KTI Networks KGS-1620 network switch
Contents
1. 512 1k 2k 4k 1024k 15 15 Storm Broadcast QoS gt Storm Broadcast help Description Set or show the multicast storm rate limiter Syntax QoS Storm Broadcast enable disable lt packet_rate gt Parameters enable Enable broadcast storm control disable Disable broadcast storm control packet rate Rate in pps 1 2 4 512 1k 2k 4k 1024k 16 Mirror Port mirroring Available Commands Mirror Configuration lt port_list gt Mirror Port lt port gt disable Mirror Mode lt port_list gt enable disable rx tx 16 1 Configuration Mirror gt Configuration help Description Show mirror configuration Syntax Mirror Configuration lt port_list gt Parameters Xport list Port list or all default All ports 16 2 Port Mirror gt Port help Description Set or show the mirror port Syntax Mirror Port lt port gt disable Parameters lt port gt disable Mirror port or disable default Show port 16 3 Mode Mirror gt Mode help Description Set or show the mirror mode Syntax Mirror Mode lt port_list gt enable disable rx tx Parameters port list Port list or all default All ports enable Enable Rx and Tx mirroring disable Disable Mirroring IX Enable Rx mirroring tx Enable Tx mirroring default Show mirror mode 17 Config Load Save of configuration via TFTP Available Commands Config2. Parameters lt port_list gt Port list or all default All ports permit Permit forwarding default deny Deny forwarding lt rate_limiter gt Rate limiter number 1 15 or disable port copy Port number for copy of frames or disable logging System logging of frames log log disable shutdown Shut down ingress port shut shut disable 8 2 3 3 Policy Security Network ACL gt Policy help Description Set or show the ACL port policy Syntax Security Network ACL Policy lt port_list gt lt policy gt Parameters lt port_list gt Port list or all default All ports lt policy gt Policy number 1 8 8 2 3 4 Rate Security Network ACL gt Rate help Description Set or show the ACL rate limiter Syntax Security Network ACL Rate lt rate_limiter_list gt lt packet_rate gt Parameters lt rate_limiter_list gt Rate limiter list 1 15 default All rate limiters lt packet_rate gt Rate in pps 1 2 4 512 1k 2k 4k 1024k 8 2 3 5 Add Security Network ACL gt Add help Description Add or modify Access Control Entry ACE If the ACE ID parameter ace id is specified and an entry with this ACE ID already exists the ACE will be modified Otherwise a new ACE will be added If the ACE ID is not specified the next available ACE ID will be used If the next ACE ID parameter ace id next is specified the ACE will be plac
3. Port Statistics port list lt command gt Port VeriPHY lt port_list gt 4 1 Configuration Port Configuration help Description Show port configuration Syntax Port Configuration lt port_list gt Parameters lt port_list gt Port list or all default All ports 4 2 State Port gt State help Description Set or show the port administrative state Syntax Port State lt port_list gt enable disable Parameters lt port_list gt Port list or all default All ports enable Enable port disable Disable port default Show administrative mode 4 3 Mode Port gt Mode help Description Set or show the port speed and duplex mode Syntax Port Mode lt port_list gt 10hdx 10fdx 100hdx 100fdx 1000fdx auto Parameters port list Port list or all default All ports 10hdx 10 Mbps half duplex 10fdx 10 Mbps full duplex 100hdx 100 Mbps half duplex 100fdx 100 Mbps full duplex 1000fdx 1 Gbps full duplex auto Auto negotiation of speed and duplex default Show configured and current mode 4 4 FlowControl Port FlowControl help Description Set or show the port flow control mode Syntax Port Flow Control lt port_list gt enable disable Parameters lt port_list gt Port list or all default All ports enable Enable flow control disable Disable flow control default Show flow control mode 4 5 MaxFrame
4. Syntax IGMP Querier lt vid gt enable disable Parameters lt vid gt VLAN ID 1 4095 default Show all VLANs enable Enable IGMP querier disable Disable IGMP querier default Show IGMP querier mode 10 5 Fastleave IGMP gt Fastleave help Description Set or show the IGMP snooping fast leave port mode Syntax IGMP Fastleave lt port_list gt enable disable Parameters port list Port list or all default All ports enable Enable IGMP fast leave disable Disable IGMP fast leave default Show IGMP fast leave mode 10 6 Router IGMP gt Router help Description Set or show the IGMP snooping router port mode Syntax IGMP Router lt port_list gt enable disable Parameters port list Port list or all default All ports enable Enable IGMP router port disable Disable IGMP router port default Show IGMP router port mode 10 7 Flooding IGMP gt Flooding help Description Set or show the IGMP snooping unregistered flood operation Syntax IGMP Flooding enable disable Parameters enable Enable IGMP flooding disable Disable IGMP flooding default Show IGMP flood mode 10 8 Groups IGMP gt Groups help Description Show IGMP groups Syntax IGMP Groups lt vid gt Parameters lt vid gt VLAN ID 1 4095 10 9 Status IGMP gt Status help Description Show IGMP status Syntax IGMP Status lt vid gt Parameters
5. enable Enable SNMP traps disable Disable SNMP traps default Show SNMP trap mode 8 1 5 7 Trap Version Security Switch SNMP gt Trap Version help Description Set or show the SNMP trap protocol version Syntax Security Switch SNMP Trap Version 1 2c 3 Parameters 1 SNMP version 1 2c SNMP version 2c 3 SNMP version 3 default Show SNMP trap version 8 1 5 8 Trap Community Security Switch SNMP gt Trap Community help Description Set or show the community string for SNMP traps Syntax Security Switch SNMP Trap Community lt community gt Parameters community Community string Use clear or to clear the string default Show SNMP trap community 8 1 5 9 Trap Destination Security Switch SNMP gt Trap Destination help Description Set or Show the SNMP trap destination address Syntax Security Switch SNMP Trap Destination lt ip_addr_string gt Parameters jp addr string IP host address a b c d 8 1 5 10 Trap Authentication Failure Security Switch SNMP gt Trap Authentication Failure help Description Set or show the SNMP authentication failure trap mode Syntax Security Switch SNMP Trap Authentication Failure enable disable Parameters enable Enable SNMP trap authentication failure disable Disable SNMP trap authentication failure default Show SNMP trap authentication failure mode 8 1 5 11 Trap Link up Security Switch SNMP
6. lt vid gt VLAN ID 1 4095 or any lt tag_prio gt VLAN tag priority 0 7 or any dmac type DMAC type any unicast multicast broadcast etype Ethernet Type keyword lt etype gt Ethernet Type or any lt smac gt Source MAC address xx xx xx xx xx xx or any lt dmac gt Destination MAC address xx xx xx xx xx xx or any arp ARP keyword sip Source IP address a b c d n or any dip Destination IP address a b c d n or any arp opcode ARP operation code any arp rarp other arp flags ARP flags request smac tmac len ip ether 0 1 any ip IP keyword protocol IP protocol number 0 255 or any ip flags IP flags ttlloptions fragment 0 1 any icmp ICMP keyword jemp type lt icmp_code gt ICMP type number 0 255 or any ICMP code number 0 255 or any udp UDP keyword lt sport gt Source UDP TCP port range 0 65535 or any lt dport gt Destination UDP TCP port range 0 65535 or any tcp TCP keyword lt tcp_flags gt TCP flags fin syn rst psh ack urg 0 1 any permit Permit forwarding default deny Deny forwarding lt rate_limiter gt lt port_copy gt lt logging gt lt shutdown gt 8 2 3 6 Delete Rate limiter number 1 15 or disable Port number for copy of frames or disable System logging of frames log log disable Shut down ingress port shut shut disable Security Network ACL gt
7. Port Port management MAC MAC address table VLAN Virtual LAN PVLAN Private VLAN Security Security management STP Spanning Tree Protocol IGMP Internet Group Management Protocol snooping Aggr Link Aggregation LACP Link Aggregation Control Protocol LLDP Link Layer Discovery Protocol LLDPMED Link Layer Discovery Protocol Media QoS Quality of Service Mirror Port mirroring Config Load Save of configuration via TFTP SFP DDM SFP with Digital Diagnostic Monitoring Firmware Download of firmware via TFTP Type lt group gt to enter command group e g port Type lt group gt to get list of group commands e g port Type lt command gt to get help on a command e g port mode Commands may be abbreviated e g po co instead of port configuration 2 System System settings and reset options Available Commands System Configuration all lt port_list gt System Name lt name gt System Contact lt contact gt System Location lt location gt System Timezone lt offset gt System Reboot System Restore Default keep_ip System Password lt password gt System Load System Log lt log_id gt alllinfo warning error clear 2 1 Configuration System gt Configuration help Description Show system configuration Syntax System Configuration all lt port_list gt Parameters all Show all switch configuration default Show system config
8. Port gt MaxFrame help Description Set or show the port maximum frame size Syntax Port MaxFrame lt port_list gt lt max_frame gt Parameters port list Port list or all default All ports lt max_frame gt Port maximum frame size 1518 9600 default Show maximum frame size 4 6 Power Port gt Power help Description Set or show the port PHY power mode Syntax Port Power lt port_list gt enable disable actiphy dynamic Parameters lt port_list gt Port list or all default All ports enable Enable all power control disable Disable all power control actiphy Enable ActiPHY power control dynamic Enable Dynamic power control 4 7 Excessive Port gt Excessive help Description Set or show the port excessive collision mode Syntax Port Excessive lt port_list gt discard restart Parameters port list Port list or all default All ports discard Discard frame after 16 collisions restart Restart back off algorithm after 16 collisions default Show mode 4 8 Statistics Port gt Statistics help Description Show port statistics Syntax Port Statistics lt port_list gt lt command gt Parameters lt port_list gt Port list or all default All ports lt command gt The command parameter takes the following values clear Clear port statistics packets Show packet statistics bytes Show byte statistics errors
9. Set or show LLDP MED Coordinates map datum Syntax LLDPMED Datum wgs84 nad83 navd88 nad83 mllw Parameters wgs84 nad83 navd88 nad83 mllw WGS84 nad83 navd88 NAD83 NAVDS88 nad83 mllw NAD83 MLLW 14 9 Fast LLDPMED gt Fast help Description Set or show LLDP MED Fast Start Repeat Count Syntax LLDPMED Fast lt count gt Parameters lt count gt The number of times the fast start LLDPDU are being sent during the activation of the fast start mechanism defined by LLDP MED 1 10 14 10 Info LLDPMED gt Info help Description Show LLDP MED neighbor device information Syntax LLDPMED Info lt port_list gt Parameters lt port_list gt Port list or all default All ports 14 11 debug_med_transmit_var LLDPMED gt debug med transmit var help Description Set or show if the current value of the global medTansmitEnable variable Section Section 11 2 1 TIA 1057 Syntax LLDPMED debug med transmit var lt port_list gt enable disable Parameters lt port_list gt Port list or all default All ports enable Enable Set medTansmitEnable variable to true disable Disable Set medTansmitEnable variable to false default Show medTansmitEnable variable value 15 QoS Quality of Service Available Commands QoS Configuration lt port_list gt QoS Classes lt class gt QoS Default lt port_list gt lt class gt QoS Tagprio lt port_list gt lt tag_p
10. combined static nas mstp all conflicts Parameters lt port_list gt Port list or all default All ports combined combined VLAN Users configuration static static port configuration nas NAS port configuration mstp MSTP port configuration all All VLAN Users configuration default combined VLAN Users configuration 7 PVLAN Private VLAN Available Commands PVLAN Configuration lt port_list gt PVLAN Add pvlan id lt port_list gt PVLAN Delete pvlan id PVLAN Lookup lt pvlan_id gt PVLAN Isolate lt port_list gt enable disable 7 1 Configuration PVLAN gt Configuration help Description Show Private VLAN configuration Syntax PVLAN Configuration lt port_list gt Parameters Xport list Port list or all default All ports 7 2 Add PVLAN gt Add help Description Add or modify Private VLAN entry Syntax PVLAN Add pvlan 1d lt port_list gt Parameters lt pvlan_id gt Private VLAN ID lt port_list gt Port list or all default All ports 7 3 Delete PVLAN gt Delete help Description Delete Private VLAN entry Syntax PVLAN Delete pvlan id Parameters lt pvlan_id gt Private VLAN ID 7 4 Lookup PVLAN gt Lookup help Description Lookup Private VLAN entry Syntax PVLAN Lookup lt pvlan_id gt Parameters lt pvlan_id gt Private VLAN ID default Show all PVLANs 7 5 Isolate PVLAN gt Isolate help
11. format supported by many network component vendors SFP transceivers are designed to support SONET Gigabit Ethernet Fiber Channel and other communications standards SFP DDM SHA Shaper SMTP SNMP DDM Digital Diagnostics Monitoring Modern optical SFP transceivers support digital diagnostics monitoring DDM functions according to the industry standard SFF 8472 This feature is also known as digital optical monitoring DOM This feature gives the end user the ability to monitor real time parameters of the SFP such as optical output power optical input power temperature laser bias current and transceiver supply voltage SHA is an acronym for Secure Hash Algorithm It designed by the National Security Agency NSA and published by the NIST as a U S Federal Information Processing Standard Hash algorithms compute a fixed length digital representation known as a message digest of an input data sequence the message of any length A shaper can limit the bandwidth of transmitted frames It is located after the ingress queues SMTP is an acronym for Simple Mail Transfer Protocol It is a text based protocol that uses the Transmission Control Protocol TCP and provides a mail service modeled on the FTP file transfer service SMTP transfers mail messages between systems and notifications regarding incoming mail 115 SNTP SNMP is an acronym for Simple Network Management Protocol It is part of the Transmi
12. lt port_list gt enable disable LACP Key lt port_list gt lt key gt LACP Role lt port_list gt active passive LACP Status lt port_list gt LACP Statistics lt port_list gt clear 12 1 Configuration LACP gt Configuration help Description Show LACP configuration Syntax LACP Configuration lt port_list gt Parameters lt port_list gt Port list or all default All ports 12 2 Mode LACP gt Mode help Description Set or show LACP mode Syntax LACP Mode lt port_list gt enable disable Parameters lt port_list gt Port list or all default All ports enable Enable LACP protocol disable Disable LACP protocol default Show LACP mode 12 3 Key LACP gt Key help Description Set or show the LACP key Syntax LACP Key lt port_list gt lt key gt Parameters Xport list Port list or all default All ports lt key gt LACP key 1 65535 or auto 12 4 Role LACP gt Role help Description Set or show the LACP role Syntax LACP Role lt port_list gt active passive Parameters lt port_list gt Port list or all default All ports active Initiate LACP negotiation passive Listen for LACP packets default Show LACP role 12 5 Status LACP gt Status help Description Show LACP Status Syntax LACP Status lt port_list gt Parameters lt port_list gt Port list or all default All ports 12 6 Statistics
13. 8 1 3 2 Mode enable disable 222 n aaa 35 8 1 4 HTTPS Hypertext Transfer Protocol over Secure Socket Layer 36 8 1 4 1 Configuratio eoe ete ten is a ees o ters a eee P Pe ss au ena 36 8 142 Mode c sgEERHIR EUH A A A 36 9 1 4 3 Redirect iion HE Ded oe rer Ra EE LT ER Eten 36 8 1 5 SNMP Simple Network Management Protocol ssesssssessss 37 RAMA E os ener cemere cv rope eere de ded ded fa cde dd ded de D Pa denar a ods 38 A unn SE EEE SENEE RENTES 38 oe VERSION consolas asado 38 8 1 5 4 Read Community sso io aiis e ee o eaae a ae eet S a ae Eaa e ae Ea e aei 39 8 1 5 5 Write COMMUN ICY seieren eia E E E E E EE EEEE EREE 39 MODO TA MA o e e do de dla Saas 39 AO NN 40 91 50 Trap COMMUNILY 424 2 oce Dti ete Asta age Asin Teste Aste it e 40 8 1 5 9 Trap Destinatlorn ic tete eee ees 40 8 1 5 10 Trap Authentication Failure oooonnoonnnnccccnnnnccnncconoccnnnnccnnnnnnnnn cnn nnnnnnnnnn nn ncnnnns 41 8 1 5 11 Trap Eink p sonar ES 41 8 1 5 12 hap IntomtTMOde pa OS 41 9 1 5 19 Trap Inforri l imeott 2 2 eee ee eds 42 8 1 5 14 Trap Inform Retry mes 5 ccc orte ee perte eee eto hee ete es 42 8 1 5 15 Trap Probe Security Engine ID sssssssss 43 8 1 5 16 Trap Security Engine ID iie ee eoe eL Ee siet 43 8 1 5 17 Trap Security Nam6 ie esee tenete nile ei en teta tenuia ani 43 8 1 5 18 Engine ID iore rent ase 44 8 1 5 19 Communit
14. 9 13 MSti Map cedere aaa aa aa aia a aa a Naaa E NAARAAN a aia 66 9 14 MSII Add e t ieina S E e Du ua 66 O51 SP Ont GConnguiatob ze eee EE ERE EE PNE HER HEEL 67 9 16 Port MOdae us e EE Ee e EE ere 67 AA AA a oU eU Ve RS te UU RR UP 67 9 18 Port AutoEdge il 68 9 19 Port P2P RNS 68 9 20 Port RestrictedE olo t eter ts sere ex se sagre es asa ea Rh 68 9 21 Port Restricted Teri t eu eee tus etus 69 9 22 Port bpduGuard eee eee teet e reete eed ev reete eee eed ev eine 69 9 23 ESE usc o enc mn e c n er c n er c on ra s 69 9 24 Port MCheck c sunu ERREUR HEUREUSE EEUU 70 9 25 Msti Port Configuration ssssssssssssssseeene eene 70 9 26 MSti Port COSE ease t eee ees leas lees 70 9 27 MstiPOrb Priority 71 10 IGMP Internet Group Management Protocol snooping eene 72 10 T Confilgutration ce s ed 72 ROB fore me ITIN 72 WO SHS CALC m NE e MEET 13 O ARIE E EAA AA AA 73 10 5 Fastle8V8 ee tent n ee t i e E EE e E e ERR d ea eee 73 10 6 SOULBI nooo oo oO 74 TO EOI RR ote Soh ERE 74 NOS OU OS is eat at OO LOS 74 A EM 75 11 Agar Link AggregatlOon noire ioc etoo iei race adicionan aniones 76 11 1 Configuration x tet nt textes IES 76 Ato a 76 11 3 Delete rct aba 76 TAA Kolo eee ee Mee UITIUM ULM E 77 MER AAA N TT 12 LACP Link Aggrega
15. CIST 0 MSTII 1 port list Port list or all Port zero means aggregations priority STP port priority 0 16 32 48 224 240 10 IGMP Intemet Group Management Protocol snooping Available Commands IGMP Configuration lt port_list gt IGMP Mode enable disable IGMP State lt vid gt enable disable IGMP Querier lt vid gt enable disable IGMP Fastleave lt port_list gt enable disable IGMP Router lt port_list gt enable disable IGMP Flooding enable disable IGMP Groups lt vid gt IGMP Status lt vid gt 10 1 Configuration IGMP gt Configuration help Description Show IGMP snooping configuration Syntax IGMP Configuration lt port_list gt Parameters lt port_list gt Port list or all default All ports 10 2 Mode IGMP gt Mode help Description Set or show the IGMP snooping mode Syntax IGMP Mode enable disable Parameters enable Enable IGMP snooping disable Disable IGMP snooping default Show IGMP snooping mode 10 3 State IGMP gt State help Description Set or show the IGMP snooping state for VLAN Syntax IGMP State lt vid gt enable disable Parameters vid VLAN ID 1 4095 default Show all VLANs enable Enable IGMP snooping disable Disable IGMP snooping default Show IGMP snooping mode 10 4 Querier IGMP gt Querier help Description Set or show the IGMP snooping querier mode for VLAN
16. DIOS OS E te A ode de Aol he Scotia te dcovbetedeoedatecs co datur e co atre ca aede usa un 54 8 2 9 ACL Access Control List innata esee re ease enn 55 8 2 3 1 Configuration ec tee Dee eee Re Ceo innata fob tees tuae bei Eee bein dia 55 9 2 9 2 A a e ee ee ne ee ee E LUE 55 O c pL E P nee re 56 82 03 A AA tA IAM ME A ID LO IIIT I M TAUPE DIET O T LEE 56 PCR EIS o 56 MEINE IO 58 8 2 3 7 LOOKUP e ee ae eet ee epe rete epe e Lees 58 9 2 9 9 Oled oio a De nad estet edem em c e o eur 59 LI URS IU A T E o 59 8 3 AAA Authentication Authorization and Accounting sssssssessss 59 9 9 1 Configuration 1 21 51 1 ii se ERE Ee Eee cn Ce Mie ee Mite A otk 60 IZ MTC OUT rM 60 AAA cu EES OOD OES DE n T M M n Aa Deua PPE LOR 60 9 9 4 RADIUS ere a t D RE RR RU RR E UR RH ERR RR 60 99S Stati ioc o o EDE 61 9 STP Spanning Tree Protocol essseesssesseessseeeeeee nennen nnnnnn nnn nnn ne nnn nennen 62 91 Configuration e ERU ee EE 62 92 Version ONCE ee RON 63 9 3 TXNOI ro c e e TOT TS Te 63 JA WAM ODS ese RP 63 9 5 Ma OO asa 63 ASA naaa aaka aaa aAA aA EA AKARNA TANE Anana 64 9 7 bpduFilter cr eee EE EEE esu nee 64 9 8 bDd GUAE d xoc tet O e EU NN 64 OD TO COVERY PEE DERE 65 9 10 CNAME wissen eid 65 QVM Status ice A 65 9 12 MSti Priority e e te eus 66
17. Delete help Description Delete ACE Syntax Security Network ACL Delete lt ace_id gt Parameters lt ace_id gt ACE ID 1 128 8 2 3 7 Lookup Security Network ACL gt Lookup help Description Show ACE default All ACEs Syntax Security Network ACL Lookup lt ace_id gt Parameters ace id ACE ID 1 128 8 2 3 8 Clear Security Network ACL gt Clear help Description Clear all ACL counters Syntax Security Network ACL Clear 8 2 3 9 Status Security Network ACL gt Status help Description Show ACL status Syntax Security Network ACL Status combined static conflicts Parameters combined Shows the combined status static Shows the static user configured status conflicts Shows all conflict status default Shows the combined status 8 3 AAA Authentication Authorization and Accounting Available Commands Security AAA Configuration Security AAA Timeout lt timeout gt Security AAA Deadtime lt dead_time gt Security AAA RADIUS lt server_index gt enable disable lt ip_addr string gt lt secret gt lt server_port gt Security AAA Statistics lt server_index gt 8 3 1 Configuration Security AAA gt Configuration help Description Show Auth configuration Syntax Security AAA Configuration 8 3 2 Timeout Security AAA gt Timeout help Description Set or show server timeout Syntax Security AAA Tim
18. ID 1 24 Next QCE ID 1 24 Ethernet Type keyword Ethernet Type VLAN ID keyword VLAN ID 1 4095 UDP TCP port keyword Source or destination UDP TCP port 0 65535 IP DSCP keyword IP DSCP 0 63 IP ToS keyword tos list IP ToS list 0 7 tag prio VLAN tag priority keyword tag prio list VLAN tag priority list 0 7 class Traffic class low normal medium high or 1 2 3 4 15 7 QCL Delete QoS gt QCL Delete help Description Delete QCE Syntax QoS QCL Delete qcl 1d qce id Parameters qcl id QCL ID qce id QCE ID 1 24 15 8 QCL Lookup QoS gt QCL Lookup help Description Lookup QCE Syntax QoS QCL Lookup lt qcl_id gt lt qce_id gt Parameters qcl id QCL ID qce id QCE ID 1 24 15 9 Mode QoS gt Mode help Description Set or show the port egress scheduler mode Syntax QoS Mode lt port_list gt strict weighted Parameters port list Port list or all default All ports strict Strict mode weighted Weighted mode default Show QoS mode 15 10 Weight QoS Weight help Description Set or show the port egress scheduler weight Syntax QoS Weight lt port_list gt lt class gt lt weight gt Parameters lt port_list gt Port list or all default All ports lt class gt Traffic class low normal medium high or 1 2 3 4 lt weight gt Traffic class weight 1 2 4 8 15 11 Rate Limite
19. Show MAC address table statistics Syntax MAC Statistics lt port_list gt Parameters lt port_list gt Port list or all default All ports 5 9 Flush MAC gt Flush help Description Flush all learned entries Syntax MAC Flush 6 VLAN Virtual LAN Available Commands VLAN Configuration port list VLAN Aware lt port_list gt enable disable VLAN PVID lt port_list gt lt vid gt none VLAN FrameType lt port_list gt allitagged VLAN IngressFilter lt port_list gt enable disable VLAN Add lt vid gt lt port_list gt VLAN Delete lt vid gt VLAN Lookup lt vid gt VLAN Status lt port_list gt combined static nas mstp all conflicts 6 1 Configuration VLAN gt Configuration help Description Show VLAN configuration Syntax VLAN Configuration lt port_list gt Parameters lt port_list gt Port list or all default All ports 6 2 Aware VLAN gt Aware help Description Set or show the port VLAN awareness Syntax VLAN Aware lt port_list gt enable disable Parameters lt port_list gt Port list or all default All ports enable Enable VLAN awareness disable Disable VLAN awareness default Show VLAN awareness 6 3 PVID VLAN gt PVID help Description Set or show the port VLAN ID Syntax VLAN PVID lt port_list gt lt vid gt none Parameters lt port_list gt Port list or all default All port
20. gt Delete help Description Delete MAC address entry Syntax MAC Delete mac addr lt vid gt Parameters mac addr MAC address xx xx xx xx xx xx vid VLAN ID 1 4095 default 1 5 4 Lookup MAC gt Lookup help Description Lookup MAC address entry Syntax MAC Lookup mac addr lt vid gt Parameters mac addr MAC address xx xx xx xx xx xx lt vid gt VLAN ID 1 4095 default 1 5 5 Agetime MAC gt Agetime help Description Set or show the MAC address age timer Syntax MAC Agetime lt age_time gt Parameters lt age_time gt MAC address age time 0 10 1000000 O disable default Show age time 5 6 Learning MAC gt Learning help Description Set or show the port learn mode Syntax MAC Learning lt port_list gt auto disable secure Parameters port list Port list or all default All ports auto Automatic learning disable Disable learning secure Secure learning default Show learn mode 5 7 Dump MAC gt Dump help Description Show sorted list of MAC address entries Syntax MAC Dump lt mac_max gt lt mac_addr gt lt vid gt Parameters lt mac_max gt Maximum number of MAC addresses default Show all addresses lt mac_addr gt First MAC address xx xx xx xx xx xx default MAC address zero lt vid gt First VLAN ID 1 4095 default 1 5 8 Statistics MAC gt Statistics help Description
21. low normal medium high or 1 2 3 4 15 4 Tagprio QoS gt Tagprio help Description Set or show the port VLAN tag priority Syntax QoS Tagprio lt port_list gt lt tag_prio gt Parameters lt port_list gt Port list or all default All ports lt tag_prio gt VLAN tag priority 0 7 15 5 QCL Port QoS gt QCL Port help Description Set or show the port OCL ID Syntax QoS QCL Port lt port_list gt lt qel_id gt Parameters port list qcl id gt 15 6 QCL Add QoS gt QCL Add help Description Port list or all default All ports QCL ID Add or modify QoS Control Entry QCE If the QCE ID parameter qce 1d is specified and an entry with this QCE ID already exists the QCE will be modified Otherwise a new QCE will be added If the QCE ID is not specified the next available QCE ID will be used If the next QCE ID parameter qce id next is specified the QCE will be placed before this QCE in the list If the next QCE ID is not specified the QCE will be placed last in the list Syntax QoS QCL Add qcl id lt qce_id gt qce id next gt etype lt etype gt vid lt vid gt port udp tcp port dscp lt dscp gt tos lt tos_list gt tag_prio tag prio list class Parameters qcl id lt qce_id gt qce 1d next gt etype lt etype gt vid lt vid gt port lt udp_tcp_port gt dscp lt dscp gt tos QCL ID QCE
22. more capabilities for retaining e mail on the server and for organizing it in folders on the server IMAP can be thought of as a remote file server POP and IMAP deal with the receiving of e mail and are not to be confused with the Simple Mail Transfer Protocol SMTP You send e mail with SMTP and a mail handler receives it on your recipient s behalf Then the mail is read using POP or IMAP IMAP4 and POP3 are the two most prevalent Internet standard protocols for e mail retrieval Virtually all modern e mail clients and servers support both PPPoE PPPoE is an acronym for Point to Point Protocol over Ethernet It is a network protocol for encapsulating Point to Point Protocol PPP frames inside Ethernet frames It is used mainly with ADSL services where individual users connect to the ADSL transceiver modem over Ethernet and in plain Metro Ethernet networks Wikipedia Private VLAN In a private VLAN communication between ports in that private VLAN is not 112 QCE QCL QL QoS permitted A VLAN can be configured as a private VLAN QCE is an acronym for QoS Control Entry It describes QoS class associated with a particular QCE ID There are six QCE frame types Ethernet Type VLAN UDP TCP Port DSCP TOS and Tag Priority Frames can be classified by one of 4 different QoS classes Low Normal Medium and High for individual application QCL is an acronym for QoS Control List It is the list table of QCEs conta
23. packet_rate gt Security Network ACL Add lt ace_id gt lt ace_id_next gt switch port lt port gt policy lt policy gt lt vid gt lt tag_prio gt lt dmac_type gt etype lt etype gt lt smac gt lt dmac gt arp lt sip gt lt dip gt lt smac gt lt arp_opcode gt lt arp_flags gt ip lt sip gt lt dip gt lt protocol gt lt ip flags gt icmp lt sip gt lt dip gt lt icmp_type gt lt icmp_code gt lt ip_flags gt udp lt sip gt lt dip gt lt sport gt lt dport gt lt ip_flags gt tep lt sip gt lt dip gt lt sport gt lt dport gt lt ip_flags gt lt tcp_flags gt permit deny lt rate_limiter gt lt port_copy gt lt logging gt lt shutdown gt Security Network ACL Delete ace id Security Network ACL Lookup lt ace_id gt Security Network ACL Clear Security Network ACL Status combined static conflicts 8 2 3 1 Configuration Security Network ACL gt Configuration help Description Show ACL Configuration Syntax Security Network ACL Configuration lt port_list gt Parameters Xport list Port list or all default All ports 8 2 3 2 Action Security Network ACL gt Action help Description Set or show the ACL port default action Syntax Security Network ACL Action lt port_list gt permit deny lt rate_limiter gt lt port_copy gt lt logging gt shutdown
24. protocol guarantees reliable and in order delivery of data from sender to receiver and distinguishes data for multiple connections by concurrent applications for example Web server and e mail server running on the same host The applications on networked hosts can use TCP to create connections to one another It is known as a connection oriented protocol which means that a connection is established and maintained until such time as the message or messages to be exchanged by the application programs at each end have been exchanged TCP is responsible for ensuring that a message is divided into the packets that IP manages and for reassembling the packets back into the complete message at the other end Common network applications that use TCP include the World Wide Web WWW e mail and File Transfer Protocol FTP TELNET TELNET is an acronym for TELetype NETwork It is a terminal emulation protocol that uses the Transmission Control Protocol TCP and provides a virtual connection between TELNET server and TELNET client TELNET enables the client to control the server and communicate with other servers on the network To start a Telnet session the client user must log in to a server by entering a valid username and password Then the client user can 117 TFTP ToS TLV TKIP UDP enter commands through the Telnet program just as if they were entering commands directly on the server console TFTP is an acronym for Tri
25. to intervene by injecting a bogus DHCP reply packet to a legitimate conversation between the DHCP client and server DNS is an acronym for Domain Name System It stores and associates many types of information with domain names Most importantly DNS translates human friendly domain names and computer hostnames into computer friendly IP addresses For example the domain name www example com might translate to 192 168 0 1 DoS is an acronym for Denial of Service In a denial of service DoS attack an attacker attempts to prevent legitimate users from accessing information or services By targeting at network sites or network connection an attacker may be able to prevent network users from accessing email web sites online accounts banking etc or other services that rely on the affected computer Dotted Decimal Notation DSCP Dotted Decimal Notation refers to a method of writing IP addresses using decimal numbers and dots as separators between octets An IPv4 dotted decimal address has the form x y z w where x y z and w are decimal numbers between 0 and 255 DSCP is an acronym for Differentiated Services Code Point It is a field in the header of IP packets for packet classification purposes 106 EPS EPS Is an abbreviation for Ethernet Protection Switching defined in ITU T G 8031 Ethernet Type FTP Ethernet Type or EtherType is a field in the Ethernet MAC header defined by the Ethernet networking
26. 02 1X IGMP IEEE 802 1X 1s an IEEE standard for port based Network Access Control It provides authentication to devices attached to a LAN port establishing a point to point connection or preventing access from that port if authentication fails With 802 1X access to all switch ports can be centrally controlled from a server which means that authorized users can use the same credentials for authentication from any point within the network IGMP is an acronym for Internet Group Management Protocol It is a communications protocol used to manage the membership of Internet Protocol multicast groups IGMP is used by IP hosts and adjacent multicast routers to establish multicast group memberships It is an integral part of the IP multicast specification like ICMP for unicast connections IGMP can be used for online video and gaming and allows more efficient use of resources when supporting these uses IGMP Querier IMAP A router sends IGMP Query messages onto a particular link This router is called the Querier IMAP is an acronym for Internet Message Access Protocol It is a protocol for email clients to retrieve email messages from a mail server 108 IMAP is the protocol that IMAP clients use to communicate with the servers and SMTP is the protocol used to transport mail to an IMAP server The current version of the Internet Message Access Protocol is IMAPA It is similar to Post Office Protocol version 3 POP3 but offers
27. C functionality CDP CDP is an acronym for Cisco Discovery Protocol D DES DES is an acronym for Data Encryption Standard It provides a complete description of a mathematical algorithm for encrypting enciphering and decrypting deciphering binary coded information Encrypting data converts it to an unintelligible form called cipher Decrypting cipher converts the data back to its original form called plaintext The algorithm described in this standard specifies both enciphering and deciphering operations which are based on a binary number called a key DHCP DHCP is an acronym for Dynamic Host Configuration Protocol It is a protocol used for assigning dynamic IP addresses to devices on a network DHCP used by networked computers clients to obtain IP addresses and other parameters such as the default gateway subnet mask and IP addresses of DNS servers from a DHCP server The DHCP server ensures that all IP addresses are unique for example no IP address is assigned to a second client while the first client s assignment is valid its lease has not expired Therefore IP address pool management is done by the server and not by a human network administrator Dynamic addressing simplifies network administration because the software keeps track of IP addresses rather than requiring an administrator to manage the task This means that a new computer can be added to a network without the hassle of manually assigning it a unique IP address
28. CP client mode Syntax IP DHCP enableldisable Parameters enable Enable or renew DHCP client disable Disable DHCP client 3 3 Setup IP gt Setup help Description Set or show the IP setup Syntax IP Setup lt ip_addr gt lt ip_mask gt lt ip_router gt lt vid gt Parameters ip addr IP address a b c d default Show IP address jp mask IP subnet mask a b c d default Show IP mask jp router IP router a b c d default Show IP router lt vid gt VLAN ID 1 4095 default Show VLAN ID 3 4 Ping IP gt Ping help Description Ping IP address ICMP echo Syntax IP Ping lt ip_addr_string gt lt ping length gt Parameters lt ip_addr_string gt IP host address a b c d ping length Ping data length 8 1400 excluding MAC IP and ICMP header 3 5 SNTP IP gt SNTP help Description Set or show the SNTP Time server address Syntax IP SNTP lt ip_addr_string gt Parameters jp addr string IP host address a b c d 4 Port Port management Available Commands Port Configuration lt port_list gt Port State lt port_list gt enable disable Port Mode lt port_list gt 10hdx 10fdx 100hdx 100fdx 1000fdx auto Port Flow Control lt port_list gt enable disable Port MaxFrame lt port_list gt lt max_frame gt Port Power lt port_list gt enable disable actiphy dynamic Port Excessive lt port_list gt discard restart
29. DHCP Relay DHCP Relay is used to forward and to transfer DHCP messages between the clients and the server when they are not on the same subnet domain The DHCP option 82 enables a DHCP relay agent to insert specific information into a DHCP request packets when forwarding client DHCP packets to a DHCP server and remove the specific information from a DHCP reply packets when forwarding server DHCP packets to a DHCP client The DHCP server can use 105 this information to implement IP address or other assignment policies Specifically the option works by setting two sub options Circuit ID option 1 and Remote ID option2 The Circuit ID sub option is supposed to include information specific to which circuit the request came in on The Remote ID sub option was designed to carry information relating to the remote host end of the circuit The definition of Circuit ID in the switch is 4 bytes in length and the format is vlan id module id port no The parameter of vlan id is the first two bytes represent the VLAN ID The parameter of module id is the third byte for the module ID in standalone switch it always equal 0 in stackable switch it means switch ID The parameter of port no is the fourth byte and it means the port number The Remote ID is 6 bytes in length and the value is equal the DHCP relay agentis MAC address DHCP Snooping DNS DoS DHCP Snooping is used to block intruder on the untrusted ports of DUT when it tries
30. Description Set or show the port isolation mode Syntax PVLAN Isolate lt port_list gt enable disable Parameters lt port_list gt Port list or all default All ports enable Enable port isolation disable Disable port isolation default Show port isolation port list 8 Security Security management Available Command groups Switch Switch security Network Network security AAA Authentication Authorization and Accounting 8 1 Switch Switch security Available command groups Security Switch Password System password Security Switch Auth Authentication Security Switch SSH Secure Shell Security Switch HTTPS Hypertext Transfer Protocol over Secure Socket Layer Security Switch SNMP Simple Network Management Protocol 8 1 1 Password Available Command Security Switch gt Password help Description Set the system password Syntax Security Switch Password lt password gt Parameters lt password gt System password string Use clear or to clear the string 8 1 2 Auth Authentication Available Commands Security Switch Auth Configuration Security Switch Auth Method console telnet ssh web none local radius enable disable 8 1 2 1 Configuration Security Switch Auth gt Configuration help Description Show Auth configuration Syntax Security Switch Auth Configuration 8 1 2 2 Method Security Switch Auth gt Method help Descr
31. Description Show SNMP configuration Syntax Security Switch SNMP Configuration 8 1 5 2 Mode Security Switch SNMP gt Mode help Description Set or show the SNMP mode Syntax Security Switch SNMP Mode enable disable Parameters enable Enable SNMP disable Disable SNMP default Show SNMP mode 8 1 5 3 Version Security Switch SNMP Version help Description Set or show the SNMP protocol version Syntax Security Switch SNMP Version 1 2c 3 Parameters 1 SNMP version 1 2c SNMP version 2c 3 SNMP version 3 default Show SNMP version 8 1 5 4 Read Community Security Switch SNMP gt Read Community help Description Set or show the community string for SNMP read access Syntax Security Switch SNMP Read Community lt community gt Parameters lt community gt Community string Use clear or to clear the string default Show SNMP read community 8 1 5 5 Write Community Security Switch SNMP gt Write Community help Description Set or show the community string for SNMP write access Syntax Security Switch SNMP Write Community lt community gt Parameters lt community gt Community string Use clear or to clear the string default Show SNMP write community 8 1 5 6 Trap Mode Security Switch SNMP gt Trap Mode help Description Set or show the SNMP trap mode Syntax Security Switch SNMP Trap Mode enable disable Parameters
32. IETF RFC 2474 5 This 6 bit field may contain one of 64 code point values 0 through 63 A value of 0 represents use of the default DSCP value as defined in RFC 2475 14 6 port policies LLDPMED gt port policies help Description Set or show LLDP MED port policies Syntax LLDPMED port policies lt port_list gt lt policy_list gt Parameters lt port_list gt Port list or all default All ports lt policy_list gt List of policies to delete 14 7 Coordinates LLDPMED gt Coordinates help Description Set or show LLDP MED Location Syntax LLDPMED Coordinates latitude longitude altitude north south west east meters floor coordinate value Parameters latitude Latitude 0 to 90 degrees with max 4 digits Positive numbers are north of the equator and negative numbers are south of the equator longitude Longitude 0 to 180 degrees with max 4 digits Positive values are East of the prime meridian and negative numbers are West of the prime meridian altitude Altitude Meters or floors with max 4 digits default Show coordinate location configuration north south west east meters floor North North Valid for latitude South South Valid for latitude West West Valid for longitude East East Valid for longitude Meters Meters Valid for altitude Floor Floor Valid for altitude coordinate value Coordinate value 14 8 Datum LLDPMED gt Datum help Description
33. IP Telephony handsets and other similar appliances supporting interactive voice services Guest Voice Signaling conditional for use in network topologies that require a different policy for the guest voice signaling than for the guest voice media Softphone Voice for use by softphone applications on typical data centric devices such as PCs or laptops This class of endpoints frequently does not support multiple VLANs if at all and are typically configured to use an untagged VLAN or a single tagged data specific VLAN Video Conferencing for use by dedicated Video Conferencing equipment and other similar appliances supporting real time interactive video audio services Streaming Video for use by broadcast or multicast based video content distribution and other similar applications supporting streaming video services that require specific network policy treatment Video applications relying on TCP with buffering would not be an intended use of this application type Video Signaling conditional for use in network topologies that require a separate policy for the video signaling than for the video media The device 1s using tagged frames The device is using untagged frames VLAN id This field may specify one of eight priority levels 0 through 7 as defined by IEEE 802 1D 2004 3 This field shall contain the DSCP value to be used to provide Diffserv node behavior for the specified application type as defined in
34. KGS 2421 KGS 1620 Console amp Telnet Management Interface User s Manual R DOC 101115 C 2010 KTI Networks Inc All rights reserved No part of this documentation may be reproduced in any form or by any means or used to make any directive work such as translation or transformation without permission from KTI Networks Inc KTI Networks Inc reserves the right to revise this documentation and to make changes in content from time to time without obligation on the part of KTI Networks Inc to provide notification of such revision or change For more information contact United States KTI Networks Inc P O BOX 631008 Houston Texas 77263 1008 Phone 713 2663891 Fax 713 2663893 E mail kti ktinet com URL http www ktinet com International Fax 886 2 26983873 E mail kti ktinet com tw URL http www ktinet com tw The information contained in this document 1s subject to change without prior notice Copyright C All Rights Reserved TRADEMARKS Ethernet 1s a registered trademark of Xerox Corp Vitesse Switch Software Copyright c 2002 2009 Vitesse Semiconductor Corporation Vitesse All Rights Reserved Unpublished rights reserved under the copyright laws of the United States of America other countries and international treaties Permission to use copy store and modify the software and its source code is granted Permission to integrate into other products disclose transmit and distribute the
35. LACP gt Statistics help Description Show LACP Statistics Syntax LACP Statistics lt port_list gt clear Parameters Xport list Port list or all default All ports clear Clear LACP statistics 13 LLDP Link Layer Discovery Protocol Available Commands LLDP Configuration lt port_list gt LLDP Mode lt port_list gt enable disable rx tx LLDP Optional TLV port list port descr sys name sys descr sys capa mgmt addr enable disable LLDP Interval lt interval gt LLDP Hold lt hold gt LLDP Delay lt delay gt LLDP Reinit lt reinit gt LLDP Info lt port_list gt LLDP Statistics lt port_list gt clear 13 1 Configuration LLDP gt Configuration help Description Show LLDP configuration Syntax LLDP Configuration lt port_list gt Parameters lt port_list gt Port list or all default All ports 13 2 Mode LLDP gt Mode help Description Set or show LLDP mode Syntax LLDP Mode lt port_list gt enable disable rx tx Parameters lt port_list gt Port list or all default All ports enable Enable LLDP reception and transmission disable Disable LLDP IX Enable LLDP reception only tx Enable LLDP transmission only default Show LLDP mode 13 3 Optional_TLV LLDP gt Optional_ TLV help Description Set or show LLDP Optional TLVs Syntax LLDP Optional TLV lt port_list gt port_descr sys_name sys_descr sys_capa mgm
36. MC is an acronym for IP MultiCast IP Source Guard IP Source Guard is a secure feature used to restrict IP traffic on DHCP snooping untrusted ports by filtering traffic based on the DHCP Snooping Table or manually configured IP Source Bindings It helps prevent IP spoofing attacks when a host tries to spoof and use the IP address of another host LACP LACP is an IEEE 802 3ad standard protocol The Link Aggregation Control Protocol allows bundling several physical ports together to form a single logical port LLDP 109 LOC M LLDP is an IEEE 802 1ab standard protocol The Link Layer Discovery Protocol is used for network discovery and works by having the units in the network exchanging information with their neighbors using LLDP frames LOC is an acronym for Loss Of Connectivity and is detected by a MEP and is indicating lost connectivity in the network Can be used as a switch criteria by EPS MAC Table MEP MD5 Switching of frames is based upon the DMAC address contained in the frame The switch builds up a table that maps MAC addresses to switch ports for knowing which ports the frames should go to based upon the DMAC address in the frame This table contains both static and dynamic entries The static entries are configured by the network administrator if the administrator wants to do a fixed mapping between the DMAC address and switch ports The frames also contain a MAC address SMAC address which shows
37. MED Civic Address Location Syntax LLDPMED Civic country state county city district block street leading street di rection trailing street suffixjstr suf house no house no suffix landmark additio nal info name zip code building apartment floorrroom number place type postal co m name p o boxj additional code lt civic_value gt Parameters country state county city district block street leading street direction trailing street suffix str suf house no house no suffix landmark additional info name zip code building apartment floor room number place type postal com name p o box additional code Country National subdivisions state caton region province prefecture County parish gun JP district IN City township shi JP City division borough city district ward chou JP Neighborhood block Street Leading street direction Trailing street suffix Street Suffix House Number House number suffix Landmark or vanity address Additional location information name Name residence and office occupant Postal zip code Building structure Unit apartment suite Floor Room number Place type Postal community name Post office box P O Box Additional code default Show Civic Address Location configuration civic value 14 3 ecs LLDPMED gt ecs help The value for the Civic Address Location entry Descriptio
38. PS configuration Syntax Security Switch HTTPS Configuration 8 1 4 2 Mode Security Switch HTTPS gt Mode help Description Set or show the HTTPS mode Syntax Security Switch HTTPS Mode enable disable Parameters enable Enable HTTPS disable Disable HTTPS default Show HTTPS mode 8 1 4 3 Redirect Security Switch HTTPS gt Redirect help Description Set or show the HTTPS redirect mode Automatic redirect web browser to HTTPS during HTTPS mode enabled Syntax Security Switch HTTPS Redirect enable disable Parameters enable Enable HTTPS redirect disable Disable HTTPS redirect default Show HTTPS redirect mode 8 1 5 SNMP Simple Network Management Protocol Available Commands Security Switch SNMP Configuration Security Switch SNMP Mode enable disable Security Switch SNMP Version 1 2c 3 Security Switch SNMP Read Community lt community gt Security Switch SNMP Write Community lt community gt Security Switch SNMP Trap Mode enable disable Security Switch SNMP Trap Version 1 2c 3 Security Switch SNMP Trap Community lt community gt Security Switch SNMP Trap Destination lt ip_addr_string gt Security Switch SNMP Trap Authentication Failure enable disable Security Switch SNMP Trap Link up enable disable Security Switch SNMP Trap Inform Mode enable disable Security Switch SNMP Trap Inform Timeout lt timeout gt Security Switch SNMP Trap Inform Retry T
39. Save ip server file name Config Load ip server file name check 17 1 Save Config gt Save help Description Save configuration to TFTP server Syntax Config Save ip server file name Parameters Ip server TFTP server IP address a b c d file name Configuration file name 17 2 Load Config gt Load help Description Load configuration from TFTP server Syntax Config Load ip server file name gt check Parameters jp server TFTP server IP address a b c d file name Configuration file name check Check configuration file only default Check and apply file 18 SFPDDM SFP with Digital Diagnostic Monitoring gt SFPDDM help Description Show SFP with Digital Diagnostic Monitoring DDM Syntax SFPDDM port list Parameters port list Port list or all 19 Firmware Download of firmware via TFTP gt Firmware Description Load new firmware from TFTP server Syntax Firmware Load lt ip_addr_string gt lt file_name gt Parameters lt ip_addr_string gt IP host address a b c d lt file_name gt Firmware file name 102 Glossary ABCDEFGHIJKLMNOPQRSTUVWXYZ A ACE ACL ACE is an acronym for Access Control Entry It describes access permission associated with a particular ACE ID There are three ACE frame types Ethernet Type ARP and IPv4 and two ACE actions permit and deny The ACE also con
40. Show error statistics discards Show discard statistics filtered Show filtered statistics low Show low priority statistics normal Show normal priority statistics medium Show medium priority statistics high Show high priority statistics default Show all port statistics 4 9 VeriPHY Port gt VeriPHY help Description Run cable diagnostics Syntax Port VeriPHY lt port_list gt Parameters lt port_list gt Port list or all default All ports 5 MAC MAC address table Available Commands MAC Configuration lt port_list gt MAC Add lt mac_addr gt lt port_list gt lt vid gt MAC Delete lt mac_addr gt lt vid gt MAC Lookup lt mac_addr gt lt vid gt MAC Agetime lt age_time gt MAC Learning lt port_list gt auto disable secure MAC Dump lt mac_max gt mac addr lt vid gt MAC Statistics lt port_list gt MAC Flush 5 1 Configuration MAC gt Configuration help Description Show MAC address table configuration Syntax MAC Configuration lt port_list gt Parameters lt port_list gt Port list or all default All ports 5 2 Add MAC gt Add help Description Add MAC address table entry Syntax MAC Add lt mac_addr gt lt port_list gt lt vid gt Parameters lt mac_addr gt MAC address xx xx xx xx xx xx lt port_list gt Port list or all or none vid VLAN ID 1 4095 default 1 5 3 Delete MAC
41. additional and more complex features For example the IMAP4 protocol leaves your email messages on the server rather than downloading them to your computer If you wish to remove your messages from the server you must use your mail client to generate local folders copy messages to your local hard drive and then delete and expunge the messages from the server IP IP 1s an acronym for Internet Protocol It is a protocol used for communicating data across a internet network IP is a best effort system which means that no packet of information sent over it is assured to reach its destination in the same condition it was sent Each device connected to a Local Area Network LAN or Wide Area Network WAN is given an Internet Protocol address and this IP address is used to identify the device uniquely among all other devices connected to the extended network The current version of the Internet protocol is IPv4 which has 32 bits Internet Protocol addresses allowing for in excess of four billion unique addresses This number is reduced drastically by the practice of webmasters taking addresses in large blocks the bulk of which remain unused There is a rather substantial movement to adopt a new version of the Internet Protocol IPv6 which would have 128 bits Internet Protocol addresses This number can be represented roughly by a three with thirty nine zeroes after it However IPv4 is still the protocol of choice for most of the Internet IPMC IP
42. ax STP bpduGuard enable disable Parameters enable disable enable or disable BPDU Guard for Edge ports 9 9 recovery STP gt recovery help Description Set or show edge port error recovery timeout Syntax STP recovery lt timeout gt Parameters lt timeout gt Time before error disabled ports are re enabled 30 86400 seconds 0 disables default Show recovery timeout 9 10 CName STP gt CName help Description Set or show MSTP configuration name and revision Syntax STP CName lt config name gt lt integer gt Parameters lt config name gt MSTP Configuration name A text string up to 32 characters long Use quotes to embed spaces in name lt integer gt Integer value 9 11 Status STP gt Status help Description Show STP Bridge status Syntax STP Status lt msti gt lt port_list gt Parameters lt msti gt STP bridge instance no 0 7 CIST 0 MSTII 1 Xport list Port list or all default All ports 9 12 Msti Priority STP gt Msti Priority help Description Set or show the CIST MSTI bridge priority Syntax STP Msti Priority lt msti gt lt priority gt Parameters lt msti gt STP bridge instance no 0 7 CIST 0 MSTII 1 lt priority gt STP bridge priority 0 16 32 48 224 240 9 13 Msti Map STP gt Msti Map help Description Show or clear MSTP MSTI VLAN mapping configuration Syntax STP Msti Map lt msti gt cl
43. d gt A string identifying the authentication pass phrase des An optional flag to indicate that this user using DES privacy protocol privacy protocol should belong to lt priv_password gt A string identifying the privacy pass phrase 8 1 5 23 User Delete Security Switch SNMP gt User Delete help Description Delete SNMPv3 user entry Syntax Security Switch SNMP User Delete index Parameters index entry index 1 64 8 1 5 24 User Changekey Security Switch SNMP gt User Changekey help Description Change SNMPv3 user password Syntax Security Switch SNMP User Changekey lt engineid gt lt user_name gt lt auth_password gt lt priv_password gt Parameters lt engineid gt Engine ID the format may not be all zeros or all ffH and is restricted to 5 32 octet string user name A string identifying the user name that this entry should belong to auth password A string identifying the authentication pass phrase priv password A string identifying the privacy pass phrase 8 1 5 25 User Lookup Security Switch SNMP gt User Lookup help Description Lookup SNMPv3 user entry Syntax Security Switch SNMP User Lookup lt index gt Parameters index entry index 1 64 8 1 5 26 Group Add Security Switch SNMP gt Group Add help Description Add or modify SNMPv3 group entry The entry index key are security model and security name Syntax S
44. dard All ports are VLAN aware Ports connected to VLAN aware switches are members of multiple VLANs and transmit tagged frames Other ports are members of one VLAN set up with this Port VLAN ID and transmit untagged frames Provider switching This is also known as Q in Q switching Ports connected to subscribers are VLAN unaware members of one VLAN and set up with this unique Port VLAN ID Ports connected to the service provider are VLAN aware members of multiple VLANs and set up to tag all frames Untagged frames received on a subscriber port are forwarded to the provider port with a single VLAN tag Tagged frames received on a subscriber port are forwarded to the provider port with a double VLAN tag VLAN ID VLAN ID is a 12 bit field specifying the VLAN to which the frame belongs W WEP WEP is an acronym for Wired Equivalent Privacy WEP is a deprecated algorithm to secure IEEE 802 11 wireless networks Wireless networks broadcast messages use radio so are more susceptible to eavesdropping than wired networks When introduced in 1999 WEP was intended to provide confidentiality comparable to that of a traditional wired network Wikipedia WiFi WiFi is an acronym for Wireless Fidelity It is meant to be used generically when referring of any type of 802 11 network whether 802 11b 802 11a dual band 119 WPA etc The term is promulgated by the Wi Fi Alliance WPA is an acronym for Wi Fi Protected Access It was created in re
45. ear Parameters lt msti gt STP bridge instance no 0 7 CIST 0 MSTII 1 clear Clear VID to MSTI mapping 9 14 Msti Add STP gt Msti Add help Description Add a VLAN to a MSTI Syntax STP Msti Add lt msti gt lt vid gt Parameters lt msti gt STP bridge instance no 0 7 CIST 0 MSTII 1 lt vid gt VLAN ID 1 4095 9 15 Port Configuration STP gt Port Configuration help Description Show STP Port configuration Syntax STP Port Configuration lt port_list gt Parameters lt port_list gt Port list or all Port zero means aggregations 9 16 Port Mode STP gt Port Mode help Description Set or show the STP enabling for a port Syntax STP Port Mode lt port_list gt enable disable Parameters lt port_list gt Port list or all Port zero means aggregations enable Enable MSTP protocol disable Disable MSTP protocol 9 17 Port Edge STP gt Port Edge help Description Set or show the STP adminEdge port parameter Syntax STP Port Edge lt port_list gt enable disable Parameters port list Port list or all default All ports enable Configure MSTP adminEdge to Edge disable Configure MSTP adminEdge to Non edge 9 18 Port AutoEdge STP gt Port AutoEdge help Description Set or show the STP autoEdge port parameter Syntax STP Port AutoEdge lt port_list gt enable disable Parameters lt port_list gt Port list o
46. ecurity Switch SNMP Group Add security model security name group name Parameters security model v Reserved for SNMPv1 v2c Reserved for SNMPv2c usm User based Security Model USM security name A string identifying the security name that this entry should belong to group name gt A string identifying the group name that this entry should belong to 8 1 5 27 Group Delete Security Switch SNMP gt Group Delete help Description Delete SNMPv3 group entry Syntax Security Switch SNMP Group Delete index Parameters index entry index 1 64 8 1 5 28 Group Lookup Security Switch SNMP gt Group Lookup help Description Lookup SNMPv3 group entry Syntax Security Switch SNMP Group Lookup lt index gt Parameters index entry index 1 64 8 1 5 29 View Add Security Switch SNMP View Add help Description Add or modify SNMPv3 view entry The entry index key are view name and lt oid_subtree gt Syntax Security Switch SNMP View Add view name included excluded lt oid_subtree gt Parameters view name A string identifying the view name that this entry should belong to included Flag to indicate that this view subtree should included excluded Flag to indicate that this view subtree should excluded lt oid_subtree gt The OID defining the root of the subtree to add to the named vie 8 1 5 30 View Delete Security Switch SNMP gt V
47. ed before this ACE in the list If the next ACE ID is not specified the ACE will be placed last in the list If the Switch keyword is used the rule applies to all ports If the Port keyword 1s used the rule applies to the specified port only If the Policy keyword is used the rule applies to all ports configured with the specified policy The default is that the rule applies to all ports Syntax Security Network ACL Add lt ace_id gt lt ace id next gt switch port lt port gt policy lt policy gt lt vid gt lt tag_prio gt lt dmac_type gt etype lt etype gt lt smac gt lt dmac gt arp lt sip gt lt dip gt lt smac gt lt arp_opcode gt lt arp_flags gt ip lt sip gt lt dip gt lt protocol gt lt ip flags gt Gcmp lt sip gt lt dip gt lt icmp_type gt lt icmp_code gt lt ip_flags gt udp lt sip gt lt dip gt lt sport gt lt dport gt lt ip_flags gt tcp lt sip gt lt dip gt lt sport gt lt dport gt lt ip_flags gt lt tcp_flags gt permit deny lt rate_limiter gt lt port_copy gt lt logging gt lt shutdown gt Parameters lt ace_1d gt lt ace_1d_next gt ACE ID 1 128 default Next available ID Next ACE ID 1 128 default Add ACE last switch Switch ACE keyword port Port ACE keyword lt port gt Port number policy Policy ACE keyword lt policy gt Policy number 1 8
48. em 93 15 4 Tagprio unas aa o teda 93 15 5 QUE Pol fis 93 15 6 QCL Add octan eben bee aa 94 15 7 QCL Delete rettet r ia Reno aan ARR tees RR RR ini 95 15 8 QCL Lookup ete tr e tc ei enone 95 15 9 fors m I 95 SM 96 15 11 Fate EI iter coo oreet eese O O IS os 96 A A A E A 96 15 13 Storm UNICAST essin n s EE eee eases ena EEEE aos 97 15 14 Storm Multicast osease 97 15 15 Storm Broadcast ceonene oap eoe a hee 98 16 Mirror Port mirroring 222r atoms sunu sena eate sauna te san nne pae rakaitn ska kn napa asiaan 99 A A eet eee iru eee etu ee e e itt oc e DU 99 sr POM MDC EA 99 163 MOG i HEIDI ROB REESE SHEER E EE HD CHORUS 99 17 Config Load Save of configuration via TFTP ccssccsseecesseeeseeeeeseeeseneeeeneeeeeneeeeneeeeees 101 WV SAVE Imm 101 10 2 Eoo EL 101 18 SFPDDM SFP with Digital Diagnostic Monitoring eeeeeeeeeeeeeeeeeeeeeee 102 19 Firmware Download of firmware via TFTP eeeeseseeeeseeeeeeee nennen nennen 102 Glossary 1 General 1 1 General Commands General Commands Description Help Get help on a group or a specific command Up Move one command level up Move to Root level Logout Exit CLI 1 2 Command Groups Command Groups Description System System settings and reset options IP IP configuration and Ping
49. eout lt timeout gt Parameters lt timeout gt Server response timeout 3 3600 seconds default Show server timeout configuration 8 3 3 Deadtime Security AAA gt Deadtime help Description Set or show server dead time Syntax Security AAA Deadtime lt dead_time gt Parameters lt dead_time gt Time that a server is considered dead if it doesn t answer a request 0 3600 seconds default Show server dead time configuration 8 3 4 RADIUS Security AAA gt RADIUS help Description Set or show RADIUS authentication server setup Syntax Security AAA RADIUS lt server_index gt enable disable lt ip_addr_string gt secre t gt lt server_port gt Parameters lt server_index gt The server index 1 5 default Show RADIUS authentication server configuration enable Enable RADIUS authentication server disable Disable RADIUS authentication server default Show RADIUS server mode lt ip_addr_string gt IP host address a b c d lt secret gt Secret shared with external authentication server To set an empty secret use two quotes To use spaces in secret enquote the secret Quotes in the secret are not allowed lt server_port gt Server UDP port Use 0 to use the default RADIUS port 1812 8 3 5 Statistics Security AAA gt Statistics help Description Show RADIUS statistics Syntax Security AAA Statistics lt server_index gt Parameters lt ser
50. er rlogin TELNET and rsh protocols which did not provide strong authentication or guarantee confidentiality Wikipedia SSM In SyncE this is an abbreviation for Synchronization Status Message and is containing a OL indication Spanning Tree Protocol is an OSI layer 2 protocol which ensures a loop free topology for any bridged LAN The original STP protocol is now obsolete by RETP Switch ID Switch IDs 1 16 are used to uniquely identify the switches within a stack The Switch ID of each switch is shown on the display on the front of the switch and 116 SyncE T is used widely in the web pages as well as in the CLI commands SyncE Is an abbreviation for Synchronous Ethernet This functionality is used to make a network clock frequency synchronized Not to be confused with real time clock synchronized IEEE 1588 TACACS TACACS is an acronym for Terminal Acess Controller Access Control System Plus It is a networking protocol which provides access control for routers network access servers and other networked computing devices via one or more centralized servers TACACS provides separate authentication authorization and accounting services Tag Priority TCP Tag Priority is a 3 bit field storing the priority level for the 802 1Q frame TCP is an acronym for Transmission Control Protocol It is a communications protocol that uses the Internet Protocol IP to exchange the messages between computers The TCP
51. fault Show 802 1X state 8 2 2 4 Reauthentication Security Network NAS gt Reauthentication help Description Set or show Reauthentication enabledness Syntax Security Network NAS Reauthentication enable disable Parameters enable Enable reauthentication disable Disable reauthentication default Show current reauthentication mode 8 2 2 5 ReauthPeriod Security Network NAS gt ReauthPeriod help Description Set or show the period between reauthentications Syntax Security Network NAS ReauthPeriod lt reauth_period gt Parameters lt reauth_period gt Period between reauthentications 1 3600 seconds default Show current reauthentication period 8 2 2 6 EapolTimeout Security Network NAS gt EapolTimeout help Description Set or show the time between EAPOL retransmissions Syntax Security Network NAS EapolTimeout lt eapol_timeout gt Parameters lt eapol_timeout gt Time between EAPOL retransmissions 1 65535 seconds default Show current EAPOL retransmission timeout 8 2 2 7 Agetime Security Network NAS gt Agetime help Description Time in seconds between check for activity on successfully authenticated MAC addresses Syntax Security Network NAS Agetime lt age_time gt Parameters age time Time between checks for activity on a MAC address that succeeded authentication default Show current age time 8 2 2 8 Holdtime Secu
52. fferent keys to each user Personal WPA utilizes less scalable pre shared key PSK mode where every allowed computer is given the same passphrase In PSK mode security depends on the strength and secrecy of the passphrase The design of WPA is based on a Draft 3 of the IEEE 802 111 standard Wikipedia WPS is an acronym for Wi Fi Protected Setup It is a standard for easy and secure establishment of a wireless home network The goal of the WPS protocol is to simplify the process of connecting any home device to the wireless network Wikipedia WTR is an acronym for Wait To Restore This is the time a fail on a resource has to be not active before restoration back to this previously failing resource is done 120
53. gt Trap Link up help Description Set or show the port link up and link down trap mode Syntax Security Switch SNMP Trap Link up enable disable Parameters enable Enable SNMP trap link up and link down disable Disable SNMP trap link up and link down default Show SNMP trap link up and link down mode 8 1 5 12 Trap Inform Mode Security Switch SNMP gt Trap Inform Mode help Description Set or show the SNMP trap inform mode Syntax Security Switch SNMP Trap Inform Mode enable disable Parameters enable Enable SNMP trap inform disable Disable SNMP trap inform default Show SNMP inform mode 8 1 5 13 Trap Inform Timeout Security Switch SNMP gt Trap Inform Timeout help Description Set or show the SNMP trap inform timeout secs Syntax Security Switch SNMP Trap Inform Timeout lt timeout gt Parameters lt timeout gt SNMP trap inform timeout 0 2147 seconds default Show SNMP trap inform timeout 8 1 5 14 Trap Inform Retry Times Security Switch SNMP gt Trap Inform Retry Times help Description Set or show the SNMP trap inform retry times Syntax Security Switch SNMP Trap Inform Retry Times lt retries gt Parameters lt retries gt SNMP trap inform retransmited times 0 255 default Show SNMP trap inform retry times 8 1 5 15 Trap Probe Security Engine ID Security Switch SNMP gt Trap Probe Security Engine ID help Description Show SNMP t
54. help Description Delete SNMPv3 access entry Syntax Security Switch SNMP Access Delete lt index gt Parameters index entry index 1 64 8 1 5 34 Access Lookup lt index gt Security Switch SNMP gt Access Lookup help Description Lookup SNMPv3 access entry Syntax Security Switch SNMP Access Lookup lt index gt Parameters index entry index 1 64 8 2 Network Network security Available command groups Security Network Psec Port Security Status Security Network NAS Network Access Server IEEE 802 1X Security Network ACL Access Control List 8 2 1 Psec Port Security Status Available Commands Security Network Psec Switch lt port_list gt Security Network Psec Port lt port_list gt 8 2 1 1 Switch Security Network Psec gt Switch help Description Show Port Security status Syntax Security Network Psec Switch lt port_list gt Parameters lt port_list gt Port list or all default All ports 8 2 1 2 Port Security Network Psec gt Port help Description Show MAC Addresses learned by Port Security Syntax Security Network Psec Port port list Parameters Xport list Port list or all default All ports 8 2 2 NAS Network Access Server IEEE 802 1X Available Commands Security Network NAS Configuration lt port_list gt Security Network NAS Mode enable disable Security Network NAS State lt port_list gt aut
55. idge configuration Syntax STP Configuration 9 2 Version STP Version help Description Set or show the STP Bridge protocol version Syntax STP Version lt stp_version gt Parameters lt stp_version gt mstp rstp stp 9 3 Txhold STP gt Txhold help Description Set or show the STP Bridge Transmit Hold Count parameter Syntax STP Txhold lt holdcount gt Parameters lt holdcount gt STP Transmit Hold Count 1 10 9 4 MaxHops STP gt MaxHops help Description Set or show the MSTP Bridge Max Hop Count parameter Syntax STP MaxHops lt maxhops gt Parameters lt maxhops gt STP BPDU MaxHops 6 40 9 5 MaxAge STP gt MaxAge help Description Set or show the CIST MSTI bridge maximum age Syntax STP MaxAge lt max_age gt Parameters lt max_age gt STP maximum age time 6 40 and max_age lt forward delay 1 2 9 6 FwdDelay STP gt FwdDelay help Description Set or show the CIST MSTI bridge forward delay Syntax STP FwdDelay lt delay gt Parameters lt delay gt MSTP forward delay 4 30 and max_age lt forward_delay 1 2 9 7 bpduFilter STP gt bpduFilter help Description Set or show edge port BPDU Filtering Syntax STP bpduFilter enable disable Parameters enable disable enable or disable BPDU Filtering for Edge ports 9 8 bpduGuard STP gt bpduGuard help Description Set or show edge port BPDU Guard Synt
56. iew Delete help Description Delete SNMPv3 view entry Syntax Security Switch SNMP View Delete index Parameters index entry index 1 64 8 1 5 31 View Lookup Security Switch SNMP View Lookup help Description Lookup SNMPv3 view entry Syntax Security Switch SNMP View Lookup lt index gt Parameters index entry index 1 64 8 1 5 32 Access Add Security Switch SNMP gt Access Add help Description Add or modify SNMPv3 access entry The entry index key are group name security model and security level Syntax Security Switch SNMP Access Add group name gt security model lt security_level gt read view name write view name Parameters group name gt A string identifying the group name that this entry should belong to security model any Accepted any security model v1 v2c usm vl Reserved for SNMPvI v2c Reserved for SNMPv2c usm User based Security Model USM security level noAuthNoPriv None authentication and none privacy AuthNoPriv Authentication and none privacy AuthPriv Authentication and privacy read view name The name of the MIB view defining the MIB objects for which this request may request the current values write view name The name of the MIB view defining the MIB objects for which this request may potentially SET new values 8 1 5 33 Access Delete Security Switch SNMP gt Access Delete
57. imes lt retries gt Security Switch SNMP Trap Probe Security Engine ID enable disable Security Switch SNMP Trap Security Engine ID lt engineid gt Security Switch SNMP Trap Security Name lt security_name gt Security Switch SNMP Engine ID lt engineid gt Security Switch SNMP Community Add community lt ip_addr gt lt ip_mask gt Security Switch SNMP Community Delete lt index gt Security Switch SNMP Community Lookup lt index gt Security Switch SNMP User Add lt engineid gt user name MDS SHA lt auth_password gt DES lt priv_password gt Security Switch SNMP User Delete lt index gt Security Switch SNMP User Changekey lt engineid gt lt user_name gt auth password lt priv_password gt Security Switch SNMP User Lookup lt index gt Security Switch SNMP Group Add security model security name group name Security Switch SNMP Group Delete lt index gt Security Switch SNMP Group Lookup lt index gt Security Switch SNMP View Add view name included excluded oid subtree Security Switch SNMP View Delete lt index gt Security Switch SNMP View Lookup lt index gt Security Switch SNMP Access Add group name security model security level read view name write view name Security Switch SNMP Access Delete lt index gt Security Switch SNMP Access Lookup lt index gt 8 1 5 1 Configuration Security Switch SNMP gt Configuration help
58. ing is done bidirectional in the two ends of a protection group as defined in G 8031 Aggregation ARP Use multiple ports in parallel to increase the link speed beyond the limits of a port and to increase the redundancy for higher availability Also Port Aggregation Link Aggregation ARP is an acronym for Address Resolution Protocol It is a protocol that used to convert an IP address into a physical address such as an Ethernet address ARP allows a host to communicate with other hosts when only the Internet address of its neighbors is known Before using IP the host sends a broadcast ARP request containing the Internet address of the desired destination system ARP Inspection ARP Inspection is a secure feature Several types of attacks can be launched against a host or devices connected to Layer 2 networks by poisoning the ARP caches This feature is used to block such attacks Only valid ARP requests and responses can go through DUT Auto Negotiation CC Auto negotiation is the process where two different devices establish the mode of operation and the speed settings that can be shared by those devices for a link CC is an acronym for Continuity Check It is a MEP functionality that is able to 104 detect loss of continuity in a network by transmitting CCM frames to a peer MEP CCM CCM is an acronym for Continuity Check Message It is a OAM frame transmitted from a MEP to it s peer MEP and used to implement C
59. ining QoS control entries that classify to a specific QoS class on specific traffic objects Each accessible traffic object contains an identifier to its QCL The privileges determine specific traffic object to specific QoS class QL In SyncE this is the Quality Level of a given clock source This is received on a port in a SSM indicating the quality of the clock received in the port QoS is an acronym for Quality of Service It is a method to guarantee a bandwidth relationship between individual applications or protocols A communications network transports a multitude of applications and data including high quality video and delay sensitive data such as real time voice Networks must provide secure predictable measurable and sometimes guaranteed services Achieving the required QoS becomes the secret to a successful end to end business solution Therefore QoS is the set of techniques to manage network resources There are 4 web pages associated with the QoS configuration QoS QoS Control List The web page shows the QCEs in a prioritized way highest top to lowest bottom Default the table is empty An ingress frame will only get a hit on one QCE even though there are more matching QCEs The first matching QCE will give that frame a priority Low Normal Medium or High 5 different QCLs can be created each with 8 different QCEs You assign each port a QCL id under QoS Ports page The QoS counters can be viewed under Monitor Ports Q
60. iption Reboot the system Syntax System Reboot 2 7 Restore Default System gt Restore Default help Description Restore factory default configuration Syntax System Restore Default keep ip Parameters keep ip Keep IP configuration default Restore full configuration 2 8 Password System Password help Description Set the system password Syntax System Password password Parameters lt password gt System password string Use clear or to clear the string 2 9 Load System gt Load help Description Show current CPU load 100ms 1s and 10s running average in percent zero is idle Syntax System Load 2 10 Log System gt Log help Description Show or clear the system log Syntax System Log log id all info warning error clear Parameters log id gt System log ID or range default All entries all Show all levels default info Show information warning Show warnings error Show errors clear Clear log 3 IP IP configuration and Ping Available Commands IP Configuration IP DHCP enable disable IP Setup ip addr lt ip_mask gt sip router lt vid gt IP Ping ip addr string ping length IP SNTP lt ip_addr_string gt 3 1 Configuration IP gt Configuration help Description Show IP configuration Syntax IP Configuration 3 2 DHCP IP gt DHCP help Description Set or show the DH
61. iption Set or show Auth method Syntax Security Switch Auth Method console telnet ssh web none local radius enable disable Parameters console Settings for console telnet Settings for telnet ssh Settings for ssh web Settings for web none Authentication disabled local Use local authentication radius Use remote RADIUS authentication default Show client authentication method enable Enable local authentication if remote authentication fails disable Disable local authentication 1f remote authentication fails default Show backup client authentication configuration 8 1 3 SSH Secure Shell Available Commands Security Switch SSH Configuration Security Switch SSH Mode enable disable 8 1 3 1 Configuration Security Switch SSH gt Configuration help Description Show SSH configuration Syntax Security Switch SSH Configuration 8 1 3 2 Mode enable disable Security Switch SSH gt Mode help Description Set or show the SSH mode Syntax Security Switch SSH Mode enable disable Parameters enable Enable SSH disable Disable SSH default Show SSH mode 8 1 4 HTTPS Hypertext Transfer Protocol over Secure Socket Layer Available Commands Security Switch HTTPS Configuration Security Switch HTTPS Mode enable disable Security Switch HTTPS Redirect enable disable 8 1 4 1 Configuration Security Switch HTTPS gt Configuration help Description Show HTT
62. ith a group of ports under the Ports web page There are number of parameters that can be configured with an ACE Read the Web page help text to get further information for each of them The maximum number of ACEs is 64 ACLJPorts The ACL Ports configuration is used to assign a Policy ID to an ingress port This is useful to group ports to obey the same traffic rules Traffic Policy is created under the Access Control List page You can you also set up 103 AES APS specific traffic properties Action Rate Limiter Port copy etc for each ingress port They will though only apply if the frame gets past the ACE matching without getting matched In that case a counter associated with that port is incremented See the Web page help text for each specific port property ACL Rate Limiters Under this page you can configure the rate limiters There can be 15 different rate limiters each ranging from 1 1024K packets per seconds Under Ports and Access Control List web pages you can assign a Rate Limiter ID to the ACE s or ingress port s AES 1s an acronym for Advanced Encryption Standard The encryption key protocol is applied in 802 11 standard to improve WLAN security It is an encryption standard by the U S government which will replace DES and 3DES AES has a fixed block size of 128 bits and a key size of 128 192 or 256 bits APS is an acronym for Automatic Protection Switching This protocol is used to secure that switch
63. lication program that uses UDP must be able to make sure that the entire message has arrived and is in the right order Network applications that want to save processing time because they have very small data units to exchange may prefer UDP to TCP UDP provides two services not provided by the IP layer It provides port numbers to help distinguish different user requests and optionally a checksum capability to verify that the data arrived intact Common network applications that use UDP include the Domain Name System DNS streaming media applications such as IPTV Voice over IP VoIP and Trivial File Transfer Protocol TFTP 118 UPnP UPnP is an acronym for Universal Plug and Play The goals of UPnP are to allow devices to connect seamlessly and to simplify the implementation of networks in the home data sharing communications and entertainment and in corporate environments for simplified installation of computer components User Priority User Priority 1s a 3 bit field storing the priority level for the 802 1Q frame v VLAN Virtual LAN a method to restrict communication between switch ports VLANs can be used for the following applications VLAN unaware switching This is the default configuration All ports are VLAN unaware with Port VLAN ID 1 and members of VLAN 1 This means that MAC addresses are learned in VLAN 1 and the switch does not remove or insert VLAN tags VLAN aware switching This is based on the IEEE 802 1Q stan
64. lt vid gt VLAN ID 1 4095 11 Aggr Link Aggregation Available Commands Aggr Configuration Aggr Add port list aggr id Aggr Delete aggr id Aggr Lookup lt ager_id gt Aggr Mode smac dmac ip port enable disable 11 1 Configuration Aggr Configuration help Description Show link aggregation configuration Syntax Ager Configuration 11 2 Add Aggr Add help Description Add or modify link aggregation Syntax Aggr Add lt port_list gt lt aggr_id gt Parameters port list Port list lt ager_ id gt Aggregation ID 11 3 Delete Aggr gt Delete help Description Delete link aggregation Syntax Aggr Delete aggr id Parameters aggr id Aggregation ID 11 4 Lookup Aggr gt Lookup help Description Lookup link aggregation Syntax Ager Lookup lt aggr_id gt Parameters aggr id Aggregation ID 11 5 Mode Aggr gt Mode help Description Set or show the link aggregation traffic distribution mode Syntax Aggr Mode smac dmaclip port enable disable Parameters smac Source MAC address dmac Destination MAC address ip Source and destination IP address port Source and destination UDP TCP port enable Enable field in traffic distribution disable Disable field in traffic distribution 12 LACP Link Aggregation Control Protocol Available Commands LACP Configuration lt port_list gt LACP Mode
65. m that sends a series of packets over a network or the Internet to a specific computer in order to generate a response from that computer The other computer responds with an acknowledgment that it received the packets Ping was created to verify whether a specific computer on a network or the 111 Internet exists and 1s connected ping uses Internet Control Message Protocol ICMP packets The PING Request is the packet from the origin computer and the PING Reply is the packet response from the target PoE PoE is an acronym for Power Over Ethernet Power Over Ethernet is used to transmit electrical power to remote devices over standard Ethernet cable It could for example be used for powering IP telephones wireless LAN access points and other equipment where it would be difficult or expensive to connect the equipment to main power supply Policer A policer can limit the bandwidth of received frames It is located in front of the ingress queue POP3 POP3 is an acronym for Post Office Protocol version 3 It is a protocol for email clients to retrieve email messages from a mail server POP3 is designed to delete mail on the server as soon as the user has downloaded it However some implementations allow users or an administrator to specify that mail be saved for some period of time POP can be thought of as a store and forward service An alternative protocol is Internet Message Access Protocol IMAP IMAP provides the user with
66. n Set or show LLDP MED Emergency Call Service Syntax LLDPMED ecs lt ecs_value gt Parameters lt ecs_value gt The value for the Emergency Call Service 14 4 policy delete LLDPMED gt policy delete help Description Delete the selected policy Syntax LLDPMED policy delete lt policy_list gt Parameters lt policy_list gt List of policies to delete 14 5 policy add LLDPMED gt policy add help Description Adds a policy to the list of polices Syntax LLDPMED policy add voice voice_signaling guest_voice guest_voice_signaling soft phone_voice video_conferencing streaming video video signaling tagged untagged lt vlan_id gt lt 12_priority gt lt dscp gt Parameters vhoice Voice for use by dedicated IP Telephony handsets and other similar appliances supporting interactive voice services These devices are typically deployed on a separate VLAN for ease of deployment and enhanced security by isolation from data applications voice_signaling Voice Signaling conditional for use in network topologies that require a different policy for the voice signaling than for the voice media guest voice guest voice signaling softphone voice video conferencing streaming video video signaling tagged Unragged vlan id 2 priority lt dscp gt Guest Voice to support a separate limited feature set voice service for guest users and visitors with their own
67. o authorized unauthorized macbased Security Network NAS Reauthentication enable disable Security Network NAS ReauthPeriod lt reauth_period gt Security Network NAS EapolTimeout lt eapol_timeout gt Security Network NAS Agetime lt age_time gt Security Network NAS Holdtime lt hold_time gt Security Network NAS Authenticate lt port_list gt now Security Network NAS Statistics lt port_list gt clear eapol radius 8 2 2 1 Configuration Security Network NAS gt Configuration help Description Show 802 1X configuration Syntax Security Network NAS Configuration lt port_list gt Parameters lt port_list gt Port list or all default All ports 8 2 2 2 Mode Security Network NAS gt Mode help Description Set or show the global NAS enabledness Syntax Security Network NAS Mode enable disable Parameters enable Globally enable 802 1X disable Globally disable 802 1X default Show current 802 1X global enabledness 8 2 2 3 State Security Network NAS gt State help Description Set or show the port security state Syntax Security Network NAS State port list auto authorized unauthorized macbased Parameters port list Port list or all default All ports auto Port based 802 1X Authentication authorized Port access is allowed unauthorized Port access is not allowed macbased Switch authenticates on behalf of the client de
68. oS statistics There are number of parameters that can be configured with a QCE Read the Web page help text to get further information for each of them QoS Ports The Ports QoS page is used to assign a QCL id to an ingress port 113 Furthermore you can assign a default class to a port and a queuing mode Strict queuing means that the higher priority frame will always be served before a lower priority frame Weighted priority will give each class some weight of the bandwidth QoS Rate Limiters Under this page you can configure the policer ingress and shaper egress rate for each port See the help page for details QoS Storm Control Here you can limit the flooding in the switch i e the rate you choose applies to the whole switch Choose the mix of Unicast Multicast and Broadcast storm control See the help page for details R RARP RARP is an acronym for Reverse Address Resolution Protocol It is a protocol that 1s used to obtain an IP address for a given hardware address such as an Ethernet address RARP is the complement of arp RADIUS RADIUS is an acronym for Remote Authentication Dial In User Service It is a networking protocol that provides centralized access authorization and accounting management for people or computers to connect and use a network service RDI is an acronym for Remote Defect Indication It is a OAM functionality that is used by a MEP to indicate defect detected to the remote peer MEP Router Po
69. ogram that is designed to wait for HTTP requests and handle them when they arrive The Web browser is an HTTP client sending requests to server machines An HTTP client initiates a request by establishing a Transmission Control Protocol TCP connection to a particular port on a remote host port 80 by default An HTTP server listening on that port waits for the client to send a request message HTTPS 107 ICMP HTTPS is an acronym for Hypertext Transfer Protocol over Secure Socket Layer It is used to indicate a secure HTTP connection HTTPS provide authentication and encrypted communication and is widely used on the World Wide Web for security sensitive communication such as payment transactions and corporate logons HTTPS is really just the use of Netscape s Secure Socket Layer SSL as a sublayer under its regular HTTP application layering HTTPS uses port 443 instead of HTTP port 80 in its interactions with the lower layer TCP IP SSL uses a 40 bit key size for the RC4 stream encryption algorithm which is considered an adequate degree of encryption for commercial exchange ICMP is an acronym for Internet Control Message Protocol It is a protocol that generated the error response diagnostic or routing purposes ICMP messages generally contain information about routing difficulties or simple exchanges such as time stamp or echo transactions For example the PING command uses ICMP to test an Internet connection IEEE 8
70. r QoS gt Rate Limiter help Description Set or show the port rate limiter Syntax QoS Rate Limiter lt port_list gt enable disable lt bit_rate gt Parameters lt port_list gt Port list or all default All ports enable Enable rate limiter disable Disable rate limiter default Show rate limiter mode bit rate7 Rate in 1000 bits per second 500 1000000 kbps 15 12 Shaper QoS gt Shaper help Description Set or show the port shaper Syntax QoS Shaper lt port_list gt enable disable lt bit_rate gt Parameters lt port_list gt Port list or all default All ports enable Enable shaper disable Disable shaper default Show shaper mode lt bit_rate gt Rate in 1000 bits per second 500 1000000 kbps 15 13 Storm Unicast QoS gt Storm Unicast help Description Set or show the unicast storm rate limiter Syntax QoS Storm Unicast enable disable lt packet_rate gt Parameters enable Enable unicast storm control disable Disable unicast storm control lt packet_rate gt Rate in pps 1 2 4 512 1k 2k 4k 1024k 15 14 Storm Multicast QoS gt Storm Multicast help Description Set or show the multicast storm rate limiter Syntax QoS Storm Multicast enable disable lt packet_rate gt Parameters enable Enable multicast storm control disable Disable multicast storm control lt packet_rate gt Rate in pps 1 2 4
71. r all default All ports enable Enable MSTP autoEdge disable Disable MSTP autoEdge 9 19 Port P2P STP gt Port P2P help Description Set or show the STP point2point port parameter Syntax STP Port P2P lt port_list gt enable disable auto Parameters lt port_list gt Port list or all default All ports enable Enable MSTP point2point disable Disable MSTP point2point auto Automatic MSTP point2point detection 9 20 Port RestrictedRole STP gt Port RestrictedRole help Description Set or show the MSTP restrictedRole port parameter Syntax STP Port RestrictedRole lt port_list gt enable disable Parameters port list Port list or all default All ports enable Enable MSTP restricted role disable Disable MSTP restricted role 9 21 Port RestrictedTcn STP gt Port RestrictedTcn help Description Set or show the MSTP restrictedTcn port parameter Syntax STP Port RestrictedTcn lt port_list gt enable disable Parameters port list Port list or all default All ports enable Enable MSTP restricted TCN disable Disable MSTP restricted TCN 9 22 Port bpduGuard STP gt Port bpduGuard help Description Set or show the bpduGuard port parameter Syntax STP Port bpduGuard lt port_list gt enable disable Parameters lt port_list gt Port list or all default All ports enable Enable port BPDU Guard disable Disable port BPDU Guard 9 23 Por
72. rap security engine ID probe mode Syntax Security Switch SNMP Trap Probe Security Engine ID enable disable Parameters enable Enable SNMP trap security engine ID probe disable Disable SNMP trap security engine ID probe default Show SNMP trap security engine ID probe mode 8 1 5 16 Trap Security Engine ID Security Switch SNMP gt Trap Security Engine ID help Description Set or show SNMP trap security engine ID Syntax Security Switch SNMP Trap Security Engine ID lt engineid gt Parameters lt engineid gt Engine ID the format may not be all zeros or all ffH and is restricted to 5 32 octet string 8 1 5 17 Trap Security Name Security Switch SNMP gt Trap Security Name help Description Set or show SNMP trap security name Syntax Security Switch SNMP Trap Security Name csecurity name gt Parameters security name A string representing the security name for a principal default Show SNMP trap security name 8 1 5 18 Engine ID Security Switch SNMP gt Engine ID help Description Set or show SNMPv3 local engine ID Syntax Security Switch SNMP Engine ID lt engineid gt Parameters lt engineid gt Engine ID the format may not be all zeros or all ffH and is restricted to 5 32 octet string 8 1 5 19 Community Add Security Switch SNMP gt Community Add help Description Add or modify SNMPv3 community entry The entry index key is lt communi
73. rio gt QoS QCL Port lt port_list gt lt qel_id gt QoS QCL Add lt qcl_id gt lt qce_id gt lt qce_id_next gt etype lt etype gt vid lt vid gt port lt udp_tcp_port gt dscp lt dscp gt tos tos list tag prio tag prio list class QoS QCL Delete qcl id qce id QoS QCL Lookup qcl id qce id QoS Mode lt port_list gt strict weighted QoS Weight lt port_list gt lt class gt lt weight gt QoS Rate Limiter lt port_list gt enable disable lt bit_rate gt QoS Shaper lt port_list gt enable disable lt bit_rate gt QoS Storm Unicast enable disable lt packet_rate gt QoS Storm Multicast enable disable lt packet_rate gt QoS Storm Broadcast enable disable packet rate 15 1 Configuration QoS gt Configuration help Description Show QoS Configuration Syntax QoS Configuration lt port_list gt Parameters lt port_list gt Port list or all default All ports 15 2 Classes QoS gt Classes help Description Set or show the number of traffic classes Syntax QoS Classes lt class gt Parameters lt class gt Number of traffic classes 1 2 or 4 15 3 Default QoS gt Default help Description Set or show the default port priority Syntax QoS Default lt port_list gt lt class gt Parameters lt port_list gt Port list or all default All ports lt class gt Traffic class
74. rity Network NAS gt Holdtime help Description Time in seconds before a MAC address that failed authentication gets a new authentication chance Syntax Security Network NAS Holdtime lt hold_time gt Parameters lt hold_time gt Hold time before MAC addresses that failed authentication expire default Show current hold time 8 2 2 9 Authenticate Security Network NAS gt Authenticate help Description Refresh restart 802 1 X authentication process Syntax Security Network NAS Authenticate lt port_list gt now Parameters lt port_list gt Port list or all default All ports now Force re authentication immediately 8 2 2 10 Statistics Security Network NAS gt Statistics help Description Show or clear 802 1X statistics Syntax Security Network NAS Statistics lt port_list gt clear eapol radius Parameters lt port_list gt Port list or all default All ports clear Clear statistics eapol Show EAPOL statistics radius Show Backend Server statistics default Show all statistics 8 2 3 ACL Access Control List Available Commands Security Network ACL Configuration lt port_list gt Security Network ACL Action lt port_list gt permit deny lt rate_limiter gt lt port_copy gt lt logging gt lt shutdown gt Security Network ACL Policy lt port_list gt lt policy gt Security Network ACL Rate lt rate_limiter_list gt lt
75. rt A router port is a port on the Ethernet switch that leads switch towards the Layer 3 multicast device RSTP In 1998 the IEEE with document 802 1w introduced an evolution of STP the Rapid Spanning Tree Protocol which provides for faster spanning tree convergence after a topology change Standard IEEE 802 1D 2004 now incorporates RSTP and obsoletes STP while at the same time being backwards compatible with STP S SAMBA Samba is a program running under UNIX like operating systems that provides seamless integration between UNIX and Microsoft Windows machines Samba acts as file and print servers for Microsoft Windows IBM OS 2 and other SMB client machines Samba uses the Server Message Block SMB protocol and Common Internet File System CIFS which is the underlying protocol used in 114 SFP Microsoft Windows networking Samba can be installed on a variety of operating system platforms including Linux most common Unix platforms OpenVMS and IBM OS 2 Samba can also register itself with the master browser on the network so that it would appear in the listing of hosts in Microsoft Windows Neighborhood Network SFP Small form factor pluggable is a compact hot pluggable transceiver used for both telecommunication and data communications applications It interfaces a network device mother board for a switch router media converter or similar device to a fiber optic or copper networking cable It is a popular industry
76. s lt vid gt none Port VLAN ID 1 4095 or none default Show port VLAN ID 6 4 FrameType VLAN gt FrameType help Description Set or show the port VLAN frame type Syntax VLAN FrameType lt port_list gt alltagged Parameters Xport list Port list or all default All ports all Allow tagged and untagged frames tagged Allow tagged frames only default Show accepted frame types 6 5 IngressFilter VLAN gt IngressFilter help Description Set or show the port VLAN ingress filter Syntax VLAN IngressFilter lt port_list gt enable disable Parameters lt port_list gt Port list or all default All ports enable Enable VLAN ingress filtering disable Disable VLAN ingress filtering default Show VLAN ingress filtering 6 6 Add VLAN gt Add help Description Add or modify VLAN entry Syntax VLAN Add lt vid gt lt port_list gt Parameters lt vid gt VLAN ID 1 4095 lt port_list gt Port list or all default All ports 6 7 Delete VLAN Delete help Description Delete VLAN entry Syntax VLAN Delete lt vid gt Parameters lt vid gt VLAN ID 1 4095 6 8 Lookup VLAN gt Lookup help Description Lookup VLAN entry Syntax VLAN Lookup lt vid gt Parameters lt vid gt VLAN ID 1 4095 default Show all VLANs 6 9 Status VLAN Status help Description VLAN Port Configuration Status Syntax VLAN Status lt port_list gt
77. software in an absolute machine readable format e g HEX file is also granted The software may only be used in products utilizing the Vitesse switch products Table of Contents UMczocpclee 12 1 1 General COMMANGS oc nne ii 12 2 GOmmand GroUpS ERE a ee el 12 2 System System settings and reset options seseeeseeeeeeeeeennnn 13 2 1 Configuration 01min A HE Pe aee e eal 13 22 Nate e uo ae ea elves 13 23 GOMAC E 14 24 LOCALUON T 14 2 9 TIMEZONE e cnc 14 2 ONRODOOU MEE 15 2 Restore Deal a Oa eI 15 AS ELE 15 2 OL A As 15 E ELLEN 16 3 IP IP configuration and Ping cwicociciocacociciocinnsnisianinansacio nia certeza ane cada recia autas heck dee ma ninia 17 3 1 COMU ae ae ala alee a alee enable 17 3 2 DIG x dd 17 RSJ re gt ERE DEEP PEE seer tery teeter 17 JAPO naaa 18 SOON caca iia 18 A Port Port management penetret loo iaa 19 4 1 Configuration cnc dol 19 A UR EE 19 ARS MiV lo o o E 20 ZA ElowGonlrol an aae aea aiae eai aaa RN Eana SETA EE PA EEE RNENSE 20 CAE AA 1 EE E Ped II E eee Re Eu 20 4O POWE ieron ennenen ENEE ENEA EM 21 A T EX COSSIVG Dm 21 4 8 SIAUSUCS C a E a a S a E EEEa 22 4 9 VeriPHY ee ete ete tenter rte reale AAE aAA RANAN ANEAN aaa 22 5 MAC MAC address table eric eec cciteezc ens eic eta ce that za nda Cra nas co E
78. sponse to several serious weaknesses researchers had found in the previous system Wired Equivalent Privacy WEP WPA implements the majority of the IEEE 802 111 standard and was intended as an intermediate measure to take the place of WEP while 802 11i was prepared WPA is specifically designed to also work with pre WPA wireless network interface cards through firmware upgrades but not necessarily with first generation wireless access points WPA2 implements the full standard but will not work with some older network cards Wikipedia WPA PSK WPA PSK is an acronym for Wi Fi Protected Access Pre Shared Key WPA was designed to enhance the security of wireless networks There are two flavors of WPA enterprise and personal Enterprise is meant for use with an IEEE 802 1X authentication server which distributes different keys to each user Personal WPA utilizes less scalable pre shared key PSK mode where every allowed computer is given the same passphrase In PSK mode security depends on the strength and secrecy of the passphrase The design of WPA is based on a Draft 3 of the IEEE 802 111 standard Wikipedia WPA Radius WPS WTR WPA Radius is an acronym for Wi Fi Protected Access Radius 802 1X authentication server WPA was designed to enhance the security of wireless networks There are two flavors of WPA enterprise and personal Enterprise is meant for use with an IEEE 802 1X authentication server which distributes di
79. ssion Control Protocol Internet Protocol TCP IP protocol for network management SNMP allow diverse network objects to participate in a network management architecture It enables network management systems to learn network problems by receiving traps or change notices from network devices implementing SNMP SNTP is an acronym for Simple Network Time Protocol a network protocol for synchronizing the clocks of computer systems SNTP uses UDP datagrams as transport layer SPROUT SSID SSH SSM STP Stack Protocol using ROUting Technology An advanced protocol for almost instantaneous discovery of topology changes within a stack as well as election of a master switch SPROUT also calculates parameters for setting up each switch to perform shortest path forwarding within the stack Service Set Identifier is a name used to identify the particular 802 11 wireless LANs to which a user wants to attach A client device will receive broadcast messages from all access points within range advertising their SSIDs and can choose one to connect to based on pre configuration or by displaying a list of SSIDs in range and asking the user to select one wikipedia SSH is an acronym for Secure SHell It is a network protocol that allows data to be exchanged using a secure channel between two networked devices The encryption used by SSH provides confidentiality and integrity of data over an insecure network The goal of SSH was to replace the earli
80. standard It is used to indicate which protocol is being transported in an Ethernet frame FTP is an acronym for File Transfer Protocol It is a transfer protocol that uses the Transmission Control Protocol TCP and provides file writing and reading It also provides directory service and security features Fast Leave HTTP IGMP snooping Fast Leave processing allows the switch to remove an interface from the forwarding table entry without first sending out group specific queries to the interface The VLAN interface is pruned from the multicast tree for the multicast group specified in the original leave message Fast leave processing ensures optimal bandwidth management for all hosts on a switched network even when multiple multicast groups are in use simultaneously HTTP is an acronym for Hypertext Transfer Protocol It is a protocol that used to transfer or convey information on the World Wide Web WWW HTTP defines how messages are formatted and transmitted and what actions Web servers and browsers should take in response to various commands For example when you enter a URL in your browser this actually sends an HTTP command to the Web server directing it to fetch and transmit the requested Web page The other main standard that controls how the World Wide Web works is HTML which covers how Web pages are formatted and displayed Any Web server machine contains in addition to the Web page files it can serve an HTTP daemon a pr
81. t clear Parameters lt port_list gt Port list or all default All ports clear Clear LLDP statistics 14 LLDPMED Link Layer Discovery Protocol Media Available Commands LLDPMED Configuration lt port_list gt LLDPMED Civic country state county city district block street leading street di rection trailing street suffix str suflhouse no house no suffixllandmarkladditional info nam e zip_code building apartment floorjroom_number place_typel postal com name p o boxladditional code lt civic_value gt LLDPMED ecs lt ecs_value gt LLDPMED policy delete lt policy_list gt LLDPMED policy add voice voice_signaling guest_voice guest_voice_signaling softphone_voice video_conferencing streaming video video signaling tagged untagged lt vlan_id gt lt 12_priority gt lt dscp gt LLDPMED port policies lt port_list gt lt policy_list gt LLDPMED Coordinates latitude longitude altitude north south west east meters floor coordinate value LLDPMED Datum wgs84 nad83 navd88 nad83 mllw LLDPMED Fast lt count gt LLDPMED Info lt port_list gt LLDPMED debug med transmit var lt port_list gt enable disable 14 1 Configuration LLDPMED Configuration help Description Show LLDP MED configuration Syntax LLDPMED Configuration lt port_list gt Parameters Xport list Port list or all default All ports 14 2 Civic LLDPMED gt Civic help Description Set or show LLDP
82. t Statistics STP Port Statistics help Description Show STP port statistics Syntax STP Port Statistics lt port_list gt Parameters port list Port list or all default All ports 9 24 Port Mcheck STP gt Port Mcheck help Description Set the STP mCheck Migration Check variable for ports Syntax STP Port Mcheck lt port_list gt Parameters lt port_list gt Port list or all default All ports 9 25 Msti Port Configuration STP gt Msti Port Configuration help Description Show the STP CIST MSTI port configuration Syntax STP Msti Port Configuration lt msti gt lt port_list gt Parameters lt msti gt STP bridge instance no 0 7 CIST 0 MSTII 1 lt port_list gt Port list or all default All ports 9 26 Msti Port Cost STP gt Msti Port Cost help Description Set or show the STP CIST MSTI port path cost Syntax STP Msti Port Cost lt msti gt lt port_list gt lt path_cost gt Parameters lt msti gt STP bridge instance no 0 7 CIST 0 MSTII 1 lt port_list gt Port list or all Port zero means aggregations lt path_cost gt STP port path cost 1 200000000 or auto 9 27 Msti Port Priority STP gt Msti Port Priority help Description Set or show the STP CIST MSTI port priority Syntax STP Msti Port Priority lt msti gt lt port_list gt lt priority gt Parameters lt msti gt STP bridge instance no 0 7
83. t_add r enable disable Parameters port list Port list or all default All ports port descr Description of the port sysm name System name sys descr Description of the system Sys capa System capabilities mgmt addr Master s IP address default Show optional TLV s configuration enable Enables TLV disable Disable TLV default Show optional TLV s configuration 13 4 Interval lt interval gt LLDP gt Interval help Description Set or show LLDP Tx interval Syntax LLDP Interval lt interval gt Parameters interval LLDP transmission interval 5 32768 13 5 Hold LLDP gt Hold help Description Set or show LLDP Tx hold value Syntax LLDP Hold lt hold gt Parameters lt hold gt LLDP hold value 2 10 13 6 Delay LLDP gt Delay help Description Set or show LLDP Tx delay Syntax LLDP Delay lt delay gt Parameters lt delay gt LLDP transmission delay 1 8192 13 7 Reinit LLDP gt Reinit help Description Set or show LLDP reinit delay Syntax LLDP Reinit lt reinit gt Parameters lt reinit gt LLDP reinit delay 1 10 13 8 Info LLDP gt Info help Description Show LLDP neighbor device information Syntax LLDP Info port list Parameters Xport list Port list or all default All ports 13 9 Statistics LLDP gt Statistics help Description Show LLDP Statistics Syntax LLDP Statistics lt port_list g
84. tains many detailed different parameter options that are available for individual application ACL is an acronym for Access Control List It is the list table of ACEs containing access control entries that specify individual users or groups permitted or denied to specific traffic objects such as a process or a program Each accessible traffic object contains an identifier to its ACL The privileges determine whether there are specific traffic object access rights ACL implementations can be quite complex for example when the ACEs are prioritized for the various situation In networking the ACL refers to a list of service ports or network services that are available on a host or server each with a list of hosts or servers permitted or denied to use the service ACL can generally be configured to control inbound traffic and in this context they are similar to firewalls There are 3 web pages associated with the manual ACL configuration ACL Access Control List The web page shows the ACEs in a prioritized way highest top to lowest bottom Default the table is empty An ingress frame will only get a hit on one ACE even though there are more matching ACEs The first matching ACE will take action permit deny on that frame and a counter associated with that ACE is incremented An ACE can be associated with a Policy 1 ingress port or any ingress port the whole switch If an ACE Policy is created then that Policy can be associated w
85. the MAC address of the equipment sending the frame The SMAC address is used by the switch to automatically update the MAC table with these dynamic MAC addresses Dynamic entries are removed from the MAC table if no frame with the corresponding SMAC address have been seen after a configurable age time MEP is an acronym for Maintenance Entity Endpoint and is an endpoint in a Maintenance Entity Group ITU T Y 1731 MDS is an acronym for Message Digest algorithm 5 MDS is a message digest algorithm used cryptographic hash function with a 128 bit hash value It was designed by Ron Rivest in 1991 MDS is officially defined in RFC 1321 The MDS Message Digest Algorithm Mirroring N For debugging network problems or monitoring network traffic the switch system can be configured to mirror frames from multiple ports to a mirror port In this context mirroring a frame is the same as copying the frame Both incoming source and outgoing destination frames can be mirrored to the mirror port NetBIOS NetBIOS is an acronym for Network Basic Input Output System It is a program that allows applications on separate computers to communicate within a Local 110 NFS NTP OAM Area Network LAN and it is not supported on a Wide Area Network WAN The NetBIOS giving each computer in the network both a NetBIOS name and an IP address corresponding to a different host name provides the session and transport services described in
86. the Open Systems Interconnection OSI model ES is an acronym for Network File System It allows hosts to mount partitions on a remote system and use them as though they are local file systems Z FS allows the system administrator to store resources in a central location on the network providing authorized users continuous access to them which means NES supports sharing of files printers and other resources as persistent storage over a computer network NTP is an acronym for Network Time Protocol a network protocol for synchronizing the clocks of computer systems NTP uses UDP datagrams as transport layer OAM is an acronym for Operation Administration and Maintenance It is a protocol described in ITU T Y 1731 used to implement carrier Ethernet functionality MEP functionality like CC and RDI is based on this Optional TLVs PD PHY A LLDP frame contains multiple TLVs For some TLVs it is configurable if the switch shall include the TLV in the LLDP frame These TLVs are known as optional TLVs If an optional TLVs is disabled the corresponding information is not included in the LLDP frame PD is an acronym for Powered Device In a PoE gt system the power is delivered from a PSE power sourcing equipment to a remote device The remote device is called a PD PHY is an abbreviation for Physical Interface Transceiver and is the device that implement the Ethernet physical layer IEEE 802 3 ping is a progra
87. tion Control Protocol eeseeesseseeeseeeeeenenen nennen 78 12 d eo niie VELI 78 12 2 MOG EE naaa aaa AEAEE AE RAAEN EARNAN ANENE EESE 78 12 3 Cum 78 LA RO E 79 PAS AAA NA A A AAA AA AE tees 79 12 6 StatiSti Skiria va n E eoo e o i tete o t i tete ioca 79 13 LLDP Link Layer Discovery Protocol eeeseeeeeseeeseseeeeeenn nennen nennt nennt nennen 81 DD Wr SOLARA ERE ER RR E 81 13 2 MOE EE 81 EA a aaa aa anaana aiaa aiaia Saba aa a Saia aaa aN EEA a Aaa anaa EARNE 82 13 4 Interval simnterval usos reos 82 A E AEEA Rena aa Een ENEAS ENARE ESE 83 13 6 Delay jt Q 83 TIT REINT arae e a rrara A A A E a 83 A A 83 19 9 StallsticS users a 84 14 LLDPMED Link Layer Discovery Protocol Media eeeenn nnns 85 14 1 Conftig ratlon coda olaaa e eger Das aee lada aid 85 TALE Cua 85 A ii 86 14 4 policy delete eerte id 87 14 5 policy addi t e it e e a c ds e Ee E e Exe es 87 AG DON DONCIOS into RES 88 WAT Coordinates xs xime Pit cose Pr Do c PILAE rie Dream Do t dr es 89 ERA AAA tees cene PR e SC uu OUI er ee ery re 89 A UR 90 1410 INTO n IRA REE RENTAS 90 14 11 debug med transmit var assistiren eneinio nn cnn rra nn rnnnnnnnns 90 15 QoS Quality of Service ecce triente un kt ehh nnn nacen Ada nda nns ne nena iniciadas 92 Cleo 92 ASES NN 92 ER ARA Pr
88. ty gt Syntax Security Switch SNMP Community Add community lt ip_addr gt lt ip_mask gt Parameters community Community string jp addr IP address a b c d default Show IP address jp mask IP subnet mask a b c d default Show IP mask 8 1 5 20 Community Delete Security Switch SNMP gt Community Delete help Description Delete SNMPv3 community entry Syntax Security Switch SNMP Community Delete index Parameters index entry index 1 64 8 1 5 21 Community Lookup Security Switch SNMP gt Community Lookup help Description Lookup SNMPv3 community entry Syntax Security Switch SNMP Community Lookup lt index gt Parameters lt index gt entry index 1 64 8 1 5 22 User Add Security Switch SNMP gt User Add help Description Add SNMPv3 user entry The entry index key are lt engineid gt and user name and it doesn t allow modify Syntax Security Switch SNMP User Add lt engineid gt user name MD5 SHA auth password DES priv password Parameters lt engineid gt Engine ID the format may not be all zeros or all ffH and is restricted to 5 32 octet string lt user_name gt A string identifying the user name that this entry should belong to md5 An optional flag to indicate that this user using MD5 authentication protocol sha An optional flag to indicate that this user using SHA authentication protocol lt auth_passwor
89. uration port list Port list or all default All ports 2 2 Name System gt Name help Description Set or show the system name Syntax System Name lt name gt Parameters lt name gt System name string Use clear or to clear the string System name is a text string drawn from the alphabet A Za z digits 0 9 minus sign Note In CLI no blank or space characters are permitted as part of a name The first character must be an alpha character and the first or last character must not be a minus sign 2 3 Contact System Contact help Description Set or show the system contact Syntax System Contact lt contact gt Parameters lt contact gt System contact string Use clear or to clear the string Note No blank or space characters are permitted as part of a contact only in CLI 2 4 Location System Location help Description Set or show the system location Syntax System Location lt location gt Parameters lt location gt System location string Use clear or to clear the string Note In CLI no blank or space characters are permitted as part of a contact 2 5 Timezone System gt Timezone help Description Set or show the system time zone offset Syntax System Timezone lt offset gt Parameters lt offset gt Time zone offset in minutes 720 to 720 relative to UTC 2 6 Reboot System Reboot help Descr
90. ver_index gt The server index 1 5 default Show RADIUS authentication server statistics 9 STP Spanning Tree Protocol Available Commands STP Configuration STP Version lt stp_version gt STP Txhold lt holdcount gt STP MaxHops lt maxhops gt STP MaxAge lt max_age gt STP FwdDelay lt delay gt STP bpduFilter enable disable STP bpduGuard enable disable STP recovery lt timeout gt STP CName lt config name gt lt integer gt STP Status lt msti gt lt port_list gt STP Msti Priority lt msti gt lt priority gt STP Msti Map lt msti gt clear STP Msti Add lt msti gt lt vid gt STP Port Configuration lt port_list gt STP Port Mode lt port_list gt enable disable STP Port Edge lt port_list gt enable disable STP Port AutoEdge lt port_list gt enable disable STP Port P2P lt port_list gt enable disable auto STP Port RestrictedRole lt port_list gt enable disable STP Port RestrictedTcn lt port_list gt enable disable STP Port bpduGuard lt port_list gt enable disable STP Port Statistics lt port_list gt STP Port Mcheck lt port_list gt STP Msti Port Configuration lt msti gt lt port_list gt STP Msti Port Cost lt msti gt lt port_list gt lt path_cost gt STP Msti Port Priority lt msti gt lt port_list gt lt priority gt 9 1 Configuration STP gt Configuration help Description Show STP Br
91. vial File Transfer Protocol It is transfer protocol that uses the User Datagram Protocol UDP and provides file writing and reading but it does not provides directory service and security features ToS is an acronym for Type of Service It is implemented as the IPv4 ToS priority control It is fully decoded to determine the priority from the 6 bit ToS field in the IP header The most significant 6 bits of the ToS field are fully decoded into 64 possibilities and the singular code that results is compared against the corresponding bit in the IPv4 ToS priority control bit 0 63 TLV is an acronym for Type Length Value A LLDP frame can contain multiple pieces of information Each of these pieces of information is known as TLV TKIP is an acronym for Temporal Key Integrity Protocol It used in WPA to replace WEP with a new encryption algorithm TKIP comprises the same encryption engine and RC4 algorithm defined for WEP The key used for encryption in TKIP is 128 bits and changes the key used for each packet UDP is an acronym for User Datagram Protocol It is a communications protocol that uses the Internet Protocol IP to exchange the messages between computers UDP is an alternative to the Transmission Control Protocol TCP that uses the Internet Protocol IP Unlike TCP UDP does not provide the service of dividing a message into packet datagrams and UDP doesn t provide reassembling and sequencing of the packets This means that the app
92. xo c Pa aaa nana EE ei tarini ndai 23 LAO dre A 23 so CIOL oasis as eee HEBES 24 SA EGOKUD us Essen Dam payee Dum Pre tr rest reer Dey e Da emu Tat 24 O ERN EUN 24 AM toalla e REPE 24 SITAM PIU ees 25 Hir T m 25 5 9 Fl sli eee tee te o e Pee Pec Pu ees e Pese eds 26 6 VLAN Virtual LAN 2er eaten eaa anciana nani rain cazan EROR Russa raras 27 ANSIA rec en ree eye Doe libre edet pot lip udo de DIE ick 27 op ENEA e EE 27 6 3 PVIDL uio en oon one neo ce Dco t cro E o ED pe tbe pci Ee pee Eos 28 6 4 rabiem 28 6 5 IngressFlter ee n 28 Nogitoo m 29 NARI 29 5 8 DOOKUD ta ara EPR PERENNE EPI 29 ASA A AN 30 T PVLAN Private VILAN occitano cian nda nadaa aana ap Aakaas a aera aa 31 TA CONTIGUOS A ie tides ie eee 31 FM M 31 TB Lc 31 A E 32 TESEO E A A NN 32 8 Security Security Management ccoonnccconiccnniccnnnncncnncnnnn anna 33 91 SWITCH SWITCH SECURITY ist ed ta is EEEE cepe i ed ld 33 9 1 Wei ASS WONG c crece nnde en onere endende A enn eene 33 8 1 2 Auth Authentication EE ERE ERR EE ERE ERE CERE ERREUR es 33 8 1 2 1 Gonfig raliorn s cicle 33 8 1 2 2 Method ovio 34 8 1 3 SSH Secure Shell ete te etin iaa aia 34 EA allOTU uoc n cs A A Coe da dara Der aea Coa da Dara DE deg dcc 34
93. y Add aereas einen 44 8 1 5 20 Community Delete soise oseiro snene ede e eiie d eei onec en 44 8 10 21 Community EOOKUD nociones 45 81 5 22 User Add eiui ilatina 45 8 1 5 23 User Delete iii nee e D E e ne ee es 45 8 1 5 24 User Changekey oocoooooocccccccccccononoccnnononncnannnannnnnnnnnnnnnnnnnnnnncn nn na nn r ranma nnne nnn 46 8 1 5 25 User EoOKk p ist 46 RIBUS 46 8 1 5 27 Group Delete oui da rex 47 8 1 5 28 Group LOOKUP i onec e fece Ue ce od ede oo Ee DE 47 NEAREST 47 8 1 5 30 View Delete AAA AA 48 8 1 5 31 View EOOKUp et e e ten i ie Pa en ie xe P ees Eee xen 48 8 1 5 92 Access Add is e pr er aaa EE EVER E KEEPER E ERR ER E REF Ee EVER 48 8 1 5 39 Access Delete econ er ERE E E HE seit 49 8 1 5 34 Access Lookup SINO ovina terree tote ee ees 49 8 2 Network Network security sssssssssssseseseeeeneneeeeenne nennen nennen 50 9 2 1 Psec Port Security Status cete ite eo ibt tbe tbt e das e eee 50 MEE O 50 A uice D ae ee Laeta E ee ae ae Cu 50 8 2 2 NAS Network Access Server IEEE 802 1X ssssssssssseee 51 9 2 2 1 GCOrflguratlOT usen is 51 82 22 ioo me 51 SEE SS Fo me OR tee e eL 52 9 22 44 hReauthentlcationi cereo e eels asian eub erus od 52 8 2 2 5 ReauthPeriod ssssssssssssssssseeeeeneeee nennen eene nennen 52 92 20 EapolTimeolt iie cnet sE 53 p 22 T Ageliid eaea a EIS 53 A TT 53 8 2 2 9 AUTEN ALS a 54 9 2 2 10
Download Pdf Manuals
Related Search