Fortinet 548B, Administration Manual

Page 1: ...FortiSwitch 548B Version 5 2 0 2 Administration Guide...

Page 2: ...of Fortinet Inc and other Fortinet names herein may also be trademarks of Fortinet All other product or company names may be trademarks of their respective owners Fortinet reserves the right to chang...

Page 3: ...tion and Quick Startup 13 3 1 Package Contents 13 3 2 Switch Installation 14 3 3 Installing the Switch in a Rack 15 3 4 Quick Starting the Switch 16 3 5 System Information Setup 17 4 Console and Telne...

Page 4: ...8 DHCP Snooping Commands 341 7 19 IP Source Guard IPSG Commands 349 7 20 Dynamic ARP Inspection DAI Command 352 7 21 Differentiated Service Command 359 7 22 ACL Command 388 7 23 IPv6 ACL Command 396 7...

Page 5: ...back Interface Commands 544 10 3 IPv6 Routing Commands 546 10 4 OSPFv3 Commands 566 10 5 RIPng Commands 597 10 6 Protocol Independent Multicast Dense Mode PIM DM Commands 602 10 7 Protocol Independent...

Page 6: ...this or any Fortinet technical document to techdoc fortinet com 1 3 Customer Service and Technical Support Fortinet Technical Support provides services designed to make sure that your Fortinet produc...

Page 7: ...7 To learn about the training services that Fortinet provides visit the Fortinet Training Services web site at http campus training fortinet com or email them at training fortinet com...

Page 8: ...install on your system IEEE 802 3z and IEEE 802 3x compliant Flow Control for all 10 Gigabit ports Supports 802 1D STP 802 1S MSTP and 802 1w Rapid Spanning Tree for redundant back up bridge paths Su...

Page 9: ...1 v 2 v 3 network management RMON support Supports Web based management CLI management support Fully configurable either in band or out of band control via RS 232 console serial connection Telnet remo...

Page 10: ...ange represents port activity status and it will be blinking if the port has an activity 2 4 LED Indicators The Status LED indicator represnts status of the switch The Power LED indicator represent po...

Page 11: ...t a computer or terminal to the serial console port or use Telnet to access the Switch The command line driven interface provides complete access to all switch management features 2 9 SNMP Based Manag...

Page 12: ...MD MIB RFC 2934 PIM MIB DVMRP STD MIB IANA RTPROTO MIB MULTICAST MIB FASTPATH ROUTING6 MIB IEEE8021 PAE MIB INVENTORY MIB MGMT SECURITY MIB QOS ACL MIB QOS COS MIB RFC 1907 SNMPv2 MIB RFC 2465 IPV6 MI...

Page 13: ...contains the following items One FortiSwitch 548B Layer 2 10 Gigabit Managed Switch Layer 3 features available if purchased Mounting kit 2 mounting brackets and screws Four rubber feet with adhesive b...

Page 14: ...must have adequate space for ventilation and for accessing cable connectors 2 Set the Switch on a flat surface and check for proper ventilation Allow at least 5 cm 2 inches on each side of the Switch...

Page 15: ...ard 19 inch 48 3 cm racks Refer to the illustrations below 1 Use the supplied screws to attach a mounting bracket to each side of the Switch 2 Align the holes in the mounting bracket with the holes in...

Page 16: ...the login prompt appears The device initial state is called the default mode 4 When the prompt asks for operator login do the following Type the word admin in the login area Since a number of the Quic...

Page 17: ...t is a special type of port Admin Mode Selects the Port Control Administration State Physical Mode Selects the desired port speed and duplex mode Physical Status Indicates the port speed and duplex mo...

Page 18: ...an eight characters in length copy running config startup config filename This will save passwords and all other changes to the device If you do not save config all configurations will be lost when a...

Page 19: ...loading and the type of upload it is and confirms the upload is taking place For example If the user is using HyperTerminal the user must specify where the file is going to be received by the pc 3 5 6...

Page 20: ...up Factory Defaults Table 2 8 Quick Start up Factory Defaults Command Details clear config Enter yes when the prompt pops up to clear all the configurations made to the switch copy running config star...

Page 21: ...ng a terminal emulation program such as HyperTerminal which is automatically installed with Microsoft Windows to the RS 232 DCE console port of the Switch Switch management using the RS 232 DCE consol...

Page 22: ...le port is set for the following configuration Baud rate 11 520 Data width 8 bits Parity none Stop bits 1 Flow Control none A typical console connection is illustrated below Figure 3 1 Console Setting...

Page 23: ...Once you have set an IP address for your Switch you can use a Telnet program in a VT 100 compatible terminal mode to access and control the Switch Most of the screens are identical whether accessed fr...

Page 24: ...ent of the switch The help page covers many of the basic functions and features of the switch and its Web interface When you configure the switch for the first time from the console you can assign an...

Page 25: ...e IP address of your managed switch 2 Open your Web browser 3 Log in to the managed switch using the IP address the unit is currently configured with 4 Type the default user name of admin and default...

Page 26: ...s navigation through several menus The main navigation menu is on the left of every page and contains the screens that let you access all the commands and statistics the switch provides Main Menus Sys...

Page 27: ...nd Device Configuration Commands Forwarding Database see Device Configuration Commands L2MAC Address Logs see System Information and Statistics Commands Port see Device Configuration Commands Interfac...

Page 28: ...rt Security see Port Security Configuration Commands LLDP see LLDP Commands VTP see VTP Commands Link State see Link state Commands Port Backup see Port backup Commands FIP Snooping see FIP Snooping C...

Page 29: ...ands RIPv6 see RIPv6 Configuration Commands QoS ACL see ACL Commands Diffserv see Differentiated Services Commands Class of Service see Class of Service Commands IPv4 Multicast DVMRP see DVMRP Command...

Page 30: ...ollowed by values parameters or both Example 1 ip address ipaddr netmask gateway ip address is the command name ipaddr netmask are the required values for the command gateway is the optional value for...

Page 31: ...is 0 0 0 0 The interface IP address of 0 0 0 0 is invalid macaddr The MAC address format is six hexadecimal numbers separated by colons for example 00 06 29 32 81 40 areaid Area IDs may be entered in...

Page 32: ...r space bar command completion The value Err designates that the requested value was not internally accessible This should never happen and indicates that there is a case in the software that is not h...

Page 33: ...Mode Privileged Exec Display Message MAC Address A unicast MAC address for which the switch has forwarding and or filtering information The format is 6 two digit hexadecimal numbers that are separated...

Page 34: ...ks that keep the CPU busy Default Setting None Command Mode Privileged Exec Display Message The following shows example CLI display output for the command Memory Utilization Report status bytes free 1...

Page 35: ...ing of different protocol packages supported on switch This command displays captures only commands with settings configurations with values that differ from the default value The output is displayed...

Page 36: ...h May be up to 31 alpha numeric characters The factory default is blank System Contact The text used to identify a contact person for this switch May be up to 31 alphanumeric characters The factory de...

Page 37: ...lays the web server http port Web Server Java Mode Specifies if the switch should allow access to the Java applet in the header frame Enabled means the applet can be viewed The factory default is disa...

Page 38: ...mple if the release was 1 the version was 2 and the maintenance number was 4 the format would be 1 2 4 Operating Code Version The release version maintenance number of the code currently running on th...

Page 39: ...h 10 Giga information of switch 1 10 Gigabit Ethernet Compliance Codes Transceiver s compliance codes Vendor Name The SFP transceiver vendor name shall be the full name of the corporation a commonly a...

Page 40: ...ase was 1 the version was 2 and the maintenance number was 4 the format would be 1 2 4 Boot Rom Version The release version maintenance number of the boot ROM code currently running on the switch For...

Page 41: ...clude lines that match LINE Regular Expression 7 2 Device Configuration Commands 7 2 1 Interface 7 2 1 1 show interface status This command displays the Port monitoring information for the system Synt...

Page 42: ...status changes The factory default is enabled LACP Mode Displays whether LACP is enabled or disabled on this port Flow Control Mode Displays flow control mode The possible values are None This port is...

Page 43: ...including broadcast packets and multicast packets received Packets Received With Error The number of inbound packets that contained errors preventing them from being deliverable to a higher layer pro...

Page 44: ...length inclusive excluding framing bits but including FCS octets Packets Received 1522 Octets The total number of packets received that were longer than 1522 octets excluding framing bits but includi...

Page 45: ...and 150 ms Undersize Received The total number of packets received that were less than 64 octets in length with GOOD CRC excluding framing bits but including FCS octets Fragments Received The total nu...

Page 46: ...tal number of packets transmitted that had a length excluding framing bits but including FCS octets of between 64 and 1518 octets inclusive but had a bad FCS with an integral number of octets Tx Overs...

Page 47: ...ed that were directed to the broadcast address Note that this does not include multicast packets Receive Packets Discarded The number of inbound packets which were chosen to be discarded even though n...

Page 48: ...ge Broadcast Packets Received The total number of packets received that were directed to the broadcast address Note that this does not include multicast packets Packets Received With Error The number...

Page 49: ...the following command Instead it provides a command to set the speed of 10 Giga port to 1Gbps Use speed duplex 1000 to change the speed of 10 Giga port to 1G speed Syntax speed duplex 1000 no speed du...

Page 50: ...i The 10 Giga interfaces will not provide the following command Syntax negotiate no negotiate no This command disables automatic negotiation on a port Default Setting Enable Command Mode Interface Co...

Page 51: ...o This command removes the advertised capability with using parameter Default Setting 10 half duplex 10 full duplex 100 half duplex 100 full duplex and 1000 full duplex Command Mode Interface Config T...

Page 52: ...x storm control flowcontrol no storm control flowcontrol no This command disables 802 3x flow control for the switch Default Setting Disabled Command Mode Global Config This command enables 802 3x flo...

Page 53: ...low control only applies to full duplex mode ports Syntax storm control flowcontrol pfc no storm control flowcontrol pfc no This command disables Priority Flow Control for the specific interface Defau...

Page 54: ...d removes the description of the port Default Setting None Command Mode Interface Config 7 2 1 12 mdi i The 10 Giga interface will not provide the following command This command is used to configure t...

Page 55: ...that are separated by colons for example 01 23 45 67 89 AB In an IVL system the MAC address will be displayed as 8 bytes In an SVL system the MAC address will be displayed as 6 bytes Note This softwar...

Page 56: ...otal MAC Addresses in use This number of addresses are used on the L2 MAC address table Total MAC Addresses available The switch supports max value on the L2 MAC address table 7 2 2 3 show mac addr ta...

Page 57: ...t fall into one of the other categories 7 2 2 4 show mac addr table vlan This command displays the forwarding database entries The user can search FDB table by using vlan id Syntax show mac addr table...

Page 58: ...s table gmrp Default Setting None Command Mode Privileged Exec Display Message MAC Address A unicast MAC address for which the switch has forwarding and or filtering information The format is 6 or 8 t...

Page 59: ...ll macaddr enter a MAC Address to display the table entry for the requested MAC address vlanid VLAN ID Range 1 3965 all This command displays the entire table Default Setting None Command Mode Privile...

Page 60: ...DB high water mark Current Entries This displays the current number of entries in the Multicast Forwarding Database table 7 2 2 9 show mac addr table agetime This command displays the forwarding datab...

Page 61: ...th this VLAN as a convenience It can be up to 16 alphanumeric characters including blanks The default is blank VLAN ID 1 is always named Default This field is optional VLAN Type Type of VLAN which can...

Page 62: ...s VLAN via GVRP The port will not participate in this VLAN unless a join request is received on this port This is equivalent to registration normal in the IEEE 802 1Q standard Configured Determines th...

Page 63: ...4 show vlan association subnet This command displays the VLAN associated with a specific configured IP Address and net mask If no IP Address and net mask are specified the VLAN associations of all th...

Page 64: ...Indicates by slot id and port number which port is controlled by the fields on this line It is possible to set the parameters for all ports by using the selectors on the top line Port VLAN ID The VLAN...

Page 65: ...al Config 7 2 3 8 vlan This command creates a new VLAN and assigns it an ID The ID is a valid VLAN identification number ID 1 is reserved for the default VLAN VLAN range is 2 3965 Syntax vlan vlan lis...

Page 66: ...yntax vlan association mac macaddr vlanid no vlan association mac macaddr macaddr enter a MAC Address to display the table entry for the requested MAC address vlandid VLAN identification number ID ran...

Page 67: ...Setting None Command Mode VLAN database 7 2 3 13 protocol group This command attaches a vlanid to the protocol based VLAN identified by group name A group may only be associated with one VLAN at a tim...

Page 68: ...s are forwarded in accordance with the IEEE 802 1Q VLAN Specification Default Setting Admit all Command Mode Interface Config This command sets the frame acceptance mode for all interfaces For VLAN On...

Page 69: ...terface are admitted and forwarded to ports that are members of that VLAN Default Setting Disabled Command Mode Interface Config This command enables ingress filtering for all ports If ingress filteri...

Page 70: ...ode Interface Config This command changes the VLAN ID for all interfaces Syntax switchport native vlan all vlanid vlanid VLAN ID Range 1 3965 all All interfaces no This command sets the VLAN ID for al...

Page 71: ...nt to registration forbidden Default Setting None Command Mode Interface Config This command configures the degree of participation for all interfaces in a VLAN The ID is a valid VLAN identification n...

Page 72: ...to disabled If tagging is disabled traffic is transmitted as untagged frames The ID is a valid VLAN identification number Default Setting Disabled Command Mode Interface Config This command configures...

Page 73: ...e the list of forbidden VLANs Default Setting None Command Mode Interface Config 7 2 3 20 switchport priority This command configures the default 802 1p port priority assigned for untagged packets for...

Page 74: ...s will not be added to the group Syntax switchport protocol group group name no switchport protocol group group name group name a VLAN Group Name a character string of 1 to 16 characters no This comma...

Page 75: ...tring of 1 to 16 characters all All interfaces no This command removes all interfaces from this protocol based VLAN group that is identified by this group name Default Setting None Command Mode Global...

Page 76: ...None Command Mode Privileged Exec Display Message Interfaces Enabled for DVLAN Tunneling Valid interface s support s DVLAN Tunneling When using show dot1q tunnel dvlan tunnel interface Interface Valid...

Page 77: ...t1q tunnel ethertype 802 1Q custom 0 65535 vman Default Setting Vman Command Mode Interface Config 7 2 4 3 switchport dvlan tunnel dot1q tunnel This command is used to enable Double VLAN Tunneling on...

Page 78: ...a per Port per GARP participant basis Permissible values are 10 to 100 centiseconds 0 1 to 1 0 seconds The factory default is 20 centiseconds 0 2 seconds The finest granularity of specification is 1 c...

Page 79: ...sis Permissible values are 10 to 100 centiseconds 0 1 to 1 0 seconds The factory default is 20 centiseconds 0 2 seconds The finest granularity of specification is 1 centisecond 0 01 seconds Leave Time...

Page 80: ...xec User Exec Display Message Interface This displays the slot port of the interface that this row in the table describes GVRP Mode Indicates the GVRP administrative mode for the port It may be enable...

Page 81: ...t Registration Protocol GMRP on the system Default Setting Disabled Command Mode Global Config 7 2 5 7 switchport gvrp This command enables GVRP GARP VLAN Registration Protocol for a specific port Syn...

Page 82: ...ty will subsequently be re enabled if routing is disabled or port channel LAG membership is removed from an interface that has GMRP enabled Syntax switchport gmrp no switchport gmrp no This command di...

Page 83: ...s command sets the GVRP join time per port and per GARP Join time is the interval between the transmission of GARP Protocol Data Units PDUs registering or re registering membership for a VLAN or multi...

Page 84: ...an effect only when GVRP and GMRP are enabled The time is from 10 to 100 centiseconds Syntax garp timer join all 10 100 no garp timer join all 10 100 join time Range 10 100 in centiseconds all All int...

Page 85: ...0 6 seconds Default Setting 60 centiseconds 0 6 seconds Command Mode Interface Config This command sets the GVRP leave time for all ports Leave time is the time to wait after receiving an unregister r...

Page 86: ...e generated per port to 1000 centiseconds 10 seconds Default Setting 1000 centiseconds 10 seconds Command Mode Interface Config This command sets how frequently Leave All PDUs are generated for all po...

Page 87: ...ault Setting Disabled Command Mode Global Config 7 2 6 2 ip igmp snooping interfacemode The user can go to the CLI Global Interface Configuration Mode to set IGMP Snooping on one interface or all inte...

Page 88: ...ig Interface Config 7 2 6 4 ip igmp snooping groupmembershipinterval The user can go to the CLI Global Interface Configuration Mode to set the IGMP Group Membership Interval time on one interface or a...

Page 89: ...ue The range is 1 to 25 seconds Default Setting 10 Command Mode Global Config Interface Config 7 2 6 6 ip igmp snooping mcrtrexpiretime The user can go to the CLI Interface Global Interface Configurat...

Page 90: ...g mrouter interface vlanId vlanid VLAN ID Range 1 3965 Default Setting None Command Mode Interface Config 7 2 6 8 set igmp The user can go to the CLI VLAN Mode to set IGMP Snooping on a particular VLA...

Page 91: ...oupmembership interval vlanid return to default value 260 Syntax set igmp groupmembership interval vlanid 2 3600 no set igmp groupmembership interval vlanid vlanid VLAN ID Range 1 3965 2 3600 The rang...

Page 92: ...no set igmp mcrtrexpiretime vlanid to return to default value 0 Syntax set igmp mcrtrexpiretime vlanid 0 3600 no set igmp mcrtrexpiretime vlanid vlanid VLAN ID Range 1 3965 0 3600 The range of the Mu...

Page 93: ...processed by the CPU VLANs Enabled for IGMP Snooping VLANs on which IGMP Snooping is enabled When you specify the slot port values the following information displays IGMP Snooping Admin Mode Indicates...

Page 94: ...lticast routers attached The interface is removed if a query is not received This value may be configured 7 2 6 15 show ip igmp snooping mrouter interface The user can go to the CLI Privilege Exec to...

Page 95: ...Privilege command Syntax show ip igmp snooping static Default Setting None Command Mode Privilege Exec Display Message VLAN The VLAN ID used with the MAC address to fully identify packets you want L2M...

Page 96: ...terfaces that are designated for forwarding Fwd and filtering Flt 7 2 7 IGMP Snooping Querier 7 2 7 1 ip igmp snooping querier The user can go to the CLI Global Configuration Mode to set IGMP snooping...

Page 97: ...igmp snooping querier query interval 1 1800 no ip igmp snooping querier query interval 1 1800 set IGMP snooping querier query interval Default Setting Disabled Command Mode Global Config 7 2 7 4 ip i...

Page 98: ...version 1 2 no ip igmp snooping querier version 1 2 set IGMP version of the querier Default Setting 1 Command Mode Global Config 7 2 7 6 ip igmp snooping querier vlan The user can go to the CLI Global...

Page 99: ...0 0 Command Mode Global Config 7 2 7 8 ip igmp snooping querier vlan election participate The user can go to the CLI Global Configuration Mode to set IGMP snooping querier vlan election participate mo...

Page 100: ...fault value is 60 7 2 7 10 show ip igmp snooping querier vlan This command display IGMP snooping querier vlan information on the system Syntax show ip igmp snooping querier vlan 1 3965 vlanid VLAN ID...

Page 101: ...is being sent IGMP Version Specify the IGMP protocol version used in periodic IGMP queries Querier Query Interval Specify the time interval in seconds between periodic queries sent by the snooping que...

Page 102: ...t before removing an interface that is participating on the interface from the list of interfaces with multicast routers attached The interface is removed if a query is not received This value may be...

Page 103: ...an go to the CLI Privilege Exec to display information about statically configured multicast router attached interfaces use the show ipv6 mld snooping mrouter vlan Privilege command Syntax show ipv6 m...

Page 104: ...ing entries in the Multicast Forwarding Database MFDB table use the show mac address table mldsnooping Privilege command Syntax show mac address table mldsnooping Default Setting None Command Mode Pri...

Page 105: ...Configuration Mode to clear MLD Snooping on the system use the clear mld snooping priviledge configuration command Syntax clear mld snooping Default Setting None Command Mode Privilege Exec 7 2 8 8 i...

Page 106: ...no ipv6 mld snooping fast leave Default Setting Disabled Command Mode Global Config Interface Config 7 2 8 10 ipv6 mld snooping groupmembershipinterval The user can go to the CLI Global Interface Conf...

Page 107: ...ter Present Expiration time for the system or on a particular interface use the ipv6 mld snooping mcrtrexpiretime 0 3600 global interface configuration command Use the no ipv6 mld snooping mcrtrexpire...

Page 108: ...bal command Syntax ipv6 mld snooping static macaddr vlan vlan id interface slot port no ipv6 mld snooping static macaddr vlan vlan id interface slot port Default Setting None Command Mode Global Confi...

Page 109: ...up Membership Interval time on a particular VLAN use the set mld groupmembership interval vlanid 2 3600 vlan configuration command Use the no set mld groupmembership interval vlanid return to default...

Page 110: ...mld mcrtrexpiretime vlanid 0 3600 no set mld mcrtrexpiretime vlanid Default Setting 0 Command Mode VLAN Mode 7 2 9 MLD Snooping Querier 7 2 9 1 show ipv6 mld snooping querier This command display MLD...

Page 111: ...is disabled up on seeing a query of the same version in the vlan the snooping querier move to non querier state Only when this mode is enabled the snooping querier will participate in querier election...

Page 112: ...me interval in seconds between periodic queries sent by the snooping querier The Query Interval must be a value in the range of 1 and 1800 The default value is 60 Querier Expiry Interval Specify the t...

Page 113: ...l use the ipv6 mld snooping querier querier interval 1 1800 global configuration command Use the no ipv6 mld snooping querier query interval return to default value zero Syntax ipv6 mld snooping queri...

Page 114: ...snooping querier vlan address use the ipv6 mld snooping querier vlan 1 3965 address ip address global configuration command Use the no ipv6 mld snooping querier vlan 1 3965 address ip address return...

Page 115: ...Name This field displays the name of the port channel Link State This field indicates whether the link is up or down Trap Flag This object determines whether or not to send a trap when link status cha...

Page 116: ...el is statically maintained and Dynamic indicating that the port channel is dynamically maintained Load Balance Option This field displays the load balance status whether a particular port channel LAG...

Page 117: ...mout value of actor and parter The value of device timeout should be short 1 second or long 30 seconds Port Speed Speed of the port channel port Port Active This field lists the ports that are activel...

Page 118: ...he static function to support on specific port channel static link aggregations LAGs on the device By default the static capability for all of port channels is disabled Syntax staticcapability no stat...

Page 119: ...ed the mode of load balance on the all Port Channels The parameter src mac dst mac dst src mac src ip dst ip dst src ip represent the mode used to be set for port channel load balance Syntax port chan...

Page 120: ...e on the destination IP address dst src ip Sets the mode on the source and destination IP addresses no Restore the mode to be default value Default Setting dst src ip Command Mode Interface Config 7 2...

Page 121: ...68 Command Mode Global Config 7 2 10 9 adminmode This command enables a port channel LAG members The interface is a logical slot and port for a configured port channel Syntax adminmode no adminmode no...

Page 122: ...Aggregation Control Protocol LACP on all ports Default Setting Enabled Command Mode Global Config 7 2 10 11 lacp actor or lacp partner This command set actor partner admin key value of Link Aggregatio...

Page 123: ...passive Use no form to set to active no This command restores actor partner admin state value of Link Aggregation Control Protocol LACP on a port Default Setting no lndividual aggregation no longtimeo...

Page 124: ...set collector max delay time of Link Aggregation Control Protocol LACP on a port channel Syntax lacp collector max delay delay value no lacp collector max delay delay value 0 65535 no This command re...

Page 125: ...interface is a logical slot and port number of a configured port channel Syntax delete channel group logical slot port logical slot port Port Channel Interface number Default Setting None Command Mod...

Page 126: ...fault Setting None Command Mode Privileged Exec Display Message Intf Displays interface number Mode Displays status of storm control broadcast Level Displays level for storm control broadcast Rate Dis...

Page 127: ...s a percentage pattern If the broadcast traffic on any Ethernet port exceeds the high threshold percentage as represented in Broadcast Storm Recovery Thresholds table of the link speed the switch disc...

Page 128: ...all interfaces Default Setting Disabled Command Mode GlobaI Config 7 2 11 3 storm control multicast This command enables multicast storm recovery mode on the selected interface Syntax storm control m...

Page 129: ...overy mode on the selected interface Syntax storm control unicast no storm control unicast no This command disables unicast storm recovery mode on the selected interface Default Setting None Command M...

Page 130: ...pps for 1G Port or 4167 pps for 10G port Note pps packet per second Default Setting Level 4 Command Mode Interface Config This command will protect your network from broadcast storms by setting a thre...

Page 131: ...esents 512 pps for 1G Port or 4167 pps for 10G port Note pps packet per second Default Setting Level 4 Command Mode Interface Config This command will protect your network from multicast storms by set...

Page 132: ...level represents 512 pps for 1G Port or 4167 pps for 10G port Note pps packet per second Default Setting Level 4 Command Mode Interface Config This command will protect your network from unicast stor...

Page 133: ...lay Message User Priority Displays the 802 1p priority to be mapped Traffic Class Displays internal traffic class to map the corresponding 802 1p priority 7 2 12 2 queue cos map This command is used t...

Page 134: ...sion ID indicates the session ID Admin Mode indicates whether the Port Monitoring feature is enabled or disabled The possible values are enabled and disabled Dest Port is the slot port that is configu...

Page 135: ...t port rx tx destination interface slot port no port monitor session session id source interface slot port destination interface slot port slot port Interface number tx rx Use to monitor ingress packe...

Page 136: ...ID The group ID for each displayed row Mode This group was set which mode UpStream Display such port was included to UpStream set DownStream Display such port was included to DownStream set 7 2 14 2...

Page 137: ...eam to set the port to be monitored Syntax link state group 1 6 downstream upstream no link state group 1 6 downstream upstream no This command disables link state group function Command Mode Interfac...

Page 138: ...d to enable individual group and use no command to disable a group Enable Disable a port backup group support the mac move update Use port backup group group id mac move update to enable individual gr...

Page 139: ...ooping fip snooping function status 7 2 16 2 show fip snooping enode This command displays the ENode connections for the entire system Syntax show fip snooping enode Default Setting None Command Mode...

Page 140: ...rface to which the FCF is connected ENode Interface The interface to which the ENode is connected 7 2 16 4 show fip snooping fcf This command displays to what interfaces the FCFs are connected for the...

Page 141: ...ed CLIs under VLAN and interface mode visible The FIP snoop process also starts after the fip snooping command is enabled Once the feature is enabled the FIP snoop packets and FCoE packets are dropped...

Page 142: ...snooping vlan vlan id no fip snooping vlan vlan id 1 3965 VLAN ID no This command disable snooping on a specific VLAN Default Setting Disabled Command Mode Global Config 7 2 17 Enhanced Transmission S...

Page 143: ...ce to which the ETS is enabled Scheduler type ETS scheduler type 7 2 17 3 show queue ets weight This command displays ETS function on specific interface for the entire system Syntax show queue ets wei...

Page 144: ...default Only after enabling it the ETS process also starts Syntax queue ets no queue ets no This command disables ETS function Default Setting Disabled Command Mode Interface Config 7 2 17 6 queue et...

Page 145: ...ight 1 99 weight values no This command restores the weight values to 50 and 50 Default Setting 50 LAN 50 SAN Command Mode Interface Config 7 2 17 8 queue ets pg mapping This command configures the ma...

Page 146: ...ction status Tag ethertype recognize When set to 1 CN Tag ether type is recognized by parsing stages Tag ethertype A new tag that is being added by 802 1Qau as a part of the congestion management requ...

Page 147: ...ting None Command Mode Privileged Exec Display Message Interface Name of the interface to which the CN is enabled Priority Queue Priority queue is enabled for CN function Mode CN mode Enable Disable C...

Page 148: ...s unrecognized Syntax congestion notify tag ethertype recognize no congestion notify tag ethertype recognize no This command disables CN tag processing Default Setting Disabled Command Mode Global Con...

Page 149: ...ode to configure the Ether Type of CNM Use the congestion notify msg ethertype value global configuration command Use the no congestion notify msg ethertype to configure CNM Ether Type to default valu...

Page 150: ...PID mode to use queue number of sampled packet Use the congestion notify LSB CPIndex to configure device identifier to use congestion point index Syntax congestion notify CPID LSB CPIndex Q_No CPIndex...

Page 151: ...ner VLAN tag s 802 1p bits Syntax congestion notify inner CFI 1 1 Dot1p 1 7 no congestion notify inner CFI Dot1p 1 1 This command sets value of CNM s inner VLAN tag s CFI bits 1 7 This command sets va...

Page 152: ...he switch s front panel ports The configuration parameters associated with the switch s network interface do not affect the configuration of the front panel ports through which traffic is switched or...

Page 153: ...es if the switch should allow access to the Java applet in the header frame Enabled means the applet can be viewed The factory default is disabled 7 3 1 2 show ip filter This command displays manageme...

Page 154: ...nter Interface vlan configuration mode Syntax interface vlan vlanid vlanid VLAN ID Range 1 3965 Default Setting None Command Mode Global Config 7 3 1 5 ip address This command sets the IP Address and...

Page 155: ...P address of the default gateway no Restore the default IP address of the default gateway Default Setting IP address 0 0 0 0 Command Mode Global Config 7 3 1 7 ip address protocol This command specifi...

Page 156: ...and Mode Global Config This command is used to set an IP address to be a filter Syntax ip filter ipaddr no ip filter ipaddr ipaddr Configure a IP address to the filter no Remove this IP address from f...

Page 157: ...bled Stop Bits The number of Stop bits per character The number of Stop bits is always 1 Parity The Parity Method used on the Serial Port The Parity Method is always None Password Threshold When the l...

Page 158: ...e Line Config 7 3 2 4 exec timeout This command specifies the maximum connect time in minutes without console activity A value of 0 indicates that a console can be connected indefinitely The time rang...

Page 159: ...le is inaccessible after the number of unsuccessful logon tries exceeds the threshold value Syntax silent time 0 65535 0 65535 silent time Range 0 65535 in seconds no This command sets the maximum val...

Page 160: ...address port A valid decimal integer in the range of 0 to 65535 where the default value is 23 debug Display current enabled telnet options line Set the outbound telnet operational mode as linemode wh...

Page 161: ...r a specified amount of time before allowing the next logon attempt Use the silent time command to set this interval When this threshold is reached for Telnet the Telnet logon interface closes Telnet...

Page 162: ...nd is used to set the password instruction threshold limited for the number of failed login attempts Syntax password threshold 0 120 no password threshold threshold max threshold Range 0 120 no This c...

Page 163: ...0 5 max sessions Range 0 5 no This command sets the maximum value to be 5 Default Setting 5 Command Mode Line Vty 7 3 3 8 server enable This command enables disables telnet server If telnet server is...

Page 164: ...stablished Default Setting Enabled Command Mode Line Vty 7 3 3 10 telnet sessions This command regulates new outbound telnet connections If enabled new outbound telnet sessions can be established unti...

Page 165: ...telnet exec timeout This command sets the outbound telnet session timeout value in minute i Changing the timeout value for active sessions does not become effective until the session is reaccessed An...

Page 166: ...net connections allowed Allow New Outbound Telnet Sessions Indicates whether outbound telnet sessions will be allowed 7 3 4 SSH Client Session Commands 7 3 4 1 ssh This command establishes a new outbo...

Page 167: ...sessions no This command disables new outbound ssh connections If disabled no new outbound ssh connection can be established Default Setting Enabled Command Mode Global Config 7 3 4 3 sshc maxsessions...

Page 168: ...obal Config 7 3 4 5 show sshc This command displays the current outbound sshc settings Syntax show sshc Default Setting None Command Mode Privileged Exec User Exec Display Message Outbound SSH Login T...

Page 169: ...s IP address is ANDed with the Subnet Mask before being compared to the IP Address Note that if the Subnet Mask is set to 0 0 0 0 an IP Address of 0 0 0 0 matches all IP addresses The default value i...

Page 170: ...ay be enabled or disabled The factory default is enabled Indicates whether spanning tree traps will be sent DVMRP Traps May be enabled or disabled The factory default is disabled Indicates whether DVM...

Page 171: ...ommand sets the organization responsible for the network The range for contact is from 1 to 31 alphanumeric characters Syntax snmp server contact con con Range is from 1 to 31 alphanumeric characters...

Page 172: ...mmand activates an SNMP community If a community is enabled an SNMP manager associated with this community manages the switch according to its access right If the community is disabled no SNMP request...

Page 173: ...ame name community name ipmask a client IP mask no This command sets a client IP mask for an SNMP community to 0 0 0 0 The name is the applicable community name The community name may be up to 16 alph...

Page 174: ...nity name ipaddr a client IP address no This command sets a client IP address for an SNMP community to 0 0 0 0 The name is the applicable community name Default Setting 0 0 0 0 Command Mode Global Con...

Page 175: ...rap Default Setting Enabled Command Mode Global Config This command enables Link Up Down traps for the entire switch When enabled link traps are sent only if the Link Trap flag setting associated with...

Page 176: ...w all lsdb overflow lsdb approaching overflow retransmit all packets virt packets rtb all rtb entry info state change all if state change neighbor state change virtif statechange virtneighbor state ch...

Page 177: ...ow all lsdb overflow lsdb approaching overflow retransmit all packets virt packets rtb all rtb entry info state change all if state change neighbor state change virtif statechange virtneighbor state c...

Page 178: ...anager This may be up to 16 alphanumeric characters This string is case sensitive IP Address The IP address to receive SNMP traps from this device Enter 4 numbers between 0 and 255 separated by period...

Page 179: ...ode command Syntax snmp trap link status no snmp trap link status no This command disables link status traps by interface Default Setting Disabled Command Mode Interface Config This command enables li...

Page 180: ...P trap version no This command deletes trap receivers for a community Default Setting None Command Mode Global Config 7 3 6 5 snmptrap ipaddr name ipaddr ipaddrnew This command changes the IP address...

Page 181: ...Disabled trap receivers are inactive not able to receive traps Syntax snmptrap mode name ipaddr no snmptrap mode name ipaddr name SNMP trap name ipadd an IP address no This command deactivates an SNMP...

Page 182: ...ssions Secure hard timeout Display the hard timeout for secure HTTP sessions in hours Secure soft timeout Display the soft timeout for HTTP sessions in minutes Secure max sessions Display the number o...

Page 183: ...the Web interface When access is disabled the user cannot login to the switch s Web server Disabling the Web interface takes effect immediately All interfaces are affected Syntax ip http server no ip...

Page 184: ...is command is used to disable the secure socket layer for secure HTTP Default Setting Disabled Command Mode Global Config 7 3 7 7 ip http secure protocol This command is used to set protocol levels ve...

Page 185: ...the values of version 1 version 2 or both versions SSH Sessions Currently Active This field specifies the current number of SSH connections Max SSH Sessions Allowed The maximum number of inbound SSH s...

Page 186: ...t to SSH1 SSH2 or to both SSH 1 and SSH 2 Default Setting SSH1 and SSH2 Command Mode Global Config 7 3 8 4 ip ssh maxsessions This command specifies the maximum number of SSH connection sessions that...

Page 187: ...seconds no This command sets the SSH connection session timeout value in minutes to the default Changing the timeout value for active sessions does not become effective until the session is reaccesse...

Page 188: ...y from the device Default Setting None Command Mode Global Config 7 3 10 DHCP Client Commands 7 3 10 1 ip dhcp restart This command is used to initiate a BOOTP or DCHP client request Syntax ip dhcp re...

Page 189: ...ient Commands 7 3 11 1 ipv6 address protocol This command specifies the network of IPv6 configuration protocol to be used If you modify this value the change is effective immediately Syntax ipv6 addre...

Page 190: ...tp Obtains IP address from BOOTP dhcp Obtains IP address from DHCP dhcp6 Obtains IPv6 address from DHCPv6 none Obtains IP address by setting configuration none dhcp6 Obtains IPv6 address by setting co...

Page 191: ...the IP address you entered in the Server IP address field Circuit Id Option Mode This is the Relay agent option which can be either enabled or disabled When enabled Relay Agent options will be added...

Page 192: ...nd Syntax show sflow agent Default Setting None Command Mode Privilege Exec Display Message sFlow Version Uniquely identifies the version and implementation of this MIB IP Address The IP address assoc...

Page 193: ...Setting None Command Mode Privilege Exec Display Message Receiver Index The sFlow Receiver associated with the sampler poller Owner String The identity string for receiver the entity making use of thi...

Page 194: ...rate The user can go to the CLI Interface Configuration Mode to set sampling rate use the sflow rate 0 3600 interface configuration command Use the no sflow rate return to default value zero Syntax s...

Page 195: ...ddress The user can go to the CLI Global Configuration Mode to set receiver ip address use the sflow receiver index ip ip global configuration command Use the no sflow receiver index ip to clear colle...

Page 196: ...to default value zero Syntax sflow poller interval 0 86400 no sflow poller interval Default Setting 0 Command Mode Interface Config 7 3 13 11 set sflow sampler index The user can go to the CLI Interf...

Page 197: ...hether the interface is up or down IP Address The IP address of the interface The factory default value is 0 0 0 0 Subnet Mask The IP subnet mask for this interface The factory default value is 0 0 0...

Page 198: ...kets are sent Stale More than ReachableTime milliseconds have elapsed since the last positive confirmation was received that the forward path was functioning properly While in STALE state the device t...

Page 199: ...u use the dhcp parameter the switch periodically sends requests to a DHCP server until a response is received If you use the none parameter you must configure the network information for the switch ma...

Page 200: ...dress address prefix length eui64 no serviceport ipv6 address address prefix length no This command remove all IPv6 prefixes on the service port interface address IPv6 prefix in IPv6 global address fo...

Page 201: ...ce port interface Default Setting None Command Mode Global Config 7 4 Spanning Tree Commands This section provides detailed explanation of the spanning tree commands The commands are divided into two...

Page 202: ...ning tree Max Tx Hold Count The max value of bridge tx hold count for the spanning tree Bridge Forwarding Delay A timeout value to be used by all Bridges in the Bridged LAN The value of Forward Delay...

Page 203: ...ata Units sent STP BPDUs Received Spanning Tree Protocol Bridge Protocol Data Units received RSTP BPDUs Transmitted Rapid Spanning Tree Protocol Bridge Protocol Data Units sent RSTP BPDUs Received Rap...

Page 204: ...dentifier The bridge ID of current MST Time Since Topology Change In seconds Topology Change Count Number of times the topology has changed for this multiple spanning tree instance Topology Change in...

Page 205: ...94 multiple spanning tree instance ID slot port is the desired interface number Default Setting None Command Mode Privileged Exec Display Message MST Instance ID The multiple spanning tree instance ID...

Page 206: ...ing the designated port Designated Port Identifier Port on the Designated Bridge that offers the lowest cost to the LAN Topology Change Acknowledgement Value of flag in next Configuration Bridge Proto...

Page 207: ...port in loop inconsistence state will display LOOP_Inc 7 4 1 5 show spanning tree summary This command displays spanning tree settings and parameters for the switch The following details are displaye...

Page 208: ...displayed Syntax show spanning tree brief Default Setting None Command Mode Privileged Exec Display Message Bridge Priority Configured value Bridge Identifier The bridge ID of current Spanning Tree Br...

Page 209: ...lot port all slot port is the desired interface number all All interfaces no This command disables BPDU migration check on a given interface The all option disables BPDU migration check on all interfa...

Page 210: ...dentifier Revision Level for use in identifying the configuration that this switch is currently using to the default value that is 0 Default Setting 0 Command Mode Global Config 7 4 2 4 spanning tree...

Page 211: ...y parameter for the common and internal spanning tree to the default value that is 15 Default Setting 15 Command Mode Global Config 7 4 2 6 spanning tree hello time This command sets the Hello Time pa...

Page 212: ...ge 6 40 no This command sets the Bridge Max Age parameter for the common and internal spanning tree to the default value that is 20 Default Setting 20 Command Mode Global Config 7 4 2 8 spanning tree...

Page 213: ...t This command adds a multiple spanning tree instance to the switch The instance 1 3965 is a number within a range of 1 to 3965 that corresponds to the new instance ID to be added The maximum number o...

Page 214: ...alue that is 32768 The instance 0 4094 is a number that corresponds to the desired existing multiple spanning tree instance If 0 defined as the default CIST ID is passed as the 0 4094 then this comman...

Page 215: ...iority for this port within the multiple spanning tree instance or in the common and internal spanning tree to the respective default values If the 1 4094 parameter corresponds to an existing multiple...

Page 216: ...ple spanning tree instance then the configurations are done for that multiple spanning tree instance If however 0 defined as the default CIST ID is passed as the 1 4094 then the configurations are per...

Page 217: ...g Disabled Command Mode Global Config 7 4 2 12 spanning tree auto edge This command sets the auto edge for this port to enabled Syntax spanning tree auto edge no spanning tree auto edge no This comman...

Page 218: ...spanning tree edgeport no This command specifies that this port is not an Edge Port within the common and internal spanning tree Default Setting None Command Mode Interface Config This command sets th...

Page 219: ...ter enable disable parameter for sending receiving BPDUs on this interface This command only works on dot1d mode Syntax spanning tree bpdufilter no spanning tree bpdufilter no This command sets the Ed...

Page 220: ...led Default Setting Disabled Command Mode Global Config 7 4 2 15 spanning tree guard loop none root This command sets the Guard Mode parameter to a new value on this interface Syntax spanning tree gua...

Page 221: ...value that is Disabled Default Setting Disabled Command Mode Interface Config 7 5 System Log Management Commands 7 5 1 Show Commands 7 5 1 1 show logging This command displays logging Syntax show logg...

Page 222: ...ssages received by the log process This includes messages that are dropped or ignored Log Messages Dropped The number of messages that could not be processed Log Messages Relayed The number of message...

Page 223: ...p The relevant information of this trap i Trap log information is not retained across a switch reset 7 5 1 4 show logging hosts This command displays all configured logging hosts Syntax show logging h...

Page 224: ...de Global Config This command enables wrapping of in memory logging when full capacity reached Otherwise when full capacity is reached logging stops Syntax logging buffered wrap no logging buffered wr...

Page 225: ...monitor Syntax logging console severitylevel 0 7 no logging console severitylevel 0 7 The value is specified as either an integer from 0 to 7 or symbolically through one of the following keywords emer...

Page 226: ...vel 0 7 The value is specified as either an integer from 0 to 7 or symbolically through one of the following keywords emergency 0 alert 1 critical 2 error 3 warning 4 notice 5 informational 6 debug 7...

Page 227: ...fig 7 5 2 6 logging syslog This command enables syslog logging Syntax logging syslog no logging syslog no Disables syslog logging Default Setting None Command Mode Globla Config This command sets the...

Page 228: ...ands 7 6 1 script apply This command applies the commands in the configuration script to the switch The apply command backs up the running configuration and then starts applying the commands in the sc...

Page 229: ...lt Setting None Command Mode Privileged Exec 7 6 2 1 script list This command lists all scripts present on the switch as well as the total number of files present Syntax script list Default Setting No...

Page 230: ...ame scriptname Name of the script file Default Setting None Command Mode Privileged Exec 7 7 User Account Management Commands 7 7 1 Show Commands 7 7 1 1 show users This command displays the configure...

Page 231: ...will be able to set and retrieve parameters on the system If the value is set to ReadOnly the SNMPv3 user will only be able to retrieve parameter information The SNMPv3 access mode may be different f...

Page 232: ...the dash and underscore _ The username is not case sensitive Six user names can be defined This command changes the password of an existing operator User password should not be more than eight charact...

Page 233: ...Global Config 7 7 2 3 username snmpv3 authentication This command specifies the authentication protocol to be used for the specified login user The valid authentication protocols are none md5 or sha I...

Page 234: ...ne is specified a key must not be provided The username is the login user name for which the specified encryption protocol will be used Syntax username snmpv3 encryption username none des key no usern...

Page 235: ...et the local user will not be able to reuse any password stored in password history when the local user changes his or her password Syntax passwords history 0 10 no passwords history 0 10 Number of pa...

Page 236: ...configuration command Use the no passwords min length return to default value 8 Syntax passwords min length 8 64 no passwords min length Default Setting 8 Command Mode Global Config 7 8 Security Comm...

Page 237: ...ay Message Authentication Login List This displays the authentication login listname Method 1 This displays the first method in the specified authentication login list if any Method 2 This displays th...

Page 238: ...Message Administrative mode Indicates whether authentication control on the switch is enabled or disabled VLAN Assignment Mode Indicates whether assignment of an authorized port to a RADIUS assigned V...

Page 239: ...s port to timeout the authentication server The value is expressed in seconds and will be in the range of 1 to 65535 Maximum Requests The maximum number of times the authenticator state machine on thi...

Page 240: ...ved by this authenticator EAPOL Logoff Frames Received The number of EAPOL logoff frames that have been received by this authenticator Last EAPOL Frame Version The protocol version number carried in t...

Page 241: ...ge Interface The interface whose configuration is displayed Control Mode The configured control mode for this port Possible values are force unauthorized force authorized auto mac based Operating Cont...

Page 242: ...DIUS server when the client was authenticated This is a configured DiffServ policy name on the switch VLAN ID The VLAN assigned to the port VLAN Assigned The reason the VLAN identified in the VLAN ID...

Page 243: ...ry Secret Configured Yes No Message Authenticator The message authenticator attribute configured for the radius server 7 8 1 11 show radius This command is used to display the various RADIUS configura...

Page 244: ...red RADIUS accounting mode accounting server and the statistics for the configured accounting server Syntax show radius accounting statistics ipaddr hostname ipaddr is an IP Address Default Setting No...

Page 245: ...uest packets sent to this server that have not yet timed out or received a response Timeouts The number of accounting timeouts to this server Unknown Types The number of RADIUS packets of unknown type...

Page 246: ...ckets received from this server Malformed packets include packets with an invalid length Bad authenticators or signature attributes or unknown types are not included as malformed access responses Bad...

Page 247: ...Command Mode Privileged Exec Display Message Port Security Administration Mode Port lock mode for the entire system This command shows the port security settings for a particular interface or all inte...

Page 248: ...is command shows the statically locked MAC addresses for port Syntax show port security static slot port Default Setting None Command Mode Privileged Exec Display Message MAC address Statically locked...

Page 249: ...nticated using the RADIUS server The value of reject indicates that the user is never authenticated The value of tacacs indicates that the user s ID and password will be authenticated using the TACACS...

Page 250: ...list Default Setting None Command Mode Global Config 7 8 2 3 username login This command assigns the specified authentication login list to the specified user for system login The username must be a...

Page 251: ...slot port is the desired interface number Default Setting None Command Mode Privileged Exec 7 8 3 2 dot1x default login This command assigns the authentication login list to use for non configured us...

Page 252: ...name an authentication login list Default Setting None Command Mode Global Config 7 8 3 4 dot1x system auth control This command is used to enable the dot1x authentication support on the switch By def...

Page 253: ...following force unauthorized The authenticator PAE unconditionally sets the controlled port to unauthorized force authorized The authenticator PAE unconditionally sets the controlled port to authoriz...

Page 254: ...the supplicant authenticator and the authentication server on a per supplicant basis Syntax dot1x port control auto force authorized force unauthorized mac based no dot1x port control no This command...

Page 255: ...ed the system should use the new one Syntax dot1x max user count no dot1x max user count maximum users Range 1 16 no This command sets the system will reset the maximum users to infinity Default Setti...

Page 256: ...ort in the guest vlan if configured The guest vlan timer is only relevant when guest vlan has been configured on that specific port reauth period Sets the value in seconds of the timer used by the aut...

Page 257: ...s of the timer used by the authenticator state machine on this port to the default values Depending on the token used the corresponding default values are set Default Setting guest vlan period 90 seco...

Page 258: ...o the default value that is the RADIUS accounting function is disabled Default Setting Disabled Command Mode Global Config 7 8 4 2 authorization network radius Use this command to enable the switch to...

Page 259: ...is used to set dead time to the default value Default Setting 255 Command Mode Global Config 7 8 4 5 radius server host This command is used to configure the RADIUS authentication and accounting serv...

Page 260: ...is a IP address or a hostname port Port number Range 1 65535 no This command is used to remove the configured RADIUS authentication server or the RADIUS accounting server If the auth token is used th...

Page 261: ...e transmitted when no response is received from the RADIUS server to the default value that is 10 Default Setting 10 Command Mode Global Config 7 8 4 8 radius server timeout This command sets the time...

Page 262: ...default for handling RADIUS requests The remaining configured servers are only used if the primary server cannot be reached A maximum of three servers can be configured on each client Only one of the...

Page 263: ...IP address or hostname of the TACACS server no This command is used to remove all of configuration Default Setting None Command Mode Global Config 7 8 5 2 tacacs key This command is used to configure...

Page 264: ...crypted the key string is encrypted Default Setting None Command Mode TACACS Host Config This command is used to configure the TACACS authentication host port Syntax port port number port number The v...

Page 265: ...eout timeout The connection timeout value Max timeout Range 1 to 30 no This command is used to reset the timeout value to the default value Default Setting 5 Command Mode Global Config This command is...

Page 266: ...nd sets the maximum of dynamically locked MAC addresses allowed on a specific port Syntax port security max dynamic 0 600 no port security max dynamic no This command resets the maximum of dynamically...

Page 267: ...port security mac address mac addr 1 3965 no port security mac address mac addr 1 3965 1 3965 VLAN ID mac addr The statically locked MAC address no This command removes a MAC address from the list of...

Page 268: ...hutdown no port security violation no This command restore violation mode to be default Default Setting None Command Mode Interface Config 7 9 CDP Cisco Discovery Protocol Commands 7 9 1 Show Commands...

Page 269: ...d Identifies the device name in the form of a character string Local Interface The CDP neighbor information receiving port Holdtime The length of time a receiving device should hold CDP information be...

Page 270: ...CDP packet is sent Holdtime The length of time a receiving device should hold CDP information before discarding it Management Address The first address of IP address which can use management address...

Page 271: ...able CDP on a specified interface Syntax cdp run no cdp run no This command is used to disable CDP on a specified interface Default Setting Enabled Command Mode Interface Config This command is used t...

Page 272: ...time Range 5 254 no This command is used to reset the interval time to the default value Default Setting 60 Command Mode Global Config 7 9 2 4 cdp holdtime This command is used to configure the hold...

Page 273: ...ast transmit query in unicast mode Last Attempt Status Status of the last SNTP request in unicast mode or unsolicited message in broadcast mode Broadcast Count Current number of unsolicited broadcast...

Page 274: ...Reference ID Reference clock identifier of the server for the last received valid packet Server Mode SNTP Server mode Server Max Entries Total number of SNTP Servers allowed Server Current Entries To...

Page 275: ...P broadcast client back to its default value Default Setting 6 Command Mode Global Config 7 10 2 2 sntp client mode This command will enable Simple Network Time Protocol SNTP client mode and optionall...

Page 276: ...nt poll interval This command will set the poll interval for SNTP unicast clients in seconds Syntax sntp unicast client poll interval 6 10 no sntp unicast client poll interval 6 10 Polling interval It...

Page 277: ...cast client poll retry poll retry Polling retry in seconds The range is 0 to 10 no This command will reset the poll retry for SNTP unicast clients to its default value Default Setting The default valu...

Page 278: ...ts the time zone for the switch s internal clock Syntax sntp clock timezone name 0 12 0 59 before utc after utc name Name of the time zone usually an acronym Range 1 15 characters 0 12 Number of hours...

Page 279: ...nd uses to display the configuration status of the Voice VLAN on the switch Syntax show voice vlan Default Setting None Command Mode Privileged Exec Display Message Vlan Voice Vlan status The voice vl...

Page 280: ...nit slot port all Default Setting None Command Mode Privileged Exec User Exec Display Message Voice VLAN Mode The admin mode of the Voice VLAN on the interface Voice VLAN ID The Voice VLAN ID Voice VL...

Page 281: ...sed to add a voice device to a Voice VLAN Syntax voice vlan mac mac address mask mac mask priority priority id name voice name no voice vlan mac mac address mask mac mask name voice name all mac addre...

Page 282: ...ard all voice traffic through the specified VLAN dot1p Configure th IP phone to use 802 1p priority tagging for voice traffic and to use the default native VLAN 0 to carry all traffic The valid priori...

Page 283: ...Message Transmit Interval Shows how frequently the system transmits local data LLDPDUs in seconds Transmit Hold Multiplier Shows the multiplier on the transmit interval that sets the TTL in local dat...

Page 284: ...e LLDPDUs The TLV codes can be 0 Port Description 1 System Name 2 System Description or 3 System Capability Mgmt Shows whether the interface transmits system management address information in the LLDP...

Page 285: ...the Time to Live interval expired TVL Discards Shows the number of TLVs discarded TVL Unknowns Total number of LLDP TLVs received on the port where the type value is in the reserved range and not rec...

Page 286: ...m name of the remote device System Description Describes the remote system by identifying the system name and versions of hardware operating system and networking software supported in the device Port...

Page 287: ...ntax show lldp local device detail slot port slot port Displays a specific interface Default Setting None Command Mode Privileged Exec Display Message Interface Identifies the interface that sends the...

Page 288: ...will be transmitted when the protocol is enabled The range is from 1 to 10 Default value of fast repeat count is 3 Device Class Specifies local device s MED Classification There are four different ki...

Page 289: ...ific interface Default Setting None Command Mode Privileged Exec Display Message Network Policies Specifies if network policy TLV is present in the LLDP frames Media Policy Application Type Specifies...

Page 290: ...es if extended PSE TLV is present in LLDP frame Available Specifies available power sourcing equipment s power value in tenths of watts on the port of local device Source Specifies power source of thi...

Page 291: ...e command Syntax show lldp med remote device detail slot port Default Setting None Command Mode Privileged Exec Display Message Term Definition Capabilities Specifies the supported and enabled capabil...

Page 292: ...ifies asset id of the remote device Location Specifies if location TLV is received in LLDP frames on this port Subtype Specifies type of location information Info Specifies the location information as...

Page 293: ...er is the number of seconds to wait between sending notifications The valid interval range is 5 3600 seconds Syntax lldp notification interval interval seconds no lldp notification interval interval s...

Page 294: ...This command is used to return the local data transmission capability to the default Default Setting Disabled Command Mode Interface Config 7 12 2 5 lldp transmit mgmt This command uses to include tr...

Page 295: ...Default Setting None Command Mode Interface Config 7 12 2 7 lldp timers This command is used to set the timing parameters for local data transmission on ports enabled for LLDP The interval seconds de...

Page 296: ...transmitting local data LLDPDUs The range is 1 8192 seconds Syntax lldp tx delay delay seconds no lldp tx delay no This command is used to return return the transmit delay to the default value Default...

Page 297: ...e Length Values TLVs in the LLDP MED use the lldp med transmit tlv capabilities ex pd ex pse inventory location network policy Interface configuration command Use the no lldp med transmit tlv capabili...

Page 298: ...Setting Disabled Command Mode Global config 7 12 2 13 lldp med confignotification all The user can go to the CLI Global Configuration Mode to set all the ports to send the topology change notification...

Page 299: ...ransmit tlv all capabilities ex pd ex pse inventory location network policy Global configuration command Use the no lldp med transmit tlv all capabilities ex pd ex pse inventory location network polic...

Page 300: ...May be enabled or disabled The factory default is disabled TCP Port Mode May be enabled or disabled The factory default is disabled UDP Port Mode May be enabled or disabled The factory default is dis...

Page 301: ...onfig 7 13 2 2 dos control tcpfrag This command enables Minimum TCP Header Size Denial of Service protection If the mode is enabled Denial of Service prevention is active for this type of attack If pa...

Page 302: ...Global Config 7 13 2 4 dos control tcpflag This command enables TCP Flag Denial of Service protections If the mode is enabled Denial of Service prevention is active for this type of attacks If packets...

Page 303: ...ax dos control l4port no dos control l4port no This command disables L4 Port Denial of Service protections Default Setting Disabled Command Mode Global Config 7 13 2 6 dos control tcpport This command...

Page 304: ...rce destination port number Source UDP Port Destination UDP Port Denial of Service protection Default Setting Disabled Command Mode Global Config 7 13 2 8 dos control icmp This command enables Maximum...

Page 305: ...ize Denial of Service protections to its default value Default Setting 512 Command Mode Global Config 7 13 2 10 dos control icmpv6 This command enables Maximum ICMPV6 Packet Size Denial of Service pro...

Page 306: ...nd enables the Source MAC address Destination MAC address SMAC DMAC Denial of Service protection If the mode is enabled Denial of Service prevention is active for this type of attack If packets ingres...

Page 307: ...enabled Denial of Service prevention is active for this type of attack If packets ingress having TCP flag SYN set and an L4 source port from 0 to 1023 the packets will be dropped if the mode is enabl...

Page 308: ...is active for this type of attack If packets ingress having TCP Header Offset equal to one 1 the packets will be dropped if the mode is enabled Syntax dos control tcpoffset no dos control tcpoffset no...

Page 309: ...d Number of subset advertisements received by this switch on its trunk ports Request advertisements received Number of advertisement requests received by this switch on its trunk ports Summary adverti...

Page 310: ...Version Displays the VTP version operating on the switch Configuration Revision Displays the current configuration revision number on this switch Maximum VTP supported VLANs Maximum number of VLANs s...

Page 311: ...tus 7 14 1 4 show vtp trunkport This command displays the VTP trunkport status Syntax show vtp trunkport Default Setting None Command Mode Privileged Exec Display Message Port Displays the interface n...

Page 312: ...ain name is 32 bytes The system s default administrative domain name is NULL Default Setting None Command Mode Global Config 7 14 2 3 vtp mode This command uses to set VTP device mode There are theree...

Page 313: ...version to default value Default Setting 1 Command Mode Global Config 7 14 2 5 vtp password This command uses to configure the VTP administrative domain password Syntax vtp password password no vtp pa...

Page 314: ...This command uses to configure the adminstrative domain trunk port for all of interfaces Syntax vtp trunkport all no vtp trunkport all no This command resets the adminstrative domain trunk port to def...

Page 315: ...efault Setting None Command Mode Privileged Exec Display Message Name An name of the protected port group Member Ports List of ports which are configured as protected for the group identified with gro...

Page 316: ...32 alphanumeric characters long including blanks The default is blank Port protection occurs within a single switch Protected port configuration does not affect traffic between ports on two different...

Page 317: ...ct all all the Static MAC Filters in the system are displayed If you supply a value for macaddr you must also enter a value for vlanid and the system displays Static MAC Filter information only for th...

Page 318: ...of b1 b2 b3 b4 b5 b6 no This command removes all filtering restrictions and the static MAC filter entry for the MAC address macaddr on the VLAN vlanid Default Setting None Command Mode Global Config 7...

Page 319: ...N Syntax macfilter addsrc all macaddr 1 3965 no macfilter addsrc all macaddr 1 3965 macaddr Specified a 6 byte hexadecimal number in the format of b1 b2 b3 b4 b5 b6 no This command removes all interfa...

Page 320: ...lear eventlog This command is used to clear the event log which contains error messages from the system Syntax clear eventlog Default Setting None Command Mode Privileged Exec 7 17 1 4 clear logging b...

Page 321: ...en this command is processed You are prompted to confirm that the reset should proceed Syntax clear config Default Setting None Command Mode Privileged Exec 7 17 1 6 clear pass This command resets all...

Page 322: ...1 8 clear dns This command sets the DNS configuration to default value The command will only clear the DNS statistics used option command counter or only clear all entries from the DNS cache used opti...

Page 323: ...s used to clear the CDP packet counters Default Setting None Command Mode Privileged Exec 7 17 1 10 clear vlan This command resets VLAN configuration parameters to the factory defaults Syntax clear vl...

Page 324: ...Forwarding Database Syntax clear igmpsnooping Default Setting None Command Mode Privileged Exec 7 17 1 12 clear port channel This command clears all port channels LAGs Syntax clear port channel Defau...

Page 325: ...r for all ports Syntax clear dot1x statistics all slot port slot port is the desired interface number all All interfaces Default Setting None Command Mode Privileged Exec 7 17 1 15 clear radius statis...

Page 326: ...ost name to address mapping Syntax clear hosts Default Setting None Command Mode Privileged Exec 7 17 1 18 clear port security dynamic address This command is used to clear the Dynamic MAC address by...

Page 327: ...ype gateway are purged as well If interface keyword is specified he dymanic entries of that interface on the ARP cache Table are purged Syntax clear ip arp cache gateway interface slot port slot port...

Page 328: ...asswd This command changes Privileged EXEC password Syntax enable passwd Default Setting None Command Mode Global Config 7 17 1 23 enable passwd encrypted This command allows the administrator to tran...

Page 329: ...This command will use to clear IPv6 statistics for all interfaces or for a specific interface including loopback and tunnel interfaces IPv6 statistics display in the output of the show ipv6 traffic c...

Page 330: ...d for the destination The command can also be used to download the startup config or code image by specifying the source as a URL and destination as startup config or image respectively The command ca...

Page 331: ...url sslpem root sslpem server sslpem dhweak sslpem dhstrong copy url script destfilename where url xmodem tftp ipaddr path file ftp user pass ipaddr path file destfilename name of the image file or th...

Page 332: ...de Privileged Exec This command upload or download the pre login banner file Syntax copy clibanner url copy url clibanner no clibanner url xmodem tftp ipaddr path file or ftp user pass ipaddr path fil...

Page 333: ...rom config configuration file opcode run time operation code Default Setting None Command Mode Privileged Exec Display Message Column Heading Description date The date that the file was created file n...

Page 334: ...d Mode Privileged Exec 7 17 7 ping 7 17 7 1 ping ipaddress host This command checks if another computer is on the network and listens for connections To use this command configure the switch for netwo...

Page 335: ...lity enabled and running on top of TCP IP The switch can be pinged from any IP workstation with which the switch is connected through the default VLAN VLAN 1 as long as there is a physical path betwee...

Page 336: ...size of the ping packet Syntax ping ipv6 interface slot port serviceport switchport tunnel tunnel id loopback loopback id link local address size datagram size slot port Specify the interface tunnel i...

Page 337: ...through the network on a hop by hop basis The ipv6 address hostname parameter must be a valid IPv6 address hostname Syntax traceroute ipv6 ipv6 address hostname initTtl initTtl maxTtl maxTtl interval...

Page 338: ...ss 1 31 1 12 2000 2099 hh mm ss hh in 24 hour format Range 0 23 mm Range 0 59 ss Range 0 59 1 31 Day of month Range 1 31 1 12 Month Range 1 12 2000 2099 Year 4 digit Range 2000 2099 Default Setting N...

Page 339: ...ommand is used to activate global configuration mode Syntax configure Default Setting None Command Mode Privileged Exec 7 17 13 disconnect This command is used to close a telnet session Syntax disconn...

Page 340: ...ame prompt_string prompt_string Prompt string Default Setting Fortinet Command Mode Global Config 7 17 15 quit This command is used to exit a CLI session Syntax quit Default Setting None Command Mode...

Page 341: ...ter harmful DHCP messages and to build a bindings database of MAC address IP address VLAN ID port tuples that are considered authorized You can enable DHCP snooping globally and on specific VLANs and...

Page 342: ...es server messages to the CPU so that DHCP snooping can learn the binding 7 18 1 Show Commands 7 18 1 1 show ip dhcp snooping This command displays the DHCP Snooping global configurations and per port...

Page 343: ...pe statically configured from the CLI or dynamically learned Lease Secs he remaining lease time for the entry 7 18 1 3 show ip dhcp snooping database This command displays the DHCP Snooping configurat...

Page 344: ...nts the number of DHCP release and Deny messages received on the different ports than learned previously DHCP Server Msgs Rec d Represents the number of DHCP server messages received on untrusted port...

Page 345: ...ress in the received DCHP message Syntax ip dhcp snooping verify mac address no ip dhcp snooping verify mac address no This command disables the verification of the source MAC address with the client...

Page 346: ...rite delay value to the default value Default Setting 300 seconds Command Mode Global Config 7 18 2 6 ip dhcp snooping database timeout This command configures the DHCP snooping bindings store timeout...

Page 347: ...t level is 1 second with a range of 1 to 15 seconds Syntax ip dhcp snooping limit rate pps burst interval seconds no ip dhcp snooping limit no This command sets the rate at which the DHCP Snooping mes...

Page 348: ...onfigures the port as untrusted Default Setting Disabled Command Mode Interface Config 7 18 2 11 ip dhcp snooping information option This command ip dhcp snooping information option enables the DHCP L...

Page 349: ...ed source IDs Similar to DHCP snooping this feature is enabled on a DHCP snooping untrusted Layer 2 port Initially all IP traffic on the port is blocked except for DHCP packets that are captured by th...

Page 350: ...verify source This command displays the IPSG interface and binding configurations on all ports Syntax show ip verify source interface slot port Default Setting None Command Mode Privileged Exec Displa...

Page 351: ...Snooping VLAN VLAN for the entry Interface IP address of the interface in slot port format 7 19 2 Configuration Commands 7 19 2 1 ip verify source This command configures the IPSG source ID attribute...

Page 352: ...nd responses are relayed DAI prevents these attacks by intercepting all ARP requests and responses Each of these intercepted packets is verified for valid MAC address to IP address bindings before the...

Page 353: ...ed due to DHCP snooping binding database match failure ACL Drops The number of packets dropped due to ARP ACL rule match failure DHCP Permits The number of packets permitted due to DHCP snooping bindi...

Page 354: ...CL is configured static on the VLAN 7 20 1 3 show ip arp inspection interfaces This command displays the Dynamic ARP Inspection configuration on all the DAI enabled interfaces An interface is said to...

Page 355: ...al validation checks like source mac validation destination mac validation and ip address validation on the received ARP packets Syntax ip arp inspection validate src mac dst mac ip no ip arp inspecti...

Page 356: ...separated VLAN ranges Default Setting Disabled Command Mode Global Config 7 20 2 4 ip arp inspection filter This command configures the ARP ACL used to filter invalid ARP packets on a list of comma s...

Page 357: ...This command configures the rate limit and burst interval values for an interface Configuring none for the limit means the interface is not rate limited for Dynamic ARP Inspections Syntax ip arp insp...

Page 358: ...ddress combination used in ARP packet validation Syntax permit ip host sender ip mac host sender mac no permit ip host sender ip mac host sender mac no This command deletes a rule for a valid IP and M...

Page 359: ...s are filtered and processed based on defined criteria The filtering criteria are defined by a class The processing is defined by a policy s attributes Policy attributes may be defined on a per class...

Page 360: ...g of class type acl Regarding nested classes referred to here as class references a given class definition can contain at most one reference to another class which can be combined with other match cri...

Page 361: ...ass creation deletion and matching with the class match commands specifying layer 3 layer 2 and general match criteria The class match criteria are also known as class rules with a class definition co...

Page 362: ...nfig or Ipv6 Class Map Config when this command is successfully executed depending on the ipv4 ipv6 keyword specified Command Mode Global Config 7 21 2 2 no class map This command eliminates an existi...

Page 363: ...ied class definition a match condition whereby all packets are considered to belong to the class Syntax match any Default Setting None Command Mode Class Map Config Ipv6 Class Map Config 7 21 2 5 matc...

Page 364: ...es to the refclassname class match criteria must maintain this validity or the change attempt shall fail The total number of class rules formed by the complete reference class chain includes both pred...

Page 365: ...class definition a match condition based on the destination MAC address of a packet The address parameter is any layer 2 MAC address formatted as six two digit hexadecimal numbers separated by colons...

Page 366: ...ax match dstl4port portkey 0 65535 To specify the match condition as a single keyword the value for portkey is one of the supported port name keywords The currently supported portkey values are domain...

Page 367: ...ifies ethertype value Default Setting None Command Mode Class Map Config 7 21 2 12 match ip dscp This command adds to the specified class definition a match condition based on the value of the IP Diff...

Page 368: ...from 0 to 7 Syntax match ip precedence 0 7 i The ip dscp ip precedence and ip tos match conditions are alternative ways to specify a match criterion for the same Service Type field in the IP header b...

Page 369: ...ich bits of the IP Service Type field are checked Default Setting None Command Mode Class Map Config 7 21 2 15 match protocol This command adds to the specified class definition a match condition base...

Page 370: ...ff 07 23 ff fe dc i This command is not available on the Broadcom 5630x platform Syntax match source address mac address macmask address Specifies any layer 2 MAC address macmask Specifies a layer 2...

Page 371: ...umber is required The port number is an integer from 0 to 65535 To specify the match condition as a range two layer 4 port numbers are required and together they specify a contiguous port range Each p...

Page 372: ...None Command Mode IPv6 Class Map Config 7 21 2 21 match srcip6 This command adds to the specified class definition a match condition based on the source IP address of a packet Syntax match srcip6 sou...

Page 373: ...fServ CLI does not necessarily require that users associate only one traffic class to one policy In fact multiple traffic classes can be associated with a single policy each defining a particular trea...

Page 374: ...Incompatibilities Drop 7 21 3 2 drop This command specifies that all packets for the associated traffic stream are to be dropped at ingress Syntax drop Command Mode Policy Class Map Config Incompatibi...

Page 375: ...patibilities Drop Mirror 7 21 3 5 conform color This command is used to enable color aware traffic policing and define the conform color class maps used Used in conjunction with the police command whe...

Page 376: ...0 7 0 7 The range of COS value is 0 to 7 Command Mode Policy Class Map Config Policy Type In Incompatibilities Drop Mark IP DSCP IP Precedence Police 7 21 3 7 class This command creates an instance of...

Page 377: ...for the associated traffic stream with the specified IP DSCP value Syntax mark ip dscp value value is specified as either an integer from 0 to 63 or symbolically through one of the following keywords...

Page 378: ...be cs0 cs1 cs2 cs3 cs4 cs5 cs6 cs7 ef For set prec transmit an IP Precedence value is required and is specified as an integer from 0 7 For set cos transmit an 802 1p priority value is required and is...

Page 379: ...tablishes a new DiffServ policy The policyname parameter is a case sensitive alphanumeric string from 1 to 31 characters uniquely identifying the policy The type of policy is specific to the inbound t...

Page 380: ...to an interface in a particular direction Syntax service policy in policy map name The command can be used in the Interface Config mode to attach a policy to a specific interface Alternatively the com...

Page 381: ...n be used in the Global Config mode to detach this policy from all system interfaces to which it is currently attached The direction value is either in or out policy map name is the name of an existin...

Page 382: ...hybrid manner with those derived from each ACL Rule grouped and evaluated simultaneously while each such grouping is evaluated sequentially L3 Proto The Layer 3 protocol for this class Possible values...

Page 383: ...mber of entries rows in the Class Rule Table Policy Table Size Current Max The current or maximum number of entries rows in the Policy Table Policy Instance Table Size Current Max The current or maxim...

Page 384: ...how diffserv service brief This command displays all interfaces in the system to which a DiffServ policy has been attached The direction parameter is optional if specified only services in the indicat...

Page 385: ...ied using the police two rate command or if policing is in use for the class under this policy Mark IP Precedence Denotes the mark re mark value used as the IP Precedence for traffic matching this cla...

Page 386: ...ct Forces a classified traffic stream to a specified egress port physical port or LAG This can occur in addition to any marking or policing action It may also be specified along with a QoS queue assig...

Page 387: ...ion for all interfaces in the specified direction The direction parameter indicates the interface direction of interest This command enables or disables the route reflector client A route reflector cl...

Page 388: ...isplays the source MAC address for this rule Source MAC Mask Displays the source MAC mask for this rule Destination MAC Address Displays the destination MAC address for this rule Destination MAC Mask...

Page 389: ...nterfaces Displays the list of interfaces slot port to which this MAC ACL is attached in a given direction VLANs VLAN s to which the MAC ACL applies 7 22 1 3 show ip access lists This command displays...

Page 390: ...SCP value for this rule IP Precedence This field displays the IP Precedence value for this rule IP TOS This field displays the IP TOS value for this rule Log This field displays when you enable loggin...

Page 391: ...ed for the Layer 2 header of an Ethernet frame The name parameter is a case sensitive alphanumeric string from 1 to 31 characters uniquely identifying the MAC access list If a MAC ACL by this name alr...

Page 392: ...erface and direction will be used This command specified in Interface Config mode only affects a single interface whereas the Global Config mode setting is applied to all interfaces The Interface Conf...

Page 393: ...ardware queue for handling traffic that matches this rule The allowed queue id value is 0 n 1 where n is the number of user configurable queues available for the hardware platform The mirror parameter...

Page 394: ...s tos tosmask dscp Default Setting None Command Mode Global Config 7 22 2 6 no access list This command deletes an ACL that is identified by the parameter accesslistnumber from the system or remove an...

Page 395: ...ACL no This command removes a ACL by identifier or name from the interface or vlan in a given direction Default Setting None Command Mode Global Config Interface Config 7 22 2 8 ip access list Use th...

Page 396: ...rs uniquely identifying the IP access list Syntax ip access list rename name newname Default Setting None Command Mode Global Config 7 23 IPv6 ACL Command 7 23 1 Show Commands 7 23 1 1 show ipv6 acces...

Page 397: ...enable logging for the rule Assign Queue The queue identifier to which packets matching this rule are assigned Mirror Interface The slot port to which packets matching this rule are copied Redirect In...

Page 398: ...wname oldname current Access Control List name newname new Access Control List name Default Setting None Command Mode Global Config 7 23 2 3 deny permit IPv6 This command creates a new rule for the cu...

Page 399: ...attaches a specific IPv6 ACL identified by name to an interface or associates with a VLAN ID in a given direction The name parameter must be the name of an existing IPv6 ACL An optional sequence numb...

Page 400: ...upport independent per port class of service mappings If specified the 802 1p mapping table of the interface is displayed If omitted the most recent global configuration settings are displayed Syntax...

Page 401: ...lue Traffic Class Displays the queue mapping 7 24 1 3 show queue trust This command displays the current trust mode setting for a specific interface The slot port parameter is optional and is only val...

Page 402: ...erface This displays the slot port of the interface If displaying the global configuration this output line is replaced with a Global Config indication Interface Shaping Rate The maximum transmission...

Page 403: ...traffic class for a device Syntax queue cos map all 0 7 0 7 no queue cos map all 0 7 The range of queue priority is 0 to 7 0 7 The range of mapped traffic class is 0 to 7 no Reset to the default mapp...

Page 404: ...queue Syntax queue cos queue min bandwidth bw 0 bw 1 bw 6 no queue cos queue min bandwidth bw 0 bw 1 bw 6 Each Valid range is 0 to 100 in increments of 5 and the total sum is less than or equal to 100...

Page 405: ...queue id 0 queue id 1 queue id 6 no queue cos queue strict queue id 0 queue id 1 queue id 6 no This command restores the default weighted scheduler mode for each specified queue on a per port basis De...

Page 406: ...ments 5 no This command restores the default shaping rate value Default Setting None Command Mode Interface Config This command specifies the maximum transmission bandwidth limit for all interfaces Al...

Page 407: ...e configuration of the DNS server Syntax show dns Default Setting None Command Mode Privileged Exec Display Message Domain Lookup Status Enable or disable the IP Domain Naming System DNS based host na...

Page 408: ...6 TTL Time in seconds that this entry will remain in the DNS cache table Flag Indicates if this entry is reliable A value of 8 is not as reliable as a value of 10 7 25 2 Configuration Commands 7 25 2...

Page 409: ...command defines the default domain name to be appended to incomplete host names i e host names passed from a client are not formatted with dotted notation Syntax ip domain name name no ip domain name...

Page 410: ...nd check with the specified name servers for a match If there is no domain name list the domain name specified with the ip domain name command is used If there is a domain name list the default domain...

Page 411: ...mmand disables the IP Domain Naming System DNS based host name to address translation Default Setting None Command Mode Global Config 7 25 2 7 clear domain list This command clears all entries in the...

Page 412: ...clears all entries in the DNS cache table Syntax clear dns cache Default Setting None Command Mode Privileged Exec 7 25 2 10 clear dns counter This command clears the statistics of all entries in the...

Page 413: ...as configured into the unit Cache Size Is the maximum number of entries in the ARP table This value was configured into the unit Dynamic renew mode Displays whether the ARP component automatically att...

Page 414: ...ed into the unit Response time is measured in seconds Retries Is the maximum number of times an ARP request is retried This value was configured into the unit Cache Size Is the maximum number of entri...

Page 415: ...existing routing interface macaddr Is a MAC address for that device The format is 6 two digit hexadecimal numbers that are separated by colons for example 00 06 29 32 81 40 no This command deletes an...

Page 416: ...proxy arp no This command disables Local Proxy ARP on a router interface Default Setting Disabled Command Mode Interface Config 8 1 2 4 arp cachesize This command configures the maximum number of ent...

Page 417: ...ype dynamic when they age out Default Setting Disabled Command Mode Global Config 8 1 2 6 arp purge This command causes the specified IP address to be removed from the ARP table Only entries of type d...

Page 418: ...ries Syntax arp retries 0 10 no arp retries 0 10 The range of maximum request for retries is 0 to 10 no This command configures the default count of maximum request for retries Default Setting The def...

Page 419: ...arameter is specified the dynamic entries of type gateway are purged as well Syntax clear ip arp cache gateway interface slot port Default Setting None Command Mode Privileged Exec 8 2 IP Routing Comm...

Page 420: ...e enable or disable Administrative Mode Is the administrative mode of the specified interface The possible values of this field are enable or disable This value was configured into the unit Forward Ne...

Page 421: ...g table The ip address specifies the network for which the route is to be displayed and displays the best matching best route for the address The mask specifies the subnet mask for the given ip addres...

Page 422: ...utgoing router IP address to use when forwarding traffic to the next router if any in the path toward the destination Interface The outgoing router interface to use when forwarding traffic to the next...

Page 423: ...Is a mask of the network and host portion of the IP address for the attached network Protocol Tells which protocol added the specified route The possibilities are local static OSPF or RIP Total Number...

Page 424: ...associated with this route via Next Hop The outgoing router IP address to use when forwarding traffic to the next router if any in the path toward the destination Interface The outgoing router interfa...

Page 425: ...play Message Route Codes Displays the key for the routing protocol codes that might appear in the routing table output The command displays the routing tables in the following format Code IP Address M...

Page 426: ...tance associated with this route Routes with low values are preferred over routes with higher values Metric The cost associated with this route via Next Hop The outgoing router IP address to use when...

Page 427: ...e preferred over higher router preference values Syntax show ip route preferences Default Setting None Command Mode Privileged Exec User Exec Display Message Local This field displays the local route...

Page 428: ...Admin Mode for the master switch Default Setting Disabled Command Mode Global Config 8 2 2 3 ip address This command configures an IP address on an interface The IP address may be a secondary IP addr...

Page 429: ...ence value of this route The range is 1 to 255 no delete all next hops to a destination static route If the optional nextHopRtr parameter is designated the next hop is deleted and if the optional prec...

Page 430: ...ned the original default precedence The new default precedence will only be applied to static routes created after invoking the ip route precedence command Syntax ip route precedence 1 255 1 255 Defau...

Page 431: ...he link layer encapsulation type is SNAP Default Setting The default value is ethernet Command Mode Interface Config Restrictions Routed frames are always Ethernet encapsulated when a frame is routed...

Page 432: ...f sending Opaque LSAs This is a configured value Autocost Ref BW Shows the value of auto cost reference bandwidth configured on the router ABR Status Shows whether the router is an OSPF Area Border Ro...

Page 433: ...istributed routes Default Passive Setting Shows whether the interfaces are passive by default Default Route Advertise Indicates whether the default routes received from other source protocols are adve...

Page 434: ...n Next Hop Intf The outgoing router interface to use when forwarding traffic to the next hop 8 3 1 3 show ip ospf area This command displays information about the area The areaid identifies the OSPF a...

Page 435: ...only if the area is configured as an NSSA Import Summary LSAs Shows whether to import summary LSAs into the NSSA Redistribute into NSSA Shows whether to redistribute information into the NSSA Default...

Page 436: ...router interface to use when forwarding traffic to the next hop 8 3 1 5 show ip ospf database This command displays information about the link state database when OSPF is enabled If you do not enter...

Page 437: ...None Command Mode Privileged Exec User Exec Display Messages Link Id A number that uniquely identifies an LSA that a router originates from all other self originated LSAs of the same LS type Adv Route...

Page 438: ...r of opaque AS LSAs in the database Total Number of entries for all areas 8 3 1 7 show ip ospf interface This command displays the information for the IFO object or virtual interface tables Syntax sho...

Page 439: ...packets sent from neighboring routers The information below will only be displayed if OSPF is enabled OSPF Interface Type Broadcast LANs such as Ethernet and IEEE 802 5 take the value broadcast The O...

Page 440: ...1 9 show ip ospf interface stats This command displays the statistics for a specific interface The information below will only be displayed if OSPF is enabled Syntax show ip ospf interface stats slot...

Page 441: ...ddress of the ingress interface and is not the AllDrRouters or AllSpfRouters multicast addresses Wrong Authentication Type The number of packets discarded because the authentication type specified in...

Page 442: ...Init an Hello packet has recently been seen from the neighbor but bidirectional communication has not yet been established 2 way communication between the two routers is bidirectional Exchange start...

Page 443: ...ched the Full state State The state of the neighboring routers Events The number of times this neighbor relationship has changed state or an error has occurred Retransmission Queue Length An integer r...

Page 444: ...er Exec Display Messages Delta T How long ago the SPF ran The time is in the format hh mm ss giving the hours minutes and seconds since the SPF run SPF Duration How long the SPF took in milliseconds R...

Page 445: ...fies the neighbor s Router ID Syntax show ip ospf virtual link areaid neighbor Default Setting None Command Mode Privileged Exec User Exec Display Messages Area ID The area id of the requested OSPF ar...

Page 446: ...ghbor interface of the OSPF virtual interface Hello Interval The configured hello interval for the OSPF virtual interface Dead Interval The configured dead interval for the OSPF virtual interface Retr...

Page 447: ...rlier covered by this network command Syntax network ip address wildcard mask area area id no network ip address wildcard mask area area id Default Setting Disabled Command Mode Router OSPF Config Mod...

Page 448: ...and disables OSPF 1583 compatibility Syntax 1583compatibility no 1583compatibility Default Setting Enabled Command Mode Router OSPF Config Mode 8 3 2 6 area default cost This command configures the de...

Page 449: ...ault route advertised into the NSSA no area nssa default info originate command disables the default route advertised into the NSSA Syntax area areaid nssa default info originate metric comparable non...

Page 450: ...ant it becomes a border router and a value of candidate causes the router to participate in the translator election process when it attains border router status no area nssa translator role command di...

Page 451: ...e can be allowed or suppressed no area range command deletes a specified area range The ipaddr is a valid IP address The subnetmask is a valid subnet mask Syntax area areaid range ipaddr subnetmask su...

Page 452: ...ary no area areaid stub no summary Default Setting Disabled Command Mode Router OSPF Config Mode 8 3 2 16 area virtual link area virtual link command creates the OSPF virtual interface for the specifi...

Page 453: ...nfigures the default authentication type for the OSPF virtual interface identified by areaid and neighbor The neighbor parameter is the Router ID of the neighbor Syntax area areaid virtual link neighb...

Page 454: ...he OSPF virtual interface on the virtual interface identified by areaid and neighbor The neighbor parameter is the Router ID of the neighbor The range for seconds is 0 to 3600 no area virtual link ret...

Page 455: ...andwidth is 100 Mbps or greater Use the auto cost command to change the reference bandwidth specifying the reference bandwidth in megabits per second Mbps The reference bandwidth range is 1 4294967 Mb...

Page 456: ...or indirectly by an application wishing to distribute information throughout the OSPF domain Supports the storing and flooding of Opaque LSAs of different scopes Use no capability opaque command to d...

Page 457: ...cs Syntax clear ip ospf counters Default Setting None Command Mode Privileged Exec 8 3 2 28 clear ip ospf neighbor Use this command to drop the adjacency with all OSPF neighbors On each neighbor s int...

Page 458: ...ribution Use this command to flush all self originated external LSAs Reapply the redistribution configuration and re originate prefixes as necessary Syntax clear ip ospf redistribution Default Setting...

Page 459: ...erence value of OSPF in the router Lower route preference values are preferred when determining the best route The type of OSPF route can be intra inter or external All the external type routes are gi...

Page 460: ...0 the router will not leave overflow state until restarted The range for seconds is 0 to 2147483647 seconds no exit overflow interval command configures the default exit overflow interval for OSPF Syn...

Page 461: ...type is simple If the type is encrypt the key may be up to 16 bytes If the type is encrypt a keyid in the range of 0 and 255 must be specified Unauthenticated interfaces do not need an authentication...

Page 462: ...o 2147483647 no ip ospf dead interval command sets the default OSPF dead interval for the specified interface Syntax ip ospf dead interval seconds no ip ospf dead interval Default Setting 40 Command M...

Page 463: ...nt mode no ip ospf network command to return the OSPF network type to the default Syntax ip ospf network broadcast point to point no ip ospf network Default Setting Broadcast Command Mode Interface Co...

Page 464: ...k state update packet over this interface Valid values for seconds range from 1 to 3600 1 hour no ip ospf transmit delay command sets the default OSPF Transit Delay for the specified interface Syntax...

Page 465: ...edistribute command configures OSPF protocol to allow redistribution of routes from the specified source protocol routers no redistribute command configures OSPF protocol to prohibit redistribution of...

Page 466: ...ce level passive mode OSPF will not form adjacencies over a passive interface no passive interface default command to disable the global passive mode by default for all interfaces Any interface previo...

Page 467: ...this command to configure the SPF delay time and hold time The valid range for both parameters is 0 65535 seconds Syntax timers spf delay time hold time Default Setting delay time 5 hold time 10 Comma...

Page 468: ...ed or disabled Requests Received Is the number of requests received Requests Relayed Is the number of requests relayed Packets Discarded Is the number of packets discarded 8 4 2 Configuration Commands...

Page 469: ...et the maximum hop count to 4 Default Setting The default value is 4 Command Mode Global Config 8 4 2 4 bootpdhcprelay minwaittime This command configures the minimum wait time in seconds for BootP DH...

Page 470: ...r no bootpdhcprelay serverip ipaddr The IP address of the BootP DHCP server no Clear the IP address of the BootP DHCP server Default Setting None Command Mode Global Config 8 5 Routing Information Pro...

Page 471: ...is does not include the refresh of a route s age Global queries The number of responses sent to RIP queries from other systems Default Metric Sets a default for the metric of redistributed routes This...

Page 472: ...s which were subsequently discarded for any reason Bad Routes Received The number of routes contained in valid RIP packets that were ignored for any reason Updates Sent The number of triggered RIP upd...

Page 473: ...mode of RIP in the router to inactive Default Setting Enabled Command Mode Router RIP Config 8 5 2 2 ip rip This command enables RIP on a router interface Syntax ip rip no ip rip no This command disa...

Page 474: ...on originate no This command is used to cancel the advertisement of default routes Default Setting Not configured Command Mode Router RIP Config 8 5 2 5 default metric This command is used to set a de...

Page 475: ...router Default Setting 15 Command Mode Router RIP Config 8 5 2 7 hostrouteaccept This command enables the RIP hostroutesaccept mode Syntax hostrouteaccept no hostrouteaccept no This command disables t...

Page 476: ...is used to specify the access list to filter routes received from the source protocol Source protocols have OSPF Static and Connected Syntax distribute list 1 199 out ospf static connected no distribu...

Page 477: ...Setting Metric not configured Match internal Command Mode Router RIP Config 8 5 2 11 ip rip authentication This command sets the RIP Version 2 Authentication Type and Key for the specified interface T...

Page 478: ...ip receive version no This command configures the interface to allow RIP control packets of the default version s to be received Default Setting Both Command Mode Interface Config 8 5 2 13 ip rip send...

Page 479: ...Setting None Command Mode Privileged Exec User Exec Display Message Ad Mode Displays the advertise mode which indicates whether router discovery is enabled or disabled on this interface Advertise Add...

Page 480: ...tax ip irdp no ip irdp no Disable Router Discovery on an interface Default Setting Disabled Command Mode Interface Config 8 6 2 2 ip irdp broadcast This command configures the address to be used to ad...

Page 481: ...efault value is 3 maxadvertinterval 600 1800 Command Mode Global Config 8 6 2 4 ip irdp maxadvertinterval This commands configures the maximum time in seconds allowed between sending router advertisem...

Page 482: ...nfigures the preferability of the address as a default router address relative to other router addresses on the same subnet Syntax ip irdp preference 2147483648 2147483647 no ip irdp preference 214748...

Page 483: ...s the identifier of the VLAN Logical Interface Indicates the logical slot port associated with the VLAN routing interface IP Address Displays the IP Address associated with this VLAN Subnet Mask Indic...

Page 484: ...RRP functionality on the switch Router Checksum Errors Represents the total number of VRRP packets received with an invalid VRRP checksum value Router Version Errors Represents the total number of VRR...

Page 485: ...efault Setting None Command Mode Privileged Exec User Exec Display Message VRID Represents the router ID of the virtual router Primary IP Address This field represents the configured IP Address for th...

Page 486: ...on t pass the authentication check IP TTL errors Represents the total number of VRRP packets received by the virtual router with IP TTL time to live not equal to 255 Zero Priority Packets Received Rep...

Page 487: ...terface for Virtual Router configuration in the router Syntax ip vrrp 1 255 no ip vrrp 1 255 1 255 The range of virtual router ID is 1 to 255 no This command removes all VRRP configuration details of...

Page 488: ...l router configured on the specified interface Enabling the status field starts a virtual router Syntax ip vrrp 1 255 mode no ip vrrp 1 255 mode 1 255 The range of virtual router ID is 1 to 255 no Dis...

Page 489: ...mode value for the virtual router configured on a specified interface Default Setting Enabled Command Mode Interface Config 8 8 2 6 ip vrrp priority This command sets the priority value for the virtua...

Page 490: ...virtual router in seconds Syntax ip vrrp 1 255 timers advertise 1 255 ip vrrp 1 255 timers advertise 1 255 The range of virtual router ID is 1 to 255 1 255 The range of advertisement interval is 1 to...

Page 491: ...store the priority decrement to its default Default Setting Decrement 10 Command Mode Interface Config 8 8 2 9 ip vrrp track ip route This command tracks the route reachability When the tracked route...

Page 492: ...492 Default Setting Decrement 10 Command Mode Interface Config...

Page 493: ...Setting None Command Mode Privileged Exec User EXEC Admin Mode This field indicates whether DVMRP is enabled or disabled This is a configured value Display Message Admin Mode Enable or disable DVMRP f...

Page 494: ...Address This is the IP Address of the interface This Field is displayed only when DVMRP is operational on the interface Generation ID This is the Generation ID value for the interface This is used by...

Page 495: ...lities This shows the capabilities of neighbor Received Routes This shows the number of routes received from the neighbor Rcvd Bad Pkts This field displays the number of invalid packets received from...

Page 496: ...eld displays the network Mask for the prune source It should be all 1s or both the prune source and prune mask must match Expiry Time secs This field indicates the expiry time in seconds This is the t...

Page 497: ...to age out Up Time secs This field indicates the time when a specified route was learnt in seconds 9 1 2 Configuration Commands 9 1 2 1 ip dvmrp This command sets administrative mode of DVMRP in the...

Page 498: ...s network Default Setting 1 Command Mode Interface Config 9 2 Internet Group Management Protocol IGMP Commands This section provides a detailed explanation of the IGMP commands The commands are divide...

Page 499: ...displays the registered multicast groups on the interface in detail Syntax show ip igmp groups slot port detail slot port Valid slot and port number separated by forward slashes detail Display details...

Page 500: ...uld be an integer value or if there is no Version 2 host present Group Compatibilty Mode The group compatibility mode v1 v2 or v3 for this group on the specified interface 9 2 1 3 show ip igmp interfa...

Page 501: ...ip igmp interface membership This command displays the list of interfaces that have registered in the multicast group Syntax show ip igmp interface membership multiipaddr detail multiipaddr A multica...

Page 502: ...ber separated by forward slashes Default Setting None Command Mode Privileged Exec User EXEC Display Message Querier Status This field indicates the status of the IGMP router whether it is running in...

Page 503: ...ting Disabled Command Mode Global Config This command sets the administrative mode of IGMP on an interface to active Syntax ip igmp no ip igmp no This command sets the administrative mode of IGMP on a...

Page 504: ...This command resets the number of Group Specific Queries to the default value Default Setting 2 Command Mode Interface Config 9 2 2 4 ip igmp last member query interval This command configures the Max...

Page 505: ...Setting 125 seconds Command Mode Interface Config 9 2 2 6 ip igmp query max response time This command configures the maximum response time interval for the specified interface which is the maximum q...

Page 506: ...r 1 255 is 1 to 255 no This command sets the robustness value to default Default Setting 2 Command Mode Interface Config 9 2 2 8 ip igmp startup query count This command sets the number of Queries sen...

Page 507: ...d explanation of the MLD commands The commands are divided into the following different groups Show commands are used to display device settings statistics and other information Configuration commands...

Page 508: ...received for this multicast group address on that interface Filter Mode The filter mode of the multicast group on this interface The values it can take are include and exclude Version 1 Host Timer The...

Page 509: ...on is displayed if the operational mode of the MLD interface is enabled Querier Status This value indicates whether the interface is an MLD querier or non querier on the subnet it is associated with Q...

Page 510: ...nterval for the interface The query interval is the amount of time between the general queries sent when the router is the querier on that interface The range for query interval is 1 to 3600 seconds S...

Page 511: ...mber query interval no Use this command to reset the last member query interval parameter of the interface to the default value Default Setting 1000 milliseconds Command Mode Interface Config 9 3 2 4...

Page 512: ...The user can go to the CLI Privilege Configuration Mode to clear MLD counters on the system use the clear ipv6 mld counters slot port priviledge configuration command Syntax clear ipv6 mld counters s...

Page 513: ...no ipv6 mld version 1 2 The mld version number no This command resets the version of MLD for this interface The version is reset to the default value Default Setting 2 Command Mode Interface Config 9...

Page 514: ...alues are PIMDM PIMSM or DVMRP Forwarding Multicast Stream Entry Count This field displays the number of entries in the multicast table 9 4 1 2 show ip mcast boundary This command displays all the con...

Page 515: ...ays the multicast routing table details summary displays the multicast routing table summary Default Setting None Command Mode Privileged Exec User Exec Display Message If the detail parameter is spec...

Page 516: ...e containing the given groupipaddr Syntax show ip mcast mroute group groupipaddr detail summary groupipaddr the IP Address of the destination of the multicast packet detail Display the multicast routi...

Page 517: ...ting None Command Mode Privileged Exec User Exec Display Message If the groupipaddr parameter is specified the follow fields are displayed Source IP This field displays the IP address of the multicast...

Page 518: ...e currently enabled An error message will be displayed on the CLI if multicast routing is enabled while IGMP is disabled However the IP multicast mode configuration is stored in the multicast configur...

Page 519: ...d to the multicast Data packets which are to be forwarded from the interface The value for ttlthreshold has range from 0 to 255 Syntax ip multicast ttl threshold 0 255 no ip multicast ttl threshold 0...

Page 520: ...ent state of PIM DM on this interface Possible values are Operational or Non Operational 9 5 1 2 show ip pimdm interface This command displays the interface information for PIM DM on the specified int...

Page 521: ...IP Address that represents the PIM DM interface Nbr Count This field displays the neighbor count for the PIM DM interface Hello Interval This field indicates the time interval between two hello messa...

Page 522: ...Configuration Commands 9 5 2 1 ip pimdm This command enables the administrative mode of PIM DM in the router Syntax ip pimdm no ip pimdm no This command disables the administrative mode of PIM DM in...

Page 523: ...600 This is time interval in seconds no This command resets the transmission frequency of hello messages between PIM enabled neighbors to the default value Default Setting 30 Command Mode Interface Co...

Page 524: ...is command displays displays the bootstrap router BSR information The output includes elected BSR information and information about the locally configured candidate rendezvous point RP advertisement S...

Page 525: ...his interface This is a configured value By default the value is 30 seconds Join Prune Interval This field indicates the join prune interval for the PIM SM router The interval is in seconds Neighbor C...

Page 526: ...d displays which rendezvous point RP is being used for a specified group Syntax show ip pimsm rphash group address group address the IP multicast group address Default Setting None Command Mode Privil...

Page 527: ...sabled IGMP must be enabled before PIM SM can be enabled Default Setting Disbaled Command Mode Global Config 9 6 2 2 ip pimsm join prune interval This command is used to configure the global join prun...

Page 528: ...or the RP router to switch to the shortest path to the default value Default Setting 0 Command Mode Global Config 9 6 2 4 ip pimsm spt threshold This command is used to configure the Data Threshold ra...

Page 529: ...p mask rp address the IP Address of the RP group address the group address supported by the RP group mask the group mask for the group address no This command is used to delete RP IP address for the P...

Page 530: ...ssages between PIM enabled neighbors to the default value Default Setting 30 Command Mode Interface Config 9 6 2 8 ip pimsm bsr border This command is used to prevent bootstrap router BSR messages fro...

Page 531: ...hash function is called All groups with the same seed hash correspond to the same RP For example if this value was 24 only the first 24 bits of the group addresses matter This allows you to get one R...

Page 532: ...define the Source Specific Multicast SSM range of IP multicast addresses Syntax ip pimsm ssm default group address group mask no ip pimsm ssm no This command is used to disable the Source Specific Mu...

Page 533: ...of multicast groups that are associated with the IGMP Proxy interface Unsolicited Report Interval The time interval at which the IGMP Proxy interface sends unsolicited group membership report Querier...

Page 534: ...oxy groups detail This command displays complete information about multicast groups that IGMP Proxy reported It displays a table of entries with the following as the fields of each column Syntax show...

Page 535: ...ng None Command Mode Privileged Exec User Exec Display Message Interface Index Shows the slot port of the IGMP proxy The column headings of the table associated with the interface are as follows Ver S...

Page 536: ...ce Syntax ip igmp proxy reset status Default Setting None Command Mode Interface Config 9 7 2 3 ip igmp proxy unsolicit rprt interval This command sets the unsolicited report interval for the IGMP Pro...

Page 537: ...interface number of the MLD Proxy Admin Mode States whether the MLD Proxy is enabled or not This is a configured value Operational Mode States whether the MLD Proxy is operationally enabled or not Th...

Page 538: ...ed to the MLD Proxy interface upstream interface Up Time in secs The time elapsed since last created Member State Possible values are Idle_Member interface has responded to the latest group membership...

Page 539: ...ossible values are include or exclude Sources The number of sources attached to the multicast group Group Source List The list of IP addresses of the sources attached to the multicast group Expiry Tim...

Page 540: ...rding Also make sure that there are no other multicast routing protocols enabled n the router Syntax ipv6 mld proxy no ipv6 mld proxy no This command disables the MLD Proxy on the router Default Setti...

Page 541: ...is only valid when you enable MLD Proxy on the interface The value of interval is 1 260 seconds Syntax ipv6 mld proxy unsolicit rprt interval 1 260 no ipv6 mld proxy unsolicit rprt interval no This co...

Page 542: ...w Commands 10 1 1 1 show interface tunnel This command displays the parameters related to tunnel such as tunnel mode tunnel source address and tunnel destination address Syntax show interface tunnel 0...

Page 543: ...emoves the tunnel interface and associated configuration parameters for the specified tunnel interface Default Setting None Command Mode Global Config 10 1 2 2 tunnel source This command specifies the...

Page 544: ...mode is configured Syntax tunnel mode ipv6ip 6to4 Default Setting None Command Mode Interfacel Tunnel Mode 10 2 Loopback Interface Commands The commands in this section describe how to create delete...

Page 545: ...e number of packets received on this interface Sent Packets Shows the number of packets transmitted from this interface IPv6 Address Shows the IPv6 address of this interface If you specify a loopback...

Page 546: ...nds 10 3 1 1 show ipv6 brief This command displays the IPv6 status of forwarding mode and IPv6 unicast routing mode Syntax show ipv6 brief Default Setting None Command Mode Privileged Exec User Exec D...

Page 547: ...v6 Address Length Shows the IPv6 address and length on interfaces with IPv6 enabled If you specify an interface the following information also appears Routing Mode Shows whether IPv6 routing is enable...

Page 548: ...ation also appears IPv6 Prefix Shows the IPv6 prefix for the specified interface Preferred Lifetime Shows the amount of time the advertised prefix is a preferred prefix Valid Lifetime Shows the amount...

Page 549: ...ing None Command Mode Privileged Exec User Exec Display Message IPv6 Address Specifies the IPv6 address of neighbor MAC Address Specifies the MAC address of neighbor isRtr Specifies the router flag Ne...

Page 550: ...If you use the connected keyword for protocol the all option is not available because there are no best or non best connected routes Syntax show ipv6 route ipv6 address protocol ipv6 prefix ipv6 prefi...

Page 551: ...ct routes routes of REJECT type installed by any protocol are not redistributed by OSPF RIP Reject routes are supported in both OSPFv2 and OSPFv3 10 3 1 7 show ipv6 route preferences This command disp...

Page 552: ...different lengths Total Routes Shows the total number of routes in the routing table 10 3 1 9 show ipv6 vlan This command displays IPv6 VLAN routing interface addresses Syntax show ipv6 vlan Default...

Page 553: ...smit them to their destination Received Datagrams With Unknown Protocol Number of locally addressed datagrams received successfully but discarded because of an unknown or unsupported protocol This cou...

Page 554: ...met this discretionary discard criterion Fragments Created Number of output datagram fragments that have been generated as a result of fragmentation at this output interface Datagrams Successfully Fra...

Page 555: ...ransmitted Number of ICMP destination unreachable communication administratively prohibited messages sent ICMPv6 Time Exceeded Messages Transmitted Number of ICMP Time Exceeded messages sent by the in...

Page 556: ...limit This command defines the unicast hop count used in ipv6 packets originated by the node The value is also included in router advertisements Valid values for hops are 1 64 inclusive The default n...

Page 557: ...ou use this command the interface is automatically configured with a link local address You do not need to use this command if you configured an IPv6 global address on the interface Syntax ipv6 enable...

Page 558: ...fix length is 3ffe 1 1234 64 The optional eui 64 field designates that IPv6 processing on the interfaces was enabled using an EUI 64 interface ID in the low order 64 bits of the address If you use thi...

Page 559: ...ce slot port identifies direct static routes from point to point and broadcast interfaces and must be specified when using a link local address as the next hop A route with a preference of 255 cannot...

Page 560: ...when determining the best route Default Setting 1 Command Mode Global Config 10 3 2 9 ipv6 mtu This command sets the maximum transmission unit MTU size in bytes of IPv6 packets on an interface This co...

Page 561: ...v6 nd managed config flag no ipv6 nd managed config flag no This command resets the managed address configuration flag in router advertisements to the default value Default Setting False Command Mode...

Page 562: ...his command resets the other stateful configuration flag back to its default value in router advertisements sent from the interface Default Setting False Command Mode Interface Config 10 3 2 14 ipv6 n...

Page 563: ...and resets router lifetime to the default value Default Setting 1800 Command Mode Interface Config 10 3 2 16 ipv6 nd reachable time This command sets the router advertisement time to consider a neighb...

Page 564: ...des the prefixes of the IPv6 addresses configured on the interface where the RA is transmitted Addresses are configured using the ipv6 address interface configuration command Each prefix advertisement...

Page 565: ...te limit is configured as a token bucket with two configurable parameters burst size and burst interval Syntax ipv6 icmp error interval burst interval burst size no ipv6 icmp error interval burst inte...

Page 566: ...command sets IPv6 neighbor configuration to default values Default Setting None Command Mode Global Config 10 4 OSPFv3 Commands This section describes the commands you use to configure OSPFv3 which i...

Page 567: ...Shows the number of new link state advertisements that have been originated LSAs Received Shows the number of link state advertisements received determined to be new instantiations External LSDB Limit...

Page 568: ...er ID Router ID of the destination Cost Cost of using this route Area ID The area ID of the area from which this route is learned Next Hop Next hop toward the destination Next Hop Intf The outgoing ro...

Page 569: ...g OSPF NSSA specific information displays only if the area is configured as an NSSA Import Summary LSAs Shows whether to import summary LSAs into the NSSA Redistribute into NSSA Shows whether to redis...

Page 570: ...lay the network LSAs Use nssa external to display NSSA external LSAs Use prefix to display intra area Prefix LSAs Use router to display router LSAs Use unknown area unknown as or unknown link to displ...

Page 571: ...the OSPFv3 link state database Inter area Prefix Total number of inter area prefix LSAs in the OSPFv3 link state database Inter area Router Total number of inter area router LSAs in the OSPFv3 link s...

Page 572: ...which the interface sends LSA Hello Interval Shows the frequency in seconds at which the interface sends Hello packets Dead Interval Shows the amount of time in seconds the interface waits before ass...

Page 573: ...rt number separated by forward slashes OSPF Admin Mode States whether OSPF is enabled or disabled on a router interface This is a configured value OSPF Area ID Represents the OSPF Area Id for the spec...

Page 574: ...total number of LSA acknowledged from this interface LSA Acks Sent The total number of LSAs acknowledged to this interface Sent Packets The number of OSPF packets transmitted on the interface Receive...

Page 575: ...rt Interface number Default Setting None Command Mode Privileged Exec User Exec Display Messages If you do not specify an IP address a table with the following columns displays for all neighbors or th...

Page 576: ...An integer value that indicates the optional OSPF capabilities supported by the neighbor These are listed in its Hello packets This enables received Hello Packets to be rejected i e neighbor relation...

Page 577: ...h Syntax show ipv6 ospf stub table Default Setting None Command Mode Privileged Exec User Exec Display Messages Area ID Is a 32 bit identifier for the created stub area Type of Service Is the type of...

Page 578: ...uthentication the interface performs on LSAs it receives State The OSPF Interface States are down loopback waiting point to point designated router and backup designated router This is the state of th...

Page 579: ...Mode Interface Config 10 4 2 2 ipv6 ospf areaid This command sets the OSPF area to which the specified router interface belongs The areaid is an IPv6 address formatted as a 4 digit dotted decimal numb...

Page 580: ...have not been seen before its neighbor routers declare that the router is down The value for the length of time must be the same for all routers attached to a common network This value should be some...

Page 581: ...router can accept the Database Description packet is rejected and the OSPF adjacency is not established Syntax ipv6 ospf mtu ignore no ipv6 ospf mtu ignore no This command enables the OSPF MTU mismatc...

Page 582: ...55 no ipv6 ospf priority no This command sets the default OSPF priority for the specified router interface Default Setting 1 which is the highest router priority Command Mode Interface Config 10 4 2 9...

Page 583: ...ts the estimated number of seconds it takes to transmit a link state update packet over this interface Valid values for seconds range from 1 to 3600 1 hour Syntax ipv6 ospf transmit delay seconds no i...

Page 584: ...n as an NSSA Syntax area areaid nssa no area areaid nssa areaid Area ID no This command disables nssa from the specified area id Default Setting None Command Mode Router OSPFv3 Config 10 4 2 14 area n...

Page 585: ...into the NSSA Default Setting None Command Mode Router OSPFv3 Config 10 4 2 15 area nssa no redistribute This command configures the NSSA ABR so that learned external routes will not be redistributed...

Page 586: ...or role always candidate no area areaid nssa translator role areaid Area ID always A value of always will cause the router to assume the role of the translator when it becomes a border router candidat...

Page 587: ...her summarylink or nssaexternallink and the advertising of the area range can be allowed or suppressed Syntax area areaid range ipv6 prefix prefix length summarylink nssaexternallink advertise not adv...

Page 588: ...id stub no area areaid stub areaid Area ID no This command deletes a stub area for the specified area ID Default Setting None Command Mode Router OSPFv3 Config 10 4 2 21 area stub no summary This comm...

Page 589: ...tication type is none Command Mode Router OSPFv3 Config 10 4 2 23 area virtual link dead interval This command configures the dead interval for the OSPF virtual interface on the virtual interface iden...

Page 590: ...ied by areaid and neighborid Default Setting 10 seconds Command Mode Router OSPFv3 Config 10 4 2 25 area virtual link retransmit interval This command configures the retransmit interval for the OSPF v...

Page 591: ...n the auto cost reference bandwidth and bandwidth commands give you control over the default link cost You can configure for OSPF an interface bandwidth that is independent of the actual link speed A...

Page 592: ...tric type The value of metric type is type 1 or type 2 no This command configures the default advertisement of default routes Default Setting Metric unspecified Type 2 Command Mode Router OSPFv3 Confi...

Page 593: ...c Syntax distance ospf intra inter type1 type2 preference no distance ospf intra inter type1 type2 preference The range for intra is 1 to 252 The range for inter is 2 to 253 The range for type1 is 3 t...

Page 594: ...Setting 0 Command Mode Router OSPFv3 Config 10 4 2 33 external lsdb limit This command configures the external LSDB limit for OSPF If the value is 1 then there is no limit When the number of non defa...

Page 595: ...o its default value Default Setting 1 Command Mode Router OSPFv3 Config 10 4 2 35 passive interface default Use this command to enable global passive mode by default for all interfaces It overrides an...

Page 596: ...rs Syntax redistribute static connected metric 0 16777214 metric type 1 2 tag 0 4294967295 no redistribute static connected metric metric type tag 0 16777215 The range of metric is 0 to 16777214 0 429...

Page 597: ...system administrator in a manner not specified in this protocol 10 5 1 Show Commands 10 5 1 1 show ipv6 rip This command displays information relevant to the RIPng router Syntax show ipv6 rip Default...

Page 598: ...guration Commands 10 5 2 1 enable This command resets the default administrative mode of RIPng in the router active Syntax enable no enable no This command sets the administrative mode of RIPng in the...

Page 599: ...is command is used to set the advertisement of default routes Syntax default information originate no default information originate no This command is used to cancel the advertisement of default route...

Page 600: ...is command sets the default route preference value of RIPng in the router Default Setting 15 Command Mode IPv6 Router RIP Config 10 5 2 7 split horizon This command sets the RIPngplit horizon mode Non...

Page 601: ...ce protocols redistribute static connected metric 1 15 no redistribute ospf static connected metric 1 15 a value for metric no This command de configures RIPng protocol to redistribute routes from the...

Page 602: ...terface The user can go to the CLI Interface Configuration Mode to set ipv6 rip passive use the ipv6 rip passive interface interface configuration command Use the no ipv6 rip passive interface return...

Page 603: ...is command to display PIM DM configuration information for all interfaces or for the specified interface If no interface is specified configuration of all interfaces is displayed Syntax show ipv6 pimd...

Page 604: ...ce Expiry Time The expiry time of the neighbor on this interface 10 6 2 Configuration Commands 10 6 2 1 ipv6 pimdm Use this command to administratively enable PIM DM Multicast Routing Mode either acro...

Page 605: ...Command Mode Interface Config 10 7 Protocol Independent Multicast Sparse Mode PIM SM Commands 10 7 1 Show Commands 10 7 1 1 show ipv6 pimsm This command displays the system wide information for PIM SM...

Page 606: ...address of the BSR Uptime Length of time that this router has been up in hours minutes and seconds BSR Priority Priority as configured in the ip pimsm bsr candidate command Hash Mask Length Length of...

Page 607: ...PIM SM interface Designated Router The IP address of the Designated Router for this interface DR Priority The priority of the Designated Router BSR Border The bootstrap router border interface Possib...

Page 608: ...Indicates the mechanism BSR or static by which the RP was selected 10 7 1 6 show ipv6 pimsm rp mapping Use this command to display all group to RP mappings of which the router is a aware either config...

Page 609: ...msm bsr candidate interface slot port hash mask length priority no ipv6 pimsm bsr candidate hash mask length Length of a mask 32 bits maximum that is to be ANDed with the group address before the hash...

Page 610: ...command is used to statically configure the RP address for one or more multicast groups The parameter rpaddress is the IP address of the RP The parameter groupaddress is the group address supported b...

Page 611: ...Setting 0 Command Mode Global Config 10 7 2 6 ipv6 pimsm spt threshold This command is used to configure the Data Threshold rate for the last hop router to switch to the shortest path The rate is spec...

Page 612: ...h an interface Syntax ipv6 pimsm bsr border no ipv6 pimsm bsr border no Use this command to disable the interface from being the BSR border Default Setting Disbaled Command Mode Interface Config 10 7...

Page 613: ...sm join prune interval no Use this command to set the join prune interval to the default value Default Setting 60 Command Mode Interface Config 10 7 2 11 ipv6 pimsm hello interval This command is used...

Page 614: ...manager Ping DHCP client DNS Relay SNTP system time defining system parameters including telnet session and console baud rate etc downloading switch module software and resetting the switch module sw...

Page 615: ...ution Protocol ARP dynamically maps physical MAC addresses to Internet IP addresses This panel displays the current contents of the ARP cache For each connection the following information is displayed...

Page 616: ...anufacturing part number Base MAC Address The burned in universally administered MAC address of this switch Hardware Version The hardware version of this switch It is divided into four parts The first...

Page 617: ...ADT7460_1 Fan 3 Status Status of Fan3 It could be active or inactive ADT7460_1 Fan 4 Status Status of Fan3 It could be active or inactive Back To Front Connected ADT7460 2 ADT7460_2 Fan 1 Status Stat...

Page 618: ...change code for the corporation Vendor Part Number Part number provided by SFP transceiver vendor Vendor Serial Number Serial number provided by vendor Vendor Revision Number Revision level for part n...

Page 619: ...may use up to 31 alpha numeric characters The factory default is blank System Contact Enter the contact person for this switch You may use up to 31 alpha numeric characters The factory default is blan...

Page 620: ...a DHCP request or do nothing None The factory default is None You cannot make this choice for both the network configuration protocol and the service port You will only be given the choices for Bootp...

Page 621: ...Ipv6 Address of a neighbor switch visible to the Service Port Mac Address The MacAddress of the neighboring switch isRtr true 1 if the neighbor machine is a router false 2 otherwise Neighbor State The...

Page 622: ...SNMP based management Web based management Selection Criteria Network Configuration Protocol Current Specify what the switch should do following power up transmit a Bootp request transmit a DHCP requ...

Page 623: ...in MAC Address The burned in MAC address used for in band connectivity if you choose not to configure a locally administered address Command Buttons Submit Update the switch with the values on the sc...

Page 624: ...set the hard timeout for HTTP sessions This timeout is unaffected by the activity level of the session The value must be in the range of 0 to 168 hours A value of zero corresponds to an infinite timeo...

Page 625: ...Data Telnet Session Timeout minutes Specify how many minutes of inactivity should occur on a telnet session before the session is logged off You may enter any number from 1 to 160 The factory default...

Page 626: ...onfiguration to the switch Configuration changes take effect immediately 11 2 3 9 Configuring Outbound SSH Client Configuration Page Selection Criteria Admin Mode Specifies if the Outbound Telnet serv...

Page 627: ...logon attempt Use the silent time command to set this interval When this threshold is reached for Telnet the Telnet logon interface closes The default value is 3 Silent Time Sec Use this command to s...

Page 628: ...een reached Authentication Protocol Specify the SNMPv3 Authentication Protocol setting for the selected user account The valid Authentication Protocols are None MD5 or SHA If you select None the user...

Page 629: ...ocked due to excessive failed login attempts The threshold for number of attempts before lockout is specified by lockout attempts on the password management page Password Expiration Date Displays the...

Page 630: ...ar second in the selected authentication login list This is the method that will be used if the first method times out If you select a method that does not time out as the second method the third meth...

Page 631: ...ummary Page Non Configurable Data Authentication List Identifies the authentication login list summarized in this row Method List The ordered list of methods configured for this login list Login Users...

Page 632: ...ll not need to create an account for all users on each switch However by default the non configured user is assigned to defaultList which by default uses local authentication This page provides a user...

Page 633: ...History The number of previous passwords to store for prevention of password reuse This ensures that each user does not reuse passwords often A value of 0 indicates that no previous passwords will be...

Page 634: ...abling TCP Port DoS prevention causes the switch to drop packets that have TCP source port equal to TCP destination port The factory default is disabled UDP Port Enable or disable this option by selec...

Page 635: ...The factory default is disabled TCP Offset Enable or disable this option by selecting the corresponding line on the pulldown entry field Enabling TCP Offset DoS prevention causes the switch to drop pa...

Page 636: ...oose learned only MAC addresses that have been learned will be displayed All If you choose all the whole table will be displayed Configurable Data MAC Address Search You may also search for an individ...

Page 637: ...t again starting with the first entry in the table 11 2 5 Viewing Logs 11 2 5 1 Viewing Buffered Log Configuration Page This log stores messages in memory based upon the settings for message component...

Page 638: ...ith severity 7 debug on a system that is not stack and generated by component MSTP running in thread id 2110 on Aug 24 05 34 05 by line 318 of file mstp_api c This is the 237th message logged Messages...

Page 639: ...hall not log messages A log that is Enabled shall log messages Enable or Disable logging by selecting the corresponding line on the pulldown entry field Severity Filter A log records messages equal to...

Page 640: ...is erased when an attempt is made to add an entry after it is full The event log is preserved across system resets Non Configurable Data Entry The number of the entry within the event log The most rec...

Page 641: ...ction must be taken immediately Critical 2 critical conditions Error 3 error conditions Warning 4 warning conditions Notice 5 normal but significant conditions Informational 6 informational messages D...

Page 642: ...l log messages to connected terminals Enable or Disable logging by selecting the corresponding line on the pulldown entry field Severity Filter A log records messages equal to or above a configured se...

Page 643: ...g the corresponding line on the pulldown entry field Configurable Data Local UDP Port This is the port on the local host from which syslog messages are sent The default port is 514 Specify the local p...

Page 644: ...ers on this port Physical Mode Use the pulldown menu to select the port s speed and duplex mode If you select auto the duplex mode and speed will be set by the auto negotiation process Note that the p...

Page 645: ...ured including Ethernet header CRC and payload 1518 to 9216 The default maximum frame size is 1518 Capability You could advertise the port capabilities of a given interface during auto negotiation Por...

Page 646: ...s a monitoring port Look at the Port Monitoring screens for more information LAG the port is a member of a Link Aggregation trunk Look at the LAG screens for more information STP Mode The Spanning Tre...

Page 647: ...ort will send a trap when link status changes ifIndex Indicates the ifIndex of the interface table entry associated with this port Flow Control Indicates the status of flow control on this port Packet...

Page 648: ...ffset Displays the bit offset value which corresponds to the port when the MIB object type PortList is used to manage in SNMP IfIndex Displays the interface index associated with the port Port Descipt...

Page 649: ...yedif the cable length could not be determined The Cable Length is only displayed if the cable status is Normal This field is displayed after the Test Cable button has been clicked and results are ava...

Page 650: ...port s Default value is blank Configurable Data Source Port s Specifies the source port s with directions as mirrored port s Traffic of the source port s is sent to the probe port Up to 20 source port...

Page 651: ...erface EtherType The two byte hex EtherType to be used as the first 16 bits of the DVlan tag 802 1Q Tag Commonly used tag representing 0x8100 vMAN Tag Commonly used tag representing 0x88A8 Custom Tag...

Page 652: ...Interface EtherType The two byte hex EtherType to be used as the first 16 bits of the DVlan tag 802 1Q Tag Commonly used tag representing 0x8100 vMAN Tag Commonly used tag representing 0x88A8 Custom...

Page 653: ...itch and cause the changes to take effect on the switch Refresh Refresh the data on the screen with present state of data in the switch 11 2 7 2 Configuring sFlow Receiver Configuration Page Selection...

Page 654: ...use of this sFlowRcvrTable entry The empty string indicates that the entry is currently unclaimed sFlow Receiver Timeout The time in seconds remaining before the sampler is released and stops samplin...

Page 655: ...ct on the switch Refresh Refresh the data on the screen with present state of data in the switch 11 2 7 4 Configuring sFlow Sampler Configuration Page sFlow agent collects statistical packet based sam...

Page 656: ...on Criteria Slot Port Selects the interface for which data is to be displayed or configured Non Configurable Data Slot Port The interface for which data is being displayed ifIndex This object indicate...

Page 657: ...at higher level protocols requested be transmitted to a Multicast address including those that were discarded or not sent Broadcast Packets Transmitted Rate The total number of packets rates that high...

Page 658: ...equal access is allowed For example if the Client IP Address and Client IP Mask parameters are 192 168 1 0 255 255 255 0 then any client whose IP address is 192 168 1 0 through 192 168 1 255 inclusive...

Page 659: ...Select the receiver s status from the pulldown menu Enable send traps to the receiver Disable do not send traps to the receiver Configurable Data SNMP Community Name Enter the community string for th...

Page 660: ...s supported by the switch Non configurable Data Name The RFC number if applicable and the name of the MIB Description The RFC title or MIB description Command Buttons Refresh Update the data 11 2 9 Vi...

Page 661: ...ol A possible reason for discarding a packet could be to free up buffer space Octets Transmitted The total number of octets transmitted out of the interface including framing characters Packets Transm...

Page 662: ...witch that have been created and then deleted since the last reboot Time Since Counters Last Cleared The elapsed time in days hours minutes and seconds since the statistics for this switch were last c...

Page 663: ...switch including learned and static entries VLAN Entries Currently in Use The number of VLAN entries presently occupying the VLAN table Time Since Counters Last Cleared The elapsed time in days hours...

Page 664: ...ts received or transmitted that were between 2048 and 4095 octets in length inclusive excluding framing bits but including FCS octets Packets RX and TX 4096 9216 Octets The total number of packets inc...

Page 665: ...ut including FCS octets Alignment Errors The total number of packets received that had a length excluding framing bits but including FCS octets of between 64 and 1518 octets inclusive but had a bad Fr...

Page 666: ...counts per sec at 10 Mb s Underrun Errors The total number of frames discarded because the transmit FIFO buffer became empty during frame transmission Total Transmit Packets Discarded The sum of singl...

Page 667: ...e last cleared Command Buttons Clear Counters Clear all the counters resetting all statistics for this port to default values Clear All Counters Clear all the counters for all ports resetting all stat...

Page 668: ...broadcast address Note that this does not include multicast packets Packets Transmitted without Errors The number of frames that have been transmitted by this port to its segment Transmit Packet Erro...

Page 669: ...anges submitted since the previous save or system reboot will be retained by the switch 11 2 10 2 Resetting the Switch Page Command Buttons Reset Select this button to reboot the switch Any configurat...

Page 670: ...witch to retain the new values across a power cycle you must perform a save 11 2 10 4 Resetting the Passwords to Default Values Page Command Buttons Reset Select this button to have all passwords rese...

Page 671: ...SSL Server Certificate File PEM Encoded SSL DH Weak Encryption Parameter PEM File SSL Diffie Hellman Weak Encryption Parameter File PEM Encoded SSL DH Strong Encryption Parameter PEM File SSL Diffie...

Page 672: ...Type Specify the type of file you want to upload The available options are Script Code CLI Banner Configuration Error Log Buffered Log and Trap Log The factory default is Error Log Protocol Mode Spec...

Page 673: ...file upload 11 2 10 7 Defining Configuration and Runtime Startup File Page Specify the file used to start up the system Selection Criteria Configuration File Configuration files Runtime File Run time...

Page 674: ...to copy a start up configuration file from the running configuration file on switch Configurable Data File Name Enter the name you want to give the file being copied You may enter up to 32 characters...

Page 675: ...st Name Configurable Data IP Address Enter the IP address of the station you want the switch to ping The initial value is blank The IP Address you enter is not retained across a power cycle Host Name...

Page 676: ...retained across a power cycle Datagram Size Enter the datagram size The valid range is 48 to 2048 Non Configurable Data Ping Output The reply result received from switch Command Buttons Submit This wi...

Page 677: ...er is not retained across a power cycle MaxTTL Enter the maximum TTL for the destination The initial value is default value The MaxTTL you enter is not retained across a power cycle InitTTL Enter the...

Page 678: ...n mode which are Enable and Disable Slot Port Specifies the list of ports Configurable Data Hold Time the legal time period of a received CDP packet Transmit Interval the CDP packet sending interval C...

Page 679: ...entifies the port on which the CDP packet is sent Address The L3 addresses of the interface that has sent the update Management Address The first address of IP address which can use management address...

Page 680: ...entication Enable or disable activation of authentication failure traps by selecting the corresponding line on the pull down entry field The factory default is enabled Link Up Down Enable or disable a...

Page 681: ...igured only if the OSPFv3 admin mode is enabled Command Buttons Submit Sends the updated screen to the switch and causes the changes to take effect on the switch These changes will not be retained acr...

Page 682: ...erver Broadcast SNTP operates in the same manner as multicast mode but uses a local broadcast address instead of a multicast address The broadcast address has a single subnet scope while a multicast a...

Page 683: ...1 Command Buttons Submit Sends the updated configuration to the switch Configuration changes take effect immediately 11 2 13 2 Viewing SNTP Global Status Page Non Configurable Data Version Specifies...

Page 684: ...ceived from any server an empty string is shown Address Type Specifies the address type of the SNTP Server address for the last received valid packet Server Stratum Specifies the claimed stratum of th...

Page 685: ...ange is 1 to 65535 Default value is 123 Priority Specifies the priority of this server entry in determining the sequence of servers to which SNTP requests will be sent The client continues sending req...

Page 686: ...ed Out A directed SNTP request timed out without receiving a response from the SNTP server Bad Date Encoded The time provided by the SNTP server is not valid Version Not Supported The SNTP version sup...

Page 687: ...etained across a power cycle unless a save is performed 11 2 13 6 Configuring Time Zone Settings Page Simple Network Time Protocol SNTP allows the switch to set its internal clock based on periodic up...

Page 688: ...2 14 1 Configuring DHCP Restart Page This command issues a BOOTP or DHCP client request for any IP interface that has been set to BOOTP or DHCP mode via the IP address command DHCP requires the serve...

Page 689: ...he DHCP server The identifier type depends on the requirements of your DHCP server Selection Criteria DHCP Identifier Specifies the type of DHCP Identifier Default Specific Text String Specific Hexade...

Page 690: ...de Select enable or disable from the pull down menu When you select enable the IP Domain Naming System DNS based host name to address translation will be enabled Configurable Data Default Domain Name...

Page 691: ...ters Command Buttons Submit Sends the updated configuration to the switch Configuration changes take effect immediately Delete Deletes the domain name entry Sends the updated configuration to the swit...

Page 692: ...tely Delete Deletes the domain name server entry Sends the updated configuration to the switch Configuration changes take effect immediately Delete All Deletes all the domain name server entries Sends...

Page 693: ...te another text box Domain Name appears where the user may enter host to be configured Configurable Data Domain Name Specifies the domain name of the host This is a text string of up to 63 characters...

Page 694: ...ctory default is enabled Command Buttons Submit Applies the new configuration and causes the changes to take effect These changes will not be retained across a power cycle unless a save configuration...

Page 695: ...Rate Limit Specifies rate limit value for DHCP Snooping purpose If the incoming rate of DHCP packets exceeds the value of this object for consecutively burst interval seconds the port will be shutdow...

Page 696: ...page Ex Page 1 displays first 15 available static entries Page 2 displays Next 15 available static entries Slot Port Interface MAC Address MAC address VLAN ID VLAN ID IP Address IP address Remove This...

Page 697: ...he Remote objects like Remote File Name and Remote IP Remote Check the Remote Checkbox to Enable the Remote objects like Remote File Name and Remote IP Configurable Data Remote IP Configures Remote IP...

Page 698: ...opped by DHCP Snooping as there is no matching DHCP Snooping binding entry found Client Ifc Mismatch The number of DHCP messages that are dropped based on source MAC address and client HW address veri...

Page 699: ...forwarded if the sender MAC Address is not in FDB table and it is not in DHCP snooping binding database To enforce filtering based on MAC address other required configurations are Enable port securit...

Page 700: ...t Port interface MAC Address MAC address VLAN ID VLAN id IP Address IP address Filter Type Filter Type Remove This is to be selected to remove the particular binding entry Page Lists the Number of Pag...

Page 701: ...e from the pull down menu If you select Enable Sender MAC validation for the ARP packets will be enabled The factory default is disable Validate Destination MAC Choose the DAI Destination MAC Validati...

Page 702: ...le Dynamic ARP Inspection logging is disabled ARP ACL Name Name of ARP Access list A vlan can be configured to use this ARP ACL containing rules as the filter for ARP packet validation The name can co...

Page 703: ...ynamic ARP Inspection purpose If the incoming rate of ARP packets exceeds the value of this object for consecutively burst interval seconds ARP packets will be dropped If this value is None there is n...

Page 704: ...sent state of the data in the switch 11 3 3 5 Configuring DAI ARP ACL Rule Configuration Page Selection Criteria ARP ACL Name Select the ARP ACL for which information want to be displayed or configure...

Page 705: ...there is a matching DHCP Snooping binding entry found ACL Permits Number of ARP packets that were permitted by DAI as there is a matching ARP ACL rule found for this VLAN Bad Source MAC Number of ARP...

Page 706: ...e Filter option Configurable Data MAC Address The MAC address of the filter in the format 00 01 1A B2 53 4D You can only change this field when you have selected the Create Filter option You cannot de...

Page 707: ...dress of the filter in the format 00 01 1A B2 53 4D VLAN ID The VLAN ID associated with the filter Source Port Members A list of ports to be used for filtering inbound packets 11 3 5 Managing Port bas...

Page 708: ...nfigurable Data VLAN ID Specify the VLAN Identifier for the new VLAN You can only enter data in this field when you are creating a new VLAN The range of the VLAN ID is 1 to 3965 VLAN Name Use this opt...

Page 709: ...ct All to set the parameters for all ports to same values Acceptable Frame Types Specify how you want the port to handle untagged and priority tagged frames If you select VLAN only the port will disca...

Page 710: ...reen If you want the switch to retain the new values across a power cycle you must perform a save 11 3 5 4 Viewing VLAN Port Summary Page Non Configurable Data Slot Port The interface Port VLAN ID The...

Page 711: ...tting VLAN Configuration Page Command Buttons Reset If you select this button and confirm your selection on the next screen all VLAN configuration parameters will be reset to their factory default val...

Page 712: ...of the Group ID is 0 to 2 Configurable Data Group Name It is a name associated with the protected ports group used for identification purposes It can be up to 32 alphanumeric characters long including...

Page 713: ...kets By default if you do not configure any port IEEE 802 1Q or protocol based VLANs untagged packets will be assigned to VLAN 1 You can override this behavior by defining either port based VLANs or p...

Page 714: ...Packet Exchange IPX is a connectionless datagram Network layer protocol that forwards data over a network VLAN VLAN can be any number in the range of 1 to 3965 All the ports in the group will assign...

Page 715: ...P is a low level protocol that dynamically maps network layer addresses to physical medium access control MAC addresses IPX The Internetwork Packet Exchange IPX is a connectionless datagram Network la...

Page 716: ...uld be in dotted decimal notation VLAN ID VLAN ID can be any number in the range of 1 to 3965 Command Buttons Submit Update the switch with the values on this screen If you want the switch to retain t...

Page 717: ...ss of the packet is looked up If an entry is found the corresponding VLAN ID is assigned to the packet If the packet is already priority tagged it will maintain this value otherwise the priority will...

Page 718: ...data in the switch 11 3 10 Managing MAC based Voice VLAN 11 3 10 1 Voice VLAN Administration Page Configurable Data VLAN ID Sets the VLAN as a Voice VLAN Admin Mode Enables or disables the Voice VLAN...

Page 719: ...his optional field to specify a mask for the Voice VLAN The mac mask is the last eight digit of the mask code of the MAC address the valid values are 0xff 0xfe 0xfc 0xf8 0xf0 0xe0 0xc0 0x80 and 0x0 Vo...

Page 720: ...ion Page Use this menu to configure the parameters for Voice VLAN Configuration Note that only a user with Read Write access privileges may change the data on this screen Selection Criteria Voice VLAN...

Page 721: ...u entered If you want the switch to retain the new values across a power cycle you must perform a save You will only see this button if you have Read Write access privileges Refresh Reload the content...

Page 722: ...maintain uninterrupted service An instance of this timer exists for each GARP participant for each port Permissible values are 20 to 600 centiseconds 0 2 to 6 0 seconds The factory default is 60 cent...

Page 723: ...ed Port GMRP Mode Choose the GARP Multicast Registration Protocol administrative mode for the port by selecting enable or disable from the pull down menu If you select disable the protocol will not be...

Page 724: ...n 200 and 6000 2 to 60 seconds The factory default is 1000 centiseconds 10 seconds An instance of this timer exists for each GARP participant for each port Command Buttons Submit Update the switch wit...

Page 725: ...e Select the Fast Leave mode for the a particular interface from the pulldown menu The default is disable Configurable Data Group Membership Interval Specify the amount of time you want the switch to...

Page 726: ...ID for which pre configurable Snooping parameters are to be set Admin Mode Enable or disable the Igmp Snooping for the specified VLAN ID Group Membership Interval Sets the value for group membership...

Page 727: ...Maximum Response Time of IGMP Snooping for the specified VLAN ID Valid range is 1 to 3599 Its value should be greater than group membership interval value Multicast Router Expiry Time Multicast Route...

Page 728: ...ia Slot Port The single select box lists all physical and LAG interfaces Select the interface for which you want to display the statistics Non Configurable Data Multicast Router Specifies for the sele...

Page 729: ...r Disabled Command Buttons Submit Update the switch with the values you entered 11 3 13 8 Viewing Multicast Router VLAN Statistics Page Selection Criteria Slot Port The select box lists all Slot Ports...

Page 730: ...L2Mcast Group in the format 01 00 5E xx xx xx You can only change this field when you have selected the Create Filter option You cannot define L2Mcast Group for these MAC addresses 00 00 00 00 00 00...

Page 731: ...up Command Buttons Refresh Refresh the database and display it again starting with the first entry in the table 11 3 14 Managing IGMP Snooping Querier 11 3 14 1 Configuring IGMP Snooping Querier Confi...

Page 732: ...teria VLAN ID Selects the VLAN ID on which IGMP Snooping Querier is enabled Querier Election Participate Mode Enable or disable the Igmp Snooping Querier participate in election mode When this mode is...

Page 733: ...pate Mode Displays the querier election participate mode on the VLAN When this mode is disabled up on seeing a query of the same version in the vlan the snooping querier move to non querier state Only...

Page 734: ...es to disabled mode when IGMP Snooping is not operational on the VLAN or when the querier address is not configured or the network management address is also not configured Operational Version Display...

Page 735: ...nabled for MLD Snooping A list of all the interfaces currently enabled for MLD Snooping Data Frames Forwarded by the CPU The number of data frames forwarded by the CPU VLAN Ids Enabled For MLD Snoopin...

Page 736: ...Time The default is 260 seconds Max Response Time Specify the amount of time you want the switch to wait after sending a query on an interface because it did not receive a report for a particular gro...

Page 737: ...Snooping for the specified VLAN ID Valid range is Maximum Response Time 1 to 3600 Maximum Response Time Sets the value for maximum response time of MLD Snooping for the specified VLAN ID Valid range i...

Page 738: ...p membership interval value Multicast Router Expiry Time Multicast Router Expiry Time of MLD Snooping for the specified VLAN ID Valid range is 0 to 3600 Command Buttons Refresh Re fetch the database a...

Page 739: ...tabase and display it again starting with the first entry in the table 11 3 15 7 Configuring Multicast VLAN Configuration Page Selection Criteria Slot Port The select box lists all Slot Ports Select t...

Page 740: ...on Page Selection Criteria MAC Filter This is the list of MAC address and VLAN ID pairings for all configured L2 Mcast Groups To change the port mask s for an existing L2Mcast Group select the entry y...

Page 741: ...isplay information about entries in the L2Mcast Static Dynamic Groups These entries are used by the transparent bridging function to determine how to forward a received frame Non Configurable Data VLA...

Page 742: ...This address is used when no address is configured on the VLAN on which query is being sent MLD Version Specify the MLD protocol version used in periodic MLD queries MLD queries Query Interval Specif...

Page 743: ...ID Appears when New Entry is selected in VLAN ID selection list Specifies VLAN ID for which MLD Snooping Querier is to be enabled User can also set pre configurable Snooping Querier parameters Snoopi...

Page 744: ...D on which MLD Snooping Querier is administratively enabled and VLAN exists in the VLAN database Operational State Specifies the operational state of the MLD Snooping Querier on a VLAN It can be in an...

Page 745: ...be sent Administrative Mode Select enable or disable from the pull down menu When the Port Channel is disabled no traffic will flow and LACPDUs will be dropped but the links that form the Port Channel...

Page 746: ...new Port Channel is being created Link Status Indicates whether the Link is up or down Port Channel Members List of members of the Port Channel in Slot Port form Membership Conflicts Shows ports that...

Page 747: ...ticipating members of this Port Channel in Slot Port notation There can be a maximum of 8 ports assigned to a Port Channel Load Balance Indicates load balnace mode of port channel The possible values...

Page 748: ...ies are those that are configured by the end user Dynamic entries are added to the table as a result of a learning process or protocol Description The text description of this multicast table entry Po...

Page 749: ...he switch 11 3 18 3 Viewing IGMP Snooping MFDB Table Page Non Configurable Data MAC Address A VLAN ID multicast MAC address pair for which the switch has forwarding and or filtering information The fo...

Page 750: ...Slot Port s The list of interfaces that are designated for forwarding Fwd and filtering Flt Command Buttons Clear Entries Clicking this button tells the MLD Snooping component to delete all of its en...

Page 751: ...s The default value is IEEE 802 1w Configurable Data Configuration Name Identifier used to identify the configuration currently being used It may be up to 32 alphanumeric characters Configuration Revi...

Page 752: ...and Internal Spanning tree CST Value is enabled or disabled Configurable Data Bridge Priority Specifies the bridge priority for the Common and Internal Spanning tree CST The value lies between 0 and 6...

Page 753: ...nge parameter for the switch indicating if a topology change is in progress on any port assigned to the CST It takes a value if True or False Designated root The bridge identifier of the root bridge I...

Page 754: ...on Configurable Data Bridge identifier The bridge identifier for the selected MST instance It is made up using the bridge priority and the base MAC address of the bridge Time since topology change The...

Page 755: ...h the instance are associated with the CST Refresh Refreshes the screen with most recent data 11 3 19 4 Configuring each Port CST Configuration Page Selection Criteria Slot Port Selects one of the phy...

Page 756: ...r example if you attempt to set the priority to any value between 0 and 15 it will be set to 0 If you attempt to set any value between 16 and 2 16 1 it will be set to 16 and so on Port Path Cost Set t...

Page 757: ...idge Identifier of the CST Regional Root It is made up using the bridge priority and the base MAC address of the bridge CST Path Cost Path Cost to the CST Regional Root Loop Inconsistent State This pa...

Page 758: ...ulated Enabled or not Disabled Path cost will be calculated based on the link speed of the port if the configured value for Port Path Cost is zero Port ID The port identifier for the specified port wi...

Page 759: ...has transitioned out of loop inconsistent state Command Buttons Submit Applies the new configuration and causes the changes to take effect These changes will not be retained across a power cycle unle...

Page 760: ...y or configure data Select All to set the parameters for all ports to the same values Configurable Data Traffic Class Specify which internal traffic class to map the corresponding 802 1p priority Non...

Page 761: ...d Buttons Submit Applies the new configuration and causes the changes to take effect These changes will not be retained across a power cycle unless a save configuration is performed 11 3 21 2 Configur...

Page 762: ...face Move Convert a dynamically locked MAC address to a statically locked address The Dynamic MAC address entries are converted to Static MAC address entries in a numerically ascending order till the...

Page 763: ...to the MAC address Number of Dynamic MAC addresses learned Displays the number of dynamically learned MAC addresses on a specific port 11 3 21 5 Viewing Port Security Violation Status Page Selection...

Page 764: ...he factory default is blank Command Buttons Delete Send the updated screen to the switch perform the MAC clear 11 3 22 Managing LLDP 11 3 22 1 Configuring LLDP Global Configuration Page Configurable D...

Page 765: ...the switch but these changes will not be retained across a power cycle unless a save is performed 11 3 22 2 Configuring LLDP Interface Configuration Page Selection Criteria Interface Specifies the lis...

Page 766: ...is performed 11 3 22 3 Viewing LLDP Interface Summary Page Non Configurable Data Interface Specifies all the ports on which LLDP 802 1AB can be configured Link Status Specifies the Link Status of the...

Page 767: ...complete set of information advertised by a particular MAC Service Access Point MSAP has been deleted from tables associated with the remote systems because the information timeliness interval has ex...

Page 768: ...total number of LLDP TLVs received on the local ports which are of type 802 1 TLV 802 3 Specifies the total number of LLDP TLVs received on the local ports which are of type 802 3 Command Buttons Refr...

Page 769: ...s Auto Negotiation Specifies whether the auto negotiation is supported and whether the auto negotiation is enabled PMD Auto Negoration Advertised Capabilities Specifies the auto negotiation and speed...

Page 770: ...be transmitted Port ID Specifies the string describes the source of the port identifier Port Description Specifies the description of the port associated with the local system Command Buttons Refresh...

Page 771: ...ID Specifies the port component associated with the remote system System Name Specifies the system name of the remote system System Description Specifies the description of the given port associated...

Page 772: ...upport capabilities of the sending IEEE 802 3 LAN station PSE Power Pair Specifies which pair is powered Power Class Specifies the required power level required Link Aggregation Status Specifies the c...

Page 773: ...rable Data Fast Start Repeat Count Specifies the number of LLDP PDUs that will be transmitted when the protocol is enabled The range is from 1 to 10 Default value of fast repeat count is 3 Non Configu...

Page 774: ...will be effectively enabling the transmit and receive function of LLDP Config Notification Mode Specifies the LLDP MED topology notification mode for the selected interface Configurable Data Transmit...

Page 775: ...is enabled or disabled on this interface Operational Status Specifies the LLDP MED TLVs are transmitted or not on this interface Notification Status Specifies the LLDP MED topology notification mode...

Page 776: ...cy type Inventory Specifies if inventory TLV is present in LLDP frames Hardware Revisions Specifies hardware version Firmware Revisions Specifies Firmware version Software Revisions Specifies Software...

Page 777: ...in MED TLV on this port Enabled Capabilities Specifies enabled capabilities that was received in MED TLV on this port Device Class Specifies device class as advertised by the device remotely connecte...

Page 778: ...Specifies manufacturers name of the remote device Model Name Specifies model name of the remote device Asset ID Specifies asset id of the remote device Location Information Specifies if location TLV i...

Page 779: ...Enable or disable the VTP version 2 mode Trunkport Enable or disable the VTP trunkport for specified interface Configurable Data Domain Name Set the name of the VTP administrative domain Domain Passwo...

Page 780: ...Displays VTP operating mode Domain Name Displays the name that identifies the administrative domain for the switch Pruning mode Displays VTP pruning mode V2 Mode Displays VTP version 2 mode MD5 Digest...

Page 781: ...sable from the pull down menu The factory default is disabled Upstream Choose the upstream port for a group Switch will monitor the link level of this port for rapidly fail over of redundant LAN ports...

Page 782: ...one group Two ports are acted as active and backup ports One of two ports will be active at a one time As configured active port is linkup the backup port will be disabled Otherwise if configured act...

Page 783: ...Submit Update the switch with the values on this screen If you want the switch to retain the new values across a power cycle you must perform a save Delete Delete this group 11 3 26 2 Configuring Por...

Page 784: ...ng admin mode is disabled Vlan ID Configure Vlans the FIP packets will be snooped Command Buttons Submit Send the updated configuration to the switch Configuration changes take effect immediately Thes...

Page 785: ...ID ENode MAC MAC address of the ENode 11 4 Routing Menu 11 4 1 Managing ARP Table 11 4 1 1 Creating ARP entries Use this panel to add an entry to the Address Resolution Protocol table Configurable Da...

Page 786: ...a valid integer which represents the number of seconds it will take for an ARP entry to age out The range for this field is 15 to 21600 seconds The default value for Age Time is 1200 seconds Response...

Page 787: ...l number of Entries in the ARP table Peak Total Entries Highest value reached by Total Entry Count This counter value is restarted whenever the ARP table Cache Size value is changed Active Static Entr...

Page 788: ...the forwarding of IP frames The default value is enable Non Configurable Data Default Time to Live The default value inserted into the Time To Live field of the IP header of datagrams originated by t...

Page 789: ...ceeded errors discovered in processing their IP options etc IpInAddrErrors The number of input datagrams discarded because the IP address in their IP header s destination field was not a valid address...

Page 790: ...terion Note that this includes any datagrams which a host cannot route because all of its default gateways are down IpReasmTimeout The maximum number of seconds which received fragments are held while...

Page 791: ...to route the resultant datagram In some implementations there may be no types of error which contribute to this counter s value IcmpOutDestUnreachs The number of ICMP Destination Unreachable messages...

Page 792: ...menu The possible values are Ethernet and SNAP The default is Ethernet Proxy Arp Select to disable or enable proxy Arp for the specified interface from the pulldown menu Local Proxy Arp Select to dis...

Page 793: ...r physical interfaces and is measured in Megabits per second Mbps Command Buttons Submit Update the switch with the values on this screen If you want the switch to retain the new values across a power...

Page 794: ...er ID you must re enable OSPF to have the change take effect The default value is 0 0 0 0 although this is not a valid Router ID OSPF Admin Mode Select enable or disable from the pulldown menu If you...

Page 795: ...0 means that there is no delay that is two SPF calculations can be done one immediately after the other Default Metric Sets a default for the metric of redistributed routes This field displays the def...

Page 796: ...preference rules that will be used when choosing among multiple AS external LSAs advertising the same destination If you select Enable the preference rules will be those defined by RFC 1583 If you sel...

Page 797: ...d OSPF originates an external LSA advertising a default route 0 0 0 0 0 0 0 0 Always If Default Information Originate is enabled but the Always option is FALSE OSPF will only originate a default route...

Page 798: ...ment from more than one neighbor Maximum Number of Retransmit Entries The maximum number of LSAs that can be waiting for acknowledgment at any given time Retransmit Entries High Water Mark The highest...

Page 799: ...ble Non Configurable Data Area ID The OSPF area IP address The IP Address of an address range for the area Subnet Mask The Subnet Mask of an address range for the area LSDB Type The Link Advertisement...

Page 800: ...F area to which the selected router interface belongs An OSPF Area ID is a 32 bit integer in dotted decimal format that uniquely identifies the area to which the interface connects Area Border Router...

Page 801: ...ifies the packet as belonging to the backbone but OSPF does not have a virtual link to the packet s sender Area Mismatch The number of OSPF packets discarded because the area ID in the OSPF header is...

Page 802: ...ber of LS updates sent on this interface by this router LS Updates Received The number of LS updates received on this interface by this router LS Acknowledgements Sent The number of LS acknowledgement...

Page 803: ...nterface Valid values range from 1 to 3600 seconds 1 hour The default value is 1 second MTU Ignore Disables OSPF MTU mismatch detection on receiving packets Default value is Disable MTU mismatch detec...

Page 804: ...ooped back either in hardware or software The interface is unavailable for regular data traffic However it may still be desirable to gain information on the quality of this interface either through se...

Page 805: ...rtual link Submit Send the updated configuration to the switch Configuration changes take effect immediately These changes will not be retained across a power cycle unless a save is performed 11 4 3 7...

Page 806: ...teger in dotted decimal format that identifies the neighbor router Options The optional OSPF capabilities supported by the neighbor The neighbor s optional OSPF capabilities are also listed in its Hel...

Page 807: ...sequence number Neighbor conversations in this state or greater are called adjacencies Exchange In this state the router is describing its entire link state database by sending Database Description p...

Page 808: ...ce the link state advertisement was first originated in seconds Sequence The sequence number field is a signed 32 bit integer It is used to detect old and duplicate link state advertisements The large...

Page 809: ...lay Interval Enter the OSPF Transit Delay for the specified interface This specifies the estimated number of seconds it takes to transmit a link state update packet over the selected interface Valid v...

Page 810: ...ncy with the neighboring router Hello Packets are sent to the neighbor every HelloInterval seconds Designated Router This router is itself the Designated Router on the attached network Adjacencies are...

Page 811: ...outers attached to a common network and should be a multiple of the Hello Interval i e 4 Retransmit Interval The OSPF retransmit interval for the virtual link in units of seconds This specifies the ti...

Page 812: ...ed routes should be redistributed or not Distribute List Sets the Access List that filters the routes to be redistributed by the destination protocol Only permitted routes are redistributed If this co...

Page 813: ...for the given Source Route Display Unconfigured when not configured Metric Type The OSPF metric types of redistributed routes Tag The tag field in routes redistributed This field displays the tag if...

Page 814: ...n the client s request packets which should represent the time since the client was powered up Packets will only be forwarded when the time stamp exceeds the minimum wait time Circuit ID Option Mode S...

Page 815: ...oved from replies before they are forwarded to clients Requests Received The total number of BOOTP DHCP requests received from all clients since the last time the switch was reset Requests Relayed The...

Page 816: ...eady been set or blank if not configured earlier The valid values are 1 to 15 Non Configurable Data Global Route Changes The number of route changes made to the IP Route Database by RIP This does not...

Page 817: ...P is enabled or disabled on the interface Link State Whether the RIP interface is up or down Command Buttons Refresh Refresh the data on the screen with the present state of the data in the switch 11...

Page 818: ...network must be configured with the same key Encrypt If you select Encrypt you will be prompted to enter both an authentication key and an authentication ID Encryption uses the MD5 Message Digest alg...

Page 819: ...values are Static Connected OSPF and Create Available Source This select box is a dynamic selector and would be populated by only those Source Routes that have not previously been configured for redis...

Page 820: ...dress is compared to the destination IP address of the route The source IP netmask in the access list rule is treated as a wildcard mask indicating which bits in the source IP address must match the d...

Page 821: ...routes to be redistributed by the Destination Protocol Displays 0 when not configured Command Buttons Refresh Displays the latest RIP Route Redistribution Configuration data 11 4 6 Managing Router Dis...

Page 822: ...resses by hosts Preference Level Specify the preference level of the router as a default router relative to other routers on the same subnet Higher numbered addresses are preferred You must enter an i...

Page 823: ...e preference level of the router as a default router relative to other routers on the same subnet Higher numbered addresses are preferred 11 4 7 Managing Route Table 11 4 7 1 Viewing Router Route Tabl...

Page 824: ...sk this indicates the portion of the IP interface address that identifies the attached network Protocol This field tells which protocol created the specified route The possibilities are one of the fol...

Page 825: ...one of the following Local Static Default OSPF Intra OSPF Inter OSPF Type 1 OSPF Type 2 RIP Next Hop Slot Port The outgoing router interface to use when forwarding traffic to the destination Next Hop...

Page 826: ...referred to as the subnet network mask this indicates the portion of the IP interface address that identifies the attached network Next Hop IP Address The outgoing router IP address to use when forwa...

Page 827: ...t value is 1 The range is 1 to 255 OSPF Intra The OSPF intra route preference value in the router The default value is 110 The range is 1 to 255 The OSPF specification RFC 2328 requires that preferenc...

Page 828: ...t The interface assigned to the VLAN for routing MAC Address The MAC Address assigned to the VLAN Routing Interface Command Buttons Create Send the updated configuration to the switch Configuration ch...

Page 829: ...P Address The configured IP Address of the VLAN Routing Interface This will be 0 0 0 0 when the VLAN Routing Interface is first configured and must be entered on the IP Interface Configuration page Su...

Page 830: ...outer from the pulldown menu Pre empt Mode Select enable or disable from the pulldown menu If you select enable a backup router will preempt the master router if it has a priority greater than the mas...

Page 831: ...relative to the configured priority The operational priority is depending upon the configured priority and the priority decrements configured through tracking procss Command Buttons Submit Send the u...

Page 832: ...u must perform a save Delete Delete the selected secondary IP Address Cancel Return to the Virtual Router Configuration screen 11 4 9 4 Configuring VRRP Interface Tracking Configurable Data Priority D...

Page 833: ...and interface configuration Exception to this loopback and tunnels could not be tracked Configurable Data Priority Decrement The priority decrement for the tracked interface The valid range is 1 254...

Page 834: ...umber for this row Tracking Route Pfx The Prefix of the tracked route Tracking Route PfxLen The prefix length of the tracked route Reachable The reachability of the tracked Route Command Buttons Add P...

Page 835: ...layed Virtual Router ID The Virtual Router ID for which data is to be displayed Command Buttons Submit Send the updated configuration to the router Configuration changes take effect immediately These...

Page 836: ...nterface used by the Virtual Router Owner Set to True if the Virtual IP Address and the Interface IP Address are the same otherwise set to False If this parameter is set to True the Virtual Router is...

Page 837: ...the selected Virtual Router Slot Port The Slot Port for the selected Virtual Router Up Time The time in days hours minutes and seconds that has elapsed since the virtual router transitioned to the in...

Page 838: ...or the virtual router Invalid Authentication Type The total number of packets received with an unknown authentication type Authentication Type Mismatch The total number of packets received with an aut...

Page 839: ...nterface is selected the source interface for this tunnel must be selected The address associated with the selected interface will be used as the source address Destination Address The destination add...

Page 840: ...elect list of configured IPv6 addresses for the selected Loopback interface Add is also a valid choice if the maximum number of addresses has not been configured IPv6 Address When Add is chosen from t...

Page 841: ...figured Primary IPv4 Address Add Secondary Add the user specified Secondary IPv4 Address Delete Selected Secondary Remove the selected Secondary IPv4 Address Delete Selected Address Remove the selecte...

Page 842: ...tor lists the two options for Guest VLAN Supplicant mode enable and disable The default value is disabled Command Buttons Submit Sends the updated screen to the switch and causes the changes to take e...

Page 843: ...er supplicant basis Reauthentication Enabled This field allows the user to enable or disable reauthentication of the supplicant for the specified port The selectable values are true and false If the v...

Page 844: ...change the configuration until the Submit button is pressed Maximum Requests This input field allows the user to enter the maximum requests for the selected port The maximum requests value is the maxi...

Page 845: ...Configurable Data Control Mode Displays the configured control mode for the specified port Options are force unauthorized The authenticator port access entity PAE unconditionally sets the controlled p...

Page 846: ...sed by the authenticator on this port to timeout the authentication server The server timeout is a value in the range of 1 to 65535 Maximum Requests This field displays the configured maximum requests...

Page 847: ...nfigurable The maximum users value is in range of 1 to 16 Maximum Users Displays the maximum number of clients that can get authenticated on the port in the MAC based dot1x authentication mode This fi...

Page 848: ...authenticator PAE unconditionally sets the controlled port to authorized Auto The authenticator PAE sets the controlled port mode to reflect the outcome of the authentication exchanges between the su...

Page 849: ...n Criteria Port Selects the port to be displayed When the selection is changed a screen refresh will occur causing all fields to be updated for the newly selected port All physical interfaces are vali...

Page 850: ...ived by this authenticator in which the frame type is not recognized EAP Length Error Frames Received This displays the number of EAPOL frames that have been received by this authenticator in which th...

Page 851: ...C address Session Time Displays the time since the supplicant logged in The value is in seconds Filter ID The policy filter ID assigned by the authenticator to the supplicant device VLAN ID The VLAN I...

Page 852: ...es will not be retained across a power cycle unless a save is performed Refresh Update the information on the page 11 5 1 9 Defining each Port Access Privileges Page Selection Criteria Port Selects th...

Page 853: ...ry Page Non Configurable Data Port Displays the port in Slot Port format Users Displays the users that have access to the port Command Buttons Refresh Update the information on the page 11 5 2 Managin...

Page 854: ...ted before the next server is attempted A retransmit will not occur until the configured timeout value on that server has passed without a response from the RADIUS server Therefore the maximum delay i...

Page 855: ...You cannot define these IP addresses 0 0 0 0 255 255 255 255 224 xxx xxx xxx 127 0 0 1 Host Name The host name of the server being added Port The UDP port used by this server The valid range is 0 6553...

Page 856: ...ate the information on the page 11 5 2 3 Viewing RADIUS Server Statistics Page Selection Criteria RADIUS Server IP Address Selects the IP address of the RADIUS server for which to display statistics N...

Page 857: ...DIUS Access Request packets destined for this server that have not yet timed out or received a response Timeouts The number of authentication timeouts to this server Unknown Types The number of RADIUS...

Page 858: ...as READWRITE access Encrypted When the secret string is encrypted this box need to be checked This field is only displayed if the user has READWRITE access Non Configurable Data Secret Configured Indi...

Page 859: ...packets with an invalid length Bad authenticators and unknown types are not included as malformed accounting responses Bad Authenticators Displays the number of RADIUS Accounting Response packets tha...

Page 860: ...erver Connection Timeout The maximum number of seconds allowed to establish a TCP connection between the device and the TACACS server Encrypted When the secret string is encrypted this box need to be...

Page 861: ...ge is 0 128 characters The key must match the encryption used on the TACACS server Connection Timeout The amount of time that passes before the connection between the device and the TACACS server time...

Page 862: ...a Admin Mode Selects the IP Filter admin mode for enable or disable Configurable Data Filter Address 1 5 Stations that are allowed to make configuration changes to the Switch Command Buttons Submit Se...

Page 863: ...the web page is displayed HTTPS Session Hard Timeout This field is used to set the hard timeout for HTTPS sessions This timeout is unaffected by the activity level of the session The value must be in...

Page 864: ...e the maximum number of inbound SSH sessions allowed on the switch The currently configured value is shown when the web page is displayed The range of acceptable values for this field is 0 5 Configura...

Page 865: ...er The valid range is 1 to 255 The Value 0 is used to set the TTL to deafult value ICMPv6 Rate Limit Error Interval To control the ICMPv6 error packets user can specify the number of ICMP error packet...

Page 866: ...onsider prefix valid for purposes of on link determination Valid lifetime must be in the range 0 to 4294967295 Preferred Lifetime by Prefix Specifies router advertisement per prefix time An autoconfig...

Page 867: ...Advertisement Reachable Time Specifies router advertisement time to consider neighbor reachable after ND confirmation Range of reachable time is 0 to 3600000 Router Advertisement Interval Specifies m...

Page 868: ...f ipv6 operation without a global address In this case an eui 64 based link local address is used This selector lists the two options for ipv6 mode enable and disable Default value is disable Operatio...

Page 869: ...869...

Page 870: ...ams With Unknown Protocol The number of locally addressed datagrams received successfully but discarded because of an unknown or unsupported protocol This counter is incremented at the interface to wh...

Page 871: ...number of IPv6 datagrams that have been successfully fragmented at this output interface Datagrams Failed To Fragment The number of output datagrams that could not be fragmented at this interface Dat...

Page 872: ...discovered within ICMP such as a lack of buffers This value should not include errors discovered outside the ICMP layer such as the inability of IPv6 to route the resultant datagram In some implement...

Page 873: ...ation has to be displayed Non Configurable Data Interface Specifies the interface whose settings are displayed in the current table row IPv6 Address Specifies the IPv6 address of neighbor or interface...

Page 874: ...bility confirmation is actively sought by resending neighbor solicitation messages every RetransTimer milliseconds until a reachability confirmation is received Last Updated Time since the address was...

Page 875: ...ble OSPFv3 After you set the new Router ID you must re enable OSPFv3 to have the change take effect The default value is 0 0 0 0 although this is not a valid Router ID OSPFv3 Admin Mode Select enable...

Page 876: ...ault Information Originate is set to enable and values for Always Metric and Metric Type are already configured then setting Default Information Originate back to disable will set the Always Metric an...

Page 877: ...ed to be new instantiations This number does not include newer instantiations of self originated LSAs LSA Count The total number of link state advertisements currently in the link state database Maxim...

Page 878: ...d that it should continue to perform its translation duties The valid range of values is 0 to 3600 No Redistribute Mode Enable or Disable the No Redistribute Mode Non Configurable Data Area ID The OSP...

Page 879: ...igure the area as NSSA Delete NSSA Delete the NSSA designation The area will be returned to normal state Submit Send the updated configuration to the switch Configuration changes take effect immediate...

Page 880: ...SA The default is enable Non Configurable Data Area ID The OSPFv3 area IPv6 Prefix The IPv6 Prefix of an address range for the area LSDB Type The Link Advertisement type for the address range and area...

Page 881: ...it will remain initialized until the router is reset OSPFv3 Area ID Enter the 32 bit integer in dotted decimal format that uniquely identifies the OSPFv3 area to which the selected router interface c...

Page 882: ...rrent state of the selected router interface One of Down This is the initial interface state In this state the lower level protocols have indicated that the interface is unusable In this state interfa...

Page 883: ...bled Backup Designated Router The identity of the Backup Designated Router for this network in the view of the advertising router The Backup Designated Router is identified here by its router ID Set t...

Page 884: ...er of area border routers reachable within this area This is initially zero and is calculated in each SPF Pass AS Border Router Count The total number of Autonomous System border routers reachable wit...

Page 885: ...esses No Neighbor at Source Address The number of OSPFv3 packets dropped because the sender is not an existing neighbor or the sender s IP address does not match the previously recorded IP address for...

Page 886: ...d decimal format representing the area common to the neighbor selected Options A Bit Mask corresponding to the neighbor s options field Priority The priority of this neighbor in the designated router...

Page 887: ...mal format representing the Router ID of the neighbor on the selected Interface Priority The priority of this neighbor in the designated router election algorithm A value of 0 signifies that the neigh...

Page 888: ...Link State ID identifies the piece of the routing domain that is being described by the advertisement The value of the LS ID depends on the advertisement s LS type Age The time since the link state a...

Page 889: ...ers attached to a network This value should a multiple of the Hello Interval e g 4 Valid values range from 1 to 2147483647 The default is 40 Iftransit Delay Interval The OSPFv3 Transit Delay for the s...

Page 890: ...It will be promoted to Designated Router if the present Designated Router fails The router establishes adjacencies to all other routers attached to the network The Backup Designated Router performs sl...

Page 891: ...update packet over this interface Command Buttons Refresh Refresh the data on the screen with the present state of the data in the switch 11 6 7 12 Configuring OSPFv3 Route Redistribution Configurati...

Page 892: ...hanges take effect immediately Delete Delete the entry of the Source Protocol selected as Configured Source from the list of Sources configured for OSPFv3 Route Redistribution 11 6 7 13 Viewing OSPFv3...

Page 893: ...Hop Address If the Next Hop IPv6 Address specified is a Link local IPv6 Address specify the Slot Port for the Link local IPv6 Next Hop Address Preference Enter a Preference Value for the given route...

Page 894: ...ne the shortest path known to the protocol independent of any other protocol The best route to a destination is chosen by selecting the route with the lowest preference value When there are multiple r...

Page 895: ...d by the user Best Routes Shows only the best active routes All Routes Shows all active IPv6 routes Non Configurable Data IPv6 Prefix Prefix Length Displays the Network Prefix and Prefix Length for th...

Page 896: ...ent to the router from which it was learned but the metric will be set to infinity The default is simple Update Time Configure the Ripng update time Garbage Time Configure the Ripng garbage time Timeo...

Page 897: ...hanges will not be retained across a power cycle unless a save is performed 11 6 9 3 Configuring RIPv6 Redistribution Configuration Page This screen can be used to configure the RIPv6 Route Redistribu...

Page 898: ...id values are 1 to 15 Command Buttons Submit Send the updated configuration to the router Configuration changes take effect immediately Delete Delete the entry of the Source Route selected as Configur...

Page 899: ...ting IP ACL can be updated Configurable Data IP ACL ID IP ACL ID must be a whole number in the range of 1 to 99 for IP Standard Access Lists and 100 to 199 for IP Extended Access Lists IP ACL Name Spe...

Page 900: ...ate 11 7 1 3 Configuring IP Access Control List Rule Configuration Page Use these screens to configure the rules for the IP Access Control Lists created using the IP Access Control List Configuration...

Page 901: ...fies the hardware egress queue identifier used to handle all packets matching this IP ACL rule Valid range of Queue Ids is 0 to 6 This field is visible when Permit is chosen as Action Mirror Interface...

Page 902: ...mber Specify a packet s destination layer 4 port number match condition for the selected extended IP ACL rule This is an optional configuration Service Type Select a Service Type match condition for t...

Page 903: ...figuration of an existing IPv6 ACL can be updated by selecting right option from the pull down menu Configurable Data IPv6 ACL Name Specifies IPv6 ACL Name string which includes alphanumeric character...

Page 904: ...reen to the latest state 11 7 1 6 IPv6 Access Control List Rule Configuration Page Use these screens to configure the rules for the IPv6 Access Control Lists which is created using the IPv6 Access Con...

Page 905: ...option of configuring other match criteria will not be offered To configure specific match criteria for the rule remove the rule and re create it or re configure Match Every to False for the other mat...

Page 906: ...s of a set of rules which are matched sequentially against a packet When a packet meets the match criteria of a rule the specified rule action Permit Deny is taken and the additional rules are not che...

Page 907: ...MAC ACL identifier Rules The number of rules currently configured for the MAC ACL Direction The direction of packet traffic affected by the MAC ACL Valid Directions Inbound Slot Port s The interfaces...

Page 908: ...the range of 1 to 8 that will be used to identify the rule Action Specify what action should be taken if a packet matches the rule s criteria The choices are permit or deny Logging When set to True l...

Page 909: ...an Ethernet frame Valid format is xx xx xx xx xx xx The BPDU keyword may be specified using a Destination MAC mask of 00 00 00 ff ff ff Ethertype Key Specifies the Ethertype value to compare against...

Page 910: ...es participating in LAGs are listed Direction Specifies the packet filtering direction for ACL Valid Directions Inbound ACL Type Specifies the type of ACL Valid ACL Types IP ACL IPv6 ACL MAC ACL IP AC...

Page 911: ...entifying the ACL assigned to selected interface and direction Sequence Number Displays the Sequence Number signifying the order of specified ACL relative to other ACLs assigned to selected interface...

Page 912: ...d range is 1 to 4294967295 Non Configurable Data Slot Port Displays selected interface VLAN ID s Displays selected VLAN Id Direction Displays selected packet filtering direction for ACL ACL Type Displ...

Page 913: ...ets are filtered and processed based on defined criteria The filtering criteria is defined by a class The processing is defined by a policy s attributes Policy attributes may be defined on a per class...

Page 914: ...instances out of the total allowed on the switch Service table Displays the number of configured services attached to the policies on specified interfaces out of the total allowed on the switch Comma...

Page 915: ...rence since a specified class can reference at most one other class of the same type Moreover a Remove Class Reference button appears on the screen that can be invoked to remove the current class refe...

Page 916: ...es Class Type Displays types of the configured classes as all any or acl Class types are platform dependent Reference Class Displays name of the configured class of type All referenced by the specifie...

Page 917: ...icy class instance this becomes a non configurable field Configurable Data Policy Name This is a case sensitive alphanumeric string from 1 to 31 characters uniquely identifying a policy Non Configurab...

Page 918: ...ch class instance within the policy Command Buttons Refresh Refresh the currently selected filter 11 7 2 6 Configuring DiffServ Policy Class Definition Page Selection Criteria Policy Selector This lis...

Page 919: ...ata Policy Name Displays name of the specified DiffServ policy Policy Type Displays type of the specified policy as In Class Name Displays name of the DiffServ class to which this policy is attached A...

Page 920: ...isplayed when Slot Port is specified as All Slot Port Shows the Slot Port that uniquely specifies an interface Direction Shows that the traffic direction of this service interface is In Operational St...

Page 921: ...al status of this service interface either Up or Down Command Buttons Refresh Refresh the displayed data 11 7 2 11 Viewing DiffServ Service Detailed Statistics Page This screen displays class oriented...

Page 922: ...Wizard page The DiffServ Wizard will Create a DiffServ Class and define match criteria used as a filter to determine if incoming traffic meets the requirements to be a member of the class Set the Diff...

Page 923: ...s policy to mark ipdscp ef Med sets policy to mark ipdscp af31 Low set policy to mark ipdscp be Configurable Data Ports to Include in Config List the ports which can be configured to support a DiffSer...

Page 924: ...Displays traffic class i e queue to which all traffic is directed when in untrusted mode Valid Range is 0 to 7 Non IP Traffic Class Displays traffic class i e queue to which all non IP traffic is dir...

Page 925: ...c class to map the corresponding IP DSCP value Valid Range is 0 to 7 Non Configurable Data IP DSCP Value Specify the IP DiffServ Code Point DSCP Value Command Buttons Submit Send the updated configura...

Page 926: ...ng mechanism Default value is 0 Valid Range is 0 to 100 in increments of 5 The value 0 means maximum is unlimited Command Buttons Restore Defaults Restores default settings Submit Send the updated con...

Page 927: ...to this queue Setting this value higher than its corresponding Maximum Bandwidth automatically increases the maximum to the same value Default value is 0 Valid Range is 0 to 100 in increments of 5 The...

Page 928: ...of the following strict weighted Queue Management Type Queue depth management technique used for queues on this interface This is only used if device supports independent settings per queue Queue Man...

Page 929: ...s assigned to IPC Configurable Data ETS LAN Weight Set ETS LAN Weight The system s default ETS LAN Weight is 50 The valid ETS LAN Weight range is 1 to 99 and ETS LAN Weight plus ETS SAN Weight must eq...

Page 930: ...is recognized by parsing stages Disable configure CNTAG Ether Type is unrecognized CN Tag Ether Type can be recognized by default CPID LSB Field Control the LSB field of Congestion Point Identifier of...

Page 931: ...cket Priority for CNM Set Outer Packet Priority for Congestion Notification Message CNM The system s default Outer Packet Priority for CNM is 0 The valid dot1p range is 1 to 7 Outer Packet CFI for CNM...

Page 932: ...witch Configuration changes take effect immediately These changes will not be retained across a power cycle unless a save is performed 11 7 4 10 Viewing Congestion Notification CN interface summary No...

Page 933: ...igurable Data Version The current value of the DVMRP version string Total Number of Routes The number of routes in the DVMRP routing table Reachable Routes The number of routes in the DVMRP routing ta...

Page 934: ...ace Mode Select enable or disable from the pull down menu to set the administrative mode of the selected DVMRP routing interface Interface Metric Enter the DVMRP metric for the selected interface This...

Page 935: ...nvalid routes received on the selected interface Sent Routes The number of routes sent on the selected interface Neighbor IP The IP address of the neighbor whose information is displayed State The sta...

Page 936: ...screen with the new data 11 8 1 5 Viewing DVMRP Prune Summary Non Configurable Data Group IP The group address which has been pruned Source IP The address of the source or source network which has be...

Page 937: ...rom which IP datagrams from these sources are received Interface The interface on which IP datagrams sent by these sources are received A value of 0 typically means the route is an aggregate for which...

Page 938: ...s a save is performed 11 8 2 2 Configuring IGMP Interface Configuration Page Selection Criteria Slot Port Select the slot and port for which data is to be displayed or configured from the pulldown men...

Page 939: ...255 Startup Query Interval Enter the number of seconds between the transmission of startup queries on the selected interface The valid values are from 1 to 300 The default value is 31 Startup Query C...

Page 940: ...cted interface Query Interval The frequency at which IGMP host query packets are transmitted on the selected interface Query Max Response Time The maximum query response time advertised in IGMPv2 quer...

Page 941: ...received on the selected interface with an IGMP version that does not match the IGMP version configured for the interface over the lifetime of the entry IGMP requires that all routers on a LAN be con...

Page 942: ...r is non zero the local router ignores any IGMPv1 and IGMPv3 leave messages for this group that it receives on the selected interface This field is displayed only if the interface is configured for IG...

Page 943: ...be a IGMP routing interface This field is configurable only when interface mode is disabled Configurable Data Interface Mode Select enable or disable from the pulldown menu to set the administrative s...

Page 944: ...of membership in a group Default 1 second Version 1 Querier Timeout The older IGMP version 1 querier timeout value in seconds The Older Version Querier Interval is the time out for transitioning a hos...

Page 945: ...ilter mode Include Exclude None for the specified group on the IGMP Proxy interface Number of Sources The number of source hosts present in the selected multicast group Command Buttons Refresh Refresh...

Page 946: ...Configuring Multicast Global Configuration Page Selection Criteria Admin Mode Select enable or disable to set the administrative status of Multicast Forwarding in the router The default is disabled N...

Page 947: ...iguration changes take effect immediately These changes will not be retained across a power cycle unless a save is performed 11 8 3 3 Viewing Multicast MRoute Summary Page This screen displays selecte...

Page 948: ...entry matching the Source IP if entered and Group IP address Refresh Refresh the information on the screen with the present state of the data in the router 11 8 3 4 Configuring Multicast Static Routes...

Page 949: ...ied to the Source IP address RPF Address The IP address of the RPF neighbor Metric The link state cost of the path to the multicast source The range is 0 255 Slot Port The number of the incoming inter...

Page 950: ...e changes will not be retained across a power cycle unless a save is performed Delete Delete the selected administrative scoped boundary 11 8 3 7 Viewing Multicast Admin Boundary Configuration Page No...

Page 951: ...configured at least one router interface before configuring or displaying data for a PIM DM interface otherwise an error message will be displayed Configurable Data Interface Mode Select enable or dis...

Page 952: ...smitted on the selected interface IP Address The IP address of the selected interface Neighbor Count The number of PIM neighbors on the selected interface Designated Router The designated router on th...

Page 953: ...lues are from 0 to 2000 The default value is 0 Command Buttons Submit Send the updated configuration to the router Configuration changes take effect immediately These changes will not be retained acro...

Page 954: ...ticast group ip address mask Command Buttons Submit Send the updated configuration to the router Configuration changes take effect immediately These changes will not be retained across a power cycle u...

Page 955: ...er status on the selected interface DR Priority Enter the DR priority for the selected interface The valid values are from 0 to 2147483647 The default value is 1 Command Buttons Submit Send the update...

Page 956: ...l be aged out Command Buttons Refresh Refresh the data on the screen with the present state of the data in the router 11 8 5 6 Configuring PIM SM Candidate RP Configuration Page Selection Criteria Slo...

Page 957: ...nfiguration changes take effect immediately These changes will not be retained across a power cycle unless a save is performed 11 8 5 8 Viewing PIM SM BSR Candidate Summary Page Non Configurable Data...

Page 958: ...immediately These changes will not be retained across a power cycle unless a save is performed Delete Attempts to remove the specified static RP IP Address for the PIM SM router Configuration changes...

Page 959: ...nterval Enter the frequency in seconds at which MLD host query packets are to be transmitted on this interface Valid values are from 1 to 3600 The default value is 125 Query Max Response Time Enter th...

Page 960: ...eria Group Address Indicates the address of the Mgmd members Non Configurable Data Slot Port Indicates the slot and port on which data is displayed Last Reporter The IP Address of the source of the la...

Page 961: ...e robustness parameter for the selected interface This variable allows tuning for the expected packet loss on a subnet If a subnet is expected to be lossy the robustness variable may be increased MLD...

Page 962: ...ip entries for the selected interface in the cache table Common Button Refresh Refresh the data on the screen with the present state of the data in the router 11 9 1 5 Viewing MLD Traffic Page Non Con...

Page 963: ...tatus of MLD Proxy on the selected interface The default is disable Routing MLD and Multicast global admin modes should be enabled to enable MLD Proxy interface mode Version nter the version of MLD yo...

Page 964: ...initial report of membership in a group Default 1 second Version 1 Querier Timeout The older MLD version 1 querier timeout value in seconds The Older Version Querier Interval is the time out for tran...

Page 965: ...entry was created State The state of the host entry A Host can be in one of the state Non member state does not belong to the group on the interface Delaying member state host belongs to the group on...

Page 966: ...p time since the entry was created in cache table State The state of the host entry A Host can be in one of the state Non member state does not belong to the group on the interface Delaying member sta...

Page 967: ...he pulldown menu to set the administrative status of PIM DM for the selected interface The default is disable Configurable Data Hello Interval Enter the number of seconds between PIM hello messages tr...

Page 968: ...r IP The IP address of the PIM neighbor for which this entry contains information Uptime The time since this PIM neighbor last became a neighbor of the local router Expiry Time The minimum time remain...

Page 969: ...ific shortest path tree Register Threshold Rate The minimum source data rate in K bits second above which the Rendezvous Point router will switch to a source specific shortest path tree Command Button...

Page 970: ...The default is disable Hello Interval secs Enter the time in seconds between the transmission of which PIM Hello messages on this interface The valid values are from 0 to 18000 secs The default value...

Page 971: ...ges are transmitted on the selected interface Join Prune Interval The frequency at which PIM Join Prune messages are transmitted on this PIM interface DR Priority Indicates the DR priority on the PIM...

Page 972: ...pts to remove the specified Candidate RP Address for the PIM SM router Configuration changes take effect immediately These changes will not be retained across a power cycle unless a save is performed...

Page 973: ...ot be retained across a power cycle unless a save is performed 11 9 3 8 Viewing PIM SM BSR Candidate Summary Page Non Configurable Data BSR Address Displays the IP address of the Elected BSR BSR Prior...

Page 974: ...iately These changes will not be retained across a power cycle unless a save is performed Command Buttons Submit Attempts to create the specified static RP IP Address for the PIM SM router Configurati...

Page 975: ...is source group are forwarded Up Time secs The time in seconds since the entry was created Expiry Time secs The time in seconds before this entry will age out and be removed from the table RPF Neighbo...

Page 976: ...www fortinet com...