- DL manuals
- D-Link
- Switch
- DES-3028
- Cli Reference Manual
D-Link DES-3028 Cli Reference Manual - Sing The
DES-3028 DES-3028P DES-3028G DES-3052 DES-3052P Layer 2 Fast Ethernet Switch CLI Reference Manual
3
2
U
SING THE
C
ONSOLE
CLI
The DES-3028/28P/28G/52/52P support a console management interface that allows the user to connect to the Switch’s
management agent via a serial port and a terminal or a computer running a terminal emulation program. The console can also be
used over the network using the TCP/IP Telnet protocol. The console program can be used to configure the Switch to use an
SNMP-based network management software over the network.
This chapter describes how to use the console interface to access the Switch, change its settings, and monitor its operation.
Note: Switch configuration settings are saved to non-volatile RAM using the save command. The current
configuration will then be retained in the Switch’s NV-RAM, and reloaded when the Switch is rebooted. If
the Switch is rebooted without using the save command, the last configuration saved to NV-RAM will be
loaded.
Connecting to the Switch
The console interface is used by connecting the Switch to a VT100-compatible terminal or a computer running an ordinary
terminal emulator program (e.g., the HyperTerminal program included with the Windows operating system) using an RS-232C
serial cable. Your terminal parameters will need to be set to:
VT-100 compatible
9600 baud
8 data bits
No parity
One stop bit
No flow control
Users can also access the same functions over a Telnet interface. Once users have set an IP address for your Switch, users can use
a Telnet program (in VT-100 compatible terminal mode) to access and control the Switch. All of the screens are identical, whether
accessed from the console port or from a Telnet interface.
After the Switch reboots and users have logged in, the console looks like this:
DES-3028P Fast Ethernet Switch Command Line Interface
Firmware: Build 2.00.B23
Copyright(C) 2009 D-Link Corporation. All rights reserved.
username:
Figure 2-1. Initial Console Screen after logging in
Commands are entered at the command prompt, DES-3028P:4#.
There are a number of helpful features included in the CLI. Entering the ? command will display a list of all of the top-level
commands.
Summary of DES-3028
Page 1
Cli reference manual product model : des-3028/des-3028p/des-3028g/des-3052/des-3052p managed 10/100mbps fast ethernet switch release 2.
Page 2
_________________________________________________________________________________ information in this document is subject to change without notice. © 2009 d-link corporation. All rights reserved. Reproduction in any manner whatsoever without the written permission of d-link computer corporation is s...
Page 3
Table of contents introduction ..........................................................................................................................................................1 using the console cli...............................................................................................
Page 4
Time range commands.....................................................................................................................................182 safeguard engine commands......................................................................................................................1...
Page 5
Dos prevention commands ...........................................................................................................................311 ip-mac-port binding commands ...................................................................................................................316 l...
Page 6: Ntroduction
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 1 1 i ntroduction the switch can be managed through the switch’s serial port, telnet, or the web-based management agent. The command line interface (cli) can be used to configure and manage the switch v...
Page 7
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 2 setting the switch’s ip address each switch must be assigned its own ip address, which is used for communication with an snmp network manager or other tcp/ip application (for example bootp, tftp). The...
Page 8: Sing The
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 3 2 u sing the c onsole cli the des-3028/28p/28g/52/52p support a console management interface that allows the user to connect to the switch’s management agent via a serial port and a terminal or a comp...
Page 9
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 4 . ? Cable_diag ports clear clear address_binding dhcp_snoop binding_entry ports clear arptable clear counters clear dos_prevention counters clear fdb clear igmp_snooping data_driven_group clear log cl...
Page 10
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 5 des-3028p:4#config account command: config account next possible completions: des-3028p:4#config account command: config account next possible completions: des-3028p:4# figure 2-4. Using the up arrow ...
Page 11
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 6 des-3028p:4#show command: show next possible completions: 802.1p 802.1x access_profile account acct_client address_binding arpentry asymmetric_vlan auth_client auth_diagnostics auth_session_statistics...
Page 12: Ommand
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 7 3 c ommand s yntax the following symbols are used to describe how command entries are made and values and arguments are specified in this manual. Note: all commands are case-sensitive. Be sure to disa...
Page 13
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 8 {braces} however the effect of the system reset is dependent on which, if any, value is specified. Therefore, with this example there are three possible outcomes of performing a system reset. See the ...
Page 14: Asic
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 9 4 b asic s witch c ommands the basic switch commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. Command parameters enable password e...
Page 15
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 10 enable password encryption purpose used to enable password encryption on a user account. Syntax enable password encryption description the user account configuration information will be stored in the...
Page 17
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 12 des-3028p:4#config account dlink command: config account dlink enter a old password:**** enter a case-sensitive new password:**** enter the new password again for confirmation:**** success. Des-3028p...
Page 18
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 13 des-3028p:4#delete account system command: delete account system success. Des-3028p:4# show session purpose used to display a list of currently logged-in users. Syntax show session description this c...
Page 19
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 14 example usage: to display the way that the users logged in: des-3028p:4#show session command: show session id login time live time from level name -- -------------------- ----------- ----------- ----...
Page 20
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 15 ctrl+c esc q quit space n next page enter next entry a all show serial_port purpose used to display the current serial port settings. Syntax show serial_port description this command displays the cur...
Page 21
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 16 success. Des-3028p:4# enable clipaging purpose used to pause the scrolling of the console screen when a command displays more than one page. Syntax enable clipaging description this command is used w...
Page 22
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 17 enable telnet syntax enable telnet description this command is used to enable the telnet protocol on the switch. The user can specify the tcp or udp port number the switch will use to listen for teln...
Page 23
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 18 to connect to a device through telnet with an ip address of 10.53.13.99: des-3028p:4#telnet 10.53.13.99 tcp_port 23 command: telnet 10.53.13.99 tcp_port 23 enable web purpose used to enable the http-...
Page 25
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 20 to force the switch to restart: des-3028p:4#reboot force_agree command: reboot force_agree please wait, the switch is rebooting... Reset purpose used to reset the switch to the factory default settin...
Page 26
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 21 des-3028p:4#login command: login username: logout purpose used to log out a user from the switch’s console. Syntax logout description this command terminates the current user’s session on the switch’...
Page 27: Odify
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 22 5 m odify b anner and p rompt c ommands administrator level users can modify the login banner (greeting message) and command prompt by using the commands described below. Command parameters config co...
Page 28
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 23 config greeting _message message). Parameters default –if the user enters default to the modify banner command, then the banner will be reset to the original factory banner. To open the banner editor...
Page 29
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 24 show greeting_message purpose used to view the currently configured greeting message configured on the switch. Syntax show greeting_message description this command is used to view the currently conf...
Page 31
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 26 config ports restrictions only administrator-level users can issue this command. Example usage: to configure the speed of ports 1 3 to be 10 mbps, full duplex, with learning and state enabled: des-3...
Page 32
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 27 example usage: to display the configuration of all ports on a standalone switch: des-3028p:4#show ports command show ports port state/ settings connection address mdi speed/duplex/flowctrl speed/dupl...
Page 33
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 28 example usage: to display the configuration of all ports on a standalone switch, with description: des-3028p:4#show ports description command: show ports description port state/ settings connection a...
Page 34: Ort
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 29 7 p ort s ecurity c ommands the switch’s port security commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. Command parameters confi...
Page 35
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 30 des-3028p:4#config port_security ports 1-5 admin_state enable max_learning_addr 5 lock_address_mode deleteonreset command: config port_security ports 1-5 admin_state enable max_learning_addr 5 lock_a...
Page 36
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 31 des-3028p:4# clear port_security_entry port 6 command: clear port_security_entry port 6 success. Des-3028p:4# show port_security purpose used to display the current port security configuration. Synta...
Page 37
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 32 to enable the port security trap log setting: des-3028p:4#enable port_security trap_log command: enable port_security trap_log success. Des-3028p:4# disable port_security trap_log purpose used to dis...
Page 38: Etwork
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 33 8 n etwork m anagement (snmp) c ommands the des-3028/28g/28p/52/52p support the simple network management protocol (snmp) versions 1, 2c, and 3. Users can specify which version of the snmp users want...
Page 40
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 35 create snmp user an alphanumeric sting of between 8 and 16 characters that will be used to authorize the agent to receive packets for the host. enter an alphanumeric sting of exactly 32 character...
Page 41
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 36 example usage: to delete a previously entered snmp user on the switch: des-3028p:4#delete snmp user dlink command: delete snmp user dlink success. Des-3028p:4# show snmp user purpose used to display ...
Page 42
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 37 create snmp view restrictions only administrator-level users can issue this command. Example usage: to create an snmp view: des-3028p:4#create snmp view dlinkview 1.3.6 view_type included command: cr...
Page 43
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 38 des-3028p:4#show snmp view command: show snmp view vacm view table settings view name subtree view type -------------------- ----------------------- ---------- readview 1 included writeview 1 include...
Page 44
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 39 example usage: to create the snmp community string “dlink:” des-3028p:4#create snmp community dlink view readview read_write command: create snmp community dlink view readview read_write success. Des...
Page 45
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 40 des-3028p:4#show snmp community command: show snmp community snmp community table community name view name access right ------------------ ------------------- ------------ private communityview read_...
Page 47
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 42 des-3028p:4#create snmp group sg1 v3 noauth_nopriv read_view v1 write_view v1 notify_view v1 command: create snmp group sg1 v3 noauth_nopriv read_view v1 write_view v1 notify_view v1 success. Des-302...
Page 48
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 43 des-3028p:4#show snmp groups command: show snmp groups vacm access table settings group name : group3 readview name : readview writeview name : writeview notify view name : notifyview security model ...
Page 49
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 44 create snmp host description the create snmp host command creates a recipient of snmp traps generated by the switch’s snmp agent. Parameters the ip address of the remote management station that wil...
Page 50
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 45 delete snmp host parameters the ip address of a remote snmp manager that will receive snmp traps generated by the switch’s snmp agent. Restrictions only administrator-level users can issue this com...
Page 51
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 46 create trusted_host management vlan. If no ip addresses are specified, then there is nothing to prevent any ip address from accessing the switch, provided the user knows the username and password. Pa...
Page 52
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 47 example usage: to display the list of trust hosts: des-3028p:4#show trusted_host command: show trusted_host management stations ip address/netmask ----------------------- 10.53.13.94 total entries: 1...
Page 53
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 48 success. Des-3028p:4# delete trusted_host all purpose used to delete all trusted host entries made using the create trusted_host ipaddr and create trusted_host network commands above. Syntax delete t...
Page 54
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 49 enable snmp authenticate traps parameters none. Restrictions only administrator-level users can issue this command. Example usage: to turn on snmp authentication trap support: des-3028p:4#enable snmp...
Page 55
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 50 disable snmp authenticate traps purpose used to disable snmp authentication trap support. Syntax disable snmp authenticate traps description this command is used to disable snmp authentication suppor...
Page 56
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 51 config snmp system_location string is accepted if there is no location desired. Restrictions only administrator-level users can issue this command. Example usage: to configure the switch location for...
Page 57
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 52 des-3028p:4#enable rmon command: enable rmon success. Des-3028p:4# disable rmon purpose used to disable rmon on the switch. Syntax disable rmon description this command is used, in conjunction with t...
Page 58: Witch
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 53 9 s witch u tility c ommands the switch utility commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. Command parameters download [fi...
Page 59
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 54 example usage: to download a configuration file: des-3028p:4#download cfg_fromtftp 10.48.74.121 c:\cfg\setting.Txt command: download cfg_fromtftp 10.48.74.121 c:\cfg\setting.Txt connecting to server....
Page 60
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 55 to configure firmware section image 1 as a boot up section: des-3028p:4# config firmware image_id 1 boot_up command: config firmware image_id 1 boot_up success. Des-3028p:4# show firmware information...
Page 61
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 56 show config 1. Basic (serial port, telnet and web management status) 2. Storm control 3. Ip group management 4. Syslog 5. Qos 6. Port mirroring 7. Traffic segmentation 8. Port 9. Port lock 10. 8021x ...
Page 62
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 57 des-3028p:4#show config current_config command: show config current_config ------------------------------------------------------------------- # des-3028p configuration # # firmware: build 2.00.B23 #...
Page 63
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 58 des-3028p:4#upload cfg_totftp 10.48.74.121 c:\cfg\log.Txt command: upload cfg_totftp 10.48.74.121 c:\cfg\log.Txt connecting to server................... Done. Upload configuration...................D...
Page 64
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 59 des-3028p fast ethernet switch command line interface firmware: build 2.00.B23 copyright(c) 2009 d-link corporation. All rights reserved. Des-3028p:4# des-3028p:4# des-3028p:4#download cfg_fromtftp 1...
Page 65
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 60 des-3028p:4#disable autoconfig command: disable autoconfig success. Des-3028p:4# show autoconfig purpose used to display the current autoconfig status of the switch. Syntax show autoconfig descriptio...
Page 66
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 61 des-3028p:4#ping 10.48.74.121 times 4 command: ping 10.48.74.121 reply from 10.48.74.121, time reply from 10.48.74.121, time reply from 10.48.74.121, time reply from 10.48.74.121, time ping statistic...
Page 67: Etwork
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 62 10 n etwork m onitoring c ommands the network monitoring commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. Command parameters sho...
Page 68
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 63 des-3028p:4#show packet ports 2 command: show packet ports 2 port number : 2 frame size frame counts frames/sec frame type total total/sec ------------ ------------ ---------- ---------- --------- --...
Page 70
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 65 five minutes - 14% des-3028p:4# clear counters purpose used to clear the switch’s statistics counters. Syntax clear counters {ports } description this command will clear the counters used by the swit...
Page 71
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 66 show log restrictions none. Example usage: to display the switch history log: des-3028p:4#show log index 1-5 command: show log index 1-5 index data time log text ----- ------------------- -----------...
Page 72
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 67 des-3028p:4#disable syslog command: disable syslog success. Des-3028p:4# show syslog purpose used to display the syslog protocol status as enabled or disabled. Syntax show syslog description the show...
Page 73
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 68 create syslog host numerical facility code 0 kernel messages 1 user-level messages 2 mail system 3 system daemons 4 security/authorization messages 5 messages generated internally by syslog 6 line pr...
Page 74
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 69 des-3028p:4#create syslog host 1 severity all facility local0 command: create syslog host 1 severity all facility local0 success. Des-3028p:4# config syslog host purpose used to configure the syslog ...
Page 75
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 70 numerical facility code parameters 0 kernel messages 1 user-level messages 2 mail system 3 system daemons 4 security/authorization messages 5 messages generated internally by syslog 6 line printer su...
Page 76
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 71 des-3028p:4#config syslog host 1 severity all facility local0 command: config syslog host all severity all facility local0 success. Des-3028p:4# example usage: to configure a syslog host for all host...
Page 77
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 72 show syslog host purpose used to display the syslog hosts currently configured on the switch. Syntax show syslog host {} description the show syslog host command is used to display the syslog hosts t...
Page 78
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 73 des-3028p:4#config log_save_timing time_interval 30 command: config log_save_timing time_interval 30 success. Des-3028p:4# show log_save_timing purpose used to display the method configured for savin...
Page 79: Ultiple
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 74 11 m ultiple s panning t ree p rotocol (mstp) c ommands this switch supports three versions of the spanning tree protocol; 802.1d stp, 802.1w rapid stp and 802.1s mstp. Multiple spanning tree protoco...
Page 80
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 75 command parameters show stp ports {} {instance } show stp instance {} show stp mst_config id each command is listed, in detail, in the following sections. Enable stp purpose used to globally enable s...
Page 81
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 76 config stp version parameters mstp – selecting this parameter will set the multiple spanning tree protocol (mstp) globally on the switch. Rstp selecting this parameter will set the rapid spanning t...
Page 83
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 78 config stp ports switch is configured for rstp, the port will be capable to migrate from 802.1d stp to 802.1w rstp. If the switch is configured for mstp, the port is capable of migrating from 802.1d ...
Page 84
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 79 example usage: to configure stp with path cost auto, hellotime set to 2 seconds, migration enable, and state enable for ports 1-2 of module 1. Des-3028p:4#config stp ports 1-2 externalcost auto hello...
Page 85
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 80 config stp instance_id will add vids to the previously configured stp instance_id. Remove_vlan along with thevid_range parameter, this command will remove vids to the previously configured stp inst...
Page 86
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 81 config stp priority purpose used to update the stp instance configuration syntax config stp priority instance_id description this command is used to update the stp instance configuration settings on ...
Page 87
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 82 des-3028p:4#config stp mst_config_id revision_level 10 name trinity command : config stp mst_config_id revision_level 10 name trinity success. Des-3028p:4# config stp mst_ports purpose used to update...
Page 88
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 83 show stp purpose used to display the switch’s current stp configuration. Syntax show stp description this command displays the switch’s current stp configuration. Parameters none restrictions none. E...
Page 89
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 84 stp bridge global settings --------------------------- stp status : enabled stp version : mstp max age : 20 forward delay : 15 max hops : 20 tx hold count : 6 forwarding bpdu : enabled loopback detec...
Page 90
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 85 show stp instance_id configuration for the cist internally set on the switch. Restrictions none example usage: to display the stp instance configuration for instance 0 (the internal cist) on the swit...
Page 91
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 86 des-3028p:4#show stp mst_config_id command: show stp mst_config_id current mst configuration identification ---------------------------------------------------------- configuration name : [00:53:13:1...
Page 92: Orwarding
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 87 12 f orwarding d atabase c ommands the layer 2 forwarding database commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. Command para...
Page 93
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 88 des-3028p:4#create fdb default 00-00-00-00-01-02 port 5 command: create fdb default 00-00-00-00-01-02 port 5 success. Des-3028p:4# create multicast_fdb purpose used to create a static entry to the mu...
Page 94
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 89 des-3028p:4#config multicast_fdb default 01-00-00-00-00- 01 add 1-5 command: config multicast_fdb default 01-00-00-00-00-01 add 1-5 success. Des-3028p:4# config fdb aging_time purpose used to set the...
Page 95
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 90 delete fdb purpose used to delete an entry to the switch’s forwarding database. Syntax delete fdb description this command is used to delete a previous entry to the switch’s mac address forwarding da...
Page 97
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 92 example usage: to display unicast mac address table: des-3028p:4#show fdb command: show fdb unicast mac address ageing time = 300 vid vlan name mac address port type ---- ------------ ---------------...
Page 98
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 93 des-3028p:4#config multicast port_filtering_mode 1-4 forward_unregistered_groups command: config multicast port_filtering_mode 1-4 forward_unregistered_groups success. Des-3028p:4# show multicast por...
Page 99: Roadcast
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 94 13 b roadcast s torm c ontrol c ommands on a computer network, packets such as multicast packets and broadcast packets continually flood the network as normal procedure. At times, this traffic may in...
Page 100
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 95 config traffic control detected on the switch. The user has two options: drop utilizes the hardware traffic control mechanism, which means the switch’s hardware will determine the packet storm base...
Page 101
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 96 show traffic control purpose used to display current traffic control settings. Syntax show traffic control { } description this command displays the current storm traffic control configuration on the...
Page 102
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 97 example usage: to configure notifications to be sent when a packet storm control has been detected and cleared by the switch. Des-3028p:4# config traffic trap both command: config traffic trap both s...
Page 103: Ommands
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 98 14 c o s c ommands the des-3028/28g/28p/52/52p supports 802.1p priority queuing. The switch has four priority queues. These priority queues are numbered from 3 (class 3) — the highest priority queue ...
Page 104
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 99 each command is listed, in detail, in the following sections. Config bandwidth_control purpose used to configure bandwidth control on a port by-port basis. Syntax config bandwidth_control [] {rx_rate...
Page 105
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 100 des-3028p:4#show bandwidth_control 1-5 command: show bandwidth_control 1-5 bandwidth control table port rx rate tx rate effective rx effective tx (kbit/sec) (kbit/sec) (kbit/sec) (kbit/sec) ---- ---...
Page 106
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 101 show scheduling purpose used to display the currently configured traffic scheduling on the switch. Syntax show scheduling description the show scheduling command will display the current traffic sch...
Page 107
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 102 example usage: to configure the traffic scheduling mechanism for each qos queue: des-3028p:4#config scheduling_mechanism strict command: config scheduling_mechanism strict note: the strict mode is o...
Page 108
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 103 config 802.1p user_priority purpose used to map the 802.1p user priority of an incoming packet to one of the four hardware queues available on the switch. Syntax config 802.1p user_priority descript...
Page 109
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 104 example usage: to show 802.1p user priority: des-3028p:4# show 802.1p user_priority command: show 802.1p user_priority qos class of traffic priority-0 -> priority-1 -> priority-2 -> priority-3 -> pr...
Page 110
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 105 show 802.1p default_priority configured 802.1p priority value that will be assigned to an incoming, untagged packet before being forwarded to its destination. Parameters specifies a port or range ...
Page 112
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 107 3 off 802.1p off 4 off 802.1p off 5 off 802.1p off 6 off 802.1p off 7 off 802.1p off 8 off 802.1p off 9 off 802.1p off 10 off 802.1p off 11 off 802.1p off 12 off 802.1p off 13 off 802.1p off 14 off ...
Page 113
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 108 show cos port_mapping purpose used to map the destination mac address in incoming packets to one of the hardware queues available on the switch. Syntax show cos port_mapping {port } description the ...
Page 114
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 109 show cos mac_mapping purpose used to show the mapping between destination mac addresses and cos traffic classes. Syntax show cos mac_mapping {destination_addr } description the show cos mac_mapping ...
Page 115
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 110 show cos tos purpose used to show tos value to traffic class mapping. Syntax show cos tos {value } description the show cos tos command displays the information of tos to traffic class mappings. Par...
Page 116
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 111 show dscp_mapping purpose used to show dscp value map to traffic class. Syntax show dscp_mapping {dscp_value } description the show dscp_mapping command displays the information for dscp mapping to ...
Page 117: Ort
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 112 15 p ort m irroring c ommands the port mirroring commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. Command parameters config mir...
Page 118
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 113 command: config mirror port 1 add source ports 2-7 both success. Des-3028p:4# example usage: to delete the mirroring ports: des-3028p:4#config mirror port 1 delete source port 2-4 both command: conf...
Page 119
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 114 command: disable mirror success. Des-3028p:4# show mirror purpose used to show the current port mirroring configuration on the switch. Syntax show mirror description this command displays the curren...
Page 121
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 116 des-3028p:4# delete vlan purpose used to delete a previously configured vlan on the switch. Syntax delete vlan description this command will delete a previously configured vlan on the switch. Parame...
Page 122
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 117 to delete ports from a vlan: des-3028p:4#config vlan v1 delete 6-8 command: config vlan v1 delete 6-8 success. Des-3028p:4# create vlan vlanid purpose used to create multiple vlans by vlan id list o...
Page 125
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 120 disable gvrp restrictions only administrator-level users can issue this command. Example usage: to disable the generic vlan registration protocol (gvrp): des-3028p:4#disable gvrp command: disable gv...
Page 126
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 121 des-3028p:4# des-3028p:4#show vlan port 1 command: show vlan ports 1 port 1 vlan id untagged tagged forbidden dynamic ------- -------- ------ --------- ------- 1 x - - - des-3028p:4# show gvrp purpo...
Page 127: Ink
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 122 17 l ink a ggregation c ommands the link aggregation commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. Command parameters create...
Page 128
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 123 delete link_aggregation group_id purpose used to delete a previously configured link aggregation group. Syntax delete link_aggregation group_id description this command is used to delete a previousl...
Page 130
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 125 des-3028p:4#show link_aggregation command: show link_aggregation link aggregation algorithm = mac-source-dest group id : 1 master port : 1 member port : 1, 5-10 active port : status : disabled flood...
Page 131
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 126 show lacp_port purpose used to display current lacp port mode settings. Syntax show lacp_port {} description this command will display the lacp mode settings as they are currently configured. Parame...
Page 132: Asic
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 127 18 b asic ip c ommands the ip interface commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. Command parameters config ipif [system...
Page 133
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 128 show ipif purpose used to display the configuration of an ip interface on the switch. Syntax show ipif description this command will display the configuration of an ip interface on the switch. Param...
Page 134
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 129 des-3028p:4#enable autoconfig command: enable autoconfig success. Des-3028p:4# note: more detailed information for this command and related commands can be found in the section titled switch utility...
Page 135: Igmp
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 130 19 igmp s nooping c ommands the igmp snooping commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. Command parameters config igmp_s...
Page 136
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 131 config igmp_snooping leave_timer specifies the maximum amount of time in seconds between the switch receiving a leave group message from a host, and the switch issuing a group membership query. If...
Page 137
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 132 config igmp_snooping querier • by default, the robustness variable is set to 2. You might want to increase this value if you expect a subnet to be lossy. Last_member_query_interval the maximum amo...
Page 139
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 134 disable igmp_snooping purpose used to enable igmp snooping on the switch. Syntax disable igmp_snooping {forward_mcrouter_only} description this command disables igmp snooping on the switch. Igmp sno...
Page 140
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 135 des-3028p:4#show igmp_snooping command: show igmp_snooping igmp snooping global state : disabled multicast router only : disabled data driven learning max entries : 56 vlan name : default query inte...
Page 141
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 136 des-3028p:4#show router_ports command: show router_ports vlan name : default static router port : 1-2,10 dynamic router port : total entries: 1 des-3028p:4# show igmp_snooping group purpose used to ...
Page 142
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 137 des-3028p:4#show igmp_snooping group command: show igmp_snooping group vlan name : default multicast group : 224.0.0.2 mac address : 01-00-5e-00-00-02 reports : 1 port member : 2,4 vlan name : defau...
Page 144
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 139 to configure igmp_snooping data_driven_learning max_learned_entry: des-3028p:4# config igmp_snooping data_driven_learning max_learned_entry 1 command: config igmp_snooping data_driven_learning max_l...
Page 145
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 140 des-3028p:4# config igmp access_authentication ports all state enable command: config igmp access_authentication ports all state enable success. Des-3028p:4# show igmp access_authentication purpose ...
Page 147
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 142 config dhcp_relay add ipif the dhcp server ip address. Restrictions only administrator-level users can issue this command. Example usage: to add an ip destination to the dhcp relay table: des-3028p...
Page 148
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 143 config dhcp_relay option_82 state restricting the number of ip addresses that can be assigned to a single remote id or circuit id. Then the dhcp server echoes the option 82 field in the dhcp reply. ...
Page 151
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 146 show dhcp_relay purpose used to display the current dhcp/bootp relay configuration. Syntax show dhcp_relay {ipif [system]} description this command will display the current dhcp relay configuration ...
Page 152
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 147 to enable dhcp relay: des-3028p:4#enable dhcp_relay command: enable dhcp_relay success. Des-3028p:4# disable dhcp_relay purpose used to disable the dhcp/bootp relay function on the switch. Syntax di...
Page 153: 802.1X
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 148 21 802.1x c ommands the des-3028/28g/28p/52/52p implements ieee 802.1x port-based and host-based access control. This mechanism is intended to allow only authorized users, or other network devices, ...
Page 154
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 149 each command is listed, in detail, in the following sections enable 802.1x purpose used to enable the 802.1x server on the switch. Syntax enable 802.1x description the enable 802.1x command enables ...
Page 155
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 150 show 802.1x auth_configuration purpose used to display the current configuration of the 802.1x server on the switch. Syntax show 802.1x auth_configuration {ports } description the show 802.1x auth_c...
Page 156
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 151 des-3028p:4#show 802.1x auth_configuration ports 1 command: show 802.1x auth_configuration ports 1 802.1x : enabled authentication mode : port_based authentication protocol : radius_eap port number ...
Page 157
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 152 des-3028p:4#show 802.1x auth_state command: show 802.1x auth_state port auth pae state backend state port status ------ ----------------- ----------------- ----------------- 1 forceauth success auth...
Page 158
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 153 17 forceauth success authorized 18 forceauth success authorized 19 forceauth success authorized 20 forceauth success authorized ctrl+c esc q quit space n next page enter next entry a all config 802....
Page 159
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 154 des-3028p:4# config 802.1x auth_parameter purpose used to configure the 802.1x authentication parameters on a range of ports. The default parameter will return all ports in the specified range to th...
Page 160
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 155 example usage: to configure 802.1x authentication parameters for ports 1 – 20: des-3028p:4#config 802.1x auth_parameter ports 1–20 direction both command: config 802.1x auth_parameter ports 1–20 dir...
Page 161
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 156 des-3028p:4# config 802.1x init port_based ports all command: config 802.1x init port_based ports all success. Des-3028p:4# config 802.1x reauth purpose used to configure the 802.1x re-authenticatio...
Page 162
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 157 config radius add the ip address of the radius server. Key specifies that a password and encryption key will be used between the switch and the radius server. the shared-secret key used by the...
Page 163
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 158 config radius acct_port } description the config radius command is used to configure the switch’s radius settings. Parameters assigns a number to the current set of radius server settings. Up to 3...
Page 164
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 159 show radius purpose used to display the current radius configurations on the switch. Syntax show radius description the show radius command is used to display the current radius configurations on th...
Page 165
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 160 des-3028p:4#create 802.1x guest_vlan trinity command: create 802.1x guest_vlan trinity success. Des-3028p:4# config 802.1x guest_vlan ports purpose used to configure ports for a pre-existing 802.1x ...
Page 166
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 161 des-3028p:4#show 802.1x guest_vlan command: show 802.1x guest_vlan guest vlan setting ----------------------------------------------------------- guest vlan : trinity enable guest vlan ports: 1-5 de...
Page 167
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 162 des-3028p:4#show acct_client command: show acct_client radiusacctclient --------------------------------------------------------------------------------- radiusacctclientinvalidserveraddresses 0 rad...
Page 168
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 163 des-3028p:4#show auth_client command: show auth_client radiusauthclient ---------------------------------------------------------------------------------- radiusauthclientinvalidserveraddresses 0 ra...
Page 169
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 164 des-3028p:4#show auth_diagnostics ports 1 command: show auth_diagnostics ports 1 port number : 1 entersconnecting 0 eaplogoffswhileconnecting 0 entersauthenticating 0 successwhileauthenticating 0 ti...
Page 170
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 165 des-3028p:4#show auth_session_statistics ports 1 command: show auth_session_statistics ports 1 port number : 1 sessionoctetsrx 0 sessionoctetstx 0 sessionframesrx 0 sessionframestx 0 sessionid sessi...
Page 171
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 166 create 802.1x user purpose used to create a new 802.1x user. Syntax create 802.1x user description the create 802.1x user command is used to create new 802.1x users. Parameters a username of up to...
Page 172
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 167 delete 802.1x user configured on the switch. Parameters a username can be as many as 15 alphanumeric characters. Restrictions only administrator-level users can issue this command. Example usage: ...
Page 173: Ccess
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 168 22 a ccess c ontrol l ist (acl) c ommands the des-3028/28g/28p/52/52p implements access control lists that enable the switch to deny network access to specific devices or device groups based on ip s...
Page 176
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 171 create access_profile protocol_id_mask specifies that the switch will examine the protocol field in each packet and if this field contains the value entered here, apply the following rules. Packet...
Page 177
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 172 config access_profile purpose used to configure an access profile on the switch and to define specific values that will be used to by the switch to determine if a given packet should be forwarded or...
Page 178
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 173 config access_profile parameters ip specifies that the switch will look into the ip fields in each packet. Vlan specifies that the access profile will apply to only this vlan. Source_ip specif...
Page 179
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 174 config access_profile implemented using the following equation – 64 value = 64kbit/sec. The user may select a value between 64- 1024000 or no limit. The default setting is no limit. Deny – specifies...
Page 180
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 175 example usage: to display all of the currently configured access profiles on the switch: des-3028p:4#show access_profile command: show access_profile access profile table ===========================...
Page 181
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 176 create cpu access_profile frame’s header. Ip specifies that the switch will examine the ip address in each frame’s header. Vlan specifies a vlan mask. Source_ip_mask specifies an ip address ma...
Page 182
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 177 des-3028p:4# create cpu access_profile profile_id 1 ip vlan source_ip_mask 20.0.0.0 destination_ip_mask 10.0.0.0 dscp icmp type code command: create cpu access_profile profile_id 1 ip vlan source_ip...
Page 183
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 178 delete cpu access_profile purpose used to delete a previously created cpu access profile. Syntax delete cpu access_profile profile_id description the delete cpu access_profile command is used to del...
Page 184
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 179 config cpu access_profile parameters the value is used to index the rule created. Ethernet specifies that the switch will look only into the layer 2 part of each packet. Vlan specifies that the ...
Page 185
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 180 config cpu access_profile profile id. Restrictions only administrator-level users can issue this command. Example usage: to configure cpu access list entry: des-3028p:4#config cpu access_profile pro...
Page 186
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 181 to show the cpu filtering state on the switch: des-3028p:4#show cpu access_profile profile_id 2 command: show cpu access_profile profile_id 2 cpu interface filtering state: disabled access profile t...
Page 187: Ime
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 182 23 t ime r ange c ommands the time range commands are used in conjunction with the access profile commands listed in the previous chapter to determine a starting point and an ending point, based on ...
Page 188
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 183 config time_range restrictions only administrator-level users can issue this command. Example usage: to configure the time range time1 to be between 6:30 a.M. And 9:40 p.M., monday to friday: des-30...
Page 189: Afeguard
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 184 24 s afeguard e ngine c ommands periodically, malicious hosts on the network will attack the switch by utilizing packet flooding (arp storm) or other methods. These attacks may increase the cpu util...
Page 190
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 185 config safeguard_engine restrictions only administrator-level users can issue this command. Example usage: to configure the safeguard engine for the switch: des-3028p:4#config safeguard_engine state...
Page 191: Raffic
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 186 25 t raffic s egmentation c ommands traffic segmentation allows users to further sub-divide vlans into smaller groups of ports that will help to reduce traffic on the vlan. The vlan rules take prece...
Page 192
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 187 show traffic_segmentation restrictions the port lists for segmentation and the forward list must be on the same switch. Example usage: to display the current traffic segmentation configuration on th...
Page 193: Ime and
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 188 26 t ime and sntp c ommands the simple network time protocol (sntp) (an adaptation of the network time protocol (ntp)) commands in the command line interface (cli) are listed (along with the appropr...
Page 194
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 189 des-3028p:4#config sntp primary 10.1.1.1 secondary 10.1.1.2 poll-interval 30 command: config sntp primary 10.1.1.1 secondary 10.1.1.2 poll- interval 30 success. Des-3028p:4# show sntp purpose used t...
Page 195
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 190 des-3028p:4#enable sntp command: enable sntp success. Des-3028p:4# disable sntp purpose to disable sntp server support. Syntax disable sntp description this will disable sntp support. Sntp service m...
Page 196
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 191 des-3028p:4#config time 30jun2003 16:30:30 command: config time 30jun2003 16:30:30 success. Des-3028p:4# config time_zone purpose used to determine the time zone used in order to adjust the system c...
Page 198
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 193 config dst e_time configure the time of day to end dst. time is expressed using a 24-hour clock, in hours and minutes. S_date configure the specific date (day of the month) to begin dst. ...
Page 199
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 194 des-3028p:4#show time command: show time current time source : system clock current time : 1 days 01:39:17 time zone : gmt +02:30 daylight saving time: repeating offset in minutes : 30 repeating fro...
Page 200: Arp
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 195 27 arp c ommands the arp commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. Command parameters create arpentry config arpentry de...
Page 201
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 196 config arpentry restrictions only administrator-level users can issue this command. Example usage: to configure a static arp entry for the ip address 10.48.74.12 and mac address 00:50:ba:00:07:36: d...
Page 203
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 198 clear arptable purpose used to remove all dynamic arp table entries. Syntax clear arptable description this command is used to remove dynamic arp table entries from the switch’s arp table. Static ar...
Page 204: Outing
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 199 28 r outing t able c ommands the routing table commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. Command parameters create iprou...
Page 205
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 200 des-3028p:4#delete iproute default 10.53.13.254 command: delete iproute default 10.53.13.254 success. Des-3028p:4# show iproute purpose used to display the switch’s current ip routing table. Syntax ...
Page 206: Mac
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 201 29 mac n otification c ommands the mac notification commands in the command line interface (cli) are listed, in the following table, along with their appropriate parameters. Command parameters enabl...
Page 208
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 203 show mac_notification purpose used to display the switch’s mac address table notification global settings. Syntax show mac_notification description this command is used to display the switch’s mac a...
Page 209
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 204 10 disabled 11 disabled 12 disabled 13 disabled 14 disabled 15 disabled 16 disabled 17 disabled 18 disabled 19 disabled 20 disabled ctrl+c esc q quit space n next page p previous page r refresh.
Page 210: Ccess
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 205 30 a ccess a uthentication c ontrol c ommands the tacacs / xtacacs / tacacs+ / radius commands allows secure access to the switch using the tacacs / xtacacs / tacacs+ / radius protocols. When a user...
Page 212
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 207 enable authen_policy purpose used to enable system access authentication policy. Syntax enable authen_policy description this command will enable an administrator-defined authentication policy for u...
Page 213
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 208 show authen_policy restrictions none. Example usage: to display the system access authentication policy: des-3028p:4#show authen_policy command: show authen_policy authentication policy: enabled des...
Page 214
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 209 config authen_login same sequence with the following protocol listed, xtacacs. If no authentication takes place using the xtacacs list, the local account database set in the switch is used to authen...
Page 215
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 210 config authen_login note: entering none or local as an authentication protocol will override any other authentication that follows it on a method list or on the default method list. Restrictions onl...
Page 217
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 212 create authen_enable method_list_name switch. Once a user acquires normal user level privileges on the switch, he or she must be authenticated by a method on the switch to gain administrator privile...
Page 218
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 213 config authen_enable xtacacs – adding this parameter will require the user to be authenticated using the xtacacs protocol from the remote xtacacs server hosts of the xtacacs server group list. t...
Page 219
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 214 des-3028p:4# example usage: to configure the default method list with authentication methods xtacacs, tacacs+ and local, in that order: des-3028p:4#config authen_enable default method xtacacs tacacs...
Page 220
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 215 show authen_enable priority – defines which order the method list protocols will be queried for authentication when a user attempts to log on to the switch. Priority ranges from 1(highest) to 4 (l...
Page 221
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 216 config authen application shell login method. http – choose this parameter to configure the web interface login method. all – choose this parameter to configure all applications (console, telnet...
Page 224
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 219 des-3028p:4#config authen server_host 10.1.1.121 protocol tacacs+ port 4321 timeout 12 retransmit 4 command: config authen server_host 10.1.1.121 protocol tacacs+ port 4321 timeout 12 retransmit 4 s...
Page 225
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 220 show authen server_host 49. Timeout the time in seconds the switch will wait for the server host to reply to an authentication request. Retransmit the value in the retransmit field denotes how m...
Page 227
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 222 des-3028p:4# delete authen server_group purpose used to delete a user-defined authentication server group. Syntax delete authen server_group description this command will delete an authentication se...
Page 228
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 223 des-3028p:4#show authen server_group command: show authen server_group group name ip address protocol ----------- ----------------------------- ------------ radius ----------------------------------...
Page 229
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 224 config authen parameter attempt restrictions only administrator-level users can issue this command. Example usage: to set the maximum number of authentication attempts at 5: des-3028p:4#config authe...
Page 230
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 225 enable admin authentication (none). Because xtacacs and tacacs do not support the enable function, the user must create a special account on the server host which has the username “enable”, and a pa...
Page 231: Ssh
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 226 31 ssh c ommands the steps required to use the secure shell (ssh) protocol for secure communication between a remote pc (the ssh client) and the switch (the ssh server), are as follows: create a use...
Page 232
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 227 enable ssh purpose used to enable ssh. Syntax enable ssh description this command allows users to enable ssh on the switch. Parameters none. Restrictions only administrator-level users can issue thi...
Page 233
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 228 config ssh authmode parameters password – this parameter may be chosen if the administrator wishes to use a locally configured password for authentication on the switch. Publickey this parameter m...
Page 234
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 229 config ssh server description this command allows users to configure the ssh server. Parameters maxsession allows the user to set the number of users that may simultaneously access the switch. The...
Page 236
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 231 current accounts: username authentication host name host ip ----------- ------------------ ---------------- -------- trinity password des-3028p:4# note: to configure the ssh user, the administrator ...
Page 237
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 232 des-3028p:4# config ssh algorithm blowfish enable command: config ssh algorithm blowfish enable success. Des-3028p:4# show ssh algorithm purpose used to display the ssh algorithm setting. Syntax sho...
Page 238: Ssl
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 233 32 ssl c ommands secure sockets layer or ssl is a security feature that will provide a secure communication path between a host and client through the use of authentication, digital signatures and e...
Page 241
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 236 config ssl cachetimeout timeout key exchange. Specifying a longer timeout will allow the ssl session to reuse the master key on future connections with that particular host, therefore speeding up th...
Page 242
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 237 des-3028p:4#show ssl command: show ssl ssl status disabled rsa_with_rc4_128_md5 0x0004 enabled rsa_with_3des_ede_cbc_sha 0x000a enabled dhe_dss_with_3des_ede_cbc_sha 0x0013 enabled rsa_export_with_r...
Page 243
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 238 des-3028p:4#download ssl certificate 10.53.13.94 certfilename c:/cert.Der keyfilename c:/pkey.Der command: download ssl certificate 10.53.13.94 certfilename c:/cert.Der keyfilename c:/pkey.Der certi...
Page 244: D-L
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 239 33 d-l ink s ingle ip m anagement c ommands simply put, d-link single ip management is a concept that will stack switches together over ethernet instead of using stacking ports or modules. Switches ...
Page 245
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 240 when a cs becomes a ms, it automatically becomes a member of the first snmp community (includes read/write and read only) to which the cs belongs. However if a ms has its own ip address, it can belo...
Page 246
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 241 enable sim purpose used to enable single ip management (sim) on the switch syntax enable sim description this command will enable sim globally on the switch. Sim features and functions will not func...
Page 247
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 242 show sim mac address displays the mac address of the switch. Capabilities – displays the type of switch, be it layer 2 (l2) or layer 3 (l3). Platform – switch description including name and model ...
Page 248
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 243 des-3028p:4#show sim candidates command: show sim candidates id mac address platform / hold firmware device name capability time version --- ---------------- ----------------- ------- ---------- ---...
Page 249
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 244 des-3028p:4#show sim group command: show sim group sim group name : default id mac address platform / hold firmware device name capability time version --- ----------------- ------------------- ----...
Page 250
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 245 reconfig restrictions only administrator-level users can issue this command. Example usage: to connect to the ms, with member id 2, through the cs, using the command line interface: des-3028p:4#reco...
Page 252
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 247 to transfer the cs (commander) to be a cas (candidate): des-3028p:4# config sim candidate command: config sim candidate success. Des-3028p:4# to transfer the switch to be a cs: des-3028p:4# config s...
Page 253
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 248 command: download sim_ms firmware_from_tftp 10.53.13.94 c:/des3028.Had all this device is updating firmware. Please wait several minutes... Download status : id mac address result --- --------------...
Page 254
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 249 des-3028p:4# upload sim_ms configuration_to_tftp 10.55.47.1 d:\configuration.Txt 1 command: upload sim_ms configuration 10.55.47.1 d:\configuration.Txt 1 this device is upload configuration. Please ...
Page 255: Smtp
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 250 35 smtp c ommands smtp or simple mail transfer protocol is a function of the switch that will send switch events to mail recipients based on e-mail addresses entered using the commands below. The sw...
Page 258
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 253 des-3028:4#show smtp command: show smtp smtp status: enabled smtp server address : 166.99.66.33 smtp server port : 25 self mail address: smtp@30xx.Dev index mail receiver address -------- ----------...
Page 259: Ommands
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 254 35 p o e c ommands des-3028p and the des-3052p support power over ethernet (poe) as defined by the ieee 802.3af specification. Ports 1-24/1-48 supply 48 vdc power to pds over category 5 or category ...
Page 260
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 255 config poe system deny_low_priority_port} description allows the user to configure the parameters for the whole poe system. Parameters power_limit the power limit parameter allows the user to conf...
Page 261
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 256 config poe ports priority if the power disconnect method is set to deny_ low_priority_port. Critical – specifying this parameter will nominate these ports has having the highest priority for all con...
Page 262
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 257 show poe system parameters system – choosing this parameter will display the system settings for poe, such as switch power limit, consumption, remaining useable power and the power disconnection met...
Page 263
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 258 des-3028p:4#show poe ports command: show poe ports port state priority power limit(mw) class power(mw) voltage(decivolt) current(ma) status ==========================================================...
Page 264: Able
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 259 34 c able d iagnostics c ommands the cable diagnostics commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. Command parameters cabl...
Page 265: Dhcp
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 260 35 dhcp l ocal r elay c ommands the dhcp local relay commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. Command parameters config...
Page 266
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 261 example usage: to enable dhcp local relay function: des-3028p:4#enable dhcp_local_relay command: enable dhcp_local_relay success. Des-3028p:4# disable dhcp_local_relay purpose used to disable the dh...
Page 267: Ratuitous
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 262 36 g ratuitous arp c ommands the gratuitous arp commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. Command parameters config grat...
Page 268
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 263 config gratuitous_arp send duplicate_ip_detected enabled. For this command, the duplicate ip detected means that the system has received an arp request packet that was sent by an ip address that mat...
Page 269
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 264 config gratuitous_arp periodical_send purpose used to configure the interval for periodical sending of gratuitous arp request packets. Syntax config gratuitous_arp send periodically ipif interval de...
Page 270
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 265 disable gratuitous_arp trap and log restrictions only administrator-level users can issue this command. Example usage: to disable the system’s interface gratuitous arp log and trap: des-3028p:4#disa...
Page 271: Vlan
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 266 37 vlan t runking c ommands the vlan trunking commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. Command parameters enable vlan_t...
Page 273
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 268 to configure a vlan trunk port if port 6 is la-1 member port; port 7 is la-2 master port. Des-3028p:4# config vlan_trunk ports 6-7 state enable command: config vlan_trunk ports 6-7 state enable can ...
Page 274
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 269 example usage: to display vlan trunk information: des-3028p:4#show vlan_trunk command: show vlan_trunk vlan trunk :enable vlan trunk port :1-5,7 des-3028p:4#.
Page 275: Ommands
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 270 38 q in q c ommands the qinq commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. Command parameters enable qinq disable qinq show ...
Page 276
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 271 disable qinq restrictions only administrator-level users can issue this command. Example usage: to disable qinq: des-3028p:4#disable qinq command: disable qinq success. Des-3028p:4# show qinq purpos...
Page 277
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 272 example usage: to configure port list 1-4 as nni port, set outer tpid to 0x88a8: des-3028p:4# config qinq ports 1-4 role nni tpid 0x88a8 command: config qinq ports 1-4 role nni tpid 0x88a8 success. ...
Page 278: Symmetric
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 273 39 a symmetric vlan c ommands the asymmetric vlan commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. Command parameters enable as...
Page 279
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 274 show asymmetric_vlan purpose used to view the asymmetric vlan state on the switch. Syntax show asymmetric_vlan description this command displays the asymmetric vlan state on the switch parameters no...
Page 280: Mld
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 275 40 mld s nooping c ommands the mld snooping commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. Command parameters config mld_snoo...
Page 281
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 276 config mld_snooping the chosen vlan. Fast_done enable or disable mld snooping fast_done function.If enable, the membership is immediately removed when the system receives the mld done message. Res...
Page 283
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 278 disable mld_snooping purpose used to disable mld snooping on the switch. Syntax disable mld_snooping description the disable mld_snooping command disables mld snooping on the switch. Disabling mld s...
Page 284
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 279 des-3028p:4# show mld_snooping command: show mld_snooping mld snooping global state : disabled multicast router only : disabled vlan name : default query interval : 125 max response time : 10 robust...
Page 285
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 280 to show mld snooping group: des-3028p:4#show mld_snooping group command: show mld_snooping group source/group : 2000::100:10:10:5/ff0e::100:0:0:20 vlan name/vid : default/1 member ports : 1-2 filter...
Page 286
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 281 des-3028p:4# show mld_snooping mrouter_ports command: show mld_snooping mrouter_ports vlan name : default static mrouter port : 1-10 dynamic mrouter port : forbidden mrouter port : vlan name : vlan2...
Page 287: Igmp
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 282 41 igmp s nooping m ulticast vlan c ommands the igmp snooping multicast vlan commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. C...
Page 288
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 283 example usage: to create igmp snoop multicast vlan mv12: des-3028p:4# create igmp_snoop multicast_vlan mv1 2 command: create igmp_snoop multicast_vlan mv1 2 success. Des-3028p:4# config igmp_snoopin...
Page 290
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 285 des-3028p:4#show multicast_vlan_group v1 command: show multicast_vlan_group v1 vlan name vlan id from to ----------- --------- ---------- --------- v1 100 224.19.62.34 224.19.162.200 des-3028p:4# de...
Page 291
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 286 disable igmp_snooping multicast_vlan purpose used to disable the multicast vlan function. Syntax disable igmp_snooping multicast_vlan description this command controls the multicast vlan function. T...
Page 292: Imited
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 287 42 l imited ip m ulticast a ddress c ommands the limited ip multicast address command allows the administrator to permit or deny access to a port or range of ports by specifying a range of multicast...
Page 294
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 289 delete mcast_filter_profile description this command deletes a multicast address profile. Parameters profile_name name of the profile. Restrictions only administrator-level users can issue this co...
Page 296
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 291 port: 3 profile id: des-3028p:4# config max_mcast_group purpose this command configures the maximum number of multicast groups that a port can join. Syntax config max_mcast_group max_group descripti...
Page 297: Lldp
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 292 43 lldp c ommands the lldp commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. Command parameters enable lldp disable lldp config ...
Page 298
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 293 each command is listed, in detail, in the following sections. Enable lldp purpose used to enable lldp operations on the switch. Syntax enable lldp description this is a global control for the lldp f...
Page 299
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 294 config lldp message_tx_interval transmissions of lldp advertisements on any given port. The range is from 5 to 32768 seconds. The default setting is 30 seconds. Restrictions only administrator-level...
Page 300
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 295 example usage to configure the delay-interval interval: des-3028p:4# config lldp tx_delay 8 command: config lldp tx_delay 8 success. Des-3028p:4# config lldp reinit_delay purpose change the minimum ...
Page 301
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 296 example usage to change the notification interval: des-3028p:4# config lldp notification_interval 10 command: config lldp notification_interval 10 success. Des-3028p:4# config lldp ports notificatio...
Page 302
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 297 config lldp admin_status lldp packets. Disable: disable lldp packet transmit and receive on the specified port(s). The default per port state is tx_and_rx. Restrictions only administrator-level user...
Page 303
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 298 config lldp basic_tlvs description an active lldp port on the switch always includes the mandatory data in its outbound advertisements. And there are four optional data that can be configured for an...
Page 304
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 299 example usage to configure the vlan name tlv from the outbound lldp advertisements for all ports: des-3028p:4# config lldp ports all dot1_tlv_pvid enable command: config lldp ports all dot1_tlv_pvid...
Page 305
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 300 config lldp dot1_tlv_protocol_identity and it is enabled to be advertised, then this protocol identity will be advertised. Parameters specified a range of ports to be configured. All to set all ...
Page 306
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 301 config lldp dot3_tlvs disable . Restrictions only administrator-level users can issue this command. Example usage to configure the mac/phy configuration/status tlv from the outbound lldp advertiseme...
Page 307
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 302 example usage to display the lldp system level configuration status: des-3028p:4# show lldp command: show lldp lldp system information chassis id subtype : macaddress chassis id : 00-15-e9-41-5a-a7 ...
Page 308
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 303 show lldp ports purpose display the lldp per port configuration for advertisement options. Syntax show lldp ports { } description this command displays the lldp per port configuration for advertisem...
Page 309
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 304 show lldp local_ports restrictions none. Example usage to display outbound lldp advertisements for individual ports in detail: des-3028p:4# show lldp local_ports 1 mode detailed command: show lldp l...
Page 310
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 305 des-3028p:4# show lldp local_ports 1 mode normal command: show lldp local_ports 1 mode normal port id : 1: ---------------------------------------------------------- port id subtype : local port id ...
Page 311
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 306 example usage to display remote table entries in brief mode: des-3028p:4# show lldp remote_ports 1-2 mode brief command: show lldp remote_ports 1-2 mode brief port id: 1 ----------------------------...
Page 312
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 307 des-3028p:4# show lldp remote_ports ports 1 mode normal command: show lldp remote_ports ports 1 mode normal port id : 1 ----------------------------------------------------------- remote entities co...
Page 313
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 308 des-3028p:4# show lldp remote_ports 1 mode detailed command: show lldp remote_ports 1 mode detailed port id : 1 ---------------------------------------------------------------------- remote entities...
Page 314
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 309 aggregation status : not currently in aggregation aggregation port id : 0 maximum frame size : 1536 unknown tlvs count : 0 (none.) des-3028p:4# show lldp statistics purpose used to display the syste...
Page 315
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 310 example usage to display statistics information of port 1: des-3028p:4# show lldp statistics ports 1 command: show lldp statistics ports 1 port id: 1 ------------------------------------------------...
Page 316: Revention
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 311 44 d o s p revention c ommands the dos prevention commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. Command parameters config do...
Page 317
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 312 config dos_prevention dos_type priority – change packet priority by the switch from 0 – 7 if the priority is not specified, the original priority will be used. Rx_rate – controls the rate of the rec...
Page 318
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 313 example usage to disable dos_prevention trap_log : des-3028p:4# disable dos_prevention trap_log command: disable dos_prevention trap_log success. Des-3028p:4# show dos_prevention purpose used to dis...
Page 319
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 314 example usage to display dos prevention information: des-3028p:4# show dos_prevention command: show dos_prevention trap/log : enabled dos type state action frame counts land attack disabled drop 0 b...
Page 320
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 315 clear dos_prevention counters description this command clears the counters of the prevention of each dos attack. Parameters dos the type of dos attack. Possible values are as follows: land_attac...
Page 321: Ip-Mac-Port
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 316 45 ip-mac-port b inding c ommands the ip network layer uses a four-byte address. The ethernet link layer uses a six-byte mac address. Binding these two address types together allows the transmission...
Page 323
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 318 to configure address binding on the switch: des-3028p:4#config address_binding ip_mac ipaddress 10.1.1.3 mac_address 00-00-00-00-00- 05 command: config address_binding ip_mac ipaddress 10.1.1.3 mac_...
Page 325
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 320 des-3028p:4#config address_binding ip_mac ports 2 forward_dhcppkt enable command: config address_binding ip_mac ports 2 forward_dhcppkt enable success. Des-3028p:4# show address_binding purpose used...
Page 326
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 321 des-3028p:4#show address_binding ip_mac all command: show address_binding ip_mac all ip address mac address mode ports --------------- ----------------- ---- -------------------- 10.1.1.1 00-00-00-0...
Page 327
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 322 des-3028p:4#delete address-binding ip-mac ipaddress 10.1.1.1 mac_address 00-00-00-00-00-06 command: delete address-binding ip-mac ipaddress 10.1.1.1 mac_address 00- 00-00-00-00-06 success. Des-3028p...
Page 328
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 323 des-3028p:4#disable address_binding trap_log command: disable address_binding trap_log success. Des-3028p:4# show address_binding dhcp_snoop purpose to show address_binding entries created by dhcp p...
Page 329
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 324 des-3028p:4# show address_binding dhcp_snoop max_entry command: show address_binding dhcp_snoop max_entry port max entry ---- --------- 1 5 2 5 3 5 4 5 5 5 6 5 7 5 8 5 9 5 10 5 11 5 12 5 13 5 14 5 1...
Page 330
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 325 example usage to enable address_binding dhcp_snoop: des-3028p:4# enable address_binding dhcp_snoop command: enable address_binding dhcp_snoop success. Des-3028p:4# disable address_binding dhcp_snoop...
Page 331
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 326 example usage to address_binding dhcp_snoop binding_entry: des-3028p:4# clear address_binding dhcp_snoop binding_entry ports 1-3 command: clear address_binding dhcp_snoop binding_entry ports 1-3 suc...
Page 332: Oopback
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 327 46 l oopback d etection c ommands the loopback detection commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. Command parameters co...
Page 334
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 329 des-3028p:4#disable loopdetect command: disable loopdetect success des-3028p:4# show loopdetect purpose used to display the current loopback detection settings on the switch. Syntax show loopdetect ...
Page 335
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 330 des-3028p:4#show loopdetect ports 1-3 command: show loopdetect ports 1-3 port loopdetect state loop status ------ ------------------ ---------- 1 enabled normal 2 enabled normal 3 enabled normal ctr...
Page 336: Echnical
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 331 47 t echnical s upport c ommands the technical support commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. Command parameters show...
Page 337
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 332 example usage to display technical support information on the switch: des-3028p:4# show tech_support command: show tech_support [device information 3049620ms] device type : des-3028g fast ethernet s...
Page 338
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 333 1 00-03-09-18-10-01 3 dynamic 1 00-04-00-00-00-00 3 dynamic 1 00-05-5d-04-d6-a4 3 dynamic total entries : 264 des-3028p:4# upload tech_support_to_tftp purpose used to upload the information of techn...
Page 339: Ommand
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 334 48 c ommand h istory l ist the switch history commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. Command parameters ? Dir config ...
Page 340
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 335 example usage to display all of the commands in the cli: des-3028p:4#? .. ? Cable_diag ports clear clear address_binding dhcp_snoop binding_entry ports clear arptable clear counters clear dos_preven...
Page 341
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 336 dir parameters none. Restrictions none. Example usage: to display all commands: des-3028p:4#dir .. ? Clear clear arptable clear counters clear fdb clear log clear port_security_entry port config 802...
Page 342
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 337 des-3028p:4# show command_history purpose used to display the command history. Syntax show command_history description this command will display the command history. Parameters none. Restrictions no...
Page 343: Appendix A
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 338 appendix a t echnical s pecifications general protocols fiber-optic ieee 802.3 10base-t ethernet ieee 802.3u 100base-tx fast ethernet ieee 802.3ab 1000base-t gigabit ethernet ieee 802.3z 1000base-t ...
Page 344
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 339 physical and environmental internal power supply input: des-3028/des-3052/des-3028g - 100~240v, ac/0.5a, 50~60hz des-3052p - 100~240v, ac/5a, 50~60hz des-3028p - 100~240v, ac/2.9a, 50~60hz output: d...
Page 345
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 340 forwarding table age time max age: 10-1000000 seconds. Default = 300. Poe features poe capable ports des-3028p:random 12 ports des-3052p:random 24 ports max 15.4w per port power feeding for poe des-...
Page 346
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 341 led indicators location led indicative color status description solid light power on power green light off power off solid light console on blinking post is in progress/ post is failure. Per device ...
Page 347
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 342 light off no link power feature detailed description internal power supply ac input: 100 - 240 vac, 50-60 hz performance feature detailed description wire speed on all fe/ge ports full-wire speed (f...
Page 348
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 343 dem-314gt (1000base-lh) dem-315gt (1000base-zx) dem-210 (single mode 100base-fx) dem-211 (multi mode 100base-fx) -wdm transceiver supported: 1.Dem-330t (tx-1550/rx-1310nm),up to 10km,single-mode 2.D...
Page 349: Appendix B
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 344 appendix b arp p acket c ontent acl address resolution protocol (arp) is the standard method for finding a host's hardware address (mac address) when only its ip address is known. This protocol is v...
Page 350
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 345 port1 00-20-5c-01-11-11 in addition, when the switch receives the broadcasted arp request, it will flood the frame to all ports except the source port, port 1 (see figure – 2). Figure – 2 when the s...
Page 351
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 346 when pc b replies to the query, “destination address” in the ethernet frame it will change to pc a’s mac address. The “source address” will be changed to pc b’s mac address (see table – 4). Destinat...
Page 352
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 347 how arp spoofing attacks a network arp spoofing, also known as arp poisoning, is a method to attack an ethernet network which may allow an attacker to sniff data frames on a lan, modify the traffic,...
Page 353
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 348 destination address source address ethernet type h/w type protocol type h/w address length protocol address length operation sender h/w address sender protocol address target h/w address target prot...
Page 354
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 349 prevent arp spoofing via packet content acl concerning the common dos attack today caused by the arp spoofing, d-link managed switches can effectively mitigate it via its unique packet content acl. ...
Page 355
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 350 figure – 6.
Page 356
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual command description step 1 create access_profile ethernet source_mac ff-ff-ff-ff- ff-ff ethernet_type profile_id 1 – create access profile 1 to match ethernet type and source mac address. Step 2 config ...
Page 357: Appendix C
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 352 appendix c p assword r ecovery p roceedure this document describes the procedure for resetting passwords on d-link switches. Authenticating any user who tries to access networks is necessary and imp...
Page 358
Des-3028 des-3028p des-3028g des-3052 des-3052p layer 2 fast ethernet switch cli reference manual 353 command parameters {} user. If a username is not specified, the password of all users will be reset. Show account the show account command displays all previously created accounts..