DL manuals
D-Link
Switch
DES-3550
Command Line Interface Reference Manual

D-Link DES-3550 Command Line Interface Reference Manual - Cli

Other manuals for DES-3550: User Manual, Command Line Interface Reference Manual, User Manual, Manual

Manual is about: Product Manual

Command Line Interface Reference Manual - (page 1)

Command Line Interface Reference Manual - (page 2)

Command Line Interface Reference Manual - (page 3)

Command Line Interface Reference Manual - (page 4)

Command Line Interface Reference Manual - (page 5)

Command Line Interface Reference Manual - (page 6)

Command Line Interface Reference Manual - (page 7)

Command Line Interface Reference Manual - (page 8)

Command Line Interface Reference Manual - (page 9)

Command Line Interface Reference Manual - (page 10)

Command Line Interface Reference Manual - (page 11)

Command Line Interface Reference Manual - (page 12)

Command Line Interface Reference Manual - (page 13)

Command Line Interface Reference Manual - (page 14)

Command Line Interface Reference Manual - (page 15)

Command Line Interface Reference Manual - (page 16)

Command Line Interface Reference Manual - (page 17)

Command Line Interface Reference Manual - (page 18)

Command Line Interface Reference Manual - (page 19)

Command Line Interface Reference Manual - (page 20)

Command Line Interface Reference Manual - (page 21)

Command Line Interface Reference Manual - (page 22)

Command Line Interface Reference Manual - (page 23)

Command Line Interface Reference Manual - (page 24)

Command Line Interface Reference Manual - (page 25)

Command Line Interface Reference Manual - (page 26)

Command Line Interface Reference Manual - (page 27)

Command Line Interface Reference Manual - (page 28)

Command Line Interface Reference Manual - (page 29)

Command Line Interface Reference Manual - (page 30)

Command Line Interface Reference Manual - (page 31)

Command Line Interface Reference Manual - (page 32)

Command Line Interface Reference Manual - (page 33)

Command Line Interface Reference Manual - (page 34)

Command Line Interface Reference Manual - (page 35)

Command Line Interface Reference Manual - (page 36)

Command Line Interface Reference Manual - (page 37)

Command Line Interface Reference Manual - (page 38)

Command Line Interface Reference Manual - (page 39)

Command Line Interface Reference Manual - (page 40)

Command Line Interface Reference Manual - (page 41)

Command Line Interface Reference Manual - (page 42)

Command Line Interface Reference Manual - (page 43)

Command Line Interface Reference Manual - (page 44)

Command Line Interface Reference Manual - (page 45)

Command Line Interface Reference Manual - (page 46)

Command Line Interface Reference Manual - (page 47)

Command Line Interface Reference Manual - (page 48)

Command Line Interface Reference Manual - (page 49)

Command Line Interface Reference Manual - (page 50)

Command Line Interface Reference Manual - (page 51)

Command Line Interface Reference Manual - (page 52)

Command Line Interface Reference Manual - (page 53)

Command Line Interface Reference Manual - (page 54)

Command Line Interface Reference Manual - (page 55)

Command Line Interface Reference Manual - (page 56)

Command Line Interface Reference Manual - (page 57)

Command Line Interface Reference Manual - (page 58)

Command Line Interface Reference Manual - (page 59)

Command Line Interface Reference Manual - (page 60)

Command Line Interface Reference Manual - (page 61)

Command Line Interface Reference Manual - (page 62)

Command Line Interface Reference Manual - (page 63)

Command Line Interface Reference Manual - (page 64)

Command Line Interface Reference Manual - (page 65)

Command Line Interface Reference Manual - (page 66)

Command Line Interface Reference Manual - (page 67)

Command Line Interface Reference Manual - (page 68)

Command Line Interface Reference Manual - (page 69)

Command Line Interface Reference Manual - (page 70)

Command Line Interface Reference Manual - (page 71)

Command Line Interface Reference Manual - (page 72)

Command Line Interface Reference Manual - (page 73)

Command Line Interface Reference Manual - (page 74)

Command Line Interface Reference Manual - (page 75)

Command Line Interface Reference Manual - (page 76)

Command Line Interface Reference Manual - (page 77)

Command Line Interface Reference Manual - (page 78)

Command Line Interface Reference Manual - (page 79)

Command Line Interface Reference Manual - (page 80)

Command Line Interface Reference Manual - (page 81)

Command Line Interface Reference Manual - (page 82)

Command Line Interface Reference Manual - (page 83)

Command Line Interface Reference Manual - (page 84)

Command Line Interface Reference Manual - (page 85)

Command Line Interface Reference Manual - (page 86)

Command Line Interface Reference Manual - (page 87)

Command Line Interface Reference Manual - (page 88)

Command Line Interface Reference Manual - (page 89)

Command Line Interface Reference Manual - (page 90)

Command Line Interface Reference Manual - (page 91)

Command Line Interface Reference Manual - (page 92)

Command Line Interface Reference Manual - (page 93)

Command Line Interface Reference Manual - (page 94)

Command Line Interface Reference Manual - (page 95)

Command Line Interface Reference Manual - (page 96)

Command Line Interface Reference Manual - (page 97)

Command Line Interface Reference Manual - (page 98)

Command Line Interface Reference Manual - (page 99)

Page of 323

Download

Print this page

Bookmark us

DES-3550 Layer 2 Fast Ethernet Switch

SING THE

ONSOLE

CLI

The DES-3550 supports a console management interface that allows the user to connect to the Switch’s management agent via

a serial port and a terminal or a computer running a terminal emulation program. The console can also be used over the

network using the TCP/IP Telnet protocol. The console program can be used to configure the Switch to use an SNMP based

network management software over the network.

This chapter describes how to use the console interface to access the Switch, change its settings, and monitor its operation.

Note: Switch configuration settings are saved to non-volatile RAM using the save command.

The current configuration will then be retained in the Switch’s NV-RAM, and reloaded when

the Switch is rebooted. If the Switch is rebooted without using the save command, the last

configuration saved to NV-RAM will be loaded.

Connecting to the Switch

The console interface is used by connecting the Switch to a VT100-compatible terminal or a computer running an ordinary

terminal emulator program (e.g., the HyperTerminal program included with the Windows operating system) using an RS-

232C serial cable. Your terminal parameters will need to be set to:

• VT-100 compatible

• 9600 baud

• 8 data bits

• No parity

• One stop bit

• No flow control

You can also access the same functions over a Telnet interface. Once you have set an IP address for your Switch, you can use

a Telnet program (in VT-100 compatible terminal mode) to access and control the Switch. All of the screens are identical,

whether accessed from the console port or from a Telnet interface.

After the Switch reboots and you have logged in, the console looks like this:

Figure 2-1. Initial Console Screen after login

« ‹ Prev 5 6 7 8 9 10 11 Next › »

Summary of DES-3550

Page 1
Des-3550 layer 2 switch command line interface reference manual release 3.5 may 2005 651es3550055 recyclable.
Page 3
Table of contents introduction.............................................................................................................................................. 1 using the console cli ..........................................................................................................
Page 4
Ssh commands.................................................................................................................................. 281 ssl commands .................................................................................................................................. 291 d-lin...
Page 5
Des-3550 layer 2 fast ethernet switch 1 i ntroduction the switch can be managed through the switch’s serial port, telnet, or the web-based management agent. The command line interface (cli) can be used to configure and manage the switch via the serial port or telnet interfaces. This manual provides ...
Page 6
Des-3550 layer 2 fast ethernet switch setting the switch’s ip address each switch must be assigned its own ip address, which is used for communication with an snmp network manager or other tcp/ip application (for example bootp, tftp). The switch’s default ip address is 10.90.90.90. You can change th...
Page 7
Des-3550 layer 2 fast ethernet switch figure 1-3. Assigning an ip address in the above example, the switch was assigned an ip address of 10.20.25.30 with a subnet mask of 255.0.0.0. The system message success indicates that the command was executed successfully. The switch can now be configured and ...
Page 8: Cli
Des-3550 layer 2 fast ethernet switch 2 u sing the c onsole cli the des-3550 supports a console management interface that allows the user to connect to the switch’s management agent via a serial port and a terminal or a computer running a terminal emulation program. The console can also be used over...
Page 9
Des-3550 layer 2 fast ethernet switch commands are entered at the command prompt, des-3550:4#. There are a number of helpful features included in the cli. Entering the ? Command will display a list of all of the top-level commands. Figure 2-2. The ? Command when you enter a command without its requi...
Page 10
Des-3550 layer 2 fast ethernet switch to re-enter the previous command at the command prompt, press the up arrow cursor key. The previous command will appear at the command prompt. Figure 2-4. Using the up arrow to re-enter a command in the above example, the command config account was entered witho...
Page 11
Des-3550 layer 2 fast ethernet switch the top-level commands consist of commands such as show or config. Most of these commands require one or more parameters to narrow the top-level command. This is equivalent to show what?Or config what? Where the what? Is the next parameter. For example, if you e...
Page 12
Des-3550 layer 2 fast ethernet switch 3 c ommand s yntax the following symbols are used to describe how command entries are made and values and arguments are specified in this manual. The online help contained in the cli and available through the console interface uses the same syntax. Note: all com...
Page 14
Des-3550 layer 2 fast ethernet switch multiple page display control keys space displays the next page. Ctrl+c stops the display of remaining pages when multiple pages are to be displayed. Esc stops the display of remaining pages when multiple pages are to be displayed. N displays the next page. P di...
Page 17
Des-3550 layer 2 fast ethernet switch example usage: to configure the user password of “dlink” account: des-3550:4#config account dlink command: config account dlink enter a old password:**** enter a case-sensitive new password:**** enter the new password again for confirmation:**** success. Des-355...
Page 18
Des-3550 layer 2 fast ethernet switch delete account purpose used to delete an existing user account. Syntax delete account description the delete account command deletes a user account that has been created using the create account command. Parameters restrictions only administrator-level users can...
Page 19
Des-3550 layer 2 fast ethernet switch show switch purpose used to display general information about the switch. Syntax show switch description this command displays information about the switch. Parameters none. Restrictions only administrator-level users can issue this command. Example usage: to di...
Page 20
Des-3550 layer 2 fast ethernet switch show serial_port purpose used to display the current serial port settings. Syntax show serial_port description this command displays the current serial port settings. Parameters none. Restrictions none example usage: to display the serial port setting: des-3550:...
Page 22
Des-3550 layer 2 fast ethernet switch enable clipaging purpose used to pause the scrolling of the console screen when the show command displays more than one page. Syntax enable clipaging description this command is used when issuing the show command which causes the console screen to rapidly scroll...
Page 23
Des-3550 layer 2 fast ethernet switch example usage: to disable pausing of the screen display when show command output reaches the end of the page: des-3550:4#disable clipaging command: disable clipaging success. Des-3550:4# enable telnet purpose used to enable communication with and management of t...
Page 24
Des-3550 layer 2 fast ethernet switch disable telnet purpose used to disable the telnet protocol on the switch. Syntax disable telnet description this command is used to disable the telnet protocol on the switch. Parameters none. Restrictions only administrator-level users can issue this command. Ex...
Page 25
Des-3550 layer 2 fast ethernet switch example usage: to enable http and configure port number: des-3550:4#enable web 80 command: enable web 80 success. Des-3550:4# disable web purpose used to disable the http-based management software on the switch. Syntax disable web description this command disabl...
Page 26
Des-3550 layer 2 fast ethernet switch save purpose used to save changes in the switch’s configuration to non-volatile ram. Syntax save description this command is used to enter the current switch configuration into non-volatile ram. The saved switch configuration will be loaded into the switch’s mem...
Page 28
Des-3550 layer 2 fast ethernet switch login purpose used to log in a user to the switch’s console. Syntax login description this command is used to initiate the login procedure. The user will be prompted for a username and password. Parameters none. Restrictions none. Example usage: to initiate the ...
Page 31
Des-3550 layer 2 fast ethernet switch show ports purpose used to display the current configuration of a range of ports. Syntax show ports {description} description this command is used to display the current configuration of a range of ports. Parameters − specifies a port or range of ports to be dis...
Page 32
Des-3550 layer 2 fast ethernet switch example usage: to display the configuration of all ports on a standalone switch, with description: des-3550:4#show ports description command: show ports description port port settings connection address state speed/duplex/flowctrl speed/duplex/flowctrl learning ...
Page 35
Des-3550 layer 2 fast ethernet switch delete port_security_entry purpose used to delete a port security entry by mac address, port number and vlan id. Syntax delete port_security_entry vlan name mac_address port description this command is used to delete a single, previously learned port security en...
Page 36
Des-3550 layer 2 fast ethernet switch example usage: to clear a port security entry by port: des-3550:4# clear port_security_entry port 6 command: clear port_security_entry port 6 success. Des-3550:4# show port_security purpose used to display the current port security configuration. Syntax show por...
Page 37: (Snmp) C
Des-3550 layer 2 fast ethernet switch 7 n etwork m anagement (snmp) c ommands the network management commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. The des-3550 supports the simple network management protocol (snmp) versions 1,...
Page 40
Des-3550 layer 2 fast ethernet switch to create an snmp user on the switch: des-3550:4#create snmp user dlink default encrypted by_password auth md5 canadian priv none command: create snmp user dlink default encrypted by_password auth md5 canadian priv none success. Des-3550:4# delete snmp user purp...
Page 41
Des-3550 layer 2 fast ethernet switch show snmp user purpose used to display information about each snmp username in the snmp group username table. Syntax show snmp user description the show snmp user command displays information about each snmp username in the snmp group username table. Parameters ...
Page 44
Des-3550 layer 2 fast ethernet switch show snmp view purpose used to display an snmp view previously created on the switch. Syntax show snmp view {} description the show snmp view command displays an snmp view previously created on the switch. Parameters − an alphanumeric string of up to 32 characte...
Page 45
Des-3550 layer 2 fast ethernet switch create snmp community purpose used to create an snmp community string to define the relationship between the snmp manager and an agent. The community string acts like a password to permit access to the agent on the switch. One or more of the following characteri...
Page 46
Des-3550 layer 2 fast ethernet switch delete snmp community purpose used to remove a specific snmp community string from the switch. Syntax delete snmp community description the delete snmp community command is used to remove a previously defined snmp community string from the switch. Parameters − a...
Page 47
Des-3550 layer 2 fast ethernet switch show snmp community purpose used to display snmp community strings configured on the switch. Syntax show snmp community {} description the show snmp community command is used to display snmp community strings that are configured on the switch. Parameters − an al...
Page 48
Des-3550 layer 2 fast ethernet switch config snmp engineid purpose used to configure a name for the snmp engine on the switch. Syntax config snmp engineid description the config snmp engineid command configures a name for the snmp engine on the switch. Parameters − an alphanumeric string that will b...
Page 50
Des-3550 layer 2 fast ethernet switch example usage: to create an snmp group named “sg1:” des-3550:4#create snmp group sg1 v3 noauth_nopriv read_view v1 write_view v1 notify_view v1 command: create snmp group sg1 v3 noauth_nopriv read_view v1 write_view v1 notify_view v1 success. Des-3550:4# delete ...
Page 51
Des-3550 layer 2 fast ethernet switch show snmp groups purpose used to display the group-names of snmp groups currently configured on the switch. The security model, level, and status of each group are also displayed. Syntax show snmp groups description the show snmp groups command displays the grou...
Page 52
Des-3550 layer 2 fast ethernet switch group name : group7 readview name : readview writeview name : writeview notify view name : notifyview security model : snmpv3 security level : authpriv group name : initial readview name : restricted writeview name : notify view name : restricted security model ...
Page 54
Des-3550 layer 2 fast ethernet switch example usage: to create an snmp host to receive snmp messages: des-3550:4#create snmp host 10.48.74.100 v3 auth_priv public command: create snmp host 10.48.74.100 v3 auth_priv public success. Des-3550:4# delete snmp host purpose used to remove a recipient of sn...
Page 55
Des-3550 layer 2 fast ethernet switch show snmp host purpose used to display the recipient of snmp traps generated by the switch’s snmp agent. Syntax show snmp host {} description the show snmp host command is used to display the ip addresses and configuration information of remote snmp managers tha...
Page 56
Des-3550 layer 2 fast ethernet switch create trusted_host purpose used to create the trusted host. Syntax create trusted_host description the create trusted_host command creates the trusted host. The switch allows you to specify up to four ip addresses that are allowed to manage the switch via in-ba...
Page 57
Des-3550 layer 2 fast ethernet switch show trusted_host purpose used to display a list of trusted hosts entered on the switch using the create trusted_host command above. Syntax show trusted_host description this command is used to display a list of trusted hosts entered on the switch using the crea...
Page 58
Des-3550 layer 2 fast ethernet switch delete trusted_host purpose used to delete a trusted host entry made using the create trusted_host command above. Syntax delete trusted _host description this command is used to delete a trusted host entry made using the create trusted_host command above. Parame...
Page 59
Des-3550 layer 2 fast ethernet switch enable snmp traps purpose used to enable snmp trap support. Syntax enable snmp traps description the enable snmp traps command is used to enable snmp trap support on the switch. Parameters none. Restrictions only administrator-level users can issue this command....
Page 60
Des-3550 layer 2 fast ethernet switch show snmp traps purpose used to show snmp trap support on the switch . Syntax show snmp traps description this command is used to view the snmp trap support status currently configured on the switch. Parameters none. Restrictions only administrator-level users c...
Page 61
Des-3550 layer 2 fast ethernet switch disable snmp traps purpose used to disable snmp trap support on the switch. Syntax disable snmp traps description this command is used to disable snmp trap support on the switch. Parameters none. Restrictions only administrator-level users can issue this command...
Page 62
Des-3550 layer 2 fast ethernet switch config snmp system_contact purpose used to enter the name of a contact person who is responsible for the switch. Syntax config snmp system_contact{} description the config snmp system_contact command is used to enter the name and/or other information to identify...
Page 63
Des-3550 layer 2 fast ethernet switch example usage: to configure the switch location for “ h q 5 f ”: des-3550:4#config snmp system_location hq 5f command: config snmp system_location hq 5f success. Des-3550:4# config snmp system_name purpose used to configure the name for the switch. Syntax config...
Page 64
Des-3550 layer 2 fast ethernet switch enable rmon purpose used to enable rmon on the switch. Syntax enable rmon description this command is used, in conjunction with the disable rmon command below, to enable and disable remote monitoring (rmon) on the switch. Parameters none. Restrictions only admin...
Page 65
Des-3550 layer 2 fast ethernet switch disable rmon purpose used to disable rmon on the switch. Syntax disable rmon description this command is used, in conjunction with the enable rmon command above, to enable and disable remote monitoring (rmon) on the switch. Parameters none. Restrictions only adm...
Page 66
Des-3550 layer 2 fast ethernet switch 8 s witch u tility c ommands the download/upload commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. Command parameters download [ firmware {section_id } configuration {increment} ] config firmw...
Page 67
Des-3550 layer 2 fast ethernet switch download purpose used to download and install new firmware or a switch configuration file from a tftp server. Syntax download [firmware {image_id } configuration {increment} ] description this command is used to download a new firmware or a switch configuration ...
Page 68
Des-3550 layer 2 fast ethernet switch to download a configuration file: des-3550:4#download configuration 10.48.74.121 c:\cfg\setting.Txt command: download configuration 10.48.74.121 c:\cfg\setting.Txt connecting to server................... Done. Download configuration................. Done. Des-35...
Page 70
Des-3550 layer 2 fast ethernet switch show firmware information purpose used to display the firmware section information. Syntax show firmware information description this command is used to display the firmware section information parameters none. Restrictions none example usage: to display the cur...
Page 72
Des-3550 layer 2 fast ethernet switch example usage: to view the current configuration settings: des-3550:4#show config current_config command: show config current_config #------------------------------------------------------------------- # des-3550 configuration # # firmware: build 3.01-b20 # copy...
Page 74
Des-3550 layer 2 fast ethernet switch enable autoconfig purpose used to activate the autoconfiguration function for the switch. This will load a previously saved configuration file stored on a designated tftp server. Syntax enable autoconfig description when autoconfig is enabled on the switch, the ...
Page 75
Des-3550 layer 2 fast ethernet switch when autoconfig is enabled and the switch is rebooted, the normal login screen will appear for a few moments while the autoconfig request (i.E. Download configuration) is initiated. The console will then display the configuration parameters as they are loaded fr...
Page 76
Des-3550 layer 2 fast ethernet switch note: with autoconfig enabled, the switch ipif settings now define the switch as a dhcp client. Use the show switch command to display the new ip settings status. Disable autoconfig purpose use this to deactivate autoconfiguration from dhcp. Syntax disable autoc...
Page 77
Des-3550 layer 2 fast ethernet switch show autoconfig purpose used to display the current autoconfig status of the switch. Syntax show autoconfig description this will list the current status of the autoconfiguration function. Parameters none. Restrictions none. Example usage: to upload a: des-3550:...
Page 78
Des-3550 layer 2 fast ethernet switch ping purpose used to test the connectivity between network devices. Syntax ping {times } {timeout } description the ping command sends internet control message protocol (icmp) echo messages to a remote ip address. The remote ip address will then “echo” or return...
Page 80
Des-3550 layer 2 fast ethernet switch show packet ports purpose used to display statistics about the packets sent and received by the switch. Syntax show packet ports description this command is used to display statistics about packets sent and received by ports specified in the . Parameters − speci...
Page 81
Des-3550 layer 2 fast ethernet switch show error ports purpose used to display the error statistics for a range of ports. Syntax show error ports description this command will display all of the packet error statistics collected and logged by the switch for a given port list. Parameters − specifies ...
Page 83
Des-3550 layer 2 fast ethernet switch example usage: to display the port utilization statistics: des-3550:4#show utilization ports command: show utilization ports port tx/sec rx/sec util port tx/sec rx/sec util ------ ---------- ---------- ---- ------ ---------- ---------- ---- 1 0 0 0 22 0 0 0 2 0 ...
Page 84
Des-3550 layer 2 fast ethernet switch to display the current cpu utilization: des-3550:4#show utilization cpu command: show utilization cpu cpu utilization : -------------------------------------------------------------------------------------------- five seconds - 15% one minute - 25% five minutes ...
Page 85
Des-3550 layer 2 fast ethernet switch clear log purpose used to clear the switch’s history log. Syntax clear log description this command will clear the switch’s history log. Parameters none. Restrictions only administrator-level users can issue this command. Example usage: to clear the log informat...
Page 86
Des-3550 layer 2 fast ethernet switch example usage: to display the switch history log: des-3550:4#show log index 5 command: show log index 5 index time log text ----- ------------------- ---------------------------------------------------- 5 00000 days 00:01:09 successful login through console (use...
Page 87
Des-3550 layer 2 fast ethernet switch disable syslog purpose used to enable the system log to be sent to a remote host. Syntax disable syslog description the disable syslog command enables the system log to be sent to a remote host. Parameters none. Restrictions only administrator-level users can is...
Page 89
Des-3550 layer 2 fast ethernet switch create syslog host parameters local0 − specifies that local use 0 messages will be sent to the remote host. This corresponds to number 16 from the list above. Local1 − specifies that local use 1 messages will be sent to the remote host. This corresponds to numbe...
Page 91
Des-3550 layer 2 fast ethernet switch config syslog host parameters numerical code facility numerical code facility 0 kernel messages 1 user-level messages 2 mail system 3 system daemons 4 security/authorization messages 5 messages generated internally by syslog 6 line printer subsystem 7 network ne...
Page 92
Des-3550 layer 2 fast ethernet switch example usage: to configure a syslog host for all hosts: des-3550:4#config syslog host all severity all facility local0 command: config syslog host all severity all facility local0 success. Des-3550:4# delete syslog host purpose used to remove a syslog host, tha...
Page 93
Des-3550 layer 2 fast ethernet switch show syslog host purpose used to display the syslog hosts currently configured on the switch. Syntax show syslog host {} description the show syslog host command is used to display the syslog hosts that are currently configured on the switch. Parameters − specif...
Page 95
Des-3550 layer 2 fast ethernet switch to log critical warnings and send critical warnings to the snmp agent: des-3550:4#config system_severity all critical command: config system_severity all critical success. Des-3550:4# 91.
Page 96: (Mstp) C
Des-3550 layer 2 fast ethernet switch 10 m ultiple s panning t ree p rotocol (mstp) c ommands this switch supports three versions of the spanning tree protocol; 802.1d stp, 802.1w rapid stp and 802.1s mstp. Multiple spanning tree protocol, or mstp, is a standard defined by the ieee community that al...
Page 98
Des-3550 layer 2 fast ethernet switch enable stp purpose used to globally enable stp on the switch. Syntax enable stp description this command allows the spanning tree protocol to be globally enabled on the switch. Parameters none. Restrictions only administrator-level users can issue this command. ...
Page 99
Des-3550 layer 2 fast ethernet switch 95.
Page 103
Des-3550 layer 2 fast ethernet switch example usage: to configure stp with path cost 19, hellotime set to 5 seconds, migration enable, and state enable for ports 1-5 of module 1. Des-3550:4#config stp ports 1-5 externalcost 19 hellotime 5 migrate yes state enable command: config stp ports 1-5 extern...
Page 105
Des-3550 layer 2 fast ethernet switch delete stp instance_id purpose used to delete a stp instance id from the switch. Syntax delete stp instance_id description this command allows the user to delete a previously configured stp instance id from the switch. Parameters - enter a value between 1 and 4 ...
Page 106
Des-3550 layer 2 fast ethernet switch example usage: to set the priority value for instance_id 2 as 4096. Des-3550:4#config stp priority 4096 instance_id 2 command : config stp priority 4096 instance_id 2 success. Des-3550:4# config stp mst_config_id purpose used to update the mstp configuration ind...
Page 108
Des-3550 layer 2 fast ethernet switch example usage: to designate ports 1 through 5, with instance id 2, to have an auto internalcost and a priority of 16: des-3550:4#config stp mst_config_id ports 1-5 instance_id 2 internalcost auto priority 16 command : config stp mst_config_id ports 1-5 instance_...
Page 109
Des-3550 layer 2 fast ethernet switch status 2 : stp enabled for rstp des-3550:4#show stp command: show stp stp status : enabled stp version : rstp max age : 20 hello time : 2 forward delay : 15 max age : 20 tx hold count : 3 forwarding bpdu : enabled des-3550:4# status 3 : stp enabled for mstp des-...
Page 110
Des-3550 layer 2 fast ethernet switch show stp ports purpose used to display the switch’s current stp ports configuration. Syntax show stp ports description this command displays the stp ports settings for a specified port or group of ports (one port at a time). Parameters − specifies a port or rang...
Page 111
Des-3550 layer 2 fast ethernet switch show stp instance_id purpose used to display the switch’s stp instance configuration syntax show stp instance_id description this command displays the switch’s current stp instance settings and the stp instance operational status. Parameters - enter a value defi...
Page 112
Des-3550 layer 2 fast ethernet switch show stp mst_config_id purpose used to display the mstp configuration identification. Syntax show stp mst_config_id description this command displays the switch’s current mstp configuration identification. Parameters none restrictions none example usage: to show...
Page 113
Des-3550 layer 2 fast ethernet switch 11 f orwarding d atabase c ommands the layer 2 forwarding database commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. Command parameters create fdb port create multicast_fdb config multicast_fd...
Page 114
Des-3550 layer 2 fast ethernet switch create fdb purpose used to create a static entry to the unicast mac address forwarding table (database). Syntax create fdb port description this command will make an entry into the switch’s unicast mac address forwarding database. Parameters − the name of the vl...
Page 115
Des-3550 layer 2 fast ethernet switch create multicast_fdb purpose used to create a static entry to the multicast mac address forwarding table (database) syntax create multicast_fdb description this command will make an entry into the switch’s multicast mac address forwarding database. Parameters − ...
Page 117
Des-3550 layer 2 fast ethernet switch config fdb aging_time purpose used to set the aging time of the forwarding database. Syntax config fdb aging_time description the aging time affects the learning process of the switch. Dynamic forwarding table entries, which are made up of the source mac address...
Page 118
Des-3550 layer 2 fast ethernet switch delete fdb purpose used to delete an entry to the switch’s forwarding database. Syntax delete fdb description this command is used to delete a previous entry to the switch’s mac address forwarding database. Parameters − the name of the vlan on which the mac addr...
Page 122
Des-3550 layer 2 fast ethernet switch example usage: to display unicast mac address table: des-3550:4#show fdb command: show fdb unicast mac address aging time = 300 vid vlan name mac address port type ---- ---------------- ----------------- ------ ---------------- 1 default 00-00-39-34-66-9a 10 dyn...
Page 124
Des-3550 layer 2 fast ethernet switch example usage: to view the multicast port filtering mode for all ports: des-3550:4#show multicast port_filtering_mode command: show multicast port_filtering_mode port multicast filter mode ------ --------------------------- 1 forward_unregistered_groups 2 forwar...
Page 127
Des-3550 layer 2 fast ethernet switch show traffic control purpose used to display current traffic control settings. Syntax show traffic control {group_list } description this command displays the current storm traffic control configuration on the switch. Parameters group_list − used to specify a br...
Page 128: S C
Des-3550 layer 2 fast ethernet switch 13 q o s c ommands the des-3550 switch supports 802.1p priority queuing. The switch has 4 priority queues. These priority queues are numbered from 3 (class 3) — the highest priority queue — to 0 (class 0) — the lowest priority queue. The eight priority tags spec...
Page 130
Des-3550 layer 2 fast ethernet switch show bandwidth_control purpose used to display the bandwidth control table. Syntax show bandwidth_control {} description the show bandwidth_control command displays the current bandwidth control configuration on the switch, on a port-by-port basis. Parameters − ...
Page 132
Des-3550 layer 2 fast ethernet switch example usage: to configure the traffic scheduling mechanism for each queue: des-3550:4# config scheduling 0 max_packet 100 max_latency 150 command: config scheduling 0 max_packet 100 max_latency 150 success. Des-3550:4# show scheduling purpose used to display t...
Page 133
Des-3550 layer 2 fast ethernet switch config 802.1p user_priority purpose used to map the 802.1p user priority of an incoming packet to one of the four hardware queues available on the switch. Syntax config 802.1p user_priority description this command allows you to configure the way the switch will...
Page 134
Des-3550 layer 2 fast ethernet switch show 802.1p user_priority purpose used to display the current mapping between an incoming packet’s 802.1p priority value and one of the switch’s four hardware priority queues. Syntax show 802.1p user_priority description the show 802.1p user_prioritycommand disp...
Page 135
Des-3550 layer 2 fast ethernet switch config 802.1p default_priority purpose used to configure the 802.1p default priority settings on the switch. If an untagged packet is received by the switch, the priority configured with this command will be written to the packet’s priority field. Syntax config ...
Page 136
Des-3550 layer 2 fast ethernet switch show 802.1 default_priority purpose used to display the currently configured 802.1p priority value that will be assigned to an incoming, untagged packet before being forwarded to its destination. Syntax show 802.1p default_priority {} description the show 802.1p...
Page 138
Des-3550 layer 2 fast ethernet switch config mirror port purpose used to configure a mirror port − source port pair on the switch. Traffic from any source port to a target port can be mirrored for real-time analysis. A logic analyzer or an rmon proble can then be attached to study the traffic crossi...
Page 139
Des-3550 layer 2 fast ethernet switch example usage: to delete the mirroring ports: des-3550:4#config mirror port 1 delete source port 2-4 command: config mirror 1 delete source 2-4 success. Des-3550:4# enable mirror purpose used to enable a previously entered port mirroring configuration. Syntax en...
Page 140
Des-3550 layer 2 fast ethernet switch disable mirror purpose used to disable a previously entered port mirroring configuration. Syntax disable mirror description this command, combined with the enable mirror command above, allows you to enter a port mirroring configuration into the switch, and then ...
Page 141
Des-3550 layer 2 fast ethernet switch show mirror purpose used to show the current port mirroring configuration on the switch. Syntax show mirror description this command displays the current port mirroring configuration on the switch. Parameters none restrictions none. Example usage: to display mir...
Page 144
Des-3550 layer 2 fast ethernet switch delete vlan purpose used to delete a previously configured vlan on the switch. Syntax delete vlan description this command will delete a previously configured vlan on the switch. Parameters − the vlan name of the vlan you want to delete. Restrictions only admini...
Page 147
Des-3550 layer 2 fast ethernet switch example usage: to set the ingress checking status, the sending and receiving gvrp information : des-3550:4#config gvrp 1-4 state enable ingress_checking enable acceptable_frame tagged_only pvid 2 command: config gvrp 1-4 state enable ingress_checking enable acce...
Page 148
Des-3550 layer 2 fast ethernet switch disable gvrp purpose used to disable gvrp on the switch. Syntax disable gvrp description this command, along with enable gvrp, is used to enable and disable gvrp on the switch, without changing the gvrp configuration on the switch. Parameters none. Restrictions ...
Page 149
Des-3550 layer 2 fast ethernet switch example usage: to display the switch’s current vlan settings: des-3550:4#show vlan command: show vlan vid : 1 vlan name : default vlan type : static advertisement : enabled member ports : 1,5-50 static ports : 1,5-50 current untagged ports : 1,5-50 static untagg...
Page 150
Des-3550 layer 2 fast ethernet switch show gvrp purpose used to display the gvrp status for a port list on the switch. Syntax show gvrp {} description this command displays the gvrp status for a port list on the switch parameters − specifies a port or range of ports for which the gvrp status is to b...
Page 151: Vlan C
Des-3550 layer 2 fast ethernet switch 16 a symmetric vlan c ommands the asymmetric vlan commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. Command parameters enable asymmetric_vlan disable asymmetric_vlan show asymmetric_vlan each ...
Page 152
Des-3550 layer 2 fast ethernet switch enable asymmetric_vlan purpose used to enable the asymmetric vlan function on the switch. Syntax enable asymmetric_vlan description this command enables the asymmetric vlan function on the switch parameters none. Restrictions only administrator-level users can i...
Page 153
Des-3550 layer 2 fast ethernet switch show asymmetric_vlan purpose used to view the asymmetric vlan state on the switch. Syntax show asymmetric_vlan description this command displays the asymmetric vlan state on the switch parameters none. Restrictions only administrator-level users can issue this c...
Page 156
Des-3550 layer 2 fast ethernet switch delete link_aggregation group_id purpose used to delete a previously configured link aggregation group. Syntax delete link_aggregation group_id description this command is used to delete a previously configured link aggregation group. Parameters − specifies the ...
Page 161
Des-3550 layer 2 fast ethernet switch show lacp_port purpose used to display current lacp port mode settings. Syntax show lacp_port {} description this command will display the lacp mode settings as they are currently configured. Parameters - specifies a port or range of ports to be configured. If n...
Page 164
Des-3550 layer 2 fast ethernet switch show ipif purpose used to display the configuration of an ip interface on the switch. Syntax show ipif description this command will display the configuration of an ip interface on the switch. Parameters − the name created for the ip interface. Restrictions none...
Page 168
Des-3550 layer 2 fast ethernet switch example usage: to configure igmp snooping: des-3550:4#config igmp_snooping querier default query_interval 125 state enable command: config igmp_snooping querier default query_interval 125 state enable success. Des-3550:4# config router_ports purpose used to conf...
Page 169
Des-3550 layer 2 fast ethernet switch enable igmp_snooping purpose used to enable igmp snooping on the switch. Syntax enable igmp_snooping {forward_mcrouter_only} description this command allows you to enable igmp snooping on the switch. If forward_mcrouter_onlyis specified, the switch will only for...
Page 170
Des-3550 layer 2 fast ethernet switch disable igmp_snooping purpose used to enable igmp snooping on the switch. Syntax disable igmp_snooping {forward_mcrouter_only} description this command disables igmp snooping on the switch. Igmp snooping can be disabled only if ip multicast routing is not being ...
Page 171
Des-3550 layer 2 fast ethernet switch show igmp_snooping purpose used to show the current status of igmp snooping on the switch. Syntax show igmp_snooping {vlan } description this command will display the current igmp snooping configuration on the switch. Parameters − the name of the vlan to view th...
Page 172
Des-3550 layer 2 fast ethernet switch show igmp_snooping group purpose used to display the current igmp snooping group configuration on the switch. Syntax show igmp_snooping group {vlan } description this command will display the current igmp snooping group configuration on the switch. Parameters − ...
Page 174
Des-3550 layer 2 fast ethernet switch show igmp_snooping forwarding purpose used to display the igmp snooping forwarding table entries on the switch. Syntax show igmp_snooping forwarding {vlan } description this command will display the current igmp snooping forwarding table entries currently config...
Page 175
Des-3550 layer 2 fast ethernet switch example usage: to view the current igmp snooping group: des-3550:4#show igmp_snooping group command: show igmp_snooping group vlan name : default reports : 1 vlan name : default vlan name : default mac address : 01-00-5e-7f-ff-fe des-3550:4# multicast group : 22...
Page 176: Ip M
Des-3550 layer 2 fast ethernet switch 20 l imited ip m ulticast a ddress the limited ip multicast command allows the administrator to permit or deny access to a port or range of ports by specifying a range of multicast addresses. The limited ip multicast commands in the command line interface (cli) ...
Page 179
Des-3550 layer 2 fast ethernet switch show limited multicast address purpose used to show per-port limited ip multicast address range. Syntax show limited multicast address {} description the show limited multicast address command allows you to show multicat address range by ports. Parameters a port...
Page 180: Dhcp R
Des-3550 layer 2 fast ethernet switch 21 dhcp r elay the switch can setup as a dhcp relay agent. A dhcp relay agent extends the reach of a dhcp server so that it is not necessary to use multiple dhcp servers to accommodate multiple ip subnets. As a relay agent, the switch does not manage ip addresse...
Page 182
Des-3550 layer 2 fast ethernet switch example usage: to configure dhcp relay hops and timeout: des-3550:4#config dhcp_relay hops 2 time 23 command: config dhcp_relay hops 2 time 23 success. Des-3550:4# to add an ip destination to the dhcp relay table: des-3550:4#config dhcp_relay add ipif system 10....
Page 184
Des-3550 layer 2 fast ethernet switch example usage: to configure dhcp relay option 82 state: des-3550:4#config dhcp_relay option_82 state enable command: config dhcp_relay option_82 state enable success. Des-3550:4# to configure dhcp relay option 82 check: des-3550:4#config dhcp_relay option_82 che...
Page 185
Des-3550 layer 2 fast ethernet switch show dhcp_relay purpose used to display the current dhcp/bootp relay configuration. Show dhcp_relay {ipif } description this command will display the current dhcp relay configuration for the switch, or if an ip interface name is specified, the dhcp relay configu...
Page 186
Des-3550 layer 2 fast ethernet switch example usage: to show a single ip destination of the dhcp relay configuration: des-3550:4#show dhcp_relay ipif system command: show dhcp_relay ipif system interface server 1 server 2 server 3 server 4 ------------ --------------- --------------- ---------------...
Page 187
Des-3550 layer 2 fast ethernet switch disable dhcp_relay purpose used to disable the dhcp/bootp relay function on the switch. Syntax disable dhcp_relay description this command is used to disable the dhcp/bootp relay function on the switch. Parameters none. Restrictions only administrator-level user...
Page 188: 802.1X C
Des-3550 layer 2 fast ethernet switch 22 802.1x c ommands the des-3550 implements the server-side of the ieee 802.1x port-based and mac-based network access control. This mechanism is intended to allow only authorized users, or other network devices, access to network resources by establishing crite...
Page 189
Des-3550 layer 2 fast ethernet switch enable 802.1x purpose used to enable the 802.1x server on the switch. Syntax enable 802.1x the enable 802.1x command enables the 802.1x network access control server application on the switch. To select between port-based or mac- based, use the config 802.1x aut...
Page 190
Des-3550 layer 2 fast ethernet switch show 802.1x auth_configuration purpose used to display the current configuration of the 802.1x server on the switch. Syntax show 802.1x auth_configuration {ports } description the show 802.1x user command is used to display the 802.1x port-based or mac- based ne...
Page 191
Des-3550 layer 2 fast ethernet switch example usage: to display the 802.1x authentication states: des-3550:4#show 802.1x auth_configuration ports 1 command: show 802.1x auth_configuration ports 1 802.1x : enabled authentication mode : port_based port control : auto authentication protocol : radius_e...
Page 192
Des-3550 layer 2 fast ethernet switch show 802.1x auth_state purpose used to display the current authentication state of the 802.1x server on the switch. Syntax show 802.1x auth_state {ports } description the show 802.1xauth_statecommand is used to display the current authentication state of the 802...
Page 193
Des-3550 layer 2 fast ethernet switch example usage: to display the 802.1x auth state for port-based 802.1x: des-3550:4#show 802.1x auth_state command: show 802.1x auth_state 2 forceauth success authorized 4 forceauth success authorized port auth pae state backend state port status ------ ----------...
Page 194
Des-3550 layer 2 fast ethernet switch example usage: to display the 802.1x auth state for mac-based 802.1x: des-3550:4#show 802.1x auth_state port number : 1:1 1 00-08-02-4e-da-fa authenticated idle authorized 4 7 command: show 802.1x auth_state index mac address auth pae state backend state port st...
Page 198
Des-3550 layer 2 fast ethernet switch example usage: to configure 802.1x authentication parameters for ports 1 – 20: des-3550:4#config 802.1x auth_parameter ports 1–20 direction both command: config 802.1x auth_parameter ports 1–20 direction both success. Des-3550:4# config 802.1x auth_protocol purp...
Page 202
Des-3550 layer 2 fast ethernet switch config radius delete purpose used to delete a previously entered radius server configuration. Syntax config radius delete description the config radius delete command is used to delete a previously entered radius server configuration. Parameters − assigns a numb...
Page 204
Des-3550 layer 2 fast ethernet switch show radius purpose used to display the current radius configurations on the switch. Show radius the show radius command is used to display the current radius configurations on the switch. Syntax description parameters none. Restrictions none. Example usage: com...
Page 205: (Acl) C
Des-3550 layer 2 fast ethernet switch 23 a ccess c ontrol l ist (acl) c ommands the des-3550 implements access control lists that enable the switch to deny network access to specific devices or device groups based on ip settings or mac address. Note: the acl command set has been changed for the rele...
Page 206
Des-3550 layer 2 fast ethernet switch access profiles allow you to establish criteria to determine whether or not the switch will forward packets based on the information contained in each packet’s header. Creating an access profile is divided into two basic parts. First, an access profile must be c...
Page 207
Des-3550 layer 2 fast ethernet switch due to a chipset limitation, the switch supports a maximium of 9 access profiles. The rules used to define the access profiles are limited to a total of 800 rules for the switch. There is an additional limitation on how the rules are distributed among the fast e...
Page 208
Des-3550 layer 2 fast ethernet switch create access_profile purpose used to create an access profile on the switch and to define which parts of each incoming frame’s header the switch will examine. Masks can be entered that will be combined with the values the switch finds in the specified frame hea...
Page 209
Des-3550 layer 2 fast ethernet switch create access_profile parameters ip − specifies that the switch will examine the ip address in each frame’s header. • vlan − specifies a vlan mask. • source_ip_mask − specifies an ip address mask for the source ip address. • destination_ip_mask − specifies an ip...
Page 210
Des-3550 layer 2 fast ethernet switch create access_profile packet_content_mask – specifies that the switch will mask the packet header beginning with the offset value specified as follows: • • • • • profile_id − sets the relative priority for the profile. Priority is set relative to other profiles ...
Page 211
Des-3550 layer 2 fast ethernet switch delete access_profile purpose used to delete a previously created access profile. Syntax delete access_profile [profile_id ] description the delete access_profilecommand is used to delete a previously created access profile on the switch. Parameters profile_id −...
Page 212
Des-3550 layer 2 fast ethernet switch config access_profile purpose used to configure an access profile on the switch and to define specific values that will be used to by the switch to determine if a given packet should be forwarded or filtered. Masks entered using the create access_profile command...
Page 213
Des-3550 layer 2 fast ethernet switch config access_profile parameters ip − specifies that the switch will look into the ip fields in each packet. • • • destination_id − specifies that the access profile will apply to only packets with this destination ip address. • • • type − specifies that the acc...
Page 214
Des-3550 layer 2 fast ethernet switch config access_profile parameters • packet_content_mask – specifies that the switch will mask the packet header beginning with the offset value specified as follows: • • • offset_32-47 - enter a value in hex form to mask the packet from byte 32 to byte 47. • • po...
Page 215
Des-3550 layer 2 fast ethernet switch show access_profile purpose used to display the currently configured access profiles on the switch. Syntax show access_profile {profile_id {access_id }} description the show access_profile command is used to display the currently configured access profiles. Para...
Page 216
Des-3550 layer 2 fast ethernet switch example usage: to display all of the currently configured access profiles on the switch: des-3550:4#show access_profile command: show access_profile access profile table access profile id : 4 type : ip frame filter ports : all masks : vlan ---------------- id mo...
Page 217
Des-3550 layer 2 fast ethernet switch 24 t raffic s egmentation c ommands traffic segmentation allows you to further sub-divide vlans into smaller groups of ports that will help to reduce traffic on the vlan. The vlan rules take precedence, and then the traffic segmentation rules are applied. Comman...
Page 219
Des-3550 layer 2 fast ethernet switch show traffic_segmentation purpose used to display the current traffic segmentation configuration on the switch. Syntax show traffic_segmentation description the show traffic_segmentation command is used to display the current traffic segmentation configuration o...
Page 220: Sntp
Des-3550 layer 2 fast ethernet switch 25 t ime and sntp c ommands the simple network time protocol (sntp) (an adaptation of the network time protocol (npt)) commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. Command parameters conf...
Page 222
Des-3550 layer 2 fast ethernet switch show sntp purpose used to display the sntp information. Syntax show sntp description this command will display sntp settings information including the source ip address, time and poll interval. Parameters none. Restrictions only administrator-level users can iss...
Page 223
Des-3550 layer 2 fast ethernet switch enable sntp purpose to enable sntp server support. Enable sntp description this will enable sntp support. Sntp service must be separately configured (see config sntp). Enabling and configuring sntp support will override any manually configured system time settin...
Page 224
Des-3550 layer 2 fast ethernet switch disable sntp purpose to disable sntp server support. Syntax disable sntp description this will disable sntp support. Sntp service must be separately configured (see config sntp). Parameters none. Restrictions only administrator-level users can issue this command...
Page 225
Des-3550 layer 2 fast ethernet switch config time purpose used to manually configure system time and date settings. Syntax config time description this will configure the system time and date settings. These will be overridden if sntp is configured and enabled. Parameters date – express the date usi...
Page 227
Des-3550 layer 2 fast ethernet switch config dst annual - using annual mode will enable dst seasonal time adjustment. Annual mode requires that the dst beginning and ending date be specified concisely. For example, specify to begin dst on april 3 and end dst on october 14. S_week - configure the wee...
Page 228
Des-3550 layer 2 fast ethernet switch des-3550:4#config dst repeating s_week 2 s_day tue s_mth 4 s_time 15:00 e_week 2 e_day wed e_mth 10 e_time 15:30 offset 30 command: config dst repeating s_week 2 s_day tue s_mth 4 s_time 15:00 e_week 2 e_day wed e_mth 10 e_time 15:30 offset 30 success. Des-3550:...
Page 229: Ip-Mac B
Des-3550 layer 2 fast ethernet switch 26 ip-mac b inding the ip-mac binding feature is a security measure that restricts access to a switch to authorized users. Only the authorized client can access a switch’s port by comparing a pre-configured ip/mac matching database to the ip/mac match extracted ...
Page 230
Des-3550 layer 2 fast ethernet switch create address_binding ip_mac ipaddress purpose used to create an ip-mac binding entry. Syntax mac_address description this command will create an ip-mac binding entry for authorized access. An ip/mac table is created and used for comparison to arp packet inform...
Page 231
Des-3550 layer 2 fast ethernet switch example usage: to config address binding on the switch: des-3550:4# config address_binding ip_mac ipaddress 10.1.1.3 mac_address 00-00-00-00-00-05 command: config address_binding ip_mac ipaddress 10.1.1.3 mac_address 00-00-00-00-00-05 success. Des-3550:4# config...
Page 235
Des-3550 layer 2 fast ethernet switch create arpentry purpose used to make a static entry into the arp table. Syntax create arpentry description this command is used to enter an ip address and the corresponding mac address into the switch’s arp table. Parameters − the ip address of the end node or s...
Page 236
Des-3550 layer 2 fast ethernet switch config arpentry purpose used to configure a static entry in the arp table. Syntax config arpentry description this command is used to configure a static entry in the arp table. The user may specify the ip address and the corresponding mac address of an entry in ...
Page 238
Des-3550 layer 2 fast ethernet switch config arp_aging time purpose used to configure the age-out timer for arp table entries on the switch. Config arp_aging time description this command sets the maximum amount of time, in minutes, that an arp entry can remain in the switch’s arp table, without bei...
Page 240
Des-3550 layer 2 fast ethernet switch clear arptable purpose used to remove all dynamic arp table entries. Syntax clear arptable description this command is used to remove dynamic arp table entries from the switch’s arp table. Static arp table entries are not affected. Parameters none. Only administ...
Page 241
Des-3550 layer 2 fast ethernet switch 28 r outing t able c ommands the routing table commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. Command parameters create iproute [default] {} delete iproute [default] show iproute each comma...
Page 242
Des-3550 layer 2 fast ethernet switch create iproute default purpose used to create ip route entries to the switch’s ip routing table. Syntax create iproute [default] {} description this command is used to create a default static ip route entry to the switch’s ip routing table. Parameters − the gate...
Page 243
Des-3550 layer 2 fast ethernet switch delete iproute default purpose used to delete a default ip route entry from the switch’s ip routing table. Delete iproute [default] description this command will delete an existing default entry from the switch’s ip routing table. Parameters none. Restrictions o...
Page 244
Des-3550 layer 2 fast ethernet switch show iproute purpose used to display the switch’s current ip routing table. Syntax this command will display the switch’s current ip routing table. Restrictions none. Show iproute description parameters none. Example usage: to display the contents of the ip rout...
Page 245: Mac N
Des-3550 layer 2 fast ethernet switch 29 mac n otification c ommands the mac notification commands in the command line interface (cli) are listed, in the following table, along with their appropriate parameters. Command parameters enable mac_notification disable mac_notification config mac_notificat...
Page 246
Des-3550 layer 2 fast ethernet switch enable mac_notification purpose used to enable global mac address table notification on the switch. Syntax enable mac_notification description this command is used to enable mac address notification without changing configuration. Parameters none. Restrictions o...
Page 248
Des-3550 layer 2 fast ethernet switch config mac_notification ports purpose used to configure mac address notification status settings. Syntax config mac_notification ports [ description mac address notificiation is used to monitor mac addresses learned and entered into the fdb. Parameters - specify...
Page 249
Des-3550 layer 2 fast ethernet switch show mac_notification used to display the switch’s mac address table notification global settings syntax show mac_notification description this command is used to display the switch’s mac address table notification global settings. Parameters none. Restrictions ...
Page 250
Des-3550 layer 2 fast ethernet switch example usage: to display all port’s mac address table notification status settings: des-3550:4#show mac_notification ports command: show mac_notification ports port # mac address table notification state ------ --------------------------------------------------...
Page 251
Des-3550 layer 2 fast ethernet switch 30 a ccess a uthentication c ontrol c ommands the tacacs / xtacacs / tacacs+ / radius commands let you secure access to the switch using the tacacs / xtacacs / tacacs+ / radius protocols. When a user logs in to the switch or tries to access the administrator lev...
Page 252
Des-3550 layer 2 fast ethernet switch note: tacacs, xtacacs and tacacs+ are separate entities and are not compatible. The switch and the server must be configured exactly the same, using the same protocol. (for example, if the switch is set up for tacacs authentication, so must be the host server.) ...
Page 254
Des-3550 layer 2 fast ethernet switch each command is listed, in detail, in the following sections. Enable authen_policy purpose used to enable system access authentication policy. Enable authen_policy this command will enable an administrator-defined authentication policy for users trying to access...
Page 255
Des-3550 layer 2 fast ethernet switch disable authen_policy purpose used to disable system access authentication policy. Syntax disable authen_policy description this command will disable the administrator-defined authentication policy for users trying to access the switch. When disabled, the switch...
Page 256
Des-3550 layer 2 fast ethernet switch show authen_policy purpose used to display the system access authentication policy status on the switch. Syntax show authen_policy description this command will show the current status of the access authentication policy on the switch. Parameters none. Restricti...
Page 257
Des-3550 layer 2 fast ethernet switch create authen_login method_list_name purpose used to create a user defined method list of authentication methods for users logging on to the switch. Create authen_login method_list_name this command is used to create a list for authentication techniques for user...
Page 259
Des-3550 layer 2 fast ethernet switch config authen_login tacacs protocol from a remote tacacs server. Xtacacs – adding this parameter will require the user to be authenticated using the xtacacs protocol from a remote xtacacs server. Tacacs+ – adding this parameter will require the user to be authen...
Page 260
Des-3550 layer 2 fast ethernet switch example usage: to configure the user defined method list “trinity” with authentication methods tacacs, xtacacs and local, in that order. Des-3550:4#config authen_login method_list_name trinity method tacacs xtacacs local command: config authen_login method_list_...
Page 261
Des-3550 layer 2 fast ethernet switch delete authen_login method_list_name purpose used to delete a previously configured user defined method list of authentication methods for users logging on to the switch. Syntax delete authen_login method_list_name description this command is used to delete a li...
Page 263
Des-3550 layer 2 fast ethernet switch create authen_enable method_list_name purpose used to create a user-defined method list of authentication methods for promoting normal user level privileges to administrator level privileges on the switch. Syntax create authen_enable method_list_name description...
Page 265
Des-3550 layer 2 fast ethernet switch config authen_enable tacacs protocol from a remote tacacs server. Xtacacs – adding this parameter will require the user to be authenticated using the xtacacs protocol from a remote xtacacs server. Tacacs+ – adding this parameter will require the user to be authe...
Page 266
Des-3550 layer 2 fast ethernet switch delete authen_enable method_list_name purpose used to delete a user-defined method list of authentication methods for promoting normal user level privileges to administrator level privileges on the switch. Syntax delete authen_enable method_list_name description...
Page 268
Des-3550 layer 2 fast ethernet switch example usage: to display all method lists for promoting user level privileges to administrator level privileges. Des-3550:4#show authen_enable all command: show authen_enable all method list name priority method name comment ---------------- -------- ----------...
Page 270
Des-3550 layer 2 fast ethernet switch show authen application purpose used to display authentication methods for the various applications on the switch. Syntax show authen application description this command will display all of the authentication method lists (login, enable administrator privileges...
Page 272
Des-3550 layer 2 fast ethernet switch example usage: to create a tacacs+ authentication server host, with port number 1234, a timeout value of 10 seconds and a retransmit count of 5. Des-3550:4#create authen server_host 10.1.1.121 protocol tacacs+ port 1234 timeout 10 retransmit 5 command: create au...
Page 274
Des-3550 layer 2 fast ethernet switch example usage: to configure a tacacs+ authentication server host, with port number 4321, a timeout value of 12 seconds and a retransmit count of 4. Des-3550:4#config authen server_host 10.1.1.121 protocol tacacs+ port 4321 timeout 12 retransmit 4 command: config...
Page 275
Des-3550 layer 2 fast ethernet switch example usage: to delete a user-defined tacacs+ authentication server host: des-3550:4#delete authen server_host 10.1.1.121 protocol tacacs+ command: delete authen server_host 10.1.1.121 protocol tacacs+ success. Des-3550:4# show authen server_host purpose used ...
Page 276
Des-3550 layer 2 fast ethernet switch example usage: to view authenticaion server hosts currently set on the switch: des-3550:4#show authen server_host command: show authen server_host ip address protocol port timeout retransmit key --------------- -------- ----- ------- --------------- ------------...
Page 278
Des-3550 layer 2 fast ethernet switch example usage: to add an authentication host to server group “group_1”: des-3550:4# config authen server_group group_1 add server_host 10.1.1.121 protocol tacacs+ command: config authen server_group group_1 add server_host 10.1.1.121 protocol tacacs+ success. De...
Page 279
Des-3550 layer 2 fast ethernet switch show authen server_group purpose used to view authentication server groups on the switch. Syntax show authen server_group description this command will display authentication server groups currently configured on the switch. This command will display the followi...
Page 280
Des-3550 layer 2 fast ethernet switch config authen parameter response_timeout purpose used to configure the amount of time the switch will wait for a user to enter authentication before timing out. Syntax config authen parameter response_timeout description this command will set the time the switch...
Page 281
Des-3550 layer 2 fast ethernet switch config authen parameter attempt purpose used to configure the maximum number of times the switch will accept authentication attempts. Config authen parameter attempt description this command will configure the maximum number of times the switch will accept authe...
Page 282
Des-3550 layer 2 fast ethernet switch show authen parameter purpose used to display the authentication parameters currently configured on the switch. Syntax show authen parameter description this command will display the authentication parameters currently configured on the switch, including the res...
Page 283
Des-3550 layer 2 fast ethernet switch enable admin purpose used to promote user level privileges to administrator level privileges syntax enable admin description this command is for users who have logged on to the switch on the normal user level, to become promoted to the administrator level. After...
Page 284
Des-3550 layer 2 fast ethernet switch config admin local_enable purpose used to configure the local enable password for administrator level privileges. Syntax config admin local_enable description this command will configure the locally enabled password for the enable admin command. When a user choo...
Page 285: Ssh
Des-3550 layer 2 fast ethernet switch 31 ssh c ommands the steps required to use the secure shell (ssh) protocol for secure communication between a remote pc (the ssh client) and the switch (the ssh server), are as follows: • • • • finally, enable ssh on the switch using the enable ssh command. • co...
Page 286
Des-3550 layer 2 fast ethernet switch enable shh purpose used to enable ssh. Syntax enable ssh description this command allows you to enable ssh on the switch. Parameters none. Restrictions only administrator-level users can issue this command. Usage example: to enable ssh: des-3550:4#enable ssh com...
Page 288
Des-3550 layer 2 fast ethernet switch show ssh authmode purpose used to display the ssh authentication mode setting. Syntax show ssh authmode description this command will allow you to display the current ssh authentication set on the switch. Parameters none. Restrictions none. Example usage: comman...
Page 290
Des-3550 layer 2 fast ethernet switch show ssh server purpose used to display the ssh server setting. Syntax show ssh server description this command allows you to display the current ssh server setting. Parameters none. Restrictions none. Usage example: to display the ssh server: des-3550:4# show s...
Page 292
Des-3550 layer 2 fast ethernet switch show ssh user purpose used to display the ssh user setting. Syntax show ssh user description this command allows you to display the current ssh user setting. Parameters none. Restrictions none. Example usage: to display the ssh user: des-3550:4#show ssh user com...
Page 294
Des-3550 layer 2 fast ethernet switch show ssh algorithm purpose used to display the ssh algorithm setting. Syntax show ssh algorithm description this command will display the current ssh algorithm setting status. Parameters none. Restrictions none. Usage example: to display ssh algorithms cuurently...
Page 295: Ssl C
Des-3550 layer 2 fast ethernet switch 32 ssl c ommands secure sockets layer or ssl is a security feature that will provide a secure communication path between a host and client through the use of authentication, digital signatures and encryption. These security functions are implemented through the ...
Page 296
Des-3550 layer 2 fast ethernet switch each command is listed, in detail, in the following sections. 292.
Page 298
Des-3550 layer 2 fast ethernet switch note: enabling the ssl function on the switch will disable the port for the web manager (port 80). To log on to the web based manager, the entry of your url must begin with https://. (ex. Https://10.90.90.90) disable ssl purpose to disable the ssl function on th...
Page 299
Des-3550 layer 2 fast ethernet switch des-3550:4#disable sslciphersuite rsa_export_with_rc4_40_md5 command: disable sslciphersuite rsa_export_with_rc4_40_md5 success. Des-3550:4# config ssl cachetimeout timeout purpose used to configure the ssl cache timeout. Syntax config ssl cachetimeout timeout d...
Page 300
Des-3550 layer 2 fast ethernet switch show ssl cachetimeout purpose used to show the ssl cache timeout. Syntax show ssl cachetimeout description entering this command will allow the user to view the ssl cache timeout cuurently implemented on the switch. Parameters none. Restrictions none. Example us...
Page 301
Des-3550 layer 2 fast ethernet switch example usage: command: show ssl rsa_with_rc4_128_md5 0x0004 enabled rsa_export_with_rc4_40_md5 0x0003 enabled to view the ssl status on the switch: des-3550:4#show ssl ssl status disabled rsa_with_3des_ede_cbc_sha 0x000a enabled dhe_dss_with_3des_ede_cbc_sha 0x...
Page 302
Des-3550 layer 2 fast ethernet switch download certificate_fromtftp purpose used to download a certificate file for the ssl function on the switch. Syntax download certificate_fromtftp certfilename keyfilename description this command is used to download a certificate file for the ssl function on th...
Page 303: D-L
Des-3550 layer 2 fast ethernet switch 33 d-l ink s ingle ip m anagement c ommands simply put, d-link single ip management is a concept that will stack switches together over ethernet instead of using stacking ports or modules. Switches using d-link single ip management (labeled here as sim) must con...
Page 304
Des-3550 layer 2 fast ethernet switch 1. Each device begins in the commander state. 2. Cs’s must change their role to cas and then to ms, to become a ms of a sim group. Thus, the cs cannot directly be converted to a ms. 3. The user can manually configure a cs to become a cas. 4. A ms can become a ca...
Page 305
Des-3550 layer 2 fast ethernet switch enable sim purpose used to enable single ip management (sim) on the switch syntax enable sim description this command will enable sim globally on the switch. Sim features and functions will not function properly unless this function is enabled. Parameters none. ...
Page 307
Des-3550 layer 2 fast ethernet switch example usage: to show the sim information in detail: des-3550:4#show sim command: show sim sim version : ver-1 firmware version : build 2.00-b02 device name : mac address : 00-35-26-11-11-00 capabilities : l3 platform : des-3550 l2 switch sim state : enabled ro...
Page 308
Des-3550 layer 2 fast ethernet switch to show the member information in summary, if the member id is specified: des-3550:4#show sim member command: show sim member id mac address platform / hold firmware device name capability time version --- ----------------- ------------------------ ---- --------...
Page 309
Des-3550 layer 2 fast ethernet switch example usage: to view sim neighbors: des-3550:4#show sim neighbor command: show sim neighbor neighbor info table port mac address role ------ ------------------ --------- 23 00-35-26-00-11-99 commander 23 00-35-26-00-11-91 member 24 00-35-26-00-11-90 candidate ...
Page 312
Des-3550 layer 2 fast ethernet switch example usage: to change the time interval of the discovery protocol: des-3550:4# config sim commander dp_interval 30 command: config sim commander dp_interval 30 success. Des-3550:4# to change the hold time of the discovery protocol: des-3550:4# config sim comm...
Page 314
Des-3550 layer 2 fast ethernet switch to download firmware: des-3550:4# download sim firmware 10.53.13.94 c:/des3526.Had members all command: download sim firmware 10.53.13.94 c:/des3526.Had members all this device is updating firmware. Please wait... Download status : id mac address result --- ----...
Page 315
Des-3550 layer 2 fast ethernet switch upload sim_ms purpose user to upload a configuration file to a tftp server froma specified member of a sim group. Syntax upload sim_ms description this command will upload a configuration file to a tftp server from a specified member of a sim group. - enter the ...
Page 316
Des-3550 layer 2 fast ethernet switch 34 c ommand h istory l ist the switch history commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. Command parameters dir config command_history show command_history ? Each command is listed, in ...
Page 317
Des-3550 layer 2 fast ethernet switch ? Purpose used to display all commands in the command line interface (cli). Syntax ? Description this command will display all of the commands available through the command line interface (cli). Parameters none. Restrictions none. Example usage to display all of...
Page 318
Des-3550 layer 2 fast ethernet switch 314.
Page 319
Des-3550 layer 2 fast ethernet switch dir purpose used to display all commands in the command line interface (cli). Syntax dir description this command will display all of the commands available through the command line interface (cli). Parameters none. Restrictions none. Example usage: to display a...
Page 320
Des-3550 layer 2 fast ethernet switch config command_history purpose used to configure the command history. Syntax config command_history description this command is used to configure the command history. Parameters − the number of previously executed commands maintained in the buffer. Up to 40 of t...
Page 321
Des-3550 layer 2 fast ethernet switch a t echnical s pecifications physical and environmental ac input & external redundant power supply: 100 - 240 vac, 50-60 hz (internal universal power supply) redundant power supply will take over when internal power supply fails. Power consumption: 60 watts maxi...
Page 322
Des-3550 layer 2 fast ethernet switch general standards: ieee 802.3 10base-t ethernet ieee 802.3u 100base-tx fast ethernet ieee 802.3ab 1000base-t gigabit ethernet ieee 802.3z 1000base-t (sfp “mini gbic”) ieee 802.1d spanning tree ieee 802.1w rapid spanning tree ieee 802.1 p/q vlan ieee 802.1p prior...
Page 323
Des-3550 layer 2 fast ethernet switch 319 performance transmission method: store-and-forward ram buffer: 64 mb per device filtering address table: 8k mac address per device packet filtering / forwarding rate: full-wire speed for all connections. 148,810 pps per port (for 100mbps) 1,488,100 pps per p...