HP ProLiant BL p-Class GbE2 Interconnect Switch ISCLI Reference Guide Part number: 438667-002 Second edition: March 2007
Legal notices © 2006, 2007 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. The only warranties for HP products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. HP shall not be liable for technical or editorial errors or omissions contained herein. Microsoft®, Windows®, and Windows NT® are U.S.
Contents ISCLI Reference Introduction ............................................................................................................................................. 8 Additional references ............................................................................................................................... 8 Connecting to the switch ...........................................................................................................................
ARP information..................................................................................................................................... 42 Show all ARP entry information ........................................................................................................... 42 ARP address list information ............................................................................................................... 43 OSPF information..........................................................
ACL meter statistics............................................................................................................................ 75 SNMP statistics ................................................................................................................................. 75 NTP statistics .................................................................................................................................... 77 Uplink Failure Detection statistics.............................
Hot Links configuration .................................................................................................................... 109 Hot Links Trigger configuration.......................................................................................................... 109 Hot Links Master configuration .......................................................................................................... 110 Hot Links Backup configuration ....................................................
Uplink Failure Detection configuration..................................................................................................... 137 Failure Detection Pair configuration ................................................................................................... 137 Link to Monitor configuration ............................................................................................................ 138 Link to Disable configuration.......................................................
ISCLI Reference Introduction The HP ProLiant BL p-Class GbE2 Interconnect Switch is ready to perform basic switching functions right out of the box. Some of the more advanced features, however, require some administrative configuration before they can be used effectively.
To establish a console connection with the GbE2 Interconnect Switch: 1. Connect the terminal to the console port using the null modem cable. 2. Power on the terminal. 3. Press the Enter key a few times on the terminal to establish the connection. 4. You will be required to enter a password for access to the switch. Setting an IP address To access the GbE2 via a Telnet or an SSH connection, you need to have an Internet Protocol (IP) address set for the switch.
The following SSH clients are supported: • SSH 3.0.1 for Linux (freeware) • SecureCRT® 4.1.8 (VanDyke Technologies, Inc.) • OpenSSH_3.9 for Linux (FC 3) • FedoraCore 3 for SCP commands • PuTTY Release 0.58 (Simon Tatham) for Windows NOTE: The GbE2 implementation of SSH is based on versions 1.5 and 2.0, and supports SSH clients from version 1.0 through version 2.0. SSH clients of other versions are not supported. You may configure the client software to use protocol SSH version 1 or version 2.
Table 2 User access levels User account Description and tasks performed User The User has no direct responsibility for switch management. He or she can view all switch status information and statistics, but cannot make any configuration changes to the switch. The user account is enabled by default, and the default password is user. Oper The Operator has no direct responsibility for switch management.
Typeface or symbol Meaning braces { } Indicate required elements in syntax descriptions where there is more than one option. You must choose only one of the options. Do not type the braces when entering the command. Example: If the command syntax is show portchannel {<1-12>|hash|information} Enter: show portchannel <1-12> or show portchannel hash or show portchannel information brackets [ ] Indicate optional elements in syntax descriptions. Do not type the brackets when entering the command.
ISCLI basics Introduction The ISCLI is used for viewing switch information and statistics. In addition, the administrator can use the CLI for performing all levels of switch configuration. This chapter describes the ISCLI Command Modes, and provides a list of commands and shortcuts that are commonly available from all the command modes within the ISCLI. Accessing the ISCLI The first time you start the GbE2 Interconnect Switch, it boots into the AOSCLI.
Table 3 ISCLI Command Modes Command Mode/Prompt Interface IP configuration Command used to enter or exit.
Table 4 Global commands Command Action who Displays a list of users who are currently logged in. Command line interface shortcuts The following shortcuts allow you to enter commands quickly and easily. Command abbreviation Most commands can be abbreviated by entering the first characters that distinguish the command from the others in the same mode.
Information Commands Introduction You can view configuration information for the switch in the ISCLI. This chapter discusses how to use the ISCLI to display switch information. The following table describes general information commands. Table 5 Information commands Command Usage show sys-info Displays system information. Command mode: All show layer2 information Displays Layer 2 information. Command mode: All show layer3 information Displays Layer 3 information.
System Information commands The following table describes the System Information commands. Table 6 System Information commands Command Usage show snmp-server v3 Displays SNMP v3 information.
Table 7 SNMPv3 Information commands Command Usage show snmp-server v3 notify Displays the Notify table. Command mode: All show snmp-server v3 Displays all the SNMPv3 information. Command mode: All SNMPv3 USM User Table information The following command displays SNMPv3 user information: show snmp-server v3 user Command mode: All The User-based Security Model (USM) in SNMPv3 provides security services such as authentication and privacy of messages.
The following table describes the SNMPv3 View Table information. Table 9 View Table parameters Field Description View Name Displays the name of the view. Subtree Displays the MIB subtree as an OID string. A view subtree is the set of all MIB object instances which have a common Object Identifier prefix to their names. Mask Displays the bit mask. Type Displays whether a family of view subtrees is included or excluded from the MIB view.
SNMPv3 Group Table information The following command displays SNMPv3 group information: show snmp-server v3 group Command mode: All Sec Model ---------snmpv1 usm usm User Name ----------------------------v1v2only adminmd5 adminsha Group Name ------------------------------v1v2grp admingrp admingrp A group is a combination of security model and security name that defines the access rights assigned to all the security names belonging to that group. The group is identified by a group name.
SNMPv3 Target Address Table information The following command displays SNMPv3 target address information: show snmp-server v3 target-address Command mode: All Name Transport Addr Port Taglist Params ---------- --------------- ---- ---------- --------------trap1 47.81.25.66 162 v1v2trap v1v2param This command displays the SNMPv3 target address table information, which is stored in the SNMP engine. The following table describes the SNMPv3 Target Address Table information.
SNMPv3 Notify Table information The following command displays the SNMPv3 Notify Table: show snmp-server v3 notify Command mode: All Name Tag -------------------- -------------------v1v2trap v1v2trap The following table describes the SNMPv3 Notify Table information. Table 15 SNMPv3 Notify Table Field Description Name The locally arbitrary, but unique identifier associated with this snmpNotifyEntry. Tag This represents a single tag value which is used to select entries in the snmpTargetAddrTable.
SNMPv3 dump The following command displays SNMPv3 information: show snmp-server v3 Command mode: All Engine ID = 80:00:07:50:03:00:0F:6A:F8:EF:00 usmUser Table: User Name Protocol -------------------------------- -------------------------------admin NO AUTH, NO PRIVACY adminmd5 HMAC_MD5, DES PRIVACY adminsha HMAC_SHA, DES PRIVACY v1v2only NO AUTH, NO PRIVACY vacmAccess Table: Group Name Prefix Model Level Match ReadV WriteV NotifyV ---------- ------ ------- ---------- ------ ------- -------- -----admin usm
System information The following command displays system information: show sys-info Command mode: All System Information at 17:29:18 Mon Feb 26, 2007 HP ProLiant BL p-Class C-GbE2 Interconnect Switch B sysName: 2JUnit1 sysLocation: Houston RackID: 3334KJP3D030 RackName: BkRm3 Enclosure: D304JTK7D013 EnclosureName: Enterprise Slot: B Switch is up 1 days, 2 hours, 3 minutes and 40 seconds. Last boot: 17:25:38 Mon Feb 26, 2007 (software reset) MAC address: 00:01:81:2e:ae:e0 IP (If 2) address: 10.30.52.
Show recent syslog messages The following command displays system log messages: show logging messages Command mode: All Date ---Jul 8 Jul 8 Jul 8 Jul 8 Jul 8 Jul 8 Jul 8 Jul 8 Jul 8 Jul 8 Jul 8 Jul 8 Jul 8 Jul 8 Jul 8 Jul 8 Jul 8 Jul 8 Jul 8 Jul 8 Time ---17:25:41 17:25:41 17:25:41 17:25:41 17:25:41 17:25:41 17:25:41 17:25:41 17:25:41 17:25:41 17:25:41 17:25:41 17:25:41 17:25:41 17:25:42 17:25:42 17:25:42 17:25:42 17:25:42 17:25:42 Severity level ----------------NOTICE NOTICE NOTICE NOTICE NOTICE NOTICE N
System user information The following command displays user status information: show access user Command mode: All except User EXEC Usernames: user - enabled oper - disabled admin - Always Enabled The following table describes the user status information. Table 16 User status Information Field Usage user Displays the status of the user access level. oper Displays the status of the oper (operator) access level. admin Displays the status of the admin (administrator) access level.
Table 17 Layer 2 information commands Command Usage show spanning-tree mstp cist information Displays Common internal Spanning Tree (CIST) bridge information, including the following: • Priority • Hello interval • Maximum age value • Forwarding delay You can also view port-specific CIST information, including the following: • Port number and priority • Cost • State Command mode: All show portchannel information When trunk groups are configured, you can view the state of each port in the various trunk gr
Show all FDB information The following command displays Forwarding Database information: show mac-address-table Command mode: All MAC address ----------------00:02:01:00:00:00 00:02:01:00:00:01 00:02:01:00:00:02 00:02:01:00:00:03 00:02:01:00:00:04 00:02:01:00:00:05 00:02:01:00:00:06 00:02:01:00:00:07 00:02:01:00:00:08 00:02:01:00:00:09 00:02:01:00:00:0a 00:02:01:00:00:0b 00:02:01:00:00:0c VLAN ---300 300 300 300 300 300 300 300 300 300 300 300 300 Port ---- Trnk ---1 23 23 23 23 23 23 23 23 23 23 23 23
LACP dump The following command displays LACP information: show lacp information Command mode: All >> LACP# dump port lacp adminkey operkey selected prio attached trunk aggr ---------------------------------------------------------------------1 off 1 1 n 32768 --2 off 2 2 n 32768 --3 off 3 3 n 32768 --4 off 4 4 n 32768 --5 off 5 5 n 32768 --6 off 6 6 n 32768 --7 off 7 7 n 32768 --8 off 8 8 n 32768 --… LACP dump includes the following information for each port in the GbE2 Interconnect Switch: • lacp—Di
802.1p information The following command displays 802.1p information: show qos transmit-queue information Command mode: All Current priority to COS queue information: Priority COSq Weight -------- ---- -----0 0 1 1 1 2 2 2 3 3 3 4 4 4 5 5 5 7 6 6 15 7 7 0 Current port priority information: Port Priority COSq Weight ----- -------- ---- -----1 0 0 1 2 0 0 1 3 0 0 1 4 0 0 1 … 23 0 0 1 24 0 0 1 The following table describes the IEEE 802.1p priority to COS queue information. Table 20 802.
ACL information The following command displays Access Control List information: show access-control Command mode: All Current ACL information: -----------------------Filter 1 profile: Ethernet - VID : 1/0xfff Actions : Set COS to 0 Filter 2 profile: Ethernet - VID : 1/0xfff Actions : Permit ACL block 1: - ACL 1 - ACL 2 No ACL groups configured. ACL information provides configuration parameters for each Access Control List.
802.1x information The following command displays 802.
Table 22 802.1x information Field Description Backend Auth State Displays the Backend Authorization State. The Backend Authorization state can be one of the following: • request • response • success • fail • timeout • idle The following table describes the IEEE 802.1p port priority information. Table 23 802.1p Port Priority information Command Usage Port Displays the port number. Priority Displays the 802.1p Priority level. Cosq Displays the Class of Service queue.
You can also refer to the following port-specific STP information: • Port number and priority • Cost • State • Port Fast Forwarding state • Designated bridge • Designated port The following table describes the STP parameters. Table 24 STP parameters Parameter Description Current Root Shows information about the root bridge for the Spanning Tree. Information includes the priority (hex) and MAC address of the root. Path-Cost Path-cost is the total path cost to the root bridge.
Rapid Spanning Tree and Multiple Spanning Tree information The following command displays RSTP/MSTP information: show spanning-tree stp <1-32> information Command mode: All -----------------------------------------------------------------upfast disabled, update 40 -----------------------------------------------------------------Spanning Tree Group 1: On (RSTP) VLANs: 1-3 4095 Current Root: 8000 00:00:01:00:19:00 Parameters: Port ---1 2 3 4 5 6 7 8 9 10 11 12 Prio ---0 0 0 0 0 0 0 0 0 0 0 0 Priority 32768
The following table describes the STP parameters in RSTP or MSTP mode. Table 25 Rapid Spanning Tree parameter descriptions Parameter Description Current Root Shows information about the root bridge for the Spanning Tree. Information includes the priority (hex) and MAC address of the root. Path-Cost Path-cost is the total path cost to the root bridge. It is the summation of the path cost between bridges (up to the root bridge).
Common Internal Spanning Tree information The following command displays Common Internal Spanning Tree (CIST) information: show spanning-tree mstp cist information Command mode: All Mstp Digest: 0xac36177f50283cd4b83821d8ab26de62 Common Internal Spanning Tree: VLANs: 1 3-4094 Current Root: 8000 00:03:42:fa:3b:80 Path-Cost 11 Port 1 MaxAge 20 FwdDel 15 CIST Regional Root: Path-Cost 8000 00:03:42:fa:3b:80 11 Parameters: Port ---1 2 3 4 5 6 7 8 9 10 11 12 Priority 32768 MaxAge 20 FwdDel 15 Hops 20 Pr
The following table describes the CIST parameters. Table 26 Common Internal Spanning Tree parameter descriptions Parameter Description CIST Root Shows information about the root bridge for the Common Internal Spanning Tree (CIST). Values on this row of information refer to the CIST root. CIST Regional Root Shows information about the root bridge for this MSTP region. Values on this row of information refer to the regional root.
Trunk group information The following command displays Trunk Group information: show portchannel information Command mode: All Trunk group 1, Enabled port state: 17: STG 1 forwarding 18: STG 1 forwarding When trunk groups are configured, you can view the state of each port in the various trunk groups. NOTE: If Spanning Tree Protocol on any port in the trunk group is set to forwarding, the remaining ports in the trunk group are set to forwarding.
Layer 3 information The following table describes basic Layer 3 Information commands. The following sections provide more detailed information and commands. Layer 3 functionality is limited in this release. Table 27 Layer 3 information commands Command Usage show ip route Displays all routes configured in the switch. Command mode: All except User EXEC show ip arp Displays Address Resolution Protocol (ARP) Information.
Show all IP Route information The following command displays IP route information: show ip route Command mode: All except User EXEC Status code: * Destination --------------* 11.0.0.0 * 11.0.0.1 * 11.255.255.255 * 12.0.0.0 * 12.0.0.1 * 12.255.255.255 * 13.0.0.0 * 47.0.0.0 * 47.133.88.0 * 172.30.52.223 * 224.0.0.0 * 224.0.0.5 best Mask --------------255.0.0.0 255.255.255.255 255.255.255.255 255.0.0.0 255.255.255.255 255.255.255.255 255.0.0.0 255.0.0.0 255.255.255.0 255.255.255.255 224.0.0.0 255.255.255.
ARP information The Address Resolution Protocol (ARP) information includes IP address and MAC address of each entry, address status flags, VLAN, and port for the address, and port referencing information. The following table describes the Address Resolution Protocol commands. Table 31 ARP information Command Usage show ip arp find Displays a single ARP entry by IP address. Command mode: All except User EXEC show ip arp interface Displays the ARP entries on a single port.
ARP address list information The following command displays ARP address list information: show ip arp reply Command mode: All except User EXEC IP address --------------205.178.18.66 205.178.50.1 205.178.18.64 IP mask --------------255.255.255.255 255.255.255.255 255.255.255.255 MAC address VLAN Flags ----------------- ---- ----00:70:cf:03:20:04 P 00:70:cf:03:20:06 1 00:70:cf:03:20:05 1 This screen displays all entries in the ARP cache. OSPF information The following table describes the OSPF commands.
OSPF general information The following command displays general OSPF information: show ip ospf general-information Command mode: All except User EXEC OSPF Version 2 Router ID: 10.10.10.
OSPF Database information The following table describes the OSPF Database information commands. Table 34 OSPF Database information commands Command Usage show ip ospf database advertising-router Takes advertising router as a parameter. Displays all the Link State Advertisements (LSAs) in the LS database that have the advertising router with the specified router ID, for example: 20.1.1.1.
OSPF route codes information The following command displays RIP route information: show ip ospf routes Command mode: All except User EXEC Codes: IA - OSPF inter area, N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2 E1 - OSPF external type 1, E2 - OSPF external type 2 IA 10.10.0.0/16 via 200.1.1.2 IA 40.1.1.0/28 via 20.1.1.2 IA 80.1.1.0/24 via 200.1.1.2 IA 100.1.1.0/24 via 20.1.1.2 IA 140.1.1.0/27 via 20.1.1.2 IA 150.1.1.0/28 via 200.1.1.2 E2 172.18.1.1/32 via 30.1.1.2 E2 172.18.1.2/32 via 30.
RIP user configuration The following command displays RIP user information: show interface ip rip Command mode: All RIP USER CONFIGURATION : RIP on updat 30 RIP Interface 2 : 102.1.1.1, enabled version 2, listen enabled, supply enabled, default none poison disabled, trigg enabled, mcast enabled, metric 1 auth none,key none RIP Interface 3 : 103.1.1.
IGMP multicast group information The following table describes the commands used to display information about IGMP groups learned by the switch. Table 36 IGMP Multicast Group commands Command Usage show ip igmp groups address Displays a single IGMP multicast group by its IP address. Command mode: All except User EXEC show ip igmp groups vlan <1-4095> Displays all IGMP multicast groups on a single VLAN.
When virtual routers are configured, you can view the status of each virtual router using this command. VRRP information includes: • Virtual router number • Virtual router ID and IP address • Interface number • Ownership status • owner identifies the preferred master virtual router. A virtual router is the owner when the IP address of the virtual router and its IP interface are the same. • renter identifies virtual routers which are not owned by this device • Priority value.
RMON alarm information The following command displays RMON alarm information: show rmon alarm Command mode: All RMON Alarm group configuration: Index ----1 2 3 4 5 8 10 11 15 18 100 Interval -------30 900 300 1800 1800 1800 1800 1800 1800 1800 1800 Type ---abs abs abs abs abs abs abs abs abs abs abs rLimit -------10 0 10 10 10 10 10 10 10 10 10 fLimit -------0 10 20 0 0 0 0 0 0 0 0 Index ----1 2 3 4 5 8 10 11 15 18 100 OID -----------------------------1.3.6.1.2.1.2.2.1.10.257 1.3.6.1.2.1.2.2.1.11.
Table 39 RMON Alarm Information Command Usage OID Displays the MIB Object Identifier for each alarm index.
Link status information The following command displays link information: show interface link Command mode: All except User EXEC -----------------------------------------------------------------Port Speed Duplex Flow Ctrl Link --------------- --TX-----RX------1 1000 any yes yes down 2 1000 any yes yes down 3 1000 full yes yes down 4 1000 full yes yes down 5 1000 any yes yes down 6 1000 any yes yes down 7 1000 any yes yes down 8 1000 full no yes up 9 1000 full yes yes down 10 1000 full yes yes down 11 1000 an
Port information The following command displays port information: show interface information Command mode: All except User EXEC Port Tag RMON PVID NAME VLAN(s) ---- --- ---- ---- -------------- ------------------------------1 n d 1 Downlink1 1 2 n d 1 Downlink2 1 3 n d 1 Downlink3 1 4 n d 1 Downlink4 1 5 n d 1 Downlink5 1 6 n d 1 Downlink6 1 7 n d 1 Downlink7 1 8 n d 1 Downlink8 1 9 n d 1 Downlink9 1 10 n d 1 Downlink10 1 11 n d 1 Downlink11 1 12 n d 1 Downlink12 1 13 n d 1 Downlink13 1 14 n d 1 Downlink14
Logical Port to GEA Port mapping The following command displays information about GEA ports: show geaport Command mode: All Logical Port -----------1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 GEA Port(0-based) ----------------1 2 4 7 8 12 13 14 0 3 5 6 9 10 11 15 16 17 18 19 23 22 21 20 GEA Unit --------0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 0 This display correlates the logical port number to the GEA unit on which each port resides.
Uplink Failure Detection (UFD) information includes: • UFD status, either enabled or disabled • LtM status and member ports • Spanning Tree status for LtM ports • LtD status and member ports Information dump The following command dumps switch information: show information-dump Command mode: All Use the dump command to dump all switch information available from GbE2 memory (10K or more, depending on your configuration). This data is useful for tuning and debugging switch performance.
Statistics commands Introduction You can view switch performance statistics in the user, operator, and administrator command modes. This chapter discusses how to use the ISCLI to display switch statistics. The following table describes general Statistics commands. Table 41 Statistics commands Command Usage show layer2 counters Displays Layer 2 Statistics. Command mode: All show layer3 counters Displays Layer 3 Statistics. Command mode: All show snmp-server counters Displays SNMP statistics.
802.1x statistics Use the following command to display the 802.
Table 43 802.1x statistics for port Statistics Description authReauthsWhileAuthenticating Total number of times that the state machine transitions from AUTHENTICATING to ABORTING, as a result of a re-authentication request authEapStartsWhileAuthenticating Total number of times that the state machine transitions from AUTHENTICATING to ABORTING, as a result of an EAPOL-Start message being received from the Supplicant.
Bridging statistics Use the following command to display the bridging statistics of the selected port: show interface port bridging-counters Command mode: All Bridging statistics for port 1: dot1PortInFrames: dot1PortOutFrames: dot1PortInDiscards: dot1TpLearnedEntryDiscards: dot1StpPortForwardTransitions: 63242584 63277826 0 0 0 The following table describes the bridging statistics for a selected port: Table 44 Bridging statistics for port Statistics Description dot1PortInFrames The numbe
The following table describes the Ethernet statistics for a selected port: Table 45 Ethernet statistics for port Statistics Description dot3StatsAlignmentErrors A count of frames received on a particular interface that are not an integral number of octets in length and do not pass the Frame Check Sequence (FCS) check. The count represented by an instance of this object is incremented when the alignmentError status is returned by the MAC service to the Logical Link Control (LLC) (or other MAC user).
Table 45 Ethernet statistics for port Statistics Description dot3StatsInternalMacTransmitErrors A count of frames for which transmission on a particular interface fails due to an internal MAC sublayer transmit error. A frame is only counted by an instance of this object if it is not counted by the corresponding instance of either the dot3StatsLateCollisions object, the dot3StatsExcessiveCollisions object, or the dot3StatsCarrierSenseErrors object.
The following table describes the interface (IF) statistics for a selected port: Table 46 Interface statistics for port Statistics Description Octets—IfHCIn The total number of octets received on the interface, including framing characters. UcastPkts—IfHCIn The number of packets, delivered by this sublayer to a higher sublayer, which were not addressed to a multicast or broadcast address at this sublayer.
Internet Protocol (IP) statistics Use the following command to display the interface protocol statistics of the selected port: show interface port ip-counters Command mode: All GEA IP statistics for port 1: ipInReceives : 0 ipInHeaderError: 0 ipInDiscards : 0 The following table describes the Internet Protocol (IP) statistics for a selected port: Table 47 IP statistics for port Statistics Description ipInReceives The total number of input datagrams received from interfaces, including those
FDB statistics Use the following command to display statistics regarding the use of the forwarding database, including the number of new entries, finds, and unsuccessful searches: show mac-address-table counters Command mode: All FDB statistics: current: 91 hiwat: 91 These commands enable you to display statistics regarding the use of the forwarding database, including the number of current entries and the maximum number of entries ever recorded.
Hot Links statistics Use the following command to display Hot Links statistics: show hotlinks counters Command mode: All Hot Links Trigger Stats: -----------------------------------------------------------------Trigger 1 statistics: Trigger Name: Corporate Uplinks Master active: 0 Backup active: 0 FDB update: 0 failed: 0 The following table describes the Hot Links statistics for each trigger: Table 51 Hot Links trigger statistics Statistics Description Master active Total number of times the Ma
Table 52 Layer 3 Statistics commands Command Usage clear ip igmp [<1-4094>] counters Clears all IGMP statistics for the selected VLANs. Command mode: All above Priv EXEC show ip ospf counters Displays OSPF statistics.
Table 53 IP statistics Statistics Description ipOutRequests The total number of IP datagrams that local IP user-protocols (including ICMP) supplied to IP in requests for transmission. This counter does not include any datagrams counted in ipForwDatagrams. ipOutDiscards The number of output IP datagrams for which no problem was encountered to prevent their transmission to their destination, but which were discarded (for example, for lack of buffer space).
DNS statistics show ip dns counters Command mode: All except UserEXEC DNS statistics: dnsInRequests: dnsBadRequests: 0 0 dnsOutRequests: 0 The following table describes the Domain Name System (DNS) statistics: Table 56 DNS statistics Statistic Description dnsInRequests The total number of DNS request packets that have been received. dnsOutRequests The total number of DNS response packets that have been transmitted. dnsBadRequests The total number of DNS request packets received that were dropped.
Table 57 ICMP statistics Statistics Description icmpInAddrMasks The number of ICMP Address Mask Request messages received. icmpInAddrMaskReps The number of ICMP Address Mask Reply messages received. icmpOutMsgs The total number of ICMP messages which this switch attempted to send. Note that this counter includes all those counted by icmpOutErrors. icmpOutErrors The number of ICMP messages that this switch did not send due to problems discovered within ICMP such as a lack of buffer.
Table 58 TCP statistics Statistics Description tcpRtoMax The maximum value permitted by a TCP implementation for the retransmission timeout, measured in milliseconds. More refined semantics for objects of this type depend upon the algorithm used to determine the retransmission timeout. In particular, when the timeout algorithm is rsre(3), an object of this type has the semantics of the UBOUND quantity described in RFC 793.
IGMP Multicast Group statistics The following command displays statistics about the use of the IGMP Multicast Groups: show ip igmp counters Command mode: All except User EXEC Enter VLAN number: (1-4095) 1 -----------------------------------------------------------IGMP Snoop vlan 1 statistics: -----------------------------------------------------------rxIgmpValidPkts: 0 rxIgmpInvalidPkts: 0 rxIgmpGenQueries: 0 rxIgmpGrpSpecificQueries: 0 rxIgmpLeaves: 0 rxIgmpReports: 0 txIgmpReports: 0 txIgmpGrpSpecificQuer
Table 61 VRRP statistics Field Description vrrpInAdvers The total number of VRRP advertisements that have been received. vrrpOutAdvers The total number of VRRP advertisements that have been sent. vrrpBadVersion The total number of VRRP advertisements that had a bad version number. vrrpBadAddress The total number of VRRP advertisements that had a bad address. vrrpBadPassword The total number of VRRP advertisements that had a bad password.
GEA Layer 3 statistics The following command displays GEA statistics: show ip gea Command mode: All except User EXEC GEA L3 statistics: Max L3 table size Number of L3 entries used : 4096 : 9 Max LPM table size : Number of LPM entries used : Max block in LPM table : Number of blocks used in LPM table: 4097 31 255 24 Management Processor statistics The following table describes the MP-specific Statistics commands. The following sections provide more detailed information and commands.
UDP statistics The following command displays UDP statistics: show mp udp-block Command mode: All except User EXEC All UDP allocated control blocks: 161: listen The following table describes the User Datagram Protocol (UDP) control block (UCB) statistics shown in this example: Table 65 UDP statistics Description Example Statistic Control block 161 State listen CPU statistics The following command displays the CPU utilization statistics: show mp cpu Command mode: All except User EXEC CPU utilization: c
ACL statistics This option displays statistics for the selected ACL. show access-control list <1-4096> counters Command mode: All Hits for ACL 1, port 20: 26057515 Hits for ACL 2, port 21: 26057497 ACL meter statistics This option displays statistics for the selected ACL meter.
Table 68 SNMP statistics Statistics Description snmpInASNParseErrs The total number of ASN.1 (Abstract Syntax Notation One) or BER (Basic Encoding Rules), errors encountered by the SNMP protocol entity when decoding SNMP messages received. The Open Systems Interconnection (OSI) method of specifying abstract objects is called ASN.1 (Abstract Syntax Notation One, defined in X.
Table 68 SNMP statistics Statistics Description snmpOutBadValues The total number of SNMP Protocol Data Units (PDUs), which were generated by the SNMP protocol entity and for which the value of the error-status field is badValue. snmpOutReadOnlys Not in use. snmpOutGenErrs The total number of SNMP Protocol Data Units (PDUs), which were generated by the SNMP protocol entity and for which the value of the error-status field is genErr.
The following table describes the NTP statistics: Table 69 NTP statistics Statistics Description Primary Server Requests Sent: The total number of NTP requests the switch sent to the primary NTP server to synchronize time. Responses Received: The total number of NTP responses received from the primary NTP server. Updates: The total number of times the switch updated its time based on the NTP responses received from the primary NTP server.
Configuration Commands Introduction The Configuration commands are available only from an administrator login. They include commands for configuring every aspect of the GbE2 Interconnect Switch. Changes can be saved to non-volatile memory (NVRAM). The following table describes the basic Configuration commands. The following sections provide more detailed information and commands. Table 71 Configuration commands Command Usage show running-config Dumps current configuration to a script file.
Table 72 System Configuration commands Command Usage system idle <1-60> Sets the idle timeout for CLI sessions, from 1 to 60 minutes. The default is 5 minutes. This setting affects both the console port and Telnet port. Command mode: Global configuration [no] system notice <1-1024 characters multi-line> <’-‘ to end> Displays login notice immediately before the “Enter password:” prompt. This notice can contain up to 1024 characters and new lines.
Table 73 Syslog Configuration commands Command Description [no] logging log {} Displays a list of features for which syslog messages can be generated. You can choose to enable/disable specific features or enable/disable syslog on all available features. Features include: • console • system • mgmt • cli • stg • vlan • ssh • vrrp • ntp • hotlink • ip • web • ospf • rmon • ufd • 802.1x • cfg Command mode: Global configuration show logging Displays the current syslog settings.
Table 74 SSHD Configuration commands Command Description ssh generate-server-key Generates the RSA server key. The switch creates this key automatically while configuring the switch with Secure Shell (SSH). You can generate the key manually by using this command if you need to overwrite the key for security reasons. The command will take effect immediately. Command mode: Global configuration ssh port Sets the SSH server port number.
Table 75 RADIUS Server Configuration commands Command Description radius-server enable Enables the RADIUS server. Command mode: Global configuration no radius-server enable Disables the RADIUS server. This is the default. Command mode: Global configuration show radius-server Displays the current RADIUS server parameters. Command mode: All IMPORTANT: If RADIUS is enabled, you must login using RADIUS authentication when connecting via the console or Telnet/SSH/HTTP/HTTPS.
Table 76 TACACS+ Server Configuration commands Command Description [no] tacacs-server telnet-backdoor Enables or disables the TACACS+ back door for telnet. The telnet command also applies to SSH/SCP connections and the Browser-based Interface (BBI). This command does not apply when secure backdoor is enabled. Command mode: Global configuration [no] tacacs-server secure-backdoor Enables or disables the TACACS+ back door using secure password for telnet/SSH/ HTTP/HTTPS.
Table 77 NTP Server Configuration commands Command Description ntp timezone Prompts for the NTP time zone offset from Greenwich Mean Time (GMT), in hours and minutes. The offset format is HH:MM. Command mode: Global configuration [no] ntp daylightsavings Disables or enables daylight saving time in the system clock. When enabled, the switch will add an extra hour to the system clock so that it is consistent with the local clock. By default, this option is disabled.
Table 78 System SNMP Configuration commands Command Description snmp-server writecommunity <1-32 characters> Configures the SNMP write community string. The write community string controls SNMP “set” and “get” access to the switch. It can have a maximum of 32 characters. The default write community string is private. Command mode: Global configuration snmp-server timeout <1- Sets the timeout value for the SNMP state machine. The range is 1-30 minutes. The 30> default value is 5 minutes.
Table 79 SNMPv3 Configuration commands Command Description snmp-server target-address <1-16> Configures the destination address and user security levels for outgoing notifications. This is also called the transport endpoint. The range is 1-16. Command mode: Global configuration snmp-server target-parameters Configures SNMP parameters, consisting of message processing model, security model, security level, and security name information.
SNMPv3 View configuration The following table describes the SNMPv3 View Configuration commands. Table 81 SNMPv3 View Configuration commands Command Description snmp-server view <1-128> name <1-32 characters> Defines the name for a family of view subtrees up to a maximum of 32 characters.
Table 82 View-based Access Control Configuration commands Command Description snmp-server access <1-32 notify-view <1-32 characters> Defines a 32 character long notify view name that allows you notify access to the MIB view. Command mode: Global configuration no snmp-server access <1-32> Deletes the View-based Access Control entry. Command mode: Global configuration show snmp-server access <1-32> Displays the View-based Access Control configuration.
SNMPv3 Target Address Table configuration These commands allow you to set passwords and display current user statistics. Passwords can be a maximum of 15 characters. To disable a user, set the password to null. The following table describes the SNMPv3 Target Address Table Configuration commands.
Table 86 SNMPv3 Target Parameters Table Configuration commands Command Description snmp-server target-parameters <1-16> level {noAuthNoPriv|authNoPriv|authPriv} Selects the level of security to be used when generating the SNMP messages using this entry. The level noAuthNoPriv means that the SNMP message will be sent without authentication and without using a privacy protocol. The level authNoPriv means that the SNMP message will be sent with authentication but without using a privacy protocol.
Table 88 System Access Configuration commands Command Description access telnet port Sets an optional telnet server port number for cases where the server listens for telnet sessions on a non-standard port. Command mode: Global configuration access tftp-port Sets an optional telnet server port number for cases where the server listens for TFTP sessions on a non-standard port.
User ID configuration The following table describes the User ID Configuration commands. Table 91 User ID Configuration commands Command Description access user <1-10> level {user|operator|administrator} Sets the Class-of-Service to define the user’s authority level. Command mode: Global configuration access user <1-10> name <1-8 characters> Defines the user name of maximum eight characters.
Port configuration Use the port configuration commands to configure settings for individual switch ports. The following table describes the Port Configuration commands. The following sections provide more detailed information and commands. Table 93 Port Configuration commands Command Description interface port {} Enter Interface Port configuration mode for the selected port. Command mode: Global configuration dot1p <0-7> Configures the port’s 802.1p priority level.
Port link configuration Use these commands to set port parameters for the port link. Link commands are described in the following table. Using these commands, you can set port parameters such as speed, duplex, flow control, and negotiation mode for the port link. The following table describes the Gigabit Link Configuration commands. Table 94 Gigabit Link Configuration commands Command Description speed {10|100|1000|auto} Sets the link speed. Not all options are valid on all ports.
ACL Port Metering configuration The following table describes the ACL Port Metering Configuration commands. Table 96 ACL Port Metering Configuration commands Command Description access-control meter <1-63> committed-rate <1000-1000000> Configures the committed rate, in Kilobits per second. The committed rate must be a multiple of 64. Command mode: Interface port access-control meter <1-63> maximum-burst-size <32-4096> Configures the maximum burst size, in Kilobits.
ACL Port Re-Mark In-Profile configuration The following table describes the ACL Port Re-Mark In-Profile Configuration commands. Table 98 ACL Port Re-Mark In-Profile Configuration commands Command Description access-control re-mark <1-63> in-profile dscp <0-63> Sets the DiffServ Code Point (DSCP) of In-Profile packets to the selected value. Command mode: Interface port default access-control re-mark <1-63> Resets the update DSCP parameters to their default values.
Layer 2 configuration The following table describes the Layer 2 Configuration commands. The following sections provide more detailed information and commands. Table 101 L2 Configuration commands Command Description vlan {<1-4095>} Enter VLAN configuration mode. Command mode: Global configuration [no] spanning-tree uplinkfast Enables or disables Fast Uplink Convergence, which provides rapid Spanning Tree convergence to an upstream switch during failover.
Table 103 802.1x Global Configuration commands Command Description dot1x transmit-interval {<1-65535>} Sets the time, in seconds, the authenticator waits for an EAPResponse/Identity frame from the supplicant (client) before retransmitting an EAP-Request/Identity frame. The default value is 30 seconds.
Table 104 802.1x Global Configuration commands Command Description dot1x server-timeout {<1-65535>} Sets the time, in seconds, the authenticator waits for a response from the RADIUS server before declaring an authentication timeout. The default value is 30 seconds. Command mode: Interface port dot1x max-request {<1-10>} Sets the maximum number of times the authenticator retransmits an EAPRequest packet to the supplicant (client). The default value is 2.
Table 105 Multiple Spanning Tree Configuration commands Command Description show spanning-tree mstp mrst Displays the current RSTP/MSTP configuration. Command mode: All NOTE: • • • • IEEE 802.1w standard-based RSTP implementation runs on one STG (i.e. same as one spanning tree instance) only. As a result, if ‘rstp’ mode is selected, then only a single RSTP instance (default for STG 1) is supported for all VLANs, including the Default VLAN 1.
Table 107 CIST Bridge Configuration commands Command Description spanning-tree mstp cistbridge maximum-age {<6-40>} Configures the CIST bridge maximum age. The maximum age parameter specifies the maximum time the bridge waits without receiving a configuration bridge protocol data unit before it reconfigures the MSTP network. The range is 6 to 40 seconds, and the default is 20 seconds. This command does not apply to RSTP. See the "Bridge Spanning Tree configuration" section for more information.
Table 108 CIST Port Configuration commands Command Description spanning-tree mstp cist linktype {auto|p2p|shared} Defines the type of link connected to the port, as follows: auto: Configures the port to detect the link type, and automatically match its settings. p2p: Configures the port for Point-To-Point protocol. shared: Configures the port to connect to a shared medium (usually a hub). The default link type is auto.
Bridge Spanning Tree configuration Spanning tree bridge parameters can be configured for each Spanning Tree Group. STP bridge parameters include: • Bridge priority • Bridge hello time • Bridge maximum age • Forwarding delay • Current bridge configuration The following table describes the Bridge Spanning Tree Configuration commands. Table 110 Bridge Spanning Tree Configuration commands Command Description spanning-tree stp {<1-32>} bridge Configures the bridge priority.
Spanning Tree port configuration By default for STP/PVST+, Spanning tree is turned Off for downlink ports (1-16), and turned On for cross-connect ports (17-18), and uplink ports (19-24). By default for RSTP/MSTP, Spanning tree is turned On for all downlink ports (1-16), all cross-connect ports (17-18), and all uplink ports (19-24), with downlink ports configured as Edge ports. Spanning tree port parameters are used to modify STP operation on an individual port basis.
Forwarding Database configuration The following table describes the Forwarding Database Configuration commands. Table 112 FDB Configuration commands Command Description aging <0-65535> Configures the aging value for FDB entries. The default value is 300. Command mode: Global configuration show mac-addresstable Displays current FDB parameters. Command mode: All except User EXEC Static FDB configuration The following table describes the Static FDB Configuration commands.
Table 114 Trunk Group Configuration commands Command Description no portchannel {<1-12>} enable Disables the current trunk group. Command mode: Global configuration no portchannel {<1-12>} Removes the current trunk group configuration. Command mode: Global configuration show portchannel {<1-12>} Displays current trunk group parameters. Command mode: All Layer 2 IP Trunk Hash configuration Trunk hash parameters are set globally for the GbE2 Interconnect Switch.
Link Aggregation Control Protocol configuration The following table describes the LACP Configuration commands. Table 116 LACP Configuration commands Command Description lacp system-priority {<1-65535>} Defines the priority value (1 through 65535) for the switch. Lower numbers provide higher priority. The default value is 32768. Command mode: Global configuration lacp timeout {short|long} Defines the timeout period before invalidating LACP data from a remote partner.
Hot Links configuration The following table describes the Hot Links Configuration commands. Table 118 Hot Links Configuration commands Command Description [no] hotlinks fdb-update Enables or disables FDB Update, which allows the GbE2 to send FDB and MAC update packets over the active interface. The default value is disabled. hotlinks enable Globally turns Hot Links on. Command mode: Global configuration no hotlinks enable Globally turns Hot Links off. The default option is off.
Hot Links Master configuration The following table describes the Hot Links Master Configuration commands. Table 120 Hot Links Master Configuration commands Command Description [no] hotlinks trigger {<1-4>} master port Adds the selected port to the Master interface. Command mode: Global configuration [no] hotlinks trigger {<1-4>} master portchannel <1-12> Adds the selected trunk to the Master interface.
Table 122 VLAN Configuration commands Command Description no vlan {<1-4095>} Deletes this VLAN. Command mode: VLAN configuration show vlan [<1-4095>] Displays the current VLAN configuration. Command mode: All IMPORTANT: All ports must belong to at least one VLAN. Any port which is removed from a VLAN and which is not a member of any other VLAN is automatically added to default VLAN 1. You cannot remove a port from VLAN 1 if the port has no membership in any other VLAN.
Table 124 IP Interface Configuration commands Command Description vlan {<1-4095>} Configures the VLAN number for this interface. Each interface can belong to one VLAN, though any VLAN can have multiple IP interfaces in it. Command mode: Interface IP [no] relay Enables or disables the BOOTP relay on this interface. It is enabled by default. Command mode: Interface IP enable Enables this IP interface. Command mode: Interface IP no enable Disables this IP interface.
IP Static Route configuration The following table describes the Static Route Configuration commands. Table 126 Static Route Configuration commands Command Description ip route [] Adds a static route. You will be prompted to enter a destination IP address, destination subnet mask, and gateway address. Enter all addresses using dotted decimal notation.
Network Filter configuration The following table describes the Network Filter Configuration commands. Table 129 Network Filter Configuration commands Command Description ip match-address <1-256> Sets the starting IP address the IP subnet mask for this filter. The default address is 0.0.0.0 This command efines the range of IP addresses that will be accepted by the peer when the filter is enabled.
Table 130 Route Map Configuration commands Command Description [no] weight <1-65534> Sets the weight of the route map. Command mode: Route Map enable Enables the route map. Command mode: Route Map no enable Disables the route map. Command mode: Route Map no route-map <1-32> Deletes the route map. Command mode: Route Map show route-map [<1-32>] Displays the current route configuration.
Table 132 Autonomous System Path Configuration commands Command Description show route-map <1-32> as-pathlist {<1-8>} Displays the current Autonomous System filter configuration. Command mode: All except User EXEC Routing Information Protocol configuration The RIP Menu is used for configuring Routing Information Protocol parameters. This option is turned off by default. The following table describes the basic RIP Configuration commands.
Table 134 RIP Interface Configuration commands Command Description [no] ip rip triggered Enables or disables Triggered Updates. Triggered Updates are used to speed convergence. When enabled, Triggered Updates force a router to send update messages immediately, even if it is not yet time for the update message. The default value is disabled. Command mode: Interface IP [no] ip rip multicastupdates Enables or disables multicast updates of the routing table (using address 224.0.0.9).
Table 135 OSPF Configuration commands Command Description lsdb-limit <0-2000> Sets the link state database limit. Command mode: Router OSPF [no] default-information <116777215> Sets one default route among multiple choices in an area. Command mode: Router OSPF enable Enables OSPF. Command mode: Router OSPF no enable Disables OSPF. Command mode: Router OSPF show ip ospf Displays the current OSPF configuration settings.
Table 136 OSPF Area Index Configuration commands Command Description no area <0-2> enable Disables the OSPF area. Command mode: Router OSPF no area <0-2> Deletes the OSPF area. Command mode: Router OSPF show ip ospf area <0-2> Displays the current OSPF configuration. Command mode: All except User EXEC OSPF Summary Range configuration The following table describes the OSPF Summary Range Configuration commands.
Table 138 OSPF Interface Configuration commands Command Description ip ospf transit-delay <1-3600> Configures the transit delay in seconds. Command mode: Interface IP ip ospf retransmit-interval <1-3600> Configures the retransmit interval in seconds. Command mode: Interface IP [no] ip ospf key Sets the authentication key to clear the password. Command mode: Interface IP [no] ip ospf message-digestkey <1-255> Assigns an MD5 key to the interface.
OSPF Host Entry configuration The following table describes the OSPF Host Entry Configuration commands. Table 140 OSPF Host Entry Configuration commands Command Description host <1-128> address Configures the base IP address for the host entry. Command mode: Router OSPF host <1-128> area <0-2> Configures the area index of the host. Command mode: Router OSPF host <1-128> cost <1-65535> Configures the cost value of the host.
IGMP configuration IGMP Snooping allows the switch to forward multicast traffic only to those ports that request it. IGMP Snooping prevents multicast traffic from being flooded to all ports. The switch learns which server hosts are interested in receiving multicast traffic, and forwards it only to ports connected to those servers. IGMP snooping configuration The following table describes the basic IGMP Snooping Configuration commands. The following sections provide more detailed information and commands.
IGMP static multicast router configuration The following table describes the Static Multicast Router Configuration commands. NOTE: When you configure a static multicast router on a VLAN, the process of learning multicast routers is disabled for that VLAN.
Table 146 IGMP Filter Definition commands Command Description show ip igmp profile <1-16> Displays the current IGMP filter. Command mode: All except User EXEC IGMP filtering port configuration The following table describes the IGMP Port Filtering Configuration commands. Table 147 IGMP Filtering Port commands Command Description [no] ip igmp filtering Enables or disables IGMP Filtering on this port. Command mode: Interface port ip igmp profile <1-16> Adds an IGMP filter to this port.
Bootstrap Protocol Relay configuration Bootstrap Protocol (BOOTP) Relay is used to allow hosts to obtain their configurations from a Dynamic Host Configuration Protocol (DHCP) server. The BOOTP configuration enables the switch to forward a client request for an IP address to two DHCP/BOOTP servers with IP addresses that have been configured on the GbE2 Interconnect Switch. BOOTP relay is turned off by default. The following table describes the BOOTP Configuration commands.
VRRP Virtual Router configuration Virtual Router commands are used for configuring up to 128 virtual routers for this switch. A virtual router is defined by its virtual router ID and an IP address. On each VRRP-capable routing device participating in redundancy for this virtual router, a virtual router will be configured to share the same virtual router ID and IP address. Virtual routers are disabled by default. The following table describes the Virtual Router Configuration commands.
Table 151 Virtual Router Configuration commands Command Description show ip vrrp virtual-router <1-255> Displays the current configuration information for this virtual router. Command mode: All except User EXEC VRRP Virtual Router Priority Tracking configuration These commands are used to modify the priority system used when electing the master router from a pool of virtual routers. Various tracking criteria can be used to bias the election results.
VRRP Virtual Router Group configuration The Virtual Router Group commands are used for associating all virtual routers into a single logical virtual router, which forces all virtual routers on the switch to either be master or backup as a group. A virtual router is defined by its virtual router ID and an IP address. On each VRRP-capable routing device participating in redundancy for this virtual router, a virtual router will be configured to share the same virtual router ID and IP address.
VRRP Virtual Router Group Priority Tracking configuration NOTE: If Virtual Router Group Tracking is enabled, then the tracking option will be available only under group option. The tracking setting for the other individual virtual routers is ignored. The following table describes the Virtual Router Group Priority Tracking Configuration commands.
VRRP Tracking configuration These commands are used for setting weights for the various criteria used to modify priority levels during the master router election process. Each time one of the tracking criteria is met, the priority level for the virtual router is increased. NOTE: These priority tracking options only define increment values. These options do not affect the VRRP master router election process until options under VRRP Virtual Router Priority Tracking are enabled.
Access Control configuration Use these commands to create Access Control Lists (ACLs), ACL Blocks, and ACL Groups. ACLs define matching criteria used for IP filtering and Quality of Service functions. Access Control List configuration These commands allow you to define filtering criteria for each Access Control List (ACL). The following table describes the basic ACL Configuration commands.
ACL IP Version 4 Filter configuration These commands allow you to define IPv4 matching criteria for an ACL. The following table describes the IP version 4 Filter Configuration commands. Table 160 IPv4 Filter Configuration commands Command Description access-control list <1-4096> ipv4 source-ip-address {} Defines a source IP address for the ACL. If defined, traffic with this source IP address will match this ACL. Specify an IP address in dotted decimal notation.
Table 161 TCP/UDP Filter Configuration commands Command Description access-control list <1-4096> tcp-udp destination-port <1-65535> {} Defines a destination port for the ACL. If defined, traffic with the specified TCP or UDP destination port will match this ACL. Specify the port number, just as with source-port above. Command mode: Global configuration access-control list <1-4096> tcp-udp flags Defines a TCP/UDP flag for the ACL.
ACL Group configuration These commands allow you to compile one or more ACLs and ACL Blocks into an ACL Group. Once you create an ACL Group, you can assign the ACL Group to one or more ports. The following table describes the ACL Group Configuration commands. Table 164 ACL Group Configuration commands Command Description access-control group <1-4096> list Adds the selected ACL or ACL Block to the ACL Group.
Table 166 RMON History commands Command Description show rmon history Displays the current RMON History parameters. Command mode: All RMON event configuration The following table describes the RMON Event commands. Table 167 RMON Event commands Command Description rmon event <1-65535> description <1-127 characters> Enter a text string to describe the event. The description can have a maximum of 127 characters.
Table 168 RMON Alarm commands Command Description rmon alarm <1-65535> risinglimit <-2147483647 to 2147483647> Configures the rising threshold for the sampled statistic. When the current sampled value is greater than or equal to this threshold, and the value at the last sampling interval was less than this threshold, a single event is generated. Command mode: Global configuration rmon alarm <1-65535> fallinglimit <-2147483647 to 2147483647> Configures the falling threshold for the sampled statistic.
Port-based port mirroring The following table describes the port-based Port Mirroring Configuration commands. Table 170 Port Mirroring Configuration commands Command Description port-mirroring monitor-port mirroring-port {in|out|both} Adds the port to be mirrored. This command also allows you to enter the direction of the traffic.
Link to Monitor configuration The following table describes the Link to Monitor (LtM) commands. The LtM can consist of only one uplink port (ports 19-24) or a single trunk containing only uplink ports. Table 173 Link to Monitor commands Command Description ufd fdp ltm port Adds a port to the LtM. Only uplink ports (19-24) are allowed in the LtM. Command mode: Global configuration no ufd fdp ltm port Removes a port from the LtM.
Saving the active switch configuration When the copy running-Global configuration tftp command is used, the active configuration commands of the switch will be uploaded to the specified script configuration file on the TFTP server. To start the switch configuration upload, at the prompt, enter: Switch(config)# copy running-config startup-config NOTE: The output file is formatted with line-breaks but no carriage returns.
Operations Commands Introduction Operations-level commands are used for making immediate and temporary changes to switch configuration. Operations commands are used for bringing ports temporarily in and out of service. These commands are available only from an administrator and operator login. The following table describes basic Operations commands. The following sections provide more detailed information and commands.
Operations-level port 802.1x options Operations-level port 802.1x options are used to temporarily set 802.1x parameters for a port. Table 177 Operations-Level Port 802.1x commands Command Description interface port dot1x init Re-initializes the 802.1x access-control parameters for the port. The following actions take place, depending on the 802.1x port configuration: • force unauth - the port is placed in unauthorized state, and traffic is blocked.
Boot Options Introduction You must be logged in to the switch as the administrator to use the Boot Options commands. The Boot Options allow you to perform the following functions: • Select a switch software image to be used when the switch is next reloaded. • Select a configuration block to be used when the switch is next reloaded. • Download or upload a new software image to the switch via FTP/TFTP. Each of the Boot Options commands is discussed in the following sections.
4. Enter the name of the new software file on the server: Source file name: The exact form of the name will vary by server. However, the file location is normally relative to the FTP or TFTP directory. 5. Enter the user name, if you are using a FTP server: Enter username for FTP server or hit return for TFTP server: 6. Enter the password for the FTP server (if prompted): Enter password for username on FTP server: 7. The system prompts you to confirm your request.
2. The system prompts you for information. Enter the desired image: Enter name of switch software image to be uploaded ["image1"|"image2"|"boot"]: 3. Enter the name or the IP address of the FTP/TFTP server: Address or name of remote host: 4. Enter the name of the file into which the image will be uploaded on the FTP/TFTP server: Destination file name: 5.
Resetting the switch You can reset the switch to make your software image file and configuration block changes occur. Resetting the switch causes the Spanning Tree Protocol to restart. This process can be lengthy, depending on the topology of your network. To reset the switch, at the prompt, enter: >> Switch# reload You are prompted to confirm your request.
Maintenance Commands Introduction The Maintenance commands are used for debugging purposes, enabling you to generate a technical support dump of the critical state information in the switch, and to clear entries in the Forwarding Database and the Address Resolution Protocol (ARP) and routing tables. These commands are available only from an administrator login.
Debugging options The Miscellaneous Debug commands display trace buffer information about events that can be helpful in understanding switch operation. You can view the following information using Debug commands: • Events traced by the management processor (MP) • Events traced to a buffer area when a reset occurs If the switch resets for any reason, the management processor (MP) trace buffer is saved into the snap trace buffer area.
IP Route Manipulation options The following table describes the IP Route Manipulation commands: Table 183 IP Route Manipulation commands Command Usage show ip route address Shows a single route by destination IP address. Command mode: All except User EXEC show ip route gateway Shows routes to a default gateway. Command mode: All except User EXEC show ip route type Shows routes of a single type.
Uuencode flash dump show flash-dump-uuencode Command mode: All Using this command, dump information is presented in uuencoded format. This format makes it easy to capture the dump information as a file or a string of characters. If you want to capture dump information to a file, set your communication software on your workstation to capture session data prior to issuing the command. This will ensure that you do not lose any information.
Panic command The panic command causes the switch to dump state information immediately to flash memory and reboot. To select panic, at the prompt, enter: >> Switch# debug panic A FLASH dump already exists. Confirm replacing existing dump and reboot [y/n]: Enter y to confirm the command: Confirm dump and reboot [y/n]: y A list of messages is displayed: Starting system dump...done. Reboot at 11:54:08 Wednesday February 28, 2007... . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . .
Index 8 802.1x information, 32 802.
N Network Time Protocol (NTP): synchronization, 85; time zone, 85 null modem cable, 8 poisoned reverse, as used with split horizon: poisoned reverse, 116 Routing Information Protocol (RIP): version 1 parameters, 116 split horizon: split horizon, 116 O S online help, 14 operating mode, configuration, 95 Operations-level port options, 140, 141 Operations-level VRRP options, 141 ospf: interface, 117; Not-So-Stubby Area, 118; stub area, 118; transit area, 118 OSPF configuration, 117 OSPF information, 43 sa
