- DL manuals
- D-Link
- Switch
- DGS-3212SR
- Command Line Interface Reference Manual
D-Link DGS-3212SR Command Line Interface Reference Manual - Cli
DGS-3212SR Layer 3 Gigabit Switch
2
U
SING THE
C
ONSOLE
CLI
The DGS-3212SR supports a console management interface that allows the user to connect to the switch’s management agent
via a serial port and a terminal or a computer running a terminal emulation program. The console can also be used over the
network using the TCP/IP Telnet protocol. The console program can be used to configure the switch to use an SNMP-based
network management software over the network.
This chapter describes how to use the console interface to access the switch, change its settings, and monitor its operation.
Note: Switch configuration settings are saved to non-volatile RAM using
the save command. The current configuration will then be retained in the
switch’s NV-RAM, and reloaded when the switch is rebooted. If the switch
is rebooted without using the save command, the last configuration saved
to NV-RAM will be loaded.
Connecting to the Switch
The console interface is used by connecting the Switch to a VT100-compatible terminal or a computer running an ordinary
terminal emulator program (e.g., the HyperTerminal program included with the Windows operating system) using an RS-232C
serial cable. Your terminal parameters will need to be set to:
• VT-100 compatible
• 9600 baud
• 8 data bits
• No parity
• One stop bit
• No flow control
You can also access the same functions over a Telnet interface. Once you have set an IP address for your Switch, you can use a
Telnet program (in VT-100 compatible terminal mode) to access and control the Switch. All of the screens are identical,
whether accessed from the console port or from a Telnet interface.
After the switch reboots and you have logged in, the console looks like this:
4
Summary of DGS-3212SR
Page 1
Dgs-3212sr release iii 12-port gigabit layer 2 stackable switch command line interface reference manual third edition (february 2005) version 0.3 printed in taiwan recyclable.
Page 3
__________________________________________________________________________________ information in this document is subject to change without notice. © 2005 d-link computer corporation. All rights reserved. Reproduction in any manner whatsoever without the written permission of d-link computer corpor...
Page 5
Wichtige sicherheitshinweise 1. Bitte lesen sie sich diese hinweise sorgfältig durch. 2. Heben sie diese anleitung für den spätern gebrauch auf. 3. Vor jedem reinigen ist das gerät vom stromnetz zu trennen. Vervenden sie keine flüssig- oder aerosolreiniger. Am besten dient ein angefeuchtetes tuch zu...
Page 6
Limited warranty hardware: d-link warrants each of its hardware products to be free from defects in workmanship and materials under normal use and service for a period commencing on the date of purchase from d-link or its authorized reseller and extending for the length of time stipulated by the aut...
Page 7
Subject to the terms and conditions set forth herein, d-link systems, inc. (“d-link”) provides this limited warranty for its product only to the person or entity that originally purchased the product from: d-link or its authorized reseller or distributor and products purchased and delivered within t...
Page 8
Or replaced packages will be shipped via ups ground or any common carrier selected by d-link, with shipping charges prepaid. Expedited shipping is available if shipping charges are prepaid by the customer. D-link may reject or return any product that is not packaged and shipped in strict compliance ...
Page 9
Equipment in a residential area is likely to cause harmful interference in which case the user will be required to correct the interference at his own expense. Ce mark warning this is a class a product. In a domestic environment, this product may cause radio interference in which case the user may b...
Page 10
Table of contents introduction.......................................................................................................................................................................................1 using the console cli ..................................................................
Page 11
D-link single ip management commands ................................................................................................................................. 224 time and sntp commands..............................................................................................................
Page 13
Dgs-3212sr layer 3 gigabit switch 1 i ntroduction the switch can be managed through the switch’s serial port, telnet, or the web-based management agent. The command line interface (cli) can be used to configure and manage the switch via the serial port or telnet interfaces. This manual provides a re...
Page 14
Dgs-3212sr layer 3 gigabit switch there is no initial username or password. Just press the enter key twice to display the cli input cursor − dgs-3212sr:4#. This is the command line where all commands are input. Setting the switch’s ip address each switch must be assigned its own ip address, which is...
Page 15
Dgs-3212sr layer 3 gigabit switch figure 1-3. Assigning an ip address in the above example, the switch was assigned an ip address of 10.58.44.99 with a subnet mask of 255.0.0.0. The system message success indicates that the command was executed successfully. The switch can now be configured and mana...
Page 16: Cli
Dgs-3212sr layer 3 gigabit switch 2 u sing the c onsole cli the dgs-3212sr supports a console management interface that allows the user to connect to the switch’s management agent via a serial port and a terminal or a computer running a terminal emulation program. The console can also be used over t...
Page 17
Dgs-3212sr layer 3 gigabit switch figure 2-1. Initial console screen commands are entered at the command prompt, dgs-3212sr:4#. There are a number of helpful features included in the cli. Entering the ? Command will display a list of all of the top-level commands. Figure 2-2. The ? Command 5.
Page 18
Dgs-3212sr layer 3 gigabit switch when you enter a command without its required parameters, the cli will prompt you with a next possible completions: message. Figure 2-3. Example command parameter help in this case, the command config account was entered with the parameter . The cli will then prompt...
Page 19
Dgs-3212sr layer 3 gigabit switch figure 2-4. Using the up arrow to re-enter a command in the above example, the command config account was entered without the required parameter , the cli returned the next possible completions: prompt. The up arrow cursor control key was pressed to re-enter the pre...
Page 20
Dgs-3212sr layer 3 gigabit switch figure 2-5. The next available commands prompt the top-level commands consist of commands such as show or config. Most of these commands require one or more parameters to narrow the top-level command. This is equivalent to show what?Or config what? Where the what? I...
Page 21
Dgs-3212sr layer 3 gigabit switch figure 2-6. Next possible completions: show command in the above example, all of the possible next parameters for the show command are displayed. At the next command prompt, the up arrow was used to re-enter the show command, followed by the account parameter. The c...
Page 22
Dgs-3212sr layer 3 gigabit switch 3 c ommand s yntax the following symbols are used to describe how command entries are made and values and arguments are specified in this manual. The online help contained in the cli and available through the console interface uses the same syntax. Note: all command...
Page 24
Dgs-3212sr layer 3 gigabit switch enter displays the next line or table entry. 12.
Page 26
Dgs-3212sr layer 3 gigabit switch create account restrictions only administrator-level users can issue this command. Usernames can be between 1 and 15 characters. Passwords can be between 0 and 15 characters. Example usage: to create an administrator-level user account with the username “dlink”. Dgs...
Page 27
Dgs-3212sr layer 3 gigabit switch dgs-3212sr:4# show account purpose used to display user accounts syntax show account description displays all user accounts created on the switch. Up to 8 user accounts can exist on the switch at one time. Parameters none. Restrictions only administrator-level users...
Page 28
Dgs-3212sr layer 3 gigabit switch dgs-3212sr:4# show switch purpose used to display information about the switch. Syntax show switch description this command displays information about the switch. Parameters none. Restrictions none. Example usage: to display the switch information: dgs-3212sr:4#show...
Page 29
Dgs-3212sr layer 3 gigabit switch spanning tree : disabled gvrp : disabled igmp snooping : disabled telnet : enabled (tcp 23) web : enabled (tcp 80) rmon : disabled dgs-3212sr:4# show serial_port purpose used to display the current serial port settings. Syntax show serial_port description this comma...
Page 31
Dgs-3212sr layer 3 gigabit switch example usage: to enable pausing of the screen display when the show command output reaches the end of the page: dgs-3212sr:4#enable clipaging command: enable clipaging success. Dgs-3212sr:4# disable clipaging purpose used to disable the pausing of the console scree...
Page 32
Dgs-3212sr layer 3 gigabit switch enable telnet tcp port for the telnet protocol is 23. Restrictions only administrator-level users can issue this command. Example usage: to enable telnet and configure port number: dgs-3212sr:4#enable telnet 23 command: enable telnet 23 success. Dgs-3212sr:4# disabl...
Page 33
Dgs-3212sr layer 3 gigabit switch enable web number the switch will use to listen for telnet requests. Parameters − the tcp port number. Tcp ports are numbered between 1 and 65535. The “well-known” port for the web-based management software is 80. Restrictions only administrator-level users can issu...
Page 34
Dgs-3212sr layer 3 gigabit switch save syntax save description this command is used to enter the current switch configuration into non-volatile ram. The saved switch configuration will be loaded into the switch’s memory each time the switch is restarted. Parameters entering just the save command wil...
Page 35
Dgs-3212sr layer 3 gigabit switch reset description this command is used to restore the switch’s configuration to the default settings assigned from the factory. Parameters config − if the keyword ‘config’ is specified, all of the factory default settings are restored on the switch including the ip ...
Page 36
Dgs-3212sr layer 3 gigabit switch dgs-3212sr:4#login command: login username: logout purpose used to log out a user from the switch’s console. Syntax logout description this command terminates the current user’s session on the switch’s console. Parameters none. Restrictions none. Example usage: to t...
Page 39
Dgs-3212sr layer 3 gigabit switch config ports restrictions only administrator-level users can issue this command. Example usage: to configure the speed of port 3 to be 10 mbps, full duplex, learning and state enable: dgs-3212sr:4#config ports 1:1-1:3 speed 10_full learning enable state enable comma...
Page 40
Dgs-3212sr layer 3 gigabit switch 15:3 enabled auto/enabled link down enabled 15:4 enabled auto/enabled link down enabled 15:5 enabled auto/enabled link down enabled 15:6 enabled auto/enabled link down enabled 15:7 enabled auto/enabled link down enabled 15:8 enabled auto/enabled link down enabled 15...
Page 43
Dgs-3212sr layer 3 gigabit switch dgs-3212sr:4#show port_security ports command: show port_security ports port# admin state max. Learning addr. Lock address mode ---- ----------- ------------------- ----------------- 15:1 disabled 1 deleteonreset 15:2 disabled 1 deleteonreset 15:3 disabled 1 deleteo...
Page 44
Dgs-3212sr layer 3 gigabit switch dgs-3212sr:4#delete port_security_entry vlan_name default mac_address 00-0c-6e-73-2b-c9 port 1:1 command: delete port_security_entry vlan_name default mac_address 00-0c-6e-73-2b-c9 port 1:1 success dgs-3212sr:4# clear port_security_entry port purpose used to clear m...
Page 45: (Snmp) C
Dgs-3212sr layer 3 gigabit switch 7 n etwork m anagement (snmp) c ommands the dgs-3212sr supports the simple network management protocol (snmp) versions 1, 2c, and 3. You can specify which version of the snmp you want to use to monitor and control the switch. The three versions of snmp vary in the l...
Page 47
Dgs-3212sr layer 3 gigabit switch create snmp user with during transit. Authentication − determines if an snmp message is from a valid source. Encryption − scrambles the contents of messages to prevent it being viewed by an unauthorized source. Parameters − an alphanumeric name of up to 32 character...
Page 48
Dgs-3212sr layer 3 gigabit switch dgs-3212sr:4# delete snmp user purpose used to remove an snmp user from an snmp group and also to delete the associated snmp group. Syntax delete snmp user description the delete snmp user command removes an snmp user from its snmp group and then deletes the associa...
Page 50
Dgs-3212sr layer 3 gigabit switch delete snmp view parameters − an alphanumeric string of up to 32 characters that identifies the snmp view to be deleted. All − specifies that all of the snmp views on the switch will be deleted. − the object id that identifies an object tree (mib tree) that will be ...
Page 51
Dgs-3212sr layer 3 gigabit switch restricted 1.3.6.1.6.3.15.1.1 included communityview 1 included communityview 1.3.6.1.6.3 excluded communityview 1.3.6.1.6.3.1 included total entries: 11 dgs-3212sr:4# create snmp community purpose used to create an snmp community string to define the relationship b...
Page 52
Dgs-3212sr layer 3 gigabit switch dgs-3212sr:4#create snmp community dlink view readview read_write command: create snmp community dlink view readview read_write success. Dgs-3212sr:4# delete snmp community purpose used to remove a specific snmp community string from the switch. Syntax delete snmp c...
Page 53
Dgs-3212sr layer 3 gigabit switch show snmp community snmp managers access to mib objects in the switch’s snmp agent. Restrictions only administrator-level users can issue this command. Example usage: to display the currently entered snmp community strings: dgs-3212sr:4#show snmp community command: ...
Page 54
Dgs-3212sr layer 3 gigabit switch dgs-3212sr:4# show snmp engineid purpose used to display the identification of the snmp engine on the switch. Syntax show snmp engineid description the show snmp engineid command displays the identification of the snmp engine on the switch. Parameters none. Restrict...
Page 55
Dgs-3212sr layer 3 gigabit switch create snmp group management strategies. It includes improvements in the structure of management information (smi) and adds some security features. V3 – specifies that the snmp version 3 will be used. Snmp v3 provides secure access to devices through a combination o...
Page 56
Dgs-3212sr layer 3 gigabit switch dgs-3212sr:4# delete snmp group purpose used to remove an snmp group from the switch. Syntax delete snmp group description the delete snmp group command is used to remove an snmp group from the switch. Parameters − an alphanumeric name of up to 32 characters that wi...
Page 57
Dgs-3212sr layer 3 gigabit switch group name : group3 readview name : readview writeview name : writeview notify view name : notifyview security model : snmpv3 security level : noauthnopriv group name : group4 readview name : readview writeview name : writeview notify view name : notifyview security...
Page 58
Dgs-3212sr layer 3 gigabit switch create snmp host message integrity − ensures that packets have not been tampered with during transit. Authentication − determines if an snmp message is from a valid source. Encryption − scrambles the contents of messages to prevent it being viewed by an unauthorized...
Page 59
Dgs-3212sr layer 3 gigabit switch delete snmp host restrictions only administrator-level users can issue this command. Example usage: to delete an snmp host entry: dgs-3212sr:4#delete snmp host 10.48.74.100 natas command: delete snmp host 10.48.74.100 natas success. Dgs-3212sr:4# show snmp host purp...
Page 60
Dgs-3212sr layer 3 gigabit switch create trusted_host purpose used to create the trusted host. Syntax create trusted_host description the create trusted_host command creates the trusted host. The switch allows you to specify up to four ip addresses that are allowed to manage the switch via in-band s...
Page 61
Dgs-3212sr layer 3 gigabit switch management stations ip address -------------------- 10.53.13.94 total entries: 1 dgs-3212sr:4# delete trusted_host purpose used to delete a trusted host entry made using the create trusted_host command above. Syntax delete trusted _host description this command is u...
Page 62
Dgs-3212sr layer 3 gigabit switch to enable snmp trap support on the switch: dgs-3212sr:4#enable snmp traps command: enable snmp traps success. Dgs-3212sr:4# enable snmp authenticate_traps purpose used to enable snmp authentication trap support. Syntax enable snmp authenticate_traps description this...
Page 63
Dgs-3212sr layer 3 gigabit switch dgs-3212sr:4#show snmp traps command: show snmp traps snmp traps : enabled authenticate trap : enabled dgs-3212sr:4# disable snmp traps purpose used to disable snmp trap support on the switch. Syntax disable snmp traps description this command is used to disable snm...
Page 64
Dgs-3212sr layer 3 gigabit switch disable snmp authenticate_traps purpose used to disable snmp authentication trap support. Syntax disable snmp authenticate_traps description this command is used to disable snmp authentication support on the switch. Parameters none. Restrictions only administrator-l...
Page 65
Dgs-3212sr layer 3 gigabit switch dgs-3212sr:4#config snmp system_contact mis department ii command: config snmp system_contact mis department ii success. Dgs-3212sr:4# config snmp system_location purpose used to enter a description of the location of the switch. Syntax config snmp system_location {...
Page 66
Dgs-3212sr layer 3 gigabit switch to configure the switch name for “ dgs-3212sr stackable switch ”: dgs-3212sr:4#config snmp system_name dgs-3212sr stackable switch command: config snmp system_name dgs-3212sr stackable switch success. Dgs-3212sr:4# enable rmon purpose used to enable rmon on the swit...
Page 67
Dgs-3212sr layer 3 gigabit switch example usage: to disable rmon: dgs-3212sr:4#disable rmon command: disable rmon success. Dgs-3212sr:4# 55.
Page 69
Dgs-3212sr layer 3 gigabit switch to download a configuration file: dgs-3212sr:4#download configuration 10.48.74.121 c:\cfg\setting.Txt command: download configuration 10.48.74.121 c:\cfg\setting.Txt connecting to server................... Done. Download configuration............. Done. Dgs-3212sr:4...
Page 70
Dgs-3212sr layer 3 gigabit switch ping syntax ping {times } {timeout } description the ping command sends internet control message protocol (icmp) echo messages to a remote ip address. The remote ip address will then “echo” or return the message. This is used to confirm connectivity between the swit...
Page 72
Dgs-3212sr layer 3 gigabit switch show packet ports port number on that switch, separated by a colon. Then the highest switch number, and the highest port number of the range (also separated by a colon) are specified. The beginning and end of the port list range are separated by a dash. For example,...
Page 73
Dgs-3212sr layer 3 gigabit switch show error ports for example, 1:3 specifies switch number 1, port 3. 2:4 specifies switch number 2, port 4. 1:3-2:4 specifies all of the ports between switch 1, port 3 and switch 2, port 4 − in numerical order. Restrictions none. Example usage: to display the errors...
Page 74
Dgs-3212sr layer 3 gigabit switch dgs-3212sr:4#show utilization unit_id 1 port tx/sec rx/sec util port tx/sec rx/sec util ---- ---------- ---------- ---- ---- ---------- ---------- ---- 1:1 0 0 0 1:2 0 0 0 1:3 0 0 0 1:4 0 0 0 1:5 0 0 0 1:6 0 0 0 1:7 0 0 0 1:8 0 0 0 1:9 0 0 0 1:10 0 0 0 1:11 0 0 0 1:...
Page 75
Dgs-3212sr layer 3 gigabit switch clear counters port 4 − in numerical order. Restrictions only administrator-level users can issue this command. Example usage: to clear the counters: dgs-3212sr:4#clear counters ports 2:7-2:9 command: clear counters ports 2:7-2:9 success. Dgs-3212sr:4# clear log pur...
Page 76
Dgs-3212sr layer 3 gigabit switch show log parameters index − enter a value that corresponds to an entry made in the log. Multiple entries may be made in the form of x-x where x is the number of an entry in the log. The smallest number (and therefore the earlier entry) will be first. Restrictions no...
Page 77
Dgs-3212sr layer 3 gigabit switch disable syslog purpose used to disable the system log function on the switch. Syntax disable syslog description the disable syslog command disables the system log function on the switch. After disabling, syslog entries will no longer be sent to a remote host. Parame...
Page 78
Dgs-3212sr layer 3 gigabit switch example usage: to display the current status of the syslog function: dgs-3212sr:4#show syslog command: show syslog syslog global state: enabled dgs-3212sr:4# create syslog host purpose used to create a new syslog host. Syntax create syslog host ipaddress {severity [...
Page 79
Dgs-3212sr layer 3 gigabit switch create syslog host parameters − specifies that the command will be applied to an index of hosts. There are four available indexes, numbered 1 through 4. Ipaddress − specifies the ip address of the remote host where syslog messages will be sent. Severity − severity l...
Page 80
Dgs-3212sr layer 3 gigabit switch create syslog host facility − some of the operating system daemons and processes have been assigned facility values. Processes and daemons that have not been explicitly assigned a facility may use any of the "local use" facilities or they may use the "user-level" fa...
Page 81
Dgs-3212sr layer 3 gigabit switch create syslog host 16 local use 0 (local0) 17 local use 1 (local1) 18 local use 2 (local2) 19 local use 3 (local3) 20 local use 4 (local4) 21 local use 5 (local5) 22 local use 6 (local6) 23 local use 7 (local7) local0 − specifies that local use 0 messages will be se...
Page 82
Dgs-3212sr layer 3 gigabit switch dgs-3212sr:4#create syslog host 1 ipaddress 10.53.13.200 severity all facility local0 state enable command: create syslog host 1 ipaddress 10.53.13.200 severity all facility local0 state enable success. Dgs-3212sr:4# config syslog host purpose used to configure the ...
Page 83
Dgs-3212sr layer 3 gigabit switch config syslog host parameters all − specifies that the command will be applied to all hosts. − specifies that the command will be applied to an index of hosts. There are four available indexes, numbered 1 through 4. Severity − severity level indicator. These are des...
Page 84
Dgs-3212sr layer 3 gigabit switch config syslog host facility − some of the operating system daemons and processes have been assigned facility values. Processes and daemons that have not been explicitly assigned a facility may use any of the "local use" facilities or they may use the "user-level" fa...
Page 85
Dgs-3212sr layer 3 gigabit switch config syslog host 16 local use 0 (local0) 17 local use 1 (local1) 18 local use 2 (local2) 19 local use 3 (local3) 20 local use 4 (local4) 21 local use 5 (local5) 22 local use 6 (local6) 23 local use 7 (local7) local0 − specifies that local use 0 messages will be se...
Page 86
Dgs-3212sr layer 3 gigabit switch dgs-3212sr:4#config syslog host all severity all facility local0 command: config syslog host all severity all facility local0 success. Dgs-3212sr:4# delete syslog host purpose used to remove a syslog host, that has been previously configured, from the switch. Syntax...
Page 87
Dgs-3212sr layer 3 gigabit switch example usage: to show syslog host information: dgs-3212sr:4#show syslog host command: show syslog host syslog global state: disabled host id host ip address severity facility udp port status ------- --------------- -------------- -------- -------- -------- 1 10.1.1...
Page 88: (Mstp) C
Dgs-3212sr layer 3 gigabit switch 10 m ultiple s panning t ree p rotocol (mstp) c ommands this switch supports three versions of the spanning tree protocol; 802.1d stp, 802.1w rapid stp and 802.1s mstp. Multiple spanning tree protocol, or mstp, is a standard defined by the ieee community that allows...
Page 90
Dgs-3212sr layer 3 gigabit switch disable stp restrictions only administrator-level users can issue this command. Example usage: to disable stp on the switch: dgs-3212sr:4#disable stp command: disable stp success. Dgs-3212sr:4# config stp version purpose used to globally set the version of stp on th...
Page 92
Dgs-3212sr layer 3 gigabit switch example usage: to configure stp with maxage 18 and maxhops of 15: dgs-3212sr:4#config stp maxage 18 maxhops 15 command: config stp maxage 18 maxhops 15 success. Dgs-3212sr:4# config stp ports purpose used to setup stp on the port level. Syntax config stp ports {exte...
Page 93
Dgs-3212sr layer 3 gigabit switch config stp ports parameters − specifies a range of ports to be configured. The port list is specified by listing the lowest switch number and the beginning port number on that switch, separated by a colon. Then the highest switch number, and the highest port number ...
Page 94
Dgs-3212sr layer 3 gigabit switch config stp ports shared link. P2p ports are similar to edge ports however they are restricted in that a p2p port must operate in full-duplex. Like edge ports, p2p ports transition to a forwarding state rapidly thus benefiting from rstp. A p2p value of false indicate...
Page 96
Dgs-3212sr layer 3 gigabit switch example usage: to configure instance id 2 to add vid 10: dgs-3212sr:4#config stp instance_id 2 add_vlan 10 command : config stp instance_id 2 add_vlan 10 success. Dgs-3212sr:4# example usage: to remove vid 10 from instance id 2: dgs-3212sr:4#config stp instance_id 2...
Page 97
Dgs-3212sr layer 3 gigabit switch config stp priority purpose used to update the stp instance configuration. Syntax config stp priority instance_id description this command is used to update the stp instance configuration settings on the switch. The mstp will utilize the priority in selecting the ro...
Page 98
Dgs-3212sr layer 3 gigabit switch config stp mst_config_id name - enter an alphanumeric string of up to 32 characters to uniquely identify the mstp region on the switch. This name, along with the revision_level value will identify the mstp region configured on the switch. If no name is entered, the ...
Page 99
Dgs-3212sr layer 3 gigabit switch config stp mst_ports are two options: auto – selecting this parameter for the internalcost will set quickest route automatically and optimally for an interface. The default value is derived from the media speed of the interface. Value 1-2000000 – selecting this para...
Page 100
Dgs-3212sr layer 3 gigabit switch example usage: to display the status of stp on the switch: status 1: stp enabled with stp compatible version dgs-3212sr:4#show stp command: show stp stp status : enabled stp version : stp compatible max age : 20 hello time : 2 forward delay : 15 max age : 20 tx hold...
Page 101
Dgs-3212sr layer 3 gigabit switch show stp ports description this command displays the stp instance settings and stp instance operational status currently implemented on the switch. Parameters − specifies a range of ports to be viewed. The port list is specified by listing the lowest switch number a...
Page 102
Dgs-3212sr layer 3 gigabit switch example usage: to display the stp instance configuration for instance 0 (the internal cist) on the switch: dgs-3212sr:4#show stp instance 0 command: show stp instance 0 stp instance settings --------------------------- instance type : cist instance status : enabled ...
Page 103
Dgs-3212sr layer 3 gigabit switch dgs-3212sr:4#show stp mst_config_id command: show stp mst_config_id current mst configuration identification ---------------------------------------- configuration name : 00:53:13:1a:33:24 revision level :0 msti id vid list ------- ----------- cist 2-4094 1 1 dgs-32...
Page 105
Dgs-3212sr layer 3 gigabit switch to configure the multicast filtering mode to forward all groups on ports 1 through 4. Dgs-3212sr:4 #config multicast port_filtering_mode 1-4 forward_all_groups command: config multicast port_filtering_mode 1-4 forward_all_groups success. Dgs-3212sr:4# show multicast...
Page 106
Dgs-3212sr layer 3 gigabit switch dgs-3212sr:4#show multicast port_filtering_mode command: show multicast port_filtering_mode port multicast filter mode ------ --------------------------- 1 forward_unregistered_groups 2 forward_unregistered_groups 3 forward_unregistered_groups 4 forward_unregistered...
Page 107
Dgs-3212sr layer 3 gigabit switch success. Dgs-3212sr:4# create multicast_fdb purpose used to create a static entry to the multicast mac address forwarding table (database) syntax create multicast_fdb description this command will make an entry into the switch’s multicast mac address forwarding data...
Page 109
Dgs-3212sr layer 3 gigabit switch config fdb aging_time restrictions only administrator-level users can issue this command. Example usage: to set the fdb aging time: dgs-3212sr:4#config fdb aging_time 300 command: config fdb aging_time 300 success. Dgs-3212sr:4# delete fdb purpose used to delete an ...
Page 112
Dgs-3212sr layer 3 gigabit switch show fdb port 4. 1:3-2:4 specifies all of the ports between switch 1, port 3 and switch 2, port 4 − in numerical order. − the name of the vlan on which the mac address resides. − the mac address that is present in the forwarding database table. Static − displays the...
Page 113
Dgs-3212sr layer 3 gigabit switch to view the ip forwarding database table: 101.
Page 115
Dgs-3212sr layer 3 gigabit switch config traffic control switch that will trigger the storm traffic control measures. Restrictions only administrator-level users can issue this command. Example usage: to configure traffic control and enable broadcast storm control system wide: dgs-3212sr:4#config tr...
Page 116
Dgs-3212sr layer 3 gigabit switch 1 4 [ 4 ] 128 disabled disabled disabled 1 5 [ 5 ] 128 disabled disabled disabled total entries: 5 dgs-3212sr:4# 104.
Page 117: S C
Dgs-3212sr layer 3 gigabit switch 13 q o s c ommands the dgs-3212sr switch supports 802.1p priority queuing. The switch has nine hardware priority queues, one of which is internal and not configurable. These hardware priority queues are numbered from 7 (class 7) — the highest hardware priority queue...
Page 119
Dgs-3212sr layer 3 gigabit switch config bandwidth_control − specifies the packet limit, in mbps, that the above ports will be allowed to receive. Restrictions only administrator-level users can issue this command. Example usage: to configure bandwidth control: dgs-3212sr:4#config bandwidth_control ...
Page 120
Dgs-3212sr layer 3 gigabit switch port rx rate (mbit/sec) tx_rate (mbit/sec) ---- ------------------------ ---------------------- 1:1 no_limit 10 1:2 no_limit 10 1:3 no_limit 10 1:4 no_limit 10 1:5 no_limit 10 1:6 no_limit 10 1:7 no_limit 10 1:8 no_limit 10 1:9 no_limit 10 1:10 no_limit 10 dgs-3212s...
Page 121
Dgs-3212sr layer 3 gigabit switch config 802.1p user_priority 7 7 parameters − specifies which of the eight 802.1p priority tags (0 through 7) you want to map to one of the switch’s hardware priority queues (, 0 through 7). − specifies which of the switch’s hardware priority queues the 802.1p priori...
Page 122
Dgs-3212sr layer 3 gigabit switch priority-3 -> priority-4 -> priority-5 -> priority-6 -> priority-7 -> dgs-3212sr:4# config 802.1p default_priority purpose used to specify default priority settings on the switch. Untagged packets that are received by the switch will be assigned a priority tag in it...
Page 123
Dgs-3212sr layer 3 gigabit switch show 802.1 default_priority purpose used to display the currently configured 802.1p priority tags that will be assigned to incoming, untagged packets before being forwarded to its destination. Syntax show 802.1p default_priority {} description the show 802.1p defaul...
Page 125
Dgs-3212sr layer 3 gigabit switch show scheduling_mechanism description this command will display the current traffic scheduling mechanisms in use on the switch. Parameters none. Restrictions none. Example usage: to show the scheduling mechanism: dgs-3212sr:4#show scheduling_mechanism command: show ...
Page 127
Dgs-3212sr layer 3 gigabit switch config mirror port highest switch number, and the highest port number of the range (also separated by a colon) are specified. The beginning and end of the port list range are separated by a dash. For example, 1:3 specifies switch number 1, port 3. 2:4 specifies swit...
Page 128
Dgs-3212sr layer 3 gigabit switch config mirror delete according to ports entered using the . − this specifies a range of ports that will be mirrored. That is, the range of ports in which all traffic will be copied and sent to the target port. The port list is specified by listing the lowest switch ...
Page 129
Dgs-3212sr layer 3 gigabit switch to enable mirroring configurations: dgs-3212sr:4#enable mirror command: enable mirror success. Dgs-3212sr:4# disable mirror purpose used to disable a previously entered port mirroring configuration. Syntax disable mirror description this command, combined with the e...
Page 130
Dgs-3212sr layer 3 gigabit switch to display mirroring configuration: dgs-3212sr:4#show mirror command: show mirror current settings mirror status: enabled target port : 1:9 mirrored port: rx: tx: 1:1-1:5 dgs-3212sr:4# 118.
Page 132
Dgs-3212sr layer 3 gigabit switch to create a vlan v1, tag 2: dgs-3212sr:4#create vlan v1 tag 2 command: create vlan v1 tag 2 success. Dgs-3212sr:4# delete vlan purpose used to delete a previously configured vlan on the switch. Syntax delete vlan description this command will delete a previously con...
Page 133
Dgs-3212sr layer 3 gigabit switch config vlan the portlist parameter. Tagged − specifies that the ports are to be vlan tagged. Untagged − specifies the ports as untagged. Forbidden − specifies the ports as forbidden ports. Delete − used to delete ports from the specified vlan, in conjunction with th...
Page 134
Dgs-3212sr layer 3 gigabit switch config gvrp then the highest switch number, and the highest port number of the range (also separated by a colon) are specified. The beginning and end of the port list range are separated by a dash. For example, 1:3 specifies switch number 1, port 3. 2:4 specifies sw...
Page 135
Dgs-3212sr layer 3 gigabit switch example usage: to enable the generic vlan registration protocol (gvrp): dgs-3212sr:4#enable gvrp command: enable gvrp success. Dgs-3212sr:4# disable gvrp purpose used to disable gvrp on the switch. Syntax disable gvrp description this command, along with disable gvr...
Page 136
Dgs-3212sr layer 3 gigabit switch show vlan restrictions none. Example usage: to display the switch’s current vlan settings: dgs-3212sr:4#show vlan command: show vlan vid : 1 vlan name : default vlan type : static advertisement : enabled member ports : 1:1-1:11,2:1-2:11 static ports : 1:1-1:11,2:1-2...
Page 137
Dgs-3212sr layer 3 gigabit switch show gvrp numerical order. Restrictions none. Example usage: to display gvrp port status: dgs-3212sr:4#show gvrp command: show gvrp global gvrp : disabled port pvid gvrp ingress checking acceptable frame type ------ ---- -------- ---------------- -------------------...
Page 139
Dgs-3212sr layer 3 gigabit switch create link_aggregation static – this designates the aggregated port group as static. Static port groups can not be changed as easily as lacp compliant port groups since both linked devices must be manually configured if the configuration of the trunked group is cha...
Page 142
Dgs-3212sr layer 3 gigabit switch show link_aggregation parameters group_id − specifies the group id. The switch allows up to 6 link aggregation groups to be configured. The group number identifies each of the groups. Algorithm − allows you to specify the display of link aggregation by the algorithm...
Page 143
Dgs-3212sr layer 3 gigabit switch config lacp_ports active – active lacp ports are capable of processing and sending lacp control frames. This allows lacp compliant devices to negotiate the aggregated link so the group may be changed dynamically as needs require. In order to utilize the ability to c...
Page 144
Dgs-3212sr layer 3 gigabit switch dgs-3212sr:4#show lacp_port 1:1-1:11 command: show lacp_port 1:1-1:11 port activity ------ -------- 1:1 active 1:2 active 1:3 active 1:4 active 1:5 active 1:6 active 1:7 active 1:8 active 1:9 active 1:10 active 1:11 active dgs-3212sr:4# 132.
Page 146
Dgs-3212sr layer 3 gigabit switch to configure the ip interface system: dgs-3212sr:4#config ipif system ipaddress 10.48.74.122/8 command: config ipif system ipaddress 10.48.74.122/8 success. Dgs-3212sr:4# show ipif purpose used to display the configuration of an ip interface on the switch. Syntax sh...
Page 148
Dgs-3212sr layer 3 gigabit switch config igmp_snooping host_timeout − specifies the maximum amount of time a host can be a member of a multicast group without the switch receiving a host membership report. The default is 260 seconds. Router_timeout − specifies the maximum amount of time a route can ...
Page 149
Dgs-3212sr layer 3 gigabit switch config igmp_snooping querier setting is 125 seconds. Max_response_time − specifies the maximum time in seconds to wait for reports from members. The default setting is 10 seconds. Robustness_variable − provides fine-tuning to allow for expected packet loss on a subn...
Page 150
Dgs-3212sr layer 3 gigabit switch enable igmp_snooping purpose used to enable igmp snooping on the switch. Syntax enable igmp_snooping {forward_mcrouter_only} description this command allows you to enable igmp snooping on the switch. If forward_mcrouter_only is specified, the switch will only forwar...
Page 153
Dgs-3212sr layer 3 gigabit switch show igmp_snooping restrictions none. Example usage: to show igmp snooping: dgs-3212sr:4#show igmp_snooping command: show igmp_snooping igmp snooping global state : disabled multicast router only : disabled vlan name : default query interval : 125 max response time ...
Page 154
Dgs-3212sr layer 3 gigabit switch show igmp_snooping group the switch. Syntax show igmp_snooping group {vlan } description this command will display the current igmp snooping group configuration on the switch. Parameters vlan − the name of the vlan for which you want to view igmp snooping group conf...
Page 155
Dgs-3212sr layer 3 gigabit switch multicast group: 239.255.255.250 mac address : 01-00-5e-7f-ff-fa reports : 2 port member : 1:8,2:4 vlan name : default multicast group: 239.255.255.254 mac address : 01-00-5e-7f-ff-fe reports : 1 port member : 1:5,2:5 total entries : 6 dgs-3212sr:4# show igmp_snoopi...
Page 156
Dgs-3212sr layer 3 gigabit switch dgs-3212sr:4#show igmp_snooping forwarding vlan trinity command: show igmp_snooping forwarding vlan trinity vlan name : trinity multicast group : 224.0.0.2 mac address : 01-00-5e-00-00-02 port member : 1:11 total entries: 1 dgs-3212sr:4# 144.
Page 157: Mac N
Dgs-3212sr layer 3 gigabit switch 19 mac n otification c ommands the mac notification commands in the command line interface (cli) are listed, in the following table, along with their appropriate parameters. Command parameters enable mac_notification disable mac_notification config mac_notification ...
Page 158
Dgs-3212sr layer 3 gigabit switch disable mac_notification changing configuration. Parameters none. Restrictions only administrator-level users can issue this command. Example usage: to disable mac notification without changing basic configuration: dgs-3212sr:4#disable mac_notification command: disa...
Page 159
Dgs-3212sr layer 3 gigabit switch config mac_notification ports purpose used to configure mac address notification status settings. Syntax config mac_notification ports [ description mac address notification is used to monitor mac addresses learned and entered into the fdb. Parameters - specify a po...
Page 160
Dgs-3212sr layer 3 gigabit switch dgs-3212sr:4#show mac_notification command: show mac_notification global mac notification settings state : enabled interval : 1 history size : 1 dgs-3212sr:4# show mac_notification ports purpose used to display the switch’s mac address table notification status sett...
Page 161
Dgs-3212sr layer 3 gigabit switch 1:5 disabled 1:6 disabled 1:7 disabled 1:8 disabled 1:9 disabled 1:10 disabled 1:11 disabled 1:12 disabled ctrl+c esc q quit space n next page p previous page r refresh 149.
Page 162
Dgs-3212sr layer 3 gigabit switch 20 a ccess a uthentication c ontrol c ommands the tacacs / xtacacs / tacacs+ / radius commands let you secure access to the switch using the tacacs / xtacacs / tacacs+ / radius protocols. When a user logs in to the switch or tries to access the administrator level p...
Page 163
Dgs-3212sr layer 3 gigabit switch note: tacacs, xtacacs and tacacs+ are separate entities and are not compatible. The switch and the server must be configured exactly the same, using the same protocol. (for example, if the switch is set up for tacacs authentication, so must be the host server.) the ...
Page 164
Dgs-3212sr layer 3 gigabit switch command parameters radius] show authen server_host config authen parameter response_timeout config authen parameter attempt show authen parameter enable admin config admin local_enable each command is listed, in detail, in the following sections. Enable authen_polic...
Page 165
Dgs-3212sr layer 3 gigabit switch disable authen_policy parameters none. Restrictions only administrator-level users can issue this command. Example usage: to disable the system access authentication policy: dgs-3212sr:4#disable authen_policy command: disable authen_policy success. Dgs-3212sr:4# sho...
Page 166
Dgs-3212sr layer 3 gigabit switch create authen_login method_list_name description this command is used to create a list for authentication techniques for user login. The switch can support up to eight method lists, but one is reserved as a default and cannot be deleted. Multiple method lists must b...
Page 167
Dgs-3212sr layer 3 gigabit switch config authen_login parameters default – the default method list for access authentication, as defined by the user. The user may choose one or a combination of up to four (4) of the following authentication methods: tacacs – adding this parameter will require the us...
Page 168
Dgs-3212sr layer 3 gigabit switch config authen_login method_list_name – enter a previously implemented method list name defined by the user. The user may add one, or a combination of up to four (4) of the following authentication methods to this method list: note: entering none or local as an authe...
Page 169
Dgs-3212sr layer 3 gigabit switch to configure the default method list with authentication methods xtacacs, tacacs+ and local, in that order: dgs-3212sr:4#config authen_login default method xtacacs tacacs+ local command: config authen_login default method xtacacs tacacs+ local success. Dgs-3212sr:4#...
Page 170
Dgs-3212sr layer 3 gigabit switch show authen_login to the switch. Priority ranges from 1(highest) to 4 (lowest). Method name – defines which security protocols are implemented, per method list name. Comment – defines the type of method. User-defined group refers to server group defined by the user....
Page 171
Dgs-3212sr layer 3 gigabit switch create authen_enable method_list_name syntax create authen_enable method_list_name description this command is used to promote users with normal level privileges to administrator level privileges using authentication methods on the switch. Once a user acquires norma...
Page 172
Dgs-3212sr layer 3 gigabit switch config authen_enable password set in the switch is used to authenticate the user. Successful authentication using any of these methods will give the user a “admin” privilege. 160
Page 173
Dgs-3212sr layer 3 gigabit switch config authen_enable parameters default – the default method list for administration rights authentication, as defined by the user. The user may choose one or a combination of up to four (4) of the following authentication methods: method_list_name – enter a previou...
Page 174
Dgs-3212sr layer 3 gigabit switch config authen_enable only administrator-level users can issue this command. Local_enable - adding this parameter will require the user to be authenticated using the local user account database on the switch. The local enable password of the device can be configured ...
Page 175
Dgs-3212sr layer 3 gigabit switch delete authen_enable method_list_name define the given enable method list the user wishes to delete. Restrictions only administrator-level users can issue this command. Example usage: to delete the user-defined method list “permit” dgs-3212sr:4#delete authen_enable ...
Page 176
Dgs-3212sr layer 3 gigabit switch show authen_enable 15 characters to define the given method list the user wishes to view. All – entering this parameter will display all the authentication login methods currently configured on the switch. Restrictions none example usage: command: show authen_enable...
Page 177
Dgs-3212sr layer 3 gigabit switch config authen application method. Ssh – choose this parameter to configure the ssh login method. Http – choose this parameter to configure the web interface login method. All – choose this parameter to configure all applications (console, telnet, web) login method. ...
Page 178
Dgs-3212sr layer 3 gigabit switch example usage: to display the login and enable method list for all applications on the switch: dgs-3212sr:4#show authen application command: show authen application application login method list enable method list telnet trinity default ---------------- ------------...
Page 179
Dgs-3212sr layer 3 gigabit switch create authen server_host radius - enter this parameter if the server host utilizes the radius protocol. Port - enter a number between 1 and 65535 to define the virtual port number of the authentication protocol on a server host. The default port number is 49 for ta...
Page 180
Dgs-3212sr layer 3 gigabit switch config authen server_host host. The tacacs/xtacacs/tacacs+/radius server host will then verify or deny the request and return the appropriate message to the switch. More than one authentication protocol can be run on the same physical server host but, remember that ...
Page 182
Dgs-3212sr layer 3 gigabit switch show authen server_host description this command is used to view user-defined authentication server hosts previously created on the switch. The following parameters are displayed: ip address – the ip address of the authentication server host. Protocol – the protocol...
Page 183
Dgs-3212sr layer 3 gigabit switch create authen server_group tacacs/xtacacs/tacacs+/radius server hosts into user defined categories for authentication using method lists. The user may add up to eight (8) authentication server hosts to this group using the config authen server_group command. Enter a...
Page 184
Dgs-3212sr layer 3 gigabit switch config authen server_group radius – use this parameter to utilize the built-in radius server protocol on the switch. Only server hosts utilizing the radius protocol may be added to this group. Enter an alphanumeric string of up to 15 characters to define the previou...
Page 185
Dgs-3212sr layer 3 gigabit switch delete authen server_group parameters - enter an alphanumeric string of up to 15 characters to define the previously created server group the user wishes to delete. Only administrator-level users can issue this command. Restrictions example usage: to delete the serv...
Page 186
Dgs-3212sr layer 3 gigabit switch tacacs 10.53.13.94 tacacs tacacs+ (this group has no entry) total entries : 4 xtacacs (this group has no entry) dgs-3212sr:4# config authen parameter response_timeout purpose used to configure the amount of time the switch will wait for a user to enter authenticatio...
Page 187
Dgs-3212sr layer 3 gigabit switch config authen parameter attempt parameters parameter attempt - set the maximum number of attempts the user may try to become authenticated by the switch, before being locked out. Restrictions only administrator-level users can issue this command. Example usage: to s...
Page 188
Dgs-3212sr layer 3 gigabit switch dgs-3212sr:4# enable admin purpose used to promote user level privileges to administrator level privileges syntax enable admin description this command is for users who have logged on to the switch on the normal user level, to become promoted to the administrator le...
Page 189
Dgs-3212sr layer 3 gigabit switch config admin local_enable used to configure the local enable password for administrator level privileges. Syntax config admin local_enable description this command will configure the locally enabled password for the enable admin command. When a user chooses the “loc...
Page 190: Ssh
Dgs-3212sr layer 3 gigabit switch 22 ssh c ommands the steps required to use the ssh protocol for secure communication between a remote pc (the ssh client) and the switch (the ssh server), are as follows: configure the encryption algorithm that ssh will use to encrypt and decrypt messages sent betwe...
Page 191
Dgs-3212sr layer 3 gigabit switch enable shh syntax enable ssh description this command allows you to enable ssh on the switch. Parameters none. Restrictions only administrator-level users can issue this command. Usage example: to enable ssh: dgs-3212sr:4#enable ssh command: enable ssh success. Dgs-...
Page 194
Dgs-3212sr layer 3 gigabit switch dgs-3212sr:4# show ssh server purpose used to display the ssh server setting. Syntax show ssh server description this command allows you to display the current ssh server setting. Parameters none. Restrictions none. Usage example: dgs-3212sr:4# show ssh server max s...
Page 195
Dgs-3212sr layer 3 gigabit switch config ssh user • hostname - enter an alphanumeric string of up to 31 characters identifying the remote ssh user. • publickey – this parameter should be chosen if the user wishes to use the publickey on a ssh server for authentication. Hostbased – this parameter sho...
Page 196
Dgs-3212sr layer 3 gigabit switch dgs-3212sr:4#show ssh user authmode command: show ssh user authmode current accounts: authentication username -------------------------- -------------------------- trinity publickey success. Dgs-3212sr:4# note: to configure the ssh user, the administrator must creat...
Page 197
Dgs-3212sr layer 3 gigabit switch config ssh algorithm twofish192 - this parameter will enable or disable the twofish192 encryption algorithm. Md5 - this parameter will enable or disable the md5 message digest encryption algorithm. Sha1 - this parameter will enable or disable the secure hash algorit...
Page 198
Dgs-3212sr layer 3 gigabit switch 3des :enable aes128 :enable aes192 :enable aes256 :enable arc4 :enable blowfish :enable cast128 :enable twofish128 :enable twofish192 :enable twofish256 :enable md5 :enable sha :enable rsa :enable dsa :enable success. Dgs-3212sr:4# 186.
Page 199: Ssl C
Dgs-3212sr layer 3 gigabit switch 23 ssl c ommands secure sockets layer or ssl is a security feature that will provide a secure communication path between a host and client through the use of authentication, digital signatures and encryption. These security functions are implemented through the use ...
Page 201
Dgs-3212sr layer 3 gigabit switch note: enabling the ssl function on the switch will disable the port for the web manager (port 80). To log on to the web based manager, the entry of your url must begin with https://. (ex. Https://10.90.90.90) disable ssl to disable the ssl function on the switch. Di...
Page 202
Dgs-3212sr layer 3 gigabit switch dgs-3212sr:4#disable sslciphersuite rsa_export_with_rc4_40_md5 dgs-3212sr:4# command: disable sslciphersuite rsa_export_with_rc4_40_md5 success. Show ssl purpose used to view the ssl status and the certificate file status on the switch. Syntax show ssl description t...
Page 203
Dgs-3212sr layer 3 gigabit switch download certificate certificate files for optimal use of the ssl function. The switch only supports certificate files with .Der file extensions. Parameters - enter the ip address of the tftp server. Certfilename - enter the path and the filename of the certificate ...
Page 204: 802.1X C
Dgs-3212sr layer 3 gigabit switch 24 802.1x c ommands the dgs-3212sr implements the server-side of the ieee 802.1x port-based network access control. This mechanism is intended to allow only authorized users, or other network devices, access to network resources by establishing criteria for each por...
Page 205
Dgs-3212sr layer 3 gigabit switch enable 802.1x purpose used to enable the 802.1x server on the switch. Syntax enable 802.1x description the enable 802.1x command enables the 802.1x port-based network access control server application on the switch. Parameters none. Restrictions only administrator-l...
Page 206
Dgs-3212sr layer 3 gigabit switch show 802.1x auth_configuration purpose the show 802.1x command is used to display the current configuration of the 802.1x port-based network access control server application on the switch. Used to display the current configuration of the 802.1x server on the switch...
Page 207
Dgs-3212sr layer 3 gigabit switch show 802.1x auth_configuration parameters ports − specifies a range of ports. The port list is specified by listing the lowest switch number and the beginning port number on that switch, separated by a colon. Then the highest switch number, and the highest port numb...
Page 208
Dgs-3212sr layer 3 gigabit switch show 802.1x auth_configuration reauthperiod − shows the time interval between successive re- authentications. Reauthenticate: enabled/disabled − shows whether or not to re- authenticate. Only administrator-level users can issue this command. Restrictions example usa...
Page 209
Dgs-3212sr layer 3 gigabit switch show 802.1x auth_state parameters ports − specifies a range of ports. The port list is specified by listing the lowest switch number and the beginning port number on that switch, separated by a colon. Then highest switch number, and the highest port number of the ra...
Page 211
Dgs-3212sr layer 3 gigabit switch config 802.1x capability ports all − specifies all of the ports on the switch. Authenticator − a user must pass the authentication process to gain access to the network. None − the port is not controlled by the 802.1x functions. Restrictions only administrator-level...
Page 212
Dgs-3212sr layer 3 gigabit switch config 802.1x auth_parameter parameters − specifies a range of ports. The port list is specified by listing the lowest switch number and the beginning port number on that switch, separated by a colon. Then the highest switch number, and the highest port number of th...
Page 214
Dgs-3212sr layer 3 gigabit switch config 802.1x init beginning port number on that switch, separated by a colon. Then the highest switch number, and the highest port number of the range (also separated by a colon) are specified. The beginning and end of the port list range are separated by a dash. F...
Page 215
Dgs-3212sr layer 3 gigabit switch config 802.1x reauth specifies switch number 2, port 4. 1:3-2:4 specifies all of the ports between switch 1, port 3 and switch 2, port 4 − in numerical order. All − specifies all of the ports on the switch. Mac-based - this instructs the switch to re-authorize 802.1...
Page 216
Dgs-3212sr layer 3 gigabit switch config radius add will have a higher authenticative priority − the ip address of the radius server. Key − specifies that a password and encryption key will be used between the switch and the radius server. Default − uses the default udp port number in both the “auth...
Page 218
Dgs-3212sr layer 3 gigabit switch show radius purpose used to display the current radius configurations on the switch. Syntax show radius description the show radius command is used to display the current radius configurations on the switch. Parameters none. Restrictions none. Example usage: to disp...
Page 219: (Acl) C
Dgs-3212sr layer 3 gigabit switch 25 a ccess c ontrol l ist (acl) c ommands the dgs-3212sr implements access control lists that enable the switch to deny network access to specific devices or device groups based on ip settings or mac address. The acl commands in the command line interface (cli) are ...
Page 220
Dgs-3212sr layer 3 gigabit switch creating an access profile is divided into two basic parts. First, an access profile must be created using the create access_profile command. For example, if you want to deny all traffic to the subnet 10.42.73.0 to 10.42.73.255, you must first create an access profi...
Page 222
Dgs-3212sr layer 3 gigabit switch create access_profile parameters ethernet − specifies that the switch will examine the layer 2 part of each packet header. Ip − specifies that the switch will examine the ip address in each frame’s header. • vlan − specifies that the switch will examine the vlan par...
Page 223
Dgs-3212sr layer 3 gigabit switch create access_profile • offset_0-15 – enter a value in hex form to mask the packet from the beginning of the packet to the 16 th byte. • tcp − specifies that the switch will examine each frames transport control protocol (tcp) field. • src_port_mask − specifies a tc...
Page 224
Dgs-3212sr layer 3 gigabit switch create access_profile port - specifies a port or range of ports to be configured. The port list is specified by listing the lowest switch number and the beginning port number on that switch, separated by a colon. Then the highest switch number, and the highest port ...
Page 225
Dgs-3212sr layer 3 gigabit switch command: delete access_profile profile_id 1 success. Dgs-3212sr:4# config access_profile profile_id purpose used to configure an access profile on the switch and to define specific values that will be used to by the switch to determine if a given packet should be fo...
Page 226
Dgs-3212sr layer 3 gigabit switch config access_profile profile_id parameters profile_id − enter an integer between 1 and 255 that is used to identify the access profile that will be deleted with this command. This value is assigned to the access profile when it is created with the create access_pro...
Page 227
Dgs-3212sr layer 3 gigabit switch config access_profile profile_id • igmp − specifies that the switch will examine the internet group management protocol (igmp) field within each packet. • type − specifies that the access profile will apply to packets that have this igmp type value. • tcp − specifie...
Page 228
Dgs-3212sr layer 3 gigabit switch config access_profile profile_id • offset_0-15 – enter a value in hex form to mask the packet from the beginning of the packet to the 15 th byte. Permit – specifies that packets that match the access profile are permitted to be forwarded by the switch. Deny – specif...
Page 229
Dgs-3212sr layer 3 gigabit switch dgs-3212sr:4# show access_profile purpose used to display the currently configured access profiles on the switch. Syntax show access_profile {profile_id } description the show access_profile command is used to display the currently configured access profiles paramet...
Page 230
Dgs-3212sr layer 3 gigabit switch 26 t raffic s egmentation c ommands traffic segmentation allows you to further sub-divide vlans into smaller groups of ports that will help to reduce traffic on the vlan. The vlan rules take precedence, and then the traffic segmentation rules are applied. The traffi...
Page 231
Dgs-3212sr layer 3 gigabit switch example usage: to configure ports 1 through 9 to be able to forward frames to port 10 through 12: dgs-3212sr:4# dgs-3212sr:4# config traffic_segmentation 1 : 1-1 : 9 forward_list 1 : 10-1 : 12 command: config traffic_segmentation 1 : 1-1 : 9 forward_list 1 : 10-1 : ...
Page 232
Dgs-3212sr layer 3 gigabit switch 1:5 1:1-1:12,2:1-2:12 1:6 1:1-1:12,2:1-2:12 1:7 1:1-1:12,2:1-2:12 1:8 1:1-1:12,2:1-2:12 1:9 1:1-1:12,2:1-2:12 1:10 1:1-1:12,2:1-2:12 1:11 1:1-1:12,2:1-2:12 1:12 1:1-1:12,2:1-2:12 dgs-3212sr:4# 220
Page 234
Dgs-3212sr layer 3 gigabit switch config stacking mode number of the range (also separated by a colon) are specified. The beginning and end of the port list range are separated by a dash. For example, 1:3 specifies switch number 1, port 3. 2:4 specifies switch number 2, port 4. 1:3- 2:4 specifies al...
Page 235
Dgs-3212sr layer 3 gigabit switch show stacking purpose used to display the current stacking mode. Show stacking {mode} this command will display the current stacking configurations, and mode, if specified. Parameters mode − displays the current stacking mode. Restrictions none. Syntax description u...
Page 236: D-L
Dgs-3212sr layer 3 gigabit switch 28 d-l ink s ingle ip m anagement c ommands simply put, d-link single ip management is a concept that will stack switches together over ethernet instead of using stacking ports or modules. Switches using single ip management (labeled here as sim) must conform to the...
Page 237
Dgs-3212sr layer 3 gigabit switch 1. Each device begins in a commander state. 2. Cs’s must change their role to cas and then to ms, to become a ms of a sim group. Thus, the cs cannot directly be converted to a ms. 3. The user can manually configure a cs to become a cas. 4. A ms can become a cas by: ...
Page 238
Dgs-3212sr layer 3 gigabit switch enable sim description this command will enable sim globally on the switch. Sim features and functions will not function properly unless this function is enabled. Parameters none. Restrictions only administrator-level users can issue this command. Example usage: to ...
Page 240
Dgs-3212sr layer 3 gigabit switch show sim located. Mac address – displays the mac address of the neighbor switch. Role – displays the role (cs, cas, ms) of the neighbor switch. Restrictions only administrator-level users can issue this command. Example usage: to show the sim information in detail: ...
Page 241
Dgs-3212sr layer 3 gigabit switch dgs-3212sr:4#show sim member command: show sim member id mac address platform / hold firmware device name capability time version --- ----------------- ------------------------ ---- --------- ---------------- 1 00-01-04-03-04-00 dgs-3212sr l2 switch 40 3.00-b09 the ...
Page 242
Dgs-3212sr layer 3 gigabit switch dgs-3212sr:4# example usage: to view sim neighbors: dgs-3212sr:4#show sim neighbor command: show sim neighbor neighbor info table port mac address role ------ ------------------------- --------- 23 00-35-26-00-11-99 commander 23 00-35-26-00-11-91 member 24 00-35-26-...
Page 245
Dgs-3212sr layer 3 gigabit switch dgs-3212sr:4# to change the hold time of the discovery protocol: dgs-3212sr:4# config sim commander hold_time 120 command: config sim commander hold_time 120 success. Dgs-3212sr:4# to transfer the switch to be a commander: dgs-3212sr:4#config sim commander command: ...
Page 246
Dgs-3212sr layer 3 gigabit switch download sim_ms members – enter this parameter to specify the members the user prefers to download firmware or switch configuation files to. The user may specify a member or members by adding one of the following: restrictions only administrator-level users can issu...
Page 247
Dgs-3212sr layer 3 gigabit switch 1 00-01-02-03-04-00 success 2 00-07-06-05-04-03 success 3 00-07-06-05-04-03 success dgs-3212sr:4# upload sim_ms purpose user to upload a configuration file to a tftp server from a specified member of a sim group. Syntax upload sim_ms [configuration] description this...
Page 248: Sntp
Dgs-3212sr layer 3 gigabit switch 29 t ime and sntp c ommands the simple network time protocol (sntp) (an adaptation of the network time protocol (npt)) commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. Command parameters config s...
Page 249
Dgs-3212sr layer 3 gigabit switch config sntp restrictions only administrator-level users can issue this command. Sntp service must be enabled for this command to function (enable sntp). Example usage: to configure sntp settings: dgs-3212sr:4#config sntp primary 10.1.1.1 secondary 10.1.1.2 poll-inte...
Page 250
Dgs-3212sr layer 3 gigabit switch enable sntp purpose enables sntp server support. Syntax enable sntp description this will enable sntp support. Sntp service must be separately configured (see config sntp).Enabling and configuring sntp support will override any manually configured system time settin...
Page 251
Dgs-3212sr layer 3 gigabit switch config time purpose used to manually configure system time and date settings. Syntax config time date description this will configure the system time and date settings. These will be overridden if sntp is configured and enabled. Date – express the date using two num...
Page 252
Dgs-3212sr layer 3 gigabit switch to configure time zone settings: dgs-3212sr:4#config time_zone operator + hour 2 min 30 command: config time_zone operator + hour 2 min 30 success. Dgs-3212sr:4# config dst purpose used to enable and configure time adjustments to allow for the use of daylight saving...
Page 253
Dgs-3212sr layer 3 gigabit switch config dst parameters disable - disable the dst seasonal time adjustment for the switch. Repeating - using repeating mode will enable dst seasonal time adjustment. Repeating mode requires that the dst beginning and ending date be specified using a formula. For examp...
Page 255
Dgs-3212sr layer 3 gigabit switch dgs-3212sr:4#show time repeating from : apr 2nd tue 15:00 command: show time current time source : system clock current time : 10 jul 2003 01:43:41 time zone : gmt +02:30 daylight saving time : repeating offset in minutes : 60 to : oct 2nd wed 15:30 annual from : 29...
Page 259
Dgs-3212sr layer 3 gigabit switch clear arptable purpose used to remove all dynamic arp table entries. Syntax clear arptable description this command is used to remove dynamic arp table entries from the switch’s arp table. Static arp table entries are not affected. Parameters none. Restrictions only...
Page 260
Dgs-3212sr layer 3 gigabit switch 248.
Page 261
Dgs-3212sr layer 3 gigabit switch 31 r outing t able c ommands the routing table commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. Command parameters create iproute default {} show iproute {} {static} delete iproute default each c...
Page 262
Dgs-3212sr layer 3 gigabit switch delete iproute default switch’s ip routing table. Parameters none. Restrictions only administrator-level users can issue this command. Example usage: to delete the default ip route 10.53.13.254: dgs-3212sr:4#delete iproute default command: delete iproute default suc...
Page 263
Dgs-3212sr layer 3 gigabit switch 251.
Page 264
Dgs-3212sr layer 3 gigabit switch 32 c ommand h istory l ist the command history list commands in the command line interface (cli) are listed (along with the appropriate parameters) in the following table. Command parameters ? Show command_history config command_history each command is listed, in de...
Page 265
Dgs-3212sr layer 3 gigabit switch config 802.1x reauth config access profile profile_id config account config admin local_enable config all_boxes_id config arp_aging time config authen_application ctrl+c esc q quit space n next page enter next entry a all show command_history purpose used to display...
Page 266
Dgs-3212sr layer 3 gigabit switch config command_history purpose used to configure the command history. Syntax config command_history description this command is used to configure the command history. Parameters − the number of previously executed commands maintained in the buffer. Up to 40 of the l...
Page 267
Dgs-3212sr layer 3 gigabit switch a t echnical s pecifications physical and environmental ac input & external redundant power supply: 100 – 120; 200 - 240 vac, 50/60 hz (internal universal power supply) 90 watts maximum 2 built-in 40 x 40 x10 mm fans 0 to 40 degrees celsius -25 to 55 degrees celsius...
Page 268
Dgs-3212sr layer 3 gigabit switch 256 general protocols: csma/cd data transfer rates: ethernet fast ethernet fiber optic 100mbps 200mbps gigabit ethernet half-duplex full-duplex 10 mbps 20mbps n/a 2000mbps sfp (mini gbic) support ieee 802.3z 1000base-lx (dem-310gt transceiver) ieee 802.3z 1000base-s...
Page 269
Dgs-3212sr layer 3 gigabit switch 257 performance 1,488,100 pps per port (for 1000mbps) mac address learning: automatic update. Forwarding table age time: max age: 10 - 1000000 seconds. Default = 300..