Revision 1.
Contents 1. INTRODUCTION ...............................................................................................................................................1 1.1 1.2 1.3 1.4 1.5 1.6 2. CONVENTIONS ...................................................................................................................................................1 ARGUMENT TYPES.........................................................................................................................................
2.16 PORT MONITORING .....................................................................................................................................41 2.16.1 Port Monitoring commands - EXEC level ............................................................................................41 2.16.2 Port Monitoring commands - Configuration level................................................................................41 2.16.3 Port Monitoring commands - VLAN Interface level ........................
1. Introduction This document provides a summary of the commands supported on the HP ProCurve 2524, 2512, and 4108gl switches. It is divided into sections that correspond to different modules or features of the HP switches. Not all sections will apply to all HP switches since each switch may only support a subset of the total feature set that is described in this document. 1.
There are three "special" port designations in the switch. You may specify the monitoring port by using "mp"; you may specify a trunk port by using "trkX", where X identifies the numerical trunk group. port-list - A port list specifies a group of ports for which the operation being performed should be applied. A port list consists of individual port identifiers or ranges of ports separated by commas (e.g., A1-B8, C4, D1). This list includes the "special" port designations described under port-number.
If an operator password has been set (see password in the global configuration section), then the system would have displayed the following prompt before entering the operator EXEC level: Password: You can enter the manager EXEC level from the operator EXEC level by using the enable command. If a manager level password has been configured, then you will be prompted for the manager password after executing the enable command. 1.4 The Command Line Interface The new CLI will not be case sensitive.
If you had already typed in trap- on line (1) and then pressed the tab character, the system would complete the keyword trap-send-authentication, for it is the only possible completion for trap-, and display the completed command line as shown below: 1. HP 4108GL(config) trap2. HP 4108GL(config) trap-send-authentication 1.6 Command Line Editing Before you press return, the current command line can be edited using special keys including arrows and control characters.
2. Command Summary 2.1 User EXEC Commands enable Enters the manager EXEC level. If a manager password is set, the system will first prompt for the password. Echoing is disabled while you enter the password. Initially there are no passwords for the two levels of users in the system: manager and operator. When you first connect to the console or telnet into the system, you will be placed into the Operator EXEC level.
[no] page Toggles the paging mode for display commands so that the “—more –“ will appear or not appear. repeat Repeatedly executes the previous command until a key is pressed. vlan Enters the VLAN interface configuration context for the VLAN. 2.2 Diagnostic Commands boot [system [flash ]] Performs cold reboot of switch. write terminal This command displays the running configuration. write memory This command saves the running configuration to Flash.
copy tftp This command writes the switch's configuration file, crashrec, eventlog or the output from a command specified by Command to the remote file on the remote host. show startup-config Displays the configuration stored in flash. show running-config Displays the configuration stored in flash. show boot-history Displays the switch shutdown history. kill This command kills all other active sessions.
clear intrusion-log To clear the intrusion log. clear statistics [ethernet] To reset counters displayed by the console. If a new console session is initiated, the counters will revert back to the values maintained by the switch hardware. telnet To initiate a telnet session with another network device. telnet <0..15> To initiate a telnet session to a member switch in the stack. Parameters: <0..15> specifies the number of the switch to be contacted.
setmib [ …] This command sets the MIB object defined by object-name. The options for the type parameter are case sensitive as shown below: -i Integer -o Octet string -d Object identifier -a IP address (nnn.nnn.nnn.nnn) -c Counter -g Gauge -t Time tick -u Unsigned integer -D Display string (“value”) -N Null show version Displays software version information. show flash Displays software version information for images in flash.
link-test [vlan ] [repetitions <1..999>] [timeout <1..256>] Tests the connection to a MAC station on the LAN by sending a 802.2 test packet to a specific target node on a network directly attached to a port in that LAN. The target node must be able to respond to this test packet with an 802.2 Test Response packet in order for the test to work.
2.3 System Configuration 2.3.1 System commands - EXEC level show console Displays the console parameters.
show mac-address Displays the MAC addresses that the switch has learned from the network devices attached to the specified switch port. Output Format: Status and Counters - Port Address Table - Port 1 MAC Address ------------00105a-8abed4 00105a-cac0e8 009004-8e3178 00c0f0-1c65ee 00c0f0-1c66ea 00c0f0-30d74a 080009-3515f9 080009-782368 080009-7b8cc4 080009-919b30 080009-959e2c show management Displays configured addresses that are used to manage the switch.
show modules Displays the modules that are present on the switch. Output Format: Status and Counters - Module Information Slot ---A Module Type --------------- Module Description -------------------------------------------Slot Available show system-information Displays the status of and current configuration of all the switch internal resources. Output Format: System Information ..
2.3.2 System Configuration commands mac-age-time <1..100000> Sets the number of seconds a MAC address stays in the switch address table before being aged out. Aging out occurs if traffic isn't received from that MAC station within the age interval. The default value is 300. console [terminal [screen-refresh ] [events ] [baud-rate ] [flow-control ] [inactivity ] Sets the console parameters.
time [mm/dd/yy] [hh:mm:ss] [timezone ] [daylight-time-rule ] [begin-date end-date ] This command display switch's date & time or optionally sets it. Parameters: timezone <-1440..1440> - Sets the number of minutes your location is to the West(+) or East(-) of GMT (default is 0). daylight-time-rule Sets the daylight savings time rule for your location.
[no] telnet-server Enables remote telnet access to the switch. [no] web-management Enables the web browser to interact with the web agent on the switch. [no] password Sets passwords for different classes of users. This command causes the switch to prompt for a password twice, once for the new password and once to verify it was typed correctly, and disables echoing while you type the password. Parameters: - Class of user. 2.4 AUTHENTICATION 2.4.
2.5 TACACS 2.5.1 TACACS commands - EXEC level show tacacs Displays TACACS configuration. 2.5.2 TACACS commands - Configuration level [no] tacacs-server host [key ] Configures a TACACS server. tacacs-server timeout <1-255> Sets up the TACACS timeout interval in seconds. 2.6 CDP 2.6.1 CDP commands - EXEC level show cdp [neighbor [port-num] [detail]] Displays CDP configuration and neigbors discovered. 2.6.
2.7 IP Stacking 2.7.1 IP Stacking commands - EXEC level show stack [candidates | all] Displays status information for the stacking feature. ‘show stack’ with no arguments displays the status of this switch’s stack. If the keyword candidates is supplied then this command displays a list of candidates on the local network segment. If the keyword all is supplied then this command displays all the member switches of all stacks on the local network segment and all candidate switches. 2.7.
[no] stack auto-join Causes the switch to advertise, via the discovery protocol, that it wants to automatically join any stack operating on the local LAN segment. Switches with passwords will not auto-join. [no] stack auto-grab Enables/disables auto-grab mode for stacking on the command switch. If enabled, the command switch will attempt to grab new candidate switches and make them members of the stack. stack transmission-interval Sets the transmission interval for stacking.
2.8 Port Settings 2.8.1 Port commands - EXEC level show interfaces config Displays the basic configuration of the switch ports.
show statistics Displays the network traffic statistics for the specified port.
show interfaces Displays the status and current configuration of all the switch ports.
[no] flow-control Enables or disables flow control on the port. Note: Full-duplex ports only. speed-duplex <10-full | 10-half | 100-full | 100-half | 1000-full | 10-auto | auto> Sets the mode of operation for the port. [no] lacp [active|passive] enables or disables LACP on the port. 2.9 Trunk Configuration 2.9.1 Trunk commands - EXEC level show trunks [] Displays trunks that are configured on the system. This does not include dynamic trunks that have been formed by LACP.
show lacp Displays LACP status information. Output Format: LACP P0RT NUMB ---1 2 3 4 5 6 7 8 2.9.2 LACP ENABLED -------Active Passive Active Active Active Active Active Active TRUNK GROUP ----Dyn1 Trk1 Dyn1 PORT STATUS -------Up Down Blocked Disabled Up Standby Up Up LACP PARTNER --------Yes No No LACP STATUS --------Success Failure Failure Yes Success Trunk commands - Configuration level [no] trunk
[type ] - Determines the method by which the switch distributes the traffic load across the multiple links in the trunk group: trunk - uses source and destination MAC addresses for load distribution (select this to connect to devices such as the HP Switch 2000 or the Sun Trunk Server); fec - uses an automatic protocol for load distribution (select this to connect to devices that support Cisco's Fast EtherChannel trunking). 2.10Spanning Tree 2.10.
show spanning-tree Displays bridge-level spanning tree information.
spanning-tree [forward-delay ] [hello-time ] [maximum-age ] [priority <0..65535>] spanning-tree <[ethernet] port-list> [path-cost <1..65535>] [priority <0..255>] [mode ] This command configures the parameters for operation of the switch in a spanning tree topology. Note - the default spanning tree configuration complies with the IEEE 802.1D standard recommended values and should not be changed without thorough knowledge of spanning tree operation. Note: As per IEEE 802.
2.11 IP 2.11.1 IP commands - EXEC level show ip Displays the IP configuration on the switch. Output Format There are two different IP configuration screens. The first is displayed when no vlans are configured on the switch; the second is displayed when vlans are configured. Switch Configuration - Internet (IP) Service Default Gateway: 192.32.36.1 TimeP Config [DHCP]: DHCP TimeP Poll Interval (min) [720]: 720 IP Config [DHCP/Bootp] : DHCP/Bootp IP Address : 192.32.36.96 Subnet Mask : 255.255.255.
show ip authorized-managers Displays the current configuration's IP managers access records. Output Format: Switch Configuration - IP Managers Authorized Manager IP ---------------------192.32.36.78 IP Mask -------------------255.255.255.255 Access Level --------------------Manager show arp Displays the ARP cache of the switch. Output Format ARP Cache IP Address -------------192.32.36.
show timp Displays active Timep configuration. Output Format Timep Configuration Time Sync Mode: Timep TimeP Mode [Disabled] : Manual Poll Interval (min) [720] : 600 Server Address : 15.29.16.105 show sntp Displays active SNTP configuration.
2.11.2 IP commands - Configuration level [no] ip authorized-managers [mask ] [operator | manager] Sets the IP addresses you will allow to access the switch’s Web browser interface, to telnet to the switch console, and to perform TFTP operations. A maximum of 10 addresses is supported. Parameters: - The IP address of an authorized manager. mask - The default mask is 255.255.255.255.
[no] sntp < server [version]> [poll-interval <30-720>] Configures SNTP on the switch. ip default-gateway Assigns an IP address to be used as the default gateway when the switch is not in routing mode. ip route </<1..32> | > Used to configure a static IP route for the switch. ip ttl Sets the maximum time that a packet will live on the network. [no] arp [mac-addr] Used to modify the arp cache.
2.11.3 IP commands - VLAN Interface level [no] ip address /<1..32> | ] [secondary]> This command configures the IP address for the switch. Note, by default this command uses a VLAN identifier of one. Although this command is duplicated at the VLAN context level, it is defined here for those customers who do not want to be exposed to VLAN distinctions.
2.12SNMP 2.12.1 SNMP commands - EXEC level show snmp-server Displays the SNMP communities which may be used to access the switch along with the network management stations configured to receive SNMP traps. Output Format: SNMP Server Community Name -------------public MIB View -------Manager Write Access ------------Unrestricted Send Authentication Traps [No] : No Address ---------------------192.32.36.
2.12.2 SNMP commands – Configuration Level [no] snmp-server community [manager | operator] [restricted | unrestricted] Used to configure a new SNMP community or to edit the configuration for an existing one Parameters: - Enter (up to 16 characters) the SNMP community name. [manager | operator] - Manager - the community can access all MIB objects; Operator - the community can access all except the CONFIG MIB.
2.13VLAN Configuration 2.13.1 VLAN commands - EXEC level show vlans Displays the current VLANs. Output Format: Switch Configuration - VLAN Information VLAN Support [No] : Yes Maximum VLANs to support [8] : 8 Primary VLAN: DEFAULT_VALN 802.1Q VLAN ID -------------1 Name -----------DEFAULT_VLAN Type -----Static Status -----Up show vlans Displays which ports are assigned to particular VLANs.
primary-vlan Sets the primary VLAN used for network management. [no] vlan Creates a new VLAN or changes the system context to the VLAN configuration level. Note that vlan-name can be substituted for the vlan-id when using this command. static-vlan Creates a new static VLAN from one which has been dynamically created by GVRP. [no] vlan-support Enables VLAN support on the switch. 2.13.
auto Causes each port identified in the port-list to learn their VLAN membership using the Group VLAN Registration Protocol (GVRP). This command is only valid when GVRP is enabled. 2.14GVRP 2.14.1 GVRP commands - EXEC level show gvrp Displays the current VLANs. Output Format: Switch Configuration - GVRP Information GVRP Enabled [No] : Yes Port ---A1 A2 A3 A4 Type -------10/100TX 10/100TX 10/100TX 10/100TX | + | | | | Unknown VLAN -----------Learn Learn Learn Learn 2.14.
2.15 IGMP 2.15.1 IGMP Commands – EXEC Level show ip igmp [vlan-id] config Displays IGMP configuration information.
2.15.2 IGMP Configuration commands – Vlan Interface level [no] ip igmp Enables the IP Multicast (IGMP) feature for IGMP communication between Multicast Routers, Multicast Servers, and Multicast Clients connected to the switch or selected VLAN. [no] ip igmp high-priority-forward Determines whether the switch forwards all IP Multicast traffic at high priority. [no] ip igmp querier Determines whether the switch is querier or not.
2.16Port Monitoring 2.16.1 Port Monitoring commands - EXEC level show mirror-port Displays the configuration of the monitoring port.
2.16.3 Port Monitoring commands - VLAN Interface level [no] monitor Used to enable/disable monitoring of the VLAN. 2.16.4 Port Monitoring commands - Ethernet Interface level [no] monitor Used to enable/disable monitoring of the port. 2.17Port Security 2.17.1 Port Security commands - EXEC level show port-security Displays the per-port security configuration for the switch.
show port-security [ethernet] Displays the port security configuration for an individual port. Output Format: Switch Configuration - Port Security Port : 3 Learn Mode [Continuous] : Continuous Action [None] : None show port-security intrusion-log Displays information on any port security intrusions that have occurred on the switch. Output Format: Status and Counters – Intrusion Log Port ---- MAC Address ------------- Date / Time -------------------------- 2.17.
defined by the "address-limit" parameter are learned or entered for the port. These addresses are static; they are not aged out. addr-limit <1..8> - This parameter is valid only if static is selected for the learn-mode. This parameter defines the number of network devices that are authorized to communicate through the switch port. Up to 8 devices can be authorized for any port. addr-list - This parameter is valid only if static is selected for the learn-mode.
3. Console Menu HP ProCurve Switch xxxxx 01-Apr-2000 ==========================- CONSOLE - MANAGER MODE -============================ Main Menu 1. 2. 3. 4. 5. 6. 7. 8. 0. Status and Counters... Switch Configuration... Console Passwords… Event Log Command Line (CLI) Reboot Switch Download OS Run Setup Logout Provides the menu to display configuration, status, and counters. To select menu item, press item number, or highlight item and press . 3.
3.1.1 General System Information HP ProCurve Switch xxxxx 01-Apr-2000 ==========================- CONSOLE - MANAGER MODE -============================ Status and Counters - General System Information System Contact System Location : : Firmware revision ROM Version : E.08.XX : E.05.
3.1.3 Module Information HP ProCurve Switch xxxxx 01-Apr-2000 ==========================- CONSOLE - MANAGER MODE -============================ Status and Counters - Module Information Slot ---A B C D E F G H Module Type --------------- Actions-> Back Module Description --------------------------------------------Slot Available Slot Available Slot Available Slot Available Slot Available Slot Available Slot Available Slot Available Help Return to previous screen.
3.1.5 Port Counters HP ProCurve Switch xxxxx 01-Apr-2000 ==========================- CONSOLE - MANAGER MODE -============================ Status and Counters - Port Counters Port ---1 2 3 4 5 6 7 8 9 10 11 Total Bytes ------------16,448 0 0 0 0 0 0 0 0 0 0 Actions-> Back Total Frames ------------217 0 0 0 0 0 0 0 0 0 0 Show details Errors Rx ------------0 0 0 0 0 0 0 0 0 0 0 Reset Drops Tx ------------0 0 0 0 0 0 0 0 0 0 0 Help Return to previous screen.
3.1.6 Address Table HP ProCurve Switch xxxxx 01-Apr-2000 ==========================- CONSOLE - MANAGER MODE -============================ Status and Counters - Address Table – VLAN ID 23 MAC Address ------------0060b0-e26440 080009-092851 080009-76ac55 080009-97aad2 Actions-> Located on Port --------------1 1 1 1 Back Search Next page Prev page Help Return to previous screen.
3.1.
3.2 Configuration Menu HP ProCurve Switch xxxxx 01-Apr-2000 ==========================- CONSOLE - MANAGER MODE -============================ Switch Configuration Menu 1. 2. 3. 4. 5. 6. 7. 8. 0. System Information Port/Trunk Settings Network Monitoring Port Spanning Tree Operation IP Configuration SNMP Community Names Authorized Managers VLAN Menu... Return to Main Menu... Configures system-level information including system identification.
3.2.
3.2.
3.2.5 IP Configuration HP ProCurve Switch xxxxx 01-Apr-2000 ==========================- CONSOLE - MANAGER MODE -============================ Switch Configuration - Internet (IP) Service Default Gateway : 10.0.8.1 Time Protocol Config [DHCP] : DHCP TimeP Poll Interval (min) [720] : 720 IP Config [DHCP/Bootp] : Manual IP Address : 10.0.8.105 Subnet Mask : 255.255.248.0 Actions-> Cancel Edit Save Help Cancel changes and return to previous screen.
3.2.6 SNMP Communities HP ProCurve Switch xxxxx 01-Apr-2000 ==========================- CONSOLE - MANAGER MODE -============================ Switch Configuration - SNMP Communities Community Name ---------------public Actions-> MIB View -------Manager Back Add Write Access -----------Unrestricted Edit Delete Help Return to previous screen. Use up/down arrow keys to change record selection, left/right arrow keys to change action selection, and to execute action. 3.2.
3.2.8 VLAN Menu HP ProCurve Switch xxxxx 01-Apr-2000 ==========================- CONSOLE - MANAGER MODE -============================ Switch Configuration - VLAN Menu 1. 2. 3. 4. 0. VLAN Support VLAN Names VLAN Port Assignment Return to Previous Menu... Return to Main Menu... Return to previous screen. Use up/down arrow keys to change record selection, left/right arrow keys to change action selection, and to execute action. 3.2.8.
3.2.8.2 VLAN Names HP ProCurve Switch xxxxx 01-Apr-2000 ==========================- CONSOLE - MANAGER MODE -============================ Switch Configuration - VLAN Names Name -----------DEFAULT_VLAN Actions-> 802.1Q VLAN ID -------------1 Back Add Edit Delete Help Return to previous screen. Use up/down arrow keys to change record selection, left/right arrow keys to change action selection, and to execute action. 3.2.8.
3.3 Password Menu HP ProCurve Switch xxxxx 01-Apr-2000 ==========================- CONSOLE - MANAGER MODE -============================ Set Password Menu 1. 2. 3. 4. 0. Set Operator Password Set Manager Password Delete Password Protection Return to Previous Menu... Return to Main Menu... Prompts you to enter an Operator-level password. To select menu item, press item number, or highlight item and press . 3.
3.5 Download Screen HP ProCurve Switch xxxxx 01-Apr-2000 ==========================- CONSOLE - MANAGER MODE -============================ Download OS Current Firmware revision : E.08.XX Method [TFTP] : TFTP TFTP Server : Remote File Name : Actions-> Cancel Edit eXecute Help Select the file transfer method (TFTP and XMODEM are currently supported). Use arrow keys to change field selection, to toggle field choices, and to go to Actions. 3.
Index A aaa authentication console ................................16 aaa authentication telnet....................................16 arp......................................................................32 auto....................................................................38 auto-tftp .............................................................14 B boot......................................................................6 broadcast-limit ..................................................
show management.............................................12 show mirror-port ...............................................41 show modules....................................................13 show port-security.......................................42, 43 show port-security intrusion log .......................43 show running-config ...........................................7 show snmp-server community ..........................34 show sntp...........................................................