How it Works
Yamaha
Loading...
L2
Command Reference Manual
266 pgs1.09 Mb0
Table of contents
Loading...

Yamaha L2 Command Reference Manual

Download
Yamaha L2 Switch
Intelligent L2 PoE SWR2311P-10G
Command Reference
Rev.2.02.09
2 | Command Reference | TOC

Contents

Preface:
Introduction ............................................................................................12
Chapter 1: How to read the command reference ...............................................13
1.2 How to read the command reference ..........................................................................................................13
1.3 Interface names ...........................................................................................................................................13
1.4 Input syntax for commands starting with the word "no" ............................................................................14
Chapter 2: How to use the commands .................................................................15
2.1 Operation via console .................................................................................................................................15
2.1.1 Access from a console terminal ...................................................................................................15
2.1.2 Access from a TELNET client ....................................................................................................15
2.1.3 Access from an SSH client ..........................................................................................................16
2.1.4 Console terminal/VTY settings ...................................................................................................16
2.2 Operation via configuration (config) files ..................................................................................................17
2.2.1 Access from a TFTP client ..........................................................................................................17
2.2.2 Reading/writing a configuration file ...........................................................................................17
2.3 Login ...........................................................................................................................................................18
2.4 Command input mode ................................................................................................................................18
2.4.1 Command input mode basics .......................................................................................................18
2.4.2 individual configuration mode ....................................................................................................19
2.4.3 Command prompt prefix .............................................................................................................19
2.4.4 Executing commands of a different input mode ..........................................................................19
2.5 Keyboard operations when using the console ............................................................................................20
2.5.1 Basic operations for console input ..............................................................................................20
2.5.2 Command help .............................................................................................................................20
2.5.3 Input command completion and keyword candidate list display ................................................21
2.5.4 Entering command abbreviations ................................................................................................21
2.5.5 Command history ........................................................................................................................21
2.6 Commands that start with the word "show" ...............................................................................................21
2.6.1 Modifiers .....................................................................................................................................21
Chapter 3: Configuration .....................................................................................23
3.1 Manage setting values ................................................................................................................................23
Chapter 4: Maintenance and operation functions .............................................26
4.1 Passwords ...................................................................................................................................................26
4.1.1 Set password for unnamed user ...................................................................................................26
4.1.2 Set administrator password ..........................................................................................................26
4.1.3 Encrypt password ........................................................................................................................27
4.1.4 Allow login with special password ..............................................................................................27
4.2 User account maintenance ..........................................................................................................................28
4.2.1 Set user password ........................................................................................................................28
4.2.2 Show login user information .......................................................................................................29
4.2.3 Set banner ....................................................................................................................................30
4.3 Configuration management ........................................................................................................................31
4.3.1 Save running configuration .........................................................................................................31
4.3.2 Save running configuration .........................................................................................................31
4.3.3 Show the running configuration ..................................................................................................32
4.3.4 Show startup configuration ..........................................................................................................32
Command Reference | TOC | 3
4.3.5 Erase startup configuration ..........................................................................................................33
4.3.6 Copy startup configuration ..........................................................................................................34
4.3.7 Set description for startup config ................................................................................................34
4.3.8 Select startup config ....................................................................................................................35
4.4 Manage boot information ...........................................................................................................................35
4.4.1 Show boot information ................................................................................................................35
4.4.2 Clear boot information ................................................................................................................36
4.4.3 Set SD card boot ..........................................................................................................................36
4.4.4 Show the SD card boot setting information ................................................................................36
4.5 Show unit information ................................................................................................................................37
4.5.1 Show inventory information ........................................................................................................37
4.5.2 Show operating information ........................................................................................................37
4.5.3 Show currently-executing processes ...........................................................................................38
4.5.4 Show technical support information ............................................................................................38
4.5.5 Save technical support information .............................................................................................39
4.6 Time management ......................................................................................................................................40
4.6.1 Set clock manually ......................................................................................................................40
4.6.2 Set time zone ...............................................................................................................................40
4.6.3 Show current time
4.6.4 Set NTP server .............................................................................................................................41
4.6.5 Synchronize time from NTP server (one-shot update) ................................................................42
4.6.6 Synchronize time from NTP server (update interval) .................................................................42
4.6.7 Show NTP server time synchronization settings .........................................................................42
4.7 Terminal settings ........................................................................................................................................43
4.7.1 Move to line mode (console terminal) .........................................................................................43
4.7.2 Set VTY port and move to line mode (VTY port) ......................................................................43
4.7.3 Set terminal login timeout ...........................................................................................................44
4.7.4 Change the number of lines displayed per page for the terminal in use ......................................44
4.7.5 Set the number of lines displayed per page on the terminal ........................................................45
4.8 Management ...............................................................................................................................................45
4.8.1 Set management VLAN ..............................................................................................................45
4.9 SYSLOG .....................................................................................................................................................46
4.9.1 Set log notification destination (SYSLOG server) ......................................................................46
4.9.2 Set log output level (debug) ........................................................................................................46
4.9.3 Set log output level (informational) ............................................................................................47
4.9.4 Set log output level (error) ..........................................................................................................47
4.9.5 Set log console output .................................................................................................................47
4.9.6 Set log output in event units ........................................................................................................48
4.9.7 Back up log ..................................................................................................................................48
4.9.8 Set log backup to SD card ...........................................................................................................49
4.9.9 Clear log ......................................................................................................................................49
4.9.10 Show log ....................................................................................................................................49
4.10 SNMP .......................................................................................................................................................50
4.10.1 Set host that receives SNMP notifications ................................................................................50
4.10.2 Set notification type to transmit ................................................................................................51
4.10.3 Set system contact .....................................................................................................................52
4.10.4 Set system location ....................................................................................................................52
4.10.5 Set SNMP community ...............................................................................................................53
4.10.6 Set SNMP view .........................................................................................................................53
4.10.7 Set SNMP group ........................................................................................................................54
4.10.8 Set SNMP user ..........................................................................................................................55
4.10.9 Show SNMP community information .......................................................................................56
........................................................................................................................41
4 | Command Reference | TOC
4.11 RMON ......................................................................................................................................................57
4.12 Telnet server .............................................................................................................................................65
4.13 Telnet client ..............................................................................................................................................68
4.14 TFTP server ..............................................................................................................................................68
4.15 HTTP server .............................................................................................................................................70
4.16 HTTP Proxy ..............................................................................................................................................74
4.17 SSH server ................................................................................................................................................75
4.18 SSH client .................................................................................................................................................80
4.10.10 Show SNMP view settings ......................................................................................................56
4.10.11 Show SNMP group settings
4.10.12 Show SNMP user settings .......................................................................................................57
4.11.1 Set RMON function ...................................................................................................................57
4.11.2 Set RMON Ethernet statistical information group ....................................................................58
4.11.3 Set RMON history group ...........................................................................................................59
4.11.4 Set RMON event group .............................................................................................................60
4.11.5 Set RMON alarm group .............................................................................................................60
4.11.6 Show RMON function status .....................................................................................................62
4.11.7 Show RMON Ethernet statistical information group status ......................................................63
4.11.8 Show RMON history group status ............................................................................................64
4.11.9 Show RMON event group status ...............................................................................................64
4.11.10 Show RMON alarm group status ............................................................................................64
4.11.11 Clear counters of the RMON Ethernet statistical information group ......................................65
4.12.1 Start Telnet server and change listening port number ...............................................................65
4.12.2 Show Telnet server settings .......................................................................................................66
4.12.3 Set host that can access the Telnet server ..................................................................................66
4.12.4 Restrict access to the TELNET server according to the IP address of the client ......................67
4.13.1 Start Telnet client ......................................................................................................................68
4.13.2 Enable Telnet client ...................................................................................................................68
4.14.1 Start TFTP server and change listening port number ................................................................69
4.14.2 Show TFTP server settings ........................................................................................................69
4.14.3 Set hosts that can access the TFTP server .................................................................................69
4.15.1 Start HTTP server and change listening port number ...............................................................70
4.15.2 Start secure HTTP server and change listening port number ....................................................70
4.15.3 Show HTTP server settings .......................................................................................................71
4.15.4 Set hosts that can access the HTTP server ................................................................................71
4.15.5 Restrict access to the HTTP server according to the IP address of the client ...........................72
4.15.6 Web GUI display language .......................................................................................................73
4.15.7 Set log-in timeout time for HTTP server ...................................................................................73
4.16.1 Enable HTTP Proxy function ....................................................................................................74
4.16.2 Set HTTP Proxy function timeout .............................................................................................74
4.16.3 Show HTTP Proxy function settings .........................................................................................74
4.17.1 Start SSH server and change listening port number ..................................................................75
4.17.2 Show SSH server settings ..........................................................................................................75
4.17.3 Set host that can access the SSH server .....................................................................................76
4.17.4 Set client that can access the SSH server ..................................................................................76
4.17.5 Generate SSH server host key ...................................................................................................77
4.17.6 Clear SSH server host key .........................................................................................................78
4.17.7 Show SSH server public key .....................................................................................................78
4.17.8 Set SSH client alive checking ....................................................................................................79
4.18.1 Start SSH client .........................................................................................................................80
4.18.2 Enable SSH client ......................................................................................................................80
4.18.3 Clear SSH host information .......................................................................................................81
.....................................................................................................57
Command Reference | TOC | 5
4.19 LLDP ........................................................................................................................................................81
4.19.1 Enable LLDP function ...............................................................................................................81
4.19.2 Set system description ...............................................................................................................82
4.19.3 Set system name ........................................................................................................................82
4.19.4 Create LLDP agent ....................................................................................................................83
4.19.5 Set automatic setting function by LLDP ...................................................................................83
4.19.6 Set LLDP transmission/reception mode ....................................................................................84
4.19.7 Set type of management address ...............................................................................................84
4.19.8 Set basic management TLVs .....................................................................................................85
4.19.9 Set IEEE-802.1 TLV .................................................................................................................85
4.19.10 Set IEEE-802.3 TLV ...............................................................................................................86
4.19.11 Set LLDP-MED TLV ..............................................................................................................86
4.19.12 Set LLDP frame transmission interval ....................................................................................86
4.19.13 Set LLDP frame transmission interval for high speed transmission period ............................87
4.19.14 Set time from LLDP frame transmission stop until re-initialization .......................................87
4.19.15 Set multiplier for calculating time to live (TTL) of device information .................................88
4.19.16 Set number of LLDP frames transmitted during the high speed transmission period
4.19.17 Set maximum number of connected devices manageable by a port ........................................89
4.19.18 Show interface status ...............................................................................................................89
4.19.19 Show information for connected devices of all interfaces ......................................................92
4.19.20 Clear LLDP frame counters .....................................................................................................93
4.20 L2MS (Layer 2 management service) settings .........................................................................................93
4.20.1 Move to L2MS mode .................................................................................................................93
4.20.2 Set L2MS function ....................................................................................................................94
4.20.3 Set role of L2MS function .........................................................................................................94
4.20.4 Set L2MS slave watch interval ..................................................................................................95
4.20.5 Set number of times that is interpreted as L2MS slave down ...................................................95
4.20.6 Set terminal management function ............................................................................................96
4.20.7 Set the device information acquisition time interval .................................................................96
4.20.8 Set L2MS control frame transmit/receive .................................................................................97
4.20.9 Reset slave management ............................................................................................................98
4.20.10 Show L2MS information .........................................................................................................98
4.20.11 Set the device information acquisition time interval for downstream of a wireless AP .........99
4.20.12 Set event monitoring function ...............................................................................................100
4.20.13 Set event information acquisition time interval .....................................................................100
4.20.14 Set whether to use the L2MS slave's zero config function ....................................................101
4.21 Snapshot .................................................................................................................................................101
4.21.1 Set snapshot function ...............................................................................................................101
4.21.2 Set whether to include terminals in the snapshot comparison .................................................102
4.21.3 Create snapshot ........................................................................................................................102
4.21.4 Delete snapshot ........................................................................................................................103
4.22 Firmware update .....................................................................................................................................103
4.22.1 Set firmware update site ..........................................................................................................103
4.22.2 Execute firmware update .........................................................................................................103
4.22.3 Set firmware download timeout duration ................................................................................104
4.22.4 Allow revision-down ...............................................................................................................104
4.22.5 Show firmware update function settings .................................................................................105
4.22.6 Update firmware from SD card ...............................................................................................105
4.22.7 Set firmware update reload time ..............................................................................................106
4.23.1 Set host name ...........................................................................................................................106
4.23.2 Reload system ..........................................................................................................................107
.............88
6 | Command Reference | TOC
Chapter 5: Interface control ..............................................................................111
5.1 Interface basic settings .............................................................................................................................111
5.2 Link aggregation .......................................................................................................................................123
5.3 Port authentication ....................................................................................................................................133
4.23.3 Initialize settings ......................................................................................................................107
4.23.4 Mount SD card ........................................................................................................................107
4.23.5 Unmount SD card ....................................................................................................................107
4.23.6 Set default LED mode .............................................................................................................108
4.23.7 Show LED mode .....................................................................................................................108
4.23.8 Show port error LED status .....................................................................................................109
4.23.9 Backup system information .....................................................................................................109
4.23.10 Restore system information ...................................................................................................110
5.1.1 Set description ...........................................................................................................................111
5.1.2 Shutdown ...................................................................................................................................111
5.1.3 Set speed and duplex mode .......................................................................................................111
5.1.4 Set MRU ....................................................................................................................................112
5.1.5 Set cross/straight automatic detection .......................................................................................113
5.1.6 Set EEE ......................................................................................................................................113
5.1.7 Show EEE capabilities ..............................................................................................................114
5.1.8 Show EEE status
5.1.9 Set port mirroring ......................................................................................................................115
5.1.10 Show port mirroring status ......................................................................................................116
5.1.11 Show interface status ...............................................................................................................116
5.1.12 Show brief interface status ......................................................................................................119
5.1.13 Show frame counter .................................................................................................................120
5.1.14 Clear frame counters ................................................................................................................122
5.1.15 Show SFP module status .........................................................................................................122
5.1.16 Set SFP module optical reception level monitoring ................................................................123
5.2.1 Set static logical interface ..........................................................................................................123
5.2.2 Show static logical interface status ............................................................................................124
5.2.3 Set LACP logical interface ........................................................................................................125
5.2.4 Show LACP logical interface status ..........................................................................................126
5.2.5 Set LACP system priority order ................................................................................................127
5.2.6 Show LACP system priority ......................................................................................................128
5.2.7 Set LACP timeout ......................................................................................................................128
5.2.8 Clear LACP frame counters ......................................................................................................129
5.2.9 Show LACP frame counter .......................................................................................................129
5.2.10 Set load balance function rules ................................................................................................130
5.2.11 Show protocol status of LACP logical interface .....................................................................130
5.2.12 Set LACP port priority order ...................................................................................................132
5.3.1 Configuring the IEEE 802.1X authentication function for the entire system ...........................133
5.3.2 Configuring the MAC authentication function for the entire system ........................................133
5.3.3 Configuring the Web authentication function for the entire system .........................................134
5.3.4 Set operation mode for the IEEE 802.1X authentication function ............................................134
5.3.5 Set for forwarding control on an unauthenticated port for IEEE 802.1X authentication ..........135
5.3.6 Set the EAPOL packet transmission count ................................................................................135
5.3.7 Set the MAC authentication function ........................................................................................136
5.3.8 Set MAC address format during MAC authentication ..............................................................136
5.3.9 Set the Web authentication function ..........................................................................................137
5.3.10 Set host mode ..........................................................................................................................137
5.3.11 Set re-authentication ................................................................................................................138
5.3.12 Set dynamic VLAN .................................................................................................................139
........................................................................................................................114
Command Reference | TOC | 7
5.3.13 Set the guest VLAN .................................................................................................................139
5.3.14 Suppression period settings following failed authentication ...................................................140
5.3.15 Set reauthentication interval ....................................................................................................140
5.3.16 Set the reply wait time for the RADIUS server overall
5.3.17 Set supplicant reply wait time .................................................................................................141
5.3.18 Set RADIUS server host ..........................................................................................................142
5.3.19 Set the reply wait time for each RADIUS server ....................................................................142
5.3.20 Set number of times to resend requests to RADIUS server ....................................................143
5.3.21 Set RADIUS server shared password ......................................................................................143
5.3.22 Set time of RADIUS server usage prevention .........................................................................144
5.3.23 Show port authentication information .....................................................................................144
5.3.24 Show supplicant information ...................................................................................................145
5.3.25 Show statistical information ....................................................................................................146
5.3.26 Clear statistical information ....................................................................................................146
5.3.27 Show RADIUS server setting information ..............................................................................147
5.3.28 Settings for redirect destination URL following successful Web authentication ....................147
5.3.29 Clear the authentication state ...................................................................................................148
5.3.30 Setting the time for clearing the authentication state (system) ................................................148
5.3.31 Setting the time for clearing the authentication state (interface) .............................................148
5.3.32 Locate the file for customizing the Web authentication screen ...............................................149
5.3.33 Delete the file for customizing the Web authentication screen ...............................................150
5.4 Port security ..............................................................................................................................................150
5.4.1 Set port security function ...........................................................................................................150
5.4.2 Register permitted MAC addresses ...........................................................................................151
5.4.3 Set operations used for security violations ................................................................................151
5.4.4 Show port security information .................................................................................................151
5.5 Error detection function ............................................................................................................................152
5.5.1 Set automatic recovery from errdisable state ............................................................................152
5.5.2 Show error detection function information ...............................................................................153
5.6 PoE ...........................................................................................................................................................153
5.6.1 Set PoE power supply function (system) ...................................................................................153
5.6.2 Set PoE power supply function (interface) ................................................................................154
5.6.3 Set description of PoE port ........................................................................................................154
5.6.4 Set PoE port power supply priority ...........................................................................................155
5.6.5 Show PoE power supply information ........................................................................................155
...........................................................141
Chapter 6: Layer 2 functions .............................................................................157
6.1 FDB (Forwarding Data Base) ...................................................................................................................157
6.1.1 Set MAC address acquisition function ......................................................................................157
6.1.2 Set dynamic entry ageing time ..................................................................................................157
6.1.3 Clear dynamic entry ..................................................................................................................158
6.1.4 Set static entry ...........................................................................................................................158
6.1.5 Show MAC address table ..........................................................................................................159
6.2 VLAN .......................................................................................................................................................160
6.2.1 Move to VLAN mode ................................................................................................................160
6.2.2 Set VLAN interface ...................................................................................................................160
6.2.3 Set private VLAN ......................................................................................................................161
6.2.4 Set secondary VLAN for primary VLAN .................................................................................161
6.2.5 Set access port (untagged port) ..................................................................................................162
6.2.6 Set associated VLAN of an access port (untagged port) ...........................................................163
6.2.7 Set trunk port (tagged port) .......................................................................................................163
6.2.8 Set associated VLAN for trunk port (tagged port) ....................................................................164
6.2.9 Set native VLAN for trunk port (tagged port) ...........................................................................165
8 | Command Reference | TOC
6.3 STP (Spanning Tree Protocol)
6.4 Loop detection ..........................................................................................................................................187
6.2.10 Set private VLAN port type ....................................................................................................166
6.2.11 Set private VLAN host port .....................................................................................................166
6.2.12 Set promiscuous port for private VLAN .................................................................................167
6.2.13 Set voice VLAN ......................................................................................................................168
6.2.14 Set CoS value for voice VLAN ...............................................................................................169
6.2.15 Set DSCP value for voice VLAN ............................................................................................169
6.2.16 Show VLAN information ........................................................................................................170
6.2.17 Show private VLAN information ............................................................................................170
..................................................................................................................171
6.3.1 Set spanning tree for the system ................................................................................................171
6.3.2 Set forward delay time ...............................................................................................................171
6.3.3 Set maximum aging time ...........................................................................................................172
6.3.4 Set bridge priority ......................................................................................................................172
6.3.5 Set spanning tree for an interface ..............................................................................................173
6.3.6 Set spanning tree link type ........................................................................................................173
6.3.7 Set interface BPDU filtering .....................................................................................................174
6.3.8 Set interface BPDU guard .........................................................................................................174
6.3.9 Set interface path cost ................................................................................................................175
6.3.10 Set interface priority ................................................................................................................175
6.3.11 Set edge port for interface .......................................................................................................176
6.3.12 Show spanning tree status .......................................................................................................176
6.3.13 Show spanning tree BPDU statistics .......................................................................................179
6.3.14 Clear protocol compatibility mode ..........................................................................................180
6.3.15 Move to MST mode .................................................................................................................180
6.3.16 Generate MST instance ...........................................................................................................181
6.3.17 Set VLAN for MST instance ...................................................................................................181
6.3.18 Set priority of MST instance ...................................................................................................182
6.3.19 Set MST region name ..............................................................................................................182
6.3.20 Set revision number of MST region ........................................................................................182
6.3.21 Set MST instance for interface ................................................................................................183
6.3.22 Set interface priority for MST instance ...................................................................................183
6.3.23 Set interface path cost for MST instance .................................................................................184
6.3.24 Show MST region information ................................................................................................185
6.3.25 Show MSTP information .........................................................................................................185
6.3.26 Show MST instance information .............................................................................................186
6.4.1 Set loop detection function (system) .........................................................................................187
6.4.2 Set loop detection function (interface) ......................................................................................188
6.4.3 Set port blocking for loop detection ..........................................................................................188
6.4.4 Reset loop detection status ........................................................................................................189
6.4.5 Show loop detection function status ..........................................................................................189
Chapter 7: Layer 3 functions .............................................................................191
7.1 IPv4 address management ........................................................................................................................191
7.1.1 Set IPv4 address ........................................................................................................................191
7.1.2 Show IPv4 address ....................................................................................................................191
7.1.3 Automatically set IPv4 address by DHCP client .......................................................................192
7.1.4 Show DHCP client status ..........................................................................................................193
7.1.5 Set auto IP function ...................................................................................................................193
7.2 IPv4 route control .....................................................................................................................................194
7.2.1 Set static IPv4 route ...................................................................................................................194
7.2.2 Show IPv4 Forwarding Information Base .................................................................................195
7.2.3 Show IPv4 Routing Information Base .......................................................................................195
Command Reference | TOC | 9
7.2.4 Show summary of the route entries registered in the IPv4 Routing Information Base .............196
7.3 ARP ..........................................................................................................................................................196
7.3.1 Show ARP table ........................................................................................................................196
7.3.2 Clear ARP table .........................................................................................................................196
7.3.3 Set static ARP entry
7.3.4 Set ARP timeout ........................................................................................................................197
7.4 IPv4 ping ..................................................................................................................................................197
7.4.1 IPv4 ping ...................................................................................................................................197
7.4.2 Check IPv4 route .......................................................................................................................198
7.5 IPv6 address management ........................................................................................................................199
7.5.1 Set IPv6 .....................................................................................................................................199
7.5.2 Set IPv6 address ........................................................................................................................199
7.5.3 Set RA for IPv6 address ............................................................................................................200
7.5.4 Show IPv6 address ....................................................................................................................200
7.6 IPv6 route control .....................................................................................................................................201
7.6.1 Set IPv6 static route ...................................................................................................................201
7.6.2 Show IPv6 Forwarding Information Base .................................................................................201
7.6.3 Show IPv6 Routing Information Base .......................................................................................202
7.6.4 Show summary of the route entries registered in the IPv6 Routing Information Base .............202
7.7 Neighbor cache .........................................................................................................................................203
7.7.1 Set static neighbor cache entry ..................................................................................................203
7.7.2 Show neighbor cache table ........................................................................................................203
7.7.3 Clear neighbor cache table ........................................................................................................204
7.8 IPv6 ping ..................................................................................................................................................204
7.8.1 IPv6 ping ...................................................................................................................................204
7.8.2 Check IPv6 route .......................................................................................................................205
7.10 Set DNS server list .................................................................................................................................206
7.11 Set default domain name ........................................................................................................................206
7.12 Set search domain list .............................................................................................................................207
7.13 Show DNS client information ................................................................................................................207
...................................................................................................................197
Chapter 8: IP multicast control .........................................................................209
8.1 IP multicast basic settings ........................................................................................................................209
8.1.1 Set processing method for unknown multicast frames ..............................................................209
8.2 IGMP snooping ........................................................................................................................................209
8.2.1 Set enable/disable IGMP snooping ...........................................................................................209
8.2.2 Set IGMP snooping fast-leave ...................................................................................................210
8.2.3 Set multicast router connection destination ...............................................................................210
8.2.4 Set query transmission function ................................................................................................211
8.2.5 Set IGMP query transmission interval ......................................................................................211
8.2.6 Set TTL value verification function for IGMP packets .............................................................212
8.2.7 Set IGMP version ......................................................................................................................212
8.2.8 Show multicast router connection port information ..................................................................213
8.2.9 Show IGMP group membership information ............................................................................213
8.2.10 Show an interface's IGMP-related information .......................................................................214
8.2.11 Clear IGMP group membership entries ...................................................................................215
Chapter 9: Traffic control ..................................................................................216
9.1 ACL ..........................................................................................................................................................216
9.1.1 Generate IPv4 access list ...........................................................................................................216
9.1.2 Add comment to IPv4 access list ...............................................................................................218
9.1.3 Apply IPv4 access list ...............................................................................................................218
10 | Command Reference | TOC
9.2 QoS (Quality of Service) ..........................................................................................................................226
9.1.4 Generate IPv6 access list ...........................................................................................................219
9.1.5 Add comment to IPv6 access list
9.1.6 Apply IPv6 access list ...............................................................................................................220
9.1.7 Generate MAC access list .........................................................................................................221
9.1.8 Add comment to MAC access list .............................................................................................222
9.1.9 Apply MAC access list ..............................................................................................................223
9.1.10 Show generated access list ......................................................................................................223
9.1.11 Clear counters ..........................................................................................................................224
9.1.12 Show access list applied to interface .......................................................................................224
9.1.13 Set VLAN access map and move to VLAN access map mode ...............................................224
9.1.14 Set access list for VLAN access map ......................................................................................225
9.1.15 Set VLAN access map filter ....................................................................................................225
9.1.16 Show VLAN access map .........................................................................................................226
9.1.17 Show VLAN access map filter ................................................................................................226
9.2.1 Enable/disable QoS ...................................................................................................................227
9.2.2 Set default CoS ..........................................................................................................................227
9.2.3 Set trust mode ............................................................................................................................228
9.2.4 Show status of QoS function setting .........................................................................................229
9.2.5 Show QoS information for LAN/SFP port ................................................................................229
9.2.6 Show egress queue usage ratio ..................................................................................................230
9.2.7 Set CoS - egress queue ID conversion table ..............................................................................231
9.2.8 Set DSCP - egress queue ID conversion tabl ............................................................................232
9.2.9 Set port priority order ................................................................................................................232
9.2.10 Specify egress queue of frames transmitted from the switch itself .........................................233
9.2.11 Generate class map (traffic category conditions) ....................................................................233
9.2.12 Associate class map .................................................................................................................234
9.2.13 Set traffic classification conditions (access-list) .....................................................................235
9.2.14 Set traffic classification conditions (CoS) ...............................................................................235
9.2.15 Set traffic classification conditions (TOS precedence) ...........................................................236
9.2.16 Set traffic classification conditions (DSCP) ............................................................................236
9.2.17 Set traffic classification conditions (Ethernet Type) ...............................................................237
9.2.18 13.2.22 Set traffic classification conditions (VLAN ID) ........................................................237
9.2.19 Set traffic classification conditions (VLAN ID range) ............................................................237
9.2.20 Show class map information ...................................................................................................238
9.2.21 Generate policy map for received frames ................................................................................239
9.2.22 Apply policy map for received frames ....................................................................................239
9.2.23 Set pre-marking (CoS) .............................................................................................................240
9.2.24 Set pre-marking (TOS precedence) .........................................................................................241
9.2.25 Set pre-marking (DSCP) ..........................................................................................................241
9.2.26 Set individual policers (single rate) .........................................................................................242
9.2.27 Set individual policers (twin rate) ...........................................................................................243
9.2.28 Set remarking of individual policers .......................................................................................245
9.2.29 Generate aggregate policer ......................................................................................................246
9.2.30 Set aggregate policer (single rate) ...........................................................................................246
9.2.31 Set aggregate policer (twin rate) ..............................................................................................247
9.2.32 Set remarking of aggregate policers ........................................................................................248
9.2.33 Show aggregate policers ..........................................................................................................249
9.2.34 Apply aggregate policer ..........................................................................................................250
9.2.35 Show metering counters ..........................................................................................................251
9.2.36 Clear metering counters ...........................................................................................................251
9.2.37 Set egress queue (CoS-Queue) ................................................................................................252
...............................................................................................220
Command Reference | TOC | 11
9.2.38 Set egress queue (DSCP-Queue) .............................................................................................252
9.2.39 Show policy map information .................................................................................................253
9.2.40 Show map status ......................................................................................................................254
9.2.41 Set egress queue scheduling ....................................................................................................256
9.2.42 Set traffic shaping (individual port) ........................................................................................256
9.2.43 Set traffic-shaping (queue units) .............................................................................................257
9.3 Flow control
9.3.1 Set flow control (IEEE 802.3x PAUSE send/receive) (system) ................................................258
9.3.2 Set flow control (IEEE 802.3x PAUSE send/receive) (interface) .............................................258
9.3.3 Show flow control operating status ...........................................................................................259
9.4 Storm control ............................................................................................................................................260
9.4.1 Set storm control ........................................................................................................................260
9.4.2 Show storm control reception upper limit .................................................................................260
..............................................................................................................................................258
12 | Command Reference | Introduction
Preface

Introduction

Unauthorized reproduction of this document in part or in whole is prohibited. The contents of this document are subject to change without notice.
Yamaha disclaims all responsibility for any damages caused by loss of data or other problems resulting from the use of this product. The warranty is limited to this physical product itself. Please be aware of these points.
The information contained in this document has been carefully checked and is believed to be reliable. However, if you find some of the contents to be missing or have questions regarding the contents, please contact us.
Ethernet is a registered trademark of Fuji Xerox Corporation.
Microsoft and Windows are registered trademarks of Microsoft Corporation USA in the United States and in other countries.
Command Reference | How to read the command reference | 13
Chapter 1

How to read the command reference

1.1 Applicable firmware revision

This command reference applies to firmware Yamaha Intelligent L2 Switch SWR2311P of Rev.2.02.09. For the latest firmware released after printing of this command reference, manuals, and items that differ, access the following URL and see the information in the WWW server.
http://www.rtpro.yamaha.co.jp

1.2 How to read the command reference

This command reference describes the commands that you enter from the console of the Yamaha Intelligent L2 Switch SWR2311P.
Each command is described by a combination of the following items.
Explains the command input syntax. Key input can use either uppercase or lowercase characters.
Command names are shown in bold (Bold face).
[Syntax]
[Keywords]
[Parameters]
[Default setting] Indicates the factory-set state of the command.
[Input mode] Indicates the modes in which the command can be executed.
[Description] Explains the command.
[Notes]
[Examples] Provides specific examples of the command.
The parameter portion is shown in italic (Italic face).
Keywords are shown in normal characters.
Parameters that can be omitted are enclosed in square brackets ( [ ] ).
Explains the type and significance of keywords that can be specified for the command.
Explains the type and significance of parameters that can be specified for the command.
Explains points that you should be aware of when using the command.

1.3 Interface names

In the command input syntax, interface names are used to specify each interface of the switch. The following interface names are handled by the SWR2311P.
Interface type Prefix Description Examples
Used to specify a physical
LAN/SFP port port
VLAN interface vlan
static logical interface sa
LACP logical interface po
port. Specify "stack ID" + "." + "port number" after the port number. * The SWR2311P is fixed as stack ID=1.
Used to specify a VLAN. Specify vlan followed by the "VLAN ID".
Used to specify link aggregation that combines multiple LAN/SFP port. Specify sa or po followed by "logical interface ID".
When specifying LAN port #1 on LAN port stack #1 : port1.1
To specify VLAN #1:vlan1
o specify static logical interface #1: sa1
To specify LACP logical interface #2: po2
14 | Command Reference |
How to read the command reference

1.4 Input syntax for commands starting with the word "no"

Many commands also have a form in which the command input syntax starts with the word no. If you use a syntax that with begins with the word no, the settings of that command are deleted and returned to the default value, unless explained otherwise.
Command Reference | How to use the commands | 15
Chapter 2

How to use the commands

The SWR2311P lets you perform command operations in the following two ways.
Type of operation Method of operation Description
Operation via console
Operation via a config file
This chapter explains how to use each method.
Access from a console terminal Access from a TELNET client
Access from a SSH client
File transfer via TFTP
File transfer via GUI operation
File copy via SD card
Issue commands one by one to interactively make settings or perform operations.
A file containing a set of necessary commands (called a configuration or "config" file) is used to specify multiple settings, or to obtain multiple settings from the SWR2311P, in a single operation.

2.1 Operation via console

2.1.1 Access from a console terminal

Use a USB cable or RJ-45/DB-9 console cable (YRC-RJ45) when making settings from a terminal that is connected to the CONSOLE port of SWR2311P. For the USB cable connected to the mini-USB CONSOLE port, use a USB cable that supports data communication between a USB Type A connector and a mini-USB Type B (5-pin) connector. Cables for recharging only cannot be used. If you are using a computer as a console terminal (serial terminal), you'll need a terminal program to control the computer's serial (COM) port. Set the communication settings of the console terminal as follows.
Setting item Value
Baud rate 9600bps
Data 8-bit
Parity none
Stop bit 1-bit
Flow control Xon/Xoff
For settings related to the console terminal, use the line con command to move to line mode.

2.1.2 Access from a TELNET client

You can use a TELNET client on a computer to connect to the TELNET server of the SWR2311P and control it. In order to make settings using TELNET, you must first set up a connection environment (IP network) and then make TELNET server settings.
The IP address settings of the SWR2311P are as follows.
The default IPv4 address setting is ip address dhcp for VLAN #1.
To change the IPv4 address, use the ip address command.
The TELNET server settings of the SWR2311P are as follows.
With the default settings of the TELNET server function, it runs on the default port (TCP port 23) and allows access only from VLAN #1 (vlan0.1).
To change the reception port number, use the telnet-server command.
Access to the TELNET server can be controlled in VLAN units, and can be specified by the telnet-server interface command.
A virtual communication port by which a TELNET client connects is called a "virtual terminal (VTY: Virtual TYpewriter) port." The maximum number of simultaneous TELNET client connections depends on the number of VTY ports of the SWR2311P. The VTY ports of the SWR2311P are as follows.
With the default VTY port settings, eight VTY ports (ID: 0--7) can be used.
To check the number of VTY ports, use the show running-config | include line vty command.
To change the number of VTY ports, use the line vty command. (maximum 8 (ID: 0--7))
16 | Command Reference |
To make VTY port settings, use the line vty command to specify the target VTY port, and then move to line mode. ID management for virtual terminal ports is handled within the SWR2311P, but since login session and ID assignments depend on the connection timing, you should normally make the same settings for all VTY ports.
How to use the commands

2.1.3 Access from an SSH client

You can use an SSH client on a computer to connect to the SSH server of the SWR2311P and control it. In order to make settings using SSH, you must first set up a connection environment (IP network) and then make SSH server settings.
The IP address settings of the SWR2311P are as follows.
The default IPv4 address setting is ip address dhcp for VLAN #1.
To change the IPv4 address, use the ip address command.
The following settings on the SWR2311P must be made beforehand when accessing from an SSH client.
Generate a host key on the SSH server using the ssh-server host key generate command.
Enable the SSH server functions using the ssh-server command.
Register the user name and password using the username command.
The SSH server settings of the SWR2311P are as follows.
Access to an SSH server can be controlled for each VLAN, and is set using the ssh-server interface command.
Note that the following functions are not supported.
SSH protocol version 1
User authentication aside from password authentication (host response authentication, public key authentication, challenge­response authentication, GSSAPI authentication)
Port forwarding (X11/TCP forwarding)
Gateway Ports (Port relay)
Permitting blank passwords
A virtual communication port by which an SSH client connects is called a "virtual terminal (VTY: Virtual TYpewriter) port." The maximum number of simultaneous SSH client connections depends on the number of VTY ports of the SWR2311P. The VTY ports of the SWR2311P are as follows.
With the default VTY port settings, eight VTY ports (ID: 0--7) can be used.
To check the number of VTY ports, use the show running-config | include line vty command.
To change the number of VTY ports, use the line vty command. (maximum 8 (ID: 0--7))
To make VTY port settings, use the line vty command to specify the target VTY port, and then move to line mode. ID management for virtual terminal ports is handled within the SWR2311P, but since login session and ID assignments depend on the connection timing, you should normally make the same settings for all VTY ports.

2.1.4 Console terminal/VTY settings

The SWR2311P lets you make the following settings for console terminals and VTY.
1. Timeout duration interpreted as no operation
2. Number of lines shown in one page of the terminal screen
Setting item Content of setting
Specifies the time after which the login session is forcibly ended when there has been no key input from the terminal.
Timeout duration interpreted as no operation
Number of lines shown in one page of the terminal screen
With the default setting, the session is forcibly disconnected after ten minutes. To make this setting, use the exec-timeout command of the line mode; this takes effect from the next session.
Specifies the number of lines shown on one page of the terminal screen. This can be set as 0--512 lines/page, and the default setting is 24 lines/page. When displaying in this state, 23 lines are displayed, then "--­More---" is displayed and the system waits for key input. There are two types of this setting, and they are applied to the system starting with the upper type.
1) unprivileged EXEC mode terminal length command
2) global configuration mode service terminal-length
Command Reference | How to use the commands | 17
Setting item Content of setting
command
Setting 1) is a function that temporarily applies to the user who is using the terminal, and is applied as soon as the command is executed. Setting 2) applies starting with the next session.

2.2 Operation via configuration (config) files

A file containing a set of needed commands is called a configuration (config) file.
The settings that have been made on the SWR2311P can be read as a configuration file by a host on the LAN via TFTP. A configuration file on the host can also be loaded into the SWR2311P to specify its settings.
A configuration file contains all the settings for the entire unit; it is not possible to partially read or write only the settings for a specific area. The configuration file is a text file consisting of ASCII + line-return (CRLF or LF).
The commands and parameters in a configuration file must be in the correct syntax. If the syntax or content are incorrect, that content is ignored and is not applied to operation.

2.2.1 Access from a TFTP client

In order to transfer a configuration file via TFTP, you must first set up a connection environment (IP network) and then make TFTP server settings.
The IP address settings of the SWR2311P are as follows.
The default IPv4 address setting is ip address dhcp for VLAN #1.
To change the IPv4 address, use the ip address command.
The TFTP server settings of the SWR2311P are as follows.
With the default settings of the TFTP server function, it is running on the default port (UDP port 69) and does not allow access from anywhere.
The reception port number cannot be changed.
Access to the TFTP server can be controlled in VLAN units, and can be specified by the tftp-server interface command. Specify the VLAN ID for which access is allowed.

2.2.2 Reading/writing a configuration file

Reading/writing a configuration file is performed by executing a TFTP command from the host on the LAN. The following configuration files are read or written.
Config file
Applicable config file Description Remarks
running-config Setting values for current operation
startup-config #0, #1, #2, #3, #4 Saved setting values #0, #1, #2, #3, #4
The command syntax used depends on the OS of that host (TFTP client). Keep the following points in mind when executing commands.
IP address of theSWR2311P
Use "binary mode" as the transmission mode.
Specify the following as the remote path of the configuration file read (GET) or write (PUT) destination.
Remote path Applicable config file Load (GET) Save (PUT) Renarks
config running-config
config0 startup-config #0
config1 startup-config #1
config2 startup-config #2
Setting values of startup-config select command
config3 startup-config #3
config4 startup-config #4
If an administrator password is set on the SWR2311P, you must specify the administrator password after the remote path in the format "/PASSWORD".
18 | Command Reference |
If you PUT (write) with "config" specified as the remote path, the changes are added or overwritten to the current operating settings. Settings that you do not add or change will remain as the current operating settings. Since the setting values are not saved, you must use the write command etc. if you want to save them.
The encrypted password (password 8 or enable password 8 command format) is not applied to the settings even if it is
• PUT to running-config via TFTP. And, users are not actually registered when making settings for users that include encrypted passwords (username command).

2.3 Login

When the SWR2311P has finished starting up, a login screen is displayed.
If a user is configured, enter the user name and password. If a user is not configured, omit the user name by pressing the Enter key, and enter the login password instead to log in as an unknown user.
When authentication is successful, the command prompt appears. Since no user password is specified with the default settings, you will be able to log in without a password.
Login screen
Username: Password:
Console screen following login
SWR2311P Rev.2.02.06 (Tue Mar 13 08:41:39 2018) Copyright (c) 2018 Yamaha Corporation. All Rights Reserved.
How to use the commands
SWR2311P>

2.4 Command input mode

2.4.1 Command input mode basics

In order to change the settings of the SWR2311P or to reference the status, you must move to the appropriate command input mode and then execute the command. Command input mode is divided into hierarchical levels as shown below, and the commands that can be entered in each mode are different. By noting the prompt, the user can see which mode they are currently in.
Command Reference | How to use the commands | 19
The basic commands related to moving between command input modes are described below. For commands that move from global configuration mode mode to individual configuration mode, refer to "individual configuration mode."
exit command
logout command
enable command
disable command
configure terminal command
end command

2.4.2 individual configuration mode

individual configuration mode is the overall name for the mode in which you can make detailed settings for specific items such as LAN/SFP port, VLAN interface, and QoS. To enter individual configuration mode, issue the command for transitioning to the respective mode from global configuration mode.
On SWR2311P, individual configuration mode contains the following modes. Some of the modes within individual configuration mode have a hierarchy. For example, policy map mode → policy map class mode.
individual configuration mode Transition command Prompt
interface mode interface command SWR2311P(config-if)#
line mode line con command
line vty command
VLAN mode vlan database command SWR2311P(config-vlan)#
VLAN access map mode vlan access-map command SWR2311P(config-vlan-access-map)#
MST mode
class map mode class-map command SWR2311P(config-cmap)#
policy map mode policy-map command SWR2311P(config-pmap)#
policy map class mode class command SWR2311P(config-pmap-c)#
L2MS mode l2ms configuration command SWR2311P(config-l2ms)#
LLDP agent mode lldp-agent command SWR2311P(lldp-agent)#
spanning-tree mst configuration
command
SWR2311P(config-line)#
SWR2311P(config-mst)#

2.4.3 Command prompt prefix

he command prompt prefix indicates the host name. In the default state, the host name is the model name "SWR2311P". This indication can be changed by using the hostname command to specify the host name. In cases where multiple SWR2311P units are used, management will be easier if separate names are assigned to each switch.
Changing the host name
SWR2311P(config)# hostname Switch-012 Switch-012(config)#

2.4.4 Executing commands of a different input mode

Because the commands that can be used on the SWR2311P differ depending on the mode, you must transition to the mode in which a command can be executed before you execute that command. The do command is provided as a way to avoid this requirement.
By using the do command you can execute priviledged EXEC mode commands from any configuration mode. This allows you to reference the current configuration or save settings from any configuration mode without having to transition to priviledged EXEC mode.
However, since the completion function cannot be used with do, you must enter the command that follows either in its full spelling or in its abbreviated form.
Entry in full spelling
SWR2311P(config)#do show running-config
Entry in abbreviated form
SWR2311P(config)#do sh ru
20 | Command Reference |
How to use the commands

2.5 Keyboard operations when using the console

2.5.1 Basic operations for console input

The SWR2311P allows the following operations in the command line.
Moving the cursor
Keyboard operation Description and notes
Move right one character
Move left one character
Press Esc, then F
Press Esc, then B
Deleting an input character
Keyboard operation Description and notes
Press Esc, then D
Other
Move right one word (move to the character following the end of the word at the cursor location)
Move left one word (move to the first character of the word at the cursor location)
Ctrl + A Move to the beginning of the line
Ctrl + E Move to the end of the line
Backspace
Ctrl + H
Ctrl + D
Ctrl + K Delete from the cursor position until the end of the line
Ctrl + U Delete all characters that are being entered
Delete the character at the left of the cursor
Delete the character at the cursor. If this operation is performed when the command line is empty, the result is the same as the exit command.
Delete from the cursor position until immediately before the first space
Keyboard operation Description and notes
Exchange the character at the cursor position with the
Ctrl + T
Ctrl + C
Ctrl + Z
preceding character. If the cursor is at the end of the line, exchange the preceding character with the character that precedes it.
In unprivileged EXEC mode and priviledged EXEC mode, discard the command being entered and move to the next line. In individual configuration mode, discard the command line being entered and move to priviledged EXEC mode. Command processing that is currently being executed will be stopped. (ex: ping command)
Move from individual configuration mode to priviledged EXEC mode. This is the same operation as the end command.

2.5.2 Command help

By entering '?' in the command line you can search for the available commands or parameters.
SWR2311P#show vlan ? <1-4094> VLAN id access-map Show VLAN Access Map brief VLAN information for all bridges (static and dynamic) filter Show VLAN Access Map Filter private-vlan private-vlan information
Command Reference | How to use the commands | 21
SWR2311P#show vlan

2.5.3 Input command completion and keyword candidate list display

If you press the "Tab" key while entering a command in the console, the command name is completed. If you press the "Tab" key after entering a keyword, a list of keyword candidates that can be entered next is shown. The same operation can also be performed by pressing the "Ctrl + I" key.
Command name completion
SWR2311P#con "press the <Tab>key" ↓ SWR2311P#configure
Keyword candidate list display
SWR2311P(config)#vlan "press the <Tab> key" access-map database filter SWR2311P(config)#vlan

2.5.4 Entering command abbreviations

When you enter commands or parameters in abbreviated form, and the characters you entered can be recognized unambiguously as a command or parameter, that command is executed.
Example of entering a command abbreviation (show running-config)
SWR2311P# sh run

2.5.5 Command history

By using the command history function, you can easily re-execute a command that you previously input, or partially modify a previously input command and re-execute it. Command history is shown as a history that is common to all modes.
Operation is shown below.
Keyboard operation Description and notes
Ctrl + P
Ctrl + N
Move backward through command history
Move forward through command history

2.6 Commands that start with the word "show"

2.6.1 Modifiers

Modifiers send the information produced by the show command through a filter, restricting the content that is shown in the screen and making it easier for you to see the desired information.
The SWR2311P provides the following three modifiers for the show command.
Modifiers Description
include
grep
exclude
Modifiers can be used only one at a time. You cannot specify more than one modifier.
(Example) Using show running-config to view information that includes VLAN #1 (vlan1).
SWR2311P#show running-config | grep vlan1 interface vlan1 http-server interface vlan1 telnet-server interface vlan1
(Example) Using show spanning-tree to view information that includes Role.
SWR2311P# show spanning-tree | include Role % po1: Port Number 505 - Ifindex 4601 - Port Id 0x81f9 - Role Disabled - State
Output only the lines that include the specified character string
Output only the lines that do not include the specified character string
22 | Command Reference |
Discarding % port1.1: Port Number 905 - Ifindex 5001 - Port Id 0x8389 - Role Disabled ­State Forwarding % port1.2: Port Number 906 - Ifindex 5002 - Port Id 0x838a - Role Disabled ­State Forwarding % port1.3: Port Number 907 - Ifindex 5003 - Port Id 0x838b - Role Disabled ­State Forwarding % port1.4: Port Number 908 - Ifindex 5004 - Port Id 0x838c - Role Disabled ­State Forwarding % port1.6: Port Number 910 - Ifindex 5006 - Port Id 0x838e - Role Disabled ­State Forwarding % port1.7: Port Number 911 - Ifindex 5007 - Port Id 0x838f - Role Disabled ­State Forwarding % port1.8: Port Number 912 - Ifindex 5008 - Port Id 0x8390 - Role Disabled ­State Forwarding % port1.9: Port Number 913 - Ifindex 5009 - Port Id 0x8391 - Role Disabled ­State Forwarding % port1.10: Port Number 914 - Ifindex 5010 - Port Id 0x8392 - Role Disabled ­State Forwarding
How to use the commands
Chapter 3

Configuration

3.1 Manage setting values

The SWR2311P uses the following configurations to manage its settings.
Command Reference | Configuration | 23
Types of configuration Description
Running configuration (running-config)
Startup configuration (startup-config)
Default configuration (default-config)
The start-up flow for the SWR2311P system is as follows.
1. The setting value of the startup-config select command is referenced to determine the startup config that will be used. If sd is selected by the startup-config select command, and an SD card is not inserted, startup config #0 is selected.
2. If the startup configuration that was selected exists, the data in question is deployed to RAM as a running configuration. If the startup configuration file that was selected according to the setting values in the startup-config select command does not exist in ROM, the default configuration is deployed to RAM.
If commands etc. are used to modify the settings while the SWR2311P is running, the modified settings are immediately reflected in the running configuration. After modifying the running configuration, executing the write or copy command will update the startup configuration. If you restart without saving the content that was specified or modified, the settings or modifications are lost. Please be aware of this.
Setting values currently used for operation. Managed in RAM.
These are the saved setting values. This manages 5 configurations in ROM and 1 configuration on an SD card. The data in ROM to be used is determined using the startup-config select command. The single configuration on the SD card is managed in the "\swr2311p\startup­config" folder.
Default setting values. Managed in ROM.
User operations that can be performed
Note / Save to startup configuration
Note / Delete / Copy
No operations possible

3.2 Default setting values

The default setting values for the SWR2311P are shown in the table below.
Default setting values for the entire system
Category Setting item Default value
Console timeout 600 sec
Terminal settings
Password
Time management
RMON Behavior enabled
Firmware update Download URL
Number of VTYs 8
Number of lines displayed 24
Login password of no user none
Administrator password none
Password encryption not encrypted
Time zone JST (UTC + 9.0H)
NTP server none
NTP update cycle once per hour
firmware-update url http:// www.rtpro.yamaha.co.jp/firmware/ revision-up/swr2311p.bin
24 | Command Reference |
Category Setting item Default value
Configuration
Allow revision-down don't allow
Timeout 300 sec
LLDP
L2MS
SYSLOG
Access control
Maintenance VLAN VLAN interface VLAN #1
Behavior enabled
Automatically set enabled
Behavior enabled
Role slave
Debug level log output OFF
Information level log output ON
Error level log output ON
SYSLOG server none
Telnet server status run
Telnet server access allow only VLAN #1
SSH server status do not run
TFTP server status do not run
HTTP server status run
HTTP server access allow only VLAN #1
Secure HTTP server status do not run
Automatic MAC address learning enabled
Automatic MAC address learning
L2 switching
DNS cliant Behavior enabled
Interface control PoE power supply enabled
Traffic control
Web GUI Language setting English
Default settings per LAN/SFP port
Category Setting item Default value
Common setting
aging time
Spanning tree enabled
Proprietary loop detection disabled
QoS disabled
Flow control (IEEE 802.3x) disabled
Speed/duplex mode setting auto
Cross/straight automatic detection enabled
MRU 1,522 Byte
Port description none
300 sec
EEE disabled
Port Mode Access
Associated VLAN ID 1 (default VLAN)
L2MS L2MS filter disabled
L2 switching
Spanning tree enabled
Proprietary loop detection enabled
Command Reference | Configuration | 25
Category Setting item Default value
QoS trust mode CoS
Traffic control
PoE power supply
LLDP agent Transmit/Receive mode transmit and receive
Settings for the default VLAN (vlan1)
IPv4 Address : DHCP cliant
IGMP Snooping: Enable
Querier : Disable
Fast-Leave : Disable
Check TTL : Enable
Flow control (IEEE 802.3x) disabled
Storm control disabled
Power supply operation enabled
Power supply priority low
26 | Command Reference |

Maintenance and operation functions

Chapter 4
Maintenance and operation functions

4.1 Passwords

4.1.1 Set password for unnamed user

[Syntax]
password password
no password
[Parameter]
password : Login password for unnamed user
Single-byte alphanumeric characters, and symbols other than the single-byte characters '|', '>', and '?' (32 characters or less)
The first character must be a single-byte alphanumeric character
[Initial value]
no password
[Input mode]
global configuration mode
[Description]
Sets the password for logging in as an unnamed user.
If this command is executed with the "no" syntax, the unnamed user password for logging is deleted.
[Note]
If the password was encrypted by the password-encryption command, it is shown in the configuration in the form "password 8 password."
The user cannot enter the password in this form when making configuration settings from the command line.
[Example]
Specify user1234 as the unnamed user password.
SWR2311P(config)#password user1234
Delete the unnamed user password.
SWR2311P(config)#no password

4.1.2 Set administrator password

[Syntax]
enable password password
no enable password
[Parameter]
password : Administrator password
Single-byte alphanumeric characters, and symbols other than the single-byte characters '|', '>', and '?' (32 characters or less)
The first character must be a single-byte alphanumeric character
[Initial value]
no enable password
[Input mode]
global configuration mode
Command Reference | Maintenance and operation functions | 27
[Description]
Specifies the administrator password needed to enter priviledged EXEC mode.
If this command is executed with the "no" syntax, the administrator password is deleted.
[Note]
If the password was encrypted by the password-encryption command, it is shown in the configuration in the form "enable password 8 password."
The user cannot enter the password in this form when making configuration settings from the command line.
[Example]
Specify admin1234 as the administrator password.
SWR2311P(config)#enable password admin1234
Delete the administrator password.
SWR2311P(config)#no enable password

4.1.3 Encrypt password

[Syntax]
password-encryption switch no password-encryption
[Parameter]
switch : Set password encryption
Setting value Description
enable Encrypt
disable Don't encrypt
[Initial value]
password-encryption disable
[Input mode]
global configuration mode
[Description]
Enables password encryption.
If this is enabled, the password entered by the password command, the enable paassword command, and the username command are saved in the configuration in an encrypted form.
If this command is executed with the "no" syntax, password encryption is disabled, and the password entered by the password command, the enable paassword command, and the username command are saved in the configuration as plaintext.
[Note]
If password encryption is changed from disabled to enabled, previously-entered passwords are converted from plaintext to an encrypted form; however if it is changed from enabled to disabled, previously-encrypted passwords in a configuration file do not return to plaintext.
[Example]
Enables password encryption.
SWR2311P(config)#password-encryption enable
Disabled password encryption.
SWR2311P(config)#no password-encryption

4.1.4 Allow login with special password

[Syntax]
force-password switch no force-password
28 | Command Reference |
[Parameter]
switch : Allow login by special password
[Initial value]
force-password enable
[Input mode]
global configuration mode
[Description]
Enable login with special password.
If this is enabled, only when logging in from a serial console, it is possible to log in using "w,lXlma" (lowercase W, comma, lowercase L, uppercase X, and lowercase L, M, and A) instead of the specified user password.
If you login with the special password, you will be in priviledged EXEC mode.
If this command is executed with the "no" syntax, login with the special password is disabled.
[Example]
Enable login with special password.
Maintenance and operation functions
Setting value Description
enable Allow
disable Don't allow
SWR2311P(config)#force-password enable
Disable login with special password.
SWR2311P(config)#no force-password

4.2 User account maintenance

4.2.1 Set user password

[Syntax]
username username [privilege privilege] [password password]
no username username
[Keyword]
privilege : Specifies the user's privileges
password : Specifies the user's password
[Parameter]
username : User name
Single-byte alphanumeric characters (32 characters or less)
privilege : Whether to grant privilege
Setting value Description
on
off
password : User's login password
Password input is not requested when moving to privileged EXEC mode
Access to WebGUI is allowed with administrator privileges
Password input is requested when moving to privileged EXEC mode
Access to WebGUI is allowed with guest
Command Reference | Maintenance and operation functions | 29
Single-type alphanumeric characters and " and ' and | and ? and single-byte symbols other than space characters (32characters or less)
The first character must be a single-byte alphanumeric character
[Initial value]
none
[Input mode]
global configuration mode
[Description]
Sets user information.
A maximum of 32 items of user information can be registered.
The following words cannot be registered as user names.
lp, adm, bin, ftp, gdm, man, rpc, sys, xfs, halt, mail, news, nscd, sync, uucp, root, games, daemon, gopher, nobody, ftpuser, mtsuser, rpcuser, mailnull, operator, shutdown
[Note]
If the password was encrypted by the password-encryption command, it is shown in the configuration in the form "username
username 8 password password."
The user cannot enter the password in this form when making configuration settings from the command line.
[Example]
Set the user "user1234".
SWR2311P(config)#username user1234
Grant privileges to user user1234 and specify a password.
SWR2311P(config)#username user1234 privilege on password user_pass

4.2.2 Show login user information

[Syntax]
show users
[Input mode]
unprivileged EXEC mode, priviledged EXEC mode, global configuration mode
[Description]
Shows information on the current logged-in users.
The following items are shown.
Item Description
Shows the login method.
Line
con 0 is the serial console port
vty N is the VTY port
http N is the WebGUI
Own An * is shown for the line of one's own connection port.
User Shows the currently logged-in user names.
Status
Login time Shows the login time.
IP address Shows the IP address of the connected user.
[Example]
Show login information for the users.
SWR2311P>show users
Shows the login status. If the user is in use, this indicates
Login.
30 | Command Reference |
Line Own User Status Login time IP address
-------------------------------------------------------------------------------------
---------
con 0 user1234 Login 02:15:23 vty 0 * operators1 Login 00:12:59 192.168.100.1 vty 1 abcdefghijklmnopqrstuvwxyzabcdef Login 00:00:50 192.168.100.24 vty 2 - Login 00:00:21 192.168.100.10 vty 3 - - ­ vty 4 - - ­ vty 5 - - ­ vty 6 - - ­ vty 7 - - ­ http 0 user1234 Login 01:12:25 192.168.100.4 http 1 (noname) Login 00:18:04 192.168.100.102 http 2 - - ­ http 3 - - -

4.2.3 Set banner

[Syntax]
banner motd word
no banner motd
[Parameter]
Maintenance and operation functions
word : Single-byte alphanumeric characters and single-byte symbols ( 256 characters or less)
[Initial value]
no banner motd
[Input mode]
global configuration mode
[Description]
Sets the banner that is displayed when logging in to the console.
[Example]
Set the banner display to "Hello World!".
Username: Password:
SWR2311P Rev.2.02.06 (Tue Mar 13 08:41:39 2018) Copyright (c) 2018 Yamaha Corporation. All Rights Reserved.
SWR2311P>enable SWR2311P#configure terminal Enter configuration commands, one per line. End with CNTL/Z. SWR2311P(config)#banner motd Hello World! SWR2311P(config)#exit SWR2311P#exit
Username: Password:
Hello World!
SWR2311P>enable SWR2311P#configure terminal Enter configuration commands, one per line. End with CNTL/Z. SWR2311P(config)#no banner motd SWR2311P(config)#exit SWR2311P#exit
Username: Password:
SWR2311P Rev.2.02.06 (Tue Mar 13 08:41:39 2018) Copyright (c) 2018 Yamaha Corporation. All Rights Reserved.
Command Reference | Maintenance and operation functions | 31
SWR2311P>

4.3 Configuration management

4.3.1 Save running configuration

[Syntax]
copy running-config startup-config
[Parameter]
config_num : Configuration number
Setting value Description
<0-4> Startup configuration #0-#4
sd Startup config in SD card
[Input mode]
priviledged EXEC mode
[Description]
Saves the current operating settings (running configuration) as the settings for startup (startup configuration).
If config_num is omitted, it is saved in the startup config that was used for the current startup.
[Note]
The running configuration can also be saved by executing the write command.
[Example]
Save the running configuration.
[config_num]
SWR2311P#copy running-config startup-config Succeeded to write configuration SWR2311P#

4.3.2 Save running configuration

[Syntax]
write [config_num]
[Parameter]
config_num : Configuration number
Setting value Description
<0-4> Startup configuration #0-#4
sd Startup config in SD card
[Input mode]
priviledged EXEC mode, individual configuration mode
[Description]
Saves the current operating settings (running configuration) as the settings for startup (startup configuration).
If config_num is omitted, it is saved in the startup config that was used for the current startup.
[Note]
The running configuration can also be saved by executing the copy running-config startup-config command.
[Example]
Save the running configuration.
SWR2311P#write
32 | Command Reference |
Succeeded to write configuration. SWR2311P#
Maintenance and operation functions

4.3.3 Show the running configuration

[Syntax]
show running-config [section]
[Parameter]
section : Section to be shown
access-list Access list related
http-server HTTP server related
interface Interface related
ip IP related
ipv6 IPv6 related
key Authentication key related
l2ms L2MS related
Setting value Description
lldp LLDP related
snmp SNMP related
spanning-tree STP related
ssh-server SSH server related
switch Switch setting related
telnet-sever TELNET server related
[Input mode]
priviledged EXEC mode, individual configuration mode
[Description]
Shows the currently-operating settings (running configuration).
If section is not specified, all settings are shown.
[Example]
Show the running configuration.
SWR2311P#show running-config ! interface port1.1 switchport ... ! line con 0 line vty 0 7 ! end
SWR2311P#

4.3.4 Show startup configuration

[Syntax]
show startup-config [config_num]
[Parameter]
config_num : Configuration number
Command Reference | Maintenance and operation functions | 33
Setting value Description
<0-4> Startup configuration #0-#4
sd Startup config in SD card
[Input mode]
priviledged EXEC mode
[Description]
Shows the startup settings (startup configuration).
If config_num is omitted, the startup config that will be used for the next startup is shown.
[Example]
Show the startup configuration on the next startup.
SWR2311P#show startup-config ! ! Last Modified: 00:00:00 JST Mon Jan 01 2018 ! interface port1.1 switchport switchport mode access no shutdown !
...
! interface vlan1 no switchport ip address 192.168.100.240/24 no shutdown ! clock timezone JST ! http-server enable http-proxy enable ! telnet-server enable ! line con 0 line vty 0 7 ! end
SWR2311P#

4.3.5 Erase startup configuration

[Syntax]
erase startup-config [config_num]
[Parameter]
config_num : Configuration number
Setting value Description
<0-4> Startup configuration #0-#4
sd Startup config in SD card
[Input mode]
priviledged EXEC mode
[Description]
Erase the settings used at startup (startup config) and the information associated with them.
If config_num is omitted, the startup config that was used for the current startup is erased.
34 | Command Reference |
[Example]
Erase the startup configuration.
SWR2311P#erase startup-config Succeeded to erase configuration. SWR2311P#
Maintenance and operation functions

4.3.6 Copy startup configuration

[Syntax]
copy startup-config src_config_num dst_config_num
[Parameter]
src_config_num : Copy source configuration number
dst_config_num : Copy destination configuration number
Setting value Description
<0-4> Startup configuration #0-#4
sd Startup config in SD card
Setting value Description
<0-4> Startup configuration #0-#4
sd Startup config in SD card
[Input mode]
priviledged EXEC mode
[Description]
Copy the startup settings (startup config) and the information associated with them.
[Example]
Copy startup config #0 to startup config #1.
SWR2311P#copy startup-config 0 1 Succeeded to copy configuration SWR2311P#

4.3.7 Set description for startup config

[Syntax]
startup-config description config_num line no startup-config description config_num
[Parameter]
config_num : <0-4>
Configuration number
line : Single-byte alphanumeric characters and single-byte symbols (63 characters or less)
Description for applicable startup config
[Input mode]
priviledged EXEC mode
[Description]
Specify a description for the applicable startup config.
If this command is executed with the "no" syntax, the description is deleted.
The description is shown at the beginning of the execution result of the show startup-config command.
[Example]
Specify a description for startup config #1.
SWR2311P#startup-config description 1 TEST_CONFIG_1

4.3.8 Select startup config

[Syntax]
startup-config select config_num
[Parameter]
config_num : Configuration number
Setting Description
<0-4> Startup config #0-#4
sd Startup config on the SD card
[Input mode]
priviledged EXEC mode
[Description]
Select the settings to use at startup (startup config), and restart.
[Example]
Select startup config #1 and restart.
Command Reference | Maintenance and operation functions | 35
SWR2311P#startup-config select 1 reboot system? (y/n): y

4.4 Manage boot information

4.4.1 Show boot information

[Syntax]
show boot num
show boot all
show boot list
[Keyword]
all : Shows up to five entries of the boot information history
list : Shows a simplified version of up to five entries of the boot information history
[Parameter]
num : <0-4>
Shows the boot history entry of the specified number
[Input mode]
unprivileged EXEC mode, priviledged EXEC mode
[Description]
Show the boot information.
[Note]
This history is cleared when you execute the cold start command or the clear boot list command.
[Example]
Show the current boot information.
SWR2311P>show boot Running EXEC: SWR2311P Rev.2.02.06 (Tue Mar 13 08:41:39 2018) Previous EXEC: SWR2311P Rev.2.02.06 (Tue Mar 13 08:41:39 2018) Restart by reload command
Shows a list of the boot history.
36 | Command Reference |
SWR2311P>show boot list No. Date Time Info
--- ---------- -------- -------------------------------------------------
0 2018/03/15 09:50:29 Restart by reload command 1 2018/03/14 20:24:40 Power-on boot
--- ---------- -------- -------------------------------------------------

4.4.2 Clear boot information

[Syntax]
clear boot list
[Input mode]
priviledged EXEC mode
[Description]
Clears the boot information history.
[Example]
Clear the boot information.
SWR2311P#clear boot list

4.4.3 Set SD card boot

[Syntax]
boot prioritize sd switch
[Parameter]
Maintenance and operation functions
switch : Enable or disable SD card boot
Setting Description
enable Enable SD card boot
disable Disable SD card boot
[Initial value]
boot prioritize sd enable
[Input mode]
priviledged EXEC mode
[Description]
Enable or disable the SD card boot function of the firmware.
After this command is executed, the system will restart.
Since this setting is common to the system, it cannot be specified individually for each startup configuration (startup-config #0 ~ strtup-config #4).
By default, SD card boot is enabled.
If this command is executed with the "no" syntax, the setting returns to the default.
[Note]
The SD card boot function enabled/disabled status can be viewed by using the show boot prioritize sd command.
[Example]
Enable the SD card boot function of the firmware.
SWR2311P#boot prioritize sd enable reboot system? (y/n): y

4.4.4 Show the SD card boot setting information

[Syntax]
show boot prioritize sd
[Input mode]
unprivileged EXEC modepriviledged EXEC mode
[Description]
Shows the setting of the SD card boot function.
[Example]
Show the setting of the SD card boot function.
SWR2311P#show boot prioritize sd SD boot configuration: firmware : enable

4.5 Show unit information

4.5.1 Show inventory information

[Syntax]
show inventory
[Input mode]
unprivileged EXEC mode, priviledged EXEC mode
[Description]
Shows inventory information for this unit and the SFP modules.
The following items are shown.
Command Reference | Maintenance and operation functions | 37
Item Description
NAME Name
DESCR Description
Vendor Vendor name
PID Product ID
VID Version ID, 0 if invalid
SN Serial number
[Example]
Show inventory information.
SWR2311P>show inventory NAME: L2 PoE switch DESCR: SWR2311P-10G Vendor: Yamaha PID: SWR2311P-10G VID: 0000 SN: S00000000
SWR2311P>

4.5.2 Show operating information

[Syntax]
show environment
[Input mode]
unprivileged EXEC mode, priviledged EXEC mode
[Description]
Shows information about the system's operating environment.
The following items are shown.
Boot version
Firmware revision
Serial number
MAC address
CPU usage ratio
Memory usage ratio
38 | Command Reference |
Fan status Fan speed
Firmware file
Startup configuration file
Serial baud rate
Boot time
Current time
Elapsed time from boot
Temperature status
Temperature
[Example]
Show operating information.
SWR2311P>show environment SWR2311P-10G BootROM Ver.1.00 SWR2311P Rev.2.02.06 (Tue Mar 13 08:41:39 2018) main=SWR2311P-10G ver=00 serial=S00000000 MAC-Address=00a0.de00.0000 CPU: 7%(5sec) 8%(1min) 8%(5min) Memory: 18% used Fan status: Normal Fan speed: FAN1=4444RPM FAN2=4444RPM FAN3=4444RPM Startup firmware: exec0 Startup Configuration file: config0 Serial Baudrate: 9600 Boot time: 2018/01/01 11:13:44 +09:00 Current time: 2018/01/02 16:19:43 +09:00 Elapsed time from boot: 1days 05:06:04 Temperature status: Normal Temperature: 28 degree C
Maintenance and operation functions
SWR2311P>

4.5.3 Show currently-executing processes

[Syntax]
show process
[Input mode]
priviledged EXEC mode
[Description]
Shows all currently-executing processes.
[Example]
Show currently-executing processes.
SWR2311P#show process

4.5.4 Show technical support information

[Syntax]
show tech-support
[Input mode]
priviledged EXEC mode
[Description]
Shows a list of the results of executing the following commands useful for technical support.
show running-config
show environment
show inventory
show boot all
show logging
show process
show users
show interface
show frame-counter show vlan brief
show spanning-tree mst detail
show etherchannel status detail
show loop-detect
show mac-address-table
show l2ms detail
show qos queue-counters
show ddm status
show errdisable
show auth status
show auth supplicant
show power-inline
show error port-led
show ip interface brief
show ipv6 interface brief
show ip route
show ip route database
show ipv6 route
show ipv6 route database
show arp
show ipv6 neighbors
show ip igmp snooping groups
show ip igmp snooping interface
[Example]
Show technical support information.
Command Reference | Maintenance and operation functions | 39
SWR2311P#show tech-support # # Information for Yamaha Technical Support #
*** show running-config *** ! dns-client enable !
...
# # End of Information for Yamaha Technical Support #
SWR2311P#

4.5.5 Save technical support information

[Syntax]
copy tech-support sd
[Input mode]
priviledged EXEC mode
[Description]
Saves technical support information to the SD card.
This is saved on the SD card with the following file name.
\swr2311p\tech-support\YYYYMMDDHHMMSS_techsupport.txt
YYYYMMDDHHMMSS ... Year month day hour minute second that the command was executed
[Note]
The SD card must be inserted in advance.
40 | Command Reference |
[Example]
Save technical support information to the SD card.
SWR2311P#copy tech-support sd
SWR2311P#

4.6 Time management

4.6.1 Set clock manually

[Syntax]
clock set time month day year
[Parameter]
time : hh:mm:ss
month : <1-12> or Jan, Feb, Mar, ... , Dec
day : <1-31>
Maintenance and operation functions
Time
Month or name of month
Day
year : Year (four digits)
[Input mode]
priviledged EXEC mode
[Description]
Set the system time.
[Example]
Set the time to 0 hours 0 minutes 0 seconds on January 1, 2015.
SWR2311P#clock set 00:00:00 Jan 1 2015

4.6.2 Set time zone

[Syntax]
clock timezone zone
clock timezone offset
no clock timezone
[Parameter]
zone : UTC, JST
Name of the time zone shown when standard time is in effect
offset : -12:00, -11:00, ... , -1:00, +1:00, ... , +13:00
Enter the difference from UTC
[Initial value]
clock timezone JST
[Input mode]
global configuration mode
[Description]
Sets the time zone.
If this command is executed with the "no" syntax, UTC is specified.
[Example]
Set the time zone to JST.
SWR2311P(config)#clock timezone JST
Set the time zone to UTC+9 hours.
SWR2311P(config)#clock timezone +9:00

4.6.3 Show current time

[Syntax]
show clock
[Input mode]
unprivileged EXEC mode, priviledged EXEC mode
[Description]
Shows the current time, year, month, and date.
[Example]
Show current time.
SWR2311P>show clock Thu Jan 1 00:00:00 JST 2015

4.6.4 Set NTP server

Command Reference | Maintenance and operation functions | 41
[Syntax]
ntpdate server ipv4 ipv4_addr
ntpdate server ipv6 ipv6_addr
ntpdate server name fqdn
no ntpdate server
[Keyword]
ipv4 : Specify the NTP server by IPv4 address
ipv6 : Specify the NTP server by IPv6 address
name : Specify the NTP server by host name
[Parameter]
ipv4_addr : IPv4 address of the NTP server
ipv6_addr : IPv6 address of the NTP server
If you specify an IPv6 link local address, you must also specify the output interface (fe80::X%vlanN format)
fqdn : Host name of the NTP server
[Initial value]
none
[Input mode]
global configuration mode
[Description]
Registers the address or host name of the NTP server.
Up to two instances of this command can be set.
If this command is executed with the "no" syntax, the NTP server setting is deleted.
If time synchronization is performed with two NTP servers specified, they are queried in the order of NTP server 1 and NTP server 2 as shown by the show ntpdate command.
The query to NTP server 2 is performed only if synchronization with NTP server 1 fails.
[Example]
Specify 192.168.1.1 as the NTP server.
SWR2311P(config)#ntpdate server ipv4 192.168.1.1
42 | Command Reference |
Specify fe80::2a0:deff:fe11:2233%vlan1 as the NTP server.
SWR2311P(config)#ntpdate server ipv6 fe80::2a0:deff:fe11:2233%vlan1
Specify ntp.example.com as the NTP server.
SWR2311P(config)#ntpdate server name ntp.example.com
Maintenance and operation functions

4.6.5 Synchronize time from NTP server (one-shot update)

[Syntax]
ntpdate oneshot
[Input mode]
priviledged EXEC mode
[Description]
Attempts to obtain time information from the registered NTP server.
This is performed only once when this command is executed.
[Example]
Obtain time information from the NTP server.
SWR2311P#ntpdate oneshot

4.6.6 Synchronize time from NTP server (update interval)

[Syntax]
ntpdate interval interval-time
no ntpdate interval
[Parameter]
interval-time : <0-24>
Interval (hours) for time synchronization. If this is set to 0 hours, periodic synchronization will not occur.
[Initial value]
ntpdate interval 1
[Input mode]
global configuration mode
[Description]
Specifies the interval (in one-hour units) at which time information is periodically obtained from the registered NTP server.
If this command is executed with the "no" syntax, the setting returns to the default.
When this command is executed, the time is updated immediately, and is subsequently updated at the specified interval.
[Example]
Request the time every two hours.
SWR2311P(config)#ntpdate interval 2
Disable periodic time synchronization.
SWR2311P(config)#ntpdate interval 0

4.6.7 Show NTP server time synchronization settings

[Syntax]
show ntpdate
[Input mode]
unprivileged EXEC mode, priviledged EXEC mode
Command Reference | Maintenance and operation functions | 43
[Description]
Shows the settings that are related to time synchronization from an NTP server.
[Example]
Show time synchronization settings. *If the synchronization update interval is one hour
SWR2311P#show ntpdate NTP Server 1 : ntp.nict.jp NTP Server 2 : none adjust time : Thu Jan 1 09:00:00 2015 + interval 1 hour sync server : ntp.nict.jp
Show time synchronization settings. *If periodic synchronization is not being performed
SWR2311P#show ntpdate NTP Server 1 : ntp.nict.jp NTP Server 2 : none adjust time : Thu Jan 1 09:00:00 2015 sync server : ntp.nict.jp

4.7 Terminal settings

4.7.1 Move to line mode (console terminal)

[Syntax]
line con port
[Parameter]
port : 0
Serial console port number
[Initial value]
line con 0
[Input mode]
global configuration mode
[Description]
Moves to line mode in order to make console terminal settings.
[Note]
To return from line mode to global configuration mode, use the exit command. To return to priviledged EXEC mode, use the end command.
[Example]
Move to line mode in order to make console terminal settings.
SWR2311P(config)#line con 0 SWR2311P(config-line)#

4.7.2 Set VTY port and move to line mode (VTY port)

[Syntax]
line vty port1 [port2]
no line vty port1 [port2]
[Parameter]
port1 : <0-7>
VTY port number
port2 : <0-7>
Last VTY port number when specifying a range
[Initial value]
no line vty 0 7
44 | Command Reference |
[Input mode]
global configuration mode
[Description]
After enabling the specified VTY ports, moves to line mode for making VTY port settings.
If this command is executed with the "no" syntax, the specified VTY ports are disabled.
If you specify port2, a range of ports is specified; all VTY ports from port1 through port2 are specified. port2 must be a number greater than port1.
[Note]
The maximum number of simultaneous Telnet client connections depends on the number of VTY ports that are enabled.
To return from line mode to global configuration mode, use the exit command. To return to priviledged EXEC mode, use the
end command.
[Example]
Enable VTY port #0 and then move to line mode.
SWR2311P(config)#line vty 0 SWR2311P(config-line)#
Maintenance and operation functions

4.7.3 Set terminal login timeout

[Syntax]
exec-timeout min [sec]
no exec-timeout
[Parameter]
min : <0-35791>
Timeout time (minutes)
sec : <0-2147483>
Timeout time (seconds)
[Initial value]
exec-timeout 10
[Input mode]
line mode
[Description]
Sets the time after which automatic logout occurs if there has been no key input from the console terminal or VTY.
If sec is omitted, 0 is specified. If min and sec are both set to 0, automatic logout does not occur.
If this command is executed with the "no" syntax, the setting returns to the default.
[Note]
After this command is executed, the setting is applied starting at the next login.
[Example]
Set the console timeout time to five minutes.
SWR2311P(config)#line con 0 SWR2311P(config-line)#exec-timeout 5 0 SWR2311P(config-line)#

4.7.4 Change the number of lines displayed per page for the terminal in use

[Syntax]
terminal length line
terminal no length
[Parameter]
line : <0-512>
Number of lines displayed per page on the terminal
Command Reference | Maintenance and operation functions | 45
[Input mode]
unprivileged EXEC mode, priviledged EXEC mode
[Description]
Changes the number of lines displayed per page for the terminal in use.
If line is set to 0, the display is not paused per page.
If the terminal no length command is executed, the number of lines is set to 24 in the case of a serial console, or to the window size when connected in the case of VTY.
[Note]
When this command is executed, the change applies immediately.
The result of executing this command takes priority over the setting applied by the service terminal-length command.
[Example]
Change the number of lines displayed per page for the terminal in use to 100 lines.
SWR2311P>terminal length 100 SWR2311P>

4.7.5 Set the number of lines displayed per page on the terminal

[Syntax]
service terminal-length line
no service terminal-length
[Parameter]
line : <0-512>
Number of lines displayed per page on the terminal
[Initial value]
no service terminal-length
[Input mode]
global configuration mode
[Description]
Sets the number of lines displayed per page on the terminal.
If line is set to 0, the display is not paused per page.
If this command is executed with the "no" syntax, the number of lines is set to 24 in the case of a serial console, or to the window size when connected in the case of VTY.
[Note]
After this command is executed, the setting is applied starting at the next login.
If the terminal length command is executed, the result of executing the terminal length command takes priority.
[Example]
Change the number of lines displayed per page for the terminal in use to 100 lines.
SWR2311P(config)#service terminal-length 100 SWR2311P(config)#

4.8 Management

4.8.1 Set management VLAN

[Syntax]
management interface interface
no management interface
[Parameter]
interface : VLAN interface name
46 | Command Reference |
[Initial value]
management interface vlan1
[Input mode]
global configuration mode
[Description]
Set the VLAN that is used for management.
By setting this command, it will be possible to set and acquire the IP address assigned by the L2MS master to the corresponding VLAN when operating as an L2MS slave.
If this is executed with the "no" syntax, or if the VLAN is deleted, this command also returns to the default settings.
[Example]
Set VLAN #2 as the management VLAN.
SWR2311P(config)#management interface vlan2
Maintenance and operation functions

4.9 SYSLOG

4.9.1 Set log notification destination (SYSLOG server)

[Syntax]
logging host host
no logging host
[Parameter]
host : A.B.C.D
IPv4 address of the SYSLOG server
: X:X::X:X
IPv6 address of the SYSLOG server
If you specify an IPv6 link local address, you must also specify the output interface (fe80::X%vlanN format)
[Initial value]
no logging host
[Input mode]
global configuration mode
[Description]
Specifies the IP address of the SYSLOG server to which log notifications are sent.
Up to 2 entries can be specified.
If this command is executed with the "no" syntax, the setting returns to its default value, and notifications are not sent.
[Example]
Set the SYSLOG server IPv4 address to 192.168.100.1.
SWR2311P(config)#logging host 192.168.100.1
Set the SYSLOG server IPv6 address to fe80::2a0:deff:fe11:2233.
SWR2311P(config)#logging host fe80::2a0:deff:fe11:2233%vlan1

4.9.2 Set log output level (debug)

[Syntax]
logging trap debug
no logging trap debug
[Initial value]
no logging trap debug
Command Reference | Maintenance and operation functions | 47
[Input mode]
global configuration mode
[Description]
Output the debug level log to SYSLOG. If this command is executed with the "no" syntax, the log is not output.
Since enabling debug level will output a large volume of log data, you should enable this only if necessary.
If you use the logging host command to send notifications to the SYSYLOG server, you should ensure that there is sufficient disk space on the host. With the default setting, this is not output.
[Example]
Output the debug level log to SYSLOG.
SWR2311P(config)#logging trap debug

4.9.3 Set log output level (informational)

[Syntax]
logging trap informational
no logging trap informational
[Initial value]
logging trap informational
[Input mode]
global configuration mode
[Description]
Outputs the informational level log to SYSLOG.
If this command is executed with the "no" syntax, the log is not output.
[Note]
This can be output to the console by executing the logging stdout info command.
[Example]
Output the informational level log to SYSLOG.
SWR2311P(config)#logging trap informational

4.9.4 Set log output level (error)

[Syntax]
logging trap error
no logging trap error
[Initial value]
logging trap error
[Input mode]
global configuration mode
[Description]
Outputs the error level log to SYSLOG.
If this command is executed with the "no" syntax, the log is not output.
[Example]
Output the error level log to SYSLOG.
SWR2311P(config)#logging trap error

4.9.5 Set log console output

[Syntax]
logging stdout info
no logging stdout info
48 | Command Reference |
[Initial value]
no logging stdout info
[Input mode]
global configuration mode
[Description]
Outputs the informational level SYSLOG to the console.
If this command is executed with the "no" syntax, the log is not output.
[Example]
Output the informational level SYSLOG to the console.
SWR2311P(config)#logging stdout info
Maintenance and operation functions

4.9.6 Set log output in event units

[Syntax]
logging event type
no logging type
[Parameter]
type : Type of events specified for log output
Setting value Description
lan-map LAN map
[Initial value]
no logging event lan-map
[Input mode]
global configuration mode
[Description]
Enables log output for the specified type of events.
If this command is executed with the "no" syntax, the log is not output.
[Example]
Enable log output for LAN map.
SWR2311P(config)#logging event lan-map

4.9.7 Back up log

[Syntax]
save logging
[Input mode]
unprivileged EXEC mode, priviledged EXEC mode
[Description]
Saves all logs accumulated in RAM to flash ROM.
Logs are accumulated in RAM, and are periodically backed up automatically to flash ROM, but you can use this command to back up this data manually.
If the logging backup sd enable command has been set and an SD card is inserted, the log data is saved to flash ROM and also simultaneously saved to the SD card with the following file name.
\swr2311p\log\YYYYMMDD_syslog.txt
YYYYMMDD … Year month day that the save logging command was executed
[Example]
Back up the log.
Command Reference | Maintenance and operation functions | 49
SWR2311P#save logging

4.9.8 Set log backup to SD card

[Syntax]
logging bakcup sd enable
logging bakcup sd disable
no logging bakcup sd
[Keyword]
enable : Enable log backup to SD card
disable : Disable log backup to SD card
[Initial value]
logging backup sd disable
[Input mode]
global configuration mode
[Description]
Enables or disables backup of the log to the SD card.
If this is enabled, the log is saved on the SD card when you execute the save logging command.
If this command is executed with the "no" syntax, the setting returns to the default.
This is saved on the SD card with the following file name.
\swr2311p\log\YYYYMMDD_syslog.txt
YYYYMMDD … Year month day that the save logging command was executed
[Example]
Enable log backup to SD card.
SWR2311P(config)#logging backup sd enable

4.9.9 Clear log

[Syntax]
clear logging
[Input mode]
priviledged EXEC mode
[Description]
Clears the log.
[Example]
Clear the log.
SWR2311P#clear logging

4.9.10 Show log

[Syntax]
show logging [reverse]
[Keyword]
reverse : Shows the log in reverse order
[Input mode]
unprivileged EXEC mode, priviledged EXEC mode
[Description]
Shows the log that records the operating status of the unit. Normally the log is shown starting with the oldest events, but the display order is reversed if "reverse" is specified.
50 | Command Reference |
The log contains a maximum of 10,000 events. If this maximum number is exceeded, the oldest events are successively deleted. In order to save more than the maximum number of logs, you must use the logging host command to forward the log to the SYSLOG server and save it on the host.
The level of log events to be output can be specified by the logging trap command.
[Note]
Log events are accumulated in RAM, and are automatically backed up to flash ROM at regular intervals. When the power is turned off, log entries that are not backed up will not be saved, so you must back them up manually if you want to save the log.
The log is maintained when the reload command or a firmware update etc. cause a reboot.
[Example]
Show the log.
SWR2311P#show logging
Maintenance and operation functions

4.10 SNMP

4.10.1 Set host that receives SNMP notifications

[Syntax]
snmp-server host host_address type version version community
snmp-server host host_address type version version seclevel user
no snmp-server host host_address
no snmp-server host host_address type version version community
no snmp-server host host_address type version version seclevel user
[Parameter]
host_address : Destination IPv4 address or IPv6 address for notifications
If you specify an IPv6 link local address, you must also specify the output interface (fe80::X%vlanN format)
type : Notification message
Setting value Description
traps
informs
version : SNMP version
Setting value Description
1 Use SNMPv1
2c Use SNMPv2c
3 Use SNMPv3
community : Community name (maximum 32 characters)
Send notifications as traps (without response confirmation)
Send notifications as inform requests (with response confirmation). This can be specified if version is '2c' or '3'.
This can be specified if version is '1' or '2c'
seclevel : Security level requested for authenticating the notification
This can be specified only if version is '3'
Setting value Description
noauth
auth Authentication / No encryption (authNoPriv)
No authentication / No encryption (noAuthNoPriv)
Command Reference | Maintenance and operation functions | 51
Setting value Description
priv Authentication / Encryption (authPriv)
user : User name (maximum 32 characters)
This can be specified only if version is '3'
[Initial value]
none
[Input mode]
global configuration mode
[Description]
Set the destination of SNMP notifications.
Up to 8 entries can be specified.
If this command is executed with the "no" syntax, the specified destination hosts are deleted.
[Note]
Note that if this is specified as an IPv6 link local address, and you add a setting that specifies a different transmitting interface for the same address, the combination of address and transmitting interface is considered to have changed, and all settings of the old combination are deleted. For example if there are multiple settings that specify "fe80::10%vlan1" and you newly add the setting "fe80::10%vlan2," all settings for "fe80::10%vlan1" are deleted, and only the settings of the added "fe80::10%vlan2" will remain.
[Example]
Using SNMPv1, set 192.168.100.11 as the destination for traps. Set "snmptrapname" as the trap community name.
SWR2311P(config)#snmp-server host 192.168.100.11 traps version 1 snmptrapname
Using SNMPv2c, set 192.168.100.12 as the destination for notifications. Specify the notification type as informs, and the notification screen community name as "snmpinformsname".
SWR2311P(config)#snmp-server host 192.168.100.12 informs version 2c snmpinformsname
Using SNMPv3, set 192.168.10.13 as the destination for notifications. Set the notification type to traps, set the security level for transmission to priv, and set the user name to "admin1".
SWR2311P(config)#snmp-server host 192.168.10.13 traps version 3 priv admin1

4.10.2 Set notification type to transmit

[Syntax]
snmp-server enable trap trap_type [trap_type]
no snmp-server enable trap
[Parameter]
trap_type : Type of trap
Setting value Description
When the power is turned on/off, when firmware
coldstart
is updated, or when the cold start command is executed
warmstart At restart
linkdown At linkdown
linkup At linkup
authentication When authentication fails
l2ms When L2MS slave is detected or lost
errdisable When ErrorDisable is detected or canceled
52 | Command Reference |
[Initial value]
no snmp-server enable trap
[Input mode]
global configuration mode
[Description]
Specifies the type of trap notification that is sent.
If this command is executed with the "no" syntax, traps are disabled.
[Example]
Enable coldstart trap.
SWR2311P(config)#snmp-server enable trap coldstart
Disable traps.
Maintenance and operation functions
Setting value Description
rmon When RMON event is executed
termmonitor When terminal monitoring is detected
SWR2311P(config)#no snmp-server enable trap

4.10.3 Set system contact

[Syntax]
snmp-server contact contact
no snmp-server contact
[Parameter]
contact : Name (maximum 255 characters) to register as the system contact
[Initial value]
no snmp-server contact
[Input mode]
global configuration mode
[Description]
Sets the MIB variable sysContact.
sysContact is a variable that is typically used to enter the name of the administrator or contact.
If this command is executed with the "no" syntax, the setting is deleted.
[Example]
Set the system contact to "swr2311padmin@sample.com".
SWR2311P(config)#snmp-server contact swr2311padmin@sample.com

4.10.4 Set system location

[Syntax]
snmp-server location location
no snmp-server location
[Parameter]
location : Name to register as the system location (255 characters or less)
[Initial value]
no snmp-server location
Command Reference | Maintenance and operation functions | 53
[Input mode]
global configuration mode
[Description]
Sets the MIB variable sysLocation.
sysLocation is a variable that is generally used to enter the installed location of the unit.
If this command is executed with the "no" syntax, the setting is deleted.
[Example]
Set the system location as "MainOffice-1F".
SWR2311P(config)#snmp-server location MainOffice-1F

4.10.5 Set SNMP community

[Syntax]
snmp-server community community ro_rw
no snmp-server community community
[Parameter]
community : Community name (maximum 32 characters)
ro_rw : Access restriction
Setting value Description
ro Read only
rw Write allowed
[Initial value]
none
[Input mode]
global configuration mode
[Description]
Sets the SNMP community.
Up to 16 communities can be registered.
If this is executed with the "no" syntax, the specified community is deleted.
[Example]
Set the read-only community name to "public".
SWR2311P(config)#snmp-server community public ro
Delete the "public" community.
SWR2311P(config)#no snmp-server community public

4.10.6 Set SNMP view

[Syntax]
snmp-server view view oid type
no snmp-server view view
[Parameter]
view : View name (maximum 32 characters)
oid : MIB object ID
type : Type
54 | Command Reference |
Maintenance and operation functions
Setting value Description
include Include the specified object ID in management
exclude
[Initial value]
none
[Input mode]
global configuration mode
[Description]
Sets the SNMP MIB view.
The MIB view is the set of MIB objects to specify when allowing access rights.
Up to 16 MIB views can be registered.
The combination of the oid parameter and the type parameter indicates whether the MIB sub-tree following the specified object ID is or is not subject to management. Taking the oid parameter and the type parameter together as one entry, you can specify multiple entries for each MIB view, up to a maximum of 8.
When multiple entries are specified, the type parameter for the specified object ID takes priority for entries that are contained at a lower level within the specified object ID.
If this command is executed with the "no" syntax, the MIB view is deleted. It is not possible to delete individual entries.
[Example]
Specify the "most" view which shows the internet node (1.3.6.1) and below.
Exclude the specified object ID from management
SWR2311P(config)#snmp-server view most 1.3.6.1 include
Specify the "standard" view which shows the mib-2 node (1.3.6.1.2.1) and below.
SWR2311P(config)#snmp-server view standard 1.3.6.1.2.1 include

4.10.7 Set SNMP group

[Syntax]
snmp-server group group seclevel read read_view [write write_view]
snmp-server group group seclevel write write_view [read read_view]
no snmp-server group group
[Keyword]
read : Specify the MIB view that can be read by users belonging to this group
write : Specify the MIB view that can be written by users belonging to this group
[Parameter]
group : Group name (maximum 32 characters)
seclevel : Security level required of users belonging to this group
Setting value Description
noauth
auth Authentication / No encryption (authNoPriv)
priv Authentication / Encryption (authPriv)
read_view : Name of the MIB view (maximum 32 characters) that can be read by users belonging to this group
write_view : Name of the MIB view (maximum 32 characters) that can be written by users belonging to this group
No authentication / No encryption (noAuthNoPriv)
Command Reference | Maintenance and operation functions | 55
[Initial value]
none
[Input mode]
global configuration mode
[Description]
Sets the user group.
Access to MIB objects not included in the MIB view specified by this command is prohibited.
The MIB view is defined by the snmp-server view command.
The maximum number of entries is 16.
If this command is executed with the "no" syntax, the specified group setting is deleted.
[Example]
Create the user group "admins," and grant users belonging to the "admins" group full access rights to the "most" view.
SWR2311P(config)#snmp-server group admins priv read most write most
Create the user group "users," and grant users belonging to the "users" group read access rights to the "standard" view.
SWR2311P(config)#snmp-server group users auth read standard

4.10.8 Set SNMP user

[Syntax]
snmp-server user user group [auth auth auth_path [priv priv priv_path]]
no snmp-server user user
[Keyword]
auth : Set the authentication algorithm
priv : Set the encryption algorithm
[Parameter]
user : User name (maximum 32 characters)
group : Group name (maximum 32 characters)
auth : Authentication algorithm
Setting value Description
md5 HMAC-MD5-96
sha HMAC-SHA-96
auth_pass : Authentication password (8 or more characters, maximum 32 characters)
priv : Encryption algorithm
Setting value Description
des DES-CBC
aes AES128-CFB
priv_pass : Encryption password (8 or more characters, maximum 32 characters)
[Initial value]
none
[Input mode]
global configuration mode
56 | Command Reference |
[Description]
Specifies a user.
The group name of this command specifies the name defined by the snmp-server group command; according to the security level specified by the group setting, it specifies the algorithm and password that are used to authenticate and encrypt the content of communication.
It is not possible to only encrypt without authentication.
The maximum number of entries is 16.
The setting as to whether authentication and encryption are used, the algorithm, and the password, must match the user setting of the SNMP manager that is the other party.
If this command is executed with the "no" syntax, the setting of the specified user is deleted.
[Example]
Create "admin1" as a user. According to the specified group and the security level prescribed for that group, specify the protocol (SHA, AES) and password (passwd1234) used for authentication and encryption.
SWR2311P(config)#snmp-server user admin1 admins auth sha passwd1234 priv aes passwd1234
Create "user1" as a user. According to the specified group and the security level prescribed for that group, specify the protocol (SHA) and password (passwd5678) used for authentication and encryption.
Maintenance and operation functions
SWR2311P(config)#snmp-server user user1 users auth sha passwd5678

4.10.9 Show SNMP community information

[Syntax]
show snmp community
[Input mode]
unprivileged EXEC mode, priviledged EXEC mode
[Description]
Shows SNMP community information.
Shows the community name, and access mode.
[Example]
Show SNMP community information.
SWR2311P#show snmp community SNMP Community information Community Name: public Access: Read-Only
Community Name: private Access: Read-Write

4.10.10 Show SNMP view settings

[Syntax]
show snmp view
[Input mode]
unprivileged EXEC mode, priviledged EXEC mode
[Description]
Shows the contents of the SNMP view settings.
Shows the view name, object ID, and type.
[Example]
Show the contents of the SNMP view settings.
SWR2311P#show snmp view SNMP View information View Name: most
OID: 1.6.1 Type: include
View Name: standard OID: 1.3.6.1.2.1 Type: include

4.10.11 Show SNMP group settings

[Syntax]
show snmp group
[Input mode]
unprivileged EXEC mode, priviledged EXEC mode
[Description]
Shows the contents of the SNMP group settings.
Shows the group name, security level, reading view, and writing view.
[Example]
Show the contents of the SNMP group settings.
SWR2311P#show snmp group SNMP Group information Group Name: admins Security Level: priv Read View: most Write View: most
Command Reference | Maintenance and operation functions | 57
Group Name: users Security Level: auth Read View: standard Write View: standard

4.10.12 Show SNMP user settings

[Syntax]
show snmp user
[Input mode]
unprivileged EXEC mode, priviledged EXEC mode
[Description]
Shows the contents of the SNMP user settings.
Shows the engine ID, user name, affiliated group name, authentication method, and encryption method.
[Example]
Show the contents of the SNMP user settings.
SWR2311P#show snmp user SNMP User information EngineID: 0x8000049e0300a0deaeb90e
User Name: admin1 Group Name: admins Auth: sha Priv: aes
User Name: user1 Group Name: users Auth: sha Priv: none

4.11 RMON

4.11.1 Set RMON function

[Syntax]
rmon swtich
58 | Command Reference |
no rmon
[Parameter]
switch : RMON function operation
[Initial value]
rmon enable
[Input mode]
global configuration mode
[Description]
Sets the system-wide operation of the RMON function.
If this command is executed with the "no" syntax, the setting returns to the default.
[Note]
If this command is used to disable the system-wide RMON function, the following RMON group operations are disabled.
Ethernet statistical information group
History group
Alarm group
Event group
This command can be set using the private MIB ysrmonStatus (1.3.6.1.4.1.1182.3.7.1).
[Example]
Enable RMON function.
Maintenance and operation functions
Setting value Description
enable Enable RMON function
disable Disable RMON function
SWR2311P(config)#rmon enable
Disable RMON function.
SWR2311P(config)#rmon disable

4.11.2 Set RMON Ethernet statistical information group

[Syntax]
rmon statistics index [owner owner]
no rmon statistics index
[Parameter]
index : <1 - 65535>
Index of the Ethernet statistical information group (etherStatsIndex)
owner : Name of the Ethernet statistical information group owner (etherStatsOwner)
Maximum 127 characters
(if omitted : RMON_SNMP)
[Initial value]
none
[Input mode]
interface mode
[Description]
Enables the RMON Ethernet statistical information group setting for the applicable interface.
If this command is set, statistical information is collected, and the RMON MIB's etherStatsTable can be acquired.
This command can be specified a maximum number of eight times for the same interface.
If this command is executed with the "no" syntax, selete the setting and the collected statistical information.
Command Reference | Maintenance and operation functions | 59
[Note]
To enable the Ethernet statistical information group setting of the RMON function, it is necessary to enable the system-wide RMON function in addition to this command.
If this command is overwritten, the previously collected statistical information is deleted, and collection is once again started.
If the system-wide RMON function is disabled, collection of statistical information is interrupted. Subsequently, if the system­wide RMON function is enabled, the previously collected statistical data is deleted, and collection is once again started.
[Example]
Enable the RMON Ethernet statistical information group settings for port1.1.
SWR2311P(config)#interface port1.1 SWR2311P(config-if)#rmon statistics 1

4.11.3 Set RMON history group

[Syntax]
rmon history index [buckets buckets] [interval interval]
no rmon history index
[Parameter]
index : <1 - 65535>
[owner owner]
Index of history group (historyControlIndex)
buckets : <1 - 65535>
Number of history group items to maintain (historyControlBucketsRequested)
(if omitted : 50)
interval : <1 - 3600>
Interval at which to save history group items (seconds) (historyControlInterval)
(if omitted : 1800)
owner : Name of history group owner (historyControlOwner)
Maximum 127 characters
(if omitted : RMON_SNMP)
[Initial value]
none
[Input mode]
interface mode
[Description]
Enables RMON history group settings for the applicable interface.
If this command is set, it will be possible to acquire the RMON MIB's historyControlTable. After setting this command, history information is collected at the specified interval, and the RMON MIB's etherHistoryTable can be acquired.
This command can be specified a maximum number of eight times for the same interface.
If this command is executed with the "no" syntax, delete the setting and the collected historical information.
[Note]
To enable the history group setting of the RMON function, it is necessary to enable the system-wide RMON function in addition to this command.
If this command is overwritten, the previously collected historical information is deleted, and collection is once again started.
If the system-wide RMON function is disabled, collection of historical information is interrupted. Subsequently, if the system­wide RMON function is enabled, the previously collected historical data is deleted, and collection is once again started.
[Example]
Enable the RMON historical group settings for port1.1.
SWR2311P(config)#interface port1.1 SWR2311P(config-if)#rmon history 1
60 | Command Reference |
Maintenance and operation functions

4.11.4 Set RMON event group

[Syntax]
rmon event index type community [description description] [owner owner] no rmon event index
[Parameter]
index : <1 - 65535>
type : Event type (eventType)
community : Community name (eventCommunity)
Index of event group (eventIndex)
Setting value Description
log Record in log
trap Send SNMP trap
log-trap Record in log and send SNMP trap
Maximum 127 characters
This can be specified if type is "trap" or "log-trap".
description : Description of event (eventDescription)
Maximum 127 characters
(if omitted : RMON_SNMP)
owner : Name of event group owner (eventOwner)
Maximum 127 characters
(if omitted : RMON_SNMP)
[Initial value]
none
[Input mode]
global configuration mode
[Description]
Enables the RMON event group settings.
If this command is set, it will be possible to acquire the RMON MIB's eventTable. Use the rmon alarm command to set the event group for this command.
If this command is executed with the "no" syntax, the setting value is deleted.
[Note]
To enable the event group setting of the RMON function, it is necessary to enable the system-wide RMON function in addition to this command.
In order for RMON to send an SNMP trap, you must have made SNMP trap transmission settings.
[Example]
After making SNMP trap settings, enable the RMON event group setting. Set the type of event as "log-trap", and the community name of the trap as "public".
SWR2311P(config)#snmp-server host 192.168.100.3 traps version 2c public SWR2311P(config)#snmp-server enable trap rmon SWR2311P(config)#rmon event 1 log-trap public

4.11.5 Set RMON alarm group

[Syntax]
rmon alarm index variable interval interval [type] rising-threshold rising_threshold event rising_event-index
falling-threshold falling_threshold event falling_event_index [alarmstartup startup] [owner owner]
rmon alarm index variable interval interval [type] rising-threshold rising_threshold event rising_event-index [owner owner]
Command Reference | Maintenance and operation functions | 61
rmon alarm index variable interval interval [type] falling-threshold falling_threshold event falling_event_index
[owner owner]
no rmon alarm index
[Parameter]
index : <1-65535>
Index of alarm group (alarmIndex)
variable : MIB object to be monitored (alarmVariable)
interval : <1-2147483647>
Sampling interval (seconds)(alarmInterval)
type : Sampling type (alarmSampleType)
Setting value Description
absolute
delta
(if omitted : absolute)
rising_threshold : <1-2147483647>
Upper threshold value (alarmRisingThreshold)
rising_event_index : <1-65535>
Event index (alarmRisingEventIndex)
falling_threshold : <1-2147483647>
Lower threshold value (alarmFallingThreshold)
falling_event_index: <1-65535>
Event index (alarmFallingEventIndex)
startup : <1-3>
Threshold value used for first alarm decision (alarmStartupAlarm)
Compare by absolute value. Directly compare sample value and threshold value
Compare by relative value. Compare the difference between the latest sample value and the previous sample value
Setting value Description
1 Use only upper threshold value (risingAlarm)
2 Use only lower threshold value (fallingAlarm)
3
(if omitted : 3)
owner : Name of alarm group owner (alarmOwner)
maximum 127 characters
(if omitted : RMON_SNMP)
[Initial value]
none
[Input mode]
global configuration mode
[Description]
Enables the RMON alarm group settings.
Use both upper threshold value and lower threshold value (risingOrFallingAlarm)
62 | Command Reference |
Set variable as the MIB object that will be the target of monitoring by the RMON alarm group. Of the etherStatsEntry(.
1.3.6.1.2.1.16.1.1.1) MIB objects, variable can be specified only as a MIB object that has a counter type. This can be specified
in the following three formats.
etherStatsEntry.X.Y
(OID name under etherStatsEntry).Y
.1.3.6.1.2.1.16.1.1.1.X.Y
For example, if specifying etherStatsPkts.1(.1.3.6.1.2.1.16.1.1.1.5.1), it can be specified in any of the following formats.
etherStatsEntry.X.Y etherStatsEntry.5.1
(OID name under etherStatsEntry).Y etherStatsPkts.1
.1.3.6.1.2.1.16.1.1.1.X.Y .1.3.6.1.2.1.16.1.1.1.5.1
You can use a format that specifies either rising_threshold or falling_threshold, not both. In this case, the following values are used for parameters whose setting is omitted.
Use only rising_threshold
falling_threshold : Same value as rising_threshold
falling_event_index : Same value as rising_event_index
startup : 1 (Use only upper_threshold)
Use only falling_threshold
rising_threshold : Same value as falling_threshold
rising_event_index : Same value as falling_event_index
startup : 2 (Use only lower_threshold)
If this command is set, it will be possible to acquire the RMON MIB's alarmTable.
If this command is executed with the "no" syntax, the setting value is deleted.
[Note]
To enable the alarm group setting of the RMON function, it is necessary to enable the system-wide RMON function in addition to this command.
The MIB object specified in variable is a MIB object of the Ethernet statistical information group. If an Ethernet statistical information group possessing the applicable index has not been created, this command returns an error.
The Ethernet statistical information group can be created by the rmon statistics command. If the Ethernet statistical information group being used by this command is deleted, this command is also deleted.
The event index specifies the index that is set by the rmon event command. If the event group being used by this command is deleted, this command is also deleted.
The rising_threshold value must be a higher value than the falling_threshold value.
If this command is overwritten, the previous sampling data is deleted, and sampling is once again started.
If the system-wide RMON function is disabled, sampling is interrupted. Subsequently, if the system-wide RMON function is enabled, the previous sampling data is deleted, and sampling is once again started.
[Example]
Enable the RMON alarm group settings with the following conditions.
The MIB object to be monitored is etherStatsPkts.1.
The sampling interval is 180 seconds.
The sampling type is delta.
The upper threshold value is 3000, and the event when rising above the upper threshold value is 1.
The lower threshold value is 2000, and the event when falling below the lower threshold value is 1.
Maintenance and operation functions
Format Description
SWR2311P(config)#rmon alarm 1 etherStatsPkts.1 interval 180 delta rising-threshold 3000 event 1 falling-threshold 2000 event 1

4.11.6 Show RMON function status

[Syntax]
show rmon
[Input mode]
unprivileged EXEC mode, priviledged EXEC mode
Command Reference | Maintenance and operation functions | 63
[Description]
Shows the settings and status of the RMON function.
The following items are shown.
System-wide RMON function settings
RMON function settings for each group
Ethernet statistical information group
History group
Alarm group
Event group
[Example]
SWR2311P>show rmon rmon: Enable
statistics: rmon collection index 1 stats->ifindex = 5001 input packets 7, bytes 600, drop events 0, multicast packets 4 output packets 17, bytes 2091, multicast packets 17 broadcast packets 0
history: history index = 1 data source ifindex = 5001 buckets requested = 50 buckets granted = 50 Interval = 1800 Owner RMON_SNMP
event: event Index = 1 Description RMON_SNMP Event type Log Event community name RMON_SNMP Last Time Sent = 00:00:58 Owner RMON_SNMP
alarm: alarm Index = 1 alarm status = VALID alarm Interval = 15 alarm Type is Absolute alarm Value = 0 alarm Rising Threshold = 10 alarm Rising Event = 1 alarm Falling Threshold = 7 alarm Falling Event = 1 alarm Startup Alarm = 3 alarm Owner is RMON_SNMP

4.11.7 Show RMON Ethernet statistical information group status

[Syntax]
show rmon statistics
[Input mode]
unprivileged EXEC mode, priviledged EXEC mode
[Description]
Shows the settings and status of the RMON Ethernet statistical information group.
The following items are shown.
Index
Applicable interface
Input packets
Output packets
[Example]
SWR2311P>show rmon statistics
64 | Command Reference |
rmon collection index 1 stats->ifindex = 5001 input packets 7, bytes 600, drop events 0, multicast packets 4 output packets 17, bytes 2091, multicast packets 17 broadcast packets 0
Maintenance and operation functions

4.11.8 Show RMON history group status

[Syntax]
show rmon history
[Input mode]
unprivileged EXEC mode, priviledged EXEC mode
[Description]
Shows the settings and status of the RMON history group.
The following items are shown.
Index
Applicable interface
Number of history group items to maintain
Interval at which to save history group items
Owner name
[Example]
SWR2311P>show rmon history history index = 1 data source ifindex = 5001 buckets requested = 50 buckets granted = 50 Interval = 1800 Owner RMON_SNMP

4.11.9 Show RMON event group status

[Syntax]
show rmon event
[Input mode]
unprivileged EXEC mode, priviledged EXEC mode
[Description]
Shows the settings and status of the RMON event group.
The following items are shown.
Index
Description of event
Type of event
Community name when sending trap
Time of executing event
Owner name
[Example]
SWR2311P>show rmon event event Index = 1 Description RMON_SNMP Event type Log Event community name RMON_SNMP Last Time Sent = 00:00:58 Owner RMON_SNMP

4.11.10 Show RMON alarm group status

[Syntax]
show rmon alarm
[Input mode]
unprivileged EXEC mode, priviledged EXEC mode
[Description]
Shows the settings and status of the RMON alarm group.
The following items are shown.
Index
Alarm status
MIB object to be monitored
Sampling interval
Sampling type
Measured value
Upper threshold value
Event for upper threshold value
Lower threshold value
Event for lower threshold value
Startup alarm
Owner name
[Example]
SWR2311P>show rmon alarm alarm Index = 1 alarm status = VALID alarm Interval = 15 alarm Type is Absolute alarm Value = 0 alarm Rising Threshold = 10 alarm Rising Event = 1 alarm Falling Threshold = 7 alarm Falling Event = 1 alarm Startup Alarm = 3 alarm Owner is RMON_SNMP
Command Reference | Maintenance and operation functions | 65

4.11.11 Clear counters of the RMON Ethernet statistical information group

[Syntax]
rmon clear counters
[Input mode]
interface mode
[Description]
Clears the counters of the RMON Ethernet statistical information group for the applicable interface.
[Example]
Clear the counters of the RMON Ethernet statistical information group for port1.1.
SWR2311P(config)#interface port1.1 SWR2311P(config-if)#rmon clear counters

4.12 Telnet server

4.12.1 Start Telnet server and change listening port number

[Syntax]
telnet-server enable [port]
telnet-server disable
no telnet-server
[Keyword]
enable : Telnet server is enabled
disable : Telnet server is disable
66 | Command Reference |
[Parameter]
port : <1-65535>
[Initial value]
telnet-server disable
[Input mode]
global configuration mode
[Description]
Enables the Telnet server. You can also specify the listening TCP port number.
If this command is executed with the "no" syntax, the function is disabled.
[Example]
Start the Telnet server with 12345 as the listening port number.
SWR2311P(config)#telnet-server enable 12345
Maintenance and operation functions

4.12.2 Show Telnet server settings

[Syntax]
show telnet-server
[Input mode]
priviledged EXEC mode
[Description]
Shows the settings of the Telnet server. The following items are shown.
Telnet server function enabled/disabled status
Listening port number
VLAN interface that is permitted to access the TELNET server
Filter that controls access to the TELNET server
[Example]
Show the settings of the Telnet server.
Listening port of the Telnet server (if omitted: 23)
SWR2311P#show telnet-server Service:Enable Port:23 Management interface(vlan): 1 Interface(vlan):1, 2, 3 Access: deny 192.168.100.5 permit 192.168.100.0/24

4.12.3 Set host that can access the Telnet server

[Syntax]
telnet-server interface interface no telnet-server interface interface
[Parameter]
interface : VLAN interface name
[Initial value]
none
[Input mode]
global configuration mode
[Description]
Sets the VLAN interface that allows access to the Telnet server.
If this command is executed with the "no" syntax, the specified interface is deleted.
This command can be used to specify up to eight items, which are applied in the order that they are specified.
If this command is not set, access is permitted only from the management VLAN.
Command Reference | Maintenance and operation functions | 67
[Note]
If telnet-server enable is not specified, this command does not function.
[Example]
Allow access to the Telnet server from the hosts connected to VLAN #1 and VLAN #2.
SWR2311P(config)#telnet-server interface vlan1 SWR2311P(config)#telnet-server interface vlan2

4.12.4 Restrict access to the TELNET server according to the IP address of the client

[Syntax]
telnet-server access action info no telnet-server access [action info]
[Parameter]
action : Specifies the action for the access condition
Setting value Description
deny "Deny" the condition
permit "Permit" the condition
info : Specifies the transmission-source IPv4 address or IPv6 address that is the condition.
Setting value Description
A.B.C.D Specifies an IPv4 address (A.B.C.D)
A.B.C.D/M
X:X::X:X Specifies an IPv6 address (X:X::X:X)
X:X::X:X/M
any Applies to all IPv4 addresses and IPv6 addresses
[Initial value]
none
[Input mode]
global configuration mode
[Description]
Restrict access to the TELNET server according to the client terminal's IPv4/IPv6 address.
Up to eight instances of this command can be set, and those that are specified earlier take priority for application.
If this command is set, all access that does not satisfy the registered conditions is denied.
However, if this command is not set, all access is permitted.
If this command is executed with the "no" syntax, the specified setting is deleted.
If this command is executed with the "no" syntax, and parameter is omitted, all settings are deleted.
[Note]
If telnet-server enable is not specified, this command does not function.
[Example]
Permit access to the TELNET server only from 192.168.1.1 and the 192.168.10.0/24 segment.
Specifies an IPv4 address (A.B.C.D) with subnet mask length (Mbit)
Specifies an IPv6 address (X:X::X:X) with subnet mask length (Mbit)
SWR2311P(config)#telnet-server access permit 192.168.1.1 SWR2311P(config)#telnet-server access permit 192.168.10.0/24
Deny only access to the TELNET server from the segment 192.168.10.0/24.
SWR2311P(config)#telnet-server access deny 192.168.10.0/24 SWR2311P(config)#telnet-server access permit any
68 | Command Reference |

4.13 Telnet client

4.13.1 Start Telnet client

[Syntax]
telnet host [port]
[Parameter]
host : Remote host name, IPv4 address (A.B.C.D), or IPv6 address(X:X::X:X)
port : <1-65535>
[Initial value]
なし
[Input mode]
priviledged EXEC mode
[Description]
Connects to the specified host via Telnet.
[Example]
Connect via Telnet to port number 12345 of the host at IPv4 address 192.168.100.1.
Maintenance and operation functions
If you specify an IPv6 link local address, you must also specify the output interface (fe80::X%vlanN format)
Port number to use (if omitted: 23)
SWR2311P#telnet 192.168.100.1 12345
Connect via Telnet to port number 12345 of the host at IPv6 address fe80::2a0:deff:fe11:2233.
SWR2311P#telnet fe80::2a0:deff:fe11:2233%vlan1 12345

4.13.2 Enable Telnet client

[Syntax]
telnet-client switch
no telnet-client
[Parameter]
switch : Whether to enable TELNET client
Setting value Description
enable Enable
disable Disable
[Initial value]
telnet-client disable
[Input mode]
global configuration mode
[Description]
Enables use of the telnet command as a Telnet client.
If this command is executed with the "no" syntax, the Telnet client is disabled.
[Example]
Enable the Telnet client.
SWR2311P(config)#telnet-client enable

4.14 TFTP server

4.14.1 Start TFTP server and change listening port number

[Syntax]
tftp-server enable [port]
tftp-server disable
no tftp-server
[Keyword]
enable : TFTP server is enabled
disable : TFTP server is disable
[Parameter]
port : <1-65535>
Listening port number of the TFTP server (if omitted: 69)
[Initial value]
tftp-server disable
[Input mode]
global configuration mode
[Description]
Enables the TFTP server. You can also specify the listening TCP port number.
If this command is executed with the "no" syntax, the TFTP server is disabled.
[Example]
Start the TFTP server with 12345 as the listening port number.
Command Reference | Maintenance and operation functions | 69
SWR2311P(config)#tftp-server enable 12345

4.14.2 Show TFTP server settings

[Syntax]
show tftp-server
[Input mode]
priviledged EXEC mode
[Description]
Shows the settings of the TFTP server. The following items are shown.
TFTP server function enabled/disabled status
Listening port number
VLAN interface that is permitted to access the TFTP server
[Example]
Show the settings of the TFTP server.
SWR2311P#show tftp-server Service:Enable Port:69 Management interface(vlan): 1 Interface(vlan):1, 2, 3

4.14.3 Set hosts that can access the TFTP server

[Syntax]
tftp-server interface interface
no tftp-server interface interface
[Parameter]
interface : VLAN interface name
[Initial value]
none
70 | Command Reference |
[Input mode]
global configuration mode
[Description]
Sets the VLAN interface that allows access to the TFTP server.
If this command is executed with the "no" syntax, the specified interface is deleted
This command can be used to specify up to eight items, which are applied in the order that they are specified.
If this command is not set, access is permitted only from the management VLAN.
[Example]
Allow access to the TFTP server from the hosts connected to VLAN #1 and VLAN #2.
SWR2311P(config)#tftp-server interface vlan1 SWR2311P(config)#tftp-server interface vlan2
Maintenance and operation functions

4.15 HTTP server

4.15.1 Start HTTP server and change listening port number

[Syntax]
http-server enable [port]
http-server disable
no http-server
[Keyword]
enable : HTTP server is enabled
disable : HTTP server is disabled
[Parameter]
port : <1-65535>
Listening port number of the HTTP server (if omitted: 80)
[Initial value]
http-server disable
[Input mode]
global configuration mode
[Description]
Enables the HTTP server. You can also specify the listening TCP port number.
If this command is executed with the "no" syntax, the function is disabled.
[Example]
Start the HTTP server with 8080 as the listening port number.
SWR2311P(config)#http-server enable 8080

4.15.2 Start secure HTTP server and change listening port number

[Syntax]
http-server secure enable [port]
http-server secure disable
no http-server secure
[Keyword]
enable : Enable the secure HTTP server
disable : Disable the secure HTTP server
[Parameter]
port : <1-65535>
Command Reference | Maintenance and operation functions | 71
Listening port number of the secure HTTP server (if omitted: 443)
[Initial value]
http-server secure disable
[Input mode]
global configuration mode
[Description]
Enables the secure HTTP server. You can also specify the listening TCP port number.
If this command is executed with the "no" syntax, the function is disabled.
If the secure HTTP server is enabled, encryption is performed in software, meaning that depending on the amount of traffic, the CPU usage rate will rise.
To avoid a high usage rate, it is desirable to avoid access by multiple users to an automatically updated web page such as the dashboard or the LAN map.
[Example]
Start the secure HTTP server with 8080 as the listening port number.
SWR2311P(config)#http-server secure enable 8080

4.15.3 Show HTTP server settings

[Syntax]
show http-server
[Input mode]
priviledged EXEC mode
[Description]
Shows the settings of the HTTP server. The following items are shown.
HTTP server function enabled/disabled status
HTTP server's listening port number
VLAN interface that is permitted to access the HTTP server
Filter that controls access to the HTTP server
Secure HTTP server function enabled/disabled status
Log-in timeout time
[Example]
Show the settings of the HTTP server.
SWR2311P#show http-server HTTP :Enable(80) HTTPS:Disable Management interface(vlan): 1 Interface(vlan):1 Access:None Login timeout:30 min 51 sec

4.15.4 Set hosts that can access the HTTP server

[Syntax]
http-server interface interface no http-server interface interface
[Parameter]
interface : VLAN interface name
[Initial value]
none
[Input mode]
global configuration mode
[Description]
Sets the VLAN interface that allows access to the HTTP server.
72 | Command Reference |
If this command is executed with the "no" syntax, the specified interface is deleted.
This command can be used to specify up to eight items, which are applied in the order that they are specified.
If this command is not set, access is permitted only from the management VLAN.
[Example]
Allow access to the HTTP server from the hosts connected to VLAN #1 and VLAN #2.
SWR2311P(config)#http-server interface vlan1 SWR2311P(config)#http-server interface vlan2
Maintenance and operation functions

4.15.5 Restrict access to the HTTP server according to the IP address of the client

[Syntax]
http-server access action info
no http-server access [action info]
[Parameter]
action : Specifies the action for the access condition
Setting value Description
deny "Deny" the condition
permit "Permit" the condition
info : Specifies the transmission-source IPv4 address or IPv6 address that is the condition.
Setting value Description
A.B.C.D Specifies an IPv4 address (A.B.C.D)
A.B.C.D/M
X:X::X:X Specifies an IPv6 address (X:X::X:X)
X:X::X:X/M
any Applies to all IPv4 addresses and IPv6 addresses
[Initial value]
none
[Input mode]
global configuration mode
[Description]
Restrict access to the HTTP server according to the client terminal's IPv4/IPv6 address.
Up to eight instances of this command can be set, and those that are specified earlier take priority for application.
If this command is set, all access that does not satisfy the registered conditions is denied.
However, if this command is not set, all access is permitted.
If this command is executed with the "no" syntax, the specified setting is deleted.
If this command is executed with the "no" syntax, and parameter is omitted, all settings are deleted.
[Note]
If http-server enable or http-server secure enable are not specified, this command does not function.
[Example]
Permit access to the HTTP server only from 192.168.1.1 and the 192.168.10.0/24 segment.
Specifies an IPv4 address (A.B.C.D) with subnet mask length (Mbit)
Specifies an IPv6 address (X:X::X:X) with subnet mask length (Mbit)
SWR2311P(config)#http-server access permit 192.168.1.1 SWR2311P(config)#http-server access permit 192.168.10.0/24
Deny access to the HTTP server only from 192.168.10.0/24 segment.
Command Reference | Maintenance and operation functions | 73
SWR2311P(config)#http-server access deny 192.168.10.0/24 SWR2311P(config)#http-server access permit any

4.15.6 Web GUI display language

[Syntax]
http-server language lang
no http-server language
[Parameter]
lang : Specify the language
Setting value Description
japanese Japanese
english English
[Initial value]
http-server language japanese
[Input mode]
global configuration mode
[Description]
Sets the Web GUI display language.
If this command is executed with the "no" syntax, the setting returns to the default.
[Example]
Set the Web GUI display language to English.
SWR2311P(config)#http-server language english

4.15.7 Set log-in timeout time for HTTP server

[Syntax]
http-server login-timeout min [sec]
no http-server login-timeout
[Parameter]
min : <0-35791>
Timeout time (minutes)
sec : <0-2147483>
Timeout time (seconds)
[Initial value]
http-server login-timeout 5
[Input mode]
global configuration mode
[Description]
Specify the time until automatic logout when there has been no access to the HTTP server.
If sec is omitted, 0 is specified.
If this command is executed with the "no" syntax, the setting returns to the default.
[Note]
The smallest value that can be specified is one minute.
[Example]
Set the timeout time for the HTTP server to 2 minutes 30 seconds.
SWR2311P(config)#http-server login-timeout 2 30
74 | Command Reference |
Maintenance and operation functions

4.16 HTTP Proxy

4.16.1 Enable HTTP Proxy function

[Syntax]
http-proxy switch
no http-proxy
[Parameter]
switch : Whether to enable HTTP Proxy function
[Initial value]
http-proxy disable
[Input mode]
global configuration mode
[Description]
Enables the HTTP Proxy function of the HTTP server.
If this command is executed with the "no" syntax, the function is disabled.
[Example]
Enable the HTTP Proxy function of the HTTP server.
Setting value Description
enable Enable
disable Disable
SWR2311P(config)#http-proxy enable

4.16.2 Set HTTP Proxy function timeout

[Syntax]
http-proxy timeout time
no http-proxy timeout [time]
[Parameter]
time : <1-180>
Time (seconds) until timeout occurs
[Initial value]
http-proxy timeout 60
[Input mode]
global configuration mode
[Description]
Specifies the timeout time when acquiring the web GUI of an L2MS slave.
If this command is executed with the "no" syntax, the setting will be 60 seconds.
[Example]
Set HTTP Proxy function's timeout duration to two minutes.
SWR2311P(config)#http-proxy timeout 120

4.16.3 Show HTTP Proxy function settings

[Syntax]
show http-proxy
[Input mode]
priviledged EXEC mode
[Description]
Shows the settings of the HTTP Proxy function. The following items are shown.
HTTP Proxy function enabled/disabled status
Timeout time
[Example]
Show the settings of the HTTP Proxy function.
SWR2311P#show http-proxy Service:Enable Timeout:60

4.17 SSH server

4.17.1 Start SSH server and change listening port number

[Syntax]
ssh-server enable [port] ssh-server disable
no ssh-server
[Keyword]
enable : SSH server is enabled
Command Reference | Maintenance and operation functions | 75
disable : SSH server is disable
[Parameter]
port : <1-65535>
Listening port of the SSH server (if omitted: 22)
[Initial value]
ssh-server disable
[Input mode]
global configuration mode
[Description]
Enables the SSH server. You can also specify the listening TCP port number.
In order to enable the SSH server, the host key must be created in advance (ssh-server host key generate).
If this command is executed with the "no" syntax, disable the SSH server.
[Note]
In order to log in from the SSH client, the user name and password must be registered in advance (username).
[Example]
Start the SSH server with 12345 as the listening port number.
SWR2311P#ssh-server host key generate SWR2311P#configure terminal SWR2311P(config)#ssh-server enable 12345

4.17.2 Show SSH server settings

[Syntax]
show ssh-server
[Input mode]
priviledged EXEC mode
[Description]
Shows the settings of the SSH server.
The following items are shown.
SSH server function enabled/disabled status
Listening port number
Whether SSH server host key exists
76 | Command Reference |
VLAN interface permitted to access the SSH server Filter that controls access to the SSH server
[Example]
Show the settings of the SSH server.
SWR2311P#show ssh-server Service:Enable Port:23 Hostkey:Generated Management interface(vlan): 1 Interface(vlan):1, 2, 3 Access: deny 192.168.100.5 permit 192.168.100.0/24
Maintenance and operation functions

4.17.3 Set host that can access the SSH server

[Syntax]
ssh-server interface ifname
no ssh-server interface ifname
[Parameter]
ifname : VLAN interface name
[Initial value]
none
[Input mode]
global configuration mode
[Description]
Sets the VLAN interface that allows access to the SSH server.
If this command is executed with the "no" syntax, delete the specified interface.
Up to eight instances of this command can be set, and those that are specified earlier take priority for application.
If this command is not set, access is permitted only from the maintenance VLAN.
[Example]
Allow access to the SSH server from the hosts connected to VLAN #1 and VLAN #2.
SWR2311P(config)#ssh-server interface vlan1 SWR2311P(config)#ssh-server interface vlan2

4.17.4 Set client that can access the SSH server

[Syntax]
ssh-server access action info
no ssh-server access [action info]
[Parameter]
action : Specifies the action for the access condition
Setting value Description
deny "Deny" the condition
permit "Permit" the condition
info : Specifies the transmission-source IPv4 address or IPv6 address that is the condition
Setting value Description
A.B.C.D Specifies an IPv4 address (A.B.C.D)
Command Reference | Maintenance and operation functions | 77
Setting value Description
A.B.C.D/M
X:X::X:X Specifies an IPv6 address (X:X::X:X)
X:X::X:X/M
any Applies to all IPv4 addresses and IPv6 address
[Initial value]
none
[Input mode]
global configuration mode
[Description]
Restrict access to the SSH according to the client terminal's IPv4/IPv6 address.
Up to eight instances of this command can be set, and those that are specified earlier take priority for application.
If this command is set, all access that does not satisfy the registered conditions is denied.
However, if this command is not set, all access is permitted.
If this command is executed with the "no" syntax, the specified setting is deleted.
If parameters are omitted with the "no" syntax, the all setting are deleted.
[Note]
If ssh-server enable command is not specified, this command does not function.
[Example]
Permit access to the SSH server only from 192.168.1.1 and the 192.168.10.0/24 segment.
Specifies an IPv4 address (A.B.C.D) with subnet mask length (Mbit)
Specifies an IPv6 address (X:X::X:X) with subnet mask length (Mbit)
SWR2311P(config)#ssh-server access permit 192.168.1.1 SWR2311P(config)#ssh-server access permit 192.168.10.0/24
Deny only access to the SSH server from the segment 192.168.10.0/24.
SWR2311P(config)#ssh-server access deny 192.168.10.0/24 SWR2311P(config)#ssh-server access permit any

4.17.5 Generate SSH server host key

[Syntax]
ssh-server host key generate [bit bit]
[Parameter]
bit : 1024, 2048
Bit length of RSA key
[Initial value]
none
[Input mode]
priviledged EXEC mode
[Description]
Sets the host RSA key and host DSA key of the SSH server.
For the RSA key, the bit parameter can be used to specify the number of bits in the generated key. The DSA key generates a 1024-bit key.
[Note]
In order to use the SSH server function, this command must be executed in advance to generate the host keys.
If this command is executed when the host keys have already been specified, the user is asked to confirm whether to update the host keys.
78 | Command Reference | Maintenance and operation functions
It might take several minutes of time to generate the host keys.
This command can be executed only if the SSH server is disabled.
[Example]
Generate a 2048-bit RSA key and a DSA key.
SWR2311P#ssh-server host key generate bit 2048

4.17.6 Clear SSH server host key

[Syntax]
clear ssh-server host key
[Input mode]
priviledged EXEC mode
[Description]
Deletes the host RSA key and host DSA key of the SSH server.
[Note]
This command can be executed only if the SSH server is disabled.
[Example]
Delete the host RSA key and host DSA key.
SWR2311P#clear ssh-server host key

4.17.7 Show SSH server public key

[Syntax]
show ssh-server host key [fingerprint]
[Keyword]
fingerprint : Show key fingerprint
[Input mode]
priviledged EXEC mode
[Description]
Shows the public key of the SSH server.
If the "fingerprint" keyword is specified, the public key's key length, key fingerprint, and ASCII art are shown.
[Note]
Both the MD5 and SHA256 key fingerprint hash algorithms are shown.
[Example]
Show the public key.
SWR2311P#show ssh-server host key ssh-dss XXXXXXXXXX1kc3MAAAEBAPTB9YYdgvE+4bbhF4mtoIJri+ujdAIfgr4hL/0w7Jlvc50eXg sXJoCqlPlsLRGHOOzxVYbOouPCUV/jPFCatgOIii8eJNzUqSB1e6MOFtGjmESrdYiafyIUhps+YWqd TlIo0AFnVUKMqAbYODA3Cy7kNVptYRK8rcKWk1ChbatWnT/Z7RcmEVEou0qlOyp79b3DcpFM7ofa4d 9ySb6mj06Y/Ok8lL5qFhCHmGOGtqJTKZsqb5VnPz8FYC8t1s6/tpyrUa5aG2af/yTEa5U5BDYAuc88 wNIUG9alGo/8WIHiBJAm432o7UPqTHWO/5nYEQu44gmEPQrPGJ65GT8AAAAVAOpjE0Jyei+4c5qWSF PXUgrLf5HAAABAQCnnPO+ZjWZcZwGa6LxTGMczAjDy5uwD4DWBbRxsPKaXlsicJGC0aridnTthIGa8 ARypDjhpL1a37SDezx8yClQ5vh+4SPLdS1hdSSzXXE+MXIICXnOVPdiKC4ia10n81tMxW/EPw4SqFP 77r7VvCE/JpXv82AN2JTJ/HAn3X7lvMyCsKZLoWrEcEcBH5anvAQKByVt7RerToZ4vSgodskv7nyXX XXXXXXX
ssh-rsa XXXXXXXXXX1yc2EAAAABIwAAAQEAwvAZK18jKTCHIHQfRV4r7UOYChX0oeKjBbuuLSDhSH WmhpG3xxJO0pDIedSF3Knb7LX2SfymQYJ7XYIqMjmU0oziv/zi+De/z3M7wJHQUwfMZEDAdR6Mx39w 6Q04/ehQcaszjXi+0Al2wG/kk56lAU23CW/i21o//5GZTzkFKyEJUtWauHWEW9glF5Yy7F64PesqoH 6h5oDNK7LhlT7s4QXRnUJphIlINrW278Dnvyry3liR+tgTJAq3cGHfYsaQCdankDilIQhUazUY0vJO /gjYCjMuWH6Ek/cst+PCtgnt0XV5Bl079uRUmcACs2pDX5EWrwbPXXXXXXXXXX==
Show the key fingerprint of the public key.
SWR2311P#show ssh-server host key fingerprint
Command Reference | Maintenance and operation functions | 79
ssh-dss 1024 MD5:XX:XX:a8:b9:51:93:9d:d2:ec:40:1a:43:66:3a:XX:XX +---[DSA 1024]----+ | .* . | |=*=+. o | |E+X+ o | | o . + = + . |
|.. ..O X . |
|oo=.B.*.o | | o + S o | | . o | | E | +------[MD5]------+ 1024 SHA256:XXXXearwsCXvYTfIKrS6yYSrjMh0fW6W0Bw7aAOXXXX +---[DSA 1024]----+ | . +E. | | o o | | o X S | | + = * . | | o . B * . | | + o . | | * * + | |X+.@ +o= | |@*o.= o. | +----[SHA256]-----+
ssh-rsa 2048 MD5:XX:XX:b8:07:e3:5e:57:b8:80:e3:fc:b3:24:17:XX:XX +---[RSA 2048]----+ | | |...* | |*+. | | . | | . + | | | | E | | . B.. | | . oo | +------[MD5]------+ 2048 SHA256:XXXXMkUuEbkJggPD68UoR+gobWPhgu7qqXzE8iUXXXX +---[RSA 2048]----+ |*.==+ | |*o+= . . | |*=o. . S | | * S . . | | + B * o | | = = . . . | | o | | . | |. * * | +----[SHA256]-----+

4.17.8 Set SSH client alive checking

[Syntax]
ssh-server client alive enable [interval [count]]
ssh-server client alive disable
no ssh-server client alive
[Parameter]
interval : <1-2147483647>
Client alive checking interval (seconds, if omitted: 100)
count : <1-2147483647>
Maximum count for client alive checking (if omitted: 3)
[Initial value]
ssh-server client alive disable
[Input mode]
global configuration mode
80 | Command Reference |
[Description]
Sets whether to perform client alive checking.
A message requesting a response is sent to the client at intervals of the number of seconds specified by "interval". If there is no response for a successive number of times specified by "count", the connection with this client is cut and the session is ended.
If this command is executed with the "no" syntax, the setting returns to the default.

4.18 SSH client

4.18.1 Start SSH client

[Syntax]
ssh [user@]
[Parameter]
user : User name used when logging in to the remote host
host : Remote host name, IPv4 address (A.B.C.D), or IPv6 address (X:X::X:X)
port : <1-65535>
Maintenance and operation functions
host [port]
If you specify an IPv6 link local address, you must also specify the output interface (fe80::X%vlanN format)
Port number to use (if omitted: 22)
[Initial value]
none
[Input mode]
priviledged EXEC mode
[Description]
Connects to the specified host via SSH.
If user is omitted, access the SSH server using the currently logged-in user name.
If user is omitted when logged in as an unnamed user, "root" is used.
[Note]
The escape character is the tilde (~). The escape character is recognized only if it is input at the beginning of the line.
If the escape character is input twice in succession at the beginning of the line, the escape character is used as input to the server.
If the escape character followed by a period (.) is input, the connection is forcibly closed.
If the escape character followed by a question mark (?) is input, a list of escape inputs is shown.
[Example]
To the host at IPv4 address 192.168.100.1, connect via SSH using user name "uname" and port number 12345.
SWR2311P#ssh uname@192.168.100.1 12345
To the host at IPv6 address fe80::2a0:deff:fe11:2233, connect via SSH using user name "uname" and port number 12345.
SWR2311P#ssh uname@fe80::2a0:deff:fe11:2233%vlan1 12345

4.18.2 Enable SSH client

[Syntax]
ssh-client switch
no ssh-client
[Parameter]
switch : Whether to enable SSH client
Setting value Description
enable Enable
Setting value Description
disable Disable
[Initial value]
ssh-client disable
[Input mode]
global configuration mode
[Description]
Enables use of the ssh command as an SSH client.
If this command is executed with the "no" syntax, the SSH client is disabled.
[Example]
Enable the SSH client.
SWR2311P(config)#ssh-client enable

4.18.3 Clear SSH host information

[Syntax]
clear ssh host host
[Parameter]
Command Reference | Maintenance and operation functions | 81
host : Remote host name, IPv4 address (A.B.C.D), or IPv6 address (X:X::X:X)
[Input mode]
priviledged EXEC mode
[Description]
Delete the public key of the SSH server that is connected as an SSH client.
[Example]
Clear the SSH host information.
SWR2311P#clear ssh host 192.168.100.1

4.19 LLDP

4.19.1 Enable LLDP function

[Syntax]
lldp run
no lldp run
[Initial value]
none
[Input mode]
global configuration mode
[Description]
Enable the LLDP function for the entire system.
If this command is executed with the "no" syntax, disable the LLDP function for the entire system.
[Note]
In order to enable the LLDP function for a port, the following command must be set.
Set the set lldp enable command's type (LLDP agent mode) to "txrx", "txonly", or "rxonly" as necessary.
lldp run (global configuration mode)
lldp-agent (interface mode)
set lldp enable type (LLDP agent mode)
82 | Command Reference |
[Example]
Enable LLDP function transmission and reception for LAN port #1.
SWR2311P#configure terminal Enter configuration commands, one per line. End with CNTL/Z. SWR2311P(config)#lldp run SWR2311P(config)#interface port1.1 SWR2311P(config-if)#lldp-agent SWR2311P(lldp-agent)#set lldp enable txrx

4.19.2 Set system description

[Syntax]
lldp system-description line
no lldp system-description
[Parameter]
line : System description text string (255 characters or less)
[Initial value]
no lldp system-description
[Input mode]
global configuration mode
[Description]
Sets the system description used by the LLDP function.
If this command is executed with the "no" syntax, the setting returns to the default.
By default, this is "model name + firmware revision".
[Example]
Set the system description to SWITCH1_POINT_A.
Maintenance and operation functions
SWR2311P(config)#lldp system-description SWITCH1_POINT_A

4.19.3 Set system name

[Syntax]
lldp system-name name
no lldp system-name
[Parameter]
name : System name text string (255 characters or less)
[Initial value]
no lldp system-name
[Input mode]
global configuration mode
[Description]
Sets the system name used by the LLDP function.
If this command is executed with the "no" syntax, the setting returns to the default.
By default, this is "model name".
The specified value is set in "LLDP System Name TLV".
[Example]
Set the system name to SWITCH1.
SWR2311P(config)#lldp system-name SWITCH1
Command Reference | Maintenance and operation functions | 83

4.19.4 Create LLDP agent

[Syntax]
lldp-agent no lldp-agent
[Initial value]
none
[Input mode]
interface mode
[Description]
Create an LLDP agent, and transition to LLDP agent mode.
If this command is executed with the "no" syntax, delete the LLDP agent.
[Note]
When you delete the LLDP agent, the commands specified in LLDP agent mode are also deleted.
[Example]
Create an LLDP agent on port1.1, and transition to LLDP agent mode.
SWR2311P(config)#interface port1.1 SWR2311P(config-if)#lldp-agent SWR2311P(lldp-agent)#

4.19.5 Set automatic setting function by LLDP

[Syntax]
lldp auto-setting switch
no lldp auto-setting
[Parameter]
switch : Set automatic setting function by LLDP
Setting value Description
enable Enable automatic setting function by LLDP
disable Disable automatic setting function by LLDP
[Initial value]
lldp auto-setting disable
[Input mode]
global configuration mode
[Description]
Enables the function by which LLDP frames transmitted by specific Yamaha devices can automatically modify the settings of a switch.
The functions that can be set are flow control, QoS, IGMP snooping, and EEE.
If this command is executed with the "no" syntax, the setting returns to the default.
This can be set only for a physical interface.
[Note]
In order to use this function, you must use the set lldp enable command to enable reception of LLDP frames.
[Example]
Enable automatic setting function by LLDP.
SWR2311P(config)#lldp auto-setting enable
84 | Command Reference |
Maintenance and operation functions

4.19.6 Set LLDP transmission/reception mode

[Syntax]
set lldp enable type
set lldp disable
no set lldp enable
[Parameter]
type : Transmission/reception mode
rxonly Set receive-only mode
txonly Set transmit-only mode
txrx Set transmit and receive
[Initial value]
set lldp disable
[Input mode]
LLDP agent mode
[Description]
Sets the LLDP frame transmission/reception mode for the applicable interface.
If you specify set lldp disable, LLDP frames are not transmitted or received.
If this command is executed with the "no" syntax, the setting returns to the default.
[Example]
Set the LLDP transmission/reception mode of LAN port #1 to receive-only.
Setting value Description
SWR2311P(config)#lldp run SWR2311P(config)#interface port1.1 SWR2311P(config-if)#lldp-agent SWR2311P(config-lldp)#set lldp enable rxonly

4.19.7 Set type of management address

[Syntax]
set management-address-tlv type
no set management-address-tlv
[Parameter]
type : Type of management address
Setting value Description
ip-address Set IP address as the management address
mac-address Set MAC address as the management address
[Initial value]
set management-address-tlv ip-address
[Input mode]
LLDP agent mode
[Description]
Sets the type of port management address used by LLDP.
If this command is executed with the "no" syntax, the setting returns to the default.
The specified value is set in "LLDP Management Address TLV".
[Example]
Set the MAC address as the type of management address for LAN port #1.
Command Reference | Maintenance and operation functions | 85
SWR2311P(config)#lldp run SWR2311P(config)#interface port1.1 SWR2311P(config-if)#lldp-agent SWR2311P(config-lldp)#set management-address mac-address

4.19.8 Set basic management TLVs

[Syntax]
tlv-select basic-mgmt
no tlv-select basic-mgmt
[Initial value]
none
[Input mode]
LLDP agent mode
[Description]
Adds basic management TLVs to transmitted frames.
If this command is executed with the "no" syntax, exclude basic management TLVs from transmitted frames.
This command adds the following TLVs to LLDP frames.
<Basic management TLV>
(1) Port Description TLV : Description of port
(2) System Name TLV : Name of system
(3) System Description TLV : Description of system
(4) System Capabilities TLV : System capabilities
(5) Management Address TLV : Management address of port (MAC address or IP address)
[Example]
Add basic management TLVs to the LLDP frames that are transmitted on LAN port #1.
SWR2311P(config)#lldp run SWR2311P(config)#interface port1.1 SWR2311P(config-if)#lldp-agent SWR2311P(config-lldp)#tlv-select basic-mgmt

4.19.9 Set IEEE-802.1 TLV

[Syntax]
tlv-select ieee-8021-org-specific
no tlv-select ieee-8021-org-specific
[Initial value]
none
[Input mode]
LLDP agent mode
[Description]
Adds IEEE-802.1 TLVs to transmitted frames.
If this command is executed with the "no" syntax, exclude IEEE-802.1 TLVs from transmitted frames.
This command adds the following TLVs to LLDP frames.
<IEEE-802.1 TLV>
(1) Port VLAN ID : ID of port VLAN
(2) Port and Protocol VLAN ID : ID of protocool VLAN
(3) Protocol Identity : List of supported protocols
(4) Link Aggregation : Link aggregation information
(5) VLAN Name : Name of port VLAN
[Example]
Add IEEE-802.1 TLVs to the LLDP frames that are transmitted on LAN port #1.
SWR2311P(config)#lldp run SWR2311P(config)#interface port1.1
86 | Command Reference |
SWR2311P(config-if)#lldp-agent SWR2311P(config-lldp)#tlv-select ieee-8021-org-specific

4.19.10 Set IEEE-802.3 TLV

[Syntax]
tlv-select ieee-8023-org-specific no tlv-select ieee-8023-org-specific
[Initial value]
none
[Input mode]
LLDP agent mode
[Description]
Adds IEEE-802.3 TLVs to transmitted frames.
If this command is executed with the "no" syntax, exclude IEEE-802.3 TLVs from transmitted frames.
This command adds the following TLVs to LLDP frames.
<IEEE-802.3 TLV>
(1) MAC/PHY Configuration/Status : Auto-negotiation support information
(2) Power Via MDI : PoE information (only for models with PoE function)
(3) Maximum Frame Size : Maximum frame size
[Example]
Add IEEE-802.3 TLVs to the LLDP frames that are transmitted on LAN port #1.
Maintenance and operation functions
SWR2311P(config)#lldp run SWR2311P(config)#interface port1.1 SWR2311P(config-if)#lldp-agent SWR2311P(config-lldp)#tlv-select ieee-8023-org-specific

4.19.11 Set LLDP-MED TLV

[Syntax]
tlv-select med no tlv-select med
[Initial value]
none
[Input mode]
LLDP agent mode
[Description]
If this command is executed with the "no" syntax, exclude LLDP-MED TLVs from transmitted frames.
This command adds the following TLVs to LLDP frames.
<LLDP-MED TLV>
(1) Media Capabilities : Type of LLDP-MED TLV transmitted
(2) Location Identification : Location identification information
(3) Extended Power-via-MDI : Extended PoE information (only for models with PoE function)
[Note]
Location Identification TLV is set to a value of "Location".
[Example]
Add LLDP-MED TLVs to the LLDP frames that are transmitted on LAN port #1.
SWR2311P(config)#lldp run SWR2311P(config)#interface port1.1 SWR2311P(config-if)#lldp-agent SWR2311P(config-lldp)#tlv-select med

4.19.12 Set LLDP frame transmission interval

[Syntax]
set timer msg-tx-interval tx_interval
Command Reference | Maintenance and operation functions | 87
no set timer msg-tx-interval
[Parameter]
tx_interval : <5-3600>
LLDP frame transmission interval (seconds)
[Initial value]
set timer msg-tx-interval 30
[Input mode]
LLDP agent mode
[Description]
Sets LLDP frame transmission interval.
If this command is executed with the "no" syntax, the setting returns to the default.
[Example]
Set 60 seconds as the LLDP frame transmission interval on LAN port #1.
SWR2311P(config)#lldp run SWR2311P(config)#interface port1.1 SWR2311P(config-if)#lldp-agent SWR2311P(config-lldp)#set timer msg-tx-interval 60

4.19.13 Set LLDP frame transmission interval for high speed transmission period

[Syntax]
set timer msg-fast-tx fast_tx
no set timer msg-fast-tx
[Parameter]
fast_tx : <1-3600>
LLDP frame transmission interval for high speed transmission period (seconds)
[Initial value]
set timer msg-fast-tx 1
[Input mode]
LLDP agent mode
[Description]
Sets the LLDP frame transmission interval during the high speed transmission period.
If this command is executed with the "no" syntax, the setting returns to the default.
The high speed transmission period is the period immediately after a port's connected device was newly found, and LLDP frames are transmitted according to the following commands for making high speed transmission period settings.
set timerx msg-fast-tx fast_tx : Sets the transmission interval (seconds) during the high speed transmission period.
set tx-fast-init value : Sets the number of LLDP frames transmitted during the high speed transmission period.
[Example]
Set 2 seconds as the LLDP frame transmission interval during the high speed transmission period on LAN port #1.
SWR2311P(config)#lldp run SWR2311P(config)#interface port1.1 SWR2311P(config-if)#lldp-agent SWR2311P(config-lldp)#set timer msg-fast-tx 2

4.19.14 Set time from LLDP frame transmission stop until re-initialization

[Syntax]
set timer reinit-delay reinit_delay
no set timer reinit-delay
[Parameter]
reinit_delay : <1-10>
88 | Command Reference |
[Initial value]
set timer reinit-delay 2
[Input mode]
LLDP agent mode
[Description]
Sets the time from when LLDP frame transmission stops until re-initialization occurs.
If this command is executed with the "no" syntax, the setting returns to the default.
[Example]
Set 10 seconds as the time from when LLDP frame transmission stops on LAN port #1 until re-initialization occurs.
SWR2311P(config)#lldp run SWR2311P(config)#interface port1.1 SWR2311P(config-if)#lldp-agent SWR2311P(config-lldp)#set timer reinit-delay 10
Maintenance and operation functions
Time from LLDP frame transmission stop until re-initialization (seconds)

4.19.15 Set multiplier for calculating time to live (TTL) of device information

[Syntax]
set msg-tx-hold value
no set msg-tx-hold
[Parameter]
value : <1-100>
Multiplier for calculating the time to live (TTL) value of device information
[Initial value]
set msg-tx-hold 4
[Input mode]
LLDP agent mode
[Description]
Sets the multiplier for calculating the time to live (TTL) of device information.
If this command is executed with the "no" syntax, the setting returns to the default.
This setting is multiplied with the LLDP frame transmission interval (msg-tx-interval), and then increased by +1 to become the TTL value (seconds).
The TTL value is set in "Time To Live TLV".
TTL = msg-tx-interval x msg-tx-hold + 1 (seconds)
[Example]
Set 2 as the multiplier used to calculate the time to live (TTL) for device information on LAN port #1.
SWR2311P(config)#lldp run SWR2311P(config)#interface port1.1 SWR2311P(config-if)#lldp-agent SWR2311P(config-lldp)#set msg-tx-hold 2

4.19.16 Set number of LLDP frames transmitted during the high speed transmission period

[Syntax]
set tx-fast-init value
no set tx-fast-init
[Parameter]
value : <1-8>
Number of LLDP frames transmitted during the high speed transmission period
[Initial value]
set tx-fast-init 4
Command Reference | Maintenance and operation functions | 89
[Input mode]
LLDP agent mode
[Description]
Sets the number of LLDP frames transmitted during the high speed transmission period.
If this command is executed with the "no" syntax, the setting returns to the default.
[Example]
Set 2 as the number of LLDP frames transmitted during the high speed transmission period on LAN port #1.
SWR2311P(config)#lldp run SWR2311P(config)#interface port1.1 SWR2311P(config-if)#lldp-agent SWR2311P(config-lldp)#set tx-fast-init 2

4.19.17 Set maximum number of connected devices manageable by a port

[Syntax]
set too-many-neighbors limit max_value
no set too-many-neighbors limit
[Parameter]
max_value : <1-1000>
Maximum number of connected devices manageable by a port
[Initial value]
set too-many-neighbors limit 5
[Input mode]
LLDP agent mode
[Description]
Sets the maximum number of connected devices that can be managed by a port.
If this command is executed with the "no" syntax, the setting returns to the default.
If the maximum number of connected device for a port is exceeded, LLDP frames sent from new devices are ignored.
[Note]
When this command is set, the remote device management table is cleared once when the first LLDP frame is received on the applicable port.
[Example]
Set 10 as the maximum number of connected devices that can be managed by a port on LAN port #1.
SWR2311P(config)#lldp run SWR2311P(config)#interface port1.1 SWR2311P(config-if)#lldp-agent SWR2311P(config-lldp)#set too-many-neighbors limit 10

4.19.18 Show interface status

[Syntax]
show lldp interface ifname
[Keyword]
neighbor : Shows information for connected devices.
[Parameter]
ifname : Interface name of the LAN/SFP port
Interface to show
[Input mode]
unprivileged EXEC mode, priviledged EXEC mode
[Description]
Shows LLDP information for the interface specified by ifname.
[neighbor]
90 | Command Reference |
If "neighbor" is specified, information for the device connected to the interface is shown.
The following items are shown.
For show lldp interface ifname
Interface and its statistical information
Agent Mode Bridge mode (fixed as nearest bridge)
Enable (tx/rx) Transmission mode/Reception mode (Y:enable, N:disable)
Message fast transmit time LLDP frame transmission interval for high speed transmission
Message transmission interval LLDP frame transmission interval (seconds)
Reinitialisation delay Time from LLDP frame transmission stop until re-
MED Enabled LLDP-MED TLV transmission enable/disable
Device Type Device type (fixed as NETWORK_CONNECTIVITY)
Total frames transmitted Number of LLDP frames transmitted
Total entries aged Number of devices not received for more than TTL seconds,
Maintenance and operation functions
period (seconds)
initialization (seconds)
and deleted from management table
Total frames received Number of LLDP frames received
Total frames received in error Number of LLDP frame reception errors
Total frames discarded Number of LLDP frames discarded
Total discarded TLVs Number of TLV discarded
Total unrecognised TLVs Number of TLVs that could not be recognized
For show lldp interface ifname neighbor
Basic management information
Interface Name Received interface name
System Name System name
System Description System description
Port Description Port description
System Capabilities System capabilities
Interface Numbering Type of interface number
Interface Number Number of interface
OID Number OID number
Management Address MAC address os IP addresss
Mandatory TLV information
CHASSIS ID TYPE CHASSIS ID TLV type and value
PORT ID TYPE PORT ID TLV type and value
TTL (Time To Live) Time to maintain device information (seconds)
8021 ORIGIN SPECIFIC TLV information
Port Vlan id ID of port VLAN
PP Vlan id ID of protocol VLAN
VLAN ID ID of port VLAN
VLAN Name Name of port VLAN
Remote Protocols Advertised List of supported protocols
Command Reference | Maintenance and operation functions | 91
Remote VID Usage Digestt VID Usage Digestt value
Remote Management Vlan Name of management VLAN
Link Aggregation Status Link aggregation enabled/disabled
Link Aggregation Port ID ID of link aggregation port
8023 ORIGIN SPECIFIC TLV information
AutoNego Support Auto negotiation enabled/disabled
AutoNego Capability Communication methods that can be auto-negotiate
Operational MAU Type Communication speed and duplex mode
MDI power support Whether PoE function is supported
PSE power pair PSE power pair
Power class PoE power supply class
Type/source/priority PoE power supply type, source, and priority order
PD requested power value Power requested by PD device (0.1 mW units)
PSE allocated power value Power that can be supplied by PSE device (0.1 mW units)
Max Frame Size Maximum frame size
LLDP-MED TLV information (shown if LLDP-MED TLV is received)
MED Capabilities LLDP-MED TLV type list
MED Capabilities Dev Type LLDP-MED media device type
MED Application Type Application type
MED Vlan id ID of VLAN
MED Tag/Untag VLAN tagged or untagged
MED L2 Priority L2 priority order
MED DSCP Val DSCP value priority order
MED Location Data Format Format of location data
Latitude Res Resolution of latitude (number of significant upper bits)
Latitude Latitude (34 bits)
Longitude Res Resolution of longitude (number of significant upper bits)
Longitude Longitude (34 bits)
AT Altitude type
1: meter
2: floor of building
Altitude Res Resolution of altitude (number of significant upper bits)
Altitude Altitude (30 bits)
Datum Geodetic datum
0: USA's World Geodetic System (WGS 84)
1: North American Datum (NAD 83)
2: Average historical minimum sea level of North American Datum (NAD 83)
LCI length Length of location information data
What Place of reference location
92 | Command Reference | Maintenance and operation functions
Country Code Country code
CA type CA (Civic Address) type
MED Inventory Inventory information list
Refer to RFC 3825 for details on location information.
[Example]
Show LLDP information for LAN port #1.
SWR2311P#show lldp interface port1.1 Agent Mode : Nearest bridge Enable (tx/rx) : Y/Y Message fast transmit time : 1 Message transmission interval : 30 Reinitialisation delay : 2 MED Enabled : Y Device Type : NETWORK_CONNECTIVITY LLDP Agent traffic statistics Total frames transmitted : 0 Total entries aged : 0 Total frames received : 0 Total frames received in error : 0 Total frames discarded : 0 Total discarded TLVs : 0 Total unrecognised TLVs : 0 SWR2311P#
0: Location of the DHCP server
1: Position of the network element thought to be nearest the client
2: Location of client

4.19.19 Show information for connected devices of all interfaces

[Syntax]
show lldp neighbors
[Input mode]
unprivileged EXEC mode, priviledged EXEC mode
[Description]
Shows information for connected devices of all interfaces.
(For the display format, refer to the show lldp interface ifname neighbor command)
[Example]
Show information for connected devices.
SWR2311P#show lldp neighbors Interface Name : port1.1 System Name : SWR2311P-10G System Description : SWR2311P Rev.2.02.06 (Tue Mar 13 08:41:39 2018) Port Description : port1.3 System Capabilities : L2 Switching Interface Numbering : 2 Interface Number : 5003 OID Number : Management MAC Address : ac44.f230.0000 Mandatory TLVs CHASSIS ID TYPE IP ADDRESS : 0.0.0.0 PORT ID TYPE INTERFACE NAME : port1.3 TTL (Time To Live) : 41 8021 ORIGIN SPECIFIC TLVs Port Vlan id : 1 PP Vlan id : 0 Remote VLANs Configured VLAN ID : 1 VLAN Name : default Remote Protocols Advertised :
Command Reference | Maintenance and operation functions | 93
Multiple Spanning Tree Protocol Remote VID Usage Digestt : 0 Remote Management Vlan : 0 Link Aggregation Status : Disabled Link Aggregation Port ID : 0 8023 ORIGIN SPECIFIC TLVs AutoNego Support : Supported Enabled AutoNego Capability : 27649 Operational MAU Type : 30 Power via MDI Capability (raw data) MDI power support : 0x0 PSE power pair : 0x0 Power class : 0x0 Type/source/priority : 0x0 PD requested power value : 0x0 PSE allocated power value : 0x0 Max Frame Size : 1522 LLDP-MED TLVs MED Capabilities : Capabilities Network Policy MED Capabilities Dev Type : End Point Class-3 MED Application Type : Reserved MED Vlan id : 0 MED Tag/Untag : Untagged MED L2 Priority : 0 MED DSCP Val : 0 MED Location Data Format : ECS ELIN Latitude Res : 0 Latitude : 0 Longitude Res : 0 Longitude : 0 AT : 0 Altitude Res : 0 Altitude : 0 Datum : 0 LCI length : 0 What : 0 Country Code : 0 CA type : 0 MED Inventory
SWR2311P#

4.19.20 Clear LLDP frame counters

[Syntax]
clear lldp counters
[Input mode]
priviledged EXEC mode
[Description]
Clear the LLDP frame counter of all ports.
[Example]
Clear the LLDP frame counter.
SWR2311P>clear lldp counters

4.20 L2MS (Layer 2 management service) settings

4.20.1 Move to L2MS mode

[Syntax]
l2ms configuration
[Input mode]
global configuration mode
94 | Command Reference |
[Description]
Moves to L2MS mode in order to make L2MS settings.
[Note]
To return from L2MS mode to global configuration mode, use the exit command. To return to priviledged EXEC mode, use the end command.
[Example]
Move to L2MS mode.
SWR2311P(config)#l2ms configuration SWR2311P(config-l2ms)#

4.20.2 Set L2MS function

[Syntax]
l2ms enable
l2ms disable
no l2ms
[Keyword]
enable : Use the L2MS function
disable : Don't use the L2MS function
Maintenance and operation functions
[Initial value]
l2ms enable
[Input mode]
L2MS mode
[Description]
Sets whether to use the L2MS function.
If this command is executed with the "no" syntax, the setting returns to the default.
[Note]
In order for a change to be applied, the system must be restarted.
[Example]
Use the L2MS function.
SWR2311P(config)#l2ms configuration SWR2311P(config-l2ms)#l2ms enable

4.20.3 Set role of L2MS function

[Syntax]
l2ms role role
no l2ms role
[Parameter]
role : Role of L2MS function
Setting value Description
master
slave
[Initial value]
l2ms role slave
Operate as an L2MS master that sets and controls SWR series units that are connected subordinate to it
Be managed from a Yamaha device that is operating as an L2MS master, such as an SWR2311P-10G unit that is set as the L2MS master
Command Reference | Maintenance and operation functions | 95
[Input mode]
L2MS mode
[Description]
Sets the role when using the L2MS function.
If this command is executed with the "no" syntax, operate as a slave.
[Note]
In order for a change to be applied, the system must be restarted.
If the same network includes multiple Yamaha routers or firewalls on which L2MS (switch controller function) is enabled, or multiple SWR series units that are set to be L2MS masters, the L2MS function will not operate correctly.
Ensure that a single network has only one device that is the L2MS master.
[Example]
Use the L2MS function as master.
SWR2311P(config)#l2ms configuration SWR2311P(config-l2ms)#l2ms enable SWR2311P(config-l2ms)#l2ms role master

4.20.4 Set L2MS slave watch interval

[Syntax]
slave-watch interval time
no slave-watch interval
[Parameter]
time : <2-10>
Watch interval (seconds)
[Initial value]
slave-watch interval 3
[Input mode]
L2MS mode
[Description]
Specifies the time interval at which to transmit an L2MS slave query frame.
If this command is executed with the "no" syntax, the setting returns to the default.
If you set time to a high value, the query frame is transmitted less often, but it will take longer from when the L2MS slave is connected until the L2MS master recognizes it. If you set time to a low value, the opposite will be the case; the query frame is transmitted more often, but it will take less time from when the L2MS slave is connected until the L2MS master recognizes it.
[Note]
L2MS slave watch is performed only if L2MS is operating as master.
[Example]
Set the watch interval to five seconds.
SWR2311P(config)#l2ms configuration SWR2311P(config-l2ms)#l2ms enable SWR2311P(config-l2ms)#l2ms role master SWR2311P(config-l2ms)#slave-watch interval 5

4.20.5 Set number of times that is interpreted as L2MS slave down

[Syntax]
slave-watch down-count count
no slave-watch down-count
[Parameter]
count : <2-10>
Number of times that is interpreted as down
96 | Command Reference |
[Initial value]
slave-watch down-count 3
[Input mode]
L2MS mode
[Description]
Sets the number of query frames that are transmitted without receiving a response frame from the slave until it is determined that the L2MS slave is down.
If this command is executed with the "no" syntax, the setting returns to the default.
If the number of query frames specified by count have been transmitted without receiving a response frame from the slave, it is determined that the corresponding L2MS slave is down.
[Note]
If the port to which the L2MS slave is connected is in a link-down state, determining that the L2MS slave is down might take a shorter time than the setting of this command.
Slave watch is performed only if L2MS is operating as master.
[Example]
Specify "8" as the count used to determine that the slave is down.
SWR2311P(config)#l2ms configuration SWR2311P(config-l2ms)#l2ms enable SWR2311P(config-l2ms)#l2ms role master SWR2311P(config-l2ms)#slave-watch down-count 8
Maintenance and operation functions

4.20.6 Set terminal management function

[Syntax]
terminal-watch enable
terminal-watch disable
no terminal-watch
[Keyword]
enable : Enable terminal management function
disable : Disable terminal management function
[Initial value]
terminal-watch disable
[Input mode]
L2MS mode
[Description]
Enables the terminal management function. If this is enabled, information about the devices existing on the network is obtained at regular intervals.
If this command is executed with the "no" syntax, disable terminal management function.
[Note]
Terminal management is performed only if L2MS is operating as master.
[Example]
Enable the terminal management function.
SWR2311P(config)#l2ms configuration SWR2311P(config-l2ms)#l2ms enable SWR2311P(config-l2ms)#l2ms role master SWR2311P(config-l2ms)#terminal-watch enable

4.20.7 Set the device information acquisition time interval

[Syntax]
terminal-watch interval time
no terminal-watch interval
Command Reference | Maintenance and operation functions | 97
[Parameter]
time : <1800-86400>
Acquisition interval (seconds)
[Initial value]
terminal-watch interval 1800
[Input mode]
L2MS mode
[Description]
Specifies the time interval at which network device information is acquired. Information for the devices existing on the network is acquired when the time specified by time has elapsed.
If this command is executed with the "no" syntax, the setting returns to the default.
[Note]
If the terminal management function is not enabled, terminal information is not acquired, regardless of the setting of this command.
[Example]
Set the watch interval to 3,600 seconds.
SWR2311P(config)#l2ms configuration SWR2311P(config-l2ms)#l2ms enable SWR2311P(config-l2ms)#l2ms role master SWR2311P(config-l2ms)#terminal-watch enable SWR2311P(config-l2ms)#terminal-watch interval 3600

4.20.8 Set L2MS control frame transmit/receive

[Syntax]
l2ms filter enable
l2ms filter disable
no l2ms filter
[Keyword]
enable : L2MS control frames cannot be transmitted or received
disable : L2MS control frames can be transmitted or received
[Initial value]
l2ms filter disable
[Input mode]
interface mode
[Description]
Prevents L2MS control frames from being transmitted or received.
If this command is executed with the "no" syntax, L2MS control frames can be transmitted and received.
[Note]
This command cannot be specified for the following interfaces.
VLAN interface
A physical interface inside a logical interface
A physical interface inside a logical interface operates according to the setting of this command on the interface inside which it exists. If the physical interface is inside the logical interface, the setting of the physical interface returns to the default.
Regardless of the setting of this command, L2MS control frames might not be transmitted or received if any of the following conditions exist.
The interface is in the Blocking status due to STP or the loop detection function
The switchport trunk native vlan none command has been specified
It is inside a logical interface
[Example]
Prevent port1.5 from transmitting or receiving L2MS control frames.
98 | Command Reference |
SWR2311P(config)#interface port1.5 SWR2311P(config-if)#l2ms filter enable
Maintenance and operation functions

4.20.9 Reset slave management

[Syntax]
l2ms reset
[Input mode]
priviledged EXEC mode
[Description]
Removes all L2MS slaves managed by the L2MAS master from management, and searches for L2MS slaves once again.
[Note]
This can be executed only if L2MS is operating as master.
When this command is executed, L2MS slaves that were being managed also remove themselves from the state of being managed by the L2MS master.
After this command is executed, the timing at which L2MS slave watching resumes will depend on the time specified by the
slave-watch interval command.
[Example]
Reset L2MS slave management.
SWR2311P#l2ms reset

4.20.10 Show L2MS information

[Syntax]
show l2ms [detail]
[Keyword]
detail : Also show detailed information
[Input mode]
unprivileged EXEC mode, priviledged EXEC mode
[Description]
Shows the following information according to the L2MS operating state.
If L2MS is operating as master
Number of L2MS slaves being managed
Information for the L2MS slaves being managed
MAC address
Model name
Device name
Route
Uplink port
Settings applied
If L2MS is operating as master and "detail" is specified
L2MS master information
Number of terminals connected to the L2MS master
Information of terminals connected to the L2MS master
MAC address
Ports connected
Time at which terminal was discovered
Number of L2MS slaves being managed
Information for the L2MS slaves being managed
MAC address
Model name
Device name
Route
Linked-up ports
Uplink port
Downlink port
Command Reference | Maintenance and operation functions | 99
Settings applied Number of terminals connected to the L2MS slave
Information of terminals connected to the L2MS slave (in the case of a switch)
MAC address
Ports connected
Time at which terminal was discovered
Information of terminals connected to the L2MS slave (in the case of an AP)
SSID connected
Frequency connected
Time at which terminal was discovered
If L2MS is operating as slave
Whether managed by the L2MS master
MAC address of L2MS master (if managed)
[Note]
Information is not shown if L2MS is not operating.
Specifying "detail" is valid only if L2MS is operating as master.
[Example]
If L2Ms is operating as master, show detailed L2MS information.
SWR2311P>show l2ms detail Role : Master
[Master] Number of Terminals : 0
[Slave] Number of Slaves : 2 [ac44.f230.00a5] Model name : SWR2311P-10G Device name : SWR2311P-10G_Z5301050WX Route : port2.1 LinkUp : 1, 3, 9 Uplink : 1 Downlink : 3 Config : None Appear time : Tue Mar 13 18:43:18 2018 Number of Terminals : 1 [bcae.c5a4.7fb3] Port : 9 Appear time : Wed Mar 14 14:01:18 2018
[00a0.deae.b8bf] Model name : SWR2311P-10G Device name : SWR2311P-10G_S4L000401 Route : port2.1-3 LinkUp : 1 Uplink : 1 Downlink : None Config : None Appear time : Tue Mar 13 18:43:18 2018 Number of Terminals : 0

4.20.11 Set the device information acquisition time interval for downstream of a wireless AP

[Syntax]
wireless-terminal-watch interval time
no wireless-terminal-watch interval
[Parameter]
time : <10-86400>
Acquisition interval (seconds)
[Initial value]
wireless-terminal-watch interval 60
100 | Command Reference |
[Input mode]
L2MS mode
[Description]
Specifies the time interval at which device information for a device downstream of a wireless AP is acquired. Information for the devices existing downstream the wireless AP is acquired when the time specified by time has elapsed.
If this command is executed with the "no" syntax, the setting returns to the default.
[Note]
If device watch is not operating, device information is not acquired, regardless of the setting of this function.
[Example]
Set the device information acquisition time interval to 3,600 seconds.
SWR2311P(config)#l2ms configuration SWR2311P(config-l2ms)#l2ms enable SWR2311P(config-l2ms)#l2ms role master SWR2311P(config-l2ms)#terminal-watch enable SWR2311P(config-l2ms)# wireless-terminal-watch interval 3600
Maintenance and operation functions

4.20.12 Set event monitoring function

[Syntax]
event-watch enable
event-watch disable
no event-watch
[Keyword]
enable : Enable the event monitoring function
disable : Disable the event monitoring function
[Initial value]
event-watch enable
[Input mode]
L2MS mode
[Description]
Sets whether to disable or enable the event monitoring function. If enabled, event information for the L2MS slaves existing on the network is acquired at regular intervals.
If this command is executed with the "no" syntax, the event monitoring function is enabled.
[Note]
Event monitoring is performed only if L2MS is operating as master.
[Example]
Disable the event monitoring function.
SWR2311P(config)#l2ms configuration SWR2311P(config-l2ms)#l2ms enable SWR2311P(config-l2ms)#l2ms role master SWR2311P(config-l2ms)#event-watch disable

4.20.13 Set event information acquisition time interval

[Syntax]
event-watch interval time
no event-watch interval
[Parameter]
time : <60-1800>
Acquisition time interval (seconds)
[Initial value]
event-watch interval 300
Loading...
Buy Points How it Works FAQ Contact Us Questions and Suggestions Privacy Policy Cookie Policy Terms of Use