically logout the server The configuration settings will be saved automatically and become the active configuration Upon booting up the autoconfig process i...

Page 60: ...ge To stop the autoconfiguration function DES 6500 4 disable autoconfig Command disable autoconfig Success DES 6500 4 NOTE With autoconfig enabled the Switch ipif settings now define the Switch as a D...

Page 61: ...ocal5 local6 local7 udp_port udp_port_number ipaddress ipaddr state enabled disabled config syslog host all severity informational warning all facility local0 local1 local2 local3 local4 local5 local6...

Page 62: ...65 127 755 10 RX Frames 4395 19 128 255 316 1 256 511 145 0 TX Bytes 7918 178 512 1023 15 0 TX Frames 111 2 1024 1518 0 0 C Unicast RX 152 1 Multicast RX 557 2 Broadcast RX 3686 16 L3 Unicast RX 0 0...

Page 63: ...on Purpose Used to display real time port and cpu utilization statistics Syntax show utilization ports cpu Description This command will display the real time port and cpu utilization statistics for t...

Page 64: ...6 0 0 0 1 10 0 0 0 3 7 0 30 1 1 11 0 0 0 3 8 0 0 0 1 12 0 0 0 3 9 30 0 1 2 1 0 0 0 3 10 0 0 0 2 2 0 0 0 3 11 0 0 0 2 3 0 0 0 3 12 0 0 0 2 4 0 0 0 4 1 0 0 0 2 5 0 0 0 4 2 0 0 0 2 6 0 0 0 4 3 0 0 0 2 7...

Page 65: ...the Switch to compile statistics Parameters ports portlist Specifies a range of ports to be displayed The port list is specified by listing the lowest slot number and the beginning port number on that...

Page 66: ...command will display the contents of the Switch s history log Parameters index value_list Enter a value that corresponds to an entry made in the log Multiple entries may be made in the form of x x wh...

Page 67: ...slog function on the Switch DES 6500 4 enable syslog Command enable syslog Success DES 6500 4 disable syslog Purpose Used to disable the system log function on the Switch Syntax disable syslog Descrip...

Page 68: ...slog host Parameters index 1 4 Specifies that the command will be applied to an index of hosts There are four available indexes numbered 1 through 4 severity Severity level indicator as shown below Bo...

Page 69: ...use 7 local7 local0 Specifies that local use 0 messages will be sent to the remote host This corresponds to number 16 from the list above local1 Specifies that local use 1 messages will be sent to the...

Page 70: ...local3 local4 local5 local6 local7 udp_port udp_port_number ipaddress ipaddr state enabled disabled Description The config syslog host command is used to configure the syslog protocol to send system l...

Page 71: ...on messages 11 FTP daemon 12 NTP subsystem 13 log audit 14 log alert 15 clock daemon 16 local use 0 local0 17 local use 1 local1 18 local use 2 local2 19 local use 3 local3 20 local use 4 local4 21 lo...

Page 72: ...config syslog host 1 facility local0 Command config syslog host 1 facility local0 Success DES 6500 4 config syslog host 1 udp_port 6000 Command config syslog host 1 udp_port 6000 Success DES 6500 4 c...

Page 73: ...supported syslog messages that are generated by the Switch will be sent to the remote host facility Some of the operating system daemons and processes have been assigned Facility values Processes and...

Page 74: ...ent to the remote host This corresponds to number 22 from the list above local7 Specifies that local use 7 messages will be sent to the remote host This corresponds to number 23 from the list above ud...

Page 75: ...ly configured syslog host DES 6500 4 delete syslog host 4 Command delete syslog host 4 Success DES 6500 4 show syslog host Purpose Used to display the syslog hosts currently configured on the Switch S...

Page 76: ...hoose one of the following to identify where severity messages are to be sent trap Entering this parameter will define which events occurring on the Switch will be sent to a SNMP agent for analysis lo...

Page 77: ...set on the Switch Syntax show system_severity Description This command is used to view the severity settings that have been implemented on the Switch using the config system_severity command Parameter...

Page 78: ...simple and full processing of frames regardless of administrative errors in defining VLANs and their respective spanning trees Each switch utilizing the MSTP on a network will have a single MSTP conf...

Page 79: ...stp Purpose Used to globally enable STP on the Switch Syntax enable stp Description This command allows the Spanning Tree Protocol to be globally enabled on the Switch Parameters None Restrictions On...

Page 80: ...ample usage To set the Switch globally for the Multiple Spanning Tree Protocol MSTP DES 6500 4 config stp version mstp Command config stp version mstp Success DES 6500 4 config stp Purpose Used to set...

Page 81: ...and therefore the hellotime must be set using the configure stp ports command for switches utilizing the Multiple Spanning Tree Protocol forwarddelay value 4 30 The maximum amount of time in seconds...

Page 82: ...ort cost can be set automatically or as a metric value The default value is auto auto Setting this parameter for the external cost will automatically set the speed for forwarding packets to the specif...

Page 83: ...tion the p2p status changes to operate as if the p2p value were false The default setting for this parameter is auto state enable disable Allows STP to be enabled or disabled for the ports specified i...

Page 84: ...the same spanning tree region having the same STP instance_id must be mapped identically and have the same configuration revision_level number and the same name Parameters value 1 15 Enter a number b...

Page 85: ...instance configuration Syntax config stp priority value 0 61440 instance_id value 0 15 Description This command is used to update the STP instance configuration settings on the Switch The MSTP will ut...

Page 86: ...region configured on the Switch The default setting is 0 name string Enter an alphanumeric string of up to 32 characters to uniquely identify the MSTP region on the Switch This name along with the re...

Page 87: ...red on the Switch An entry of 0 will denote the CIST Common and Internal Spanning Tree internalCost This parameter is set to represent the relative cost of forwarding packets to specified ports when a...

Page 88: ...d show stp STP Status Enabled STP Version STP Compatible Max Age 20 Hello Time 2 Forward Delay 15 Max Age 20 TX Hold Count 3 Forwarding BPDU Enabled Loopback Detection Enabled LBD Recover Time 60 DES...

Page 89: ...slot number 1 port 3 2 4 specifies slot number 2 port 4 1 3 2 4 specifies all of the ports between slot 1 port 3 and slot 2 port 4 in numerical order Restrictions None Example usage To show stp ports...

Page 90: ...al Status Designated Root Bridge 32766 00 90 27 39 78 E2 External Root Cost 200012 Regional Root Bridge 32768 00 53 13 1A 33 24 Internal Root Cost 0 Designated Bridge 32768 00 50 BA 71 20 D6 Root Port...

Page 91: ...is Ethernet Switch CLI Manual DES 6500 4 show stp mst_config_id Command show stp mst_config_id Current MST Configuration Identification Configuration Name 00 53 13 1A 33 24 Revision Level 0 MSTI ID Vi...

Page 92: ...tic aging_time show ipfdb ipaddr Each command is listed in detail in the following sections create fdb Purpose Used to create a static entry to the unicast MAC address forwarding table database Syntax...

Page 93: ...forwarding table Restrictions Only administrator level users can issue this command Example usage To create multicast MAC forwarding DES 6500 4 create multicast_fdb default 01 00 00 00 00 01 Command c...

Page 94: ...lticast MAC forwarding DES 6500 4 config multicast_fdb default 01 00 00 00 00 01 add 1 1 1 5 Command config multicast_fdb default 01 00 00 00 00 01 add 1 1 1 5 Success DES 6500 4 delete multicast_fdb...

Page 95: ...ckets whose source addresses cannot be found in the forwarding table in which case the Switch will broadcast the packet to all ports negating many of the benefits of having a switch Parameters sec 10...

Page 96: ...iption This command is used to clear dynamically learned entries to the Switch s forwarding database Parameters vlan vlan_name 32 The name of the VLAN on which the MAC address resides port port Enter...

Page 97: ...2 26 Mode Static Total Entries 1 DES 6500 4 show fdb Purpose Used to display the current unicast MAC address forwarding database Syntax show fdb port port vlan vlan_name 32 mac_address macaddr static...

Page 98: ...Dynamic 1 default 00 00 E2 6B BC F6 1 12 Dynamic 1 default 00 00 E2 7F 6B 53 1 12 Dynamic 1 default 00 00 E2 82 7D 90 1 12 Dynamic 1 default 00 00 F8 7C 1C 29 1 12 Dynamic 1 default 00 01 02 03 04 00...

Page 99: ...1 13 Dynamic System 10 0 34 1 1 13 Dynamic System 10 0 51 1 1 13 Dynamic System 10 0 58 4 1 13 Dynamic System 10 0 85 168 1 13 Dynamic System 10 1 1 1 1 13 Dynamic System 10 1 1 99 1 13 Dynamic System...

Page 100: ...If this field times out and the packet storm continues the port will be placed in a Shutdown Forever mode which will produce a warning message to be sent to the Trap Receiver Once in Shutdown Forever...

Page 101: ...e is resolved shutdown Utilizes the Switch s software Traffic Control mechanism to determine the Packet Storm occurring Once detected the port will deny all incoming traffic to the port except STP BPD...

Page 102: ...eshold 1 countdown 10 time_interval 10 Success DES 6500 4 config traffic control_recover Purpose Used to manually recover ports from a shutdown forever state Syntax config traffic control_recover port...

Page 103: ...d by the Switch storm _occurred A notification will be generated and sent when a packet storm has been detected by the Switch storm_cleared A notification will be generated and sent when a packet stor...

Page 104: ...pecifies switch number 2 port 4 1 3 2 4 specifies all of the ports between switch 1 port 3 and switch 2 port 4 in numerical order Restrictions None Example usage To display traffic control setting DES...

Page 105: ...in the higher hardware classes of service are transmitted first Only when these classes are empty are packets of lower hardware class allowed to be transmitted Higher priority tagged packets always r...

Page 106: ...ed The port list is specified by listing the lowest slot number and the beginning port number on that slot separated by a colon Then the highest slot number and the highest port number of the range al...

Page 107: ...ys the current bandwidth control configuration on the Switch on a port by port basis Parameters portlist Specifies a range of ports to be displayed The port list is specified by listing the lowest slo...

Page 108: ...xt highest priority class will empty before proceeding to the next class and so on Lower priority classes are allowed to transmit only if the higher priority classes in the buffer are completely empti...

Page 109: ...ing Parameters class_id 0 6 Specifies to which of the seven hardware priority classes the config scheduling command will be applied The seven priority classes are identified by number from 0 to 6 with...

Page 110: ...Queue DES 6500 4 show scheduling Command show scheduling QOS Output Scheduling MAX Packets Class 0 1 Class 1 0 Class 2 3 Class 3 4 Class 4 5 Class 5 6 Class 6 7 DES 6500 4 config 802 1p user_priority...

Page 111: ...1p user_priority 1 3 Command config 802 1p user_priority 1 3 Success DES 6500 4 show 802 1p user_priority Purpose Used to display the current 802 1p user priority tags to hardware priority class of s...

Page 112: ...priority 0 7 Specifies the 802 1p priority tag that an untagged incoming packet will be given before being forwarded to its destination Restrictions Only administrator level users can issue this comma...

Page 113: ...the priority classes of service of the QoS function The Switch contains seven hardware priority classes of service Incoming packets must be mapped to one of these seven hardware priority classes of s...

Page 114: ...ue this command Example usage To configure the traffic scheduling mechanism for each COS queue DES 6500 4 config scheduling_mechanism strict Command config scheduling_mechanism strict Success DES 6500...

Page 115: ...ileges Example Usage To enable HOL prevention DES 6500 4 enable hol_prevention Command enable hol_prevention Success DES 6500 4 disable hol_prevention Purpose Used to disable HOL prevention Syntax dis...

Page 116: ...evention Syntax show hol_prevention Description The show hol_prevention command displays the Head of Line prevention state Parameters None Restrictions None Example Usage To view the HOL prevention st...

Page 117: ...sting the lowest slot number and the beginning port number on that slot separated by a colon For example 1 3 specifies slot number 1 port 3 2 4 specifies slot number 2 port 4 add source ports The port...

Page 118: ...ng the portlist portlist This specifies a range of ports that will be mirrored That is the range of ports in which all traffic will be copied and sent to the Target port The port list is specified by...

Page 119: ...age To enable mirroring configurations DES 6500 4 enable mirror Command enable mirror Success DES 6500 4 disable mirror Purpose Used to disable a previously entered port mirroring configuration Syntax...

Page 120: ...the Switch Syntax show mirror Description This command displays the current port mirroring configuration on the Switch Parameters None Restrictions None Example usage To display mirroring configurati...

Page 121: ...protocol ipx802dot3 protocol ipx802dot2 protocol ipxSnap protocol ipxEthernet2 protocol appleTalk protocol decLat protocol sna802dot2 protocol snaEthernet2 protocol netBios protocol xns protocol vines...

Page 122: ...s concurrent with this protocol This packet header information is defined by Novell NetWare 802 3 IPX Internet Packet Exchange protocol ipx802dot2 Using this parameter will instruct the Switch to forw...

Page 123: ...will instruct the Switch to forward packets to this VLAN if the tag in the packet header is concurrent with this protocol This packet header information is defined by the Internet Protocol Version 6 I...

Page 124: ...To create a VLAN v1 tag 2 DES 6500 4 create vlan v1 tag 2 Command create vlan v1 tag 2 Success DES 6500 4 delete vlan Purpose Used to delete a previously configured VLAN on the Switch Syntax delete v...

Page 125: ...2 4 specifies slot number 2 port 4 1 3 2 4 specifies all of the ports between slot 1 port 3 and slot 2 port 4 in numerical order advertisement enabled disabled Enables or disables GVRP on the specifie...

Page 126: ...eginning port number on that slot separated by a colon Then the highest slot number and the highest port number of the range also separated by a colon are specified The beginning and end of the port l...

Page 127: ...e GVRP configuration on the Switch Parameters None Restrictions Only administrator level users can issue this command Example usage To enable the generic VLAN Registration Protocol GVRP DES 6500 4 ena...

Page 128: ...e 32 The VLAN name of the VLAN for which to display a summary of settings Restrictions None Example usage To display the Switch s current VLAN settings DES 6500 4 show vlan Command show vlan VID 1 VLA...

Page 129: ...ifies all of the ports between slot 1 port 3 and slot 2 port 4 in numerical order Restrictions None Example usage To display GVRP port status DES 6500 4 show gvrp Command show gvrp Global GVRP Disable...

Page 130: ...on This command will create a link aggregation group with a unique identifier Parameters value 1 32 Specifies the group ID The Switch allows up to 32 link aggregation groups to be configured The group...

Page 131: ...ifies each of the groups Restrictions Only administrator level users can issue this command Used to delete a previously configured link aggregation group Syntax Description Example usage To delete lin...

Page 132: ...ified by listing the lowest slot number and the beginning port number on that slot separated by a colon Then the highest slot number and the highest port number of the range also separated by a colon...

Page 133: ...d examine the MAC source address mac_destination Indicates that the Switch should examine the MAC destination address mac_source_dest Indicates that the Switch should examine the MAC source and destin...

Page 134: ...value 1 32 Specifies the group ID The Switch allows up to 32 link aggregation groups to be configured The group number identifies each of the groups algorithm Specify to view the algorithm employed of...

Page 135: ...erical order mode Select the mode to determine if LACP ports will initially send LACP control frames Restrictions Only administrator level users can issue this command active Active LACP ports are cap...

Page 136: ...on Then the highest slot number and the highest port number of the range also separated by a colon are specified The beginning and end of the port list range are separated by a dash For example 1 3 sp...

Page 137: ...ondary that set IP interface cannot be changed to another VLAN Multiple IP interfaces per VLAN is a valuable tool for network administrators requiring a multitude of IP addresses but configuring the S...

Page 138: ...create ipif p1 ipaddress 10 1 1 1 Trinity state enabled Command create ipif p1 ipaddress 10 1 1 1 Trinity state enabled Success DES 6500 4 To create the secondary IP interface s1 on VLAN Trinity DES...

Page 139: ...tions Only administrator level users can issue this command Example usage To configure the IP interface System DES 6500 4 config ipif System ipaddress 10 48 74 122 8 Success Command config ipif System...

Page 140: ...on the Switch Restrictions None Example usage Command disable ipif s2 To disable the IP interface named s2 DES 6500 4 disable ipif s2 Success DES 6500 4 delete ipif Purpose Used to delete the configu...

Page 141: ...ons None Syntax Description Example usage To display IP interface settings DES 6500 4 show ipif System Command show ipif System IP Interface Settings Interface Name System Secondary FALSE IP Address 1...

Page 142: ...ns of IGMP the host would receive all packets sent to the multicast group Now a host will receive packets only from a specific source or sources This is done through the implementation of include and...

Page 143: ...specific queries sent in response to Leave Group messages and is also the amount of time between Group Specific Query and Group and Source specific query messages The default is 1 second state enable...

Page 144: ...12 Description This command will display the IGMP group configuration Parameters group group The ID of the multicast group to be displayed ipif_name 12 The name of the IP interface of which the IGMP...

Page 145: ...porter IP Querier IP Expire System 224 0 0 2 10 42 73 111 10 48 74 122 260 System 224 0 0 9 10 20 53 1 10 48 74 122 260 System 224 0 1 24 10 18 1 3 10 48 74 122 259 System 224 0 1 41 10 1 43 252 10 48...

Page 146: ...den show igmp_snooping vlan vlan_name 32 show igmp_snooping group vlan vlan_name 32 show igmp_snooping forwarding vlan vlan_name 32 Each command is listed in detail in the following sections config ig...

Page 147: ...the time in seconds between general query transmissions the maximum time in seconds to wait for reports from members and the permitted packet loss that guarantees IGMP snooping Parameters vlan_name 32...

Page 148: ...takes a router to detect the loss of the last member of a group state enabled disabled Allows the Switch to be specified as an IGMP Querier or Non querier Restrictions Only administrator level users...

Page 149: ...rd all multicast traffic to any IP router Restrictions Only administrator level users can issue this command Example usage To disable IGMP snooping on the Switch DES 6500 4 disable igmp_snooping Comma...

Page 150: ...add delete portlist Description This command allows you to designate a port or range of ports as being forbidden to multicast enabled routers This will ensure that multicast packets will not be forwa...

Page 151: ...s static Displays router ports that have been statically configured dynamic Displays router ports that have been dynamically configured forbidden Displays router ports that have been labeled as forbid...

Page 152: ...rier State Disabled Querier Router Behavior Non Querier State Disabled VLAN Name vlan2 Query Interval 125 Max Response Time 10 Robustness Value 2 Last Member Query Interval 1 Host Timeout 260 Route Ti...

Page 153: ...up 236 54 63 75 MAC address 01 00 5E 36 3F 4B Reports 1 Port Member 1 16 2 7 VLAN Name default Multicast group 239 255 255 250 MAC address 01 00 5E 7F FF FA Port Member 1 16 2 7 VLAN Name default Mult...

Page 154: ...view the IGMP snooping forwarding table for VLAN Trinity DES 6500 4 show igmp_snooping forwarding vlan Trinity Command show igmp_snooping forwarding vlan Trinity VLAN Name Trinity Port Member 1 17 Mul...

Page 155: ...on a device other than the Switch called a server host and it must include usernames and passwords for authentication When the user is prompted by the Switch to enter usernames and passwords for auth...

Page 156: ...te authen_enable method_list_name string 15 config authen_enable default method_list_name string 15 method tacacs xtacacs tacacs radius server_group string 15 local_enable none delete authen_enable me...

Page 157: ...upon login Parameters None Restrictions Only administrator level users can issue this command Syntax Description Example usage To enable the system access authentication policy DES 6500 4 enable auth...

Page 158: ...hen_policy Command show authen_policy Authentication Policy Enabled DES 6500 4 create authen_login method_list_name Purpose Used to create a user defined method list of authentication methods for user...

Page 159: ...level will be dependant on the local account privilege configured on the Switch Successful login using any of these methods will give the user a user privilege only If the user wishes to upgrade his...

Page 160: ...m a remote XTACACS server tacacs Adding this parameter will require the user to be authenticated using the TACACS protocol from a remote TACACS server radius Adding this parameter will require the use...

Page 161: ...6500 4 delete authen_login method_list_name Trinity Command delete authen_login method_list_name Trinity Success DES 6500 4 show authen_login Purpose Used to display a previously configured user defi...

Page 162: ...omment Darren 1 tacacs Built in Group default 1 radius Built in Group GoHabs 1 Newfie User defined Group Trinity 1 local Keyword DES 6500 4 create authen_enable method_list_name Purpose Used to create...

Page 163: ...ver group If no verification is found the Switch will send an authentication request to the second tacacs host in the server group and so on until the list is exhausted At that point the Switch will r...

Page 164: ...user to be authenticated using the TACACS protocol from a remote TACACS server radius Adding this parameter will require the user to be authenticated using the RADIUS protocol from a remote RADIUS se...

Page 165: ...Example usage To delete the user defined method list Permit DES 6500 4 delete authen_enable method_list_name Permit Command delete authen_enable method_list_name Permit Success DES 6500 4 show authen...

Page 166: ...ons None Example usage To display all method lists for promoting user level privileges to administrator level privileges DES 6500 4 show authen_enable all Command show authen_enable all Method List Na...

Page 167: ...method_list_name string 15 Use this parameter to configure an application for user authentication using a previously configured method list Enter a alphanumeric string of up to 15 characters to define...

Page 168: ...te message to the Switch More than one authentication protocol can be run on the same physical server host but remember that TACACS XTACACS TACACS and RADIUS are separate entities and are not compatib...

Page 169: ...6500 4 config authen server_host Purpose Used to configure a user defined authentication server host Syntax config authen server_host ipaddr protocol tacacs xtacacs tacacs radius port int 1 65535 key...

Page 170: ...is 5 seconds retransmit int 1 255 Enter the value in the retransmit field to change how many times the device will resend an authentication request when the TACACS XTACACS or RADIUS server does not re...

Page 171: ...tax show authen server_host This command is used to view user defined authentication server hosts previously created on the Switch The following parameters are displayed IP address The IP address of t...

Page 172: ...eated server group Restrictions Only administrator level users can issue this command Example usage To create the server group group_1 DES 6500 4 create authen server_group group_1 Command create auth...

Page 173: ...rotocol on the Switch Only server hosts utilizing the TACACS protocol may be added to this group radius Use this parameter to utilize the built in RADIUS server protocol on the Switch Only server host...

Page 174: ...rver_group Purpose Used to view authentication server groups on the Switch Syntax show authen server_group string 15 Description This command will display authentication server groups currently config...

Page 175: ...Parameters response_timeout int 0 255 Set the time in seconds the Switch will wait for a response of authentication from the user attempting to log in from the command line interface or telnet interfa...

Page 176: ...3 attempts Restrictions Only administrator level users can issue this command Example usage To set the maximum number of authentication attempts at 5 DES 6500 4 config authen parameter attempt 5 Comm...

Page 177: ...witch or no authentication none Because XTACACS and TACACS do not support the enable function the user must create a special account on the server host which has the username enable and a password con...

Page 178: ...han 15 characters and finally prompted to enter the new password again to confirm See the example below Restrictions Only administrator level users can issue this command Example usage To configure th...

Page 179: ...thentication Configure the encryption algorithm that SSH will use to encrypt and decrypt messages sent between the SSH Client and the SSH Server Finally enable SSH on the Switch using the enable ssh c...

Page 180: ...h Purpose Used to disable SSH Syntax disable ssh Description This command is used to disable SSH on the Switch Parameters None Restrictions Only administrator level users can issue this command Usage...

Page 181: ...H program previously installed enable disable This allows you to enable or disable the SSH authentication mode on the Switch Restrictions Only administrator level users can issue this command Example...

Page 182: ...uthentication After the maximum number of attempts is exceeded the Switch will be disconnected and the user must reconnect to the Switch to attempt another login rekey 10min 30min 60min never Sets the...

Page 183: ...nistrator may choose between Restrictions Only administrator level users can issue this command Hostbased This parameter should be chosen to use a remote SSH server for authentication purposes Choosin...

Page 184: ...r account on the Switch For information concerning configuring a user account please see the section of this manual entitled Basic Switch Commands and then the command create user account config ssh a...

Page 185: ...ter will enable or disable the MD5 Message Digest encryption algorithm SHA1 This parameter will enable or disable the Secure Hash Algorithm encryption DSA This parameter will enable or disable the Dig...

Page 186: ...DES 6500 4 show ssh algorithm Command show ssh algorithm Encryption Algorithm 3DES Enable AES128 Enable AES192 Enable AES256 Enable ARC4 Enable Blowfish Enable Cast128 Enable Twofish128 Enable Twofish...

Page 187: ...e Switch supports the 3DES_EDE encryption code defined by the Data Encryption Standard DES to create the encrypted text 3 Hash Algorithm This part of the ciphersuite allows the user to choose a messag...

Page 188: ...t Enabling SSL with a ciphersuite will not enable the SSL status on the Switch Restrictions Only administrator level users can issue this command RSA_with_RC4_128_MD5 This ciphersuite combines the RSA...

Page 189: ...er may choose any combination of the following Restrictions Only administrator level users can issue this command RSA_with_RC4_128_MD5 This ciphersuite combines the RSA key exchange stream cipher RC4...

Page 190: ...d 86400 seconds to specify the total time an SSL key exchange ID stays valid before the SSL module will require a new full SSL negotiation for connection The default cache timeout is 600 seconds Restr...

Page 191: ...HE_DSS_WITH_3DES_EDE_CBC_SHA 0x0013 Enabled RSA_EXPORT_WITH_RC4_40_MD5 0x0003 Enabled DES 6500 4 Example usage To view certificate file information on the Switch DES 6500 4 show ssl certificate Comman...

Page 192: ...ename path_filename 64 Enter the path and the filename of the key exchange file to download Restrictions Only administrator level users can issue this command Example usage To download a certificate f...

Page 193: ...rts portlist all default direction both in port_control force_unauth auto force_auth quiet_period sec 0 65535 tx_period sec 1 65535 supp_timeout sec 1 65535 server_timeout sec 1 65535 max_req value 1...

Page 194: ...ters None Only administrator level users can issue this command Restrictions Example usage To enable 802 1x switch wide DES 6500 4 enable 802 1x Command enable 802 1x Success DES 6500 4 disable 802 1x...

Page 195: ...dtremblett Command create 802 1x user dtremblett Enter a case sensitive new password Enter the new password again for confirmation Success DES 6500 4 show 802 1x user Purpose Used to display the 802...

Page 196: ...on the Switch The following details what is displayed 802 1x Enabled Disabled Shows the current status of 802 1x functions on the Switch Port number Shows the physical port number on the Switch OpenCt...

Page 197: ...s The port list is specified by listing the lowest slot number and the beginning port number on that slot separated by a colon Then the highest slot number and the highest port number of the range als...

Page 198: ...ent state of the Backend Authenticator Parameters ports portlist Specifies a range of ports The port list is specified by listing the lowest slot number and the beginning port number on that slot sepa...

Page 199: ...x auth_state Command show 802 1x auth_state 4 7 10 13 Port number 1 1 Index MAC Address Auth PAE State Backend State Port Status 1 00 08 02 4E DA FA Authenticated Idle Authorized 2 3 5 6 8 9 11 12 14...

Page 200: ...hat slot separated by a colon Then the highest slot number and the highest port number of the range also separated by a colon are specified The beginning and end of the port list range are separated b...

Page 201: ...r 2 port 4 1 3 2 4 specifies all of the ports between slot 1 port 3 and slot 2 port 4 in numerical order all Specifies all of the ports on the Switch default Returns all of the ports in the specified...

Page 202: ...rts 1 20 of switch 1 DES 6500 4 config 802 1x auth_parameter ports 1 1 1 20 direction both Command config 802 1x auth_parameter ports 1 1 1 20 direction both Success DES 6500 4 config 802 1x auth_prot...

Page 203: ...lowest slot number and the beginning port number on that slot separated by a colon Then the highest slot number and the highest port number of the range also separated by a colon are specified The be...

Page 204: ...ber on that slot separated by a colon Then the highest slot number and the highest port number of the range also separated by a colon are specified The beginning and end of the port list range are sep...

Page 205: ...tion requests The default is 1812 acct_port udp_port_number The UDP port number for accounting requests The default is 1813 Restrictions Only administrator level users can issue this command passwd 32...

Page 206: ...es that a password and encryption key will be used between the Switch and the RADIUS server auth_port udp_port_number The UDP port number for authentication requests The default is 1812 acct_port udp_...

Page 207: ...rently configured on the Switch Parameters None Restrictions None Example usage To view the current RADIUS accounting client DES 6500 4 show acct_client Command show acct_client radiusAcctClient radiu...

Page 208: ...radiusAuthClientMalformedAccessResponses 0 radiusAuthClientBadAuthenticators 0 radiusAuthClientPendingRequests 0 radiusAuthClientTimeouts 0 radiusAuthClientUnknownTypes 0 radiusAuthClientPacketsDroppe...

Page 209: ...BackendAuthSuccesses 0 CTRL C ESC q Quit SPACE n Next Page Enter Next Entry a All show auth_session_statistics Purpose Used to display the current authentication session statistics Syntax show auth_se...

Page 210: ...s portlist all Description The show auth_statistics command is used to display the current authentication statistics of the Switch on a per port basis Parameters ports portlist Specifies a range of po...

Page 211: ...Port number 1 16 EapolFramesRx 0 EapolFramesTx 0 EapolStartFramesRx 0 EapolReqIdFramesTx 0 EapolLogoffFramesRx 0 EapolReqFramesTx 0 EapolRespIdFramesRx 0 EapolRespFramesRx 0 InvalidEapolFramesRx 0 Ea...

Page 212: ...lue 0 255 code value 0 255 igmp type value 0 255 tcp src_port value 0 65535 dst_port value 0 65535 urg ack psh rst syn fin udp src_port value 0 65535 dst_port value 0 65535 protocol_id value 0 255 use...

Page 213: ...d For example if you want to deny all traffic to the subnet 10 42 73 0 to 10 42 73 255 you must first create an access profile that instructs the Switch to examine all of the relevant fields of each f...

Page 214: ...ple used above config access_profile profile_id 1 add access_id 1 ip source_ip 10 42 73 1 port 7 deny a single access rule was created This rule will subtract one rule available for the port group 1 8...

Page 215: ...rofile_id value 1 8 packet_content_mask offset_0 15 hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff offset_16 31 hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff he...

Page 216: ...8 Specifies an index number between 1 and 8 that will identify the access profile being created with this command ethernet Specifies that the Switch will examine the layer 2 part of each packet header...

Page 217: ...fferent rules may be configured for the Ethernet access profile ethernet Specifies that the Switch will look only into the layer 2 part of each packet to determine if it is to be filtered or forwarded...

Page 218: ...Enter this parameter to re write the 802 1p default priority of a packet to the value entered in the Priority field which meets the criteria specified previously in this command before forwarding it...

Page 219: ...ontrol Message Protocol ICMP field in each frame s header type Specifies that the Switch will examine each frame s ICMP Type field code Specifies that the Switch will examine each frame s ICMP Code fi...

Page 220: ...ile profile_id value 1 8 add access_id value 1 65535 ip vlan vlan_name 32 source_ip ipaddr destination_ip ipaddr dscp value 0 63 icmp type value 0 255 code value 0 255 igmp type value 0 255 tcp src_po...

Page 221: ...gmp Specifies that the Switch will examine the Internet Group Management Protocol IGMP field within each packet type value 0 255 Specifies that the access profile will apply to packets that have this...

Page 222: ...e IP profile Restrictions Only administrator level users can issue this command permit Specifies that packets that match the access profile are permitted to be forwarded by the Switch replace_dscp val...

Page 223: ...rward it based on the user s configuration The user will specify which bytes to examine by entering them into the command in hex form and then selecting whether to filter or forward them using the con...

Page 224: ...y entering them in hex form offset from the first byte of the packet Parameters profile_id value 1 8 Enter an integer between 1 and 8 that is used to identify the access profile that will be configure...

Page 225: ...e 0 7 This parameter is specified to re write the 802 1p default priority previously set in the Switch which is used to determine the CoS queue to which packets are forwarded to Once this field is spe...

Page 226: ...filtering based on the rules configured in the config access_profile command for IPv6 IPv6 packets may be identified by the following Restrictions Only administrator level users can issue this command...

Page 227: ...pecifies that the Switch will look into the IPv6 fields in each packet with emphasis on one or more of the following fields port portlist The access profile for Ethernet may be defined for each port o...

Page 228: ...om the IPv6 profile Up to 65535 rules may be specified for the IPv6 access profile Restrictions Only administrator level users can issue this command Example usage To configure a previously created ac...

Page 229: ...ofile that will be viewed with this command This value is assigned to the access profile when it is created with the create access_profile command Entering this command without the profile_id paramete...

Page 230: ...f flag_mask all urg ack psh rst syn fin udp src_port_mask hex 0x0 0xffff dst_port_mask hex 0x0 0xffff protocol_id user_mask hex 0x0 0xffffffff packet_content_mask offset 0 15 hex 0x0 0xffffffff hex 0x...

Page 231: ...frame s ICMP Code field src_port_mask hex 0x0 0xffff Specifies a UDP port mask for the source port igmp Specifies that the switch will examine each frame s Internet Group Management Protocol IGMP fie...

Page 232: ...in hex form to mask the packet from byte 64 to byte 79 Restrictions Only administrator level users can issue this command Example usage To create a cpu access profile DES 6500 4 create cpu access_pro...

Page 233: ..._0 15 hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff offset_16 31 hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff hex 0x0 0xffffffff offset_32 47 hex 0x0 0xffffff...

Page 234: ...ol Message Protocol ICMP field within each packet type value 0 255 Specifies that the access profile will apply to this ICMP type value code value 0 255 Specifies that the access profile will apply to...

Page 235: ...matching the criteria configured with command will either be permitted entry to the cpu or denied entry to the cpu user_define_mask hex 0x0 0xffffffff Specifies that the rule applies to the IP protoc...

Page 236: ...g Purpose Used to disable CPU interface filtering on the Switch Syntax disable cpu_interface_filtering Description This command is used in conjunction with the enable cpu_interface_filtering command a...

Page 237: ...ion The show cpu_access_profile command is used view the current CPU interface filtering entries set on the Switch Parameters profile_id value 1 3 The user may select a profile to view the parameters...

Page 238: ...g all unnecessary broadcast IP packets even if the high CPU utilization is not caused by the high reception rate of broadcast IP packets b When fuzzy is chosen the Switch will minimize the IP packet b...

Page 239: ...er may select Restrictions Only administrator level users can issue this command rising value 20 100 The user can set a percentage value of the rising CPU utilization which will trigger the Safeguard...

Page 240: ...used to show the Safeguard Engine information currently set on the Switch Parameters None Restrictions None Example usage To display current Safeguard Engine parameters DES 6500 4 show safeguard_engin...

Page 241: ...fied by listing the lowest slot number and the beginning port number on that slot separated by a colon Then the highest slot number and the highest port number of the range also separated by a colon a...

Page 242: ...are separated by a dash For example 1 3 specifies slot number 1 port 3 2 4 specifies slot number 2 port 4 1 3 2 4 specifies all of the ports between slot 1 port 3 and slot 2 port 4 in numerical order...

Page 243: ...tches in a particular SIM group must be in the same IP subnet broadcast domain Members of a SIM group cannot cross a router A SIM group accepts up to 33 switches numbered 0 32 including the Commander...

Page 244: ...will decode the packet from the administrator modify some data and then send it to the MS After execution the CS may receive a response packet from the MS which it will encode and send it back to the...

Page 245: ...the Switch DES 6500 4 enable sim Command enable sim Success DES 6500 4 disable sim Purpose Used to disable Single IP Management SIM on the Switch Syntax disable sim Description This command will disa...

Page 246: ...old discovery results before dropping it or utilizing it Parameters candidates candidate_id 1 100 Entering this parameter will display information concerning candidates of the SIM group To view a spec...

Page 247: ...m candidates Command show sim candidates ID MAC Address Platform Hold Firmware Device Name Capability Time Version 1 00 01 02 03 04 00 DGS 3324SR L3 Switch 40 4 00 B13 The Man 2 00 55 55 00 55 00 DGS...

Page 248: ...efault ID MAC Address Platform Hold Firmware Device Name Capability Time Version 2 00 55 55 00 55 00 DXS 3350 L3 Switch 140 4 00 B13 Enrico ID MAC Address Platform Hold Firmware Device Name 1 00 01 02...

Page 249: ...DES 6500 4 Command reconfig member_id 2 config sim_group Purpose Used to add candidates and delete members from the SIM group Syntax config sim_group add candidate_id 1 100 password delete member_id 1...

Page 250: ...ches connected to it Ex MS CaS The user may set the discovery protocol interval from 30 to 90 seconds hold time sec 100 255 Using this parameter the user may set the time in seconds the Switch will ho...

Page 251: ...120 Command config sim commander hold_time 120 Success DES 6500 4 To transfer the commander switch to be a candidate DES 6500 4 config sim candidate Command config sim candidate Success DES 6500 4 To...

Page 252: ...TFTP server members Enter this parameter to specify the members to which to download firmware or switch configuration files The user may specify a member or members by adding one of the following Rest...

Page 253: ...This command will upload a configuration file to a TFTP server from a specified member of a SIM group Parameters ipaddr Enter the IP address of the TFTP server to which to upload a configuration file...

Page 254: ...mm e_date end_date 1 31 e_mth end_mth 1 12 e_time end_time hh mm offset 30 60 90 120 show time Each command is listed in detail in the following sections config sntp Purpose Used to setup SNTP servic...

Page 255: ...tion Restrictions Example usage To display SNTP configuration information DES 6500 4 show sntp Command show sntp Current Time Source System Clock SNTP Disabled SNTP Primary Server 10 1 1 1 SNTP Second...

Page 256: ...time date date ddmthyyyy time hh mm ss Description This will configure the system time and date settings These will be overridden if SNTP is configured and enabled Parameters date Express the date usi...

Page 257: ...adjust the time zone Restrictions Only administrator level users can issue this command Example usage To configure time zone settings DES 6500 4 config time_zone operator hour 2 min 30 Command config...

Page 258: ...which DST ends s_mth Configure the month in which DST begins s_time Configure the time of day to begin DST e_time Configure the time of day to end DST s_date Configure the specific date day of the mon...

Page 259: ...Command config dst repeating s_week 2 s_day tue s_mth 4 s_time 15 00 e_week 2 e_day wed e_mth 10 e_time 15 30 offset 30 Success DES 6500 4 show time Purpose Used to display the current time settings...

Page 260: ...IP address and the corresponding MAC address into the Switch s ARP table Parameters ipaddr The IP address of the end node or station macaddr The MAC address corresponding to the IP address above Rest...

Page 261: ...alue 0 65535 This command sets the maximum amount of time in minutes that an ARP entry can remain in the Switch s ARP table without being accessed before it is dropped from the table time value 0 6553...

Page 262: ...C8 48 DF AB Dynamic System 10 11 22 145 00 80 C8 93 05 6B Dynamic System 10 11 94 10 00 10 83 F9 37 6E Dynamic System 10 14 82 24 00 50 BA 90 37 10 Dynamic System 10 15 1 60 00 80 C8 17 42 55 Dynamic...

Page 263: ...4 4E Dynamic Total Entries 1 DES 6500 4 clear arptable Purpose Used to remove all dynamic ARP table entries Syntax clear arptable Description This command is used to remove dynamic ARP table entries f...

Page 264: ...to every VLAN and therefore IP interface on the Switch VRRP routers within the same VRRP group must be consistent in configuration settings for this protocol to function optimally The VRRP commands in...

Page 265: ...VRRP function on the Switch Parameters ping Adding this parameter to the command will stop the virtual IP address from being pinged from other host end nodes to verify connectivity This will only disa...

Page 266: ...s router will become the backup router VRRP routers that are assigned the same priority value will elect the highest physical IP address as the Master router The default value is 100 The value of 255...

Page 267: ...rs vrid vrid 1 255 Enter a value between 1 and 255 that uniquely identifies the VRRP group to configure All routers participating in this group must be assigned the same vrid value This value MUST be...

Page 268: ...se This entry will determine the behavior of backup routers within the VRRP group by controlling whether a higher priority backup router will preempt a lower priority Master router A true entry along...

Page 269: ...re the user to set an alphanumeric authentication string of no more than 16 characters to generate a MD5 message digest for authentication in comparing VRRP messages received by the router If the two...

Page 270: ...ime 2754089 centi secs Total Entries 1 DES 6500 4 delete vrrp Purpose Used to delete a vrrp entry from the switch Syntax delete vrrp vrid vrid 1 255 ipif ipif_name 12 Description This command is used...

Page 271: ...eters network_address IP address and netmask of the IP interface that is the destination of the route The address and mask information can be specified using the traditional format for example 10 1 2...

Page 272: ...delete an IP route entry from the Switch s IP routing table Syntax delete iproute network_address ipaddr primary backup network_address IP address and netmask of the IP interface that is the destinati...

Page 273: ...rent IP routing table Syntax show iproute network_address static rip ospf Description This command will display the Switch s current IP routing table Parameters network_address IP address and netmask...

Page 274: ...of RIP routes to OSPF routes on the Switch Syntax create route redistribute dst ospf src static rip local mettype 1 2 metric value 0 16777214 Description This command will redistribute routing informa...

Page 275: ...to all routers on the network that are running OSPF or RIP Routing information entered into the Static Routing Table on the local xStack DES 6500 switch is also redistributed Parameters src all intern...

Page 276: ...all metric 2 Success DES 6500 4 config route redistribute dst ospf src Purpose Used configure route redistribution settings for the exchange of RIP routes to OSPF routes on the Switch config route re...

Page 277: ...inations are mettype 1 or mettype 2 The metric value 0 above will be redistributed in OSPF as the metric 20 Example Usage To configure route redistributions DES 6500 4 config route redistribute dst os...

Page 278: ...plies only when the destination field is OSPF inter e1 Specifies the internal protocol AND type 1 of the external protocol inter e2 Specifies the internal protocol AND type 2 of the external protocol...

Page 279: ...cription Displays the current route redistribution settings on the Switch Parameters src rip static local ospf Allows the selection of the routing protocol on the source device The user may choose bet...

Page 280: ...ed in detail in the following sections config dhcp_relay Purpose Used to configure the DHCP BOOTP relay feature of the Switch Syntax config dhcp_relay hops value 1 16 time sec 0 65535 Description This...

Page 281: ...cp_relay add ipif System 10 58 44 6 DES 6500 4 config dhcp_relay add ipif System 10 58 44 6 Success DES 6500 4 config dhcp_relay delete ipif Purpose Used to delete one or all IP destination addresses...

Page 282: ...y agent removes the option 82 field and forwards the packet to the switch port that is connected to the DHCP client that sent the DHCP request disable If disabled the relay agent will not insert and r...

Page 283: ...e dropped if the option 82 field already exists in the packet received from the DHCP client keep The option 82 field will be retained if the option 82 field already exists in the packet received from...

Page 284: ...r 2 Server 3 Server 4 DES 6500 4 Example usage To show a single IP destination of the DHCP relay configuration DES 6500 4 show dhcp_relay ipif System Command show dhcp_relay ipif System Interface Serv...

Page 285: ...n the switch Syntax disable dhcp_relay Description This command is used to disable the DHCP BOOTP relay function on the switch Parameters None Restrictions Only administrator level users can issue thi...

Page 286: ...32 ipaddr Description This command is used to configure the DNS relay function on the Switch Parameters primary Indicates that the IP address below is the address of the primary DNS server secondary I...

Page 287: ...to enable DNS relay Syntax enable dnsr cache static Description This command is used in combination with the disable dnsr command below to enable and disable DNS Relay on the Switch cache This parame...

Page 288: ...iption This command is used in combination with the enable dnsr command above to enable and disable DNS Relay on the Switch Parameters cache This parameter will allow the user to disable the cache loo...

Page 289: ...d is used to display the current DNS relay status Parameters static Allows the display of only the static entries into the DNS relay table If this parameter is omitted the entire DNS relay table will...

Page 290: ...tch Parameters ipif_name 12 The name of the IP interface all To configure all RIP receiving mode for all IP interfaces authentication enabled disabled Enables or disables authentication for RIP on the...

Page 291: ...IP receive mode for the IP interface System DES 6500 4 config rip ipif System rx_mode v1_only Command config rip ipif System rx_mode v1_only Success DES 6500 4 enable rip Purpose Used to enable RIP Sy...

Page 292: ...nterface or for all IP interfaces Parameters ipif ipif_name 12 The name of the IP interface for which to display the RIP configuration and settings If this parameter is not specified the show rip comm...

Page 293: ...Parameters ipif ipif_name 12 The name of the IP interface for which DVMRP is to be configured all Specifies that DVMRP is to be configured for all IP interfaces on the Switch metric value 1 31 Allows...

Page 294: ...6500 4 enable dvmrp Purpose Used to enable DVMRP Syntax enable dvmrp Description This command in combination with the disable dvmrp command below to enable and disable DVMRP on the Switch Parameters N...

Page 295: ...be specified using the traditional format for example 10 1 2 3 255 0 0 0 or in CIDR format 10 1 2 3 8 Restrictions None Purpose Example Usage To display DVMRP routing table DES 6500 4 show dvmrp rout...

Page 296: ...ss Table Interface Neighbor Address Generation ID Expire Time System 10 2 1 123 2 250 Total Entries 1 DES 6500 4 show dvmrp nexthop Purpose Used to display the current DVMRP routing next hop table Syn...

Page 297: ...to display the current DVMRP settings on the Switch show dvmrp ipif_name 12 Description The command will display the current DVMRP routing table Parameters ipif_name 12 Adding this parameter will dis...

Page 298: ...IP interface being configured for PIM settings all Used to configure PIM settings for all IP interfaces hello sec 1 18724 The time in seconds between issuing hello packets to find neighboring routers...

Page 299: ...ly administrator level users can use this command Parameters None Restrictions Usage Example To enable PIM as previously configured on the Switch DES 6500 4 enable pim Command enable pim Success DES 6...

Page 300: ...g the traditional format or the CIDR format For example 10 1 2 3 255 255 0 0 or 10 2 3 4 16 If no parameters are specified all PIM neighbor router tables are displayed Restrictions None Example usage...

Page 301: ...To display PIM settings as configured on the Switch DES 6500 4 show pim Command show pim PIM Global State Disabled PIM DM Interface Table Hello Join Prune Interface IP Address Interval Interval State...

Page 302: ...network_address Description This command will display the current IP multicast forwarding cache Parameters group group The multicast group IP address ipaddress network_address The IP address and netma...

Page 303: ...st interface table For example if DVMRP is specified the table will display only those entries that are related to the DVMRP protocol Restrictions None Syntax inactive Specifying this parameter will d...

Page 304: ...ey table Parameters key_id 1 255 The MD5 key ID The user may enter a key ranging from 1 to 255 password An MD5 password of up to 16 bytes Restrictions Only administrator level users can issue this com...

Page 305: ...Only administrator level users can issue this command Usage Example The delete an entry in the MD5 key table DES 6500 4 delete md5 key 1 Command delete md5 key 1 Success DES 6500 4 show md5 Purpose Us...

Page 306: ...t_route ipaddr create ospf aggregation area_id network_address lsdb_type summary advertise enabled disabled delete ospf aggregation area_id network_address lsdb_type summary config ospf aggregation ar...

Page 307: ...spf router_id Purpose Used to configure the OSPF router ID Syntax config ospf router_id ipaddr Description This command is used to configure the OSPF router ID Parameters ipaddr The IP address of the...

Page 308: ...dministrator level users can issue this command Usage Example To disable OSPF on the Switch DES 6500 4 disable ospf Command disable ospf Success DES 6500 4 show ospf Purpose Used to display the curren...

Page 309: ...k DOWN 1 ip3 30 1 1 1 8 0 0 0 0 Disabled Link DOWN 1 Total Entries 3 OSPF Area Settings Area ID Type Stub Import Summary LSA Stub Default Cost 0 0 0 0 Normal None None 10 0 0 0 Normal None None 20 1 1...

Page 310: ...metric value 0 65535 The OSPF area cost between 0 and 65535 0 denotes that the value will be automatically assigned The default setting is 0 Restrictions Only administrator level users can issue this...

Page 311: ...e OSPF area stub default cost Restrictions Only administrator level users can issue this command Usage Example To configure an OSPF area s settings DES 6500 4 config ospf area 10 48 74 122 type stub s...

Page 312: ...tised Restrictions Only administrator level users can issue this command Usage Example To configure the OSPF host route settings DES 6500 4 create ospf host_route 10 48 74 122 area 10 1 1 1 metric 2 C...

Page 313: ...administrator level users can issue this command Purpose Usage Example To configure an OSPF host route DES 6500 4 config ospf host_route 10 48 74 122 area 10 1 1 1 metric 2 Command config ospf host_ro...

Page 314: ...sue this command Usage Example To create an OSPF area aggregation DES 6500 4 create ospf aggregation 10 1 1 1 10 48 76 122 16 lsdb_type summary advertise enable Command create ospf aggregation 10 1 1...

Page 315: ...of an IP address that uniquely identifies the network that corresponds to the OSPF Area lsdb_type summary Specifies the type of address aggregation advertise enabled disabled Allows for the advertise...

Page 316: ...router ipaddr type rtrlink netlink summary assummary asextlink Description This command will display the current OSPF Link State Database LSDB Parameters area_id area_id A 32 bit number in the form of...

Page 317: ...rpose Used to display the current OSPF neighbor router table Syntax show ospf neighbor ipaddr Description This command will display the current OSPF neighbor router table Parameters ipaddr The IP addr...

Page 318: ...dead_interval sec 1 65535 authentication none simple password 8 md5 key_id 1 255 metric value 1 65535 state enabled disabled Description This command is used to configure the OSPF interface settings P...

Page 319: ...ion based on md5 encryption A previously configured MD5 key ID 1 to 255 is required Usage Example To configure OSPF interface settings DES 6500 4 config ospf ipif System priority 2 hello_interval 15 m...

Page 320: ...OSPF cost of reaching the selected OSPF interface The default metric is 1 state enable disable Used to enable or disable this function Restrictions Only administrator level users can issue this comma...

Page 321: ...ill display the current OSPF settings for all OSPF interfaces on the Switch Parameters None Restrictions None Usage Example To display the current OSPF interface settings for all OSPF interfaces on th...

Page 322: ...terval Authorization Type and Authorization Key should be the same for all routers on the same network dead_interval sec 1 65535 Allows the specification of the length of time between the receipt of H...

Page 323: ...and Authorization Key should be the same for all routers on the same network dead_interval sec 1 65535 Allows the specification of the length of time between the receipt of Hello packets from a neigh...

Page 324: ...ommand Usage Example To delete an OSPF virtual interface from the Switch DES 6500 4 delete ospf virtual_link 10 1 12 20 1 1 1 Command delete ospf virtual_link 10 1 12 20 1 1 1 Success DES 6500 4 show...

Page 325: ...nual DES 6500 4 show ospf virtual_link Command show ospf virtual_link Virtual Interface Configuration Transit Virtual Hello Dead Authentication Link Area ID Neighbor Router Interval Interval Status 10...

Page 326: ...bo_frame disable jumbo_frame Each command is listed in detail in the following sections enable jumbo_frame Purpose Used to enable the jumbo frame function on the Switch Syntax enable jumbo_frame Descr...

Page 327: ...ES 6500 4 show jumbo_frame Purpose Used to show the status of the jumbo frame function on the Switch Syntax show jumbo_frame Description This command will show the status of the jumbo frame function o...

Page 328: ...Interface CLI Parameters command Entering the question mark with an appropriate command will list all the corresponding parameters for the specified command along with a brief description of the comm...

Page 329: ...lobal Configuration config stp instance_id config stp mst_config_id config stp mst_ports config stp ports config stp priority config stp version DES 6500 4 show command_history Purpose Used to display...

Page 330: ...40 Description This command is used to configure the command history Parameters value 1 40 The number of previously executed commands maintained in the buffer Up to 40 of the latest executed commands...

Page 331: ...maximum DES 6507 30W maximum DES 6509 20W maximum DES 6510 28W maximum DES 6512 20 724W maximum DC fans 4 built in 80 x 80 x 25 mm fans Operating Temperature 0 to 40 degrees Celsius Storage Temperatu...

Page 332: ...inecard 256MB on CPU Card Filtering Address Table 16 K MAC addresses per device 3K IP addresses per device Packet Filtering Forwarding Rate Full wire speed for all connections 148 810 pps per port for...

Page 333: ...0 Mbps 20Mbps 1000Mbps 2000Mbps 10Gbps 20Gbps SFP Mini GBIC Support IEEE 802 3z 1000BASE LX DEM 310GT Transceiver IEEE 802 3z 1000BASE SX DEM 311GT Transceiver IEEE 802 3z 1000BASE SX DEM 312GT2 Trans...

Page 334: ...xStack DES 6500 Modular Layer 3 Chassis Ethernet Switch CLI Manual 331...