Allied Telesis AT-S100 User Manual

Management Software
AT-S100
User’s Guide
For use with the AT-9000/28 and AT-9000/28SP Managed Layer 2 GE ecoSwitches
Version 1.0.3
613-001138 Rev. A
All rights reserved. No part of this publication may be reproduced without prior written permission from Allied Telesis, Inc.
Allied Telesis and the Allied Telesis logo are trademarks of Allied Telesis, Incorporated. All other product names, company names, logos or other designations mentioned herein are trademarks or registered trademarks of their respective owners.
Allied Telesis, Inc. reserves the right to make changes in specifications and other information contained in this document without prior written notice. The information provided herein is subject to change without notice. In no event shall Allied Telesis, Inc.be liable for any incidental, special, indirect, or consequential damages whatsoever, including but not limited to lost profits, arising out of or related to this manual or the information contained herein, even if Allied Telesis, Inc. has been advised of, known, or should have known, the possibility of such damages.

Contents

Preface ............................................................................................................................................................ 11
Document Conventions .................................................................................................................................... 12
Where to Find Web-based Guides ................................................................................................................... 13
Contacting Allied Telesis .................................................................................................................................. 14
Online Support ........................................................................................................................................... 14
Email and Telephone Support.................................................................................................................... 14
Warranty..................................................................................................................................................... 14
Returning Products .................................................................................................................................... 14
Sales or Corporate Information .................................................................................................................. 14
Management Software Updates................................................................................................................. 14
Chapter 1: Getting Started with the Command Line Interface .................................................................. 15
Introducing the Command Modes .................................................................................................................... 16
Privileged Executive Command Mode ....................................................................................................... 18
Configuration Terminal Mode..................................................................................................................... 19
Interface Configuration Command Mode ................................................................................................... 20
VLAN Configuration Command Mode........................................................................................................ 21
Line Mode Commands ............................................................................................................................... 22
Starting the Command Line Interface............................................................................................................... 23
Formatting Commands ..................................................................................................................................... 24
Command Line Interface Features............................................................................................................. 24
Command Formatting Conventions ........................................................................................................... 24
Specifying an Interface............................................................................................................................... 24
Command Line Syntax Conventions.......................................................................................................... 25
Chapter 2: Configuring the AT-S100 Software ........................................................................................... 27
Setting the Switch............................................................................................................................................. 28
Assigning an IP Address............................................................................................................................ 28
Setting DHCP............................................................................................................................................. 29
Setting a Gateway Address........................................................................................................................ 29
Setting the Network Time........................................................................................................................... 29
Increasing Frame Size (Jumbo Frames).................................................................................................... 31
Saving the Configuration............................................................................................................................ 31
Adding a User Name and Password .......................................................................................................... 31
Displaying and Setting MAC Addresses .................................................................................................... 32
Rebooting the Switch ................................................................................................................................. 35
Resetting Switch to Factory Default Values ............................................................................................... 35
Upgrading or Downgrading Software ......................................................................................................... 35
Uploading an Image File ............................................................................................................................ 37
Displaying and Saving Configuration Files................................................................................................. 38
Copying Configuration Files ....................................................................................................................... 39
Uploading and Downloading Configuration Files ....................................................................................... 39
Creating VLANs ......................................................................................................................................... 40
Setting the Ports ............................................................................................................................................... 43
Displaying Port Ethernet Statistics ............................................................................................................. 43
Setting Port Mirroring ................................................................................................................................. 43
3
Contents
Setting Port Speed and Duplex Mode ........................................................................................................ 44
Enabling and Disabling Ports ..................................................................................................................... 45
Setting MDI and MDIX................................................................................................................................ 45
Setting Port Security................................................................................................................................... 46
Creating Static Trunks ................................................................................................................................49
Enabling Backpressure............................................................................................................................... 50
Enabling Flow Control ................................................................................................................................ 50
Preventing Broadcast Storms.....................................................................................................................51
Configuring Protocols........................................................................................................................................53
Setting GVRP ............................................................................................................................................. 53
Enabling IGMP Snooping ........................................................................................................................... 55
Setting the Link Access Control Protocol (LACP)....................................................................................... 56
Setting 802.1x Port Authentication ............................................................................................................. 56
Configuring RADIUS Authentication...........................................................................................................58
Setting Simple Network Management Protocol (SNMP) ............................................................................ 59
Setting the Secure Shell .............................................................................................................................62
Setting STP and RSTP............................................................................................................................... 62
Configuring 802.1p Class of Service .......................................................................................................... 67
Section I: Command Modes .....................................................................................69
Chapter 3: Privileged Executive Mode Commands .................................................................................... 71
CLEAR MAC ADDRESS-TABLE DYNAMIC..................................................................................................... 73
CLEAR MAC ADDRESS-TABLE MULTICAST................................................................................................. 75
CLEAR MAC ADDRESS-TABLE STATIC ........................................................................................................77
CONFIGURE TERMINAL ................................................................................................................................. 79
COPY................................................................................................................................................................ 81
COPY A.B.C.D ..................................................................................................................................................82
COPY DEFAULT.CFG ...................................................................................................................................... 84
CP ..................................................................................................................................................................... 86
DOWNLOAD TFTP ...........................................................................................................................................87
EXIT .................................................................................................................................................................. 88
LOGOUT ........................................................................................................................................................... 89
SHOW INTERFACE ......................................................................................................................................... 90
SHOW MAC ADDRESS-TABLE ....................................................................................................................... 92
SHOW MAC ADDRESS-TABLE AGEING-TIME ..............................................................................................94
SHOW MAC ADDRESS-TABLE DYNAMIC .....................................................................................................96
SHOW MAC ADDRESS-TABLE INTERFACE.................................................................................................. 98
SHOW MAC ADDRESS-TABLE STATIC ....................................................................................................... 100
SHOW MAC ADDRESS-TABLE VLAN........................................................................................................... 102
SHOW RUNNING-CONFIG INTERFACE.......................................................................................................104
SHOW SPANNING-TREE .............................................................................................................................. 106
SHOW STATIC-CHANNEL-GROUP .............................................................................................................. 109
SHOW USER-PRIORITY................................................................................................................................ 110
SYSTEM FACTORY-RESET...........................................................................................................
SYSTEM REBOOT ......................................................................................................................................... 112
UPLOAD TFTP ............................................................................................................................................... 113
............... 111
Chapter 4: Configuration Terminal Mode Commands .............................................................................. 115
CLOCK SUMMER-TIME RECURRING ..........................................................................................................117
CLOCK TIMEZONE ........................................................................................................................................ 119
CRYPTO KEY GENERATE USERKEY .......................................................................................................... 121
DOT1X SYSTEM-AUTH-CTRL....................................................................................................................... 123
ENABLE PASSWORD.................................................................................................................................... 124
ENABLE SECRET .......................................................................................................................................... 125
4
AT-S100 Management Software User’s Guide
EXIT................................................................................................................................................................ 126
HELP .............................................................................................................................................................. 127
HOSTNAME ................................................................................................................................................... 128
INTERFACE ................................................................................................................................................... 129
IP IGMP SNOOPING...................................................................................................................................... 131
IP ROUTE....................................................................................................................................................... 132
IP SSH RSA KEYPAIR-NAME ....................................................................................................................... 133
IP SSH VERSION........................................................................................................................................... 134
LINE CONSOLE ............................................................................................................................................. 135
LINE VTY........................................................................................................................................................ 136
MAC ADDRESS-TABLE AGEING-TIME ........................................................................................................ 138
MAC ADDRESS-TABLE STATIC DISCARD.................................................................................................. 139
MAC ADDRESS-TABLE STATIC FORWARD ............................................................................................... 141
MLS QOS ....................................................................................................................................................... 143
NTP AUTHENTICATE.................................................................................................................................... 145
NTP AUTHENTICATION-KEY ....................................................................................................................... 146
NTP SERVER................................................................................................................................................. 148
NTP TRUSTED-KEY ...................................................................................................................................... 150
SHOW LIST.................................................................................................................................................... 151
SHOW RUNNING-CONFIG ........................................................................................................................... 153
SHOW RUNNING-CONFIG COMMUNITY-LIST ........................................................................................... 158
SHOW RUNNING-CONFIG INTERFACE ...................................................................................................... 160
USERNAME ................................................................................................................................................... 162
Chapter 5: Interface Configuration Mode Commands ............................................................................. 163
CHANNEL-GROUP ........................................................................................................................................ 165
DOT1X PORT-CONTROL.............................................................................................................................. 166
EXIT................................................................................................................................................................ 167
FLOW CONTROL BACKPRESSURE ............................................................................................................ 168
FLOW CONTROL RECEIVE .......................................................................................................................... 169
FLOW CONTROL SEND................................................................................................................................ 170
IP ADDRESS.................................................................................................................................................. 171
IP ADDRESS DHCP....................................................................................................................................... 173
LACP SYSTEM-PRIORITY ............................................................................................................................ 174
MDIX............................................................................................................................................................... 175
MIRROR INTERFACE DIRECTION............................................................................................................... 176
MTU................................................................................................................................................................ 178
SHOW RUNNING-CONFIG INTERFACE ...................................................................................................... 179
SHUTDOWN .................................................................................................................................................. 181
SPEED ........................................................................................................................................................... 182
STATIC-CHANNEL-GROUP ...........................................................................................................
STORM-CONTROL........................................................................................................................................ 185
SWITCHPORT ACCESS VLAN ..................................................................................................................... 187
SWITCHPORT MODE TRUNK ...................................................................................................................... 188
SWITCHPORT TRUNK ALLOWED VLAN ..................................................................................................... 190
TRAFFIC-CLASS-TABLE USER-PRIORITY NUM-TRAFFIC-CLASSES ...................................................... 192
USER-PRIORITY ........................................................................................................................................... 193
............... 184
Section II: Advanced Configuration ...................................................................... 195
Chapter 6: 802.1x Access Control Commands ......................................................................................... 197
DOT1X PORT-CONTROL.............................................................................................................................. 198
DOT1X SYSTEM-AUTH-CTRL ...................................................................................................................... 199
LOGIN REMOTELOCAL ................................................................................................................................ 200
RADIUS-SERVER HOST ............................................................................................................................... 201
5
Contents
RADIUS-SERVER KEY .................................................................................................................................. 202
SHOW DOT1X ................................................................................................................................................ 203
SHOW DOT1X ALL ........................................................................................................................................ 204
SHOW DOT1X INTERFACE .......................................................................................................................... 207
SHOW DOT1X STATISTICS INTERFACE..................................................................................................... 209
Chapter 7: GVRP Commands ..................................................................................................................... 211
SET GVRP ...................................................................................................................................................... 212
SET GVRP APPLICANT .................................................................................................................................213
SET GVRP DYNAMIC-VLAN-CREATION ...................................................................................................... 214
SET GVRP REGISTRATION ..........................................................................................................................215
SET GVRP TIMER.......................................................................................................................................... 217
Chapter 8: Port Security Commands .........................................................................................................219
SWITCHPORT PORT-SECURITY MAC-ADDRESS ...................................................................................... 220
SWITCHPORT PORT-SECURITY MAXIMUM ............................................................................................... 222
SWITCHPORT PORT-SECURITY MODE......................................................................................................223
SWITCHPORT PORT-SECURITY VIOLATION .............................................................................................225
Chapter 9: Simple Network Management Protocol (SNMP) Commands ................................................227
SNMP-SERVER COMMUNITY.......................................................................................................................228
SNMP-SERVER CONTACT ........................................................................................................................... 230
SNMP-SERVER ENABLE ..............................................................................................................................232
SNMP-SERVER GROUP ............................................................................................................................... 233
SNMP-SERVER HOST...................................................................................................................................235
SNMP-SERVER USER...................................................................................................................................237
SNMP-SERVER USER REMOTE ..................................................................................................................239
SNMP-SERVER VIEW ...................................................................................................................................241
Chapter 10: Spanning Tree Protocol (STP) Commands ...........................................................................243
SHOW SPANNING-TREE .............................................................................................................................. 244
SPANNING-TREE ENABLE FORWARD........................................................................................................ 247
SPANNING-TREE FORWARD-TIME .............................................................................................................249
SPANNING-TREE HELLO-TIME .................................................................................................................... 250
SPANNING-TREE MAX-AGE ......................................................................................................................... 251
SPANNING-TREE MODE............................................................................................................................... 252
SPANNING-TREE PORTFAST BPDU-FILTER DEFAULT ............................................................................253
SPANNING-TREE PORTFAST BPDU-GUARD DEFAULT............................................................................ 254
SPANNING-TREE PRIORITY ........................................................................................................................ 255
Chapter 11: Virtual Local Area Networks (VLAN) Commands ................................................................. 257
SHOW VLAN ALL ........................................................................................................................................... 258
SHOW VLAN BRIEF .......................................................................................................................................260
SHOW VLAN DYNAMIC .................................................................................................................................262
SHOW VLAN STATIC..................................................................................................................................... 263
SWITCHPORT TRUNK ALLOWED VLAN......................................................................................................265
VLAN............................................................................................................................................................... 267
VLAN ACCESS-MAP ...................................................................................................................................... 268
VLAN DATABASE .......................................................................................................................................... 269
Index .............................................................................................................................................................. 271
6

Figures

Figure 1: AT-S100 Command Modes ...................................................................................................................................17
Figure 2: Command Line Login Screen ................................................................................................................................23
Figure 3: SHOW MAC ADDRESS-TABLE Command..........................................................................................................93
Figure 4: SHOW MAC ADDRESS-TABLE AGING-TIME.....................................................................................................94
Figure 5: SHOW MAC ADDRESS-TABLE DYNAMIC Command ........................................................................................97
Figure 6: SHOW MAC ADDRESS-TABLE INTERFACE Command ....................................................................................99
Figure 7: SHOW MAC ADDRESS-TABLE STATIC............................................................................................................101
Figure 8: SHOW MAC ADDRESS-TABLE VLAN Command .............................................................................................103
Figure 9: SHOW RUNNING-CONFIG INTERFACE Port Example ....................................................................................104
Figure 10: SHOW RUNNING-CONFIG INTERFACE VLAN Example................................................................................105
Figure 11: SHOW SPANNING-TREE Command, page 1 ..................................................................................................107
Figure 12: SHOW SPANNING-TREE Command, page 2 ..................................................................................................107
Figure 13: SHOW STATIC-CHANNEL-GROUP.................................................................................................................109
Figure 14: SHOW LIST Command .....................................................................................................................................152
Figure 15: SHOW RUNNING-CONFIG Command, page 1................................................................................................154
Figure 16: SHOW RUNNING-CONFIG Command, page 2................................................................................................155
Figure 17: SHOW RUNNING-CONFIG Command, page 3................................................................................................156
Figure 18: SHOW RUNNING-CONFIG Command, page 4................................................................................................157
Figure 19: SHOW RUNNING-CONFIG INTERFACE Port Example ..................................................................................160
Figure 20: SHOW RUNNING-CONFIG INTERFACE VLAN Example................................................................................161
Figure 21: SHOW RUNNING-CONFIG INTERFACE Port Example ..................................................................................179
Figure 22: SHOW RUNNING-CONFIG INTERFACE VLAN Example................................................................................180
Figure 23: SHOW DOT1X Command.................................................................................................................................203
Figure 24: SHOW DOT1X ALL Command .........................................................................................................................204
Figure 25: SHOW DOT1X INTERFACE Command ...........................................................................................................207
Figure 26: SHOW DOT1X INTERFACE Command ...........................................................................................................209
Figure 27: SHOW SPANNING-TREE Command, page 1 ..................................................................................................245
Figure 28: SHOW SPANNING-TREE Command, page 2 ..................................................................................................245
Figure 29: SHOW VLAN ALL..............................................................................................................................................258
Figure 30: SHOW VLAN BRIEF .........................................................................................................................................260
Figure 31: SHOW VLAN DYNAMIC ...................................................................................................................................262
Figure 32: SHOW VLAN STATIC .......................................................................................................................................263
7
Figures
8

Tab le s

Table 1: Command Modes ..................................................................................................................................................17
Table 2: Examples of Privileged Executive Mode Commands ............................................................................................19
Table 3: Examples of Configuration Terminal Mode Commands ........................................................................................20
Table 4: Examples of Interface Configuration Mode Commands ........................................................................................21
Table 5: Examples of VLAN Mode Commands ...................................................................................................................22
Table 6: Command Line Syntax Conventions .....................................................................................................................25
Table 7: SHOW DOT1X Parameter Description ................................................................................................................205
9
Tables
10

Preface

The AT-S100 Management Software is the operating system for the AT-9000/28 and AT-9000/28SP Managed Layer 2 GE ecoSwitches. This guide describes the commands included in the management software that you use to control and monitor the operating parameters of both AT-9000 switches.
This Preface contains the following sections:
“Document Conventions” on page 12
“Where to Find Web-based Guides” on page 13
“Contacting Allied Telesis” on page 14
11
Preface

Document Conventions

This document uses the following conventions:
Note
Notes provide additional information.
Caution
Cautions inform you that performing or omitting a specific action may result in equipment damage or loss of data.
Warning
Warnings inform you that performing or omitting a specific action may result in bodily injury.
12

Where to Find Web-based Guides

The installation and user guides for all Allied Telesis products are available in portable document format (PDF) on our web site at www.alliedtelesis.com. You can view the documents online or download them onto a local workstation or server.
For details about the features and functions of the AT-9000/28 and AT­9000/28SP switches, see the following installation guide on our web site:
AT-9000 Managed Layer 2 GE ecoSwitch Family Installation Guide
(part number 613-001100)
AT-100 Management Software User’s Guide
13
Preface

Contacting Allied Telesis

This section provides Allied Telesis contact information for technical support as well as sales and corporate information.

Online Support You can request technical support online by accessing the Allied Telesis

Knowledge Base: www.alliedtelesis.com/support/kb.aspx. You can use the Knowledge Base to submit questions to our technical support staff and review answers to previously asked questions.
Email and Telephone
Support

Warranty The AT-9000/28 9000 Series Managed Layer 2 GE ecoSwitch is covered

Returning
Products
Sales or
Corporate
Information
Management
Software Updates
For Technical Support via email or telephone, refer to the Support section of the Allied Telesis web site: www.alliedtelesis.com.
under a Lifetime Warranty (Two Years Fan & Power Supply). For warranty information, go to the Allied Telesis web site at www.alliedtelesis.com.
Products for return or repair must first be assigned a return materials authorization (RMA) number. A product sent to Allied Telesis without an RMA number will be returned to the sender at the sender’s expense. For instructions on how to obtain an RMA number, go to the Support section on our web site at www.alliedtelesis.com/support.rma.aspx.
You can contact Allied Telesis for sales or corporate information through our web site at www.alliedtelesis.com.
New releases of the management software for our managed products are available from the following Internet sites:
14
Allied Telesis web site: www.alliedtelesis.com
Allied Telesis FTP server: ftp://ftp.alliedtelesis.com
If the FTP server prompts you to log on, enter “anonymous” as the user name and your email address as the password.

Chapter 1

Getting Started with the Command Line Interface

This chapter describes the command modes of the AT-S100 command line interface (CLI) and how to access them. This chapter includes the following sections:
“Introducing the Command Modes” on page 16
“Starting the Command Line Interface” on page 23
“Formatting Commands” on page 24
15
Chapter 1: Getting Started with the Command Line Interface

Introducing the Command Modes

This chapter describes the CLI command modes and how to access the command line interface. There are 5 command modes:
Privileged Executive
Configuration Terminal
VLAN Configuration
Interface Configuration
Line
In the AT-S100 software, the commands are accessed through a hierarchy of command modes. Each command mode contains a subset of commands that are available within that mode. See Figure 1 on page 17 for an illustration of the command modes.
When you log on to the CLI interface, the default command mode that you access depends on your login id. There are two default login ids that are sent from the factory. The operator login id enables you to display information about the software configuration. With this login, you access the View command mode automatically. The manager login id permits full administrator capabilities. With this login, you access the Privileged Executive mode by default.
You enter a specific command to navigate from one command mode to another. For example, to access the Configuration Terminal mode, enter the CONFIGURE TERMINAL command from the Privileged Executive mode. Once you enter a new command mode, the AT-S100 prompt changes to indicate the new mode.
16
Privileged
Executive
mode
AT-S100 Management Software User’s Guide
configure
terminal
Command used to enter the next mode
Configuration
Terminal
mode
Commands used to
enter the next mode
VLAN
database
VLAN
Configuration
mode
Figure 1. AT-S100 Command Modes
See Table 1 for information about the commands used to access the modes and their respective prompts.
interface
IFNAME
Interface
Configuration
mode
line vty [FIRST]
(LAST)
Line
mode
1221
Command
Mode
Privileged Executive Mode
Configuration Terminal Mode
Prompt Description
Switch#
Switch(config)#
Table 1. Command Modes
This is the default command mode for the manager
login.
Enter the EXIT or LOGOUT commands to exit the
management session.
Use the CONFIGURE command to enter this mode
from the Privileged Executive mode.
To return to the Privileged Executive mode, enter
the EXIT command.
17
Chapter 1: Getting Started with the Command Line Interface
Table 1. Command Modes (Continued)
Command
Mode
Interface
Switch(config-if)#
Prompt Description
Configuration
VLAN
Switch(config-vlan)#
Configuration
Line Switch(config-line)
In addition, there are commands that allow you to move between the modes. For example, typing the EXIT command when you are in the Interface Configuration mode returns you to the Configuration Terminal mode. From the Privilege Executive mode, the LOGOUT command exits the software.
To access interface 1, enter the following from the
Configuration Terminal mode:
interface ge1
Enter the EXIT command to return to the
Configuration Terminal mode.
From the Configuration Terminal mode, type the
VLAN DATABASE command.
Enter the EXIT command to return to the
Configuration Terminal mode.
From the Configuration Terminal mode, type the
LINE VTY command.
Enter the EXIT command to return to the
Configuration Terminal mode.
Privileged
Executive
Command Mode
If you enter a command that is not accessible from a command mode, the software displays a “command not found” message. For example, you can enter the SHOW SNMP command from the Privileged Executive mode, but you cannot enter this command from the VLAN Configuration mode. Within the manual, a command mode is listed for each command.
See the following sections for a description of each command mode:
“Privileged Executive Command Mode” on page 18
“Configuration Terminal Mode” on page 19
“Interface Configuration Command Mode” on page 20
“VLAN Configuration Command Mode” on page 21
“Line Mode Commands” on page 22
The Privileged Executive command mode is the default command mode for the manager login. The commands in this mode permit you to perform system level commands such as:
rebooting and resetting the system
displaying feature configuration and status
18
AT-S100 Management Software User’s Guide
downloading new image files
displaying Ethernet port statistics
The prompt changes to “Switch#” to indicate the Privileged Executive mode.
To access the Configuration Terminal mode from the Privileged Executive mode, enter the CONFIGURE TERMINAL command. To return to the Privileged Executive mode, enter the EXIT command.
See Table 2 for a sample list of commands that can be access from the Privileged Executive command mode. See Chapter 3, “Privileged Executive Mode Commands” on page 71 for detailed information about the commands in this mode.
Table 2. Examples of Privileged Executive Mode Commands
Command Description
Configuration
Terminal Mode
COPY RUN
Saves the current configuration.
START
CONFIGURE TERMINAL
Changes the mode to the Configuration Terminal Mode.
COPY Uploads the configuration file to an image or
configuration file.
SHOW
Displays interface configuration and status.
INTERFACE
SYSTEM FACTORY-
Resets the AT-S100 software to the factory default settings
RESET
The Configuration Terminal mode allows you to configure advanced system features such as:
broadcast storm control
GVRP
IGMP Snooping
SNMP
STP and RSTP
To access this mode, you must first access the Privileged Executive mode. Then type CONFIGURE TERMINAL to access the Configuration Terminal mode. The prompt changes to “Switch(config)#” to indicate the software has entered the Configuration Terminal mode. To return to the Privilege Executive Mode, enter the EXIT command. To exit the management session, enter the EXIT command again.
19
Chapter 1: Getting Started with the Command Line Interface
See Table 3 for a sample list of commands that can be accessed from the Configuration Terminal mode. For more information about the commands in this mode, see the Chapter 4, “Configuration Terminal Mode Commands” on page 115.
Table 3. Examples of Configuration Terminal Mode Commands
Command Description
IP-ACCESS-LIST Creates an access list.
LINE CONSOLE Sets the console configuration. Accesses the
HOSTNAME Sets the name of the system.
INTERFACE Accesses the Interface Configuration command
Line mode.
mode (you must also specify an interface).
Interface
Configuration
Command Mode
SNMP-SERVER ENABLE
USERNAME Sets a system user name and password.
The Interface Configuration command mode allows you to configure features that pertain to the port and VLAN interfaces such as flow control and duplex mode. To access this mode, you must first access the Privileged Executive and Configuration Terminal modes, depending on your login id.
There are 28 ports on the AT-9000/28 and AT-9000/28SP switches. To specify a port, precede the port number with “ge.” For example, to access port 5 enter the following from the Configuration Terminal mode:
interface ge5
The prompt changes to “Switch(config-if)#” to indicate the Interface Configuration mode.
To specify a VLAN interface, precede the VLAN ID with “vlan.” For example, to access VLAN 1 (the default VLAN), enter the following from the Configuration Terminal mode:
Enables an SNMP agent on the switch.
20
interface vlan1
AT-S100 Management Software User’s Guide
After you have accessed the Interface Configuration mode, the commands you enter apply only to the interface specified in the Configuration Terminal mode. For example, if you enter “interface ge3” in the Configuration Terminal mode, all of the subsequent commands that you enter apply to interface 3 only. To perform interface-specific commands on another interface, do the following:
exit the Interface mode by entering the EXIT command
specify the new interface in the Configuration Terminal mode
re-enter the commands for the new interface
For a sample list of commands that can be accessed from the Interface Configuration command mode, see Table 4. For more detailed information about the commands in the Interface Configuration mode, see Chapter 5, “Interface Configuration Mode Commands” on page 163.
Table 4. Examples of Interface Configuration Mode Commands
Commands Description
VLAN
Configuration
Command Mode
DOT1X MAX­REQ
Sets the maximum number of reauthentication attempts after authentication fails.
FLOWCONTROL ONEnables flow control and configures the flow
control mode for the interface.
IP ADDRESS Sets an IP address for the switch or specifies that
the switch uses a DHCP client to obtain an IP address.
MAC-ADDRESS Sets the MAC address for a specified interface.
SHUTDOWN Disables an interface.
SPEED Sets the speed and duplex mode for an interface.
The VLAN Configuration command mode allows you to configure commands that are applied to a specific VLAN interface. For instance, you can assign an IP address to a VLAN interface in this mode.
To access this mode, you must first access the Privileged Executive, and Configuration Terminal modes. From the Configuration Terminal command mode, type the VLAN DATABASE command. The prompt changes to “Switch(config-vlan)#” to indicate the VLAN Configuration mode.
21
Chapter 1: Getting Started with the Command Line Interface
After you have accessed the VLAN Configuration mode, enter commands that apply to a specific VLAN. For a sample list of commands that can be accessed from the VLAN Configuration command mode, see Table 5 on page 22. For more detailed information about the commands in this mode, see Chapter 11, “Virtual Local Area Networks (VLAN) Commands” on page 257.
The default VLAN has a VLAN ID of 1 and it includes all 28 ports. You can configure up to 25 VLANs, with VLAN IDs of between 2 and 4094. However, you cannot configure VLAN 1 as it always remains the default VLAN. In addition, you can display information about VLANs.
Commands Description
Table 5. Examples of VLAN Mode Commands
Line Mode
Commands
SHOW RUNNING­CONFIGURATION SWITCH VLAN
VLAN Creates a VLAN and enables it.
VLAN NAME Assigns a name to a VLAN.
VLAN STATE Sets the operational state of the VLAN.
The Line mode permits you to determine the length of the console lines when creating a Telnet connection and enables password checking on the RADIUS server. Access the Line mode through the Configuration Terminal mode, with the LINE VTY command. The prompt changes to “Switch(config-line)#” to indicate the Line mode.
Once you enter the line mode there is one Line mode command, see “LOGIN REMOTELOCAL” on page 200.
To exit the Line mode and return to the Configuration Terminal mode, use the EXIT command.
Displays information about VLANs on the switch.
22

Starting the Command Line Interface

To start the command line interface, perform the following procedure:
1. Type the user id and password.
There are two default user ids and passwords. For the system administrator login, the default user id is “manager” and the default password is “friend.”
A command line prompt is displayed in Figure 2.
Username:manager Password: (none)#
Figure 2. Command Line Login Screen
AT-S100 Management Software User’s Guide
The default switch name is “(none)” and the pound sign (#) prompt indicates the Privileged Executive mode which is the default mode accessed by the manager login.
23
Chapter 1: Getting Started with the Command Line Interface

Formatting Commands

The AT-S100 software command line interface follows the same formatting conventions in all of the command modes. There are command line interface features which apply to the general use of the command line and command syntax conventions which apply when entering the commands. See the following sections.
Command Line
Interface
Features
The following features are supported in the command line interface:
Command history - Use the up and down arrow keys.
Context-specific help - Press the question mark key, ?, to display a list
of permitted parameters or all of the available commands for a particular command mode. There are two formatting options:
– command ? - List the keywords or arguments that are required by a particular command. A space between a command and a question mark is required.
– abbreviated command? - Provides a list of commands that begin with a particular character string. There is no space between the command and the question mark.
Keyword abbreviations - Any keyword can be recognized by typing an
unambiguous prefix, for example, type “sh” and the software responds with “show.”
Tab key - Pressing the Tab key fills in the rest of the keyword
automatically. For example, typing “di” and then pressing the Tab key enters “disable” on the command line.
Formatting
Conventions
Specifying an
24
Command
Interface
The following formatting conventions are used in this manual:
screen text font - This font illustrates the format of a command and
command examples.
ALL CAPITAL LETTERS- All capital letters indicate a command for
you to enter.
[ ] - Brackets indicate optional parameters.
| - Vertical line separates parameter options for you to choose from.
Both the AT-9000/28 and the AT-9000/28SP switches have 28 ports. Within the command line interface, specify each interface with “ge” and the number of the interface. For example, interface 3 is specified as “ge3.”
AT-S100 Management Software User’s Guide
Command Line
Syntax
Conventions
The following table describes the conventions used in the AT-S100 command interface.
Table 6. Command Line Syntax Conventions
Convention Description Example
A.B.C.D/M Indicates an IP address and a
subnet mask.
line Indicates a line of text that
accepts spaces without quotation marks.
string Indicates a string of
alphanumeric characters, including special characters such as spaces. You must place quotation marks around a value with spaces.
IFNAME or IF_NAME
Indicates an interface name. Specify values ge1 through ge28.
192.68.1.11/24
Switch 24, San Jose, Building 4
“Switch 24, San Jose, Building 4”
ge3
mask Indicates a subnet mask. 255.255.240.0
sec Indicates seconds. 120
min Indicates minutes. 8
VLANID Indicates a VLAN instance
(including name and VLAN identifier).
vlan3
25
Chapter 1: Getting Started with the Command Line Interface
26

Chapter 2

Configuring the AT-S100 Software

This chapter provides configuration information about the AT-S100 software.The features are divided into three sections.
This chapter contains the following sections:
“Setting the Switch” on page 28
“Setting the Ports” on page 43
“Configuring Protocols” on page 53
27
Chapter 2: Configuring the AT-S100 Software

Setting the Switch

The procedures in this section describe how to perform basic switch functions such as assigning an IP address, creating a user name and password, and downloading software. See the following sections:
“Assigning an IP Address” on page 28
“Setting DHCP” on page 29
“Setting a Gateway Address” on page 29
“Setting the Network Time” on page 29
“Increasing Frame Size (Jumbo Frames)” on page 31
“Saving the Configuration” on page 31
“Adding a User Name and Password” on page 31
“Displaying and Setting MAC Addresses” on page 32
“Rebooting the Switch” on page 35
Assigning an IP
Address
“Resetting Switch to Factory Default Values” on page 35
“Upgrading or Downgrading Software” on page 35
“Uploading an Image File” on page 37
“Displaying and Saving Configuration Files” on page 38
“Copying Configuration Files” on page 39
“Uploading and Downloading Configuration Files” on page 39
“Creating VLANs” on page 40
The IP address for the switch enables you to access the switch through the console port. You must assign an IP address to a VLAN in the Interface Command Mode. You may assign the IP address to the default VLAN which is VLAN 1 or to a VLAN that you have created. For information about how to create a VLAN, see “Creating VLANs” on page 40.
The syntax of the IP address command is:
ip address xxx.xxx.xxx.xxx/subnet mask
To set the IP address to 192.68.12.8 with a subnet mask of 255.255.255.0 (24 bits) to VLAN 1, enter the following commands:
28
switch# configure terminal
switch(config)# interface vlan1
switch(config-if)# ip address 192.68.12.8/24
AT-S100 Management Software User’s Guide
For more information about this command, see “IP ADDRESS” on page 171.

Setting DHCP The DHCP feature enables the switch to obtain an IP address from the

DHCP server. You must assign the DHCP command to the default VLAN, VLAN 1, in the Interface mode. The syntax of the DHCP address command is:
ip address dhcp
The following example sets the DHCP feature on the switch.
switch# configure terminal
switch(config)# interface vlan1
switch(config-if)# ip address dhcp
For more information about this command, see “IP ADDRESS DHCP” on page 173.
Setting a
Gateway Address
Setting the
Network Time
The gateway address consists of an IP address and a subnet mask that you assign to an interface on the switch. The local router uses this information to allow devices that are not on the LAN to communicate with the switch. The syntax of the gate address command, IP ROUTE, is:
ip route 0.0.0.0/0 interface
To set the gateway address on port 20 to 192.168.1.1 and with a subnet mask of 24, enter the following commands:
switch# configure terminal
switch(config)# ip route 192.168.1.1/24 ge20
For more information about this command, see “IP ROUTE” on page 132.
The Network Time Protocol (NTP) is used to configure the time on the switch by setting the IP address of an NTP server and setting a key to ensure the proper NTP server has access to the switch. In addition, an NTP server ensures that the time on the switch is set using the Greenwich Mean Standard.
Note
You must have access to an NTP server to use this feature. Allied Telesis does not provide an NTP server.
29
Chapter 2: Configuring the AT-S100 Software
Setting the NTP Server Address
Setting an NTP server allows the switch to have an official time. The basic syntax of this command is:
ntp server xxx.xxx.xxx.xxx
To set the IP address of an NTP server to 198.10.1.1, enter the following commands:
switch# configure terminal
switch(config)# ntp server 198.10.1.1
For more information about this command, see “NTP SERVER” on page 148.
Turning on NTP Authentication
After you have assigned an NTP server, you can turn on NTP authentication. The basic syntax of this command is:
ntp authenticate
To turn on NTP authentication, enter the following commands:
switch# configure terminal
switch(config)# ntp authenticate
For more information about this command, see “NTP AUTHENTICATE” on page 145.
Configuring an NTP Trusted Key
You may want to configure an NTP Trusted key as a security measure to verify that the NTP server that you have allowed to access your switch is the one you specified.
The basic syntax of this command is:
ntp trusted-key <1-xx>
To configure an NTP trusted key, enter the following commands:
switch# configure terminal
30
switch(config)# ntp trusted-key
For more information about this command, see “NTP TRUSTED-KEY” on page 150.
Loading...
+ 244 hidden pages