xStack® DES-3200 Series Layer 2 Ethernet Managed Switch CLI Reference Guide
Information in this document is subject to change without notice. © 2011 D-Link Corporation. All rights reserved.
Reproduction in any manner whatsoever without the written permission of D-Link Corporation is strictly forbidden.
Trademarks used in this text: D-Link and the D-LINK logo are trademarks of D-Link Corporation; Microsoft and Windows are registered trademarks of Microsoft Corporation.
Other trademarks and trade names may be used in this document to refer to either the entities claiming the marks and names or their products. D-Link Corporation disclaims any proprietary interest in trademarks and trade names other than its own.
March 2011 P/N 651ES3200045G
xStack® DES-3200 Series Layer 2 Ethernet Managed Switch CLI Reference Guide |
|
Table of Contents |
|
INTRODUCTION ......................................................................................................................................................... |
1 |
USING THE CONSOLE CLI ........................................................................................................................................ |
3 |
COMMAND SYNTAX .................................................................................................................................................. |
7 |
BASIC SWITCH COMMANDS .................................................................................................................................. |
10 |
MODIFY BANNER AND PROMPT COMMANDS .................................................................................................... |
30 |
SWITCH PORT COMMANDS ................................................................................................................................... |
33 |
PORT SECURITY COMMANDS ............................................................................................................................... |
37 |
NETWORK MANAGEMENT (SNMP) COMMANDS................................................................................................ |
43 |
SWITCH UTILITY COMMANDS.............................................................................................................................. |
67 |
NETWORK MONITORING COMMANDS................................................................................................................ |
82 |
MULTIPLE SPANNING TREE PROTOCOL (MSTP) COMMANDS ........................................................................ |
99 |
FORWARDING DATABASE COMMANDS ............................................................................................................ |
115 |
PACKET STORM CONTROL COMMANDS........................................................................................................... |
123 |
QOS COMMANDS ................................................................................................................................................... |
127 |
PORT MIRRORING COMMANDS.......................................................................................................................... |
142 |
VLAN COMMANDS................................................................................................................................................. |
145 |
LINK AGGREGATION COMMANDS..................................................................................................................... |
154 |
BASIC IP COMMANDS ........................................................................................................................................... |
159 |
IGMP SNOOPING COMMANDS ............................................................................................................................. |
165 |
DHCP RELAY COMMANDS ................................................................................................................................... |
176 |
802.1X COMMANDS ................................................................................................................................................ |
183 |
ACCESS CONTROL LIST (ACL) COMMANDS ..................................................................................................... |
205 |
TIME RANGE COMMANDS ................................................................................................................................... |
221 |
SAFEGUARD ENGINE COMMANDS ..................................................................................................................... |
223 |
TRAFFIC SEGMENTATION COMMANDS ............................................................................................................ |
225 |
TIME AND SNTP COMMANDS .............................................................................................................................. |
227 |
ARP COMMANDS.................................................................................................................................................... |
233 |
ROUTING TABLE COMMANDS............................................................................................................................. |
237 |
xStack® DES-3200 Series Layer 2 Ethernet Managed Switch CLI Reference Guide
MAC NOTIFICATION COMMANDS ...................................................................................................................... |
243 |
ACCESS AUTHENTICATION CONTROL COMMANDS....................................................................................... |
247 |
SSH COMMANDS .................................................................................................................................................... |
268 |
SSL COMMANDS..................................................................................................................................................... |
275 |
D-LINK SINGLE IP MANAGEMENT COMMANDS............................................................................................... |
281 |
SMTP COMMANDS................................................................................................................................................. |
293 |
CABLE DIAGNOSTICS COMMANDS .................................................................................................................... |
298 |
DHCP LOCAL RELAY COMMANDS ..................................................................................................................... |
300 |
GRATUITOUS ARP COMMANDS .......................................................................................................................... |
302 |
VLAN TRUNKING COMMANDS............................................................................................................................ |
306 |
Q-IN-Q COMMANDS............................................................................................................................................... |
310 |
ASYMMETRIC VLAN COMMANDS ...................................................................................................................... |
318 |
MLD SNOOPING COMMANDS .............................................................................................................................. |
320 |
IGMP SNOOPING MULTICAST VLAN COMMANDS........................................................................................... |
327 |
LIMITED IP MULTICAST ADDRESS COMMANDS.............................................................................................. |
333 |
LLDP COMMANDS ................................................................................................................................................. |
339 |
DOS PREVENTION COMMANDS........................................................................................................................... |
360 |
IP-MAC-PORT BINDING COMMANDS ................................................................................................................. |
366 |
LOOPBACK DETECTION COMMANDS................................................................................................................ |
378 |
PROTOCOL VLAN COMMANDS ........................................................................................................................... |
385 |
MAC-BASED VLAN COMMANDS.......................................................................................................................... |
391 |
FLOW METER COMMANDS.................................................................................................................................. |
394 |
MAC-BASED ACCESS CONTROL COMMANDS................................................................................................... |
397 |
ARP SPOOFING PREVENTION COMMANDS....................................................................................................... |
413 |
TECHNICAL SUPPORT COMMANDS ................................................................................................................... |
416 |
COMMAND HISTORY COMMANDS ..................................................................................................................... |
419 |
CONNECTIVITY FAULT MANAGEMENT COMMANDS ..................................................................................... |
423 |
ETHERNET OAM COMMANDS ............................................................................................................................. |
450 |
BPDU ATTACK PROTECTION COMMANDS........................................................................................................ |
466 |
PER-QUEUE BANDWIDTH CONTROL COMMANDS .......................................................................................... |
473 |
xStack® DES-3200 Series Layer 2 Ethernet Managed Switch CLI Reference Guide
ERPS COMMANDS.................................................................................................................................................. |
476 |
NETWORK LOAD BALANCING (NLB) COMMANDS........................................................................................... |
486 |
PPPOE CIRCUIT ID INSERTION COMMANDS .................................................................................................... |
492 |
DHCP SERVER SCREENING SETTINGS............................................................................................................... |
496 |
APPENDIX A - PASSWORD RECOVERY PROCEDURE....................................................................................... |
500 |
APPENDIX B – SYSTEM LOG ENTRIES................................................................................................................ |
502 |
APPENDIX C – TRAP LOG ENTRIES..................................................................................................................... |
512 |
APPENDIX D - RADIUS ATTRIBUTES ASSIGNMENT ......................................................................................... |
516 |
xStack® DES-3200 Series Layer 2 Ethernet Managed Switch CLI Reference Guide
1
The Switch can be managed through the Switch’s serial port, Telnet, or the Web-based management agent. The Command Line Interface (CLI) can be used to configure and manage the Switch via the serial port or Telnet interfaces.
This manual provides a reference for all of the commands contained in the CLI. Configuration and management of the Switch via the Web-based management agent is discussed in the Manual. Configuration and management of the Switch via the Web-based management agent is discussed in the User’s Guide.
The Switch’s serial port’s default settings are as follows:
•9600 baud
•no parity
•8 data bits
•1 stop bit
A computer running a terminal emulation program capable of emulating a VT-100 terminal and a serial port configured as above are then connected to the Switch’s serial port via an RS-232 DB-9 cable or RJ-45 console cable.
With the serial port properly connected to a management computer, the following screen should be visible. If this screen does not appear, try pressing Ctrl+r to refresh the console screen.
DES-3200-28 Fast Ethernet Switch
Command Line Interface
Firmware: Build 1.28.005
Copyright(C) 2010 D-Link Corporation. All rights reserved.
UserName:
PassWord:
Figure 1 - 1. Initial CLI screen
There is no initial username or password. Just press the Enter key twice to display the CLI input cursor − DES-3200-28:4#. This is the command line where all commands are input.
Each Switch must be assigned its own IP Address, which is used for communication with an SNMP network manager or other TCP/IP application (for example BOOTP, TFTP). The Switch’s default IP address is 10.90.90.90. Users can change the default Switch IP address to meet the specification of your networking address scheme.
The Switch is also assigned a unique MAC address by the factory. This MAC address cannot be changed, and can be found on the initial boot console screen – shown below.
Boot Procedure |
V1.00.006 |
-------------------------------------------------------------------------------
Power On Self |
Test ........................................ |
100% |
||
MAC |
Address |
: |
00-63-32-28-01-01 |
|
H/W |
Version |
: |
B1 |
|
Please wait, loading V1.28.005 Runtime image .............. |
100% |
Figure 1 - 2. Boot screen
The Switch’s MAC address can also be found in the Web management program on the Switch Information (Basic Settings) window in the Configuration folder.
1
xStack® DES-3200 Series Layer 2 Ethernet Managed Switch CLI Reference Guide
The IP address for the Switch must be set before it can be managed with the Web-based manager. The Switch IP address can be automatically set using BOOTP or DHCP protocols, in which case the actual address assigned to the Switch must be known.
The IP address may be set using the Command Line Interface (CLI) over the console serial port as follows:
Starting at the command line prompt, enter the command config ipif System ipaddress xxx.xxx.xxx.xxx/yyy.yyy.yyy.yyy. Where the x’s represent the IP address to be assigned to the IP interface named System and the y’s represent the corresponding subnet mask.
Alternatively, users can enter config ipif System ipaddress xxx.xxx.xxx.xxx/z. Where the x’s represent the IP address to be assigned to the IP interface named System and the z represents the corresponding number of subnets in CIDR notation.
The IP interface named System on the Switch can be assigned an IP address and subnet mask which can then be used to connect a management station to the Switch’s Telnet or Web-based management agent.
DES-3200-28:4#config ipif System ipaddress 10.73.21.11/255.0.0.0
Command: config ipif System ipaddress 10.73.21.11/8
Success.
DES-3200-28:4#
Figure 1 - 3. Assigning an IP Address
In the above example, the Switch was assigned an IP address of 10.73.21.11 with a subnet mask of 255.0.0.0. The system message Success indicates that the command was executed successfully. The Switch can now be configured and managed via Telnet, SNMP MIB browser and the CLI or via the Web-based management agent using the above IP address to connect to the Switch.
2
xStack® DES-3200 Series Layer 2 Ethernet Managed Switch CLI Reference Guide
2
The Switch supports a console management interface that allows the user to connect to the Switch’s management agent via a serial port and a terminal or a computer running a terminal emulation program. The console can also be used over the network using the TCP/IP Telnet protocol. The console program can be used to configure the Switch to use an SNMP-based network management application over the network.
This chapter describes how to use the console interface to access the Switch, change its settings, and monitor its operation.
Note: Switch configuration settings are saved to non-volatile RAM using the save command. The current configuration will then be retained in the Switch’s NV-RAM, and reloaded when the Switch is rebooted. If the Switch is rebooted without using the save command, the last configuration saved to NV-RAM will be loaded.
The console interface is used by connecting the Switch to a VT100-compatible terminal or a computer running an ordinary terminal emulator program (e.g., the HyperTerminal program included with the Windows operating system) using an RS-232 DB- 9 cable or RJ45 console cable. Your terminal parameters will need to be set to:
•VT-100 compatible
•9600 baud
•8 data bits
•No parity
•One stop bit
•No flow control
Users can also access the same functions over a Telnet interface. Once users have set an IP address for your Switch, users can use a Telnet program (in VT-100 compatible terminal mode) to access and control the Switch. All of the screens are identical, whether accessed from the console port or from a Telnet interface.
After the Switch reboots and users have logged in, the console looks like this:
DES-3200-28 Fast Ethernet Switch
Command Line Interface
Firmware: Build 1.28.005
Copyright(C) 2010 D-Link Corporation. All rights reserved.
UserName:
PassWord:
DES-3200-28:4#
Figure 2 - 1. Initial Console Screen after logging in
Commands are entered at the command prompt, DES-3200-28:4#.
There are a number of helpful features included in the CLI. Entering the ? command will display a list of all of the top-level commands.
3
xStack® DES-3200 Series Layer 2 Ethernet Managed Switch CLI Reference Guide
..
?
cable_diag ports clear
clear address_binding dhcp_snoop binding_entry ports clear arptable
clear counters
clear dos_prevention counters clear fdb
clear igmp_snooping data_driven_group clear log
clear mac_based_access_control auth_mac clear port_security_entry port
config 802.1p |
default_priority |
|||||||||||||
config 802.1p |
user_priority |
|||||||||||||
config 802.1x |
auth_mode |
|||||||||||||
config 802.1x |
auth_parameter ports |
|||||||||||||
config 802.1x |
auth_protocol |
|||||||||||||
config 802.1x |
capability ports |
|||||||||||||
config 802.1x |
guest_vlan ports |
|||||||||||||
config 802.1x |
init |
|||||||||||||
config 802.1x |
reauth |
|||||||||||||
|
|
|
|
|
|
Quit |
|
|
|
Next Page |
|
Next Entry |
|
All |
|
CTRL+C |
ESC |
q |
SPACE |
n |
ENTER |
a |
Figure 2 - 2. The ? Command
When users enter a command without its required parameters, the CLI will prompt users with Next possible completions: message.
DES-3200-28:4#config account
Command: config account
Next possible completions: <username>
DES-3200-28:4#
Figure 2 - 3. Example Command Parameter Help
In this case, the command config account was entered without the parameter <username>. The CLI will then prompt users to enter the <username> with the message, Next possible completions:. Every command in the CLI has this feature, and complex commands have several layers of parameter prompting.
In addition, after typing any given command plus one space, users can see all of the next possible sub-commands, in sequential order, by repeatedly pressing the Tab key.
To re-enter the previous command at the command prompt, press the up arrow cursor key. The previous command will appear at the command prompt.
4
xStack® DES-3200 Series Layer 2 Ethernet Managed Switch CLI Reference Guide
DES-3200-28:4#config account
Command: config account
Next possible completions: <username>
DES-3200-28:4#config account
Command: config account
Next possible completions: <username>
DES-3200-28:4#
Figure 2 - 4. Using the Up Arrow to Re-enter a Command
In the above example, the command config account was entered without the required parameter <username>, the CLI returned the Next possible completions: <username> prompt. The up arrow cursor control key was pressed to re-enter the previous command (config account) at the command prompt. Now the appropriate username can be entered and the config account command reexecuted.
All commands in the CLI function in this way. In addition, the syntax of the help prompts are the same as presented in this manual
− angle brackets < > indicate a numerical value or character string, braces { } indicate optional parameters or a choice of parameters, and brackets [ ] indicate required parameters.
If a command is entered that is unrecognized by the CLI, the top-level commands will be displayed under the Available commands: prompt.
|
DES-3200-28:4#the |
|
|
|
|
Available commands: |
? |
cable_diag |
clear |
|
.. |
|||
|
config |
create |
delete |
dir |
|
disable |
download |
enable |
login |
|
logout |
ping |
ping6 |
reboot |
|
reconfig |
reset |
save |
show |
|
smtp |
telnet |
traceroute |
upload |
|
DES-3200-28:4# |
|
|
|
|
|
|
|
|
Figure 2 - 5. The Next Available Commands Prompt
The top-level commands consist of commands such as show or config. Most of these commands require one or more parameters to narrow the top-level command. This is equivalent to show what? or config what? Where the what? is the next parameter.
For example, if users enter the show command with no additional parameters, the CLI will then display all of the possible next parameters.
5
xStack® DES-3200 Series Layer 2 Ethernet Managed Switch CLI Reference Guide
DES-3200-28:4#show
Command: show
Next possible completions: |
access_profile |
account |
|
802.1p |
802.1x |
||
acct_client |
address_binding |
arp_spoofing_prevention |
|
auth_session_statistics |
auth_statistics |
authen |
|
authen_enable |
authen_login |
authen_policy |
authorization |
autoconfig |
bandwidth_control |
bpdu_tunnel |
command_history |
config |
cos |
cpu_access_profile |
|
dhcp_local_relay |
dhcp_relay |
dos_prevention |
error |
dot1v_protocol_group |
firmware |
dscp_mapping |
|
fdb |
flow_meter |
gratuitous_arp |
|
greeting_message |
gvrp |
igmp |
igmp_snooping |
ipif |
ipif_ipv6_link_local_auto |
iproute |
|
ipv6 |
ipv6route |
jumbo_frame |
lacp_ports |
limited_multicast_addr |
link_aggregation |
lldp |
|
log |
log_save_timing |
loopdetect |
|
mac_based_access_control |
mac_based_access_control_local |
||
mac_based_vlan |
mac_notification |
max_mcast_group |
mld_snooping |
mcast_filter_profile |
mirror |
||
multicast |
multicast_fdb |
packet |
port |
port_security |
ports |
pvid |
qinq |
radius |
router_ports |
safeguard_engine |
scheduling |
scheduling_mechanism |
serial_port |
session |
|
sim |
smtp |
snmp |
sntp |
ssh |
ssl |
stp |
switch |
syslog |
tech_support |
terminal_line |
time |
time_range |
traffic |
traffic_segmentation |
|
trusted_host |
utilization |
vlan |
vlan_translation |
vlan_trunk |
|
|
|
DES-3200-28:4#
Figure 2 - 6. Next possible completions: Show Command
In the above example, all of the possible next parameters for the show command are displayed. At the next command prompt, the up arrow was used to re-enter the show command, followed by the account parameter. The CLI then displays the user accounts configured on the Switch.
6
xStack® DES-3200 Series Layer 2 Ethernet Managed Switch CLI Reference Guide
3
The following symbols are used to describe how command entries are made and values and arguments are specified in this manual.
Note: All commands are case-sensitive. Be sure to disable Caps Lock or any other unwanted function that changes text case.
<angle brackets>
Purpose |
Encloses a variable or value that must be specified. |
|
|
Syntax |
config ipif <System> [{ipaddress <network_address> | vlan <vlan_name |
|
32> | state [enable | disable}] | bootp | dhcp] |
Description |
In the above syntax example, users must supply an IP interface name in the |
|
<System> space, a VLAN name in the <vlan_name 32> space, and the |
|
network address in the <network_address> space. Do not type the angle |
|
brackets. |
|
|
Example Command |
config ipif System ipaddress 10.24.22.5/8 vlan Design state enable |
|
|
[square brackets]
Purpose |
Encloses a required value or set of required arguments. One value or |
|
argument can be specified. |
|
|
Syntax |
create account [admin | user] <username 15> |
|
|
Description |
In the above syntax example, users must specify either an admin or a user |
|
level account to be created. Do not type the square brackets. |
|
|
Example Command |
create account admin ctsnow |
|
|
| vertical bar
Purpose |
Separates two or more mutually exclusive items in a list, one of which must |
|
be entered. |
|
|
Syntax |
create account [admin | user] <username 15> |
|
|
Description |
In the above syntax example, users must specify either admin, or user. Do |
|
not type the vertical bar. |
|
|
Example Command |
create account admin ctsnow |
|
|
7
xStack® DES-3200 Series Layer 2 Ethernet Managed Switch CLI Reference Guide
{braces}
Purpose |
Encloses an optional value or set of optional arguments. |
|
|
Syntax |
reset {[config | system]} {force_agree} |
|
|
Description |
In the first part of the above syntax example, users have the option to |
|
specify config or system. It is not necessary to specify either optional value, |
|
however the effect of the system reset is dependent on which, if any, value |
|
is specified. Therefore, with this example there are three possible outcomes |
|
of performing a system reset. Do not type the braces. |
Example command |
reset config |
|
|
(parentheses)
Purpose |
Indicates at least one or more of the values or arguments in the preceding |
|
syntax enclosed by braces must be specified. |
|
|
Syntax |
config dhcp_relay {hops <value 1-16> | time <sec 0-65535>}(1) |
|
|
Description |
In the above syntax example, users have the option to specify hops or time or |
|
both of them. The "(1)" following the set of braces indicates at least one |
|
argument or value within the braces must be specified. Do not type the |
|
parentheses. |
|
|
Example |
config dhcp_relay hops 3 |
command |
|
Line Editing Key Usage
Delete |
Deletes the character under the cursor and then shifts the remaining |
|
characters in the line to the left. |
|
|
Backspace |
Deletes the character to the left of the cursor and then shifts the remaining |
|
characters in the line to the left. |
|
|
Insert or Ctrl+R |
Toggle on and off. When toggled on, inserts text and shifts previous text to |
|
the right. |
Left Arrow |
Moves the cursor to the left. |
|
|
Right Arrow |
Moves the cursor to the right. |
|
|
Up Arrow |
Repeats the previously entered command. Each time the up arrow is |
|
pressed, the command previous to that displayed appears. This way it is |
|
possible to review the command history for the current session. Use the |
|
down arrow to progress sequentially forward through the command history |
|
list. |
|
|
Down Arrow |
The down arrow will display the next command in the command history |
|
entered in the current session. This displays each command sequentially as |
|
it was entered. Use the up arrow to review previous commands. |
|
|
Tab |
Shifts the cursor to the next field to the left. |
|
|
Multiple Page Display Control Keys
Space |
Displays the next page. |
|
|
8
xStack® DES-3200 Series Layer 2 Ethernet Managed Switch CLI Reference Guide
CTRL+c |
Stops the display of remaining pages when multiple pages are to be |
|
displayed. |
|
|
ESC |
Stops the display of remaining pages when multiple pages are to be |
|
displayed. |
|
|
n |
Displays the next page. |
|
|
p |
Displays the previous page. |
|
|
q |
Stops the display of remaining pages when multiple pages are to be |
|
displayed. |
|
|
r |
Refreshes the pages currently displayed. |
|
|
a |
Displays the remaining pages without pausing between pages. |
|
|
Enter |
Displays the next line or table entry. |
|
|
9
xStack® DES-3200 Series Layer 2 Ethernet Managed Switch CLI Reference Guide
4
The Basic Switch commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table:
Command |
Parameters |
enable password encryption |
|
|
|
disable password encryption |
|
|
|
create account |
[admin | user] <username 15> |
|
|
config account |
<username> {encrypt [plain_text|sha_1] <password>} |
|
|
show account |
|
|
|
delete account |
<username> |
|
|
show session |
|
|
|
show switch |
|
|
|
show serial_port |
|
|
|
config serial_port |
{baud_rate [9600 | 19200 | 38400 | 115200] | auto_logout [never | 2_minutes | |
|
5_minutes | 10_minutes | 15_minutes]} (1) |
enable clipaging |
|
|
|
disable clipaging |
|
|
|
enable telnet |
{<tcp_port_number 1-65535>} |
|
|
disable telnet |
|
|
|
telnet |
<ipaddr> {tcp_port <value 0-65535>} |
|
|
enable web |
{<tcp_port_number 1-65535>} |
|
|
disable web |
|
|
|
save |
{ [config | log | all]} |
|
|
reboot |
{force_agree} |
|
|
reset |
{[config | system ]} { force_agree} |
|
|
login |
|
|
|
logout |
|
|
|
show config |
[current_config | config_in_nvram] |
|
|
config terminal_line |
[default | <value 20-80>] |
|
|
show terminal_line |
|
|
|
enable jumbo_frame |
|
|
|
disable jumbo_frame |
|
|
|
show jumbo_frame |
|
|
|
Each command is listed, in detail, in the following sections:
10
xStack® DES-3200 Series Layer 2 Ethernet Managed Switch CLI Reference Guide
enable password encryption
Purpose |
Used to enable password encryption on a user account. |
Syntax |
enable password encryption |
Description |
The user account configuration information will be stored in the |
|
configuration file, and can be applied to the system at a time in the |
|
future. If the password encryption is enabled, the password will be in |
|
encrypted form. If password encryption is disabled and the user |
|
specifies the password in encrypted form, or if the password has |
|
been converted to encrypted form by the last enabled password |
|
encryption command, the password will still be in encrypted form. It |
|
can not revert back to plain text. |
Parameters |
None. |
Restrictions |
Only Administrator-level users can issue this command. |
Example usage:
To enable password encryption on the Switch.
DES-3200-28:4#enable password encryption
Command: enable password encryption
Success.
DES-3200-28:4#
disable password encryption
Purpose |
Used to disable password encryption on a user account. |
Syntax |
disable password encryption |
Description |
The user account configuration information will be stored in the |
|
configuration file, and can be applied to the system at a time in the |
|
future. If the password encryption is enabled, the password will be in |
|
encrypted form. If password encryption is disabled and the user |
|
specifies the password in encrypted form, or if the password has |
|
been converted to encrypted form by the last enabled password |
|
encryption command, the password will still be in encrypted form. It |
|
can not revert back to plain text. |
Parameters |
None. |
Restrictions |
Only Administrator-level users can issue this command. |
Example usage:
To disable password encryption on the Switch.
DES-3200-28:4#disable password encryption
Command: disable password encryption
Success.
DES-3200-28:4#
11
xStack® DES-3200 Series Layer 2 Ethernet Managed Switch CLI Reference Guide
create account
Purpose |
Used to create user accounts. |
Syntax |
create account [admin | user] <username 15> |
Description |
This command is used to create user accounts that consist of a |
|
username of 1 to 15 characters and a password of 0 to 15 |
|
characters. Up to eight user accounts can be created. |
Parameters |
admin <username> – Name of the administrator account. |
|
user <username> – Name of the user account. |
Restrictions |
Only Administrator-level users can issue this command. |
|
Usernames can be between 1 and 15 characters. |
|
Passwords can be between 0 and 15 characters. |
Example usage:
To create an administrator-level user account with the username “dlink”.
DES-3200-28:4#create account admin dlink
Command: create account admin dlink
Enter a case-sensitive new password:****
Enter the new password again for confirmation:****
Success.
DES-3200-28:4#
NOTICE: In the case of lost passwords or password corruption, please refer to Appendix C Password Recovery Procedure, at the end of this manual which will guide you through the steps necessary to resolve this issue.
12
xStack® DES-3200 Series Layer 2 Ethernet Managed Switch CLI Reference Guide
config account
Purpose |
Used to configure user accounts. |
Syntax |
config account <username> {encrypt [plain_text|sha_1] <password>} |
Description |
This command is used to configure a user account that has been created using the |
|
create account command. When the password information is not specified in the |
|
command, the system will prompt the user to input the password interactively. For |
|
this case, the user can only input the plain text password. |
|
If the password is present in the command, the user can select to input the |
|
password in the plain text form or in the encrypted form. The encryption algorithm is |
|
based on SHA-1. |
Parameters |
<username> – The name of the account. The account must already be defined. |
|
plain_text – Select to specify the password in plain text form. |
|
sha_1 – Select to specify the password in the SHA-1 encrypted form. |
|
password – The password for the usefr account. The length of the password in plain |
|
text form and in encrypted form are different. For the plain text form, passwords must |
|
have a minimum of 0 character and can have a maximum of 15 characters. For the |
|
encrypted form password, the length is fixed to 35 bytes long. The password is case- |
|
sensitive. |
Restrictions |
Only Administrator-level users can issue this command. |
|
Usernames can be between 1 and 15 characters. |
|
Passwords can be between 0 and 15 characters. |
Example usage:
To configure the user password of “dlink” account:
DES-3200-28:4#config account dlink
Command: config account dlink
Enter a old password:****
Enter a case-sensitive new password:****
Enter the new password again for confirmation:****
Success.
DES-3200-28:4#
13
xStack® DES-3200 Series Layer 2 Ethernet Managed Switch CLI Reference Guide
show account
Purpose |
Used to display user accounts. |
Syntax |
show account |
Description |
This command is used to display all user accounts created on the |
|
Switch. Up to eight user accounts can exist at one time. |
Parameters |
None. |
Restrictions |
Only Administrator-level users can issue this command. |
Example usage:
To display the accounts that have been created:
DES-3200-28:4#show account
Command: show account
Current Accounts: |
Access Level |
Username |
|
---------- |
------------ |
dlink |
Admin |
Total Entries: 1 |
|
DES-3200-28:4# |
|
delete account
Purpose |
Used to delete an existing user account. |
Syntax |
delete account <username> |
Description |
This command is used to delete a user account that has been |
|
created using the create account command. |
Parameters |
<username> – The name of the account to be deleted. |
Restrictions |
Only Administrator-level users can issue this command. |
Example usage:
To delete the user account “dlink”:
DES-3200-28:4#delete account dlink
Command: delete account dlink
Success.
DES-3200-28:4#
14
xStack® DES-3200 Series Layer 2 Ethernet Managed Switch CLI Reference Guide
show session
|
|
Purpose |
Used to display a list of currently logged-in users. |
|
|||
|
|
Syntax |
show session |
|
|
|
|
|
|
Description |
This command is used to display a list of all the users that are |
|
|||
|
|
|
logged-in at the time the command is issued. |
|
|
||
|
|
Parameters |
None. |
|
|
|
|
|
|
Restrictions |
None. |
|
|
|
|
|
|
|
|
|
|
|
|
Example usage: |
|
|
|
|
|
||
To display the way that the users logged in: |
|
|
|
|
|||
|
|
|
|
|
|
||
|
DES-3200-28:4#show session |
|
|
|
|
||
|
Command: show session |
|
|
|
|
|
|
|
ID |
Login Time |
Live Time |
From |
Level |
Name |
|
|
-- |
------------------ |
------------ |
-------------- |
----- |
------------- |
|
|
8 |
0/00/00 00:00:37 |
0:36:15:410 |
Serial Port |
4 |
Anonymous |
|
|
Total Entries: 1 |
|
|
|
|
|
|
|
CTRL+C ESC q Quit SPACE n Next Page p Previous Page r Refresh |
|
|
15
xStack® DES-3200 Series Layer 2 Ethernet Managed Switch CLI Reference Guide
|
show switch |
|
|
|
|
|
|
|
|
|
Purpose |
Used to display general information about the Switch. |
|
|
|
Syntax |
show switch |
|
|
|
Description |
This command is used to display information about the Switch. |
|
|
|
Parameters |
None. |
|
|
|
Restrictions |
None. |
|
|
|
|
|
|
|
Example usage: |
|
|
|
|
To display the Switch’s information: |
|
|
|
|
|
|
|
||
|
DES-3200-28:4#show switch |
|
||
|
Command: show switch |
|
|
|
|
Device Type |
: DES-3200-28 Fast Ethernet Switch |
|
|
|
MAC Address |
: |
00-63-32-28-01-01 |
|
|
IP Address |
: |
10.90.90.90 (Manual) |
|
|
VLAN Name |
: |
default |
|
|
Subnet Mask |
: |
255.0.0.0 |
|
|
Default Gateway |
: |
0.0.0.0 |
|
|
Boot PROM Version |
: |
Build 1.00.006 |
|
|
Firmware Version |
: |
Build 1.28.005 |
|
|
Hardware Version |
: |
B1 |
|
|
System Name |
: |
|
|
|
System Location |
: |
0 days, 2 hours, 53 minutes, 20 seconds |
|
|
System Uptime |
: |
|
|
|
System Contact |
: |
|
|
|
Spanning Tree |
: Enabled |
|
|
|
GVRP |
: Disabled |
|
|
|
IGMP Snooping |
: Disabled |
|
|
|
VLAN Trunk |
: Disabled |
|
|
|
802.1X |
: Enabled |
|
|
|
Telnet |
: Enabled (TCP 23) |
|
|
|
Web |
: Enabled (TCP 80) |
|
|
|
RMON |
: Enabled |
|
|
|
SSH |
: Disabled |
|
|
|
SSL |
: Disabled |
|
|
|
CLI Paging |
: Enabled |
|
|
|
Syslog Global State: Disabled |
|
||
|
Dual Image |
: Supported |
|
|
|
Password Encryption Status : Disabled |
|
||
|
DES-3200-28:4# |
|
|
|
16
xStack® DES-3200 Series Layer 2 Ethernet Managed Switch CLI Reference Guide
show serial_port
Purpose |
Used to display the current serial port settings. |
Syntax |
show serial_port |
Description |
This command is used to display the current serial port settings. |
Parameters |
None. |
Restrictions |
None |
Example usage:
To display the serial port setting:
DES-3200-28:4#show serial_port
Command: show serial_port
Baud Rate |
: 9600 |
|
Data Bits |
: 8 |
|
Parity Bits |
: None |
|
Stop Bits |
: |
1 |
Auto-Logout |
: |
10 mins |
DES-3200-28:4#
17
xStack® DES-3200 Series Layer 2 Ethernet Managed Switch CLI Reference Guide
config serial_port
Purpose Used to configure the serial port.
Syntax config serial_port { baud_rate [9600 | 19200 | 38400 | 115200] | auto_logout [never | 2_minutes | 5_minutes | 10_minutes | 15_minutes] } (1)
Description This command is used to configure the serial port’s baud rate and auto logout settings.
Parameters baud_rate [9600 | 19200 | 38400 | 115200] − The serial bit rate that will be used to communicate with the management host. There are four options: 9600, 19200, 38400, and 115200.
never − No time limit on the length of time the console can be open with no user input.
2_minutes − The console will log out the current user if there is no user input for 2 minutes.
5_minutes − The console will log out the current user if there is no user input for 5 minutes.
10_minutes − The console will log out the current user if there is no user input for 10 minutes.
15_minutes − The console will log out the current user if there is no user input for 15 minutes.
Restriction Only Administrator-level users can issue this command. s
Example usage:
To configure the baud rate:
DES-3200-28:4#config serial_port baud_rate 115200
Command: config serial_port baud_rate 115200
Success.
DES-3200-28:4#
18
xStack® DES-3200 Series Layer 2 Ethernet Managed Switch CLI Reference Guide
enable clipaging
Purpose |
Used to pause the scrolling of the console screen when a command |
|
displays more than one page. |
Syntax |
enable clipaging |
Description |
This command is used when issuing a command which causes the |
|
console screen to rapidly scroll through several pages. This |
|
command will cause the console to pause at the end of each page. |
|
The default setting is enabled. |
Parameters |
None. |
Restrictions |
Only Administrator-level users can issue this command. |
|
|
Example usage:
To enable pausing of the screen display when the show command output reaches the end of the page:
DES-3200-28:4#enable clipaging
Command: enable clipaging
Success.
DES-3200-28:4#
disable clipaging
Purpose |
Used to disable the pausing of the console screen scrolling at the |
|
end of each page when a command displays more than one screen |
|
of information. |
Syntax |
disable clipaging |
Description |
This command is used to disable the pausing of the console screen |
|
at the end of each page when a command would display more than |
|
one screen of information. |
Parameters |
None. |
Restrictions |
Only Administrator-level users can issue this command. |
|
|
Example usage:
To disable pausing of the screen display when show command output reaches the end of the page:
DES-3200-28:4#disable clipaging
Command: disable clipaging
Success.
DES-3200-28:4#
19
xStack® DES-3200 Series Layer 2 Ethernet Managed Switch CLI Reference Guide
enable telnet
Purpose |
Used to enable communication with and management of the Switch |
|
using the Telnet protocol. |
Syntax |
enable telnet {<tcp_port_number 1-65535>} |
Description |
This command is used to enable the Telnet protocol on the Switch. |
|
The user can specify the TCP port number the Switch will use to |
|
listen for Telnet requests. |
Parameters |
<tcp_port_number 1-65535> − The TCP port number. TCP ports |
|
are numbered between 1 and 65535. The “well-known” TCP port for |
|
the Telnet protocol is 23. |
Restrictions |
Only Administrator-level users can issue this command. |
|
|
Example usage:
To enable Telnet and configure port number:
DES-3200-28:4#enable telnet 23
Command: enable telnet 23
Success.
DES-3200-28:4#
disable telnet
Purpose |
Used to disable the Telnet protocol on the Switch. |
Syntax |
disable telnet |
Description |
This command is used to disable the Telnet protocol on the Switch. |
Parameters |
None. |
Restrictions |
Only Administrator-level users can issue this command. |
|
|
Example usage:
To disable the Telnet protocol on the Switch:
DES-3200-28:4#disable telnet
Command: disable telnet
Success.
DES-3200-28:4#
20
xStack® DES-3200 Series Layer 2 Ethernet Managed Switch CLI Reference Guide
telnet
Purpose |
Used to Telnet another device on the network. |
Syntax |
telnet <ipaddr> {tcp_port <value 0-65535>} |
Description |
This command is used to connect to another device’s management |
|
through Telnet. |
Parameters |
<ipaddr> − Enter the IP address of the device to connect through, |
|
using Telnet. |
|
tcp_port <value 0-65535> − Enter the TCP port number used to |
|
connect through. The common TCP port number for telnet is 23. |
Restrictions |
Only Administrator-level users can issue this command. |
|
|
Example usage:
To connect to a device through telnet with an IP address of 10.53.13.99:
DES-3200-28:4#telnet 10.53.13.99 tcp_port 23
Command: telnet 10.53.13.99 tcp_port 23
enable web
Purpose |
Used to enable the HTTP-based management software on the |
|
Switch. |
Syntax |
enable web {<tcp_port_number 1-65535>} |
Description |
This command is used to enable the Web-based management |
|
software on the Switch. The user can specify the TCP port number |
|
the Switch will use to listen for Telnet requests. |
Parameters |
<tcp_port_number 1-65535> − The TCP port number. TCP ports are |
|
numbered between 1 and 65535. The “well-known” port for the Web- |
|
based management software is 80. |
Restrictions |
Only Administrator-level users can issue this command. |
Example usage:
To enable HTTP and configure port number:
DES-3200-28:4#enable web 80
Command: enable web 80
Note: SSL will be disabled if web is enabled.
Success.
DES-3200-28:4#
21
xStack® DES-3200 Series Layer 2 Ethernet Managed Switch CLI Reference Guide
disable web
Purpose |
Used to disable the HTTP-based management software on the |
|
Switch. |
Syntax |
disable web |
Description |
This command disables the Web-based management software on |
|
the Switch. |
Parameters |
None. |
Restrictions |
Only Administrator-level users can issue this command. |
|
|
Example usage:
To disable HTTP:
DES-3200-28:4#disable web
Command: disable web
Success.
DES-3200-28:4#
save
Purpose |
Used to save changes in the Switch’s configuration to non-volatile |
|
RAM. |
Syntax |
save {[config|log|all]} |
Description |
This command is used to enter the current switch configuration into |
|
non-volatile RAM. The saved switch configuration will be loaded into |
|
the Switch’s memory each time the Switch is restarted. |
Parameters |
config – Used to save the current configuration to a file. |
|
log – Used to save the current log to a file. The log file cannot be |
|
deleted. |
|
all – Save changes to currently activated configurations and save |
|
log. If no keywords are specified, save the changes to the |
|
configuration. If there are no keywords specified, the changes will be |
|
saved to the configuration. |
Restrictions |
Only Administrator-level users can issue this command. |
|
|
Example usage:
To save the Switch’s current configuration to non-volatile RAM:
DES-3200-28:4#save config
Command: save config
Saving all configurations to NV-RAM...... Done.
Success.
DES-3200-28:4#
To save the Switch’s current log to non-volatile RAM:
22
xStack® DES-3200 Series Layer 2 Ethernet Managed Switch CLI Reference Guide
DES-3200-28:4#save log
Command: save log
Saving all log information to NV-RAM...... Done.
Success.
DES-3200-28:4#
To save the Switch’s the current configuration and log to non-volatile RAM:
DES-3200-28:4#save all
Command: save all
Saving all configurations and log information to NV-RAM...... Done. Success.
DES-3200-28:4#
reboot
Purpose |
Used to restart the Switch. |
Syntax |
reboot {force_agree} |
Description |
This command is used to restart the Switch. |
Parameters |
force_agree – When force_agree is specified, the Switch will be |
|
forced to restart immediately without further confirmation. |
Restrictions |
Only Administrator-level users can issue this command. |
|
|
Example usage:
To restart the Switch:
DES-3200-28:4#reboot
Command: reboot
Are you sure you want to proceed with the system reboot?(Y|N)
Please wait, the switch is rebooting...
To force the Switch to restart:
DES-3200-28:4#reboot force_agree
Command: reboot force_agree
Please wait, the switch is rebooting...
23
xStack® DES-3200 Series Layer 2 Ethernet Managed Switch CLI Reference Guide
reset
Purpose |
Used to reset the Switch to the factory default settings. |
Syntax |
reset {[config | system]} {force_agree} |
Description |
This command is used to restore the Switch’s configuration to the |
|
default settings assigned from the factory. |
Parameters |
config − If the keyword ‘config’ is specified, all of the factory default |
|
settings are restored on the Switch including the IP address, user |
|
accounts, and the switch history log. The Switch will not save or |
|
reboot. |
|
system − If the keyword ‘system’ is specified all of the factory default |
|
settings are restored on the Switch. The Switch will save and reboot |
|
after the settings are changed to default. Rebooting will clear all |
|
entries in the Forwarding Data Base. |
|
force_agree – When force_agree is specified, the reset command |
|
will be executed immediately without further confirmation. |
|
If no parameter is specified, the Switch’s current IP address, user |
|
accounts, and the switch history log are not changed. All other |
|
parameters are restored to the factory default settings. The Switch |
|
will not save or reboot. |
Restrictions |
Only Administrator-level users can issue this command. |
|
|
Example usage:
To restore all of the Switch’s parameters to their default values except the IP address, user accounts, and Switch logs:
DES-3200-28:4#reset Command: reset
Are you sure you want to proceed with system reset except IP address, log and user account?(y/n) Success.
DES-3200-28:4#
To restore all of the Switch’s parameters to their default values:
DES-3200-28:4#reset config
Command: reset config
Are you sure you want to proceed with system reset?(y/n)
Success.
DES-3200-28:4#
24
xStack® DES-3200 Series Layer 2 Ethernet Managed Switch CLI Reference Guide
To restore all of the Switch’s parameters to their default values and have the Switch save and reboot:
DES-3200-28:4#reset system
Command: reset system
Are you sure you want to proceed with system reset, save and reboot?(y/n) Load Factory Default Configuration... Done.
Saving all configurations to NV-RAM.. Done. Please wait, the switch is rebooting...
login
Purpose |
Used to log in a user to the Switch’s console. |
Syntax |
login |
Description |
This command is used to initiate the login procedure. The user will be |
|
prompted for a Username and Password. |
Parameters |
None. |
Restrictions |
None. |
Example usage:
To initiate the login procedure:
DES-3200-28:4#login
Command: login
UserName:
logout
Purpose |
Used to log out a user from the Switch’s console. |
Syntax |
logout |
Description |
This command terminates the current user’s session on the Switch’s |
|
console. |
Parameters |
None. |
Restrictions |
None. |
Example usage:
To terminate the current user’s console session:
DES-3200-28:4#logout
25