HP ProLiant BL e-Class C-GbE Interconnect Switch Command Line Interface Reference Guide February 2003 (First Edition) Part Number 322857-001
© 2003 Hewlett-Packard Development Company, L.P. Microsoft®, Windows®, and Windows NT® are U.S. registered trademarks of Microsoft Corporation. Hewlett-Packard Company shall not be liable for technical or editorial errors or omissions contained herein. The information in this document is provided “as is” without warranty of any kind and is subject to change without notice. The warranties for HP products are set forth in the express limited warranty statements accompanying such products.
Contents About This Guide Technician Notes..........................................................................................................................................ix Where to Go for Additional Help..................................................................................................................x Telephone Numbers ................................................................................................................................
Contents Deleting the Secure IP Addresses........................................................................................................2-8 Configuring Basic Switch Module Information.........................................................................................2-9 Setting System Name, Location, and Contact Information .................................................................2-9 Displaying Switch Module Information .................................................................
Contents Displaying Time Parameters............................................................................................................. 2-41 Enabling SNTP ................................................................................................................................. 2-41 Setting SNTP Parameters.................................................................................................................. 2-42 Displaying SNTP Parameters ..........................................
Contents Disabling Monitoring Broadcast, Multicast, DA-Unknown Storm Monitoring................................2-74 Configuring Storm Threshold in Packets Per Second .......................................................................2-74 Displaying Broadcast, Multicast, DA-Unknown Storm Current Settings.........................................2-75 Configuring Priority MAC Address.........................................................................................................
Contents Configuring Priority MAC Address ....................................................................................................... A-17 Configuring the History Log .................................................................................................................. A-18 Configuring SNMP Manager ................................................................................................................. A-18 Using System Utilities..............................................
About This Guide This guide provides reference for configuring the interconnect switch through the command line interface (CLI). WARNING: To reduce the risk of personal injury from electric shock and hazardous energy levels, only authorized service technicians should attempt to repair this equipment. Improper repairs can create conditions that are hazardous. Technician Notes WARNING: Only authorized technicians trained by HP should attempt to repair this equipment.
About This Guide NOTE: Any indications of component replacement or printed wiring board modifications may void any warranty.
1 Overview Introduction The ProLiant BL e-Class C-GbE Interconnect Switch provides command line, menu-driven, Simple Network Management Protocol (SNMP), and Web-based management interfaces. The command line interface (CLI) and menu-driven interface allow you to set up and control the switch modules using either the serial or Ethernet ports on the switch. This guide discusses how to use the CLI to set up and manage the interconnect switch.
Overview Accessing the Switch Modules After the Integrated Administrator is configured, you can access and configure the switch modules through the Integrated Administrator software. For information on how to configure the Integrated Administrator, refer to the “Configuring the Integrated Administrator” section in the HP ProLiant BL e-Class C-GbE Interconnect Switch User Guide.
Overview To log on for the first time: 1. Leave the Username field blank and press the Tab key. 2. Leave the Password field blank and press the Enter key. The main menu for the switch module is displayed. NOTE: After user accounts are created, subsequent users will type their user name and password, then press the Enter key to gain access to the switch console. The main menu displays the major categories for switch management.
Overview When you are in a CLI session, you can access the menu-driven interface by executing the following command at the command prompt: Command Description menu Toggles from the CLI to the menu-driven interface Moving between the CLI and menu-driven interface does not change the default interface. This means that if the default is the menu-driven interface and user 1 connects and switches to the CLI, when user 2 connects, they see the menu-driven interface when they log on.
Overview The following table summarizes the command syntax symbols: Table 1-1: Command Syntax Symbols Symbol [ ] Description Example Angle brackets (< >) enclose italicized text. You must enter the correct variable or variables for the text. user delete user Square brackets ( [ ] ) enclose an optional entry. system show [advanced] If several optional items are listed, the items may be entered in any order. { } Curly brackets ( { } ) enclose a required entry.
Overview Understanding Common Parameter Definitions The following table describes how to enter common variable parameters used throughout this chapter. Table 1-2: Common Parameters Parameter Description Type character strings as follows: • If the string of character includes blank space, you must type it within quotation marks (“ ”).
Overview Table 1-2: Common Parameters continued Parameter Description Type a VLAN ID in the following format where nnnn is a number from 1 to 4094. Leading zeros are allowed, but not necessary. Format: nnnn Example: 24 Type a name that is 1 to 15 characters in length to identify the VLAN. Use an underscore (_) to connect words. If the string of character includes blank space, you must type it within quotation marks (“ ”).
Overview Executing a Command Several help features are available to make executing commands easy. Command Help The help command can be used to display • A complete list of all commands • A description of a specific command, including valid parameters, their ranges, and the default Command Description help Displays a complete list of available commands [] To display a help message for a specific command, type help and the command. The following list displays when you type the command help.
Overview Question Mark (?) You can also access help by typing a question mark (?) at the beginning of a command or partial command. This example shows the help that displays when you type ? gvrp enable. Using Command Completion You can complete a command by typing a partial character string at the command prompt and then pressing the Tab key. When possible, the system displays the complete command for you. When not possible, the system generates an error message.
Overview For example: At the command prompt, type sys sh and then press the Enter key. The system completes and executes the command. Displaying Command History The CLI maintains a buffer of recent commands that have been entered, with a maximum of 25 commands saved in the buffer per CLI session. When the buffer reaches 25 commands, it adds any new commands and deletes the earliest commands.
Overview Customizing the Command Prompt The default command prompt is the greater than sign ( > ). You can customize the command prompt using the following command: Command Description prompt Customizes the command prompt Type prompt and the customized prompt word or string of words. The customized prompt takes effect immediately, for all sessions and all users.
Overview Paging of Data Output You can configure the switch module to display one page of data at a time. This is helpful when you are in a Telnet session and are using the show commands to display information about the switch module. Paging is on with every new CLI session. To avoid the paging prompts when using scripts, set paging to off.
2 Configuring the Switch Modules using the Command Line Interface Overview This chapter describes how to configure the switch modules from the command line interface (CLI). Saving Changes The switch module has two types of memory: dynamic RAM and non-volatile RAM (NVRAM). Restarting the switch module erases all configuration settings in RAM and reloads the stored settings from NVRAM. Thus, it is necessary to save all configuration setting changes to NVRAM before rebooting the switch module.
Configuring the Switch Modules using the Command Line Interface For example: Managing User Accounts After logging on to the switch module for the first time, you need to set up at least one user account with Root access rights. You can set up a maximum of eight users on a switch module. There are three levels of user access rights: Root, User+, and User. Some menu selections available to users with Root privileges may not be available to those with User+ and User privileges.
Configuring the Switch Modules using the Command Line Interface The following table summarizes user access rights.
Configuring the Switch Modules using the Command Line Interface Deleting a User Account Use the following command to delete a user account: Command Description user delete user Deletes the specified user’s account Displaying User Account Information Use the following command to display user account information: Command Description user show Displays all user account information including each user’s name and access level For example: Updating User Account Information Use the following c
Configuring the Switch Modules using the Command Line Interface Configuring Remote Management IP Interface Settings Each switch module must be assigned its own IP address, which is used for communication with an SNMP network manager or other TCP/IP application (for example Web or TFTP). The factory default is set for the switch module to automatically obtain the IP address using DHCP service from a DHCP server on the attached network.
Configuring the Switch Modules using the Command Line Interface The following shows the factory default remote management settings: Feature Default Value DHCP Service Enabled BootP Service Disabled IP Address (if DHCP is selected) Switch A = DHCP server assigned unique IP address, subnet mask, and default gateway Switch B = DHCP server assigned unique IP address, subnet mask, and default gateway IP Address (if manual IP option is selected) Switch A = 10.90.90.90 Switch B = 10.90.90.
Configuring the Switch Modules using the Command Line Interface Use the following command to configure the remote management IP interface settings: Command Description mgmt-if set Sets the remote management parameters including: { • [ipaddr ] mode {manual | bootp | dhcp}—Type mode and manual, bootp, or dhcp. The default is dhcp. [netmask ] If you choose manual, type the following: [def-gateway ] • ipaddr —Type ipaddr and the IP address in the form of xxx.
Configuring the Switch Modules using the Command Line Interface Displaying Remote Management Interface Settings Use the following command to display the remote management interface settings: Command Description mgmt-if show Displays the remote management interface current IP and VLAN settings For example: Deleting the Secure IP Addresses Use the following command to delete the secure IP addresses: Command Description mgmt-if delete secure-ip Deletes the secure IP addresses Enter from one t
Configuring the Switch Modules using the Command Line Interface Configuring Basic Switch Module Information This section describes how to configure basic switch information.
Configuring the Switch Modules using the Command Line Interface You can also display the settings for the advanced switch features including global settings for IGMP snooping, GVRP, Telnet status, Web status, SNTP, and others. Use the following command to display the switch module information: Command Description system show Displays basic switch information [advanced] Type advanced in the command to display advanced switch information. Refer to the following examples.
Configuring the Switch Modules using the Command Line Interface — System Up Time—Identifies the time the switch booted up, if the current time has been set on the switch module. If the current time has never been set up on the interconnect switch, this field identifies the time since the switch module was booted up. — Time—Displays the current real time set on the switch module. If the current time has never been set up on the interconnect switch, “Unknown” will be displayed.
Configuring the Switch Modules using the Command Line Interface — Switch GVRP Status— Displays the GARP VLAN Registration Protocol (GVRP) status set on the interconnect switch. GVRP allows dynamic propagation of VLAN registration information across the GVRP-enabled switches on the same network. For additional information, refer to the “Configuring GVRP” section later in this chapter. — Telnet Status—Displays the Telnet status set on the switch module.
Configuring the Switch Modules using the Command Line Interface — SNTP Poll Interval—Displays the polling interval set on the switch module to synchronize with the network time. — Time Zone—Displays the number of hours and minutes that the time zone is ahead (+) or behind (-) Greenwich Mean Time (GMT). — Daylight Saving Time State—Displays if daylight saving time settings are enabled or disabled on the switch module.
Configuring the Switch Modules using the Command Line Interface Displaying Auto-Logout Timer Settings Use the following command to show the auto-logout timer settings: Command Description auto-logout show Displays the current value set for the auto-logout timer for idle timeout of the RS-232 console and Telnet management interface sessions For example: Configuring MAC Address Aging Timer The switch module enters into its forwarding table the mapping between the MAC address of the device and the Ethern
Configuring the Switch Modules using the Command Line Interface Setting the MAC Address Age Use the following command to configure the MAC address aging timer: Command Description mac-addr set mac-age Sets the length of time, in seconds, that a learned MAC address remains in the forwarding table without being used (how long a learned MAC address is allowed to remain idle before it is deleted from the table) Type the age in seconds from 10 to1000000.
Configuring the Switch Modules using the Command Line Interface This example shows the MAC address monitoring table display for VLAN 1. This example shows the MAC address monitoring table display for a MAC address.
Configuring the Switch Modules using the Command Line Interface This example shows the MAC address monitoring table display for a port number. This example shows the MAC address monitoring table display for all VLANs.
Configuring the Switch Modules using the Command Line Interface Configuring IGMP Snooping Internet Group Management Protocol (IGMP) snooping, when enabled and configured properly, manages multicast traffic through a switch module. IP multicast traffic is forwarded based on multicast group membership information registered by the switch module.
Configuring the Switch Modules using the Command Line Interface The following shows the factory default IGMP snooping settings: Feature Default Value IGMP Snooping Globally Disabled Group Address Filter Mode Forward all unregistered IGMP Snooping—State Enabled IGMP Snooping—Querier State Non-querier IGMP Snooping—Robustness Variable 2 IGMP Snooping—Query Interval 125 seconds IGMP Snooping—Max Response 10 seconds Enabling IGMP Snooping Use the following command to enable IGMP snooping: Comma
Configuring the Switch Modules using the Command Line Interface Disabling IGMP Snooping Use the following command to disable IGMP snooping globally on the switch module or on a specified VLAN: Command Description igmp disable {feature | vlan } Disables IGMP snooping globally on the switch module or on a specified VLAN Type one of the following in the command: • feature—Type feature to disable IGMP snooping globally on the switch module.
Configuring the Switch Modules using the Command Line Interface Adding IGMP Snooping Settings for a VLAN Use the following command to add IGMP Snooping for a VLAN: Command Description igmp add Adds a VLAN to the IGMP snooping table and sets the IGMP snooping parameters vlan state {non | v1 | v2} robustness interval Type the following in the command: • vlan —Type vlan and the VLAN ID.
Configuring the Switch Modules using the Command Line Interface Modifying IGMP Settings for a VLAN Use the following command to modify the IGMP settings for a VLAN: Command Description igmp modify vlan Modifies the parameters for a specified VLAN in the IGMP snooping table { [state {non | v1 | v2}] Type the VLAN ID and one or more of the following in the command: [robustness ] • [response ] state {non | v1 | v2} —Specifies the IGMP version (V1 or V2) that is used by
Configuring the Switch Modules using the Command Line Interface Deleting IGMP Snooping Settings for a VLAN Use the following command to delete an entry in the IGMP snooping table for a given VLAN: Command Description igmp delete vlan Deletes an entry in the IGMP snooping table for a specified VLAN Displaying IGMP Snooping Settings Use the following command to display IGMP snooping settings: Command Description igmp show Displays IGMP snooping settings for a specific VLAN or VLANs { filte
Configuring the Switch Modules using the Command Line Interface This example shows the IGMP filter mode. This example shows the IGMP snooping settings for a VLAN. This example shows the IGMP snooping status. This example shows the Dynamic Group Registration Table.
Configuring the Switch Modules using the Command Line Interface Configuring Class of Service, Default Port Priority, and Traffic Class Class of Service (CoS) for packet prioritization allows you to set priority levels for forwarding packets based on the priority setting information in the packets. The switch module supports four classes (0-3) of traffic (buffers or queues) per egress port. You can map eight priority levels (0-7) to the four queues.
Configuring the Switch Modules using the Command Line Interface Command Description cos set Defines the Class of Service (CoS) parameters for CoS queues (0-3) { sched {round-robin | strict} | queue class max latency | Type one of the following in the command: • def-pri-tag tag port | sched {round-robin | strictSets 802.1p CoS queue forwarding option.
Configuring the Switch Modules using the Command Line Interface Displaying CoS Queue Information Use the following command to display CoS queue information: Command Description cos show Displays the current information for all CoS parameters and status { sched | queue | Type one of the following in the command: • sched—Type sched to display the scheduling mechanism for 802.1p CoS queue. • queue—Type queue to display the mapping of CoS priority to Class of Traffic queues on all switch ports.
Configuring the Switch Modules using the Command Line Interface This example shows the current default CoS priority tag settings for a port. Configuring Port Trunking Port trunking allows several ports to be grouped together to act as a single link. This provides a bandwidth that is a multiple of a single link bandwidth. Port trunking is most commonly used to link a bandwidth-intensive network device or devices, such as a server, to the backbone of a network.
Configuring the Switch Modules using the Command Line Interface Considerations when Creating a Port Trunking Group When creating a port trunking group, consider the following rules that determine how the port trunk reacts in network topology: • The first port of the port trunk is implicitly configured to be the master logical port. This is the reference port used in configuration commands. It can be thought of as the logical port representing the entire group.
Configuring the Switch Modules using the Command Line Interface Creating a Port Trunk Group Use the following command to create a new port trunk group: Command Description trunk create name Creates a trunk definition with a group name, group ID, and the trunk status of enable or disable id Type the following in the command: status {enable | disable} • name —Type name and a group name from 1 to 15 characters in length.
Configuring the Switch Modules using the Command Line Interface Deleting a Trunk Group or a Port from a Trunk Group Use the following command to delete a trunk group or member ports from an existing trunk group: Command Description trunk delete Deletes either a trunk group or a port from a trunk group { id | entry id port } Type one of the following in the command: • id —Type id and the group ID number of the trunk to delete.
Configuring the Switch Modules using the Command Line Interface Configuring the Trunk Load Sharing Algorithm Options Use the following command to configure the load sharing algorithm options: Command Description trunk set load-sharing Sets the manner in which load sharing decisions will be determined { src-mac | Type one of the following algorithm options in the command: des-mac | • src-mac—Type src-mac to set port selection based on the source MAC address.
Configuring the Switch Modules using the Command Line Interface This example shows the settings for a trunk group. This example shows the trunk utilization status. This example shows the trunk load sharing algorithm. Configuring GVRP GARP VLAN Registration Protocol (GVRP) is a Generic Attribute Registration Protocol (GARP) application that provides 802.1Q-compliant VLAN pruning and dynamic VLAN creation on 802.1Q tagged ports.
Configuring the Switch Modules using the Command Line Interface The switch module provides options to enable or disable GVRP capability. If an 802.1Q tagged VLAN is enabled, but the GVRP is disabled, the only VLAN feature is static VLAN registration entries. HP recommends backing up static VLAN register entries to the configuration file. If ingress filtering is enabled then the port will discard any frame received on that port whose VLAN classification does not include that port in its member set.
Configuring the Switch Modules using the Command Line Interface Displaying GVRP Settings Use the following command to display the GVRP settings on the switch module: Command Description gvrp show Displays GVRP global configuration settings [port ] For port specific configuration settings, type port and the port number or numbers in the command. This example shows GVRP settings for a specific port.
Configuring the Switch Modules using the Command Line Interface Displaying Telnet Access Settings Use the following command to display Telnet access settings: Command Description telnet show Displays Telnet access settings For example: Enabling Web Access Use the following command to enable Web access: Command Description web enable Enables Web access to the switch module Disabling Web Access Use the following command to disable Web access: Command Description web disable Disables Web access to
Configuring the Switch Modules using the Command Line Interface Configuring Backpressure Flow Control Backpressure can be enabled to initiate flow control on the switch module ports. When backpressure is enabled and there is incoming traffic congestion on a port, the receiving port sends a request to the transmitting port. The transmitting port acknowledges the request and stops sending packets for a random amount of time, before starting to send again.
Configuring the Switch Modules using the Command Line Interface Configuring Switch Module Date and Time The switch module can maintain the current date and time. This information displays on the management interfaces and is used to record the date and time of interconnect switch events in the history log. When a new switch module is first booted up, the firmware clock starts at zero (0) and counts the seconds since bootup.
Configuring the Switch Modules using the Command Line Interface Setting Date and Time Parameters Manually IMPORTANT: If the system clock is set and power is lost to the interconnect switch, manual time settings are reset to factory defaults when the interconnect switch is powered on. If this occurs, manually reset the date and time. If SNTP is configured, losing power has no effect, so no manual resetting of time is required. The factory default for SNTP is set to disabled.
Configuring the Switch Modules using the Command Line Interface Command Description time set Manually sets the current time, date, time zone, and daylight saving time (DST) parameters { [time
Configuring the Switch Modules using the Command Line Interface Displaying Time Parameters Use the following command to display the current time parameters: Command Description time show Displays the current switch time, up time or boot time (whichever is currently active), time zone settings, and daylight saving time settings For example: Enabling SNTP In order for the switch module to synchronize its real time to the network time, you must first enable SNTP on the switch.
Configuring the Switch Modules using the Command Line Interface Setting SNTP Parameters When SNTP is enabled on the switch module, it sends a request to a primary SNTP server in each period of a specified polling interval asking for Greenwich Mean Time (GMT). If the primary SNTP server is not available, the request is sent to a secondary SNTP server.
Configuring the Switch Modules using the Command Line Interface For example: Disabling SNTP Use the following command to disable SNTP on the switch module: Command Description sntp disable Disables SNTP SNTP must be set to disable in order to manually set the time and date. Configuring Port Settings The port commands allow you to configure the name, speed/duplex, flow control, and security settings for each port.
Configuring the Switch Modules using the Command Line Interface Port Security Settings The port security feature controls the address learning capability and the traffic forwarding decisions for a port or ports. When enabled, you specify a number of source addresses to be learned (locked) at the port. Any incoming packets that do not have the learned source addresses are discarded. The maximum number of learned addresses is ten.
Configuring the Switch Modules using the Command Line Interface Setting Port Parameters Use the following command to set the port parameters: Command Description port set Configures the port names, port parameters, and port security parameters { label port name | params port Type one of the following in the command: • label—Sets the port name.
Configuring the Switch Modules using the Command Line Interface Enabling Ports on a Per Port Basis Use the following command to enable ports on a per port basis: Command Description port enable Enables ports on a per port basis. Disabled ports do not send or receive any traffic. The default is port enabled.
Configuring the Switch Modules using the Command Line Interface Displaying Current Port Settings and Port Names Use the following command to display the current port settings and connection information for utilization, errors, packets, and security: Command Description port show Displays all the current port settings and current established connection information { utilization | error | Type the one of following in the command: • utilization —Type utilization and the p
Configuring the Switch Modules using the Command Line Interface This example shows the current errors for a group of ports. This example shows the current packet count for a group of ports. This example shows the security parameters for a group of ports.
Configuring the Switch Modules using the Command Line Interface Configuring Bandwidth The switch module allows you to set a bandwidth limitation that restricts the ingress (receiving) and egress (transmitting) packet rate for each port. If the packet rate exceeds the allowed bandwidth rate, the excess packets will be dropped. Bandwidth is configured in 1 to 127 units. Each unit is 117,481 bytes per second (around 0.94 Mb/s) for ports 1-26 and 939,850 bytes (about 7.52 Mb/s) for optional ports.
Configuring the Switch Modules using the Command Line Interface Modifying Ingress and Egress Bandwidth Parameters Use the following command to modify ingress and egress bandwidth parameters: Command Description bandwidth modify port Modifies a port to the restart ingress or egress bandwidth table and configures the bandwidth between 1 and 127 units of 117 Kbytes per second. Zero (0) means disable bandwidth control after restart.
Configuring the Switch Modules using the Command Line Interface Configuring Spanning Tree Protocol IEEE 802.1D Spanning Tree Protocol (STP) allows for the blocking of links between switches to avoid loops within the network. When multiple links between the switches are detected, a primary link is established. Duplicated links are blocked from use and become standby links. The protocol allows for the duplicate links to be used in the event of a failure of the primary link.
Configuring the Switch Modules using the Command Line Interface Enabling STP Spanning Tree Protocol (STP) can be enabled or disabled at the switch level. Only one spanning tree domain per switch module is supported. You can configure ports to participate in that spanning tree domain, by enabling or disabling the STP function on a per port basis.
Configuring the Switch Modules using the Command Line Interface Disabling STP Use the following command to disable STP on the switch module, disable ports from participating in the spanning tree domain, or to disable bypass on a port: Command Description stp disable feature | Disables STP on the switch module, disables a port or ports from participating in a single spanning tree domain, or disables bypass on a port or ports bypass | Type one of the following in the command: port
Configuring the Switch Modules using the Command Line Interface • Port—Sets the STP priority and port cost parameters for one port or a series of ports — Priority—This parameter sets the relative priority for the port. A lower number indicates a higher priority and a greater chance of the port being elected as the root port. — Port cost—Port cost is a value used by STP to evaluate paths. STP calculates port costs and selects the path with the minimum cost as the active path.
Configuring the Switch Modules using the Command Line Interface Use the following command to configure global and per port STP settings on the switch module: Command Description stp set Sets bridging parameters or sets the per port priority or port cost parameters { { Type bridging and the bridging parameters or params and the parameter options in the command.
Configuring the Switch Modules using the Command Line Interface Displaying STP Bridging and Per Port Settings Use the following command to display the STP bridging and per port settings: Command Description stp show Displays the STP bridging and per port settings for all ports { [bridging] Type one or both of the following in the command: [port ] • bridging—Type bridging to display bridging settings.
Configuring the Switch Modules using the Command Line Interface Configuring Static (Destination Address) Filtering Table The switch module uses a filtering database to segment the network and control communications between segments. It can also filter packets off the network for intrusion control. Static filtering entries can be made by MAC address.
Configuring the Switch Modules using the Command Line Interface Use the following command to add unicast filter actions: Command Description unicast add Enables unicast filter actions vlan Type the following in the command: mac • vlan —Type vlan and the VLAN ID. • mac —Type mac and the MAC address.
Configuring the Switch Modules using the Command Line Interface Deleting the Unicast Filter Actions Use the following command to delete unicast filter actions: Command Description unicast delete Deletes unicast filter actions for one or all MAC addresses on a VLAN vlan mac { | all} Type the following in the command: • vlan —Type vlan and the VLAN ID. • mac { | all}—Type mac and one of the following: • —Type the MAC address to delete.
Configuring the Switch Modules using the Command Line Interface Adding Multicast Filter Actions The switch module supports forwarding control for group addresses. Packets are forwarded to specific ports of a group for a specific multicast destination address. Use the following command to configure multicast filter actions: Command Description multicast add Enables multicast filter actions vlan Type the following in the command: mac • vlan —Type vlan and the VLAN ID.
Configuring the Switch Modules using the Command Line Interface Deleting Multicast Filter Actions Use the following command to delete multicast filter actions: Command Description multicast delete Delete multicast filter actions for one or all MAC addresses on a VLAN vlan mac { | all } Type the following in the command: • vlan —Type vlan and the VLAN ID.
Configuring the Switch Modules using the Command Line Interface Configuring VLANs A Virtual Local Area Network (VLAN) is a network topology configured according to a logical scheme rather than the physical layout. VLANs can be used to combine any collection of physical LAN segments into an autonomous user group that appears as a single LAN. VLANs also logically segment the network into different broadcast domains so that logical packets are forwarded only between ports within that VLAN.
Configuring the Switch Modules using the Command Line Interface Default VLAN The switch module reserves one VLAN, VID 1, also called DEFAULT_VLAN. The factory default setting assigns all ports on the switch module to the default VLAN. As new VLANs are configured, their respective member ports are removed from the default VLAN. Characteristics of DEFAULT_VLAN include: • DEFAULT_VLAN is an IEEE 802.1Q Static VLAN with VID equal to 1. • DEFAULT_VLAN cannot be deleted. • The VID cannot be changed.
Configuring the Switch Modules using the Command Line Interface Creating an 802.1Q Static VLAN Use the following command to create a new 802.1Q static VLAN: Command Description vlan create Creates a new 802.1Q static VLAN with VLAN ID and VLAN name settings [name | id ] The following are optional settings: [ forbid | • name —Type name and a name to identify the VLAN that is 1 to 15 characters in length. Use an underscore (_) to connect words.
Configuring the Switch Modules using the Command Line Interface Adding a Port to an Existing VLAN Use the following command to add a port or set of ports to an existing VLAN: Command Description vlan add port id Adds a port or a set of ports to an existing VLAN and allows the setting of the forbid and egress parameters { [forbid ] egress { [untagged ] Type the VLAN ID number and one or more of the following optional settings. Each portlist must be mutually exclusive.
Configuring the Switch Modules using the Command Line Interface Deleting a VLAN or a Port from an Existing VLAN Use the following command to delete a VLAN or delete a port from an existing 802.1Q static VLAN: Command Description vlan delete Deletes a VLAN or a port or deletes a set of ports from an existing VLAN { id | To delete a VLAN, type the following in the command: entry port id • } id —Type id and the ID of the VLAN to be deleted.
Configuring the Switch Modules using the Command Line Interface Modifying the Per Port VLAN Settings or VLAN Name Use the following command to modify the per port settings or VLAN name: .
Configuring the Switch Modules using the Command Line Interface Setting the PVID for a Port Port VLAN ID (PVID) is a classification mechanism that associates a port with a specific VLAN and is used to make forwarding decisions for untagged packets received by the port. For example, if Port 2 is assigned a PVID of 3, then all untagged packets received on Port 2 will be assigned to VLAN 3. This number is generally the same as the VID number assigned to the port.
Configuring the Switch Modules using the Command Line Interface Displaying VLAN Settings and Status Use the following command to display the current VLAN settings and status: Command Description vlan show Displays the current VLAN status, the current PVID settings, and the VLAN table information { pvid | vlan } Type vlan show and one of the following: • pvid —Type pvid and the port number of numbers. • vlan —Type vlan and the VLAN ID or IDs.
Configuring the Switch Modules using the Command Line Interface Enabling Ingress Filtering on a Per Port Basis If ingress filtering is enabled for a port, the interconnect switch will examine the VLAN information in the packet header (if present) and decide whether or not to forward the packet. The VID should match the PVID of that port, otherwise, that incoming packet is discarded.
Configuring the Switch Modules using the Command Line Interface Displaying Ingress Filtering Information Use the following command to display the ingress filtering information on a per port basis: Command Description ingress-filter show Displays ingress filtering information for all ports [port ] To display ingress information for a specified port or ports, type port and the port number or numbers. This example shows the ingress filtering information for a series of ports.
Configuring the Switch Modules using the Command Line Interface The following shows the port mirroring factory default settings: Feature Default Value Port Mirroring—Source Port 1 Port Mirroring—Source Direction Ingress and Egress Port Mirroring—Target Port 11 Port Mirroring—Mirror Status Disabled Enabling Mirroring on a Port Use the following command to enable mirroring on a port: Command Description mirror enable target Enables mirroring on a port for network monitoring and tr
Configuring the Switch Modules using the Command Line Interface Displaying Port Mirroring Status Use the following command to display the port mirroring status: Command Description mirror show Displays mirroring information showing the source port, target port, traffic direction, and status of enabled or disabled This example shows the port mirroring status.
Configuring the Switch Modules using the Command Line Interface Enabling Broadcast, Multicast, or Unknown Packet Storm Monitoring Use the following command to enable broadcast, multicast, and DA-unknown storm monitoring: Command Description monitor-storm enable Enables monitoring of broadcast, multicast, or DA-unknown packet storm monitoring { [broadcast] [multicast] [unknown] } Disabling Monitoring Broadcast, Multicast, DA-Unknown Storm Monitoring Use the following command to disable monitoring broad
Configuring the Switch Modules using the Command Line Interface Displaying Broadcast, Multicast, DA-Unknown Storm Current Settings Use the following command to monitor the current settings for broadcast, multicast, and DA-unknown storm: Command Description monitor-storm show Displays the monitor storm settings, including the threshold information for broadcast, multicast, and DA-unknown packet storm This example shows the current settings for broadcast, multicast, and unknown storm.
Configuring the Switch Modules using the Command Line Interface Adding Priority Level for a MAC Address Use the following command to add an entry into the priority MAC address table and set the priority level for a MAC address within a specified VLAN: Command Description mac-pri add id Adds an entry into the priority MAC address table and sets the priority level for a MAC address within a specified VLAN mac Type the following in the command: priority • id —Type i
Configuring the Switch Modules using the Command Line Interface Modifying Priority Level for a MAC Address Use the following command to modify a priority level for a MAC address within a specified VLAN: Command Description mac-pri modify Modifies an entry in the priority MAC address table for a specified VLAN id mac { [pri ] [look-at {src | dest | either}] } Type the following in the command: • id —Type id and the VLAN ID.
Configuring the Switch Modules using the Command Line Interface This example shows the current priority level settings for a MAC address. Configuring the History Log The history log displays a list of switch events, the sequence number of each event, the time of the event, and a description of the event.
Configuring the Switch Modules using the Command Line Interface This example shows the history log. Clearing the History Log Use the following command to clear the history log: Command Description log clear Clears the switch history log and resets the sequence number to 1 Configuring SNMP/RMON Manager Simple Network Management Protocol (SNMP) is an Open Systems Interconnection (OSI) Layer 7 (the application layer) protocol for remotely monitoring and configuring network devices.
Configuring the Switch Modules using the Command Line Interface The authentication protocol ensures that both the switch SNMP agent and the remote user SNMP application program discard packets from unauthorized users. SNMP (version 1) implements a form of security by requiring that each request include a “community string.” A community string is an arbitrary string of characters used as a “password” to control access to the switch module.
Configuring the Switch Modules using the Command Line Interface Adding SNMP Management Interface Community Strings SNMP allows up to four community names to be defined. The community names “public” and “private” are defined by default. You can change the names in addition to adding others. You must coordinate these names with the community name settings you use in your network management system.
Configuring the Switch Modules using the Command Line Interface Deleting SNMP Management Interface Community Strings Use the following command to delete the SNMP management interface community strings: Command Description snmp delete Deletes an SNMP interface community string or an SNMP trap manager IP address { community | ip } Type one of the following in the command: • community • ip Displaying Current SNMP Management Interface Settings Use the following co
Configuring the Switch Modules using the Command Line Interface Using System Utilities The system utilities commands allow you to: • Upgrade switch module firmware from a Trivial File Transfer Protocol (TFTP) server • Upload the switch configuration settings to a file on a TFTP server • Download the switch configuration settings from a file on a TFTP server • Send the History Log to the TFTP server • Perform a PING connectivity test Setting TFTP Trivial File Transfer Protocol (TFTP) services allo
Configuring the Switch Modules using the Command Line Interface Use the following command to set the parameters for TFTP file transfers. Command Description tftp set Sets the parameters for TFTP file transfers { [ip ] [port ] Type the following optional TFTP parameters in the command: • ip —Type ip and the IP address for the TFTP server to use. The default is 0.0.0.0. • port —Type port and the port number to use for the TFTP server.
Configuring the Switch Modules using the Command Line Interface Use the following command to initiate TFTP file transfers from the TFTP server.
Configuring the Switch Modules using the Command Line Interface Use the following command to initiate TFTP file transfers of the history log or configuration file to the TFTP server.
Configuring the Switch Modules using the Command Line Interface Performing a Ping Test Use the following command to run the ping utility: Command Description ping Pings the target IP address and repeats pinging infinitely or a specified number of times [] Type the target IP address in the command. To specify the number of times to ping, type a number from 0 to 244. Zero (0) means an infinite number of times. The default is 1. Press the ESC key to stop the ping.
A Commands Introduction This appendix provides a summary of the commands supported by the interconnect switch command line interface (CLI). Refer to Chapter 2 for a detailed description of each command.
Commands Managing User Accounts Command Description user add Adds a user account user • r—root access {r | u+ | u} • u+—user + • u—user user delete user Deletes the specified user’s account user show Displays all user account information including each user’s name and access level user modify user Modifies a user’s account information { [access {r | u+ | u}] [password] } Configuring Remote Management IP Interface Settings Command Description mgmt-if set
Commands Configuring Basic Switch Module Information Command Description system set Configures system information { [sysname ] [sysloc ] [contact ] } system show Displays basic switch information [advanced] Configuring Auto-Logout Timer Command Description auto-logout set time-out {0 | 2 | 5 | 10 | 15} Sets the auto-logout timer for idle timeout of the RS-232 console and Telnet management interface sessions auto-logout show Displays the current val
Commands Configuring MAC-Address Aging Timer Command Description mac-addr set mac-age Sets the length of time, in seconds, that a learned MAC address remains in the forwarding table without being used (how long a learned MAC address is allowed to remain idle before it is deleted from the table) mac-addr show mac-age The mac-addr show mac-age command displays the current setting of the MAC-address aging timer.
Commands Configuring IGMP Snooping Command Description igmp enable {feature | vlan } Enables the switch to read IGMP packets being forwarded through the switch in order to obtain forwarding information from them and learn which ports contain multicast members igmp disable {feature | vlan } Disables IGMP snooping globally on the switch module or on a specified VLAN igmp set filter {all | unregistered | filter} Sets IGMP filter mode for processing multicast packets and the parameters
Commands Configuring Class of Service, Default Port Priority, and Traffic Class Command Description cos set Defines the Class of Service (CoS) parameters for CoS queues (0-3) { sched {round-robin | strict} | queue class max latency | def-pri-tag tag port | pri-map pri class } cos show { Displays the current information for all CoS parameters and status sched | queue | def-pri-tag | pri-map } A-6 HP ProLiant
Commands Configuring Port Trunking Command Description trunk create Creates a trunk definition with a group name, group ID, and the trunk status of enable or disable name id status {enable | disable} port trunk add port Adds a port or ports to an existing trunk group id port trunk delete { Deletes either a trunk group or a port from a trunk group id | entry id port } trunk enable id Enables the spe
Commands Configuring GVRP Command Description gvrp enable { feature | port } Enables GVRP globally on the switch module or on a specific port or ports gvrp disable { feature | port } Disables GVRP globally on the switch module or on a specific port or ports gvrp show Displays GVRP global configuration settings [port ] Configuring Telnet and Web Access Settings Command Description telnet enable Enables Telnet access to the switch module telnet disable Disables T
Commands Configuring Switch Module Date and Time Command Description time set Manually sets the current time, date, time zone, and daylight saving time (DST) parameters. SNTP must be set to disabled to manually set the time.
Commands Enabling Simple Network Time Protocol (SNTP) sntp enable Enables SNTP. SNTP allows the system to get the accurate time through the network.
Commands Configuring Port Settings Command Description port set Configures the port names, port parameters, and port security parameters { label port name | params port { [speed-duplex {auto | 10-half | 10-full | 100-half | 100-full | 1000-full}] | [flow-control {on | off}] } | security port learn mode {timeout | reset} } } port enable { Enables ports or port security on a per port basis. Disabled ports do not send or receive any traffic.
Commands Configuring Port Settings continued Command Description port show Displays all the current port settings and current established connection information { utilization | error | packet | security } Configuring Bandwidth Command Description bandwidth add port Adds a port to the restart ingress or egress bandwidth table and configures the bandwidth between 1 and 127 units of 117 Kbytes per second { [ingress ] [egress ]
Commands Configuring Spanning Tree Protocol Command Description stp enable Enables STP on the switch module, enables a port or ports from participating in a single spanning tree domain, or enables bypass on a port or ports { feature | bypass | port } stp disable { feature | Disables STP on the switch module, disables a port or ports from participating in a single spanning tree domain, or disables bypass on a port or ports bypass | port } Sets bridging param
Commands Configuring Static (Destination Address) Filtering Table Command Description unicast add Enables unicast filter actions vlan mac type {permanent | delete-on-reset} port unicast modify Modifies unicast filter actions vlan mac { [type {permanent | delete-on-reset}] [port ] } unicast delete vlan Deletes unicast filter actions for one or all MAC addresses on a VLAN mac { | all} unicast show [vlan ] Displays
Commands Configuring VLANs Command Description vlan create Creates a new 802.
Commands Configuring VLANs continued Command Description vlan set pvid Sets the PVID for the specified ports port id vlan show { Displays the current VLAN status, the current PVID settings, and the VLAN table information pvid | vlan } ingress-filter enable port Enables ingress filtering on the specified port or ports ingress-filter disable port Disables ingress filtering on a port or ports ingress-filter show Displays ingress filte
Commands Configuring Thresholds for Broadcast, Multicast, Unknown Storm Prevention or Monitoring Command Description monitor-storm enable Enables monitoring of broadcast, multicast, or unknown packet storm monitoring { [broadcast] [multicast] [unknown] } monitor-storm disable { [broadcast] [multicast] [unknown] } Disables monitoring of broadcast, multicast, or unknown packet storms monitor-storm set threshold Sets threshold (in packets per second) to drop packets when broadcast, multicas
Commands Configuring the History Log Command Description log show Displays the entries in the switch history log [num ] [item ] log clear Clears the switch history log and resets the sequence number to 1 Configuring SNMP Manager Command Description snmp add Configures the SNMP interface with up to four sets of community strings with access rights and access validity status and configures up to four (one at a time) SNMP trap manager IP addresses { string community access {ro |
Commands Using System Utilities Command Description tftp set Sets the parameters for TFTP file transfers { [ip ] [port ] [fw ] [cfg ] [log ] } tftp download type {fw | cfg} [path ] [port ] tftp upload type {log | cfg} Initiates TFTP file transfers to the TFTP server [path ] [ip ] [port ] tftp show Displays the
Index A F accessing switch procedure 1-2 accounts, user 2-2 advanced settings 2-9 auto-logout 2-11, 2-13 firmware upgrades 2-83 flow control 2-37 B backpressure 2-12, 2-37 bandwidth 2-49 basic settings 2-9 Bootstrap Protocol (BOOTP) IP address assignment 2-6 broadcast storm configuring threshold 2-73 C Class of Service (CoS) 2-25 class of traffic 2-25 community names, SNMP 2-79 component-level repairs ix configuration 1-1 current egress bandwidth settings 2-49 current ingress bandwidth settings 2-49
Index multicast filtering 2-18, 2-57 multicast storm, configuring threshold 2-73 N new users, setting up 2-2 NVRAM (non-volatile RAM) 2-1 P packets, data monitoring 2-78 prioritization service 2-25 ping test 2-87 port settings 2-43 port trunking 2-28 ports assigning VLANs to 2-68 GVRP settings 2-12, 2-33 mirroring of 2-71 priority MAC addresses 2-75 privileges, user 2-2 protocols, network BOOTP 2-6 DHCP 2-6 GVRP 2-12, 2-33 SNMP 2-79 SNTP 2-12, 2-38 PVID (port VLAN ID) 2-68 R rebooting switch 2-87 remote
