KTI Networks KGS-2421 network switch
Contents
1. Set or show the community string for SNMP read access Syntax Security Switch SNMP Read Community lt community gt Parameters we lt community gt Community string Use clear or default Show SNMP read community to clear the string 8 1 5 5 Write Community Security Switch SNMP gt Write Community help Description Set or show the community string for SNMP write access Syntax Security Switch SNMP Write Community lt community gt Parameters we lt community gt Community string Use clear or to clear the string default Show SNMP write community 8 1 5 6 Trap Mode Security Switch SNMP gt Trap Mode help Description Set or show the SNMP trap mode Syntax Security Switch SNMP Trap Mode enableldisable Parameters enable Enable SNMP traps disable Disable SNMP traps default Show SNMP trap mode 8 1 5 7 Trap Version Security Switch SNMP gt Trap Version help Description Set or show the SNMP trap protocol version Syntax Security Switch SNMP Trap Version 112cl3 Parameters 1 SNMP version 1 2c SNMP version 2c 3 SNMP version 3 default Show SNMP trap version 8 1 5 8 Trap Community Security Switch SNMP gt Trap Community help Description Set or show the community string for SNMP traps Syntax Security Switch SNMP Trap Community lt community gt Parameters we lt community gt Community string Use2. ip lt sip gt lt dip gt lt protocol gt lt ip_flags gt l icmp lt sip gt lt dip gt lt icmp_type gt lt icmp_code gt lt ip_flags gt udp lt sip gt lt dip gt lt sport gt lt dport gt lt ip_flags gt tcp lt sip gt lt dip gt lt sport gt lt dport gt lt ip_flags gt lt tcp_flags gt permitldeny lt rate_limiter gt lt port_copy gt lt logging gt lt shutdown gt Security Network ACL Delete lt ace_id gt Security Network ACL Lookup lt ace_id gt Security Network ACL Clear Security Network ACL Status combined staticlconflicts 8 2 3 1 Configuration Security Network ACL gt Configuration help Description Show ACL Configuration Syntax Security Network ACL Configuration lt port_list gt Parameters lt port_list gt Port list or all default All ports 8 2 3 2 Action Security Network ACL gt Action help Description Set or show the ACL port default action Syntax Security Network ACL Action lt port_list gt permitldeny lt rate_limiter gt lt port_copy gt lt logging gt lt shutdown gt Parameters lt port_list gt Port list or all default All ports permit Permit forwarding default deny Deny forwarding lt rate_limiter gt Rate limiter number 1 15 or disable lt port_copy gt Port number for copy of frames or disable lt logging gt System logging of frames
3. 8 2 Network Network security Available command groups Security Network Psec Port Security Status Security Network NAS Network Access Server IEEE 802 1X Security Network ACL Access Control List 8 2 1 Psec Port Security Status Available Commands Security Network Psec Switch lt port_list gt Security Network Psec Port lt port_list gt 8 2 1 1 Switch Security Network Psec gt Switch help Description Show Port Security status Syntax Security Network Psec Switch lt port_list gt Parameters lt port_list gt Port list or all default All ports 8 2 1 2 Port Security Network Psec gt Port help Description Show MAC Addresses learned by Port Security Syntax Security Network Psec Port lt port_list gt Parameters lt port_list gt Port list or all default All ports 8 2 2 NAS Network Access Server IEEE 802 1X Available Commands Security Network NAS Configuration lt port_list gt Security Network NAS Mode enableldisable Security Network NAS State lt port_list gt autolauthorizedlunauthorizedlmacbased Security Network NAS Reauthentication enableldisable Security Network NAS ReauthPeriod lt reauth_period gt Security Network NAS EapolTimeout lt eapol_timeout gt Security Network NAS Agetime lt age_time gt Security Network NAS Holdtime lt hold_time gt Security Network NAS Authenticate lt port_list gt now
4. Security Network NAS Statistics lt port_list gt clearleapollradius 8 2 2 1 Configuration Security Network NAS gt Configuration help Description Show 802 1X configuration Syntax Security Network NAS Configuration lt port_list gt Parameters lt port_list gt Port list or all default All ports 8 2 2 2 Mode Security Network NAS gt Mode help Description Set or show the global NAS enabledness Syntax Security Network NAS Mode enableldisable Parameters enable Globally enable 802 1X disable Globally disable 802 1X default Show current 802 1X global enabledness 8 2 2 3 State Security Network NAS gt State help Description Set or show the port security state Syntax Security Network NAS State lt port_list gt autolauthorizedlunauthorizedlmacbased Parameters lt port_list gt Port list or all default All ports auto Port based 802 1X Authentication authorized Port access is allowed unauthorized Port access is not allowed macbased Switch authenticates on behalf of the client default Show 802 1X state 8 2 2 4 Reauthentication Security Network NAS gt Reauthentication help Description Set or show Reauthentication enabledness Syntax Security Network NAS Reauthentication enableldisable Parameters enable Enable reauthentication disable Disable reauthentication default Show current reauthen
5. lt class gt QoS Tagprio lt port_list gt lt tag_prio gt QoS QCL Port lt port_list gt lt qcl_id gt QoS QCL Add lt qcl_id gt lt qce_id gt lt qce_id_next gt etype lt etype gt vid lt vid gt port lt udp_tcp_port gt dscp lt dscp gt tos lt tos_list gt tag_prio lt tag_prio_list gt lt class gt QoS QCL Delete lt qcl_id gt lt qce_id gt QoS QCL Lookup lt qcl_id gt lt qce_id gt QoS Mode lt port_list gt strictlweighted QoS Weight lt port_list gt lt class gt lt weight gt QoS Rate Limiter lt port_list gt enableldisable lt bit_rate gt QoS Shaper lt port_list gt enableldisable lt bit_rate gt QoS Storm Unicast enableldisable lt packet_rate gt QoS Storm Multicast enableldisable lt packet_rate gt QoS Storm Broadcast enableldisable lt packet_rate gt 15 1 Configuration QoS gt Configuration help Description Show QoS Configuration Syntax QoS Configuration lt port_list gt Parameters lt port_list gt Port list or all default All ports 15 2 Classes QoS gt Classes help Description Set or show the number of traffic classes Syntax QoS Classes lt class gt Parameters lt class gt Number of traffic classes 1 2 or 4 15 3 Default QoS gt Default help Description Set or show the default port priority Syntax QoS Default lt port_list gt lt class gt Paramete
6. KGS 2421 KGS 1620 Console amp Telnet Management Interface User s Manual R DOC 101115 C 2010 KTI Networks Inc All rights reserved No part of this documentation may be reproduced in any form or by any means or used to make any directive work such as translation or transformation without permission from KTI Networks Inc KTI Networks Inc reserves the right to revise this documentation and to make changes in content from time to time without obligation on the part of KTI Networks Inc to provide notification of such revision or change For more information contact United States KTI Networks Inc P O BOX 631008 Houston Texas 77263 1008 Phone 713 2663891 Fax 713 2663893 E mail ktiOktinet com URL http www ktinet com International Fax 886 2 26983873 E mail kti ktinet com tw URL http www ktinet com tw The information contained in this document is subject to change without prior notice Copyright C All Rights Reserved TRADEMARKS Ethernet is a registered trademark of Xerox Corp Vitesse Switch Software Copyright c 2002 2009 Vitesse Semiconductor Corporation Vitesse All Rights Reserved Unpublished rights reserved under the copyright laws of the United States of America other countries and international treaties Permission to use copy store and modify the software and its source code is granted Permission to integrate into other products disclose transmit and distribut
7. Security Switch SNMP Group Delete lt index gt Parameters lt index gt entry index 1 64 8 1 5 28 Group Lookup Security Switch SNMP gt Group Lookup help Description Lookup SNMPv3 group entry Syntax Security Switch SNMP Group Lookup lt index gt Parameters lt index gt entry index 1 64 8 1 5 29 View Add Security Switch SNMP gt View Add help Description Add or modify SNMPv3 view entry The entry index key are lt view_name gt and lt oid_subtree gt Syntax Security Switch SNMP View Add lt view_name gt includedlexcluded lt oid_subtree gt Parameters lt view_name gt A string identifying the view name that this entry should belong to included Flag to indicate that this view subtree should included excluded Flag to indicate that this view subtree should excluded lt oid_subtree gt The OID defining the root of the subtree to add to the named vie 8 1 5 30 View Delete Security Switch SNMP gt View Delete help Description Delete SNMPv3 view entry Syntax Security Switch SNMP View Delete lt index gt Parameters lt index gt entry index 1 64 8 1 5 31 View Lookup Security Switch SNMP gt View Lookup help Description Lookup SNMPv3 view entry Syntax Security Switch SNMP View Lookup lt index gt Parameters lt index gt entry index 1 64 8 1 5 32 Access Add Security Switch SNMP gt Access Add help Descrip
8. default Show all VLANs enable Enable IGMP querier disable Disable IGMP querier default Show IGMP querier mode 10 5 Fastleave IGMP gt Fastleave help Description Set or show the IGMP snooping fast leave port mode Syntax IGMP Fastleave lt port_list gt enableldisable Parameters lt port_list gt Port list or all default All ports enable Enable IGMP fast leave disable Disable IGMP fast leave default Show IGMP fast leave mode 10 6 Router IGMP gt Router help Description Set or show the IGMP snooping router port mode Syntax IGMP Router lt port_list gt enableldisable Parameters lt port_list gt Port list or all default All ports enable Enable IGMP router port disable Disable IGMP router port default Show IGMP router port mode 10 7 Flooding IGMP gt Flooding help Description Set or show the IGMP snooping unregistered flood operation Syntax IGMP Flooding enableldisable Parameters enable Enable IGMP flooding disable Disable IGMP flooding default Show IGMP flood mode 10 8 Groups IGMP gt Groups help Description Show IGMP groups Syntax IGMP Groups lt vid gt Parameters lt vid gt VLAN ID 1 4095 10 9 Status IGMP gt Status help Description Show IGMP status Syntax IGMP Status lt vid gt Parameters lt vid gt VLAN ID 1 4095 11 Aggr Link Aggregation Available Command
9. lt mac_addr gt lt vid gt MAC Statistics lt port_list gt MAC Flush 5 1 Configuration MAC gt Configuration help Description Show MAC address table configuration Syntax MAC Configuration lt port_list gt Parameters lt port_list gt Port list or all default All ports 5 2 Add MAC gt Add help Description Add MAC address table entry Syntax MAC Add lt mac_addr gt lt port_list gt lt vid gt Parameters lt mac_addr gt MAC address XxX XX XX XX XX XX lt port_list gt Port list or all or none lt vid gt VLAN ID 1 4095 default 1 5 3 Delete MAC gt Delete help Description Delete MAC address entry Syntax MAC Delete lt mac_addr gt lt vid gt Parameters lt mac_addr gt MAC address xx XX XX XX XX XX lt vid gt VLAN ID 1 4095 default 1 5 4 Lookup MAC gt Lookup help Description Lookup MAC address entry Syntax MAC Lookup lt mac_addr gt lt vid gt Parameters lt mac_addr gt MAC address xx XX XX XX XX XX lt vid gt VLAN ID 1 4095 default 1 5 5 Agetime MAC gt Agetime help Description Set or show the MAC address age timer Syntax MAC Agetime lt age_time gt Parameters lt age_time gt MAC address age time 0 10 1000000 O disable default Show age time 5 6 Learning MAC gt Learning help Description Set or show the port learn mode Syntax MAC Learning lt
10. parade 20 O AT 20 4 6 POWO cin ld lios 21 AP EXCESSIVE nd tesa i AN ee edie a ESG 21 4 8 Statisties ect tdie ss pice cutee ciety Sen a pete Sea aaa Geaa sailed teats dea atetu secant 22 AO GRIP HY ranei acest hae eteencccady eee ec ean ads ds seeded tae tal i eee eteaa eas cance 22 5 MAC MAC address table iiooiocinicoconnincadocinnnalin decade naci eii didas 23 A A 23 IDO ii a 24 DIA LOOKUP nd O A 24 O a teaa tenes AET 24 5 6 Learning ads AR 5 O binee tania taanqalonay AE NEEE EAEE Ei 24 5 7 DUMP renier ena a a 25 BS Statist S oases O 25 A E EE EEE EET A SES EA A EA A TNT 26 6 VLAN Virtual LAN aarian a e A AAA 27 6 TT OMI Ngase oi ld ltd a 27 SEA NN A E E acca ca E aceite Guna nt Oe E E AT 27 E n 28 6 4 Frame Ty D6 iaa eee pee ee ag Ron eels 28 A cotctactatctlots esate heeveeveeta uitacudedtateatasianecety deta uoneslleedatestatants 28 SNe PRAE EEEE E cede cuwecanncaabsvuasteden cea teatuntaceata E TEE 29 A ceded E cy teed ates ate eae 29 6 8 LOOKUP A otter tgs wack acess cae Semele O 29 O AO 30 T PVLAN Private VLAN roie andian rai a aa na a AAA A a a a A aa e 31 FA CONIQU MON nta tin Eaa EE 31 TD PROG A OTTO 31 TODO ai 31 T LOOKUP minae sansa iodo aaa a aeai caps lentes Sete hans A ran EE 32 FASO NG as fa tee E E T E 32 8 Security Security Management cccecesce sete eeeeeeeeeeeeseaeseneeeeeeeeeeseaeseneeeenseeeseeeseseaesaeeeeeeeneess 33 8 1 Switch Switth Security oia 33 A N AE AEE TT 33 8 1 2 Auth CAUM
11. STP port priority 0 16 32 48 224 240 10 IGMP Intemet Group Management Protocol snooping Available Commands IGMP Configuration lt port_list gt IGMP Mode enableldisable IGMP State lt vid gt enableldisable IGMP Querier lt vid gt enableldisable IGMP Fastleave lt port_list gt enableldisable IGMP Router lt port_list gt enableldisable IGMP Flooding enableldisable IGMP Groups lt vid gt IGMP Status lt vid gt 10 1 Configuration IGMP gt Configuration help Description Show IGMP snooping configuration Syntax IGMP Configuration lt port_list gt Parameters lt port_list gt Port list or all default All ports 10 2 Mode IGMP gt Mode help Description Set or show the IGMP snooping mode Syntax IGMP Mode enableldisable Parameters enable Enable IGMP snooping disable Disable IGMP snooping default Show IGMP snooping mode 10 3 State IGMP gt State help Description Set or show the IGMP snooping state for VLAN Syntax IGMP State lt vid gt enableldisable Parameters lt vid gt VLAN ID 1 4095 default Show all VLANs enable Enable IGMP snooping disable Disable IGMP snooping default Show IGMP snooping mode 10 4 Querier IGMP gt Querier help Description Set or show the IGMP snooping querier mode for VLAN Syntax IGMP Querier lt vid gt enableldisable Parameters lt vid gt VLAN ID 1 4095
12. Security Switch SNMP Configuration Security Switch SNMP Mode enableldisable Security Switch SNMP Version 112c13 Security Switch SNMP Read Community lt community gt Security Switch SNMP Write Community lt community gt Security Switch SNMP Trap Mode enableldisable Security Switch SNMP Trap Version 1 2c13 Security Switch SNMP Trap Community lt community gt Security Switch SNMP Trap Destination lt ip_addr_string gt Security Switch SNMP Trap Authentication Failure enableldisable Security Switch SNMP Trap Link up enableldisable Security Switch SNMP Trap Inform Mode enableldisable Security Switch SNMP Trap Inform Timeout lt timeout gt Security Switch SNMP Trap Inform Retry Times lt retries gt Security Switch SNMP Trap Probe Security Engine ID enableldisable Security Switch SNMP Trap Security Engine ID lt engineid gt Security Switch SNMP Trap Security Name lt security_name gt Security Switch SNMP Engine ID lt engineid gt Security Switch SNMP Community Add lt community gt lt ip_addr gt lt ip_mask gt Security Switch SNMP Community Delete lt index gt Security Switch SNMP Community Lookup lt index gt Security Switch SNMP User Add lt engineid gt lt user_name gt MDSISHA lt auth_password gt DES lt priv_password gt Security Switch SNMP User Delete lt index gt Security Switch SNMP User Changekey lt engineid gt lt user_name gt lt auth_password gt lt pr
13. Show information warning Show warnings error Show errors clear Clear log 3 IP IP configuration and Ping Available Commands IP Configuration IP DHCP enableldisable IP Setup lt ip_addr gt lt ip_mask gt lt ip_router gt lt vid gt IP Ping lt ip_addr_string gt lt ping_length gt IP SNTP lt ip_addr_string gt 3 1 Configuration IP gt Configuration help Description Show IP configuration Syntax IP Configuration 3 2 DHCP IP gt DHCP help Description Set or show the DHCP client mode Syntax IP DHCP enableldisable Parameters enable Enable or renew DHCP client disable Disable DHCP client 3 3 Setup IP gt Setup help Description Set or show the IP setup Syntax IP Setup lt ip_addr gt lt ip_mask gt lt ip_router gt lt vid gt Parameters lt ip_addr gt IP address a b c d default Show IP address lt ip_mask gt IP subnet mask a b c d default Show IP mask lt ip_router gt IP router a b c d default Show IP router lt vid gt VLAN ID 1 4095 default Show VLAN ID 3 4 Ping IP gt Ping help Description Ping IP address ICMP echo Syntax IP Ping lt ip_addr_string gt lt ping_length gt Parameters lt ip_addr_string gt IP host address a b c d lt ping_length gt Ping data length 8 1400 excluding MAC IP and ICMP header 3 5 SNTP IP gt SNTP help Description Set or show the SNTP Time se
14. clear or default Show SNMP trap community to clear the string 8 1 5 9 Trap Destination Security Switch SNMP gt Trap Destination help Description Set or Show the SNMP trap destination address Syntax Security Switch SNMP Trap Destination lt ip_addr_string gt Parameters lt ip_addr_string gt IP host address a b c d 8 1 5 10 Trap Authentication Failure Security Switch SNMP gt Trap Authentication Failure help Description Set or show the SNMP authentication failure trap mode Syntax Security Switch SNMP Trap Authentication Failure enableldisable Parameters enable Enable SNMP trap authentication failure disable Disable SNMP trap authentication failure default Show SNMP trap authentication failure mode 8 1 5 11 Trap Link up Security Switch SNMP gt Trap Link up help Description Set or show the port link up and link down trap mode Syntax Security Switch SNMP Trap Link up enableldisable Parameters enable Enable SNMP trap link up and link down disable Disable SNMP trap link up and link down default Show SNMP trap link up and link down mode 8 1 5 12 Trap Inform Mode Security Switch SNMP gt Trap Inform Mode help Description Set or show the SNMP trap inform mode Syntax Security Switch SNMP Trap Inform Mode enableldisable Parameters enable Enable SNMP trap inform disable Disable SNMP trap inform default Show SNMP inform
15. log log_disable lt shutdown gt Shut down ingress port shut shut_disable 8 2 3 3 Policy Security Network ACL gt Policy help Description Set or show the ACL port policy Syntax Security Network ACL Policy lt port_list gt lt policy gt Parameters lt port_list gt Port list or all default All ports lt policy gt Policy number 1 8 8 2 3 4 Rate Security Network ACL gt Rate help Description Set or show the ACL rate limiter Syntax Security Network ACL Rate lt rate_limiter_list gt lt packet_rate gt Parameters lt rate_limiter_list gt Rate limiter list 1 15 default All rate limiters lt packet_rate gt Rate in pps 1 2 4 512 1k 2k 4k 1024k 8 2 3 5 Add Security Network ACL gt Add help Description Add or modify Access Control Entry ACE If the ACE ID parameter lt ace_id gt is specified and an entry with this ACE ID already exists the ACE will be modified Otherwise a new ACE will be added If the ACE ID is not specified the next available ACE ID will be used If the next ACE ID parameter lt ace_id_next gt is specified the ACE will be placed before this ACE in the list If the next ACE ID is not specified the ACE will be placed last in the list If the Switch keyword is used the rule applies to all ports If the Port keyword is used the rule applies to the specified port only If the Policy keyword is used the rule
16. 102 Glossary ABCDEFGHIJKLMNOPORSTUVWXYZ A ACE ACL ACE is an acronym for Access Control Entry It describes access permission associated with a particular ACE ID There are three ACE frame types Ethernet Type ARP and IPv4 and two ACE actions permit and deny The ACE also contains many detailed different parameter options that are available for individual application ACL is an acronym for Access Control List It is the list table of ACEs containing access control entries that specify individual users or groups permitted or denied to specific traffic objects such as a process or a program Each accessible traffic object contains an identifier to its ACL The privileges determine whether there are specific traffic object access rights ACL implementations can be quite complex for example when the ACEs are prioritized for the various situation In networking the ACL refers to a list of service ports or network services that are available on a host or server each with a list of hosts or servers permitted or denied to use the service ACL can generally be configured to control inbound traffic and in this context they are similar to firewalls There are 3 web pages associated with the manual ACL configuration ACLlAccess Control List The web page shows the ACEs in a prioritized way highest top to lowest bottom Default the table is empty An ingress frame will only get a hit on one ACE even though the
17. A A Ge cnbtanag gine 45 8 1 5 23 User Delete iii 45 8 1 5 24 User Changekey cenit sna odie 46 8 1 5 25 USER UD do saedactencun dor R ARENAS ies 46 SAID Group Add ii as 46 8 1 5 27 Group Delete na li din 47 Be 1 3 20 OU LOU e o cid teen dee 47 A E 47 81 530 View Delete a as 48 8 1 5 31 VOW OOK UD zoek Sead win cat ct erat cae biases caaiencactuae se ckn vases hanno SEENA tagueeecotaedteten cate 48 8 1 5 32 ACCESS AGG ii ad 48 8 15 39 ACCESS Del SIS ui ii 49 8 1 5 34 Access Lookup lt index gt aiii siii 49 8 2 Network Network security aia 50 8 2 1 PSeG POM Security Stalin A 50 Sed WIC iia isa 50 A A A AF 50 8 2 2 NAS Network Access Server IEEE 802 1X 00ooooonocccccicoccccccononocccccnannnccncnnnnns 51 8 2 2 COMU as 51 RA E 51 AS ON 52 3 224 Rea thentitati N e nea nin 52 ls AA 52 82 2 0 EEpOMMMeOUl inte 53 AA ates panels S t Saa tawny EaR PAAA ANAREN AEEA HEEE E raK Ss 53 8 22 8 HOM sti a a e e a ean E AN e EE 53 8 2 29 A thenticate e ONO Pp e aiaa aaa AEN AA AEA AAA eien 54 A OEE E A E E E T 54 8 2 9 AGL Access Control Sic e na Marne A 55 8201 COMUN riales 55 A A O ude sodeetaaae eee 55 8 233 Y a APENAS SE Ra DAI Mia Amma Neh 56 82 34 ALG A o o A 56 ROO A AS A AA AAA 56 SA cept acs tases e e a e e aaae Seana scence a aa a 58 8 2 3 7 LOOKUP issii irine a e E E AEKA ARER En 58 A O 59 A RN 59 8 3 AAA Authentication Authorization and ACCOUNTING ooooooocccccncccccconananannnonononnnnnns 59 An ies t Ma
18. All ports enable Enable Rx and Tx mirroring disable Disable Mirroring rx Enable Rx mirroring tx Enable Tx mirroring default Show mirror mode 17 Config Load Save of configuration via TFTP Available Commands Config Save lt ip_server gt lt file_name gt Config Load lt ip_server gt lt file_name gt check 17 1 Save Config gt Save help Description Save configuration to TFTP server Syntax Config Save lt ip_server gt lt file_name gt Parameters lt ip_server gt TFTP server IP address a b c d lt file_name gt Configuration file name 17 2 Load Config gt Load help Description Load configuration from TFTP server Syntax Config Load lt ip_server gt lt file_name gt check Parameters lt ip_server gt TFTP server IP address a b c d lt file_name gt Configuration file name check Check configuration file only default Check and apply file 18 SFPDDM SFP with Digital Diagnostic Monitoring gt SFPDDM help Description Show SFP with Digital Diagnostic Monitoring DDM Syntax SFPDDM lt port_list gt Parameters lt port_list gt Port list or all 19 Firmware Download of firmware via TFTP gt Firmware Description Load new firmware from TFTP server Syntax Firmware Load lt ip_addr_string gt lt file_name gt Parameters lt ip_addr_string gt IP host address a b c d lt file_name gt Firmware file name
19. Control Protocol TCP and provides a mail service modeled on the FTP file transfer service SMTP transfers mail messages between systems and notifications regarding incoming mail 115 SNTP SNMP is an acronym for Simple Network Management Protocol It is part of the Transmission Control Protocol Internet Protocol TCP IP protocol for network management SNMP allow diverse network objects to participate in a network management architecture It enables network management systems to learn network problems by receiving traps or change notices from network devices implementing SNMP SNTP is an acronym for Simple Network Time Protocol a network protocol for synchronizing the clocks of computer systems SNTP uses UDP datagrams as transport layer SPROUT SSID SSH SSM STP Stack Protocol using ROUting Technology An advanced protocol for almost instantaneous discovery of topology changes within a stack as well as election of a master switch SPROUT also calculates parameters for setting up each switch to perform shortest path forwarding within the stack Service Set Identifier is a name used to identify the particular 802 11 wireless LANs to which a user wants to attach A client device will receive broadcast messages from all access points within range advertising their SSIDs and can choose one to connect to based on pre configuration or by displaying a list of SSIDs in range and asking the user to select one wikipe
20. QCE even though there are more matching QCEs The first matching QCE will give that frame a priority Low Normal Medium or High 5 different QCLs can be created each with 8 different QCEs You assign each port a QCL id under QoSIPorts page The QoS counters can be viewed under MonitorlPortsiQoS statistics There are number of parameters that can be configured with a QCE Read the Web page help text to get further information for each of them QoSIPorts The Ports QoS page is used to assign a QCL id to an ingress port 113 Furthermore you can assign a default class to a port and a queuing mode Strict queuing means that the higher priority frame will always be served before a lower priority frame Weighted priority will give each class some weight of the bandwidth QoSIRate Limiters Under this page you can configure the policer ingress and shaper egress rate for each port See the help page for details QoSIStorm Control Here you can limit the flooding in the switch i e the rate you choose applies to the whole switch Choose the mix of Unicast Multicast and Broadcast storm control See the help page for details R RARP RARP is an acronym for Reverse Address Resolution Protocol It is a protocol that is used to obtain an IP address for a given hardware address such as an Ethernet address RARP is the complement of arp RADIUS RADIUS is an acronym for Remote Authentication Dial In User Service It is a networking protocol that pr
21. VLAN configuration Syntax VLAN Configuration lt port_list gt Parameters lt port_list gt Port list or all default All ports 6 2 Aware VLAN gt Aware help Description Set or show the port VLAN awareness Syntax VLAN Aware lt port_list gt enableldisable Parameters lt port_list gt Port list or all default All ports enable Enable VLAN awareness disable Disable VLAN awareness default Show VLAN awareness 6 3 PVID VLAN gt PVID help Description Set or show the port VLAN ID Syntax VLAN PVID lt port_list gt lt vid gt Inone Parameters lt port_list gt Port list or all default All ports lt vid gt Inone Port VLAN ID 1 4095 or none default Show port VLAN ID 6 4 FrameType VLAN gt FrameType help Description Set or show the port VLAN frame type Syntax VLAN FrameType lt port_list gt allltagged Parameters lt port_list gt Port list or all default All ports all Allow tagged and untagged frames tagged Allow tagged frames only default Show accepted frame types 6 5 IngressFilter VLAN IngressFilter help Description Set or show the port VLAN ingress filter Syntax VLAN IngressFilter lt port_list gt enableldisable Parameters lt port_list gt Port list or all default All ports enable Enable VLAN ingress filtering disable Disable VLAN ingress filtering default Show VLAN ingr
22. a MSTI Syntax STP Msti Add lt msti gt lt vid gt Parameters lt msti gt STP bridge instance no 0 7 CIST 0 MSTI1 1 lt vid gt VLAN ID 1 4095 9 15 Port Configuration STP gt Port Configuration help Description Show STP Port configuration Syntax STP Port Configuration lt port_list gt Parameters lt port_list gt Port list or all Port zero means aggregations 9 16 Port Mode STP gt Port Mode help Description Set or show the STP enabling for a port Syntax STP Port Mode lt port_list gt enableldisable Parameters lt port_list gt Port list or all Port zero means aggregations enable Enable MSTP protocol disable Disable MSTP protocol 9 17 Port Edge STP gt Port Edge help Description Set or show the STP adminEdge port parameter Syntax STP Port Edge lt port_list gt enableldisable Parameters lt port_list gt Port list or all default All ports enable Configure MSTP adminEdge to Edge disable Configure MSTP adminEdge to Non edge 9 18 Port AutoEdge STP gt Port AutoEdge help Description Set or show the STP autoEdge port parameter Syntax STP Port AutoEdge lt port_list gt enableldisable Parameters lt port_list gt Port list or all default All ports enable Enable MSTP autoEdge disable Disable MSTP autoEdge 9 19 Port P2P STP gt Port P2P help Description Set or show th
23. applies to all ports configured with the specified policy The default is that the rule applies to all ports Syntax Security Network ACL Add lt ace_id gt lt ace_id_next gt switch port lt port gt policy lt policy gt lt vid gt lt tag_prio gt lt dmac_type gt etype lt etype gt lt smac gt lt dmac gt arp lt sip gt lt dip gt lt smac gt lt arp_opcode gt lt arp_flags gt ip lt sip gt lt dip gt lt protocol gt lt ip_flags gt icmp lt sip gt lt dip gt lt icmp_type gt lt icmp_code gt lt ip_flags gt udp lt sip gt lt dip gt lt sport gt lt dport gt lt ip_flags gt tcp lt sip gt lt dip gt lt sport gt lt dport gt lt ip_flags gt lt tcp_flags gt permitldeny lt rate_limiter gt lt port_copy gt lt logging gt lt shutdown gt Parameters lt ace_id gt ACE ID 1 128 default Next available ID lt ace_id_next gt Next ACE ID 1 128 default Add ACE last switch Switch ACE keyword port Port ACE keyword lt port gt Port number policy Policy ACE keyword lt policy gt Policy number 1 8 lt vid gt VLAN ID 1 4095 or any lt tag_prio gt VLAN tag priority 0 7 or any lt dmac_type gt DMAC type anylunicastlmulticastlbroadcast etype Ethernet Type keyword lt etype gt Ethernet Type or any lt smac gt Source MAC address XX XX XX XX XX XX o
24. between computers UDP is an alternative to the Transmission Control Protocol TCP that uses the Internet Protocol IP Unlike TCP UDP does not provide the service of dividing a message into packet datagrams and UDP doesn t provide reassembling and sequencing of the packets This means that the application program that uses UDP must be able to make sure that the entire message has arrived and is in the right order Network applications that want to save processing time because they have very small data units to exchange may prefer UDP to TCP UDP provides two services not provided by the IP layer It provides port numbers to help distinguish different user requests and optionally a checksum capability to verify that the data arrived intact Common network applications that use UDP include the Domain Name System DNS streaming media applications such as IPTV Voice over IP VoIP and Trivial File Transfer Protocol TFTP 118 UPnP UPnP is an acronym for Universal Plug and Play The goals of UPnP are to allow devices to connect seamlessly and to simplify the implementation of networks in the home data sharing communications and entertainment and in corporate environments for simplified installation of computer components User Priority V VLAN User Priority is a 3 bit field storing the priority level for the 802 1Q frame Virtual LAN a method to restrict communication between switch ports VLANs can be used for the f
25. half duplex 10fdx 10 Mbps full duplex 100hdx 100 Mbps half duplex 100fdx 100 Mbps full duplex 1000fdx 1 Gbps full duplex auto Auto negotiation of speed and duplex default Show configured and current mode 4 4 FlowControl Port gt FlowControl help Description Set or show the port flow control mode Syntax Port Flow Control lt port_list gt enableldisable Parameters lt port_list gt Port list or all default All ports enable Enable flow control disable Disable flow control default Show flow control mode 4 5 MaxFrame Port gt MaxFrame help Description Set or show the port maximum frame size Syntax Port MaxFrame lt port_list gt lt max_frame gt Parameters lt port_list gt Port list or all default All ports lt max_frame gt Port maximum frame size 1518 9600 default Show maximum frame size 4 6 Power Port gt Power help Description Set or show the port PHY power mode Syntax Port Power lt port_list gt enableldisablelactiphyldynamic Parameters lt port_list gt Port list or all default All ports enable Enable all power control disable Disable all power control actiphy Enable ActiPHY power control dynamic Enable Dynamic power control 4 7 Excessive Port gt Excessive help Description Set or show the port excessive collision mode Syntax Port Excessive lt port_list gt
26. port_list gt autoldisablelsecure Parameters lt port_list gt Port list or all default All ports auto Automatic learning disable Disable learning secure Secure learning default Show learn mode 5 7 Dump MAC gt Dump help Description Show sorted list of MAC address entries Syntax MAC Dump lt mac_max gt lt mac_addr gt lt vid gt Parameters lt mac_max gt Maximum number of MAC addresses default Show all addresses lt mac_addr gt First MAC address xx xx xx xx xx xx default MAC address zero lt vid gt First VLAN ID 1 4095 default 1 5 8 Statistics MAC gt Statistics help Description Show MAC address table statistics Syntax MAC Statistics lt port_list gt Parameters lt port_list gt Port list or all default All ports 5 9 Flush MAC gt Hlush help Description Flush all learned entries Syntax MAC Flush 6 VLAN Virtual LAN Available Commands VLAN Configuration lt port_list gt VLAN Aware lt port_list gt enableldisable VLAN PVID lt port_list gt lt vid gt Inone VLAN FrameT ype lt port_list gt allltagged VLAN IngressFilter lt port_list gt enableldisable VLAN Add lt vid gt lt port_list gt VLAN Delete lt vid gt VLAN Lookup lt vid gt VLAN Status lt port_list gt combinedIstaticinasImstplalllconflicts 6 1 Configuration VLAN gt Configuration help Description Show
27. the specified application type as defined in IETF RFC 2474 5 This 6 bit field may contain one of 64 code point values 0 through 63 A value of O represents use of the default DSCP value as defined in RFC 2475 14 6 port policies LLDPMED gt port policies help Description Set or show LLDP MED port policies Syntax LLDPMED port policies lt port_list gt lt policy_list gt Parameters lt port_list gt Port list or all default All ports lt policy_list gt List of policies to delete 14 7 Coordinates LLDPMED gt Coordinates help Description Set or show LLDP MED Location Syntax LLDPMED Coordinates latitudellongitudelaltitude northlsouthlwestleastlmeters Ifloor coordinate_value Parameters latitude Latitude 0 to 90 degrees with max 4 digits Positive numbers are north of the equator and negative numbers are south of the equator longitude Longitude 0 to 180 degrees with max 4 digits Positive values are East of the prime meridian and negative numbers are West of the prime meridian altitude Altitude Meters or floors with max 4 digits default Show coordinate location configuration northlsouthlwestleastlmeterslfloor North North Valid for latitude South South Valid for latitude West West Valid for longitude East East Valid for longitude Meters Meters Valid for altitude Floor Floor Valid for altitude coordinate_value Coordinate value 1
28. 2 octet string 8 1 5 17 Trap Security Name Security Switch SNMP gt Trap Security Name help Description Set or show SNMP trap security name Syntax Security Switch SNMP Trap Security Name lt security_name gt Parameters lt security_name gt A string representing the security name for a principal default Show SNMP trap security name 8 1 5 18 Engine ID Security Switch SNMP gt Engine ID help Description Set or show SNMPv3 local engine ID Syntax Security Switch SNMP Engine ID lt engineid gt Parameters lt engineid gt Engine ID the format may not be all zeros or all ffH and is restricted to 5 32 octet string 8 1 5 19 Community Add Security Switch SNMP gt Community Add help Description Add or modify SNMPv3 community entry The entry index key is lt community gt Syntax Security Switch SNMP Community Add lt community gt lt ip_addr gt lt ip_mask gt Parameters lt community gt Community string lt ip_addr gt IP address a b c d default Show IP address lt ip_mask gt IP subnet mask a b c d default Show IP mask 8 1 5 20 Community Delete Security Switch SNMP gt Community Delete help Description Delete SNMPv3 community entry Syntax Security Switch SNMP Community Delete lt index gt Parameters lt index gt entry index 1 64 8 1 5 21 Community Lookup Security Switch SNMP gt Community Lookup help Descrip
29. 4 8 Datum LLDPMED gt Datum help Description Set or show LLDP MED Coordinates map datum Syntax LLDPMED Datum wgs84Inad83_navd88Inad83_mllw Parameters wgs84Inad83_navd88Inad83_mllw WGS84 nad83_navd88 NAD83_NAVD88 nad83_mllw NAD83_MLLW 14 9 Fast LLDPMED gt Fast help Description Set or show LLDP MED Fast Start Repeat Count Syntax LLDPMED Fast lt count gt Parameters lt count gt The number of times the fast start LLDPDU are being sent during the activation of the fast start mechanism defined by LLDP MED 1 10 14 10 Info LLDPMED gt Info help Description Show LLDP MED neighbor device information Syntax LLDPMED Info lt port_list gt Parameters lt port_list gt Port list or all default All ports 14 11 debug_med_transmit_var LLDPMED gt debug_med_transmit_var help Description Set or show if the current value of the global medTansmitEnable variable Section Section 11 2 1 TIA 1057 Syntax LLDPMED debug_med_transmit_var lt port_list gt enableldisable Parameters lt port_list gt Port list or all default All ports enable Enable Set medTansmitEnable variable to true disable Disable Set medTansmitEnable variable to false default Show medTansmitEnable variable value 15 QoS Quality of Service Available Commands QoS Configuration lt port_list gt QoS Classes lt class gt QoS Default lt port_list gt
30. ACE default All ACEs Syntax Security Network ACL Lookup lt ace_id gt Parameters lt ace_id gt ACE ID 1 128 8 2 3 8 Clear Security Network ACL gt Clear help Description Clear all ACL counters Syntax Security Network ACL Clear 8 2 3 9 Status Security Network ACL gt Status help Description Show ACL status Syntax Security Network ACL Status combined staticlconflicts Parameters combined Shows the combined status static Shows the static user configured status conflicts Shows all conflict status default Shows the combined status 8 3 AAA Authentication Authorization and Accounting Available Commands Security AAA Configuration Security AAA Timeout lt timeout gt Security AAA Deadtime lt dead_time gt Security AAA RADIUS lt server_index gt enableldisable lt ip_addr_string gt lt secret gt lt server_port gt Security AAA Statistics lt server_index gt 8 3 1 Configuration Security AAA gt Configuration help Description Show Auth configuration Syntax Security AAA Configuration 8 3 2 Timeout Security AAA gt Timeout help Description Set or show server timeout Syntax Security AAA Timeout lt timeout gt Parameters lt timeout gt Server response timeout 3 3600 seconds default Show server timeout configuration 8 3 3 Deadtime Security AAA gt Deadtime help Description Set or
31. AE EE a A eente edoudimeatiate 85 MA ll TN 86 y EAA ES AENEAN i 87 A A E evden echaoeaun san aaets Gene ceamenesetaete ata ates 87 14 6 port policies seriinin ennon eranen nae oE EAEAN NARE DA ENAA T NAAK EAEE ERENER 88 AGORA ia ais 89 14S DaM os tenes tases rea ctheasttninietted tate cdr tare idan Maanitedeseeestiaal cconteage 89 AT 90 ATOM io ai Ree S Ne 90 14 11 debug_Med transMit_Val ococcccccconcconnconnnnnnnnnnnnnnnnnnnononononononnnonnnonnnonnnonennnnnns 90 15 QoS Quality Of Service oooocccononnnccconncccccononcccconnnncccnnnnnn encarece rre nnmnnn nnmnnn mnnn nnne 92 181 AS OMMIGUIATION Seer rerna a a ata lata a ER 92 15 2 AS ti a iS e 92 A A 93 A Be RE E a EE AEE ESk 93 I VG LEP OMA ar 93 A tamenneneleesche cetestoharaatcesbscesnentso deters ld aasat eather 94 gio ey a Gs B 21 2 AE E TE 95 15 8 OC dida 95 MO a ciate ees o led lie CO ua Seca 95 E O A EE 96 15 11 Rate Limiter n 96 A EN 96 15 13 Storm MICAS tasar ir s ita 97 15 14 Storm aio 97 15 15 Storm Broadcast niei aeea eert aeee aa eea da 98 16 Mirror Port mirroring iia ii lie nannan nannan ii cc d 99 E enntre nnssenEn nne nnnn ennen 99 16 2 POP eiras n ennea eE EKETE aii 99 16 3 Mde somos tdi 99 17 Config Load Save of configuration via TFTP csscssseecsseeesseesesseeeeseeeeeeeeseseaeenseeeeesneess 101 TEARS Vi OS 101 AM A OO TO 101 18 SFPDDM SFP with Digital Diagnostic Monitoring commccnnnnrennccarecnraernnncneraennas 102 19
32. Continuity Check It is a MEP functionality that is able to 104 CCM CDP DES DHCP detect loss of continuity in a network by transmitting CCM frames to a peer MEP CCM is an acronym for Continuity Check Message It is a OAM frame transmitted from a MEP to it s peer MEP and used to implement CC functionality CDP is an acronym for Cisco Discovery Protocol DES is an acronym for Data Encryption Standard It provides a complete description of a mathematical algorithm for encrypting enciphering and decrypting deciphering binary coded information Encrypting data converts it to an unintelligible form called cipher Decrypting cipher converts the data back to its original form called plaintext The algorithm described in this standard specifies both enciphering and deciphering operations which are based on a binary number called a key DHCP is an acronym for Dynamic Host Configuration Protocol It is a protocol used for assigning dynamic IP addresses to devices on a network DHCP used by networked computers clients to obtain IP addresses and other parameters such as the default gateway subnet mask and IP addresses of DNS servers from a DHCP server The DHCP server ensures that all IP addresses are unique for example no IP address is assigned to a second client while the first client s assignment is valid its lease has not expired Therefore IP address pool management is done by the server and not by a human network
33. Firmware Download of firmware via TFTP ccceeeseeseeeeeeseeeeeseneeeeeeeeeeseenenneeneneeeeeees 102 Glossary 1 General 1 1 General Commands General Commands Description Help Get help on a group or a specific command Up Move one command level up Move to Root level Logout Exit CLI 1 2 Command Groups Command Groups Description System System settings and reset options IP IP configuration and Ping Port Port management MAC MAC address table VLAN Virtual LAN PVLAN Private VLAN Security Security management STP Spanning Tree Protocol IGMP Internet Group Management Protocol snooping Ager Link Aggregation LACP Link Aggregation Control Protocol LLDP Link Layer Discovery Protocol LLDPMED Link Layer Discovery Protocol Media QoS Quality of Service Mirror Port mirroring Config Load Save of configuration via TETP SFP DDM SFP with Digital Diagnostic Monitoring Firmware Download of firmware via TFTP Type lt group gt to enter command group e g port Type lt group gt to get list of group commands e g port Type lt command gt to get help on a command e g port mode Commands may be abbreviated e g po co instead of port configuration 2 System System settings and reset options Available Commands System Configuration all lt port_list gt System Name lt name gt System Contact lt contact gt S
34. In a PoE gt system the power is delivered from a PSE power sourcing equipment to a remote device The remote device 1s called a PD PHY PHY is an abbreviation for Physical Interface Transceiver and is the device that implement the Ethernet physical layer IEEE 802 3 PING ping is a program that sends a series of packets over a network or the Internet to a specific computer in order to generate a response from that computer The other computer responds with an acknowledgment that it received the packets Ping was created to verify whether a specific computer on a network or the 111 Internet exists and is connected ping uses Internet Control Message Protocol ICMP packets The PING Request is the packet from the origin computer and the PING Reply is the packet response from the target PoE PoE is an acronym for Power Over Ethernet Power Over Ethernet is used to transmit electrical power to remote devices over standard Ethernet cable It could for example be used for powering IP telephones wireless LAN access points and other equipment where it would be difficult or expensive to connect the equipment to main power supply Policer A policer can limit the bandwidth of received frames It is located in front of the ingress queue POP3 POP3 is an acronym for Post Office Protocol version 3 It is a protocol for email clients to retrieve email messages from a mail server POP3 is designed to delete mail on the server as soon as t
35. NSNTICATON ada 33 81 21 Configuration uc a 33 81 22 MENO ada a 34 81 3 SSH Secure sis a 34 IS 34 8 1 3 2 Mode onableldisSable coordinada 35 8 1 4 HTTPS Hypertext Transfer Protocol over Secure Socket Layen ccooooooooccccccccccanans 36 BUA E oale OLEE oi ON cee Seva Ae E sate aseuh act Mente saan A tas hadnt TEN 36 8 1 4 2 Modest dais 36 8 T43 lo o OP O EA aa dada Ea aa E nnn E EE e a is 36 8 1 5 SNMP Simple Network Management Protocol oooooccccnnnccccccccnccccccccncncccncnnnnos 37 8 1 5 1 COMU MO E E EE 38 B15 2k MOE ia A AAA aA 38 A coat Epa EA E r e aaea doses Samet AINE A CAAA ENAERE 38 8 1 5 4 Read Community do dodo oO 39 8 4 5 5 Write COMMUNITY oia 39 B 1 5 0 Trap MOOG tii A RA N e eeen 39 A a bed e aa aaa aaea ty ned ed edhe oad a AEAEE ENN 40 8 1 5 8 Trap Community si ia 40 9 1 0 9 Trap Destinia ii 40 8 1 5 10 Trap Authentication Failure cc cccescrseels sass necedengedes ee lacstpventeudespgeetedazeearanuesodiags 41 E NA O anh aes A de 41 98 1 0 12 Trap Inform Mode ciii sii 41 8 1 5 139 Trap Inform PIMC OU usted ak 42 8 1 5 14 Trap Inform Retry TiMes autre id iidi at c 42 8 1 5 15 Trap Probe Security Engine ID oooonocccconinicicnnononcccnnonannncnnnonancnnnnnnrncnnnnnnns 43 8 1 5 16 Trap Security Engine ID isa 43 8 1 5 17 Trap Security NANG stat till 43 A A A A TT 44 8 1 5 19 Community Adds aeae a ds 44 8 1 5 20 Community Dele iras tddi docs 44 8 1 5 21 COMANDO UD sas il Add erent ree 45 Bese ISO
36. P Txhold lt holdcount gt STP MaxHops lt maxhops gt STP MaxAge lt max_age gt STP FwdDelay lt delay gt STP bpduFilter enableldisable STP bpduGuard enableldisable STP recovery lt timeout gt STP CName lt config name gt lt integer gt STP Status lt msti gt lt port_list gt STP Msti Priority lt msti gt lt priority gt STP Msti Map lt msti gt clear STP Msti Add lt msti gt lt vid gt STP Port Configuration lt port_list gt STP Port Mode lt port_list gt enableldisable STP Port Edge lt port_list gt enableldisable STP Port AutoEdge lt port_list gt enableldisable STP Port P2P lt port_list gt enableldisablelauto STP Port RestrictedRole lt port_list gt enableldisable STP Port RestrictedTcn lt port_list gt enableldisable STP Port bpduGuard lt port_list gt enableldisable STP Port Statistics lt port_list gt STP Port Mcheck lt port_list gt STP Msti Port Configuration lt msti gt lt port_list gt STP Msti Port Cost lt msti gt lt port_list gt lt path_cost gt STP Msti Port Priority lt msti gt lt port_list gt lt priority gt 9 1 Configuration STP gt Configuration help Description Show STP Bridge configuration Syntax STP Configuration 9 2 Version STP gt Version help Description Set or show the STP Bridge protocol version Syntax STP Version lt stp_version gt Parameters lt s
37. Parameters lt port_list gt Port list or all default All ports 7 2 Add PVLAN gt Add help Description Add or modify Private VLAN entry Syntax PVLAN Add lt pvlan_id gt lt port_list gt Parameters lt pvlan_id gt Private VLAN ID lt port_list gt Port list or all default All ports 7 3 Delete PVLAN gt Delete help Description Delete Private VLAN entry Syntax PVLAN Delete lt pvlan_id gt Parameters lt pvlan_id gt Private VLAN ID 7 4 Lookup PVLAN gt Lookup help Description Lookup Private VLAN entry Syntax PVLAN Lookup lt pvlan_id gt Parameters lt pvlan_id gt Private VLAN ID default Show all PVLANSs 7 5 Isolate PVLAN gt Isolate help Description Set or show the port isolation mode Syntax PVLAN Isolate lt port_list gt enableldisable Parameters lt port_list gt Port list or all default All ports enable Enable port isolation disable Disable port isolation default Show port isolation port list 8 Security Security management Available Command groups Switch Switch security Network Network security AAA Authentication Authorization and Accounting 8 1 Switch Switch security Available command groups Security Switch Password System password Security Switch Auth Authentication Security Switch SSH Secure Shell Security Switch HTTPS Hypertext Transfer Protocol over Secure Socket Layer Security Switc
38. Protocol It is a protocol that generated the error response diagnostic or routing purposes ICMP messages generally contain information about routing difficulties or simple exchanges such as time stamp or echo transactions For example the PING command uses ICMP to test an Internet connection IEEE 802 1X IGMP IEEE 802 1X is an IEEE standard for port based Network Access Control It provides authentication to devices attached to a LAN port establishing a point to point connection or preventing access from that port if authentication fails With 802 1X access to all switch ports can be centrally controlled from a server which means that authorized users can use the same credentials for authentication from any point within the network IGMP is an acronym for Internet Group Management Protocol It is a communications protocol used to manage the membership of Internet Protocol multicast groups IGMP is used by IP hosts and adjacent multicast routers to establish multicast group memberships It is an integral part of the IP multicast specification like ICMP for unicast connections IGMP can be used for online video and gaming and allows more efficient use of resources when supporting these uses IGMP Querier IMAP A router sends IGMP Query messages onto a particular link This router is called the Querier IMAP is an acronym for Internet Message Access Protocol It is a protocol for email clients to retrieve email messages
39. a WPA Radius WPS WTR WPA Radius is an acronym for Wi Fi Protected Access Radius 802 1X authentication server WPA was designed to enhance the security of wireless networks There are two flavors of WPA enterprise and personal Enterprise is meant for use with an IEEE 802 1 X authentication server which distributes different keys to each user Personal WPA utilizes less scalable pre shared key PSK mode where every allowed computer is given the same passphrase In PSK mode security depends on the strength and secrecy of the passphrase The design of WPA is based on a Draft 3 of the IEEE 802 111 standard Wikipedia WPS is an acronym for Wi Fi Protected Setup It is a standard for easy and secure establishment of a wireless home network The goal of the WPS protocol is to simplify the process of connecting any home device to the wireless network Wikipedia WTR is an acronym for Wait To Restore This is the time a fail on a resource has to be not active before restoration back to this previously failing resource is done 120
40. a field in the header of IP packets for packet classification purposes 106 EPS EPS Is an abbreviation for Ethernet Protection Switching defined in ITU T G 8031 Ethernet Type FTP Ethernet Type or EtherType is a field in the Ethernet MAC header defined by the Ethernet networking standard It is used to indicate which protocol is being transported in an Ethernet frame FTP is an acronym for File Transfer Protocol It is a transfer protocol that uses the Transmission Control Protocol TCP and provides file writing and reading It also provides directory service and security features Fast Leave HTTP IGMP snooping Fast Leave processing allows the switch to remove an interface from the forwarding table entry without first sending out group specific queries to the interface The VLAN interface is pruned from the multicast tree for the multicast group specified in the original leave message Fast leave processing ensures optimal bandwidth management for all hosts on a switched network even when multiple multicast groups are in use simultaneously HTTP is an acronym for Hypertext Transfer Protocol It is a protocol that used to transfer or convey information on the World Wide Web WWW HTTP defines how messages are formatted and transmitted and what actions Web servers and browsers should take in response to various commands For example when you enter a URL in your browser this actually sends an HTTP command to th
41. accounting services Tag Priority TCP Tag Priority is a 3 bit field storing the priority level for the 802 1Q frame TCP is an acronym for Transmission Control Protocol It is a communications protocol that uses the Internet Protocol IP to exchange the messages between computers The TCP protocol guarantees reliable and in order delivery of data from sender to receiver and distinguishes data for multiple connections by concurrent applications for example Web server and e mail server running on the same host The applications on networked hosts can use TCP to create connections to one another It is known as a connection oriented protocol which means that a connection is established and maintained until such time as the message or messages to be exchanged by the application programs at each end have been exchanged TCP is responsible for ensuring that a message is divided into the packets that IP manages and for reassembling the packets back into the complete message at the other end Common network applications that use TCP include the World Wide Web WWW e mail and File Transfer Protocol FTP TELNET TELNET is an acronym for TELetype NETwork It is a terminal emulation protocol that uses the Transmission Control Protocol TCP and provides a virtual connection between TELNET server and TELNET client TELNET enables the client to control the server and communicate with other servers on the network To start a Telnet session
42. administrator Dynamic addressing simplifies network administration because the software keeps track of IP addresses rather than requiring an administrator to manage the task This means that a new computer can be added to a network without the hassle of manually assigning it a unique IP address DHCP Relay DHCP Relay is used to forward and to transfer DHCP messages between the clients and the server when they are not on the same subnet domain The DHCP option 82 enables a DHCP relay agent to insert specific information into a DHCP request packets when forwarding client DHCP packets to a DHCP server and remove the specific information from a DHCP reply packets when forwarding server DHCP packets to a DHCP client The DHCP server can use 105 this information to implement IP address or other assignment policies Specifically the option works by setting two sub options Circuit ID option 1 and Remote ID option2 The Circuit ID sub option is supposed to include information specific to which circuit the request came in on The Remote ID sub option was designed to carry information relating to the remote host end of the circuit The definition of Circuit ID in the switch is 4 bytes in length and the format is vlan_id module_id port_no The parameter of vlan_id is the first two bytes represent the VLAN ID The parameter of module_id is the third byte for the module ID in standalone switch it always equal 0 in stackable switch it
43. ble Parameters lt port_list gt Port list or all default All ports port_descr Description of the port sysm_name System name sys_descr Description of the system sys_capa System capabilities mgmt_addr Master s IP address default Show optional TLV s configuration enable Enables TLV disable Disable TLV default Show optional TLV s configuration 13 4 Interval lt interval gt LLDP gt Interval help Description Set or show LLDP Tx interval Syntax LLDP Interval lt interval gt Parameters lt interval gt LLDP transmission interval 5 32768 13 5 Hold LLDP gt Hold help Description Set or show LLDP Tx hold value Syntax LLDP Hold lt hold gt Parameters lt hold gt LLDP hold value 2 10 13 6 Delay LLDP gt Delay help Description Set or show LLDP Tx delay Syntax LLDP Delay lt delay gt Parameters lt delay gt LLDP transmission delay 1 8192 13 7 Reinit LLDP gt Reinit help Description Set or show LLDP reinit delay Syntax LLDP Reinit lt reinit gt Parameters lt reinit gt LLDP reinit delay 1 10 13 8 Info LLDP gt Info help Description Show LLDP neighbor device information Syntax LLDP Info lt port_list gt Parameters lt port_list gt Port list or all default All ports 13 9 Statistics LLDP gt Statistics help Description Show LLDP Statistics Syntax LLDP Statistics lt port_l
44. cation lt location gt Parameters we lt location gt System location string Use clear or to clear the string Note In CLI no blank or space characters are permitted as part of a contact 2 5 Timezone System gt Timezone help Description Set or show the system time zone offset Syntax System Timezone lt offset gt Parameters lt offset gt Time zone offset in minutes 720 to 720 relative to UTC 2 6 Reboot System gt Reboot help Description Reboot the system Syntax System Reboot 2 7 Restore Default System gt Restore Default help Description Restore factory default configuration Syntax System Restore Default keep_ip Parameters keep_ip Keep IP configuration default Restore full configuration 2 8 Password System gt Password help Description Set the system password Syntax System Password lt password gt Parameters we lt password gt System password string Use clear or to clear the string 2 9 Load System gt Load help Description Show current CPU load 100ms 1s and 10s running average in percent zero is idle Syntax System Load 2 10 Log System gt Log help Description Show or clear the system log Syntax System Log lt log_id gt alllinfolwarninglerror clear Parameters lt log_id gt System log ID or range default All entries all Show all levels default info
45. ce for guest users and visitors with their own IP Telephony handsets and other similar appliances supporting interactive voice services Guest Voice Signaling conditional for use in network topologies that require a different policy for the guest voice signaling than for the guest voice media Softphone Voice for use by softphone applications on typical data centric devices such as PCs or laptops This class of endpoints frequently does not support multiple VLANs if at all and are typically configured to use an untagged VLAN or a single tagged data specific VLAN Video Conferencing for use by dedicated Video Conferencing equipment and other similar appliances supporting real time interactive video audio services Streaming Video for use by broadcast or multicast based video content distribution and other similar applications supporting streaming video services that require specific network policy treatment Video applications relying on TCP with buffering would not be an intended use of this application type Video Signaling conditional for use in network topologies that require a separate policy for the video signaling than for the video media The device is using tagged frames The device is using untagged frames VLAN id This field may specify one of eight priority levels 0 through 7 as defined by IEEE 802 1D 2004 3 This field shall contain the DSCP value to be used to provide Diffserv node behavior for
46. cseeeeeeeeeeeeeeseeesenseenseeeeeees 72 10 1 Configuration sd ise 72 e OO 72 RA 73 TOA QUST ce ices eet Fests iii 73 AOS FASO AV Gs scsi ais Gay sauces ioe cyan uae ces Manes tose veaencechaoeaunsan Natne teats deamenesataetencan cies 73 10 6 AU ccsteicsgetccketeeaengtaesece aan tcarohenepiv ld ated aedensehetuaiedinaeiela pied ETAETA KEAR EEn ese 74 10 7 FIQOCIIG PEO A o a e a a a aaa eaten NUN ear EET N E 74 A E E E A 74 10 9 Stat COOPER PRA SU E E E E cantante 75 11 Aggr Link Aggregation iden anasan dai 76 111 GContigurat N ena adi 76 A E 76 14 3 DOSIS 0 ti A A E o ER 76 TA e es ea dde cio oa Ol 77 e E E E E T 77 12 LACP Link Aggregation Control Protocol ssssssnssennsennnennnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnnn annann 78 12 1 ContiguratiO N sta iii 78 A E TA A E E 78 1d aladas 78 AN A eer aa aa aa A dN eet daa e 79 A A O 79 A SMS NCS ti a e dot ice 79 13 LLDP Link Layer Discovery Protocol c csecceseesseseeseeeeneeeeeeeeeeseaeseseeeeeeneseseaesaseeeeneeeeneas 81 TiS li GONMQUPAUION esa an adit 81 A A E E 81 133 Optional TEV sion do iia 82 13 4 Interval lt Smerval lucia an ri Goel tecniebl della hanes 82 A A TIN 83 13 6 Delays n a liegt es vaden tude nee E a EAEE A EE T AREE aque 83 19 ROM a o ras 83 MIMO dar olaaa 83 E Me Se es hb 84 14 LLDPMED Link Layer Discovery Protocol Media 2 csssscccesseceesseeeeeeeseeeseeeeseaeeeenseaeseenseanseeneees 85 141 COMU MON pat did 85 I E A
47. d time 8 2 2 9 Authenticate Security Network NAS gt Authenticate help Description Refresh restart 802 1X authentication process Syntax Security Network NAS Authenticate lt port_list gt now Parameters lt port_list gt Port list or all default All ports now Force re authentication immediately 8 2 2 10 Statistics Security Network NAS gt Statistics help Description Show or clear 802 1X statistics Syntax Security Network NAS Statistics lt port_list gt clearleapollradius Parameters lt port_list gt Port list or all default All ports clear Clear statistics eapol Show EAPOL statistics radius Show Backend Server statistics default Show all statistics 8 2 3 ACL Access Control List Available Commands Security Network ACL Configuration lt port_list gt Security Network ACL Action lt port_list gt permitldeny lt rate_limiter gt lt port_copy gt lt logging gt lt shutdown gt Security Network ACL Policy lt port_list gt lt policy gt Security Network ACL Rate lt rate_limiter_list gt lt packet_rate gt Security Network ACL Add lt ace_id gt lt ace_id_next gt switch port lt port gt policy lt policy gt lt vid gt lt tag_prio gt lt dmac_type gt etype lt etype gt lt smac gt lt dmac gt arp lt sip gt lt dip gt lt smac gt lt arp_opcode gt lt arp_flags gt
48. dia SSH is an acronym for Secure SHell It is a network protocol that allows data to be exchanged using a secure channel between two networked devices The encryption used by SSH provides confidentiality and integrity of data over an insecure network The goal of SSH was to replace the earlier rlogin TELNET and rsh protocols which did not provide strong authentication or guarantee confidentiality Wikipedia SSM In SyncE this is an abbreviation for Synchronization Status Message and is containing a QL indication Spanning Tree Protocol is an OSI layer 2 protocol which ensures a loop free topology for any bridged LAN The original STP protocol is now obsolete by RSTP Switch ID Switch IDs 1 16 are used to uniquely identify the switches within a stack The Switch ID of each switch is shown on the display on the front of the switch and 116 SyncE E is used widely in the web pages as well as in the CLI commands SyncE Is an abbreviation for Synchronous Ethernet This functionality is used to make a network clock frequency synchronized Not to be confused with real time clock synchronized IEEE 1588 TACACS TACACS is an acronym for Terminal Acess Controller Access Control System Plus It is a networking protocol which provides access control for routers network access servers and other networked computing devices via one or more centralized servers TACACS provides separate authentication authorization and
49. discardlrestart Parameters lt port_list gt Port list or all default All ports discard Discard frame after 16 collisions restart Restart back off algorithm after 16 collisions default Show mode 4 8 Statistics Port gt Statistics help Description Show port statistics Syntax Port Statistics lt port_list gt lt command gt Parameters lt port_list gt Port list or all default All ports lt command gt The command parameter takes the following values clear Clear port statistics packets Show packet statistics bytes Show byte statistics errors Show error statistics discards Show discard statistics filtered Show filtered statistics low Show low priority statistics normal Show normal priority statistics medium Show medium priority statistics high Show high priority statistics default Show all port statistics 4 9 VeriPHY Port gt VeriPHY help Description Run cable diagnostics Syntax Port VeriPHY lt port_list gt Parameters lt port_list gt Port list or all default All ports 5 MAC MAC address table Available Commands MAC Configuration lt port_list gt MAC Add lt mac_addr gt lt port_list gt lt vid gt MAC Delete lt mac_addr gt lt vid gt MAC Lookup lt mac_addr gt lt vid gt MAC Agetime lt age_time gt MAC Learning lt port_list gt autoldisablelsecure MAC Dump lt mac_max gt
50. e the software in an absolute machine readable format e g HEX file is also granted The software may only be used in products utilizing the Vitesse switch products Table of Contents A O 12 11 General Commands uc loo eaaa 12 1 2 Command GrOUpS ua i 12 2 System System settings and reset Options cccscceseseesseeeeeeeeeeeeeeseaeseseeeeseeeseseaeeneeeeeneneess 13 21 Configuration a e a pa a Eea ae Sr OE AEA araa EEEa ETSER 13 PERAN Md 13 23 Contat eieae e a a E A E AEE RAEE ERE A EER 14 A ns se occ ie ti ed etd at aa aaa dad Wiad dam ad gata tees eateaser 14 eo MMS tai a E teat gees 14 LE 0 0 01 OCC PE es ental E ERK a E E aA a Ei 15 2 7 Restore Detalla dnd 15 A A T AAT 15 2d LOA A oe A a AM oo 15 21D A lead sbetiatehanip diene telat hanliedzetaaneausteds terminate 16 3 IP IP configuration and PiN ceecceceseeeeeeeeeeeeeeeeeeeseeeeeeeseeseeeeeseseseeeseseseeesesesneeseseeeeseseseeneees 17 A 222 c oeaccauitcadeesatcecrstereneiacad accep aaa teatduatnda temesterectcessaqenseaeeacmemeiee 17 A O 17 CRE RETS OAE Ree ee ree rere ee ee eer On een ee reer eer eee 17 SPRUNG aces E sp devas ee easden ce ten eeda uns uc tian E susin gs daeudtauues ns ch sancter dnierdetedteme dat teds 18 A miaaimmmasaindursasercansannantanaeaasisanimaddenmasuansestaarutntuets 18 42 Port Port Management ii id iia dia i 19 AM Configurations pd ts 19 A E EEEE A ce OEE E hati cottage E ted se E thames EEE decenthad 19 43 MOS dl 20 AAS IOW GON
51. e STP point2point port parameter Syntax STP Port P2P lt port_list gt enableldisablelauto Parameters lt port_list gt Port list or all default All ports enable Enable MSTP point2point disable Disable MSTP point2point auto Automatic MSTP point2point detection 9 20 Port RestrictedRole STP gt Port RestrictedRole help Description Set or show the MSTP restrictedRole port parameter Syntax STP Port RestrictedRole lt port_list gt enableldisable Parameters lt port_list gt Port list or all default All ports enable Enable MSTP restricted role disable Disable MSTP restricted role 9 21 Port RestrictedTcn STP gt Port RestrictedTcn help Description Set or show the MSTP restrictedTcn port parameter Syntax STP Port RestrictedTcn lt port_list gt enableldisable Parameters lt port_list gt Port list or all default All ports enable Enable MSTP restricted TCN disable Disable MSTP restricted TCN 9 22 Port bpduGuard STP gt Port bpduGuard help Description Set or show the bpduGuard port parameter Syntax STP Port bpduGuard lt port_list gt enableldisable Parameters lt port_list gt Port list or all default All ports enable Enable port BPDU Guard disable Disable port BPDU Guard 9 23 Port Statistics STP gt Port Statistics help Description Show STP port statistics Syntax STP Port Statistics lt port_li
52. e Web server directing it to fetch and transmit the requested Web page The other main standard that controls how the World Wide Web works is HTML which covers how Web pages are formatted and displayed Any Web server machine contains in addition to the Web page files it can serve an HTTP daemon a program that is designed to wait for HTTP requests and handle them when they arrive The Web browser is an HTTP client sending requests to server machines An HTTP client initiates a request by establishing a Transmission Control Protocol TCP connection to a particular port on a remote host port 80 by default An HTTP server listening on that port waits for the client to send a request message HTTPS 107 ICMP HTTPS is an acronym for Hypertext Transfer Protocol over Secure Socket Layer It is used to indicate a secure HTTP connection HTTPS provide authentication and encrypted communication and is widely used on the World Wide Web for security sensitive communication such as payment transactions and corporate logons HTTPS is really just the use of Netscape s Secure Socket Layer SSL as a sublayer under its regular HTTP application layering HTTPS uses port 443 instead of HTTP port 80 in its interactions with the lower layer TCP IP SSL uses a 40 bit key size for the RC4 stream encryption algorithm which is considered an adequate degree of encryption for commercial exchange ICMP is an acronym for Internet Control Message
53. e are six QCE frame types Ethernet Type VLAN UDP TCP Port DSCP TOS and Tag Priority Frames can be classified by one of 4 different QoS classes Low Normal Medium and High for individual application QCL is an acronym for QoS Control List It is the list table of QCEs containing QoS control entries that classify to a specific QoS class on specific traffic objects Each accessible traffic object contains an identifier to its QCL The privileges determine specific traffic object to specific QoS class QL In SyncE this is the Quality Level of a given clock source This is received on a port in a SSM indicating the quality of the clock received in the port QoS is an acronym for Quality of Service It is a method to guarantee a bandwidth relationship between individual applications or protocols A communications network transports a multitude of applications and data including high quality video and delay sensitive data such as real time voice Networks must provide secure predictable measurable and sometimes guaranteed services Achieving the required QoS becomes the secret to a successful end to end business solution Therefore QoS is the set of techniques to manage network resources There are 4 web pages associated with the QoS configuration QoSIQoS Control List The web page shows the QCEs in a prioritized way highest top to lowest bottom Default the table is empty An ingress frame will only get a hit on one
54. e is a rather substantial movement to adopt a new version of the Internet Protocol IPv6 which would have 128 bits Internet Protocol addresses This number can be represented roughly by a three with thirty nine zeroes after it However IPv4 is still the protocol of choice for most of the Internet IPMC IPMC is an acronym for IP MultiCast IP Source Guard IP Source Guard is a secure feature used to restrict IP traffic on DHCP snooping untrusted ports by filtering traffic based on the DHCP Snooping Table or manually configured IP Source Bindings It helps prevent IP spoofing attacks when a host tries to spoof and use the IP address of another host L LACP LACP is an IEEE 802 3ad standard protocol The Link Aggregation Control Protocol allows bundling several physical ports together to form a single logical port LLDP 109 LOC M LLDP is an IEEE 802 1ab standard protocol The Link Layer Discovery Protocol is used for network discovery and works by having the units in the network exchanging information with their neighbors using LLDP frames LOC is an acronym for Loss Of Connectivity and is detected by a MEP and is indicating lost connectivity in the network Can be used as a switch criteria by EPS MAC Table MEP MD5 Switching of frames is based upon the DMAC address contained in the frame The switch builds up a table that maps MAC addresses to switch ports for knowing which ports the frames should go to based upon t
55. eight gt Parameters lt port_list gt Port list or all default All ports lt class gt Traffic class low normal medium high or 1 2 3 4 lt weight gt Traffic class weight 1 2 4 8 15 11 Rate Limiter QoS gt Rate Limiter help Description Set or show the port rate limiter Syntax QoS Rate Limiter lt port_list gt enableldisable lt bit_rate gt Parameters lt port_list gt Port list or all default All ports enable Enable rate limiter disable Disable rate limiter default Show rate limiter mode lt bit_rate gt Rate in 1000 bits per second 500 1000000 kbps 15 12 Shaper QoS gt Shaper help Description Set or show the port shaper Syntax QoS Shaper lt port_list gt enableldisable lt bit_rate gt Parameters lt port_list gt Port list or all default All ports enable Enable shaper disable Disable shaper default Show shaper mode lt bit_rate gt Rate in 1000 bits per second 500 1000000 kbps 15 13 Storm Unicast QoS gt Storm Unicast help Description Set or show the unicast storm rate limiter Syntax QoS Storm Unicast enableldisable lt packet_rate gt Parameters enable Enable unicast storm control disable Disable unicast storm control lt packet_rate gt Rate in pps 1 2 4 512 1k 2k 4k 1024k 15 14 Storm Multicast QoS gt Storm Multicast help Description Set or show the multicast st
56. ess filtering 6 6 Add VLAN gt Add help Description Add or modify VLAN entry Syntax VLAN Add lt vid gt lt port_list gt Parameters lt vid gt VLAN ID 1 4095 lt port_list gt Port list or all default All ports 6 7 Delete VLAN gt Delete help Description Delete VLAN entry Syntax VLAN Delete lt vid gt Parameters lt vid gt VLAN ID 1 4095 6 8 Lookup VLAN gt Lookup help Description Lookup VLAN entry Syntax VLAN Lookup lt vid gt Parameters lt vid gt VLAN ID 1 4095 default Show all VLANs 6 9 Status VLAN gt Status help Description VLAN Port Configuration Status Syntax VLAN Status lt port_list gt combinedIstaticlnasImstplalllconflicts Parameters lt port_list gt Port list or all default All ports combined combined VLAN Users configuration static Static port configuration nas NAS port configuration mstp MSTP port configuration all All VLAN Users configuration default combined VLAN Users configuration 7 PVLAN Private VLAN Available Commands PVLAN Configuration lt port_list gt PVLAN Add lt pvlan_id gt lt port_list gt PVLAN Delete lt pvlan_id gt PVLAN Lookup lt pvlan_id gt PVLAN Isolate lt port_list gt enableldisable 7 1 Configuration PVLAN gt Configuration help Description Show Private VLAN configuration Syntax PVLAN Configuration lt port_list gt
57. from a mail server 108 IMAP is the protocol that IMAP clients use to communicate with the servers and SMTP is the protocol used to transport mail to an IMAP server The current version of the Internet Message Access Protocol is IMAP4 It is similar to Post Office Protocol version 3 POP3 but offers additional and more complex features For example the IMAP4 protocol leaves your email messages on the server rather than downloading them to your computer If you wish to remove your messages from the server you must use your mail client to generate local folders copy messages to your local hard drive and then delete and expunge the messages from the server IP is an acronym for Internet Protocol It is a protocol used for communicating data across a internet network IP is a best effort system which means that no packet of information sent over it is assured to reach its destination in the same condition it was sent Each device connected to a Local Area Network LAN or Wide Area Network WAN is given an Internet Protocol address and this IP address is used to identify the device uniquely among all other devices connected to the extended network The current version of the Internet protocol is IPv4 which has 32 bits Internet Protocol addresses allowing for in excess of four billion unique addresses This number is reduced drastically by the practice of webmasters taking addresses in large blocks the bulk of which remain unused Ther
58. h SNMP Simple Network Management Protocol 8 1 1 Password Available Command Security Switch gt Password help Description Set the system password Syntax Security Switch Password lt password gt Parameters lt password gt System password string Use clear or to clear the string 8 1 2 Auth Authentication Available Commands Security Switch Auth Configuration Security Switch Auth Method consoleltelnetisshlweb nonellocallradius enableldisable 8 1 2 1 Configuration Security Switch Auth gt Configuration help Description Show Auth configuration Syntax Security Switch Auth Configuration 8 1 2 2 Method Security Switch Auth gt Method help Description Set or show Auth method Syntax Security Switch Auth Method consoleltelnetlsshlweb nonellocallradius enableldisable Parameters console Settings for console telnet Settings for telnet ssh Settings for ssh web Settings for web none Authentication disabled local Use local authentication radius Use remote RADIUS authentication default Show client authentication method enable Enable local authentication if remote authentication fails disable Disable local authentication if remote authentication fails default Show backup client authentication configuration 8 1 3 SSH Secure Shell Available Commands Security Switch SSH Configuration Security Switch SSH Mode enableldisable 8 1 3 1 Co
59. he DMAC address in the frame This table contains both static and dynamic entries The static entries are configured by the network administrator if the administrator wants to do a fixed mapping between the DMAC address and switch ports The frames also contain a MAC address SMAC address which shows the MAC address of the equipment sending the frame The SMAC address is used by the switch to automatically update the MAC table with these dynamic MAC addresses Dynamic entries are removed from the MAC table if no frame with the corresponding SMAC address have been seen after a configurable age time MEP is an acronym for Maintenance Entity Endpoint and is an endpoint in a Maintenance Entity Group ITU T Y 1731 MDS is an acronym for Message Digest algorithm 5 MDS is a message digest algorithm used cryptographic hash function with a 128 bit hash value It was designed by Ron Rivest in 1991 MDS is officially defined in RFC 1321 The MD5 Message Digest Algorithm Mirroring N For debugging network problems or monitoring network traffic the switch system can be configured to mirror frames from multiple ports to a mirror port In this context mirroring a frame is the same as copying the frame Both incoming source and outgoing destination frames can be mirrored to the mirror port NetBIOS NetBIOS is an acronym for Network Basic Input Output System It is a program that allows applications on separate computers to commu
60. he user has downloaded it However some implementations allow users or an administrator to specify that mail be saved for some period of time POP can be thought of as a store and forward service An alternative protocol is Internet Message Access Protocol IMAP IMAP provides the user with more capabilities for retaining e mail on the server and for organizing it in folders on the server IMAP can be thought of as a remote file server POP and IMAP deal with the receiving of e mail and are not to be confused with the Simple Mail Transfer Protocol SMTP You send e mail with SMTP and a mail handler receives it on your recipient s behalf Then the mail is read using POP or IMAP IMAP4 and POP3 are the two most prevalent Internet standard protocols for e mail retrieval Virtually all modern e mail clients and servers support both PPPoE PPPoE is an acronym for Point to Point Protocol over Ethernet It is a network protocol for encapsulating Point to Point Protocol PPP frames inside Ethernet frames It is used mainly with ADSL services where individual users connect to the ADSL transceiver modem over Ethernet and in plain Metro Ethernet networks Wikipedia Private VLAN In a private VLAN communication between ports in that private VLAN is not 112 QCE QCL QL QoS permitted A VLAN can be configured as a private VLAN QCE is an acronym for QoS Control Entry It describes QoS class associated with a particular QCE ID Ther
61. i standard to improve WLAN security It is an encryption standard by the U S government which will replace DES and 3DES AES has a fixed block size of 128 bits and a key size of 128 192 or 256 bits APS APS is an acronym for Automatic Protection Switching This protocol is used to secure that switching is done bidirectional in the two ends of a protection group as defined in G 8031 Aggregation Use multiple ports in parallel to increase the link speed beyond the limits of a port and to increase the redundancy for higher availability Also Port Aggregation Link Aggregation ARP ARP is an acronym for Address Resolution Protocol It is a protocol that used to convert an IP address into a physical address such as an Ethernet address ARP allows a host to communicate with other hosts when only the Internet address of its neighbors is known Before using IP the host sends a broadcast ARP request containing the Internet address of the desired destination system ARP Inspection ARP Inspection is a secure feature Several types of attacks can be launched against a host or devices connected to Layer 2 networks by poisoning the ARP caches This feature is used to block such attacks Only valid ARP requests and responses can go through DUT Auto Negotiation Auto negotiation is the process where two different devices establish the mode of operation and the speed settings that can be shared by those devices for a link CC CC is an acronym for
62. ist gt lt key gt LACP Role lt port_list gt activelpassive LACP Status lt port_list gt LACP Statistics lt port_list gt clear 12 1 Configuration LACP gt Configuration help Description Show LACP configuration Syntax LACP Configuration lt port_list gt Parameters lt port_list gt Port list or all default All ports 12 2 Mode LACP gt Mode help Description Set or show LACP mode Syntax LACP Mode lt port_list gt enableldisable Parameters lt port_list gt Port list or all default All ports enable Enable LACP protocol disable Disable LACP protocol default Show LACP mode 12 3 Key LACP gt Key help Description Set or show the LACP key Syntax LACP Key lt port_list gt lt key gt Parameters lt port_list gt Port list or all default All ports lt key gt LACP key 1 65535 or auto 12 4 Role LACP gt Role help Description Set or show the LACP role Syntax LACP Role lt port_list gt activelpassive Parameters lt port_list gt Port list or all default All ports active Initiate LACP negotiation passive Listen for LACP packets default Show LACP role 12 5 Status LACP gt Status help Description Show LACP Status Syntax LACP Status lt port_list gt Parameters lt port_list gt Port list or all default All ports 12 6 Statistics LACP gt Statistics help Descri
63. ist gt clear Parameters lt port_list gt Port list or all default All ports clear Clear LLDP statistics 14 LLDPMED Link Layer Discovery Protocol Media Available Commands LLDPMED Configuration lt port_list gt LLDPMED Civic countrylstatelcountylcityldistrictIblocklstreetlleading_street_di rectionltrailing street_suffix str_suflhouse_nolhouse_no_suffixllandmarkladditional_infolnam elzip_codelbuildinglapartmentlfloorlroom_numberlplace_typelpostal _com_namelp_o_boxladditional_code lt civic_value gt LLDPMED ecs lt ecs_value gt LLDPMED policy delete lt policy_list gt LLDPMED policy add voicelvoice_signalinglguest_voicelguest_voice_signaling Isoftphone_voicelvideo_conferencinglstreaming_videolvideo_signaling taggedluntagged lt vlan_id gt lt 12_priority gt lt dscp gt LLDPMED port policies lt port_list gt lt policy_list gt LLDPMED Coordinates latitudellongitudelaltitude northlsouthlwestleastlmeterslfloor coordinate_value LLDPMED Datum wgs84Inad83_navd88Inad83_mllw LLDPMED Fast lt count gt LLDPMED Info lt port_list gt LLDPMED debug_med_transmit_var lt port_list gt enableldisable 14 1 Configuration LLDPMED gt Configuration help Description Show LLDP MED configuration Syntax LLDPMED Configuration lt port_list gt Parameters lt port_list gt Port list or all default All ports 14 2 Civic LLDPMED gt Civic help Descriptio
64. iv_password gt Security Switch SNMP User Lookup lt index gt Security Switch SNMP Group Add lt security_model gt lt security_name gt lt group_name gt Security Switch SNMP Group Delete lt index gt Security Switch SNMP Group Lookup lt index gt Security Switch SNMP View Add lt view_name gt includedlexcluded lt oid_subtree gt Security Switch SNMP View Delete lt index gt Security Switch SNMP View Lookup lt index gt Security Switch SNMP Access Add lt group_name gt lt security_model gt lt security_level gt lt read_view_name gt lt write_view_name gt Security Switch SNMP Access Delete lt index gt Security Switch SNMP Access Lookup lt index gt 8 1 5 1 Configuration Security Switch SNMP gt Configuration help Description Show SNMP configuration Syntax Security Switch SNMP Configuration 8 1 5 2 Mode Security Switch SNMP gt Mode help Description Set or show the SNMP mode Syntax Security Switch SNMP Mode enableldisable Parameters enable Enable SNMP disable Disable SNMP default Show SNMP mode 8 1 5 3 Version Security Switch SNMP gt Version help Description Set or show the SNMP protocol version Syntax Security Switch SNMP Version 112c13 Parameters 1 SNMP version 1 2c SNMP version 2c 3 SNMP version 3 default Show SNMP version 8 1 5 4 Read Community Security Switch SNMP gt Read Community help Description
65. luggable is a compact hot pluggable transceiver used for both telecommunication and data communications applications It interfaces a network device mother board for a switch router media converter or similar device to a fiber optic or copper networking cable It is a popular industry format supported by many network component vendors SFP transceivers are designed to support SONET Gigabit Ethernet Fiber Channel and other communications standards SFP DDM SHA Shaper SMTP SNMP DDM Digital Diagnostics Monitoring Modern optical SFP transceivers support digital diagnostics monitoring DDM functions according to the industry standard SFF 8472 This feature is also known as digital optical monitoring DOM This feature gives the end user the ability to monitor real time parameters of the SFP such as optical output power optical input power temperature laser bias current and transceiver supply voltage SHA is an acronym for Secure Hash Algorithm It designed by the National Security Agency NSA and published by the NIST as a U S Federal Information Processing Standard Hash algorithms compute a fixed length digital representation known as a message digest of an input data sequence the message of any length A shaper can limit the bandwidth of transmitted frames It is located after the ingress queues SMTP is an acronym for Simple Mail Transfer Protocol It is a text based protocol that uses the Transmission
66. means switch ID The parameter of port_no is the fourth byte and it means the port number The Remote ID is 6 bytes in length and the value is equal the DHCP relay agentjis MAC address DHCP Snooping DNS DoS DHCP Snooping is used to block intruder on the untrusted ports of DUT when it tries to intervene by injecting a bogus DHCP reply packet to a legitimate conversation between the DHCP client and server DNS is an acronym for Domain Name System It stores and associates many types of information with domain names Most importantly DNS translates human friendly domain names and computer hostnames into computer friendly IP addresses For example the domain name www example com might translate to 192 168 0 1 DoS is an acronym for Denial of Service In a denial of service DoS attack an attacker attempts to prevent legitimate users from accessing information or services By targeting at network sites or network connection an attacker may be able to prevent network users from accessing email web sites online accounts banking etc or other services that rely on the affected computer Dotted Decimal Notation DSCP Dotted Decimal Notation refers to a method of writing IP addresses using decimal numbers and dots as separators between octets An IPv4 dotted decimal address has the form x y z w where x y z and w are decimal numbers between O and 255 DSCP is an acronym for Differentiated Services Code Point It is
67. mode 8 1 5 13 Trap Inform Timeout Security Switch SNMP gt Trap Inform Timeout help Description Set or show the SNMP trap inform timeout usecs Syntax Security Switch SNMP Trap Inform Timeout lt timeout gt Parameters lt timeout gt SNMP trap inform timeout 0 2147 seconds default Show SNMP trap inform timeout 8 1 5 14 Trap Inform Retry Times Security Switch SNMP gt Trap Inform Retry Times help Description Set or show the SNMP trap inform retry times Syntax Security Switch SNMP Trap Inform Retry Times lt retries gt Parameters lt retries gt SNMP trap inform retransmited times 0 255 default Show SNMP trap inform retry times 8 1 5 15 Trap Probe Security Engine ID Security Switch SNMP gt Trap Probe Security Engine ID help Description Show SNMP trap security engine ID probe mode Syntax Security Switch SNMP Trap Probe Security Engine ID enableldisable Parameters enable Enable SNMP trap security engine ID probe disable Disable SNMP trap security engine ID probe default Show SNMP trap security engine ID probe mode 8 1 5 16 Trap Security Engine ID Security Switch SNMP gt Trap Security Engine ID help Description Set or show SNMP trap security engine ID Syntax Security Switch SNMP Trap Security Engine ID lt engineid gt Parameters lt engineid gt Engine ID the format may not be all zeros or all ffH and is restricted to 5 3
68. n Set or show LLDP MED Civic Address Location Syntax LLDPMED Civic countrylstatelcountylcityldistrictlblockIstreetlleading_street_di rectionltrailing_street_suffixIstr_suflhouse_nolhouse_no_suffixllandmarkladditio nal_infolnamelzip_codelbuildinglapartmentlfloorlroom_numberlplace_typelpostal_co m_namelp_o_boxladditional_code lt civic_value gt Parameters country state county city district block street leading_street_direction trailing _street_suffix str_suf house_no house_no_ suffix landmark additional_info name zip_code building apartment floor room_number place_type postal_com_name _0_box additional_code Country National subdivisions state caton region province prefecture County parish gun JP district IN City township shi JP City division borough city district ward chou JP Neighborhood block Street Leading street direction Trailing street suffix Street Suffix House Number House number suffix Landmark or vanity address Additional location information name Name residence and office occupant Postal zip code Building structure Unit apartment suite Floor Room number Place type Postal community name Post office box P O Box Additional code default Show Civic Address Location configuration lt civic_value gt 14 3 ecs LLDPMED gt ecs help The value for the Civic Addre
69. nfiguration Security Switch SSH gt Configuration help Description Show SSH configuration Syntax Security Switch SSH Configuration 8 1 3 2 Mode enable disable Security Switch SSH gt Mode help Description Set or show the SSH mode Syntax Security Switch SSH Mode enableldisable Parameters enable Enable SSH disable Disable SSH default Show SSH mode 8 1 4 HTTPS Hypertext Transfer Protocol over Secure Socket Layer Available Commands Security Switch HTTPS Configuration Security Switch HTTPS Mode enableldisable Security Switch HTTPS Redirect enableldisable 8 1 4 1 Configuration Security Switch HTTPS gt Configuration help Description Show HTTPS configuration Syntax Security Switch HTTPS Configuration 8 1 4 2 Mode Security Switch HTTPS gt Mode help Description Set or show the HTTPS mode Syntax Security Switch HTTPS Mode enableldisable Parameters enable Enable HTTPS disable Disable HTTPS default Show HTTPS mode 8 1 4 3 Redirect Security Switch HTTPS gt Redirect help Description Set or show the HTTPS redirect mode Automatic redirect web browser to HTTPS during HTTPS mode enabled Syntax Security Switch HTTPS Redirect enableldisable Parameters enable Enable HTTPS redirect disable Disable HTTPS redirect default Show HTTPS redirect mode 8 1 5 SNMP Simple Network Management Protocol Available Commands
70. nicate within a Local 110 NFS NTP Area Network LAN and it is not supported on a Wide Area Network WAN The NetBIOS giving each computer in the network both a NetBIOS name and an IP address corresponding to a different host name provides the session and transport services described in the Open Systems Interconnection OSI model NES is an acronym for Network File System It allows hosts to mount partitions on a remote system and use them as though they are local file systems NFS allows the system administrator to store resources in a central location on the network providing authorized users continuous access to them which means NFS supports sharing of files printers and other resources as persistent storage over a computer network NTP is an acronym for Network Time Protocol a network protocol for synchronizing the clocks of computer systems NTP uses UDP datagrams as transport layer O OAM OAM is an acronym for Operation Administration and Maintenance It is a protocol described in ITU T Y 1731 used to implement carrier Ethernet functionality MEP functionality like CC and RDI is based on this Optional TLVs A LLDP frame contains multiple TLVs For some TLVs it is configurable if the switch shall include the TLV in the LLDP frame These TLVs are known as optional TLVs If an optional TLVs is disabled the corresponding information is not included in the LLDP frame P PD PD is an acronym for Powered Device
71. ollowing applications VLAN unaware switching This is the default configuration All ports are VLAN unaware with Port VLAN ID 1 and members of VLAN 1 This means that MAC addresses are learned in VLAN 1 and the switch does not remove or insert VLAN tags VLAN aware switching This is based on the IEEE 802 1Q standard All ports are VLAN aware Ports connected to VLAN aware switches are members of multiple VLANs and transmit tagged frames Other ports are members of one VLAN set up with this Port VLAN ID and transmit untagged frames Provider switching This is also known as Q in Q switching Ports connected to subscribers are VLAN unaware members of one VLAN and set up with this unique Port VLAN ID Ports connected to the service provider are VLAN aware members of multiple VLANs and set up to tag all frames Untagged frames received on a subscriber port are forwarded to the provider port with a single VLAN tag Tagged frames received on a subscriber port are forwarded to the provider port with a double VLAN tag VLAN ID WwW WEP WiFi VLAN ID is a 12 bit field specifying the VLAN to which the frame belongs WEP is an acronym for Wired Equivalent Privacy WEP is a deprecated algorithm to secure IEEE 802 11 wireless networks Wireless networks broadcast messages use radio so are more susceptible to eavesdropping than wired networks When introduced in 1999 WEP was intended to provide confidentiality comparable to that of a tradi
72. orm rate limiter Syntax QoS Storm Multicast enableldisable lt packet_rate gt Parameters enable Enable multicast storm control disable Disable multicast storm control lt packet_rate gt Rate in pps 1 2 4 512 1k 2k 4k 1024k 15 15 Storm Broadcast QoS gt Storm Broadcast help Description Set or show the multicast storm rate limiter Syntax QoS Storm Broadcast enableldisable lt packet_rate gt Parameters enable Enable broadcast storm control disable Disable broadcast storm control lt packet_rate gt Rate in pps 1 2 4 512 1k 2k 4k 1024k 16 Mirror Port mirroring Available Commands Mirror Configuration lt port_list gt Mirror Port lt port gt ldisable Mirror Mode lt port_list gt enableldisablelrxltx 16 1 Configuration Mirror gt Configuration help Description Show mirror configuration Syntax Mirror Configuration lt port_list gt Parameters lt port_list gt Port list or all default All ports 16 2 Port Mirror gt Port help Description Set or show the mirror port Syntax Mirror Port lt port gt Idisable Parameters lt port gt ldisable Mirror port or disable default Show port 16 3 Mode Mirror gt Mode help Description Set or show the mirror mode Syntax Mirror Mode lt port_list gt enableldisablelrxltx Parameters lt port_list gt Port list or all default
73. ovides centralized access authorization and accounting management for people or computers to connect and use a network service RDI RDI is an acronym for Remote Defect Indication It is a QAM functionality that is used by a MEP to indicate defect detected to the remote peer MEP Router Port A router port is a port on the Ethernet switch that leads switch towards the Layer 3 multicast device RSTP In 1998 the IEEE with document 802 1w introduced an evolution of STP the Rapid Spanning Tree Protocol which provides for faster spanning tree convergence after a topology change Standard IEEE 802 1D 2004 now incorporates RSTP and obsoletes STP while at the same time being backwards compatible with STP S SAMBA Samba is a program running under UNIX like operating systems that provides seamless integration between UNIX and Microsoft Windows machines Samba acts as file and print servers for Microsoft Windows IBM OS 2 and other SMB client machines Samba uses the Server Message Block SMB protocol and Common Internet File System CIFS which is the underlying protocol used in 114 SFP Microsoft Windows networking Samba can be installed on a variety of operating system platforms including Linux most common Unix platforms OpenVMS and IBM OS 2 Samba can also register itself with the master browser on the network so that it would appear in the listing of hosts in Microsoft Windows Neighborhood Network SFP Small form factor p
74. ption Show LACP Statistics Syntax LACP Statistics lt port_list gt clear Parameters lt port_list gt Port list or all default All ports clear Clear LACP statistics 13 LLDP Link Layer Discovery Protocol Available Commands LLDP Configuration lt port_list gt LLDP Mode lt port_list gt enableldisablelrxltx LLDP Optional_TLV lt port_list gt port_descrlsys_namelsys_descrisys_capalmgmt_addr enableldisable LLDP Interval lt interval gt LLDP Hold lt hold gt LLDP Delay lt delay gt LLDP Reinit lt reinit gt LLDP Info lt port_list gt LLDP Statistics lt port_list gt clear 13 1 Configuration LLDP gt Configuration help Description Show LLDP configuration Syntax LLDP Configuration lt port_list gt Parameters lt port_list gt Port list or all default All ports 13 2 Mode LLDP gt Mode help Description Set or show LLDP mode Syntax LLDP Mode lt port_list gt enableldisablelrxltx Parameters lt port_list gt Port list or all default All ports enable Enable LLDP reception and transmission disable Disable LLDP rx Enable LLDP reception only tx Enable LLDP transmission only default Show LLDP mode 13 3 Optional_TLV LLDP gt Optional_TLV help Description Set or show LLDP Optional TLVs Syntax LLDP Optional_TLV lt port_list gt port_descrlsys_namelsys_descrlsys_capalmgmt_add r enableldisa
75. r any lt dmac gt Destination MAC address Xxx XX XX XX XX XX or any arp ARP keyword lt sip gt Source IP address a b c d n or any lt dip gt Destination IP address a b c d n or any lt arp_opcode gt ARP operation code anylarplrarplother lt arp_flags gt ARP flags requestlsmacltmacllenliplether 0l1lany ip IP keyword lt protocol gt IP protocol number 0 255 or any lt ip_flags gt IP flags ttlloptionslfragment Ol1lany icmp ICMP keyword lt icmp_type gt lt icmp_code gt ICMP type number 0 255 or any ICMP code number 0 255 or any udp UDP keyword lt sport gt Source UDP TCP port range 0 65535 or any lt dport gt Destination UDP TCP port range 0 65535 or any tcp TCP keyword lt tcp_flags gt TCP flags finlsynirstlpshlacklurg 0l1lany permit Permit forwarding default deny Deny forwarding lt rate_limiter gt lt port_copy gt lt logging gt lt shutdown gt 8 2 3 6 Delete Rate limiter number 1 15 or disable Port number for copy of frames or disable System logging of frames logllog_disable Shut down ingress port shutlshut_disable Security Network ACL gt Delete help Description Delete ACE Syntax Security Network ACL Delete lt ace_id gt Parameters lt ace_id gt ACE ID 1 128 8 2 3 7 Lookup Security Network ACL gt Lookup help Description Show
76. re are more matching ACEs The first matching ACE will take action permit deny on that frame and a counter associated with that ACE is incremented An ACE can be associated with a Policy 1 ingress port or any ingress port the whole switch If an ACE Policy is created then that Policy can be associated with a group of ports under the Ports web page There are number of parameters that can be configured with an ACE Read the Web page help text to get further information for each of them The maximum number of ACEs is 64 ACLIPorts The ACL Ports configuration is used to assign a Policy ID to an ingress port This is useful to group ports to obey the same traffic rules Traffic Policy is created under the Access Control List page You can you also set up 103 specific traffic properties Action Rate Limiter Port copy etc for each ingress port They will though only apply if the frame gets past the ACE matching without getting matched In that case a counter associated with that port is incremented See the Web page help text for each specific port property ACLIRate Limiters Under this page you can configure the rate limiters There can be 15 different rate limiters each ranging from 1 1024K packets per seconds Under Ports and Access Control List web pages you can assign a Rate Limiter ID to the ACE s or ingress port s AES AES is an acronym for Advanced Encryption Standard The encryption key protocol is applied in 802 1
77. rs lt port_list gt Port list or all default All ports lt class gt Traffic class low normal medium high or 1 2 3 4 15 4 Tagprio QoS gt Tagprio help Description Set or show the port VLAN tag priority Syntax QoS Tagprio lt port_list gt lt tag_prio gt Parameters lt port_list gt Port list or all default All ports lt tag_prio gt VLAN tag priority 0 7 15 5 QCL Port QoS gt QCL Port help Description Set or show the port QCL ID Syntax QoS QCL Port lt port_list gt lt qcl_id gt Parameters lt port_list gt lt qcl_id gt 15 6 QCL Add QoS gt QCL Add help Port list or all default All ports QCL ID Description Add or modify QoS Control Entry QCE If the QCE ID parameter lt qce_id gt is specified and an entry with this QCE ID already exists the QCE will be modified Otherwise a new QCE will be added If the QCE ID is not specified the next available QCE ID will be used If the next QCE ID parameter lt qce_id_next gt is specified the QCE will be placed before this QCE in the list If the next QCE ID is not specified the QCE will be placed last in the list Syntax QoS QCL Add lt qcl_id gt lt qce_id gt lt qce_id_next gt etype lt etype gt vid lt vid gt port lt udp_tcp_port gt dscp lt dscp gt tos lt tos_list gt tag_prio lt tag_prio_list gt lt class gt Parameters lt qcl_id g
78. rver address Syntax IP SNTP lt ip_addr_string gt Parameters lt ip_addr_string gt IP host address a b c d 4 Port Port management Available Commands Port Configuration lt port_list gt Port State lt port_list gt enableldisable Port Mode lt port_list gt 10hdxI110fdx1100hdx1100fdx11000fdxlauto Port Flow Control lt port_list gt enableldisable Port MaxFrame lt port_list gt lt max_frame gt Port Power lt port_list gt enableldisablelactiphyldynamic Port Excessive lt port_list gt discardlrestart Port Statistics lt port_list gt lt command gt Port VeriPHY lt port_list gt 4 1 Configuration Port gt Configuration help Description Show port configuration Syntax Port Configuration lt port_list gt Parameters lt port_list gt Port list or all default All ports 4 2 State Port gt State help Description Set or show the port administrative state Syntax Port State lt port_list gt enableldisable Parameters lt port_list gt Port list or all default All ports enable Enable port disable Disable port default Show administrative mode 4 3 Mode Port gt Mode help Description Set or show the port speed and duplex mode Syntax Port Mode lt port_list gt 10hdxI110fdx1100hdx1100fdx11000fdxlauto Parameters lt port_list gt Port list or all default All ports 10hdx 10 Mbps
79. s Aggr Configuration Ager Add lt port_list gt lt aggr_id gt Aggr Delete lt aggr_id gt Ager Lookup lt aggr_id gt Ager Mode smacldmacliplport enableldisable 11 1 Configuration Aggr gt Configuration help Description Show link aggregation configuration Syntax Aggr Configuration 11 2 Add Ager gt Add help Description Add or modify link aggregation Syntax Aggr Add lt port_list gt lt aggr_id gt Parameters lt port_list gt Port list lt ager_id gt Aggregation ID 11 3 Delete Aggr gt Delete help Description Delete link aggregation Syntax Aggr Delete lt aggr_id gt Parameters lt aggr_id gt Ageregation ID 11 4 Lookup Agger gt Lookup help Description Lookup link aggregation Syntax Ager Lookup lt aggr_id gt Parameters lt aggr_id gt Aggregation ID 11 5 Mode Agegr gt Mode help Description Set or show the link aggregation traffic distribution mode Syntax Aggr Mode smacldmacliplport enableldisable Parameters smac Source MAC address dmac Destination MAC address ip Source and destination IP address port Source and destination UDP TCP port enable Enable field in traffic distribution disable Disable field in traffic distribution 12 LACP Link Aggregation Control Protocol Available Commands LACP Configuration lt port_list gt LACP Mode lt port_list gt enableldisable LACP Key lt port_l
80. ser password Syntax Security Switch SNMP User Changekey lt engineid gt lt user_name gt lt auth_password gt lt priv_password gt Parameters lt engineid gt Engine ID the format may not be all zeros or all ffH and is restricted to 5 32 octet string lt user_name gt A string identifying the user name that this entry should belong to lt auth_password gt A string identifying the authentication pass phrase lt priv_password gt A string identifying the privacy pass phrase 8 1 5 25 User Lookup Security Switch SNMP gt User Lookup help Description Lookup SNMPv3 user entry Syntax Security Switch SNMP User Lookup lt index gt Parameters lt index gt entry index 1 64 8 1 5 26 Group Add Security Switch SNMP gt Group Add help Description Add or modify SNMPv3 group entry The entry index key are lt security_model gt and lt security_name gt Syntax Security Switch SNMP Group Add lt security_model gt lt security_name gt lt group_name gt Parameters lt security_model gt vi Reserved for SNMPv1 v2c Reserved for SNMPv2c usm User based Security Model USM lt security_name gt A string identifying the security name that this entry should belong to lt group_name gt A string identifying the group name that this entry should belong to 8 1 5 27 Group Delete Security Switch SNMP gt Group Delete help Description Delete SNMPv3 group entry Syntax
81. show server dead time Syntax Security AAA Deadtime lt dead_time gt Parameters lt dead_time gt Time that a server is considered dead if it doesn t answer a request 0 3600 seconds default Show server dead time configuration 8 3 4 RADIUS Security AAA gt RADIUS help Description Set or show RADIUS authentication server setup Syntax Security AAA RADIUS lt server_index gt enableldisable lt ip_addr_string gt lt secre t gt lt server_port gt Parameters lt server_index gt The server index 1 5 default Show RADIUS authentication server configuration enable Enable RADIUS authentication server disable Disable RADIUS authentication server default Show RADIUS server mode lt ip_addr_string gt IP host address a b c d lt secret gt Secret shared with external authentication server To set an empty secret use two quotes To use spaces in secret enquote the secret Quotes in the secret are not allowed lt server_port gt Server UDP port Use O to use the default RADIUS port 1812 8 3 5 Statistics Security AAA gt Statistics help Description Show RADIUS statistics Syntax Security AAA Statistics lt server_index gt Parameters lt server_index gt The server index 1 5 default Show RADIUS authentication server statistics 9 STP Spanning Tree Protocol Available Commands STP Configuration STP Version lt stp_version gt ST
82. ss Location entry Description Set or show LLDP MED Emergency Call Service Syntax LLDPMED ecs lt ecs_value gt Parameters lt ecs_value gt The value for the Emergency Call Service 14 4 policy delete LLDPMED gt policy delete help Description Delete the selected policy Syntax LLDPMED policy delete lt policy_list gt Parameters lt policy_list gt List of policies to delete 14 5 policy add LLDPMED gt policy add help Description Adds a policy to the list of polices Syntax LLDPMED policy add voicelvoice_signalinglguest_voicelguest_voice_signalinglsoft phone_voicelvideo_conferencinglstreaming_videolvideo_signaling taggedluntagged lt vlan_id gt lt 12_priority gt lt dscp gt Parameters vhoice Voice for use by dedicated IP Telephony handsets and other similar appliances supporting interactive voice services These devices are typically deployed on a separate VLAN for ease of deployment and enhanced security by isolation from data applications voice_signaling Voice Signaling conditional for use in network topologies that require a different policy for the voice signaling than for the voice media guest_voice guest_voice_signaling softphone_voice video_conferencing streaming_video video_signaling tagged Unragged lt vlan_id gt lt 12_priority gt lt dscp gt Guest Voice to support a separate limited feature set voice servi
83. st gt Parameters lt port_list gt Port list or all default All ports 9 24 Port Mcheck STP gt Port Mcheck help Description Set the STP mCheck Migration Check variable for ports Syntax STP Port Mcheck lt port_list gt Parameters lt port_list gt Port list or all default All ports 9 25 Msti Port Configuration STP gt Msti Port Configuration help Description Show the STP CIST MSTI port configuration Syntax STP Msti Port Configuration lt msti gt lt port_list gt Parameters lt msti gt STP bridge instance no 0 7 CIST 0 MSTI1 1 lt port_list gt Port list or all default All ports 9 26 Msti Port Cost STP gt Msti Port Cost help Description Set or show the STP CIST MSTI port path cost Syntax STP Msti Port Cost lt msti gt lt port_list gt lt path_cost gt Parameters lt msti gt STP bridge instance no 0 7 CIST 0 MSTI1 1 lt port_list gt Port list or all Port zero means aggregations lt path_cost gt STP port path cost 1 200000000 or auto 9 27 Msti Port Priority STP gt Msti Port Priority help Description Set or show the STP CIST MSTI port priority Syntax STP Msti Port Priority lt msti gt lt port_list gt lt priority gt Parameters lt msti gt STP bridge instance no 0 7 CIST 0 MSTI1 1 lt port_list gt Port list or all Port zero means aggregations lt priority gt
84. stic Suse ears ca lenca tates tesa iain 60 8 3 2 ad 21610 Gemeente T A eee ee rere 60 toee DCACTIING E EEE E Gudea deeestleiceaadesd tesud te EEEE E aneavenshtemmcunnaeets 60 A o O Saasca tema deeny EEE 60 A E E hock ETE E EAEE 61 9 STP Spanning Tree Protocol scccsececescesseeeeseeeeeseeeseaeseseeeeeeseeeseaeseseeeenenaeseaeseseaesnseeeenseeess 62 9H COMIQUEROS 62 A A O O ae ee eaaecta teeta Mane tecacstage A 63 9 3 OIG E a ci 63 9 4 MaxHopS ana A 63 9 5 Maid isolated 63 9 6 FWODGIAY vecino 64 o A itech odhoanta nd e sitettated anc endear ta eat TE nie 64 9 8 ppd uGuard es sh etnies o e sli 64 GED FOCOV GRY 2 25 cencd creheczpaccnwsensabiensa ra E 65 DT O GIN Mi id 65 SN SAS ee ae ei a ee 65 9 12 MSP AO o todito tie dette honublaaadestatenks 66 A o eRe peer are epee ee re naan nen Torr Arr Prey ere mera ey E Cre Crrerr rere na 66 9 14 MAST AG las 66 9 15 Port CONMIGO da s 67 A wages eacocmdens 67 9 17 Port Ed cis 67 9 18 Port Auto EOS cuide is a 68 9 19 POM PP E a Rolas das 68 9 20 Port RestrictedRole tdi dos ae aie eas accent 68 9 21 Port Restricted TON nai iaa 69 9 22 Por opa res sc oa dio a ree i dit 69 9 23 POM SEAS NCS ec 3 act esc hetice e r a EEEa e EEE ar E eaea a 69 9 24 Port MeheCk a ind 70 9 25 MSt P rt Config ratio Mn nn a Rae eee 70 9 26 Msti POM COSTA insano tates 70 927 MSti PO POr othe eee eae a ce eae oases Ne ia Saal a a ee 71 10 IGMP Internet Group Management Protocol SNOOPING ssc
85. t Syntax STP recovery lt timeout gt Parameters lt timeout gt Time before error disabled ports are re enabled 30 86400 seconds 0 disables default Show recovery timeout 9 10 CName STP gt CName help Description Set or show MSTP configuration name and revision Syntax STP CName lt config name gt lt integer gt Parameters lt config name gt MSTP Configuration name A text string up to 32 characters long Use quotes to embed spaces in name lt integer gt Integer value 9 11 Status STP gt Status help Description Show STP Bridge status Syntax STP Status lt msti gt lt port_list gt Parameters lt msti gt STP bridge instance no 0 7 CIST 0 MSTI1 1 lt port_list gt Port list or all default All ports 9 12 Msti Priority STP gt Msti Priority help Description Set or show the CIST MSTI bridge priority Syntax STP Msti Priority lt msti gt lt priority gt Parameters lt msti gt STP bridge instance no 0 7 CIST 0 MSTI1 1 lt priority gt STP bridge priority 0 16 32 48 224 240 9 13 Msti Map STP gt Msti Map help Description Show or clear MSTP MSTI VLAN mapping configuration Syntax STP Msti Map lt msti gt clear Parameters lt msti gt STP bridge instance no 0 7 CIST 0 MSTI1 1 clear Clear VID to MSTI mapping 9 14 Msti Add STP gt Msti Add help Description Add a VLAN to
86. t lt qce_id gt lt qce_id_next gt etype lt etype gt vid lt vid gt port lt udp_tcp_port gt dscp lt dscp gt tos QCL ID QCE ID 1 24 Next QCE ID 1 24 Ethernet Type keyword Ethernet Type VLAN ID keyword VLAN ID 1 4095 UDP TCP port keyword Source or destination UDP TCP port 0 65535 IP DSCP keyword IP DSCP 0 63 IP ToS keyword lt tos_list gt IP ToS list 0 7 tag_prio VLAN tag priority keyword lt tag_prio_list gt VLAN tag priority list 0 7 lt class gt Traffic class low normal medium high or 1 2 3 4 15 7 QCL Delete QoS gt QCL Delete help Description Delete QCE Syntax QoS QCL Delete lt qcl_id gt lt qce_id gt Parameters lt qcl_id gt QCL ID lt qce_id gt QCE ID 1 24 15 8 QCL Lookup QoS gt QCL Lookup help Description Lookup QCE Syntax QoS QCL Lookup lt qcl_id gt lt qce_id gt Parameters lt qcl_id gt QCL ID lt qce_id gt QCE ID 1 24 15 9 Mode QoS gt Mode help Description Set or show the port egress scheduler mode Syntax QoS Mode lt port_list gt strictlweighted Parameters lt port_list gt Port list or all default All ports strict Strict mode weighted Weighted mode default Show QoS mode 15 10 Weight QoS gt Weight help Description Set or show the port egress scheduler weight Syntax QoS Weight lt port_list gt lt class gt lt w
87. the client user must log in to a server by entering a valid username and password Then the client user can 117 TFTP ToS TLV TKIP UDP enter commands through the Telnet program just as if they were entering commands directly on the server console TFTP is an acronym for Trivial File Transfer Protocol It is transfer protocol that uses the User Datagram Protocol UDP and provides file writing and reading but it does not provides directory service and security features ToS is an acronym for Type of Service It is implemented as the IPv4 ToS priority control It is fully decoded to determine the priority from the 6 bit ToS field in the IP header The most significant 6 bits of the ToS field are fully decoded into 64 possibilities and the singular code that results is compared against the corresponding bit in the IPv4 ToS priority control bit 0 63 TLV is an acronym for Type Length Value A LLDP frame can contain multiple pieces of information Each of these pieces of information is known as TLV TKIP is an acronym for Temporal Key Integrity Protocol It used in WPA to replace WEP with a new encryption algorithm TKIP comprises the same encryption engine and RC4 algorithm defined for WEP The key used for encryption in TKIP is 128 bits and changes the key used for each packet UDP is an acronym for User Datagram Protocol It is a communications protocol that uses the Internet Protocol IP to exchange the messages
88. tication mode 8 2 2 5 ReauthPeriod Security Network NAS gt ReauthPeriod help Description Set or show the period between reauthentications Syntax Security Network NAS ReauthPeriod lt reauth_period gt Parameters lt reauth_period gt Period between reauthentications 1 3600 seconds default Show current reauthentication period 8 2 2 6 EapolTimeout Security Network NAS gt EapolTimeout help Description Set or show the time between EAPOL retransmissions Syntax Security Network NAS EapolTimeout lt eapol_timeout gt Parameters lt eapol_timeout gt Time between EAPOL retransmissions 1 65535 seconds default Show current EAPOL retransmission timeout 8 2 2 7 Agetime Security Network NAS gt Agetime help Description Time in seconds between check for activity on successfully authenticated MAC addresses Syntax Security Network NAS Agetime lt age_time gt Parameters lt age_time gt Time between checks for activity on a MAC address that succeeded authentication default Show current age time 8 2 2 8 Holdtime Security Network NAS gt Holdtime help Description Time in seconds before a MAC address that failed authentication gets a new authentication chance Syntax Security Network NAS Holdtime lt hold_time gt Parameters lt hold_time gt Hold time before MAC addresses that failed authentication expire default Show current hol
89. tion Lookup SNMPv3 community entry Syntax Security Switch SNMP Community Lookup lt index gt Parameters lt index gt entry index 1 64 8 1 5 22 User Add Security Switch SNMP gt User Add help Description Add SNMPv3 user entry The entry index key are lt engineid gt and lt user_name gt and it doesn t allow modify Syntax Security Switch SNMP User Add lt engineid gt lt user_name gt MDSISHA lt auth_password gt DES lt priv_password gt Parameters lt engineid gt Engine ID the format may not be all zeros or all ffH and is restricted to 5 32 octet string lt user_name gt A string identifying the user name that this entry should belong to md5 An optional flag to indicate that this user using MD5 authentication protocol sha An optional flag to indicate that this user using SHA authentication protocol lt auth_password gt A string identifying the authentication pass phrase des An optional flag to indicate that this user using DES privacy protocol privacy protocol should belong to lt priv_password gt A string identifying the privacy pass phrase 8 1 5 23 User Delete Security Switch SNMP gt User Delete help Description Delete SNMPv3 user entry Syntax Security Switch SNMP User Delete lt index gt Parameters lt index gt entry index 1 64 8 1 5 24 User Changekey Security Switch SNMP gt User Changekey help Description Change SNMPv3 u
90. tion Add or modify SNMPv3 access entry The entry index key are lt group_name gt lt security_model gt and lt security_level gt Syntax Security Switch SNMP Access Add lt group_name gt lt security_model gt lt security_level gt lt read_view_name gt lt write_view_name gt Parameters lt group_name gt A string identifying the group name that this entry should belong to lt security_model gt any Accepted any security model v1lv2clusm vi Reserved for SNMPv1 v2c Reserved for SNMPv2c usm User based Security Model USM lt security_level gt noAuthNoPriv None authentication and none privacy AuthNoPriv Authentication and none privacy AuthPriv Authentication and privacy lt read_view_name gt The name of the MIB view defining the MIB objects for which this request may request the current values lt write_view_name gt The name of the MIB view defining the MIB objects for which this request may potentially SET new values 8 1 5 33 Access Delete Security Switch SNMP gt Access Delete help Description Delete SNMPv3 access entry Syntax Security Switch SNMP Access Delete lt index gt Parameters lt index gt entry index 1 64 8 1 5 34 Access Lookup lt index gt Security Switch SNMP gt Access Lookup help Description Lookup SNMPv3 access entry Syntax Security Switch SNMP Access Lookup lt index gt Parameters lt index gt entry index 1 64
91. tional wired network Wikipedia WiFi is an acronym for Wireless Fidelity It is meant to be used generically when referring of any type of 802 11 network whether 802 11b 802 11a dual band 119 WPA etc The term is promulgated by the Wi Fi Alliance WPA is an acronym for Wi Fi Protected Access It was created in response to several serious weaknesses researchers had found in the previous system Wired Equivalent Privacy WEP WPA implements the majority of the IEEE 802 111 standard and was intended as an intermediate measure to take the place of WEP while 802 111 was prepared WPA is specifically designed to also work with pre WPA wireless network interface cards through firmware upgrades but not necessarily with first generation wireless access points WPA2 implements the full standard but will not work with some older network cards Wikipedia WPA PSK WPA PSK is an acronym for Wi Fi Protected Access Pre Shared Key WPA was designed to enhance the security of wireless networks There are two flavors of WPA enterprise and personal Enterprise is meant for use with an IEEE 802 1X authentication server which distributes different keys to each user Personal WPA utilizes less scalable pre shared key PSK mode where every allowed computer is given the same passphrase In PSK mode security depends on the strength and secrecy of the passphrase The design of WPA is based on a Draft 3 of the IEEE 802 111 standard Wikipedi
92. tp_version gt mstplrstplstp 9 3 Txhold STP gt Txhold help Description Set or show the STP Bridge Transmit Hold Count parameter Syntax STP Txhold lt holdcount gt Parameters lt holdcount gt STP Transmit Hold Count 1 10 9 4 MaxHops STP gt MaxHops help Description Set or show the MSTP Bridge Max Hop Count parameter Syntax STP MaxHops lt maxhops gt Parameters lt maxhops gt STP BPDU MaxHops 6 40 9 5 MaxAge STP gt MaxAge help Description Set or show the CIST MSTI bridge maximum age Syntax STP MaxAge lt max_age gt Parameters lt max_age gt STP maximum age time 6 40 and max_age lt forward_delay 1 2 9 6 FwdDelay STP gt FwdDelay help Description Set or show the CIST MSTI bridge forward delay Syntax STP FwdDelay lt delay gt Parameters lt delay gt MSTP forward delay 4 30 and max_age lt forward_delay 1 2 9 7 bpduFilter STP gt bpduFilter help Description Set or show edge port BPDU Filtering Syntax STP bpduFilter enableldisable Parameters enableldisable enable or disable BPDU Filtering for Edge ports 9 8 bpduGuard STP gt bpduGuard help Description Set or show edge port BPDU Guard Syntax STP bpduGuard enableldisable Parameters enableldisable enable or disable BPDU Guard for Edge ports 9 9 recovery STP gt recovery help Description Set or show edge port error recovery timeou
93. ystem Location lt location gt System Timezone lt offset gt System Reboot System Restore Default keep_ip System Password lt password gt System Load System Log lt log_id gt alllinfolwarninglerror clear 2 1 Configuration System gt Configuration help Description Show system configuration Syntax System Configuration all lt port_list gt Parameters all Show all switch configuration default Show system configuration lt port_list gt Port list or all default All ports 2 2 Name System gt Name help Description Set or show the system name Syntax System Name lt name gt Parameters lt name gt System name string Use clear or to clear the string System name is a text string drawn from the alphabet A Za z digits 0 9 minus sign Note In CLI no blank or space characters are permitted as part of a name The first character must be an alpha character and the first or last character must not be a minus sign 2 3 Contact System gt Contact help Description Set or show the system contact Syntax System Contact lt contact gt Parameters we lt contact gt System contact string Use clear or to clear the string Note No blank or space characters are permitted as part of a contact only in CLI 2 4 Location System gt Location help Description Set or show the system location Syntax System Lo
Download Pdf Manuals
Related Search