Hp 4108GL, 2512 User Manual
Revision 1.3
July 2001
Contents
1. INTRODUCTION ...............................................................................................................................................1
1.1 C
1.2 A
1.3 P
1.4 T
1.5 S
1.6 C
ONVENTIONS ...................................................................................................................................................1
RGUMENT TYPES.............................................................................................................................................1
RIVILEGE AND CONTEXT LEVELS.....................................................................................................................2
HE COMMAND LINE INTERFACE ......................................................................................................................3
YSTEM HELP ....................................................................................................................................................3
OMMAND LINE EDITING ..................................................................................................................................4
2. COMMAND SUMMARY................................................................................................................................... 5
2.1 USER EXEC COMMANDS ..................................................................................................................................5
2.2 D
2.3 S
IAGNOSTIC COMMANDS ..................................................................................................................................6
YSTEM CONFIGURATION................................................................................................................................11
2.3.1 System commands - EXEC level............................................................................................................11
2.3.2 System Configuration commands..........................................................................................................14
2.4 AUTHENTICATION .....................................................................................................................................16
2.4.1 AUTHENTICATION commands - Configuration level.........................................................................16
2.5 TACACS......................................................................................................................................................... 17
2.5.1 TACACS commands - EXEC level ........................................................................................................17
2.5.2 TACACS commands - Configuration level ...........................................................................................17
2.6 CDP.................................................................................................................................................................17
2.6.1 CDP commands - EXEC level...............................................................................................................17
2.6.2 CDP commands - Configuration level.................................................................................................. 17
2.7 IP S
TACKING ...................................................................................................................................................18
2.7.1 IP Stacking commands - EXEC level ....................................................................................................18
2.7.2 IP Stacking commands - Configuration level .......................................................................................18
ORT SETTINGS ...............................................................................................................................................20
2.8 P
2.8.1 Port commands - EXEC level................................................................................................................20
2.8.2 Ethernet Interface Configuration Commands.......................................................................................22
RUNK CONFIGURATION .................................................................................................................................23
2.9 T
2.9.1 Trunk commands - EXEC level .............................................................................................................23
2.9.2 Trunk commands - Configuration level ................................................................................................24
2.10 S
PANNING TREE..........................................................................................................................................25
2.10.1 Spanning Tree commands - EXEC level ...............................................................................................25
2.10.2 Spanning Tree commands - Configuration level ..................................................................................26
2.11 IP ................................................................................................................................................................28
2.11.1 IP commands - EXEC level...................................................................................................................28
2.11.2 IP commands - Configuration level ......................................................................................................31
2.11.3 IP commands - VLAN Interface level....................................................................................................33
2.12 SNMP.........................................................................................................................................................34
2.12.1 SNMP commands - EXEC level ............................................................................................................34
2.12.2 SNMP commands – Configuration Level..............................................................................................35
2.13 VLAN C
ONFIGURATION.............................................................................................................................36
2.13.1 VLAN commands - EXEC level.............................................................................................................36
2.13.2 VLAN commands – Configuration Level ..............................................................................................36
2.13.3 VLAN Interface commands ...................................................................................................................37
2.14 GVRP .........................................................................................................................................................38
2.14.1 GVRP commands - EXEC level.............................................................................................................38
2.14.2 GVRP commands – Configuration level ...............................................................................................38
2.14.3 Ethernet Interface Configuration commands........................................................................................38
2.15 IGMP..........................................................................................................................................................39
2.15.1 IGMP Commands – EXEC Level .........................................................................................................39
2.15.2 IGMP Configuration commands – Vlan Interface level .......................................................................40
2.16 PORT MONITORING.....................................................................................................................................41
2.16.1 Port Monitoring commands - EXEC level ............................................................................................41
2.16.2 Port Monitoring commands - Configuration level................................................................................41
2.16.3 Port Monitoring commands - VLAN Interface level ............................................................................42
2.16.4 Port Monitoring commands - Ethernet Interface level........................................................................42
2.17 P
ORT SECURITY ..........................................................................................................................................42
2.17.1 Port Security commands - EXEC level .................................................................................................42
2.17.2 Port Security commands - Configuration level.....................................................................................43
3. CONSOLE MENU.............................................................................................................................................45
TATUS AND COUNTERS..................................................................................................................................45
3.1 S
3.1.1 General System Information .................................................................................................................46
3.1.2 Management Address Information........................................................................................................46
3.1.3 Module Information ..............................................................................................................................47
3.1.4 Port Status............................................................................................................................................. 47
3.1.5 Port Counters ........................................................................................................................................48
3.1.5.1 Port Counters Details.........................................................................................................................................48
3.1.6 Address Table........................................................................................................................................49
3.1.7 Port Address Table................................................................................................................................49
3.1.8 Spanning Tree Information ...................................................................................................................50
3.1.8.1 Spanning Tree Port Information........................................................................................................................ 50
3.2 CONFIGURATION MENU...................................................................................................................................51
3.2.1 System Information................................................................................................................................52
3.2.2 Port/Trunk Settings ............................................................................................................................... 52
3.2.3 Network Monitoring Port......................................................................................................................53
3.2.4 Spanning Tree Operation......................................................................................................................53
3.2.5 IP Configuration ................................................................................................................................... 54
3.2.6 SNMP Communities ..............................................................................................................................55
3.2.7 Authorized Managers............................................................................................................................ 55
3.2.8 VLAN Menu...........................................................................................................................................56
3.2.8.1 VLAN Support .................................................................................................................................................. 56
3.2.8.2 VLAN Names.................................................................................................................................................... 57
3.2.8.3 VLAN Port Assignment ....................................................................................................................................57
3.3 PASSWORD MENU............................................................................................................................................58
VENT LOG......................................................................................................................................................58
3.4 E
3.5 D
3.6 R
OWNLOAD SCREEN .......................................................................................................................................59
UN SETUP ......................................................................................................................................................59
1. Introduction
This document provides a summary of the commands supported on the HP ProCurve 2524,
2512, and 4108gl switches. It is divided into sections that correspond to different modules or
features of the HP switches. Not all sections will apply to all HP switches since each switch
may only support a subset of the total feature set that is described in this document.
1.1 Conventions
Command descriptions use the following conventions:
Vertical bars “|” separate alternative, mutually exclusive elements.
Square brackets “[ ]” indicate optional elements.
Braces “<>” indicate a required choice.
Braces within square brackets “[<>]” indicate a required choice within an optional
element.
Boldface indicates commands and keywords that are entered literally as shown.
Italics indicates arguments for which you must supply a value.
If the no form of a command has exactly the same keywords and arguments as the
command, then no appears in square brackets at the beginning of the command.
Otherwise, the no form of the command is described separately.
If the no form of a command is not explicitly described, then it simply negates the
command. For example, if the command enables a feature, then the no form of the
command would disable it. Also, if the a command was used to add a configuration item,
then the no form of the command would remove it.
1.2 Argument Types
The following argument types are recognized by the CLI and are used in the command
syntax throughout this document:
mac-addr
ip-addr
ip-mask
port-number
– For example, 0060b0-885a80 or 0060b0:885a80.
- IP address in dotted decimal notation. For example, 10.0.16.80
- This is syntactically expressed the same way as ip-addr.
- Devices with fixed port configurations accept port numbers
specified as integers. Modular devices accept port numbers specified with slot
and port number identifiers. For instance, port "A1" indicates Port 1 in Slot A.
1
There are three "special" port designations in the switch. You may specify the
i
v
monitoring port by using "mp"; you may specify a trunk port by using "trkX",
where X identifies the numerical trunk group.
port-list
- A port list specifies a group of ports for which the operation being
performed should be applied. A port list consists of individual port identifiers or
ranges of ports separated by commas (e.g., A1-B8, C4, D1). This list includes the
"special" port designations described under port-number.
vlan-id
- The 802.1Q VLAN identifier.
1.3 Privilege and Context levels
The new CLI will support two privilege levels (operator and manager) and several context
levels. As each context level is entered, the context information is displayed as part of the
command prompt. When a context specific command is executed, the context information
is applied to the particular command. For instance, when you attempt to enter the interface
context level, you must specify a port number (see interface ethernet). Subsequent
commands that affect port behavior (e.g., flow-control) will be applied to the port number
specified when entering the level, so the specified port need not be re-specified on the
command line.
EXEC level
HP 4108GL>
Global configuration level
HP 4108GL(config)
nterface config level
HP 4108GL(if-A1)
lan config level
HP 4108GL(vlan-1)
Figure 1: Command and context levels
When you log onto the switch, you will be placed at the operator EXEC level and the
system will display the following prompt:
HP 4108GL>
2
If an operator password has been set (see password in the global configuration section),
then the system would have displayed the following prompt before entering the operator
EXEC level:
Password:
You can enter the manager EXEC level from the operator EXEC level by using the enable
command. If a manager level password has been configured, then you will be prompted for
the manager password after executing the enable command.
1.4 The Command Line Interface
The new CLI will not be case sensitive. As a short cut, you can abbreviate commands and
keywords as long they contain enough letters to be distinguished from any other currently
available commands or keywords.
When the command text exceeds the length of the command line, the current command line
will scroll upwards, yet the cursor will shift to the first character on the last line on the
screen. This is opposed to shifting the command line horizontally each time the command
exceeds the number of characters that can be displayed at one time on the screen.
1.5 System Help
You can enter help or ? at a particular command level to see the commands available at that
level. You can enter a command followed by help or ? in order to get the system to display
the command description for that particular command. The command description would be
similar to what is presented for each command in the Command Reference section of this
document.
In order to see the list of possible word completions or to complete the current word, you
may use the Tab key immediately after the last letter of the last keyword on the command
line. For example, if the system was currently in the global configuration level and you typed
tab immediately after the t in step (1), the system would display the options seen in section
(2) and the system would return to the configuration level prompt with the partially
completed command line seen in (3):
(1) HP 4108GL(config) t
(2) trunk
trap
trap-send-authentication
telnet-server
(3) HP 4108GL(config)t
3
If you had already typed in trap- on line (1) and then pressed the tab character, the system
would complete the keyword trap-send-authentication, for it is the only possible
completion for trap-, and display the completed command line as shown below:
1. HP 4108GL(config) trap-
2. HP 4108GL(config) trap-send-authentication
1.6 Command Line Editing
Before you press return, the current command line can be edited using special keys
including arrows and control characters. The following table describes the supported
command editing keys and their function:
Keystroke Function
Ctrl-A Jumps to the first character of the command line.
Ctrl-B; left arrow Moves the cursor back one character.
Ctrl-C Escapes and terminates prompts and lengthy tasks.
Ctrl-D Deletes the character at the cursor.
Ctrl-E Jumps to the end of the current command line.
Ctrl-F; right arrow Moves the cursor forward one character.
Ctrl-K Deletes from the cursor to the end of the command line.
Ctrl-L; Ctrl-R Repeats current command line on a new line.
Ctrl-N; down arrow Enters next command line in the history buffer.
Ctrl-P; up arrow Enters previous command line in the history buffer.
Ctrl-U; Ctrl-X Deletes from the cursor to the beginning of the command line.
Ctrl-W Deletes last word typed.
Esc B Moves the cursor backward one word.
Esc D Deletes from the cursor to the end of the word.
Esc F Moves the cursor forward one word.
Delete; Backspace
Erases mistake when entering a command; reenter command after using this
key.
4
2. Command Summary
2.1 User EXEC Commands
enable
Enters the manager EXEC level. If a manager password is set, the system will first
prompt for the password. Echoing is disabled while you enter the password. Initially
there are no passwords for the two levels of users in the system: manager and
operator. When you first connect to the console or telnet into the system, you will be
placed into the Operator EXEC level. At that time, you can enter the above enable
command without a password in order to be granted manager access to the switch
and to be placed into the manager EXEC level. Passwords are set and changed
through the password command at the global configuration level.
configure [terminal]
Used to enter the global configuration level.
end
This command sets the current command or context level to the manager EXEC
level.
exit
This command sets the current command level to the previous command level. At
the operator EXEC level, this command acts the same as logout.
interface [ethernet] <port-list>
Enters the Ethernet interface configuration context for the port-list.
logout
Terminates this console/telnet session.
menu
Used to enter the menu system. For more information, see the Console Menu
section of this document.
setup
Used to setup initial switch configuration.
5
[no] page
Toggles the paging mode for display commands so that the “—more –“ will appear
or not appear.
repeat
Repeatedly executes the previous command until a key is pressed.
vlan <vlan-name | vlan-id>
Enters the VLAN interface configuration context for the VLAN.
2.2 Diagnostic Commands
boot [system [flash <primary|secondary>]]
Performs cold reboot of switch.
write terminal
This command displays the running configuration.
write memory
This command saves the running configuration to Flash.
erase startup-config
Deletes the configuration stored in flash so that the switch will reverted to it’s
default configuration upon reboot.
erase flash <primary|secondary>
Deletes the configuration stored in flash so that the switch will reverted to it’s
default configuration upon reboot.
copy tftp <startup-config|flash> <ip-addr> <remote-file>
Retrieves a configuration or OS file on the remote host, and overwrites the switch's
corresponding file with the remote file.
[primary|secondary]
6
copy <startup-config|running-config|crash-log|event-log|crash-rec|Command>
tftp <ip-addr> <remote-file>
This command writes the switch's configuration file, crashrec, eventlog or the output
from a command specified by Command to the remote file on the remote host.
show startup-config
Displays the configuration stored in flash.
show running-config
Displays the configuration stored in flash.
show boot-history
Displays the switch shutdown history.
kill
This command kills all other active sessions.
show logging [-a] [<search-text>]
Displays the switch's event log. If -a is specified then entire internal switch log is
displayed. If search-text is specified then only events that contain that text are
displayed.
print <command>
Used to execute a command and captures its output using a terminal emulator. This
command will display “Press RETURN when ready…” to allow the terminal
emulator to be set up to for the capture and “Press RETURN when done…” once
the output is complete.
show history
Displays the current command history.
reload
Performs a warm reboot.
clear arp
To clear the arp cache of all non-permanent entries.
7
clear intrusion-log
To clear the intrusion log.
clear statistics [ethernet] <port-list>
To reset counters displayed by the console. If a new console session is initiated, the
counters will revert back to the values maintained by the switch hardware.
telnet <ip-addr>
To initiate a telnet session with another network device.
telnet <0..15>
To initiate a telnet session to a member switch in the stack.
Parameters:
<0..15> specifies the number of the switch to be contacted.
getmib <object-name> [<object-name> …]
Retrieves and displays the MIB object defined by object-name.
walkmib <object-name>
This command shows a group of managed object values.
8
setmib <object-name> <type> <value> [<object-name> <type> <value> …]
This command sets the MIB object defined by object-name. The options for the type
parameter are case sensitive as shown below:
-i Integer
-o Octet string
-d Object identifier
-a IP address (nnn.nnn.nnn.nnn)
-c Counter
-g Gauge
-t Time tick
-u Unsigned integer
-D Display string (“value”)
-N Null
show version
Displays software version information.
show flash
Displays software version information for images in flash.
show tech
Displays switch information needed by HP support for diagnostics.
copy xmodem < startup-config |flash [primary|secondary]>
Retrieves a configuration file using the Xmodem protocol and then writes the
retrieved file to the switch's flash.
copy <startup-config|running-config|crash-log|event-log|crash-rec|Command>
xmodem [ pc | unix ]
Writes either the configuration file, crashrec, eventlog, or the output from a
command specified by command using the Xmodem protocol.
9
link-test <mac-addr> [vlan <vlan-id>] [repetitions <1..999>] [timeout <1..256>]
Tests the connection to a MAC station on the LAN by sending a 802.2 test packet to
a specific target node on a network directly attached to a port in that LAN. The
target node must be able to respond to this test packet with an 802.2 Test Response
packet in order for the test to work. The switch produces the following output if the
link test succeeds:
link-test passed
otherwise, the following is displayed:
link-test failed
Parameters:
<mac-addr> - MAC address of the station to send link test to.
vlan <vlan-id> - Expected VLAN on which the station is expected to be present.
If this argument is not present then the VLAN used is 1.
repetitions <1..9999> - Number of test packets to send; the default value is 1.
timeout <1..256> - Seconds within which a response is required before the test
is considered as failed; the default value is 5.
ping <ip-addr> [repetitions <1..999>] [timeout <1..256>]
Issues an IP Ping requests to an IP device on the network and the system displays
the following output at the CLI if a response is received from the specified IP
address:
192.32.36.75 is alive, time = 10 ms
If no response is received the system displays the following:
Target did not respond
Parameters:
<ip-addr> - Network IP address of station to send IP Ping to.
repetitions <1..999>- Number of times to send IP Ping; the default value is 1.
timeout <1..256> - Seconds within which a response is required before the test
is considered as failed; the default value is 5.
10
2.3 System Configuration
2.3.1 System commands - EXEC level
show console
Displays the console parameters.
Output Format:
Switch Configuration - Console/Serial Link
Inbound Telnet Enabled [Yes] : Yes
Web Agent Enabled [Yes] : Yes
Terminal Type [VT100] : VT100
Screen Refresh Interval (sec) [3] : 3
Displayed Events [All] : All
Baud Rate [Speed Sense] : Speed Sense
Flow Control [XON/XOFF] : XON/XOFF
Connection Inactivity Time (min) [0] : 0
show mac-address [vlan <vlan-id>]
Displays the MAC addresses that the switch has learned from the network devices
attached to the switch, and the port on which each address was learned. If no vlan is
specified, then all MAC addresses that are know to the switch are shown.
Output Format:
Status and Counters - Address Table
MAC Address Located on Port
------------00105a-8abed4 1
00105a-cac0e8 1
0060b0-881c00 1
009004-8e3178 1
00c0f0-1c65ee 1
00c0f0-30d74a 1
080009-3515f9 1
080009-782368 1
080009-7b8cc4 1
080009-919b30 1
080009-959e2c 1
---------------
11
show mac-address <port-list>
Displays the MAC addresses that the switch has learned from the network devices
attached to the specified switch port.
Output Format:
Status and Counters - Port Address Table - Port 1
MAC Address
------------00105a-8abed4
00105a-cac0e8
009004-8e3178
00c0f0-1c65ee
00c0f0-1c66ea
00c0f0-30d74a
080009-3515f9
080009-782368
080009-7b8cc4
080009-919b30
080009-959e2c
show management
Displays configured addresses that are used to manage the switch.
Output Format:
Time Server Address :
MAC Address : 0060b0-885a80
IP Address : 192.32.36.96
IPX Network Number :
Status and Counters - Management Address Information
12
show modules
Displays the modules that are present on the switch.
Output Format:
Slot Module Type Module Description
---A Slot Available
show system-information
Displays the status of and current configuration of all the switch internal resources.
Output Format:
Status and Counters - Module Information
-----------------------------------------------------------
System Information
..System Name :
System Contact :
System Location :
Address Age Interval (min) [5] : 5
Time Zone [0] : 0
Daylight Time Rule [None] : User defined
Beginning month [April] : April
Ending month [October] : October
Firmware revision : C.08.XX
ROM Version : C.05.X1
Up Time : 17 hours
CPU Util (%) : 2
IP Mgmt - Pkts Rx : 14,496
Pkts Tx : 9463
Beginning day [1] : 1
Ending day [1] : 1
Base MAC Addr : 0060b0-885a80
Serial Number : +
Memory - Total : 7,669,088
Free : 4,871,840
Packet - Total : 462
Buffers Free : 296
Lowest : 237
Missed : 0
13
2.3.2
System Configuration commands
mac-age-time <1..100000>
Sets the number of seconds a MAC address stays in the switch address table before
being aged out. Aging out occurs if traffic isn't received from that MAC station
within the age interval. The default value is 300.
console [terminal <vt100 | ansi> [screen-refresh <value>] [events <none | all | non-
info | critical | debug>] [baud-rate <value>] [flow-control <xon/xoff | none>]
[inactivity <value>]
Sets the console parameters.
Parameters:
terminal <vt100 | ansi> - Type of terminal being used (default is vt100).
screen-refresh <1|3|5|10|20|30|45|60> - Sets the number of seconds before a
refresh is done on the “Status and Counters” screens (default is 3).
events <none | all | non-info | critical | debug>] – The level of Switch events
displayed in Events Log. all - display all; none - display no events; not-info - display
all events except informational-only; critical - display only critical-level events;
debug (reserved for Internal use only).
baud-rate <speed-sense | 1200 | 2400 | 4800 | 9600 | 19200 | 38400 | 57600
| 115200>] - Sets the data transmission speed for switch connect sessions initiated
through the Console port. Default is speed-sense.
flow-control <xon/xoff | none> - Flow Control Method; default is xon-xoff.
inactivity-timer <0 | 1 | 5 | 10 | 15 | 20 | 30 | 60 | 120> - Sets the number of
minutes of inactivity allowed by the switch before the switch will terminate the
communication session. 0 means never terminate the session; default is 0 .
[no] auto-tftp <ip-addr filename>
Enables/disables automatic OS image download via TFTP.
14
time [mm/dd/yy] [hh:mm:ss] [timezone <value>] [daylight-time-rule <value>] [begin-date
<mm/dd> end-date <mm/dd>]
This command display switch's date & time or optionally sets it.
Parameters:
timezone <-1440..1440> - Sets the number of minutes your location is to the
West(+) or East(-) of GMT (default is 0).
daylight-time-rule <alaska | none | continental-us-canada | middle-europe-
and-portugal | southern-hemisphere | western-europe | user-defined> -
Sets the daylight savings time rule for your location. None (default) means that no
time adjustment will be made.
begin-date <mm/dd> end-date <mm/dd > - begin-date and end-date are only
valid if the daylight time rule is set to user-defined.
snmp-server [contact <sys-contact>] [location sys-location>]
Sets the switch contact and location for administrative purposes.
Parameters:
contact <sys-contact> - Up to 48 characters. Name of the switch administrator.
location <sys-location> - Up to 48 characters. Description of the switch location.
hostname <name-string>
Sets the switch name for administrative purposes.
15
[no] telnet-server
Enables remote telnet access to the switch.
[no] web-management
Enables the web browser to interact with the web agent on the switch.
[no] password <operator | manager>
Sets passwords for different classes of users. This command causes the switch to
prompt for a password twice, once for the new password and once to verify it was
typed correctly, and disables echoing while you type the password.
Parameters:
<operator | manager> - Class of user.
2.4 AUTHENTICATION
2.4.1 AUTHENTICATION commands - Configuration level
aaa authentication console <enable|login>
<primary-method> [<backup-method>]
Configures authentication mechanism used to control access to the switch.
aaa authentication telnet <enable|login>
<primary-method> [<backup-method>]
Configures authentication mechanism used to control access to the switch.
16
Loading...