TM RackSwitch G8000 Command Reference Version 6.0 Part Number: BMD00127, September 2009 2350 Mission College Blvd. Suite 600 Santa Clara, CA 95054 www.bladenetwork.
BLADE OS Command Reference Copyright © 2009 Blade Network Technologies, Inc., 2350 Mission College Blvd., Suite 600, Santa Clara, California, 95054, USA. All rights reserved. Part Number: BMD00127. This document is protected by copyright and distributed under licenses restricting its use, copying, distribution, and decompilation. No part of this document may be reproduced in any form by any means without prior written authorization of Blade Network Technologies, Inc.
Contents Preface 9 Who Should Use This Book 9 How This Book Is Organized 10 Typographic Conventions 11 How to Get Help 12 The Command Line Interface 13 Connecting to the Switch 14 Connecting to the Switch via Telnet 14 Establishing an SSH Connection 14 Running SSH 15 Accessing the Switch 16 Command Line History and Editing 17 Idle Timeout 17 First-Time Configuration 19 Setup for Telnet Support 19 Setting Passwords 20 Changing the Default Administrator Password 20 Changing the Default User Password 22 Menu B
BLADE OS Command Reference The Information Menu 33 Information Menu 33 System Information 35 SNMPv3 System Information Menu 36 SNMPv3 USM User Table Information 38 SNMPv3 View Table Information 39 SNMPv3 Access Table Information 40 SNMPv3 Group Table Information 41 SNMPv3 Community Table Information 41 SNMPv3 Target Address Table Information 42 SNMPv3 Target Parameters Table Information 43 SNMPv3 Notify Table Information 44 SNMPv3 Dump Information 45 General System Information 46 Show Recent Syslog Message
BLADE OS Command Reference Access Control List Information 69 Link Status Information 70 Port Information 71 Fiber Port Transceiver Status 72 Information Dump 72 The Statistics Menu 73 Statistics Menu 73 Port Statistics 75 802.1X Authenticator Statistics 76 802.
BLADE OS Command Reference Viewing Pending Changes 113 Applying Pending Changes 114 Saving the Configuration 114 System Configuration 115 System Host Log Configuration 118 SSH Server Configuration 119 RADIUS Server Configuration 121 TACACS+ Server Configuration 123 NTP Server Configuration 126 System SNMP Configuration 127 SNMPv3 Configuration 129 User Security Model Configuration 131 SNMPv3 View Configuration 132 View-based Access Control Model Configuration 133 SNMPv3 Group Configuration 135 SNMPv3 Commu
BLADE OS Command Reference IP Trunk Hash Configuration 165 IP Trunk Hash 165 LACP Configuration 167 LACP Port Configuration 168 Layer 2 Failover Configuration 169 Failover Trigger Configuration 170 Manual Monitor Configuration 171 Manual Monitor-Monitor Configuration 172 Manual Monitor-Control Configuration 173 VLAN Configuration 174 Layer 3 Configuration 176 IGMP Configuration 177 IGMP Snooping Configuration 178 IGMP Static Multicast Router Configuration 180 IGMP Filtering Configuration 181 IGMP Filter De
BLADE OS Command Reference Operational System Options 203 The Boot Options Menu 205 Boot Menu 205 Stacking Boot Options 206 Stacking Boot Menu 206 Updating the Switch Software Image 207 Loading New Software to Your Switch 207 Using the BLADE OS CLI 207 Selecting a Software Image to Run 208 Uploading a Software Image from Your Switch 209 Selecting a Configuration Block 210 Resetting the Switch 211 Accessing the ISCLI 211 Using the Boot Management menu 212 Using SNMP with Switch Images and Configuration Fi
Preface The RackSwitch G8000 Command Reference describes how to configure and use the BLADE OS software with your RackSwitch G8000. For documentation on installing the switches physically, see the Installation Guide for your G8000. For details about configuration and operation of your G8000, see the RackSwitch G8000 Application Guide. Who Should Use This Book This Command Reference is intended for network installers and system administrators engaged in configuring and maintaining a network.
BLADE OS Command Reference How This Book Is Organized Chapter 1 “The Command Line Interface,” describes how to connect to the switch and access the information and configuration menus. Chapter 2 “First-Time Configuration,” describes initial switch configuration and how to change the system passwords. Chapter 3 “Menu Basics,” provides an overview of the menu system, including a menu map, global commands, and menu shortcuts.
BLADE OS Command Reference Typographic Conventions The following table describes the typographic styles used in this book. Table 1 Typographic Conventions Typeface or Symbol Meaning Example AaBbCc123 This type is used for names of commands, files, and directories used within the text. View the readme.txt file. It also depicts on-screen computer output and Main# prompts. AaBbCc123 This bold type appears in command examples. It shows text that must be typed in exactly as shown.
BLADE OS Command Reference How to Get Help If you need help, service, or technical assistance, call Blade Network Technologies Technical Support: US toll free calls: 1-800-414-5268 International calls: 1-408-834-7871 You also can visit our web site at the following address: http://www.bladenetwork.net Click the Support tab. The warranty card received with your product provides details for contacting a customer support representative.
CHAPTER 1 The Command Line Interface Your RackSwitch G8000 is ready to perform basic switching functions right out of the box. Some of the more advanced features, however, require some administrative configuration before they can be used effectively.
BLADE OS Command Reference Connecting to the Switch You can access the command line interface in any one of the following ways: Using a Telnet connection over the network Using a SSH connection to securely log into another computer over a network Using a serial connection using the serial port on the G8000 Connecting to the Switch via Telnet Once you have configured the G8000 with an IP address and gateway, you can access the switch from any workstation connected to the management network.
BLADE OS Command Reference The following SSH clients have been tested: SSH 1.2.23 and SSH 1.2.27 for Linux (freeware) SecureCRT 3.0.2 and SecureCRT 3.0.3 (Van Dyke Technologies, Inc.) F-Secure SSH 1.1 for Windows (Data Fellows) NOTE – The BLADE OS implementation of SSH is based on SSH version 1 and SSH version 2. Running SSH Once the IP parameters are configured and the SSH service is turned on the G8000, you can access the command line interface using an SSH connection.
BLADE OS Command Reference Accessing the Switch To enable better switch management and user accountability, three levels or classes of user access have been implemented on the G8000. Levels of access to CLI, Web management functions, and screens increase as needed to perform various switch management tasks. Conceptually, access classes are defined as follows: User interaction with the switch is completely passive—nothing can be changed on the G8000.
BLADE OS Command Reference Table 1-1 User Access Levels User Account Description and Tasks Performed Password User The User has no direct responsibility for switch management. He or she can view all switch status information and statistics, but cannot make any configuration changes to the switch. user Operator The Operator manages all functions of the switch. The Operator can reset ports, except the management port.
BLADE OS Command Reference 18 The Command Line Interface BMD00127, September 2009
CHAPTER 2 First-Time Configuration This chapter provides information to help with the initial configuration of your switch. Setup for Telnet Support NOTE – This procedure is optional. Perform this procedure only if you are planning on connecting to the switch through a remote Telnet connection. 1. Telnet is enabled by default. To change the setting, use the following command: >> # /cfg/sys/access/tnet 2. Apply and save SNMP and /or telnet configuration(s).
BLADE OS Command Reference Setting Passwords It is recommended that you change the user and administrator passwords after initial configuration and as regularly as required under your network security policies. To change the administrator password, you must login using the administrator password. NOTE – If you forget your administrator password, call your technical support representative for help using the password fix-up mode.
BLADE OS Command Reference The System Menu is displayed. [System Menu] syslog sshd radius tacacs+ ntp ssnmp access date time timezone olddst dlight idle notice bannr hprompt dhcp rstctrl cur 4.
BLADE OS Command Reference 5. Select the administrator password. System Access# user/admpw 6. Enter the current administrator password at the prompt: Changing ADMINISTRATOR password; validation required... Enter current administrator password: NOTE – If you forget your administrator password, call your technical support representative for help using the password fix-up mode. 7. Enter the new administrator password at the prompt: Enter new administrator password: 8.
BLADE OS Command Reference 3. From the Configuration Menu, use the following command to select the System Menu: >> Configuration# sys 4. From the System Menu, use the following command to select the System Access Menu: >> System# access 5. Select the user password. System# user/usrpw 6. Enter the current administrator password at the prompt. Only the administrator can change the user password. Entering the administrator password confirms your authority. Changing USER password; validation required...
BLADE OS Command Reference 24 First-Time Configuration BMD00127, September 2009
CHAPTER 3 Menu Basics The G8000’s Command Line Interface (CLI) is used for viewing switch information and statistics. In addition, the administrator can use the CLI for performing all levels of switch configuration. To make the CLI easy to use, the various commands have been logically grouped into a series of menus and sub-menus. Each menu displays a list of commands and/or sub-menus that are available, along with a summary of what each command will do.
BLADE OS Command Reference Menu Summary Information Menu Provides sub-menus for displaying information about the current status of the switch: from basic system settings to VLANs, and more. Statistics Menu Provides sub-menus for displaying switch performance statistics. Configuration Menu This menu is available only from an administrator login. It includes sub-menus for configuring every aspect of the switch. Changes to configuration are not active until explicitly applied.
BLADE OS Command Reference Global Commands Some basic commands are recognized throughout the menu hierarchy. These commands are useful for obtaining online help, navigating through menus, and for applying and saving configuration changes. For help on a specific command, type help.
BLADE OS Command Reference Table 3-1 Description of Global Commands 28 Menu Basics Command Action revert Remove pending configuration changes between “apply” commands. Use this command to restore configuration parameters set since last apply. revert apply Remove pending or applied configuration changes between “save” commands. Use this command to remove any configuration changes made since last save. exit or quit Exit from the command line interface and log out.
BLADE OS Command Reference Table 3-1 Description of Global Commands Command Action chpass_p Configures the password for the primary TACACS+ server. chpass_s Configures the password for the secondary TACACS+ server.
BLADE OS Command Reference Command Line History and Editing Using the command line interface, you can retrieve and modify previously entered commands with just a few keystrokes. The following options are available globally at the command line: Table 3-2 Command Line History and Editing Options 30 Menu Basics Option Description history Display a numbered list of the last 64 previously entered commands. !! Repeat the last entered command. !n Repeat the nth command shown on the history list.
BLADE OS Command Reference Command Line Interface Shortcuts Command Stacking As a shortcut, you can type multiple commands on a single line, separated by forward slashes (/). You can connect as many commands as required to access the menu option that you want.
BLADE OS Command Reference 32 Menu Basics BMD00127, September 2009
CHAPTER 4 The Information Menu You can view configuration information for the switch in both the user and administrator command modes. This chapter discusses how to use the command line interface to display switch infor- mation.
BLADE OS Command Reference Table 4-1 Information Menu Options (/info) Command Syntax and Usage l3 Displays the Layer 3 Information Menu. For details, see page 59. qos Displays the Quality of Service (QoS) Information Menu. For details, see page 67. acl Displays the current configuration profile for each Access Control List (ACL) and ACL Group. For details, see page 69.
BLADE OS Command Reference /info/sys System Information [System Menu] snmpv3 general log user dump - SNMPv3 Information Menu Show general system information Show last 100 syslog messages Show current user status Dump all system information The information provided by each menu option is briefly described in Table 4-2, with pointers to where detailed information can be found. Table 4-2 System Menu Options (/info/sys) Command Syntax and Usage snmpv3 Displays SNMPv3 Information Menu.
BLADE OS Command Reference /info/sys/snmpv3 SNMPv3 System Information Menu SNMP version 3 (SNMPv3) is an extensible SNMP Framework that supplements the SNMPv2 Framework by supporting the following: a new SNMP message format security for messages access control remote configuration of SNMP parameters For more details on the SNMPv3 architecture please refer to RFC2271 to RFC2276.
BLADE OS Command Reference Table 4-3 SNMPv3 information Menu Options (/info/sys/snmpv3) Command Syntax and Usage tparam Displays the Target parameters table information. To view a sample, see page 43. notify Displays the Notify table information. To view a sample, see page 44. dump Displays all the SNMPv3 information. To view a sample, see page 45.
BLADE OS Command Reference /info/sys/snmpv3/usm SNMPv3 USM User Table Information The User-based Security Model (USM) in SNMPv3 provides security services such as authentication and privacy of messages. This security model makes use of a defined set of user identities displayed in the USM user table.
BLADE OS Command Reference /info/sys/snmpv3/view SNMPv3 View Table Information The user can control and restrict the access allowed to a group to only a subset of the management information in the management domain that the group can access within each context by specifying the group’s rights in terms of a particular MIB view for security reasons. View Name ----------------iso v1v2only v1v2only v1v2only v1v2only Subtree -----------------1.3 1.3 1.3.6.1.6.3.15 1.3.6.1.6.3.16 1.3.6.1.6.3.
BLADE OS Command Reference /info/sys/snmpv3/access SNMPv3 Access Table Information The access control sub system provides authorization services. The vacmAccessTable maps a group name, security information, a context, and a message type, which could be the read or write type of operation or notification into a MIB view. The View-based Access Control Model defines a set of services that an application can use for checking access rights of a group.
BLADE OS Command Reference /info/sys/snmpv3/group SNMPv3 Group Table Information A group is a combination of security model and security name that defines the access rights assigned to all the security names belonging to that group. The group is identified by a group name.
BLADE OS Command Reference /info/sys/snmpv3/taddr SNMPv3 Target Address Table Information This command displays the SNMPv3 target address table information, which is stored in the SNMP engine. Name Transport Addr Port Taglist Params ---------- --------------- ---- ---------- --------------trap1 47.81.25.
BLADE OS Command Reference /info/sys/snmpv3/tparam SNMPv3 Target Parameters Table Information Name MP Model --------------- -------v1v2param snmpv2c User Name -------------v1v2only Sec Model --------snmpv1 Sec Level --------noAuthNoPriv Table 4-10 SNMPv3 Target Parameters Table Information (/info/sys/snmpv3/ tparam) Field Description Name Displays the locally arbitrary, but unique identifier associated with this snmpTargeParamsEntry.
BLADE OS Command Reference /info/sys/snmpv3/notify SNMPv3 Notify Table Information Name Tag -------------------- -------------------v1v2trap v1v2trap Table 4-11 SNMPv3 Notify Table Information (/info/sys/snmpv3/notify) Field Description Name The locally arbitrary, but unique identifier associated with this snmpNotifyEntry. Tag This represents a single tag value which is used to select entries in the snmpTargetAddrTable.
BLADE OS Command Reference /info/sys/snmpv3/dump SNMPv3 Dump Information usmUser Table: User Name -------------------------------adminmd5 adminsha v1v2only Protocol -------------------------------HMAC_MD5, DES PRIVACY HMAC_SHA, DES PRIVACY NO AUTH, NO PRIVACY vacmAccess Table: Group Name Prefix Model Level Match ReadV WriteV NotifyV ---------- ------ ------- ---------- ------ ------- -------- -----v1v2grp snmpv1 noAuthNoPriv exact iso iso v1v2only admingrp usm authPriv exact iso iso iso vacmViewTreeFamil
BLADE OS Command Reference /info/sys/general General System Information Blade Network Technologies Rack Switch G8000 System Information at Sun Jan 15 23:56:24 2009 Switch has been up for 0 day, 0 hour, 19 minutes and 31 seconds Last boot:(power cycle) MAC address: 00:18:b1:8a:36:00 IP (If 1) address: 172.24.1.70 Revision: 8 Switch Serial No: US38200028 Spare Part No: BAC-00017-00 Manufacturing date: 08/20 Software Version 6.0.1 (FLASH image2), active configuration.
BLADE OS Command Reference Hardware version and part number Software image file and version number Configuration name Log-in banner, if one is configured /info/sys/log Show Recent Syslog Messages Jan 26 2008 18:03:27 RS G8000:CLI-ALERT:User (admin) logged in on console Jan 26 2008 18:07:32 RS G8000:CFA-NOTICE:system: link up on port 2:2 Jan 26 2008 18:11:12 RS G8000:SYSTEM-CRITICAL:Warning: Fan Failure /info/sys/user User Status Usernames: user - enabled - offline oper - disabled - offline
BLADE OS Command Reference /info/stack Stacking Information [Stacking Menu] switch link vers ip path pushstat dump - Show Show Show Show Show Show Dump switch information stack link information switch firmware information Master and Backup IP information inter switch packet path map config/image push status information all stacking information Table 4-12 lists the Stacking Information commands.
BLADE OS Command Reference info/stack/switch Show Stacking Switch Information Stack name: Stack1 Local switch is the master.
BLADE OS Command Reference /info/l2 Layer 2 Information [Layer 2 Menu] fdb lacp failovr 8021x bpdugrd trunk vlan dump - Forwarding Database Information Menu Link Aggregation Control Protocol Menu Show Failover information Show 802.1x information Show BPDU Guard information Show Trunk Group information Show VLAN information Dump all layer 2 information The information provided by each menu option is briefly described in Table 4-13, with pointers to where detailed information can be found.
BLADE OS Command Reference Table 4-13 Layer 2 Menu Options (/info/l2) Command Syntax and Usage dump Dumps all switch information available from the Layer 2 menu (10K or more, depending on your configuration). If you want to capture dump data to a file, set your communication software on your workstation to capture session data prior to issuing the dump commands.
BLADE OS Command Reference Table 4-14 FDB Information Menu Options (/info/l2/fdb) Command Syntax and Usage vlan Displays all FDB entries on a single VLAN. state unknown|forward|trunk| Displays all FDB entries of a particular state. dump Displays all entries in the Forwarding Database. For more information, see page 52.
BLADE OS Command Reference /info/l2/lacp Link Aggregation Control Protocol Information [LACP Menu] aggr port dump - Show LACP aggregator information for the port - Show LACP port information - Show all LACP ports information Use these commands to display Link Aggregation Protocol (LACP) status information about each port on the G8000. Table 4-15 LACP Menu Options (/info/l2/lacp) Command Syntax and Usage aggr Displays detailed information of the LACP aggregator used by the selected port.
BLADE OS Command Reference selected Indicates whether the port has been selected to be part of a Link Aggregation Group. prio Shows the value of the port priority. attached aggr Displays the aggregator associated with each port. trunk This value represents the LACP trunk group number. /info/l2/failovr Layer 2 Failover Information Menu [Failover Info Menu] trigger - Show Trigger information Table 4-16 describes the Layer 2 Failover information options.
BLADE OS Command Reference /info/l2/failovr/trigger Show Layer 2 Failover Information Trigger 1 Auto Monitor: Enabled Trigger 1 limit: 0 Monitor State: Up Member Status ------------------trunk 1 2:2 Operational 2:3 Operational Control State: Auto Disabled Member Status ------------------1:1 Operational 1:2 Operational 1:3 Operational 1:4 Operational ...
BLADE OS Command Reference /info/l2/8021x 802.
BLADE OS Command Reference Table 4-17 802.1X Parameter Descriptions (Continued)(/info/l2/8021x) Parameter Description Authenticator PAE State Displays the Authenticator Port Access Entity State. The PAE state can be one of the following: initialize disconnected connecting authenticating authenticated aborting held forceAuth Backend Auth State Displays the Backend Authorization State.
BLADE OS Command Reference /info/l2/vlan VLAN Information VLAN ---1 Name -------------------------------Default VLAN 20 30 4090 VLAN 20 VLAN 30 STK VLAN Status -----ena ena ena ena Ports -------------------1:1-1:50 2:1-2:50 3:1-3:50 4:1-4:50 5:1-5:50 6:1-6:50 empty empty 1:51 1:52 2:51 2:52 3:51 3:52 4:51 4:52 5:51 5:52 6:51 6:52 This information display includes all configured VLANs and all member ports that have an active link state. Port membership is represented in slot/port format.
BLADE OS Command Reference /info/l3 Layer 3 Information [Layer 3 Menu] arp igmp ip dump - ARP Information Menu Show IGMP Snooping Multicast Group information Show IP information Dump all layer 3 information The information provided by each menu option is briefly described in Table 4-18, with pointers to detailed information. Table 4-18 Layer 3 Menu Options (/info/l3) Command Syntax and Usage arp Displays the Address Resolution Protocol (ARP) Information Menu. For details, see page 61.
BLADE OS Command Reference /info/l3/dump Layer 3 Information Interface information: 1: 10.1.1.1 255.255.0.0 10.1.1.255,vlan1, up Default gateway information: 10.1.1.2, enabled, active Master switch IP interface configured through DHCP MAC address: 00:22:00:ac:bd:1f IP address: 127.31.37.158 Subnet mask: 255.255.0.0 Default gateway: 127.31.1.1 DHCP Server: 127.31.35.
BLADE OS Command Reference /info/l3/arp ARP Information [Address Resolution Protocol Menu] find - Show a single ARP entry by IP address port - Show ARP entries on a single port vlan - Show ARP entries on a single VLAN dump - Show all ARP entries addr - Show ARP address list The ARP information includes IP address and MAC address of each entry, address status flags (see Table 4-19 on page 61), VLAN and port for the address, and port referencing information.
BLADE OS Command Reference /info/l3/arp/dump Show All ARP Entry Information IP address Flags --------------- ----47.80.22.1 47.80.23.243 P 47.80.23.245 190.10.10.1 P MAC address VLAN Port ----------------- ---- ---00:e0:16:7c:28:86 1 1:6 00:03:42:fa:3b:30 1 00:c0:4f:60:3e:c1 1 1:6 00:03:42:fa:3b:30 10 NOTE – If you have VMA turned on, the referenced port will be the designated port. If you have VMA turned off, the designated port will be the normal ingress port.
BLADE OS Command Reference /info/l3/igmp IGMP Multicast Group Information [IGMP Multicast mrouter find vlan port trunk detail dump - Menu] Show IGMP Snooping Multicast Router Port information Show a single group by IP group address Show groups on a single vlan Show groups on a single port Show groups on a single trunk Show detail of a single group by IP group address Show all groups Table 4-21 describes the commands used to display information about IGMP groups learned by the switch.
BLADE OS Command Reference info/l3/igmp/dump IGMP Group Information Note: Local groups (224.0.0.x) are not snooped/relayed and will not appear. Group --------------226.0.0.0 226.0.0.1 226.0.0.2 226.0.0.3 226.0.0.
BLADE OS Command Reference info/l3/igmp/mrouter/dump IGMP Mrouter Information SrcIP VLAN -------------------- ------- 10.10.254.
BLADE OS Command Reference /info/l3/ip IP Information Interface information: 1: 10.200.30.3 255.255.255.0 3.3.3.255, vlan 1, up Default gateway information: metric strict 1: 10.200.1.1, vlan any, up Master switch IP interface configured through DHCP MAC address: 00:22:00:ac:bd:1f IP address: 12.31.37.158 Subnet mask: 255.255.0.0 Default gateway: 12.31.1.1 DHCP Server: 12.31.35.
BLADE OS Command Reference /info/qos Quality of Service Information [QoS Menu] 8021p - Show QOS 802.1p information Table 4-23 QoS Menu Options (/info/qos) Command Syntax and Usage 8021p Displays the 802.1p Information Menu. For details, see page 67. /info/qos/8021p 802.
BLADE OS Command Reference The following table describes the IEEE 802.1p priority to COS queue information. Table 4-24 802.1p Priority-to-COS Queue Parameter Descriptions Parameter Description Priority Displays the 802.1p Priority level. COSq Displays the Class of Service queue. Weight Displays the scheduling weight of the COS queue. The following table describes the IEEE 802.1p port priority information. Table 4-25 802.
BLADE OS Command Reference info/acl Access Control List Information Current ACL information: -----------------------Filter 2 profile: Ethernet - VID : 2/0xfff Meter - Set to disabled - Set committed rate : 64 - Set max burst size : 32 Re-Mark - Set use of TOS precedence to disabled Actions : Permit No ACL groups configured. Access Control List (ACL) information includes configuration settings for each ACL and ACL Group.
BLADE OS Command Reference /info/link Link Status Information RS G8000(config)# show interface link -----------------------------------------------------------------Alias Port Speed Duplex Flow Ctrl Link ------------------- --TX-----RX------1:1 65 any any yes yes down 1:2 66 any any yes yes down 1:3 67 any any yes yes down 1:4 68 any any yes yes down 1:5 69 any any yes yes down 1:6 70 any any yes yes down 1:7 71 any any yes yes down 1:8 72 any any yes yes down 1:9 73 any any yes yes down 1:10 74 any any y
BLADE OS Command Reference /info/port Port Information Alias Port Tag Type PVID ----- ---- --- ---------- ----1:1 65 n External 1* 1:2 66 n External 1* 1:3 67 n External 1* 1:4 68 n External 1* 1:5 69 n External 1* 1:6 70 n External 1* 1:7 71 n External 1* 1:8 72 n External 1* 1:9 73 n External 1* 1:10 74 n External 1* ... # = PVID is tagged.
BLADE OS Command Reference /info/transcvr Fiber Port Transceiver Status Modules: Switch IO Module ------ -----------1 Front module 1 Rear module Type Part Number --------------------------Not inserted CX4 BAC-00027-00 Serial ---------------CH4825008X /info/dump Information Dump Use the dump command to dump all switch information available from the Information Menu (10K or more, depending on your configuration). This data is useful for tuning and debugging switch performance.
CHAPTER 5 The Statistics Menu You can view switch performance statistics in both the user and administrator command modes. This chapter discusses how to use the command line interface to display switch statistics.
BLADE OS Command Reference The information provided by each menu option is briefly described in Table 5-1, with pointers to detailed information. Table 5-1 Statistics Menu Options (/stats) Command Syntax and Usage port Displays the Port Statistics Menu for the specified port. Use this command to display traffic statistics on a port-by-port basis. Traffic statistics are included in SNMP Management Information Base (MIB) objects. To view menu options, see page 75.
BLADE OS Command Reference /stats/port Port Statistics This menu displays traffic statistics on a port-by-port basis. Traffic statistics include SNMP Management Information Base (MIB) objects. [Port Statistics Menu] 8021x - Show 802.
BLADE OS Command Reference /stats/port /8021x 802.1X Authenticator Statistics This menu option enables you to display the 802.1X authenticator statistics of the selected port.
BLADE OS Command Reference Table 5-3 802.1X Authenticator Statistics of a Port (/stats/port/8021x) Statistics Description lastEapolFrameVersion The protocol version number carried in the most recently received lastEapolFrameSource The source MAC address carried in the most recently received EAPOL frame. EAPOL frame. /stats/port /8021x 802.1X Authenticator Diagnostics This menu option enables you to display the 802.1X authenticator diagnostics of the selected port.
BLADE OS Command Reference Table 5-4 802.1X Authenticator Diagnostics of a Port (/stats/port/8021x) Statistics Description authEntersAuthenticating Total number of times that the state machine transitions from CONNECTING to AUTHENTICATING, as a result of an EAPResponse/Identity message being received from the Supplicant.
BLADE OS Command Reference Table 5-4 802.1X Authenticator Diagnostics of a Port (/stats/port/8021x) Statistics Description backendOtherRequestsToSupplicant Total number of times that the state machine sends an EAP-Request packet (other than an Identity, Notification, Failure, or Success message) to the Supplicant. Indicates that the Authenticator chose an EAP-method.
BLADE OS Command Reference Table 5-5 Bridging Statistics of a Port (/stats/port/brg) Statistics Description dot1PortInDiscards Count of valid frames received which were discarded (that is, filtered) by the Forwarding Process. dot1TpLearnedEntry Discards The total number of Forwarding Database entries, which have been or would have been learnt, but have been discarded due to a lack of space to store them in the Forwarding Database.
BLADE OS Command Reference /stats/port /ether Ethernet Statistics This menu option enables you to display the ethernet statistics of the selected port Ethernet statistics for port 1:1: dot3StatsAlignmentErrors: dot3StatsFCSErrors: dot3StatsSingleCollisionFrames: dot3StatsMultipleCollisionFrames: dot3StatsLateCollisions: dot3StatsExcessiveCollisions: dot3StatsInternalMacTransmitErrors: dot3StatsFrameTooLongs: dot3StatsInternalMacReceiveErrors: 0 0 0 0 0 0 NA 0 0 Table 5-6 Ethernet Statistics
BLADE OS Command Reference Table 5-6 Ethernet Statistics for Port (/stats/port/ether) Statistics Description dot3StatsMultipleCollisionFrames A count of successfully transmitted frames on a particular interface for which transmission is inhibited by more than one collision.
BLADE OS Command Reference Table 5-6 Ethernet Statistics for Port (/stats/port/ether) Statistics Description dot3StatsInternalMacReceiveErrors A count of frames for which reception on a particular interface fails due to an internal MAC sub layer receive error. A frame is only counted by an instance of this object if it is not counted by the corresponding instance of either the dot3StatsFrameTooLongs object, the dot3StatsAlignmentErrors object, or the dot3StatsFCSErrors object.
BLADE OS Command Reference /stats/port /if Interface Statistics This menu option enables you to display the interface statistics of the selected port.
BLADE OS Command Reference Table 5-7 Interface Statistics for Port (/stats/port/if) Statistics Description ifInUnknownProtos For packet-oriented interfaces, the number of packets received via the interface which were discarded because of an unknown or unsupported protocol. For character-oriented or fixed-length interfaces which support protocol multiplexing, the number of transmission units received via the interface which were discarded because of an unknown or unsupported protocol.
BLADE OS Command Reference /stats/port /ip Interface Protocol Statistics This menu option enables you to display the interface statistics of the selected port. GEA IP statistics for port 1:1: ipInReceives : 0 ipInHeaderError: 0 ipInDiscards : 0 Table 5-8 Interface Protocol Statistics (/stats/port/ip) Statistics Description ipInReceives The total number of input datagrams received from interfaces, including those received in error.
BLADE OS Command Reference /stats/l2 Layer 2 Statistics [Layer 2 Statistics Menu] fdb - Show FDB stats lacp - Show LACP stats The Layer 2 statistics provided by each menu option are briefly described in Table 5-10, with pointers to detailed information. Table 5-10 Layer 2 Statistics Menu Options (/stats/l2) Command Syntax and Usage fdb [clear] Displays FDB statistics. See page 87 for sample output.
BLADE OS Command Reference /stats/l2/lacp [clear] LACP Statistics Port 1:1: -------------------------------------Valid LACPDUs received: - 870 Valid Marker PDUs received: - 0 Valid Marker Rsp PDUs received: - 0 Unknown version/TLV type: - 0 Illegal subtype received: - 0 LACPDUs transmitted: - 6031 Marker PDUs transmitted: - 0 Marker Rsp PDUs transmitted: - 0 Link Aggregation Control Protocol (LACP) statistics are described in the following table: Table 5-12 LACP Statistics (/stats/lacp) Stat
BLADE OS Command Reference /stats/l3 Layer 3 Statistics [Layer 3 Statistics Menu] ip - Show IP stats arp - Show ARP stats dns - Show DNS stats icmp - Show ICMP stats tcp - Show TCP stats udp - Show UDP stats igmp - Show IGMP stats igmpgrps - Total number of IGMP groups ipmcgrps - Total number of IPMC groups clrigmp - Clear IGMP stats ipclear - Clear IP stats dump - Dump layer 3 stats The Layer 3 statistics provided by each menu option are briefly described in Table 5-13, with pointers to detailed informa
BLADE OS Command Reference Table 5-13 Layer 3 Statistics Menu Options (/stats/l3) Command Syntax and Usage igmp Displays IGMP statistics. See page 99 for sample output. igmpgrps Displays the total number of IGMP groups that are registered on the switch. ipmcgrps Displays the total number of current IP multicast groups that are registered on the switch. clrigmp Clears IGMP statistics. ipclear Clears IP statistics. Use this command with caution as it will delete all the IP statistics.
BLADE OS Command Reference /stats/l3/ip IP Statistics IP statistics: ipInReceives: ipInAddrErrors: ipInUnknownProtos: ipInDelivers: ipOutDiscards: ipReasmReqds: ipReasmFails: ipFragFails: ipRoutingDiscards: ipReasmTimeout: 3115873 35447 500504 2334166 4 0 0 0 0 5 ipInHdrErrors: ipForwDatagrams: ipInDiscards: ipOutRequests: ipOutNoRoutes: ipReasmOKs: ipFragOKs: ipFragCreates: ipDefaultTTL: 1 0 0 1010542 4 0 0 0 255 Table 5-14 IP Statistics (stats/l3/ip) Statistics Description ipInReceives The total n
BLADE OS Command Reference Table 5-14 IP Statistics (stats/l3/ip) Statistics Description ipInDelivers The total number of input datagrams successfully delivered to IP userprotocols (including ICMP). ipOutRequests The total number of IP datagrams which local IP user-protocols (including ICMP) supplied to IP in requests for transmission. Note that this counter does not include any datagrams counted in ipForwDatagrams.
BLADE OS Command Reference /stats/l3/arp ARP statistics This menu option enables you to display Address Resolution Protocol statistics. ARP statistics: arpEntriesCur: 3 arpEntriesHighWater: 4 Table 5-15 ARP Statistics (/stats/l3/arp) Statistics Description arpEntriesCur The total number of outstanding ARP entries in the ARP table. arpEntriesHighWater The highest number of ARP entries ever recorded in the ARP table.
BLADE OS Command Reference /stats/l3/icmp [clear] ICMP Statistics ICMP statistics: icmpInMsgs: icmpInDestUnreachs: icmpInParmProbs: icmpInRedirects: icmpInEchoReps: icmpInTimestampReps: icmpInAddrMaskReps: icmpOutErrors: icmpOutTimeExcds: icmpOutSrcQuenchs: icmpOutEchos: icmpOutTimestamps: icmpOutAddrMasks: 245802 41 0 0 244350 0 0 0 0 0 253777 0 0 icmpInErrors: icmpInTimeExcds: icmpInSrcQuenchs: icmpInEchos: icmpInTimestamps: icmpInAddrMasks: icmpOutMsgs: icmpOutDestUnreachs: icmpOutParmProbs: icmpOutRe
BLADE OS Command Reference Table 5-17 ICMP Statistics (/stats/l3/icmp) Statistics Description icmpInAddrMaskReps The number of ICMP Address Mask Reply messages received. icmpOutMsgs The total number of ICMP messages which this entity (the switch) attempted to send. Note that this counter includes all those counted by icmpOutErrors. icmpOutErrors The number of ICMP messages which this entity (the switch) did not send due to problems discovered within ICMP such as a lack of buffer.
BLADE OS Command Reference /stats/l3/tcp [clear] TCP Statistics TCP statistics: tcpRtoAlgorithm: tcpRtoMax: tcpActiveOpens: tcpAttemptFails: tcpInSegs: tcpRetransSegs: tcpCurBuff: tcpOutRsts: 4 240000 252214 528 756401 0 0 417 tcpRtoMin: tcpMaxConn: tcpPassiveOpens: tcpEstabResets: tcpOutSegs: tcpInErrs: tcpCurConn: 0 512 7 4 756655 0 3 Table 5-18 TCP Statistics (/stats/l3/tcp) Statistics Description tcpRtoAlgorithm The algorithm used to determine the timeout value used for retransmitting unacknowle
BLADE OS Command Reference Table 5-18 TCP Statistics (/stats/l3/tcp) Statistics Description tcpEstabResets The number of times TCP connections have made a direct transition to the CLOSED state from either the ESTABLISHED state or the CLOSEWAIT state. tcpInSegs The total number of segments received, including those received in error. This count includes segments received on currently established connections.
BLADE OS Command Reference /stats/l3/udp [clear] UDP Statistics UDP statistics: udpInDatagrams: udpInErrors: 54 0 udpOutDatagrams: udpNoPorts: 43 1578077 Table 5-19 UDP Statistics (/stats/l3/udp) Statistics Description udpInDatagrams The total number of UDP datagrams delivered to the switch. udpOutDatagrams The total number of UDP datagrams sent from this entity (the switch).
BLADE OS Command Reference /stats/l3/igmp IGMP Statistics IGMP Snoop vlan 2 statistics: ----------------------------------------------------------------------rxIgmpValidPkts: 0 rxIgmpInvalidPkts: 0 rxIgmpGenQueries: 0 rxIgmpGrpSpecificQueries: 0 rxIgmpGroupSrcSpecificQueries: 0 rxIgmpLeaves: 0 rxIgmpReports: 0 txIgmpReports: 0 txIgmpGrpSpecificQueries: 0 txIgmpLeaves: 0 rxIgmpV3CurrentStateRecords: 0 rxIgmpV3SourceListChangeRecords:0 rxIgmpV3FilterChangeRecords: 0 This menu option displays s
BLADE OS Command Reference /stats/mp Management Processor Statistics [MP-specific Statistics Menu] thr - Show STEM thread stats i2c - Show I2C stats pkt - Show Packet stats tcb - Show All TCP control blocks in use ucb - Show All UDP control blocks in use cpu - Show CPU utilization Table 5-21 Management Processor Statistics Menu Options (/stats/mp) Command Syntax and Usage thr Displays STEM thread statistics. This command is used by Technical Support personnel. i2c Displays I2C statistics.
BLADE OS Command Reference /stats/mp/pkt MP Packet Statistics Packet counts: allocs: 1722684 mediums: 0 jumbos: 0 smalls: 0 failures: 0 frees: mediums hi-watermark: jumbos hi-watermark: smalls hi-watermark: 1722684 4 0 8 Table 5-22 Packet Statistics (/stats/mp/pkt) Statistics Description allocs Total number of packet allocations from the packet buffer pool by the TCP/IP protocol stack.
BLADE OS Command Reference /stats/mp/tcb TCP Statistics All TCP allocated control blocks: 10ad41e8: 0.0.0.0 0 <=> 0.0.0.0 10ad5790: 47.81.27.5 1171 <=> 47.80.23.243 80 23 listen established Table 5-23 MP Specified TCP Statistics (/stats/mp/tcb) Statistics Description 10ad41e8/10ad5790 Memory 0.0.0.0/47.81.27.5 Destination IP address 0/1171 Destination port 0.0.0.0/47.80.23.
BLADE OS Command Reference /stats/mp/cpu CPU Statistics This menu option enables you to display the CPU utilization statistics. CPU utilization: cpuUtil1Second: cpuUtil4Seconds: cpuUtil64Seconds: 53% 54% 54% Table 5-24 CPU Statistics (stats/mp/cpu) Statistics Description cpuUtil1Second The utilization of MP CPU over 1 second. It shows the percentage. cpuUtil4Seconds The utilization of MP CPU over 4 seconds. It shows the percentage. cpuUtil64Seconds The utilization of MP CPU over 64 seconds.
BLADE OS Command Reference /stats/acl ACL Statistics [ACL Menu] acl dump clracl - Display ACL stats - Display all available ACL stats - Clear ACL stats ACL statistics are described in the following table. Table 5-25 ACL Statistics Menu Options (/stats/acl) Command Syntax and Usage acl <1-768> Displays the Access Control List Statistics for a specific ACL. For details, see page 104. dump Displays all ACL statistics. clracl Clears all ACL statistics.
BLADE OS Command Reference /stats/snmp SNMP Statistics NOTE – Use the following command to reset the SNMP counter to zero: snmp clear SNMP statistics: snmpInPkts: snmpInBadC'tyNames: snmpInASNParseErrs: snmpOutPkts: snmpInTooBigs: snmpInBadValues: snmpInGenErrs: snmpInTotalSetVars: snmpInGetNexts: snmpInGetResponses: snmpOutTooBigs: snmpOutBadValues: snmpOutGenErrs: snmpOutGetNexts: snmpOutGetResponses: snmpSilentDrops: 150097 0 0 150097 0 0 0 2731 131389 0 0 0 1 0 150093 0 snmpInBadVersions: snmpInBadC
BLADE OS Command Reference Table 5-26 SNMP Statistics (/stats/snmp) Statistics Description snmpInASNParseErrs The total number of ASN.1 or BER errors encountered by the SNMP protocol entity when decoding SNMP Messages received. Note: OSI's method of specifying abstract objects is called ASN.1 (Abstract Syntax Notation One, defined in X.208), and one set of rules for representing such objects as strings of ones and zeros is called the BER (Basic Encoding Rules, defined in X.209). ASN.
BLADE OS Command Reference Table 5-26 SNMP Statistics (/stats/snmp) Statistics Description snmpInTotalSetVars The total number of MIB objects, which have been altered successfully by the SNMP protocol entity as a result of receiving valid SNMP SetRequest Protocol Data Units (PDUs). snmpInGetRequests The total number of SNMP Get-Request Protocol Data Units (PDUs), which have been accepted and processed by the SNMP protocol entity.
BLADE OS Command Reference Table 5-26 SNMP Statistics (/stats/snmp) Statistics Description snmpOutTraps The total number of SNMP Trap Protocol Data Units (PDUs), which have been generated by the SNMP protocol entity.
BLADE OS Command Reference /stats/ntp [clear] NTP Statistics BLADE OS uses NTP (Network Timing Protocol) version 3 to synchronize the switch’s internal clock with an atomic time calibrated NTP server. With NTP enabled, the switch can accurately update its internal clock to be consistent with other devices on the network and generates accurate syslogs.
BLADE OS Command Reference Table 5-27 NTP Statistics Parameters (/stats/ntp) Field Description Last update based on response from primary server Last update of time on the switch based on either primary or secondary NTP response received. Last update time The time stamp showing the time when the switch was last updated. Current system time The switch system time when the command /stats/ntp was issued.
CHAPTER 6 The Configuration Menu This chapter discusses how to use the Command Line Interface (CLI) for making, viewing, and saving switch configuration changes. Many of the commands, although not new, display more or different information than in the previous version. Important differences are called out in the text.
BLADE OS Command Reference /cfg Configuration Menu [Configuration Menu] sys - System-wide Parameter Menu port - Port Menu stack - Stacking Menu qos - QOS Menu acl - Access Control List Menu pmirr - Port Mirroring Menu l2 - Layer 2 Menu l3 - Layer 3 Menu dump - Dump current configuration to script file ptcfg - Backup current configuration to FTP/TFTP server gtcfg - Restore current configuration from FTP/TFTP server cur - Display current configuration Each configuration option is briefly described in Table
BLADE OS Command Reference Table 6-1 Configuration Menu Options (/cfg) Command Syntax and Usage dump Dumps current configuration to a script file. For details, see page 199. ptcfg Backs up current configuration to TFTP server. For details, see page 200. gtcfg Restores current configuration from TFTP server. For details, see page 200. cur Displays current configuration parameters.
BLADE OS Command Reference Applying Pending Changes To make your configuration changes active, you must apply them. To apply configuration changes, enter apply at any prompt in the CLI. # apply NOTE – The apply command is a global command. Therefore, you can enter apply at any prompt in the administrative interface. Saving the Configuration In addition to applying the configuration changes, you can save them to flash memory on the G8000.
BLADE OS Command Reference /cfg/sys System Configuration [System Menu] syslog sshd radius tacacs+ ntp ssnmp access date time timezone dlight idle notice bannr hprompt dhcp rstctrl cur - Syslog Menu SSH Server Menu RADIUS Authentication Menu TACACS+ Authentication Menu NTP Server Menu System SNMP Menu System Access Menu Set system date Set system time Set system timezone (daylight savings) Set system daylight savings Set timeout for idle CLI sessions Set login notice Set login banner Enable/disable displ
BLADE OS Command Reference Table 6-2 System Configuration Menu Options (/cfg/sys) Command Syntax and Usage access Displays the System Access Menu. To view menu options, see page 140. date Prompts the user for the system date. The date reverts to its default value when the switch is reset. time Configures the system time using a 24-hour clock format. The time reverts to its default value when the switch is reset. timezone Configures the time zone where the switch resides.
BLADE OS Command Reference Table 6-2 System Configuration Menu Options (/cfg/sys) Command Syntax and Usage rstctrl disable|enable Enables or disables the reset control flag. When enabled, the switch continues to function after a crash of the main processor, using the last known Layer 2/3 information. The default value is enabled. cur Displays the current system parameters.
BLADE OS Command Reference /cfg/sys/syslog System Host Log Configuration [Syslog Menu] host host2 sever sever2 facil facil2 console log cur - Set IP address of first syslog host Set IP address of second syslog host Set the severity of first syslog host Set the severity of second syslog host Set facility of first syslog host Set facility of second syslog host Enable/disable console output of syslog messages Enable/disable syslogging of features Display current syslog settings Table 6-3 Host Log Menu Opti
BLADE OS Command Reference /cfg/sys/sshd SSH Server Configuration [SSHD Menu] intrval scpadm hkeygen skeygen sshport ena dis on off cur - Set Interval for generating the RSA server key Set SCP-only admin password Generate the RSA host key Generate the RSA server key Set SSH server port number Enable the SCP apply and save Disable the SCP apply and save Turn SSH server ON Turn SSH server OFF Display current SSH server configuration This menu enables Secure Shell access from any SSH client.
BLADE OS Command Reference Table 6-4 System Configuration Menu Options (/cfg/sys/sshd) Command Syntax and Usage off Disables the SSH server. cur Displays the current SSH server configuration.
BLADE OS Command Reference /cfg/sys/radius RADIUS Server Configuration [RADIUS Server Menu] prisrv - Set primary RADIUS server address secsrv - Set secondary RADIUS server address secret - Set RADIUS secret secret2 - Set secondary RADIUS server secret port - Set RADIUS port retries - Set RADIUS server retries timeout - Set RADIUS server timeout bckdoor - Enable/disable RADIUS backdoor for telnet/ssh/http/https secbd - Enable/disable RADIUS secure backdoor for telnet/ssh/ http/https on - Turn RADIUS authent
BLADE OS Command Reference Table 6-5 System Configuration Menu Options (/cfg/sys/radius) Command Syntax and Usage secbd disable|enable Enables or disables RADIUS secure back door access through Telnet, SSH/SCP, or HTTP/HTTPS only when the RADIUS servers are not responding. This feature is recommended to permit access to the switch when the RADIUS servers become unresponsive.
BLADE OS Command Reference /cfg/sys/tacacs+ TACACS+ Server Configuration TACACS (Terminal Access Controller Access Control system) is an authentication protocol that allows a remote access server to forward a user's logon password to an authentication server to determine whether access can be allowed to a given system. TACACS is an encryption protocol, and therefore less secure than TACACS+ and Remote Authentication Dial-In User Service (RADIUS) protocols.
BLADE OS Command Reference Table 6-6 TACACS+ Server Menu Options (/cfg/sys/tacacs) Command Syntax and Usage prisrv Defines the primary TACACS+ server address. secsrv Defines the secondary TACACS+ server address. secret <1-32 character secret> This is the shared secret between the switch and the TACACS+ server(s). secret2 <1-32 character secret> This is the secondary shared secret between the switch and the TACACS+ server(s).
BLADE OS Command Reference Table 6-6 TACACS+ Server Menu Options (/cfg/sys/tacacs) Command Syntax and Usage cmap enable|disable Enables or disables TACACS+ privilege-level mapping. The default value is disabled. on Enables the TACACS+ server. This is the default setting. off Disables the TACACS+ server. cur Displays current TACACS+ configuration parameters.
BLADE OS Command Reference /cfg/sys/ntp NTP Server Configuration [NTP Server Menu] prisrv - Set primary NTP server address secsrv - Set secondary NTP server address intrval - Set NTP server resync interval on - Turn NTP service ON off - Turn NTP service OFF cur - Display current NTP configuration This menu enables you to synchronize the switch clock to a Network Time Protocol (NTP) server. By default, this option is disabled.
BLADE OS Command Reference cfg/sys/ssnmp System SNMP Configuration [System SNMP Menu] snmpv3 - SNMPv3 Menu name - Set SNMP "sysName" locn - Set SNMP "sysLocation" cont - Set SNMP "sysContact" rcomm - Set SNMP read community string wcomm - Set SNMP write community string trsrc - Set SNMP trap source interface timeout - Set timeout for the SNMP state machine auth - Enable/disable SNMP "sysAuthenTrap" linkt - Enable/disable SNMP link up/down trap cur - Display current SNMP configuration BLADE OS supports SNM
BLADE OS Command Reference Table 6-8 System SNMP Menu Options (/cfg/sys/ssnmp) Command Syntax and Usage snmpv3 Displays SNMPv3 menu. To view menu options, see page 129. name Configures the name for the system. The name can have a maximum of 64 characters. locn Configures the name of the system location. The location can have a maximum of 64 characters. cont Configures the name of the system contact.
BLADE OS Command Reference /cfg/sys/ssnmp/snmpv3 SNMPv3 Configuration SNMP version 3 (SNMPv3) is an extensible SNMP Framework that supplements the SNMPv2 Framework by supporting the following: a new SNMP message format security for messages access control remote configuration of SNMP parameters For more details on the SNMPv3 architecture please refer to RFC2271 to RFC2276.
BLADE OS Command Reference Table 6-9 SNMPv3 Configuration Menu Options (/cfg/sys/ssnmp/snmpv3) comm The community table contains objects for mapping community strings and version-independent SNMP message parameters. To view menu options, see page 136. taddr This command allows you to configure destination information, consisting of a transport domain and a transport address. This is also termed as transport endpoint.
BLADE OS Command Reference /cfg/sys/ssnmp/snmpv3/usm User Security Model Configuration You can make use of a defined set of user identities using this Security Model. An SNMP engine must have the knowledge of applicable attributes of a user. This menu helps you create a user security model entry for an authorized user. You need to provide a security name to create the USM entry.
BLADE OS Command Reference Table 6-10 User Security Model Configuration Menu Options (/cfg/sys/ssnmp/ snmpv3/usm) Command Syntax and Usage del Deletes the USM user entries. cur Displays the USM user entries.
BLADE OS Command Reference /cfg/sys/ssnmp/snmpv3/access View-based Access Control Model Configuration The view-based Access Control Model defines a set of services that an application can use for checking access rights of the user. Access control is needed when the user has to process SNMP retrieval or modification request from an SNMP entity.
BLADE OS Command Reference Table 6-12 View-based Access Control Model Menu Options (/cfg/sys/ssnmp/ snmpv3/access) Command Syntax and Usage rview <32 character view name> This is a 32 character long read view name that allows you read access to a particular MIB view. If the value is empty or if there is no active MIB view having this value then no access is granted. wview <32 character view name> This is a 32 character long write view name that allows you write access to the MIB view.
BLADE OS Command Reference /cfg/sys/ssnmp/snmpv3/group SNMPv3 Group Configuration [SNMPv3 vacmSecurityToGroup 1 Menu] model - Set security model uname - Set USM user name gname - Set group gname del - Delete vacmSecurityToGroup entry cur - Display current vacmSecurityToGroup configuration Table 6-13 SNMPv3 Group Menu Options (/cfg/sys/ssnmp/snmpv3/group) Command Syntax and Usage model usm|snmpv1|snmpv2 Defines the security model.
BLADE OS Command Reference /cfg/sys/ssnmp/snmpv3/comm SNMPv3 Community Table Configuration This command is used for configuring the community table entry. The configured entry is stored in the community table list in the SNMP engine. This table is used to configure community strings in the Local Configuration Datastore (LCD) of SNMP engine.
BLADE OS Command Reference /cfg/sys/ssnmp/snmpv3/taddr SNMPv3 Target Address Table Configuration This command is used to configure the target transport entry. The configured entry is stored in the target address table list in the SNMP engine. This table of transport addresses is used in the generation of SNMP messages.
BLADE OS Command Reference /cfg/sys/ssnmp/snmpv3/tparam SNMPv3 Target Parameters Table Configuration You can configure the target parameters entry and store it in the target parameters table in the SNMP engine. This table contains parameters that are used to generate a message. The parameters include the message processing model (for example: SNMPv3, SNMPv2c, SNMPv1), the security model (for example: USM), the security name, and the security level (noAuthnoPriv, authNoPriv, or authPriv).
BLADE OS Command Reference /cfg/sys/ssnmp/snmpv3/notify SNMPv3 Notify Table Configuration SNMPv3 uses Notification Originator to send out traps. A notification typically monitors a system for particular events or conditions, and generates Notification-Class messages based on these events or conditions.
BLADE OS Command Reference cfg/sys/access System Access Configuration [System Access Menu] mgmt - Management Network Definition Menu user - User Access Control Menu (passwords) https - HTTPS Web Access Menu snmp - Set SNMP access control tnport - Set Telnet server port number tport - Set the TFTP Port for the system wport - Set HTTP (Web) server port number http - Enable/disable HTTP (Web) access tnet - Enable/disable Telnet access tsbbi - Enable/disable Telnet/SSH configuration from BBI userbbi - Enable/d
BLADE OS Command Reference Table 6-18 System Access Menu Options (/cfg/sys/access) Command Syntax and Usage tsbbi enable|disable Enables or disables Telnet/SSH configuration access through the Browser-Based Interface (BBI). userbbi enable|disable Enables or disables user configuration access through the Browser-Based Interface (BBI). cur Displays the current system access parameters.
BLADE OS Command Reference /cfg/sys/access/mgmt Management Networks Configuration [Management Networks Menu] add - Add mgmt network definition rem - Remove mgmt network definition cur - Display current mgmt network definitions clear - Clear current mgmt network definitions This menu is used to define IP address ranges which are allowed to access the switch for management purposes.
BLADE OS Command Reference /cfg/sys/access/user User Access Control Configuration [User Access Control Menu] uid - User ID Menu eject - Eject user usrpw - Set user password (user) opw - Set operator password (oper) admpw - Set administrator password (admin) strongpw - Strong password menu cur - Display current user status NOTE – User passwords can be a maximum of 128 characters.
BLADE OS Command Reference /cfg/sys/access/user/uid <1-10> System User ID Configuration [User ID 1 cos name pswd ena dis del cur Menu] - Set class of service - Set user name - Set user password - Enable user ID - Disable user ID - Delete user ID - Display current user configuration Table 6-21 User ID Configuration Menu Options (/cfg/sys/access/user/uid) Command Syntax and Usage cos Sets the Class-of-Service to define the user’s authority level.
BLADE OS Command Reference /cfg/sys/access/https HTTPS Access Configuration [https Menu] access port generate certSave cur - Enable/Disable HTTPS Web access HTTPS WebServer port number Generate self-signed HTTPS server certificate save HTTPS certificate Display current SSL Web Access configuration Table 6-22 HTTPS Access Configuration Menu Options (/cfg/sys/access/https) Command Syntax and Usage access ena|dis Enables or disables BBI access (Web access) using HTTPS.
BLADE OS Command Reference /cfg/port Port Configuration [Port 1:1 Menu] gig aclqos 8021ppri pvid name bpdugrd dscpmrk tag tagpvid ena dis cur - Gig Phy Menu Acl/Qos Configuration Menu Set default 802.
BLADE OS Command Reference Table 6-23 Port Configuration Menu (/cfg/port) Command Syntax and Usage tag disable|enable Disables or enables VLAN tagging for this port. The default value is disabled. tagpvid disable|enable Disables or enables VLAN tag persistence. When disabled, the VLAN tag is removed from packets whose VLAN tag matches the port PVID. The default value is disabled for internal and external ports, and enabled for the management ports. ena Enables the port. dis Disables the port.
BLADE OS Command Reference /cfg/port gig Port Link Configuration [Gigabit Link speed mode fctl auto cur Menu] - Set link speed - Set full or half duplex mode - Set flow control - Set auto negotiation - Display current gig link configuration Use these menu options to set port parameters for the port link. Link menu options are described in Table 6-24 and appear on the gig port configuration menu for the switch.
BLADE OS Command Reference Temporarily Disabling a Port To temporarily disable a port without changing its stored configuration attributes, enter the following command at any prompt: Main# /oper/port /dis Because this configuration sets a temporary state for the port, you do not need to use apply or save. The port state will revert to its original configuration when the switch is reset. See the “Operations Menu” on page 201 for other operations-level commands.
BLADE OS Command Reference /cfg/stack Stacking Configuration [Stacking Menu] swnum mif bif name backup cur - Switch Number Menu Master Switch Interface Menu Backup Switch Interface Menu Set stack name Set backup switch number Display current stacking configuration A stack is a group of switches that work together as a unified system. The network views a stack of switches as a single entity, identified by a single network IP address.
BLADE OS Command Reference /cfg/stack/swnum Stacking Switch Configuration [Switch 1 Menu] bind - Bind UUID with switch in stack mac - Set UUID with MAC addr del - Delete switch cur - Display current Switch configuration Table 6-27 Stacking Switch menu options (/cfg/stack/swnum) Command Syntax and Usage bind Binds the selected switch to the stack, based on its assigned switch number (asnum). mac Binds the selected switch to the stack, based on its MAC address.
BLADE OS Command Reference /cfg/stack/mif Master Switch Interface Configuration [Master Switch Interface Menu] addr - Set IP address mask - Set subnet mask vlan - Set VLAN number gw - Set Default Gateway address del - Delete Master IP interface & Default Gateway cur - Display current interface configuration Table 6-28 Master Switch Interface menu options (/cfg/stack/mif) Command Syntax and Usage addr Configures the IP address for the Master Switch Interface, using dotted decimal notation.
BLADE OS Command Reference /cfg/stack/bif Backup Switch Interface Configuration [Backup Switch Interface Menu] addr - Set IP address mask - Set subnet mask vlan - Set VLAN number gw - Set Default Gateway address del - Delete Backup IP interface & Default Gateway cur - Display current interface configuration Table 6-29 Backup Switch Interface menu options (/cfg/stack/bif) Command Syntax and Usage addr Configures the IP address for the Backup Switch Interface, using dotted decimal notation.
BLADE OS Command Reference /cfg/pmirr Port Mirroring Configuration [Port Mirroring mirror monport cur - Menu] Enable/Disable Mirroring Monitoring Port based PM Menu Display All Mirrored and Monitoring Ports Port mirroring is disabled by default. For more information about port mirroring on the switch, see “Appendix A: Troubleshooting” in the BLADE OS Application Guide. NOTE – Traffic on VLAN 4095 is not mirrored to the external ports.
BLADE OS Command Reference /cfg/pmirr/monport Port-Mirroring Configuration [Port 2:1 Menu] add - Add "Mirrored" port rem - Rem "Mirrored" port delete - Delete this "Monitor" port cur - Display current Port-based Port Mirroring configuration Table 6-31 Port Mirroring Monitor Port Menu Options (/cfg/pmirr/monport) Command Syntax and Usage add Adds the port to be mirrored. This command also allows you to enter the direction of the traffic.
BLADE OS Command Reference /cfg/l2 Layer 2 Configuration [Layer 2 Menu] 8021x fdb trunk thash lacp failovr vlan bpdugrd cur - 802.1X Menu FDB Menu Trunk Group Menu IP Trunk Hash Menu Link Aggregation Control Protocol Menu Failover Menu VLAN Menu Enable/disable BPDU Guard Display current layer 2 parameters Table 6-32 Layer 2 Configuration Menu (/cfg/l2) Command Syntax and Usage 8021x Displays the 802.1X Configuration Menu. To view menu options, see page 157. fdb Displays the Forwarding Database Menu.
BLADE OS Command Reference /cfg/l2/8021x 802.1X Configuration [802.1X Configuration Menu] global - Global 802.1X configuration menu port - Port 802.1X configuration menu ena - Enable 802.1X access control dis - Disable 802.1X access control cur - Show 802.1X configuration This feature allows you to configure the switch as an IEEE 802.1X Authenticator, to provide port-based network access control. Table 6-33 802.1X Configuration Menu (/cfg/l2/8021x) Command Syntax and Usage global Displays the global 802.
BLADE OS Command Reference /cfg/l2/8021x/global 802.1X Global Configuration [802.1X Global Configuration Menu] gvlan - 802.
BLADE OS Command Reference Table 6-34 802.1X Global Configuration Menu Options (/cfg/l2/8021x/global) Command Syntax and Usage svrtmout <1-65535> Sets the time, in seconds, the authenticator waits for a response from the RADIUS server before declaring an authentication timeout. The default value is 30 seconds.
BLADE OS Command Reference /cfg/l2/8021x/global/gvlan 802.1X Guest VLAN Configuration [802.1X Guest vlan ena dis cur VLAN Configuration Menu] - Set 8021.x Guest VLAN number - Enable 8021.xGuest VLAN - Disable 8021.x Guest VLAN - Display current Guest VLAN configuration The 802.1X Guest VLAN menu allows you to configure a Guest VLAN for unauthenticated ports. The Guest VLAN provides limited access to switch functions. Table 6-35 802.
BLADE OS Command Reference /cfg/l2/8021x/port 802.1X Port Configuration [802.
BLADE OS Command Reference Table 6-36 802.1X Port Configuration Menu Options (/cfg/l2/8021x/port) Command Syntax and Usage svrtmout <1-65535> Sets the time, in seconds, the authenticator waits for a response from the RADIUS server before declaring an authentication timeout. The default value is 30 seconds.
BLADE OS Command Reference /cfg/l2/fdb Forwarding Database Configuration [FDB Menu] aging cur - Configure FDB aging value - Display current FDB configuration Use the following commands to configure the Forwarding Database (FDB) for the G8000. Table 6-37 FDB Menu Options (/cfg/l2/fdb) Command Syntax and Usage aging <0-65535> Configures the aging value for FDB entries, in seconds. The default value is 300. cur Displays the current FDB parameters.
BLADE OS Command Reference /cfg/l2/trunk Trunk Configuration [Trunk group 1 Menu] add - Add port to trunk group rem - Remove port from trunk group ena - Enable trunk group dis - Disable trunk group del - Delete trunk group cur - Display current Trunk Group configuration Trunk groups can provide super-bandwidth connections between switches or other trunk capable devices. A trunk is a group of ports that act together, combining their bandwidth to create a single, larger port.
BLADE OS Command Reference /cfg/l2/thash IP Trunk Hash Configuration [IP Trunk Hash Menu] set - IP Trunk Hash Settings Menu cur - Display current IP trunk hash configuration Use the following commands to configure IP trunk hash settings for the switch. The trunk hash settings affect both static trunks and LACP trunks. Table 6-39 IP Trunk Hash Menu Options (/cfg/l2/thash) Command Syntax and Usage set Displays the Trunk Hash Settings menu. To view menu options, see page 165.
BLADE OS Command Reference Use the following commands to configure IP trunk hash parameters for the switch. Table 6-40 IP Trunk Hash Menu Options (/cfg/l2/thash/set) Command Syntax and Usage smac enable|disable Enable or disable trunk hashing on the source MAC. dmac enable|disable Enable or disable trunk hashing on the destination MAC. sip enable|disable Enable or disable trunk hashing on the source IP. dip enable|disable Enable or disable trunk hashing on the destination IP.
BLADE OS Command Reference /cfg/l2/lacp LACP Configuration [LACP Menu] sysprio timeout port cur - Set LACP system priority - Set LACP system timeout scale for timing out partner info - LACP port Menu - Display current LACP configuration Use the following commands to configure Link Aggregation Control Protocol (LACP) for the switch. Table 6-41 LACP Menu Options (/cfg/l2/lacp) Command Syntax and Usage sysprio <1-65535> Defines the priority value (1 through 65535) for the switch.
BLADE OS Command Reference /cfg/l2/lacp/port LACP Port Configuration [LACP Port 2:1 Menu] mode - Set LACP mode prio - Set LACP port priority adminkey - Set LACP port admin key cur - Display current LACP port configuration Use the following commands to configure Link Aggregation Control Protocol (LACP) for the selected port.
BLADE OS Command Reference /cfg/l2/failovr Layer 2 Failover Configuration [Failover Menu] trigger on off cur - Trigger Menu Globally turn Failover ON Globally turn Failover OFF Display current Failover configuration Use this menu to configure Layer 2 Failover. For more information about Layer 2 Failover, see “High Availability” in the BLADE OS Application Guide. Table 6-43 Layer 2 Failover Menu Options (/cfg/l2/failovr) Command Syntax and Usage trigger <1-8> Displays the Failover Trigger menu.
BLADE OS Command Reference /cfg/l2/failovr/trigger Failover Trigger Configuration [Trigger 1 Menu] mmon - Manual Monitor Menu limit - Limit of Trigger ena - Enable Trigger dis - Disable Trigger del - Delete Trigger cur - Display current Trigger configuration Table 6-44 Failover Trigger Menu Options (/cfg/l2/failovr/trigger) Command Syntax and Usage mmon Displays the Manual Monitor menu for the selected trigger. To view menu options, see page 171.
BLADE OS Command Reference /cfg/l2/failovr/trigger/mmon Manual Monitor Configuration [Manual Monitor monitor control cur - Menu] Monitor Menu Control Menu Display current Manual Monitor configuration Table 6-45 Manual Monitor Menu Options (/cfg/l2/failovr/trigger/mmon) Command Syntax and Usage monitor Displays the Manual Monitor-Monitor menu. To view menu options, see page 172. control Displays the Manual Monitor-Control menu. To view menu options, see page 173.
BLADE OS Command Reference /cfg/l2/failovr/trigger/mmon/monitor Manual Monitor-Monitor Configuration [Monitor Menu] addport remport addtrnk remtrnk addkey remkey cur - Add port to Monitor Remove port from Monitor Add trunk to Monitor Remove trunk from Monitor Add LACP port adminkey to Monitor Remove LACP port adminkey from Monitor Display current Monitor configuration Table 6-46 Manual Monitor-Monitor options (/cfg/l2/failovr/trigger/mmon/monitor) Command Syntax and Usage addport Adds the
BLADE OS Command Reference /cfg/l2/failovr/trigger/mmon/control Manual Monitor-Control Configuration [Control Menu] addport remport addtrnk remtrnk addkey remkey cur - Add port to Control Remove port from Control Add trunk to Control Remove trunk from Control Add LACP port adminkey to Control Remove LACP port adminkey from Control Display current Control configuration Table 6-47 Manual Monitor-Control options (/cfg/l2/failovr/trigger/mmon/control) Command Syntax and Usage addport Adds the
BLADE OS Command Reference /cfg/l2/vlan VLAN Configuration [VLAN 1 Menu] name add rem def ena dis del cur - Set VLAN name Add port to VLAN Remove port from VLAN Define VLAN as list of ports Enable VLAN Disable VLAN Delete VLAN Display current VLAN configuration The commands in this menu configure VLAN attributes, change the status of each VLAN, change the port membership of each VLAN, and delete VLANs.
BLADE OS Command Reference NOTE – All ports must belong to at least one VLAN. Any port which is removed from a VLAN and which is not a member of any other VLAN is automatically added to default VLAN 1. You cannot remove a port from VLAN 1 if the port has no membership in any other VLAN. Also, you cannot add a port to more than one VLAN unless the port has VLAN tagging turned on (see the tag command on page 146).
BLADE OS Command Reference /cfg/l3 Layer 3 Configuration [Layer 3 Menu] igmp dns rearp cur - IGMP Menu Domain Name System Menu Set re-ARP period in minutes Display current IP configuration Table 6-49 Layer 3 Configuration Menu (/cfg/l3) Command Syntax and Usage igmp Displays the IGMP Menu. To view menu options, see page 177. dns Displays the IP Domain Name System Menu. To view menu options, see page 184. rearp <2-120> Defines re-ARP period in minutes. You can set this duration between 2 and 120 minutes.
BLADE OS Command Reference /cfg/l3/igmp IGMP Configuration [IGMP Menu] snoop mrouter igmpflt on off cur - IGMP Snoop Menu Static Multicast Router Menu IGMP Filtering Menu Globally turn IGMP ON Globally turn IGMP OFF Display current IGMP configuration Table 6-50 describes the commands used to configure basic IGMP parameters. Table 6-50 IGMP Menu Options (/cfg/l3/igmp) Command Syntax and Usage snoop Displays the IGMP Snoop Menu. To view menu options, see page 178.
BLADE OS Command Reference /cfg/l3/igmp/snoop IGMP Snooping Configuration [IGMP Snoop Menu] timeout - Set report timeout mrto - Set multicast router timeout qintrval - Set IGMP query interval robust - Set expected packet loss on subnet flood - Flood unregistered IPMC cpu - Send unregistered IPMC to CPU aggr - Aggregate IGMP report srcip - Set source ip to use when proxying GSQ add - Add VLAN(s) to IGMP Snooping rem - Remove VLAN(s) from IGMP Snooping clear - Remove all VLAN(s) from IGMP Snooping fastlv - E
BLADE OS Command Reference Table 6-51 IGMP Snoop Menu Options (/cfg/l3/igmp/snoop) Command Syntax and Usage flood enable|disable Configures the switch to flood unregistered IP multicast reports to all ports. The default setting is enabled. Note: If IGMP hosts reside on different VLANs, you must disable IGMP flooding to ensure that multicast data is forwarded across the VLANs.
BLADE OS Command Reference /cfg/l3/igmp/mrouter IGMP Static Multicast Router Configuration [Static Multicast Router Menu] add - Add port as Multicast Router Port rem - Remove port as Multicast Router Port cur - Display current Multicast Router configuration Table 6-52 describes the commands used to configure a static multicast router. NOTE – When you configure a static multicast router on a VLAN, the process of learning multicast routers is disabled for that VLAN.
BLADE OS Command Reference /cfg/l3/igmp/igmpflt IGMP Filtering Configuration [IGMP Filter Menu] filter - IGMP Filter Definition Menu port - IGMP Filtering Port Menu ena - Enable IGMP Filtering dis - Disable IGMP Filtering cur - Display current IGMP Filtering configuration Table 6-53 describes the commands used to configure an IGMP filter. Table 6-53 IGMP Filtering Menu Options (/cfg/l3/igmp/igmpflt) Command Syntax and Usage filter Displays the IGMP Filter Definition Menu.
BLADE OS Command Reference /cfg/l3/igmp/igmpflt/filter IGMP Filter Definition [IGMP Filter 1 Definition Menu] range - Set IP Multicast address range action - Set filter action ena - Enable filter dis - Disable filter del - Delete filter cur - Display current IGMP filter configuration Table 6-54 describes the commands used to define an IGMP filter. Table 6-54 IGMP Filter Definition Menu Options (/cfg/l3/igmp/igmpflt/filter) Command Syntax and Usage range
BLADE OS Command Reference /cfg/l3/igmp/igmpflt/port IGMP Filtering Port Configuration [IGMP Port 1:1 Menu] filt - Enable/disable IGMP filtering on port add - Add IGMP filter to port rem - Remove IGMP filter from port cur - Display current IGMP filtering Port configuration Table 6-55 describes the commands used to configure a port for IGMP filtering.
BLADE OS Command Reference /cfg/l3/dns Domain Name System Configuration [Domain Name System Menu] prima - Set IP address of primary DNS server secon - Set IP address of secondary DNS server dname - Set default domain name cur - Display current DNS configuration The Domain Name System (DNS) Menu is used for defining the primary and secondary DNS servers on your local network, and for setting the default domain name served by the switch services.
BLADE OS Command Reference /cfg/qos Quality of Service Configuration [QOS Menu] 8021p dscp - 802.1p Menu - Dscp Menu Use the Quality of Service (QoS) menus to configure the 802.1p priority value and DiffServ Code Point (DSCP) value of incoming packets. This allows you to differentiate between various types of traffic, and provide different priority levels. Table 6-57 Quality of Service Menu Options (/cfg/qos) Command Syntax and Usage 8021p Displays 802.1p configuration menu.
BLADE OS Command Reference /cfg/qos/8021p 802.1p Configuration [802.1p Menu] priq qweight numcos default cur - Set priority to COS queue mapping Set weight to a COS queue Set number of COS queue Reset 802.1p configuration to default values. Display current 802.1p configuration This feature provides the capability to filter IP packets based on the 802.1p bits in the packet's VLAN header. The 802.1p bits specify the priority that you should give to the packets while forwarding them.
BLADE OS Command Reference /cfg/qos/dscp DSCP Configuration [dscp Menu] dscp prio on off cur - Remark DSCP value to a new DSCP value Remark DSCP value to a 802.1p priority Globally turn DSCP remarking ON Globally turn DSCP remarking OFF Display current DSCP remarking configuration Use this menu map the DiffServ Code Point (DSCP) value of incoming packets to a new value, or to an 802.1p priority value.
BLADE OS Command Reference /cfg/acl Access Control List Configuration [ACL Menu] acl group cur - Access Control List Item Config Menu - Access Control List Group Config Menu - Display current ACL configuration Use this menu to create Access Control Lists and ACL Groups. ACLs define matching criteria used for IP filtering and Quality of Service functions. Table 6-60 ACL Menu Options (/cfg/acl) Command Syntax and Usage acl <1-768> Displays Access Control List configuration menu.
BLADE OS Command Reference /cfg/acl/acl ACL Configuration [ACL 1 Menu] ethernet ipv4 tcpudp meter re-mark pktfmt egrport action stats reset cur - Ethernet Header Options Menu IP Header Options Menu TCP/UDP Header Options Menu ACL Metering Configuration Menu ACL Re-mark Configuration Menu Set to filter specific packet format types Set to filter for packets egressing this port Set filter action Enable/disable statistics for this acl Reset filtering parameters Display current filter configurati
BLADE OS Command Reference Table 6-61 ACL Menu Options (/cfg/acl/acl x) Command Syntax and Usage stats enable|disable Enables or disables the statistics collection for the Access Control List. reset Resets the ACL parameters to their default values. cur Displays the current ACL parameters.
BLADE OS Command Reference Table 6-62 Ethernet Filtering Menu Options (/cfg/acl/acl x/ethernet) Command Syntax and Usage reset Resets Ethernet parameters for the ACL to their default values. cur Displays the current Ethernet parameters for the ACL.
BLADE OS Command Reference Table 6-63 IP version 4 Filtering Menu Options (/cfg/acl/acl x/ipv4) Command Syntax and Usage tos <0-255> Defines a Type of Service value for the ACL. For more information on ToS, refer to RFC 1340 and 1349. reset Resets the IPv4 parameters for the ACL to their default values. cur Displays the current IPV4 parameters.
BLADE OS Command Reference /cfg/acl/acl /tcpudp TCP/UDP Filtering Configuration [Filtering TCP/UDP Menu] sport - Set to filter on TCP/UDP source port dport - Set to filter on TCP/UDP destination port flags - Set to filter TCP/UDP flags reset - Reset all fields cur - Display current parameters This menu allows you to define TCP/UDP matching criteria for an ACL.
BLADE OS Command Reference Table 6-64 TCP/UDP Filtering Menu Options (/cfg/acl/acl x/tcpudp) Command Syntax and Usage reset Resets the TCP/UDP parameters for the ACL to their default values. cur Displays the current TCP/UDP Filtering parameters.
BLADE OS Command Reference /cfg/acl/acl /re-mark Re-Mark Configuration [Re-mark Menu] inprof outprof up1p reset cur - In Profile Menu Out Profile Menu Set Update User Priority Menu Reset re-mark settings Display current settings You can choose to re-mark IP header data for the selected ACL. You can configure different remark values, based on whether packets fall within the ACL Metering profile, or out of the ACL Metering profile.
BLADE OS Command Reference /cfg/acl/acl /re-mark/inprof Re-Marking In-Profile Configuration [Re-marking - In Profile Menu] updscp - Set the update DSCP reset - Reset update DSCP settings cur - Display current settings Table 6-67 ACL Re-Mark In-Profile Menu (/cfg/acl/acl x/re-mark/inprof) Command Syntax and Usage updscp <0-63> Sets the DiffServ Code Point (DSCP) of In-Profile packets to the selected value. reset Resets the update DSCP parameters to their default values.
BLADE OS Command Reference /cfg/acl/acl /re-mark/inprof/up1p Update User Priority Configuration [Update User Priority Menu] value - Set the update user priority utosp - Enable/Disable use of TOS precedence reset - Reset in profile up1p settings cur - Display current settings Table 6-69 ACL Re-Mark User Priority Menu (/cfg/acl/acl x/re-mark/inprof/up1p) Command Syntax and Usage value <0-7> Defines 802.1p value. The value is the priority bits information in the packet structure.
BLADE OS Command Reference /cfg/acl/acl /pktfmt Packet Format Filtering Configuration [Filtering Packet Format Menu] ethfmt - Set to filter on ethernet format tagfmt - Set to filter on ethernet tagging format ipfmt - Set to filter on IP format reset - Reset all fields cur - Display current parameters This menu allows you to define Packet Format matching criteria for an ACL.
BLADE OS Command Reference /cfg/acl/group ACL Group Configuration [ACL Group 1 Menu] add - Add ACL to group rem - Remove ACL from group cur - Display current ACL items in group This menu allows you to compile one or more ACLs into an ACL Group. Once you create an ACL Group, you can assign the ACL Group to one or more ports. Table 6-71 ACL Group Menu Options (/cfg/acl/group x) Command Syntax and Usage add acl <1-768> Adds the selected ACL to the ACL Group.
BLADE OS Command Reference /cfg/ptcfg Saving the Active Switch Configuration When the ptcfg command is used, the switch’s active configuration commands (as displayed using /cfg/dump) will be uploaded to the specified script configuration file on the FTP/ TFTP server.
CHAPTER 7 The Operations Menu The Operations Menu is generally used for commands that affect switch performance immediately, but do not alter permanent switch configurations. For example, you can use the Operations Menu to immediately disable a port (without the need to apply or save the change), with the understanding that when the switch is reset, the port returns to its normally configured operation.
BLADE OS Command Reference Table 7-1 Operations Menu (/oper) Command Syntax and Usage clrlog Clears all Syslog messages. tnetsshc Closes all open Telnet and SSH connections. ntpreq Allows the user to send requests to the NTP server. /oper/port Operations-Level Port Options [Operations Port 1:1 Menu] 8021x - 8021.x Menu ena - Enable port dis - Disable port cur - Current port state Operations-level port options are used for temporarily disabling or enabling a port, and for resetting the port.
BLADE OS Command Reference /oper/port /8021x Operations-Level Port 802.1X Options [802.1X Operation Menu] reset - Reinitialize 802.1X access control on this port reauth - Initiate reauthentication on this port now Operations-level port 802.1X options are used to temporarily set 802.1X parameters for a port. Table 7-3 Operations-Level Port 802.1X Menu Options (/oper/port x/8021x) Command Syntax and Usage reset Re-initializes the 802.1X access-control parameters for the port.
BLADE OS Command Reference 204 The Operations Menu BMD00127, September 2009
CHAPTER 8 The Boot Options Menu To use the Boot Options Menu, you must be logged in to the switch as the administrator. The Boot Options Menu provides options for: Selecting a switch software image to be used when the switch is next reset Selecting a configuration block to be used when the switch is next reset Downloading or uploading a new software image to the switch via FTP/TFTP In addition to the Boot Menu, you can use a Web browser or SNMP to work with switch image and configuration files.
BLADE OS Command Reference Stacking Boot Options The Stacking Boot menu is used to define the role of the switch in a stack: either as the Master that controls the stack, or as a participating Member switch. Options are available for loading stack software to individual Member switches, and to configure the VLAN that is reserved for inter-switch stacking communications.
BLADE OS Command Reference Updating the Switch Software Image The switch software image is the executable code running on the switch. A version of the image ships with the switch, and comes pre-installed on the device. As new versions of the image are released, you can upgrade the software running on your switch. To get the latest version of software available for your G8000, go to: http://www.bladenetwork.net/support_services_rackswitch.html Click on software updates.
BLADE OS Command Reference 1. At the Boot Options# prompt, enter: Boot Options# gtimg 2. Enter the name of the switch software to be replaced: Enter name of switch software image to be replaced ["image1"/"image2"/"boot"]: 3. Enter the hostname or IP address of the TFTP server. Enter hostname or IP address of TFTP server: 4. Enter the name of the new software file on the server. Enter name of file on TFTP server: The exact form of the name will vary by server.
BLADE OS Command Reference Uploading a Software Image from Your Switch You can upload a software image from the switch to a TFTP server. 1. At the Boot Options# prompt, enter: Boot Options# ptimg 2. The system prompts you for information. Enter the desired image: Enter name of switch software image to be uploaded ["image1"|"image2"|"boot"]: 3. Enter the name or the IP address of the TFTP server: Enter hostname or IP address of TFTP server: 4.
BLADE OS Command Reference Selecting a Configuration Block When you make configuration changes to the G8000, you must save the changes so that they are retained beyond the next time the switch is reset. When you perform the save command, your new configuration changes are placed in the active configuration block. The previous configuration is copied into the backup configuration block. There is also a factory configuration block.
BLADE OS Command Reference Resetting the Switch You can reset the switch to make your software image file and configuration block changes occur. To reset the switch, at the Boot Options# prompt, enter: >> Boot Options# reset You are prompted to confirm your request. Accessing the ISCLI The default command-line interface for the switch is the BLADE OS CLI.
BLADE OS Command Reference Using the Boot Management menu The Boot Management menu allows you to switch the software image, reset the switch to factory defaults, or to recover from a failed software download. You can interrupt the boot process and enter the Boot Management menu from the serial console port. When the system displays Memory Test, press the key and the key at the same time. The Boot Management menu appears. Resetting the System ... Memory Test ................................
BLADE OS Command Reference Using SNMP with Switch Images and Configuration Files This section describes how to use MIB calls to work with switch images and configuration files. You can use a standard SNMP tool to perform the actions, using the MIBs listed in Table 8-2. The examples in this section use the MIB name, but you can also use the OID. Table 8-2 lists the MIBS used to perform operations associated with the G8000 switch image and configuration files.
BLADE OS Command Reference Loading a new switch image To load a new switch image with the name “MyNewImage.img” into image2, follow the steps below. This example assumes you have a TFTP server at 192.168.10.10. 1. Set the TFTP server address where the switch image resides: Set agTftpServer.0 “192.168.10.10” 2. Set the area where the new image will be loaded: Set agTftpImage.0 “image2” 3. Set the name of the image: Set agTftpImageFileName.0 “MyNewImage.img” 4. Initiate the transfer.
BLADE OS Command Reference Saving the switch configuration from the active configuration To save the active switch configuration to a TFTP server follow the steps below. This example assumes you have a TFTP server at 192.168.10.10. 1. Set the TFTP server address where the configuration file is saved: Set agTftpServer.0 “192.168.10.10” 2. Set the name of the configuration file: Set agTftpCfgFileName.0 “MyActiveConfig.cfg” 3. Initiate the transfer.
BLADE OS Command Reference 216 The Boot Options Menu BMD00127, September 2009
CHAPTER 9 The Maintenance Menu The Maintenance Menu is used to manage dump information and forward database information. It also includes a debugging menu to help with troubleshooting. /maint Maintenance Menu NOTE – To use the Maintenance Menu, you must be logged in to the switch as the administrator.
BLADE OS Command Reference Table 9-1 Maintenance Menu (/maint) Command Syntax and Usage sys Displays the System Maintenance Menu. To view menu options, see page 219. fdb Displays the Forwarding Database Manipulation Menu. To view menu options, see page 220. debug Displays the Debugging Menu. To view menu options, see page 221. arp Displays the ARP Cache Manipulation Menu. To view menu options, see page 222. igmp Displays the IGMP Maintenance Menu. To view menu options, see page 223.
BLADE OS Command Reference /maint/sys System Maintenance This menu is reserved for use by Technical Support personnel. The options are used to perform system debugging. [System Maintenance Menu] flags - Set NVRAM flag word tmask - Set MP trace mask word Table 9-2 System Maintenance Menu Options (/maint/sys) Command Syntax and Usage flags This command sets the flags that are used for debugging purposes by Technical Support personnel.
BLADE OS Command Reference /maint/fdb Forwarding Database Maintenance [FDB Manipulation Menu] find - Show a single FDB entry by MAC address port - Show FDB entries for a single port vlan - Show FDB entries for a single VLAN dump - Show all FDB entries del - Delete an FDB entry clear - Clear entire FDB The Forwarding Database Manipulation Menu can be used to view information and to delete a MAC address from the forwarding database or clear the entire forwarding database.
BLADE OS Command Reference /maint/debug Debugging Options [Miscellaneous Debug Menu] tbuf - Show MP trace buffer snap - Show MP snap (or post-mortem) trace buffer clrcfg - Clear all flash configs The Miscellaneous Debug Menu displays trace buffer information about events that can be helpful in understanding switch operation.
BLADE OS Command Reference /maint/arp ARP Cache Maintenance [Address Resolution Protocol Menu] find - Show a single ARP entry by IP address port - Show ARP entries on a single port vlan - Show ARP entries on a single VLAN addr - Show ARP entries for switch's interfaces dump - Show all ARP entries clear - Clear ARP cache Table 9-5 ARP Maintenance Menu Options (/maint/arp) Command Syntax and Usage find Shows a single ARP entry by IP address.
BLADE OS Command Reference /maint/igmp IGMP Maintenance [IGMP Multicast group mrouter clear - Group Menu] Multicast Group Menu IGMP Multicast Router Port Menu Clear group and mrouter tables Table 9-6 describes the IGMP Maintenance commands. Table 9-6 IGMP Maintenance Menu Options (/maint/igmp) Command Syntax and Usage group Displays the Multicast Group menu. To view menu options, see page 223. mrouter Displays the Multicast Router Port menu. To view menu options, see page 224.
BLADE OS Command Reference Table 9-7 IGMP Multicast Group Maintenance Menu Options (/maint/igmp/group) Command Syntax and Usage port Displays all IGMP multicast groups on a single port. trunk Displays all IGMP multicast groups on a single trunk group. detail Displays detailed information about a single IGMP multicast group. dump Displays information for all multicast groups. clear Clears the IGMP group tables.
BLADE OS Command Reference /maint/uudmp Uuencode Flash Dump Using this command, dump information is presented in uuencoded format. This format makes it easy to capture the dump information as a file or a string of characters. If you want to capture dump information to a file, set your communication software on your workstation to capture session data prior to issuing the uudmp command. This will ensure that you do not lose any information.
BLADE OS Command Reference /maint/cldmp Clearing Dump Information To clear dump information from flash memory, at the Maintenance# prompt, enter: Maintenance# cldmp The switch clears the dump region of flash memory and displays the following message: FLASH dump region cleared. If the flash dump region is already clear, the switch displays the following message: FLASH dump region is already clear.
Index Symbols / command .......................................................... 27 [ ]....................................................................... 11 A abbreviating commands (CLI) .............................. 31 access control user ........................................................... 143 ACL Port menu ................................................. 149 ACL statistics ................................................... 104 active configuration block ..........................
BLADE OS Command Reference configuration menu ............................................111 COS queue information ........................................68 CPU statistics ....................................................103 CPU utilization ..................................................103 cur (system option) .............................122, 126, 141 Gigabit Ethernet configuration .............................................. 146 Gigabit Ethernet Physical Link ...........................
BLADE OS Command Reference Link Status Information ....................................... 70 linkt (SNMP option) .......................................... 128 log syslog messages.......................................... 118 M MAC (media access control) address .. 35, 46, 51, 61, 220 Main Menu ......................................................... 25 summary...................................................... 26 Maintenance IGMP ........................................................
BLADE OS Command Reference save command ...................................................210 secret radius server ...............................................121 secsrv secondary radius server ................................121 Secure Shell.......................................................119 shortcuts (CLI).....................................................31 snap traces buffer .........................................................221 SNMP ..................................................
BLADE OS Command Reference VLAN tagging port configuration ....................................... 147 port restrictions........................................... 175 VLANs ARP entry information .................................. 61 information .................................................. 58 name ..................................................... 50, 58 port membership ..................................... 50, 58 setting default number (PVID)...................... 146 tagging ....................
