TM RackSwitch G8000 Command Reference Version 6.0 Part Number: BMD00128, September 2009 2350 Mission College Blvd. Suite 600 Santa Clara, CA 95054 www.bladenetwork.
RackSwitch G8000 ISCLI Reference Copyright © 2009 Blade Network Technologies, Inc., 2350 Mission College Blvd., Suite 600, Santa Clara, California, 95054, USA. All rights reserved. Part Number: BMD00128. This document is protected by copyright and distributed under licenses restricting its use, copying, distribution, and decompilation. No part of this document may be reproduced in any form by any means without prior written authorization of Blade Network Technologies, Inc.
Contents Preface 9 Who Should Use This Book 10 How This Book Is Organized 11 Typographic Conventions 12 How to Get Help 14 ISCLI Basics 15 ISCLI Command Modes 15 Global Commands 18 Command Line Interface Shortcuts 20 Command Abbreviation 20 Tab Completion 20 User Access Levels 21 Idle Timeout 22 Information Commands 23 System Information 25 SNMPv3 System Information 25 SNMPv3 User-based Security Model User Table Information 27 SNMPv3 View Table Information 28 SNMPv3 Access Table Information 29 SNMPv3 Group
RackSwitch G8000 ISCLI Reference User Status 37 Stacking Information 39 Show Stacking Switch Information 41 Layer 2 Information 43 Forwarding Database Information 44 Show All FDB Information 45 Clearing Entries From the Forwarding Database 46 Link Aggregation Control Protocol Information 47 Link Aggregation Control Protocol 47 Layer 2 Failover Information 49 Layer 2 Failover information 49 802.
RackSwitch G8000 ISCLI Reference Layer 2 Statistics 84 Forwarding Database Statistics 85 Layer 3 Statistics 86 ARP Statistics 87 IGMP Statistics 88 Access Control List Statistics 90 ACL Statistics 90 Management Processor Statistics 91 TCP Statistics 91 UDP Statistics 92 CPU Statistics 93 SNMP Statistics 94 Statistics Dump 98 Statistics Dump Output Example 98 Configuration Commands 99 Viewing and Saving Changes 101 Saving the Configuration 101 System Configuration 102 System Host Log Configuration 104 SSH S
RackSwitch G8000 ISCLI Reference Temporarily Disabling a Port 130 Port ACL Configuration 131 Stacking Configuration 132 Stacking Switch Configuration 133 Master Switch Interface Configuration 134 Backup Switch Interface Configuration 135 Port Mirroring 136 Layer 2 Configuration 137 802.1X Configuration 138 802.1X Global Configuration 138 802.1X Guest VLAN Configuration 140 802.
RackSwitch G8000 ISCLI Reference ACL Re-Mark Configuration 168 Re-Marking In-Profile Configuration 168 Update User Priority Configuration 168 Re-Marking Out-of-Profile Configuration 169 Configuration Dump 170 Saving the Active or Backup Switch Configuration 170 Restoring the Active or Backup Switch Configuration 170 Show Active and Backup Configuration 171 Active Configuration command output 172 Operations Commands 173 Operations-Level Port Options 174 Boot Options 175 Stacking Boot commands 176 Updating t
RackSwitch G8000 ISCLI Reference 8 BMD00128, September 2009
Preface The RackSwitch G8000 ISCLI Reference describes how to configure and use the software with your switch. This guide lists each command, together with the complete syntax and a functional description, using the IS Command Line Interface (ISCLI). For documentation about installing the switch physically, see the RackSwitch G8000 Installation Guide. Who Should Use This Book This ISCLI Reference is intended for network installers and system administrators engaged in configuring and maintaining a network.
RackSwitch G8000 ISCLI Reference How This Book Is Organized Chapter 1 “ISCLI Basics,” describes how to connect to the switch and access the information and configuration commands. This chapter provides an overview of the command syntax, including command modes, global commands, and shortcuts. Chapter 2 “Information Commands,” shows how to view switch configuration parameters. Chapter 3 “Statistics Commands,” shows how to view switch performance statistics.
RackSwitch G8000 ISCLI Reference Typographic Conventions The following table describes the typographic styles used in this book. Table 1 Typographic Conventions Typeface or Symbol Meaning angle brackets < > Indicate a variable to enter based on the description inside the brackets. Do not type the brackets when entering the command. Example: If the command syntax is ping you enter ping 192.32.10.
RackSwitch G8000 ISCLI Reference Table 1 Typographic Conventions Typeface or Symbol Meaning plain Courier text Indicates command syntax and system output, for example, prompts and system messages. Example: configure terminal | Separates choices for command keywords and arguments. Enter only one of the choices. Do not type the vertical line when entering the command.
RackSwitch G8000 ISCLI Reference How to Get Help If you need help, service, or technical assistance, call Blade Network Technologies Technical Support: US toll free calls: 1-800-414-5268 International calls: 1-408-834-7871 You also can visit our web site at the following address: http://www.bladenetwork.net Click the Support tab. The warranty card received with your product provides details for contacting a customer support representative.
RackSwitch G8000 ISCLI Reference 14 Preface BMD00128, September 2009
CHAPTER 1 ISCLI Basics Your switch is ready to perform basic switching functions right out of the box. Some of the more advanced features, however, require some administrative configuration before they can be used effectively. This guide describes the individual ISCLI commands available for the switch. The ISCLI provides a direct method for collecting switch information and performing switch configuration.
RackSwitch G8000 ISCLI Reference Each mode provides a specific set of commands. The command set of a higher-privilege mode is a superset of a lower-privilege mode — all lower-privilege mode commands are accessible when using a higher-privilege mode. Table 1-1 lists the ISCLI command modes.
RackSwitch G8000 ISCLI Reference Table 1-1 ISCLI Command Modes Command Mode/Prompt Command used to enter or exit ACL Extended Configuration Enter the Access Control List (ACL) IP Extended Configuration mode. access-list ip extended <1001-65535> Exit to Global Configuration mode: exit Exit to Privileged EXEC mode: end RS G8000 (config-extnacl)# ACL MAC Configuration RS G8000 (config-extmacl)# Enter the Access Control List (ACL) MAC Extended Configuration mode.
RackSwitch G8000 ISCLI Reference Global Commands Some basic commands are recognized throughout the ISCLI command modes. These commands are useful for obtaining online Help, navigating through the interface, and for saving configuration changes. For help about a specific command, type the command, followed by ? (question mark). Table 1-2 Description of Global Commands Command Action ? Help may be requested at any point in a command by entering a question mark ( ? ).
RackSwitch G8000 ISCLI Reference Table 1-2 Description of Global Commands Command Action [no] prompting Enables or disables CLI prompts. Prompts allow you to step through complex configurations, and provide supporting information. You can disable prompting to facilitate CLI scripting. The default value is enabled. show who Displays a list of users who are currently logged in. For more information, see “User Status” on page 37. show history This command brings up the history of the last 10 commands.
RackSwitch G8000 ISCLI Reference Command Line Interface Shortcuts Command Abbreviation Most commands can be abbreviated by entering the first characters which distinguish the command from the others in the same mode.
RackSwitch G8000 ISCLI Reference User Access Levels To enable better switch management and user accountability, three levels or classes of user access have been implemented on the switch. Levels of access to CLI, Web management functions, and screens increase as needed to perform various switch management tasks. Conceptually, access classes are defined as follows: user: Interaction with the switch is completely passive—nothing can be changed on the switch.
RackSwitch G8000 ISCLI Reference Table 1-3 User Access Levels User Account Description and Tasks Performed Password User The User has no direct responsibility for switch management. He or she can view all switch status information and statistics, but cannot make any configuration changes to the switch. user Operator Interaction with the switch is completely passive—nothing can be changed on the G8000.
CHAPTER 2 Information Commands This chapter explains how to use the Command Line Interface (CLI) to display switch information. Table 2-1 General Information commands Command Syntax and Usage show interface information Displays port status information, including: Port name, alias, and number Whether the port uses VLAN Tagging or not Port VLAN ID (PVID) VLAN membership To view an example of the command output, see page 65.
RackSwitch G8000 ISCLI Reference Table 2-1 General Information commands Command Syntax and Usage show transceivers Displays information about SFP/SFP+ transceivers. To view an example of the command output, see page 67. Command mode: All show information-dump Dumps all switch information available (10K or more, depending on your configuration). If you want to capture dump data to a file, set your communication software on your workstation to capture session data prior to issuing the dump commands.
RackSwitch G8000 ISCLI Reference System Information The information provided by each command option is briefly described in Table 2-2, with links to more detailed information.
RackSwitch G8000 ISCLI Reference SNMPv3 System Information SNMP version 3 (SNMPv3) is an extensible SNMP Framework that supplements the SNMPv2 framework by supporting the following: A new SNMP message format Security for messages Access control Remote configuration of SNMP parameters See RFC2271 to RFC2276 for details about SNMPv3 architecture. Table 2-3 SNMPv3 Commands Command Syntax and Usage show snmp-server v3 user Displays User Security Model (USM) table information.
RackSwitch G8000 ISCLI Reference Table 2-3 SNMPv3 Commands Command Syntax and Usage show snmp-server v3 group Displays information about the group that includes the security model, user name, and group name. A group is a combination of security model and security name that defines the access rights assigned to all the security names belonging to that group. The group is identified by a group name. To view an example of the command output, see page 31.
RackSwitch G8000 ISCLI Reference SNMPv3 User-based Security Model User Table Information The User-based Security Model (USM) in SNMPv3 provides security services such as authentication and privacy of messages. The USM uses a defined set of user identities that are displayed in the USM user table. The following command displays SNMPv3 user information: show snmp-server v3 user <1-16> Command mode: All The USM makes use of a defined set of user identities displayed in the USM user table.
RackSwitch G8000 ISCLI Reference SNMPv3 View Table Information Each user can control and restrict the access allowed to a group to a subset of the management information in the management domain that the group can access within each context, by specifying the group’s rights in terms of a particular MIB view for security reasons. The following command displays the SNMPv3 View Table.
RackSwitch G8000 ISCLI Reference SNMPv3 Access Table Information The access control subsystem provides authorization services. The vacmAccessTable maps a group name, security information, a context, and a message type, which could be the read or write type of operation or notification into a MIB view. The View-based Access Control Model defines a set of services that an application can use to check the access rights of a group.
RackSwitch G8000 ISCLI Reference SNMPv3 Group Table Information A group is a combination of security model and security name that defines the access rights assigned to all the security names belonging to that group. The group is identified by a group name.
RackSwitch G8000 ISCLI Reference SNMPv3 Community Table Information The following command displays SNMPv3 community information stored in the SNMP engine: show snmp-server v3 community Command mode: All Index Name User Name Tag ---------- ---------- -------------------- --------trap1 public v1v2only v1v2trap Table 2-8 SNMPv3 Community Table Parameters Field Description Index Displays the unique index value of a row in this table.
RackSwitch G8000 ISCLI Reference SNMPv3 Target Address Table Information The following command displays SNMPv3 target address information: show snmp-server v3 target-address Command mode: All This command displays the SNMPv3 target address table information, which is stored in the SNMP engine. Name ---------trap1 Transport Addr --------------47.81.25.
RackSwitch G8000 ISCLI Reference Table 2-10 SNMPv3 Target Parameters Table Information Field Description Name Displays the locally arbitrary, but unique identifier associated with this snmpTargetParamsEntry. MP Model Displays the Message Processing Model used when generating SNMP messages using this entry. User Name Displays the securityName, which identifies the entry on whose behalf SNMP messages will be generated using this entry.
RackSwitch G8000 ISCLI Reference SNMPv3 Target Parameters Table Index Information The following command displays SNMPv3 target parameters index information: show snmp-server v3 target-parameters <1-16> Command mode: All name , mpmodel snmpv3 uname , model usm ,level noauthnoPriv Table 2-11 SNMPv3 Target Parameters Table Index Information Field Description Name Displays the locally arbitrary, but unique identifier associated with this snmpTargeParamsEntry.
RackSwitch G8000 ISCLI Reference SNMPv3 Notify Table Information The following command displays the SNMPv3 Notify Table: show snmp-server v3 notify Command mode: All Name Tag -------------------- -------------------v1v2trap v1v2trap Table 2-12 SNMPv3 Notify Table Information Field Description Name The locally arbitrary, but unique identifier associated with this snmpNotifyEntry. Tag This represents a single tag value which is used to select entries in the snmpTargetAddrTable.
RackSwitch G8000 ISCLI Reference SNMPv3 Dump Information The following command displays SNMPv3 information: show snmp-server v3 Command mode: All EngineId: 80.00.08.1c.04.46.
RackSwitch G8000 ISCLI Reference General System Information The following command displays system information: show sys-info Command mode: All Blade Network Technologies Rack Switch G8000 System Information at Sun Jan 15 23:56:24 2009 Switch has been up for 0 day, 0 hour, 19 minutes and 31 seconds Last boot:(power cycle) MAC address: 00:18:b1:8a:36:00 IP (If 1) address: 172.24.1.70 Revision: 8 Switch Serial No: US38200028 Spare Part No: BAC-00017-00 Manufacturing date: 08/20 Software Version 6.0.
RackSwitch G8000 ISCLI Reference System information includes: Switch up-time Reason for last boot MAC address Software version PCBA part number FAB number Serial number Manufacturing date Hardware revision Board revision CPLD firmware version Temperature sensor information Fan speed RPMs Power supply status Show Syslog Messages The following command displays system log messages: show logging messages Command mode: All Jan 26 2008 18:03:27 RS G8000:CL
RackSwitch G8000 ISCLI Reference User Status The following command displays the status of configured user names. show access user Command mode: All except User EXEC Usernames: admin - Always Enabled user - enabled oper - disabled - online 1 session.
RackSwitch G8000 ISCLI Reference Stacking Information Table 2-13 lists the Stacking Information commands. Table 2-13 Stacking Information commands Command Syntax and Usage show stack switch Displays information about each switch in the stack, including: Configured Switch Number (csnum) Assigned Switch Number (asnum) MAC address Stacking state Command mode: All except user EXEC show stack link Displays link information for each switch in the stack.
RackSwitch G8000 ISCLI Reference Table 2-13 Stacking Information commands Command Syntax and Usage show stack dynamic Displays all stacking information.
RackSwitch G8000 ISCLI Reference Show Stacking Switch Information The following command displays Stacking switch information: show stack switch Command mode: All Stack name: Stack1 Local switch is the master.
RackSwitch G8000 ISCLI Reference Layer 2 Information Table 2-14 contains a summary of Layer 2 general information commands. The sections after the table describe detailed Layer 2 information commands. Table 2-14 Layer 2 General Information Commands Command Syntax and Usage show dot1x Displays current global 802.1X parameters. To view an example of the command output, see page 50. Command mode: All show dot1x information Displays 802.1X information.
RackSwitch G8000 ISCLI Reference Forwarding Database Information The Forwarding Database (FDB) contains information that maps the media access control (MAC) address of each known device to the switch port where the device address was learned. The FDB also shows which other ports have seen frames destined for a particular MAC address. NOTE – The master Forwarding Database supports up to 16K MAC address entries.
RackSwitch G8000 ISCLI Reference Show All FDB Information The following command displays Forwarding Database information: show mac-address-table Command mode: All Mac address Aging Time: 300 MAC address ----------------00:01:02:03:04:05 00:03:47:0a:54:19 00:07:e9:39:07:8a 00:08:74:a9:1d:e9 00:09:6b:ca:1a:be 00:09:97:16:69:00 00:0e:0c:b3:65:4d 00:0f:fe:2d:f5:39 00:0f:fe:af:b7:6e 00:0f:fe:b0:62:0e 00:0f:fe:b3:de:7e 00:11:11:e3:70:50 00:11:25:c3:2a:3c 00:13:0a:4f:7c:90 00:15:ed:00:00:00 00:16:17:7c:e0:c0 00:
RackSwitch G8000 ISCLI Reference Link Aggregation Control Protocol Information Use these commands to display LACP status information about each port on the switch. Table 2-16 LACP Information Commands Command Syntax and Usage show lacp aggregator {} Displays detailed information about the LACP aggregator used by the selected port. Command mode: All show lacp Displays the configured global LACP settings. Command mode: All show lacp information Displays a summary of LACP information.
RackSwitch G8000 ISCLI Reference selected Indicates whether the port has been selected to be part of a Link Aggregation Group. prio Shows the value of the port priority. attached aggr Displays the aggregator associated with each port. trunk This value represents the LACP trunk group number. status This value represents the status of the port in LACP (active or down).
RackSwitch G8000 ISCLI Reference Layer 2 Failover information The following command displays Layer 2 Failover information: show failover Command mode: All Trigger 1 Auto Monitor: Enabled Trigger 1 limit: 0 Monitor State: Up Member Status ------------------trunk 1 2:2 Operational 2:3 Operational Control State: Auto Disabled Member Status ------------------1:1 Operational 1:2 Operational 1:3 Operational 1:4 Operational ...
RackSwitch G8000 ISCLI Reference 802.1X Information The following command displays 802.
RackSwitch G8000 ISCLI Reference Table 2-18 802.1X Parameter Descriptions (Continued)(/info/l2/8021x) Parameter Description Authenticator PAE State Displays the Authenticator Port Access Entity State. The PAE state can be one of the following: initialize disconnected connecting authenticating authenticated aborting held forceAuth Backend Auth State Displays the Backend Authorization State.
RackSwitch G8000 ISCLI Reference Trunk Group The following command displays Trunk Group information: show portchannel information Command mode: All PortChannel group 1, Enabled Protocol - Static Port State: 2:2: detached 2:3: detached When trunk groups are configured, you can view the state of each port in the various trunk groups.
RackSwitch G8000 ISCLI Reference Layer 3 Information The following table lists general Layer 3 information commands. The following sections contain more detailed commands Table 2-20 Layer 3 Information Commands Command Syntax and Usage show layer3 information Dumps all Layer 3 switch information available (10K or more, depending on your configuration). If you want to capture dump data to a file, set your communication software on your workstation to capture session data prior to issuing the dump commands.
RackSwitch G8000 ISCLI Reference ARP Information The ARP information includes IP address and MAC address of each entry, address status flags, VLAN and port for the address, and port referencing information. Table 2-21 ARP Information Commands Command Syntax and Usage show ip arp find Displays a single ARP entry by IP address. Command mode: All show ip arp vlan <1-4094> Displays all ARP entries learned on the selected VLAN.
RackSwitch G8000 ISCLI Reference Show All ARP Entry Information The following command displays ARP information: show ip arp Command mode: All Current ARP configuration: rearp 5 Current static ARP: ip mac ------------------------------ IP Address -------------127.20.1.1 127.20.254.
RackSwitch G8000 ISCLI Reference IGMP Multicast Group Information Table 2-22 IGMP Multicast Group Information Commands Command Syntax and Usage show ip igmp groups address Displays IGMP multicast group information by the group’s IP address. Command mode: All show ip igmp groups interface port Displays all IGMP multicast groups on a single port. Command mode: All show ip igmp groups portchannel Displays all IGMP multicast groups on a selected trunk group.
RackSwitch G8000 ISCLI Reference IGMP Group Information The following command displays IGMP Group information: show ip igmp groups Command mode: All Note: Local groups (224.0.0.x) are not snooped/relayed and will not appear. Group --------------226.0.0.0 226.0.0.1 226.0.0.2 226.0.0.3 226.0.0.
RackSwitch G8000 ISCLI Reference IP Information The following command displays Layer 3 IP information: show ip information Command mode: All Interface information: 1: 10.200.30.3 255.255.255.0 3.3.3.255, vlan 1, up Default gateway information: metric strict 1: 10.200.1.1, vlan any, up Master switch IP interface configured through DHCP MAC address: 00:22:00:ac:bd:1f IP address: 12.31.37.158 Subnet mask: 255.255.0.0 Default gateway: 12.31.1.1 DHCP Server: 12.31.35.
RackSwitch G8000 ISCLI Reference QoS Information The following command displays 802.1p information: show qos transmit-queue information Command mode: All Current priority to COS queue information: Priority COSq Weight -------- ---- -----0 0 1 1 0 1 2 0 1 3 0 1 4 0 1 5 0 1 6 0 1 7 1 4 Current port priority information: Port Priority COSq Weight ----- -------- ---- -----1:1 0 0 1 1:2 0 0 1 ... 2:1 2:2 2:3 2:4 ... 0 0 0 0 0 0 0 0 1 1 1 1 Table 2-23 describes the IEEE 802.
RackSwitch G8000 ISCLI Reference Table 2-24 describes the IEEE 802.1p port priority information. Table 2-24 802.1p Port Priority parameter descriptions Parameter Description Port Displays the port alias. Priority Displays the 802.1p Priority level. COSq Displays the Class of Service queue. Weight Displays the scheduling weight. QoS DSCP Information The following command displays DSCP information: show qos dscp Command mode: All except User EXEC Current DSCP Mapping Configuration: DSCP New 802.
RackSwitch G8000 ISCLI Reference Access Control List Information Access Control List Information The following command displays Access Control List (ACL) information: show access-control Command mode: All Current ACL information: -----------------------Filter 2 profile: Ethernet - VID : 2/0xfff Meter - Set to disabled - Set committed rate : 64 - Set max burst size : 32 Re-Mark - Set use of TOS precedence to disabled Actions : Permit No ACL groups configured.
RackSwitch G8000 ISCLI Reference Port Information The following command displays port information: show interface information Command mode: All except User EXEC Alias Port Tag Type PVID ----- ---- --- ---------- ----1:1 65 n External 1* 1:2 66 n External 1* 1:3 67 n External 1* 1:4 68 n External 1* 1:5 69 n External 1* 1:6 70 n External 1* 1:7 71 n External 1* 1:8 72 n External 1* 1:9 73 n External 1* 1:10 74 n External 1* ... # = PVID is tagged.
RackSwitch G8000 ISCLI Reference Interface Link Information The following command displays port link status for each port on the switch: show interface link Command mode: All except User EXEC RS G8000(config)# show interface link -----------------------------------------------------------------Alias Port Speed Duplex Flow Ctrl Link ------------------- --TX-----RX------1:1 65 any any yes yes down 1:2 66 any any yes yes down 1:3 67 any any yes yes down 1:4 68 any any yes yes down 1:5 69 any any yes yes down
RackSwitch G8000 ISCLI Reference Interface Transceivers The following command displays transceivers used on the switch.
CHAPTER 3 Statistics Commands You can view switch performance statistics in the user, operator, and administrator command modes. This chapter discusses how to use the ISCLI to display switch statistics. Table 3-1 Statistics Commands Command Syntax and Usage show snmp-server Displays the current SNMP configuration parameters. To view an example of the command output, see page 94. Command mode: All show snmp-server counters Displays SNMP statistics. To view an example of the command output, see page 94.
RackSwitch G8000 ISCLI Reference Port Statistics These commands display traffic statistics on a port-by-port basis. Traffic statistics include SNMP Management Information Base (MIB) objects. Table 3-2 Port Statistics Commands Command Syntax and Usage show interface port {} bridging-counters Displays bridging (“dot1”) statistics for the port. To view an example of the command output, see page 75.
RackSwitch G8000 ISCLI Reference Table 3-2 Port Statistics Commands Command Syntax and Usage clear interfaces Clears statistics for all ports. Command mode: All except User EXEC show interface port {} link-counters Displays link statistics for the port. To view an example of the command output, see page 83. Command mode: All clear interface port {} counters Clears all statistics counters for the selected ports.
RackSwitch G8000 ISCLI Reference Table 3-3 802.1X Authenticator Statistics of a Port Statistics Description eapolFramesRx Total number of EAPOL frames received. eapolFramesTx Total number of EAPOL frames transmitted. eapolStartFramesRx Total number of EAPOL Start frames received. eapolLogoffFramesRx Total number of EAPOL Logoff frames received. eapolRespIdFramesRx Total number of EAPOL Response Identity frames received. eapolRespFramesRx Total number of Response frames received.
RackSwitch G8000 ISCLI Reference Port 802.1X Authenticator Diagnostics Use the following command to display the 802.
RackSwitch G8000 ISCLI Reference Table 3-4 802.1X Authenticator Diagnostics of a Port Statistics Description Server Timeout Sets the time, in seconds, the authenticator waits for a response from the Radius server before declaring an authentication timeout. The default value is 30 seconds.
RackSwitch G8000 ISCLI Reference Port Bridging Statistics Use the following command to display the bridging statistics for the selected port: show interface port {} bridging-counters Command mode: All Bridging statistics for port 1: dot1PortInFrames: dot1PortOutFrames: dot1PortInDiscards: dot1StpPortForwardTransitions: 63242584 63277826 296 1 Table 3-5 Port Bridging Statistics Statistics Description dot1PortInFrames The number of frames that have been received by this port from its segme
RackSwitch G8000 ISCLI Reference Port Ethernet Statistics Use the following command to display the ethernet statistics for the selected port: show interface port {} ethernet-counters Command mode: All Ethernet statistics for port INT1: dot3StatsAlignmentErrors: dot3StatsFCSErrors: dot3StatsSingleCollisionFrames: dot3StatsMultipleCollisionFrames: dot3StatsLateCollisions: dot3StatsExcessiveCollisions: dot3StatsInternalMacTransmitErrors: dot3StatsFrameTooLongs: dot3StatsIntern
RackSwitch G8000 ISCLI Reference Table 3-6 Ethernet Statistics for Port Statistics Description dot3StatsSingleCollisionFrames A count of successfully transmitted frames on a particular interface for which transmission is inhibited by exactly one collision.
RackSwitch G8000 ISCLI Reference Table 3-6 Ethernet Statistics for Port Statistics Description dot3StatsFrameTooLongs A count of frames received on a particular interface that exceed the maximum permitted frame size. The count represented by an instance of this object is incremented when the frameTooLong status is returned by the MAC service to the LLC (or other MAC user). Received frames for which multiple error conditions obtained are, according to the conventions of IEEE 802.
RackSwitch G8000 ISCLI Reference Table 3-7 Interface Statistics for Port Statistics Description ifHCIn Counters Octets The total number of octets received on the interface, including framing characters. ifHCIn Counters UcastPkts The number of packets, delivered by this sub-layer to a higher sub- layer, which were not addressed to a multicast or broadcast address at this sublayer.
RackSwitch G8000 ISCLI Reference Table 3-7 Interface Statistics for Port Statistics Description ifHCOut Counters Discards The number of outbound packets which were chosen to be discarded even though no errors had been detected to prevent their being transmitted. One possible reason for discarding such a packet could be to free up buffer space. ifHCOut Counters Errors For packet-oriented interfaces, the number of outbound packets that could not be transmitted because of errors.
RackSwitch G8000 ISCLI Reference Port IP Statistics Use the following command to display the interface protocol (IP) statistics for the selected port: show interface port {} ip-counters Command mode: All GEA IP statistics for port 1: ipInReceives : 9710 ipInHeaderError : 0 ipInDiscards : 0 Table 3-8 Port IP Statistics Statistics Description ipInReceives The total number of input datagrams received from interfaces, including those received in error.
RackSwitch G8000 ISCLI Reference LACP Statistics Use the following command to display Link Aggregation Control Protocol (LACP) statistics for the selected port: show interface port {} lacp counters Command mode: All port 1 ----------------------------------------Valid LACPDUs received: - 0 Valid Marker PDus received: - 0 Valid Marker Rsp PDus received: - 0 Unknown version/TLV type: - 0 Illegal subtype received: - 0 LACPDUs transmitted: - 0 Marker PDUs transmitted: - 0 Marker Rsp PDUs transmit
RackSwitch G8000 ISCLI Reference Link Statistics Use the following command to display the link statistics for the selected port: show interface port {} link-counters Command mode: All Link statistics for port:1 linkStateChange:1 Table 3-10 Link Statistics Statistics Description linkStateChange The total number of link state changes.
RackSwitch G8000 ISCLI Reference Layer 2 Statistics This section describes general Layer 2 statistics commands. Table 3-11 Layer 2 Statistics Commands Command Syntax and Usage show mac-address-table counters Displays Forwarding Database (FDB) statistics. To view an example of the command output, see page 85. Command mode: All clear mac-address-table counters Clears FDB statistics.
RackSwitch G8000 ISCLI Reference Layer 3 Statistics The following table describes the commands that you can enter to view Layer 3 statistics: Table 3-13 Layer 3 Statistics Commands Command Syntax and Usage clear ip Clears all IP statistics. Command mode: All except User EXEC clear ip arp-cache Clears IP arp cache. Command mode: All except User EXEC show ip igmp groups Displays source address, port number, version, Vlan and other information. Command mode: All show ip igmp counters Displays IGMP statistics.
RackSwitch G8000 ISCLI Reference ARP Statistics The following command displays Address Resolution Protocol (ARP) statistics: show ip arp counters Command mode: All ARP Statistics: arpEntriesCur: arpEntriesMax: 2 4000 arpEntriesHighWater: 4 Table 3-14 ARP Statistics Statistics Description arpEntriesCur The total number of outstanding ARP entries in the ARP table. arpEntriesHighWater The highest number of ARP entries ever recorded in the ARP table.
RackSwitch G8000 ISCLI Reference IGMP Statistics The following command displays statistics about the use of the IGMP Multicast Groups: show ip igmp counters Command mode: All IGMP Snoop vlan 1 statistics -----------------------------rxIgmpValidPkts: rxIgmpInvalidPkts: rxIgmpGenQueries: rxIgmpGrpSpecificQueries: rxIgmpGroupSrcSpecificQueries: rxIgmpLeaves: rxIgmpReports: txIgmpReports: txIgmpGrpSpecificQueries: txIgmpLeaves: rxIgmpV3CurrentStateRecords: rxIgmpV3SourceListChangeRecords: rxIgmpV3FilterChange
RackSwitch G8000 ISCLI Reference Table 3-15 IGMP Statistics Statistic Description rxIgmpV3SourceListChangeRecords Total number of Source List Change records received. rxIgmpV3FilterChangeRecords Total number of Filter Change records received.
RackSwitch G8000 ISCLI Reference Access Control List Statistics Table 3-16 ACL Statistics Commands Command Syntax and Usage Need information on all following statistics show access-control list {<1-768>} counters Displays the Access Control List Statistics for a specific ACL. Command mode: All For details, see page 90. show access-control counters Displays all ACL statistics. Command mode: All except User EXEC clear access-control list Clears ACL statistics.
RackSwitch G8000 ISCLI Reference Management Processor Statistics The following table describes the commands used to display statistics about the switch’s management processor. Table 3-17 Management Processor Statistics commands Command Syntax and Usage show mp memory Displays system memory statistics. Command mode: All show mp packet Displays packet statistics, to check for leads and load.
RackSwitch G8000 ISCLI Reference TCP Statistics The following command displays TCP statistics: show mp tcp-block Command mode: All TCP ALLOCATED CONTROL BLOCKS 12.16.20.10 443 <=> 10.10.10.112 12.31.80.206 23 <=> 10.10.10.127 3804 2531 LISTEN ESTABLISHED Table 3-18 describes the Transmission Control Protocol (TCP) control block (TCB) statistics shown in this example: Table 3-18 TCP Statistics Description Example Destination IP address 12.16.20.10 Destination port 443 Source IP address 10.10.10.
RackSwitch G8000 ISCLI Reference UDP Statistics The following command displays UDP statistics: show mp udp-block Command mode: All UDP ALLOCATED 10.10.10.12 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 CONTROL 68 123 161 1812 1813 6123 7000 9000 BLOCKS LISTEN LISTEN LISTEN LISTEN LISTEN LISTEN LISTEN LISTEN Table 3-19 describes the User Datagram Protocol (UDP) control block statistics shown in this example: Table 3-19 UDP Statistics Description Example IP address 10.10.10.
RackSwitch G8000 ISCLI Reference CPU Statistics The following command displays the CPU utilization statistics: show mp cpu Command mode: All except User EXEC. CPU information: Load Average (over the last 1 min): 0.45 Load Average (over the last 5 mins): 0.34 Load Average (over the last 15 mins): 0.
RackSwitch G8000 ISCLI Reference SNMP Statistics The following command displays current SNMP parameters: show snmp-server Command mode: All Current SNMP params sysName: sysLocation: sysContact: Read community string: Write community string: Trap source address: Authentication traps All link up/down traps "RS G8000" "g8000" "Blade Network Technologies" "public" "private" 12.31.80.206 disabled. enabled.
RackSwitch G8000 ISCLI Reference Table 3-20 SNMP Statistics Statistics Description snmpInPkts The total number of Messages delivered to the SNMP entity from the transport service. snmpInBadVersions The total number of SNMP Messages, which were delivered to the SNMP protocol entity and were for an unsupported SNMP version. snmpInBadC'tyNames The total number of SNMP Messages delivered to the SNMP entity which used an SNMP community name not known to the said entity (the switch).
RackSwitch G8000 ISCLI Reference Table 3-20 SNMP Statistics Statistics Description snmpInReadOnlys The total number of valid SNMP Protocol Data Units (PDUs), which were delivered to the SNMP protocol entity and for which the value of the error-status field is `read-Only'. It should be noted that it is a protocol error to generate an SNMP PDU, which contains the value `read-Only' in the error-status field. As such, this object is provided as a means of detecting incorrect implementations of the SNMP.
RackSwitch G8000 ISCLI Reference Table 3-20 SNMP Statistics Statistics Description snmpOutGenErrs The total number of SNMP Protocol Data Units (PDUs), which were generated by the SNMP protocol entity and for which the value of the errorstatus field is genErr. snmpOutGetRequests The total number of SNMP Get-Request Protocol Data Units (PDUs), which have been generated by the SNMP protocol entity.
RackSwitch G8000 ISCLI Reference Statistics Dump The following command dumps switch statistics: show counters Use the dump command to dump all switch statistics (40K or more, depending on your configuration). This data can be used to tune or debug switch performance. If you want to capture dump data to a file, set the communication software on your workstation to capture session data before issuing the dump command.
CHAPTER 4 Configuration Commands This chapter explains how to use the Command Line Interface (CLI) to make, view and save switch configuration changes. Table 4-1 General Configuration Commands Command Syntax and Usage copy running-config startup-config Copy the current (running) configuration from switch memory to the startup-config partition in flash (save the new configuration).
RackSwitch G8000 ISCLI Reference Table 4-1 General Configuration Commands Command Syntax and Usage copy backup-config {ftp|tftp} Copy the backup configuration from switch memory to a file on the selected FTP/TFTP server. Command mode: All except User EXEC show running-config Dumps the current configuration to a script file. Command mode: All show active-config Dumps the active switch configuration to the terminal screen.
RackSwitch G8000 ISCLI Reference Viewing and Saving Changes As you use the configuration commands to set switch parameters, the changes you make take effect immediately. You do not need to apply them. Configuration changes are lost the next time the switch boots, unless you save the changes. NOTE – Some operations can override the settings of the Configuration commands. The Information commands display current run-time information of switch parameters.
RackSwitch G8000 ISCLI Reference System Configuration Use these commands to configure switch management parameters. Table 4-2 System Configuration Commands Command Syntax and Usage system date - Sets the system date. Command mode: Global configuration system time :: Configures the system time using a 24-hour clock format. Command mode: Global configuration system idle <1-60> Sets the idle timeout for CLI sessions, from 1 to 60 minutes. The default is five minutes.
RackSwitch G8000 ISCLI Reference Table 4-2 System Configuration Commands Command Syntax and Usage [no] system notice <1-255 characters> Configures the contents of the first notice that you want users to see before they login to the console CLI. This notice can contain up to 255 characters and new lines. All notices are displayed when you enter the following command: show system Command mode: Global configuration [no] banner <1-255 characters> Configures a login banner of up to 255 characters.
RackSwitch G8000 ISCLI Reference System Host Log Configuration Table 4-3 Host Log Configuration Commands Command Syntax and Usage logging host {<1-2>} address {} Sets the IP address of the selected syslog host. Command mode: Global configuration logging host {<1-2>} facility {<0-7>} Sets the facility level of the selected syslog host displayed. The default is zero.
RackSwitch G8000 ISCLI Reference SSH Server Configuration These commands enable Secure Shell access from any SSH client. Table 4-4 SSH Server Configuration Commands Command Syntax and Usage ssh interval <0-24> Sets the interval, in hours, for auto-generation of the RSA server key. Command mode: Global configuration ssh generate-host-key Generates the RSA host key. Command mode: Global configuration ssh generate-server-key Generates the RSA server key.
RackSwitch G8000 ISCLI Reference RADIUS Server Configuration Table 4-5 RADIUS Configuration Commands Command Syntax and Usage [no] radius-server primary-host Defines the primary RADIUS server address. Command mode: Global configuration [no] radius-server secondary-host Defines the secondary RADIUS server address.
RackSwitch G8000 ISCLI Reference Table 4-5 RADIUS Configuration Commands Command Syntax and Usage [no] radius-server backdoor Enables or disables the RADIUS backdoor for Telnet/SSH/HTTP/HTTPS. The default value is disabled. To obtain the RADIUS backdoor password, contact your Service and Support line. Command mode: Global configuration [no] radius-server secure-backdoor Enables or disables RADIUS secure back door access through Telnet/SSH only when the RADIUS servers cannot be reached.
RackSwitch G8000 ISCLI Reference Table 4-6 TACACS+ Server Commands Command Syntax and Usage [no] tacacs-server primary-host Defines the primary TACACS+ server address. Command mode: Global configuration [no] tacacs-server secondary-host Defines the secondary TACACS+ server address. Command mode: Global configuration [no] tacacs-server primary-host key <1-32 characters> Sets the primary-host key.
RackSwitch G8000 ISCLI Reference Table 4-6 TACACS+ Server Commands Command Syntax and Usage [no] tacacs-server secure-backdoor Enables or disables TACACS+ secure back door access through Telnet/SSH only when the TACACS+ servers cannot be reached. This feature is recommended to permit access to the switch when the TACACS+ servers are not available. The default setting is enabled. Command mode: Global configuration [no] tacacs-server command-authorization Enables or disables TACACS+ command authorization.
RackSwitch G8000 ISCLI Reference NTP Server Configuration These commands enable you to synchronize the switch clock to a Network Time Protocol (NTP) server. By default, this option is disabled. Table 4-7 NTP Configuration Commands Command Syntax and Usage [no] ntp primary-server Sets the IP address of the primary NTP server to which you want to synchronize the switch clock.
RackSwitch G8000 ISCLI Reference SNMP parameters that can be modified include: System name System location System contact Use of the SNMP system authentication trap function Read community string Write community string Trap community strings Table 4-8 System SNMP Commands Command Syntax and Usage [no] snmp-server name <1-64 characters> Configures the name for the system.
RackSwitch G8000 ISCLI Reference Table 4-8 System SNMP Commands Command Syntax and Usage [no] snmp-server authentication-trap enable Enables or disables the use of the system authentication trap facility. The default setting is disabled. Command mode: Global configuration [no] snmp-server link-trap port Enables or disables the sending of SNMP link up and link down traps. The default setting is enabled.
RackSwitch G8000 ISCLI Reference SNMPv3 Configuration SNMP version 3 (SNMPv3) is an extensible SNMP Framework that supplements the SNMPv2 Framework by supporting the following: A new SNMP message format Security for messages Access control Remote configuration of SNMP parameters For more details about the SNMPv3 architecture see RFC2271 to RFC2276.
RackSwitch G8000 ISCLI Reference Table 4-9 SNMPv3 Configuration Commands snmp-server target-address <1-16> Allows you to configure destination information, consisting of a transport domain and a transport address, also known as a transport endpoint. The SNMP MIB provides a mechanism for performing source address validation on incoming requests, and for selecting community strings based on target addresses for outgoing notifications. To view command options, see page 120.
RackSwitch G8000 ISCLI Reference User Security Model Configuration You can make use of a defined set of user identities using this User Security Mode (USM). An SNMP engine must have the knowledge of applicable attributes of a user. These commands help you create a user security model entry for an authorized user. You need to provide a security name to create the USM entry.
RackSwitch G8000 ISCLI Reference SNMPv3 View Configuration Table 4-11 SNMPv3 View Configuration Commands Command Syntax and Usage snmp-server view {<1-128>} name <1-32 characters> Defines the name for a family of view subtrees. Command mode: Global configuration snmp-server view {<1-128>} tree
RackSwitch G8000 ISCLI Reference View-Based Access Control Model Configuration The view-based Access Control Model defines a set of services that an application can use for checking access rights of the user. Access control is needed when the user has to process SNMP retrieval or modification request from an SNMP entity. Table 4-12 View-based Access Control Model Commands Command Syntax and Usage snmp-server access {<1-32>} name <1-32 characters> Defines the name of the group.
RackSwitch G8000 ISCLI Reference SNMPv3 Group Configuration Table 4-13 SNMPv3 Group Configuration Commands Command Syntax and Usage snmp-server group {<1-16>} security {usm|snmpv1|snmpv2} Defines the security model. Command mode: Global configuration snmp-server group {<1-16>} user-name <1-32 characters> Sets the user name as defined in the following command: snmp-server user <1-16> name <1-32 characters>.
RackSwitch G8000 ISCLI Reference SNMPv3 Community Table Configuration Use these commands to configure the community table entry. The configured entry is stored in the community table list in the SNMP engine. This table is used to configure community strings in the Local Configuration Datastore (LCD) of the SNMP engine.
RackSwitch G8000 ISCLI Reference SNMPv3 Target Address Table Configuration These commands allow you to set passwords and display current user statistics. Passwords can be a maximum of 15 characters. To disable a user, set the password to null. Table 4-15 Target Address Table Configuration Commands Command Syntax and Usage snmp-server target-address {<1-16>} address {} name <1-32 characters> Configures the locally arbitrary, but unique identifier, target address name associated with this entry.
RackSwitch G8000 ISCLI Reference SNMPv3 Target Parameters Table Configuration You can configure the Target Parameters entry and store it in the Target Parameters table in the SNMP engine. This table contains parameters that are used to generate a message. The parameters include the message processing model (for example: SNMPv3, SNMPv2c, SNMPv1), the security model (for example: USM), the security name, and the security level (noAuthnoPriv, authNoPriv, or authPriv).
RackSwitch G8000 ISCLI Reference SNMPv3 Notify Table Configuration SNMPv3 uses Notification Originator to send out traps. A notification typically monitors a system for particular events or conditions, and generates Notification-Class messages based on these events or conditions. Table 4-17 Notify Table Commands Command Syntax and Usage snmp-server notify {<1-16>} name <1-32 characters> Defines a locally arbitrary, but unique, identifier associated with this SNMP notify entry.
RackSwitch G8000 ISCLI Reference System Access Configuration Table 4-18 System Access Configuration Commands Command Syntax and Usage [no] access http enable Enables or disables HTTP (Web) access to the Browser-Based Interface. The default value is enabled. Command mode: Global configuration [default] access http port [<1-65535>] Sets the switch port used for serving switch Web content. The default is HTTP port 80.
RackSwitch G8000 ISCLI Reference HTTPS Access Configuration Table 4-19 HTTPS Access Configuration Commands Command Syntax and Usage [no] access https enable Enables BBI access (Web access) using HTTPS. The default value is disabled. Command mode: Global configuration [default] access https port [<1-65535>] Defines the HTTPS Web server port number.
RackSwitch G8000 ISCLI Reference Management Network Configuration These commands are used to define IP address ranges which are allowed to access the switch for management purposes. Table 4-20 Management Network Configuration Commands Command Syntax and Usage access management-network Adds a defined network through which switch access is allowed through Telnet, SNMP, SSH, or the browser-based interface (BBI). A range of IP addresses is produced when used with a network mask address.
RackSwitch G8000 ISCLI Reference User Access Control Configuration The following table describes user-access control commands. NOTE – User passwords can be a maximum of 128 characters. Table 4-21 User Access Control Configuration Commands Command Syntax and Usage access user administrator-password access user operator-password access user user-password Allows you to change the password. You must enter the current password for validation.
RackSwitch G8000 ISCLI Reference Table 4-21 User Access Control Configuration Commands Command Syntax and Usage access user operator-password <1-128 characters> Sets the operator (oper) password. The operator has no direct responsibility for switch management. The operator can view switch status information and statistics, but cannot make any configuration changes. Command mode: Global configuration access user administrator-password <1-128 characters> Sets the administrator (admin) password.
RackSwitch G8000 ISCLI Reference Port Configuration Use the Interface port commands to configure settings for individual switch ports. Table 4-23 Port Configuration Commands Command Syntax and Usage interface port Enter Interface Port configuration mode for the selected port. Command mode: Global configuration interface portchannel Enter Interface PortChannel (trunk group) configuration mode for the selected trunk group.
RackSwitch G8000 ISCLI Reference Table 4-23 Port Configuration Commands Command Syntax and Usage [no] shutdown Disables the port. To temporarily disable a port without changing its configuration attributes, see see “Temporarily Disabling a Port” on page 130. Command mode: Interface port [no] tag-pvid Enables VLAN tag persistence. When disabled, the VLAN tag is removed from packets whose VLAN tag matches the port PVID. The default setting is enabled.
RackSwitch G8000 ISCLI Reference Table 4-24 Port Link Configuration Commands Command Syntax and Usage duplex {full|half|any} Sets the operating mode. Not all options are valid on all ports. Ports 1-18 are set to full duplex, and cannot be changed. The choices include: Full-duplex Half-duplex “Any,” for auto-negotiation (default) Command mode: Interface port [no] flowcontrol {both|receive|send} Sets the flow control.
RackSwitch G8000 ISCLI Reference Port ACL Configuration Table 4-25 Port ACL Configuration Command Syntax and Usage access-control list <1-768> Adds the specified ACL to the port. You can add multiple ACL lists to a port. Command mode: Interface port no access-control list <1-768> Deletes the specified ACL from the port. Command mode: Interface port access-control group <1-768> Adds the specified ACL Group to the port. You can add multiple ACL Groups to a port.
RackSwitch G8000 ISCLI Reference Stacking Configuration A stack is a group of switches that work together as a unified system. The network views a stack of switches as a single entity, identified by a single network IP address. The Stacking Configuration menu is used to configure a stack, and to define the Master and Backup interface that represents the stack on the network. Table 4-26 Stacking commands Command Syntax and Usage [no] stack name <1-32 characters> Configures a name for the stack.
RackSwitch G8000 ISCLI Reference Stacking Switch Configuration Table 4-27 Stacking Switch commands Command Syntax and Usage stack switch-number bind Binds the selected switch to the stack, based on its assigned switch number (asnum). Command mode: Global configuration stack switch-number mac Binds the selected switch to the stack, based on its MAC address.
RackSwitch G8000 ISCLI Reference Master Switch Interface Configuration Table 4-28 Master Switch Interface commands Command Syntax and Usage stack master-ip-interface address [] [] [] Configures the IP address for the Master Switch Interface, using dotted decimal notation. Command mode: Global configuration stack master-ip-interface netmask Configures the IP subnet address mask for the interface, using dotted decimal notation.
RackSwitch G8000 ISCLI Reference Backup Switch Interface Configuration Table 4-29 Backup Switch Interface commands Command Syntax and Usage stack backup-ip-interface address [] [] [] Configures the IP address for the Backup Switch Interface, using dotted decimal notation. Command mode: Global configuration stack backup-ip-interface netmask Configures the IP subnet address mask for the interface, using dotted decimal notation.
RackSwitch G8000 ISCLI Reference Port Mirroring Port Mirroring commands are used to configure, enable, and disable the monitor port. When enabled, network packets being sent and/or received on a target port are duplicated and sent to the monitor port. By attaching a network analyzer to the monitor port, you can collect detailed information about your network performance and usage. The switch supports up to four monitor ports. Port mirroring is disabled by default.
RackSwitch G8000 ISCLI Reference Layer 2 Configuration The following table describes basic Layer 2 Configuration commands. The following sections provide more detailed information and commands. Table 4-31 Layer 2 Configuration Commands Command Syntax and Usage vlan <1-4094> Enters VLAN configuration mode. To view command options, see page 152. Command mode: Global configuration [no] spanning-tree bpdu-guard Globally enables or disables BPDU Guard.
RackSwitch G8000 ISCLI Reference 802.1X Configuration These commands allow you to configure the switch as an IEEE 802.1X Authenticator, to provide port-based network access control. Table 4-32 802.1X Configuration Commands Command Syntax and Usage dot1x enable Globally enables 802.1X. Command mode: Global configuration show dot1x information Displays current enabled/disabled state of 802.1X parameters. Command mode: All 802.1X Global Configuration The global 802.
RackSwitch G8000 ISCLI Reference Table 4-33 802.1X Global Configuration Commands Command Syntax and Usage dot1x quiet-time {<0-65535>} Sets the time, in seconds, the authenticator waits before transmitting an EAP-Request/ Identity frame to the supplicant (client) after an authentication failure in the previous round of authentication. The default value is 60 seconds. Command mode: Global configuration [no] dot1x re-authenticate Sets the re-authentication status to on. The default value is off.
RackSwitch G8000 ISCLI Reference 802.1X Guest VLAN Configuration The 802.1X Guest VLAN menu allows you to configure a Guest VLAN for unauthenticated ports. The Guest VLAN provides limited access to switch functions. Table 2 802.1X Guest VLAN Configuration Commands Command Syntax and Usage [no] dot1x guest-vlan vlan Configures the Guest VLAN number. Command mode: Global configuration dot1x guest-vlan enable Enables the 802.1X Guest VLAN.
RackSwitch G8000 ISCLI Reference 802.1X Port Configuration The 802.1X port commands allows you to configure parameters that affect the selected port in the switch. These settings override the global 802.1X parameters. Table 4-34 802.1X Port Commands Command Syntax and Usage dot1x apply-global Applies current global 802.1X configuration parameters to the port.
RackSwitch G8000 ISCLI Reference Table 4-34 802.1X Port Commands Command Syntax and Usage dot1x max-request {<1-10>} Sets the maximum number of times the authenticator retransmits an EAP-Request packet to the supplicant (client). The default value is two. Command mode: Interface port dot1x re-authentication-interval {<1-604800>} Sets the time, in seconds, the authenticator waits before re-authenticating a supplicant (client) when periodic re-authentication is enabled. The default value is 3600 seconds.
RackSwitch G8000 ISCLI Reference Trunk Configuration Trunk groups (portchannels) can provide super-bandwidth connections between switches or other trunk capable devices. A trunk is a group of ports that act together, combining their bandwidth to create a single, larger port. The following restrictions apply to trunk group configuration: Any physical switch port can belong to no more than one trunk group. Up to eight ports can belong to the same trunk group.
RackSwitch G8000 ISCLI Reference IP Trunk Hash Configuration Trunk hash parameters are set globally for the switch. You can enable one or two parameters to configure any of the following valid combinations: SMAC (source MAC only) DMAC (destination MAC only) SIP (source IP only) DIP (destination IP only) SIP + DIP (source IP and destination IP) SMAC + DMAC (source MAC and destination MAC) Use the following commands to configure Layer 2 IP trunk hash parameters.
RackSwitch G8000 ISCLI Reference Table 4-37 Layer 2 IP Trunk Hash Commands Command Syntax and Usage portchannel hash destination-mac-address Enables trunk hashing on the destination MAC address. Command mode: Global configuration portchannel hash source-destination-mac Enables trunk hashing on the source and destination MAC address. Command mode: Global configuration show portchannel hash Displays current Layer 2 trunk hash setting.
RackSwitch G8000 ISCLI Reference Table 4-38 Link Aggregation Control Protocol Commands Command Syntax and Usage default lacp [system-priority|timeout] Resets LACP parameters to their default values. Command mode: Global configuration no lacp Removes all port LACP configuration with the specified admin key. Command mode: Global configuration show lacp Displays current LACP configuration.
RackSwitch G8000 ISCLI Reference LACP Port Configuration Use the following commands to configure Link Aggregation Control Protocol (LACP) for the selected port. Table 4-39 Link Aggregation Control Protocol Port Configuration Commands Command Syntax and Usage lacp mode {off|active|passive} Sets the LACP mode for this port, as follows: off: Turns LACP off for this port. You can use this port to manually configure a static trunk. The default value is off.
RackSwitch G8000 ISCLI Reference Layer 2 Failover Configuration Use these commands to configure Layer 2 Failover. For more information about Layer 2 Failover, see “High Availability” in the BLADE OS Application Guide. Table 4-40 Layer 2 Failover Configuration Commands Command Syntax and Usage failover enable Globally turns Layer 2 Failover on. Command mode: Global configuration no failover enable Globally turns Layer 2 Failover off.
RackSwitch G8000 ISCLI Reference Failover Manual Monitor - Monitor Configuration Use this menu to define the port link(s) to monitor. The Manual Monitor - Monitor configuration accepts only external uplink ports. Table 4-42 Failover Manual Monitor - Monitor commands Command Syntax and Usage failover trigger <1-8> mmon monitor member Adds the selected port to the Manual Monitor - Monitor.
RackSwitch G8000 ISCLI Reference Failover Manual Monitor - Control Configuration Use this menu to define the port link(s) to control. The Manual Monitor - Control configuration accepts internal and external ports, but not management ports. Figure 4-1 Failover Manual Monitor - Control commands Command Syntax and Usage failover trigger <1-8> mmon control member Adds the selected port to the Manual Monitor - Control.
RackSwitch G8000 ISCLI Reference VLAN Configuration The commands in this section configure VLAN attributes, change the status of the VLAN, delete the VLAN, and change the port membership of the VLAN. By default, all VLANs are disabled except VLAN 1, which is always enabled. The switch supports a maximum of 1,024 VLANs. Table 4-43 VLAN Configuration Commands Command Syntax and Usage vlan {<1-4094>} Enters VLAN configuration mode.
RackSwitch G8000 ISCLI Reference Layer 3 Configuration The following table describes basic Layer 3 Configuration commands. The following sections provide more detailed information and commands. Table 4-44 Layer 3 Configuration Commands Command Syntax and Usage show layer3 information Displays the current IP configuration. Command mode: All ARP Configuration Address Resolution Protocol (ARP) is the TCP/IP protocol that resides within the Internet layer. ARP resolves a physical address from an IP address.
RackSwitch G8000 ISCLI Reference IGMP Snooping Configuration IGMP Snooping allows the switch to forward multicast traffic only to those ports that request it. IGMP snooping prevents multicast traffic from being flooded to all ports. The switch learns which server hosts are interested in receiving multicast traffic, and forwards the multicast traffic only to ports connected to those servers. Table 4-46 describes the commands used to configure IGMP Snooping.
RackSwitch G8000 ISCLI Reference Table 4-46 IGMP Snooping Configuration Commands Command Syntax and Usage [no] ip snoop igmp cpu Configures the switch to forward unregistered IP multicast traffic to the MP, which adds an entry in the IPMC table, as follows: If no Mrouter is present, drop subsequent packets with same IPMC. If an Mrouter is present, forward subsequent packets to the Mrouter(s) on the ingress VLAN. The default setting is enabled.
RackSwitch G8000 ISCLI Reference IGMP Static Multicast Router Configuration Table 4-47 describes the commands used to configure a static multicast router. Table 4-47 IGMP Static Multicast Router Configuration Commands Command Syntax and Usage ip igmp mrouter {|} {} Selects a port/VLAN combination on which the static multicast router is connected, and configures the IGMP version (1, 2, or 3) of the multicast router.
RackSwitch G8000 ISCLI Reference Domain Name System Configuration The Domain Name System (DNS) commands are used for defining the primary and secondary DNS servers on your local network, and for setting the default domain name served by the switch services. DNS parameters must be configured prior to using hostname parameters with the ping, traceroute, and TFTP commands.
RackSwitch G8000 ISCLI Reference Quality of Service Configuration Quality of Service (QoS) commands configure the 802.1p priority value and DiffServ Code Point value of incoming packets. This allows you to differentiate between various types of traffic, and provide different priority levels. 802.1p Configuration This feature gives the switch the capability to filter IP packets based on the 802.1p bits in the packet's VLAN header. The 802.
RackSwitch G8000 ISCLI Reference DSCP Configuration These commands map the DiffServ Code Point (DSCP) value of incoming packets to an 802.1p priority value. Table 4-50 DSCP Configuration Commands Command Syntax and Usage qos dscp dot1p-mapping {} {} Maps the DiffServ Code point value to an 802.1p priority value. Enter the DSCP value, followed by the corresponding 802.1p value. Command mode: Global configuration [no] qos dscp enable Globally turns DSCP mapping on or off.
RackSwitch G8000 ISCLI Reference Access Control List Configuration These commands allow you to define filtering criteria for each Access Control List (ACL). Table 4-52 ACL Configuration Commands Command Syntax and Usage [no] access-control list {<1-768>} egress-port Configures the ACL to function on egress packets. Command mode: Global configuration access-control list {<1-768>} action {permit|deny|set-priority <0-7>} Configures a filter action for packets that match the ACL definitions.
RackSwitch G8000 ISCLI Reference Table 4-53 Ethernet Filtering Configuration Commands Command Syntax and Usage [no] access-control list {<1-768>} ethernet vlan {} {} Defines a VLAN number and mask for this ACL. Command mode: Global configuration [no] access-control list {<1-768>} ethernet ethernet-type {arp|ip|ipv6|mpls|rarp|any|0xXXXX} Defines the Ethernet type for this ACL.
RackSwitch G8000 ISCLI Reference IP version 4 Filtering Configuration These commands allow you to define IPv4 matching criteria for an ACL. Table 4-54 IP version 4 Filtering Configuration Commands Command Syntax and Usage [no] access-control list {<1-768>} ipv4 source-ip-address { Defines a source IP address for the ACL. If defined, traffic with this source IP address will match this ACL. Specify an IP address in dotted decimal notation.
RackSwitch G8000 ISCLI Reference TCP/UDP Filtering Configuration These commands allow you to define TCP/UDP matching criteria for an ACL. Table 4-55 TCP/UDP Filtering Configuration Commands Command Syntax and Usage [no] access-control list {<1-768>} tcp-udp source-port <1-65535> Defines a source port for the ACL. If defined, traffic with the specified TCP or UDP source port will match this ACL. Specify the port number.
RackSwitch G8000 ISCLI Reference Table 4-55 TCP/UDP Filtering Configuration Commands Command Syntax and Usage default access-control list {<1-768>} tcp-udp Resets the TCP/UDP parameters for the ACL to their default values. Command mode: Global configuration show access-control list {<1-768>} tcp-udp Displays the current TCP/UDP Filtering parameters. Command mode: All except User EXEC Packet Format Filtering Configuration These commands allow you to define Packet Format matching criteria for an ACL.
RackSwitch G8000 ISCLI Reference ACL Group Configuration These commands allow you to compile one or more ACLs into an ACL Group. Once you create an ACL Group, you can assign the ACL Group to one or more ports. Table 4-57 ACL Group Configuration Commands Command Syntax and Usage access-control group {<1-768>} list <1-768> Adds the selected ACL to the ACL Group. Command mode: Global configuration no access-control group {<1-768>} list <1-768> Removes the selected ACL from the ACL Group.
RackSwitch G8000 ISCLI Reference Table 4-58 ACL Metering Configuration Commands Command Syntax and Usage access-control list {<1-768>} meter action {drop|pass} Configures the ACL Meter to either drop or pass out-of-profile traffic. Command mode: Global configuration show access-control list {<1-768>} meter Displays current ACL Metering parameters. Command mode: All ACL Re-Mark Configuration You can choose to re-mark IP header data for the selected ACL or ACL Group.
RackSwitch G8000 ISCLI Reference Update User Priority Configuration Table 4-60 User Priority Configuration Commands Command Syntax and Usage access-control list {<1-768>} re-mark in-profile dot1p <0-7> Defines 802.1p value. The value is the priority bits information in the packet structure. Command mode: Global configuration [no] access-control list {<1-768>} re-mark in-profile use-tos-precedence Enable or disable mapping of TOS (Type of Service) priority to 802.1p priority for In-Profile packets.
RackSwitch G8000 ISCLI Reference Configuration Dump The dump program writes the current switch configuration to the terminal screen. To start the dump program, at the prompt, enter: RS G8000(config)# show running-config The configuration is displayed with parameters that have been changed from the default values. The screen display can be captured, edited, and placed in a script file, which can be used to configure other switches through a Telnet connection.
RackSwitch G8000 ISCLI Reference Restoring the Active or Backup Switch Configuration When the copy active-config running-config command is used, the running configuration will be replaced with the commands found in the active (saved) configuration file. The file can contain a full switch configuration or a partial switch configuration.
RackSwitch G8000 ISCLI Reference Active Configuration command output The following command displays active configuration information. show active-config Command mode: All except User EXEC Active configuration: May 23 2008 05:03:45 RS G8000:SYSLOG-INFO:INFO mgmt: console enabled # #switch-type "Blade Network Technologies Rack Switch G8000" #Software Version 6.0.
RackSwitch G8000 ISCLI Reference 170 Chapter 4: Configuration Commands BMD00128, September 2009
CHAPTER 5 Operations Commands Operations commands generally affect switch performance immediately, but do not alter permanent switch configurations. For example, you can use Operations commands to immediately disable a port, with the understanding that when the switch is reset, the port returns to its normally configured operation. These commands allow you to alter switch operational characteristics without affecting switch configuration.
RackSwitch G8000 ISCLI Reference Operations-Level Port Options Operations-level port commands are used for temporarily disabling or enabling a port, and for resetting the port. Table 5-2 Port Operations Commands Command Syntax and Usage interface port shutdown Temporarily disables the port. The port will be returned to its configured operation mode when the switch is reset. Command Mode: Privileged EXEC no interface port shutdown Temporarily enables the port.
CHAPTER 6 Boot Options To use the Boot Options commands, you must be logged in to the switch as the administrator. The Boot Options commands allow you to perform the following actions: Select a switch software image to be used when the switch is next reset. Select a configuration block to be used when the switch is next reset. Download or uploading a new software image to the switch via TFTP.
RackSwitch G8000 ISCLI Reference Table 6-1 General Boot Commands Command Syntax and Usage copy tftp active-config Copy configuration file from TFTP server to the active-config partition in the switch. Command Mode: Privileged EXEC copy tftp backup-config Copy configuration file from TFTP server to the backup-config partition in the switch. Command Mode: Privileged EXEC copy tftp image1|image2|boot-image Copy software image file from a TFTP server to the selected flash partition on the switch.
RackSwitch G8000 ISCLI Reference Updating the Switch Software Image The switch software image is the executable code running on the switch. A version of the image ships with the switch, and comes pre-installed. As new versions of the image are released, you can upgrade the software running on your switch. To get the latest version of software available for your switch, go to: http://www.bladenetwork.net/support_services_rackswitch.html Click on software updates.
RackSwitch G8000 ISCLI Reference Loading new Software to Your Switch The switch can store up to two different software images, called image1 and image2, as well as boot software, called boot. When you load new software, you must specify where it should be placed: either into image1, image2, or boot-image. For example, if your active image is currently loaded into image1, you would probably load the new image software into image2.
RackSwitch G8000 ISCLI Reference Selecting a Software Image to run You can select which software image (image1 or image2) you want to run in switch memory for the next reboot. 1. In Global Configuration mode, enter: RS G8000(config)# boot image {image1|image2} 2. Enter the name of the image you want the switch to use upon the next boot. The system informs you of which image set to be loaded at the next reset: Next boot will use switch software image1 instead of image2.
RackSwitch G8000 ISCLI Reference Selecting a Configuration Block When you make configuration changes to the switch, you must save the changes so that they are retained beyond the next time the switch is reset. When you perform a save operation (copy running-config active-config), your new configuration changes are placed in the active configuration block. The previous configuration is copied into the backup configuration block. There is also a factory configuration block.
RackSwitch G8000 ISCLI Reference Accessing the BLADE OS CLI To access the Alteon OS CLI, enter the following command from the ISCLI: Router(config)# boot cli-mode aos The default command-line interface for the G8000 is the BLADE OS CLI.
RackSwitch G8000 ISCLI Reference Using the Boot Management menu The Boot Management menu allows you to switch the software image, reset the switch to factory defaults, or to recover from a failed software download. You can interrupt the boot process and enter the Boot Management menu from the serial console port. When the system displays Memory Test, press the key and the key at the same time. The Boot Management menu appears. Resetting the System ... Memory Test ...............................
RackSwitch G8000 ISCLI Reference Using SNMP with Switch Images and Configuration Files This section describes how to use MIB calls to work with switch images and configuration files. You can use a standard SNMP tool to perform the actions, using the MIBs listed in Table 6-3. The examples in this section use the MIB name, but you can also use the OID. Table 6-3 lists the MIBS used to perform operations associated with the G8000 switch image and configuration files.
RackSwitch G8000 ISCLI Reference Loading a new switch image To load a new switch image with the name “MyNewImage.img” into image2, follow the steps below. This example assumes you have a TFTP server at 192.168.10.10. 1. Set the TFTP server address where the switch image resides: Set agTftpServer.0 “192.168.10.10” 2. Set the area where the new image will be loaded: Set agTftpImage.0 “image2” 3. Set the name of the image: Set agTftpImageFileName.0 “MyNewImage.img” 4. Initiate the transfer.
RackSwitch G8000 ISCLI Reference Saving the switch configuration from the active configuration To save the active switch configuration to a TFTP server follow the steps below. This example assumes you have a TFTP server at 192.168.10.10. 1. Set the TFTP server address where the configuration file is saved: Set agTftpServer.0 “192.168.10.10” 2. Set the name of the configuration file: Set agTftpCfgFileName.0 “MyActiveConfig.cfg” 3. Initiate the transfer.
RackSwitch G8000 ISCLI Reference 186 Chapter 6: Boot Options BMD00128, September 2009
CHAPTER 7 Maintenance Commands Use the maintenance commands to manage dump information and to forward database information. Maintenance commands include debugging commands to help with troubleshooting. Dump information contains internal switch state data that is written to flash memory on the switch after any one of the following occurs: The switch administrator forces a switch panic.
RackSwitch G8000 ISCLI Reference Table 7-1 General Maintenance Commands Command Syntax and Usage show tech-support Dumps all switch information, statistics, and configuration. The output default file name is tsdmp. Command mode: All copy tech-support {ftp|tftp} Saves all switch information, statistics, and configuration to a file on the selected FTP/TFTP server. The output default file name is tsdmp.
RackSwitch G8000 ISCLI Reference Forwarding Database Maintenance The Forwarding Database commands can be used to view information, to delete a MAC address from the forwarding database, or to clear the entire forwarding database. This is helpful in identifying problems associated with MAC address learning and packet forwarding decisions. Table 7-2 FDB Manipulation Commands Command Syntax and Usage show mac-address-table address {} Displays a single database entry by its MAC address.
RackSwitch G8000 ISCLI Reference ARP Cache Maintenance Table 7-3 Address Resolution Protocol Maintenance Commands Command Syntax and Usage show ip arp find Shows a single ARP entry by IP address. Command mode: All except User EXEC show ip arp interface port Shows ARP entries on selected ports. Command mode: All except User EXEC show ip arp vlan <1-4095> Shows ARP entries on a single VLAN.
RackSwitch G8000 ISCLI Reference IGMP Group Information Table 7-4 describes the IGMP Snooping maintenance commands. Table 7-4 IGMP Multicast Group Maintenance Commands Command Syntax and Usage show ip igmp groups address Displays a single IGMP multicast group by its IP address. Command mode: All show ip igmp vlan <1-4094> Displays groups on a single vlan. Command mode: All show ip igmp groups interface port Displays all IGMP multicast groups on a single port.
RackSwitch G8000 ISCLI Reference IGMP Multicast Routers Maintenance Table 7-5 describes the maintenance commands for IGMP multicast routers. Table 7-5 IGMP Multicast Router Maintenance Commands Command Syntax and Usage show ip igmp mrouter vlan <1-4094> Displays multicast router information for the selected VLAN. Command mode: All show ip igmp mrouter information Shows IGMP multicast router information. Command mode: All clear ip igmp mrouter Clears all static multicast routers from the switch.
Index A abbreviating commands (CLI) 20 access control user 126 ACL Port commands 131 ACL statistics 90 active configuration block 101, 180 active switch configuration active switch configuration restoring 170 TFTP server 170 administrator account 22 B backup configuration block 180 boot options menu 175 C Cisco Ether Channel 143 command (help) 18 commands abbreviations 20 conventions used in this manual 12 shortcuts 20 tab completion 20 commands, ISCLI modes 15 BMD00128, September 2009 configuration 8
RackSwitch G8000 ISCLI Reference E L EtherChannel as used with port trunking 143 LACP 146 Layer 2 commands 43 Layer 3 commands 54 link speed, configuring 129 Link Aggregation Control Protocol 146 link status 23 duplex mode 23 port speed 23, 67 Link Status Information 172 linkt (SNMP option) 112 F factory configuration block 180 FDB statistics 85 flow control 23 configuring 130 forwarding database (FDB) 187 Forwarding Database Information 44 Forwarding Database Menu 189 forwarding state (FWD) 46 G Glob
RackSwitch G8000 ISCLI Reference port mirroring configuration 136 port speed 23, 67 port states UNK (unknown) 46 port trunking description 143 port trunking configuration 143 portchannel configuration 143 ports disabling (temporarily) 130 information 65 membership of the VLAN 43, 53 VLAN ID 23, 65 prisrv primary radius server 106 PVID (port VLAN ID) 23, 65 R RADIUS, configuration RADIUS 106 read community string (SNMP option) 111 reference ports 46 re-mark 168 retries radius server 106 route statistics 98
RackSwitch G8000 ISCLI Reference VLANs information 53 name 43, 53 port membership 43, 53 setting default number (PVID) 128 tagging 23, 65, 153 VLAN Number 53 W watchdog timer 187 wport 123 196 BMD00128, September 2009
