Command Line User's Guide
Contents
1. These prefixes are indicated by capital letters in the screen text representation of the commands AT S39 Command Line User s Guide Command Formatting The following formatting conventions are used in this manual a a screen text font This font is used to illustrate the format of a command and command examples screen text font ltalicized screen text indicates a variable that you must enter A Brackets indicate optional parameters This symbol is used between different parameter options from which you must choose Chapter 2 Basic Command Line Commands SAVE CONFIGURATION on page 17 SET PROMPT on page 18 CLEAR SCREEN on page 19 MENU on page 20 SET SWITCH CONSOLEMODE on page 21 LOGOFF and QUIT on page 22 DOUCOCO O O Note Remember to save your changes with the SAVE CONFIGURATION command AT S39 Command Line Interface User s Guide SAVE CONFIGURATION Syntax save configuration Parameters None Description This command saves your changes to the switch s flash memory for permanent storage Whenever you make a change one of the operating parameters of the switch such as enter an IP address or create a new VLAN the change is stored in temporary memory It will be lost the next time you reset the switch or power cycle the unit To save your changes you must use this command The change is saved to flash memory and is retained even when the switch is reset or powered off Exam2. SHOW TFIPSERVER Syntax show tftpserver Parameters None Description This command displays the status of the TFTP server software on the switch The status will be enabled or disabled Example The following command displays the status of the TFTP server software show tftpserver 166 Chapter 20 Command DOC OO coa UU DUD UU OU oO OU O Reference Basic Command Line Commands on page 168 Basic Switch Commands on page 169 Enhanced Stacking Commands on page 171 SNMP Community Strings and Trap Commands on page 172 Management Security Commands on page 173 Port Parameter Commands on page 174 Port Security Commands on page 175 Port Trunking Commands on page 175 Port Mirroring Commands on page 176 Spanning Tree Protocol Commands on page 177 Rapid Reconfiguration Spanning Tree Commands on page 178 VLAN Commands on page 179 MAC Address Table Commands on page 181 IGMP Snooping Commands on page 181 Broadcast Frame Control Command on page 182 TACACS and RADIUS Commands on page 182 Statistics Commands on page 183 Download and Upload Commands on page 184 167 Chapter 20 Command Reference Basic Command Line Commands SAVE CONFIGURATION save configuration Saves your changes to the switch s flash memory for permanent storage SET PROMPT set prompt prompt Changesthe command line prompt CLEAR SCREEN clear screen Clears the screen MENU menu Displays the AT S39 Main Menu SET SWITCH CONS
3. 2 5 or both e g 11 13 18 To specify all ports use ALL Description This command returns the statistics counter for a port to zero Example The following command returns the counters on Ports 4 and 5 to zero reset switch port 4 5 counter 156 Chapter 19 Download and Upload Commands LOAD on page 158 UPLOAD on page 162 ENABLE TFTPSERVER on page 164 DISABLE TFTPSERVER on page 165 SHOW TFTPSERVER on page 166 0D ODODO O Note Remember to save your changes with the SAVE CONFIGURATION command Note For background information on downloading and uploading software images and configuration files refer to the AT S39 User s Guide 157 Chapter 19 Download and Upload Commands LOAD Syntax load method tftp xmodem remoteswitch type image config bootloader switchnumber switches Parameters method Specifies the method of the download Options are tftp xmodem remoteswitch Indicates that the download will be performed using TFTP To use this option you must have TFTP server software on a network node The file to download onto the switch must be stored on the TFTP server Indicates that the download will be from the management workstation to the switch viaa local management session This option can be used only to upgrade the switch on which the management station is connected You cannot use this option to upgrade other switches in an enhanced stack Indicates that the download wil
4. Contacting Allied Telesyn To contact Technical Support by phone find your country or region in the table below United States Canada Mexico Central America South America Tel 1800 428 4835 option 4 Germany Switzerland Austria Eastern Europe Tel 49 30 435 900 126 United Kingdom Denmark Norway Sweden Finland 44 1 235 442560 France Belgium Luxembourg The Netherlands Middle East Africa 33 1 60 92 15 25 Singapore Taiwan Thailand Malaysia Indonesia Korea Philippines China India Hong Kong Tel 65 3815 612 Australia Tel 1 800 000 880 Italy Spain Portugal Greece Turkey Israel Tel 39 02 41 30 41 Japan Tel 81 3 3443 5640 You can also contact Technical Support on line at http kb alliedtelesyn com Sales or Allied Telesyn Inc Corporate 19800 North Creek Parkway Information 9 te 200 Bothell WA 98011 Tel 1 425 487 8880 Fax 1 425 489 9191 AT S39 User s Guide Management Software Updates New releases of management software for our managed products can be downloaded from our web site at www alliedtelesyn com or our FTP server at ftp alliedtelesyn com To use the FTP server enter anonymous for the user name when you log in and your e mail address for the password Chapter 1 Starting a Command Line Management Session This chapter contains the following sections A Starting a Management Session on page 13 Q K
5. The value is in seconds The range is 1 to 1048575 The default is 300 seconds 5 minutes Description The switch uses the aging time to delete inactive dynamic MAC addresses from the MAC address table When the switch detects that no packets have been sent to or received from a particular MAC address in the table after the period specified by the aging time the switch deletes the address This prevents the table from becoming full of addresses of nodes that are no longer active Example The following command sets the aging timer to 120 seconds 2 minutes set switch agingtimer 120 133 Chapter 15 IGMP Snooping Commands A SET IP IGMP on page 135 Q SHOW IP IGMP on page 137 Note For background information on IGMP snooping referto the AT S39 User s Guide Note Remember to use the SAVE CONFIGURATION command to save your changes on the switch 134 SET IP IGMP Syntax AT S39 Command Line Interface User s Guide set ip igmp snoopingstatus enabled disabled hoststatus singlehost multihost timeout timeout numbermulticastgroups number routerport portnumberlauto Parameters snoopingstatus hoststatus timeout numbermulticastgroups Activates and deactivates IGMP snooping on the switch Possible settings are enabled Activates IGMP snooping disabled Deactivates IGMP snooping This is the default setting Specifies the IGMP host node topology Options are singlehos
6. show http server 59 Chapter 6 Management Security Commands ENABLE HTTP SERVER Syntax enable http server Parameters None Description This command activates the HTTP server on the switch so that the device can be managed from a web browser Example The following command activates the HTTP server enable http server 60 AT S39 Command Line Interface User s Guide DISABLE HTTP SERVER Syntax disable http server Parameters None Description This command disables the HTTP server on the switch so that the device cannot be managed from a web browser Example The following command disables the HTTP server disable http server 61 Chapter 6 Management Security Commands ENABLE SNMP Syntax enable snmp Parameters None Description This command enables SNMP on the switch so that the device can be managed from a SNMP application program Example The following command enables SNMP enable snmp AT S39 Command Line Interface User s Guide DISABLE SNMP Syntax disable snmp Parameters None Description This command disables SNMP on the switch so that the device cannot be managed from a SNMP application program Example The following command disables SNMP disable snmp 63 Chapter 6 Management Security Commands SET SWITCH CONSOLETIMER Syntax set switch consoletimer value Parameter consoletimer Specifies the console timer in minutes The range is 1 to 60 minutes The def
7. The password can be from 10 to 20 alphanumeric characters The password can contain spaces and special characters such as asterisks or exclamation points but it is not recommended since some web browsers reject special characters in passwords The password is case sensitive Example The following command changes the manager s password set password manager Follow the prompts to enter the new password 57 Chapter 6 Management Security Commands SET PASSWORD OPERATOR Syntax set password operator Parameters None Description This command sets the operator s password The default password is friend The password can be from 10 to 20 alphanumeric characters The password can contain spaces or special characters such as asterisks or exclamation points but it is not recommended since some web browsers reject special characters in passwords The password is case sensitive Example The following command changes the operator s password set password operator Follow the prompts to enter the new password 58 AT S39 Command Line Interface User s Guide SHOW HTTP SERVER Syntax show http server Parameters None Description This command displays the status of the HTTP server on the switch If the status is ENABLED the device can be managed from a web browser If the status is DISABLED the device cannot be managed from a web browser Example The following command displays the status of the HTTP server
8. 10 edgeport no The following command returns Port 11 to the default RSTP settings set rstp port 1 default 110 Chapter 13 VLAN Commands SHOW VLAN on page 112 CREATE VLAN on page 113 ADD VLAN on page 117 DELETE VLAN on page 120 DESTROY VLAN on page 123 RESET VLAN on page 124 SET SWITCH VLANMODE on page 125 SET SWITCH VLANSTATUS on page 126 SET SWITCH INFILTERING on page 127 DO UODCO OOO OO Note Remember to use the SAVE CONFIGURATION command to save your changes on the switch Note Refer to the AT S39 User s Guide for background information on tagged and port based VLANs the Basic VLAN mode and ingress filtering 111 Chapter 13 VLAN Commands SHOW VLAN Syntax show vlan name vid Parameters vlan Specifies the name or VID of the VLAN Description This command displays all the port based and tagged VLANs on a switch The information includes the names of the VLANs the VIDs and the port members Examples The following command displays all the VLANs on the switch show vlan The following command displays information on the Sales VLAN show vlan sales 112 CREATE VLAN Syntax 1 AT S39 Command Line Interface User s Guide create vlan name vid vid ports ports ALL frame untagged tagged mirrorport mirrorport Syntax 2 create vlan name vid vid taggedports taggedports ALL untaggedports untaggedports ALL mirrorport mirrorport Parameters vlan vid Specifies the
9. 22 22 order 2 port 3 The following command adds a RADIUS server with an IP address of 149 245 22 22 In addition it specifies the order is 2 the encryption key is tiger74 and the UDP portis 1 add radiusserver ipaddress 149 245 22 22 order 2 secret tiger74 port 1 150 AT S39 Command Line Interface User s Guide DELETE RADIUSSERVER Syntax delete radiusserver ipaddress ipaddress Parameters ipaddress Specifies the IP address of your RADIUS server to be deleted Description Use this command to delete a RADIUS server with the specified IP address from your switch Example The following command deletes the RADIUS server with the IP address 149 245 22 22 delete radiusserver ipaddress 149 245 22 22 151 Chapter 18 Statistics Commands LY SHOW SWITCH COUNTER on page 153 Q SHOW SWITCH PORT COUNTER on page 154 Q RESET SWITCH COUNTER on page 155 Q RESET SWITCH PORT COUNTER on page 156 Note Remember to save your changes with the SAVE CONFIGURATION command 152 AT S39 Command Line Interface User s Guide SHOW SWITCH COUNTER Syntax show switch counter Parameters None Description This command displays switch operating statistics such asthe number of packets received and transmitted and the number of CRC errors For definitions of the statistics refer to the AT S39 User s Guide Example The following command displays switch operating statistics show switch counter 153 Ch
10. AT S39 Command Line Interface User s Guide Examples The following command uploads the switch s configuration file to the management workstation upload method xmodem type config After entering the command use your terminal emulator program to indicate where you want to store the file on your workstation and the filename The following command uploads the switch s AT S39 image to the management workstation upload method xmodem type image The following command uploads a switch s configuration file using TFTP upload method tftp type config You are prompted for the IP address of the TFTP server 163 Chapter 19 Download and Upload Commands ENABLE TFTPSERVER Syntax enable tftpserver Parameters None Description This command activates the TFTP server software on the switch When TFTP is enabled you can upload and download files switch to switch The default setting is enabled Example The following command activates the TFTP server software enable tftpserver 164 AT S39 Command Line Interface User s Guide DISABLE TFTPSERVER Syntax disable tftpserver Parameters None Description This command disables the TFTP server software on the switch When TFTP is disabled you cannot upload or download files switch to switch The default setting is enabled Example The following command disables the TFTP server software disable tftpserver 165 Chapter 19 Download and Upload Commands
11. Chapter 5 SNMP Community Strings and Trap Commands DESTROY SNMP COMMUNITY Syntax destroy snmp community community Parameter community Specifies the community string you want to delete from the switch Description This command deletes the Read or Write community string from the switch You must delete a community string prior to assigning anew string For example to change the Read community string from its default public to something else you would first need to delete the public community string using this command and then create the new string using the CREATE SNMP command Example The following command deletes the community string public destroy snmp community public 50 AT S39 Command Line Interface User s Guide CREATE SNMP COMMUNITY Syntax create snmp community community access read write Parameter community Specifies the new community string access Specifies which community string you are changing Options are Read and Write Description This command creates a new Read or Write community string on the switch You cannot assign a new Read or Write community string until after you have deleted the current community string using the DESTROY SNMP command Once you have created the new community string you must use the SET SNMP COMMUNITY command to activate your change Example The following command changes the Read community sting to serv12 create snmp community servl2
12. DISABLE SN M it e 63 SET SWITCH GONSOLETIM ER diirisi ii eera a A Dada ee 64 Chapter 7 Port Parameter Command s cscisssccsssesisisscscescecssiscascaierscesisiaseacanceccssacseqsacsesestieavencearectsusussesanecenssaainaieascectsasasigdeetbatedotceeesessasaqascanenciviseasens 65 SHOW SWITCH POR Teis cn is 66 SET SWITCH PORT a a i A 67 RESET SWITCH POR Tira as 71 Chapter 8 Port Secunty Commands e dd 72 SET SWITCH SECURIT YM ODE ii 73 SET SWITCH THRESHOLD ii Asa 75 SHOW SWITCH THRESHOLD caviar ceanieccttndatiee 76 Chapter 9 Port Trunking Commands s 3 sccs0 n cabinet iran ae cata el rk ae ela o edi 77 SHOW SWITCH TRUNK ocaciones 78 CREATE SWITCH TRUNK ais 79 ADD SWITCH TRUNK ici ib 80 DELETE SWITCH TRUNKS le 81 DESTROY SWITCH TRUNK coccion ias 82 Chapter 10 Port Mirroring COMMAMGS ccscsssssscssssssssssscessssssssssssessssecesssecssssecssssecesssseesssscesssseessssecessueesssseceessseesssseeessseceesnseessnseeessnseessnseessseessny 83 CREATE SWITCH MIRR O Re a a a aaa casan 84 ADDSWITCH MIRROR rimanere ee oe eh ah a Dea A a a aa 85 DELETE SWITCH MIRROR iiini a 86 SETSWITCH M RRO R a a a riada 87 DESTROY SWITCH MIRROR A A Aa aio 88 Chapter 11 STP Command sti a ea a de e lo eee 89 E LOAN ES EE EE E E E E tea seas gdk duel scestedezestecdadecasvaccavecestles sui baat TE E 90 ACTVATE ST Paria iii 91 ENABLE A caia 92 DISABLES TP a aia E AREE TA EEEE EE 93 SETSTP A AT 94 ETT OR aaa 96 RE a 98 Chapter 12 RSTPC
13. a port based or tagged VLAN The difference between the two is how you go about specifying which ports will be members of the VLAN and whether the 114 AT S39 Command Line Interface User s Guide ports will be tagged or untagged Syntax 1 is limited in that it allows you to specify either tagged or untagged ports but not both at the same time Syntax 2 on the other hand can create a VLAN that has both types of ports This will be illustrated in the section Examples below When you create a new VLAN untagged ports of the new VLAN are automatically removed from their current untagged VLAN assignment This is because a port can be an untagged member of only one VLAN ata time For example creating anew VLAN with untagged Ports 1 to 4 automatically removes these ports from whichever VLAN they are currently untagged members The PVID of an untagged port is automatically changed to match the VID number of the VLAN to which it is added For instance if you make Port 4 an untagged member of a VLAN with a VID of 15 Port 4 s PVID is changed to 15 automatically Tagged ports of the new VLAN remain as tagged and untagged members of their current VLAN assignments No change is made to a tagged port s current VLAN assignments other than its addition to the new VLAN This is because a tagged port can belong to more than one VLAN at atime For example if you add Port 6 as an tagged port to anew VLAN Port 6 remains a member of any current VLAN ass
14. dynamic static and multicast addresses from the switch s MAC address table SET SWITCH AGINGTIMER set switch agingtimer value Specifies the aging timer for the MAC address table IGMP Snooping Commands SET IP IGMP set ip igmp snoopingstatus enabled disabled hoststatus singlehost multihost timeout timeout numbermulticastgroups number routerport portnumberlauto Configures the IGMP snooping parameters SHOW IP IGMP show ip igmp hostlist routerlist Displays the IGMP parameter settings host nodes and multicast router ports 181 Chapter 20 Command Reference Broadcast Frame Control Command SET SWITCH BROADCAST set switch broadcast limit limit porttype 10Mbps 100Mbps 1000Mbps Specifies the broadcast interval timer TACACS and RADIUS Commands DISABLE AUTHENTICATON disable authentication Disables TACACS and RADIUS authentication on your switch ENABLE AUTHENTICATON enable authentication Enables TACACS and RADIUS authentication on your switch RESET AUTHENTICATON reset authentication Resets authentication on your TACACS and RADIUS switch SET AUTHENTICATON set authentication method tacacs radius secret string timeout integer Selects the authentication protocol SHOW AUTHENTICATON show authentication Displays information about the authenticated protocols on the switch ADD TACACSSERVER add tacacsserver ipaddress ipaddress order integer
15. following command uses Syntax 1 to add Ports 4 and 7 as untagged members to a VLAN called Sales add vlan name sales port 4 7 frame untagged The following command does the same thing using Syntax 2 add vlan name sales untaggedports 4 7 The following command uses Syntax 1 to add Port 3 as a tagged member to a VLAN called Production add vlan name production port 3 frame tagged The following command does the same thing using Syntax 2 add vlan name production untaggedports 3 To add both tagged and untagged ports to a VLAN using Syntax 1 takes two commands For example if you had a VLAN called Service and you wanted to add Port 5 asa tagged port and Ports 10 to 12 as untagged ports the commands would be add vlan name Service ports 5 frame tagged add vlan name Service ports 10 12 frame untagged 118 AT S39 Command Line Interface User s Guide Using Syntax 2 you can do the whole thing with just one command add vlan name Service untaggedports 10 12 taggedports 5 119 Chapter 13 VLAN Commands DELETE VLAN Syntax 1 delete vlan name vid ports ports frame untagged tagged mirrorport mirrorport Syntax 2 delete vlan name vid taggedports taggedports untaggedports untaggedports mirrorport mirrorport Parameters vlan ports frame taggedports untaggedports mirrorport Specifies the name or VID of the VLAN from which ports are to be removed Specifiesthe ports to be removed from
16. is extremely useful if you forgot the name you assigned the trunk port Specifies the ports to be added to the existing port trunk The ports can be specified individually e g 1 2 or as a range e g 1 2 A port trunk cannot have more than four ports Description You can use this command to add one or more ports to an existing port trunk For example if the switch has a port trunk of Port 5 and 9 and you want to Port 7 you could use this command to add the port to the trunk Note To initially create a port trunk see the CREATE SWITCH TRUNK command Example The following command adds Port 5 to an existing port trunk add switch trunk a port 5 AT S39 Command Line Interface User s Guide DELETE SWITCH TRUNK Syntax delete switch trunk name port ports Parameters trunk Specifies the name of the trunk to be modified You can enter any alphanumeric character for the name and this command will still work This is extremely useful if you forgot the name you assigned the trunk port Specifies the ports to be removed from the existing port trunk The ports can be specified individually e g 1 4 or asa range e g 1 2 Description This command removes ports from a port trunk Note To completely remove a port trunk from a switch see the DESTROY TRUNK command Example The following command removes Port 9 from a port trunk delete switch trunk a port 9 81 Chapter 9 Port Trunking Commands DESTROY SW
17. macaddress name Parameters sorted by Sorts the list either by MAC address or by name The default is by MAC address Description This command displays a lists of the switches in an enhanced stack This command can only be performed from a management session on a master switch The list does not include the master switch on which you started the management session Note You must perform the SHOW REMOTELIST command from a management session of a master switch This command will not work from a management session of a slave switch Note To determine the master or slave status of your switch use the SHOW SWITCH command Example The following command displays the switches in an enhanced stack sorted by MAC address the default sorting method show remotelist The following command displays the switches sorted by name show remotelist sort by name 44 ACCESS SWITCH AT S39 Command Line Interface User s Guide Syntax access switch number number macaddress macaddress Parameters number Specifiesthe number of the switch in an enhanced stack that you want to manage You can view this number using the SHOW REMOTELIST command macaddress Specifies the MAC address of the switch you want to manage This can also be displayed using the SHOW REMOTELIST command The address can be entered in either ofthe following formats XXXXXXXXXXXK OL XX XX XX XX XX XX Description You use this command to start a management sessi
18. on page 76 Note Remember to save your changes with the SAVE CONFIGURATION command Note Refer to the AT S39 User s Guide for background information on port security 72 SET SWITCH SECURITYMODE Syntax set switch AT S39 Command Line Interface User s Guide securitymode automatic limited secure locked Parameter securitymode Specifies the switch s security mode Options are automatic Disables port security on the switch A limited secure locked switch operating in Automatic mode does nat restrict the number of MAC addresses learned by the ports The switch continues to learn addresses so long as there is available space in the MAC address table This is the default setting Sets the switch to the Limited security mode This mode allows you to specify a maximum number of MAC addresses each port can learn To specify a port limit use the SET SWITCH THRESHOLD command Sets the switch to the Secure security mode In this mode the switch forwards frames based only on static MAC addresses After activating this security mode you must enter the static MAC addresses of the nodes with frames the switch is to forward To add static MAC addresses use the ADD SWITCH FDB command Sets the switch to the Local All Ports security mode This mode causes the switch to stop learning new dynamic MAC addresses The switch forwards frames based only on static MAC addresses and on those dynamic addresses it h
19. port mirror DELETE SWITCH MIRROR delete switch mirror srcport port Removes a source port s from a port mirror SET SWITCH MIRROR set switch mirror port Specifies a new destination port of an existing port mirror DESTROY SWITCH MIRROR destroy switch mirror Deletes a port mirror making it possible to connect the destination mirror port to an end node for normal network operations 176 AT S39 Command Line Interface User s Guide Spanning Tree Protocol Commands SHOW STP show stp port port Displays the STP parameter settings ACTIVATE STP activate stp port port Designates STP as the active spanning tree ENABLE STP enable stp Activates STP on the switch DISABLE STP disable stp Deactivates STP on the switch SET SIP set stp default priority priority hellotime hellotime forwarddelay forwarddelay maxage maxage status enabled disabled Activate and deactivates STP on the switch and sets the STP parameter settings SET STP PORT set stp port port all default pathcost pathcost portpriority portpriority status enabled disabled Sets the port STP parameter settings RESET SIP reset stp Disables STP and returns all bridge and port parameters to the default settings 177 Chapter 20 Command Reference Rapid Reconfiguration Spanning Tree Commands SHOW RSTP show rstp portconfig ports portstate port Displays the RSTP parameter settings ACTIV
20. reset system name contact location Deletes a switch s name the name of the network administrator responsible for managing the unit and the location of the unit SHOW DHCPBOOTP show dhcpbootp Displays the status of DHCP and BOOTP on the switch ENABLE DHCPBOOTP enable dhcpbootp Activates DHCP and BOOTP on the switch DISABLE DHCPBOOTP disable dhcpbootp Deactivates DHCP and BOOTP on the switch SHOW SWITCH show switch Displays a variety of switch information including the MAC aging time console timer broadcast timers and VLAN mode RESTART SWITCH restart switch Resets the switch RESTART REBOOT restart reboot Returns the switch s operating parameters to the default settings 170 AT S39 Command Line Interface User s Guide SHOW CONFIG show config Displays overall information on the switch and the ports PING ping ipaddress Instructs the switch to ping an end node Enhanced Stacking Commands SET SWITCH STACKMODE set switch stackmode master slave unavailable Sets a switch s stacking status SHOW REMOTELIST show remotelist sorted by macaddress name Displays a lists of all the switches of an enhanced stack ACCESS SWITCH access switch number number macaddress macaddress Start a management session on another switch in an enhanced stack EXIT exit Ends a management session and returns you back to the master switch from which you started the session or if you enter this c
21. set ip igmp snoopingsi tatus enabled hoststatus multihost timeout 120 136 SHOW IP IGMP AT S39 Command Line Interface User s Guide Syntax show ip igmp hostlist routerlist Parameters hostlist Displays a list of the multicast groups learned by the switch as well asthe ports on the switch that are connected to host nodes routerlist Displays the ports on the switch that are connected to multicast routers Description Displays the IGMP parameter settings This command can also display a listof host nodes as well as a list of switch ports connected to multicast routers Note For instructions on how to set the IGMP parameters refer to the SET IGMP command Examples The following command displays the current IGMP parameter settings show ip igmp The following command displays a list of host nodes show ip igmp hostlist 137 Chapter 16 Broadcast Frame Control Command OQ SET SWITCH BROADCAST on page 139 Note Remember to save your changes with the SAVE CONFIGURATION command Note Forbackground information on broadcast frame control referto the AT S39 User s Guide 138 AT S39 Command Line Interface User s Guide SET SWITCH BROADCAST Syntax set switch broadcast timer10_100mbps integer timer1000mbps integer Parameters timer10_100mbps Specifies the broadcast timer interval for ports operating at 10 Mbps and 100 Mbps The range is 10 to 120 milliseconds with a default of 10 millis
22. system Parameters None Description This command displays the following information a Oo vo O a Application software version and build date O Bootloader version and build date Serial number Model name Switch s name Name of the network administrator responsible for managing the unit Location of the unit Note For instructions on how to set this information see the SET SYSTEM command For instructions on how to remove the information see the RESET SYSTEM command Example The following command displays information about the switch show system 34 SET SY STEM AT S39 Command Line Interface User s Guide Syntax set system name name contact contact location location Parameters The parameters are defined below name Specifies the name of the switch The name can be from 1 to 15 alphanumeric characters in length and must be enclosed in quotes contact Specifies the name of the network administrator responsible for managing the switch The contact can be from 1to 15 alphanumeric characters in length and must be enclosed in quotes location Specifies the location ofthe switch The location can be from 1to 15 alphanumeric characters in length and must be enclosed in quotes Description This command sets a switch s name the name of the network administrator responsible for managing the unit and the location ofthe unit Example The
23. the VLAN This parameter must be used with the FRAME parameter Specifies whether the ports to be removed are tagged or untagged Specifies the tagged ports on the switch that you want to remove from the VLAN You can specify the ports individually e g 2 3 5 as a range e g 7 9 or both e g 2 5 7 9 Specifying ALL removes all tagged ports from the VLAN Specifies the untagged ports on the switch that you want to remove from the VLAN You can specify the ports individually e g 2 3 5 as a range e g 7 9 or both e g 2 5 7 9 Specifying ALL removes all untagged ports from the VLAN The port on the switch which you want to have stop functioning as a mirror port of the VLAN 120 AT S39 Command Line Interface User s Guide Description This command removes tagged and untagged ports from a VLAN You can also use this command to cancel a port functioning asa VLAN mirror This command has two syntaxes just like the CREATE VLAN command You can use either command to delete ports from a VLAN The difference between the two is that Syntax 1 can remove only one type of port tagged or untagged at a time from a VLAN while Syntax 2 can remove both in the same command This is illustrated in Examples below Note To delete a VLAN see the command DESTROY VLAN Note You cannot use thiscommand to change the name or VID of a VLAN When an untagged port is deleted from a VLAN it is automatically returned to the De
24. the port that was functioning asthe destination mirror port can be disconnected from the network analyzer and connected to an end node for normal network operations Example The following command deletes a port mirror destroy switch mirror Chapter 11 STP Commands SHOW STP on page 90 ACTIVATE STP on page 91 ENABLE STP on page 92 DISABLE STP on page 93 SET STP on page 94 SET STP PORT on page 96 RESET STP on page 98 Oovovo OO O Note Remember to save your changes with the SAVE CONFIGURATION command Note Refer to the AT S39 User s Guide for background information on the Spanning Tree Protocol STP 89 Chapter 11 Spanning Tree Protocol Commands SHOW SIP Syntax show stp port port Parameters port Specifies the port whose STP parameters you want to view You can specify more than one port at a time The ports can be specified individually e g 1 2 5 8 as a range e g 2 5 or both e g 11 13 18 Description You can use this command to display the parameter settings for STP Values are displayed forthe following parameters Q STP status Bridge identifier Bridge priority Hello time Oo vo O Forwarding delay A Maximum age timer You can also use this command to view the following STP parameter settings for a switch port O Path cost A Port priority Q Port STP state Examples The following command displays the switch s STP settings show stp The following comm
25. vce etessearieal tesdecitieelarueachactcheth a Hassactian de hasttaranniacluatate deel auedeertahattesiteltchttedizel deta a atheertite 37 RESTART A ia 38 Table of Contents RESTART REBO O Seat aos ee Se ae ee aed eed Le I a 39 SHOW CONFIG iii diia 40 A ensd Gs one ate a ap lstSigulencagc tated aa a i 41 Chapter 4 Enhanced Stacking COMMAN AS cccccssssssssssssssssecssssscssssssessssecesssscssssecesssecessssecesssecessnseessssecesssseessssecesssseessuseessseesssseceesnseessnsseesseessny 42 SET SWITCH STACKMODE iia dico la Aa 43 SHOW REMOTE ii iaa 44 ACCESS SWIC H it a SA A SO 45 A 47 Chapter 5 SNMP Community Strings and Trap Commands cccssssssssssscssssecsssssccssssecsssseecssssecssssecsssnsecssssecessnseessnsecessseesssnsecsssseeessnsessssses 48 SHOWS MP EE BEE AEE AEA E A A T E E E TE E EET 49 DESTROYSNMPECOM MUNITY ona A A A aa a an 50 CREATE SNMP COMMU NT a aa a aa ado 51 SEESNMP COMMUNIT ota A inn 52 RESET SN MP Miah etc ash Ota Be Ot 28 se EE De eae aaa eater Salts Lay cal OR alee SO TOR at eet 53 ADD SNMP COMMUNITY TRAPO OS Tout a 54 DELETE SNMP COMMUNITETRAPHOS siii dissin a a a a Taa T E a dbs ae TE AR A Eaa aai a nN 55 Chapter 6 Management Security Commands sscrerrrnrerennnnnnnnnnrs 56 SET PASSWORD MANAGER is 57 SET PASSWORD OPERA TOR Aaa 58 SHOW ATE SERVER ccoo aa aca di acacia aaa lalo 59 ENABLE HTTP SERVER iii a AE 60 DISABLE ATTE aos 61 ENABLE SNM Pt fort te eaa oe ete tae o AA ens 62
26. 20 all bridges delete current configuration messages after 20 seconds This parameter can be from 6 to 40 seconds The default is 20 seconds AT S39 Command Line Interface User s Guide Note The value for the maxage parameter must be less than 2 x hellotime 1 and less than 2 x forwarddelay 1 Description This command is used to activate and deactivate STP on the switch It is also used to set the following STP parameters A Bridge priority A Hello time A Forwarding delay A Maximum age time Examples The following command activates STP on the switch set stp status enabled The following command sets the hello time to 7 seconds and the forwarding delay to 25 seconds set stp hellotime 7 forwarddelay 25 The following command returns all STP settings on the switch to their default values set stp default 95 Chapter 11 Spanning Tree Protocol Commands SET SIP PORT Syntax set stp port portlall default pathcost pathcost portpriority portpriority fastmode enabled disabled participate yes no Parameters port Specifies the port you want to configure You can specify more than one port at atime The ports can be specified individually e g 1 2 5 8 as a range e g 2 5 or both e g 11 13 18 To configure all ports specify ALL default Returns the port s STP settings to their default values pathcost Specifies the port s path cost The spanning tree algorithm u
27. 5 through 7 set switch threshold 75 port 5 7 75 Chapter 8 Port Security Commands SHOW SWITCH THRESHOLD Syntax show switch threshold Parameters None Description This command displays the threshold limit for all the ports The threshold limit applies when the switch is operating in the Limited Security Mode and specifies the maximum number of dynamic MAC address each port will learn A port that has learned its maximum number of MAC addresses will discard frames from end nodes with MAC addresses it has not already learned Example The following command displays the threshold show switch threshold Chapter 9 Port Trunking Commands A SHOW SWITCH TRUNK on page 78 QO CREATE SWITCH TRUNK on page 79 Q ADD SWITCH TRUNK on page 80 QO DELETE SWITCH TRUNK on page 81 A DESTROY SWITCH TRUNK on page 82 Note Remember to save your changes with the SAVE CONFIGURATION command Note Refer to the AT S39 User s Guide for background information on port trunking and load distribution methods 77 Chapter 9 Port Trunking Commands SHOW SWITCH TRUNK Syntax show switch trunk Parameters None Description This command displays the ports of a port trunk and the load distribution method Example The following command displays the ports and load distribution method show switch trunk AT S39 Command Line Interface User s Guide CREATE SWITCH TRUNK Syntax create switch trunk name port ports select
28. 8 1 16 9 144 2 32 10 160 3 48 11 176 4 64 12 192 5 80 13 208 6 96 14 224 7 112 15 240 edgeport Defines whether the port is functioning as an edge pointtopoint migrationcheck port An edge port is connected to a device operating at half duplex mode and is not connected to any device running STP or RSTP Selections are yes The port is an edge port This is the default no The port is not an edge port Defines whether the port is functioning as a point to point port This type of port is connected to a device operating at full duplex mode Selections are yes The port is an point to point port no The port is not an point to point port autoupdate The port s status is determined automatically This is the default Instructs the switch to send out RSTP BPDU packets for several seconds from the selected port The purpose is to determine if there are any RSTP or STP 109 Chapter 12 Rapid Spanning Tree Protocol Commands bridges connected to the port If the port receives STP BPDU packets in response the port changes to STP compatible mode If the port receives RSTP BPDU packets it operates in RSTP Description This command sets a port s RSTP settings Examples The following command sets Port 4 s path cost to 1 000 000 and it s port priority to 224 set rstp port 4 pathcost 1000000 portpriority 14 The following command changes Ports 7 to 10 so they are not considered as edge ports set rstp port 7
29. ATE RSTP activate rstp Designates RSTP asthe active spanning tree on the switch DISABLE RSTP disable rstp Deactivates RSTP on the switch ENABLE RSTP enable rstp Enables RSTP on the switch RESET RSTP reset rstp Returns all bridge and port RSTP parameters to the default settings SET RSTP set rstp default priority priority hellotime hellotime forwarddelay forwarddelay maxage maxage forceversion forcestpcompatible normalrstp Activate and deactivates RSTP on the switch and sets the RSTP parameter settings SET RSTP PORT set rstp port port all default pathcost pathcost portpriority portpriority edgeport yes no pointtopoint yes nolautoupdate migrationcheck yes no Sets a port s RSTP parameter settings 178 AT S39 Command Line Interface User s Guide VLAN Commands SHOW VLAN show vlan Displays all the VLANs on a switch CREATE VLAN Syntax 1 create vlan name vid vid ports ports ALL frame untagged tagged mirrorport mirrorport Syntax 2 create vlan name vid vid taggedports taggedports ALL untaggedports untaggedports ALL mirrorport mirrorport Creates a port based or tagged VLAN ADD VLAN Syntax 1 add vlan name vid vid ports ports frame untagged tagged mirrorport mirrorport Syntax 2 add vlan name vid vid taggedports taggedports untaggedports untaggedports mirrorport mirrorport Adds tagged and untagged ports to an existing VLAN DE
30. E DHCPBOOTP command Note You cannot assign an IP address to the switch if DHCP and BOOTP are activated They must first be deactivated before an address can be assigned To return the IP address and subnet mask to the default values refer to the PURGE IP command 28 AT S39 Command Line Interface User s Guide Examples The following command sets a switch s IP address to 140 35 22 22 and the subnet mask to 255 255 255 0 set ip interface 1 ipaddress 140 35 22 22 netmask 255 255 255 0 The following command sets just the subnet mask set ip interface 1 netmask 255 255 255 210 The following command activates DHCP and BOOTP set ip interface 1 ipaddress dhcp To deactivate DHCP and BOOTP use the DISABLE DHCPBOOTP command 29 Chapter 3 Basic Switch Commands SHOW IP ROUTE Syntax show ip route Parameters None Description This command displays the switch s default gateway address Example The following command displays the default gateway address show ip route SET IP ROUTE AT S39 Command Line Interface User s Guide Syntax set ip route ipaddress ipaddress Parameter ipaddress Specifies the IP address of the default gateway for the switch Description This command specifies the IP address of the default gateway for the switch This is required if a remote management station is separated from the switch by a router The default value is 0 0 0 0 Example The following
31. ITCH TRUNK Syntax destroy switch trunk name Parameter trunk Specifies the name of the trunk to be deleted You can enter any alphanumeric character for the name and this command will still work This is extremely useful if you forgot the name you assigned the trunk Description This command deletes a port trunk from a switch Once a port trunk has been deleted the ports that made up the trunk can be connected to different end nodes Example The following command deletes the trunk from the switch destroy switch trunk a 82 Chapter 10 Port Mirroring Commands CREATE SWITCH MIRROR on page 84 ADD SWITCH MIRROR on page 85 DELETE SWITCH MIRROR on page 86 SET SWITCH MIRROR on page 87 DESTROY SWITCH MIRROR on page 88 Ooo vo O Note Remember to save your changes with the SAVE CONFIGURATION command Note For background information on port mirroring refer to the AT S39 User s Guide 83 Chapter 10 Port Mirroring Commands CREATE SWITCH MIRROR Syntax create switch mirror destport destinationport srcport sourceport Parameters destport Specifies the destination port where the data will be copied to and where the network analyzer will be connected You can specify only one port srcport Specifies the port whose traffic is to be mirrored You can specify more that one port The ports can be specified individually e g 1 4 6 as a range e g 11 14 or both 1 4 7 9 Description This comman
32. LETE VLAN Syntax 1 delete vlan name vid vid ports ports frame untagged tagged mirrorport mirrorport 179 Chapter 20 Command Reference Syntax 2 delete vlan name vid vid taggedports taggedports untaggedports untaggedports mirrorport mirrorport Removes tagged and untagged ports from a VLAN DESTROY VLAN destroy vlan name vid vid Deletes a VLAN from a switch RESET VLAN reset vlan Deletes all port based and tagged VLANs on aswitch except for the Default_VLAN SET SWITCH VLANMODE set switch vlanmode tagged basic Configures a switch to support either port based and tagged VLANs or the Basic VLAN mode SET SWITCH VLANSTATUS set switch vlanstatus enabled disabled Configures a switch to support either port based and tagged VLANs or the Basic VLAN mode SET SWITCH INFILTERING set switch infiltering on off Activates and deactivates ingress filtering 180 AT S39 Command Line Interface User s Guide MAC Address Table Commands SHOW SWITCH FDB show switch fdb address macaddress port port status static dynamic multicast vlan name VID Displays the dynamic static and multicast MAC addresses stored in a switch s MAC address table ADD SWITCH FDB add switch fdb macaddress macaddress port port Adds static and multicast MAC addresses to the switch s MAC address table DELETE SWITCH FDB show switch fdb macaddress macaddress port port vlan name VID Deletes
33. Management Software AT S39 Command Line User s Guide AT 8016F AT 8024 AT 8024M AT 8024GB AND AT 8026FC FAST ETHERNET SWITCHES VERSION 3 0 Allied Telesyn Simply connec ting the world gt 7070707007070 0000 700000 Copyright 2002 Allied Telesyn Inc 960 Stewart Drive Suite B Sunnyvale CA 94085 USA All rights reserved No part of this publication may be reproduced without prior written permission from Allied Telesyn Inc Microsoft is a registered trademark of Microsoft Corporation Netscape N avigator is a registered trademark of Netscape Communications Corporation All other product names company names logos or other designations mentioned herein are trademarks or registered trademarks of their respective owners Allied Telesyn Inc reserves the right to make changes in specifications and other information contained in this document without prior written notice The information provided herein is subject to change without notice In no event shall Allied Telesyn Inc beliable for any incidental special indirect or consequential damages whatsoever including but not limited to lost profits arising out of or related to this manual or the information contained herein even if Allied Telesyn Inc has been advised of known or should have known the possibility of such damages Table of Contents A aan cB ve Se lea Gas te ae laa a a Se ae Saeidliee ae arene ea 7 DO CUMEMECOMMEMEIO e EE aE ELS E A
34. OLEMODE set switch consolemode cli menu Specifies whether management sessions are to start with the command line interface or with the AT S39 Main Menu LOGOFF and QUIT logoff quit Ends amanagement session 168 AT S39 Command Line Interface User s Guide Basic Switch Commands SHOW IP show ip interface 1 Displays the IP address subnet mask and default gateway SET IP set ip interface 1 ipaddress IPaddress DHCP netmask subnetmask Configuresthe IP address and subnet mask and activates and deactivates DHCP and BOOTP SHOW IP ROUTE show ip route Displays the switch s default gateway address SET IP ROUTE set ip route ipaddress ipaddress Specifies the IP address of the default gateway for the switch RESET IP reset ip interface 1 Returns a switch s IP address subnet mask and gateway address to the default values PURGE IP purge ip ipaddress netmask route Returns a switch s IP address subnet mask or default gateway address to its default value SHOW SYSTEM show system Displays a switch s name the name of the network administrator responsible for managing the unit and the location of the unit 169 Chapter 20 Command Reference SET SYSTEM set system name name contact contact location location Sets a switch s name the name of the network administrator responsible for managing the unit and the location of the unit RESET SYSTEM
35. OMMANGS o 99 SO WR diia 100 ACTIVATE RR TP AO aca 101 DISABLERSTP irisi a a aee aaa btt 102 ENABLE RSP EE EE A A TA A AA iia EE 103 REST as 104 SER aaa ala a iaa isis iia 105 SET RSUTP iia eta 108 Chapter 13 VLAN COMMAN AS aii al 111 SOIL di Soda abate 112 OIT ATA E TN EEEE E TA TA added 113 ADD V Ninas 117 pE ETE V AN ca ai ada a litio iaa 120 DESTROY VLAN A a a dabas 123 RESET VAN id tds 124 SET SWITCH VEANM ODE ii a a a 125 SET SWITCH VEANSTATU Si oia ad ci A ANa 126 SETSWITCHINFILTERING cir ia a ab aia ita 127 Chapter 14 MAC Address Table COMMANAS ssssssssssssssssssessssessnsessnsessussssusssssessssessssessssessuseesssessuseesssesssneessnessaeessasessusessusessnseesnsesasesssseesssseesass 128 SHOW SWITCH EDB una nd 129 ADD WITEH ED nilo 131 DELETESWITEH RDB a a E SA EA O O A OEA AI NAN Mice at tah ae TE 132 SET SWITCHAGINCTIMER dia 133 Chapter 15 IGMP Snooping Command ish dede 134 A A 135 SHOW IPIGM P cauca dias 137 Chapter 16 Broadcast Frame Control Command c sssssssssssssssssssssssssessssssssscessessssecsssecsssessssesssssssssssssussssussssusssssessssecsusessnsessnseesnsessseessseesssesssess 138 SETSWITEH BROADCAST aia 139 Chapter 17 TACACS and RADIUS Command ccccscccssssssssssssssssssssssssssssssssessssessessssessesssesssessssssseessessseessesssessnssssessnsessessnsessessnsessessnsesseesneeseesnen 141 DISABLE AUTHENTICATION cocoa iaa illa alaba 142 ENABLE AUTHENTICATION a tt 143 Tab
36. Parameters ipaddress Specifies the IP address of the TACACS server that you want to delete Description Use this command to delete the IP address of a TACACS server from your switch Example The following command deletes the TACACS server with the IP address of 149 245 22 20 delete tacacsserver ipaddress 149 245 22 20 149 Chapter 17 TACACS and RADIUS Commands ADD RADIUSSERVER Syntax add radiusserver ipaddress ipaddress order integer secret string port integer Parameters ipaddress Specifies an IP address of a RADIUS server order Specifies the order that your RADIUS server is queried by the switch You can assign order to up to 3 servers with 1 being the first server queried secret Specifies the encryption key used for this server port Specifies the UDP User Datagram Protocol port of the RADIUS server Description Use this command to specify the IP address of a RADIUS server and the order it is queried by the switch You may specify an encryption key and a UDP port Examples The following command adds a RADIUS server with the 149 245 22 22 IP address and specifies it is the first server in the list add radiusserver ipaddress 149 245 22 22 order 1 The following command adds the RADIUS server with the 149 245 22 22 IP address In addition it specifies your server is the third RADIUS server to be queried by the switch and it has a UDP port of 3 add radiusserver ipaddress 149 245
37. RATION command 23 Chapter 3 Basic Switch Commands SHOW DHCPBOOTP Syntax show dhcpbootp Parameters None Description This command displays the status of DHCP and BOOTP on the switch The status will be either enabled or disabled Example The following command displays the status of DHCP and BOOTP show dhcpbootp 24 AT S39 Command Line Interface User s Guide ENABLE DHCPBOOTP Syntax enable dhcpbootp Parameters None Description This command activates DHCP and BOOTP on the switch When activated these protocols instruct the switch to obtain its IP configuration from a DHCP or BOOTP server on your network whenever the unit is power cycled or reset The protocols make continuous requests for the IP configuration until a DHCP or BOOTP server responds If you have assigned the switch an IP address manually the address is discarded when DHCP and BOOTP are activated The default setting for DHCP and BOOTP is disabled Note You cannot manually assign an IP address or subnet mask to a switch once DHCP and BOOTP have been activated To disable DHCP and BOOTP refer to the DISABLE DHCPBOOTP command Example The following command activates DHCP and BOOTP enable dhcpbootp 25 Chapter 3 Basic Switch Commands DISABLE DHCPBOOTP Syntax disable dhcpbootp Parameters None Description This command deactivates DHCP and BOOTP on the switch Example The following command deactiva
38. SAE 8 Where to Find Web bDased GUIAES ciinii a i a a aaa ian 9 Contacting Allied Telesyn occ sssscssssecssssscsssssccssssscessssccsssssssssscessssecesssecesssseceessecessnsecssssecessusessessuseessusecessnscessusecesssecessnsecessseecssnsecesssecessnseessnses 10 Sales or Corporate Information 10 Management Software Updates nic ea 11 Chapter 1 Starting a Command Line Management Session cccsssssssssscssssscsssssccssssecssssecsssssecssssecssssseessssecssssecessusecsssseeessnsecssssecsssnseessnaes 12 HAM A O OO ra 13 FU A paa 14 Command FONO nia aiii 15 Chapter 2 Basic Command Line COMMANAS ciiicnniciccn nnnnncc cc 16 SAVE CONFIGURATIO Ni ea iSi 17 SETPROM PY an AA EE EEEE A a Laa 18 CLEAR SCREEN susi ica 19 MEN da be UR ee 20 SET SWITCH CONSOLEM ODE aia 21 LOGOFF and QUIE o ta 22 Chapter 3 Basic SWitch COMMAN S accio iii 23 SHOWEDHEPBOOTP ii 24 ENABLEDHEPBO OP iaa 25 DISABLEDHCPBOOTP ri 26 A tall duastt casas a Sasateallisncue ituallatd be egeeatitier A E antiainiaaneliele 27 SETIP ynia ar a neler hase baa aaa aaie aa a a aeaa a aaia Aa A 28 SHOW IP ROUTE wats A A AA St r 30 SETIP ROUTE nni maten 31 RESET P O 32 PURGEIP ui ata 33 SHO WeSY STEM gccecscsetSessscsetenstcusay cians oessbealscaapter i ele i a a Sees a i ievavanasuaccit bb alecndicaens adeaabee ot 34 SET SY STEM Ai 35 RESET SY STEM csssccteic ceictasssacstet esl ceettnerss uaa start stuaas aes taas sales deat a A E au ea ene anda A 36 SHOW SWITCH cinis
39. VLAN It allows you to mirror the VLAN traffic on another port where you can connect a network analyzer In most situations you will probably not use this parameter Description This command adds tagged and untagged ports to an existing VLAN You can also use this command to have the traffic on the VLAN mirrored to another port on the switch 117 Chapter 13 VLAN Commands Note To remove ports from a VLAN see the command DELETE VLAN This command has two syntaxes just like the CREATE VLAN command You can use either command to add portsto a VLAN The difference between the two is that Syntax 1 can add only one type of port tagged or untagged at atime to a VLAN while Syntax 2 can add both in the same command This is illustrated in Examples below When you add untagged ports of a VLAN the ports are automatically removed from their current untagged VLAN assignment This is because a port can be an untagged member of only one VLAN at a time For example if you add Port 4 as an untagged port to a VLAN the port is automatically removed from whichever VLAN it is currently an untagged member Adding a tagged port to a VLAN does not change the port s current tagged and untagged VLAN assignments This is because a tagged port can belong to more than one VLAN at atime For instance if you add Port 6 as an tagged port to anew VLAN Port 6 remains amember of any current VLAN assignments as a tagged and untagged member Examples The
40. a switch to a management workstation ENABLE TFTPSERVER enable tftpserver Activates the TFTP server software on the switch DISABLE TFTPSERVER disable tftpserver Disables the TFTP server software on the switch SHOW TFITPSERVER show tftpserver Displays the status of the TFTP server software 184
41. access read 51 Chapter 5 SNMP Community Strings and Trap Commands SET SNMP COMMUNITY Syntax set snmp community community access read write Parameter community Specifies the new community string you created with the CREATE SNMP COMMUNITY command access Specifies which community string you changed Options are Read and Write Description This command activates a new Read or Write community string on the switch You perform this command after creating the new string using the CREATE SNMP COMMUNITY command Example The following command activates the new Read community sting serv12 set snmp community servl2 access read 52 RESET SNMP AT S39 Command Line Interface User s Guide Syntax reset snmp Parameters None Description This command performs the following functions A Returnsthe SNMP community strings to the default values which are public for Read access and private for Write access A Disables SNMP access so that the switch cannot be managed using an SNMP application A Deletes IP addresses of management workstations to receive traps from the switch Example The following command resets SNMP reset snmp 53 Chapter 5 SNMP Community Strings and Trap Commands ADD SNMP COMMUNTIY TRAPHOST Syntax add snmp community community traphost ipaddress Parameters community Specifies the switch s SNMP Read or Write community string traphost Specifies the IP addre
42. activated which is the default tagged frames are filtered when they are received on a port When ingress filtering is deactivated tagged frames are filtered before they are transmitted out a port Example The following command deactivates ingress filtering set switch infiltering off 127 Chapter 14 MAC Address Table Commands LY SHOW SWITCH FDB on page 129 Q ADD SWITCH FDB on page 131 Q DELETE SWITCH FDB on page 132 LY SET SWITCH AGINGTIMER on page 133 Note Remember to save your changes with the SAVE CONFIGURATION command 128 AT S39 Command Line Interface User s Guide SHOW SWITCH FDB Syntax show switch fdb address macaddress port port status static dynamic multicast vlan name VID Parameters address Specifies a MAC address Use this parameter to determine the port on the switch on which a particular MAC address was learned dynamic or assigned static The address can be entered in either of the following formats XXXXXXXXXXXX OP XX XX XX XX XX XX port Specifies a port on the switch Use this parameter to view all the addresses learned on a particular port on the switch You can specify only one port status Specifies the type of MAC addresses you want to view Choices are static dynamic and multicast vlan Specifies a VLAN Use this parameter to view the MAC addresses learned on the ports of a particular VLAN on the switch The VLAN can be identified by name or VID Note You can spec
43. and displays the STP settings for Ports 12 to 14 show stp port 12 14 ACTIVATE SIP AT S39 Command Line Interface User s Guide Syntax activate stp Parameters None Description Use this command to designate STP asthe active spanning tree on the switch Once you have selected STP you can enable or disable it using the ENABLE STP and DISABLE STP commands A spanning tree protocol is active on a switch only if you designate it as the active spanning tree and enable it Note A change to the active spanning tree protocol with this command will reboot the switch Example The following command designates STP as the active spanning tree activate stp 91 Chapter 11 Spanning Tree Protocol Commands ENABLE STP Syntax enable stp Parameters None Description This command activates the Spanning Tree Protocol on the switch The default setting for STP is disabled Example The following command activates STP enable stp 92 DISABLE STP AT S39 Command Line Interface User s Guide Syntax disable stp Parameters None Description This command deactivates the Spanning Tree Protocol on the switch The default setting for STP is disabled Example The following command deactivates STP disable stp 93 Chapter 11 Spanning Tree Protocol Commands SET STP Syntax set stp default priority priority hellotime hellotime forwarddelay forwarddelay maxage maxage Parameters default priorit
44. apter 18 Statistics Commands SHOW SWITCH PORT COUNTER Syntax show switch port port counter Parameters port Specifies the port whose statistics you want to view You can view more than one port at a time The ports can be specified individually e g 1 2 5 8 as a range e g 2 5 or both e g 11 13 18 To view all ports do not specify a port Description This command displays the operating statistics for a port on the switch Examples of the statistics include the number of packets transmitted and received and the number of CRC errors For definitions of the statistics refer to the AT S39 User s Guide Examples The following command displays the operating statistics for Port 4 show switch port 4 counter The following command displays the operating statistics for all ports show switch port counter 154 AT S39 Command Line Interface User s Guide RESET SWITCH COUNTER Syntax reset switch counter Parameters None Description This command returns all statistic counters on the switch to zero 0 Example The following command resets the statistic counters reset switch counter 155 Chapter 18 Statistics Commands RESET SWITCH PORT COUNTER Syntax reset switch port port all counter Parameters port Specifies the port whose statistics counter you want to return to zero You can specify more than one port at a time The ports can be specified individually e g 1 2 5 8 as a range e g
45. arameter at a time with this command RESET SWITCH PORT reset switch port port Resets a port 174 AT S39 Command Line Interface User s Guide Port Security Commands SET SWITCH SECURITYMODE set switch securitymode automatic limited secure locked Sets the port security mode SET SWITCH THRESHOLD set switch threshold threshold port portslall Sets the maximum number of dynamic MAC addresses a port can learn when the switch is operating in the Limited security mode SHOW SWITCH THRESHOLD show switch threshold Displays the threshold limit for each port when the switch is operating in the Limited security mode Port Trunking Commands SHOW SWITCH TRUNK show switch trunk Displays the ports of a port trunk and the load distribution method CREATE SWITCH TRUNK create switch trunk name port ports select macsrc macdest macboth Creates a port trunk ADD SWITCH TRUNK add switch trunk name port ports Add one or more ports to an existing port trunk DELETE SWITCH TRUNK delete switch trunk name port ports Removes ports from a port trunk 175 Chapter 20 Command Reference DESTROY SWITCH TRUNK destroy switch trunk name Deletes a port trunk from a switch Port Mirroring Commands CREATE SWITCH MIRROR create switch mirror destport destinationport srcport sourceport Creates a port mirror ADD SWITCH MIRROR add switch mirror srcport port Adds asource port s to an existing
46. as already learned 73 Chapter 8 Port Security Commands Description This command sets a switch s port security mode Only one mode can be active on a switch at a time Note To view the current security mode settings use the SHOW CONFIGURATION command Example The following command sets the switch s port security mode to limited set switch securitymode limited 74 AT S39 Command Line Interface User s Guide SET SWITCH THRESHOLD Syntax set switch threshold threshold port portlall Parameters threshold Specifies the maximum number of dynamic MAC addresses a port on the switch can learn The range is 1 to 150 addresses The default is 100 port Specifiesthe port whose threshold you want to change You can specify more than one port at atime You can specify the ports individually e g 2 3 5 as a range e g 7 9 or both e g 2 5 7 9 To assign the same threshold to all ports on the switch use ALL Description This command is used when the switch is operating in the Limited security mode The Limited security mode allows you to set a maximum number of dynamic MAC addresses each port on aswitch can learn Once a port has learned its maximum number of MAC addresses it discards frames with new source MAC addresses You can assign the same threshold limit to all ports or different limits to different ports Example The following command sets a threshold limit of 75 dynamic MAC addresses on Ports
47. atus forwarding disabled flowcontrol none transmit recievel both AT S39 Command Line Interface User s Guide oclimit broadcastlimit mdimode mdi mdix auto mirror yes no all none softreset yes no speed autonegotiate 10mhalf 10mfu11 10mhauto 10mfauto 100mhalf 100mfull 100mhauto 100mfauto 1000mfull 1000mfauto PVID pvid renegotiation auto Parameters port status flowcontrol bclimit priority priority overridepriority yes no Specifies the port you want to configure You can specify more than one port at atime You can specify the ports individually e g 2 3 5 as a range e g 7 9 or both e g 2 5 7 9 To specify all ports on the switch use ALL Specifies the operating status of the port Possible settings are forwarding The port will accept and transmit Ethernet frames This is the default setting for all ports on the switch disabled The port will not accept or transmit frames Specifies the flow control on the port Possible values for this parameter are none No flow control transmit Flow control when transmitting frames receive Flow control when receiving frames both Flow control when both transmitting and receiving frames Specifies the maximum number of broadcast frames the port will transmit during the interval specified by the broadcast timer The default is 0 which disables frame co
48. ault is 10 minutes Description This command setsthe console timer The management software automatically ends a management session if it does not detect any activity from the local or remote management station after the specified period of time set by the console timer This security feature can prevent unauthorized individuals from using your management station should you step away from your system while configuring a switch Example The following command sets the console timer to 25 minutes set switch consoletimer 25 64 Chapter 7 Port Parameter Commands LY SHOW SWITCH PORT on page 66 Q SET SWITCH PORT on page 67 Q RESET SWITCH PORT on page 71 Note Remember to save your changes with the SAVE CONFIGURATION command 65 Chapter 7 Port Parameter Commands SHOW SWITCH PORT Syntax show switch port port Parameters port Specifies the port whose parameter settings you want to view You can specify more than one port at a time You can specify the ports individually e g 2 3 5 as a range e g 7 9 or both e g 2 5 7 9 To view all ports do not specify a port Description This command displays a port s operating parameters such as speed and duplex mode Examples The following command displays the operating settings for Port 4 show switch port 4 The following command displays the operating settings for all ports show switch port SET SWITCH PORT Syntax set switch port portlall st
49. command sets the default gateway to 140 35 22 12 set ip route ipaddress 140 35 22 12 31 Chapter 3 Basic Switch Commands RESET IP Syntax reset ip interface 1 Parameter interface Specifies the interface number This value is always ye Description This command returns a switch s IP address subnet mask and gateway addressto the default values To return just one of these parameters to its default value refer to the PURGE IP command Example The following command returns the IP address subnet mask and gateway address to their default values reset ip interface 1 32 PURGE IP AT S39 Command Line Interface User s Guide Syntax purge ip ipaddress netmask route Parameters ipaddress Returns the switch s IP address to the default setting 0 0 0 0 netmask Returns the subnet mask to the default setting 255 255 0 0 route Returns the gateway address to the default setting 0 0 0 0 Description This command returns the switch s IP address subnet mask and default gateway address to the default settings This command is similar in function to the RESET IP command Where they differ is that with this command you can specify which parameter to reset while you cannot with the RESET IP command Example The following command returns the IP address and subnet mask to the default values purge ip ipaddress netmask 33 Chapter 3 Basic Switch Commands SHOW SYSTEM Syntax show
50. d creates a port mirror Note To view whether the switch already has a port mirror use the SHOW CONFIG command Examples The following command creates a port mirror where the traffic on Port 12 source port is copied to Port 11 destination port create switch mirror destport 11 srcport 12 The following command creates a port mirror where the traffic on Ports 1 to 3 Source ports is copied to Port 4 destination port create switch mirror destport 4 srcport 1 3 84 AT S39 Command Line Interface User s Guide ADD SWITCH MIRROR Syntax add switch mirror srcport port Parameter srcports Specifies the port s whose data are to the copied to the destination port You can specify more than one port The ports can be specified individually e g 1 2 as a range e g 2 3 or both 1 4 7 9 Description This command adds source ports to an existing port mirror For example if you were mirroring the traffic on Ports 1 to 4 and you wanted to add port 11 as another source port you could use this command to add the port to the mirror Note To view the ports of a port mirror use the SHOW CONFIG command Note If you want to change the destination port that is the port where the traffic is being copied to use the SET SWITCH MIRROR command Example The following command adds Port 3 and 4 as additional source ports to an existing port mirror add switch mirror srcport 3 4 85 Chapter 10 Port Mirrori
51. e default is 20 seconds The value for the maxage parameter must be less than 2 x hellotime 1 and less than 2 x forwarddelay 1 forceversion Description The forceversion parameter lets you choose between forcestocompatible The bridge will use the RSTP parameter settings but will transmit only STP BPDU packets out the ports normalrspt The bridge will use RSTP This is the default setting This command is used to configure the following RSTP parameter settings O Hello time A Bridge priority A Forwarding delay 106 AT S39 Command Line Interface User s Guide A Maximum age time A Port priority O Force version of STP or normal RSTP Examples The following command returns all RSTP parameter settings to their default values set rstp default The following command sets the bridge priority to 20480 increment 5 the hello time to 5 seconds and the forwarding delay to 20 seconds set rstp priority 5 hellotime 5 forwarddelay 20 set rstp default The following command uses the FORCEVERSION parameter to configure the bridge to use the RSTP parameters but to transmit only STP BPDU packets set rstp forceversion forcestpcompatible 107 Chapter 12 Rapid Spanning Tree Protocol Commands SET RSTP PORT Syntax set rstp port t port all default pathcost pa thcost portpriority portpriority edgeport yes no pointtopoint t yes
52. e disabled on a port Description This command is used to set the following parameter settings for STP on the switch ports O Path cost A Port priority L Fast mode Examples The following command sets the path cost to 15 and the port priority to 100 on Port 6 set stp port 6 pathcost 15 portpriority 100 The following command activates fast mode on Port 10 set stp port 10 fastmode enabled 97 Chapter 11 Spanning Tree Protocol Commands RESET SIP Syntax reset stp Parameters None Description This command disables STP and returns all bridge and port STP parameters to the default settings Example The following command disables STP reset stp 98 Chapter 12 RSTP Commands SHOW RSTP on page 100 ACTIVATE RSTP on page 101 DISABLE RSTP on page 102 ENABLE RSTP on page 103 RESET RSTP on page 104 SET RSTP on page 105 SET RSTP PORT on page 108 DOU UCODOO OO O Note Remember to save your changes with the SAVE CONFIGURATION command Note Refer to the AT S39 User s Guide for background information on the Rapid Spanning Tree Protocol RSTP 99 Chapter 12 Rapid Spanning Tree Protocol Commands SHOW RSIP Syntax show rstp portconfig ports portstate port Parameters portconfig Displays the RSTP port settings You can specify more than one port at atime portstate Displays the RSTP port status You can specify more than one port at atime Description You can use thi
53. e on a switch at atime Description This command configures a switch to support either port based and tagged VLANs or the Basic VLAN mode Note This command performs exactly the same function as the SET SWITCH VLANSTATUS command Example The following command configures the switch to support the Basic VLAN mode set switch vlanmode basic 125 Chapter 13 VLAN Commands SET SWITCH VLANSTATUS Syntax set switch vlanstatus enabled disabled Parameters vlanstatus Specifies the switch s VLAN mode Specifying ENABLED means the switch will support tagged and untagged VLANs Specifying DISABLED means the switch will support the Basic VLAN mode The default istagged and untagged VLANs Only one mode can be active on a switch at a time Description This command configures a switch to support either port based and tagged VLANs or the Basic VLAN mode Note This command performs exactly the same function as the SET SWITCH VLANMODE command Example The following command configures the switch to support the Basic VLAN mode set switch vlanstatus disabled 126 AT S39 Command Line Interface User s Guide SET SWITCH INFILTERING Syntax set switch infiltering on off Parameter infiltering Specifies the status of ingress filtering Options are on Ingress filtering is activated off Ingress filtering is deactivated Description This command controls the status of ingress filtering When ingress filtering is
54. e only a few seconds The unit will not forward traffic during the few seconds required to reload the operating software and run its internal diagnostics Caution Be sure to use the SAVE CONFIGURATION command to save your changes before resetting the switch Any changes not saved will be discarded Example The following command resets the switch restart switch AT S39 Command Line Interface User s Guide RESTART REBOOT Syntax restart reboot Parameters None Description This command returns the switch s operating parameters to the default settings Example The following command returns the switch s operating parameters to the default settings restart reboot 39 Chapter 3 Basic Switch Commands SHOW CONFIG Syntax show config Parameters None Description This command displays overall information on the switch and the ports Example The following command displays information about the switch and the ports show config 40 PING AT S39 Command Line Interface User s Guide Syntax ping ipaddress Parameter ipaddress Specifies the IP address of an end node you want the switch to ping Description This command instructs the switch to ping an end node You can use this command to determine whether a valid link exists between the switch and another device Example The following command pings an end node with the IP address 149 245 22 22 ping 149 245 22 22 41 Chapte
55. e tagged delete vlan name Service ports 10 12 frame untagged Using Syntax 2 you can do the whole thing with just one command delete vlan name Service untaggedports 10 12 taggedports 5 122 DESTROY VLAN AT S39 Command Line Interface User s Guide Syntax destroy vlan name vid Parameter vlan Specifies the name or VID of the VLAN to be deleted Description This command deletes a VLAN from a switch All untagged ports in a deleted VLAN are automatically returned to the Default_VLAN You cannot delete the Default_VLAN Examples The following command deletes the VLAN Sales from the switch destroy vlan sales The following command deletes a VLAN with a VID of 2001 from the switch destroy vlan 2001 123 Chapter 13 VLAN Commands RESET VLAN Syntax reset vlan Parameters none Description This command deletes all port based and tagged VLANs on a switch except for the Default_VLAN All ports are returned to the Default_VLAN as untagged ports Example The following command deletes VLANs on a switch reset vlan 124 AT S39 Command Line Interface User s Guide SET SWITCH VLANMODE Syntax set switch vlanmode tagged basic Parameters vlanmode Specifies the switch s VLAN mode Specifying TAGGED means the switch will support tagged and untagged VLANs Specifying BASIC means the switch will support the Basic VLAN mode The default is tagged and untagged VLANs Only one mode can be activ
56. econds timerl000mbps Specifies the length of time in microseconds for ports operating at 1000 Mbps The range is 100 to 12 000 microseconds with a default of 100 microseconds Description This command specifies the broadcast interval timer which defines the time period used in counting the number of forwarded broadcast frames on a port There are two interval timers One timer is for ports operating at 10 Mbps and 100 Mbps The second timer is for 1000 Mbps ports The timer interval for 10 and 100 Mbps ports is measured in milliseconds The timer interval for 1000 Mbps ports is measured in microseconds A time interval setting applies to all ports operating at the corresponding speed on the switch Both timers round down your input For the timer interval for 10 and 100 Mbps ports values you enter are rounded down to the nearest multiple of 10 For the 1000 Mbps timer values you enter are rounded down to the nearest multiple of 100 microseconds Note The 1000 Mbps speed applies only to GBIC modules in an AT 8024GB switch and expansion modules in an AT 8024M or AT 8016F Series switch Note To activate and deactivate broadcast control as well as set the maximum number of broadcast frames a port will transmit refer to the SET SWITCH PORT command 139 Chapter 16 Broadcast Frame Control Commands Examples The following command sets a broadcast timer of 500 milliseconds for ports operating at 10 Mbps and 100 Mbps set swi
57. egotiation 100mhalf 100 Mbps and half duplex mode 100mfull 100 Mbps and full duplex mode 100mhauto 100 Mbps and half duplex mode with autonegotiation Note AT S39 Command Line Interface User s Guide 100mfauto 100 Mbps and full duplex mode with autonegotiation 1000mfull 1000 Mbps and full duplex mode 1000mfauto 1000 Mbps and full duplex mode with autonegotiation The selections 10mfauto 100mhauto 100mfauto and 1000mfauto will Auto Negotiate to a lower speed and or to half duplex mode if required by the end node pvid priority overridepriority Description Sets the PVID This number is automatically assigned by the management software when the port is made an untagged member of a VLAN This number matches the VID of the VLAN in which the port is an untagged member The default value is 1 meaning that the port is an untagged member of the Default_VLAN which has a VID of 1 For background information refer to the descriptions of port based and tagged VLANs in the AT S39 User s Guide Specifies the port s priority Entering a value of 0 to 3 directs all tagged frames received on the port to the low priority queue Entering a value of 4 to 7 directs all tagged frames to the high priority queue For background information refer to the description of Class of Service in the AT S39 User s Guide Selecting Yes for this parameter causes the port to ignore the tagged header in tagged frames S
58. ey Features on page 14 A Command Formatting on page 15 AT S39 Command Line User s Guide Starting a Management Session In order to manage an AT 8000 Series switch using the command line commands you must first start a local Telnet or web management session All of the instructions for starting a management session are described in the AT S39 User s Guide Refer there for directions Once you have started a local or Telnet management session you will see the AT S39 Main Menu This menu will have the following option as one of its selections C Command Line Interfac Typing C displays the command line prompt You are now ready to begin to manage the switch using the command line commands Starting a web browser management session displays the AT S39 Home Page In the left hand menu will be the button CLI Clicking the button opens anew window with the command line prompt Chapter 1 Starting a Command Line Management Session Key Features The following features are supported in the command line interface a a Command history using the up and down arrow keys Context specific help Pressthe question mark key at any time to see a list of legal next parameters Keyword completion Type a partial keyword and pressthe Tab key The rest of the keyword will be entered automatically Keyword abbreviations Any keyword can be recognized just by typing an unambiguous prefix e g sh for show
59. fault_VLAN as an untagged member If the port is also functioning asa tagged member of other VLANs it remains a member of the other VLANs For example if you remove Port 4 from a VLAN the port is automatically returned as an untagged port to the Default VLAN If Port 4 is functioning as a tagged member in one or more other VLANs it remains as a tagged member of those VLANs If you remove an untagged port from the Default_ VLAN without assigning it to another VLAN the port is excluded as an untagged member from all VLANs on the switch When a tagged port is removed from a VLAN all of its other tagged and untagged VLAN assignments remain unchanged Examples The following command uses Syntax 1 to delete untagged Ports 4 and 7 from a VLAN called Sales delete vlan name sales port 4 7 frame untagged The following command doesthe same thing using Syntax 2 delete vlan name sales untaggedports 4 7 The following command uses Syntax 1 to delete tagged Port 3 from a VLAN called Production delete vlan name production port 3 frame tagged 121 Chapter 13 VLAN Commands The following command doesthe same thing using Syntax 2 delete vlan name production untaggedports 3 To delete both tagged and untagged ports from a VLAN using Syntax 1 takes two commands For example if you had a VLAN called Service and you wanted to delete tagged Port 5 and untagged Ports 10 to 12 the commands would be delete vlan name Service ports 5 fram
60. following command sets a switch s information set system name Sales contact Jane Smith location Bldg 3 rm 212 The following command sets just the system s name set system name PR Office 35 Chapter 3 Basic Switch Commands RESET SY SIEM Syntax reset system name contact location Parameters name Deletes the name of the switch contact Deletes the name of the network administrator responsible for managing the unit location Deletes the location of the switch Description This command deletes the information listed above in Parameters Note For instructions on how to set the name contact and location of a switch refer to the SET SYSTEM command Examples The following command deletes all three items reset system name contact location The following command deletes just the location reset system location 36 SHOW SWITCH AT S39 Command Line Interface User s Guide Syntax show switch Parameters None Description This command displays the following switch parameters a E ODODO El MAC aging time O Console timer Broadcast timers VLAN mode Stack mode Enhanced stacking status Port mirror Example The following command displays switch parameters show switch 37 Chapter 3 Basic Switch Commands RESTART SWITCH Syntax restart switch Parameter None Description This command resets the switch The system reset will tak
61. guration file on the master switch to switch 2 in an enhanced stack load method remoteswitch type config switchnumber 2 The following command downloads a configuration file using TFTP load method tftp type config You are prompted for the IP address of the TFTP server and the name of the file to download 161 Chapter 19 Download and Upload Commands UPLOAD Syntax upload method tftp xmodem type image config method Specifies the method of the upload Only one option is available tftp Indicates that the upload will be performed using TFTP To use this option you must have TFTP server software on anetwork node xmodem Indicates that the upload will be from the switch to the management workstation type Specifies the file to be uploaded Options are image Uploads both the AT S39 software image and bootloader config Uploads the switch s configuration file You can specify only one file at a time Description This command is used to upload the AT S39 software image and bootloader from a switch to a management workstation This command can also be used to upload a switch s configuration file to a management workstation Before uploading files note the following A This command can only be performed from a local management session This command is not available from a Telnet or web browser management session A Aconfiguration file cannot be edited with a text editor or word processor 162
62. ify only one parameter at a time with this command Description This command displays the dynamic static and multicast MAC addresses stored in a switch s MAC address table Examples The following command displays all MAC addresses in the switch s MAC address table show switch fdb The following command displays just the multicast addresses show switch fdb status multicast 129 Chapter 14 MAC Address Commands The following command displays the port number on which the MAC address 00 A0 D2 18 1A 11 was learned dynamic or added static show switch fdb address 00A0D2181A11 The following command displays the MAC addresses learned on Port 11 show switch fdb port 11 Thefollowing command displays the MAC addresses learned on the ports in the Sales VLAN show switch fdb vlan sales 130 AT S39 Command Line Interface User s Guide ADD SWITCH FDB Syntax add switch fdb macaddress macaddress port port Parameters macaddress Specifiesthe static or multicast addressto the added to the switch s MAC address table The address can be entered in either of the following formats XXXXXXXXXXXX OL XX XX XX XX XX XX port Specifies the port to which the MAC address is to be assigned You can specify only one port Description This command adds static and multicast MAC addresses to the switch s MAC address table A MAC address added with this command is never timed out from the MAC address table even when the end
63. ignments as a untagged and tagged member Examples The following command uses Syntax 1 to create a port based VLAN called Sales with a VID of 3 and untagged ports 4 9 and 14 create vlan name Sales vid 3 ports 4 9 14 frame untagged The following command uses Syntax 2 to create the very same VLAN create vlan name Sales vid 3 untaggedports 4 9 14 Here s another example The following command uses Syntax 1 to create atagged VLAN called Production with a VID of 22 and tagged ports 3 and 6 create vlan name Production vid 22 ports 3 6 frame tagged The following command uses Syntax 2 to create the very same VLAN create vlan name Sales vid 22 taggedports 3 6 115 Chapter 13 VLAN Commands Now let s try creating an tagged VLAN that contains both untagged and tagged ports Suppose you wanted to create a VLAN called Service with a VID of 16 and untagged ports 1 4 5 7 and tagged ports 11 and 14 You could not create this VLAN using Syntax 1 with just one command It would actually take two commands You would first create the VLAN specifying either the untagged or tagged ports For example create vlan name Service vid 16 ports 1 4 5 7 frame untagged Then to add the other ports in this case tagged ports you would need to use the ADD VLAN command which is explained in the next section Syntax 2 allows you to create a VLAN of both tagged and untagged ports all in one command Here is the command that would create o
64. ions are cli A management session starts with the command line prompt menu A management session starts with the AT S39 Main Menu Description You use this command to specify whether you want your management sessions to display the command line interface or the AT S39 Main Menu when asession is started The default is the menu system Example The following command configures the management software to always display the command line prompt when you start a management session set switch consolemode cli 21 Chapter 2 Basic Command Line Commands LOGOFF and QUIT Syntax logoff quit Parameters None Description Both commands perform the same function They end a management session If you are managing a slave switch the commands return you to the master switch on which you started the management session Example The following command ends a management session logoff 22 Chapter 3 Basic Switch Commands DOC OO O ODO CO O COD CO OU OO SHOW DHCPBOOTP on page 24 ENABLE DHCPBOOTP on page 25 DISABLE DHCPBOOTP on page 26 SHOW IP on page 27 SET IP on page 28 SHOW IP ROUTE on page 30 SET IP ROUTE on page 31 RESET IP on page 32 PURGE IP on page 33 SHOW SYSTEM on page 34 SET SYSTEM on page 35 RESET SYSTEM on page 36 SHOW SWITCH on page 37 RESTART SWITCH on page 38 RESTART REBOOT on page 39 SHOW CONFIG on page 40 PING on page 41 Note Remember to save your changes with the SAVE CONFIGU
65. l be from a master switch to other switches in an enhanced stack This option must be used with the SWITCHNUMBER option The REMOTESWITCH option can only be used from a master switch 158 type switchnumber Description AT S39 Command Line Interface User s Guide Specifies the file to be downloaded Options are image Downloads both the AT S39 software image and bootloader config Downloads a configuration file bootloader Downloads just the bootloader You can specify only one file type at atime Specifies the switch in an enhanced stack to which you want to download anew version of AT S39 software or a configuration file This option which must be used with the METHOD REMOTESWITCH option instructs the master switch to download its AT S39 software or configuration file onto the specified switch Switch numbers are displayed with the SHOW REMOTELIST command You can specify more than one switch at atime e g 1 3 4 This command is used to download a new version of the AT S39 software image or a configuration file onto an AT 8000 Series switch This command can download files as follows Note A Froma management workstation to a switch via a local management session OY From a master switch to other switches in an enhanced stack Forinstructions on how to obtain new AT S39 software images refer to Management Software Updates on page 11 Before downloading files note the following A Thiscommand can
66. le of Contents RESET AUTHENTICATION e do 144 SETAUTHENTICATI N aiii id 145 SHOW AUTHENTICATION cima 147 ADD TFAGACSSERVER ci ia 148 DELETE TACACSSER VER jinsia i a A AA A a ni 149 ADD RADIUSSERVER scooter ten 150 DELETE RADIUSSERVER t 151 Chapter 18 Statistics CoMMa nd Sainai ales 152 SHOW SWITCH COUNTER Cocca lA tai 153 SHOW SWITEH PORT COUNTER dico 154 RESEFSWITEH COUNTER 2 2 cos 155 RESET SWITCH PORT COUNTER ada 156 Chapter 19 Download and Upload Commands ncniiciciniciicnionocinni cc 157 A O 158 UPLOAD acrilico 162 ENABLETETP SERVER EE E EE A A E as 164 DISABEESTE TIPSERVER iria aa aA aa e a aaa aah 165 SHOWTETP SERVER cocinas 166 Chapter 20 Command ReTerenc ccoo cai 167 Basic Command Line Command Siiri iirinn ntc ictericia 168 Base Switeh COMMANA S ainiaan nia naaa dd 169 Enhanced Stacking GOmimarid E Aaa EnaA A EEA A RA E ROEE E N AEA 171 SNMP Community Strings and Trap COMMANAS u sssecssssesssssecssssecssssssscessssceesssscesssseessssecessscessnseceesseecsssceeessseceesnseessnsseesnseessnseseesseetsy 172 Management Security CoMmMandS ici 173 Por Parameter COMMAN GS arrengura inaen A A iaa 174 Port A RN 175 POr TTUNKINO COMMAN AS iii a a Seen 175 POSE MITO AA Command S arna S E E AEE AAAI 176 Spanning Tree Protocol COMMANAGS ii A E it 177 Rapid Reconfiguration Spanning Tree COMMAMAS sssssssssnerssrsnnninniiennsnnninnnsisinnninnnnnnin 178 VLAN COMM MA sts ante E meses ENA cesta ANNEN E E 179 MAC Address Table Com
67. macsrc macboth Parameters trunk Specifies the name of the trunk The name can be up to 10 alphanumeric characters No spaces or special characters are allowed port Specifies the ports of the trunk A trunk can have up to 4 ports The ports can be specified individually e g 1 2 5 8 as a range e g 2 5 or both e g 11 13 18 select Specifies the load distribution method Options are macsrc Source address SA trunking macboth Source address destination address SA DA trunking You can specify only one load distribution method The default is SA DA Description This command creates a port trunk To create the trunk you specify the ports on the switch that will constitute the trunk and the load distribution method Examples The following command creates a port trunk of Ports 3 through 6 on the switch and assigns it the name load22 Since no load distribution is specified SA DA is assigned by default create switch trunk load22 port 3 6 The following command creates a port trunk of Ports 11 through 14 on the switch and assigns it the name rm44 The load distribution is SA create switch trunk rm44 port 11 14 select macsrc 79 Chapter 9 Port Trunking Commands ADD SWITCH TRUNK Syntax add switch trunk name port ports Parameters trunk Specifies the name of the trunk to be modified You can enter any alphanumeric character for the name and this command will still work This
68. mands stssssscccescscccasssatesceaseatsaasaacesceccSincssqunteaessasaeesnecacccesentanesatocecnssaansaodsuebassassscenceddvanasadeencndzoaieaneatendhedssoanennancesiaa 181 IGM P ShOOPING COMMANGS sei See aaa ia ia Ae ee eA San Ga Gad el Gilda an 181 Broadcast Frame Control COMM AMG ivi inci dida 182 TAGAGS hand RADIUS Command Se ainmic i a E ida enn ands 182 Statistics COMMANA S sasian haa dd 183 Download and Upload Command S sirenai an a a a NA a a thea Eo ee 184 Preface This guide contains instructions on how configure an AT 8000 Series Fast Ethernet Switch using the AT S39 command line interface The Fast Ethernet switches in the AT 8000 Series include A AT 8016F AT 8024 AT 8024M AT 8024GB AT 8026FC Section Il Local and Telnet Management Document Conventions This document usesthe following conventions Note Notes provide additional information Warning Warnings inform you that performing or omitting a specific action may result in bodily injury Caution Cautions inform you that performing or omitting a specific action may result in equipment damage or loss of data AT S39 User s Guide Where to Find Web based Guides The installation and user guides for all Allied Telesyn products are available in Portable Document Format PDF from on our web site at www alliedtelesyn com You can view the documents on line or download them onto a local workstation or server Section II Local and Telnet Management
69. mbers of the new VLAN You can specify the ports individually e g 2 3 5 as a range e g 7 9 or both e g 2 5 7 9 To specify all ports on the switch use ALL This parameter must be followed by the FRAME parameters Specifies whether the ports of the VLAN are to be tagged or untagged This parameter must be used with the PORTS parameter Specifies the ports on the switch to serve as tagged ports in the VLAN You can specify the ports individually e g 2 3 5 as a range e g 7 9 or both e g 2 5 7 9 To specify all ports on the switch use ALL Omit this parameter if the VLAN will not contain tagged ports Ports on the switch to function as untagged ports in the VLAN You can specify the ports individually e g 2 3 5 as a range e g 7 9 or both e g 2 5 7 9 To specify all ports on the switch use ALL Omit this parameter if the VLAN will not contain untagged ports A port on the switch where all traffic on the VLAN will be mirrored This function is useful in troubleshooting a VLAN It allows you to mirror the VLAN traffic on another port where you can connect a network analyzer The mirror port can bea member of the same VLAN it will be used to monitor oramember of another VLAN In most situations you will probably not use this parameter This command creates a port based or tagged VLAN As shown at the start of this section this command features two syntaxes You can use either syntax when creating
70. n downloaded onto aswitch the unit must initialize the software a process that can take from 4 to 5 minutes to complete The Fault light on the front of the switch will be ON during part of the process The initialization process is complete when the Fault light goes OFF Do not interrupt the initialization process by resetting or power cycling the switch Examples The following command downloads a new AT S39 software image from the management workstation to the switch load method xmodem type image After you have entered the command the management software will display a confirmation prompt followed by another prompt instructing you to begin the file transfer To begin the transfer use your terminal emulation program to specify the location of the AT S39 software image file stored on your workstation 160 AT S39 Command Line Interface User s Guide The following command downloads a new AT S39 configuration from the management workstation to the switch load method xmodem type config After entering this command you must specify the location of the AT S39 configuration file stored on your workstation using your terminal emulation program The following command downloads the AT S39 image file on the master switch to switches 1 and 4 in an enhanced stack Switch numbers are displayed using the SHOW REMOTELIST command load method remoteswitch type image switchnumber 1 4 The following command downloads the AT S39 confi
71. n the master switch If you have left the console mode configured as menu when you enter the EXIT command the AT S39 Main Menu is displayed For a master switch the AT S39 Main Menu of the master switch is displayed Fora slave switch the AT S39 Main Menu of the slave switch is displayed Note To determine the master or slave status of your switch use the SHOW SWITCH command Example The following command end a management session exit 47 Chapter 5 SNMP Community Strings and Trap Commands SHOW SNMP on page 49 DESTROY SNMP COMMUNITY on page 50 CREATE SNMP COMMUNITY on page 51 SET SNMP COMMUNITY on page 52 RESET SNMP on page 53 ADD SNMP COMMUNITY TRAPHOST on page 54 DELETE SNMP COMMUNITY TRAPHOST on page 55 COovovoo DD Note Remember to save your changes with the SAVE CONFIGURATION command 48 SHOW SNMP AT S39 Command Line Interface User s Guide Syntax show snmp Parameters None Description This command displays the community strings for SNMP Read and Write access on the switch The default community string for Read access is Public and the default string for Write access is Private This command also displays the IP addresses of management workstations that are to receive traps from the switch To add IP address of management stations refer to the ADD SNMP COMMUNITY TRAPHOST command in this chapter Example The following command displays the community strings for SNMP show snmp 49
72. name of the VLAN A VLAN must be assigned a name The name can be from one to ten characters in length The name should reflect the function of the nodes that will be a part of the VLAN for example Sales or Accounting The name cannot contain spaces or special characters such as asterisks or exclamation points The name cannot be the same as the name of an existing VLAN on the switch If the VLAN will be unique in your network then the name should be unique as well If the VLAN will be part of a larger VLAN that spans multiple switches then the name for the VLAN should be the same on each switch where nodes of the VLAN are connected Specifies the VLAN identifier The range is 2 to 4094 The VLAN must be assigned a VID You cannot use the VID 1 that value is reserved for the Default VLAN The VID cannot be the same as the VID of an existing VLAN on the switch If this VLAN will be unique in your network then its VID must also be unique If this VLAN will be part of a larger VLAN that spans multiple switches then the VID value for the VLAN should be the same on each 113 Chapter 13 VLAN Commands ports frame taggedports untaggedports MirrorPort Description switch For example if you are creating a VLAN called Sales that will span three switches you should assign the Sales VLAN on each switch the same VID value Specifies the ports on the switch that are to be either tagged or untagged me
73. ng Commands DELETE SWITCH MIRROR Syntax delete switch mirror srcport port Parameters srcports Specifies the port s to be removed from an existing port mirror The ports can be specified individually e g 1 2 a range e g 2 3 or both 1 4 7 9 Description This command removes a source port s from a port mirror For example if you were mirroring the traffic on Ports 1 to 4 and you no longer wanted to mirror the traffic on Port 4 you could use this command to remove the port from the mirror Note To view the ports of a port mirror use the SHOW CONFIG command Note If you want to change the destination port that is the port where the traffic is being copied to use the SET SWITCH MIRROR command Example The following command removes Port 9 from a port mirror delete switch mirror port 9 AT S39 Command Line Interface User s Guide SET SWITCH MIRROR Syntax set switch mirror port Parameter mirror Specifies the new destination port for the mirrored traffic You can specify only one port Description This command specifies a new destination port of an existing port mirror Example The following command makes Port 11 the new destination port of the port mirror set switch mirror 11 87 Chapter 10 Port Mirroring Commands DESTROY SWITCH MIRROR Syntax destroy switch mirror Parameters None Description This command deletes a port mirror Once a port mirror has been deleted
74. no autoupdate migrationcheck yes no Parameters port default pathcost Specifies the port you want to configure You can specify more than one port at atime The ports can be specified individually e g 1 2 5 8 as a range e g 2 5 or both e g 11 13 18 To configure all ports specify ALL Returns the port s RSTP settings to their default values This parameter performs the same function as the RESET RSTP command Specifies the port s path cost The spanning tree algorithm uses the cost parameter to decide which port provides the lowest cost path to the root bridge for that LAN The range is 0 to 20 000 000 The default setting is Auto Detect which automatically sets port cost according to the speed of the port Table 2 lists the ports cost with Auto Detect Table 2 RSTP Auto Detect Port Costs Port Speed Port Cost 10 Mbps 2 000 000 100 Mbps 200 000 1000 Mbps 20 000 108 AT S39 Command Line Interface User s Guide portpriority Specifies the port s priority This parameter is used asa tie breaker when two or more ports are determined to have equal costs to the root bridge The range is 0 to 240 in increments of 16 There are sixteen increments You specify the increment of the desired value The default is 128 increment 8 Table 3 RSTP Port Priority Value Increments Bridge Bridge Increment Priority Increment Priority 0 0 8 12
75. node or in the case of a multicast address the multicast application is inactive Examples The following command adds the static MAC address 00 A0 D2 18 1A 11 to Port 7 add switch fdb macaddress 00A0D2181A11 port 7 The following command adds the multicast MAC address 01 00 51 00 00 10 to Port 9 add switch fdo macaddress 010051000010 port 9 131 Chapter 14 MAC Address Commands DELETE SWITCH FDB Syntax delete switch fdb macaddress macaddress vlan name VID Parameters address Specifies the dynamic static or multicast MAC address to delete from the MAC address table The address can be entered in either ofthe following formats XXXXXXXXXXXX OT XX XXXX XXXX XX vlan Specifies the VLAN containing the port where the address was learned or assigned The VLAN can be specified by name or VID This parameter is optional Description This command deletes dynamic static and multicast addresses from the switch s MAC address table Examples The following command deletes the static MAC address 00 A0 D2 18 1A 11 from the table delete switch fdb macaddress 00A0D2181A11 The following command deletes the multicast MAC address 01 00 51 00 00 11 from the table delete switch fdb macaddress 010051000011 132 AT S39 Command Line Interface User s Guide SET SWITCH AGINGTIMER Syntax set switch agingtimer value Parameter agingtimer Specifies the aging timer for the MAC address table
76. ntrol on the port For background 67 Chapter 7 Port Parameter Commands mdimode mirror renogotiation softreset speed information on broadcast frame control refer to the AT S39 User s Guide To set the broadcast timer interval refer to the SET SWITCH BROADCAST command This parameter sets the wiring configuration of the port Possible values are mdi Sets the port s configuration to MDI mdix Sets the port s configuration to MDI X auto Sets the port s wiring configuration to either MDI or MDI X depending on the end node connected to the port This is the default setting Adds or removes the port as a source port from an existing port mirror Options are yes or all Adds the port as a source port to a port mirror noornone Removesthe port as a source port from a port mirror Prompts the port to renegotiate speed and duplex mode with the end node This parameter is effective only when the port is configured for Auto Negotiation and is useful if you believe the port needs to renegotiate speed and duplex mode with the end node Resets the port Sets the speed and duplex mode of the port Setting for this parameter are autonegotiate The port Auto Negotiates both speed and duplex mode This is the default setting 10mhalf 10 Mbps and half duplex mode 10mfull 10 Mbps and full duplex mode 10mhauto 10 Mbpsand half duplex mode with autonegotiation 10mfauto 10 Mbps and full duplex mode with auton
77. ommand from a master switch exits you from the command line prompt and displays the AT S39 Main Menu 171 Chapter 20 Command Reference SNMP Community Strings and Trap Commands SHOW SNMP show snmp Displays the community strings for SNMP Read and Write access on the switch DESTROY SNMP COMMUNITY destroy snmp community communit y Deletes the Read or Write community string from the switch CREATE SNMP COMMUNITY create snmp community community access read write Creates a new Read or Write community string on the switch SET SNMP COMMUNITY set snmp community community access read write Activates a new Read or Write community string on the switch RESET SNMP reset snmp Returns the SNMP community strings to the default values disables SNMP access and deletes the IP addresses of management workstations that were receiving traps from the switch ADD SNMP COMMUNITY TRAPHOST add snmp community community traphost ipaddress Specifies the IP addresses of a management workstation you want to receive management traps from the switch DELETE SNMP COMMUNITY TRAPHOST delete snmp community community traphost ipaddress Deletes the IP address of amanagement workstation you no longer want to receive traps from the switch 172 AT S39 Command Line Interface User s Guide Management Security Commands SET PASSWORD MANAGER set password manager Sets the manager s password SET PASSWORD OPERATOR set password operat
78. on Parameter None Description This command disables authentication When you reset authentication you retain your current command settings including server IP addresses and encryption keys both local and global This command performs the same function as the DISABLE AUTHENTICATION command Example The following command resets authentication on your switch reset authentication 144 AT S39 Command Line Interface User s Guide SET AUTHENTICATION Syntax set authentication method tacacs radius secret string timeout integer Parameter method Specify either the TACACS or RADIUS protocol to run on your switch secret Specify the global encryption key that is used for all of your TACACS or RADIUS servers If the servers use different encryption keys you can leave this parameter blank and set individual encryption keys with the ADD TACACSSERVER or ADD RADIUSSERVER commands timeout Specifies the maximum amount of time the switch waits for a response from either the TACACS or RADIUS server before the switch assumes the server cannot respond If the timeout expires and the server has not responded the switch queries the next server in the list Once the switch has exhausted the list of servers or if there isn t a list of servers the switch defaults to the standard Manager and Operator accounts The default is 30 seconds The range is 1 to 300 seconds Description Use this command to select the au
79. on on another switch in an enhanced stack You can specify the switch to be managed by switch number or by MAC address both displayed by the SHOW REMOTELIST command Note You must perform the ACCESS SWITCH command from a management session of a master switch This command will not work from a management session of a slave switch Note You must perform the SHOW REMOTELIST command before you can access a switch with the ACCESS SWITCH command Note To determine the master or slave status of your switch use the SHOW SWITCH command Examples The following command starts a management session on switch number 12 access switch number 12 45 Chapter 4 Enhanced Stacking Commands The following command starts a management session on switch with the MAC address 00 30 84 52 02 11 access switch macaddress 003084520211 46 EXIT AT S39 Command Line Interface User s Guide Syntax exit Parameters None Description Ends amanagement session The menu or screen that is displayed as a result of this command depends on whether your switch is a master or slave as well as the configuration of the console mode on your switch If you have configured your switch with the command line as the console mode entering the EXIT command ends the management session For a master switch this command actually disconnects the session However for a slave switch the EXIT command ends the slave session and displays the Stacking Services Menu o
80. onger want to receive trap from the switch In using this command you must specify the switch s Read or Write community string You can specify either string It does not matter which you use To view the community strings or to see the management workstation IP addresses that have already been entered use the SHOW SNMP command Example The following command deletes the IP address 149 212 11 22 of a management workstation that is to no longer receive traps from the switch It uses the default SNMP Read access community string public add snmp community public traphost 149 212 11 22 As mentioned previously you can use either community string to delete IP addresses of management workstations The above command could just as well have been performed using the SNMP Write community string The result would have been the same 55 Chapter 6 Management Security Commands SET PASSWORD MANAGER on page 57 SET PASSWORD OPERATOR on page 58 SHOW HTTP SERVER on page 59 ENABLE HTTP SERVER on page 60 DISABLE HTTP SERVER on page 61 ENABLE SNMP on page 62 DISABLE SNMP on page 63 SET SWITCH CONSOLETIMER on page 64 COovovwoo vv oO Note Remember to use the SAVE CONFIGURATION command to save your changes 56 AT S39 Command Line Interface User s Guide SET PASSWORD MANAGER Syntax set password manager Parameters None Description This command sets the manager s password The default password is admin
81. only be performed from a local management session This command is not available from a Telnet or web browser management session A All switch models in the AT 8000 Series use the same AT S39 software image A If you are downloading files switch to switch you should always use the SHOW REMOTELIST command first to determine the switch numbers This also allows the management software to determine which remote switches are in the enhanced stack 159 Chapter 19 Download and Upload Commands a A switch running AT S39 Version 1 4 or earlier must first be ungraded to Version 1 4 1 or 1 4 2 before you can install a new AT S39 image In networks consisting of several AT 8000 switches you can simplify an upgrade procedure by first upgrading a master switch to the latest software version via a local management session and then downloading the new software switch to switch from the master switch to the slave switches provided that the slave switches are running Version 1 4 1 or later The image file and bootloader were offered as two separate files in several earlier software versions In this version the two files are combined into one file It isnot recommended that you download the bootloader by itself If the bootloader on a switch needs to be updated you should download the entire AT S39 software image A configuration file cannot be edited with a text editor or word processor Caution Once an AT S39 image file has bee
82. or Setsthe operator s password SHOW HTTP SERVER show http server Displays the status of the HTTP server on the switch ENABLE HTTP SERVER enable http server Enablesthe HTTP server on the switch so that the device can be managed from a web browser DISABLE HTTP SERVER disable http server Disables the HTTP server on the switch so that the device cannot be managed from a web browser ENABLE SNMP enable snmp Enables SNMP on the switch so that the device can be managed from a SNMP application program DISABLE SNMP disable snmp Disables SNMP on the switch so that the device cannot be managed from a SNMP application program 173 Chapter 20 Command Reference SET SWITCH CONSOLETIMER set switch consoletimer value Sets the console timer Port Parameter Commands SHOW SWITCH PORT show switch port port Displays a port s operating parameters such as speed and duplex mode SET SWITCH PORT set switch port port all status forwarding disabled flowcontrol none transmit recieve both bclimit broadcastlimit mdimode mdi mdix auto mirror yes no all none renegotiation auto softreset yes no speed autonegotiate 10mhalf 10mfull 10mhauto 10mfauto 100mhalf 100mfull1 100mhauto 100mfauto 1000mfull 1000mfauto PVID pvid priority priority overridepriority yes no Sets a port s operating parameters You can set only one port operating p
83. or RSTP is disabled Example The following command disables RSTP disable rstp 102 ENABLE RSTP AT S39 Command Line Interface User s Guide Syntax enable rstp Parameters None Description This command enablesthe Rapid Spanning Tree Protocol on the switch The default setting for RSTP is disabled Example The following command enables RSTP enable rstp 103 Chapter 12 Rapid Spanning Tree Protocol Commands RESET RSTP Syntax reset rstp Parameters None Description This command returns all bridge and port RSTP parameters to the default settings Example The following command resets RSTP reset rstp 104 SET RSTP Syntax set rstp default AT S39 Command Line Interface User s Guide priority priority hellotime hellotimel forwarddelay forwarddelay maxage maxage forceversion forcestpcompatible normalrstp Parameters default priority Disables RSTP and returns all bridge and port RSTP settings to the default values This option performs the same function as the RESET RSTP command Specifies the priority number for the bridge This number is used in determining the root bridge for RSTP The bridge with the lowest priority number is selected as the root bridge If two or more bridges have the same priority value the bridge with the numerically lowest MAC address becomes the root bridge The range is 0 to 61440 in increments of 4096 The range is divided into si
84. pecifying No causes the port to determine a frame s priority from its tagged header The default is No This command sets a port s operating parameters Note You can set only one operating parameter at a time with this command 69 Chapter 7 Port Parameter Commands Examples The following command configures Port 11 to operate at 10 Mbps half duplex set switch port 11 speed 10mhalf The following command setsthe wiring configuration for Ports 12 to 16 to MDI X set switch port 12 16 mdimode mdix The following command resets Ports 2 set switch port 2 softreset yes The following command disables Ports 12 to 16 set switch port 12 16 status disabled 70 AT S39 Command Line Interface User s Guide RESET SWITCH PORT Syntax reset switch port port Parameter port Specifies the port to be reset You can specify more than one port at a time You can specify the ports individually e g 2 3 5 as a range e 9 7 9 or both e g 2 5 7 9 Description This command resets a port None of the operating parameters of a port are changed by this command The reset takes less that a second to complete You might reset a port if you believe the port has failed to Auto Negotiate correctly with its end node Example The following command resets Port 5 reset switch port 5 71 Chapter 8 Port Security Commands Q SET SWITCH SECURITYMODE on page 73 Q SET SWITCH THRESHOLD on page 75 Q SHOW SWITCH THRESHOLD
85. ple The following command saves your configuration save configuration Chapter 2 Basic Command Line Commands SET PROMPT Syntax set prompt prompt Parameter Prompt Specifies the command line prompt The prompt can befrom oneto seven alphanumeric characters Spaces and special characters are allowed The default command prompt is a dollar sign Description This command changes the command prompt Assigning each switch a different command prompt can make it easier for you to determine which switch you are managing when you are managing multiple switches in an enhanced stack Example The following command changes the command prompt to Switch7 set prompt Switch 7 CLEAR SCREEN Syntax clear screen Parameters None Description This command clears the screen Example The following command clears the screen clear screen AT S39 Command Line Interface User s Guide Chapter 2 Basic Command Line Commands MENU Syntax menu Parameters None Description Entering this command at the command prompt displays the AT S39 Main Menu For instructions on how to use the management menus refer to the AT S39 User s Guide Example The following command displays the AT S39 Main Menu menu 20 AT S39 Command Line Interface User s Guide SET SWITCH CONSOLEMODE Syntax set switch consolemode cli menu Parameter consolemode Specifies the mode you want management sessions to start in Opt
86. r 4 Enhanced Stacking Commands Q SET SWITCH STACKMODE on page 43 Q SHOW REMOTELIST on page 44 LY ACCESS SWITCH on page 45 A EXIT on page 47 Note Remember to save your changes with the SAVE CONFIGURATION command Note Refer to the AT S39 User s Guide for background information on enhanced stacking 42 AT S39 Command Line Interface User s Guide SET SWITCH STACKMODE Syntax set switch stackmode master slave unavailable Parameter stackmode Description Specifies the enhanced stacking mode of the switch Possible settings are master slave unavailable Specifies the switch s stacking mode as master A master switch must be assigned an IP address and subnet mask Specifies the switch s stacking mode as slave A slave does not need an IP address This is the default setting for a switch Specifies the switch s stacking mode as unavailable A switch with this status cannot be managed from an enhanced stack It can be managed locally through its RS232 Terminal Port or remotely if it is assigned an IP address and subnet mask This command sets a switch s enhanced stacking status Example The following command sets the switch s stacking status to master set switch stackmode master Note To determine the master or slave status of your switch use the SHOW SWITCH command 43 Chapter 4 Enhanced Stacking Commands SHOW REMOTELIST Syntax show remotelist sorted by
87. s command to display the parameter settings for RSTP Values are displayed for the following parameters Q STP status A Bridge identifier A Bridge priority O Hello time A Forwarding delay You can also use this command to view the following RSTP parameter settings for a switch port O Path cost A Port priority A Edge and point to point status Examples The following command displays the bridges RSTP settings show rstp The following command displays the RSTP port settings for ports 1 to 4 show rstp portconfig 1 4 The following command displays RSTP port status for port 5 show rstp portconfig 5 100 AT S39 Command Line Interface User s Guide ACTIVATE RSTP Syntax activate rstp Parameters None Description Use this command to designate RSTP as the active spanning tree on the switch Once you have selected RSTP you can enable or disable it using the ENABLE RSTP and DISABLE RSTP commands A spanning tree protocol is active on a switch only if you designate it as the active Spanning tree and enable it Note A change to the active spanning tree protocol with this command will reboot the switch Example The following command designates RSTP as the active spanning tree activate rstp 101 Chapter 12 Rapid Spanning Tree Protocol Commands DISABLE RSIP Syntax disable rstp Parameters None Description This command disables the Rapid Spanning Tree Protocol on the switch The default setting f
88. secret string Adds the IP address of a TACACS Server to your switch 182 AT S39 Command Line Interface User s Guide DELETE TACACSSERVER delete tacacsserver ipaddress ipaddress Deletes the IP address of a TACACS server from your switch ADD RADIUSSERVER add radiusserver ipaddress ipaddress order integer secret string port integer Adds the IP address of a RADIUS server to your switch DELETE RADIUSSERVER delete radiusserver ipaddress ipaddress Deletes the IP address of a RADIUS server from your switch Statistics Commands SHOW SWITCH COUNTER show switch counter Displays a switch s operating statistics such as the number of packets received and transmitted and the number of CRC errors SHOW SWITCH PORT COUNTER show switch port port counter Displays the operating statistics for a port on the switch RESET SWITCH COUNTER reset switch counter Returns all statistics counters on the switch to zero 0 RESET SWITCH PORT COUNTER reset switch port port all counter Returns the statistics counter for a port to zero 183 Chapter 20 Command Reference Download and Upload Commands LOAD load method xmodem remoteswitch type image config bootloader switchnumber switches Download anew version of the AT S39 software image ora configuration file onto an AT 8000 Series switch UPLOAD upload method xmodem type image config Uploads the AT S39 software image or configuration file from
89. ses the cost parameter to decide which port provides the lowest cost path to the root bridge forthat LAN The default values for this parameter are 100 for a 10 Mbps port 10 for a 100 Mbps port and 4 fora 1 Gbps port The range is 1 to 65535 portpriority Specifies the port s priority This parameter is used asa tie breaker when two or more ports are determined to have equal costs to the root bridge The default value for priority is 128 The range is 0 255 fastmode Used to specify edge ports that are not connected to other nodes that are actively running STP A port where fast mode is enabled skips the STP Listening and Learning states and goes directly from Blocking to Forwarding Options for this parameter are enabled Fast mode is enabled The port skips Listening and Learning states disabled Fast modeis disabled participate Activates and deactivates STP on the port If you select Yes which is the default the port will participate in the spanning tree If you select No the port will continue to receive and transmit Ethernet frames but it will not participate in spanning tree AT S39 Command Line Interface User s Guide Note A port that is not participating in spanning tree is immediately placed in the forwarding state lt cannot be placed in the blocking state by STP should there be a loop in the network topology Consequently it is incumbent on the network administrator to insure that no loop will develop should STP b
90. spond Example The following command displays authentication protocol information on your switch show authentication 147 Chapter 17 TACACS and RADIUS Commands ADD TACACSSERVER Syntax add tacacsserver ipaddress ipaddress order integer secret string Parameters ipaddress Specifies an IP address of a TACACS server order Specifies the order that your TACACS server is queried by the switch You can assign order to up to 3 servers with 1 being the first server queried secret Specifies the optional encryption key used on this server Description Use this command to add the IP address of a TACACS server to your switch along with order the TACACS server is queried and an optional encryption key Examples The following command adds a TACACS server with an IP address 149 245 22 20 and an order value of 1 add tacacsserver ipaddress 149 245 22 20 order 1 The following command adds a TACACS server with an IP address of 149 245 22 24 an order of 2 and lioness54 as the encryption code add tacacsserver ipaddress 149 245 22 24 order 2 secret lioness54 The following command adds a TACACS server with an IP address 149 245 22 26 and specifies that this TACACS server is the third TACACS server queried by the switch add tacacsserver ipaddress 149 245 22 26 order 3 148 AT S39 Command Line Interface User s Guide DELETE TACACSSERVER Syntax delete tacacsserver ipaddress ipaddress
91. ss of amanagement workstation you want to receive management traps from the switch Description You can use this command to specify the IP addresses of up to four management workstations you want to receive management traps from the switch In using this command you must specify the switch s Read or Write community string You can specify either string It does not matter which you use To view the community strings or to see if any management workstation IP addresses have already been entered use the SHOW SNMP command Example The following command adds the IP address 149 212 11 22 of a management workstation to receive traps from the switch It uses the default SNMP Read access community string public add snmp community public traphost 149 212 11 22 As mentioned previously you can use either community string to add IP addresses of management workstations The above command could just as well have been performed using the SNMP Write community string The result would have been the same 54 AT S39 Command Line Interface User s Guide DELETE SNMP COMMUNITY TRAPHOST Syntax delete snmp community communit y traphost ipaddress Parameters community Specifies the switch s SNMP Read or Write community string traphost Specifies the IP address of a management workstation you want to delete from the switch Description You can use this command to delete the IP address of a management workstation that you no l
92. t Activates the Single Host Port setting which is appropriate when there is only one host node connected to a porton the switch This is the default setting multihost Activates the Multi Host setting which is appropriate if there is more than one host node connected to a switch port Specifies the time period in seconds used by the switch in determining inactive host nodes An inactive host node is a node that has not sent an IGMP reports during the specified time interval The range is 1 to 86 400 seconds 24 hours The default is 260 seconds Specifies the maximum number of multicast addresses the switch will learn This parameter is useful with networks that contain a large number of multicast groups You can use the parameter to prevent the switch s MAC address table 135 Chapter 15 IGMP Snooping Commands from filling up with multicast addresses le aving no room for dynamic or static MAC addresses The range is 1to 2048 addresses The default is 256 addresses routerport Specifies the port s on the switch connected to a multicast router Specifying AUTO activates auto detect where the switch automatically determines the ports W ith multicast routers Auto detect is the default setting Description This command configures the Example GMP snooping parameters The following command activates IGMP snooping sets the IGMP topology to Multi Host and sets the timeout value to 120 seconds
93. tch broadcast timer10_100mbps 500 The following command sets a broadcast timer of 200 microseconds for ports operating at 1000 Mbps set switch broadcast timer1000mbps 200 140 Chapter 17 TACACS and RADIUS Commands DISABLE AUTHENTICATION on page 142 ENABLE AUTHENTICATION on page 143 RESET AUTHENTICATION on page 144 SET AUTHENTICATION on page 145 SHOW AUTHENTICATION on page 147 ADD TACACSSERVER on page 148 DELETE TACACSSERVER on page 149 ADD RADIUSSERVER on page 150 DELETE RADIUSSERVER on page 151 DO UODO OOO OO Note Remember to save your changes with the SAVE CONFIGURATION command 141 Chapter 17 TACACS and RADIUS Commands DISABLE AUTHENTICATION Syntax disable authentication Parameters None Description Use this command to disable TACACS and RADIUS authentication on your switch When you disable authentication you retain your current authentication parameter settings Example The following command disables TACACS and RADIUS authentication on your switch disable authentication 142 AT S39 Command Line Interface User s Guide ENABLE AUTHENTICATION Syntax enable authentication Parameters None Description Use this parameterto enable TACACS and RADIUS authentication on your switch Example The following command enables authentication on your switch enable authentication 143 Chapter 17 TACACS and RADIUS Commands RESET AUTHENTICATION Syntax reset authenticati
94. tes DHCP and BOOTP disable dhcpbootp 26 SHOW IP AT S39 Command Line Interface User s Guide Syntax show ip interface 1 Parameters interface Specifies the interface number This value is always an LS Description This command displays the current values for the following switch parameters O IP address O Subnet mask A Default gateway Note To set these parameters refer to the SET IP and the SET IP ROUTE commands Example The following command displays the values of several switch parameters show ip interface 1 27 Chapter 3 Basic Switch Commands SET IP Syntax set ip interface 1 ipaddress IPaddress DHCP netmask subnetmask Parameters interface Specifies the interface number This value is always sl ipaddress Specifies an IP address for the switch or activates DHCP and BOOTP For background information on when to assign a switch an IP address refer to the AT S39 User s Guide netmask Specifies the subnet mask for the switch You must specify a subnet mask if you manually assigned the switch an IP address Description This command configures the following switch parameters Q IP address Q Subnet mask This command can also be used to activate DHCP and BOOTP on the switch Activating DHCP and BOOTP with this command is equivalent to using the ENABLE DHCPBOOTP command You cannot deactivate DHCP and BOOTP with the SET IP command That is accomplished with the DISABL
95. thentication protocol You may specify a global encryption code and the maximum number of seconds the switch waits for a response from either the TACACS or RADIUS server Examples The following command selects TACACS as the authentication protocol on your switch set authentication method tacacs 145 Chapter 17 TACACS and RADIUS Commands The following command selects TACACS as the authentication protocol with a global encryption key of tiger54 set authentication method tacacs secret tiger54 The following command selects RADIUS as the authentication protocol with a global encryption key of leopard09 and a timeout of 15 seconds set authentication method radius secret leopard09 timeout 15 146 AT S39 Command Line Interface User s Guide SHOW AUTHENTICATION Syntax show authentication Parameters None Description Use this command to display the following information about the authenticated protocols on the switch A The status of your authenticated protocol enabled or disabled A The authentication protocol activated on your switch Either TACACS or RADIUS protocols may be active The TACACS protocol is the default A The IP addresses of up to 3 authentication servers A The encryption key for each individual server if defined A The global encryption code that applies to all authentication servers A The length of the time in seconds before the switch assumes the server cannot re
96. ur example create vlan name Service vid 16 untaggedports 1 4 5 7 taggedports 11 14 That sthe advantage of Syntax 2 over Syntax 1 You can create VLANs containing both types of ports in one ratherthan two commands 116 ADD VLAN AT S39 Command Line Interface User s Guide Syntax 1 add vlan name vid ports ports frame untagged tagged mirrorport mirrorport Syntax 2 add vlan name vid taggedports taggedports untaggedports untaggedports mirrorport mirrorport Parameters vlan Specifies the name or VID of the VLAN to which you want to add tagged or untagged ports ports Specifies the ports to be added to the VLAN This parameter must be used with the FRAME parameter frame Specifies whether the ports to be added will be tagged or untagged taggedports Specifies the ports on the switch that you want to add as tagged ports to the VLAN You can specify the ports individually e g 2 3 5 as a range e 9 7 9 or both e g 2 5 7 9 Specifying ALL adds all ports on the switch as tagged ports to the VLAN untaggedports Specifies the ports on the switch that you want to add as untagged ports to the VLAN You can specify the ports individually e g 2 3 5 as a range e g 7 9 or both e g 2 5 7 9 Specifying ALL adds all ports on the switch as untagged ports to the VLAN mirrorport Specifies a port on the switch where all traffic on the VLAN will be mirrored This function is useful in troubleshooting a
97. xteen increments as shown in the following table You specify the increment that represents the desired bridge priority value The default value is 32768 increment 8 Table 1 RSTP Bridge Priority Value Increments Increment seca Increment k 0 0 8 32768 1 4096 9 36864 2 8192 10 40960 3 12288 11 45056 4 16384 12 49152 5 20480 13 33248 6 24576 14 57344 7 28672 15 61440 105 Chapter 12 Rapid Spanning Tree Protocol Commands hellotime forwarddelay maxage Note Specifies the time interval between generating and sending configuration messages by the bridge This parameter can be from 1 to 10 seconds The default is 2 seconds Specifies the waiting period before a bridge changes to anew state for example becomes the new root bridge after the topology changes If the bridge transitions too soon not all links may have yet adapted to the change resulting in network loops The default is 15 seconds This parameter effects only those ports operating in the STP compatible mode Specifies the length of time after which stored bridge protocol data units BPDUs are deleted by the bridge All bridges in a bridged LAN use this aging time to test the age of stored configuration messages called bridge protocol data units BPDUs For example if you use the default 20 all bridges delete current configuration messages after 20 seconds This parameter can be from 6 to 40 seconds Th
98. y hellotime forwarddelay maxage Disables STP and returns all bridge and port STP settings to the default values This option performs the same function as the RESET STP command Specifies the priority number for the bridge This number is used in determining the root bridge for STP The bridge with the lowest priority number is selected as the root bridge If two or more bridges have the same priority value the bridge with the numerically lowest MAC address becomes the root bridge When a root bridge goes off line the bridge with the next priority number automatically takes over asthe root bridge This parameter can be from 0 zero to 65 535 with 0 being the highest priority The default is 32 768 Specifies the time interval between generating and sending configuration messages by the bridge This parameter can be from 1 to 10 seconds The default is 2 seconds Specifies the waiting period before a bridge changes to anew state for example becomes the new root bridge after the topology changes If the bridge transitions too soon not all links may have yet adapted to the change resulting in network loops The default is 15 seconds Specifies the length of time after which stored bridge protocol data units BPDUs are deleted by the bridge All bridges in a bridged LAN use this aging time to test the age of stored configuration messages called bridge protocol data units BPDUs For example if you use the default
Download Pdf Manuals
Related Search