KTI Networks KGS-2422 network switch
Contents
1. Security Network ACL Rate lt rate_limiter_list gt lt packet_rate gt Security Network ACL Add lt ace_id gt lt ace_id_next gt switch port lt port gt policy lt policy gt lt vid gt lt tag_prio gt lt dmac_type gt etype lt etype gt lt smac gt lt dmac gt arp lt sip gt lt dip gt lt smac gt lt arp_opcode gt lt arp_flags gt ip lt sip gt lt dip gt lt protocol gt lt ip_flags gt l icmp lt sip gt lt dip gt lt icmp_type gt lt icmp_code gt lt ip_flags gt udp lt sip gt lt dip gt lt sport gt lt dport gt lt ip_flags gt tcp lt sip gt lt dip gt lt sport gt lt dport gt lt ip_flags gt lt tcp_flags gt permitldeny lt rate_limiter gt lt port_copy gt lt logging gt lt shutdown gt Security Network ACL Delete lt ace_id gt Security Network ACL Lookup lt ace_id gt Security Network ACL Clear Security Network ACL Status combined staticlconflicts 8 2 3 1 Configuration Security Network ACL gt Configuration help Description Show ACL Configuration Syntax Security Network ACL Configuration lt port_list gt Parameters lt port_list gt Port list or all default All ports 8 2 3 2 Action Security Network ACL gt Action help Description Set or show the ACL port default action Syntax Security Network ACL Action lt port_list gt permi2. 512 1k 2k 4k 1024k 95 15 Mirror Port mirroring Available Commands Mirror Configuration lt port_list gt Mirror Port lt port gt ldisable Mirror Mode lt port_list gt enableldisablelrxltx 15 1 Configuration Mirror gt Configuration help Description Show mirror configuration Syntax Mirror Configuration lt port_list gt Parameters lt port_list gt Port list or all default All ports 15 2 Port Mirror gt Port help Description Set or show the mirror port Syntax Mirror Port lt port gt Idisable Parameters lt port gt ldisable Mirror port or disable default Show port 15 3 Mode Mirror gt Mode help Description Set or show the mirror mode Syntax Mirror Mode lt port_list gt enableldisablelrxltx 96 Parameters lt port_list gt Port list or all default All ports enable Enable Rx and Tx mirroring disable Disable Mirroring rx Enable Rx mirroring tx Enable Tx mirroring default Show mirror mode 97 16 Config Load Save of configuration via TFTP Available Commands Config Save lt ip_server gt lt file_name gt Config Load lt ip_server gt lt file_name gt check 16 1 Save Config gt Save help Description Save configuration to TFTP server Syntax Config Save lt ip_server gt lt file_name gt Parameters lt ip_server gt TFTP server IP address a b c d lt file_name gt
3. Configuration file name 16 2 Load Config gt Load help Description Load configuration from TFTP server Syntax Config Load lt ip_server gt lt file_name gt check Parameters lt ip_server gt TFTP server IP address a b c d lt file_name gt Configuration file name check Check configuration file only default Check and apply file 98 17 Firmware Download of firmware via TFTP gt Firmware Description Load new firmware from TFTP server Syntax Firmware Load lt ip_addr_string gt lt file_name gt Parameters lt ip_addr_string gt IP host address a b c d lt file_name gt Firmware file name 99 Glossary ABCDEFGHIJKLMNOPORSTUVWXYZ A ACE ACL ACE is an acronym for Access Control Entry It describes access permission associated with a particular ACE ID There are three ACE frame types Ethernet Type ARP and IPv4 and two ACE actions permit and deny The ACE also contains many detailed different parameter options that are available for individual application ACL is an acronym for Access Control List It is the list table of ACEs containing access control entries that specify individual users or groups permitted or denied to specific traffic objects such as a process or a program Each accessible traffic object contains an identifier to its ACL The privileges determine whether there are specific traffic object access rights ACL implementat
4. STP Stack Protocol using ROUting Technology An advanced protocol for almost instantaneous discovery of topology changes within a stack as well as election of a master switch SPROUT also calculates parameters for setting up each switch to perform shortest path forwarding within the stack Service Set Identifier is a name used to identify the particular 802 11 wireless LANs to which a user wants to attach A client device will receive broadcast messages from all access points within range advertising their SSIDs and can choose one to connect to based on pre configuration or by displaying a list of SSIDs in range and asking the user to select one wikipedia SSH is an acronym for Secure SHell It is a network protocol that allows data to be exchanged using a secure channel between two networked devices The encryption used by SSH provides confidentiality and integrity of data over an insecure network The goal of SSH was to replace the earlier rlogin TELNET and rsh protocols which did not provide strong authentication or guarantee confidentiality Wikipedia SSM In SyncE this is an abbreviation for Synchronization Status Message and is containing a QL indication Spanning Tree Protocol is an OSI layer 2 protocol which ensures a loop free topology for any bridged LAN The original STP protocol is now obsolete by RSTP Switch ID Switch IDs 1 16 are used to uniquely identify the switches within a stack The Switch ID of eac
5. Security Switch SNMP Access Delete lt index gt Parameters lt index gt entry index 1 64 8 1 5 34 Access Lookup lt index gt Security Switch SNMP gt Access Lookup help 48 Description Lookup SNMPv3 access entry Syntax Security Switch SNMP Access Lookup lt index gt Parameters lt index gt entry index 1 64 8 2 Network Network security Available command groups Security Network Psec Port Security Status Security Network NAS Network Access Server IEEE 802 1X Security Network ACL Access Control List 8 2 1 Psec Port Security Status Available Commands Security Network Psec Switch lt port_list gt Security Network Psec Port lt port_list gt 8 2 1 1 Switch Security Network Psec gt Switch help Description Show Port Security status Syntax Security Network Psec Switch lt port_list gt Parameters lt port_list gt Port list or all default All ports 8 2 1 2 Port Security Network Psec gt Port help Description Show MAC Addresses learned by Port Security Syntax 49 Security Network Psec Port lt port_list gt Parameters lt port_list gt Port list or all default All ports 8 2 2 NAS Network Access Server IEEE 802 1X Available Commands Security Network NAS Configuration lt port_list gt Security Network NAS Mode enableldisable Security Network NAS State lt port_list gt autolauthorize
6. 0 7 CIST 0 MSTI1 1 lt port_list gt Port list or all Port zero means aggregations lt path_cost gt STP port path cost 1 200000000 or auto 9 27 Msti Port Priority STP gt Msti Port Priority help Description Set or show the STP CIST MSTI port priority Syntax STP Msti Port Priority lt msti gt lt port_list gt lt priority gt Parameters lt msti gt STP bridge instance no 0 7 CIST 0 MSTI1 1 lt port_list gt Port list or all Port zero means aggregations lt priority gt STP port priority 0 16 32 48 224 240 70 10 IGMP Intemet Group Management Protocol snooping Available Commands IGMP Configuration lt port_list gt IGMP Mode enableldisable IGMP State lt vid gt enableldisable IGMP Querier lt vid gt enableldisable IGMP Fastleave lt port_list gt enableldisable IGMP Router lt port_list gt enableldisable IGMP Flooding enableldisable IGMP Groups lt vid gt IGMP Status lt vid gt 10 1 Configuration IGMP gt Configuration help Description Show IGMP snooping configuration Syntax IGMP Configuration lt port_list gt Parameters lt port_list gt Port list or all default All ports 10 2 Mode IGMP gt Mode help Description Set or show the IGMP snooping mode Syntax IGMP Mode enableldisable Parameters enable Enable IGMP snooping disable Disable IGMP snooping default Show IGMP
7. DoS attack an attacker attempts to prevent legitimate users from accessing information or services By targeting at network sites or network connection an attacker may be able to prevent network users from accessing email web sites online accounts banking etc or other services that rely on the affected computer Dotted Decimal Notation DSCP Dotted Decimal Notation refers to a method of writing IP addresses using decimal numbers and dots as separators between octets An IPv4 dotted decimal address has the form x y z w where x y z and w are decimal numbers between O and 255 DSCP is an acronym for Differentiated Services Code Point It is a field in the header of IP packets for packet classification purposes 103 EPS EPS Is an abbreviation for Ethernet Protection Switching defined in ITU T G 8031 Ethernet Type FTP Ethernet Type or EtherType is a field in the Ethernet MAC header defined by the Ethernet networking standard It is used to indicate which protocol is being transported in an Ethernet frame FTP is an acronym for File Transfer Protocol It is a transfer protocol that uses the Transmission Control Protocol TCP and provides file writing and reading It also provides directory service and security features Fast Leave HTTP IGMP snooping Fast Leave processing allows the switch to remove an interface from the forwarding table entry without first sending out group specific queries to
8. lt port_list gt lt key gt Parameters lt port_list gt Port list or all default All ports lt key gt LACP key 1 65535 or auto 11 4 Role LACP gt Role help Description Set or show the LACP role Syntax LACP Role lt port_list gt activelpassive Parameters lt port_list gt Port list or all default All ports active Initiate LACP negotiation passive Listen for LACP packets default Show LACP role 11 5 Status LACP gt Status help Description Show LACP Status Syntax LACP Status lt port_list gt Parameters lt port_list gt Port list or all default All ports 11 6 Statistics LACP gt Statistics help 76 Description Show LACP Statistics Syntax LACP Statistics lt port_list gt clear Parameters lt port_list gt Port list or all default All ports clear Clear LACP statistics a Js 12 LLDP Link Layer Discovery Protocol Available Commands LLDP Configuration lt port_list gt LLDP Mode lt port_list gt enableldisablelrxltx LLDP Optional_TLV lt port_list gt port_descrlsys_namelsys_descrisys_capalmgmt_addr enableldisable LLDP Interval lt interval gt LLDP Hold lt hold gt LLDP Delay lt delay gt LLDP Reinit lt reinit gt LLDP Statistics lt port_list gt clear LLDP Info lt port_list gt 12 1 Configuration LLDP gt Configuration help Description Show LLDP configu
9. 10 1000000 O disable default Show age time 5 6 Learning 23 MAC gt Learning help Description Set or show the port learn mode Syntax MAC Learning lt port_list gt autoldisablelsecure Parameters lt port_list gt Port list or all default All ports auto Automatic learning disable Disable learning secure Secure learning default Show learn mode 5 7 Dump MAC gt Dump help Description Show sorted list of MAC address entries Syntax MAC Dump lt mac_max gt lt mac_addr gt lt vid gt Parameters lt mac_max gt Maximum number of MAC addresses default Show all addresses lt mac_addr gt First MAC address xx xx xx xx xx xx default MAC address zero lt vid gt First VLAN ID 1 4095 default 1 5 8 Statistics MAC gt Statistics help Description Show MAC address table statistics Syntax MAC Statistics lt port_list gt Parameters lt port_list gt Port list or all default All ports 24 5 9 Flush MAC gt Hlush help Description Flush all learned entries Syntax MAC Flush 25 6 VLAN Virtual LAN Available Commands VLAN Configuration lt port_list gt VLAN Aware lt port_list gt enableldisable VLAN PVID lt port_list gt lt vid gt Inone VLAN FrameT ype lt port_list gt allltagged VLAN IngressFilter lt port_list gt enableldisable VLAN Add lt vid gt lt port_list gt VLAN De
10. 13 Storm Unicast a sesedsa tenes Tasers pie a pa ea neal 94 14 14 SOL M lticaSt cali 94 SR o oc O 95 15 Mirror Port Mirroring cooconcccnnnnnnccconnnccccnnncc cnn rr rnnnnar ren 96 15 1 Gonfig ratio Neses lis idee roca 96 EEA OTA E R E ick a A erehre san cad wecarnance E A waere cette oadiata 96 15 3 MO GG issii wend eds ec a A EE EE cate eal ES 96 16 Config Load Save of configuration via TF TP ssccceseecseeeeseeeeneeeeseneeesnaesenseeeeseeeesnaesaaeneneeeeeees 98 A A Pr Mee rg O ERE 98 Ao AAA TT E T be edeeanadeoameceoteaeg eats 98 17 Firmware Download of firmware Via TFTP ccccsseeceeesseeseeeseeeseeeseeeeeensaeseeesnenseneenes 99 A A AA AR AE 100 10 1 General 1 1 General Commands General Commands Description Help Get help on a group or a specific command Up Move one command level up Move to Root level Logout Exit CLI 1 2 Command Groups Command Groups Description System System settings and reset options IP IP configuration and Ping Port Port management MAC MAC address table VLAN Virtual LAN PVLAN Private VLAN Security Security management STP Spanning Tree Protocol IGMP Internet Group Management Protocol snooping LACP Link Aggregation Control Protocol LLDP Link Layer Discovery Protocol LLDPMED Link Layer Discovery Protocol Media QoS Quality of Service Mirror Port mirroring Config Load Save of configuration via TE
11. Community Delete Security Switch SNMP gt Community Delete help Description Delete SNMPv3 community entry Syntax Security Switch SNMP Community Delete lt index gt Parameters lt index gt entry index 1 64 43 8 1 5 21 Community Lookup Security Switch SNMP gt Community Lookup help Description Lookup SNMPv3 community entry Syntax Security Switch SNMP Community Lookup lt index gt Parameters lt index gt entry index 1 64 8 1 5 22 User Add Security Switch SNMP gt User Add help Description Add SNMPv3 user entry The entry index key are lt engineid gt and lt user_name gt and it doesn t allow modify Syntax Security Switch SNMP User Add lt engineid gt lt user_name gt MDSISHA lt auth_password gt DES lt priv_password gt Parameters lt engineid gt Engine ID the format may not be all zeros or all ffH and is restricted to 5 32 octet string lt user_name gt A string identifying the user name that this entry should belong to md5 An optional flag to indicate that this user using MD5 authentication protocol sha An optional flag to indicate that this user using SHA authentication protocol lt auth_password gt A string identifying the authentication pass phrase des An optional flag to indicate that this user using DES privacy protocol privacy protocol should belong to lt priv_password gt A string identifying the privacy pass phrase
12. National subdivisions state caton region province prefecture County parish gun JP district IN City township shi JP City division borough city district ward chou JP Neighborhood block Street Leading street direction Trailing street suffix Street Suffix House Number House number suffix Landmark or vanity address Additional location information name Name residence and office occupant Postal zip code Building structure Unit apartment suite Floor Room number Place type Postal community name Post office box P O Box Additional code default Show Civic Address Location configuration lt civic_value gt 13 3 ecs LLDPMED gt ecs help The value for the Civic Address Location entry Description Set or show LLDP MED Emergency Call Service 83 Syntax LLDPMED ecs lt ecs_value gt Parameters lt ecs_value gt The value for the Emergency Call Service 13 4 policy delete LLDPMED gt policy delete help Description Delete the selected policy Syntax LLDPMED policy delete lt policy_list gt Parameters lt policy_list gt List of policies to delete 13 5 policy add LLDPMED gt policy add help Description Adds a policy to the list of polices Syntax LLDPMED policy add voicelvoice_signalinglguest_voicelguest_voice_signalinglsoft phone_voicelvideo_conferencinglstreaming_videolvideo_sign
13. Time Protocol a network protocol for synchronizing the clocks of computer systems NTP uses UDP datagrams as transport layer O OAM OAM is an acronym for Operation Administration and Maintenance It is a protocol described in ITU T Y 1731 used to implement carrier Ethernet functionality MEP functionality like CC and RDI is based on this Optional TLVs A LLDP frame contains multiple TLVs For some TLVs it is configurable if the switch shall include the TLV in the LLDP frame These TLVs are known as optional TLVs If an optional TLVs is disabled the corresponding information is not included in the LLDP frame P PD PD is an acronym for Powered Device In a PoE gt system the power is delivered from a PSE power sourcing equipment to a remote device The remote device 1s called a PD PHY PHY is an abbreviation for Physical Interface Transceiver and is the device that implement the Ethernet physical layer IEEE 802 3 PING ping is a program that sends a series of packets over a network or the Internet to a specific computer in order to generate a response from that computer The other computer responds with an acknowledgment that it received the packets Ping was created to verify whether a specific computer on a network or the 108 Internet exists and is connected ping uses Internet Control Message Protocol ICMP packets The PING Request is the packet from the origin computer and the PING Reply is the packet response fr
14. gt Parameters lt hold gt LLDP hold value 2 10 12 6 Delay LLDP gt Delay help Description Set or show LLDP Tx delay Syntax LLDP Delay lt delay gt Parameters lt delay gt LLDP transmission delay 1 8192 12 7 Reinit LLDP gt Reinit help Description Set or show LLDP reinit delay Syntax LLDP Reinit lt reinit gt Parameters lt reinit gt LLDP reinit delay 1 10 12 8 Statistics LLDP gt Statistics help Description Show LLDP Statistics 80 Syntax LLDP Statistics lt port_list gt clear Parameters lt port_list gt Port list or all default All ports clear Clear LLDP statistics 12 9 Info LLDP gt Info help Description Show LLDP neighbor device information Syntax LLDP Info lt port_list gt Parameters lt port_list gt Port list or all default All ports 81 13 LLDPMED Link Layer Discovery Protocol Media Available Commands LLDPMED Configuration lt port_list gt LLDPMED Civic countrylstatelcountylcityldistrictIblocklstreetlleading_street_di rectionltrailing street_suffix str_suflhouse_nolhouse_no_suffixllandmarkladditional_infolnam elzip_codelbuildinglapartmentlfloorlroom_numberlplace_typelpostal _com_namelp_o_boxladditional_code lt civic_value gt LLDPMED ecs lt ecs_value gt LLDPMED policy delete lt policy_list gt LLDPMED policy add voicelvoice_signalinglguest_voicelguest_voice_signaling Isoftph
15. gt Configuration help Description Show Auth configuration Syntax Security AAA Configuration 8 3 2 Timeout Security AAA gt Timeout help Description Set or show server timeout Syntax Security AAA Timeout lt timeout gt Parameters lt timeout gt Server response timeout 3 3600 seconds default Show server timeout configuration 8 3 3 Deadtime Security AAA gt Deadtime help Description Set or show server dead time Syntax Security AAA Deadtime lt dead_time gt Parameters lt dead_time gt Time that a server is considered dead if it doesn t answer a request 0 3600 seconds default Show server dead time configuration 8 3 4 RADIUS Security AAA gt RADIUS help 59 Description Set or show RADIUS authentication server setup Syntax Security AAA RADIUS lt server_index gt enableldisable lt ip_addr_string gt lt secre t gt lt server_port gt Parameters lt server_index gt The server index 1 5 default Show RADIUS authentication server configuration enable Enable RADIUS authentication server disable Disable RADIUS authentication server default Show RADIUS server mode lt ip_addr_string gt IP host address a b c d lt secret gt Secret shared with external authentication server To set an empty secret use two quotes To use spaces in secret enquote the secret Quotes in the secret are not allowed lt serve
16. gt QCL Add help Port list or all default All ports QCL ID Description Add or modify QoS Control Entry QCE If the QCE ID parameter lt qce_id gt is specified and an entry with this QCE ID already exists the QCE will be modified Otherwise a new QCE will be added If the QCE ID is not specified the next available QCE ID will be used If the next QCE ID parameter lt qce_id_next gt is specified the QCE will be placed before this QCE in the list If the next QCE ID is not specified the QCE will be placed last in the list Syntax QoS QCL Add lt qcl_id gt lt qce_id gt lt qce_id_next gt etype lt etype gt vid lt vid gt port lt udp_tcp_port gt dscp lt dscp gt tos lt tos_list gt tag_prio lt tag_prio_list gt lt class gt Parameters lt qcl_id gt lt qce_id gt lt qce_id_next gt etype lt etype gt vid lt vid gt port lt udp_tcp_port gt dscp lt dscp gt tos QCL ID QCE ID 1 24 Next QCE ID 1 24 Ethernet Type keyword Ethernet Type VLAN ID keyword VLAN ID 1 4095 UDP TCP port keyword Source or destination UDP TCP port 0 65535 IP DSCP keyword IP DSCP 0 63 IP ToS keyword 9 lt tos_list gt IP ToS list 0 7 tag_prio VLAN tag priority keyword lt tag_prio_list gt VLAN tag priority list 0 7 lt class gt Traffic class low normal medium high or 1 2 3 4 14 7 QCL Delete QoS gt Q
17. ip_addr_string gt lt ping_length gt Parameters lt ip_addr_string gt IP host address a b c d lt ping_length gt Ping data length 8 1400 excluding MAC IP and ICMP header 3 5 SNTP IP gt SNTP help Description Set or show the SNTP Time server address Syntax IP SNTP lt ip_addr_string gt Parameters lt ip_addr_string gt IP host address a b c d a 4 Port Port management Available Commands Port Configuration lt port_list gt Port Mode lt port_list gt 10hdx 10fdxl100hdx1100fdxl1000fdxlauto Port Flow Control lt port_list gt enableldisable Port State lt port_list gt enableldisable Port MaxFrame lt port_list gt lt max_frame gt Port Power lt port_list gt enableldisablelactiphyldynamic Port Excessive lt port_list gt discardlrestart Port Statistics lt port_list gt lt command gt 4 1 Configuration Port gt Configuration help Description Show port configuration Syntax Port Configuration lt port_list gt Parameters lt port_list gt Port list or all default All ports 4 2 Mode Port gt Mode help Description Set or show the port speed and duplex mode Syntax Port Mode lt port_list gt 1 Ohdx 1 Ofdxl100hdx 100fdxl1 000fdxlauto Parameters lt port_list gt Port list or all default All ports 10hdx 10 Mbps half duplex Not support for fiber port 10fdx 10 Mbps full duplex Not su
18. msti gt lt port_list gt STP Msti Port Cost lt msti gt lt port_list gt lt path_cost gt STP Msti Port Priority lt msti gt lt port_list gt lt priority gt 9 1 Configuration STP gt Configuration help Description Show STP Bridge configuration Syntax STP Configuration 61 9 2 Version STP gt Version help Description Set or show the STP Bridge protocol version Syntax STP Version lt stp_version gt Parameters lt stp_version gt mstplrstplstp 9 3 Txhold STP gt Txhold help Description Set or show the STP Bridge Transmit Hold Count parameter Syntax STP Txhold lt holdcount gt Parameters lt holdcount gt STP Transmit Hold Count 1 10 9 4 MaxHops STP gt MaxHops help Description Set or show the MSTP Bridge Max Hop Count parameter Syntax STP MaxHops lt maxhops gt Parameters lt maxhops gt STP BPDU MaxHops 6 40 9 5 MaxAge STP gt MaxAge help 62 Description Set or show the CIST MSTI bridge maximum age Syntax STP MaxAge lt max_age gt Parameters lt max_age gt STP maximum age time 6 40 and max_age lt forward_delay 1 2 9 6 FwdDelay STP gt FwdDelay help Description Set or show the CIST MSTI bridge forward delay Syntax STP FwdDelay lt delay gt Parameters lt delay gt MSTP forward delay 4 30 and max_age lt forward_delay 1 2 9 7 CName STP gt CName help Descri
19. priority gt Parameters lt msti gt STP bridge instance no 0 7 CIST 0 MSTI1 1 lt priority gt STP bridge priority 0 16 32 48 224 240 9 13 Msti Map STP gt Msti Map help Description Show or clear MSTP MSTI VLAN mapping configuration Syntax STP Msti Map lt msti gt clear Parameters lt msti gt STP bridge instance no 0 7 CIST 0 MSTI1 1 clear Clear VID to MSTI mapping 9 14 Msti Add STP gt Msti Add help Description Add a VLAN to a MSTI 65 Syntax STP Msti Add lt msti gt lt vid gt Parameters lt msti gt STP bridge instance no 0 7 CIST 0 MSTI1 1 lt vid gt VLAN ID 1 4095 9 15 Port Configuration STP gt Port Configuration help Description Show STP Port configuration Syntax STP Port Configuration lt port_list gt Parameters lt port_list gt Port list or all Port zero means aggregations 9 16 Port Mode STP gt Port Mode help Description Set or show the STP enabling for a port Syntax STP Port Mode lt port_list gt enableldisable Parameters lt port_list gt Port list or all Port zero means aggregations enable Enable MSTP protocol disable Disable MSTP protocol 9 17 Port Edge STP gt Port Edge help Description Set or show the STP adminEdge port parameter Syntax 66 STP Port Edge lt port_list gt enableldisable Parameters lt port_list gt Port li
20. set up to tag all frames Untagged frames received on a subscriber port are forwarded to the provider port with a single VLAN tag Tagged frames received on a subscriber port are forwarded to the provider port with a double VLAN tag VLAN ID WwW WEP WiFi VLAN ID is a 12 bit field specifying the VLAN to which the frame belongs WEP is an acronym for Wired Equivalent Privacy WEP is a deprecated algorithm to secure IEEE 802 11 wireless networks Wireless networks broadcast messages use radio so are more susceptible to eavesdropping than wired networks When introduced in 1999 WEP was intended to provide confidentiality comparable to that of a traditional wired network Wikipedia WiFi is an acronym for Wireless Fidelity It is meant to be used generically when referring of any type of 802 11 network whether 802 11b 802 11a dual band 116 WPA etc The term is promulgated by the Wi Fi Alliance WPA is an acronym for Wi Fi Protected Access It was created in response to several serious weaknesses researchers had found in the previous system Wired Equivalent Privacy WEP WPA implements the majority of the IEEE 802 111 standard and was intended as an intermediate measure to take the place of WEP while 802 111 was prepared WPA is specifically designed to also work with pre WPA wireless network interface cards through firmware upgrades but not necessarily with first generation wireless access points WPA2 implements th
21. simplify the process of connecting any home device to the wireless network Wikipedia WTR is an acronym for Wait To Restore This is the time a fail on a resource has to be not active before restoration back to this previously failing resource is done 117
22. the SNMP protocol version Syntax Security Switch SNMP Version 112c13 37 Parameters 1 SNMP version 1 2c SNMP version 2c 3 SNMP version 3 default Show SNMP version 8 1 5 4 Read Community Security Switch SNMP gt Read Community help Description Set or show the community string for SNMP read access Syntax Security Switch SNMP Read Community lt community gt Parameters we lt community gt Community string Use clear or default Show SNMP read community to clear the string 8 1 5 5 Write Community Security Switch SNMP gt Write Community help Description Set or show the community string for SNMP write access Syntax Security Switch SNMP Write Community lt community gt Parameters we lt community gt Community string Use clear or to clear the string default Show SNMP write community 8 1 5 6 Trap Mode Security Switch SNMP gt Trap Mode help Description Set or show the SNMP trap mode Syntax Security Switch SNMP Trap Mode enableldisable 38 Parameters enable Enable SNMP traps disable Disable SNMP traps default Show SNMP trap mode 8 1 5 7 Trap Version Security Switch SNMP gt Trap Version help Description Set or show the SNMP trap protocol version Syntax Security Switch SNMP Trap Version 112cl3 Parameters 1 SNMP version 1 2c SNMP version 2c 3 SNMP version 3 default Show SN
23. 1 5 Contigua OMen a tees E labia cat aah 37 oa E SEAN ONO EEEE EE EE E oia Na 37 8 1 5 3 Md 37 61 54 Head COMM NIY Esso ios 38 8 1 5 5 Write COMMUNIY aaa 38 31 00 MAD MOUS As td 38 8 1 5 7 Trap Ves ide 39 31 58 Trap COMMUNIYr E aaah 39 9 1259 Tap Destination ien a arenae aaaeeeaa tinea aid aed a Eos 39 9 1 5 10 Trap Authentication Failure ocacion add 40 8 19 11 Trap LINK AUD anat 40 9 10 12 Trap INtoOTiMOdO estadios eanan 40 8 1 5 13 Trap Inform TIMO Ea aa ida 41 8 1 5 14 Trap Inform Retry Times ciar 41 8 1 5 15 Trap Probe Security Engine ID cas 42 8 1 5 16 Trap Security Engine Dicc ei pita 42 8 1 5 17 Trap Security Nam iia 42 3 1 0 18 Engie D een a a ee ee eee ee 43 9 1 5 19 COMMUNITY AO scada latinas 43 8 1520 Community Delito loreto 43 8 1 5 21 Community LOOKUP iii ads 44 8 1 5 22 SEP AGG cui Mureterawideanal elena 44 8 15 23 User Delete nins cda a dell Goatees sects ceed 44 8 1 5 24 User Changekey ooooooccccccooccccccconcccconononcncnnnonancnnnnannccnnnnnnnnnnnrnnnnnnnnnrannnnnnnnnns 45 8 1 5 25 User LOOKUP iia 45 9 1 0 260 GROUP AGG airlines 45 8 1 5 27 Group Deleite ciudada savas ceneneaueocanecagedeneceaesecaunotet 46 8 1 5 28 Group LOOKUP ii ta 46 A ae ede ths Salen e R a ca tee S iat Nici Pscbake 46 8 VSO View Delete ees anise dd te Seat oye acacia gee 47 8 1 5 31 View LOOK Us td rt dla 47 OTS 32 ACCESS A ras 47 A O 48 8 1 5 34 Access Lookup lt ndex gt voor lei 48 3 2 Network Network security visir ii 49 8 2 1 P
24. 1000000 kbps 14 12 Shaper QoS gt Shaper help Description 93 Set or show the port shaper Syntax QoS Shaper lt port_list gt enableldisable lt bit_rate gt Parameters lt port_list gt Port list or all default All ports enable Enable shaper disable Disable shaper default Show shaper mode lt bit_rate gt Rate in 1000 bits per second 500 1000000 kbps 14 13 Storm Unicast QoS gt Storm Unicast help Description Set or show the unicast storm rate limiter Syntax QoS Storm Unicast enableldisable lt packet_rate gt Parameters enable Enable unicast storm control disable Disable unicast storm control lt packet_rate gt Rate in pps 1 2 4 512 1k 2k 4k 1024k 14 14 Storm Multicast QoS gt Storm Multicast help Description Set or show the multicast storm rate limiter Syntax QoS Storm Multicast enableldisable lt packet_rate gt Parameters enable Enable multicast storm control disable Disable multicast storm control lt packet_rate gt Rate in pps 1 2 4 512 1k 2k 4k 1024k 94 14 15 Storm Broadcast QoS gt Storm Broadcast help Description Set or show the multicast storm rate limiter Syntax QoS Storm Broadcast enableldisable lt packet_rate gt Parameters enable Enable broadcast storm control disable Disable broadcast storm control lt packet_rate gt Rate in pps 1 2 4
25. 8 1 5 23 User Delete Security Switch SNMP gt User Delete help Description Delete SNMPv3 user entry Syntax Security Switch SNMP User Delete lt index gt Parameters lt index gt entry index 1 64 8 1 5 24 User Changekey Security Switch SNMP gt User Changekey help Description Change SNMPv3 user password Syntax Security Switch SNMP User Changekey lt engineid gt lt user_name gt lt auth_password gt lt priv_password gt Parameters lt engineid gt Engine ID the format may not be all zeros or all ffH and is restricted to 5 32 octet string lt user_name gt A string identifying the user name that this entry should belong to lt auth_password gt A string identifying the authentication pass phrase lt priv_password gt A string identifying the privacy pass phrase 8 1 5 25 User Lookup Security Switch SNMP gt User Lookup help Description Lookup SNMPv3 user entry Syntax Security Switch SNMP User Lookup lt index gt Parameters lt index gt entry index 1 64 8 1 5 26 Group Add Security Switch SNMP gt Group Add help 45 Description Add or modify SNMPv3 group entry The entry index key are lt security_model gt and lt security_name gt Syntax Security Switch SNMP Group Add lt security_model gt lt security_name gt lt group_name gt Parameters lt security_model gt vi Reserved for SNMPv1 v2c Reserved for SNMPv2c usm
26. CL Delete help Description Delete QCE Syntax QoS QCL Delete lt qcl_id gt lt qce_id gt Parameters lt qcl_id gt QCL ID lt qce_id gt QCE ID 1 24 14 8 QCL Lookup QoS gt QCL Lookup help Description Lookup QCE Syntax QoS QCL Lookup lt qcl_id gt lt qce_id gt Parameters lt qcl_id gt QCL ID lt qce_id gt QCE ID 1 24 14 9 Mode QoS gt Mode help Description Set or show the port egress scheduler mode Syntax QoS Mode lt port_list gt strictlweighted 92 Parameters lt port_list gt Port list or all default All ports strict Strict mode weighted Weighted mode default Show QoS mode 14 10 Weight QoS gt Weight help Description Set or show the port egress scheduler weight Syntax QoS Weight lt port_list gt lt class gt lt weight gt Parameters lt port_list gt Port list or all default All ports lt class gt Traffic class low normal medium high or 1 2 3 4 lt weight gt Traffic class weight 1 2 4 8 14 11 Rate Limiter QoS gt Rate Limiter help Description Set or show the port rate limiter Syntax QoS Rate Limiter lt port_list gt enableldisable lt bit_rate gt Parameters lt port_list gt Port list or all default All ports enable Enable rate limiter disable Disable rate limiter default Show rate limiter mode lt bit_rate gt Rate in 1000 bits per second 500
27. E sees EE taes woes ext r T 63 9 9 DPCUGUAIG ssia pa ada 64 QAO AN A 64 US e AA 64 9 12 MSI Priority ase 65 918 MSti MAD nono 65 14 MST AG arranco ico 65 9 15 Pot COM pirat OM e O atte eta eae 66 9 16 Port Mode iii sais 66 9 17 POW Ed erstes ias 66 9 18 Por AUDE eddie ee eee 67 A A A tee casnunceh eceed te catuauda E E Gdeedianae tude 67 g 20 PortRestici dRole isidro 67 O71 ROM Restricted Oncol iia aiii 68 O22 A A AE EEES 68 9 23 POM SAUS ic A A Ra 68 9 24 Port MGNGCK casona lan ca la 69 9 25 MSt POr Configuratio Msema ll Ade ici 69 A ohne heten taendh eet ee id he tedactiiae Meee etn ea stage it easider eae Seeateanaubiae 69 9 27 Mstl Port Priority aii ias 70 10 IGP riemetGroup Viagem tProt00 MONO commons roer roer rones 71 A EOS 71 10 2 MOE ocio ii 71 o tet astm a A Od eta a a a Aire eh ated ees Acad eat a 72 DOA A caten A E am tart ececatmecteae 72 10 5 pes El 217 seeds n iie E a EEEE EKE RAKE ESE 72 TO AQUI 73 UA lolo a e AAA voeea weet wath T A 73 10 8 GrOUPS inir a a ts 73 A a a A a aae a a e a E a E eat Abe 74 11 LACP Link Aggregation Control Protocol sssssssnssennsennnennnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnn nnmnnn 75 A A E ation r E EE ERE G 75 Wd 322 ModE a ds 75 A A AANE AE E EEA AS 75 11 4 ROE A A eaa aeaa eaaa AAAA NE liars ease AEEA EEEE AATRE TEE aise 76 Wel SOUS O E a a A aa aa a a E A 76 o a a e te tae ete cae E AET a ee 76 12 LLDP Link Layer Discovery Protocol ccs ecceseceeeee
28. KGS 2422 Console amp Telnet Management Interface User s Manual R DOC 120313 C 2012 KTI Networks Inc All rights reserved No part of this documentation may be reproduced in any form or by any means or used to make any directive work such as translation or transformation without permission from KTI Networks Inc KTI Networks Inc reserves the right to revise this documentation and to make changes in content from time to time without obligation on the part of KTI Networks Inc to provide notification of such revision or change For more information contact United States KTI Networks Inc P O BOX 631008 Houston Texas 77263 1008 Phone 713 2663891 Fax 713 2663893 E mail ktiOktinet com URL http www ktinet com International Fax 886 2 26983873 E mail kti ktinet com tw URL http www ktinet com tw The information contained in this document is subject to change without prior notice Copyright C All Rights Reserved TRADEMARKS Ethernet is a registered trademark of Xerox Corp Vitesse Switch Software Copyright c 2002 2009 Vitesse Semiconductor Corporation Vitesse All Rights Reserved Unpublished rights reserved under the copyright laws of the United States of America other countries and international treaties Permission to use copy store and modify the software and its source code is granted Permission to integrate into other products disclose transmit and distribute the softw
29. MP trap version 8 1 5 8 Trap Community Security Switch SNMP gt Trap Community help Description Set or show the community string for SNMP traps Syntax Security Switch SNMP Trap Community lt community gt Parameters we lt community gt Community string Use clear or default Show SNMP trap community to clear the string 8 1 5 9 Trap Destination Security Switch SNMP gt Trap Destination help Description Set or Show the SNMP trap destination address 39 Syntax Security Switch SNMP Trap Destination lt ip_addr_string gt Parameters lt ip_addr_string gt IP host address a b c d 8 1 5 10 Trap Authentication Failure Security Switch SNMP gt Trap Authentication Failure help Description Set or show the SNMP authentication failure trap mode Syntax Security Switch SNMP Trap Authentication Failure enableldisable Parameters enable Enable SNMP trap authentication failure disable Disable SNMP trap authentication failure default Show SNMP trap authentication failure mode 8 1 5 11 Trap Link up Security Switch SNMP gt Trap Link up help Description Set or show the port link up and link down trap mode Syntax Security Switch SNMP Trap Link up enableldisable Parameters enable Enable SNMP trap link up and link down disable Disable SNMP trap link up and link down default Show SNMP trap link up and link down mode 8 1 5 12 Trap In
30. STP restricted TCN disable Disable MSTP restricted TCN 9 22 Port bpduGuard STP gt Port bpduGuard help Description Set or show the bpduGuard port parameter Syntax STP Port bpduGuard lt port_list gt enableldisable Parameters lt port_list gt Port list or all default All ports enable Enable port BPDU Guard disable Disable port BPDU Guard 9 23 Port Statistics 68 STP gt Port Statistics help Description Show STP port statistics Syntax STP Port Statistics lt port_list gt Parameters lt port_list gt Port list or all default All ports 9 24 Port Mcheck STP gt Port Mcheck help Description Set the STP mCheck Migration Check variable for ports Syntax STP Port Mcheck lt port_list gt Parameters lt port_list gt Port list or all default All ports 9 25 Msti Port Configuration STP gt Msti Port Configuration help Description Show the STP CIST MSTI port configuration Syntax STP Msti Port Configuration lt msti gt lt port_list gt Parameters lt msti gt STP bridge instance no 0 7 CIST 0 MSTI1 1 lt port_list gt Port list or all default All ports 9 26 Msti Port Cost STP gt Msti Port Cost help Description Set or show the STP CIST MSTI port path cost 69 Syntax STP Msti Port Cost lt msti gt lt port_list gt lt path_cost gt Parameters lt msti gt STP bridge instance no
31. Shaper lt port_list gt enableldisable lt bit_rate gt QoS Storm Unicast enableldisable lt packet_rate gt QoS Storm Multicast enableldisable lt packet_rate gt QoS Storm Broadcast enableldisable lt packet_rate gt 14 1 Configuration QoS gt Configuration help Description Show QoS Configuration Syntax QoS Configuration lt port_list gt Parameters lt port_list gt Port list or all default All ports 14 2 Classes QoS gt Classes help Description Set or show the number of traffic classes 89 Syntax QoS Classes lt class gt Parameters lt class gt Number of traffic classes 1 2 or 4 14 3 Default QoS gt Default help Description Set or show the default port priority Syntax QoS Default lt port_list gt lt class gt Parameters lt port_list gt Port list or all default All ports lt class gt Traffic class low normal medium high or 1 2 3 4 14 4 Tagprio QoS gt Tagprio help Description Set or show the port VLAN tag priority Syntax QoS Tagprio lt port_list gt lt tag_prio gt Parameters lt port_list gt Port list or all default All ports lt tag_prio gt VLAN tag priority 0 7 14 5 QCL Port QoS gt QCL Port help Description Set or show the port QCL ID Syntax 90 QoS QCL Port lt port_list gt lt qcl_id gt Parameters lt port_list gt lt qcl_id gt 14 6 QCL Add QoS
32. Switch SNMP User Add lt engineid gt lt user_name gt MDSISHA lt auth_password gt DES lt priv_password gt Security Switch SNMP User Delete lt index gt Security Switch SNMP User Changekey lt engineid gt lt user_name gt lt auth_password gt lt priv_password gt Security Switch SNMP User Lookup lt index gt Security Switch SNMP Group Add lt security_model gt lt security_name gt lt group_name gt Security Switch SNMP Group Delete lt index gt Security Switch SNMP Group Lookup lt index gt Security Switch SNMP View Add lt view_name gt includedlexcluded 36 lt oid_subtree gt Security Switch SNMP View Delete lt index gt Security Switch SNMP View Lookup lt index gt Security Switch SNMP Access Add lt group_name gt lt security_model gt lt security_level gt lt read_view_name gt lt write_view_name gt Security Switch SNMP Access Delete lt index gt Security Switch SNMP Access Lookup lt index gt 8 1 5 1 Configuration Security Switch SNMP gt Configuration help Description Show SNMP configuration Syntax Security Switch SNMP Configuration 8 1 5 2 Mode Security Switch SNMP gt Mode help Description Set or show the SNMP mode Syntax Security Switch SNMP Mode enableldisable Parameters enable Enable SNMP disable Disable SNMP default Show SNMP mode 8 1 5 3 Version Security Switch SNMP gt Version help Description Set or show
33. TP Firmware Download of firmware via TFTP Type lt group gt to enter command group e g port Type lt group gt to get list of group commands e g port Type lt command gt to get help on a command e g port mode Commands may be abbreviated e g po co instead of port configuration 11 2 System System settings and reset options Available Commands System Configuration all lt port_list gt System Name lt name gt System Contact lt contact gt System Location lt location gt System Timezone lt offset gt System Reboot System Restore Default keep_ip System Load System Log lt log_id gt alllinfolwarninglerror clear 2 1 Configuration System gt Configuration help Description Show system configuration Syntax System Configuration all lt port_list gt Parameters all Show all switch configuration default Show system configuration lt port_list gt Port list or all default All ports 2 2 Name System gt Name help Description Set or show the system name Syntax System Name lt name gt Parameters lt name gt System name string Use clear or to clear the string System name is a text string drawn from the alphabet A Za z digits 0 9 minus sign 12 Note In CLI no blank or space characters are permitted as part of a name The first character must be an alpha character and the first or last c
34. User based Security Model USM lt security_name gt A string identifying the security name that this entry should belong to lt group_name gt A string identifying the group name that this entry should belong to 8 1 5 27 Group Delete Security Switch SNMP gt Group Delete help Description Delete SNMPv3 group entry Syntax Security Switch SNMP Group Delete lt index gt Parameters lt index gt entry index 1 64 8 1 5 28 Group Lookup Security Switch SNMP gt Group Lookup help Description Lookup SNMPv3 group entry Syntax Security Switch SNMP Group Lookup lt index gt Parameters lt index gt entry index 1 64 8 1 5 29 View Add 46 Security Switch SNMP gt View Add help Description Add or modify SNMPv3 view entry The entry index key are lt view_name gt and lt oid_subtree gt Syntax Security Switch SNMP View Add lt view_name gt includedlexcluded lt oid_subtree gt Parameters lt view_name gt A string identifying the view name that this entry should belong to included Flag to indicate that this view subtree should included excluded Flag to indicate that this view subtree should excluded lt oid_subtree gt The OID defining the root of the subtree to add to the named vie 8 1 5 30 View Delete Security Switch SNMP gt View Delete help Description Delete SNMPv3 view entry Syntax Security Switch SNMP View Delete lt index gt Paramet
35. agement Protocol It is a communications protocol used to manage the membership of Internet Protocol multicast groups IGMP is used by IP hosts and adjacent multicast routers to establish multicast group memberships It is an integral part of the IP multicast specification like ICMP for unicast connections IGMP can be used for online video and gaming and allows more efficient use of resources when supporting these uses IGMP Querier IMAP A router sends IGMP Query messages onto a particular link This router is called the Querier IMAP is an acronym for Internet Message Access Protocol It is a protocol for email clients to retrieve email messages from a mail server 105 IMAP is the protocol that IMAP clients use to communicate with the servers and SMTP is the protocol used to transport mail to an IMAP server The current version of the Internet Message Access Protocol is IMAP4 It is similar to Post Office Protocol version 3 POP3 but offers additional and more complex features For example the IMAP4 protocol leaves your email messages on the server rather than downloading them to your computer If you wish to remove your messages from the server you must use your mail client to generate local folders copy messages to your local hard drive and then delete and expunge the messages from the server IP is an acronym for Internet Protocol It is a protocol used for communicating data across a internet network IP is a b
36. aling taggedluntagged lt vlan_id gt lt 12_priority gt lt dscp gt Parameters vhoice Voice for use by dedicated IP Telephony handsets and other similar appliances supporting interactive voice services These devices are typically deployed on a separate VLAN for ease of deployment and enhanced security by isolation from data applications voice_signaling Voice Signaling conditional for use in network topologies that require a different policy for the voice signaling than for the voice media 84 guest_voice guest_voice_signaling softphone_voice video_conferencing streaming_video video_signaling tagged Unragged lt vlan_id gt lt 12_priority gt lt dscp gt Guest Voice to support a separate limited feature set voice service for guest users and visitors with their own IP Telephony handsets and other similar appliances supporting interactive voice services Guest Voice Signaling conditional for use in network topologies that require a different policy for the guest voice signaling than for the guest voice media Softphone Voice for use by softphone applications on typical data centric devices such as PCs or laptops This class of endpoints frequently does not support multiple VLANs if at all and are typically configured to use an untagged VLAN or a single tagged data specific VLAN Video Conferencing for use by dedicated Video Conferencing equipment and other similar applia
37. applications or protocols A communications network transports a multitude of applications and data including high quality video and delay sensitive data such as real time voice Networks must provide secure predictable measurable and sometimes guaranteed services Achieving the required QoS becomes the secret to a successful end to end business solution Therefore QoS is the set of techniques to manage network resources There are 4 web pages associated with the QoS configuration QoSIQoS Control List The web page shows the QCEs in a prioritized way highest top to lowest bottom Default the table is empty An ingress frame will only get a hit on one QCE even though there are more matching QCEs The first matching QCE will give that frame a priority Low Normal Medium or High 5 different QCLs can be created each with 8 different QCEs You assign each port a QCL id under QoSIPorts page The QoS counters can be viewed under MonitorlPortsiQoS statistics There are number of parameters that can be configured with a QCE Read the Web page help text to get further information for each of them QoS Ports The Ports QoS page is used to assign a QCL id to an ingress port 110 Furthermore you can assign a default class to a port and a queuing mode Strict queuing means that the higher priority frame will always be served before a lower priority frame Weighted priority will give each class some weight of the bandwidth QoSIRate Limiter
38. are in an absolute machine readable format e g HEX file is also granted The software may only be used in products utilizing the Vitesse switch products Table of Contents OO 11 11 General Commands uc o eii 11 1 2 Command Groups ua i 11 2 System System settings and reset Options ococmoccconicnnnnonnnccncnrnenarennrnn rr 12 21 Configuration e e a pa a aeaaea Sr OE AEA araa ERES EaR 12 PERAN Moa 12 23 Contat eriep e a E EA aE AEE RAEE ERE A EE 13 A erei se orca iets ad etd a aa aaae aa aa Wiad aa aasa aaa 13 eo MMS tdi A E ide 13 E 0 0 01 OCC PE hs Senta cdeaci ee adie ahaa pavidattn tears eae etek nas 14 2 7 Restore Detalla iia dis 14 A AR 14 PASME oe ei Aris coindeeiadeed eta A T E cay had MeO es ogc 14 3 IP IP configuration and Pind ccsscccsseeeesceeseeeeeseeeenseeeeeeeeseneeeeneeeeeseeeescaesaseeeenseeesseeseseaeeneeeees 16 ST CONQUE ta lanes eatin cted 16 TA D A EE AE E E OEA 16 A E E E 16 CR A die A E O ay A E en ee 17 A E a kau A A aAa ine a a aa ai 17 4 Port Port Management ononionoccccnnnnnnnnaccccnnnnonnnnnn nono nn 18 Ail AC OMMIGURAVON esti is 18 4 2 Modern es cca tect ead te Seneca aac ted reed wea aaa a ae tetas a ates dal sada ASE 18 4 3 FlowControl ano srta tesi octal heneseeats 19 O 19 4 5 MaxPraMO sordas titi deis 19 ALN OWT O AA 20 ARE Mi A ad 20 4 8 DIUSUOS e A ES 21 5 MAC MAC address table c cccsssseccsssseesesesseesesnssceesesnseeesesnseeesesesseesesnseeeseseeseesnsnessone
39. authentication if remote authentication fails default Show backup client authentication configuration 8 1 3 SSH Secure Shell Available Commands Security Switch SSH Configuration Security Switch SSH Mode enableldisable 8 1 3 1 Configuration Security Switch SSH gt Configuration help Description Show SSH configuration Syntax Security Switch SSH Configuration 33 8 1 3 2 Mode enable disable Security Switch SSH gt Mode help Description Set or show the SSH mode Syntax Security Switch SSH Mode enableldisable Parameters enable Enable SSH disable Disable SSH default Show SSH mode BA 8 1 4 HTTPS Hypertext Transfer Protocol over Secure Socket Layer Available Commands Security Switch HTTPS Configuration Security Switch HTTPS Mode enableldisable Security Switch HTTPS Redirect enableldisable 8 1 4 1 Configuration Security Switch HTTPS gt Configuration help Description Show HTTPS configuration Syntax Security Switch HTTPS Configuration 8 1 4 2 Mode Security Switch HTTPS gt Mode help Description Set or show the HTTPS mode Syntax Security Switch HTTPS Mode enableldisable Parameters enable Enable HTTPS disable Disable HTTPS default Show HTTPS mode 8 1 4 3 Redirect Security Switch HTTPS gt Redirect help Description Set or show the HTTPS redirect mode Automatic redirect web browser to HTTPS during HTTPS mo
40. cified the next available ACE ID will be used If the next ACE ID parameter lt ace_id_next gt is specified the ACE will be placed before this ACE in the list If the next ACE ID is not specified the ACE will be placed last in the list If the Switch keyword is used the rule applies to all ports If the Port keyword is used the rule applies to the specified port only If the Policy keyword is used the rule applies to all ports configured with the specified policy The default is that the rule applies to all ports Syntax Security Network ACL Add lt ace_id gt lt ace_id_next gt switch port lt port gt policy lt policy gt lt vid gt lt tag_prio gt lt dmac_type gt etype lt etype gt lt smac gt lt dmac gt arp lt sip gt lt dip gt lt smac gt lt arp_opcode gt lt arp_flags gt ip lt sip gt lt dip gt lt protocol gt lt ip_flags gt icmp lt sip gt lt dip gt lt icmp_type gt lt icmp_code gt lt ip_flags gt udp lt sip gt lt dip gt lt sport gt lt dport gt lt ip_flags gt tcp lt sip gt lt dip gt lt sport gt lt dport gt lt ip_flags gt lt tcp_flags gt permitldeny lt rate_limiter gt lt port_copy gt lt logging gt lt shutdown gt Parameters lt ace_id gt ACE ID 1 128 default Next available ID lt ace_id_next gt Next ACE ID 1 128 default Add ACE last switch Switch ACE k
41. clude the Domain Name System DNS streaming media applications such as IPTV Voice over IP VoIP and Trivial File Transfer Protocol TFTP 115 UPnP UPnP is an acronym for Universal Plug and Play The goals of UPnP are to allow devices to connect seamlessly and to simplify the implementation of networks in the home data sharing communications and entertainment and in corporate environments for simplified installation of computer components User Priority V VLAN User Priority is a 3 bit field storing the priority level for the 802 1Q frame Virtual LAN a method to restrict communication between switch ports VLANs can be used for the following applications VLAN unaware switching This is the default configuration All ports are VLAN unaware with Port VLAN ID 1 and members of VLAN 1 This means that MAC addresses are learned in VLAN 1 and the switch does not remove or insert VLAN tags VLAN aware switching This is based on the IEEE 802 1Q standard All ports are VLAN aware Ports connected to VLAN aware switches are members of multiple VLANs and transmit tagged frames Other ports are members of one VLAN set up with this Port VLAN ID and transmit untagged frames Provider switching This is also known as Q in Q switching Ports connected to subscribers are VLAN unaware members of one VLAN and set up with this unique Port VLAN ID Ports connected to the service provider are VLAN aware members of multiple VLANs and
42. de enabled Syntax Security Switch HTTPS Redirect enableldisable Parameters 35 enable Enable HTTPS redirect disable Disable HTTPS redirect default Show HTTPS redirect mode 8 1 5 SNMP Simple Network Management Protocol Available Commands Security Switch SNMP Configuration Security Switch SNMP Mode enableldisable Security Switch SNMP Version 112c13 Security Switch SNMP Read Community lt community gt Security Switch SNMP Write Community lt community gt Security Switch SNMP Trap Mode enableldisable Security Switch SNMP Trap Version 1 2c13 Security Switch SNMP Trap Community lt community gt Security Switch SNMP Trap Destination lt ip_addr_string gt Security Switch SNMP Trap Authentication Failure enableldisable Security Switch SNMP Trap Link up enableldisable Security Switch SNMP Trap Inform Mode enableldisable Security Switch SNMP Trap Inform Timeout lt timeout gt Security Switch SNMP Trap Inform Retry Times lt retries gt Security Switch SNMP Trap Probe Security Engine ID enableldisable Security Switch SNMP Trap Security Engine ID lt engineid gt Security Switch SNMP Trap Security Name lt security_name gt Security Switch SNMP Engine ID lt engineid gt Security Switch SNMP Community Add lt community gt lt ip_addr gt lt ip_mask gt Security Switch SNMP Community Delete lt index gt Security Switch SNMP Community Lookup lt index gt Security
43. dlunauthorizedlmacbased Security Network NAS Reauthentication enableldisable Security Network NAS ReauthPeriod lt reauth_period gt Security Network NAS EapolTimeout lt eapol_timeout gt Security Network NAS Agetime lt age_time gt Security Network NAS Holdtime lt hold_time gt Security Network NAS Authenticate lt port_list gt now Security Network NAS Statistics lt port_list gt clearleapollradius 8 2 2 1 Configuration Security Network NAS gt Configuration help Description Show 802 1X configuration Syntax Security Network NAS Configuration lt port_list gt Parameters lt port_list gt Port list or all default All ports 8 2 2 2 Mode Security Network NAS gt Mode help Description Set or show the global NAS enabledness Syntax Security Network NAS Mode enableldisable 50 Parameters enable Globally enable 802 1X disable Globally disable 802 1X default Show current 802 1X global enabledness 8 2 2 3 State Security Network NAS gt State help Description Set or show the port security state Syntax Security Network NAS State lt port_list gt autolauthorizedlunauthorizedlmacbased Parameters lt port_list gt Port list or all default All ports auto Port based 802 1X Authentication authorized Port access is allowed unauthorized Port access is not allowed macbased Switch authenticates on be
44. e full standard but will not work with some older network cards Wikipedia WPA PSK WPA PSK is an acronym for Wi Fi Protected Access Pre Shared Key WPA was designed to enhance the security of wireless networks There are two flavors of WPA enterprise and personal Enterprise is meant for use with an IEEE 802 1X authentication server which distributes different keys to each user Personal WPA utilizes less scalable pre shared key PSK mode where every allowed computer is given the same passphrase In PSK mode security depends on the strength and secrecy of the passphrase The design of WPA is based on a Draft 3 of the IEEE 802 111 standard Wikipedia WPA Radius WPS WTR WPA Radius is an acronym for Wi Fi Protected Access Radius 802 1X authentication server WPA was designed to enhance the security of wireless networks There are two flavors of WPA enterprise and personal Enterprise is meant for use with an IEEE 802 1 X authentication server which distributes different keys to each user Personal WPA utilizes less scalable pre shared key PSK mode where every allowed computer is given the same passphrase In PSK mode security depends on the strength and secrecy of the passphrase The design of WPA is based on a Draft 3 of the IEEE 802 111 standard Wikipedia WPS is an acronym for Wi Fi Protected Setup It is a standard for easy and secure establishment of a wireless home network The goal of the WPS protocol is to
45. e IGMP snooping unregistered flood operation Syntax IGMP Flooding enableldisable Parameters enable Enable IGMP flooding disable Disable IGMP flooding default Show IGMP flood mode 10 8 Groups IGMP gt Groups help Description Show IGMP groups 273 Syntax IGMP Groups lt vid gt Parameters lt vid gt VLAN ID 1 4095 10 9 Status IGMP gt Status help Description Show IGMP status Syntax IGMP Status lt vid gt Parameters lt vid gt VLAN ID 1 4095 74 11 LACP Link Aggregation Control Protocol Available Commands LACP Configuration lt port_list gt LACP Mode lt port_list gt enableldisable LACP Key lt port_list gt lt key gt LACP Role lt port_list gt activelpassive LACP Status lt port_list gt LACP Statistics lt port_list gt clear 11 1 Configuration LACP gt Configuration help Description Show LACP configuration Syntax LACP Configuration lt port_list gt Parameters lt port_list gt Port list or all default All ports 11 2 Mode LACP gt Mode help Description Set or show LACP mode Syntax LACP Mode lt port_list gt enableldisable Parameters lt port_list gt Port list or all default All ports enable Enable LACP protocol disable Disable LACP protocol default Show LACP mode 11 3 Key LACP gt Key help 75 Description Set or show the LACP key Syntax LACP Key
46. e parameters of the SFP such as optical output power optical input power temperature laser bias current and transceiver supply voltage SHA is an acronym for Secure Hash Algorithm It designed by the National Security Agency NSA and published by the NIST as a U S Federal Information Processing Standard Hash algorithms compute a fixed length digital representation known as a message digest of an input data sequence the message of any length A shaper can limit the bandwidth of transmitted frames It is located after the ingress queues SMTP is an acronym for Simple Mail Transfer Protocol It is a text based protocol that uses the Transmission Control Protocol TCP and provides a mail service modeled on the FTP file transfer service SMTP transfers mail messages between systems and notifications regarding incoming mail 112 SNTP SNMP is an acronym for Simple Network Management Protocol It is part of the Transmission Control Protocol Internet Protocol TCP IP protocol for network management SNMP allow diverse network objects to participate in a network management architecture It enables network management systems to learn network problems by receiving traps or change notices from network devices implementing SNMP SNTP is an acronym for Simple Network Time Protocol a network protocol for synchronizing the clocks of computer systems SNTP uses UDP datagrams as transport layer SPROUT SSID SSH SSM
47. eamless integration between UNIX and Microsoft Windows machines Samba acts as file and print servers for Microsoft Windows IBM OS 2 and other SMB client machines Samba uses the Server Message Block SMB protocol and Common Internet File System CIFS which is the underlying protocol used in 111 SFP Microsoft Windows networking Samba can be installed on a variety of operating system platforms including Linux most common Unix platforms OpenVMS and IBM OS 2 Samba can also register itself with the master browser on the network so that it would appear in the listing of hosts in Microsoft Windows Neighborhood Network SFP Small form factor pluggable is a compact hot pluggable transceiver used for both telecommunication and data communications applications It interfaces a network device mother board for a switch router media converter or similar device to a fiber optic or copper networking cable It is a popular industry format supported by many network component vendors SFP transceivers are designed to support SONET Gigabit Ethernet Fiber Channel and other communications standards SFP DDM SHA Shaper SMTP SNMP DDM Digital Diagnostics Monitoring Modern optical SFP transceivers support digital diagnostics monitoring DDM functions according to the industry standard SFF 8472 This feature is also known as digital optical monitoring DOM This feature gives the end user the ability to monitor real tim
48. eeseeeeneeeeeeeeeeseaeenseeeeseeeeeseaeeaseeneneneeneas 78 12 1 COmiqUiat n s Aerts Gat scat aa ra 78 V2 A O E 78 E A Po 79 12 4 Interval lt tervalo oooiiiai doce ee cceeas tau snliaectane dela roeteeneiaanteaeabaltaadedaads 79 1225 FO O A ee aie aay 79 12 0 OVA a cated ek tees tat a oad ead aca arnt tats hades ad ead eee ete nade ere 80 Ue RGM oe dene sttacccecact cat a cecal eet eate tans bits a aa a aaa 80 12 8 Statisti S PPP On E E R E S 80 A AEA A T T 81 13 LLDPMED Link Layer Discovery Protocol Media oocoooocccocoooocccocooococonocconcnnnannnrnnnannnrnnnannnnnanas 82 131 COMU MM oia 82 A E E nas daha teed aaee ead tacit 82 A cavities a hat eben wae dheae ieee A Ma a ae 83 13 4 policy Id 84 19 PONCY add ist 84 13 6 port pOlICIES uns rio ESA riten 85 NSO FoR e A A TEE 86 13 8 Datu uti 86 A le scessencs cena teh tacit Gand E E E E ellen teed secedeltedabacaaees 87 13 TONIO O NI 87 13 11 debug _Med_tranSMit_VaP coocccccccncconnconncnnnncnnnnnnnnnnnnnnnnnonononnnonononnnoncnnnnnonnnns 87 14 QoS Quality Of Service oooocccononiccconnnccccconnccccnnnnncc cnn rca ercer rn 89 nO 89 VAS ClASSOS a E 89 14 3 Default cad dl cad aa a aaa E tee un tenance 90 TAA RAG DINO orodna Weeder cata et ecu tdanatenacbleaaidens Meet a Aa 90 14500 Portal ie 90 A On ee eer eee eee 91 147 RICE Dell aora s 92 A Meagan sek uaa de aa TE 92 VAD MONG citar dorada 92 ATONEN eoe a a 93 14 11 Rate LImMtEr o ae 93 14 12 Pico 93 14
49. enableldisable Parameters lt port_list gt Port list or all default All ports app enable Enable VLAN ingress filtering disable Disable VLAN ingress filtering default Show VLAN ingress filtering 6 6 Add VLAN gt Add help Description Add or modify VLAN entry Syntax VLAN Add lt vid gt lt port_list gt Parameters lt vid gt VLAN ID 1 4095 lt port_list gt Port list or all default All ports 6 7 Delete VLAN gt Delete help Description Delete VLAN entry Syntax VLAN Delete lt vid gt Parameters lt vid gt VLAN ID 1 4095 6 8 Lookup VLAN gt Lookup help Description Lookup VLAN entry Syntax VLAN Lookup lt vid gt Parameters lt vid gt VLAN ID 1 4095 default Show all VLANs 28 6 9 Status VLAN gt Status help Description VLAN Port Configuration Status Syntax VLAN Status lt port_list gt combinedIstaticlnasImstplalllconflicts Parameters lt port_list gt Port list or all default All ports combined combined VLAN Users configuration static Static port configuration nas NAS port configuration mstp MSTP port configuration all All VLAN Users configuration default combined VLAN Users configuration 29 7 PVLAN Private VLAN Available Commands PVLAN Configuration lt port_list gt PVLAN Add lt pvlan_id gt lt port_list gt PVLAN Delete lt pvlan_id gt PVLAN Lookup lt p
50. ent age time 8 2 2 8 Holdtime Security Network NAS gt Holdtime help Description 52 Time in seconds before a MAC address that failed authentication gets a new authentication chance Syntax Security Network NAS Holdtime lt hold_time gt Parameters lt hold_time gt Hold time before MAC addresses that failed authentication expire default Show current hold time 8 2 2 9 Authenticate Security Network NAS gt Authenticate help Description Refresh restart 802 1X authentication process Syntax Security Network NAS Authenticate lt port_list gt now Parameters lt port_list gt Port list or all default All ports now Force re authentication immediately 8 2 2 10 Statistics Security Network NAS gt Statistics help Description Show or clear 802 1X statistics Syntax Security Network NAS Statistics lt port_list gt clearleapollradius Parameters lt port_list gt Port list or all default All ports clear Clear statistics eapol Show EAPOL statistics radius Show Backend Server statistics default Show all statistics 53 8 2 3 ACL Access Control List Available Commands Security Network ACL Configuration lt port_list gt Security Network ACL Action lt port_list gt permitldeny lt rate_limiter gt lt port_copy gt lt logging gt lt shutdown gt Security Network ACL Policy lt port_list gt lt policy gt
51. ers lt index gt entry index 1 64 8 1 5 31 View Lookup Security Switch SNMP gt View Lookup help Description Lookup SNMPv3 view entry Syntax Security Switch SNMP View Lookup lt index gt Parameters lt index gt entry index 1 64 8 1 5 32 Access Add 47 Security Switch SNMP gt Access Add help Description Add or modify SNMPv3 access entry The entry index key are lt group_name gt lt security_model gt and lt security_level gt Syntax Security Switch SNMP Access Add lt group_name gt lt security_model gt lt security_level gt lt read_view_name gt lt write_view_name gt Parameters lt group_name gt A string identifying the group name that this entry should belong to lt security_model gt any Accepted any security model v1lv2clusm vi Reserved for SNMPv1 v2c Reserved for SNMPv2c usm User based Security Model USM lt security_level gt noAuthNoPriv None authentication and none privacy AuthNoPriv Authentication and none privacy AuthPriv Authentication and privacy lt read_view_name gt The name of the MIB view defining the MIB objects for which this request may request the current values lt write_view_name gt The name of the MIB view defining the MIB objects for which this request may potentially SET new values 8 1 5 33 Access Delete Security Switch SNMP gt Access Delete help Description Delete SNMPv3 access entry Syntax
52. est effort system which means that no packet of information sent over it is assured to reach its destination in the same condition it was sent Each device connected to a Local Area Network LAN or Wide Area Network WAN is given an Internet Protocol address and this IP address is used to identify the device uniquely among all other devices connected to the extended network The current version of the Internet protocol is IPv4 which has 32 bits Internet Protocol addresses allowing for in excess of four billion unique addresses This number is reduced drastically by the practice of webmasters taking addresses in large blocks the bulk of which remain unused There is a rather substantial movement to adopt a new version of the Internet Protocol IPv6 which would have 128 bits Internet Protocol addresses This number can be represented roughly by a three with thirty nine zeroes after it However IPv4 is still the protocol of choice for most of the Internet IPMC IPMC is an acronym for IP MultiCast IP Source Guard IP Source Guard is a secure feature used to restrict IP traffic on DHCP snooping untrusted ports by filtering traffic based on the DHCP Snooping Table or manually configured IP Source Bindings It helps prevent IP spoofing attacks when a host tries to spoof and use the IP address of another host L LACP LACP is an IEEE 802 3ad standard protocol The Link Aggregation Control Protocol allows bundling several physical ports together to
53. eyword port Port ACE keyword lt port gt Port number policy Policy ACE keyword lt policy gt Policy number 1 8 lt vid gt VLAN ID 1 4095 or any lt tag_prio gt VLAN tag priority 0 7 or any lt dmac_type gt DMAC type anylunicastlmulticastlbroadcast etype Ethernet Type keyword lt etype gt Ethernet Type or any lt smac gt Source MAC address XX XX XX XX XX XX or any lt dmac gt Destination MAC address Xxx XX XX XX XX XX or any 56 arp lt sip gt lt dip gt lt arp_opcode gt lt arp_flags gt ip lt protocol gt lt ip_flags gt icmp lt icmp_type gt lt icmp_code gt udp lt sport gt lt dport gt tcp lt tcp_flags gt permit deny lt rate_limiter gt lt port_copy gt lt logging gt lt shutdown gt 8 2 3 6 Delete ARP keyword Source IP address a b c d n or any Destination IP address a b c d n or any ARP operation code anylarplrarplother ARP flags requestlsmacltmacllenliplether Ol1lany IP keyword IP protocol number 0 255 or any IP flags ttlloptionslfragment Ol1lany ICMP keyword ICMP type number 0 255 or any ICMP code number 0 255 or any UDP keyword Source UDP TCP port range 0 65535 or any Destination UDP TCP port range 0 65535 or any TCP keyword TCP flags finlsynirstlpshlacklurg 0l1lany Permit forwarding default Deny forwarding Rate limiter
54. form Mode Security Switch SNMP gt Trap Inform Mode help Description Set or show the SNMP trap inform mode 40 Syntax Security Switch SNMP Trap Inform Mode enableldisable Parameters enable Enable SNMP trap inform disable Disable SNMP trap inform default Show SNMP inform mode 8 1 5 13 Trap Inform Timeout Security Switch SNMP gt Trap Inform Timeout help Description Set or show the SNMP trap inform timeout usecs Syntax Security Switch SNMP Trap Inform Timeout lt timeout gt Parameters lt timeout gt SNMP trap inform timeout 0 2147 seconds default Show SNMP trap inform timeout 8 1 5 14 Trap Inform Retry Times Security Switch SNMP gt Trap Inform Retry Times help Description Set or show the SNMP trap inform retry times Syntax Security Switch SNMP Trap Inform Retry Times lt retries gt Parameters lt retries gt SNMP trap inform retransmited times 0 255 default Show SNMP trap inform retry times 41 8 1 5 15 Trap Probe Security Engine ID Security Switch SNMP gt Trap Probe Security Engine ID help Description Show SNMP trap security engine ID probe mode Syntax Security Switch SNMP Trap Probe Security Engine ID enableldisable Parameters enable Enable SNMP trap security engine ID probe disable Disable SNMP trap security engine ID probe default Show SNMP trap security engine ID probe mode 8 1 5 16 Trap Security En
55. form a single logical port LLDP 106 LOC M LLDP is an IEEE 802 1ab standard protocol The Link Layer Discovery Protocol is used for network discovery and works by having the units in the network exchanging information with their neighbors using LLDP frames LOC is an acronym for Loss Of Connectivity and is detected by a MEP and is indicating lost connectivity in the network Can be used as a switch criteria by EPS MAC Table MEP MD5 Switching of frames is based upon the DMAC address contained in the frame The switch builds up a table that maps MAC addresses to switch ports for knowing which ports the frames should go to based upon the DMAC address in the frame This table contains both static and dynamic entries The static entries are configured by the network administrator if the administrator wants to do a fixed mapping between the DMAC address and switch ports The frames also contain a MAC address SMAC address which shows the MAC address of the equipment sending the frame The SMAC address is used by the switch to automatically update the MAC table with these dynamic MAC addresses Dynamic entries are removed from the MAC table if no frame with the corresponding SMAC address have been seen after a configurable age time MEP is an acronym for Maintenance Entity Endpoint and is an endpoint in a Maintenance Entity Group ITU T Y 1731 MDS is an acronym for Message Digest algorithm 5 MDS is a message dige
56. gine ID Security Switch SNMP gt Trap Security Engine ID help Description Set or show SNMP trap security engine ID Syntax Security Switch SNMP Trap Security Engine ID lt engineid gt Parameters lt engineid gt Engine ID the format may not be all zeros or all ffH and is restricted to 5 32 octet string 8 1 5 17 Trap Security Name Security Switch SNMP gt Trap Security Name help Description Set or show SNMP trap security name Syntax Security Switch SNMP Trap Security Name lt security_name gt Parameters lt security_name gt A string representing the security name for a principal default Show SNMP trap security name 42 8 1 5 18 Engine ID Security Switch SNMP gt Engine ID help Description Set or show SNMPv3 local engine ID Syntax Security Switch SNMP Engine ID lt engineid gt Parameters lt engineid gt Engine ID the format may not be all zeros or all ffH and is restricted to 5 32 octet string 8 1 5 19 Community Add Security Switch SNMP gt Community Add help Description Add or modify SNMPv3 community entry The entry index key is lt community gt Syntax Security Switch SNMP Community Add lt community gt lt ip_addr gt lt ip_mask gt Parameters lt community gt Community string lt ip_addr gt IP address a b c d default Show IP address lt ip_mask gt IP subnet mask a b c d default Show IP mask 8 1 5 20
57. h switch is shown on the display on the front of the switch and 113 SyncE E is used widely in the web pages as well as in the CLI commands SyncE Is an abbreviation for Synchronous Ethernet This functionality is used to make a network clock frequency synchronized Not to be confused with real time clock synchronized IEEE 1588 TACACS TACACS is an acronym for Terminal Acess Controller Access Control System Plus It is a networking protocol which provides access control for routers network access servers and other networked computing devices via one or more centralized servers TACACS provides separate authentication authorization and accounting services Tag Priority TCP Tag Priority is a 3 bit field storing the priority level for the 802 1Q frame TCP is an acronym for Transmission Control Protocol It is a communications protocol that uses the Internet Protocol IP to exchange the messages between computers The TCP protocol guarantees reliable and in order delivery of data from sender to receiver and distinguishes data for multiple connections by concurrent applications for example Web server and e mail server running on the same host The applications on networked hosts can use TCP to create connections to one another It is known as a connection oriented protocol which means that a connection is established and maintained until such time as the message or messages to be exchanged by the application pr
58. half of the client default Show 802 1X state 8 2 2 4 Reauthentication Security Network NAS gt Reauthentication help Description Set or show Reauthentication enabledness Syntax Security Network NAS Reauthentication enableldisable Parameters enable Enable reauthentication disable Disable reauthentication default Show current reauthentication mode 8 2 2 5 ReauthPeriod Security Network NAS gt ReauthPeriod help Description 51 Set or show the period between reauthentications Syntax Security Network NAS ReauthPeriod lt reauth_period gt Parameters lt reauth_period gt Period between reauthentications 1 3600 seconds default Show current reauthentication period 8 2 2 6 EapolTimeout Security Network NAS gt EapolTimeout help Description Set or show the time between EAPOL retransmissions Syntax Security Network NAS EapolTimeout lt eapol_timeout gt Parameters lt eapol_timeout gt Time between EAPOL retransmissions 1 65535 seconds default Show current EAPOL retransmission timeout 8 2 2 7 Agetime Security Network NAS gt Agetime help Description Time in seconds between check for activity on successfully authenticated MAC addresses Syntax Security Network NAS Agetime lt age_time gt Parameters lt age_time gt Time between checks for activity on a MAC address that succeeded authentication default Show curr
59. haracter must not be a minus sign 2 3 Contact System gt Contact help Description Set or show the system contact Syntax System Contact lt contact gt Parameters we lt contact gt System contact string Use clear or to clear the string Note No blank or space characters are permitted as part of a contact only in CLI 2 4 Location System gt Location help Description Set or show the system location Syntax System Location lt location gt Parameters we lt location gt System location string Use clear or to clear the string Note In CLI no blank or space characters are permitted as part of a contact 2 5 Timezone System gt Timezone help Description Set or show the system time zone offset Syntax 13 System Timezone lt offset gt Parameters lt offset gt Time zone offset in minutes 720 to 720 relative to UTC 2 6 Reboot System gt Reboot help Description Reboot the system Syntax System Reboot 2 7 Restore Default System gt Restore Default help Description Restore factory default configuration Syntax System Restore Default keep_ip Parameters keep_ip Keep IP configuration default Restore full configuration 2 8 Load System gt Load help Description Show current CPU load 100ms 1s and 10s running average in percent zero is idle Syntax System Load 2 9 Log System gt Log
60. help Description Show or clear the system log 14 Syntax System Log lt log_id gt alllinfolwarninglerror clear Parameters lt log_id gt System log ID or range default All entries all Show all levels default info Show information warning Show warnings error Show errors clear Clear log 15 3 IP IP configuration and Ping Available Commands IP Configuration IP DHCP enableldisable IP Setup lt ip_addr gt lt ip_mask gt lt ip_router gt lt vid gt IP Ping lt ip_addr_string gt lt ping_length gt IP SNTP lt ip_addr_string gt 3 1 Configuration IP gt Configuration help Description Show IP configuration Syntax IP Configuration 3 2 DHCP IP gt DHCP help Description Set or show the DHCP client mode Syntax IP DHCP enableldisable Parameters enable Enable or renew DHCP client disable Disable DHCP client 3 3 Setup IP gt Setup help Description Set or show the IP setup Syntax IP Setup lt ip_addr gt lt ip_mask gt lt ip_router gt lt vid gt 16 Parameters lt ip_addr gt IP address a b c d default Show IP address lt ip_mask gt IP subnet mask a b c d default Show IP mask lt ip_router gt IP router a b c d default Show IP router lt vid gt VLAN ID 1 4095 default Show VLAN ID 3 4 Ping IP gt Ping help Description Ping IP address ICMP echo Syntax IP Ping lt
61. id gt MAC Lookup lt mac_addr gt lt vid gt MAC Agetime lt age_time gt MAC Learning lt port_list gt autoldisablelsecure MAC Dump lt mac_max gt lt mac_addr gt lt vid gt MAC Statistics lt port_list gt MAC Flush 5 1 Configuration MAC gt Configuration help Description Show MAC address table configuration Syntax MAC Configuration lt port_list gt Parameters lt port_list gt Port list or all default All ports 5 2 Add MAC gt Add help Description Add MAC address table entry Syntax MAC Add lt mac_addr gt lt port_list gt lt vid gt Parameters lt mac_addr gt MAC address XxX XX XX XX XX XX lt port_list gt Port list or all or none lt vid gt VLAN ID 1 4095 default 1 ape 5 3 Delete MAC gt Delete help Description Delete MAC address entry Syntax MAC Delete lt mac_addr gt lt vid gt Parameters lt mac_addr gt MAC address xx XX XX XX XX XX lt vid gt VLAN ID 1 4095 default 1 5 4 Lookup MAC gt Lookup help Description Lookup MAC address entry Syntax MAC Lookup lt mac_addr gt lt vid gt Parameters lt mac_addr gt MAC address xx XX XX XX XX XX lt vid gt VLAN ID 1 4095 default 1 5 5 Agetime MAC gt Agetime help Description Set or show the MAC address age timer Syntax MAC Agetime lt age_time gt Parameters lt age_time gt MAC address age time 0
62. ions can be quite complex for example when the ACEs are prioritized for the various situation In networking the ACL refers to a list of service ports or network services that are available on a host or server each with a list of hosts or servers permitted or denied to use the service ACL can generally be configured to control inbound traffic and in this context they are similar to firewalls There are 3 web pages associated with the manual ACL configuration ACLlAccess Control List The web page shows the ACEs in a prioritized way highest top to lowest bottom Default the table is empty An ingress frame will only get a hit on one ACE even though there are more matching ACEs The first matching ACE will take action permit deny on that frame and a counter associated with that ACE is incremented An ACE can be associated with a Policy 1 ingress port or any ingress port the whole switch If an ACE Policy is created then that Policy can be associated with a group of ports under the Ports web page There are number of parameters that can be configured with an ACE Read the Web page help text to get further information for each of them The maximum number of ACEs is 64 ACLIPorts The ACL Ports configuration is used to assign a Policy ID to an ingress port This is useful to group ports to obey the same traffic rules Traffic Policy is created under the Access Control List page You can you also set up 100 specific traffic
63. lete lt vid gt VLAN Lookup lt vid gt VLAN Status lt port_list gt combinedIstaticinasImstplalllconflicts 6 1 Configuration VLAN gt Configuration help Description Show VLAN configuration Syntax VLAN Configuration lt port_list gt Parameters lt port_list gt Port list or all default All ports 6 2 Aware VLAN gt Aware help Description Set or show the port VLAN awareness Syntax VLAN Aware lt port_list gt enableldisable Parameters lt port_list gt Port list or all default All ports enable Enable VLAN awareness disable Disable VLAN awareness default Show VLAN awareness 26 6 3 PVID VLAN gt PVID help Description Set or show the port VLAN ID Syntax VLAN PVID lt port_list gt lt vid gt Inone Parameters lt port_list gt Port list or all default All ports lt vid gt Inone Port VLAN ID 1 4095 or none default Show port VLAN ID 6 4 FrameType VLAN gt FrameType help Description Set or show the port VLAN frame type Syntax VLAN FrameType lt port_list gt allltagged Parameters lt port_list gt Port list or all default All ports all Allow tagged and untagged frames tagged Allow tagged frames only default Show accepted frame types 6 5 IngressFilter VLAN IngressFilter help Description Set or show the port VLAN ingress filter Syntax VLAN IngressFilter lt port_list gt
64. longitudelaltitude northlsouthlwestleastlmeters Ifloor coordinate_value Parameters latitude Latitude 0 to 90 degrees with max 4 digits Positive numbers are north of the equator and negative numbers are south of the equator longitude Longitude 0 to 180 degrees with max 4 digits Positive values are East of the prime meridian and negative numbers are West of the prime meridian altitude Altitude Meters or floors with max 4 digits default Show coordinate location configuration northlsouthlwestleastlmeterslfloor North North Valid for latitude South South Valid for latitude West West Valid for longitude East East Valid for longitude Meters Meters Valid for altitude Floor Floor Valid for altitude coordinate_value Coordinate value 13 8 Datum LLDPMED gt Datum help Description 86 Set or show LLDP MED Coordinates map datum Syntax LLDPMED Datum wgs84Inad83_navd88Inad83_mllw Parameters wgs84Inad83_navd88Inad83_mllw WGS84 nad83_navd88 NAD83_NAVD88 nad83_mllw NAD83_MLLW 13 9 Fast LLDPMED gt Fast help Description Set or show LLDP MED Fast Start Repeat Count Syntax LLDPMED Fast lt count gt Parameters lt count gt The number of times the fast start LLDPDU are being sent during the activation of the fast start mechanism defined by LLDP MED 1 10 13 10 Info LLDPMED gt Info help Description Show LLDP MED neighbor device inf
65. n e mail clients and servers support both PPPoE PPPoE is an acronym for Point to Point Protocol over Ethernet It is a network protocol for encapsulating Point to Point Protocol PPP frames inside Ethernet frames It is used mainly with ADSL services where individual users connect to the ADSL transceiver modem over Ethernet and in plain Metro Ethernet networks Wikipedia Private VLAN In a private VLAN communication between ports in that private VLAN is not 109 QCE QCL QL QoS permitted A VLAN can be configured as a private VLAN QCE is an acronym for QoS Control Entry It describes QoS class associated with a particular QCE ID There are six QCE frame types Ethernet Type VLAN UDP TCP Port DSCP TOS and Tag Priority Frames can be classified by one of 4 different QoS classes Low Normal Medium and High for individual application QCL is an acronym for QoS Control List It is the list table of QCEs containing QoS control entries that classify to a specific QoS class on specific traffic objects Each accessible traffic object contains an identifier to its QCL The privileges determine specific traffic object to specific QoS class QL In SyncE this is the Quality Level of a given clock source This is received on a port in a SSM indicating the quality of the clock received in the port QoS is an acronym for Quality of Service It is a method to guarantee a bandwidth relationship between individual
66. nces supporting real time interactive video audio services Streaming Video for use by broadcast or multicast based video content distribution and other similar applications supporting streaming video services that require specific network policy treatment Video applications relying on TCP with buffering would not be an intended use of this application type Video Signaling conditional for use in network topologies that require a separate policy for the video signaling than for the video media The device is using tagged frames The device is using untagged frames VLAN id This field may specify one of eight priority levels 0 through 7 as defined by IEEE 802 1D 2004 3 This field shall contain the DSCP value to be used to provide Diffserv node behavior for the specified application type as defined in IETF RFC 2474 5 This 6 bit field may contain one of 64 code point values 0 through 63 A value of O represents use of the default DSCP value as defined in RFC 2475 13 6 port policies LLDPMED gt port policies help Description Set or show LLDP MED port policies 85 Syntax LLDPMED port policies lt port_list gt lt policy_list gt Parameters lt port_list gt Port list or all default All ports lt policy_list gt List of policies to delete 13 7 Coordinates LLDPMED gt Coordinates help Description Set or show LLDP MED Location Syntax LLDPMED Coordinates latitudel
67. ns 22 5 1 Configuratii di cds 22 De Aa 22 O lt 3 aaere cee datsind heey secant eee Uae cae nha Meee cece detain ehh ays Laake deena coeaenardey gaat 23 AA sleds EANA EAE oa Saa AEA hile DAA EDARAN AAK EAREN anete 23 O LAMA dia 23 bi UNM Olathe hese etaceaad aeech caren A tacit eens E state ence iahe ET 24 5 8 MAS ds 24 AS a ea 25 6 VEAN Virtual LAN ls 26 6 1 Configura OM pa aea aaa 26 02 AWA a A A AA 26 A a a ewan ied e tec dese ren a AAEE 27 64A Framelype retea a agian dares ENE 27 6 5 Ingres li ia 27 ONDA AAA 28 67 DGGE cuidate ind 28 A A E tren re nat rey OPN err rer rey area Er ge ren ren Srrerr errr cer cere 28 6 9 SLATS o 29 7 PULAN Private VEAN iii a dd a a ia 30 7 1 OMUOUPAN OM ei dnd otr 30 DA a wees lovenen E E 30 TS DCIOL Gs ici 30 A AN 31 AN A EEE TTT T 31 8 Security Security management sssssensssnnsnunununnnnnnnunnnnnn nunen nnnnnnnnnnnnnnnn nunn nnnnnnnnnnnn nnan nn nnana 32 8 1 Switch Switch security ur pia 32 A oiae a E a a ea ea EAA E EARE E Se 32 8 1 2 Auth A thentication jeier aaar a E E NE S E 32 91 21 COMU nadie rias 32 A EN 33 8 1 3 SSH Secure Shell iii a 33 ata COMU ION oia 33 8 1 3 2 Mode enable disablOl costat 34 8 1 4 HTTPS Hypertext Transfer Protocol over Secure Socket Layen ooooooooccccnnococcccccanns 35 8 LAT GOMA oe 35 e esses odoag eaencie E S T 35 A TT 35 8 1 5 SNMP Simple Network Management Protocol oooooccccnnnccccccccoccccccconanaccncnnnnos 36 8
68. number 1 15 or disable Port number for copy of frames or disable System logging of frames logllog_disable Shut down ingress port shutlshut_disable Security Network ACL gt Delete help Description Delete ACE Syntax Security Network ACL Delete lt ace_id gt Parameters lt ace_id gt 8 2 3 7 Lookup ACE ID 1 128 Security Network ACL gt Lookup help Description 57 Show ACE default All ACEs Syntax Security Network ACL Lookup lt ace_id gt Parameters lt ace_id gt ACE ID 1 128 8 2 3 8 Clear Security Network ACL gt Clear help Description Clear all ACL counters Syntax Security Network ACL Clear 8 2 3 9 Status Security Network ACL gt Status help Description Show ACL status Syntax Security Network ACL Status combined staticlconflicts Parameters combined Shows the combined status static Shows the static user configured status conflicts Shows all conflict status default Shows the combined status 8 3 AuthServer Authentication Server Configuration Available Commands Security AAA Configuration Security AAA Timeout lt timeout gt Security AAA Deadtime lt dead_time gt Security AAA RADIUS lt server_index gt enableldisable lt ip_addr_string gt lt secret gt lt server_port gt 58 Security AAA Statistics lt server_index gt 8 3 1 Configuration Security AAA
69. ograms at each end have been exchanged TCP is responsible for ensuring that a message is divided into the packets that IP manages and for reassembling the packets back into the complete message at the other end Common network applications that use TCP include the World Wide Web WWW e mail and File Transfer Protocol FTP TELNET TELNET is an acronym for TELetype NETwork It is a terminal emulation protocol that uses the Transmission Control Protocol TCP and provides a virtual connection between TELNET server and TELNET client TELNET enables the client to control the server and communicate with other servers on the network To start a Telnet session the client user must log in to a server by entering a valid username and password Then the client user can 114 TFTP ToS TLV TKIP UDP enter commands through the Telnet program just as if they were entering commands directly on the server console TFTP is an acronym for Trivial File Transfer Protocol It is transfer protocol that uses the User Datagram Protocol UDP and provides file writing and reading but it does not provides directory service and security features ToS is an acronym for Type of Service It is implemented as the IPv4 ToS priority control It is fully decoded to determine the priority from the 6 bit ToS field in the IP header The most significant 6 bits of the ToS field are fully decoded into 64 possibilities and the singular code that result
70. om the target PoE PoE is an acronym for Power Over Ethernet Power Over Ethernet is used to transmit electrical power to remote devices over standard Ethernet cable It could for example be used for powering IP telephones wireless LAN access points and other equipment where it would be difficult or expensive to connect the equipment to main power supply Policer A policer can limit the bandwidth of received frames It is located in front of the ingress queue POP3 POP3 is an acronym for Post Office Protocol version 3 It is a protocol for email clients to retrieve email messages from a mail server POP3 is designed to delete mail on the server as soon as the user has downloaded it However some implementations allow users or an administrator to specify that mail be saved for some period of time POP can be thought of as a store and forward service An alternative protocol is Internet Message Access Protocol IMAP IMAP provides the user with more capabilities for retaining e mail on the server and for organizing it in folders on the server IMAP can be thought of as a remote file server POP and IMAP deal with the receiving of e mail and are not to be confused with the Simple Mail Transfer Protocol SMTP You send e mail with SMTP and a mail handler receives it on your recipient s behalf Then the mail is read using POP or IMAP IMAP4 and POP3 are the two most prevalent Internet standard protocols for e mail retrieval Virtually all moder
71. one_voicelvideo_conferencinglstreaming_videolvideo_signaling taggedluntagged lt vlan_id gt lt 12_priority gt lt dscp gt LLDPMED port policies lt port_list gt lt policy_list gt LLDPMED Coordinates latitudellongitudelaltitude northlsouthlwestleastlmeterslfloor coordinate_value LLDPMED Datum wgs84Inad83_navd88Inad83_mllw LLDPMED Fast lt count gt LLDPMED Info lt port_list gt LLDPMED debug_med_transmit_var lt port_list gt enableldisable 13 1 Configuration LLDPMED gt Configuration help Description Show LLDP MED configuration Syntax LLDPMED Configuration lt port_list gt Parameters lt port_list gt Port list or all default All ports 13 2 Civic LLDPMED gt Civic help Description Set or show LLDP MED Civic Address Location 82 Syntax LLDPMED Civic countrylstatelcountylcityldistrictlblockIstreetlleading_street_di rectionltrailing_street_suffixIstr_suflhouse_nolhouse_no_suffixllandmarkladditio nal_infolnamelzip_codelbuildinglapartmentlfloorlroom_numberlplace_typelpostal_co m_namelp_o_boxladditional_code lt civic_value gt Parameters country state county city district block street leading_street_direction trailing _street_suffix str_suf house_no house_no_ suffix landmark additional_info name zip_code building apartment floor room_number place_type postal_com_name _0_box additional_code Country
72. ormation Syntax LLDPMED Info lt port_list gt Parameters lt port_list gt Port list or all default All ports 13 11 debug_med_transmit_var LLDPMED gt debug_med_transmit_var help 87 Description Set or show if the current value of the global medTansmitEnable variable Section Section 11 2 1 TIA 1057 Syntax LLDPMED debug_med_transmit_var lt port_list gt enableldisable Parameters lt port_list gt Port list or all default All ports enable Enable Set medTansmitEnable variable to true disable Disable Set medTansmitEnable variable to false default Show medTansmitEnable variable value 88 14 QoS Quality of Service Available Commands QoS Configuration lt port_list gt QoS Classes lt class gt QoS Default lt port_list gt lt class gt QoS Tagprio lt port_list gt lt tag_prio gt QoS QCL Port lt port_list gt lt qcl_id gt QoS QCL Add lt qcl_id gt lt qce_id gt lt qce_id_next gt etype lt etype gt vid lt vid gt port lt udp_tcp_port gt dscp lt dscp gt tos lt tos_list gt tag_prio lt tag_prio_list gt lt class gt QoS QCL Delete lt qcl_id gt lt qce_id gt QoS QCL Lookup lt qcl_id gt lt qce_id gt QoS Mode lt port_list gt strictlweighted QoS Weight lt port_list gt lt class gt lt weight gt QoS Rate Limiter lt port_list gt enableldisable lt bit_rate gt QoS
73. ort_list gt Port list or all default All ports enable Enable all power control disable Disable all power control actiphy Enable ActiPHY power control dynamic Enable Dynamic power control 4 7 Excessive Port gt Excessive help Description Set or show the port excessive collision mode Syntax Port Excessive lt port_list gt discardlrestart Parameters lt port_list gt Port list or all default All ports discard Discard frame after 16 collisions restart Restart back off algorithm after 16 collisions default Show mode 20 4 8 Statistics Port gt Statistics help Description Show port statistics Syntax Port Statistics lt port_list gt lt command gt Parameters lt port_list gt Port list or all default All ports lt command gt The command parameter takes the following values clear Clear port statistics packets Show packet statistics bytes Show byte statistics errors Show error statistics discards Show discard statistics filtered Show filtered statistics low Show low priority statistics normal Show normal priority statistics medium Show medium priority statistics high Show high priority statistics default Show all port statistics 221 5 MAC MAC address table Available Commands MAC Configuration lt port_list gt MAC Add lt mac_addr gt lt port_list gt lt vid gt MAC Delete lt mac_addr gt lt v
74. phering operations which are based on a binary number called a key DHCP is an acronym for Dynamic Host Configuration Protocol It is a protocol used for assigning dynamic IP addresses to devices on a network DHCP used by networked computers clients to obtain IP addresses and other parameters such as the default gateway subnet mask and IP addresses of DNS servers from a DHCP server The DHCP server ensures that all IP addresses are unique for example no IP address is assigned to a second client while the first client s assignment is valid its lease has not expired Therefore IP address pool management is done by the server and not by a human network administrator Dynamic addressing simplifies network administration because the software keeps track of IP addresses rather than requiring an administrator to manage the task This means that a new computer can be added to a network without the hassle of manually assigning it a unique IP address DHCP Relay DHCP Relay is used to forward and to transfer DHCP messages between the clients and the server when they are not on the same subnet domain The DHCP option 82 enables a DHCP relay agent to insert specific information into a DHCP request packets when forwarding client DHCP packets to a DHCP server and remove the specific information from a DHCP reply packets when forwarding server DHCP packets to a DHCP client The DHCP server can use 102 this information to implement IP addre
75. pport for fiber port 100hdx 100 Mbps half duplex Not support for fiber port 100fdx 100 Mbps full duplex 18 1000fdx 1 Gbps full duplex Not support for fiber port auto Auto negotiation of speed and duplex default Show configured and current mode 4 3 FlowControl Port gt FlowControl help Description Set or show the port flow control mode Syntax Port Flow Control lt port_list gt enableldisable Parameters lt port_list gt Port list or all default All ports enable Enable flow control disable Disable flow control default Show flow control mode 4 4 State Port gt State help Description Set or show the port administrative state Syntax Port State lt port_list gt enableldisable Parameters lt port_list gt Port list or all default All ports enable Enable port disable Disable port default Show administrative mode 4 5 MaxFrame Port gt MaxFrame help Description Set or show the port maximum frame size 19 Syntax Port MaxFrame lt port_list gt lt max_frame gt Parameters lt port_list gt Port list or all default All ports lt max_frame gt Port maximum frame size 1518 9600 default Show maximum frame size 4 6 Power Port gt Power help Description Set or show the port PHY power mode Syntax Port Power lt port_list gt enableldisablelactiphyldynamic Parameters lt p
76. properties Action Rate Limiter Port copy etc for each ingress port They will though only apply if the frame gets past the ACE matching without getting matched In that case a counter associated with that port is incremented See the Web page help text for each specific port property ACLIRate Limiters Under this page you can configure the rate limiters There can be 15 different rate limiters each ranging from 1 1024K packets per seconds Under Ports and Access Control List web pages you can assign a Rate Limiter ID to the ACE s or ingress port s AES AES is an acronym for Advanced Encryption Standard The encryption key protocol is applied in 802 1i standard to improve WLAN security It is an encryption standard by the U S government which will replace DES and 3DES AES has a fixed block size of 128 bits and a key size of 128 192 or 256 bits APS APS is an acronym for Automatic Protection Switching This protocol is used to secure that switching is done bidirectional in the two ends of a protection group as defined in G 8031 Aggregation Use multiple ports in parallel to increase the link speed beyond the limits of a port and to increase the redundancy for higher availability Also Port Aggregation Link Aggregation ARP ARP is an acronym for Address Resolution Protocol It is a protocol that used to convert an IP address into a physical address such as an Ethernet address ARP allows a host to communicate with other hosts
77. ption Set or show MSTP configuration name and revision Syntax STP CName lt config name gt lt integer gt Parameters lt config name gt MSTP Configuration name A text string up to 32 characters long Use quotes to embed spaces in name lt integer gt Integer value 9 8 bpduFilter STP gt bpduFilter help 63 Description Set or show edge port BPDU Filtering Syntax STP bpduFilter enableldisable Parameters enableldisable enable or disable BPDU Filtering for Edge ports 9 9 bpduGuard STP gt bpduGuard help Description Set or show edge port BPDU Guard Syntax STP bpduGuard enableldisable Parameters enableldisable enable or disable BPDU Guard for Edge ports 9 10 recovery STP gt recovery help Description Set or show edge port error recovery timeout Syntax STP recovery lt timeout gt Parameters lt timeout gt Time before error disabled ports are re enabled 30 86400 seconds 0 disables default Show recovery timeout 9 11 Status STP gt Status help Description Show STP Bridge status Syntax STP Status lt msti gt lt port_list gt Parameters lt msti gt STP bridge instance no 0 7 CIST 0 MSTI1 1 lt port_list gt Port list or all default All ports 9 12 Msti Priority STP gt Msti Priority help Description Set or show the CIST MSTI bridge priority Syntax STP Msti Priority lt msti gt lt
78. r_port gt Server UDP port Use O to use the default RADIUS port 1812 8 3 5 Statistics Security AAA gt Statistics help Description Show RADIUS statistics Syntax Security AAA Statistics lt server_index gt Parameters lt server_index gt The server index 1 5 default Show RADIUS authentication server statistics 60 9 STP Spanning Tree Protocol Available Commands STP Configuration STP Version lt stp_version gt STP Txhold lt holdcount gt STP MaxHops lt maxhops gt STP MaxAge lt max_age gt STP FwdDelay lt delay gt STP CName lt config name gt lt integer gt STP bpduFilter enableldisable STP bpduGuard enableldisable STP recovery lt timeout gt STP Status lt msti gt lt port_list gt STP Msti Priority lt msti gt lt priority gt STP Msti Map lt msti gt clear STP Msti Add lt msti gt lt vid gt STP Port Configuration lt port_list gt STP Port Mode lt port_list gt enableldisable STP Port Edge lt port_list gt enableldisable STP Port AutoEdge lt port_list gt enableldisable STP Port P2P lt port_list gt enableldisablelauto STP Port Restricted Role lt port_list gt enableldisable STP Port RestrictedTcn lt port_list gt enableldisable STP Port bpduGuard lt port_list gt enableldisable STP Port Statistics lt port_list gt STP Port Mcheck lt port_list gt STP Msti Port Configuration lt
79. ration Syntax LLDP Configuration lt port_list gt Parameters lt port_list gt Port list or all default All ports 12 2 Mode LLDP gt Mode help Description Set or show LLDP mode Syntax LLDP Mode lt port_list gt enableldisablelrxltx Parameters lt port_list gt Port list or all default All ports enable Enable LLDP reception and transmission disable Disable LLDP 78 rx Enable LLDP reception only tx Enable LLDP transmission only default Show LLDP mode 12 3 Optional_TLV LLDP gt Optional_TLV help Description Set or show LLDP Optional TLVs Syntax LLDP Optional_TLV lt port_list gt port_descrlsys_namelsys_descrlsys_capalmgmt_add r enableldisable Parameters lt port_list gt Port list or all default All ports port_descr Description of the port sysm_name System name sys_descr Description of the system sys_capa System capabilities mgmt_addr Master s IP address default Show optional TLV s configuration enable Enables TLV disable Disable TLV default Show optional TLV s configuration 12 4 Interval lt interval gt LLDP gt Interval help Description Set or show LLDP Tx interval Syntax LLDP Interval lt interval gt Parameters lt interval gt LLDP transmission interval 5 32768 12 5 Hold 79 LLDP gt Hold help Description Set or show LLDP Tx hold value Syntax LLDP Hold lt hold
80. s Under this page you can configure the policer ingress and shaper egress rate for each port See the help page for details QoSIStorm Control Here you can limit the flooding in the switch i e the rate you choose applies to the whole switch Choose the mix of Unicast Multicast and Broadcast storm control See the help page for details R RARP RARP is an acronym for Reverse Address Resolution Protocol It is a protocol that is used to obtain an IP address for a given hardware address such as an Ethernet address RARP is the complement of arp RADIUS RADIUS is an acronym for Remote Authentication Dial In User Service It is a networking protocol that provides centralized access authorization and accounting management for people or computers to connect and use a network service RDI RDI is an acronym for Remote Defect Indication It is a QAM functionality that is used by a MEP to indicate defect detected to the remote peer MEP Router Port A router port is a port on the Ethernet switch that leads switch towards the Layer 3 multicast device RSTP In 1998 the IEEE with document 802 1w introduced an evolution of STP the Rapid Spanning Tree Protocol which provides for faster spanning tree convergence after a topology change Standard IEEE 802 1D 2004 now incorporates RSTP and obsoletes STP while at the same time being backwards compatible with STP S SAMBA Samba is a program running under UNIX like operating systems that provides s
81. s is compared against the corresponding bit in the IPv4 ToS priority control bit 0 63 TLV is an acronym for Type Length Value A LLDP frame can contain multiple pieces of information Each of these pieces of information is known as TLV TKIP is an acronym for Temporal Key Integrity Protocol It used in WPA to replace WEP with a new encryption algorithm TKIP comprises the same encryption engine and RC4 algorithm defined for WEP The key used for encryption in TKIP is 128 bits and changes the key used for each packet UDP is an acronym for User Datagram Protocol It is a communications protocol that uses the Internet Protocol IP to exchange the messages between computers UDP is an alternative to the Transmission Control Protocol TCP that uses the Internet Protocol IP Unlike TCP UDP does not provide the service of dividing a message into packet datagrams and UDP doesn t provide reassembling and sequencing of the packets This means that the application program that uses UDP must be able to make sure that the entire message has arrived and is in the right order Network applications that want to save processing time because they have very small data units to exchange may prefer UDP to TCP UDP provides two services not provided by the IP layer It provides port numbers to help distinguish different user requests and optionally a checksum capability to verify that the data arrived intact Common network applications that use UDP in
82. sec Port Security Status adi danita 49 8 2 O A O E a E 49 SL NAPO Mes 49 8 2 2 NAS Network Access Server IEEE 802 1X 00ooooonccccccncocccccccconccccccnnnnnccncnnnnns 50 E O A Mace San Aa elec 50 EAN OT E EE E A 50 8 223 Stale A O 51 8 2 2 4 Red thenticatiON iio cis 51 8 2 2 5 Rea thPeriod ii iii 51 8 2 2 0 EapolFiMeo Utani ula is 52 8 2 21 AG GUNG aara secs RAA Epa AA E E Aa Eana OAA AAAA aE a araa EAA Eais 52 AR A aloe AAE TE AA E E E T 52 8 2 2 9 Authenticate aa 53 A a deh tate A E a a deta aaah 53 823 ACL Access Control List icrada ai e a asters aee 54 A tnte nnnse tEn n neemen nenne 54 8 2 9 2 ACON PA e a T Aa ed yaaa goer hens Doan Ea Rona N a a Ei 54 alo ROM dida 55 29 AIO A O A 55 8 2 9 0 AG ad as 55 3 200 Delet art rs 57 A A a a a eae a eA A Sade sacks cats 57 AAEN A E E AE A E E E aan Cdeeaeanadeat 58 AS A O A E 58 8 3 AuthServer Authentication Server Configuration ooooccccnnnncccccnnnoccccccnnnacnncnnnnss 58 8 3 1 Configuration RCA PO o A tst ntEESeeEn nnne nnn nennen 59 8 3 2 IM dis 59 8 3 3 Dedos ii 59 8 3 4 NADIA et dee a 59 A E 60 9 STP Spanning Tree Protocol sccccceeeesceseeeeeseeeeeeeeeseaeseneeeeeeeeaeseaeseseeeeneeeeeeeesesnaesnseeeeneeeess 61 Oe COU MOURA OIA 2c EETA AEA E P este cl Medes anl Janel daca EE TTE 61 9 2 WOTSION PO iets steasebeniadelntetuens tela PNA EAR Zeraaneugausbaneetdevelg tess 62 O 62 O 62 SS Ls 2 0 4 20 a 62 OO FWODGIAY scan 63 OT CON AO 63 OB DPGU FING
83. snooping mode 71 10 3 State IGMP gt State help Description Set or show the IGMP snooping state for VLAN Syntax IGMP State lt vid gt enableldisable Parameters lt vid gt VLAN ID 1 4095 default Show all VLANs enable Enable IGMP snooping disable Disable IGMP snooping default Show IGMP snooping mode 10 4 Querier IGMP gt Querier help Description Set or show the IGMP snooping querier mode for VLAN Syntax IGMP Querier lt vid gt enableldisable Parameters lt vid gt VLAN ID 1 4095 default Show all VLANs enable Enable IGMP querier disable Disable IGMP querier default Show IGMP querier mode 10 5 Fastleave IGMP gt Fastleave help Description Set or show the IGMP snooping fast leave port mode Syntax IGMP Fastleave lt port_list gt enableldisable Parameters ap 2s lt port_list gt Port list or all default All ports enable Enable IGMP fast leave disable Disable IGMP fast leave default Show IGMP fast leave mode 10 6 Router IGMP gt Router help Description Set or show the IGMP snooping router port mode Syntax IGMP Router lt port_list gt enableldisable Parameters lt port_list gt Port list or all default All ports enable Enable IGMP router port disable Disable IGMP router port default Show IGMP router port mode 10 7 Flooding IGMP gt Flooding help Description Set or show th
84. ss or other assignment policies Specifically the option works by setting two sub options Circuit ID option 1 and Remote ID option2 The Circuit ID sub option is supposed to include information specific to which circuit the request came in on The Remote ID sub option was designed to carry information relating to the remote host end of the circuit The definition of Circuit ID in the switch is 4 bytes in length and the format is vlan_id module_id port_no The parameter of vlan_id is the first two bytes represent the VLAN ID The parameter of module_id is the third byte for the module ID in standalone switch it always equal 0 in stackable switch it means switch ID The parameter of port_no is the fourth byte and it means the port number The Remote ID is 6 bytes in length and the value is equal the DHCP relay agentjis MAC address DHCP Snooping DNS DoS DHCP Snooping is used to block intruder on the untrusted ports of DUT when it tries to intervene by injecting a bogus DHCP reply packet to a legitimate conversation between the DHCP client and server DNS is an acronym for Domain Name System It stores and associates many types of information with domain names Most importantly DNS translates human friendly domain names and computer hostnames into computer friendly IP addresses For example the domain name www example com might translate to 192 168 0 1 DoS is an acronym for Denial of Service In a denial of service
85. st algorithm used cryptographic hash function with a 128 bit hash value It was designed by Ron Rivest in 1991 MDS is officially defined in RFC 1321 The MD5 Message Digest Algorithm Mirroring N For debugging network problems or monitoring network traffic the switch system can be configured to mirror frames from multiple ports to a mirror port In this context mirroring a frame is the same as copying the frame Both incoming source and outgoing destination frames can be mirrored to the mirror port NetBIOS NetBIOS is an acronym for Network Basic Input Output System It is a program that allows applications on separate computers to communicate within a Local 107 NFS NTP Area Network LAN and it is not supported on a Wide Area Network WAN The NetBIOS giving each computer in the network both a NetBIOS name and an IP address corresponding to a different host name provides the session and transport services described in the Open Systems Interconnection OSI model NES is an acronym for Network File System It allows hosts to mount partitions on a remote system and use them as though they are local file systems NFS allows the system administrator to store resources in a central location on the network providing authorized users continuous access to them which means NFS supports sharing of files printers and other resources as persistent storage over a computer network NTP is an acronym for Network
86. st or all default All ports enable Configure MSTP adminEdge to Edge disable Configure MSTP adminEdge to Non edge 9 18 Port AutoEdge STP gt Port AutoEdge help Description Set or show the STP autoEdge port parameter Syntax STP Port AutoEdge lt port_list gt enableldisable Parameters lt port_list gt Port list or all default All ports enable Enable MSTP autoEdge disable Disable MSTP autoEdge 9 19 Port P2P STP gt Port P2P help Description Set or show the STP point2point port parameter Syntax STP Port P2P lt port_list gt enableldisablelauto Parameters lt port_list gt Port list or all default All ports enable Enable MSTP point2point disable Disable MSTP point2point auto Automatic MSTP point2point detection 9 20 Port RestrictedRole STP gt Port RestrictedRole help Description 67 Set or show the MSTP restrictedRole port parameter Syntax STP Port RestrictedRole lt port_list gt enableldisable Parameters lt port_list gt Port list or all default All ports enable Enable MSTP restricted role disable Disable MSTP restricted role 9 21 Port RestrictedTcn STP gt Port RestrictedTcn help Description Set or show the MSTP restrictedTcn port parameter Syntax STP Port RestrictedTcn lt port_list gt enableldisable Parameters lt port_list gt Port list or all default All ports enable Enable M
87. t Layer It is used to indicate a secure HTTP connection HTTPS provide authentication and encrypted communication and is widely used on the World Wide Web for security sensitive communication such as payment transactions and corporate logons HTTPS is really just the use of Netscape s Secure Socket Layer SSL as a sublayer under its regular HTTP application layering HTTPS uses port 443 instead of HTTP port 80 in its interactions with the lower layer TCP IP SSL uses a 40 bit key size for the RC4 stream encryption algorithm which is considered an adequate degree of encryption for commercial exchange ICMP is an acronym for Internet Control Message Protocol It is a protocol that generated the error response diagnostic or routing purposes ICMP messages generally contain information about routing difficulties or simple exchanges such as time stamp or echo transactions For example the PING command uses ICMP to test an Internet connection IEEE 802 1X IGMP IEEE 802 1X is an IEEE standard for port based Network Access Control It provides authentication to devices attached to a LAN port establishing a point to point connection or preventing access from that port if authentication fails With 802 1X access to all switch ports can be centrally controlled from a server which means that authorized users can use the same credentials for authentication from any point within the network IGMP is an acronym for Internet Group Man
88. the interface The VLAN interface is pruned from the multicast tree for the multicast group specified in the original leave message Fast leave processing ensures optimal bandwidth management for all hosts on a switched network even when multiple multicast groups are in use simultaneously HTTP is an acronym for Hypertext Transfer Protocol It is a protocol that used to transfer or convey information on the World Wide Web WWW HTTP defines how messages are formatted and transmitted and what actions Web servers and browsers should take in response to various commands For example when you enter a URL in your browser this actually sends an HTTP command to the Web server directing it to fetch and transmit the requested Web page The other main standard that controls how the World Wide Web works is HTML which covers how Web pages are formatted and displayed Any Web server machine contains in addition to the Web page files it can serve an HTTP daemon a program that is designed to wait for HTTP requests and handle them when they arrive The Web browser is an HTTP client sending requests to server machines An HTTP client initiates a request by establishing a Transmission Control Protocol TCP connection to a particular port on a remote host port 80 by default An HTTP server listening on that port waits for the client to send a request message HTTPS 104 ICMP HTTPS is an acronym for Hypertext Transfer Protocol over Secure Socke
89. tldeny lt rate_limiter gt 54 lt port_copy gt lt logging gt lt shutdown gt Parameters lt port_list gt Port list or all default All ports permit Permit forwarding default deny Deny forwarding lt rate_limiter gt Rate limiter number 1 15 or disable lt port_copy gt Port number for copy of frames or disable lt logging gt System logging of frames log log_disable lt shutdown gt Shut down ingress port shut shut_disable 8 2 3 3 Policy Security Network ACL gt Policy help Description Set or show the ACL port policy Syntax Security Network ACL Policy lt port_list gt lt policy gt Parameters lt port_list gt Port list or all default All ports lt policy gt Policy number 1 8 8 2 3 4 Rate Security Network ACL gt Rate help Description Set or show the ACL rate limiter Syntax Security Network ACL Rate lt rate_limiter_list gt lt packet_rate gt Parameters lt rate_limiter_list gt Rate limiter list 1 15 default All rate limiters lt packet_rate gt Rate in pps 1 2 4 512 1k 2k 4k 1024k 8 2 3 5 Add Security Network ACL gt Add help 55 Description Add or modify Access Control Entry ACE If the ACE ID parameter lt ace_id gt is specified and an entry with this ACE ID already exists the ACE will be modified Otherwise a new ACE will be added If the ACE ID is not spe
90. vailable command groups Security Switch Password System password Security Switch Auth Authentication Security Switch SSH Secure Shell Security Switch HTTPS Hypertext Transfer Protocol over Secure Socket Layer Security Switch SNMP Simple Network Management Protocol 8 1 1 Password Available Command Security Switch gt Password help Description Set the system password Syntax Security Switch Password lt password gt Parameters lt password gt System password string Use clear or to clear the string 8 1 2 Auth Authentication Available Commands Security Switch Auth Configuration Security Switch Auth Method consoleltelnetisshlweb nonellocallradius enableldisable 8 1 2 1 Configuration Security Switch Auth gt Configuration help Description Show Auth configuration 32 Syntax Security Switch Auth Configuration 8 1 2 2 Method Security Switch Auth gt Method help Description Set or show Auth method Syntax Security Switch Auth Method consoleltelnetlsshlweb nonellocallradius enableldisable Parameters console Settings for console telnet Settings for telnet ssh Settings for ssh web Settings for web none Authentication disabled local Use local authentication radius Use remote RADIUS authentication default Show client authentication method enable Enable local authentication if remote authentication fails disable Disable local
91. vlan_id gt PVLAN Isolate lt port_list gt enableldisable 7 1 Configuration PVLAN gt Configuration help Description Show Private VLAN configuration Syntax PVLAN Configuration lt port_list gt Parameters lt port_list gt Port list or all default All ports 7 2 Add PVLAN gt Add help Description Add or modify Private VLAN entry Syntax PVLAN Add lt pvlan_id gt lt port_list gt Parameters lt pvlan_id gt Private VLAN ID lt port_list gt Port list or all default All ports 7 3 Delete PVLAN gt Delete help Description Delete Private VLAN entry 30 Syntax PVLAN Delete lt pvlan_id gt Parameters lt pvlan_id gt Private VLAN ID 7 4 Lookup PVLAN gt Lookup help Description Lookup Private VLAN entry Syntax PVLAN Lookup lt pvlan_id gt Parameters lt pvlan_id gt Private VLAN ID default Show all PVLANSs 7 5 Isolate PVLAN gt Isolate help Description Set or show the port isolation mode Syntax PVLAN Isolate lt port_list gt enableldisable Parameters lt port_list gt Port list or all default All ports enable Enable port isolation disable Disable port isolation default Show port isolation port list Aje 8 Security Security management Available Command groups Switch Switch security Network Network security AuthServer Authentication server configuration 8 1 Switch Switch security A
92. when only the Internet address of its neighbors is known Before using IP the host sends a broadcast ARP request containing the Internet address of the desired destination system ARP Inspection ARP Inspection is a secure feature Several types of attacks can be launched against a host or devices connected to Layer 2 networks by poisoning the ARP caches This feature is used to block such attacks Only valid ARP requests and responses can go through DUT Auto Negotiation Auto negotiation is the process where two different devices establish the mode of operation and the speed settings that can be shared by those devices for a link CC CC is an acronym for Continuity Check It is a MEP functionality that is able to 101 CCM CDP DES DHCP detect loss of continuity in a network by transmitting CCM frames to a peer MEP CCM is an acronym for Continuity Check Message It is a OAM frame transmitted from a MEP to it s peer MEP and used to implement CC functionality CDP is an acronym for Cisco Discovery Protocol DES is an acronym for Data Encryption Standard It provides a complete description of a mathematical algorithm for encrypting enciphering and decrypting deciphering binary coded information Encrypting data converts it to an unintelligible form called cipher Decrypting cipher converts the data back to its original form called plaintext The algorithm described in this standard specifies both enciphering and deci
Download Pdf Manuals
Related Search