D-link DGS-1510-28XMP User Manual [ru]
0
1
DGS-1510 Series Gigabit Ethernet SmartPro Switch CLI Reference Guide
Table of Contents
1. Introduction ............................................................................................................................................................. 1
2. Basic CLI Commands ........................................................................................................................................... 10
3. 802.1X Commands ............................................................................................................................................... 25
4. Access Control List (ACL) Commands ................................................................................................................. 38
5. Access Management Commands ........................................................................................................................ 66
6. ARP Spoofing Prevention Commands ................................................................................................................. 85
7. Asymmetric VLAN Commands ............................................................................................................................. 87
8. Authentication, Authorization, and Accounting (AAA) Commands ...................................................................... 88
9. Basic IPv4 Commands ....................................................................................................................................... 111
10. Basic IPv6 Commands ....................................................................................................................................... 118
11. BPDU Attack Protection Commands .................................................................................................................. 125
12. Cable Diagnostics Commands ........................................................................................................................... 129
13. Command Logging Commands ......................................................................................................................... 132
14. Debug Commands ............................................................................................................................................. 133
15. DHCP Auto-Configuration Commands ............................................................................................................... 146
16. DHCP Client Commands .................................................................................................................................... 148
17. DHCP Relay Commands .................................................................................................................................... 151
18. DHCP Snooping Commands ............................................................................................................................. 170
19. DHCPv6 Client Commands ................................................................................................................................ 188
20. DHCPv6 Guard Commands ............................................................................................................................... 190
21. DHCPv6 Relay Commands ................................................................................................................................ 194
22. Digital Diagnostics Monitoring (DDM) Commands ............................................................................................. 199
23. D-Link Discovery Protocol (DDP) Client Commands ......................................................................................... 208
24. Domain Name System (DNS) Commands ......................................................................................................... 211
25. DoS Prevention Commands ............................................................................................................................... 216
26. Dynamic ARP Inspection Commands ................................................................................................................ 220
27. Error Recovery Commands ................................................................................................................................ 233
28. Ethernet Ring Protection Switching (ERPS) Commands ................................................................................... 236
29. File System Commands ..................................................................................................................................... 249
30. Filter Database (FDB) Commands ..................................................................................................................... 255
31. GARP VLAN Registration Protocol (GVRP) Commands ................................................................................... 268
32. Gratuitous ARP Commands ............................................................................................................................... 276
33. IGMP Snooping Commands............................................................................................................................... 279
34. Interface Commands .......................................................................................................................................... 294
35. IP Source Guard Commands ............................................................................................................................. 307
36. IP Utility Commands ........................................................................................................................................... 313
37. IP-MAC-Port Binding (IMPB) Commands .......................................................................................................... 319
38. IPv6 Snooping Commands................................................................................................................................. 323
39. IPv6 Source Guard Commands ......................................................................................................................... 328
40. Japanese Web-based Access Control (JWAC) Commands .............................................................................. 334
41. Jumbo Frame Commands .................................................................................................................................. 345
ii
DGS-1510 Series Gigabit Ethernet SmartPro Switch CLI Reference Guide
42. Link Aggregation Control Protocol (LACP) Commands ..................................................................................... 346
43. Link Layer Discovery Protocol (LLDP) Commands ............................................................................................ 352
44. Loopback Detection (LBD) Commands .............................................................................................................. 379
45. MAC Authentication Commands ........................................................................................................................ 385
46. Mirror Commands ............................................................................................................................................... 389
47. MLD Snooping Commands ................................................................................................................................ 393
48. Multiple Spanning Tree Protocol (MSTP) Commands ....................................................................................... 408
49. Neighbor Discovery (ND) Inspection Commands .............................................................................................. 417
50. Network Access Authentication Commands ...................................................................................................... 421
51. Network Time Protocol (NTP) Commands ......................................................................................................... 434
52. Port Security Commands ................................................................................................................................... 448
53. Power over Ethernet (PoE) Commands ............................................................................................................. 454
54. Power Saving Commands .................................................................................................................................. 467
55. Protocol Independent Commands ...................................................................................................................... 473
56. Quality of Service (QoS) Commands ................................................................................................................. 479
57. Remote Network MONitoring (RMON) Commands ........................................................................................... 512
58. Router Advertisement (RA) Guard Commands ................................................................................................. 519
59. Safeguard Engine Commands ........................................................................................................................... 523
60. Secure Shell (SSH) Commands ......................................................................................................................... 530
61. Secure Sockets Layer (SSL) Commands .......................................................................................................... 537
62. sFlow Commands ............................................................................................................................................... 544
63. Simple Network Management Protocol (SNMP) Commands ............................................................................ 550
64. Single IP Management (SIM) Commands .......................................................................................................... 570
65. Spanning Tree Protocol (STP) Commands ........................................................................................................ 580
66. Stacking Commands .......................................................................................................................................... 592
67. Storm Control Commands .................................................................................................................................. 597
68. Surveillance VLAN Commands .......................................................................................................................... 602
69. Switch Port Commands ...................................................................................................................................... 608
70. System File Management Commands ............................................................................................................... 613
71. System Log Commands ..................................................................................................................................... 624
72. Time and SNTP Commands .............................................................................................................................. 632
73. Time Range Commands .................................................................................................................................... 638
74. Traffic Segmentation Commands ....................................................................................................................... 641
75. Virtual LAN (VLAN) Commands ......................................................................................................................... 643
76. Voice VLAN Commands ..................................................................................................................................... 656
77. Web Authentication Commands ......................................................................................................................... 663
Appendix A - System Log Entries ................................................................................................................................. 668
Appendix B - Trap Entries ............................................................................................................................................. 693
Appendix C - RADIUS Attributes Assignment ............................................................................................................... 703
Appendix D - IETF RADIUS Attributes Support ............................................................................................................ 706
Appendix E - ERPS Information .................................................................................................................................... 708
iii
DGS-1510 Series Gigabit Ethernet SmartPro Switch CLI Reference Guide
Convention
Description
Boldface Font
Commands, command options and keywords are printed in
boldface. Keywords, in the command line, are to be entered exactly
as they are displayed.
UPPERCASE ITALICS Font
Parameters or values that must be specified are printed in
UPPERCASE ITALICS. Parameters in the command line are to be
replaced with the actual values that are desired to be used with the
command.
Square Brackets [ ]
Square brackets enclose an optional value or set of optional
arguments.
Braces { }
Braces enclose alternative keywords separated by vertical bars.
Generally, one of the keywords in the separated list can be chosen.
Vertical Bar |
Optional values or arguments are enclosed in square brackets and
separated by vertical bars. Generally, one or more of the vales or
arguments in the separated list can be chosen.
Blue Courier Font
This convention is used to represent an example of a screen
console display including example entries of CLI command input
with the corresponding output. All examples used in this manual are
based on the DGS-1510-28P switch.
1. Introduction
This manual’s command descriptions are based on the software release 1.30. The commands listed
here are the subset of commands that are supported by the DGS-1510 Series SmartPro Switch.
Audience
This CLI Reference Guide is intended for network administrators and other IT networking
professionals responsible for managing the switch by using the Command Line Interface (CLI). The
CLI is the primary management interface to the DGS-1510 Series SmartPro Switch, which will be
generally be referred to simply as “the Switch” within this manual. This manual is written in a way that
assumes that you already have the experience and knowledge of Ethernet and modern networking
principles for Local Area Networks.
Other Documentation
The documents below are a further source of information in regards to configuring and
troubleshooting the Switch. All the documents are available from the CD bundled with this switch, or
from the D-Link website. Other documents related to the Switch are:
DGS-1510 Series Gigabit Ethernet SmartPro Switch Hardware Installation Guide
DGS-1510 Series Gigabit Ethernet SmartPro Switch Web UI Reference Guide
Conventions
Notes, Notices, and Cautions
Below are examples of the three types of indicators used in this manual. When administering your
switch using the information in this document, you should pay special attention to these indicators.
Each example below provides an explanatory remark regarding each type of indicator.
1
DGS-1510 Series Gigabit Ethernet SmartPro Switch CLI Reference Guide
NOTE: A note indicates important information that helps you make better use of your
device.
NOTICE: A notice indicates either potential damage to hardware or loss of data and tells
you how to avoid the problem.
CAUTION: A caution indicates a potential for property damage, personal injury, or death.
Command Descriptions
The information pertaining to each command in this reference guide is presented using a number of
template fields. The fields are:
Description - This is a short and concise statement describing the commands functionality.
Syntax - The precise form to use when entering and issuing the command.
Parameters - A table where each row describes the optional or required parameters, and
their use, that can be issued with the command.
Default - If the command sets a configuration value or administrative state of the Switch then
any default settings (i.e. without issuing the command) of the configuration is shown here.
Command Mode - The mode in which the command can be issued. These modes are
described in the section titled “Command Modes” below.
Command Default Level – The user privilege level in which the command can be issued.
Usage Guideline - If necessary, a detailed description of the command and its various
utilization scenarios is given here.
Example(s) - Each command is accompanied by a practical example of the command being
issued in a suitable scenario.
Command Modes
There are several command modes available in the command-line interface (CLI). The set of
commands available to the user depends on both the mode the user is currently in and their privilege
level. For each case, the user can see all the commands that are available in a particular command
mode by entering a question mark (?) at the system prompt.
The command-line interface has three pre-defined privilege levels:
Basic User - Privilege Level 1. This user account level has the lowest priority of the user
accounts. The purpose of this type of user account level is for basic system checking.
Operator - Privilege Level 12. This user account level is used to grant system configuration
rights for users who need to change or monitor system configuration, except for security
related information such as user accounts and SNMP account settings, etc.
Administrator - Privilege Level 15. This administrator user account level can monitor all
system information and change any of the system configuration settings expressed in this
configuration guide.
The command-line interface has a number of command modes. There are three basic command
modes:
User EXEC Mode
Privileged EXEC Mode
Global Configuration Mode
2
DGS-1510 Series Gigabit Ethernet SmartPro Switch CLI Reference Guide
Command Mode /
Privilege Level
Purpose
User EXEC Mode /
Basic User level
This level has the lowest priority of the user accounts. It is provided
only to check basic system settings.
Privileged EXEC Mode /
Operator level
For changing both local and global terminal settings, monitoring, and
performing certain system administration tasks. The system
administration tasks that can be performed at this level except for any
security related information.
Privileged EXEC Mode /
Administrator level
This level is identical to privileged EXEC mode at the operator level,
except that a user at the administrator level can monitor and clear
security related settings.
Global Configuration Mode /
Operator level
For applying global settings, except for security related settings, on
the entire switch. In addition to applying global settings on the entire
switch, the user can access other sub-configuration modes from
global configuration mode.
Global Configuration Mode /
Administrator level
For applying global settings on the entire switch. In addition to
applying global settings on the entire switch, the user can access
other sub-configuration modes from global configuration mode.
Interface Configuration Mode
/ Administrator level
For applying interface related settings.
VLAN Interface Configuration
Mode
For applying VLAN interface related settings.
All other sub-configuration modes can be accessed via the Global Configuration Mode.
When a user logs in to the Switch, the privilege level of the user determines the command mode the
user will enter after initially logging in. The user will either log into User EXEC Mode or the Privileged
EXEC Mode.
Users with a basic user level will log into the Switch in the User EXEC Mode.
Users with operator or administrator level accounts will log into the Switch in the Privileged
EXEC Mode.
Therefore, the User EXEC Mode can operate at a basic user level and the Privileged EXEC Mode can
operate at the operator, or administrator levels. The user can only enter the Global Configuration
Mode from the Privileged EXEC Mode. The Global Configuration Mode can be accessed by users
who have operator or administrator level user accounts.
As for sub-configuration modes, a subset of those can only be accessed by users who have the
highest secure administrator level privileges.
The following table briefly lists the available command modes. Only the basic command modes and
some of the sub-configuration modes are enumerated. The basic command modes and basic subconfiguration modes are further described in the following chapters. Descriptions for the rest of the
sub-configuration modes are not provided in this section. For more information on the additional subconfiguration modes, the user should refer to the chapters relating to these functions.
The available command modes and privilege levels are described below:
User EXEC Mode at Basic User Level
This command mode is mainly designed for checking basic system settings. This command mode can
be entered by logging in as a basic user.
Privileged EXEC Mode at Operator Level
3
DGS-1510 Series Gigabit Ethernet SmartPro Switch CLI Reference Guide
NOTE: By default, one user account is already configured on the Switch. Both the
username and password for this account is admin, and the privilege level is 15.
Users logged into the Switch in privileged EXEC mode at this level can change both local and global
terminal settings, monitor, and perform system administration tasks (except for security related
information). The method to enter privileged EXEC mode at operator level is to login to the Switch
with a user account that has a privilege level of 12.
Privileged EXEC Mode at Administrator Level
This command mode has a privilege level of 15. Users logged in with this command mode can
monitor all system information and change any system configuration settings mentioned in this
Configuration Guide. The method to enter privileged EXEC mode at administrator level is to login to
the Switch with a user account that has a privilege level of 15.
Global Configuration Mode
The primary purpose of the global configuration mode is to apply global settings on the entire switch.
Global configuration mode can be accessed at operator or administrator level user accounts. However,
security related settings are not accessible at operator user account. In addition to applying global
settings on the entire switch, the user can also access other sub-configuration modes. In order to
access the global configuration mode, the user must be logged in with the corresponding account
level and use the configure terminal command in the privileged EXEC mode.
In the following example, the user is logged in as an Administrator in the Privileged EXEC Mode and
uses the configure terminal command to access the Global Configuration Mode:
Switch# configure terminal
Switch(config)#
The exit command is used to exit the global configuration mode and return to the privileged EXEC
mode.
Switch(config)# exit
Switch#
The procedures to enter the different sub-configuration modes can be found in the related chapters in
this Configuration Guide. The command modes are used to configure the individual functions.
Interface Configuration Mode
Interface configuration mode is used to configure the parameters for an interface or a range of
interfaces. An interface can be a physical port, VLAN, or other virtual interface. Thus, interface
configuration mode is distinguished further according to the type of interface. The command prompt
for each type of interface is slightly different.
VLAN Interface Configuration Mode
VLAN interface configuration mode is one of the available interface modes and is used to configure
the parameters of a VLAN interface.
To access VLAN interface configuration mode, use the following command in global configuration
mode:
Switch(config)# interface vlan 1
Switch(config-if)#
Creating a User Account
You can create different user account for various levels. This section will assist a user with creating a
user account by means of the Command Line Interface.
4
DGS-1510 Series Gigabit Ethernet SmartPro Switch CLI Reference Guide
Observe the following example.
Switch>enable
Switch#configure terminal
Switch(config)#username user1 password pass1234
Switch(config)#username user1 privilege 15
Switch(config)#line console
Switch(config-line)#login local
Switch(config-line)#
In the above example we had to navigate and access the username command.
Starting in the User EXEC Mode we enter the command enable to access the Privileged
EXEC Mode.
After accessing the Privileged EXEC Mode, we entered the command configure terminal to
access the Global Configuration Mode. The username command can be used in the Global
Configuration Mode.
The command username user1 password pass1234 creates a user account with the
username of user1 and a password of pass1234.
The command username user1 privilege 15 assigns a privilege level value of 15 to the user
account admin.
The command line console allows us to access the console interface’s Line Configuration
Mode.
The command login local tell the Switch that users need to enter locally configured login
credentials to access the console interface.
Save the running configuration to the start-up configuration. This means to save the changes made so
that when the Switch is rebooted, the configuration will not be lost. The following example shows how
to save the running configuration to the start-up configuration.
Switch#copy running-config startup-config
Destination filename startup-config? [y/n]: y
Saving all configurations to NV-RAM.......... Done.
Switch#
After the Switch was rebooted, or when the users logs out and back in, the newly created username
and password must be entered to access the CLI interface again, as seen below.
DGS-1510-28XMP Gigabit Ethernet SmartPro Switch
Command Line Interface
Firmware: Build 1.30.003
Copyright(C) 2015 D-Link Corporation. All rights reserved.
User Access Verification
Username:user1
Password:********
Switch#
5
DGS-1510 Series Gigabit Ethernet SmartPro Switch CLI Reference Guide
Error Message
Meaning
Ambiguous command
Not enough keywords were entered for the Switch to recognize the
command.
Incomplete command
The command was not entered with all the required keyword.
Invalid input detected at
^marker
The command was entered incorrectly.
Interface Notation
When configuration the physical ports available on this switch, a specific interface notation is used.
The following will explain the layout, terminology and use of this notation.
In the following example, we will enter the Global Configuration Mode and then enter the Interface
Configuration Mode, using the notation 1/0/1. After entering the Interface Configuration Mode for port
1, we will change the speed to 1 Gbps, using the speed 1000 command.
Switch# configure terminal
Switch(config)# interface Ethernet 1/0/1
Switch(config-if)# speed 1000
Switch(config-if)#
In the above example the notation 1/0/1 was used. The terminology for each parameter is as follows:
Interface Unit’s ID / Open Slot’s ID / Port’s ID
The Interface Unit’s ID is the ID of the stacking unit without the physical stack. If stacking is disabled
or this unit is a stand-alone unit, then this parameter is irrelevant. The Open Slot’s ID is the ID of the
module plugged into the open module slot of the Switch. The DGS-1510 Series does not support any
open modules slots, thus this parameters will always by zero for this switch series. Lastly, the Port’s
ID is the physical port number of the port being configured.
In summary the above example will configure the stacked switch with the ID of 1, with the open slot ID
of 0, and the physical port number 1.
Error Messages
When the users issue a command that the Switch does not recognize, error messages will be
generated to assist users with basic information about the mistake that was made. A list of possible
error messages are found in the table below.
The following example shows how an ambiguous command error message is generated.
Switch# show v
Ambiguous command
Switch#
The following example shows how an incomplete command error message is generated.
Switch# show
Incomplete command
Switch#
The following example shows how an invalid input error message is generated.
6
DGS-1510 Series Gigabit Ethernet SmartPro Switch CLI Reference Guide
Keystroke
Description
Delete
Deletes the character under the cursor and shifts the remainder of
the line to the left.
Backspace
Deletes the character to the left of the cursor and shifts the
remainder of the line to the left.
Left Arrow
Moves the cursor to the left.
Right Arrow
Moves the cursor to the right.
CTRL+R
Toggles the insert text function on and off. When on, text can be
inserted in the line and the remainder of the text will be shifted to
the right. When off, text can be inserted in the line and old text will
automatically be replaced with the new text.
Return
Scrolls down to display the next line or used to issue a command.
Space
Scrolls down to display the next page.
ESC
Escapes from the displaying page.
Switch# show verb
^
Invalid input detected at ^marker
Switch#
Editing Features
The command line interface of this switch supports to following keyboard keystroke editing features.
Display Result Output Modifiers
Results displayed by show commands can be filtered using the following parameters:
begin FILTER-STRING - This parameter is used to start the display with the first line that
matches the filter string.
include FILTER-STRING - This parameter is used to display all the lines that match the filter
string.
exclude FILTER-STRING - This parameter is used to exclude the lines that match the filter
string from the display.
The example below shows how to use the begin FILTER-STRING parameter in a show command.
7
DGS-1510 Series Gigabit Ethernet SmartPro Switch CLI Reference Guide
Switch#show running-config | begin # AAA
# AAA
configure terminal
# AAA START
no aaa new-model
# AAA END
end
# PRIVMGMT
configure terminal
# COMMAND LEVEL START
# COMMAND LEVEL END
# LEVEL START
# LEVEL END
# ACCOUNT START
# ACCOUNT END
# LOGIN START
# LOGIN END
end
# CLI
# BASIC
CTRL+C ESC q Quit SPACE n Next Page ENTER Next Entry a All
The example below shows how to use the include FILTER-STRING parameter in a show command.
Switch#show running-config | include # DEVICE
# DEVICE
Switch#
The example below shows how to use the exclude FILTER-STRING parameter in a show command.
8
DGS-1510 Series Gigabit Ethernet SmartPro Switch CLI Reference Guide
Switch#show running-config | exclude # DEVICE
Building configuration...
Current configuration : 37933 bytes
#-------------------------------------------------------------------------------
# DGS-1510-28XMP Gigabit Ethernet SmartPro Switch
# Configuration
#
# Firmware: Build 1.30.003
# Copyright(C) 2015 D-Link Corporation. All rights reserved.
#-------------------------------------------------------------------------------
# STACK
end
end
configure terminal
end
# AAA
CTRL+C ESC q Quit SPACE n Next Page ENTER Next Entry a All
9
DGS-1510 Series Gigabit Ethernet SmartPro Switch CLI Reference Guide
2. Basic CLI Commands
2-1 help
This command is used to display a brief description of the help system. Use the help command in any
command mode.
help
Parameters
None.
Default
None.
Command Mode
EXEC Mode or Any Configuration Mode.
Command Default Level
Level: 1.
Usage Guideline
The help command provides a brief description for the help system, which includes the following
functions:
To list all commands available for a particular command mode, enter a question mark (?) at
To obtain a list of commands that begin with a particular character string, enter the
To list the keywords and arguments associated with a command, enter a question mark (?) in
Example
This example shows how the help command is used to display a brief description of the help system.
the system prompt.
abbreviated command entry immediately followed by a question mark (?). This form of help is
called word help, because it lists only the keywords or arguments that begin with the
abbreviation entered.
place of a keyword or argument on the command line. This form of help is called the
command syntax help, because it lists the keywords or arguments that apply based on the
command, keywords, and arguments already entered.
10
DGS-1510 Series Gigabit Ethernet SmartPro Switch CLI Reference Guide
PRIVILEGE-LEVEL
(Optional) Specifies to set the privilege level for the user. The
privilege level is between 1 and 15. If not specified, level 15 will be
used.
Switch#help
The switch CLI provides advanced help feature.
1. Help is available when you are ready to enter a command
argument (e.g. 'show ?') and want to know each possible
available options.
2. Help is provided when an abbreviated argument is entered
and you want to know what arguments match the input(e.g. 'show ve?'.).
If nothing matches, the help list will be empty and you must backup
until entering a '?' shows the available options.
3. For completing a partial command name could enter the abbreviated
command name immediately followed by a <Tab> key.
Note:
Since the character '?' is used for help purpose, to enter
the character '?' in a string argument, press ctrl+v immediately
followed by the character '?'.
Switch#
The following example shows how to use the word help to display all the Privileged EXEC Mode
commands that begin with the letters “re”. The letters entered before the question mark (?) are
reprinted on the next command line to allow the user to continue entering the command.
Switch#re?
reboot rename renew reset
Switch#re
The following example shows how to use the command syntax help to display the next argument of
a partially complete IP access-list standard command. The characters entered before the question
mark (?) is reprinted on the next command line to allow the user to continue entering the command.
Switch(config)#ip access-list standard ?
<1-1999> Standard IP access-list number
<cr>
Switch(config)#ip access-list standard
2-2 enable
This command is used to enter the Privileged EXEC Mode.
enable [PRIVILEGE-LEVEL]
Parameters
Default
None.
Command Mode
11
DGS-1510 Series Gigabit Ethernet SmartPro Switch CLI Reference Guide
PRIVILEGE LEVEL
Specifies the privilege level to enter. If not specified, level 1 is used.
User EXEC Mode.
Privilege EXEC Mode.
Command Default Level
Level: 1.
Usage Guideline
Execute this command if the current level is lower than the command level. If the privileged level
requires a password, enter it in the field provided. However, only three attempts are allowed. Failure
to access this level returns the user to the current level.
Example
This example shows how to enter the Privileged EXEC Mode.
Switch# enable 15
password:***
Switch#
2-3 disable
This command is used to downgrade to a level lower user level than the privileged level.
disable [PRIVILEGE-LEVEL]
Parameters
Default
None.
Command Mode
User EXEC Mode.
Privilege EXEC Mode.
Command Default Level
Level: 1.
Usage Guideline
Use this command to enter the privilege level, which is lower than the current level. When using this
command to enter the privilege level, that has a password configured, no password is needed.
Example
This example shows how to logout.
Switch# disable
Switch> logout
2-4 configure terminal
This command is used to enter the Global Configuration Mode.
configure terminal
12
DGS-1510 Series Gigabit Ethernet SmartPro Switch CLI Reference Guide
Parameters
None.
Default
None
Command Mode
Privilege EXEC Mode.
Command Default Level
Level: 12.
Usage Guideline
This command is used to enter the Global Configuration Mode.
Example
This example shows how to enter into Global Configuration Mode.
Switch# configure terminal
Switch(config)#
2-5 login (EXEC)
This command is used to configure a login username.
login
Parameters
None.
Default
None.
Command Mode
User EXEC Mode.
Privileged EXEC Mode.
Command Default Level
Level: 1.
Usage Guideline
Example
Use this command to change the login account. Three attempts are allowed to login to the Switch’s
interface. When using Telnet, if all attempts fail, access will return to the command prompt. If no
information is entered within 60 seconds, the session will return to the state when logged out.
This example shows how to login with username “user1”.
Switch# login
Username: user1
Password: xxxxx
Switch#
13
DGS-1510 Series Gigabit Ethernet SmartPro Switch CLI Reference Guide
login
Specifies that the line login method will be login.
local
Specifies that the line login method will be local.
2-6 login (Line)
This command is used to set the line login method. Use the no form of this command to disable the
login.
login [local]
no login
Parameters
Default
By default, all line interfaces use the login local method (by username and password).
Command Mode
Line Configuration Mode.
Command Default Level
Level: 15.
Usage Guideline
For Console and Telnet access, when AAA is enabled, the line uses rules configured by the AAA
module. When AAA is disabled, the line uses the following authentication rules:
When login is disabled, the user can enter the line at Level 1.
When the by password option is selected, after inputting the same password as the
command password, the user enter the line at level 1. If the password wasn’t previously
configured an error message will be displayed and the session will be closed.
When the username and password option is selected, enter the username and password
configured by the username command.
For SSH access, there are three authentication types:
SSH public key,
Host-based authentication, and
Password authentication.
The SSH public key and host-based authentication types are independent from the login command in
the line mode. If the authentication type is password, the following rules apply:
When AAA is enabled, the AAA module is used.
When AAA is disabled, the following rules are used:
o When login is disabled, the username and password is ignored. Enter the details at
Level 1.
o When the username and password option is selected, use the username and
password setup by the username command.
o When the password option is selected, the username is ignored but a password is
required using the password command to enter the line at level 1.
Example
This example shows how to enter the Line Configuration Mode and to create a password for the line
user. This password only takes effect once the corresponding line is set to login.
Switch# configure terminal
Switch(config)# line console
Switch(config-line)# password loginpassword
Switch(config-line)#
14
DGS-1510 Series Gigabit Ethernet SmartPro Switch CLI Reference Guide
This example shows how to configure the line console login method as “login”.
Switch# configure terminal
Switch(config)# line console
Switch(config-line)# login
Switch(config-line)#
This example shows how to enter the login command. The device will check the validity of the user
from the password create command. If correct, the user will have access at the particular level.
Switch#login
Password:*************
Switch#
This example shows how to create a username “useraccount” with the password of “pass123” and
use Privilege 12.
Switch# configure terminal
Switch(config)# username useraccount privilege 12 password 0 pass123
Switch(config)#
This example shows how to configure the login method as login local.
Switch# configure terminal
Switch(config)# line console
Switch(config-line)# login local
Switch(config-line)#
2-7 logout
This command is used to close an active terminal session by logging off the Switch.
Parameters
None.
Default
None.
logout
Command Mode
User EXEC Mode.
Privilege EXEC Mode.
Command Default Level
Level:1.
Usage Guideline
Use this command to close an active terminal session by logging out of the device.
Example
This example shows how to logout
15
DGS-1510 Series Gigabit Ethernet SmartPro Switch CLI Reference Guide
Switch# disable
Switch# logout
2-8 end
This command is used to end the current configuration mode and return to the highest mode in the
CLI mode hierarchy which is either the User EXEC Mode or the Privileged EXEC Mode.
end
Parameters
None.
Default
None.
Command Mode
EXEC Mode or Any Configuration Mode.
Command Default Level
Level: 1.
Usage Guideline
Executing this command will return access to the highest mode in the CLI hierarchy regardless of
what configuration mode or configuration sub-mode currently located at.
Example
This example shows how to end the Interface Configuration Mode and go back to the Privileged
EXEC Mode.
Switch# configure terminal
Switch(config)# interface eth1/0/1
Switch(config-if)#end
Switch#
2-9 exit
This command is used to end the configuration mode and go back to the last mode. If the current
mode is the User EXEC Mode or the Privilege EXEC Mode, executing the exit command logs you out
of the current session.
exit
Parameters
None.
Default
None.
Command Mode
EXEC Mode or Any Configuration Mode.
Command Default Level
16
DGS-1510 Series Gigabit Ethernet SmartPro Switch CLI Reference Guide
Level: 1.
Usage Guideline
Use this command to exit the current configuration mode and go back to the last mode. When the
user is in the User EXEC Mode or the Privilege EXEC Mode, this command will logout the session.
Example
This example shows how to exit from the Interface Configuration Mode and return to the Global
Configuration Mode.
Switch# configure terminal
Switch(config) interface eth1/0/1
Switch(config-if)#exit
Switch(config)#
2-10 show history
This command is used to list the commands entered in the current EXEC Mode session.
show history
Parameters
None.
Default
None.
Command Mode
EXEC Mode or Any Configuration Mode.
Command Default Level
Level: 1.
Usage Guideline
Commands entered are recorded by the system. A recorded command can be recalled by pressing
CTRL+P or the Up Arrow key which will recall previous commands in sequence. The history buffer
size is fixed at 20 commands.
The function key instructions, below, displays how to navigate the command in the history buffer.
CTRL+P or the Up Arrow key - Recalls commands in the history buffer, beginning with the
most recent command. Repeat the key sequence to recall successively older commands.
CTRL+N or the Down Arrow key - Returns to more recent commands in the history buffer
after recalling commands with Ctrl-P or the Up Arrow key. Repeat the key sequence to recall
successively more recent commands.
Example
This example shows how to display the command buffer history.
Switch# show history
help
history
Switch#
17
DGS-1510 Series Gigabit Ethernet SmartPro Switch CLI Reference Guide
fan
(Optional) Specifies to display the Switch fan detailed status.
power
(Optional) Specifies to display the Switch power detailed status.
temperature
(Optional) Specifies to display the Switch temperature detailed
status.
Power status
in-operation: The power rectifier is in normal operation.
failed: The power rectifier not working normally.
empty: The power rectifier is not installed.
2-11 show environment
This command is used to display fan, temperature, power availability and status information.
show environment [fan | power | temperature]
Parameters
Default
None.
Command Mode
EXEC Mode or Any Configuration Mode.
Command Default Level
Level: 1.
Usage Guideline
If the type is not specified, all types of environment information will be displayed.
Example
This example shows how to display fan, temperature, power availability and status information.
Switch#show environment
Detail Temperature Status:
Unit Temperature Descr/ID Current/Threshold Range
----- ------------------------------------------------------
1 Central Temperature/1 27C/11~79C
Status code: * temperature is out of threshold range
Detail Fan Status:
--------------------------------------------------------------
Right Fan 1 (OK) Right Fan 2 (OK)
Detail Power Status:
Unit Power Module Power Status
----- ---------------- -------------
1 Power 1 in-operation
Switch#
Display Parameters
18
DGS-1510 Series Gigabit Ethernet SmartPro Switch CLI Reference Guide
UNIT-ID
(Optional) Specify the unit to display.
2-12 show unit
This command is used to display information about system units.
show unit [UNIT-ID]
Parameters
Default
None.
Command Mode
EXEC Mode or Any Configuration Mode.
Command Default Level
Level: 1.
Usage Guideline
Example
This command displays information about the system modules. If no option is specified, then all of
units’ information will be displayed.
This example shows how to display the information about units on a system.
Switch#show unit
Unit Model Descr Model Name
---- ------------------------------------------- ------------------
1 No module description DGS-1510-28P
Unit Serial-Number Status Up Time
---- --------------------------------- --------- -----------------
1 ok 0DT6H32M18S
Unit Memory Total Used Free
---- -------- ---------- ---------- ----------
1 DRAM 131072 K 66567 K 64505 K
1 FLASH 29937 K 7799 K 22138 K
Switch#
2-13 show cpu utilization
This command is used to display the CPU utilization information.
show cpu utilization
Parameters
None.
Default
None.
19
DGS-1510 Series Gigabit Ethernet SmartPro Switch CLI Reference Guide
Command Mode
EXEC Mode or Any Configuration Mode.
Command Default Level
Level: 1.
Usage Guideline
This command displays the system’s CPU utilization information in 5 second, 1 minute, and 5 minute
intervals.
Example
This example shows how to display the information about CPU utilization.
Switch#show cpu utilization
CPU Utilization
Five seconds - 8 % One minute - 7 % Five minutes - 7 %
Switch#
2-14 show version
This command is used to display the Switch’s software version information.
show version
Parameters
None.
Default
None.
Command Mode
EXEC Mode or Any Configuration Mode.
Command Default Level
Level: 1.
Usage Guideline
This command displays version information about the Switch.
Example
This example shows how to displays version information about the Switch.
20
DGS-1510 Series Gigabit Ethernet SmartPro Switch CLI Reference Guide
fan
(Optional) Specifies to enable the fan trap state for warning fan
event (fan failed or fan recover).
power
(Optional) Specifies to enable the power trap state for warning
power event (power failed or power recover).
temperature
(Optional) Specifies to enable the temperature trap state for warning
temperature event (temperature exceeds the thresholds or
temperature recover).
Switch#show version
System MAC Address: 3C-1E-04-A1-CC-00
Unit ID Module Name Versions
------- ------------------ ---------------------
1 DGS-1510-28XMP H/W:A1
Bootloader:1.00.012
Runtime:1.30.003
Switch#
2-15 snmp-server enable traps environment
This command is used to enable the power, temperature and fan trap state.
snmp-server enable traps environment [fan] [power] [temperature]
no snmp-server enable traps environment [fan] [power] [temperature]
Parameters
Default
None.
Command Mode
Global Configuration Mode.
Command Default Level
Level: 12.
Usage Guideline
This command is used to configure the environment temperature threshold which corresponds to the
normal range of the temperature defined for the sensor. The low threshold must be smaller than the
high threshold. The configured range must fall within the operational range which corresponds to the
minimum and maximum allowed temperatures defined for the sensor. When the configured threshold
is crossed, a notification will be sent.
Example
This example shows how to configure the environment temperature thresholds for thermal sensor ID 1
on unit 1.
Switch# configure terminal
Switch(config)# environment temperature threshold unit 1 thermal 1 high 100 low 20
Switch(config)#
21
DGS-1510 Series Gigabit Ethernet SmartPro Switch CLI Reference Guide
unit UNIT-ID
Specifies the unit ID.
thermal THERMAL-ID
Specifies the thermal sensor’s ID.
high
(Optional) Specifies the high threshold of the temperature in
Celsius. The range is from -100 to 200.
low
(Optional) Specifies the low threshold of the temperature in Celsius.
The range is from -100 to 200. The low threshold must be smaller
than the high threshold.
MODE
Specifies the command mode of the command.
2-16 environment temperature threshold
This command is used to configure the environment temperature thresholds. Use the no form of this
command to revert to the default setting.
environment temperature threshold unit UNIT-ID thermal THREMAL-ID [high VALUE] [low
VALUE]
no environment temperature threshold unit UNIT-ID thermal THREMAL-ID [high] [low]
Parameters
Default
None.
Command Mode
Global Configuration Mode.
Command Default Level
Level: 12.
Usage Guideline
This command is used to configure the environment temperature threshold which corresponds to the
normal range of the temperature defined for the sensor. The low threshold must be smaller than the
high threshold. The configured range must fall within the operational range which corresponds to the
minimum and maximum allowed temperatures defined for the sensor. When the configured threshold
is crossed, a notification will be sent.
Example
This example shows how to configure the environment temperature thresholds for thermal sensor ID 1
on unit 1.
Switch# configure terminal
Switch(config)# environment temperature threshold unit 1 thermal 1 high 100 low 20
Switch(config)#
2-17 privilege
This command is used to configure the execution rights of a command string to a privilege level. Use
the no form of this command to revert the command string to the default setting level.
privilege MODE {level PRIVILEGE-LEVEL | reset } COMMAND-STRING
no privilege MODE COMMAND-STRING
Parameters
22
DGS-1510 Series Gigabit Ethernet SmartPro Switch CLI Reference Guide
level PRIVILEGE-LEVEL
Specifies the level of the execution right. The value is from 1 to 15.
reset
Specifies to revert the command to the default setting level.
COMMAND-STRING
Specifies the command to be changed.
Default
None.
Command Mode
Global Configuration Mode.
Command Default Level
Level: 15.
Usage Guideline
This command is used to configure the execution rights of a command string to a privilege level.
When this command is used, the command string used must exist at current command level. When
more than one command begins with the command string specified, all of the commands starting with
that command string will be changed to the specified command level.
Example
This example shows how to configure the configure terminal command string as a level 1 command.
Switch#configure terminal
Switch(config)#privilege exec level 1 configure terminal
Switch(config)#
2-18 show privilege
This command is used to display current privilege level.
show privilege
Parameters
None.
Default
None.
Command Mode
EXEC Mode or Any Configuration Mode.
Command Default Level
Level: 1.
Usage Guideline
This command is used to display current privilege level.
Example
This example shows how to display the current privilege level.
Switch# Switch#show privilege
Current privilege level is 15
Switch#
23
DGS-1510 Series Gigabit Ethernet SmartPro Switch CLI Reference Guide
24
DGS-1510 Series Gigabit Ethernet SmartPro Switch CLI Reference Guide
all
Specifies to clear 802.1X counters (diagnostics, statistics and
session statistics) on all interfaces.
interface INTERFACE-ID
Specifies to clear 802.1X counters (diagnostics, statistics and
session statistics) on the specified interface. Valid interfaces are
physical ports (including type, stack member, and port number).
,
(Optional) Specifies a series of interfaces, or separate a range of
interfaces from a previous range. No space is allowed before and
after the comma.
-
(Optional) Specifies a range of interfaces. No space is allowed
before and after the hyphen.
both
Specifies to enable bidirectional control for the port.
in
Specifies to enable in direction control for the port.
3. 802.1X Commands
3-1 clear dot1x counters
This command is used to clear 802.1X counters (diagnostics, statistics and session statistics).
clear dot1x counters {all | interface INTERFACE-ID [, | -]}
Parameters
Default
None.
Command Mode
Privileged EXEC Mode.
Command Default Level
Level: 12.
Usage Guideline
This command is used to clear 802.1X counters (diagnostics, statistics and session statistics).
Example
This example shows how to clear 802.1X counters (diagnostics, statistics and session statistics) on
the Ethernet port 1/0/1.
Switch# clear dot1x counters interface eth1/0/1
Switch#
3-2 dot1x control-direction
This command is used to configure the direction of the traffic on a controlled port as unidirectional (in)
or bidirectional (both). Use the no form of this command to revert to the default setting.
dot1x control-direction {both | in}
no dot1x control-direction
Parameters
25
DGS-1510 Series Gigabit Ethernet SmartPro Switch CLI Reference Guide
Default
By default, this option is bidirectional mode.
Command Mode
Interface Configuration Mode.
Command Default Level
Level: 12.
Usage Guideline
This command is only available for physical port interface configuration. If the port control is set to
force-authorized, then the port is not controlled in both directions. If the port control is set to auto,
then the access to the port for the controlled direction needs to be authenticated. If the port control is
set to force-unauthorized, then the access to the port for the controlled direction is blocked.
Suppose that port control is set to auto. If the control direction is set to both, then the port can receive
and transmit EAPOL packets only. All user traffic is blocked before authentication. If the control
direction is set to in, then in addition to receiving and transmitting EAPOL packets, the port can
transmit user traffic but not receive user traffic before authentication.
Example
This example shows how to configure the controlled direction of the traffic through Ethernet eth1/0/1
as unidirectional.
Switch# configure terminal
Switch(config)# interface eth1/0/1
Switch(config-if)# dot1x control-direction in
Switch(config-if)#
3-3 dot1x default
This command is used to reset the IEEE 802.1X parameters on a specific port to their default settings.
dot1x default
Parameters
None.
Default
IEEE 802.1X authentication is disabled.
Control direction is bidirectional (both).
Port control is auto.
Forward PDU on port is disabled.
Maximum request is 2 times.
Server timer is 30 seconds.
Supplicant timer is 30 seconds.
Transmit interval is 30 seconds.
Command Mode
Interface Configuration Mode.
Command Default Level
Level: 12.
Usage Guideline
26
DGS-1510 Series Gigabit Ethernet SmartPro Switch CLI Reference Guide
auto
Specifies to enable IEEE 802.1X authentication for the port.
force-authorized
Specifies the port to the force authorized state.
force-unauthorized
Specifies the port to the force unauthorized state.
This command is used to reset all the IEEE 802.1X parameters on a specific port to their default
settings.
Example
This example shows how to reset the 802.1X parameters on port 1/0/1.
Switch# configure terminal
Switch(config)# interface eth1/0/1
Switch(config-if)# dot1x default
Switch(config-if)#
3-4 dot1x port-control
This command is used to control the authorization state of a port. Use the no form of this command to
revert to the default setting.
dot1x port-control {auto | force-authorized | force-unauthorized}
no dot1x port-control
Parameters
Default
By default, this option is set as auto.
Command Mode
Interface Configuration Mode.
Command Default Level
Level: 12.
Usage Guideline
This command takes effect only when IEEE 802.1X PAE authenticator is globally enabled by the
dot1x system-auth-control command and is enabled for a specific port by using the dot1x PAE
authenticator.
This command is only available for physical port interface configuration.
If the port control is set to force-authorized, then the port is not controlled in both directions. If the
port control is set to auto, then the access to the port for the controlled direction needs to be
authenticated. If the port control is set to force-unauthorized, then the access to the port for the
controlled direction is blocked.
Example
This example shows how to deny all access on Ethernet port 1/0/1.
Switch# configure terminal
Switch(config)# interface eth1/0/1
Switch(config-if)# dot1x port-control force-unauthorized
Switch(config-if)#
27
Loading...