3COM 4500 PWR 50-PORT, 4500 PWR 26-PORT, 4500 26-PORT, 4500 50-PORT User Manual

Download

Page 1

3Com® Switch 4500 Family

Command Reference Guide

Switch 4500 26-Port Switch 4500 50-Port Switch 4500 PWR 26-Port Switch 4500 PWR 50-Port

www.3Com.com Part No. 10015729, Rev. AA Published: January 2007

Page 2

3Com Corporation 350 Campus Drive Marlborough, MA USA 01752-3064

Copyright © 2007, 3Com Corporation. All rights reserved. No part of this documentation may be reproduced in any form or by any means or used to make any derivative work (such as translation, transformation, or adaptation) without written permission from 3Com Corporation.

3Com Corporation reserves the right to revise this documentation and to make changes in content from time to time without obligation on the part of 3Com Corporation to provide notification of such revision or change.

3Com Corporation provides this documentation without warranty, term, or condition of any kind, either implied or expressed, including, but not limited to, the implied warranties, terms or conditions of merchantability, satisfactory quality, and fitness for a particular purpose. 3Com may make improvements or changes in the product(s) and/or the program(s) described in this documentation at any time.

If there is any software on removable media described in this documentation, it is furnished under a license agreement included with the product as a separate document, in the hard copy documentation, or on the removable media in a directory file named LICENSE.TXT or !LICENSE.TXT. If you are unable to locate a copy, please contact 3Com and a copy will be provided to you.

UNITED STATES GOVERNMENT LEGEND

If you are a United States government agency, then this documentation and the software described herein are provided to you subject to the following:

All technical data and computer software are commercial in nature and developed solely at private expense. Software is delivered as “Commercial Computer Software” as defined in DFARS 252.227-7014 (June 1995) or as a “commercial item” as defined in FAR license for the Software. Technical data is provided with limited rights only as provided in DFAR 252.227-7015 (Nov FAR 52.227-14 (June 1987), whichever is applicable. You agree not to remove or deface any portion of any legend provided on any licensed program or documentation contained in, or delivered to you in conjunction with, this User Guide.

Unless otherwise indicated, 3Com registered trademarks are registered in the United States and may or may not be registered in other countries.

3Com and the 3Com logo are registered trademarks of 3Com Corporation.

Cisco is a registered trademark of Cisco Systems, Inc.

Funk RADIUS is a registered trademark of Funk Software, Inc.

Aegis is a registered trademark of Aegis Group PLC.

Intel and Pentium are registered trademarks of Intel Corporation. Microsoft, MS-DOS, Windows, and Windows NT are registered trademarks of Microsoft registered trademark in the United States and other countries, licensed exclusively through X/Open Company, Ltd.

IEEE and 802 are registered trademarks of the Institute of Electrical and Electronics Engineers, Inc.

All other company and product names may be trademarks of the respective companies with which they are associated.

2.101(a) and as such is provided with only such rights as are provided in 3Com’s standard commercial

Corporation. Novell and NetWare are registered trademarks of Novell, Inc. UNIX is a

1995) or

ENVIRONMENTAL STATEMENT

It is the policy of 3Com Corporation to be environmentally-friendly in all operations. To uphold our policy, we are committed to:

Establishing environmental performance standards that comply with national legislation and regulations.

Conserving energy, materials and natural resources in all operations.

Reducing the waste generated by all operations. Ensuring that all waste conforms to recognized environmental standards. Maximizing the recyclable and reusable content of all products.

Ensuring that all products can be recycled, reused and disposed of safely.

Ensuring that all products are labelled according to recognized environmental standards.

Improving our environmental record on a continual basis.

End of Life Statement

3Com processes allow for the recovery, reclamation and safe disposal of all end-of-life electronic components.

Regulated Materials Statement

3Com products do not contain any hazardous or ozone-depleting material.

Environmental Statement about the Documentation

The documentation for this product is printed on paper that comes from sustainable, managed forests; it is fully biodegradable and recyclable, and is completely chlorine-free. The varnish is environmentally-friendly, and the inks are vegetable-based with a low heavy-metal content.

Page 3

ABOUT THIS GUIDE

About This Software Version 13 How This Guide is Organized 13 Intended Readership 14 Conventions 14 Related Documentation 15

1 USING SYSTEM ACCESS COMMANDS

Logging in Commands 18

2 USING PORT COMMANDS

Ethernet Port Configuration Commands 43 Ethernet Port Link Aggregation Commands 64

3 USING VLAN COMMANDS

VLAN Configuration Commands 76 Voice VLAN Configuration Commands 81

4 USING POWER OVER ETHERNET (POE) COMMANDS

PoE Configuration Commands 88

5 USING NETWORK PROTOCOL COMMANDS

IP Address Configuration Commands 99 ARP Configuration Commands 101 DHCP Client Configuration Commands 108 DHCP Relay Configuration Commands 110 Access Management Configuration Commands 114 UDP Helper Configuration Commands 118 IP Performance Configuration Commands 121

6 USING ROUTING PROTOCOL COMMANDS

Routing Table Display Commands 136 Static Route Configuration Command 146 RIP Configuration Commands 149 IP Routing Policy Configuration Commands 166

Page 4

7 USING MULTICAST PROTOCOL COMMANDS

IGMP Snooping Configuration Commands 176

8 USING QOS/ACL COMMANDS

ACL Commands List 184 QoS Configuration Commands List 190 Logon User’s ACL Control Command 201

9 USING STACK COMMANDS

Stack Commands 207

10 USING RSTP COMMANDS

RSTP Configuration Commands 216

11 USING AAA AND RADIUS COMMANDS

802.1x Configuration Commands 236 Centralized MAC Address Authentication Configuration Commands 247 AAA and RADIUS Configuration Commands 254 RADIUS Protocol Configuration Commands 270

12 USING SYSTEM MANAGEMENT COMMANDS

File System Management Commands 299 Configuration File Management Commands 308 FTP Server Configuration Commands 315 FTP Client Commands 320 TFTP Configuration Commands 333 MAC Address Table Management Commands 334 Device Management Commands 338 Basic System Configuration and Management Commands 346 System Status and System Information Display Commands 348 System Debug Commands 351 Network Connection Test Commands 352 Log Commands 361 SNMP Configuration Commands 376 RMON Configuration Commands 394 NTP Configuration Commands 403 SSH Terminal Service Configuration Commands 417 SSH Client Configuration Commands 428 SFTP Server Configuration Commands 435 SFTP Client Configuration Commands 436

Page 5

13 CONFIGURING PASSWORD CONTROL

A BOOTROM INTERFACE

Accessing the Bootrom Interface 455 Boot Menu 456

Page 6

Page 7

ALPHABETICAL LISTING OF COMMANDS

display poe interface 88 display poe power 89 poe power-management 93 poe update 95 access-limit 254 accounting optional 270 acl 184 acl 201 am enable 114 am ip-pool 114 am trap enable 115 apply cost 166 arp check enable 101 arp static 102 arp static 103 ascii 320 attribute 254 authentication-mode 18 auto-execute command 19 binary 320 boot boot-loader 338 boot bootrom 338 Boot Menu File Download Commands 459 broadcast-suppression 43 bye 436 bye 321 cd 436 cdup 437 cdup 322 cd 299 cd 321 change self-unit 207 change unit-id 208 checkzero 149 clock datetime 346 clock summer-time 346 clock timezone 347 close 323 command-privilege level 19

Page 8

copy configuration 43 copy 299 cut connection 255 databits 20 data-flow-format 270 debugging arp packet 104 debugging dhcp client 108 debugging dhcp xrn xha 108 debugging dhcp-relay 110 debugging lacp packet 64 debugging lacp state 65 debugging link-aggregation error 64 debugging link-aggregation event 64 debugging mac-authentication event 247 debugging ssh server 417 debugging udp-helper 118 debugging 351 default cost 149 delete 437 Delete File from Flash 457 delete static-routes all 147 delete 300 delete 323 description 44 description 76 dhcp-server ip 112 dhcp-server 111 dir 438 dir 301 dir 324 disconnect 324 display password-control blacklist 446 display acl 185 Display all Files in Flash 457 display am 116 display arp timer aging 106 display arp 105 display boot-loader 339 display channel 361 display clock 348 display config-agent 349 display connection 256 display cpu 339 display current-configuration 308 display debugging 350 display device 340 display dhcp client 109

Page 9

display dhcp-server 112 display dhcp-server interface vlan-interface 113 display diagnostic-information 352 display domain 258 display dot1x 236 display fan 340 display fib 121 display fib 123 display fib acl 122 display fib ip_address 122 display fib ip-prefix 123 display fib statistics 124 display ftm 209 display ftp-server 315 display ftp-user 315 display history-command 21 display icmp statistics 124 display igmp-snooping configuration 176 display igmp-snooping group 176 display igmp-snooping statistics 177 display info-center 361 display interface VLAN-interface 76 display interface 45 display ip host 99 display ip interface vlan 99 display ip ip-prefix 166 display ip routing-table acl 137 display ip routing-table ip_address1 ip_address2 141 display ip routing-table ip_address 139 display ip routing-table ip-prefix 141 display ip routing-table protocol 143 display ip routing-table radix 144 display ip routing-table statistics 144 display ip routing-table verbose 145 display ip routing-table 136 display ip socket 125 display ip statistics 126 display isolate port 117 display lacp system-id 69 display link-aggregation interface 68 display link-aggregation summary 66 display link-aggregation verbose 67 display local-server statistics 271 display local-user 258 display loopback-detection 47 display mac-address aging-time 335 display mac-address 334 display mac-authentication 248

Page 10

display memory 341 display mirror 190 display ntp-service sessions 404 display ntp-service status 405 display ntp-service trace 406 display password-control 445 display password-control super 446 display poe powersupply 90 display port 48 display power 341 display qos cos-local-precedencemap 191 display qos-interface all 191 display qos-interface line-rate 192 display qos-interface mirrored-to 192 display qos-interface traffic-limit 193 display radius statistics 273 display radius 272 display remote-ping 356 display rip 150 display rmon alarm 394 display rmon eventlog 395 display rmon event 394 display rmon history 396 display rmon prialarm 397 display rmon statistics 398 display route-policy 167 display rsa local-key-pair public 418 display rsa peer-public-key 419 display saved-configuration 310 display schedule reboot 342 display snmp-agent community 377 display snmp-agent group 377 display snmp-agent mib-view 378 display snmp-agent statistics 379 display snmp-agent sys-info 381 display snmp-agent usm-user 381 display snmp-agent 376 display snmp-proxy unit 382 display ssh server 420 display ssh server-info 428 display ssh user-information 421 display startup 312 display stop-accounting-buffer 274 display stp 216 display tcp statistics 128 display tcp status 129

Page 11

display this 311 display udp statistics 129 display udp-helper server 119 display unit 48 display user-interface 21 display users 23 display version 350 display vlan 77 display voice vlan oui 81 display voice vlan status 82 display xrn-fabric 209 domain 260 dot1x authentication-method 238 dot1x dhcp-launch 239 dot1x max-user 239 dot1x port-control 240 dot1x port-method 241 dot1x quiet-period 242 dot1x retry 243 dot1x supp-proxy-check 244 dot1x timer 245 dot1x 237 Download Application File to Flash 456 duplex 49 enable snmp trap 382 end-station polling ip-address 352 Enter Bootrom Upgrade Menu 458 execute 302 exit 438 fabric save-unit-id 210 fabric-port enable 211 file prompt 302 filter-policy export 151 filter-policy import 152 flow-control 24 flow-control 50 format 303 free user-interface 24 ftm stacking-vlan 211 ftp server 316 ftp timeout 316 ftp 325 get 439 get 326 header 25 help 439 history-command max-size 27 host-route 153

Page 12

idle-cut 261 idle-timeout 27 if-match cost 168 if-match interface 169 if-match ip next-hop 170 igmp-snooping 178 igmp-snooping host-aging-time 178 igmp-snooping max-response-time 179 igmp-snooping router-aging-time 180 import-route 153 info-center channel name 362 info-center enable 363 info-center logbuffer 364 info-center loghost source 366 info-center loghost 365 info-center monitor channel 366 info-center snmp channel 367 info-center source 368 info-center switch-on 371 info-center timestamp 372 info-center trapbuffer 373 interface VLAN-interface 78 interface 50 ip address dhcp-alloc 109 ip address 100 ip host 101 ip ip-prefix 170 ip route-static 147 key 275 lacp enable 69 lacp port-priority 70 lacp system-priority 70 language-mode 28 lcd 326 level 262 line-rate 193 link-aggregation group agg-id description 71 link-aggregation group agg-id mode 71 local-server 276 local-user password-display-mode 263 local-user 262 local-user 317 lock 28 loopback 51 loopback-detection control enable 52 loopback-detection enable 52 loopback-detection interval-time 53

Page 13

loopback-detection per-vlan enable 54 ls 440 ls 327 mac-address max-mac-count 336 mac-address timer 337 mac-address 335 mac-authentication 249 mac-authentication authmode 250 mac-authentication authpassword 251 mac-authentication authusername 252 mac-authentication domain 252 mac-authentication timer 253 mdi 54 messenger 264 mirrored-to 194 mirroring-port 195 mkdir 440 mkdir 303 mkdir 327 Modify Bootrom Password 458 monitor-port 196 more 303 move 304 multicast-suppression 55 nas-ip 276 network 154 ntp-service access 406 ntp-service authentication enable 407 ntp-service authentication-keyid 408 ntp-service broadcast-client 409 ntp-service broadcast-server 409 ntp-service in-interface disable 410 ntp-service max-dynamic-sessions 410 ntp-service multicast-client 411 ntp-service multicast-server 412 ntp-service reliable authentication-keyid 413 ntp-service source-interface 413 ntp-service unicast-peer 414 ntp-service unicast-server 415 packet-filter 186 parity 29 passive 328 password 318 password 447 password-control 447 password-control enable 449 password-control super 450 password 265

Page 14

peer-public-key end 421 peer-public-key end 428 peer 155 ping 353 poe enable 91 poe legacy enable 91 poe max-power 92 poe mode 93 poe priority 94 port 79 port access vlan 56 port hybrid pvid vlan 56 port hybrid vlan 57 port isolate 117 port link-aggregation group 72 port link-type 58 port trunk permit vlan 59 port trunk pvid vlan 59 preference 156 primary accounting 277 primary authentication 278 priority 196 priority trust 197 protocol inbound 29 protocol inbound 422 public-key-code begin 423 public-key-code begin 429 public-key-code end 423 public-key-code end 430 put 441 put 329 pwd 441 pwd 305 pwd 329 qos cos-local-precedence -map 198 quit 430 quit 441 quit 30 quit 330 radius nas-ip 279 radius scheme 280 radius-scheme 265 Reboot 459 reboot 342 remotehelp 330 remote-ping 355 remote-ping-agent enable 358

Page 15

remove 442 rename 442 rename 305 reset 156 reset acl counter 187 reset arp 107 reset counters interface 60 reset dot1x statistics 246 reset igmp-snooping statistics 180 reset ip statistics 130 reset lacp statistics 73 reset logbuffer 373 reset password-control blacklist 452 reset password-control history-record 451 reset password-control history-record super 452 reset radius statistics 280 reset recycle-bin 306 reset saved-configuration 312 reset stop-accounting-buffer 281 reset stp 217 reset tcp statistics 130 reset trapbuffer 374 reset udp statistics 131 retry realtime-accounting 283 retry stop-accounting 283 retry 282 return 31 rip authentication-mode 157 rip input 159 rip metricin 159 rip metricout 160 rip output 160 rip split-horizon 161 rip version 162 rip work 163 rip 157 rmdir 443 rmdir 306 rmdir 331 rmon alarm 399 rmon event 400 rmon history 401 rmon prialarm 402 rmon statistics 403 route-policy 172 rsa local-key-pair create 424 rsa local-key-pair destroy 425 rsa peer-public-key 425

Page 16

rsa peer-public-key 431 rule 187 save 313 schedule reboot at 343 schedule reboot delay 344 scheme 266 screen-length 31 secondary accounting 284 secondary authentication 285 Select Application File to Boot 456 self-service-url 267 send 32 server-type 285 service-type 319 service-type 268 service-type 32 set authentication password 33 Set Bootrom Password Recovery 458 Set Switch Startup Mode 459 set unit name 212 sftp 443 sftp server enable 435 shell 34 shutdown 80 shutdown 61 Skip Current Configuration File 458 snmp-agent community 202 snmp-agent community 383 snmp-agent group 203 snmp-agent group 384 snmp-agent local-engineid 385 snmp-agent mib-view 385 snmp-agent packet max-size 386 snmp-agent sys-info 387 snmp-agent target-host 387 snmp-agent trap enable 389 snmp-agent trap life 390 snmp-agent trap queue-size 391 snmp-agent trap source 391 snmp-agent usm-user 392 snmp-agent usm-user 204 speed 35 speed 61 ssh client assign rsa-key 431 ssh client first-time enable 432 ssh server authentication-retries 425 ssh server timeout 426

Page 17

ssh user assign rsa-key 426 ssh user authentication-type 427 ssh user service-type 435 ssh2 433 startup bootrom-access enable 314 state 269 state 286 stop-accounting-buffer enable 287 stopbits 35 stp 218 stp bpdu-protection 219 stp cost 220 stp edged-port 220 stp loop-protection 221 stp mcheck 222 stp mode 222 stp pathcost-standard 223 stp point-to-point 224 stp port priority 224 stp priority 225 stp root primary 226 stp root secondary 226 stp root-protection 227 stp timeout-factor 228 stp timer forward-delay 228 stp timer hello 229 stp timer max-age 230 stp transmit-limit 230 summary 163 super password 37 super 36 sysname 213 sysname 348 sysname 37 system-view 38 tcp timer fin-timeout 131 tcp timer syn-timeout 131 tcp window 132 telnet 38 terminal debugging 374 terminal logging 375 terminal monitor 375 terminal trapping 376 tftp get 333 tftp put 333 timer quiet 289 timer realtime-accounting 289 timer response-timeout 290

Page 18

timers 164 timer 288 tracert 359 traffic-limit 199 udp-helper enable 119 udp-helper port 119 udp-helper server 120 undelete 307 undo snmp-agent 393 unicast-suppression 62 user privilege level 40 user 331 user-interface 39 user-name-format 291 verbose 332 View 32 vlan 81 voice vlan 84 voice vlan aging 83 voice vlan enable 83 voice vlan mac_address 84 voice vlan mode 85 voice vlan security enable 86 wred 200 xrn-fabric authentication-mode 212 display packet-filter 185 if-match { acl | ip-prefix } 168 info-center console channel 363 ip http acl 202 startup saved configuration 314

Page 19

ABOUT THIS GUIDE

About This Software Version

How This Guide is Organized

This guide provides all the information you need to use the configuration

commands supported by version 3.0.x software on the 3Com

Switch 4500.

The software in the Switch 4500 is a subset of that used in some other 3Com products. Depending on the capabilities of your hardware platform, some commands described in this guide may not be available on your Switch, although the unavailable commands may still display on the command line interface (CLI). If you try to use an unavailable command, an error message displays.

CAUTION: Any command that displays on the CLI, but is not described in this guide, is not supported in version 3.0.x software. 3Com only supports the commands described in this guide. Other commands may result in the loss of data, and are entered at the user’s risk.

The Switch 4500 Command Reference Guide consists of the following chapters:

■ Using System Access Commands — Introduces the commands used for

accessing the Switch 4500.

■ Using Port Commands — Introduces the commands used for configuring

Ethernet port and link aggregation.

■ Using VLAN Commands — Introduces the commands used for configuring

VLANs.

■ Using Power over Ethernet (PoE) Commands — Introduces the commands

used for configuring PoE.

■ Using Network Protocol Commands — Introduces the commands used for

configuring network protocols.

■ Using Routing Protocol Commands — Introduces the commands used for

configuring routing protocols.

■ Using Multicast Protocol Commands — Introduces the commands used for

configuring multicast protocols.

■ Using QoS and ACL Commands — Introduces the commands used for

configuring QoS/ACL.

■ Using STP Commands — Introduces the commands used for configuring STP.

■ Using AAA and RADIUS Commands — Introduces the commands used for

configuring 802.1x, AAA and RADIUS.

■ Using Reliability Commands — Introduces the commands used for

configuring VRRP.

Page 20

14 ABOUT THIS GUIDE

■ Using System Management Commands — Introduces the commands used

for system management and maintenance.

Intended Readership The guide is intended for the following readers:

■ Network administrators

■ Network engineers

■ Users who are familiar with the basics of networking

Conventions This guide uses the following conventions:

Ta bl e 1 Icons

Icon Notice Type Description

Information note Information that describes important features or instructions.

Caution Information that alerts you to potential loss of data or

potential damage to an application, system, or device.

Warning Information that alerts you to potential personal injury.

Ta bl e 2 Text conventions

Convention Description

Screen displays This typeface represents text as it appears on the screen.

Keyboard key names If you must press two or more keys simultaneously, the key names are

linked with a plus sign (+), for example:

Press Ctrl+Alt+Del

The words “enter” and “type”

When you see the word “enter” in this guide, you must type something, and then press Return or Enter. Do not press Return or Enter when an instruction simply says “type.”

Fixed command text

This typeface indicates the fixed part of a command text. You must type the command, or this part of the command, exactly as shown, and press Return or Enter when you are ready to enter the command.

Example: The command display history-command must be entered exactly as shown.

Variable command text

This typeface indicates the variable part of a command text. You must type a value here, and press Return or Enter when you are ready to enter the command.

Example: in the command super level , a value in the range 0 to 3 must be entered in the position indicated by level

{ x | y | ... } Alternative items, one of which must be entered, are grouped in braces

and separated by vertical bars. You must select and enter one of the items.

Example: in the command flow-control {hardware | none | software}, the braces and the vertical bars combined indicate that you must enter one of the parameters. Enter either hardware, or none, or software.

Page 21

Table 2 Text conventions

USING SYSTEM ACCESS COMMANDS

This chapter describes how to use the following commands:

Logging in Commands

■ authentication-mode

■ auto-execute command

■ command-privilege level

■ databits

■ display history-command

■ display user-interface

■ display users

■ flow-control

■ free user-interface

■ header

■ history-command max-size

■ idle-timeout

■ language-mode

■ lock

■ parity

■ protocol inbound

■ quit

■ return

■ screen-length

■ send

■ service-type

■ View

■ set authentication password

■ shell

■ speed

■ stopbits

■ super

■ super password

■ sysname

Page 24

18 CHAPTER 1: USING SYSTEM ACCESS COMMANDS

■ system-view

■ telnet

■ user-interface

■ user privilege level

Logging in Commands This section describes the commands that you can use to configure system access

and system security.

authentication-mode Syntax

authentication-mode { password | scheme | none }

View

User interface view

Parameter

password: Requires local authentication of password at log in.

scheme: Requires local or remote authentication of username and password at

none: Allows users to log in without username or password.

Description

This command configures the authentication method for a user at log in.

Use the command authentication-mode password to prompt a user for local password authentication at login. To set the password, use

password

set authentication

Use the command authentication-mode scheme to prompt a user to provide local or remote user name and password authentication at login. The type of the authentication depends on your network configuration. For further information, see “AAA and RADIUS”.

Use the command authentication-mode none to allow a user to log in without username or password authentication.

By default, users logging in using the console port do not need to pass any terminal authentication. Users logging in via modem or Telnet are required to provide password authentication when they log in.

Example

To configure local password authentication, enter the following command:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]user-interface aux 0 [4500-ui-aux0]authentication-mode password

Page 25

auto-execute command Syntax

auto-execute command text

undo auto-execute command

View

User Interface View

Parameter

text: Specifies the command to be run automatically.

Description

Enter auto-execute command text to configure the Switch to automatically run a specified command. When the user logs in, the command will be executed automatically. This command is usually used to configure the the terminal, which will connect the user to a designated device automatically.

Enter undo auto-execute command to cancel the auto-execute command so the command is not run automatically.

Logging in Commands 19

telnet command on

By default, auto-execute is disabled.

CAUTION: If you execute this command, the user-interface can no longer be used to perform routine configurations on the local system. Ensure that you can log in to the system in some other way to cancel the configuration, before you configure

auto-execute command and save the configuration.

the

Example

To configure the Switch to automatically Telnet to device 10.110.100.1 after the user logs in via VTY 0, enter the following command:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]user-interface vty 0 [4500-ui-vty0]auto-execute command telnet 10.110.100.1

command-privilege level Syntax

command-privilege level level view view command

undo command-privilege view view command

View

System View

Parameter

level: Enter the command level you want to assign to this command, ranging

from 0 to 3.

view: Enter the name of the view that contains the command. This can be any of

the views supported by the Switch.

command: Enter the command to be configured.

Page 26

20 CHAPTER 1: USING SYSTEM ACCESS COMMANDS

Description

Use the command-privilege level command to configure the priority level assigned to any command within a selected view.

The command levels are, from lowest to highest:

■ 0 – Visit

■ 1 – Monitoring

■ 2 – System

■ 3 – Management

When the user logs into the Switch, the commands used depends on the user level settings and the command level settings on the user interface. The two types of settings may differ as follows:

■ If AAA/RADIUS authentication is used, the commands the user can access are

determined by the user level settings. For example, if a user is set to level 3 and the command level on the VTY 0 user interface is level 1, the user can only user the commands of level 3 or lower when logging into the Switch from the VTY interface.

■ If RSA public key authentication is used, the commands the user can access are

determined by the command level settings on the user interface.

By default:

■ ping, tracert, and telnet are at level 0

■ display and debugging are at level 1

■ all configuration commands are at system level 2

■ FTP, XMODEM, TFTP and commands for file system operations are at level 3

Use the undo command-privilege view command to restore the default priority to a command.

Example

To configure the precedence of the command ‘interface’ as 0, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]command-privilege level 0 view system interface

databits Syntax

databits { 7 | 8 }

undo databits

View

User interface view

Parameter

7 – Sets the data bits to 7.

Page 27

Logging in Commands 21

8 – Sets the data bits to 8.

Description

Use the databits command to configure the data bits for the AUX (Console) port to either

7 or 8. By default, the value is 8. Use the undo databits command to

restore the default value (8).

This command can only be performed in the AUX user interface view.

Example

To configure the data bits of the AUX (Console) port to 7 bits, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]user-interface aux 0 [4500-ui-aux0]databits 7

display

history-command

Syntax

display history-command

View

All views

Parameter

None

Description

Use the display history-command command to view the commands previously entered during this login session, up to a specified maximum.

To set the maximum number of commands to display, see history-command

max-size

Example

To display previously entered commands, enter the following.

<4500>display history-command

The commands display on screen.

display user-interface Syntax

display user-interface [ type number | number ] [summary]

View

All views

Parameter

type number: Enter the type and number of the user interface you want to

display details on, for example VTY 3.

number: Enter the index number of the user interface you want to display details

on.

Page 28

22 CHAPTER 1: USING SYSTEM ACCESS COMMANDS

summary: Display the summary of a user interface.

Description

Use the display user-interface command to view information on a user interface. You can choose to access this information by user interface type and type number, or by user interface index number. The information displayed is the same whichever access method you use.

This command without the summary parameter displays user interface type, absolute/relative index, transmission speed, priority, authentication methods, and physical location. This command with the interface in use with user interface name and other user interface information.

Example

To display information on a user interface with an index number of 0, enter the following.

<4500>display user-interface aux 0

The information is displayed in the following format:

Idx Type Tx/Rx Modem Privi Auth Int 0 AUX 0 19200 - 3 P -

summary parameter displays one user

+ : Current user-interface is active. F : Current user-interface is active and work in async mode. Idx : Absolute index of user-interface. Type : Type and relative index of user-interface. Privi: The privilege of user-interface. Auth : The authentication mode of user-interface. Int : The physical location of UIs. A : Authentication use AAA. N : Current UI need not authentication. P : Authentication use current UI's password.

Ta bl e 3 Output description of the display user-interface command

Field Description

+ Indicates that the user interface is in use

F Current user interface is in use and working in asynchronous

mode

Idx Displays the index number of the user interface

Type Displays the type and type number of the user interface

Tx/Rx Displays the user interface speed

Modem Displays the modem operation mode

Privi Indicates the command level that can be accessed from this

user interface

Auth Indicates the user interface authentication method

Int Indicates the physical location of the user interface

Display the summary information of user interface 0.

<4500>display user-interface 0 summary 0: U

Page 29

1 character mode users. (U) 1 total UIs in use. UI's name: aux0

Ta bl e 4 Output Description of the display user-interface summary Command

Field Description

0: U User interface type

1 character mode users One type of user interface

1 total UIs in use The total number of user interfaces in use

UI’s name User interface name

display users Syntax

display users [ all ]

View

All views

Parameter

all: Enter to display information on all user interfaces.

Logging in Commands 23

Description

Use the display users command to view information on the current user interface. Use the

display users all command to view the information on all

user interfaces.

Example

To display information on the current user interface, enter the following

[4500]display users

The information displays in the following format:

UI Delay Type IPaddress Username Userlevel

F 0 AUX 0 00:00:00 3

The categories of information displayed are as follows:

Ta bl e 5 Output description of the display users command

Field Description

F Indicates that the user interface is in use and is working in asynchronous mode

UI Number of the first list is the absolute number of user interface.

Number of the second list is the relative number of user interface

Delay Indicates the interval from the latest input until now, in seconds.

Type Indicates the user interface type.

IPaddress Displays initial connection location, namely the host IP address of the incoming

Username Display the login name of the user who is using this interface

Userlevel Display the level of the user using this user interface

connection.

Page 30

24 CHAPTER 1: USING SYSTEM ACCESS COMMANDS

flow-control Syntax

flow-control { hardware | none | software }

undo flow-control

View

User interface view

Parameter

hardware: Enter to set hardware flow control.

none: Enter to set no flow control.

software: Enter to set software flow control.

Description

Use the flow-control command to configure the flow control mode on the AUX (Console) port to hardware, software or none. Use the command to restore the default flow control mode (no flow control).

undo flow-control

This command can only be performed in the AUX user interface view.

Example

To configure software flow control on the AUX (Console) port, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]user-interface aux 0 [4500-ui-aux0]flow-control software

free user-interface Syntax

free user-interface { type | number }

View

User view

Parameter

type: Enter the type and type number of the user interface to be reset.

number: Enter the index number of the user interface to be reset.

Description

Use this command to reset a specified user interface to its default settings. The user interface will be disconnected after the reset.

Use free user-interface type to reset the interface with the specified type and type number to its default settings. Use

free user-interface number to

reset the interface with the specified index number to its default settings.

You cannot use this command on the current user interface.

Page 31

Example

To reset user interface AUX 1 from another user interface on the Switch, enter the following:

<4500>free user-interface aux 1

After the command is executed, user interface AUX 1 is disconnected. When you next log in using user interface AUX 1, it opens using the default settings.

header Syntax

header { shell | incoming | login } text

undo header { shell | incoming | login }

View

System view

Parameter

is prompted to enter user name and password.

Logging in Commands 25

shell: User conversation established header, the information output after user

conversation has been established. If authentication is required, it is prompted after the user passes authentication.

incoming: Login header, the information output after a Modem user logs in. If

authentication is required, it is prompted after the user passes authentication. In this case, no shell information is output.

text: Specifies the title text. If you do not choose any keyword in the command, the system displays the login information by default. The system supports two types of input mode: you can input all the text in one line (a maximum of 256 characters, including command key word, can be entered); or you can input all the text in several lines using the <Enter> key, and more than 256 characters can be entered. The text starts and ends with the first character. After entering the last character, press the <Enter> key to exit the interactive process.

Description

Use the header command to configure the system to display a header during user log in. Use the

undo header { shell | incoming | login } command to

delete the specified header.

When the user logs in, and a connection is activated, the login header displays. After the user successfully logs in, the

shell header displays.

The first characters in the text are regarded as the start and stop characters. After you type in the stop character, the system will exit the header command automatically.

If you do not want to use the control characters, you can type in text with the same characters at the beginning and end, and press Enter.

Page 32

26 CHAPTER 1: USING SYSTEM ACCESS COMMANDS

If you press <Enter> after typing any of the three keywords shell, login and incoming in the command, then what you type after the word header is the contents of the login information, instead of identifying header type.

You can judge whether the initial character can be used as the header contents this way:

1 If there is only one character in the first line and it is used as the identifier, this

initial character pairs with the ending character and is not the header contents.

2 If there are many characters in the first line but the initial and ending characters

are different, this initial character pairs with the ending character and is the header contents.

3 There are many characters in the first line and the initial character is identical with

the ending character, this initial character is not the header contents.

Example

Configure the header of setting up a session.

Mode 1: Input in one line

<4500>system-view System View: return to User View with Ctrl+Z. [4500]header shell %SHELL: Hello! Welcome%

The starting and ending characters must be the same, and press the <Enter> key to finish a line.

■ When you log on the Switch again, the terminal displays the configured session

establishment title.

[4500]quit <4500>quit Please press ENTER SHELL: Hello! Welcome

The initial character "%" is not the header contents.

<4500>

Mode 2: Input in several lines

<4500>system-view System View: return to User View with Ctrl+Z. [4500]header shell % SHELL:

After you pressing the <Enter> key, the system prompts the following message:

Input banner text, and quit with the character '%'.

Go on inputting the rest text and end your input with the first letter:

Hello! Welcome %

Press the <Enter> key.

[4500]

Page 33

Logging in Commands 27

When you log on the Switch again, the terminal displays the configured session establishment title.

[4500]quit <4500>quit Please press ENTER %SHELL:

The initial character "%" is the header contents.

Hello! Welcome <4500>

history-command

max-size

Syntax

history-command max-size value

undo history-command max-size

View

User interface view

Parameter

value: Enter the number of previously entered commands that you want the

Switch to save.

Description

Use the command history-command max-size to specify the amount of previously entered commands that you want the Switch to save. Enter any value between 0 and 256. The default is 10, that is, the 10 most recently entered commands are saved. Use the

undo history-command max-size command to

restore the default value.

To display the most recently-entered commands, up to the specified maximum, use the command

display history-command.

Example

To set the history buffer to 20, that is to save the 20 most recently-entered commands, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]user-interface aux 0 [4500-ui-aux0]history-command max-size 20

idle-timeout Syntax

idle-timeout minutes [ seconds ]

undo idle-timeout

View

User interface view

Page 34

28 CHAPTER 1: USING SYSTEM ACCESS COMMANDS

Parameter

minutes: Enter the number of minutes you want to allow a user interface to

remain idle before it is disconnected. This can be in the range 0 to 35791.

seconds: Enter the number of seconds in addition to the number of minutes.

Optional.

Description

Use the idle-timeout command to configure the amount of time you want to allow a user interface to remain idle before it is disconnected. Use the

idle-timeout

idle-timeout is set to 10 minutes.

To disable idle timeout, set the idle-timeout value to 0.

Example

To configure the timeout value to 1 minute on the AUX user interface, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]user-interface aux 0 [4500-ui-aux0]idle-timeout 1

undo

command to restore the default idle-timeout. By default,

language-mode Syntax

language-mode { chinese | english }

View

User View

Parameter

chinese: Sets the language of the command line interface to Chinese.

english: Sets the language of the command line interface to English.

Description

Use the language-mode command to choose the language of the command line interface. By default, the command line interface is set to English.

Example

To change the command line interface from English to Chinese, enter the following:

<4500-ui-aux0>language-mode chinese

lock Syntax

lock

View

User View

Page 35

Parameter

None

Description

Use the lock command to lock the current user interface and prevent unauthorized users from accessing it. An authorized user must enter a valid password to access the interface.

Example

To lock the current user interface, enter the following:

<4500>lock Password: xxxx Again: xxxx

parity Syntax

parity { even | mark | none | odd | space }

undo parity

Logging in Commands 29

View

User Interface View

Parameter

even: Sets the Switch to even parity.

mark: Sets the Switch to mark parity (1)

none: Sets the Switch to perform no parity checking.

odd: Sets the Switch to odd parity.

space: Sets the Switch to zero parity (0)

Description

Use the parity command to configure the parity mode on the AUX (Console) port. Use the

undo parity command to restore the default parity mode (no parity

checking).

This command can only be performed in the AUX user interface view.

Example

To set mark parity on the AUX (Console) port, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]user-interface aux 0 [4500-ui-aux0]parity mark

protocol inbound Syntax

protocol inbound { all| ssh | telnet }

Page 36

30 CHAPTER 1: USING SYSTEM ACCESS COMMANDS

View

VTY user interface view

Parameter

all: Supports both Telnet and SSH protocols.

ssh: Supports only SSH protocol.

telnet: Supports only Telnet protocol.

Description

Use the protocol inbound command to configure the protocols supported by a designated user interface.

By default, the user interface supports Telnet and SSH protocol.

For the related commands, see user-interface vty.

Example

Configure SSH protocol supported by VTY0 user interface.

<4500>system-view System View: return to User View with Ctrl+Z. [4500]user-interface vty 0 [4500-ui-vty0]protocol inbound ssh

quit Syntax

quit

View

All views

Parameter

None

Description

Use the quit command to exit from the current view to the next highest view. If the current view is user view, this command quits the system.

There are three levels of view, which are, from high to low:

■ user view

■ system view

■ menu views, for example VLAN view, Ethernet port view, and so on.

Related commands: return, system-view.

Example

To return to user view from system view, enter the following:

[4500]quit <4500>

Page 37

return Syntax

return

View

System view or higher

Parameter

None

Description

Use the return command to return to user view from any other view.

Ctrl+Z performs the same function as the return command.

To return to the next highest level of view, use quit.

Example

To return to user view from any other view (the example below shows the command entered from the system view), enter the following.

<4500>system-view System View: return to User View with Ctrl+Z. [4500]return <4500>

Logging in Commands 31

screen-length Syntax

screen-length screen-length undo screen-length

View

User interface view

Parameter

screen-length: Enter the maximum number of information lines that you want

to display on a terminal screen, ranging from 0 to 512. The default is 24.

Description

Use the command screen-length to configure how many information lines (maximum) will be displayed on the screen of a terminal. Use the command

screen-length to restore the default of 24 lines.

To disable this function, that is to allow an unlimited number of information lines, enter the parameter as

Example

To configure a terminal to display 20 lines of information, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]user-interface aux 0 [4500-ui-aux0]screen-length 20

undo

Page 38

32 CHAPTER 1: USING SYSTEM ACCESS COMMANDS

send Syntax

send { all | number | type }

View

User view

Parameter

all: Sends a message to all user interfaces.

type: Enter the type and type number of the user interface that you want to send

a message to.

number: Enter the absolute/relative number of the interface that you want to

send a message to.

Description

Use the send command to send messages to other user interfaces.

Example

To send a message to all the user interfaces, enter the following:

<4500>send all

service-type Syntax

service-type { ftp [ ftp-directory directory ] | lan-access |{ssh | telnet | terminal }* [ level level ]} undo service-type { ftp [ ftp-directory directory ] | lan-access |{ssh | telnet | terminal }* [ level level ]}

View Local-user View

Parameter

telnet: Specifies user type as Telnet.

ssh: Specifies user type as SSH.

level level: Specifies the level of Telnet, SSH or terminal users. The argument

level is an integer in the range of 0 to 3 and defaults to 0.

ftp: Specifies user type as ftp.

ftp-directory directory: Specifies the directory of ftp users, directory is a

character string of up to 64 characters.

lan-access: Specifies user type to lan-access, which mainly refers to Ethernet

accessing users, 802.1x supplicants for example.

terminal: Authorizes the user to use the terminal service (login from the Console

port).

Page 39

Logging in Commands 33

Description

Use the command service-type to configure which level of command a user can access after login. Use the command

undo service-type to restore the default

level of command (level 1).

Commands are classified into four levels, as follows:

■ 0 - Visit level. Users at this level have access to network diagnosis tools (such

as ping and tracert), and the Telnet commands. A user at this level cannot save the configuration file.

■ 1 - Monitoring level. Users at this level can perform system maintenance,

service fault diagnosis, and so on. A user at this level cannot save the configuration file.

■ 2 - System level. Users at this level can perform service configuration

operations, including routing, and can enter commands that affect each network layer. Configuration level commands are used to provide direct network service to the user.

■ 3 - Management level. Users at this level can perform basic system

operations, and can use file system commands, FTP commands, TFTP commands, XModem downloading commands, user management commands and level setting commands.

set authentication

password

Example

To allow a user zbr to configure commands a level 0 after login, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]local-user zbr [4500-luser-zbr]service-type telnet level 0

To activate these settings, quit the system and login with the username zbr. Now only the commands at level 0 are listed on the terminal.

[4500]quit <4500>? User view commands: debugging Debugging functions

language-mode Specify the language environment

ping Ping function quit Exit from current command view super Privilege current user a specified priority level telnet Establish one TELNET connection tracert Trace route function

undo Negate a command or set its default

Syntax

set authentication password { cipher | simple } password

undo set authentication password

View

User interface view

Page 40

34 CHAPTER 1: USING SYSTEM ACCESS COMMANDS

Parameter

cipher: Configure to display the password in encrypted text.

simple: Configure to display the password in plain text.

password: If the authentication is in the simple mode, the password must be in

plain text. If the authentication is in the in encrypted text or in plain text. If a plain text password is entered when cipher mode has been selected, the password will be displayed in the configuration settings as encrypted. A plain text password is a sequential character string of no more than 16 digits, for example, 3Com918. The length of an encrypted password must be 24 digits and in encrypted text, for example, _(TT8F]Y\5SQ=^Q`MAF4<1!!.

Description

Use the set authentication password command to configure the password for local authentication. Use the cancel local authentication password.

The password in plain text is required when performing authentication, regardless of whether the configuration is plain text or cipher text.

cipher mode, the password can be either

undo set authentication password command to

By default, a password is required for users connecting over Modem or Telnet. If a password has not been set, the following prompt is displayed: Login password

has not been set!

Example

To configure the local authentication password on VTY 0 to 3Com, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]user-interface vty 0 [4500-ui-vty0]set authentication password simple 3com

shell Syntax

shell

undo shell

View

User interface view

Parameter

None

Description

Use the shell command to enable the terminal service for a user interface. The terminal service is enabled by default. Use the

undo shell command to disable

the terminal service for a user interface.

Page 41

When using the undo shell command, note the following points.

■ For reasons of security, the undo shell command can only be used on user

interfaces other than the AUX user interface.

■ You cannot use this command on the current user interface.

■ You are asked to confirm the command.

Example

To disable the terminal service on the VTY user interfaces 0 to 4, enter the following from another user interface:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]user-interface vty 0 4 [4500-ui-vty0-4]undo shell

speed Syntax

speed speed-value

undo speed

Logging in Commands 35

View

User interface view

Parameter

speed-value: Specify the transmission rate on the AUX (Console) port in bits per

second (bps). This can be any of the following values: 300, 600, 1200, 2400, 4800, 9600, 19200, 38400, 57600, 115200 or 4096000.

The default rate is 19200 bps.

Description

Use the speed command to configure the transmission rate on the AUX (Console) port. Use the

undo speed command to restore the default rate.

This command can only be performed in AUX user interface view.

Example

To configure the transmission speed on the AUX (Console) port as 9600 b/s, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]user-interface aux 0 [4500-ui-aux0]speed 9600

stopbits Syntax

stopbits { 1 | 1.5 | 2 }

undo stopbits

View

User interface view

Page 42

36 CHAPTER 1: USING SYSTEM ACCESS COMMANDS

Parameter

1: Sets the stop bits to 1.

1.5: Sets the stop bits to 1.5.

2: Sets the stop bits to 2.

Description

Use the stopbits command to configure the stop bits on the AUX (Console) port. Use the

undo stopbits command to restore the default stop bits (the default

is 1).

This command can only be performed in AUX user interface view.

Example

To configure the stop bits to 2, enter the following from the AUX (Console) port:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]user-interface aux 0 [4500-ui-aux0]stopbits 2

super Syntax

super level

View

All views

Parameter

level: Enter a user level in the range 0 to 3. The default is 3.

Description

The super command gives a user access to a higher level than their currently assigned user level.

To ensure that only an authorized user can access the higher level, use the super

password

enter a valid password, the user level does not change.

Login users are classified into four levels that correspond to the four command levels. A user can only use commands at the levels that are equal to or lower than their user level.

Related commands: super password, quit.

command to set a password for the higher level. If the user does not

Example

To change to user level 3 from the current user level.

<4500>super 3 Password:

The password prompt displays only if you set a password using the super

password

command.

Page 43

super password Syntax

super password [ level level ]{ simple | cipher } password

undo super password [ level level ]

View

System View

Parameter

level: Enter a user level in the range 1 to 3. The default is 3. The password you

enter is set for the specified level.

cipher: Configure to display the password in encrypted text.

simple: Configure to display the password in plain text.

password: If the authentication is in the simple mode, the password must be in

Logging in Commands 37

cipher mode, the password can be either

Description

Use the super password command to configure the password for changing the user from a lower level to a higher level. To prevent unauthorized users from illegal intrusion, user ID authentication is performed when users switch from a lower level to a higher level. For the sake of confidentiality, on the screen the user cannot see the password that he entered. The user has three chances to input valid password, and then switch to the higher level. Otherwise, the original user level will remain unchanged. Use the password settings.

The password in plain text is required when performing authentication, regardless of whether

Example

To set the password for level 3 to zbr, type the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]super password level 3 simple zbr

sysname Syntax

sysname text

undo sysname

undo super password command to cancel the

the configuration is plain text or encrypted text.

View

System View

Page 44

38 CHAPTER 1: USING SYSTEM ACCESS COMMANDS

Parameter

text: Enter the host name of the Switch. The host name must be no more than

30 characters long. The default is 4500.

Description

Use the sysname command to configure the host name of the Switch. Use the

undo sysname command to restore the host name to the default of 4500.

Changing the hostname of the Ethernet switch will affect the prompt of command line interface. For example, if the hostname of the Ethernet switch is

MyHost, the prompt in user view will be <MyHost>.

Example

To configure the hostname of the Switch to 3Com, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]sysname 3Com [3Com]

system-view Syntax

system-view

View

User view

Parameter

None

Description

Enter system-view to enter the system view from the user view.

Related commands: quit, return.

Example

To enter system view from user view, enter the following:

<4500>system-view System view: return to User View with Ctrl+Z. [4500]

telnet Syntax

telnet { hostname | ip_address } [ service_port ]

View

User view

Parameter

hostname: Enter the host name of the remote Switch. It is configured using the

ip host command.

Page 45

Logging in Commands 39

ip_address: Enter the IP address or the host name of the remote Switch. If you

enter the host name, the Switch must be set to static resolution.

service_port: Designates the management port on the remote Switch, in the

range 0 to 65535. Optional.

Description

Use the telnet command to log in to another Ethernet switch from the current switch via Telnet for remote management. To terminate the Telnet logon, press <Ctrl+K> or <Ctrl+]>.

If you do not specify a service_port, the default Telnet port number of 23 is used.

Related command: display tcp status.

Example

To log in to the Ethernet switch Switch32 at IP address 10.1.1.1 from the current Switch (Switch01), enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]user-interface vty 0 4 [4500-ui-vty0-4]authentication-mode none <Switch01>telnet 10.1.1.1

Trying 10.1.1.1.....

Press CTRL+K to abort Connected to 10.1.1.1... ********************************************************* * All rights reserved (1997-2004) * * Without the owner's prior written consent, * *no decompiling or reverse-engineering shall be allowed.* *********************************************************

user-interface Syntax

user-interface [ type ] first_number [ last_number ]

View

System view

Parameter

type: Enter the user interface type, which can be aux or vty.

first_number: Specifies the number of the first user interface to be configured.

last_number: Specifies the number of the last user interface to be configured.

Description

Using user-interface command, you can enter single user interface view or multiple user interface views to configure the corresponding user interfaces.

Example

To configure the user interfaces with index numbers 0 to 9, enter the following:

Page 46

40 CHAPTER 1: USING SYSTEM ACCESS COMMANDS

<SW4500>system-view System View: return to User View with Ctrl+Z. [SW4500]user-interface 0 9 [SW4500-ui0-9]

This example command selects two AUX (Console) port user interfaces and two VTY user interfaces (VTY 0, VTY 1). You can now assign access levels to these interfaces using the user privilege level command.

user privilege level Syntax

user privilege level level

undo user privilege level

View

User interface view

Parameter

level: Enter the level of command that a user can access, in the range 0 to 3.

Description

Use the user privilege level level command to configure the command level that a user can access from the specified user interface. The user can use all the available commands at this command level. Use the

undo user privilege level

command to restore the default command level. By default, a user can access all commands at Level 3 after logging in through the AUX user interface, and all commands at Level 0 after logging in through a VTY user interface.

Example

To configure a user to access command level 0 after logging in from the VTY 0 user interface, enter the following:

<SW4500>system-view System View: return to User View with Ctrl+Z. [SW4500]user privilege level 0

When the user Telnets from the VTY 0 user interface to the switch, the terminal displays commands at level 0, as shown below:

<SW4500>? User view commands: debugging Debugging functions

language-mode Specify the language environment

ping Ping function quit Exit from current command view super Privilege current user a specified priority level telnet Establish one TELNET connection tracert Trace route function

undo Negate a command or set its default

Page 47

USING PORT COMMANDS

This chapter describes how to use the following commands:

Ethernet Port Configuration Commands

■ copy configuration

■ broadcast-suppression

■ description

■ display interface

■ display loopback-detection

■ display port

■ display unit

■ duplex

■ flow-control

■ interface

■ loopback

■ loopback-detection control enable

■ loopback-detection enable

■ loopback-detection interval-time

■ loopback-detection per-vlan enable

■ mdi

■ multicast-suppression

■ port access vlan

■ port hybrid pvid vlan

■ port hybrid vlan

■ port link-type

■ port trunk permit vlan

■ port trunk pvid vlan

■ reset counters interface

■ shutdown

■ speed

■ unicast-suppression

Ethernet Port Link Aggregation Commands

■ debugging link-aggregation error

Page 48

42 CHAPTER 2: USING PORT COMMANDS

■ debugging link-aggregation event

■ debugging lacp packet

■ debugging lacp state

■ display link-aggregation summary

■ display link-aggregation verbose

■ display link-aggregation interface

■ display lacp system-id

■ lacp enable

■ lacp port-priority

■ lacp system-priority

■ link-aggregation group agg-id description

■ link-aggregation group agg-id mode

■ port link-aggregation group

■ reset lacp statistics

Page 49

Ethernet Port Configuration Commands 43

Ethernet Port Configuration Commands

copy configuration Syntax

This section describes the commands you can use to configure and manage the ports on your Switch 4500.

copy configuration source { interface-type interface_number | interface_name | aggregation-group agg-id } destination { interface_list [ aggregation-group agg-id ] | aggregation-group agg-id }

View

System View

Parameter

interface_type: Source port type.

interface_num: Source port number.

interface_name: Source port name, in the format of interface_name =

interface_type interface_num. For more information, see the parameter item for the interface command.

interface_list: Destination port list, interface_list1 = { interface_type interface_num interface_name } ] &<1-10>. &<1-10> indicates that the former parameter can

| interface_name } [ to { interface_type interface_num |

be input 10 times repeatedly at most.

agg-id: Source or destination aggregation group ID. If it is a source aggregation

group, the port with minimum port number is the source port; if it is a destination aggregation group, the configurations of all its member ports change to be consistent with that of the source.

Description

Use the copy configuration command to copy the configuration of a specific port to other ports, to ensure consistent configuration.

Example

Copy the configuration of aggregation group 1 to aggregation group 2.

<4500>system-view System View: return to User View with Ctrl+Z. [4500]copy configuration source ethernet 1/0/1 destination ethernet

1/0/2

Copying VLAN configuration... Copying LACP configuration... Copying QOS configuration... Copying STP configuration... Copying speed/duplex configuration... [4500]

broadcast-suppression Syntax

broadcast-suppression { ratio | pps pps }

Page 50

44 CHAPTER 2: USING PORT COMMANDS

undo broadcast-suppression

View

Ethernet Port View

Parameter

ratio: Specifies the bandwidth ratio of broadcast traffic allowed on an Ethernet

port. The ratio value ranges from 1 to 100. The incremental step is 1. By default, the ratio is 100 meaning all broadcast traffic is accepted. The smaller the ratio is, the less bandwidth is allocated to broadcast traffic and therefore less broadcast traffic is accepted on the Ethernet port.

pps pps: Specifies the maximum number of broadcast packets per second

accepted on an Ethernet port. Ranges from 1 to 148810 pps.

Description

Use broadcast-suppression to configure the amount of broadcast traffic that will be accepted on a port. Once the broadcast traffic exceeds the value set by the user, the excess broadcast traffic will be discarded. This feature can be used to ensure network service and prevent broadcast storms.

Example

Enable a limit of 20% of the available bandwidth on a port to be allocated to broadcast traffic. Broadcast traffic exceeding 20% of the ports bandwidth will be discarded.

<4500>system-view System View: return to User View with Ctrl+Z. [4500]interface ethernet 1/0/1 [4500-Ethernet1/0/1]broadcast-suppression 20 [4500-Ethernet1/0/1]

Specify the maximum packets per second of broadcast traffic on Ethernet1/0/1 to be 1000.

<4500>system-view System View: return to User View with Ctrl+Z. [4500]interface ethernet 1/0/1 [4500-Ethernet1/0/1]broadcast-suppression pps 1000

[4500-Ethernet1/0/1]

description Syntax

description text

undo description

View

Ethernet Port View

Page 51

Parameter

text: Enter a description of the Ethernet port. This can be a maximum of 80

characters.

Description

Use the description command to enter a description of an Ethernet port. Use

undo description command to cancel the description.

the

By default, an Ethernet port does not have a description.

Example

Set the description of port Ethernet1/0/1 to be lanswitch-interface.

<4500>system-view System View: return to User View with Ctrl+Z. [4500]interface ethernet 1/0/1 [4500-Ethernet1/0/1]description lanswitch-interface [4500-Ethernet1/0/1]

display interface Syntax

display interface [ interface_type |

interface_type interface_number ]

Ethernet Port Configuration Commands 45

View

All views

Parameter

interface_type: Enter the interface type. This can be either Aux, Ethernet, GigabitEthernet , NULL, Vlan-interface.

interface_number: Enter the interface number in the format

unit-number/0/port-number.

The unit number is a number in the range 1 to 8.

The port number is a number in the range 1 to 28 or 1 to 52 depending on the number of ports you have on your unit.

You can use the interface_name at this command. This consists of the

interface_type and the interface_number combined as a single parameter. For

example Ethernet1/0/1.

Description

Use the display interface command to view the configuration information on the selected interface. Along with others, this interface could be a specific port's interface (for example, Ethernet1/0/1) or a specific VLAN interface (for example, vlan-interface 1).

Example

To display configuration information on Ethernet port 1/0/1, enter the following:

<4500>display interface Ethernet 1/0/1

Page 52

46 CHAPTER 2: USING PORT COMMANDS

The information displays in the following format:

Ethernet1/0/1 current state : UP IP Sending Frames' Format is PKTFMT_ETHNT_2, Hardware address is 00e0-fc00-0010 The Maximum Transmit Unit is 1500 Media type is twisted pair, loopback not set Port hardware type is 100_BASE_TX 100Mbps-speed mode, full-duplex mode Link speed type is autonegotiation, link duplex type is autonegotiation Flow-control is not enabled The Maximum Frame Length is 1536 Broadcast MAX-ratio: 100% Allow jumbo frame to pass PVID: 1 Mdi type: auto Port link-type: access Tagged VLAN ID : none Untagged VLAN ID : 1 Last 300 seconds input: 0 packets/sec 0 bytes/sec Last 300 seconds output: 0 packets/sec 0 bytes/sec Input(total): 0 packets, 0 bytes

- broadcasts, - multicasts Input(normal): 0 packets, 0 bytes 0 broadcasts, 0 multicasts Input: 0 input errors, 0 runts, 0 giants, 0 throttles, 0 CRC 0 frame, - overruns, - aborts, - ignored, - parity errors Output(total): 0 packets, 0 bytes

- broadcasts, - multicasts, - pauses Output(normal): 0 packets, 0 bytes 0 broadcasts, 0 multicasts, 0 pauses Output: 0 output errors, - underruns, - buffer failures

- aborts, 0 deferred, 0 collisions, 0 late collisions

- lost carrier, - no carrier

Ta bl e 6 Output Description of the Display Interface Command

Field Description

Ethernet1/0/1 current state Indicates the current state of the Ethernet port (up

or down)

IP Sending frames’ format Displays the Ethernet frame format

Hardware address Displays the port hardware address

Description Displays the port description

The Maximum Transmit Unit Indicates the maximum transmit unit

Media type Indicates the type of media

loopback not set Displays the port loopback test state

Port hardware type Displays the port hardware type

100 Mbps-speed mode, full-duplex mode, link speed type is autonegotiation, link duplex type is autonegotiation

Flow control is not enabled Port flow control state

The Maximum Frame Length Indicates the maximum length of the Ethernet

Broadcast MAX ratio Port broadcast storm suppression ratio

Indicates that the duplex mode and the rate have been auto-negotiated with the connected device, and have been set to 100 Mbps full-duplex.

frames that can pass through the port

Page 53

Ethernet Port Configuration Commands 47

Table 6 Output Description of the Display Interface Command

Allow jumbo frame to pass Indicates that jumbo frame are allowed to pass

through the port

PVID Indicates the port default VLAN ID.

Mdi type Indicates the cable type

Port link-type Indicates the port link type

Tagged VLAN ID Indicates the VLANs with packets tagged

Untagged VLAN ID Indicates the VLANs with packets untagged

Last 300 minutes input rate: 0 packets/sec, 0 bytes/sec

Last 300 minutes output rate: 0 packets/sec, 0 bytes/sec

Input(total): 0 packets, 0 bytes

- broadcasts, - multicasts

Input(normal): 0 packets, 0 bytes

0 broadcasts, 0 multicasts

Input: 0 input errors, 0 runts, 0 giants, 0 throttles, 0 CRC

0 frame, - overruns, - aborts, ignored, - parity errors

Output(total): 0 packets, 0 bytes

- broadcasts, - multicasts, - pauses

Output(normal): 0 packets, 0 bytes

0 broadcasts, 0 multicasts, 0 pauses

Output: 0 output errors, - underruns, buffer failures

- aborts, 0 deferred, 0 collisions, 0 late collisions

- lost carrier, - no carrier

Displays the input/output rate and the number of packets that were passed on this port in the last 300 seconds

The statistics information of input/output packets and errors on this port. A “-” indicates that the item isn't supported by the switch.

display

loopback-detection

Syntax

display loopback-detection

View

All views

Parameter

None

Description

Use the display loopback-detection command to view whether the port loopback detection has been enabled. If it has been enabled, then the time interval of the detection and the current port loopback information will also be displayed.

Example

To display if the port loopback detection is enabled, enter the following:

<4500>display loopback-detection

Page 54

48 CHAPTER 2: USING PORT COMMANDS

The details display in the following format:

Port Ethernet1/0/1 loopback-detection is running system Loopback-detection is running Detection interval time is 30 seconds There is no port existing loopback link

Ta bl e 7 Output Description of the Display Loopback-detection Command

Field Description

Port Ethernet1/0/1 loopback-detection is running

System Loopback-detection is running System Loopback-detection is enabled

Detection interval time is 30 seconds The detection interval is 30 seconds

There is no port existing loopback link No port is in the loopback state

display port Syntax

display port { hybrid | trunk }

View

All views

Parameter

hybrid: Enter to display the hybrid ports.

trunk: Enter to display the trunked ports.

Description

Use the display port hybrid command to view the ports whose link type is hybrid. Use the is trunk.

Example

To display the currently configured hybrid ports, enter the following:

<4500>display port hybrid

The details display in the following format:

The following hybrid ports exist: Ethernet1/0/1 Ethernet1/0/2

This example indicates that the current configuration has two hybrid ports, Ethernet1/0/1 and Ethernet1/0/2.

display unit Syntax

display unit unit-id interface

display port trunk command to view the ports whose link type

View

Any view

Parameter

unit-id: Specifies Unit ID, ranging from 1 to 8.

Page 55

Ethernet Port Configuration Commands 49

Description

Using display unit unit-id interface command, you can view all port interfaces for the specified unit.

Example

Display the port information for all ports on Unit 1.

<4500>display unit 1 interface Aux1/0/0 current state :DOWN Line protocol current state :DOWN Internet protocol processing : disabled Description : Aux1/0/0 Interface The Maximum Transmit Unit is 1500 Data drive mode: interactive 5 minutes input rate 0.0 bytes/sec, 0.0 packets/sec 5 minutes output rate 0.0 bytes/sec, 0.0 packets/sec 0 packets input, 1000 bytes 0 packets output, 27317 bytes error: Parity 0, Frame 0, Overrun 0, FIFO 0 DCD=UP DTR=UP DSR=UP RTS=UP CTS=UP Ethernet1/0/1 current state : DOWN IP Sending Frames' Format is PKTFMT_ETHNT_2, Hardware address is 00e0-fc00-3900 (Omitted)

duplex Syntax

duplex { auto | full | half }

undo duplex

View

Ethernet Port View

Parameters

auto: Enter to set the port to auto-negotiation.

full: Enter to set the port to full-duplex.

half: Enter to set the port to half-duplex.

Description

Use the duplex command to configure the duplex mode of an Ethernet port to auto-negotiation, full duplex or half-duplex. Use the restore the duplex mode of a port to the default mode (auto-negotiation).

Related command: speed.

Example

To configure the Ethernet port “Ethernet1/0/1” to auto-negotiation, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]interface ethernet 1/0/1

undo duplex command to

Page 56

50 CHAPTER 2: USING PORT COMMANDS

[4500-Ethernet1/0/1]duplex auto

flow-control Syntax

flow-control

undo flow-control

View

Ethernet Port View

Parameters

None

Description

Use the flow-control command to enable flow control on an Ethernet port. This avoids discarding data packets due to congestion. Use the command to disable flow control.

By default, flow control is disabled.

undo flow-control

Example

To enable flow control on port “Ethernet1/0/1”, enter the following.

<4500>system-view System View: return to User View with Ctrl+Z. [4500]interface ethernet 1/0/1 [4500-Ethernet1/0/1]flow-control [4500-Ethernet1/0/1]

interface Syntax

interface interface_type interface_num | interface_name

View

System View

Parameter

interface_type: Enter the interface type. This can be either Aux, Ethernet, GigabitEthernet , NULL, Vlan-interface.

interface_number: Enter the interface number in the format

unit-number/0/port-number.

The unit number is a number in the range 1 to 8.

The port number is a number in the range 1 to 28 or 1 to 52 depending on the number of ports you have on your unit.

You can use the interface_name at this command. This consists of the

interface_type and the interface_number combined as a single parameter. For

example Ethernet1/0/1.

Page 57

Description

Use the command interface interface_type interface_number to enter the interface of the specified port.

If you want to configure the parameters of an Ethernet port, you must first use this command to enter the Ethernet port view.

Example

To enter the interface for port “Ethernet1/0/1”, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]interface ethernet1/0/1 [4500-ethernet1/0/1]

loopback Syntax

loopback { external | internal }

View

Ethernet Port View

Ethernet Port Configuration Commands 51

Parameter

external: External loop test.

internal: Internal loop test.

Description

Use the loopback command to configure the Ethernet port to perform the loopback test to check if the Ethernet port works normally. The loop test will finish automatically after being performed for a while.

By default, the Ethernet port will not perform the loopback test.

Example

To perform the internal loop test for Ethernet1/0/1, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]interface ethernet 1/0/1 [4500-Ethernet1/0/1]loopback internal #Apr 2 02:46:02:29 2000 4500 L2INF/2/PORT LINK STATUS CHANGE:- 1 Trap 1.3.6.1.6.3.1.1.5.4: portIndex is 4227626, ifAdminStatus is 1, ifOperStatus is 1

%Apr 2 02:46:02:225 2000 4500 L2INF/5/PORT LINK STATUS CHANGE:- 1 Ethernet1/0/1: is UP

%Apr 2 02:46:02:342 2000 4500 STP/2/SPEED:- 1 -Ethernet1/0/1's speed changed ! #Apr 2 02:46:02:521 2000 4500 L2INF/2/PORT LINK STATUS CHANGE:- 1

-Trap 1.3.6.1.6.3.1.1.5.3: portIndex is 4227626, ifAdminStatus is 1, ifOperStatus is 2

Page 58

52 CHAPTER 2: USING PORT COMMANDS

Loop internal succeeded. [4500-Ethernet1/0/1] [4500-Ethernet1/0/1]loopback internal

loopback-detection

control enable

Syntax

loopback-detection control enable

undo loopback-detection control enable

View

Ethernet Port View

Parameter

None

Description

Use the loopback-detection control enable command to enable loopback detection control function on a Trunk port or Hybrid port. Use the

loopback-detection control enable

command to disable loopback detection

undo

control function on a Trunk port or Hybrid port.

This command controls the operating status of the port, when the loopback detection function is enabled and loopback is detected on a Trunk or Hybrid port. When this function is enabled and loopback is detected on a Trunk or Hybrid port, the system begins to control the operating status of the port. When this function is disabled and loopback is found, the system just reports a Trap message but has no control over the operating status of the Trunk or Hybrid port.

loopback-detection

enable

By default, the loopback detection control function on Trunk or Hybrid ports is disabled.

This command has no effect on Access ports.

Example

Enable port loopback detection control.

<4500>system-view System View: return to User View with Ctrl+Z. [4500]interface ethernet 1/0/1 [4500-Ethernet1/0/1]port link-type trunk [4500-Ethernet1/0/1]loopback-detection control enable [4500-Ethernet1/0/1]

Syntax

loopback-detection enable

undo loopback-detection enable

View

Ethernet Port View

Page 59

Ethernet Port Configuration Commands 53

Parameter

None

Description

Use the loopback-detection enable command to enable port loopback detection. If there is a loopback port found, the switch will put it under control. Use the

undo loopback-detection enable command to disable port loopback

detection.

Loopback detection of a specified port only functions after port loopback detection is enabled in the System or Ethernet port view. By default, port loopback detection is disabled.

Related commands: display loopback-detection

Example

To enable port loopback detection, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]loopback-detection enable [4500]interface ethernet 1/0/1 [4500-Ethernet1/0/1]loopback-detection enable [4500-Ethernet1/0/1]

loopback-detection

interval-time

Syntax

loopback-detection interval-time time

undo loopback-detection interval-time

View

System View

Parameter

time: Specifies the interval of monitoring external loopback conditions of the

port. It ranges from 5 to 300, measured in seconds.

By default, the interval is 30 seconds.

Description

Use the loopback-detection interval-time command to configure the detection interval for the external loopback condition of each port. Use the

loopback-detection interval-time

command to restore the default interval.

undo

Related commands: display loopback-detection

Example

To configure the detection interval for the external loopback condition of each port to 10 seconds, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]loopback-detection interval-time 10

Page 60

54 CHAPTER 2: USING PORT COMMANDS

[4500]

loopback-detection

per-vlan enable

Syntax

loopback-detection per-vlan enable

undo loopback-detection per-vlan enable

View

Ethernet Port View

Parameter

None

Description

Use the loopback-detection per-vlan enable command to configure the system to perform loopback detection on all VLANs on Trunk and Hybrid ports. Use the

undo loopback-detection per-vlan enable command to configure the

system to only perform loopback detection on the default VLANs on the port.

By default, the system performs loopback detection to the default VLAN on Trunk and Hybrid ports.

Example

Configure the detection interval for the external loopback condition of each port to 10 seconds.

mdi Syntax

mdi { across | auto | normal }

undo mdi

View

Ethernet Port View

Parameter

across: Enter to configure the network cable type to cross-over cable. Not

available on the Switch 4500.

auto: Enter to configure the use of either straight-through cable or cross-over

cable.

normal: Enter to configure the network cable type to straight-through cable. Not

available on the Switch 4500.

Page 61

Ethernet Port Configuration Commands 55

Description

■ Use the mdi command to configure the network cable type for an Ethernet

port.

■ Use the undo mdi command to restore the default type. By default, the

network cable type is recognized automatically (the

mdi auto command).

Note that this command only has effect on 10/100BASE-T and 10/100/1000BASE-T ports. The Switch 4500 only supports

auto (auto-sensing). If

you enter another type, an error message displays.

Example

To configure the network cable type of port “Ethernet1/0/1” as cross-over cable, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]interface ethernet 1/0/1 [4500-Ethernet1/0/1]mdi across [4500-Ethernet1/0/1]

multicast-suppression Syntax

multicast-suppression { ratio | pps pps}

undo multicast-suppression

View

Ethernet Port View

Parameter

ratio: Specifies the bandwidth ratio of multicast traffic allowed on an Ethernet

port. The ratio value ranges from 1 to 100. The incremental step is 1. By default, the ratio is 100 meaning all multicast traffic is accepted. The smaller the ratio is, the less bandwidth is allocated to multicast traffic and therefore less broadcast traffic is accepted on the Ethernet port.

pps pps: Specifies the maximum number of multicast packets per second accepted

on an Ethernet port. Ranges from 1 to 148810 pps.

Description

Use multicast-suppression to configure the amount of multicast traffic that will be accepted on a port. Once the multicast traffic exceeds the value set by the user, the excess multicast traffic will be discarded. This feature can be used to ensure network service and prevent multicast storms.

Example

Enable a limit of 20% of the available bandwidth on a port to be allocated to multicast traffic. Multicast traffic exceeding 20% of the ports bandwidth will be discarded.

<4500>system-view System View: return to User View with Ctrl+Z. [4500]interface ethernet 1/0/1

Page 62

56 CHAPTER 2: USING PORT COMMANDS

[4500-Ethernet1/0/1]multicast-suppression 20 [4500-Ethernet1/0/1]

Specify the maximum packets per second of the multicast traffic on an Ethernet1/0/1 as 1000 Mpps.

<4500>system-view

System View: return to User View with Ctrl+Z. [4500]interface ethernet 1/0/1 [4500-Ethernet1/0/1]multicast-suppression pps 1000 [4500-Ethernet1/0/1]

port access vlan Syntax

port access vlan vlan_id

undo port access vlan

View

Ethernet Port View

Parameter

vlan_id: Enter a VLAN ID in the range 2 to 4094, as defined in IEEE 802.1Q.

Description

■ Use the port access vlan command to assign the access port to a specified

VLAN.

■ Use the undo port access vlan command to remove the access port from

the VLAN.

Example

To assign Ethernet port 1/0/1 to VLAN3, enter the following.

<4500>system-view System View: return to User View with Ctrl+Z. [4500]vlan 3 [4500-vlan3]quit [4500]interface ethernet 1/0/1 [4500-Ethernet1/0/1]port access vlan 3 [4500-Ethernet1/0/1]

port hybrid pvid vlan Syntax

port hybrid pvid vlan vlan_id

undo port hybrid pvid

View

Ethernet Port View

Parameter

vlan_id: Enter a VLAN ID in the range 2 to 4094, as defined in IEEE 802.1Q. The

default is 1.

Page 63

Ethernet Port Configuration Commands 57

Description

Use the port hybrid pvid vlan command to configure the default VLAN ID of the hybrid port. Use the

undo port hybrid pvid command to restore the default

VLAN ID of the hybrid port.

Hybrid port can be configured together with the isolate-user-vlan. But if the default VLAN has set mapping in the isolate-user-vlan, the default VLAN ID cannot be modified. If you want to modify it, cancel the mapping first.

The default VLAN ID of local hybrid port must be consistent with that of the peer one, otherwise, the packets cannot be properly transmitted.

Related command: port link-type.

Example

To configure the default VLAN of the hybrid port Ethernet1/0/1 to VLAN100, enter the following.

<4500>system-view System View: return to User View with Ctrl+Z. [4500]interface ethernet 1/0/1 [4500-Ethernet1/0/1]port link-type hybrid [4500-Ethernet1/0/1]port hybrid pvid vlan 100 [4500-Ethernet1/0/1]

port hybrid vlan Syntax

port hybrid vlan vlan_id_list { tagged | untagged }

undo port hybrid vlan vlan_id_list

View

Ethernet Port View

Parameter

vlan_id_list: Enter a VLAN ID, or more than one VLAN ID, in the range 2 to

. The hybrid port will be added to the specified VLANs. This can be a single

4094 VLAN, a series of individual VLANs separated by a space, or the first VLAN in a range of VLANs (

You can enter up to ten vlan_id parameters in one port hybrid vlan command.

tagged: Enter to tag the port for the specified VLAN.

untagged: Enter to leave the port untagged for the specified VLAN.

Description

Use the port hybrid vlan command to add the port to the specified VLAN(s). The port needs to have been made a hybrid port before you can do this. See the related command below. Use the the port from the specified VLAN(s).

vlan_id to last_vlan_id).

undo port hybrid vlan command to remove

Page 64

58 CHAPTER 2: USING PORT COMMANDS

A hybrid port can belong to multiple VLANs. A port can only be added to a VLAN if the VLAN has already been created. See the

Related command: port link-type.

Example

To add the port Ethernet1/0/1 to VLAN 2, VLAN 4 and all VLANs in the range 50 to 100 as a tagged port, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]interface ethernet 1/0/1 [4500-Ethernet1/0/1]port link-type hybrid [4500-Ethernet1/0/1]quit [4500]vlan 2 [4500-vlan2]quit [4500]interface e1/0/1 [4500-Ethernet1/0/1]port hybrid vlan 2 4 50 to 100 tagged [4500-Ethernet1/0/1]

port link-type Syntax

port link-type { access | hybrid | trunk | xrn-fabric }

vlan vlan-vid command.

undo port link-type

View

Ethernet Port View

Parameter

access: Enter to configure the port as an access port.

hybrid: Enter to configure the port as a hybrid port

trunk: Enter to configure the port as a trunk port.

xrn-fabric: Enter to configure the port as a Fabric port.

Description

Use the port link-type command to configure the link type of the Ethernet port. Use the

undo port link-type command to restore the port as default

status. By default, a port is an access port.

A port on a Switch can be configured as an access port, a hybrid port, a trunk port or a fabric port. However, to reconfigure between hybrid and trunk link types, you must first restore the default, or access, link type.

Only the Gigabit combo ports can be used to interconnect the Switch units to form a stack.

Example

To configure the Ethernet port Ethernet1/0/1 as a trunk port, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z.

Page 65

[4500]interface ethernet 1/0/1 [4500-Ethernet1/0/1]port link-type trunk [4500-Ethernet1/0/1]

port trunk permit vlan Syntax

port trunk permit vlan {vlan_id_list | all}

undo port trunk permit vlan {vlan_id_list| all}

View

Ethernet port view

Parameter

vlan_id: Enter a VLAN ID, or more than one VLAN ID, in the range 2 to 4094.

The trunk port will be added to the specified VLANs. This can be a single VLAN, a series of individual VLANs separated by a space, or the first VLAN in a range of VLANs. If this is the first VLAN in a range use the indicate the last VLAN in the range (

You can enter up to ten vlan_id parameters at one port trunk permit vlan command.

Ethernet Port Configuration Commands 59

last_vlan_id parameter to

vlan_id to last_vlan_id).

all: Enter to add the trunk port to all VLANs.

Description

Use the port trunk permit vlan command to add a trunk port to one VLAN, a selection of VLANs or all VLANs. Use the

undo port trunk permit vlan

command to remove a trunk port from one VLAN, a selection of VLANs or all VLANs.

A trunk port can belong to multiple VLANs. If the port trunk permit vlan command is used many times, then the VLAN enabled to pass on trunk port is the set of these

vlan_id_list.

Related command: port link-type.

Example

To add the trunk port Ethernet1/0/1 to VLAN 2, VLAN 4 and all VLANs in the range 50-100, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]interface ethernet 1/0/1 [4500-Ethernet1/0/1]port link-type trunk [4500-Ethernet1/0/1]port trunk permit vlan 2 4 50 to 100 Please wait... Done. [4500-Ethernet1/0/1]

port trunk pvid vlan Syntax

port trunk pvid vlan vlan_id

undo port trunk pvid

Page 66

60 CHAPTER 2: USING PORT COMMANDS

View

Ethernet Port View

Parameter

vlan_id: Enter a VLAN ID in the range 2 to 4094, as defined in IEEE802.1Q. This

is the VLAN that you want to be the default VLAN for a trunk port. The default is 1.

Description

Use the port trunk pvid vlan command to configure the default VLAN ID for a trunk port. Use the ID for a trunk port.

The default VLAN ID of local trunk port should be consistent with that of the peer one, otherwise packets cannot be properly transmitted.

Related command: port link-type.

Example

To configure the trunk port Ethernet1/0/1 to the default VLAN of 100, enter the following:

undo port trunk pvid command to restore the default VLAN

reset counters interface Syntax

reset counters interface [ interface_type | interface_type interface_num | interface_name]

View

User view

Parameter

interface_type: Specifies the port type.

interface_num: Specifies the port number.

interface_name: Specifies the port name in the interface_name= interface_type interface_num

For parameter description, refer to the interface command.

Description

Use the reset counters interface command to reset the statistical information on the port and count the related information again on the port for the user.

If you do not enter a port type, or port type and port number, information is cleared from all ports on the Switch. If only the port type is specified, all the information on ports of this type will be cleared. If both port type and port

format.

Page 67

number are specified, the information on the specified port will be cleared. After

802.1x is enabled, the port information cannot be reset.

Example

To reset statistical information on Ethernet1/0/1, enter the following:

<4500>reset counters interface ethernet1/0/1 <4500>

shutdown Syntax

shutdown

undo shutdown

View

Ethernet Port View

Parameter

None

Ethernet Port Configuration Commands 61

Description

Use the shutdown command to disable an Ethernet port. Use the undo shutdown command to enable an Ethernet port.

By default, the Ethernet port is enabled.

Example

To disable and then enable Ethernet1/0/1, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]interface ethernet 1/0/1 [4500-Ethernet1/0/1]shutdown [4500-Ethernet1/0/1]undo shutdown

speed Syntax

For a 100 Mbps Ethernet port, the parameters for this command are as follows:

speed { 10 | 100 | auto }

For a 1000 Mbps Ethernet port, the parameters for this command are as follows:

speed { 10 | 100 | 1000 | auto }

The undo form of this command is:

undo speed

View

Ethernet Port View

Parameter

10: Enter to set the port speed to 10 Mbps.

100: Enter to set the port speed to 100 Mbps.

Page 68

62 CHAPTER 2: USING PORT COMMANDS

1000: Enter to set the port speed to 1000 Mbps. (Only available on Gigabit ports).

auto: Enter to set the port speed to auto-negotiation.

Description

Use the speed command to configure the port speed. Use the undo speed command to restore the default speed. By default, the speed is

Related command: duplex.

Example

To configure the port speed of port Ethernet1/0/1 to 10 Mbps, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]interface ethernet 1/0/1 [4500-Ethernet1/0/1]speed 10 [4500-Ethernet1/0/1]

unicast-suppression Syntax

unicast-suppression { ratio | pps pps }

auto.

undo unicast-suppression

View

Ethernet Port View

Parameter

ratio: Specifies the bandwidth ratio of unicast traffic allowed on an Ethernet

port. The ratio value ranges from 1 to 100. The incremental step is 1. By default, the ratio is 100 meaning all unicast traffic is accepted. The smaller the ratio is, the less bandwidth is allocated to unicast traffic and therefore less broadcast traffic is accepted on the Ethernet port.

pps pps: Specifies the maximum number of unicast packets per second accepted

on an Ethernet port. Ranges from 1 to 148810 pps.

Description

Use unicast-suppression to configure the amount of unicast traffic that will be accepted on a port. Once the multicast traffic exceeds the value set by the user, the excess unicast traffic will be discarded. This feature can be used to ensure network service and prevent unicast storms.

Example

Enable a limit of 20% of the available bandwidth on a port to be allocated to unicast traffic. Unicast traffic exceeding 20% of the ports bandwidth will be discarded.

<4500>system-view System View: return to User View with Ctrl+Z. [4500]interface ethernet 1/0/1

Page 69

Ethernet Port Configuration Commands 63

[4500-Ethernet1/0/1]unicast-suppression 20 [4500-Ethernet1/0/1]

Specify the maximum packets per second of the unicast traffic on an Ethernet1/0/1 as 1000 Mpps.

<4500>system-view System View: return to User View with Ctrl+Z. [4500]interface ethernet 1/0/1 [4500-Ethernet1/0/1]unicast-suppression pps 1000 [4500-Ethernet1/0/1]

Page 70

64 CHAPTER 2: USING PORT COMMANDS

Ethernet Port Link Aggregation Commands

debugging

link-aggregation error

This section describes the commands you can use to configure Ethernet Port LInk Aggregation on the Switch.

Syntax

debugging link-aggregation error

undo debugging link-aggregation error

View

User View

Parameter

None

Description

Use the debugging link-aggregation error command to enable link aggregation error debugging. Use the

command to disable link aggregation error debugging.

error

undo debugging link-aggregation

Example

To enable link aggregation error debugging, enter the following:

debugging

link-aggregation event

<4500>debugging link-aggregation error

Syntax

debugging link-aggregation event

undo debugging link-aggregation event

View

User View

Parameter

None

Description

Use the debugging link-aggregation event command to enable link aggregation events debugging. Use the

command to disable link aggregation events debugging.

event

undo debugging link-aggregation

Example

To enable link aggregation events debugging, enter the following:

<4500>debugging link-aggregation event

debugging lacp packet Syntax

debugging lacp packet [ interface { interface_type interface_number | interface_name } [ to { interface_type interface_num | interface_name } ] ]

Page 71

Ethernet Port Link Aggregation Commands 65

undo debugging lacp packet [ interface { interface_type interface_number | interface_name } [ to { interface_type interface_num | interface_name } ] ]

View

User View

Parameter

interface { interface_type interface_ num | interface_name } [ to { interface_type interface_ num | interface_name } ]

can specify multiple sequential ports with the

to parameter, instead of specifying

: Specifies ports. You

only one port.

interface_name: Specifies port name, in the format of interface_name = interface_type interface_num.

interface_type: Specifies port type and interface_num port number.

For more information, see the parameter item for the interface command.

Description

Use the debugging lacp packet command to enable LACP packets debugging at a designated port or ports. Use the disable LACP packets debugging at a designated port or ports.

Example

To enable LACP packets debugging at Ethernet1/0/1, enter the following:

<4500>debugging lacp packet interface ethernet1/0/1

debugging lacp state Syntax

debugging lacp state [ interface { interface_type interface_number | interface_name } [

} ] ] { {

undo debugging lacp state [ interface { interface_type interface_number | interface_name } [ to { interface_type interface_num | interface_name } ] ] { {

partner-churn | ptx | rx }* | all

View

User View

undo debugging lacp packet command to

to { interface_type interface_num | interface_name

actor-churn | mux | partner-churn | ptx | rx }* | all }

actor-churn | mux |

}

Parameter

interface { interface_type interface_num | interface_name } [ to { interface_type interface_num | interface_name } ]:

can specify multiple sequential ports with the

to parameter, instead of specifying

Specifies ports. You

only one port.

Page 72

66 CHAPTER 2: USING PORT COMMANDS

interface_name: Specifies port name, in the format of interface_name = interface_type interface_num.

interface_type: Specifies port type and interface_num port number.

For more information, see the parameter item for the interface command.

actor-churn: Debugging actor-churn state machine.

mux: Debugging MUX state machine.

partner-churn: Debugging partner-churn state machine.

ptx: Debugging PTX state machine.

rx: Debugging RX state machine.

all: Debugging all state machines.

Description

Use the debugging lacp state command to enable LACP state machines debugging on a designated port or ports. Use the command to disable LACP state machines debugging on a designated port or ports.

undo debugging lacp state

display link-aggregation

summary

Example

To enable all LACP state machines debugging.

<4500>debugging lacp state all

Syntax

display link-aggregation summary

View

Any view

Parameter

None

Description

Use the display link-aggregation summary command to view summary information of all aggregation groups, including actor system ID, aggregation group ID, aggregate group type, partner system ID, number of selected ports, number of standby ports, load sharing type and master port number.

Example

To display summary information of all aggregation information, enter the following:

<4500>display link-aggregation summary Aggregation Group Type: D -- Dynamic, S -- Static, M -- Manual Loadsharing Type: Shar – Loadsharing, NonS – Non-Loadsharing Actor ID: 0x8000, 00e0-fcff-ff04

Page 73

Ethernet Port Link Aggregation Commands 67

AL AL Partner ID Select Standby Share Master ID Type Ports Ports Type Port

------------------------------------------------------------------1 D 0x8000,00e0-fcff-ff01 1 0 NonS Ethernet4/0/1 10 M none 1 0 NonS Ethernet4/0/2 20 S 0x8000,00e0-fcff-ff01 1 0 NonS Ethernet4/0/3

display link-aggregation

verbose

Syntax

display link-aggregation verbose [ agg_id ]

View

Any view

Parameter

agg_id: Aggregation group ID, which must be a valid existing ID, in the range of

1 to 416.

Description

Use the display link-aggregation verbose command to view detailed information of a link aggregation, including aggregation ID, the type of aggregation, load-sharing type, detailed local information (member ports, port status, port priority, LACP state flag and operation key), and detailed remote information (indexes of remote ports, port priority, LACP state flag, operation key and system ID.)

Note that unlike a dynamic aggregation, a manual aggregation has no protocol to get the remote peer information of the partner. Therefore, every item for the remote peer is 0. This does not indicate the actual state of the remote peer.

Example

To display detailed information of aggregation group 1, enter the following:

<4500>display link-aggregation verbose 1 Loadsharing Type: Shar -- Loadsharing, NonS -- Non-Loadsharing

Aggregation ID: 1, AggregationType: Manual, Loadsharing Type: NonS Aggregation Description: System ID: 0x8000, 000f-cbb7-2e00 Port Status: S -- Selected, U -- Unselected Local: Port Status Priority Flag Oper-Key

------------------------------------------------------------------- Ethernet1/0/2 U 32768 0x00 1 Ethernet1/0/3 U 32768 0x00 1 Ethernet1/0/4 S 32768 0x00 1

Remote: Actor Partner Priority Flag Oper-Key SystemID

------------------------------------------------------------------- Ethernet1/0/2 0 0 0x00 0 0x0,0000-0000-0000 Ethernet1/0/3 0 0 0x00 0 0x0,0000-0000-0000 Ethernet1/0/4 0 0 0x00 0 0x0,0000-0000-0000 <4500>

Page 74

68 CHAPTER 2: USING PORT COMMANDS

display link-aggregation

interface

Syntax

display link-aggregation interface { interface_type interface_number | interface_name } [ to { interface_type interface-num | interface_name } ]

View

Any view

Parameter

interface { interface_type interface_ num | interface_name } [ to { interface_type interface_ num | interface_name } ]:

can specify multiple sequential ports with the

to parameter, instead of specifying

Specifies ports. You

only one port.

interface_name: Specifies port name, in the format of interface_name = interface_type interface_num.

interface_type: Specifies port type and interface_num port number.

For more information, see the parameter item for the interface command.

Description

Use the display link-aggregation interface command to view detailed link aggregation information at a designated port, including aggregation group ID for the port, port priority, operation key, LACP state flag, partner information (system ID, port number, port priority, operation key, LACP state flag, LACP packet statistics).

Example

To display detailed link aggregation information of a link aggregation member port, enter the following:

<4500>display link-aggregation interface ethernet4/0/1

If the aggregation has been created manually, the display will be similar to the following:

Ethernet4/0/1: Attached AggID: 1 Local: Port-Priority: 32768, Oper key: 1, Flag: 0x00 Remote: System ID: 0x0, 0000-0000-0000 Port Number: 0, Port-Priority: 0, Oper-key: 0, Flag: 0x00

If the aggregation is static or dynamic, the display will be similar to the following:

<4500>display link-aggregation interface ethernet4/0/1 Ethernet4/0/1: Attached AggID: 20

Page 75

Local: Port-Priority: 32768, Oper key: 2, Flag: 0x3d Remote: System ID: 0x8000, 000e-84a6-fb00 Port Number: 2, Port-Priority: 32768 , Oper-key: 10, Flag: 0x3d Received LACP Packets: 8 packet(s), Illegal: 0 packet(s) Sent LACP Packets: 9 packet(s)

Related command: display link-aggregation verbose.

display lacp system-id Syntax

display lacp system-id

View

Any view

Parameter

None

Description

Use the display lacp system-id command to view actor system ID, including system priority and system MAC address.

Ethernet Port Link Aggregation Commands 69

Related command: link-aggregation.

Example

To display the local system ID.

<4500>display lacp system-id Actor System ID: 0x8000, 00e0-fc00-0100

lacp enable Syntax

lacp enable

undo lacp enable

View

Ethernet Port View

Parameter

None

Description

Use the lacp enable command to enable LACP.

Use the undo lacp enable command to disable LACP.

The Switch will select the lowest port number as the master port for the link aggregation. This applies to all types of link aggregation. If the aggregation spans a stack of units (only avaliable on the Switch 4500-EI) and the same ports are used, the unit number will be the tie-breaker. For example, 1/0/1 and 2/0/1 are in an aggregation. Port 1/0/1 will be the master port.

Page 76

70 CHAPTER 2: USING PORT COMMANDS

Example

To enable LACP at Ethernet1/0/1, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]interface ethernet 1/0/1 [4500-Ethernet1/0/1]lacp enable [4500-Ethernet1/0/1]

lacp port-priority Syntax

lacp port-priority port-priority-value

undo lacp port-priority

View

Ethernet Port View

Parameter

port-priority-value: Port priority, ranging from 0 to 65535. By default, it is

32768.

Description

Use the lacp port priority command to configure port priority value. Use the

undo lacp port-priority command to restore the default value.

Related commands: display link-aggregation verbose and display

link-aggregation interface

Example

To set port priority as 64, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]interface ethernet 1/0/1 [4500-Ethernet1/0/1]lacp port-priority 64 [4500-Ethernet1/0/1]

lacp system-priority Syntax

lacp system-priority system-priority-value

undo lacp system-priority

View

System View

Parameter

system-priority-value: System priority, ranging from 0 to 65535. By default, it

is 32768.

Description

Use the lacp system-priority command to configure system priority value.

Page 77

Ethernet Port Link Aggregation Commands 71

Use the undo lacp system-priority command to restore the default value.

Related command: display lacp system-id.

Example

To set system priority as 64, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]lacp system-priority 64 [4500]

link-aggregation group

agg-id description

Syntax

link-aggregation group agg_id description alname

undo link-aggregation group agg-id description

View

System View

Parameter

agg_id: Aggregation group ID, in the range of 1 to 416.

alname: Aggregation group name, character string with 1 to 32 characters.

Description

Use the link-aggregation group agg_id description command to configure descriptor for an aggregation group. Use the

agg-id description

command to delete aggregation group descriptor.

undo link-aggregation group

Related command: display link-aggregation verbose.

Example

To configure myal1 as the descriptor of aggregation group 22, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]link-aggregation group 22 mode manual [4500]link-aggregation group 22 description myal1 [4500]

link-aggregation group

agg-id mode

Syntax

link-aggregation group agg_id mode { manual | static }

undo link-aggregation group agg_id

View

System View

Parameter

agg_id: Aggregation group ID, in the range of 1 to 416.

Page 78

72 CHAPTER 2: USING PORT COMMANDS

manual: Manual aggregation group.

static: Static aggregation group.

Description

Use the link-aggregation group agg_id mode command to create a manual or static aggregation group. Use the delete an aggregation group.

The Switch will select the lowest port number as the master port for the link aggregation. This applies to all types of link aggregation. If the aggregation spans a stack of units and the same ports are used, the unit number will be the tie-breaker. For example, 1/0/1 and 2/0/1 are in an aggregation. Port 1/0/1 will be the master port.

A manual or static aggregation group can have up to eight ports. You can use the

ink-aggregation group agg-id mode command to change an existing dynamic

aggregation group into a manual or static one. If the port number in a group exceeds eight, this operation fails and the system prompts you about the configuration failure.

undo link-aggregation group command to

port link-aggregation

group

Related command: display link-aggregation summary.

Example

To create manual aggregation group 22, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]link-aggregation group 22 mode manual

Syntax

port link-aggregation group agg_id

undo port link-aggregation group

View

Ethernet Port View

Parameter

agg_id: Aggregation group ID, in the range of 1 to 416.

Description

Use the port link-aggregation group agg_id command to add an Ethernet port into a manual or static aggregation group. Use the

link-aggregation group

command, to delete an Ethernet port from a manual or

undo port

static aggregation group.

Related command: display link-aggregation verbose.

Example

To add Ethernet1/0/1 into aggregation group 22, enter the following:

<4500>system-view

Page 79

System View: return to User View with Ctrl+Z.

[4500]link-aggregation group 22 mode manual

[4500]interface ethernet 1/0/1

[4500-Ethernet1/0/1]port link-aggregation group 22

#Apr 2 03:29:48:954 2000 4500 LAGG/2/AggPortInactive:- 1 -Trap

1.3.6.1.4.1.2

011.5.25.25.2.2: TrapIndex 31465473 Aggregation Group 22: port member Ethernet1/

0/1 becomes INACTIVE!

[4500-Ethernet1/0/1]

reset lacp statistics Syntax

reset lacp statistics [ interface { interface_type interface_number | interface_name } [ to { interface_type interface_num | interface_name } ] ]

Ethernet Port Link Aggregation Commands 73

View

User View

Parameter

interface { interface_type interface_ num | interface_name } [ to { interface_type interface_ num | interface_name } ]:

can specify multiple sequential ports with the

to parameter, instead of specifying

Specifies ports. You

only one port.

interface_name: Specifies port name, in the format of interface_name = interface_type interface_num.

interface_type: Specifies port type and interface_num port number.

For more information, see the parameter item for the interface command.

Description

Use the reset lacp statistics command to clear LACP statistics at a designated port. If no port is specified, then LACP statistics at all ports shall be cleared.

Related command: display link-aggregation interface.

Example

To clear LACP statistics at all Ethernet ports, enter the following:

<4500>reset lacp statistics

Page 80

74 CHAPTER 2: USING PORT COMMANDS

Page 81

USING VLAN COMMANDS

This chapter describes how to use the following commands:

VLAN Configuration Commands

■ description

■ display interface VLAN-interface

■ display vlan

■ interface VLAN-interface

■ shutdown

■ vlan

Voice VLAN Commands

■ display voice vlan oui

■ display voice vlan status

■ voice vlan aging

■ voice vlan enable

■ voice vlan

■ voice vlan mac_address

■ voice vlan mode

■ voice vlan security enable

Page 82

76 CHAPTER 3: USING VLAN COMMANDS

VLAN Configuration Commands

description Syntax

This section describes the commands you can use to configure and manage the VLANs and VLAN interfaces on your system.

description string

undo description

View

VLAN view

Parameter

string: Enter a description of the current VLAN, up to a maximum of 32

characters. For a description of a VLAN interface, the maximum is 80 characters.

Description

Use the description command to set a description for the current VLAN. Use the

undo description command to cancel the description of current VLAN.

The default description character string of the current VLAN is no description!. The default description character string of the VLAN interface is the interface name, for example,

vlan-interface1.

display interface

VLAN-interface

Related command: display vlan.

Example

To give VLAN1 the description “RESEARCH”, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]vlan 1 [4500-vlan1]description RESEARCH [4500-vlan1]

Syntax

display interface vlan-interface [ vlan_id ]

View

All views

Parameter

vlan_id: Enter the ID number of the VLAN interface, ranging from 1 to 4094.

Description

Use the display interface vlan-interface command to view the information about a specific VLAN interface, or all VLAN interfaces. The information displayed includes:

■ Current status of the interface

■ Current status of the line protocol

Page 83

VLAN Configuration Commands 77

■ VLAN interface description

■ Maximum Transmit Unit (MTU)

■ IP address and subnet mask

■ Format of the IP frames

■ MAC hardware address.

Use display interface vlan-interface to display information on all VLAN interfaces. Use

display interface vlan-interface vlan_id to display

information on a specific VLAN interface

Related command: interface Vlan-interface.

Example

To display information on VLAN interface 1, enter the following:

<4500>display interface vlan-interface 1

The information displays in the following format:

Vlan-interface1 current state :UP Line protocol current state :UP IP Sending Frames' Format is PKTFMT_ETHNT_2, Hardware address is 00e0-fc00-3971 Internet Address is 161.71.61.206/24 Primary Description : Vlan-interface1 Interface The Maximum Transmit Unit is 1500

<4500>

display vlan Syntax

display vlan [ vlan_id | all | static | dynamic ]

View

All views

Parameter

vlan_id: Enter to display information on a specified VLAN.

all: Enter to display information on all VLANs.

static: Enter to display information on VLANs created statically by the system.

dynamic: Enter to display information on VLANs created dynamically by the

system.

Description

Use the display vlan command to view related information about specific VLANs, specific types of VLAN or all VLANs. The information includes: VLAN type, whether the Route interface has been configured on the VLAN, the Broadcast Suppression max-ratio, the VLAN description, and a list of the tagged and untagged ports that belong to the VLAN. Use the command display a summary of the VLAN IDs of all VLANs configured on the system. Use the

display vlan to

Page 84

78 CHAPTER 3: USING VLAN COMMANDS

command display vlan vlan_id to display information on a specific VLAN. Use the command the command dynamically by the system. Use the command information of VLAN created statically by the system.

Related command: vlan.

Examples

To display information about VLAN 1:

<4500>display vlan 1 VLAN ID: 1

VLAN Type: static Route Interface: configured IP Address: 161.71.61.206 Subnet Mask: 255.255.255.0 Description: VLAN 0001 Tagged Ports:

GigabitEthernet1/0/52 GigabitEthernet2/0/27 Untagged Ports:

Ethernet1/0/1 Ethernet1/0/2 Ethernet1/0/3

Ethernet1/0/4 Ethernet1/0/5 Ethernet1/0/6

Ethernet1/0/7 Ethernet1/0/8 Ethernet1/0/9

Ethernet1/0/10 Ethernet1/0/11 Ethernet1/0/12

Ethernet1/0/13 Ethernet1/0/14 Ethernet1/0/15

Ethernet1/0/16 Ethernet1/0/17 Ethernet1/0/18

Ethernet1/0/19 Ethernet1/0/20 Ethernet1/0/21

Ethernet1/0/22 Ethernet1/0/23 Ethernet1/0/24

Ethernet1/0/25 Ethernet1/0/26 Ethernet1/0/27

Ethernet1/0/28 Ethernet1/0/29 Ethernet1/0/30

Ethernet1/0/31 Ethernet1/0/32 Ethernet1/0/33

Ethernet1/0/34 Ethernet1/0/35 Ethernet1/0/36

Ethernet1/0/37 Ethernet1/0/38 Ethernet1/0/39

Ethernet1/0/40 Ethernet1/0/41 Ethernet1/0/42

Ethernet1/0/43 Ethernet1/0/44 Ethernet1/0/45

Ethernet1/0/46 Ethernet1/0/47 Ethernet1/0/48

GigabitEthernet1/0/50 GigabitEthernet1/0/51 Ethernet2/0/1

Ethernet2/0/2 Ethernet2/0/3 Ethernet2/0/4

Ethernet2/0/5 Ethernet2/0/6 Ethernet2/0/7

Ethernet2/0/8 Ethernet2/0/9 Ethernet2/0/10

Ethernet2/0/11 Ethernet2/0/12 Ethernet2/0/13

Ethernet2/0/14 Ethernet2/0/15 Ethernet2/0/16

Ethernet2/0/17 Ethernet2/0/18 Ethernet2/0/19

Ethernet2/0/20 Ethernet2/0/21 Ethernet2/0/22

Ethernet2/0/23 Ethernet2/0/24 GigabitEthernet2/0/25

GigabitEthernet2/0/26 GigabitEthernet2/0/28

display vlan all to display information on all the VLANs. Use display vlan dynamic to display information on VLANs created

display vlan static to display

<4500>

interface VLAN-interface Syntax

interface vlan-interface vlan_id

undo interface vlan-interface vlan_id

Page 85

VLAN Configuration Commands 79

View

System View

Parameter

vlan_id: Enter the ID of the VLAN interface you want to configure, in the range

1 to 4094. Note that VLAN1 is the default VLAN and cannot be deleted.

Description

Use the interface vlan-interface command to enter a VLAN interface view and use the related configuration commands. Use the

vlan-interface

command to exit the current VLAN interface.

undo interface

Related command: display interface vlan-interface.

Example

To enter the interface view of VLAN1, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500] interface vlan-interface 1 [4500-Vlan-interface1]

port Syntax

port interface_list

undo port interface_list

View

VLAN view

Parameter

interface_list: list of Ethernet ports to be added to or deleted from a certain

VLAN, expressed as

interface_name } [ to { interface_type interface_num | interface_name } ]

&<1-10>.

}

interface_type is the interface type, interface_num is the interface number

and interface_name is the interface name. For their meanings and value range, see the parameter of must be larger than or equal to the port number before

&<1-10>: Represents the repeatable times of parameters, 1 is the minimal and 10

is the maximal.

Description

Using the port command, you can add one port or one group of ports to a VLAN. Using the from a VLAN.

interface_list= {{ interface_type interface_num |

Port in this document. The interface number after keyword to

to.

undo port command, you can cancel one port or one group of ports

You can add/delete trunk port and hybrid ports to/from a VLAN by port and undo

port commands in Ethernet Port View, but not in VLAN View.

For the related command, see display vlan.

Page 86

80 CHAPTER 3: USING VLAN COMMANDS

Example

Add Ethernet1/0/2 through Ethernet1/0/4 to VLAN 2.

<4500>system-view System View: return to User View with Ctrl+Z. [4500]vlan 2 [4500-vlan2]port ethernet1/0/2 to ethernet1/0/4

shutdown Syntax

shutdown

undo shutdown

View

VLAN Interface View

Parameter

None

Description

Use the shutdown command to disable the VLAN interface. Use the undo

shutdown

command to enable the VLAN interface.

By default, when all Ethernet ports are in DOWN status in VLAN interface, the VLAN interface is in DOWN status and is disabled. When there is one or more Ethernet ports in VLAN interface are in UP status, the VLAN interface is UP.

This command can be used to start the interface after the related parameters and protocols of VLAN interface are set. Or when the VLAN interface fails, the interface can be shut down first and then restarted, in this way, the interface may be restored to normal status. Shutting down or starting VLAN interface will not take any effect on any Ethernet port of this VLAN.

Example

Restart interface after shutting down the interface.

<4500>system-view System View: return to User View with Ctrl+Z. [4500]vlan 2 [4500-vlan2]quit [4500]interface vlan-interface 2 [4500-Vlan-interface2]shutdown %Apr 2 00:06:15:277 2000 4500 L2INF/5/VLANIF LINK STATUS CHANGE:- 1

- Vlan-interface1: is DOWN

[4500-Vlan-interface2]undo shutdown

#Apr 2 00:05:27:793 2000 4500 L2INF/2/PORT LINK STATUS CHANGE:- 1 Trap 1.3.6.1.6.3.1.1.5.4: portIndex is 4227626, ifAdminStatus is 1, ifOperStatus is 1

%Apr 2 00:05:27:980 2000 4500 L2INF/5/PORT LINK STATUS CHANGE:- 1 Ethernet1/0/1: is UP

%Apr 2 00:05:28:96 2000 4500 L2INF/5/VLANIF LINK STATUS CHANGE:- 1 Vlan-interface1: is UP

Page 87

%Apr 2 00:05:28:213 2000 4500 STP/2/SPEED:- 1 -Ethernet1/0/1's speed changed

%Apr 2 00:05:28:319 2000 4500 STP/2/PFWD:- 1 -Ethernet1/0/1 is forwarding!

[4500-Vlan-interface2]

vlan Syntax

vlan vlan_id

undo vlan vlan_id { [to vlan_id ] | all }

View

System View

Parameter

vlan_id: Enter the ID of the VLAN you want to configure, in the range 1 to

4094.

Voice VLAN Configuration Commands 81

Voice VLAN Configuration Commands

display voice vlan oui Syntax

all: Delete all VLANs.

Description

Use the vlan command to enter the VLAN view, and use the related configuration commands. Use the

undo vlan command to exit from the specified VLAN. VLAN 1

is default VLAN and cannot be deleted.

Related commands: display vlan.

Example

To enter VLAN 1 view, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]vlan 1

This section describes the commands you can use to configure voice VLANs.

display voice vlan oui

View

Any view

Parameter

None

Page 88

82 CHAPTER 3: USING VLAN COMMANDS

Description

Use the display voice vlan oui command to display the OUI address supported by the current system and its relative features.

Related commands: voice vlan vlan_id enable, voice vlan enable.

Example

To display the OUI address of Voice VLAN, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]display voice vlan oui

Oui Address Mask Description 00e0-bb00-0000 ffff-ff00-0000 3com phone 0003-6b00-0000 ffff-ff00-0000 Cisco phone 00e0-7500-0000 ffff-ff00-0000 Polycom phone 00d0-1e00-0000 ffff-ff00-0000 Pingtel phone 00aa-bb00-0000 ffff-ff00-0000 ABC

display voice vlan status Syntax

display voice vlan status

View

Any view

Parameter

None

Description

Use the display voice vlan status command to display the relative Voice VLAN features including the Voice VLAN status, the configuration mode, the current Voice VLAN port status etc.

Related commands: voice vlan vlan_id enable, voice vlan enable.

Example

To enable the Voice VLAN on VLAN 2 and display the Voice VLAN status, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]display voice vlan status Voice Vlan status: ENABLE Voice Vlan ID: 2 Voice Vlan configuration mode: AUTO Voice Vlan security mode: Security Voice Vlan aging time: 100 minutes Current voice vlan enabled port:

-------------------------------Ethernet1/0/2, Ethernet1/0/3,

Page 89

voice vlan aging Syntax

voice vlan aging minutes

undo voice vlan aging

View

System View

Parameter

minutes: The aging time of Voice VLAN, in minutes, ranging from 5 to 43200.

The default value is 1440 minutes.

Description

Use the voice vlan aging command to set the aging time of Voice VLAN. Use

undo voice vlan aging command to set the aging time back to the default.

the

Related commands: display voice vlan status.

Example

To set the aging time of Voice VLAN to 100 minutes, enter the following:

Voice VLAN Configuration Commands 83

<4500>system-view System View: return to User View with Ctrl+Z. [4500]voice vlan aging 100 [4500]

voice vlan enable Syntax

voice vlan enable

undo voice vlan enable

View

Ethernet Port View

Parameter

None

Description

Use the voice vlan enable command to enable the Voice VLAN features on the port. Use the features on the port.

You can only run the Voice VLAN function on the port when all the Voice VLAN features in system view and port view are enabled.

undo voice vlan enable command to disable the Voice VLAN

For the related command, see display voice vlan status.

Example

To enable the Voice VLAN features on port Ethernet1/0/2, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]interface ethernet1/0/2

Page 90

84 CHAPTER 3: USING VLAN COMMANDS

[4500-Ethernet1/0/2]voice vlan enable [4500-Ethernet1/0/2]

voice vlan Syntax

voice vlan vlan_id enable

undo voice vlan enable

View

System View

Parameter

vlan_id: The VLAN ID for the Voice VLAN to be enabled, in the range of 2 to

4094.

Description

Use the voice vlan command to globally enable the Voice VLAN features of one VLAN. Use the VLAN features of one VLAN.

undo voice vlan enable command to globally disable the Voice

A specified VLAN must exist for a successful Voice VLAN enabling. You cannot delete a specified VLAN that has enabled Voice VLAN and only one VLAN can enable Voice VLAN features at one time.

For the related command, see display voice vlan status.

Example

Enable the Voice VLAN features on VLAN 2 (VLAN 2 already exists).

<4500>system-view System View: return to User View with Ctrl+Z. [4500]vlan 2 [4500-vlan2]quit [4500]voice vlan 2 enable [4500]

voice vlan mac_address Syntax

voice vlan mac_address oui mask oui_mask [ description string ]

undo voice vlan mac_address oui

View

System View

Parameter

oui: The MAC address to be set, in the format H-H-H.

oui_mask: The valid length of a MAC address, represented by a mask, and in the

format H-H-H.

description string: Description of the MAC address, in the range of 1 to 30.

Page 91

Voice VLAN Configuration Commands 85

Description

Use the voice vlan mac_address command to set the MAC address that the Voice VLAN can control. Use the

undo voice vlan mac_address command to

cancel this MAC address.

Here the OUI address refers to a vendor and you need only input the first three-byte values of the MAC address. The OUI address system can learn 16 MAC addresses at most. There are four default OUI addresses after the system starts:

Ta bl e 8 Default OUI Addresses

No. OUI Description

1 00:E0:BB 3Com phone

2 00:03:6B Cisco phone

3 00:E0:75 Polycom phone

4 00:D0:1E Pingtel phone

For the related command, see display voice vlan oui.

Example

To set the MAC address 00AA-BB00-0000 as an OUI address, enter the following.

<4500>system-view System View: return to User View with Ctrl+Z. [4500]voice vlan mac_address 00aa-bb00-0000 mask ffff-ff00-0000

description ABC

[4500]

voice vlan mode Syntax

voice vlan mode auto

undo voice vlan mode auto

View

System View

Parameter

None

Description

Use the voice vlan mode auto command to set the Voice VLAN in auto mode. Use the mode.

By default, the Voice VLAN is in auto mode.

If required, the voice vlan mode auto and undo voice vlan mode auto commands must be executed before the Voice VLAN features are enabled globally.

For the related command, see display voice vlan status.

undo voice vlan mode auto command to set the Voice VLAN in manual

Example

To set the Voice VLAN in manual mode, enter the following:

Page 92

86 CHAPTER 3: USING VLAN COMMANDS

<4500>system-view System View: return to User View with Ctrl+Z. [4500]undo voice vlan mode auto Can't change voice vlan configuration when voice vlan is running [4500]undo voice vlan enable [4500]undo voice vlan mode auto [4500]

voice vlan security

enable

Syntax

voice vlan security enable

undo voice vlan security enable

View

System View

Parameter

None

Description

Use the voice vlan security enable command to enable the Voice VLAN security mode. In this mode, the system can filter out the traffic whose source MAC is not OUI when the traffic travels through the access port of IP Phone within the Voice VLAN, while the other VLANs are not influenced. Use the

vlan security enable

command to disable the Voice VLAN security mode.

undo voice

By default, the Voice VLAN security mode is enabled.

If needed, the voice vlan security enable and undo voice vlan security

enable

commands must be executed before the Voice VLAN features are enabled

globally.

For the related command, see display voice vlan status.

Example

To disable the Voice VLAN security mode, enter the following:

<4500>system-view System View: return to User View with Ctrl+Z. [4500]undo voice vlan security enable [4500]

Page 93

USING POWER OVER ETHERNET (POE) COMMANDS

This chapter describes how to use the following commands:

PoE Configuration Commands

■ display poe interface

■ display poe power

■ display poe powersupply

■ poe enable

■ poe legacy enable

■ poe max-power

■ poe mode

■ poe power-management

■ poe priority

■ poe update

Page 94

88 CHAPTER 4: USING POWER OVER ETHERNET (POE) COMMANDS

PoE Configuration Commands

display poe interface Syntax

This section describes the commands you can use to configure and manage the PoE on your Switch 4500 PWR.

display poe interface [ interface-name | interface-type interface-num ]

View

Any view

Parameter

interface-name | interface-type interface-num: Port on the Switch.

Description

Use the display poe interface command to view the PoE status of a specific port or all ports on the Switch.

Example

Display the PoE status of the Ethernet port Ethernet1/0/10.

[4500]display poe interface ethernet1/0/10 Port power enabled :enable Port power ON/OFF :on Port power status :Standard PD Port power mode :signal Port PD class :0 port power priority :low Port max power :15400 mW Port current power :460 mW Port peak power :552 mW Port average power :547 mW Port current :10 mA Port voltage :51 V

Display the PoE status of all ports.

[4500]display poe interface

PORT INDEX POWER ENABLE MODE PRIORITY STATUS Ethernet1/0/1 off enable signal low Detection Ethernet1/0/2 off enable signal low Detection Ethernet1/0/3 off enable signal low Detection Ethernet1/0/4 off enable signal low Detection Ethernet1/0/5 off enable signal low Detection Ethernet1/0/6 off enable signal low Detection Ethernet1/0/7 off enable signal low Detection Ethernet1/0/8 off enable signal low Detection Ethernet1/0/9 off enable signal low Detection Ethernet1/0/10 off enable signal low Detection Ethernet1/0/11 off enable signal low Detection Ethernet1/0/12 off enable signal low Detection Ethernet1/0/13 off enable signal low Detection Ethernet1/0/14 off enable signal low Detection

Page 95

PoE Configuration Commands 89

Ethernet1/0/15 off enable signal low Detection Ethernet1/0/16 off enable signal low Detection Ethernet1/0/17 off enable signal low Detection Ethernet1/0/18 off enable signal low Detection Ethernet1/0/19 off enable signal low Detection Ethernet1/0/20 off enable signal low Detection Ethernet1/0/21 off enable signal low Detection Ethernet1/0/22 off enable signal low Detection Ethernet1/0/23 off enable signal low Detection Ethernet1/0/24 off enable signal low Detection Ethernet1/0/25 off disable signal low User set off Ethernet1/0/26 off disable signal low User set off Ethernet1/0/27 off disable signal low User set off Ethernet1/0/28 off disable signal low User set off Ethernet1/0/29 off disable signal low User set off Ethernet1/0/30 off disable signal low User set off Ethernet1/0/31 off disable signal low User set off Ethernet1/0/32 off disable signal low User set off Ethernet1/0/33 off disable signal low User set off Ethernet1/0/34 off disable signal low User set off Ethernet1/0/35 off disable signal low User set off Ethernet1/0/36 off disable signal low User set off Ethernet1/0/37 off disable signal low User set off Ethernet1/0/38 off disable signal low User set off Ethernet1/0/39 off disable signal low User set off Ethernet1/0/40 off disable signal low User set off Ethernet1/0/41 off disable signal low User set off Ethernet1/0/42 off disable signal low User set off Ethernet1/0/43 off disable signal low User set off Ethernet1/0/44 off disable signal low User set off Ethernet1/0/45 off disable signal low User set off Ethernet1/0/46 off disable signal low User set off Ethernet1/0/47 off disable signal low User set off Ethernet1/0/48 off disable signal low User set off

display poe power Syntax

display poe interface power [ interface-name | interface-type interface-num ]

View

Any view

Parameter

interface-name | interface-type interface-num: Port on the Switch.

Description

Use the display poe interface power command, you can view the power information of a specific port or all ports on the Switch.

Example

Display the power information of port Ethernet1/0/10.

[4500]display poe interface power ethernet1/0/10

Page 96

90 CHAPTER 4: USING POWER OVER ETHERNET (POE) COMMANDS

Port power :12400 mW

Display the power information of all ports.

[4500]display poe power PORT INDEX POWER (mW) PORT INDEXPOWER

(mW) Ethernet1/0/1 0 Ethernet1/0/2 100 Ethernet1/0/3 200 Ethernet1/0/4 300 Ethernet1/0/5 400 Ethernet1/0/6 500 Ethernet1/0/7 600 Ethernet1/0/8 700 Ethernet1/0/9 800 Ethernet1/0/10 900 Ethernet1/0/11 1000 Ethernet1/0/12 1100 Ethernet1/0/13 1200 Ethernet1/0/14 1300 Ethernet1/0/15 1400 Ethernet1/0/16 1500 Ethernet1/0/17 1600 Ethernet1/0/18 1700 Ethernet1/0/19 1800 Ethernet1/0/20 1900 Ethernet1/0/21 2000 Ethernet1/0/22 2100 Ethernet1/0/23 2200 Ethernet1/0/24 2300 Ethernet1/0/25 2400 Ethernet1/0/26 2500 Ethernet1/0/27 2600 Ethernet1/0/28 2700 Ethernet1/0/29 0 Ethernet1/0/30 0 Ethernet1/0/31 0 Ethernet1/0/32 0 Ethernet1/0/33 3200 Ethernet1/0/34 3300 Ethernet1/0/35 3400 Ethernet1/0/36 3500 Ethernet1/0/37 3600 Ethernet1/0/38 3700 Ethernet1/0/39 3800 Ethernet1/0/40 3900 Ethernet1/0/41 4000 Ethernet1/0/42 4100 Ethernet1/0/43 4200 Ethernet1/0/44 4300 Ethernet1/0/45 4400 Ethernet1/0/46 4500 Ethernet1/0/47 4600 Ethernet1/0/48 4700

display poe

powersupply

Syntax

display poe powersupply

View

Any view

Parameter

None

Page 97

PoE Configuration Commands 91

Description

Use the display poe powersupply command to view the parameters of the power sourcing equipment (PSE).

Example

Display the PSE parameters.

[4500]display poe powersupply

PSE ID :1 PSE Legacy Detection :disable PSE Total Power Consumption :12000 mW PSE Available Power :268000 mW PSE Peak Value :12000 mW PSE Average Value :12000 mW PSE Software Version :290 PSE Hardware Version :000 PSE CPLD Version :021 PSE Power-Management mode :auto

poe enable Syntax

poe enable

undo poe enable

View

Ethernet Port View

Parameter

None

Description

Use the poe enable command to enable the PoE feature on a port.

Use the undo poe enable command to disable the PoE feature on a port.

By default, the PoE feature on each port is enabled.

Example

Enable the PoE feature on the current port.

[4500-Ethernet1/0/3]poe enable Port power supply is enabled # Disable the PoE feature on the current port. [4500-Ethernet1/0/3]undo poe enable Port power supply is disabled

poe legacy enable Syntax

poe legacy enable

undo poe legacy enable

Page 98

92 CHAPTER 4: USING POWER OVER ETHERNET (POE) COMMANDS

View

System View

Parameter

None

Description

Use the poe legacy enable command to enable the nonstandard-PD detect function.

Use the undo poe legacy enable command to disable the nonstandard-PD detect function.

PDs compliant with 802.3af standards are called standard PDs.

By default, the nonstandard-PD detect function is disabled.

Example

Enable the nonstandard-PD detect function.

[4500]poe legacy enable Legacy detection is enabled

Disable the nonstandard-PD detect function.

[4500]undo poe legacy enable Legacy detection is disabled

poe max-power Syntax

poe max-power max-power

undo poe max-power

View

Ethernet Port View

Parameter

max-power: Maximum power distributed to the port, ranging from 1000 to

15400 mW.

Description

Use the poe max-power command to configure the maximum power that can be supplied by current port.

Use the undo poe max-power command to restore the maximum power supplied by current port to the default value.

By default, the maximum power that a port can supply is 15400 mW.

Page 99

The unit of power is mW. You can set the power in the granularity of 100 mW. The actual maximum power will be 5% larger than what you have set allowing for the effect of transient peak power.

Example

Set the maximum power supplied by current port.

[4500-Ethernet1/0/3]poe max-power 15000 Set Port max power successfully

Restore the default maximum power on the current port.

[4500-Ethernet1/0/3]undo poe max-power Set Port max power successfully

poe mode Syntax

poe mode { signal | spare }

undo poe mode

PoE Configuration Commands 93

View

Ethernet Port View

Parameter

signal: Supply power through the signal line.

spare: Supply power through the spare line. Currently, the Switch 4500 Family

does not support

spare mode. If the subordinate PD only supports the spare

mode, a conversion is needed.

Description

Use the poe mode command to configure the PoE mode on the current port.

Use the undo poe mode command to restore the PoE mode on the current port to the default mode.

By default, the port is powered through the signal cable.

Example

Set the PoE mode on current port to signal.

[4500-Ethernet1/0/3]poe mode signal Set PoE mode successfully

poe power-management Syntax

poe power-management { auto | manual }

undo poe power-management

Page 100

94 CHAPTER 4: USING POWER OVER ETHERNET (POE) COMMANDS

View

System View

Parameter

auto: Adopt the auto mode, a PoE management mode based on port priority.

manual: Adopt the manual mode.

Description

Use the poe power-management command to configure the PoE management mode of port used in the case of power overloading.

Use the undo poe power-management command to restore the default mode.

By default, the PoE management mode on port is auto.

Example

Configure the PoE management mode on port to auto.

[4500]poe power-management auto

Auto Power Management is enabled

Restore the default management mode.

[4500]undo poe power-management Auto Power Management is enabled

poe priority Syntax

poe priority { critical | high | low }

undo poe priority

View

Ethernet Port View

Parameter

critical: Set the port priority to critical.

high: Set the port priority to high.

low: Set the port priority to low.

Description

Use the poe priority command to configure the power supply priority on a port.

Use the undo poe priority command to restore the default priority.

By default, the port priority is low.

3COM 4500 PWR 50-PORT, 4500 PWR 26-PORT, 4500 26-PORT, 4500 50-PORT User Manual

CONTENTS

ALPHABETICAL LISTING OF COMMANDS

ABOUT THIS GUIDE

About This Software Version

How This Guide is Organized

Intended Readership The guide is intended for the following readers:

Conventions This guide uses the following conventions:

Related Documentation

USING SYSTEM ACCESS COMMANDS

Logging in Commands This section describes the commands that you can use to configure system access

authentication-mode Syntax

auto-execute command text

command-privilege level Syntax

databits Syntax

display history-command

display user-interface Syntax

[4500]display users

flow-control Syntax

free user-interface Syntax

header Syntax

history-command max-size value

idle-timeout Syntax

language-mode Syntax

lock

parity Syntax

protocol inbound Syntax

quit

return

screen-length to restore the default of 24 lines.

send Syntax

View

service-type Syntax

shell

speed Syntax

stopbits Syntax

super level

super password Syntax

sysname text

system-view

telnet Syntax

user-interface Syntax

user privilege level level

USING PORT COMMANDS

Ethernet Port Configuration Commands

copy configuration Syntax

broadcast-suppression Syntax

Description

display interface Syntax

display loopback-detection

display port Syntax

display unit Syntax

duplex Syntax

flow-control

interface Syntax

loopback Syntax

loopback-detection control enable

loopback-detection enable

loopback-detection interval-time

loopback-detection per-vlan enable

multicast-suppression Syntax

port access vlan vlan_id

port hybrid pvid vlan vlan_id

port hybrid vlan Syntax

port link-type Syntax

port trunk permit vlan Syntax

port trunk pvid vlan vlan_id

reset counters interface Syntax

shutdown

speed Syntax

unicast-suppression Syntax

Ethernet Port Link Aggregation Commands

debugging link-aggregation error

debugging link-aggregation event

debugging lacp packet Syntax

debugging lacp state Syntax

display link-aggregation summary

display lacp system-id

lacp enable

lacp port-priority port-priority-value