NETGEAR 7300S User Manual

User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software

202-10088-01 March 2005

NETGEAR, Inc. 4500 Great America

Parkway Santa Clara, CA

202-10088-01, March 2005

Technical Support

Please register to obtain technical support. Please retain your proof of purchase and warranty

information. To register your product, get product support or obtain product information and product

documentation, go to http://www.netgear.com you may register your product by filling out the registration card and mailing it to NETGEAR customer service.

. If you do not have access to the World Wide Web,

You will find technical support information at: http://www.netgear.com/

through the customer service area. If you want to contact technical support by telephone, see the support information card for the correct telephone number for your country.

Trademarks

NETGEAR is a registered trademark of NETGEAR, INC. Windows is a registered trademark of Microsoft Corporation. Other brand and product names are trademarks or registered trademarks of their respective holders. Information is subject to change without notice. All rights reserved.

Statement of Conditions

In the interest of improving internal design, operational function, and/or reliability, NETGEAR reserves the right to make changes to the products described in this document without notice. NETGEAR does not assume any liability that may occur due to the use or application of the product(s) or circuit layout(s) described herein.

Regulatory Compliance Information

This device is restricted to indoor use due to reduce the potential for harmful interference to co-channel Mobile Satellite and Radar Systems.

202-10088-01, March 2005

Canadian Department of Communications Compliance Statement

This Class B Digital apparatus (NETGEAR 7300S Series Layer 3 Managed Switch) meets all the requirements of the Canadian Interference Causing Equipment Regulations.

Cet appareil numerique del la classe B respect les exigences du Regalement sur le material broilleur du Canada. This device comples with Class B limits of Industry of Canada. Operation is subject to the following two conditions:

1. This device may not cause harmful interference.

2. This device must accept any interference received, including interference that may cause undesired operation.

EN 55 022 Declaration of Conformance

This is to certify that the NETGEAR 7300S Series Layer 3 Managed Switch is shielded against the generation of radio interference in accordance with the application of Council Directive 89/336/EEC, Article 4a. Conformity is declared by the application of EN 55 022 Class B (CISPR 22).

Product and Publication Details

Model Number: FSM7328S, FSM7352S Publication Date: March 2005 Product Family: managed switch Product Name: NETGEAR 7300S Series Layer 3 Managed Switch Home or Business Product: Business Language: English Publication Part Number: 202-10088-01

202-10088-01, March 2005

iii

202-10088-01, March 2005

Contents

Chapter 1 About This Guide

Audience ................................... ................ ................ ................. ................ ................ .....1-1

Why the Document was Created ....................................................................................1-1

How to Use This Document ............................................................................................1-1

Typographical Conventions ............................................................................................1-2

Special Message Formats ..............................................................................................1-2

Chapter 2 Switch Management Overview

Scope .............................................................................................................................2-1

Switch Management Overview ........................................ ... ... .... ... ... ... .... ... ... ... ... .... ... ... ..2-1

Chapter 3 Administration Console Interface

Set Up Your Switch Using Direct Console Access .........................................................3-1

Chapter 4 Web-Based Management Interface

Web Based Management Overview ...................................... .... ... ... ... .... ... ... ... ... .... ... ... ..4-2

How to Log In to the Managed Switch ............................................................................4-2

Web-Based Management Utility Features ......................................................................4-4

Interactive Switch Image . ... ... .... ... ... ... .... ..................................................................4-5

Menus .................................... ............................................. ............................................4-6

Main Menus ..............................................................................................................4-6

Secondary Menus ....................................................................................................4-7

Management ....................................... .......................... ...................... ...............4-7

Switch ................................................................................................................4-7

Routing ..............................................................................................................4-8

Traffic Management .................. ... ......................................................................4-8

Smart Wizard .....................................................................................................4-8

System-Wide Popup Menus .....................................................................................4-8

Port-Specific Popup Menus ......................................................................................4-9

Contents v

202-10088-01, March 2005

Chapter 5 Command Line Interface Structure

CLI Command Format ....................................................................................................5-1

Command ..................................... ... ... .... ... ... ....................................... ... ... ... .... ... ... ..5-1

Parameters ................................... ... ... .... ...................................... .... ... ... ... ... .... ........5-2

Values ......................................................................................................................5-2

Conventions .............................................................................................................5-3

Annotations .............................................................................................................. 5-4

Chapter 6 Quick Start up

Quick Starting the Switch ................................................................................................6-1

System Info and System Setup ......................................................................................6-2

Quick Start up Software Version Information ...........................................................6-2

Quick Start up Physical Port Data ............................. ... ... .... ... ... ... .... ... ... ... ... ............6-2

Quick Start up User Account Management ......................................................... .....6-3

Quick Start up IP Address ........................................................................................6-3

Quick Start up Uploading from Switch to Out-of-Band PC (Only XMODEM) ...........6-5

Quick Start up Downloading from Out-of-Band PC to Switch (Only XMODEM) ......6-5

Quick Start up Downloading from TFTP Server ....................................................... 6-6

Quick Start up Factory Defaults ...............................................................................6-6

Chapter 7 Mode-based CLI

Mode-based Topology ....................................................................................................7-3

Mode-based Command Hierarchy ..................................................................................7-4

Flow of Operation ........... .... ...................................... .... ... ... ... .... ... ..................................7-6

“No” Form of a Command ...............................................................................................7-7

Support for “No” Form ..............................................................................................7-7

Behavior of Command Help ("?") .............................................................................7-7

Chapter 8 Switching Commands

System Information and Statistics Commands ...............................................................8-1

show arp switch ........................................................................................................8-2

show eventlog ..........................................................................................................8-2

show hardware .........................................................................................................8-2

show interface ..........................................................................................................8-3

show interface ethernet ............................................................................................8-4

vi Contents

202-10088-01, March 2005

show logging ..........................................................................................................8-13

show mac-addr-table ..............................................................................................8-13

show msglog ..........................................................................................................8-14

show running-config ...............................................................................................8-14

show sysinfo ...........................................................................................................8-15

snmp-server ...........................................................................................................8-15

System Management Commands ................................................................................8-15

telnet ......................................................................................................................8-16

transport input telnet ..............................................................................................8-16

no transport input telnet ...................................................................................8-16

transport output telnet ............................................................................................8-17

no transport output telnet .................................................................................8-17

session-limit ...........................................................................................................8-17

no session-limit ................................................................................................8-17

session-timeout ......................................... .............................................................8-17

no session-timeout ..........................................................................................8-18

bridge aging-time ...................................................................................................8-18

no bridge aging-time ........................................................................................8-18

mtu .........................................................................................................................8-19

no mtu ..............................................................................................................8-19

network javamode ..................................................................................................8-19

no network javamode ......................................................................................8-19

network mac-address .............................................................................................8-19

network mac-type ...................................................................................................8-20

no network mac-type .......................................................................................8-20

network parms ........................................................................................................8-20

network protocol .....................................................................................................8-21

telnetcon maxsessions ...........................................................................................8-21

no telnetcon maxsessions ...............................................................................8-21

telnetcon timeout ....................................................................................................8-21

no telnetcon timeout ........................................................................................8-22

serial baudrate .......................................................................................................8-22

no serial baudrate ............................................................................................8-22

serial timeout ..........................................................................................................8-22

no serial timeout ..............................................................................................8-22

Contents vii

202-10088-01, March 2005

set prompt ..............................................................................................................8-23

serviceport ip ...................................... .... ... ... ....................................... ... ... ... ..........8-23

serviceport protocol ................................ ... ... ....................................... ... ... ... ..........8-23

show telnet .............................................................................................................8-23

show forwardingdb agetime ...................................................................................8-24

show network .........................................................................................................8-24

show telnetcon .......................................................................................................8-25

show serial .............................................................................................................8-26

show serviceport ....................................................................................................8-26

SNMP Community Commands .....................................................................................8-27

show snmpcommunity ............................................................................................8-27

show snmptrap .......................................................................................................8-28

show trapflags ........................................................................................................8-28

snmp-server community .........................................................................................8-29

no snmp-server community .............................................................................8-29

snmp-server community ipaddr ..............................................................................8-30

no snmp-server community ipaddr ..................................................................8-30

snmp-server community ipmask ............................................................................8-30

no snmp-server community ipmask .................................................................8-30

snmp-server community mode .................................. ....................................... ...... 8-31

no snmp-server community mode ...................................................................8-31

snmp-server community ro .....................................................................................8-31

snmp-server community rw ....................................................................................8-31

snmp-server enable traps ......................................................................................8-32

no snmp-server enable traps ...........................................................................8-32

snmp-server enable traps bcaststorm ....................................................................8-32

no snmp-server enable traps bcaststorm ........................................................8-32

snmp-server enable traps linkmode .................................... ...................................8-32

no snmp-server enable traps linkmode ............................................................8-33

snmp-server enable traps multiusers .....................................................................8-33

no snmp-server enable traps multiusers ..........................................................8-33

snmp-server enable traps stpmode .............................. ............. ................ .............8-33

no snmp-server enable traps stpmode ............................................................8-33

snmptrap ................................................................................................................ 8-34

no snmptrap .....................................................................................................8-34

viii Contents

202-10088-01, March 2005

snmptrap ipaddr .....................................................................................................8-34

snmptrap mode ......................................................................................................8-34

no snmptrap mode ...........................................................................................8-34

snmp trap link-status ..............................................................................................8-35

no snmp trap link-status ..................................................................................8-35

snmp trap link-status all ......................................... ...................................... .... ... ...8-35

no snmp trap link-status all ................................. ............................................. 8-35

Management VLAN Command .....................................................................................8-36

network mgmt_vlan ................................................................................................8-36

System Configuration Commands ................................................................................8-36

addport ............................................ ....................................................................... 8-36

auto-negotiate ........................................................................................................8-36

no auto-negotiate .............................................................................................8-37

auto-negotiate all ....................................................................................................8-37

no auto-negotiate all ........................................................................................8-37

deleteport (Interface Config) ..................................................................................8-37

deleteport (Global Config) ......................................................................................8-37

macfilter ................................. .... ... ....................................... ... ... ... ..........................8-38

no macfilter ......................................................................................................8-38

macfilter adddest ....................................................................................................8-38

no macfilter adddest ........................................................................................8-39

macfilter adddest all ...............................................................................................8-39

no macfilter adddest all ....................................................................................8-39

macfilter addsrc ......................................................................................................8-39

no macfilter addsrc ..........................................................................................8-40

macfilter addsrc all .................................................................................................8-40

no macfilter addsrc all ......................................................................................8-40

monitor session ........ ....................................... ... .... ...................................... .... ... ...8-40

no monitor session ..........................................................................................8-41

monitor session mode ........ ... ....................................... ... .... ... ... ... .... ......................8-41

no monitor session mode ................................................................................8-41

shutdown ............................................ .......................................... .......................... 8-41

no shutdown ....................................................................................................8-42

shutdown all .................... ... ... .... ... ... ... .... ... ....................................... ... ... ... .............8-42

no shutdown all ................................................................................................8-42

Contents ix

202-10088-01, March 2005

speed .....................................................................................................................8-42

speed all .................................................................................................................8-42

storm-control broadcast .........................................................................................8-43

no storm-control broadcast ..............................................................................8-43

storm-control flowcontrol ........................................................................................8-44

no storm-control flowcontrol ............................................................................8-44

show mac-address-table multicast .........................................................................8-44

show mac-address-table static ...............................................................................8-45

show mac-address-table staticfiltering ...................................................................8-45

show mac-address-table stats ...............................................................................8-46

show monitor ..........................................................................................................8-46

show port ................................................................................................................8-46

show port protocol ..................................................................................................8-47

show storm-control .................................................................................................8-48

Virtual LAN (VLAN) Commands ...................................................................................8-48

vlan ..................................... ....................................... ... ....................................... ...8-48

no vlan .............................................................................................................8-48

vlan acceptframe ... ....................................... ... ... .... ... ... ... .... ... ... ... .... ......................8-49

no vlan acceptframe ........................................................................................8-49

vlan ingressfilter .................... .... ... ... ... .... ... ... ... ... .... ...................................... .... ... ...8-49

no vlan ingressfilter .......................... ...................... ....................... ...................8-49

vlan makestatic ......................................... ... ... ... .... ...................................... .... ... ...8-50

vlan name ..................................... ... ... ....................................... ... .... ... ...................8-50

no vlan name ...................................................................................................8-50

vlan participation ................ ... .... ... ... ... .... ...................................... .... ... ... ... ... .... ......8-50

vlan participation all ................................ ...................................... .... ... ... ... ... .... ......8-51

vlan port acceptframe all ........................................................................................8-51

no vlan port acceptframe all ............................................................................8-52

vlan port ingressfilter all .........................................................................................8-52

no vlan port ingressfilter all ..............................................................................8-52

vlan port pvid all ........................ ... ... ... .... ... ... ... ....................................... ... ... ..........8-52

no vlan port pvid all ..........................................................................................8-52

vlan port tagging all ................................................................................................8-53

no vlan port tagging all ....................................................................................8-53

vlan protocol group ................................. ... .............................................................8-53

x Contents

202-10088-01, March 2005

vlan protocol group add protocol ..... ... ....................................................................8-53

no vlan protocol group add protocol ................................................................8-54

vlan protocol group remove ....................................................................................8-54

protocol group ....................... .... ... ... ... .... ... ... ... ... .... ...................................... .... ... ...8-54

no protocol group .............................................................................................8-54

protocol vlan group .................................................................................................8-55

no protocol vlan group .....................................................................................8-55

protocol vlan group all ........... .... ... ... ... ....................................................................8-55

no protocol vlan group all ................................................................................8-55

vlan pvid .......... ....................................... ... ....................................... ... ...................8-56

no vlan pvid .....................................................................................................8-56

vlan tagging ........ ... ... .... ... ....................................... ... ... ... .... ... ... .............................8-56

no vlan tagging ................................................................................................8-56

show vlan ...............................................................................................................8-56

show vlan brief .......................................................................................................8-58

show vlan port ........................................................................................................8-58

System Utility Commands ............................................................................................8-59

traceroute .................................. .............................................................................8-59

clear config .............................................................................................................8-60

clear counters .........................................................................................................8-60

clear igmpsnooping ................................................................................................8-60

clear pass ...............................................................................................................8-60

enable passwd .......................................................................................................8-60

clear port-channel ..................................................................................................8-61

clear traplog ...........................................................................................................8-61

clear vlan ................................................................................................................8-61

logout .....................................................................................................................8-61

ping ........................................................................................................................8-62

reload .....................................................................................................................8-62

copy .................................................................... .... ...................................... .... ...... 8-62

Pre-login Banner ....................... ... .... ... ... ... .... ...................................... .... ... ... ... ... .... ... ...8-63

copy .................................................................... .... ...................................... .... ...... 8-63

CLI Command Logging .................................................................................................8-64

logging cli-command ..............................................................................................8-64

no logging cli-command ...................................................................................8-64

Contents xi

202-10088-01, March 2005

Configuration Scripting ....... ... ... ... .... ... ... ... .... ... ... ... ... .... ...................................... .... ... ...8-64

configscript apply ............................... .... ... ... ... ... .... ... ... ....................................... ...8-65

configscript delete .............. ... .... ... ... ... .... ... ... ....................................... ... ... ... ..........8-65

configscript list .............................................................. ... .... ... ................................8-65

configscript show ............................. ....................................... ... ... .... ......................8-65

configscript validate ................................ ... ... ... ... .... ... ....................................... ... ...8-66

show running-config ...............................................................................................8-66

System Log (Syslog) ....................................................................................................8-66

logging buffered .....................................................................................................8-67

no logging buffered ..........................................................................................8-67

logging buffered wrap .............................................................................................8-67

no logging wrap ...............................................................................................8-67

logging console ......................................................................................................8-67

no logging console ...........................................................................................8-68

logging history ........................................................................................................8-68

no logging history ............................................................................................8-68

logging host ............................................................................................................8-68

logging host remove ...............................................................................................8-69

logging port ............................................................................................................8-69

no logging port .................................................................................................8-69

logging syslog ........................................................................................................8-69

no logging syslog .............................................................................................8-69

show logging ..........................................................................................................8-70

show logging history ...............................................................................................8-70

show logging buffered ............................................................................................8-71

show logging hosts .................................................................................................8-71

Simple Network Time Protocol (SNTP) ........................................................................8-72

sntp broadcast client poll-interval .................... .................................... ................... 8-72

no sntp broadcast client poll-interval ...............................................................8-72

sntp client mode .....................................................................................................8-72

sntp client mode ..............................................................................................8-73

sntp client port ........................................................................................................8-73

no sntp client port ..... ....................................... ... ... ... .......................................8-73

sntp unicast client poll-interval ...............................................................................8-73

no sntp unicast client poll-interval ....................................................................8-73

xii Contents

202-10088-01, March 2005

sntp unicast client poll-timeout ...............................................................................8-74

no sntp unicast client poll-timeout ............... .... ... ... ... .... ... ... ... .... ... ... ... ... .... ... ...8-74

sntp unicast client poll-retry .......................... ...... ....... ...... ....... ...... ....... ... ...... ....... ...8-74

no sntp unicast client poll-retry ..................................................................... ...8-74

sntp multicast client poll-interval ............................................................................8-74

no sntp multicast client poll-interval .................................................................8-75

sntp server .............................................................................................................8-75

no sntp server ..................................................................................................8-75

show sntp ...............................................................................................................8-75

show sntp client ......................................................................................................8-76

show sntp server ....................................................................................................8-76

User Account Commands ...................... ... .... ... ... ... ... ....................................... ... .... ... ...8-77

disconnect ................................. ................................................................ .............8-77

show loginsession ..................................................................................................8-77

show users .............................................................................................................8-78

users name ............................................................................................................8-79

no users name .................................................................................................8-79

users passwd .........................................................................................................8-79

no users passwd ..............................................................................................8-79

users snmpv3 accessmode ....................................................................................8-80

no users snmpv3 accessmode ........................................................................8-80

users snmpv3 authentication .................................................................................8-80

no users snmpv3 authentication ......................................................................8-80

users snmpv3 encryption .......................................................................................8-81

no users snmpv3 encryption ............................................................................8-81

DHCP Server Commands ............................................................................................8-81

client-identifier .............................. ................................................................ ..........8-82

no client-identifier ............................................................................................8-82

client-name ................................... ... ... .... ... ... ....................................... ... ... ... .... ... ...8-82

no client-name .................................................................................................8-82

default-router ...................................... .................................... ................................ 8-83

no default-router ..............................................................................................8-83

dns-server ..............................................................................................................8-83

no dns-server ...................................................................................................8-83

hardware-address .................................................................................................. 8-83

Contents xiii

202-10088-01, March 2005

no hardware-address .......................................................................................8-84

host ........................................................................................................................8-84

no host .............................................................................................................8-84

ip dhcp excluded-address ............................ ... ... .... .......................................... ......8-84

no ip dhcp excluded-address ...........................................................................8-85

ip dhcp ping packets ..............................................................................................8-85

no ip dhcp ping packets ...................................................................................8-85

ip dhcp pool ........... ... ....................................... ... .... ... ... ... .... ...................................8-85

no ip dhcp pool ................................................................................................8-86

lease ...................................... .... ... ....................................... ... ... ... ..........................8-86

no lease ...........................................................................................................8-86

network .................................. ....................................... ... .... ... ................................8-86

no network .......................................................................................................8-87

service dhcp ....... ... ....................................... ... ... .... ...................................... .... ... ...8-87

no service dhcp ...............................................................................................8-87

bootfile ............................................. .......... ......... .......... .......... .......... ......... ....... ......8-87

no bootfile ........................................................................................................8-87

domain-name ......................................................................................................... 8-88

no domain-name ..............................................................................................8-88

ip dhcp bootp automatic .........................................................................................8-88

no ip dhcp bootp automatic .............................................................................8-88

ip dhcp conflict logging ...........................................................................................8-88

no ip dhcp conflict logging ...............................................................................8-89

netbios-name-server ..............................................................................................8-89

no netbios-name-server ...................................................................................8-89

netbios-node-type ..................................................................................................8-89

no netbios-node-type .......................................................................................8-90

next-server ............................................................................................................. 8-90

no next-server ..................................................................................................8-90

option .....................................................................................................................8-90

no option ..........................................................................................................8-91

show ip dhcp binding ..............................................................................................8-91

show ip dhcp global configuration ..........................................................................8-91

show ip dhcp pool configuration .............................................................................8-92

show ip dhcp server statistics ................................................................................8-92

xiv Contents

202-10088-01, March 2005

show ip dhcp conflict ..............................................................................................8-93

clear ip dhcp binding ..............................................................................................8-94

clear ip dhcp server statistics .................................................................................8-94

clear ip dhcp conflict ...............................................................................................8-94

Provisioning (IEEE 802.1p) Commands .......................................................................8-94

classofservice dot1pmapping .................................................................................8-95

show classofservice dot1pmapping .......................................................................8-95

vlan port priority all .................................................................................................8-95

vlan priority ...... ....................................... ... ... ....................................... ... ... ... ..........8-95

GARP Commands ........................................................................................................8-96

set garp timer join ...................................................................................................8-96

no set garp timer join .......................................................................................8-96

set garp timer join all ..............................................................................................8-97

no set garp timer join all ..................................................................................8-97

set garp timer leave ................................................................................................8-97

no set garp timer leave ....................................................................................8-97

set garp timer leave all ...........................................................................................8-98

no set garp timer leave all ...............................................................................8-98

set garp timer leaveall ............................................................................................8-98

no set garp timer leaveall ................................................................................8-98

set garp timer leaveall all .......................................................................................8-99

no set garp timer leaveall all ............................................................................8-99

show garp ...............................................................................................................8-99

GARP VLAN Registration Protocol (GVRP) Commands .............................. ..............8-100

set gvrp adminmode .............................................................................................8-100

no set gvrp adminmode .................................................................................8-100

set gvrp interfacemode .........................................................................................8-100

no set gvrp interfacemode .............................................................................8-100

set gvrp interfacemode all ....................................................................................8-101

no set gvrp interfacemode all ........................................................................8-101

show gvrp configuration .......................................................................................8-101

GARP Multicast Registration Protocol (GMRP) Commands ......................................8-102

set gmrp adminmode ...........................................................................................8-102

no set gmrp adminmode ................................................................................8-102

set gmrp interfacemode .......................................................................................8-103

Contents xv

202-10088-01, March 2005

no set gmrp interfacemode ............................................................................8-103

set gmrp interfacemode all ...................................................................................8-103

no set gmrp interfacemode all .......................................................................8-103

show gmrp configuration ......................................................................................8-104

show mac-address-table gmrp .............................................................................8-104

Internet Group Management Protocol (IGMP) Commands ........................................8-105

set igmp ................................................................................................................8-105

no set igmp ....................................................................................................8-106

set igmp ................................................................................................................8-106

no set igmp ....................................................................................................8-106

set igmp groupmembership-interval ....................... ...................................... ........ 8-106

no set igmp groupmembership-interval .........................................................8-106

set igmp interfacemode all ...................................................................................8-107

no set igmp interfacemode all ................................ ....................... .................8-107

set igmp maxresponse .........................................................................................8-107

no set igmp maxresponse .............................................................................8-107

set igmp mcrtrexpiretime ......................................................................................8-108

no set igmp mcrtrexpiretime ..........................................................................8-108

show igmpsnooping .............................................................................................8-108

show mac-address-table igmpsnooping ...............................................................8-109

IGMP Snooping per VLAN ..........................................................................................8-109

set igmp ................................................................................................................8-109

no set igmp ....................................................................................................8-110

set igmp groupmembershipinterval .............................. ........................................ 8-110

no set igmp groupmembershipinterval ..........................................................8-110

set igmp maxresponse .........................................................................................8-110

no set igmp maxresponse ............................................................................. 8-111

set igmp mcrtexpiretime ....................................................................................... 8-111

no set igmp mcrtexpiretime ........................................................................... 8-111

set igmp fast-leave ............................................................................................... 8-111

no set igmp fast-leave ...................................................................................8-112

show igmpsnooping .............................................................................................8-112

Link Aggregation (LAG)/Port-Channel (802.3AD) Commands ...................................8-113

port-channel staticcapability .................................................................................8-113

no port-channel staticcapability .....................................................................8-114

xvi Contents

202-10088-01, March 2005

port lacpmode ......................................................................................................8-114

no port lacpmode ...........................................................................................8-114

port lacpmode all ..................................................................................................8-114

no port lacpmode all ......................................................................................8-114

port-channel ......................................................................................................... 8-115

no port-channel ..............................................................................................8-115

port-channel adminmode all .................................................................................8-115

no port-channel adminmode ..........................................................................8-115

port-channel linktrap .............................................................................................8-115

no port-channel linktrap .................................................................................8-116

port-channel name ...............................................................................................8-116

show port-channel brief ........................................................................................8-116

show port-channel ................................................................................................8-117

Spanning Tree (STP) Commands ...............................................................................8-118

spanning-tree max-hops ......................................................................................8-118

no spanning-tree max-hops ...........................................................................8-118

spanning-tree ....................................................................................................... 8-118

no spanning-tree ............................................................................................8-119

spanning-tree configuration name .......................................... ............. ............. ....8-119

no spanning-tree configuration name ............................................................8-119

spanning-tree configuration revision .................................................................... 8-119

no spanning-tree configuration revision .........................................................8-120

spanning-tree edgeport ........................................................................................8-120

no spanning-tree edgeport ............................................................................8-120

spanning-tree forceversion ...................................................................................8-120

no spanning-tree forceversion .......................................................................8-121

spanning-tree forward-time ..................................................................................8-121

no spanning-tree forward-time .......................................................................8-121

spanning-tree hello-time .......................................................................................8-121

no spanning-tree hello-time ...........................................................................8-121

spanning-tree max-age ........................................................................................8-122

no spanning-tree max-age .............................................................................8-122

spanning-tree mst ................................................................................................8-122

no spanning-tree mst .....................................................................................8-123

spanning-tree mst instance ..................................................................................8-124

Contents xvii

202-10088-01, March 2005

no spanning-tree mst instance .......................................................................8-124

spanning-tree mst priority .....................................................................................8-124

no spanning-tree mst priority .........................................................................8-124

spanning-tree mst vlan .........................................................................................8-125

no spanning-tree mst vlan .............................................................................8-125

spanning-tree port mode ......................................................................................8-125

no spanning-tree port mode ..........................................................................8-125

spanning-tree port mode all .................................................................................8-126

no spanning-tree port mode all ......................................................................8-126

spanning-tree .......................................................................................................8-126

spanning-tree bpdumigrationcheck ......................................................................8-126

no spanning-tree bpdumigrationcheck ...........................................................8-127

show spanning-tree ..............................................................................................8-127

show spanning-tree interface ............................................................................... 8-128

show spanning-tree mst detailed .........................................................................8-129

show spanning-tree mst port detailed ..................................................................8-129

show spanning-tree mst port summary ................................................................8-131

show spanning-tree mst summary ....................................................................... 8-131

show spanning-tree summary ..............................................................................8-132

show spanning-tree vlan ......................................................................................8-132

spanning-tree max-hops ......................................................................................8-133

no spanning-tree max-hops ...........................................................................8-133

spanning-tree mst ................................................................................................8-133

no spanning-tree mst .....................................................................................8-134

spanning-tree hello-time .......................................................................................8-134

no spanning-tree hello-time ...........................................................................8-135

show spanning-tree ..............................................................................................8-135

show spanning-tree interface ............................................................................... 8-136

show spanning-tree mst port detailed ..................................................................8-137

Chapter 9 Security Commands

Port Security .......................................... ....................................... ... ... .... ........................9-1

port-security .............................................................................................................9-1

no port-security ..................................................................................................9-1

port-security max-dynamic .......................................................................................9-2

xviii Contents

202-10088-01, March 2005

no port-security max-dynamic ...........................................................................9-2

port-security max-static ............................................................................................9-2

no port-security max-static .................................................................................9-2

port-security mac-address ......................... ...... ....... ...... ....... ...... ....... ... ...... ....... ...... ..9-3

no port-security mac-address ............................................................................9-3

port-security mac-address move ..............................................................................9-3

snmp-server enable traps violation ..........................................................................9-3

no snmp-server enable traps violation ...............................................................9-3

show port-security ....................................................................................................9-4

show port-security dynamic ......................................................................................9-4

show port-security static ...........................................................................................9-4

show port-security violation ......................................................................................9-5

Port Based Network Access Control (IEEE 802.1X) Commands ...................................9-5

authentication login ..................................................................................................9-5

no authentication login .......................................................................................9-6

clear dot1x statistics .................................................................................................9-6

clear radius statistics ................................................................................................9-6

dot1x defaultlogin .....................................................................................................9-6

dot1x initialize ..................................... .... ... ... ... ... .... ... ... ... ....................................... ..9-7

dot1x login ....... ....................................... ... ... ... ....................................... ... ... .... ........9-7

dot1x max-req ..........................................................................................................9-7

no dot1x max-req ...............................................................................................9-7

dot1x port-control ......................... ... ... .... ...................................... .... ... ... ... ... .... ... ... ..9-8

no dot1x port-control ..........................................................................................9-8

dot1x port-control All .......................... .... ... ... ............................................................9-8

no dot1x port-control All .....................................................................................9-9

dot1x re-authenticate ......................................... .... ... ... ... .... ... ... ... .... ... ... ... ... .... ... ... ..9-9

dot1x re-authentication .............................................................................................9-9

no dot1x re-authentication .................................................................................9-9

dot1x system-auth-control .. ... .... ... ... .......................................... ...............................9-9

no dot1x system-auth-control ..........................................................................9-10

dot1x timeout ................................... ... .... ... ... ... ....................................... ... ... .... ... ...9-10

no dot1x timeout ..............................................................................................9-11

dot1x user .............................................. ... ... ... ... ....................................... ... .... ... ...9-11

Contents xix

202-10088-01, March 2005

no dot1x user ...................................................................................................9-11

show radius accounting ..........................................................................................9-11

show authentication ...............................................................................................9-12

show authentication users ......................................................................................9-13

show dot1x .............................................................................................................9-13

show dot1x users ...................................................................................................9-16

show users authentication ......................................................................................9-16

users defaultlogin ...................................................................................................9-16

users login ..............................................................................................................9-16

Remote Authentication Dial In User Service (RADIUS) Commands ............................9-17

radius accounting mode ........ .... ... ... ....................................... ... ... .... ... ... ... ... .... ... ...9-17

no radius accounting mode .............................................................................9-17

radius server host ................................... ... ... ... ... .... ...................................... .... ... ...9-17

no radius server host .......................................................................................9-18

radius server key ...... ....................................... ... .... ... ... ... .... ...................................9-19

radius server msgauth ..................................... ... .... ... ... ... .... ... ... ... .... ... ... ... ... .... ... ...9-19

radius server primary .............................................................................................9-19

radius server retransmit .........................................................................................9-19

no radius server retransmit ..............................................................................9-20

radius server timeout .................................... ... ... .... ... ... ... .... ... ... ... .... ... ...................9-20

no radius server timeout ..................................................................................9-20

show radius ............................................................................................................9-20

show radius statistics .............................................................................................9-21

Secure Shell (SSH) Commands ...................................................................................9-22

ip ssh ........ ....................................... ....................................... ... .............................9-22

no ip ssh ..........................................................................................................9-23

ip ssh protocol ................. ... ... .... ... ....................................... ... ... ... .... ... ... ................9-23

show ip ssh ............................................................................................................9-23

Hypertext Transfer Protocol (HTTP) Commands .................................... ............ ..........9-23

ip http secure-port ........................... ... .... ................................................................9-24

no ip http secure-port .......................................................................................9-24

ip http secure-protocol ...................................................................... ... ... ... ... .... ... ...9-24

ip http secure-server ..............................................................................................9-24

no ip http secure-server ...................................................................................9-24

ip http server .......................................... ...................................... .... ... ... ................9-25

xx Contents

202-10088-01, March 2005

no ip http server ...............................................................................................9-25

show ip http ............................................................................................................9-25

Chapter 10 Routing Commands

Address Resolution Protocol (ARP) Commands ............................. ... .... ... ... ... ... .... ... ...10-1

arp ...................................... .............................................................. ......................10-1

no arp ..............................................................................................................10-1

ip proxy-arp ..................... ... ... .... ... ... ... .... ...................................... .... ... ... ................10-2

no ip proxy-arp .................................................................................................10-2

arp cachesize .........................................................................................................10-2

no arp cachesize .............................................................................................10-2

arp dynamicrenew ..................................................................................................10-3

no arp dynamicrenew ......................................................................................10-3

arp purge ................................................................................................................10-3

arp resptime ...........................................................................................................10-3

no arp resptime ................................................................................................10-3

arp retries ...............................................................................................................10-4

no arp retries ...................................................................................................10-4

arp timeout .............................................................................................................10-4

no arp timeout ..................................................................................................10-4

clear arp-cache ......................................................................................................10-4

show arp .................................................................................................................10-5

show arp brief .........................................................................................................10-6

IP Routing ................................. ... .... ... ... ... .... ...................................... .... ... ... ... ... .... ......10-6

routing ....................................................................................................................10-6

no routing .........................................................................................................10-7

ip routing ......................................... ... ....................................... ... .... ... ...................10-7

no ip routing .....................................................................................................10-7

ip address ..................................... ... ... ....................................... ... .... ... ...................10-7

no ip address ...................................................................................................10-8

ip route ..................... .... ... ... ... .... ...................................... .... ...................................10-8

no ip route ........................................................................................................10-8

ip route default ....................................... ... .............................................................10-8

no ip route default ............................................................................................10-9

ip route distance . ....................................................................................................10-9

Contents xxi

202-10088-01, March 2005

no ip route distance .........................................................................................10-9

ip forwarding ................................. ... ... .... ... ....................................... ... ... ... ... .... ... ...10-9

no ip forwarding .............................................................................................10-10

ip netdirbcast ... ... ... ....................................... ... ... ....................................... ... .... .... 1 0-10

no ip netdirbcast ............................................................................................10-10

ip mtu ........................................................................... ... .....................................1 0-10

no ip mtu ........................................................................................................10-10

show ip brief .........................................................................................................10-11

show ip interface ..................................................................................................10-11

show ip interface brief ..........................................................................................10-12

show ip route ........................................................................................................10-12

show ip route bestroutes ......................................................................................10-13

show ip route entry ...............................................................................................10-13

show ip route preferences ....................................................................................10-14

show ip stats ........................................................................................................10-14

encapsulation ......................................... .............................................................. 10-15

Bootp/DHCP Relay Commands .................................................................................10-15

bootpdhcprelay cidoptmode .................................................................................10-15

no bootpdhcprelay cidoptmode .....................................................................10-15

bootpdhcprelay enable .........................................................................................10-16

no bootpdhcprelay enable .............................................................................10-16

bootpdhcprelay maxhopcount ..............................................................................10-16

no bootpdhcprelay maxhopcount ..................................................................10-16

bootpdhcprelay minwaittime .................................................................................10-16

no bootpdhcprelay minwaittime .....................................................................10-17

bootpdhcprelay serverip .......................................................................................10-17

no bootpdhcprelay serverip ...........................................................................10-17

show bootpdhcprelay ...........................................................................................10-17

Router Discovery Protocol Commands ......................................................................10-18

ip irdp ........................................ ... ... ... ....................................... ...........................10-18

no ip irdp ........................................................................................................10-18

ip irdp address ................................. ... .... ... ... ....................................... ... ... ... ........10-18

no ip irdp address ..........................................................................................10-19

ip irdp holdtime ...... ... .... ... ... ... .... ... ... ... ....................................... ... .... ... ... ... ... ........10-19

no ip irdp holdtime .........................................................................................10-19

xxii Contents

202-10088-01, March 2005

ip irdp maxadvertinterval ........... ... ... ... ..................................................................10-19

no ip irdp maxadvertinterval ...........................................................................10-19

ip irdp minadvertinterval ..... ... .... ... ... ... .... ... ... ... ... ....................................... ... .... ... .10-20

no ip irdp minadvertinterval ............................................................................10-20

ip irdp preference ............................ ... .... ... ... ... ... .... ... ... ....................................... .10-20

no ip irdp preference ......................................................................................10-20

show ip irdp ..........................................................................................................10-20

Virtual LAN Routing Commands .................................................................................10-21

vlan routing ................................... ... ... ....................................... ... .... ... .................10-21

no vlan routing ...............................................................................................10-21

show ip vlan .........................................................................................................10-22

Routing Information Protocol (RIP) Commands .........................................................10-22

enable (RIP) .........................................................................................................10-22

no enable (RIP) .............................................................................................10-23

ip rip ............................................. ... ....................................... ... ... .... ....................10-23

no ip rip ..........................................................................................................10-23

auto-summary ...................................................................................................... 10-23

no auto-summary ...........................................................................................10-23

default-information originate (RIP) ......... ... ... ... ... .... ...................................... .... .... 1 0-23

no default-information originate (RIP) ............................................................10-24

default-metric (RIP) ..............................................................................................10-24

no default-metric (RIP) ..................................................................................10-24

distance rip ...........................................................................................................10-24

no distance rip ...............................................................................................10-24

distribute-list out ...................................................................................................10-25

no distribute-list out .......................................................................................10-25

no default-information originate .....................................................................10-25

ip rip authentication ............ ... .... ... ... ... .... ... ... ... ... ....................................... ... .... ... .1 0-25

no ip rip authentication ..................................................................................10-26

ip rip receive version ............................................................................................10-26

no ip rip receive version .................................................................................10-26

ip rip send version .............. ... .... ... ... ... .... ...................................... .... ... ... ... ... .... ... .1 0-26

no ip rip send version ....................................................................................10-27

hostroutesaccept .......................... ................................... .................................... . 10-27

no hostroutesaccept ......................................................................................10-27

Contents xxiii

202-10088-01, March 2005

split-horizon ..................................... .................................... ................................ . 10-27

no split-horizon ..............................................................................................10-27

redistribute ...........................................................................................................10-28

no redistribute ................................................................................................10-28

show ip rip ............................................................................................................10-28

show ip rip interface brief .....................................................................................10-29

show ip rip interface .............................................................................................10-30

Chapter 11 Quality of Service (QoS) Commands

Access Control List (ACL) Commands .........................................................................11-1

mac access-list extended <name> .................................. .... ... ... ... .... ... ... ... .............11-1

no mac access-list extended <name> .............................................................11-2

mac access-list extended rename <name> <newname> .......................................11-2

{deny|permit} <srcmac> <srcmacmask> <dstmac> <dstmacmask> ......................11-2

mac access-group <name> {in|out} [sequence <1-4294967295>] ........................11-3

no mac access-group <name> {in|out} ............................................................11-4

show mac access-list <name> ...............................................................................11-4

show mac access-lists ...........................................................................................11-4

access-list .............................................................................................................. 11-5

no access-list ...................................................................................................11-6

ip access-group ......................................... ... ... ... .... ... ... ....................................... ...11-6

ip access-group all ....................... ... ... .... ... ... ... ... .... ... ... ....................................... ...11-6

show ip access-lists ...............................................................................................11-6

Differentiated Services (DiffServ) Commands .............. ... .............................................11-7

diffserv .......................................... .......... ............ ............. ............. ............. .............11-8

no diffserv ........................................................................................................11-9

Class Commands ..... ....................................... ... .... ... ... ... .... ...................................11-9

class-map ........................................................................................................ 11-9

class-map rename ......................................................................................... 11-11

match ethertype .............. .... ... ....................................... ... ... ... ........................ 11-11

match secondary-cos .................................................................................... 11-11

match secondary-vlan ................................................................................... 11-11

match any ................................. ... .... ... ... ... ... ....................................... ... .... ... .11-12

match class-map ...................... ... .... ... ....................................... ... ... ... ... .... ... .11-12

match cos .... ... ... .... ... ... ... ....................................... ... .... ... ..............................11-13

xxiv Contents

202-10088-01, March 2005

match destination-address mac .......... ... ........................................................11-13

match dstip .. ... ... .... ... ....................................... ... ... ....................................... .11-14

match dstl4port ............................ .... ... ... ... ... ....................................... ... .... ... .11-14

match ip dscp .............. ... .... ... ... ... ....................................... ...........................11-15

match ip precedence ................................................ .... ... ... ...........................11-15

match ip tos .... ... .... ... ... ... .... ...................................... .... ... ... ...........................11-16

match protocol .......................... ... .... ... ... ....................................... .................11-16

match source-address mac ...........................................................................11-17

match srcip ............................................ ... ... .... ... ....................................... ... .11-17

match srcl4port ............................ .... ... ... ... ....................................... ... ... .... ....11-17

match vlan ... ... ... .... ... ... ... ....................................... ... .... ... ..............................11-18

Policy Commands ................................................................................................11-18

assign-queue ................................................................................................. 11-19

drop ............................................................................................................... 11-19

mark secondary-cos ......................................................................................11-19

redirect ...................................... ....................... ...................... ....................... .11-20

conform-color ................................... ...................... ....................... .................11-20

bandwidth kbps ..............................................................................................11-20

bandwidth percent .........................................................................................11-21

class .............................................................................................................. 11-21

expedite kbps ................................................................................................11-22

expedite percent ............................................................................................11-22

mark cos ........................................................................................................11-23

mark ip-dscp ..................................................................................................11-23

mark ip-precedence .......................................................................................11-24

police-simple .................................... ...................... ....................... .................11-24

police-single-rate ...........................................................................................11-25

police-two-rate ............................................................................................... 11-26

policy-map ..................................................................................................... 11-27

policy-map rename ........................................................................................11-27

randomdrop ................................................................................................... 11-27

shape average ...............................................................................................11-28

shape peak ....................................................................................................11-28

Service Commands .. ....................................... ... .... ... ... ... .... ... ... ... .... ... ... ... ... ........11-29

service-policy ............................... .................................................... .............. 11-29

Contents xxv

202-10088-01, March 2005

Show Commands ..... .... ...................................... .... ... ... ... .... ... ... ... .... ... ... ..............11-30

show class-map .............................................................................................11-31

show diffserv ..................................................................................................11-32

show policy-map ............................................................................................11-33

show diffserv service .....................................................................................11-36

show diffserv service brief .............................................................................11-37

show policy-map interface .............................................................................11-37

show service-policy .......................................................................................11-39

Class of Service (CoS) Commands ............................................................................11-40

classofservice dot1p-mapping ............................ ....... ...... ....... ...... ....... ... ...... ....... .11-40

classofservice ip-dscp-mapping ................................ ........................................... 11-40

classofservice ip-precedence-mapping ............................... .................................11-41

classofservice trust ...............................................................................................11-41

no classofservice trust ...................................................................................11-41

cos-queue max-bandwidth ...................................................................................11-41

no cos-queue max-bandwidth ..............................................................................11-42

cos-queue min-bandwidth ....................................................................................11-42

no cos-queue min-bandwidth ........................................................................11-42

cos-queue random-detect ....................................................................................11-42

no cos-queue random-detect .........................................................................11-42

cos-queue strict ....................................................................................................11-43

no cos-queue strict ........................................................................................11-43

random-detect .............................. ................................................................ ........ 11-43

no random-detect ..........................................................................................11-43

random-detect exponential-weighting-constant ...................................................11-44

no random-detect exponential-weighting-constant ................................ ........ 11-44

random-detect queue-parms ................................................................................11-44

no random-detect queue-parms ....................................................................11-44

tail-drop queue-parms ..........................................................................................11-44

traffic-shape .........................................................................................................11-45

show classofservice dot1p-mapping .................................................................... 11-45

show classofservice ip-precedence-mapping ......................................................11-46

show classofservice trust .....................................................................................11-46

show interfaces cos-queue ..................................................................................11-46

show interfaces random-detect ............................................................................11-47

xxvi Contents

202-10088-01, March 2005

show interfaces tail-drop-threshold ......................................................................11-48

Chapter 12 Managing Switch Stacks

Understanding Switch Stacks .......................................................................................12-1

Switch Stack Membership .. ... .... ... ... ... .... ................................................................12-2

Switch Stack Cabling ........................................................... ... ... ... .... ... ...................12-4

Stack Master Election and Re-Election ..................................................................12-5

Stack Member Numbers .........................................................................................12-5

Stack Member Priority Values ................................................................................12-6

Switch Stack Offline Configuration .........................................................................12-6

Effects of Adding a Preconfigured Switch to a Switched Stack .......................12-6

Effects of Replacing a Preconfigured Switch in a Switch Stack .............................12-7

Effects of Removing a Preconfigured Switch from a Switch Stack ........................12-7

Switch Stack Software Compatibility Recommendations ................................. ....... ......12-8

Incompatible Software and Stack Member Image Upgrades ........ ... ... .... ... ... ... ... .... ... ...12-8

Switch Stack Configuration Files ..................................................................................12-8

Switch Stack Management Connectivity .......................................................................12-9

Connectivity to the Switch Stack Through Console Ports ......................................12-9

Connectivity to the Switch Stack Through Telnet ...................................................12-9

Switch Stack Configuration Scenarios ..........................................................................12-9

Stacking Recommendations .......................................................................................12-10

General Practices ............................... .... ... ... ... ... .... ... ... ... .....................................12-11

Initial installation and Power-up of a Stack .......................... ................ ................ .12-11

Removing a Unit from the Stack ...........................................................................12-12

Adding a Unit to an Operating Stack ....................................................................12-12

Replacing a Stack Member with a New Unit ........................................................12-12

Renumbering Stack Members ..............................................................................12-13

Moving a Master to a Different Unit in the Stack ..................................................12-14

Removing a Master Unit from an Operating Stack .................... ... .... ... ... ... ... .... ... .12-14

Merging Two Operational Stacks .........................................................................12-14

Preconfiguration ..................................... .............................................................. 12-15

Upgrading Firmware .............................................................................................12-15

Migration of Configuration With a Firmware Upgrade ..........................................12-16

Code Mismatch ....................................................................................................12-16

Contents xxvii

202-10088-01, March 2005

Appendix A IS CLI Mapping

Appendix B Cabling Guidelines

Fast Ethernet Cable Guidelines .................... ................... ................... .................... ....... B-1

Category 5 Cable ........................................................................................................... B-2

Category 5 Cable Specifications ............................................................................. B-2

Twisted Pair Cables ................................................................................................ B-3

Patch Panels and Cables .......... ... ... ... .... ... .............................................................. B-4

Using 1000BASE-T Gigabit Ethernet over Category 5 Cable ....................................... B-5

Cabling ...................................... ................................................................ .............. B-5

Near End Cross Talk (NEXT) .................................................................................. B-6

Patch Cables ........................................................................................................... B-6

RJ-45 Plug and RJ-45 Connectors ......................................................................... B-6

Conclusion .............................................................................................................. B-8

Appendix C Glossary

Numeric .........................................................................................................................C-1

A ....................................................................................................................................C-2

B ....................................................................................................................................C-3

C ..................................... ........................................................................... ....................C-4

D ..................................... ........................................................................... ....................C-5

E ....................................................................................................................................C-6

F ....................................................................................................................................C-7

G ..................................... .............................................. ................................................. C-8

H ..................................... ........................................................................... ....................C-9

I .................................... ............. .......... ............. ............. ............. ............. ............ ........... C-9

L ...................................... ................. ............. ................ ................ ................ ............... C-11

M ..................................... ............. ............. ............. ............. ............. ............. ............... C-12

N ..................................... ........................................................................... ..................C-14

O ..................................... .............................................. ............................................... C-14

P ..................................................................................................................................C-15

Q ..................................... .............................................. ............................................... C-16

R ..................................... ........................................................................... ..................C-17

S ..................................................................................................................................C-18

xxviii Contents

202-10088-01, March 2005

T ..................................................................................................................................C-19

U ..................................... ........................................................................... ..................C-20

V ..................................................................................................................................C-20

W .................................................................................................................................C-21

X ..................................................................................................................................C-22

Contents xxix

202-10088-01, March 2005

xxx Contents

202-10088-01, March 2005

+ 370 hidden pages