Microsoft, Windows, and Windows NT are US registered
trademarks of Microsoft Corporation.
Disclaimer
HEWLETT-PACKARD COMPANY MAKES NO WARRANTY
OF ANY KIND WITH REGARD TO THIS MATERIAL,
INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
WARRANTIES OF MERCHANTABILITY AND FITNESS
FOR A PARTICULAR PURPOSE. Hewlett-Packard shall not
be liable for errors contained herein or for incidental or
consequential damages in connection with the furnishing,
performance, or use of this material.
The only warranties for HP products and services are set
forth in the express warranty statements accompanying
such products and services. Nothing herein should be
construed as constituting an additional warranty. HP shall
not be liable for technical or editorial errors or omissions
contained herein.
Hewlett-Packard assumes no responsibility for the use or
reliability of its software on equipment that is not furnished
by Hewlett-Packard.
Warranty
See the Customer Support/Warranty booklet included with
the product.
A copy of the specific warranty terms applicable to your
Hewlett-Packard products and replacement parts can be
obtained from your HP Sales and Service Office or
authorized dealer.
Hewlett-Packard Company
8000 Foothills Boulevard, m/s 5551
Roseville, California 95747-5551
http://www.procurve.com
■Read Me First - a printed guide shipped with your switch. Provides
software update information, product notes, and other information.
■Installation and Getting Started Guide - a printed guide shipped
with your switch. This guide explains how to prepare for and perform
the physical installation and connection to your network.
■Management and Configuration Guide - a PDF file on the
ProCurve Networking website. This guide describes how to
configure, manage, and monitor basic switch operation.
■Advanced Traffic Management Guide - a PDF file on the ProCurve
Networking website. This guide explains the configuration and
operation of traffic management features such as spanning tree and
VLANs.
■Access Security Guide - a PDF file on the ProCurve Networking
website. This guide explains the configuration and operation of
access security and user authentication features on the switch.
■Release Notes - posted on the ProCurve web site to provide
information on software updates. The release notes describe new
features, fixes, and enhancements that become available between
revisions of the above guides.
NoteFor the latest version of all ProCurve switch documentation, including release
notes covering recently added features, visit the HP ProCurve Networking
website at http://www.procurve.com/manuals. Then select your switch product.
xv
Product Documentation
Feature Index
For the manual set supporting your switch model, the following feature index
indicates which manual to consult for information on a given software feature.
To Set Up and Install the Switch in Your Network . . . . . . . . . . . . . . . . 1-6
1
1-1
Getting Started
Introduction
Introduction
This Management and Configuration Guide is intended to support the
following switches:
■ProCurve Series 2510G
This guide describes how to use the command line interface (CLI), menu
interface, and Web browser interface to configure, manage, and monitor
switch operation. A troubleshooting chapter is also included.
For an overview of other product documentation for the above switches, refer
to “Product Documentation” on page xv.
You can download a copy from the ProCurve Website. Visit
http://www.procurve.com/manuals, then select your switch product.
Conventions
This guide uses the following conventions for command syntax and displayed
information.
Feature Descriptions by Model
In cases where a software feature is not available in all of the switch models
covered by this guide, the section heading specifically indicates which product
or product series offer the feature.
For example (the switch model is highlighted here in bold italics):
In the default configuration, your switch may display a CLI prompt similar to
the following:
ProCurve Switch 2510G-48#
To simplify recognition, this guide uses ProCurve to represent command
prompts for all models. For example:
ProCurve#
(You can use the hostname command to change the text in the CLI prompt.)
Screen Simulations
Figures containing simulated screen text and command output look like this:
Figure 1-1. Example of a Figure Showing a Simulated Screen
1-3
Getting Started
Sources for More Information
In some cases, brief command-output sequences appear outside of a
numbered figure. For example:
ProCurve(config)# ip default-gateway 18.28.152.1/24
ProCurve(config)# vlan 1 ip address 18.28.36.152/24
ProCurve(config)# vlan 1 ip igmp
Port Identity Examples
This guide describes software applicable to both chassis-based and stackable
ProCurve switches. Where port identities are needed in an example, this guide
uses the chassis-based port identity system, such as “A1”, “B3 - B5”, “C7”, etc.
However, unless otherwise noted, such examples apply equally to the
stackable switches, which for port identities typically use only numbers, such
as “1”, “3-5”, “15”, etc.
Sources for More Information
For additional information about switch operation and features not covered
in this guide, consult the following sources:
■For information on which product manual to consult on a given
software feature, refer to “Product Documentation” on page xv.
NoteFor the latest version of all ProCurve switch documentation, including
release notes covering recently added features, visit the ProCurve
Networking Website at http://www.procurve.com/manuals. Then select your
switch product.
■For information on specific parameters in the menu interface, refer
to the online help provided in the interface. For example:
1-4
Sources for More Information
Online Help
for Menu
Getting Started
Figure 1-2. Getting Help in the Menu Interface
■For information on a specific command in the CLI, type the command
name followed by “help”. For example:
Figure 1-3. Getting Help in the CLI
■For information on specific features in the Web browser interface,
use the online help. For information on Help options, see “Online Help
for the Web Browser Interface” on page 5-1.
■For further information on ProCurve Networking switch technology,
visit the ProCurve Website at:
http://www.procurve.com
1-5
Getting Started
Need Only a Quick Start?
Need Only a Quick Start?
IP Addressing
If you just want to give the switch an IP address so that it can communicate
on your network, or if you are not using multiple VLANs, ProCurve
recommends that you use the Switch Setup screen to quickly configure IP
addressing. To do so, do one of the following:
■Enter setup at the CLI Manager level prompt.
ProCurve# setup
■In the Main Menu of the Menu interface, select
8. Run Setup
For more on using the Switch Setup screen, see the Installation and Getting
Started Guide you received with the switch.
To Set Up and Install the Switch in Your Network
Important!Use the Installation Guide shipped with your switch for the following:
■Notes, cautions, and warnings related to installing and using the
switch
■Instructions for physically installing the switch in your network
■Quickly assigning an IP address and subnet mask, setting a Manager
password, and (optionally) configuring other basic features.
■Interpreting LED behavior.
For the latest version of the Installation and Getting Started Guide and other
documentation for your switch, visit the ProCurve Networking Web site.
(Refer to “Product Documentation” on page xv of this guide for further
details.)
solution included in-box with all manageable ProCurve devices. Features
include automatic device discovery, network status summary, topology
and mapping, and device management.
■ProCurve Manager Plus (PCM+)—a complete windows-based
network management solution that provides both the basic features
offered with PCM, as well as more advanced management features,
including in-depth traffic analysis, group and policy management, configuration management, device software updates, and advanced VLAN
management. (ProCurve includes a copy of PCM+ in-box for a free 30-day
trial.)
2-2
This manual describes how to use the menu interface (chapter 3), the CLI
(chapter 4), the Web browser interface (chapter 5), and how to use these
interfaces to configure and monitor the switch.
For information on how to access the Web browser interface Help, refer to
“Online Help for the Web Browser Interface” on page 5-11.
To use ProCurve Manager or ProCurve Manager Plus, refer to the Getting Started Guide and the Administrator’s Guide, which are available electronically with the software for these applications. For more information, visit the
ProCurve Web site at http://www.procurve.com.
Selecting a Management Interface
Advantages of Using the Menu Interface
Advantages of Using the Menu Interface
Figure 2-1. Example of the Console Interface Display
■Provides quick, easy management access to a menu-driven subset of
switch configuration and performance features:
• IP addressing
• VLANs and GVRP
• Port Security
• Port and Static Trunk Group
• Stack Management
• Spanning Tree
• System information
• Passwords
• SNMP communities
• Time protocols
The menu interface also provides access for:
• Setup screen
• Event Log display
• Switch and port
status displays
■Offers out-of-band access (through the RS-232 connection) to the
• Switch and port statistic and
counter displays
•Reboots
• Software downloads
switch, so network bottlenecks, crashes, lack of configured or correct IP
address, and network downtime do not slow or prevent access
■Enables Telnet (in-band) access to the menu functionality.
2-3
Selecting a Management Interface
Advantages of Using the CLI
■Allows faster navigation, avoiding delays that occur with slower
display of graphical objects over a Web browser interface.
■Provides more security; configuration information and passwords are
■Provides access to the complete set of the switch configuration, perfor-
mance, and diagnostic features.
■Offers out-of-band access (through the RS-232 connection) or Telnet (in-
band) access.
■Enables quick, detailed system configuration and management access to
system operators and administrators experienced in command prompt
interfaces.
■Provides help at each level for determining available options and vari-
ables.
CLI Usage
■For information on how to use the CLI, refer to chapter 3. “Using the Menu
Interface”.
■To perform specific procedures (such as configuring IP addressing or
VLANs), use the Contents listing at the front of the manual to locate the
information you need.
■For monitoring and analyzing switch operation, refer to appendix B.
■For information on individual CLI commands, refer to the Index or to the
online Help provided in the CLI interface.
2-4
Advantages of Using the Web Browser Interface
Selecting a Management Interface
Advantages of Using the Web Browser
Interface
Figure 2-3. Example of the Web Browser Interface
■Easy access to the switch from anywhere on the network
■Familiar browser interface--locations of window objects consistent
with commonly used browsers, uses mouse clicking for navigation, no
terminal setup
■Many features have all their fields in one screen so you can view all
values at once
■More visual cues, using colors, status bars, device icons, and other
graphical objects instead of relying solely on alphanumeric values
■Display of acceptable ranges of values available in configuration list
boxes
2-5
Selecting a Management Interface
Advantages of Using ProCurve Manager or ProCurve Manager Plus
Advantages of Using ProCurve Manager
or ProCurve Manager Plus
You can operate ProCurve Manager and ProCurve Manager Plus (PCM and
PCM+) from a PC on the network to monitor traffic, manage your hubs and
switches, and proactively recommend network changes to increase network
uptime and optimize performance. Easy to install and use, PCM and PCM+ are
the answers to your management challenges.
Figure 2-4. Example of the Home Page for ProCurve Manager Plus
PCM and PCM+ enable greater control, uptime, and performance in your
network:
2-6
Advantages of Using ProCurve Manager or ProCurve Manager Plus
■Features and benefits of ProCurve Manager:
Selecting a Management Interface
•Network Status Summary: Upon boot-up, a network status screen
displays high-level information on network devices, end nodes,
events, and traffic levels. From here, users can research any one of
these areas to get more details.
•Alerts and Troubleshooting: An events summary screen displays
alerts to the user and categorizes them by severity, making it easier
to track where bottlenecks and issues exist in the network. Alerts
present detailed information on the problem, even down to the specific port.
•Automatic Device Discovery: This feature is customized for fast
discovery of all ProCurve manageable network devices. The user can
define which IP subnets to discover.
•Topology and Mapping: This feature automatically creates a map of
discovered network devices. Maps are color-coded to reflect device
status and can be viewed at multiple levels (physical view, subnet
view, or VLAN view).
•Device Management: Many device-focused tasks can be performed
directly by the software, or the user can access Web-browser and
command-line interfaces with the click of a button to manage individual devices from inside the tool.
■Features and benefits of ProCurve Manager Plus:
•All of the Features of ProCurve Manager: Refer to the above
listing.
•In-Depth Traffic Analysis: An integrated, low-overhead traffic mon-
itor interface shows detailed information on traffic throughout the
network. Using enhanced traffic analysis protocols such as Extended
RMON and sFlow (for devices that support these protocols), users
can monitor overall traffic levels, segments with the highest traffic,
or even the top users within a network segment.
•Group and Policy Management: Changes in configuration are
tracked and logged, and archived configurations can be applied to one
or many devices. Configurations can be compared over time or
between two devices, with the differences highlighted for users.
•Advanced VLAN Management: A new, easy-to-use VLAN management interface allows users to create and assign VLANs across the
entire network, without having to access each network device individually.
Copyright (C) 1991-2008 Hewlett-Packard Co. All Rights Reserved.
RESTRICTED RIGHTS LEGEND
Use, duplication, or disclosure by the Government is subject to restrictions
as set forth in subdivision (b) (3) (ii) of the Rights in Technical Data and
Computer Software clause at 52.227-7013.
HEWLETT-PACKARD COMPANY, 3000 Hanover St., Palo Alto, CA 94303
We'd like to keep you up to date about:
* Software feature updates
* New product announcements
* Special events
Please register your products now at: www.ProCurve.com
Press any key to continue
Default banner appearing
Advantages of Using ProCurve Manager or ProCurve Manager Plus
•Device Software Updates: This feature automatically obtains new
device software images from ProCurve and updates devices, allowing
users to download the latest version or choose the desired version.
Updates can be scheduled easily across large groups of devices, all at
user-specified times.
•Investment Protection: The modular software architecture of ProCurve Manager Plus enables ProCurve to offer network administrators add-on software solutions that complement their needs.
Custom Login Banners for the Console and
Web Browser Interfaces
You can now configure the switch to display a login banner of up to 320
characters when an operator initiates a management session with the switch
through any of the following methods:
■Telnet
■serial connection
■SSHv2
■Web browser
In the factory default configuration, the switch displays the following default
banner:
Figure 2-5. The Default Login Banner
2-8
Advantages of Using ProCurve Manager or ProCurve Manager Plus
Selecting a Management Interface
NoteThe switch’s Web browser interface does not display the default banner.
If the default banner is disabled or a non-default banner configured , the
default banner is restored only if the switch is reset to its factory-default
configuration.
Banner Operation with Telnet, Serial, or SSHv2 Access
When a system operator begins a login session, the switch displays a banner,
a Press any key to continue prompt, and Username/Password prompts (if a local
username or password have been configured). The sequence of the banner
and the various prompts may vary depending on whether access is through
Telnet, the serial/console port, or SSH. Figure 2-5 on page 2-8 illustrates the
default banner through a Telnet connection. If a non-default banner is configured, it will replace the default banner.
Banner Operation with Web Browser Access
When a system operator uses a Web browser to access the switch, the text of
a non-default banner configured on the switch appears in a dedicated banner
window with a link to the Web agent home page. Clicking on To Hom e Page
clears the dedicated banner window. If the switch is configured with username/password, the operator will be prompted. After entry of the correct
username/password information (or if no username/password is required),
the switch then displays either the Registration page or the switch’s home
page. Note that if the banner feature is disabled or if the switch is using the
factory-default banner shown in figure 2-5, then the dedicated banner page
does not appear in the Web browser when an operator initiates a login session
with the switch.
Configuring and Displaying a Non-Default Banner
You can enable or disable banner operation using either the switch’s CLI or
an SNMP application. The steps include:
1.Enable non-default banner operation and define the endpoint delimiter
for the banner.
2.Enter the desired banner text, including any specific line breaks you
want.
3.Enter the endpoint delimiter.
2-9
Selecting a Management Interface
Advantages of Using ProCurve Manager or ProCurve Manager Plus
Use show banner motd to display the current banner status.
Syntax: banner motd < delimiter >
no banner motd
This command defines the single character used to terminate the banner text and enables banner text input. You
can use any character except a blank space as a delimiter.
The no form of the command disables the login banner
feature.
< banner-text-string >
The switch allows up to 320 banner characters, including
blank spaces and CR-LF ([Enter]). (The tilde “
delimiter defined by banner motd <delimiter> are not
allowed as part of the banner text.) While entering banner
text, you can backspace to edit the current line (that is, a
line that has not been terminated by a CR-LF.) However,
terminating a line in a banner by entering a CR-LF
prevents any further editing of that line. To edit a line in
a banner entry after terminating the line with a CR-LF
requires entering the delimiter described above and then
re-configuring new banner text.
The banner text string must terminate with the character
defined by banner motd < delimiter >.
~“ and the
2-10
Example of Configuring and Displaying a Banner
Suppose a system operator wanted to configure the following banner message
on her company’s switches:
This is a private system maintained by the
Allied Widget Corporation.
Unauthorized use of this system can result in
civil and criminal penalties!
In this case, the operator will use the [Enter] key to create line breaks, blank
spaces for line centering, and the % symbol to terminate the banner message.
Advantages of Using ProCurve Manager or ProCurve Manager Plus
ProCurve(config)# show banner motd
Banner Information
Banner status: Enabled
Configured Banner:
This is a private system maintained by the
Allied Widget Corporation.
Unauthorized use of this system can result in
civil and criminal penalties!
Selecting a Management Interface
Figure 1. Example of Configuring a Login Banner
To view the current banner configuration, use either the show banner motd or
show running command.
Figure 2. Example of show banner motd Output
2-11
Selecting a Management Interface
ProCurve(config)# show running
Running configuration:
; J9279A Configuration Editor; Created on release # Y.11.01
hostname "ProCurve"
snmp-server community "public" Unrestricted
vlan 1
name "DEFAULT_VLAN"
untagged 1-24
ip address dhcp-bootp
exit
banner motd " This is a private system maintained by the
Allied Widget Corporation.
Unauthorized use of this system can result in
civil and criminal penalites!"
password manager
password operator
The login screen displays the
configured banner.
Entering a correct password
clears the banner and displays
the CLI prompt.
Advantages of Using ProCurve Manager or ProCurve Manager Plus
Figure 3. The Current Banner Appears in the Switch’s Running-Config File
The next time someone logs onto the switch’s management CLI, the following
appears:
2-12
Figure 4. Example of CLI Result of the Login Banner Configuration
Advantages of Using ProCurve Manager or ProCurve Manager Plus
Selecting a Management Interface
If someone uses a Web browser to log in to the switch interface, the following
message appears:
Figure 5. Example of Web Browser Interface Result of the Login Banner
Configuration
Operating Notes
■The default banner appears only when the switch is in the factory
default configuration. Using no banner motd deletes the currently
configured banner text and blocks display of the default banner. The
default banner is restored only if the switch is reset to its factorydefault configuration.
■The switch supports one banner at any time. Configuring a new
banner replaces any former banner configured on the switch.
■If the switch is configured with ssh version 1 or ssh version 1-or-2,
configuring the banner sets the SSH configuration to ssh version 2
and displays the following message in the CLI:
Warning: SSH version has been set to v2.
■If a banner is configured, the switch does not allow configuration with
ssh version 1 or ssh version 1-or-2. Attempting to do so produces the
following error message in the CLI:
Banner has to be disabled first.
■If a banner is enabled on the switch, the Web browser interface
displays the following link to the banner page:
Notice to all users
2-13
Selecting a Management Interface
Advantages of Using ProCurve Manager or ProCurve Manager Plus
Where To Go From Here . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . 3-15
3
3-1
Using the Menu Interface
Overview
Overview
This chapter describes the following:
■Overview of the Menu Interface
■Starting and ending a Menu session (page 3-3)
■The Main Menu (page 3-7)
■Screen structure and navigation (page 3-9)
■Rebooting the switch (page 3-12)
The menu interface operates through the switch console to provide you with
a subset of switch commands in an easy-to-use menu format enabling you to:
■Perform a quick configuration of basic parameters, such as the IP address-
ing needed to provide management access through your network
■Configure these features:
•Manager and Operator passwords
•System parameters
•IP addressing
•Time protocol
•Ports
•A network monitoring port
•Stack Management
•SNMP community names
•IP authorized managers
•VLANs (Virtual LANs) and
GVRP
•Trunk groups
■View status, counters, and Event Log information
■Update switch software
■Reboot the switch
For a detailed list of menu features, see the “Menu Features List” on page 3-14.
Privilege Levels and Password Security. ProCurve strongly recommends that you configure a Manager password to help prevent unauthorized
access to your network. A Manager password grants full read-write access to
the switch. An Operator password, if configured, grants access to status and
counter, Event Log, and the Operator level in the CLI. After you configure
passwords on the switch and log off of the interface, access to the menu
interface (and the CLI and Web browser interface) will require entry of either
the Manager or Operator password. (If the switch has only a Manager password, then someone without a password can still gain read-only access.)
3-2
Starting and Ending a Menu Session
Using the Menu Interface
NoteIf the switch has neither a Manager nor an Operator password, anyone
having access to the console interface can operate the console with full
manager privileges. Also, if you configure only an Operator password,
entering the Operator password enables full manager privileges.
For more information on passwords, see the chapter on local passwords in
the Access Security Guide for your switch.
■The menu interface displays the current running-config parameter set-
tings. You can use the menu interface to save configuration changes made
in the CLI only if the CLI changes are in the running config when you save
changes made in the menu interface. (For more on how switch memory
manages configuration changes, see Chapter 6, “Switch Memory and
Configuration”.)
■A configuration change made through any switch interface overwrites
earlier changes made through any other interface.
■The Menu Interface and the CLI (Command Line Interface) both use the
switch console. To enter the menu from the CLI, use the menu command.
To enter the CLI from the Menu interface, select Command
Line(CLI) option.
Starting and Ending a Menu Session
You can access the menu interface using any of the following:
■A direct serial connection to the switch’s console port, as described in the
installation guide you received with the switch
■A Telnet connection to the switch console from a networked PC or the
switch’s Web browser interface. Telnet requires that an IP address and
subnet mask compatible with your network have already been configured
on the switch.
■The stack Commander, if the switch is a stack member
NoteThis section assumes that either a terminal device is already configured and
connected to the switch (see the Installation and Getting Started Guide
shipped with your switch) or that you have already configured an IP address
on the switch (required for Telnet access).
3-3
Using the Menu Interface
Starting and Ending a Menu Session
How To Start a Menu Interface Session
In its factory default configuration, the switch console starts with the CLI
prompt. To use the menu interface with Manager privileges, go to the Manager
level prompt and enter the
1.Use one of these methods to connect to the switch:
•A PC terminal emulator or terminal
•Telnet
(You can also use the stack Commander if the switch is a stack member).
2.Do one of the following:
•If you are using Telnet, go to step 3.
•If you are using a PC terminal emulator or a terminal, press
3.When the switch screen appears, do one of the following:
•If a password has been configured, the password prompt appears.
menu command.
[Enter] one
or more times until a prompt appears.
Password: _
Type the Manager password and press
[Enter]. Entering the Manager
password gives you manager-level access to the switch. (Entering the
Operator password gives you operator-level access to the switch.
Refer to the chapter on local manager and operator usernames and
passwords in the Access Security Guide for your switch.)
•If no password has been configured, the CLI prompt appears. Go to
the next step.
4.When the CLI prompt appears, display the Menu interface by entering the
menu command. For example:
ProCurve# menu
[Enter]
results in:
3-4
Starting and Ending a Menu Session
Figure 3-1. The Main Menu with Manager Privileges
For a description of Main Menu features, see “Main Menu Features” on page
3-7.
Using the Menu Interface
NoteTo configure the switch to start with the menu interface instead of the CLI, go
to the Manager level prompt in the CLI, enter the setup command, and in the
resulting display, change the Logon
information, see the Installation and Getting Started Guide you received
with the switch.
Default parameter to Menu. For more
How To End a Menu Session and Exit from the Console:
The method for ending a menu session and exiting from the console depends
on whether, during the session, you made any changes to the switch configuration that require a switch reboot to activate. (Most changes via the menu
interface need only a S
changes needing a reboot are marked with an asterisk (*) next to the configured item in the menu and also next to the Switch Configuration item in the
Main Menu.
ave, and do not require a switch reboot.) Configuration
3-5
Using the Menu Interface
Asterisk indicates a
configuration change
that requires a reboot
to activate.
Starting and Ending a Menu Session
Figure 3-2. An Asterisk Indicates a Configuration Change Requiring a Reboot
1.In the current session, if you have not made configuration changes that
require a switch reboot to activate, return to the Main Menu and press
(zero) to log out. Then just exit from the terminal program, turn off the
terminal, or quit the Telnet session.
2.If you have made configuration changes that require a switch reboot—
that is, if an asterisk (*) appears next to a configured item or next to Switch Configuration in the Main Menu:
a.Return to the Main Menu.
b.Press [6] to select Reboot Switch and follow the instructions on the
[0]
reboot screen.
3-6
Rebooting the switch terminates the menu session, and, if you are using
Telnet, disconnects the Telnet session.
(See “Rebooting To Activate Configuration Changes” on page 3-13.)
3.Exit from the terminal program, turn off the terminal, or close the Telnet
application program.
Main Menu Features
Using the Menu Interface
Main Menu Features
Figure 3-3. The Main Menu View with Manager Privileges
The Main Menu gives you access to these Menu interface features:
■Status and Counters: Provides access to display screens showing
switch information, port status and counters, port and VLAN address
tables. (See Appendix B, “Monitoring and Analyzing Switch Operation”.)
■Switch Configuration: Provides access to configuration screens for
displaying and changing the current configuration settings. (See the Contents listing at the front of this manual.) For a listing of features and
parameters configurable through the menu interface, see the “Menu Features List” on page 3-14.
■Console Passwords: Provides access to the screen used to set or change
Manager-level and Operator-level passwords, and to delete Manager and
Operator password protection. (See the local password chapter in the
Access Security Guide shipped with your switch.)
■Event Log: Enables you to read progress and error messages that are
useful for checking and troubleshooting switch operation. (See “Using
Logging To Identify Problem Sources” on page C-22.)
■Command Line (CLI): Selects the Command Line Interface at the same
level (Manager or Operator) that you are accessing in the Menu interface.
(See chapter 4, “Using the Command Line Interface (CLI)”.)
3-7
Using the Menu Interface
Main Menu Features
■Reboot Switch: Performs a “warm” reboot of the switch, which clears
most temporary error conditions, resets the network activity counters to
zero, and resets the system up-time to zero. A reboot is required to activate
a change in the VLAN Support parameter. (See “Rebooting from the Menu
Interface” on page 6-10.)
■Download OS: Enables you to download a new software version to the
switch. (See Appendix A, “File Transfers”.)
■Run Setup: Displays the Switch Setup screen for quickly configuring
basic switch parameters such as IP addressing, default gateway, logon
default interface, and others. (See the Installation and Getting Started
guide shipped with your switch.)
■Stacking: Enables you to use a single IP address and standard network
cabling to manage a group of up to 16 switches in the same subnet
(broadcast domain). See the chapter on stack management in the
Advanced Traffic Management Guide.
■Logout: Closes the Menu interface and CLI session, and disconnects
Console or Telnet access to the switch. (See “How to End a Menu Session
and Exit from the Console” on page 3-5.)
3-8
Using the Menu Interface
Help line
describing the
selected action
or selected
parameter field
Parameter fields
Help describing each of the
items in the parameter fields
Navigation instructions
Actions line
Screen title – identifies
the location within the
menu structure
Screen Structure and Navigation
Screen Structure and Navigation
Menu interface screens include these three elements:
■Parameter fields and/or read-only information such as statistics
■Navigation and configuration actions, such as Save, Edit, and Cancel
■Help line to describe navigation options, individual parameters, and read-
only data
For example, in the following System Information screen:
Figure 3-4. Elements of the Screen Structure
“Forms” Design. The configuration screens, in particular, operate similarly
to a number of PC applications that use forms for data entry. When you first
enter these screens, you see the current configuration for the item you have
selected. To change the configuration, the basic operation is to:
1.Press
[E] to select the Edit action.
2.Navigate through the screen making all the necessary configuration
changes. (See table 3-1 on page 3-10.)
3.Press
[Enter] to return to the Actions line. From there you can save the
configuration changes or cancel the changes. Cancel returns the configuration to the values you saw when you first entered the screen.
3-9
Using the Menu Interface
Screen Structure and Navigation
Table 3-1.How To Navigate in the Menu Interface
Task:Actions:
Execute an action
from the “Actions –>”
list at the bottom of
the screen:
Reconfigure (edit) a
parameter setting or a
field:
Use either of the following methods:
• Use the arrow keys ([<] or [>]) to highlight the action you want to
execute, then press [Enter].
• Press the key corresponding to the capital letter in the action
name. For example, in a configuration menu, press [E] to select
Edit and begin editing parameter values.
1. Select a configuration item, such as System Name. (See figure
2-4.)
2. Press [E] (for E
dit on the Actions line).
3. Use [Tab] or the arrow keys ([<], [>], [^], or [v]) to highlight the
item or field.
4. Do one of the following:
– If the parameter has preconfigured values, either use the
Space bar to select a new option or type the first part of your
selection and the rest of the selection appears automatically.
(The help line instructs you to “Select” a value.)
– If there are no preconfigured values, type in a value (the Help
line instructs you to “Enter” a value).
5. If you want to change another parameter value, return to step 3.
6. If you are finished editing parameters in the displayed screen,
press
[Enter] to return to the Actions line and do one of the
following:
– To save and activate configuration changes, press
[S] (for the
Save action). This saves the changes in the startup
configuration and also implements the change in the
currently running configuration. (See Chapter 6, “Switch
Memory and Configuration”.)
– To exit from the screen without saving any changes that you
have made (or if you have not made changes), press
[C] (for
the Cancel action).
Note: In the menu interface, executing Save activates most
parameter changes and saves them in the startup configuration
(or flash) memory, and it is therefore not necessary to reboot the
switch after making these changes. But if an asterisk appears
next to any menu item you reconfigure, the switch will not
activate or save the change for that item until you reboot the
switch. In this case, rebooting should be done after you have
made all desired changes and then returned to the Main Menu.
7. When you finish editing parameters, return to the Main Menu.
8. If necessary, reboot the switch by highlighting Reboot Switch in
the Main Menu and pressing
[Enter]. (See the Note, above.)
3-10
Exit from a read-only
screen.
Press [B] (for the Back action).
Using the Menu Interface
Pressing [H] or highlighting Help and
pressing [Enter] displays Help for the
parameters listed in the upper part of
the screen
Highlight on any item
in the Actions line
indicates that the
Actions line is active.
The Help line provides
a brief descriptor of
the highlighted Action
item or parameter.
Screen Structure and Navigation
To get Help on individual parameter descriptions. In most screens
there is a Help option in the Actions line. Whenever any of the items in the
Actions line is highlighted, press
[H], and a separate help screen is displayed.
For example:
Figure 3-5. Example Showing How To Display Help
To get Help on the actions or data fields in each screen: Use the arrow
keys ( [<], [>], [^], or [v] ) to select an action or data field. The help line under
the Actions items describes the currently selected action or data field.
For guidance on how to navigate in a screen: See the instructions provided
at the bottom of the screen, or refer to “Screen Structure and Navigation” on
page 3-9.
3-11
Using the Menu Interface
Reboot Switch option
Rebooting the Switch
Rebooting the Switch
Rebooting the switch from the menu interface
■Terminates all current sessions and performs a reset of the operating
system
■Activates any menu interface configuration changes that require a reboot
■Resets statistical counters to zero
(Note that statistical counters can be reset to zero without rebooting the
switch.)
To Reboot the switch, use the Reboot Switch option in the Main Menu. (Note
that the Reboot Switch option is not available if you log on in Operator mode;
that is, if you enter an Operator password instead of a manager password at
the password prompt.)
3-12
Figure 3-6. The Reboot Switch Option in the Main Menu
Using the Menu Interface
Reminder to
reboot the switch
to activate
configuration
changes.
Asterisk indicates
a configuration
change that
requires a reboot
in order to take
effect.
Rebooting the Switch
Rebooting To Activate Configuration Changes. Configuration changes
for most parameters in the menu interface become effective as soon as you
save them. However, you must reboot the switch in order to implement a
change in the
Maximum VLANs to support parameter. (To access this parameter, go
to the Main Menu and select:
2. Switch Configuration
8. VLAN Menu
1. VLAN Support.)
If you make configuration changes in the menu interface that require a reboot,
the switch displays an asterisk (*) next to the menu item in which the change
has been made. For example, if you change and save the value for the MaximumVLANs to support parameter, an asterisk appears next to the VLAN Support entry
in the VLAN Menu screen (below), and also next to the Switch Configuration. .
entry in the Main Menu, as shown in figure 3-2 on page 3-6:
NoteExecuting the write memory command in the CLI does not affect pending
Figure 3-7. Indication of a Configuration Change Requiring a Reboot
To activate changes indicated by the asterisk, go to the Main Menu and select
the Reboot
Switch option.
configuration changes indicated by an asterisk in the menu interface. That is,
only a reboot from the menu interface or a boot or reload command from the
CLI will activate a pending configuration change indicated by an asterisk.
3-13
Using the Menu Interface
Menu Features List
Menu Features List
Status and Counters
•General System Information
•Switch Management Address Information
•Port Status
•Port Counters
•Address Table
•Port Address Table
•Spanning Tree Information
Switch Configuration
•System Information
•Port/Trunk Settings
•Network Monitoring Port
•Spanning Tree Operation
•IP Configuration
•SNMP Community Names
•IP authorized Managers
•VLAN Menu
Console Passwords
Event Log
Command Line (CLI)
Reboot Switch
Download OS
Run Setup
Stacking
•Stacking Status (This Switch)
•Stacking Status (All)
•Stack Configuration
•Stack Management (Available in Stack Commander Only)
•Stack Access (Available in Stack Commander Only)
Logout
3-14
Using the Menu Interface
Where To Go From Here
Where To Go From Here
This chapter provides an overview of the menu interface and how to use it.
The following table indicates where to turn for detailed information on how
to use the individual features available through the menu interface.
Option:Tur n t o:
To use the Run Setup optionRefer to the Installation and Getting Started Guide
shipped with the switch.
To use the ProCurve Stack ManagerSee the chapter on stack management in the
To view and monitor switch status and
counters
To learn how to configure and use
passwords and other security features
To learn how to use the Event Log“Using Logging To Identify Problem Sources” on
To learn how the CLI operatesChapter 4, “Using the Command Line Interface
To download software (the OS)Appendix A, “File Transfers”
For a description of how switch
memory handles configuration
changes
For information on other switch
features and how to configure them
Advanced Traffic Management Guide.
Appendix B, “Monitoring and Analyzing Switch
Operation”
Refer to the Access Security Guide for your
switch.
page C-22
(CLI)”
“Switch Memory and Configuration” on page 6-1
See the Table of Contents at the front of this
manual.
The CLI is a text-based command interface for configuring and monitoring the
switch. The CLI gives you access to the switch’s full set of commands while
providing the same password protection that is used in the Web browser
interface and the menu interface.
Accessing the CLI
Like the menu interface, the CLI is accessed through the switch console, and,
in the switch’s factory default state, is the default interface when you start a
console session. You can access the console out-of-band by directly
connecting a terminal device to the switch, or in-band by using Telnet either
from a terminal device or through the Web browser interface.
NoteThe serial port on the 2510G switch is an RJ45 port located in the lower left
corner on the front panel of the switch.
Also, if you are using the menu interface, you can access the CLI by selecting
the Command Line (CLI) option in the Main Menu.
Using the CLI
The CLI offers these privilege levels to help protect the switch from unauthorized access:
1.Operator
2.Manager
3.Global Configuration
4.Context Configuration
NoteCLI commands are not case-sensitive.
4-2
Using the Command Line Interface (CLI)
Password Prompt
When you use the CLI to make a configuration change, the switch writes the
change to the Running-Config file in volatile memory. This allows you to test
your configuration changes before making them permanent. To make changes
permanent, you must use the write memory command to save them to the
Startup Config file in non-volatile memory. If you reboot the switch without
first using write memory, all changes made since the last reboot or write memory
(whichever is later) will be lost. For more on switch memory and saving
configuration changes, see Chapter 6, “Switch Memory and Configuration”.
Using the CLI
Privilege Levels at Logon
Privilege levels control the type of access to the CLI. To implement this
control, you must set at least a Manager password. Without a Manager
password configured, anyone having serial port, Telnet, or Web browser
access to the switch can reach all CLI levels. (For more on setting passwords, refer to the local manager and operator password chapter in the Access
Security Guide for your switch.)
When you use the CLI to log on to the switch, and passwords are set, you will
be prompted to enter a password. For example:
Figure 4-1. Example of CLI Log-On Screen with Password(s) Set
In the above case, you will enter the CLI at the level corresponding to the
password you provide (operator or manager).
If no passwords are set when you log onto the CLI, you will enter at the
Manager level. For example:
ProCurve# _
4-3
Using the Command Line Interface (CLI)
2. Manager Level
3. Global Configuration
Operator Privileges
Manager Privileges
1. Operator Level
4. Context Configuration Level
Using the CLI
CautionProCurve strongly recommends that you configure a Manager password. If
a Manager password is not configured, then the Manager level is not passwordprotected, and anyone having in-band or out-of-band access to the switch may
be able to reach the Manager level and compromise switch and network
security. Note that configuring only an Operator password does not prevent
access to the Manager level by intruders who have the Operator password.
Pressing the Clear button on the front of the switch removes password
protection. For this reason, it is recommended that you protect the switch from physical access by unauthorized persons. If you are concerned about
switch security and operation, you should install the switch in a secure
location, such as a locked wiring closet.
Privilege Level Operation
4-4
Figure 4-2. Access Sequence for Privilege Levels
Operator Privileges
At the Operator level you can examine the current configuration and move
between interfaces without being able to change the configuration. A ">"
character delimits the Operator-level prompt. For example:
ProCurve> _Example of the Operator prompt.
When using enable to move to the Manager level, the switch prompts you for
the Manager password if one has already been configured.
Using the Command Line Interface (CLI)
Using the CLI
Manager Privileges
Manager privileges give you three additional levels of access: Manager, Global
Configuration, and Context Configuration. (See figure 4-2.) A “#” character
delimits any Manager prompt. For example:
ProCurve#_Example of the Manager prompt.
■Manager level: Provides all Operator level privileges plus the ability to
perform system-level actions that do not require saving changes to the
system configuration file. The prompt for the Manager level contains only
the system name and the "#" delimiter, as shown above. To select this
level, enter the enable command at the Operator level prompt and enter
the Manager password, when prompted. For example:
ProCurve> enableEnter enable at the Operator prompt.
ProCurve# _The Manager prompt.
■Global Configuration level: Provides all Operator and Manager level
privileges, and enables you to make configuration changes to any of the
switch’s software features. The prompt for the Global Configuration level
includes the system name and "(config)". To select this level, enter the
config command at the Manager prompt. For example:
ProCurve# _Enter config at the Manager prompt.
ProCurve(config)#_The Global Config prompt.)
■Context Configuration level: Provides all Operator and Manager
privileges, and enables you to make configuration changes in a specific
context, such as one or more ports or a VLAN. The prompt for the Context
Configuration level includes the system name and the selected context.
For example:
ProCurve(eth-1)#
ProCurve(vlan-10)#
The Context level is useful, for example, if you want to execute several
commands directed at the same port or VLAN, or if you want to shorten
the command strings for a specific context area. To select this level, enter
the specific context at the Global Configuration level prompt. For
example, to select the context level for an existing VLAN with the VLAN
ID of 10, you would enter the following command and see the indicated
result:
ProCurve(config)# vlan 10
ProCurve(vlan-10)#
4-5
Using the Command Line Interface (CLI)
Using the CLI
Changing Interfaces. If you change from the CLI to the menu interface, or
the reverse, you will remain at the same privilege level. For example, entering
the menu command from the Operator level of the CLI takes you to the
Operator privilege level in the menu interface.
Table 4-1.Privilege Level Hierarchy
Privilege
Level
Operator Privilege
Operator
Level
Manager Privilege
Manager
Level
Global
Configuration
Level
Example of Prompt and Permitted Operations
ProCurve>
ProCurve#Perform system-level actions such as system control, monitoring,
ProCurve(config)#Execute configuration commands, plus all Operator and Manager
show < command >
setup
ping < argument >
link-test < argument >
enableMove from the Operator level to the
menuMove from the CLI interface to the menu
logoutExit from the CLI interface and terminate
exitTerminate the current session (same as
and diagnostic commands, plus any of the Operator-level
commands. For a list of available commands, enter ? at the
prompt.
commands. For a list of available commands, enter ? at the
prompt.
View status and configuration
information.
Perform connectivity tests.
Manager level.
interface.
the console session.
logout).
Context
Configuration
Level
4-6
ProCurve(eth-5)#
ProCurve(vlan-100)#
Execute context-specific configuration commands, such as a
particular VLAN or switch port. This is useful for shortening the
command strings you type, and for entering a series of commands
for the same context. For a list of available commands, enter ? at
the prompt.
Using the Command Line Interface (CLI)
How To Move Between Levels
Change in LevelsExample of Prompt, Command, and Result
Using the CLI
Operator level
to
Manager level
Manager level
to
Global configuration
level
Global configuration
level
to a
Context configuration
level
Context configuration
level
to another
Context configuration
level
Move from any level
to the preceding level
ProCurve> enable
Password:_
After you enter enable, the Password
prompt appears. After you enter the
Manager password, the system prompt
appears with the # symbol:
ProCurve#_
ProCurve# config
ProCurve(config)#
ProCurve(config)# vlan 10
ProCurve(vlan-10)#
ProCurve(vlan-10)# interface e 3
ProCurve(int-3)#
The CLI accepts "e" as the abbreviated
form of "ethernet".
Moving Between the CLI and the Menu Interface. When moving
between interfaces, the switch retains the current privilege level (Manager or
Operator). That is, if you are at the Operator level in the menu and select the
Command Line Interface (CLI) option from the Main Menu, the CLI prompt
appears at the Operator level.
Changing Parameter Settings. Regardless of which interface is used (CLI,
menu interface, or Web browser interface), the most recently configured
version of a parameter setting overrides any earlier settings for that parameter.
4-7
Using the Command Line Interface (CLI)
Using the CLI
For example, if you use the menu interface to configure an IP address of “X”
for VLAN 1 and later use the CLI to configure a different IP address of “Y” for
VLAN 1, then “Y” replaces “X” as the IP address for VLAN 1 in the runningconfig file. If you subsequently execute write memory in the CLI, then the
switch also stores “Y” as the IP address for VLAN 1 in the startup-config file.
(For more on the startup-config and running config files, see Chapter 6,
“Switch Memory and Configuration”.)
Listing Commands and Command Options
At any privilege level you can:
■List all of the commands available at that level
■List the options for a specific command
Listing Commands Available at Any Privilege Level
At a given privilege level you can list and execute the commands that level
offers, plus all of the commands available at preceding levels. For example,
at the Operator level, you can list and execute only the Operator level
commands. However, at the Manager level, you can list and execute the
commands available at both the Operator and Manager levels.
4-8
Type “?” To List Available Commands. Typing the
commands you can execute at the current privilege level. For example, typing?
at the Operator level produces this listing:
Figure 4-3. Example of the Operator Level Command Listing
? symbol lists the
Using the Command Line Interface (CLI)
When - - MORE - - appears, use the Space bar
or [Return] to list additional commands.
Typing ? at the Manager level produces this listing:
Using the CLI
Figure 4-4. Example of the Manager-Level Command Listing
When - - MORE - - appears, there are more commands in the listing. To list the
next set of commands, press the Space bar. To list the remaining commands
one-by-one, repeatedly press [Enter].
Typing ? at the Global Configuration level or the Context Configuration level
produces similar results. In a particular context level, the first block of
command in the listing are the commands that are most relevant to the current
context.
4-9
Using the Command Line Interface (CLI)
Using the CLI
Use [Tab] To Search for or Complete a Command Word. You can use
[Tab] to help you find CLI commands or to quickly complete the current word
in a command. To do so, type one or more consecutive characters in a
command and then press [Tab] (with no spaces allowed). For example, at the
Global Configuration level, if you press [Tab] immediately after typing "t", the
CLI displays the available command options that begin with "t". For example:
ProCurve(config)# t
[Tab]
telnet-server
time
trunk
telnet
terminal
ProCurve(config)# t
As mentioned above, if you type part of a command word and press
[Tab], the
CLI completes the current word (if you have typed enough of the word for the
CLI to distinguish it from other possibilities), including hyphenated extensions. For example:
ProCurve(config)# port
[Tab]
ProCurve(config)# port-security _
Pressing
[Tab] after a completed command word lists the further options for
Conventions for Command Option Displays. When you use the CLI to
list options for a particular command, you will see one or more of the following
conventions to help you interpret the command data:
■Braces (< >) indicate a required choice.
■Square brackets ([]) indicate optional elements.
■Vertical bars (|) separate alternative, mutually exclusive options in a
command.
Using the Command Line Interface (CLI)
This example displays the command options
for configuring the switch’s console settings.
Using the CLI
Listing Command Options. You can use the CLI to remind you of the
options available for a command by entering command keywords followed
?. For example, suppose you want to see the command options for config-
by
uring port C5:
Figure 4-5. Example of How To List the Options for a Specific Command
Displaying CLI "Help"
CLI Help provides two types of context-sensitive information:
■Command list with a brief summary of each command’s purpose
■Detailed information on how to use individual commands
Displaying Command-List Help. You can display a listing of command
Help summaries for all commands available at the current privilege level. That
is, when you are at the Operator level, you can display the Help summaries
only for Operator-Level commands. At the Manager level, you can display the
Help summaries for both the Operator and Manager levels, and so on.
Syntax: help
For example, to list the Operator-Level commands with their purposes:
4-11
Using the Command Line Interface (CLI)
Using the CLI
Figure 4-6. Example of Context-Sensitive Command-List Help
Displaying Help for an Individual Command. You can display Help for
any command that is available at the current context level by entering enough
of the command string to identify the command, along with help.
Syntax: < command-string > help
For example, to list the Help for the interface command in the Global
Configuration privilege level:
Figure 4-7. Example of How To Display Help for a Specific Command
A similar action lists the Help showing additional parameter options for a
given command. The following example illustrates how to list the Help for an
interface command acting on a specific port:
4-12
Figure 4-8. Example of Help for a Specific Instance of a Command
Note that trying to list the help for an individual command from a privilege
level that does not include that command results in an error message. For
example, trying to list the help for the interface command while at the global
configuration level produces this result:
ProCurve# interface help
Invalid input: interface
Using the Command Line Interface (CLI)
Using the CLI
Configuration Commands and the Context
Configuration Modes
You can execute any configuration command in the global configuration mode
or in selected context modes. However, using a context mode enables you to
execute context-specific commands faster, with shorter command strings.
The configuration options include interface (port or trunk group) and VLAN
context modes:
Port or Trunk-Group Context . Includes port- or trunk-specific
commands that apply only to the selected port(s) or trunk group, plus the
global configuration, Manager, and Operator commands. The prompt for this
mode includes the identity of the selected port(s):
ProCurve(config)# interface e c3-c6
ProCurve(config)# interface e trk1
ProCurve(eth-C5-C8)#
ProCurve(eth-Trk1)#
Command executed at
configuration level for
entering port or trk1 static
trunk-group context.
Resulting prompt showing
port or static trunk
contexts.
4-13
Using the Command Line Interface (CLI)
In the port context, the first block of commands in the "?"
listing show the context-specific commands that will affect
only ports C3-C6.
The remaining commands in the listing are Manager,
Operator, and context commands.
Using the CLI
ProCurve(eth-C5-C8)#?
ProCurve(eth-C5-C8)#?
Lists the commands you
can use in the port or static
trunk context, plus the
Manag er, O perat or, and
context commands you can
execute at this level.
Figure 4-9. Context-Specific Commands Affecting Port Context
4-14
Using the Command Line Interface (CLI)
In the VLAN
context, the
first block of
commands in
the "?" listing
show the
commands that
will affect only
vlan-100.
The remaining
commands in
the listing are
Manager,
Operator, and
context
commands.
Using the CLI
VLAN Context . Includes VLAN-specific commands that apply only to the
selected VLAN, plus Manager and Operator commands. The prompt for this
mode includes the VLAN ID of the selected VLAN. For example, if you had
already configured a VLAN with an ID of 100 in the switch:
ProCurve(config)# vlan 100Command executed at configura-
tion level to enter VLAN 100
context.
ProCurve(vlan-100)#Resulting prompt showing VLAN
100 context.
ProCurve(vlan-100)# ?Lists commands you can use in the
VLAN context, plus Manager, Operator, and context commands you
can execute at this level.
The Web browser interface built into the switch lets you easily access the
switch from a browser-based PC on your network. This lets you do the
following:
■Optimize your network uptime by using the Alert Log and other diagnostic
■Make configuration changes to the switch
■Maintain security by configuring usernames and passwords
This chapter covers the following:
■General features (page 5-3).
■Starting a Web browser interface session (page 5-4)
■Tasks for your first Web browser interface session (page 5-7):
■Description of the Web browser interface:
tools
•Creating usernames and passwords in the Web browser interface
(page 5-8)
•Selecting the fault detection configuration for the Alert Log operation
(page 5-23)
•Getting access to online help for the Web browser interface (page
5-11)
•Overview window and tabs (page 5-16)
•Port Utilization and Status displays (page 5-17)
•Alert Log and Alert types (page 5-20)
•Setting the Fault Detection Policy (page 5-23)
NoteIf you want security beyond that achieved with user names and passwords,
you can disable access to the Web browser interface. This is done by either
executing no web-management at the Command Prompt or changing the Web Agent Enabled parameter setting to No (page 7-3).
5-2
Using the Web Browser Interface
General Features
The switch includes these Web browser interface features:
Switch Configuration:
•Ports
•VLANs and Primary VLAN
•Fault detection
•Port monitoring (mirroring)
•System information
•Enable/Disable Multicast Filtering (IGMP) and Spanning Tree
•IP
•Stacking
•Support and management URLs
Switch Security: Usernames and passwords
Switch Diagnostics:
•Ping/Link Test
•Device reset
•Configuration report
General Features
Switch status
•Port utilization
•Port counters
•Port status
•Alert log
Switch system information listing
5-3
Using the Web Browser Interface
Starting a Web Browser Interface Session with the Switch
Starting a Web Browser Interface
Session with the Switch
You can start a Web browser session in the following ways:
■Using a standalone Web browser on a network connection from a PC or
UNIX workstation:
•Directly connected to your network
•Connected through remote access to your network
■Using a management station running ProCurve Manager on your network
Using a Standalone Web Browser in a PC or UNIX
Workstation
This procedure assumes that you are using a compatible Web browser (see
the software Release Notes for more information) and that the switch is
configured with an IP address accessible from your PC or workstation. (For
more on assigning an IP address, refer to “IP Configuration” on page 8-3.)
TM
1.Ensure that the Java
information on this topic, refer to your browser’s online Help.
2.Use the Web browser to access the switch. If your network includes a
Domain Name Server (DNS), your switch’s IP address may have a name
associated with it (for example, switch5308) that you can type in the
Location or Address field instead of the IP address. Using DNS names
typically improves browser performance. Contact your network administrator to enquire about DNS names associated with your ProCurve switch.
applets are enabled for your browser. For more
5-4
Type the IP address (or DNS name) of the switch in the browser Location
or Address (URL) field and press
/.)
switch5308
10.11.12.195
[Enter](example of a DNS-type name)
[Enter](example of an IP address)
[Enter]. (It is not necessary to include http:/
Starting a Web Browser Interface Session with the Switch
Using the Web Browser Interface
Using ProCurve Manager (PCM) or ProCurve Manager
Plus (PCM+)
ProCurve Manager and ProCurve Manager Plus are designed for installation
on a network management workstation. For this reason, the system requirements are different from the system requirements for accessing the switch’s
Web browser interface from a non-management PC or workstation. For
ProCurve PCM and PCM+ requirements, refer to the information provided
with the software.
This procedure assumes that:
■You have installed the recommended Web browser on a PC or workstation
that serves as your network management station.
■The networked device you want to access has been assigned an IP address
and (optionally) a DNS name, and has been discovered by PCM or PCM+.
(For more on assigning an IP address, refer to “IP Configuration” on page
8-3.)
To establish a Web browser session with ProCurve PCM or PCM+ running, do
the following on the network management station:
TM
1.Make sure the Java
are not, refer to the Web browser online Help for specific information on
enabling the Java applets.
applets are enabled for your Web browser. If they
2.In the Interconnected Devices listing under Network Manager Home (in the
PCM/PCM+ sidebar), right-click on the model number of the device you
want to access.
3.The Web browser interface automatically starts with the Status Overview
window displayed for the selected device, as shown in figure 5-1.
NoteIf the Registration window appears, click on the Status tab.
5-5
Using the Web Browser Interface
First-Time
Install Alert
Alert
Log
Starting a Web Browser Interface Session with the Switch
Figure 5-1. Example of Status Overview Screen
NoteThe above screen appears somewhat different if the switch is configured as a
stack Commander. For an example, see figure 2-3 on page 2-5.
5-6
Tasks for Your First Web Browser Interface Session
Using the Web Browser Interface
Tasks for Your First Web Browser
Interface Session
The first time you access the Web browser interface, there are three tasks that
you should perform:
■Review the “First Time Install” window
■Set Manager and Operator passwords
■Set access to the Web browser interface online help
Viewing the “First Time Install” Window
When you access the switch’s Web browser interface for the first time, the
Alert log contains a “First Time Install” alert, as shown in figure 5-2. This gives
you information about first time installations, and provides an immediate
opportunity to set passwords for security and to specify a Fault Detection
policy, which determines the types of messages that will be displayed in the
Alert Log.
Double click on First Time Install in the Alert log (figure 5-1 on page 5-6). The
Web browser interface then displays the “First Time Install” window, below.
Figure 5-2.First-Time Install Window
5-7
Using the Web Browser Interface
Tasks for Your First Web Browser Interface Session
This window is the launching point for the basic configuration you need to
perform to set Web browser interface passwords to maintain security and
Fault Detection policy, which determines the types of messages that will be
displayed in the Alert Log.
To set Web browser interface passwords, click on secure access to the device
to display the Device Passwords screen, and then go to the next page. (You
can also access the password screen by clicking on the Security tab.)
To set Fault Detection policy, click on select the fault detection configuration
the second bullet in the window and go to the section, “Setting Fault Detection
Policy” on page 5-23. (You can also access the password screen by clicking on
the Configuration tab, and then [Fault Detection] button.)
in
Creating Usernames and Passwords in the Browser
Interface
You may want to create both a username and password to create access
security for your switch. There are two levels of access to the interface that
can be controlled by setting user names and passwords:
■Operator. An Operator-level user name and password allows read-only
access to most of the Web browser interface, but prevents access to the
Security window.
■Manager. A Manager-level user name and password allows full read/
write access to the Web browser interface.
5-8
Figure 5-3. The Device Passwords Window
Tasks for Your First Web Browser Interface Session
Using the Web Browser Interface
To set the passwords:
1.Access the Device Passwords screen by one of the following methods:
•If the Alert Log includes a “First Time Install” event entry, double
click on this event, then, in the resulting display, click on the
secure access to the device link.
•Select the Security tab.
2.Click in the appropriate box in the Device Passwords window and enter
user names and passwords. You will be required to repeat the password
strings in the confirmation boxes.
Both the user names and passwords can be up to 16 printable ASCII
characters.
3.Click on [Apply Changes] to activate the user names and passwords.
5-9
Using the Web Browser Interface
Tasks for Your First Web Browser Interface Session
NotePasswords you assign in the Web browser interface will overwrite previous
passwords assigned in either the Web browser interface, the Command
Prompt, or the switch console. That is, the most recently assigned passwords
are the switch’s passwords, regardless of which interface was used to assign
the string.
Using the Passwords
Figure 5-4. Example of the Password Window in the Web Browser Interface
The manager and operator passwords are used to control access to all switch
interfaces. Once set, you will be prompted to supply the password every time
you try to access the switch through any of its interfaces. The password you
enter determines the capability you have during that session:
■Entering the manager password gives you full read/write capabilities
■Entering the operator password gives you read and limited write capabil-
ities.
Using the User Names
If you also set user names in the Web browser interface screen, you must
supply the correct user name for Web browser interface access. If a user name
has not been set, then leave the User Name field in the password window
blank.
Note that the Command Prompt and switch console interfaces use only the
password, and do not prompt you for the User Name.
5-10
Tasks for Your First Web Browser Interface Session
The Help Button
Using the Web Browser Interface
If You Lose a Password
If you lose the passwords, you can clear them by pressing the Clear button on
the front of the switch. This action deletes all password and user name
protection from all of the switch’s interfaces.
The Clear button is provided for your convenience, but its presence means
that if you are concerned with the security of the switch configuration and
operation, you should make sure the switch is installed in a secure location,
such as a locked wiring closet.(For more information, refer to “Front Panel
Security” in the chapter titled “Configuring Username and Password Security” in the Access Security Guide for your switch.)
Online Help for the Web Browser Interface
Online Help is available for the Web browser interface. You can use it by
clicking on the question mark button in the upper right corner of any of the
Web browser interface screens.
Figure 5-5. The Help Button
Context-sensitive help is provided for the screen you are on.
NoteTo access the online Help for the Web browser interface, you need either
ProCurve Manager (version 1.5 or greater) installed on your network or an
active connection to the World Wide Web. Otherwise, Online help for the Web
browser interface will not be available.
For more on Help access and operation, refer to “Help and the Management
Server URL” on page 5-13.
5-11
Using the Web Browser Interface
3. Enter one of the following (or use the default setting):
– The URL for the support information source you want the
switch to access when you click on the Web browser interface
Support tab. The default is the URL for the ProCurve
Networking home page.
– The URL of a PCM (ProCurve Network Manager) workstation
or other server for the online Help files for this Web browser
interface. (The default setting accesses the switch’s browserbased Help on the ProCurve Web site.) Note that if you install
PCM in your network, the PCM management station acts as
the Web browser Help server and automatically inserts the
necessary URL in this field.)
1. Click Here
2. Click Here
4. Click on Apply Changes
Support/Mgmt URLs Feature
Support/Mgmt URLs Feature
The Support/Mgmt URLs window enables you to change the World Wide Web
Universal Resource Locator (URL) for two functions:
■Support URL – a support information site for your switch
■Management Server URL – The Web site for Web browser online Help.
Figure 5-6. The Default Support/Mgmt URLs Window
5-12
Using the Web Browser Interface
Support/Mgmt URLs Feature
Support URL
This is the site that the switch accesses when you click on the Support tab on
the Web browser interface. The default URL is:
http://www.procurve.com
Click on Customer Care on that page to access support information regarding
your switch, including white papers, operating system (OS) updates, and
more.
You could instead enter the URL for a local site that you use for entering
reports about network performance, or whatever other function you would
like to be able to easily access by clicking on the
Support tab.
Help and the Management Server URL
The Management Server URL field specifies the URL the switch uses to find
online Help for the Web browser interface.
■If you install PCM (ProCurve Manager) in your network, the PCM manage-
ment station acts as the Web browser Help server for the switch and
automatically inserts the necessary URL in this field. (For more information on this option, refer to “Using the PCM Server for Switch Web Help
on page 5-15.)
■In the default configuration (and if PCM is not running on your network)
this field is set to the URL for accessing online Help from the ProCurve
Networking Website:
http://www.procurve.com
Using this option, the Help files are automatically available if your workstation can access the World Wide Web. In this case, if Online Help fails
to operate, ensure that the above URL appears in the Management Server URL field shown in figure 5-7:
5-13
Using the Web Browser Interface
In the default configuration, the switch uses the URL for
accessing the Web browser interface help files on the
ProCurve Web site.
Support/Mgmt URLs Feature
Figure 5-7. How To Access Web Browser Interface Online Help
5-14
Using the Web Browser Interface
Support/Mgmt URLs Feature
Using the PCM Server for Switch Web Help
For ProCurve devices that support the “Web Help” feature, you can use the
PCM server to host the switch help files for devices that do not have HTTP
access to the ProCurve Support Web site.
1.Go to the ProCurve Support Web site to get the Device Help files:
http://www.hp.com//rnd/device_help/
2.Copy the Web help files to the PCM server, under:
3.Add an entry, or edit the existing entry in the Discovery portion of the
global properties (globalprops.prp) in PCM to redirect the switches to the
help files on the PCM server. For example:
Global {
TempDir=data/temp
...
Discovery{
...
...
DeviceHelpUrlRedirect=http://15.29.37.12.8040/rnd/device_help
...
}
}
You will enter the IP address for your PCM server. 8040 is the standard port
number to use.
4.Restart the Discovery process for the change to be applied.
NoteChanging the Discovery’s Global properties file will redirect the Device Help
URL for all devices.
If you just want to change the Device Help URL for a particular device, then
go to the Configuration tab on the Web UI for that device and select the
“Support/Mgmt URL” button. Edit the entry in the “Management Server URL”
field for the device to point to the PCM server; for example:
http://15.29.37.12.8040/rnd/device_help
5-15
Using the Web Browser Interface
Alert Log
Control Bar
Port Utilization Graphs
(page 5-17)
Alert Log
(page 5-20)
Port Status
Indicators
(page 5-19)
Button Bar
Tab Bar
Status Bar
(page 5-22)
Active Button
Active Tab
Status Reporting Features
Status Reporting Features
Browser elements covered in this section include:
■The Overview window (below)
■Port utilization and status (page 5-17)
■The Alert log (page 5-20)
■The Status bar (page 5-22)
The Overview Window
The Overview Window is the home screen for any entry into the Web browser
interface.The following figure identifies the various parts of the screen.
Figure 5-8. The Status Overview Window
5-16
Using the Web Browser Interface
Port Status Indicators
Port Utilization Bar Graphs
Bandwidth Display Control
Legend
Status Reporting Features
Policy Management and Configuration. ProCurve PCM can perform
network-wide policy management and configuration of your switch. The
Management Server URL field (page 5-13) shows the URL for the management
station performing that function. For more information, refer to the documentation provided with the PCM software.
The Port Utilization and Status Displays
The Port Utilization and Status displays show an overview of the status of the
switch and the amount of network activity on each port. The following figure
shows a sample reading of the Port Utilization and Port Status.
Figure 5-9. The Graphs Area
Port Utilization
The Port Utilization bar graphs show the network traffic on the port with a
breakdown of the packet types that have been detected (unicast packets, nonunicast packets, and error packets). The Legend identifies traffic types and
their associated colors on the bar graph:
■% Unicast Rx & All Tx: This is all unicast traffic received and all
transmitted traffic of any type. This indicator (a blue color on many
systems) can signify either transmitted or received traffic.
■% Non-Unicast Pkts Rx: All multicast and broadcast traffic received by
the port. This indicator (a gold color on many systems) enables you to
know “at-a-glance” the source of any non-unicast traffic that is causing
high utilization of the switch. For example, if one port is receiving heavy
broadcast or multicast traffic, all ports will become highly utilized. By
color-coding the received broadcast and multicast utilization, the bar
graph quickly and easily identifies the offending port. This makes it faster
and easier to discover the exact source of the heavy traffic because you
don’t have to examine port counter data from several ports.
5-17
Using the Web Browser Interface
Status Reporting Features
■% Error Pkts Rx: All error packets received by the port. (This indicator
■Maximum Activity Indicator: As the bars in the graph area change
Utilization Guideline. A network utilization of 40% is considered the
maximum that a typical Ethernet-type network can experience before encountering performance difficulties. If you observe utilization that is consistently
higher than 40% on any port, click on the Port Counters button to get a detailed
set of counters for the port.
To change the amount of bandwidth the Port Utilization bar graph
shows. Click on the bandwidth display control button in the upper left corner
of the graph. (The button shows the current scale setting, such as 40%.) In the
resulting menu, select the bandwidth scale you want the graph to show (3%,
10%, 25%, 40%, 75%, or 100%), as shown in figure figure 5-10.
is a reddish color on many systems.) Although errors received on a port
are not propagated to the rest of the network, a consistently high number
of errors on a specific port may indicate a problem on the device or
network segment connected to the indicated port.
height to reflect the level of network activity on the corresponding port,
they leave an outline to identify the maximum activity level that has been
observed on the port.
Note that when viewing activity on a gigabit port, you may want to select a
lower value (such as 3% or 10%). This is because the bandwidth utilization of
current network applications on gigabit links is typically minimal, and may
not appear on the graph if the scale is set to show high bandwidth utilization.
Figure 5-10. Changing the Graph Area Scale
To display values for each graph bar. Hold the mouse cursor over any of
the bars in the graph, and a pop-up display is activated showing the port
identification and numerical values for each of the sections of the bar, as
shown in figure 5-11 (next).
5-18
Figure 5-11. Display of Numerical Values for the Bar
Port Status Indicators
Legend
Port Status
Figure 5-12. The Port Status Indicators and Legend
Using the Web Browser Interface
Status Reporting Features
The Port Status indicators show a symbol for each port that indicates the
general status of the port. There are four possible statuses:
■Port Connected – the port is enabled and is properly connected to an
active network device.
■Port Not Connected – the port is enabled but is not connected to an
active network device. A cable may not be connected to the port, or the
device at the other end may be powered off or inoperable, or the cable or
connected device could be faulty.
■Port Disabled – the port has been configured as disabled through the
Web browser interface, the switch console, or SNMP network management.
■Port Fault-Disabled – a fault condition has occurred on the port that
has caused it to be auto-disabled. Note that the Port Fault-Disabled
symbol will be displayed in the legend only if one or more of the ports is
in that status. See appendix B, “Monitoring and Analyzing Switch Operation” for more information.
5-19
Using the Web Browser Interface
Status Reporting Features
The Alert Log
The Web browser interface Alert Log, shown in the lower half of the screen,
shows a list of network occurrences, or alerts, that were detected by the
switch. Typical alerts are Broadcast Storm, indicating an excessive number of
broadcasts received on a port, and Problem Cable, indicating a faulty cable. For
more information on alerts, see “Alert Types and Detailed Views” on page 5-21
Figure 5-13.Example of the Alert Log
Each alert has the following fields of information:
■Status – The level of severity of the event generated. Severity levels can
■Alert – The specific event identification.
■Date/Time – The date and time the event was received by the Web
■Description – A short narrative statement that describes the event. For
be Information, Normal, Warning, and Critical. If the alert is new (has not
yet been acknowledged), the New symbol is also in the Status column.
browser interface. This value is shown in the format: DD-MM-YY HH:MM:SS AM/PM, for example, 16-Sep-99 7:58:44 AM.
example, Excessive CRC/Alignment errors on port: 8.
5-20
Sorting the Alert Log Entries
The alerts are sorted, by default, by the Date/Time field with the most recent
alert listed at the top of the list. The second most recent alert is displayed
below the top alert and so on. If alerts occurred at the same time, the
simultaneous alerts are sorted by order in which they appear in the MIB.
The alert field that is being used to sort the alert log is indicated by which
column heading is in bold. You can sort by any of the other columns by clicking
on the column heading. The Alert and Description columns are sorted alphabetically, while the Status column is sorted by severity type, with more critical
severity indicators appearing above less critical indicators.
Using the Web Browser Interface
Status Reporting Features
Alert Types and Detailed Views
As of April, 2004, the Web browser interface generates the following alert
types:
• Auto Partition
• Backup Transition
• Excessive broadcasts
• Excessive CRC/alignment errors
• Excessive jabbering
• Excessive late collisions
• First Time Install
• Full-Duplex Mismatch
• Half-Duplex Mismatch
• High collision or drop rate
• Loss of Link
• Mis-Configured SQE
• Network Loop
• Polarity Reversal
• Security Violation
• Stuck 10BaseT Port
• Too many undersized (runt)/giant
packets
• Transceiver Hot Swap
NoteWhen troubleshooting the sources of alerts, it may be helpful to check the
switch’s Port Status and Port Counter windows and the Event Log in the
console interface.
By double clicking on Alert Entries, the Web browser interface displays a
Detail View or separate window detailing information about the events. The
Detail View contains a description of the problem and a possible solution. It
also provides four management buttons:
■Acknowledge Event – removes the New symbol from the log entry
■Delete Event – removes the alert from the Alert Log
■Cancel Button – closes the detail view with no change to the status of
the alert and returns you to the Overview screen.
A sample Detail View describing an Excessive CRC/Alignment Error alert is
shown here.
5-21
Using the Web Browser Interface
Status Indicator
Most Critical Alert Description
Product Name
Status Reporting Features
Figure 5-14.Example of Alert Log Detail View
Figure 5-15. Example of the Status Bar
The Status Bar
The Status Bar is displayed in the upper left corner of the Web browser
interface screen. Figure 5-15 shows an expanded view of the status bar.
5-22
Using the Web Browser Interface
Status Reporting Features
The Status bar consists of four objects:
■Status Indicator. Indicates, by icon, the severity of the most critical alert
in the current display of the Alert Log. This indicator can be one of three
shapes and colors as shown in the following table.
Table 5-1.Status Indicator Key
ColorSwitch StatusStatus Indicator Shape
BlueNormal Activity; "First time installation"
GreenNormal Activity
YellowWarning
RedCritical
■System Name. The name you have configured for the switch by using
information available in the Alert log.
Identity screen, system name command, or the switch console System
Information screen.
■Most Critical Alert Description. A brief description of the earliest,
unacknowledged alert with the current highest severity in the Alert Log,
appearing in the right portion of the Status Bar. In instances where
multiple critical alerts have the same severity level, only the earliest
unacknowledged alert is deployed in the Status bar.
■Product Name. The product name of the switch to which you are
connected in the current Web browser interface session.
Setting Fault Detection Policy
One of the powerful features in the Web browser interface is the Fault
Detection facility. For your switch, this feature controls the types of alerts
reported to the Alert Log based on their level of severity.
Set this policy in the Fault Detection window (figure 5-16).
5-23
Using the Web Browser Interface
Status Reporting Features
Figure 5-16. The Fault Detection Window
5-24
The Fault Detection screen contains a list box for setting fault detection and
response policy. You set the sensitivity level at which a network problem
should generate an alert and send it to the Alert Log.
To provide the most information on network problems in the Alert Log, the
recommended sensitivity level for Log Network Problems is High Sensitivity. The
Fault Detection settings are:
■High Sensitivity. This policy directs the switch to send all alerts to the
Alert Log. This setting is most effective on networks that have none or
few problems.
■Medium Sensitivity. This policy directs the switch to send alerts related
to network problems to the Alert Log. If you want to be notified of
problems which cause a noticeable slowdown on the network, use this
setting.
■Low Sensitivity. This policy directs the switch to send only the most
severe alerts to the Alert Log. This policy is most effective on a network
that normally has a lot of problems and you want to be informed of only
the most severe ones.
Using the Web Browser Interface
Status Reporting Features
■Never. Disables the Alert Log and transmission of alerts (traps) to the
management server (in cases where a network management tool such as
ProCurve Manager is in use). Use this option when you don’t want to use
the Alert Log.
The Fault Detection Window also contains three Change Control Buttons:
■Apply Changes. This button stores the settings you have selected for all
future sessions with the Web browser interface until you decide to change
them.
■Clear Changes. This button removes your settings and returns the
settings for the list box to the level it was at in the last saved detectionsetting session.
■Reset to Default Settings. This button reverts the policy setting to
(Controls switch operation. When the switch reboots,
the contents of this file are erased and replaced by the
contents of the startup-config file.)
Startup-Config File
(Preserves the most recently saved configuration
through any subsequent reboot.)
Volatile Memory
Flash (Non-Volatile) Memory
CLI configuration
changes are written to
this file. To use the CLI to
save the latest version of
this file to the startupconfig file, you must
execute the write memory command.
Menu interface configuration changes are simultaneously written to both
of these files.
Overview
Overview
This chapter describes:
■How switch memory manages configuration changes
■How the CLI implements configuration changes
■How the menu interface and Web browser interface implement configu-
■How the switch provides software options through primary/secondary
■How to use the switch’s primary and secondary flash options, including
Overview of Configuration File
Management
ration changes
flash image options
displaying flash information, booting or restarting the switch, and other
topics
The switch maintains two configuration files, the running-config file and the startup-config file.
6-2
Figure 6-1. Conceptual Illustration of Switch Memory Operation
Loading...
+ hidden pages
You need points to download manuals.
1 point = 1 manual.
You can buy points or you can get point for every manual you upload.