Accton Technology ES4626, ES4650 User Manual
ES4626/ES4650
Layer 3 Gigabit Switch
Management Guide
1
www.edge-core.com
Preface
ES4626/ES4650 is a routing switch that can be deployed as the core layer device for campus and
enterprise networks, or as an aggregation device for IP metropolitan area networks (MAN). The
ES4626 provides 24 fixed 1000MB port (4 of which are fixed 1000MB Combo fiber cable
port/copper cable ports) and 2 10GB XFP ports. The ES4650 provides 48 fixed 1000MB port (4 of
which are fixed 1000MB Combo fiber cable port/copper cable ports) and 2 10GB XFP ports.
ES4626/ES4650 can seamlessly support various network interfaces from 100Mb, 1000Mb to
10Gb Ethernets.
We are providing this manual for your better understanding, usage and maintenance of the
ES4626/ES4650. We strongly recommend you to read through this manual carefully before the
installation and configuration to avoid possible damage and malfunction to the switch. Thank you
for your choice and purchase of this networking product from Accton Technology Corp. We
sincerely hope our products and services satisfy you.
2
Contents
Preface 2
Contents 3
Chapter 1 Switch Management _________________________________________ 12
1.1 Management Options ____________________________________________ 12
1.1.1 Out-of-band Management____________________________________________ 12
1.1.2 In-band Management________________________________________________ 15
1.2 Management Interface____________________________________________ 21
1.2.1 CLI Interface ______________________________________________________ 21
1.2.2 WEB Interface _____________________________________________________ 28
Chapter 2 Basic Switch Configuration ____________________________________ 30
2.1 Basic Switch Configuration Commands ___________________________ 30
2.1.1 calendar set ________________________________________________________ 30
2.1.2 config _____________________________________________________________ 30
2.1.3 enable_____________________________________________________________ 31
2.1.4 disable ____________________________________________________________ 31
2.1.5 enable password ____________________________________________________ 31
2.1.6 exec timeout________________________________________________________ 32
2.1.7 exit _______________________________________________________________ 33
2.1.8 help_______________________________________________________________ 33
2.1.9 ip host ____________________________________________________________ 33
2.1.10 hostname __________________________________________________________ 34
2.1.11 uername password __________________________________________________ 34
2.1.12 uername nopassword ________________________________________________ 35
2.1.13 username access-level________________________________________________ 35
2.1.14 reload_____________________________________________________________ 35
2.1.15 set default _________________________________________________________ 36
2.1.16 setup______________________________________________________________ 36
2.1.17 language___________________________________________________________ 36
2.1.18 write______________________________________________________________ 36
2.2 Maintenance and Debug Commands ______________________________ 37
2.2.1 ping ______________________________________________________________ 37
2.2.2 Telnet_____________________________________________________________ 38
2.2.3 SSH ______________________________________________________________ 41
3
2.2.4 traceroute _________________________________________________________ 46
2.2.5 show______________________________________________________________ 47
2.2.6 debug _____________________________________________________________ 53
2.3 Configuring Switch IP Addresses _________________________________ 53
2.3.1 Configuring Switch IP Addresses Task Sequence _________________________ 53
2.3.2 Commands for Configuring Switch IP Addresses _________________________ 54
2.4 SNMP___________________________________________________________ 56
2.4.1 Introduction to SNMP _______________________________________________ 56
2.4.2 Introduction to MIB_________________________________________________ 57
2.4.3 Introduction to RMON ______________________________________________ 58
2.4.4 SNMP C onfiguration ________________________________________________ 59
2.4.5 Typical SNMP Configuration Examples_________________________________ 66
2.4.6 SNMP Tr oubl eshootin g Hel p__________________________________________ 67
2.5 Switch Upgrade__________________________________________________ 72
2.5.1 BootROM Upgrade _________________________________________________ 72
2.5.2 FTP/TFTP Upgrade _________________________________________________ 75
2.6 WEB Management _______________________________________________ 90
2.6.1 Switch Basic Configuration___________________________________________ 90
2.6.2 SNMP C onfiguration ________________________________________________ 91
2.6.3 Switch Upgrade_____________________________________________________ 93
2.6.4 Monitor and debug command _________________________________________ 95
2.6.5 Switch basic information _____________________________________________ 97
2.6.6 Switch on-off configuration ___________________________________________ 98
2.6.7 Switch maintenance _________________________________________________ 98
2.6.8 Telnet service configuration___________________________________________ 99
2.6.9 username service____________________________________________________ 99
2.6.10 Basic host configuration_____________________________________________ 100
Chapter 3 Port Configuration__________________________________________ 101
3.1 Introduction to Port _____________________________________________ 101
3.2 Port Configuration ______________________________________________ 101
3.2.1 Network Port Configuration _________________________________________ 101
3.2.2 VLAN Interface Configuration_______________________________________ 109
3.2.3 Port Mirroring Configuration_________________________________________112
3.3 Port Configuration Example _____________________________________ 114
3.4 Port Troubleshooting Help_______________________________________ 115
4
3.4.1 Monitor and Debug Commands _______________________________________115
3.4.2 Port T roubleshooting Help____________________________________________116
3.5 WEB Management ______________________________________________ 116
3.5.1 Ethenet port configuration ___________________________________________116
3.5.2 Vlan interface configuration __________________________________________118
3.5.3 Port mirroring configuration_________________________________________ 120
3.5.4 Port debug and maintenance_________________________________________ 120
Chapter 4 MAC Table Configuration ____________________________________ 123
4.1 Introduction to MAC Table_______________________________________ 123
4.1.1 Obtaining MAC Table ______________________________________________ 123
4.1.2 Forward or Filter __________________________________________________ 125
4.2 MAC Table Configuration________________________________________ 126
4.2.1 mac-address-table aging-time ________________________________________ 126
4.2.2 mac-address-table static_____________________________________________ 126
4.2.3 mac-address-table discard___________________________________________ 127
4.3 Typical Configuration Examples _________________________________ 128
4.4 Troubleshooting Help ___________________________________________ 128
4.4.1 Monitor and Debug Comm ands ______________________________________ 128
4.4.2 Troubleshooting Help_______________________________________________ 129
4.5 MAC Address Function Extension________________________________ 129
4.5.1 MAC Address Binding______________________________________________ 129
4.6 WEB Management ______________________________________________ 137
4.6.1 MAC address table configuration_____________________________________ 137
4.6.2 MAC address table configuration_____________________________________ 140
Chapter 5 VLAN Configuration ________________________________________ 145
5.1 Introduction to VLAN____________________________________________ 145
5.2 VLAN Configuration_____________________________________________ 146
5.2.1 VLAN Configuration Task Sequence __________________________________ 146
5.2.2 VLAN Configuration Commands_____________________________________ 148
5.2.3 T ypic al VL AN Application___________________________________________ 152
5.3 GVRP Configuration ____________________________________________ 154
5.3.1 GVRP Con fig ura ti on Task Sequence __________________________________ 155
5.3.2 GVRP C ommands _________________________________________________ 156
5.3.3 Typical GVRP Application___________________________________________ 158
5
5.4 VLAN Troubleshooting Help _____________________________________ 160
5.4.1 Monitor and Debug Information______________________________________ 160
5.4.2 VLAN Troubleshooting Help_________________________________________ 162
5.5 WEB Management ______________________________________________ 162
5.5.1 Vlan configuration _________________________________________________ 162
5.5.2 GVRP configuration________________________________________________ 168
5.5.3 VLAN debug and maintenance_______________________________________ 169
Chapter 6 MSTP Configuration ________________________________________ 171
6.1 MSTP Introduction______________________________________________ 171
6.1.1 MSTP Region _____________________________________________________ 171
6.1.2 Port Roles ________________________________________________________ 173
6.1.3 MSTP Load Balance________________________________________________ 173
6.2 Configuring MSTP ______________________________________________ 173
6.2.1 MSTP Configuration Task Sequence __________________________________ 173
6.2.2 MSTP Configuration Command______________________________________ 176
6.3 MSTP Example _________________________________________________ 184
6.4 MSTP Troubleshooting __________________________________________ 189
6.4.1 Monitoring And Debugging Command ________________________________ 189
6.4.2 MSTP Troubleshooting Help_________________________________________ 193
Chapter 7 IGMP Snooping Configuration ________________________________ 194
7.1 Introduction to IGMP Snooping __________________________________ 194
7.2 IGMP Snooping Configuration ___________________________________ 194
7.2.1 IGMP Snooping Configuration Task __________________________________ 194
7.2.2 IGMP Snooping Configuration Command______________________________ 196
7.3 IGMP Snooping Example ________________________________________ 199
7.4 IGMP Snooping Troubleshooting Help____________________________ 202
7.4.1 Monitor and Debug Comm ands ______________________________________ 202
7.4.2 IGMP Snooping Troubleshooting Help_________________________________ 206
7.5 Web Management_______________________________________________ 206
7.5.1 Enable IGMP Snooping on the switch _________________________________ 206
7.5.2 IGMP Snooping Configuration_______________________________________ 206
7.5.3 IGMP Snooping static multicast configuration __________________________ 208
Chapter 8 802.1X CONFIGURATION ___________________________________ 210
8.1 802.1X Introduction _____________________________________________ 210
6
8.2 802.1X Configuration____________________________________________ 211
8.2.1 802.1X Configuration Task Sequence___________________________________211
8.2.2 802.1X Configuration Comm and _____________________________________ 216
8.3 802.1X Apply Example___________________________________________ 226
8.4 802.1X Trouble Shooting ________________________________________ 227
8.4.1 802.1X Debug and Monitor Command_________________________________ 227
8.4.2 802.1X Troubleshooting _____________________________________________ 232
8.5 WEB Management ______________________________________________ 233
8.5.1 RADIUS client configuration ________________________________________ 233
8.5.2 802.1X Configuration_______________________________________________ 235
Chapter 9 ACL Configuration__________________________________________ 239
9.1 Introduction to ACL _____________________________________________ 239
9.1.1 Access list_________________________________________________________ 239
9.1.2 Access-group______________________________________________________ 239
9.1.3 Access list Action and Global Default Action____________________________ 240
9.2 ACL configuration ______________________________________________ 240
9.2.1 ACL Configuration Task Sequence____________________________________ 240
9.2.2 ACL Configuration Commands ______________________________________ 244
9.3 ACL Example___________________________________________________ 249
9.4 ACL Troubleshooting Help_______________________________________ 250
9.4.1 ACL Debug and Monitor Commands__________________________________ 250
9.4.2 ACL Troubleshooting Help __________________________________________ 252
9.5 Web Management_______________________________________________ 252
9.5.1 Add standard numeric IP ACL configuration ___________________________ 253
9.5.2 Delete standard numeric IP ACL configuration _________________________ 253
9.5.3 Extended numeric ACL configuration _________________________________ 253
9.5.4 Standard ACL name configuration____________________________________ 255
9.5.5 Extended ACL name configuration____________________________________ 256
9.5.6 Firewall configuration ______________________________________________ 256
9.5.7 ACL port binding configuration ______________________________________ 257
Chapter 10 Port Channel Configuration __________________________________ 258
10.1 Introduction to Port Channel___________________________________ 258
10.2 Port Channel Configuration____________________________________ 259
10.2.1 Port Channel Configuration Task Sequence ____________________________ 259
10.2.2 Port Channel Configuration Commands _______________________________ 260
7
10.3 Port Channel Example_________________________________________ 262
10.4 Port Channel Troubleshooting Help ____________________________ 264
10.4.1 Monitor and Debug Commands ______________________________________ 264
10.4.2 Port Channel Troubleshooting Help ___________________________________ 269
10.5 Web Management_____________________________________________ 270
10.5.1 LACP port group configuration ______________________________________ 270
10.5.2 LACP port configuration____________________________________________ 271
Chapter 11 DHCP Configuration ________________________________________ 272
11.1 Introduction to DHCP ___________________________________________ 272
11.2 DHCP Server Configuration______________________________________ 273
11.2.1 DHCP Sever Configuration Task Sequence _____________________________ 273
11.2.2 DHCP Server Configuration Commands_______________________________ 275
11.3 DHCP Relay Configuration_______________________________________ 284
11.3.1 DHCP Relay Configuration Task Sequence_____________________________ 285
11.3.2 DHCP Relay Configuration Comm and ________________________________ 285
11.4 DHCP Configuration Example____________________________________ 287
11.5 DHCP Troubleshooting Help_____________________________________ 289
11.5.1 Monitor and Debug Commands ______________________________________ 289
11.5.2 DHCP T r oublesho oting Hel p_________________________________________ 294
11.6 WEB Management ______________________________________________ 294
11.6.1 DHCP server configuration__________________________________________ 294
11.6.2 DHCP relay configuration ___________________________________________ 301
11.6.3 DHCP debugging __________________________________________________ 302
Chapter 12 SNTP Configuration ________________________________________ 304
12.1 SNTP Configuration Commands _______________________________ 304
12.1.1 sntp server________________________________________________________ 304
12.1.2 sntp poll__________________________________________________________ 304
12.1.3 clock timezone_____________________________________________________ 305
12.2 Typical SNTP Configuration Examples__________________________ 306
12.3 SNTP Troubleshooting Help ___________________________________ 306
12.3.1 Monitor and Debug Commands ______________________________________ 306
12.4 WEB Management ____________________________________________ 307
12.4.1 SNTP/NTP server configuration_________________________________________ 307
12.4.2 Request interval configuration __________________________________________ 307
8
12.4.3 Time difference _______________________________________________________ 308
12.4.4 Show sntp ___________________________________________________________ 308
Chapter 13 QoS Configuration _________________________________________ 309
13.1 QoS__________________________________________________________ 309
13.1.1 Introduction to QoS ________________________________________________ 309
13.1.2 QoS Configuration __________________________________________________311
13.1.3 QoS Example______________________________________________________ 325
13.1.4 QoS Tr oubles hootin g Hel p___________________________________________ 327
13.1.5 Web Management__________________________________________________ 333
13.2 PBR__________________________________________________________ 345
13.2.1 PBR Introduction__________________________________________________ 345
13.2.2 PBR Configuration_________________________________________________ 345
13.2.3 PBR Example _____________________________________________________ 349
Chapter 14 L3 Forward Configuration ____________________________________ 351
14.1 Layer3 Interface ______________________________________________ 351
14.1.1 Introduction to Layer3 Interface _____________________________________ 351
14.1.2 Layer3 interface configuration _______________________________________ 352
14.2 IP Forwarding ________________________________________________ 353
14.2.1 Introduction to IP Forwarding _______________________________________ 353
14.2.2 IP Route Aggregation Configuration __________________________________ 353
14.2.3 IP Forwarding Troubleshooting Help__________________________________ 354
14.3 ARP__________________________________________________________ 356
14.3.1 Introduction to ARP________________________________________________ 356
14.3.2 ARP configuration _________________________________________________ 357
14.3.3 ARP Forwarding Troubleshooting Help________________________________ 358
Chapter 15 Routing Protocol Configuration________________________________ 361
15.1 Route Table __________________________________________________ 361
15.2 Static Route __________________________________________________ 362
15.2.1 Introduction to Static Route _________________________________________ 362
15.2.2 Introduction to Default Route________________________________________ 363
15.2.3 Static Route Config uration __________________________________________ 363
15.2.4 Configuration Scenario _____________________________________________ 366
15.2.5 Tr oubleshooting Help_______________________________________________ 367
15.3 RIP __________________________________________________________ 367
15.3.1 Introduction to RIP ________________________________________________ 367
9
15.3.2 RIP Configuration _________________________________________________ 369
15.3.3 Typical RIP Scenario _______________________________________________ 385
15.3.4 RIP Troubleshooting Help ___________________________________________ 387
15.4 OSPF ________________________________________________________ 389
15.4.1 Introduction to OSPF_______________________________________________ 389
15.4.2 OSPF Configuration________________________________________________ 392
15.4.3 Typical OSPF Scenario______________________________________________ 417
15.4.4 OSPF Troubleshooting Help _________________________________________ 424
15.5 Web Management_____________________________________________ 433
15.5.1 Static route _______________________________________________________ 433
15.5.2 RIP______________________________________________________________ 434
15.5.3 OSPF ____________________________________________________________ 438
Chapter 16 Multicast Protocol Configuration _______________________________ 447
16.1 Multicast Protocol Overview ___________________________________ 447
16.1.1 Introduction to Multicast____________________________________________ 447
16.1.2 Multicast Address__________________________________________________ 448
16.1.3 IP Multicast Packets Forwarding _____________________________________ 449
16.1.4 Application of Multicast_____________________________________________ 449
16.2 Common Multicast Configurations _____________________________ 450
16.2.1 Common Multicast Configuration Commands __________________________ 450
16.3 PIM-DM ______________________________________________________ 451
16.3.1 Introduction to PIM-DM____________________________________________ 451
16.3.2 PIM-DM Configuration_____________________________________________ 452
16.3.3 Typical PIM-DM Scenario___________________________________________ 454
16.3.4 PIM-DM Tr oublesho o ting Help ______________________________________ 455
16.4 PIM-SM_______________________________________________________ 459
16.4.1 Introduction to PIM-SM ____________________________________________ 459
16.4.2 PIM-SM Configuration _____________________________________________ 460
16.4.3 Typical PIM-SM Scenario ___________________________________________ 465
16.4.4 PIM-SM Troubleshooting Help_______________________________________ 467
16.5 DVMRP_______________________________________________________ 472
16.5.1 Introduction to DVMRP ____________________________________________ 472
16.5.2 DVMRP configuration ______________________________________________ 473
16.5.3 Typical DVMRP Scenario ___________________________________________ 480
16.5.4 DVMRP Troubleshooting Help _______________________________________ 480
10
16.6 IGMP_________________________________________________________ 485
16.6.1 Introduction to IGMP ______________________________________________ 485
16.6.2 IGMP configuration ________________________________________________ 486
16.6.3 Typical IGMP Scenario _____________________________________________ 492
16.6.4 IGMP Troubleshooting Help _________________________________________ 492
16.7 web Management _____________________________________________ 495
16.7.1 Multicast common configuration _____________________________________ 495
16.7.2 PIM-DM configuration _____________________________________________ 496
16.7.3 PIM-SM configuration______________________________________________ 496
16.7.4 DVMRP configuration ______________________________________________ 498
16.7.5 IGMP configuration ________________________________________________ 500
16.7.6 Multicast inspect and debug _________________________________________ 501
Chapter 17 VRRP Configuration ________________________________________ 503
17.1 Introduction to VRRP__________________________________________ 503
17.2 VRRP Configuration___________________________________________ 504
17.2.1 VRRP Configuration Task Sequence __________________________________ 504
17.2.2 VRRP Configuration Commands _____________________________________ 505
17.2.3 Typical V RRP Application___________________________________________ 510
17.2.4 VRRP Troubleshooting Help__________________________________________511
Chapter 18 Cluster Network Management ________________________________ 514
18.1 Introduction to cluster network management____________________ 514
18.2 Basic Cluster Network Management Configuration ______________ 515
18.2.1 Cluster Network Management Configur ation Sequence __________________ 515
18.2.2 Cluster Configuration Commands ____________________________________ 517
11
Chapter 1 Switch Management
1.1 Management Options
After purchasing the switch, the user needs to configure the switch for network
management. ES4626/ES4650 provides two management options: in-band management
and out-of-band management.
1.1.1 Out-of-band Management
Out-of-band management is the management through Console interface. Generally,
the user will use out-of-band management for the initial switch configuration, or when
in-band management is not available. For instance, the user must assign an IP address to
the switch via the Console interface to be able to access the switch through Telnet.
The procedures for managing the switch via Console interface are listed below:
Step 1: setting up the environment:
Connect with serial port
Fig 1-1 Out-of-band Management Configuration Environment
As shown in Fig 1-1, the serial port (RS-232) is connected to the switch with the serial
cable provided. The table below lists all the devices used in the connection.
Device Name Description
PC machine Has functional keyboard and RS-232, with terminal
emulator installed, such as HyperTerminal included in
Windows 9x/NT/2000/XP.
12
Serial port cable One end attach to the RS-232 serial port, the other end to
the Console port.
ES4626/ES4650 Functional Console port required.
Step 2 Entering the HyperTerminal
Open the HyperTerminal included in Windows after the connection established. The
example below is based on the HyperTerminal included in Windows XP.
1) Click Start menu - All Programs – Accessories – Communication - HyperTerminal.
Fig 1-2 Opening HyperTerminal (1)
2) Type a name for opening HyperTerminal, such as “Switch”.
Fig 1-3 Opening HyperTerminal (2)
3) In the “Connecting with” drop-list, select the RS-232 serial port used by the PC, e.g.
COM1, and click “OK”.
13
Fig 1-4 Opening HyperTerminal (3)
4) COM1 property appears, select “9600” for “Baud rate”, “8” for “Data bits”, “none” for
“Parity checksum”, “1” for stop bit and “none” for traffic control; or, you can also click
“Revert to default” and click “OK”.
Fig 1-5 Opening HyperTerminal (4)
Step 3 Entering switch CLI interface:
14
Power on the switch. The following appears in the HyperTerminal windows, that is the
CLI configuration mode for ES4626.
ES4626 Management Switch
Copyright (c) 2001-2004 by Accton Technology Corporation.
All rights reserved.
Reset chassis ... done.
Testing RAM...
134,217,728 RAM OK.
Initializing...
Attaching to file system ... done.
Loading nos.img ... done.
Starting at 0x10000...
Current time is WED APR 20 09: 37: 52 2005
ES4626 Series Switch Operating System, Software Version ES4626 1.1.0.0,
Copyright (C) 2001-2006 by Accton Technology Corporation
http: //www.edge-core. com.
ES4626 Switch
26 Ethernet/IEEE 802.3 interface(s)
Press ENTER to start session
The user can now enter commands to manage the switch. For a detailed description for
the commands, please refer to the following chapters.
1.1.2 In-band Management
In-band management refers to the management by login to the switch using Telnet.
In-band management enables management of the switch for some devices attached to
15
the switch. In the case when in-band management fails due to switch configuration
changes, out-of-band management can be used for configuring and managing the switch.
1.1.2.1 Management via Telnet
To manage the switch with Telnet, the following conditions should be met:
1) Switch has an IP address configured
2) The host IP address (Telnet client) and the switch’s VLAN interface IP address is
in the same network segment.
3) If not 2), Telnet client can connect to an IP address of the switch via other devices,
such as a router.
ES4626/ES4650 is a Layer 3 switch that can be configured with several IP addresses.
The following example assumes the shipment status of the switch where only VLAN1
exists in the system.
The following describes the steps for a Telnet client to connect to the switch’s VLAN1
interface by Telnet.
connect with serial
port cable
Fig 1-6 Manage the switch by Telnet
Step 1: Configure the IP addresses for the switch
First is the configuration of host IP address. This should be within the same network
segment as the switch VLAN1 interface IP address. Suppose the switch VLAN interface IP
address 10.1.128.251/24. Then, a possible host IP address is 10.1.128.252/24. Run “ping
10.1.128.251” from the host and verify the result, check for reasons if ping failed.
The IP address configuration commands for VLAN1 interface are listed below. Before
in-band management, the switch must be configured with an IP address by out-of-band
16
management (i.e. Console mode), The configuration commands are as follows (All switch
configuration prompts are assumed to be “switch” hereafter if not otherwise specified):
Switch>
Switch>en
Switch#config
Switch(Config)#interface vlan 1
Switch(Config-If-Vlan1)#ip address 10.1.128.251 255.255.255.0
Switch(Config-If-Vlan1)#no shutdown
Step 2: Run Telnet Client program.
Run Telnet client program included in Windows with the specified Telnet target.
Fig 1-7 Run telnet client program included in Windows
Step 3: Login to the switch
Login to the Telnet configuration interface. Valid login name and password are required,
otherwise the switch will reject Telnet access. This is a method to protect the switch from
unauthorized access. As a result, when Telnet is enabled for configuring and managing
the switch, username and password for authorized Telnet users must be configured with
the following command:
telnet-user <user> password {0|7} <password>.
Assume an authorized user in the switch has a username of “test”, and password of “test”,
the configuration procedure should like the following:
Switch
>en
Switch#config
Switch(Config)#telnet-user test password 0 test
Enter valid login name and password in the Telnet configuration interface, Telnet user
17
will be able to enter the switch’s CLI configuration interface. The commands used in the
Telnet CLI interface after login is the same as in that in the Console interface.
Fig 1-8 Telnet Configuration Interface
1.1.2.2 Management via HTTP
To manage the switch via HTTP, the following conditions should be met:
1) Switch has an IP address configured
2) The host IP address (HTTP client) and the switch’s VLAN interface IP address
are in the same network segment;
3) If 2) is not met, HTTP client should connect to an IP address of the switch via
other devices, such as a router.
Similar to management via Telnet, as soon as the host succeeds to ping an IP
address of the switch and to type the right login password, it can access the switch via
HTTP. The configuration sequence is as below:
Step 1: Configure the IP addresses for the switch and start the HTTP function on the
switch.
For configuring the IP address on the switch through out-of-band management, see
the relevant chapter.
To enable the WEB configuration, users should type the CLI command ip http server
in the global mode as below:
Switch
Switch#config
>en
18
Switch(Config)#ip http server
Step 2: Run HTTP protocol on the host.
Open the Web browser on the host and type the IP address of the switch. Or run
directly the HTTP protocol on the Windows. For example, the IP address of the switch is
“10.1.128.251”.
Fig 1-9 Run HTTP Protocol
Step 3: Logon to the switch
To logon to the HTTP configuration interface, valid login user name and password are
required; otherwise the switch will reject HTTP access. This is a method to protect the
switch from the unauthorized access. Consequently, in order to configure the switch via
HTTP, username and password for authorized HTTP users must be configured with the
following command in the global mode:
username <username> password <show_flag> <password>. Suppose an
authorized user in the switch has a username as “test”, and password as “test”. The
configuration procedure is as below:
Switch
>en
Switch#config
Switch(Config)# username test password 0 test
The Web login interface is as below:
19
Fig 1-10 Web Login Interface
Input the right username and password, and then the main Web configuration
interface is shown as below.
20
Fig 1-11 Main Web Configuration Interface
1.2 Management Interface
1.2.1 CLI Interface
CLI interface is familiar to most users. As aforementioned, out-of-band management
and Telnet login are all performed through CLI interface to manage the switch.
CLI Interface is supported by Shell program, which consists of a set of configuration
commands. Those commands are categorized according to their functions in switch
configuration and management. Each category represents a different configuration mode.
The Shell for the switch is described below:
z Configuration Modes
z Configuration Syntax
z Shortcut keys
z Help function
21
A
z Input verification
z Fuzzy match support
1.2.1.1 Configuration Modes
User Mode
Admin Mode
Global Mode
Interface Mode
Fig 1-12 Shell Configuration Modes
Vlan Mode
DHCP address pool
configuration mode
Route configuration
mode
CL configuration
mode
1.2.1.1.1 User Mode
On entering the CLI interface, entering user entry system first. If as common user, it is
defaulted to User Mode. The prompt shown is “Switch>”, the symbol “>” is the prompt for
User Mode. When disable command is run under Admin Mode, it will also return to the
User Mode.
Under User Mode, no configuration to the switch is allowed, only clock time and
version information of the switch can be queries.
1.2.1.1.2 Admin Mode
To enter Under Admin Mode see the following: In user entry system, if as Admin user,
it is defaulted to Admin Mode. Admin Mode prompt “Switch#” can be entered under the
User Mode by running the enable command and entering corresponding access levels
admin user password, if a password has set. Or, when exit command is run under Global
22
Mode, it will also return to the Admin Mode. ES4626/ES4650 also provides a shortcut key
sequence "Ctrl+z”, this allows an easy way to exit to Admin Mode from any configuration
mode (except User Mode).
Under Admin Mode, when disable command is run, it will return to User Mode. When
exit command is run, it will exit the entry and enter user entry system direct. Next users
can reenter the system on entering corresponding user name and password.
Under Admin Mode, the user can query the switch configuration information,
connection status and traffic statistics of all ports; and the user can further enter the Global
Mode from Admin Mode to modify all configurations of the switch. For this reason, a
password must be set for entering Admin mode to prevent unauthorized access and
malicious modification to the switch.
1.2.1.1.3 Global Mode
Type the config command under Admin Mode will enter the Global Mode prompt
“Switch(Config)#”. Use the exit command under other configuration modes such as
Interface Mode, VLAN mode will return to Global Mode.
The user can perform global configuration settings under Global Mode, such as MAC
Table, Port Mirroring, VLAN creation, IGMP Snooping start, GVRP and STP, etc. And the
user can go further to Interface Mode for configuration of all the interfaces.
1.2.1.1.3.1 Interface Mode
Use the interface command under Global Mode can enter the interface mode
specified. ES4626/ES4650 provides three interface type: VLAN interface, Ethernet port
and port-channel, and accordingly the three interface configuration modes.
Interface Type Entry Prompt Operates Exit
VLAN
Interface
Type interface
vlan <Vlan-id>
command under
Global Mode.
Switch(Config-IfVlanx)#
Configure
switch IPs, etc
Use the exit
command to
return to
Global Mode.
Ethernet Port Type interface
ethernet
<interface-list>
command under
Global Mode.
port-channel Type interface Switch(Config-if- Configure Use the exit
Switch(Configethernetxx)#
23
Configure
supported
duplex mode,
speed, etc.
of Ethernet
Port.
Use the exit
command to
return to
Global Mode.
port-channel
<port-channel-nu
mber> command
under Global
Mode.
port-channelx)# port-channel
related
settings such
as duplex
mode, speed,
etc.
command to
return to
Global Mode.
1.2.1.1.3.2 VLAN Mode
Using the vlan <vlan-id> command under Global Mode can enter the corresponding
VLAN Mode. Under VLAN Mode the user can configure all member ports of the
corresponding VLAN. Run the exit command to exit the VLAN Mode to Global Mode.
1.2.1.1.3.3 DHCP Address Pool Mode
Type the ip dhcp pool <name> command under Global Mode will enter the DHCP
Address Pool Mode prompt “Switch(Config-<name>-dhcp)#”. DHCP address pool
properties can be configured under DHCP Address Pool Mode. Run the exit command to
exit the DHCP Address Pool Mode to Global Mode.
1.2.1.1.3.4 Route Mode
Routing
Protocol
RIP
Routing
Protocol
OSPF
Routing
Protocol
Entry Prompt Operates Exit
Type router
rip
command
under
Global
Mode.
Type router
ospf
command
under
Switch(Config-Router-Rip)# Configure
RIP protocol
parameters.
Switch(Config-Router-Ospf)# Configure
OSPF
protocol
parameters.
Use the
“exit”
command to
return to
Global
Mode.
Use the
“exit”
command to
return to
Global
Mode.
24
Global
Mode.
1.2.1.1.3.5 ACL Mode
ACL type Entry Prompt Operates Exit
Standard IP
ACL Mode
Extended IP
ACL Mode
Type
access-list ip
command
under Global
Mode.
Type
access-list ip
command
under Global
Mode.
Switch(Config-Std-Nacla)#
Switch(Config-Ext-Naclb)#
Configure
parameters
for
Standard
IP ACL
Mode
Configure
parameters
for
Extended
IP ACL
Mode
Use the “exit”
command to
return to
Global Mode.
Use the “exit”
command to
return to
Global Mode.
1.2.1.2 Configuration Syntax
ES4626/ES4650 provides various configuration commands. Although all the
commands are different, they all abide by the syntax for ES4626/ES4650 configuration
commands. The general command format of ES4626/ES4650 is shown below:
cmdtxt <variable> { enum1 | … | enumN } [option]
Conventions: cmdtxt in bold font indicates a command keyword; <variable> indicates a
variable parameter; {enum1 | … | enumN } indicates a mandatory parameter that should
be selected from the parameter set enum1~enumN; and the square bracket ([ ]) in
[option] indicate a optional parameter. There may be combinations of “< >”, “{ }” and “[ ]”
in the command line, such as [<variable>],{enum1 <variable>| enum2}, [option1
[option2]], etc.
Here are examples for some actual configuration commands:
y show calendar, no parameters required. This is a command with only a
keyword and no parameter, just type in the command to run.
y vlan <vlan-id>, parameter values are required after the keyword.
y duplex {auto|full|half},user can enter duplex half, duplex full or duplex
auto for this command.
y snmp-server community <string>{ro|rw}, the followings are possible:
snmp-server community <string> ro
snmp-server community <string> rw
25
1.2.1.3 Shortcut Key Support
ES4626/ES4650 provides several shortcut keys to facilitate user configuration, such
as up, down, left, right and Blank Space. If the terminal does not recognize Up and Down
keys, ctrl+p and ctrl+n can be used instead.
Key(s) Function
BackSpace Delete a character before the cursor, and the cursor moves back.
Up “↑” Show previous command entered. Up to ten recently entered
commands can be shown.
Down “↓” Show next command entered. When use the Up key to get
previously entered commands, you can use the Down key to return
to the next command
Left “←” The cursor move one character to
the left.
Right “→” The cursor moves one character to
the right.
Ctr+p The same as Up key “↑”.
Ctr+n The same as Down key “↓”.
Ctr+b The same as Left key “←”.
Ctr+f The same as Right key “→”.
Ctr+z Return to the Admin Mode directly from the other configuration
modes ( except User Mode).
Ctr+c Break the ongoing command process, such as ping or other
command execution.
Tab When a string for a command or keyword is entered, the Tab can
be used to complete the command or keyword if there is no
conflict.
You can use the Left and
Right key to modify an
entered command.
1.2.1.4 Help function
There are two ways in ES4626/ES4650 for the user to access help information: the
“help” command and the “?”.
Access to Help Usage and function
Help Under any command line prompt, type in “help” and press Enter will get
a brief description of the associated help system.
26
“?” 1. Under any command line prompt, enter “?” to get a command
list of the current mode and related brief description.
2. Enter a “?” after the command keyword with a embedded
space. If the position should be a parameter, a description of
that parameter type, scope, etc, will be returned; if the position
should be a keyword, then a set of keywords with brief
description will be returned; if the output is “<cr>”, then the
command is complete, press Enter to run the command.
3. A “?” immediately following a string. This will display all the
commands that begin with that string.
1.2.1.5 Input verification
1.2.1.5.1 Returned Information: success
All commands entered through keyboards undergo syntax check by the Shell.
Nothing will be returned if the user entered a correct command under corresponding
modes and the execution is successful.
1.2.1.5.2 Returned Information: error
Output error message Explanation
Unrecognized command or illegal
parameter!
Ambiguous command At least two interpretations is possible basing on
Invalid command or parameter The command is recognized, but no valid
This command is not exist in current
mode
Please configure precursor
command "*" at first !
syntax error : missing '"' before the
end of command line!
The entered command does not exist, or there is
error in parameter scope, type or format.
the current input.
parameter record is found.
The command is recognized, but this command
can not be used under current mode.
The command is recognized, but the
prerequisite command has not been configured.
Quotation marks are not used in pairs.
1.2.1.6 Fuzzy match support
27
ES4626/ES4650 Shell support fuzzy match in searching command and keyword.
Shell will recognize commands or keywords correctly if the entered string causes no
conflict.
For example:
1. For Admin configuration command “show interfaces status ethernet 1/1”,
typing “sh in status e 1/1” will work
2. However, for Admin configuration command “show running-config”, the
system will report a “> Ambiguous command!” error if only “show r” is
entered, as Shell is unable to tell whether it is “show rom” or “show
running-config”. Therefore, Shell will only recognize the command if “sh ru”
is entered.
1.2.2 WEB Interface
ES4626/ES4650 has HTTP Web management function. Users can configure and
examine the switch through a Web browser.
By conducting the following configurations, users can realize the Web management.
1. Configure valid IP address, network mask and default gateway for the switch.
See 5.3
2. Configure management user name and password.
3. Establish a connection to the switch through Web browser. Input username and
password. Then users can manage the switch through Web browser.
1.2.2.1 Main page
After passing the authentication by inputting username and password, users can see
the management page as below. On the management page, the main menu is on the left
and the system information and parameters are shown on the right. Click the links on the
main menu, users can see the corresponding configuration statistics.
28
1.2.2.2 Interface Panel
On the top of the management page, the switch interface shows the current status of
the ports. Click the ports which are in the state of “Link Up”, the port statistics are shown
on the right.
29
Chapter 2 Basic Switch Configuration
2.1 Basic Switch Configuration Commands
The basic configuration for the switch including all the commands for entering and
exiting the Admin Mode and Interface Mode, setting and displaying switch clock and
displaying system version information.
2.1.1 calendar set
Command: calendar set <HH> <MM> <SS> {<DD> <MON> <YYYY> | <MON> <DD>
<YYYY>}
Function: Set system date and time.
Parameter: <HH> <MM> <SS> is the current time, and the valid scope for HH is 0 to 23,
MM and SS 0 to 59; <DD> <MON> <YYYY> or <MON> <DD> <YYYY> is the current date,
month and year or the current year, month and date, and the valid scope for YYYY is
1970~2100, MON meaning month, and DD between 1 to 31.
Command mode: Admin Mode
Default: upon first time start-up, it is defaulted to 2001.1.1 0: 0: 0.
Usage guide: The switch can not continue timing with power off, hence the current date
and time must be first set at environments where exact time is required.
Example: To set the switch current date and time to 2002.8.1 23: 0: 0:
Switch# calendar set 23 0 0 august 1 2002Related command: show calendar
2.1.2 config
Command: config [terminal]
Function: Enter Global Mode from Admin Mode.
Parameter: [terminal] indicates terminal configuration.
Command mode: Admin Mode
Example:
Switch#config
30
Loading...