3COM SUPERSTACK 2200 User Manual

S
UPERSTACK
®
A
DMINISTRATION
U
SER
G
UIDE
II S
WITCH
C
ONSOLE
2200
Part No. 801-00310-000 Published September 1996 Revision 01
3Com Corporation ■ 5400 Bayfront Plaza ■ Santa Clara, California ■ 95052-8145
© 3Com Corporation, 1996. All rights reserved. No part of this documentation may be reproduced in any form or by any means or used to make any derivative work (such as translation, transformation, or adaptation) without permission from 3Com Corporation.
3Com Corporation reserves the right to revise this documentation and to make changes in content from time to time without obligation on the part of 3Com Corporation to provide notification of such revision or change.
3Com Corporation provides this documentation without warranty of any kind, either implied or expressed, including, but not limited to, the implied warranties of merchantability and fitness for a particular purpose. 3Com may make improvements or changes in the product(s) and/or the program(s) described in this documentation at any time.
UNITED STATES GOVERNMENT LEGENDS:
If you are a United States government agency, then this documentation and the software described herein are provided to you subject to the following restricted rights:
For units of the Department of Defense:
Restricted Rights Legend:
restricted Rights in Technical Data and Computer Software clause at 48 C.F.R. 52.227-7013. 3Com Corporation, 5400 Bayfront Plaza, Santa Clara, California 95052-8145.
For civilian agencies:
Restricted Rights Legend: Use, reproduction, or disclosure is subject to restrictions set forth in subparagraph (a) through (d) of the Commercial
Computer Software - Restricted Rights Clause at 48 C.F.R. 52.227-19 and the limitations set forth in 3Com Corporation’s standard commercial agreement for the software. Unpublished rights reserved under the copyright laws of the United States.
If there is any software on removable media described in this documentation, it is furnished under a license agreement included with the product as a separate document, in the hardcopy documentation, or on the removable media in a directory file named LICENSE.TXT. If you are unable to locate a copy, please contact 3Com and a copy will be provided to you.
Unless otherwise indicated, 3Com registered trademarks are registered in the United States and may or may not be registered in other countries. 3Com, LANplex, LinkBuilder, NETBuilder, NETBuilder II, ViewBuilder, EtherDisk, EtherLink, EtherLink II, and Transcend are registered trademarks of
3Com Corporation. 3TECH, FDDILink, SmartAgent, and Star-Tek are trademarks of 3Com Corporation. 3ComFacts is a service mark of 3Com Corporation.
IBM and Netview AIX are registered trademarks of International Business Machines Corporation. Apple, AppleTalk, and Macintosh are trademarks of Apple Computer, Inc. CompuServe is a registered trademark of CompuServe, Inc. MS-DOS and Windows are registered trademarks of Microsoft Corporation. OpenView is a registered trademark of Hewlett-Packard Co. Sniffer is a registered trademark of Network General Corp. SunNet Manager, SunOS, and OpenWindows are trademarks of Sun Microsystems, Inc. UNIX is a registered trademark of Novell Inc.
Other brand and product names may be registered trademarks or trademarks of their respective holders. Guide written, edited, and illustrated by Beth Britt, Patricia Crawford, Lynne Gelfand, Michael Jenness, Patricia L. Johnson, Michael Taillon, and
Iain Young. Edited by Bonnie Jo Collins.
Use, duplication, or disclosure by the Government is subject to restrictions as set forth in subparagraph (c) (1) (ii) for
P
ART
C
ONTENTS
A
BOUT THIS GUIDE
Introduction 1 How to Use This Guide 2 Conventions 3 Switch 2200 Documentation 4 Documentation Comments 5
II
1
2
NTRODUCTION
S
UPERSTACK
About Switch 2200 Administration 1-1 Configuration Tasks 1-1
HOW TO USE
Initial User Access 2-1 Levels of User Access 2-1
Administer Access Example 2-2 Write Access Example 2-2 Read Access Example 2-3
Using Menus to Perform Tasks 2-3
Administration Console Menu Structure 2-4
System Menu 2-4 Ethernet Menu 2-4 FDDI Menu 2-5 Bridge Menu 2-5 IP Menu 2-6 SNMP Menu 2-7
Analyzer Menu 2-7 Selecting Menu Options 2-8 Entering Values 2-9 Getting Out 2-9
™ II S
THE ADMINISTRATION CONSOLE
WITCH
2200 A
DMINISTRATION OVERVIEW
P
ART
Administration Console Interface Parameters 2-10
Remote Access Parameters 2-11
Running Scripts of Administration Console Tasks 2-13 Getting Help in the Administration Console 2-16
Exiting the Administration Console 2-17
II S
3
C
About Management Access 3-1
Setting Up the Console Serial Port 3-2 Setting Up an IP Interface for Management 3-3
Adjusting the Screen Height 2-10 Disabling the Reboot and Abort Keys 2-11
Preventing Disconnections 2-11 Enabling Timeout of Remote Sessions 2-12 Setting Timeout Interval for Remote Sessions 2-13
Online Help 2-16 Viewing More Levels of Menu Options 2-16
YSTEM-LEVEL FUNCTIONS
ONFIGURING MANAGEMENT ACCESS TO THE SYSTEM
Using a Serial Connection 3-1 Using an IP Interface 3-1 In-band or Out-of-band? 3-2
General Setup Process 3-3 Administering Interfaces 3-3
Displaying Interfaces 3-4 Defining an Interface 3-5 Modifying an Interface 3-6 Removing an Interface 3-7
Administering Routes 3-7
Displaying the Routing Table 3-8 Defining a Static Route 3-9 Removing a Route 3-9 Flushing a Route 3-10 Setting the Default Route 3-10 Removing the Default Route 3-10
Administering the ARP Cache 3-11
Displaying the ARP Cache 3-11 Removing an ARP Cache Entry 3-11
Flushing ARP Cache Entries 3-12 Setting the RIP Mode 3-12 Pinging an IP Station 3-12 Displaying IP Statistics 3-14
Setting Up SNMP on Your System 3-15
Displaying SNMP Settings 3-15 Configuring Community Strings 3-15 Administering SNMP Trap Reporting 3-16
Displaying Trap Information 3-16 Configuring Trap Reporting 3-17 Removing Trap Destinations 3-18 Flushing Trap Destinations 3-19 Setting Up SMT Event Proxying 3-19
4
A
DMINISTERING YOUR SYSTEM ENVIRONMENT
Displaying the System Configuration 4-1 Setting Passwords 4-2 Setting the System Name 4-3 Changing the Date and Time 4-3 Rebooting the System 4-4
5
B
ASELINING STATISTICS
About Setting Baselines 5-1 Displaying the Current Baseline 5-1 Setting Baselines 5-2 Enabling or Disabling Baselines 5-2
P
ART
6
S
About Working with Nonvolatile Data 6-1 Saving NV Data 6-2 Restoring NV Data 6-3 Examining a Saved NV Data File 6-5 Resetting NV Data to Defaults 6-6
III E
7
A
Displaying Ethernet Port Information 7-1 Labeling a Port 7-8 Setting the Port State 7-8
AVING
THERNET AND
DMINISTERING ETHERNET PORTS
, R
ESTORING, AND RESETTING NONVOLATILE DATA
FDDI P
ARAMETERS
8
A
DMINISTERING
Administering FDDI Stations 8-1
Displaying Station Information 8-2 Setting the Connection Policies 8-3 Setting Neighbor Notification Timer 8-5 Enabling and Disabling Status Reporting 8-5
Administering FDDI Paths 8-6
Displaying Path Information 8-6 Setting tvxLowerBound 8-7 Setting tmaxLowerBound 8-8 Setting maxT-Req 8-9
Administering FDDI MACs 8-9
Displaying MAC Information 8-10 Setting the Frame Error Threshold 8-16 Setting the Not Copied Threshold 8-17 Enabling and Disabling LLC Service 8-18 Setting the MAC Paths 8-18
Administering FDDI Ports 8-19
Displaying Port Information 8-19 Setting lerAlarm 8-20 Setting lerCutoff 8-21 Setting Port Labels 8-22 Setting the Port Paths 8-23
FDDI R
ESOURCES
P
ART
9
S
About Roving Analysis 9-1 Displaying the Roving Analysis Configuration 9-2 Adding an Analyzer Port 9-3 Removing an Analyzer Port 9-4 Starting Port Monitoring 9-5 Stopping Port Monitoring 9-6
IV B
10
A
Displaying Bridge Information 10-1 Enabling and Disabling IP Fragmentation 10-5 Enabling and Disabling IPX Snap Translation 10-5 Setting the Address Threshold 10-6 Setting the Aging Time 10-6
ETTING UP THE SYSTEM FOR ROVING ANALYSIS
RIDGING PARAMETERS
DMINISTERING THE BRIDGE
Administering STP Bridge Parameters 10-7
Enabling and Disabling STP on a Bridge 10-7 Setting the Bridge Priority 10-7 Setting the Bridge Maximum Age 10-8 Setting the Bridge Hello Time 10-9 Setting the Bridge Forward Delay 10-9 Setting the STP Group Address 10-10
11
12
A
DMINISTERING BRIDGE PORTS
Displaying Bridge Port Information 11-1 Setting the Multicast Limit 11-7 Administering STP Bridge Port Parameters 11-8
Enabling and Disabling STP on a Port 11-8 Setting the Port Path Cost 11-9 Setting the Port Priority 11-10
Administering Port Addresses 11-11
Listing Addresses 11-11 Adding New Addresses 11-12 Removing Addresses 11-12 Flushing All Addresses 11-13 Flushing Dynamic Addresses 11-13 Freezing Dynamic Addresses 11-13
C
REATING AND USING PACKET FILTERS
About Packet Filtering 12-1 Listing Packet Filters 12-2 Displaying Packet Filters 12-3 Creating Packet Filters 12-3
Concepts for Writing a Filter 12-4
How the Packet Filter Language Works 12-4 Basic Elements of a Packet Filter 12-6 Implementing Sequential Tests in a Packet Filter 12-8
Preprocessed and Run-time Storage 12-9 Procedure for Writing a Filter 12-10 Examples of Creating Filters 12-11
Filtering Problem 12-11
Packet Filter Solution 12-12 Tools for Writing a Filter 12-17
Using the Built-in Line Editor 12-17
Using an External Text Editor 12-20
Deleting Packet Filters 12-20 Editing, Checking and Saving Packet Filters 12-20
Loading Packet Filters 12-22 Assigning Packet Filters to Ports 12-22 Unassigning Packet Filters from Ports 12-24
13
C
ONFIGURING ADDRESS AND PORT GROUPS TO
ACKET FILTERS
P
Using Groups in Packet Filters 13-1 Listing Groups 13-2 Displaying Groups 13-3 Creating New Groups 13-4 Deleting Groups 13-6 Adding Addresses and Ports to Groups 13-7 Removing Addresses or Ports from a Group 13-9 Loading Groups 13-11
USE IN
PART APPENDIXES
A PACKET FILTER OPCODES, EXAMPLES, AND SYNTAX ERRORS
Opcodes A-1 Packet Filter Examples A-9
Destination Address Filter A-9 Source Address Filter A-9 Length Filter A-9 Type Filter A-10 Ethernet Type IPX and Multicast Filter A-10 Multiple Destination Address Filter A-10 Source Address and Type Filter A-11 Accept XNS or IP Filter A-11 XNS Routing Filter A-11 Address Group Filter A-12 Port Group Filter A-12
Common Syntax Errors A-13
B TECHNICAL SUPPORT
Online Technical Services B-1
3Com Bulletin Board Service B-1
Access by Modem B-1
Access by ISDN B-2 World Wide Web Site B-2 3ComForum on CompuServe® B-2 3ComFactsSM Automated Fax Service B-3
Support from Your Network Supplier B-3 Support from 3Com B-4 Returning Products for Repair B-4
INDEX

ABOUT THIS GUIDE

Introduction The SuperStack™ II Switch 2200 Administration Console User Guide provides all

the information you need to configure and manage your Switch 2200 once it is installed and the system is attached to the network. Prior to using this guide, you should have already installed and set up your system using the SuperStack™ II Switch 2200 Getting Started guide.
Audience description This guide is intended for the system or network administrator who is
responsible for configuring, using, and managing the Switch 2200 system. It assumes a working knowledge of local area network (LAN) operations and a familiarity with communications protocols that are used on interconnected LANs.
If the information in the Release Notes shipped with this product differs from the information in this guide, follow the Release Notes.
2 ABOUT THIS GUIDE

How to Use This Guide

This guide is organized by types of tasks you may need to perform on the Switch 2200. The parts of the guide are described in Table 1.
Table 1 Description of Guide Parts
Part Contents
I: Introduction Introducing Switch 2200 administration
Learning about the various system configurations and the quick commands to perform them
Learning about password access to the Console Learning about the Administration Console menu structure
and maneuvering within the Console (using commands and moving between menus)
Setting interface parameters (screen height and control keys) Running scripts of Console tasks Getting help
II: System-Level Functions
III: Ethernet and FDDI Parameters
(continued)
Setting up the system for management access (through serial ports or using IP and setting up SNMP)
Configuring SNMP community strings Setting up trap reporting Configuring system parameters, such as name, date/time,
and passwords Baselining statistics Saving, restoring, and resetting nonvolatile data Displaying statistics for and labeling Ethernet ports Displaying statistics for and configuring various parameters
for FDDI stations, ports, MACs, and paths Setting up the system to monitor Ethernet port activity
using roving analysis

Conventions 3

Table 1 Description of Guide Parts (continued)
Part Contents
IV: Bridging Configuring bridge and bridge port parameters
Administering the Spanning Tree Protocol bridge and bridge port parameters
Displaying and configuring bridge port addresses Creating and using packet filters Creating address groups and port groups and using them as
filtering criteria
V: Appendixes Additional information about packet filters: opcode
descriptions, examples, and error messages Getting Technical Support Returning products for repair
Conventions Table 2 and Table 3 list icon and text conventions that are used throughout
this guide.
Table 2 Notice Icons
Icon Type Description
Information Note Information notes call attention to important features or
instructions.
Caution Cautions contain directions that you must follow to avoid
immediate system damage or loss of data.
Warning Warnings contain directions that you must follow for
your personal safety. Follow all instructions carefully.
4 ABOUT THIS GUIDE
Table 3 Text Conventions
Convention Description
“Enter” “Enter” means type something, then press the [Return] or [Enter] key. “Syntax” vs. “Command” “Syntax” indicates that the general command syntax form is provided. You must
evaluate the syntax and supply the appropriate value; for example: Set the date by using the following syntax:
mm/DD/yy hh:mm:ss xm
“Command” indicates that all variables in the command syntax form have been supplied and you can enter the command as shown in text; for example:
To update the system software, enter the following command:
system software Update
Text represented as screen display
Text represented as
commands
Italic Italic is used to denote emphasis and buttons. Keys When specific keys are referred to in the text, they are called out by their labels, such
This typeface represents text that appears on your terminal screen; for example: NetLogin:
This typeface represents commands that you enter; for example: bridge port stpState
as “the Return key” or “the Escape key,” or they may be shown as [Return] or [Esc]. If two or more keys are to be pressed simultaneously, the keys are linked with a plus
sign (+), for example: Press [Ctrl]+[Alt]+[Del].

Switch 2200 Documentation

The following documents comprise the Switch 2200 documentation set. If you want to order a document that you do not have or order additional documents, contact your sales representative for assistance.
SuperStack™ II Switch 2200 Unpacking Instructions
Describes how to unpack your Switch 2200. I t also provides you with an inventory list of all the items that came with your system. (Shipped with system/Part No. 801-00312-000)
SuperStack™ II Switch 2200 Software Release Notes
Provides information about the software release, including new features and bug fixes. I t also provides information about any changes to the Switch 2200 documentation. (Shipped with system)
Documentation Comments 5
SuperStack™ II Switch 2200 Getting Started
Describes all the procedures necessary for planning your configuration and for installing, cabling, powering up, and troubleshooting your Switch 2200 system. (Shipped with system/Part No. 801-00309-000)
SuperStack™ II Switch 2200 Operation Guide
Provides information to help you understand system management and administration, FDDI technology, and bridging. It also describes how these concepts are implemented in the Switch 2200 system. (Shipped with system/Part No. 801-00311-000)
SuperStack™ II Switch 2200 Administration Console User Guide (this guide)
Provides information about using the Administration Console to configure and manage your Switch 2200 system. (Shipped with system/Part No. 801-00310-000)
Command Quick Reference for the SuperStack™ II Switch 2200 Administration
Console
Contains all of the Administration Console intelligent switching commands for the Switch 2200 system. (Folded card; shipped with system/Part No. 801-00314-000)

Documentation Comments

Example: SuperStack™ II Switch 2200 Operation Guide
Your suggestions are very important to us: To help make Switch documentation more useful to you, please email comments about this guide to 3Com at: sdtechpubs_comments@3Mail.3Com.com
Please include the following information when commenting:
Document title
Document part number (on back cover of document)
Page number (if appropriate)
Part No. 801-00311-000
Page 2-5 (chapter 2, page 5)
I
INTRODUCTION
Chapter 1 Over view of SuperStack™ II Switch 2200 Administration
Chapter 2 How to Use the Administration Console
1

About Switch 2200 Administration

S
UPERSTACK
A
DMINISTRATION
This chapter introduces you to SuperStack™ II Switch 2200 administration
and briefly describes the system parameters that you can configure.
The Switch 2200 software is installed at the factory in flash memor y on the system processor. Because this software boots from flash memory automat­ically when you power on your system, the system is immediately ready for use in your network. However, you might need to configure certain param­eters for the system to operate effectively in your networking environment. Additionally, when managing your Switch 2200, you might want to view important MAC, port, bridge, and IP statistics. The Switch 2200 Administra­tion Console allows you to configure your system and display these impor­tant statistics. For more complete network management, you can use an external application, such as 3Com’s Transcend® Enterprise Manager.
™ II S
O
WITCH
2200
VERVIEW
Configuration Tasks
This section uses tables to summarize the tasks and quick commands for
the SuperStack™ II Switch 2200 Administration Console. General System Commands (Table 1-1) System Management Setup Commands (Table 1-2) Bridging Commands (Table 1-3) Ethernet Commands (Table 1-4) FDDI Commands (Table 1-5)
These tables, which are repeated on the that comes with your system, provide a brief description of most tasks, along with the Administration Console command to access the task quickly. They also tell you where to look in the documentation for additional information.
Command Quick Reference
card
1-2
C
HAPTER
1: S
UPERSTACK
™ II S
WITCH
2200 A
DMINISTRATION OVERVIEW
Table 1-1
General System Commands
Task Quick Command For Details, See. . .
Run a script of commands to set up a system
script
page 2-13
Write a script of Console commands with the values you assign so that you can quickly configure one or more systems. You can run the same script on a number of systems to ensure consistent setup.
Display the system configuration
system display
page 4-1
Display software and hardware revisions and certain warning messages.
Install software into flash memory
Update your system software. Software is initially installed at the factory.
Display, set, enable, or disable a baseline for statistics
system softwareUpdate
system baseline
SuperStack™ II Switch 2200 Software Installation and Release Notes
page 5-2
Establish and use baselines for Ethernet, FDDI, and bridging statistics to evaluate recent activity in your system and on your network.
Configure timeout for remote sessions
system telnet
page 2-12
Configure the system to disconnect remote sessions after a specified time interval.
Control access to the Console
Set passwords for levels of access (read, write, administer) and
system password system consoleLock
page 4-2 page 3-20
prohibit remote access during your session by locking the Console.
Name the system
system name
page 4-3
Assign the system a unique name for management purposes. For example, you might name a system based on its location:
Switch2200-Floor2
Set the system date and time
.
system time
page 4-3
Ensure that messages are accurately logged. The internal clock is set at the factory; change it for your time zone.
Set screen height
system screenHeight
page 2-10
Adjust the console screen height for your terminal.
Enable the [Control] keys when working in the Console
system ctlKeys
page 2-11
Enable quick keys for the reboot (Ctrl+X) and abort (Ctrl+C) functions.
(continued)
Configuration Tasks
1-3
Table 1-1
General System Commands (continued)
Task Quick Command For Details, See. . .
Save, restore, or reset nonvolatile data in the system
system nvData
page 6-2
Provide a backup for nonvolatile data, restore nonvolatile data to the system, or reset nonvolatile data to defaults.
Reboot the system
system reboot
page 4-4
Restart the system. Disconnects rlogin and telnet sessions.
Table 1-2
System Management Setup Commands
Task Quick Command For Details, See. . .
Configure the Console port baud rate
system consoleSpeed
page 3-2
Change the factory default baud rate of the Console port, which allows you to connect a VT or tty type of terminal or terminal emulator to the system using a null modem cable.
Configure an IP address using an IP interface
Communicate with the system using SNMP, rlogin, or telnet.
Define static routes
Access a menu from which you can display, define, remove, and
ip interface display ip interface define ip interface modify ip interface remove
ip route ip route default
page 3-5
page 3-9
flush static routes for transmitting traffic through the system. Static routes override routes learned through RIP.
Administer the ARP cache
Display, remove, and flush the ARP cache (a table of known IP
ip arp display ip arp remove ip arp flush
page 3-11
addresses and their corresponding MAC addresses).
Set RIP’s operational mode
ip rip
page 3-12
Define how Routing Information Protocol (RIP) messages are processed.
Ping an IP station or the system
ip ping
page 3-12
Find out if the system can reach an IP station or check that the system is on the network.
Display IP statistics
ip statistics
page 3-14
Display datagram statistics and current RIP operational mode. (continued)
1-4
C
HAPTER
1: S
UPERSTACK
™ II S
WITCH
2200 A
DMINISTRATION OVERVIEW
Table 1-2
System Management Setup Commands (continued)
Task Quick Command For Details, See. . .
Configure SNMP management
Display current SNMP configurations and specify the type of
snmp display snmp community
page 3-15
authorization for SNMP management.
Configure SNMP trap reporting
Display SNMP trap reporting information, add or modify trap reporting destination configurations, remove trap destinations, flush all SNMP trap reporting destinations, and set up SMT
snmp trap display snmp trap addModify snmp trap remove snmp trap flush snmp trap smtProxyTraps
page 3-16
event proxying.
Table 1-3
Bridging Commands
Task Quick Command For Details, See. . .
Display bridge information
bridge display
page 10-1
Display information about the bridge, such as statistics, bridge configurations, and spanning tree configurations.
Enable or disable IP fragmentation
bridge ipFragmentation
page 10-5
Enable or disable the fragmenting of large FDDI packets to allow FDDI and Ethernet stations to communicate using IP.
Enable or disable IPX snap translation
bridge ipxSnapTranslation
page 10-5
Enable or disable the translation of 802.3_RAW IPX packets to FDDI_SNAP packets (when going from Ethernet to FDDI), and vice versa (when going from FDDI to Ethernet). The default is disabled.
Set the bridge address threshold
bridge addressThreshold
page 10-6
Specify the reporting threshold for the total number of Ethernet addresses known to the bridge. The SNMP trap
addressThresholdEvent
is generated when the threshold is
reached.
Set the bridge address aging timer
bridge agingTime
page 10-6
Specify how often dynamically learned addresses are aged by the bridge port. Appropriately configured aging prevents packet flooding.
(continued)
Configuration Tasks
1-5
Table 1-3
Bridging Commands (continued)
Task Quick Command For Details, See. . .
Configure Spanning Tree Protocol (STP) parameters for a bridge
Enable or disable STP and set the bridge priority, the maximum age of stored configuration message information, the period
bridge stpState bridge stpPriority bridge stpMaxAge bridge stpHelloTime bridge stpForwardDelay bridge stpGroupAddress
page 10-7 to page 10-10
between the generation of messages by a root bridge, the amount of time a bridge spends in the listening and learning states, and the group address.
Display bridge port information
Display information about the bridge port, including STP
bridge port summary bridge port detail
page 11-1
configurations, in a summarized or detailed format.
Configure Spanning Tree Protocol (STP) parameters for a bridge port
Enable or disable STP on a bridge port, and set the bridge port
bridge port stpState bridge port stpCost bridge port stpPriority
page 11-8 page 11-9 page 11-10
path cost and port priority.
Set the multicast packet firewall threshold
bridge port multicastLimit
page 11-7
Suppress multicast storms and limit the rate at which multicast packets are propagated by the system.
Administer bridge port addresses
bridge port address
page 11-11
Administer the MAC address of stations connected to Ethernet and FDDI ports. This command accesses a menu from which you can list, add, remove, flush, and freeze bridge port addresses.
Use packet filters to restrict which packets are forwarded through a bridge port
bridge packetFilter
page 12-1 and following
Access a menu from which you can list packet filters, display a packet filter definition, create or edit a definition, load a definition onto the system, copy a definition, and assign or unassign a definition to a port.
Create address and port groups to use as filtering criteria
bridge packetFilter addressGroup bridge packetFilter portGroup
page 13-1 and following
Access a menu from which you can specify groups (either address groups or port groups) to use in a packet filter definition. From each menu, you can list, display, create, and delete groups. You can also add and remove address and ports to and from groups.
1-6
C
HAPTER
1: S
UPERSTACK
™ II S
WITCH
2200 A
DMINISTRATION OVERVIEW
Table 1-4
Ethernet Commands
Task Quick Command For Details, See. . .
Display Ethernet port information
Display label, status, and statistic information on Ethernet ports
ethernet summary ethernet detail
page 7-1
in a summarized or detailed format.
Label an Ethernet port
ethernet label
page 7-8
Assign a unique name to an Ethernet port. Useful for port identification when managing the system.
Set the Ethernet port state
ethernet portState
page 7-8
Enable or disable an Ethernet port, controlling whether the port sends and receives frames.
Configure Ethernet ports to be monitored by a network analyzer
Analyze data forwarded through Ethernet ports. With roving
analyzer display analyzer add analyzer remove analyzer start analyzer stop
page 9-2 to page 9-6
analysis, you set up one Ethernet port for a network analyzer attachment and set up another Ethernet port (local or remote) to be monitored. Data is copied and forwarded from the port being monitored to the network analyzer.
Configuration Tasks
1-7
Table 1-5
FDDI Commands
Task Quick Command For Details, See. . .
Display FDDI information
Display information about the system’s FDDI station, paths, MAC, and ports. MAC information is available in a summarized or detailed format.
Set FDDI station parameters
Set parameters for connection policies, the neighbor
fddi station display fddi path display fddi mac summary fddi mac detail fddi port display
fddi station connectPolicy fddi station tNotify fddi station statusReporting
page 8-2 page 8-6 page 8-18 page 8-19
page 8-3 and page 8-5
notification timer, and status reporting.
Set FDDI path parameters
Set the minimum value for the TVX timer, the minimum value for the T-Max timer, and
fddi path tvxLowerBound fddi path tmaxLowerBound fddi path maxTreq
page 8-7 page 8-8 page 8-9
the maximum value for the T-Req timer.
Set FDDI MAC parameters
Set the parameters for the frame error threshold and the not copied threshold, enable or disable LLC service, and set MAC paths.
Set FDDI port parameters
Set the parameters for the link error rate alarm threshold and the link error rate cut-off threshold, and set port paths.
Label an FDDI port
fddi mac frameErrorThreshold fddi mac notCopiedThreshold fddi mac llcService fddi mac path
fddi port lerAlarm fddi port lerCutoff fddi port path
fddi port label
page 8-16 page 8-17 page 8-18 page 8-18
page 8-20 page 8-21 page 8-23
page 8-22
Assign a unique name to an FDDI port. Useful for port identification when managing the system.
2
HOW TO USE THE A
DMINISTRATION CONSOLE
This chapter familiarizes you with user access levels of the Superstack™ II Switch 2200 Administration Console and explains how to:
Move around within the menu hierarchy to perform tasks
Set up the interface parameters
Access online help
Use scripts for performing Administration Console tasks
Exit the Administration Console

Initial User Access As the initial user, access the system at the administer level and press Return

at the password prompt. The first time you access the Administration Console, the password is null. Subsequent access is described in this chapter.

Levels of User Access

The Administration Console supports three password levels, allowing the network administrator to provide different levels of access for a range of Switch 2200 users. These access levels are described in Table 2-1.
Table 2-1 Password Access Levels
Access Level For Users Who Need to... Allows Users to...
Administer Perform system set-up and
management tasks (usually a single network administrator)
Write Perform active network
management
Read Only view system parameters Access only “display” menu items
Perform system-level administration (such as setting passwords, loading new software, and so on)
Configure network parameters (such as setting the aging time for a bridge)
(display, summary, detail)
2-2 CHAPTER 2: HOW TO USE THE ADMINISTRATION CONSOLE
Each time you access the Administration Console, the system prompts you for an access level and password, as shown here:
Select access level (read, write, administer): Password:
The passwords are stored in nonvolatile (NV ) memory. You must enter the password correctly before you are allowed to continue.
The following examples show how the top-level menu structure changes based on the level of access. For information about setting passwords, see page 4-2.
Administer Access
Example
Menu options: ------------------------------------------------------------------
Type ‘q’ to return to the previous menu or ? for help.
-------------------------------------------------------------------------------­Select a menu option (system):
Write Access
Example
Menu options: ------------------------------------------------------------------
If you have administer access, each menu contains all options. Here is the system menu for users with administer access:
display - Display the system configuration softwareUpdate - Load a new revision of system software baseline - Administer a statistics baseline consoleSpeed - Set the console serial port baud rate telnet - Administer telnet sessions password - Set the console passwords name - Set the system name time - Set the date and time screenHeight - Set the console screen height consoleLock - Allow/Disallow remote access to the console ctlKeys - Enable/Disable Ctl-X (reboot) and Ctl-C (abort) nvData - Save, restore, or reset nonvolatile data reboot - Reboot the system
If you have write access, the system menu contains a subset of the complete menu, focusing on the network, as shown here:
display - Display the system configuration baseline - Administer statistics baseline consoleSpeed - Set the console serial port baud rate name - Set the system screenHeight - Set the console screen height
Type ‘q’ to return to the previous menu or ? for help.
-------------------------------------------------------------------------------­Select a menu option (system):
Using Menus to Perform Tasks 2-3
Read Access
Example
Only the display
option in the
baseline menu
is available

Using Menus to Perform Tasks

Options
(These vary with
level of access.)
If you have read access, the system menu contains only the display options shown here:
Menu options: ------------------------------------------------------------------
display - Display the system configuration baseline - Administer statistics baseline
Type ‘q’ to return to the previous menu or ? for help.
-------------------------------------------------------------------------------­Select a menu option (system):
When you access the Administration Console, the top-level menu appears. You use the Administration Console by selecting options from this menu and from others below it. Each menu option is accompanied by a brief description. Here is the top-level menu:
Option Descriptions
Menu options: ------------------------------------------------------------------
system - Administer system-level functions ethernet - Administer Ethernet ports fddi - Administer FDDI resources bridge - Administer bridging ip - Administer IP snmp - Administer SNMP analyzer - Administer Roving Analysis script - Run a script of console commands logout - Logout of the Administration Console
Type ? for help.
-------------------------------------------------------------------------------­Select a menu option:
2-4 CHAPTER 2: HOW TO USE THE ADMINISTRATION CONSOLE
Administration
Console Menu
Structure
The following sections show the menu paths for performing tasks from the top-level menu and provide a brief description of each top-level menu option. See “Selecting Menu Options” on page 2-8 for instructions on actually using the menu system.
The following menus display the options available for users with administer access.
System Menu
From the system menu, you can view the system configuration, set up your system for management, configure Administration Console interface parameters, work with nonvolatile data, and reboot the system. (See Figure 2-1.)
Top-Level Menu system menu baseline menu
system
ethernet softwareUpdate set fddi
bridge ip snmp password telnet menu
analyzer name script time interval
logout screenHeight
display display
baseline
consoleSpeed
telnet
consoleLock ctlKeys nvData menu
nvData
reboot restore
requestedState
timeOut
save examine
reset
Figure 2-1 System-level Functions Menu Hierarchy for Administer Access
Ethernet Menu
From the ethernet menu, you can view information for and name Ethernet ports. (See Figure 2-2.) For example, to view all Ethernet port statistics, you enter ethernet at the top-level menu, and then detail at the ethernet menu.
Top-Level Menu ethernet menu
system summary
ethernet
fddi label bridge portState ip snmp analyzer script logout
Figure 2-2 Ethernet Menu Hierarchy for Administer Access
detail
Using Menus to Perform Tasks 2-5
FDDI Menu
From the fddi menu, you can view information about and configure the FDDI station, paths, MAC, and ports. (See Figure 2-3.) For example, to enable the LLC service of the FDDI MAC, you enter fddi at the top-level menu, mac at the fddi menu, and then llcService at the mac menu.
Top-Level Menu fddi menu station menu
system ethernet
fddi mac
bridge ip
snmp path menu analyzer
script tvxLowerBound logout tmaxLowerBound
stationpath
port
Figure 2-3 FDDI Menu Hierarchy for Administer Access
display connectPolicy
tNotify statusReporting
display
maxTreq
mac menu
summary detail frameErrorThreshold notCopiedThreshold llcService
path
port menu
display lerAlarm lerCutoff label
path
Bridge Menu
From the bridge menu, you can view information about and configure bridge-level parameters, including those for the Spanning Tree Protocol (STP). You can also configure the bridge at the por t level and administer packet filters. (See Figure 2-4.) For example, to set the Spanning Tree state for a bridge port, you enter bridge at the top-level menu, port at the bridge menu, and stpState at the port menu.
2-6 CHAPTER 2: HOW TO USE THE ADMINISTRATION CONSOLE
Top-Level Menu bridge menu port menu address menu
system display summary list ethernet ipFragmentation detail add fddi ipxSnapTranslation multicastLimit remove
bridge
ip agingTime stpCost flushAll snmp stpState stpPriority flushDynamic analyzer stpPriority
script stpMaxAge logout stpHelloTime packetFilter menu
addressThreshold stpState find
stpForwardDelay stpGroupAddress display
portpacketFilter
Figure 2-4 Bridging Menu Hierarchy for Administer Access
IP Menu
From the ip menu, you can view information about and configure Internet Protocol (IP) interfaces and routes. You can also administer the Address Resolution Protocol (ARP) and the Routing Information Protocol (RIP), and ping IP stations. (See Figure 2-5.) For example, to define a new IP interface, you enter ip at the top-level menu, interface at the ip menu, and then define at the interface menu.
address
list
create display delete create edit delete
load addAdress assign removeAddress unassign
addressGroupportGroup
freeze
addressGroup menu
list
portGroup menu
list display create delete addPort removePort
Top-Level Menu ip menu interface menu
system ethernet fddi bridge rip remove
ip
snmp statistics route menu analyzer
script static logout remove
interfaceroutearp
ping
display define modify
display
flush default noDefault
arp menu
display remove flush
Figure 2-5 IP Menu Hierarchy for Administer Access
Using Menus to Perform Tasks 2-7
SNMP Menu
From the snmp menu, you can configure SNMP community strings and trap reporting. (See Figure 2-6.) For example, to flush all trap reporting destinations, you enter snmp at the top-level menu, trap at the snmp menu, and then flush at the trap menu.
Top-Level Menu snmp menu trap menu
system display display ethernet community addModify fddi
bridge flush ip smtProxyTraps
snmp
analyzer script logout
trap
remove
Figure 2-6 SNMP Menu Hierarchy for Administer Access
Analyzer Menu
From the analyzer menu, you can selectively choose any Ethernet network segment attached to a Switch 2200 and monitor its activity using a network analyzer. (See Figure 2-7.) For example, to add analyzer por ts, you enter analyzer at the top-level menu, and then add at the analyzer menu.
Top-Level Menu analyzer menu
system display ethernet add fddi remove bridge start ip stop snmp
analyzer
script logout
Figure 2-7 Analyzer Menu Hierarchy for Administer Access
2-8 CHAPTER 2: HOW TO USE THE ADMINISTRATION CONSOLE
Selecting Menu
Options
You select a menu option at the selection prompt by entering its name (or enough of the name to uniquely identify it within the particular menu). For example, to access the system menu from the top-level menu, you enter:
Select a menu option: system
OR
Select a menu option: sy
Menu options are not case sensitive.
When you enter a menu option, you either go to the next menu in the hierarchy or you see information for the option you entered. The information is either a prompt or a screen display. If you enter the menu option incorrectly, you receive a prompt telling you that what you entered was not valid or was ambiguous. You must re-enter the command from the point at which it became incorrect. Expand a truncated command until it becomes unambiguous.
When a new menu appears, the selection prompt (with its choices in parentheses) changes to reflect your progression through the menus. For example, if you enter system at the top-level menu and then baseline at the system menu, the prompt changes at the next level:
Entering a
command string
Select a menu option (system/baseline):
Once you are familiar with the menu structure, instead of working your way down the menu hierarchy to a task, you can enter a string of menu options at a selection prompt to go immediately to a task. For example, the command string for setting a baseline from the top-level menu looks like this:
Select a menu option: system baseline set
The most abbreviated version of the same command string is:
Select a menu option: sy b s
When you enter a command string, you move to the last menu level or option you entered in the command string, and information relevant to that command is displayed. I t may be a menu, prompt, or screen display.
Loading...
+ 170 hidden pages