Digisol DG-FS4526E Management Manual

MUSTANG 4000 SWITCH SERIES

DG-FS4526E

MANAGEMENT GUIDE

2012-04-12

As our products undergo continuous development the specifications are subject to change without prior notice

V1.0

M

ANAGEMENT

G

UIDE

DG-FS4526E ENHANCED FAST ETHERNET SWITCH

Layer 2 Switch
with 24 10/100BASE-TX (RJ-45) Ports,
and 2 Gigabit Combination Ports (RJ-45/SFP)

DG-FS4526E

E032011/ST-R01

149100000142A

ABOUT THIS GUIDE

PURPOSE This guide gives specific information on how to operate and use the

management functions of the switch.

AUDIENCE The guide is intended for use by network administrators who are

responsible for operating and maintaining network equipment;
consequently, it assumes a basic working knowledge of general switch
functions, the Internet Protocol (IP), and Simple Network Management
Protocol (SNMP).

CONVENTIONS The following conventions are used throughout this guide to show

information:

N

OTE

:

Emphasizes important information or calls your attention to related

features or instructions.

C

AUTION

damage the system or equipment.

W

ARNING

:

Alerts you to a potential hazard that could cause loss of data, or

:

Alerts you to a potential hazard that could cause personal injury.

RELATED PUBLICATIONS The following publication details the hardware features of the switch,

including the physical and performance-related characteristics, and how to
install the switch:

The Installation Guide

Also, as part of the switch’s software, there is an online web-based help
that describes all management related features.

REVISION HISTORY This section summarizes the changes in each revision of this guide.

APRIL 2012 REVISION

This is the first version of this guide.

– 3 –

A

BOUT THIS GUIDE

– 4 –

CONTENTS

ABOUT THIS GUIDE 3

C

ONTENTS 5

IGURES 35

F

T

ABLES 45

SECTION I GETTING STARTED 51

1INTRODUCTION 53

Key Features 53

Description of Software Features 54

System Defaults 59

2INITIAL SWITCH CONFIGURATION 63

Connecting to the Switch 63

Configuration Options 63

Required Connections 64

Remote Connections 65

Basic Configuration 66

Console Connection 66

Setting Passwords 66

Setting an IP Address 67

Downloading a Configuration File Referenced by a DHCP Server 73

Enabling SNMP Management Access 75

Managing System Files 77

Saving or Restoring Configuration Settings 78

SECTION II WEB CONFIGURATION 81

3USING THE WEB INTERFACE 83

Connecting to the Web Interface 83

Navigating the Web Browser Interface 84

– 5 –

C

ONTENTS

Home Page 84

Configuration Options 85

Panel Display 85

Main Menu 86

4BASIC MANAGEMENT TASKS 101

Displaying System Information 101

Displaying Hardware/Software Versions 102

Configuring Support for Jumbo Frames 104

Displaying Bridge Extension Capabilities 105

Managing System Files 106

Copying Files via FTP/TFTP or HTTP 106

Saving the Running Configuration to a Local File 108

Setting The Start-Up File 109

Showing System Files 110

Automatic Operation Code Upgrade 111

Setting the System Clock 115

Setting the Time Manually 115

Setting the SNTP Polling Interval 116

Specifying SNTP Time Servers 117

Setting the Time Zone 118

Console Port Settings 119

Telnet Settings 121

Displaying CPU Utilization 122

Displaying Memory Utilization 123

Resetting the System 124

5INTERFACE CONFIGURATION 129

Port Configuration 129

Configuring by Port List 129

Configuring by Port Range 132

Displaying Connection Status 133

Configuring Local Port Mirroring 134

Configuring Remote Port Mirroring 136

Showing Port or Trunk Statistics 140

Performing Cable Diagnostics 144

Trunk Configuration 146

Configuring a Static Trunk 147

– 6 –

C

ONTENTS

Configuring a Dynamic Trunk 149

Displaying LACP Port Counters 154

Displaying LACP Settings and Status for the Local Side 155

Displaying LACP Settings and Status for the Remote Side 157

Saving Power 158

Traffic Segmentation 160

Enabling Traffic Segmentation 160

Configuring Uplink and Downlink Ports 161

VLAN Trunking 164

6 VLAN CONFIGURATION 167

IEEE 802.1Q VLANs 167

Configuring VLAN Groups 170

Adding Static Members to VLANs 172

Configuring Dynamic VLAN Registration 177

IEEE 802.1Q Tunneling 181

Enabling QinQ Tunneling on the Switch 185

Adding an Interface to a QinQ Tunnel 186

Protocol VLANs 188

Configuring Protocol VLAN Groups 188

Mapping Protocol Groups to Interfaces 190

Configuring IP Subnet VLANs 192

Configuring MAC-based VLANs 194

Configuring VLAN Mirroring 196

7 ADDRESS TABLE SETTINGS 199

Setting Static Addresses 199

Changing the Aging Time 201

Displaying the Dynamic Address Table 202

Clearing the Dynamic Address Table 203

Configuring MAC Address Mirroring 204

8SPANNING TREE ALGORITHM 207

Overview 207

Configuring Loopback Detection 210

Configuring Global Settings for STA 211

Displaying Global Settings for STA 216

Configuring Interface Settings for STA 217

Displaying Interface Settings for STA 221

– 7 –

C

ONTENTS

Configuring Multiple Spanning Trees 224

Configuring Interface Settings for MSTP 228

9RATE LIMIT CONFIGURATION 231

10 S

TORM CONTROL CONFIGURATION 233

LASS OF SERVICE 235

11 C

Layer 2 Queue Settings 235

Setting the Default Priority for Interfaces 235

Selecting the Queue Mode 236

Mapping CoS Values to Egress Queues 239

Layer 3/4 Priority Settings 242

Mapping Layer 3/4 Priorities to CoS Values 242

Setting Priority Processing to DSCP or CoS 242

Mapping Ingress DSCP Values to Internal DSCP Values 243

Mapping CoS Priorities to Internal DSCP Values 246

12 QUALITY OF SERVICE 249

Overview 249

Configuring a Class Map 250

Creating QoS Policies 253

Attaching a Policy Map to a Port 263

13 VOIP TRAFFIC CONFIGURATION 265

Overview 265

Configuring VoIP Traffic 265

Configuring Telephony OUI 267

Configuring VoIP Traffic Ports 269

14 SECURITY MEASURES 271

AAA Authorization and Accounting 272

Configuring Local/Remote Logon Authentication 273

Configuring Remote Logon Authentication Servers 274

Configuring AAA Accounting 279

Configuring AAA Authorization 284

Configuring User Accounts 287

Web Authentication 289

Configuring Global Settings for Web Authentication 289

Configuring Interface Settings for Web Authentication 290

Network Access (MAC Address Authentication) 292

Configuring Global Settings for Network Access 294

– 8 –

C

ONTENTS

Configuring Network Access for Ports 295

Configuring Port Link Detection 297

Configuring a MAC Address Filter 298

Displaying Secure MAC Address Information 300

Configuring HTTPS 301

Configuring Global Settings for HTTPS 301

Replacing the Default Secure-site Certificate 303

Configuring the Secure Shell 304

Configuring the SSH Server 307

Generating the Host Key Pair 308

Importing User Public Keys 310

Access Control Lists 312

Setting A Time Range 313

Showing TCAM Utilization 316

Setting the ACL Name and Type 317

Configuring a Standard IPv4 ACL 319

Configuring an Extended IPv4 ACL 320

Configuring a Standard IPv6 ACL 323

Configuring an Extended IPv6 ACL 325

Configuring a MAC ACL 326

Configuring an ARP ACL 329

Binding a Port to an Access Control List 331

ARP Inspection 332

Configuring Global Settings for ARP Inspection 333

Configuring VLAN Settings for ARP Inspection 335

Configuring Interface Settings for ARP Inspection 337

Displaying ARP Inspection Statistics 338

Displaying the ARP Inspection Log 339

Filtering IP Addresses for Management Access 340

Configuring Port Security 342

Configuring 802.1X Port Authentication 344

Configuring 802.1X Global Settings 346

Configuring Port Authenticator Settings for 802.1X 347

Configuring Port Supplicant Settings for 802.1X 351

Displaying 802.1X Statistics 353

IP Source Guard 356

– 9 –

C

ONTENTS

Configuring Ports for IP Source Guard 356

Configuring Static Bindings for IP Source Guard 358

Displaying Information for Dynamic IP Source Guard Bindings 360

DHCP Snooping 362

DHCP Snooping Configuration 364

DHCP Snooping VLAN Configuration 365

Configuring Ports for DHCP Snooping 366

Displaying DHCP Snooping Binding Information 367

15 BASIC ADMINISTRATION PROTOCOLS 369

Configuring Event Logging 370

System Log Configuration 370

Remote Log Configuration 372

Sending Simple Mail Transfer Protocol Alerts 373

Link Layer Discovery Protocol 375

Setting LLDP Timing Attributes 375

Configuring LLDP Interface Attributes 377

Displaying LLDP Local Device Information 380

Displaying LLDP Remote Port Information 383

Displaying Device Statistics 388

Simple Network Management Protocol 389

Configuring Global Settings for SNMP 392

Setting the Local Engine ID 393

Specifying a Remote Engine ID 394

Setting SNMPv3 Views 395

Configuring SNMPv3 Groups 398

Setting Community Access Strings 401

Configuring Local SNMPv3 Users 403

Configuring Remote SNMPv3 Users 405

Specifying Trap Managers 408

Remote Monitoring 412

Configuring RMON Alarms 413

Configuring RMON Events 416

Configuring RMON History Samples 418

Configuring RMON Statistical Samples 421

Switch Clustering 424

Configuring General Settings for Clusters 424

– 10 –

C

ONTENTS

Cluster Member Configuration 426

Managing Cluster Members 427

Ethernet Ring Protection Switching 428

ERPS Configuration 431

ERPS Ring Configuration 432

Connectivity Fault Management 437

Configuring Global Settings for CFM 440

Configuring Interfaces for CFM 444

Configuring CFM Maintenance Domains 444

Configuring CFM Maintenance Associations 449

Configuring Maintenance End Points 454

Configuring Remote Maintenance End Points 456

Transmitting Link Trace Messages 458

Transmitting Loop Back Messages 460

Transmitting Delay-Measure Requests 462

Displaying Local MEPs 464

Displaying Details for Local MEPs 465

Displaying Local MIPs 467

Displaying Remote MEPs 468

Displaying Details for Remote MEPs 469

Displaying the Link Trace Cache 471

Displaying Fault Notification Settings 473

Displaying Continuity Check Errors 474

OAM Configuration 475

Enabling OAM on Local Ports 475

Displaying Statistics for OAM Messages 478

Displaying the OAM Event Log 479

Displaying the Status of Remote Interfaces 480

Configuring a Remote Loop Back Test 481

Displaying Results of Remote Loop Back Testing 483

16 IP CONFIGURATION 485

Using the Ping Function 485

Address Resolution Protocol 486

Setting the ARP Timeout 487

Displaying ARP Entries 488

Setting the Switch’s IP Address (IP Version 4) 489

– 11 –

C

ONTENTS

Configuring the IPv4 Default Gateway 489

Configuring IPv4 Interface Settings 490

Setting the Switch’s IP Address (IP Version 6) 493

Configuring the IPv6 Default Gateway 493

Configuring IPv6 Interface Settings 494

Configuring an IPv6 Address 497

Showing IPv6 Addresses 500

Showing the IPv6 Neighbor Cache 501

Showing IPv6 Statistics 503

Showing the MTU for Responding Destinations 508

17 IP SERVICES 509

Configuring General DNS Service Parameters 509

Configuring a List of Domain Names 510

Configuring a List of Name Servers 512

Configuring Static DNS Host to Address Entries 513

Displaying the DNS Cache 514

18 MULTICAST FILTERING 517

Overview 517

Layer 2 IGMP (Snooping and Query) 518

Configuring IGMP Snooping and Query Parameters 520

Specifying Static Interfaces for a Multicast Router 524

Assigning Interfaces to Multicast Services 525

Setting IGMP Snooping Status per Interface 528

Displaying Multicast Groups Discovered by IGMP Snooping 533

Filtering and Throttling IGMP Groups 534

Enabling IGMP Filtering and Throttling 534

Configuring IGMP Filter Profiles 535

Configuring IGMP Filtering and Throttling for Interfaces 537

Multicast VLAN Registration 539

Configuring Global MVR Settings 541

Configuring MVR Group Address Ranges 542

Configuring MVR Interface Status 543

Assigning Static Multicast Groups to Interfaces 546

Displaying MVR Receiver Groups 547

– 12 –

C

ONTENTS

SECTION III COMMAND LINE INTERFACE 549

19 USING THE COMMAND LINE INTERFACE 551

Accessing the CLI 551

Console Connection 551

Telnet Connection 552

Entering Commands 553

Keywords and Arguments 553

Minimum Abbreviation 553

Command Completion 553

Getting Help on Commands 554

Partial Keyword Lookup 555

Negating the Effect of Commands 556

Using Command History 556

Understanding Command Modes 556

Exec Commands 556

Configuration Commands 557

Command Line Processing 559

CLI Command Groups 560

20 GENERAL COMMANDS 563

prompt 563

reload (Global Configuration) 564

enable 565

quit 566

show history 566

configure 567

disable 568

reload (Privileged Exec) 568

show reload 569

end 569

exit 569

21 SYSTEM MANAGEMENT COMMANDS 571

Device Designation 571

hostname 572

Banner Information 572

banner configure 573

– 13 –

C

ONTENTS

banner configure company 574

banner configure dc-power-info 575

banner configure department 575

banner configure equipment-info 576

banner configure equipment-location 577

banner configure ip-lan 577

banner configure lp-number 578

banner configure manager-info 579

banner configure mux 579

banner configure note 580

show banner 581

System Status 581

show access-list tcam-utilization 582

show memory 582

show process cpu 583

show running-config 583

show startup-config 584

show system 585

show tech-support 586

show users 586

show version 587

Frame Size 588

jumbo frame 588

File Management 589

boot system 590

copy 591

delete 594

dir 594

whichboot 595

upgrade opcode auto 596

upgrade opcode path 597

Line 599

line 599

databits 600

exec-timeout 601

login 601

– 14 –

C

ONTENTS

parity 602

password 603

password-thresh 604

silent-time 605

speed 605

stopbits 606

timeout login response 606

disconnect 607

show line 608

Event Logging 608

logging facility 609

logging history 610

logging host 611

logging on 611

logging trap 612

clear log 612

show log 613

show logging 614

SMTP Alerts 615

logging sendmail 616

logging sendmail host 616

logging sendmail level 617

logging sendmail destination-email 617

logging sendmail source-email 618

show logging sendmail 618

Time 619

sntp client 619

sntp poll 620

sntp server 621

show sntp 621

clock timezone 622

calendar set 623

show calendar 623

Time Range 624

time-range 624

absolute 625

– 15 –

C

ONTENTS

periodic 625

show time-range 626

Switch Clustering 627

cluster 628

cluster commander 628

cluster ip-pool 629

cluster member 630

rcommand 630

show cluster 631

show cluster members 631

show cluster candidates 632

22 SNMP COMMANDS 633

snmp-server 634

snmp-server community 635

snmp-server contact 635

snmp-server location 636

show snmp 636

snmp-server enable traps 637

snmp-server host 638

snmp-server engine-id 641

snmp-server group 642

snmp-server user 643

snmp-server view 644

show snmp engine-id 645

show snmp group 646

show snmp user 647

show snmp view 648

nlm 648

snmp-server notify-filter 649

show nlm oper-status 650

show snmp notify-filter 651

23 REMOTE MONITORING COMMANDS 653

rmon alarm 654

rmon event 655

rmon collection history 656

rmon collection rmon1 657

– 16 –

C

ONTENTS

show rmon alarms 658

show rmon events 658

show rmon history 658

show rmon statistics 659

24 AUTHENTICATION COMMANDS 661

User Accounts 661

enable password 662

username 663

Authentication Sequence 664

authentication enable 664

authentication login 665

RADIUS Client 666

radius-server acct-port 666

radius-server auth-port 667

radius-server host 667

radius-server key 668

radius-server retransmit 668

radius-server timeout 669

show radius-server 669

TACACS+ Client 670

tacacs-server host 670

tacacs-server key 671

tacacs-server port 672

show tacacs-server 672

AAA 673

aaa accounting commands 673

aaa accounting dot1x 674

aaa accounting exec 675

aaa accounting update 676

aaa authorization exec 677

aaa group server 678

server 678

accounting dot1x 679

accounting exec 679

authorization exec 680

show accounting 680

– 17 –

C

ONTENTS

Web Server 681

ip http port 682

ip http server 682

ip http secure-server 683

ip http secure-port 684

Telnet Server 685

ip telnet max-sessions 685

ip telnet port 686

ip telnet server 686

show ip telnet 687

Secure Shell 687

ip ssh authentication-retries 690

ip ssh server 690

ip ssh server-key size 691

ip ssh timeout 692

delete public-key 692

ip ssh crypto host-key generate 693

ip ssh crypto zeroize 694

ip ssh save host-key 694

show ip ssh 695

show public-key 695

show ssh 696

802.1X Port Authentication 697

dot1x default 698

dot1x eapol-pass-through 698

dot1x system-auth-control 699

dot1x intrusion-action 699

dot1x max-req 700

dot1x operation-mode 700

dot1x port-control 701

dot1x re-authentication 702

dot1x timeout quiet-period 702

dot1x timeout re-authperiod 703

dot1x timeout supp-timeout 703

dot1x timeout tx-period 704

dot1x re-authenticate 704

– 18 –

C

ONTENTS

dot1x identity profile 705

dot1x max-start 706

dot1x pae supplicant 706

dot1x timeout auth-period 707

dot1x timeout held-period 707

dot1x timeout start-period 708

show dot1x 708

Management IP Filter 711

management 711

show management 712

25 GENERAL SECURITY MEASURES 715

Port Security 716

port security 716

Network Access (MAC Address Authentication) 718

network-access aging 719

network-access mac-filter 719

mac-authentication reauth-time 720

network-access dynamic-qos 721

network-access dynamic-vlan 722

network-access guest-vlan 723

network-access link-detection 723

network-access link-detection link-down 724

network-access link-detection link-up 724

network-access link-detection link-up-down 725

network-access max-mac-count 725

network-access mode mac-authentication 726

network-access port-mac-filter 727

mac-authentication intrusion-action 728

mac-authentication max-mac-count 728

clear network-access 729

show network-access 729

show network-access mac-address-table 730

show network-access mac-filter 731

Web Authentication 731

web-auth login-attempts 732

web-auth quiet-period 733

– 19 –

C

ONTENTS

web-auth session-timeout 733

web-auth system-auth-control 734

web-auth 734

web-auth re-authenticate (Port) 735

web-auth re-authenticate (IP) 735

show web-auth 736

show web-auth interface 736

show web-auth summary 737

DHCP Snooping 737

ip dhcp snooping 738

ip dhcp snooping database flash 740

ip dhcp snooping information option 740

ip dhcp snooping information policy 742

ip dhcp snooping verify mac-address 742

ip dhcp snooping vlan 743

ip dhcp snooping trust 744

clear ip dhcp snooping database flash 745

show ip dhcp snooping 745

show ip dhcp snooping binding 745

IP Source Guard 746

ip source-guard binding 746

ip source-guard 748

ip source-guard max-binding 749

show ip source-guard 750

show ip source-guard binding 750

ARP Inspection 751

ip arp inspection 752

ip arp inspection filter 753

ip arp inspection log-buffer logs 754

ip arp inspection validate 755

ip arp inspection vlan 755

ip arp inspection limit 756

ip arp inspection trust 757

show ip arp inspection configuration 758

show ip arp inspection interface 758

show ip arp inspection log 759

– 20 –

C

ONTENTS

show ip arp inspection statistics 759

show ip arp inspection vlan 759

26 ACCESS CONTROL LISTS 761

IPv4 ACLs 761

access-list ip 762

permit, deny (Standard IP ACL) 763

permit, deny (Extended IPv4 ACL) 764

ip access-group 766

show ip access-group 767

show ip access-list 767

IPv6 ACLs 768

access-list ipv6 768

permit, deny (Standard IPv6 ACL) 769

permit, deny (Extended IPv6 ACL) 770

show ipv6 access-list 772

ipv6 access-group 772

show ipv6 access-group 773

MAC ACLs 774

access-list mac 774

permit, deny
(MAC ACL) 775

mac access-group 777

show mac access-group 778

show mac access-list 778

ARP ACLs 779

access-list arp 779

permit, deny (ARP ACL) 780

show arp access-list 781

ACL Information 782

show access-group 782

show access-list 782

27 INTERFACE COMMANDS 783

interface 784

alias 785

capabilities 785

description 786

flowcontrol 787

– 21 –

C

ONTENTS

media-type 788

negotiation 789

shutdown 789

speed-duplex 790

switchport packet-rate 791

clear counters 792

show interfaces brief 793

show interfaces counters 793

show interfaces status 795

show interfaces switchport 796

show interfaces transceiver 797

test cable-diagnostics 798

show cable-diagnostics 799

power-save 800

show power-save 801

28 LINK AGGREGATION COMMANDS 803

port channel load-balance 804

channel-group 806

lacp 806

lacp admin-key (Ethernet Interface) 808

lacp port-priority 809

lacp system-priority 810

lacp admin-key (Port Channel) 810

show lacp 811

29 PORT MIRRORING COMMANDS 815

Local Port Mirroring Commands 815

port monitor 815

show port monitor 817

RSPAN Mirroring Commands 818

rspan source 819

rspan destination 820

rspan remote vlan 821

no rspan session 822

show rspan 823

30 RATE LIMIT COMMANDS 825

rate-limit 825

– 22 –

C

ONTENTS

31 AUTOMATIC TRAFFIC CONTROL COMMANDS 827

auto-traffic-control apply-timer 829

auto-traffic-control release-timer 830

auto-traffic-control 831

auto-traffic-control action 832

auto-traffic-control alarm-clear-threshold 833

auto-traffic-control alarm-fire-threshold 834

auto-traffic-control auto-control-release 835

auto-traffic-control control-release 835

snmp-server enable port-traps atc broadcast-alarm-clear 836

snmp-server enable port-traps atc broadcast-alarm-fire 836

snmp-server enable port-traps atc broadcast-control-apply 837

snmp-server enable port-traps atc broadcast-control-release 837

snmp-server enable port-traps atc multicast-alarm-clear 838

snmp-server enable port-traps atc multicast-alarm-fire 838

snmp-server enable port-traps atc multicast-control-apply 839

snmp-server enable port-traps atc multicast-control-release 839

show auto-traffic-control 840

show auto-traffic-control interface 840

32 ADDRESS TABLE COMMANDS 841

mac-address-table aging-time 841

mac-address-table static 842

clear mac-address-table dynamic 843

show mac-address-table 843

show mac-address-table aging-time 844

show mac-address-table count 845

33 SPANNING TREE COMMANDS 847

spanning-tree 848

spanning-tree cisco-prestandard 849

spanning-tree forward-time 849

spanning-tree hello-time 850

spanning-tree max-age 851

spanning-tree mode 851

spanning-tree pathcost method 853

spanning-tree priority 853

spanning-tree mst configuration 854

– 23 –

C

ONTENTS

spanning-tree system-bpdu-flooding 855

spanning-tree transmission-limit 855

max-hops 856

mst priority 856

mst vlan 857

name 858

revision 858

spanning-tree bpdu-filter 859

spanning-tree bpdu-guard 860

spanning-tree cost 861

spanning-tree edge-port 862

spanning-tree link-type 863

spanning-tree loopback-detection 863

spanning-tree loopback-detection release-mode 864

spanning-tree loopback-detection trap 865

spanning-tree mst cost 865

spanning-tree mst port-priority 866

spanning-tree port-bpdu-flooding 867

spanning-tree port-priority 868

spanning-tree root-guard 868

spanning-tree spanning-disabled 869

spanning-tree loopback-detection release 870

spanning-tree protocol-migration 870

show spanning-tree 871

show spanning-tree mst configuration 873

34 ERPS COMMANDS 875

erps 876

erps domain 877

control-vlan 877

enable 878

guard-timer 879

holdoff-timer 879

meg-level 880

node-id 881

ring-port 881

rpl owner 882

– 24 –

C

ONTENTS

wtr-timer 882

show erps 883

35 VLAN COMMANDS 887

GVRP and Bridge Extension Commands 888

bridge-ext gvrp 888

garp timer 889

switchport forbidden vlan 890

switchport gvrp 890

show bridge-ext 891

show garp timer 891

show gvrp configuration 892

Editing VLAN Groups 892

vlan database 893

vlan 893

Configuring VLAN Interfaces 894

interface vlan 895

switchport acceptable-frame-types 896

switchport allowed vlan 896

switchport ingress-filtering 897

switchport mode 898

switchport native vlan 899

vlan-trunking 900

Displaying VLAN Information 901

show vlan 901

Configuring IEEE 802.1Q Tunneling 902

dot1q-tunnel system-tunnel-control 903

switchport dot1q-tunnel mode 904

switchport dot1q-tunnel service match cvid 905

switchport dot1q-tunnel tpid 906

show dot1q-tunnel 907

Configuring L2CP Tunneling 908

l2protocol-tunnel tunnel-dmac 908

switchport l2protocol-tunnel 911

show l2protocol-tunnel 912

Configuring Port-based Traffic Segmentation 912

traffic-segmentation 912

– 25 –

C

ONTENTS

show traffic-segmentation 913

Configuring Protocol-based VLANs 914

protocol-vlan protocol-group (Configuring Groups) 915

protocol-vlan protocol-group (Configuring Interfaces) 915

show protocol-vlan protocol-group 916

show interfaces protocol-vlan protocol-group 917

Configuring IP Subnet VLANs 918

subnet-vlan 918

show subnet-vlan 919

Configuring MAC Based VLANs 920

mac-vlan 920

show mac-vlan 921

Configuring Voice VLANs 921

voice vlan 922

voice vlan aging 923

voice vlan mac-address 923

switchport voice vlan 924

switchport voice vlan priority 925

switchport voice vlan rule 925

switchport voice vlan security 926

show voice vlan 927

36 CLASS OF SERVICE COMMANDS 929

Priority Commands (Layer 2) 929

queue mode 930

queue weight 931

switchport priority default 932

show queue mode 933

show queue weight 933

Priority Commands (Layer 3 and 4) 934

qos map cos-dscp 934

qos map dscp-mutation 936

qos map phb-queue 937

qos map trust-mode 938

show qos map dscp-mutation 939

show qos map phb-queue 939

show qos map cos-dscp 940

– 26 –

C

ONTENTS

show qos map trust-mode 941

37 QUALITY OF SERVICE COMMANDS 943

class-map 944

description 945

match 946

rename 947

policy-map 947

class 948

police flow 949

police srtcm-color 951

police trtcm-color 953

set cos 955

set ip dscp 956

set phb 957

service-policy 958

show class-map 959

show policy-map 959

show policy-map interface 960

38 MULTICAST FILTERING COMMANDS 961

IGMP Snooping 961

ip igmp snooping 963

ip igmp snooping priority 963

ip igmp snooping proxy-reporting 964

ip igmp snooping querier 965

ip igmp snooping router-alert-option-check 965

ip igmp snooping router-port-expire-time 966

ip igmp snooping tcn-flood 966

ip igmp snooping tcn-query-solicit 968

ip igmp snooping unregistered-data-flood 968

ip igmp snooping unsolicited-report-interval 969

ip igmp snooping version 970

ip igmp snooping version-exclusive 970

ip igmp snooping vlan general-query-suppression 971

ip igmp snooping vlan immediate-leave 972

ip igmp snooping vlan last-memb-query-count 973

ip igmp snooping vlan last-memb-query-intvl 973

– 27 –

C

ONTENTS

ip igmp snooping vlan mrd 974

ip igmp snooping vlan proxy-address 975

ip igmp snooping vlan proxy-query-interval 976

ip igmp snooping vlan proxy-query-resp-intvl 977

ip igmp snooping vlan static 977

show ip igmp snooping 978

show ip igmp snooping group 979

Static Multicast Routing 980

ip igmp snooping vlan mrouter 980

show ip igmp snooping mrouter 981

IGMP Filtering and Throttling 981

ip igmp filter (Global Configuration) 982

ip igmp profile 983

permit, deny 983

range 984

ip igmp filter (Interface Configuration) 984

ip igmp max-groups 985

ip igmp max-groups action 986

show ip igmp filter 986

show ip igmp profile 987

show ip igmp throttle interface 987

Multicast VLAN Registration 988

mvr 989

mvr group 989

mvr priority 990

mvr upstream-source-ip 991

mvr vlan 991

mvr immediate-leave 992

mvr type 993

mvr vlan group 994

show mvr 995

39 LLDP COMMANDS 999

lldp 1001

lldp holdtime-multiplier 1001

lldp med-fast-start-count 1002

lldp notification-interval 1002

– 28 –

C

ONTENTS

lldp refresh-interval 1003

lldp reinit-delay 1003

lldp tx-delay 1004

lldp admin-status 1005

lldp basic-tlv management-ip-address 1005

lldp basic-tlv port-description 1006

lldp basic-tlv system-capabilities 1007

lldp basic-tlv system-description 1007

lldp basic-tlv system-name 1008

lldp dot1-tlv proto-ident 1008

lldp dot1-tlv proto-vid 1009

lldp dot1-tlv pvid 1009

lldp dot1-tlv vlan-name 1010

lldp dot3-tlv link-agg 1010

lldp dot3-tlv mac-phy 1011

lldp dot3-tlv max-frame 1011

lldp med-location civic-addr 1012

lldp med-notification 1013

lldp med-tlv inventory 1014

lldp med-tlv location 1015

lldp med-tlv med-cap 1015

lldp med-tlv network-policy 1016

lldp notification 1016

show lldp config 1017

show lldp info local-device 1018

show lldp info remote-device 1019

show lldp info statistics 1021

40 CFM COMMANDS 1023

ethernet cfm ais level 1026

ethernet cfm ais ma 1027

ethernet cfm ais period 1028

ethernet cfm ais suppress alarm 1028

ethernet cfm domain 1029

ethernet cfm enable 1031

ma index name vlan 1032

ma index name-format 1033

– 29 –

C

ONTENTS

ethernet cfm mep 1034

ethernet cfm port-enable 1035

clear ethernet cfm ais mpid 1035

show ethernet cfm configuration 1036

show ethernet cfm md 1038

show ethernet cfm ma 1038

show ethernet cfm maintenance-points local 1039

show ethernet cfm maintenance-points local detail mep 1040

show ethernet cfm maintenance-points remote detail 1041

ethernet cfm cc ma interval 1043

ethernet cfm cc enable 1044

snmp-server enable traps ethernet cfm cc 1045

mep archive-hold-time 1046

clear ethernet cfm maintenance-points remote 1046

clear ethernet cfm errors 1047

show ethernet cfm errors 1048

ethernet cfm mep crosscheck start-delay 1049

snmp-server enable traps ethernet cfm crosscheck 1049

mep crosscheck mpid 1050

ethernet cfm mep crosscheck 1051

show ethernet cfm maintenance-points remote crosscheck 1052

ethernet cfm linktrace cache 1052

ethernet cfm linktrace cache hold-time 1053

ethernet cfm linktrace cache size 1054

ethernet cfm linktrace 1055

clear ethernet cfm linktrace-cache 1056

show ethernet cfm linktrace-cache 1056

ethernet cfm loopback 1057

mep fault-notify lowest-priority 1058

mep fault-notify alarm-time 1060

mep fault-notify reset-time 1061

show ethernet cfm fault-notify-generator 1061

ethernet cfm delay-measure two-way 1062

41 OAM COMMANDS 1065

efm oam 1066

efm oam critical-link-event 1066

– 30 –