DGS-3048 Layer 2 Switch Command Line Interface Reference Manual First Edition (June 2006) 6DGS3048C.
Table of Contents Introduction 1 Using the Console CLI 4 Command Syntax 9 Basic Switch Commands 11 Switch Port Commands 25 Network Management (SNMP) Commands 29 Download/Upload Commands 51 Network Monitoring Commands 54 Multiple Spanning Tree Protocol (MSTP) Commands65 Forwarding Database Commands 77 Broadcast Storm Control Commands 83 QoS Commands 85 Port Mirroring Commands 95 VLAN Commands 97 Link Aggregation Commands Basic IP Commands 106 IGMP Snooping Commands 802.
DGS-3048 Layer 2 Switch CLI Reference Manual 1 I NTRODUCTION The DGS 3048 Switch can be managed through the Switch’s serial port, Telnet, or the Web-based management agent. The Command Line Interface (CLI) can be used to configure and manage the Switch via the serial port or Telnet interfaces. This manual provides a reference for all of the commands contained in the CLI. Configuration and management of the Switch via the Web-based management agent is discussed in the User’s Guide.
DGS-3048 Layer 2 Switch CLI Reference Manual Setting the Switch’s IP Address Each switch must be assigned its own IP Address, which is used for communication with an SNMP network manager or other TCP/IP application (for example BOOTP, TFTP). The Switch’s default IP address is 10.0.0.1. You can change the default Switch IP address to meet the specification of your networking address scheme. The Switch is also assigned a unique MAC address by the factory.
DGS-3048 Layer 2 Switch CLI Reference Manual DGS3048# config ipif system ipaddress 10.53.13.222/8 Success DGS3048# Figure 1-3. Assigning an IP Address In the above example, the Switch was assigned an IP address of 10.53.13.111 with a subnet mask of 255.0.0.0 (8 in CIDR from). The system message Success indicates that the command was executed successfully.
DGS-3048 Layer 2 Switch CLI Reference Manual 2 U SING THE C ONSOLE CLI The DGS-3048 supports a console management interface that allows the user to connect to the Switch’s management agent via a serial port and a terminal or a computer running a terminal emulation program. The console can also be used over the network using the TCP/IP Telnet protocol. The console program can be used to configure the Switch to use an SNMP-based network management software over the network.
DGS-3048 Layer 2 Switch CLI Reference Manual DGS3048# clear config create crypto debug-mode delete dir disable download enable login logout ping reboot reset save show upload clear config create Cryptographic commands Exit from the EXEC to debug mode delete display all commands. disable download enable log in a user to the switch's console. log out a user from the switch's console. test the connectivity between network devices. restart the switch. reset the switch to the factory default settings.
DGS-3048 Layer 2 Switch CLI Reference Manual error fdb gvrp igmp_snooping ipif iproute display the error statistics for a range of ports. show fdb show gvrp Show igmp_snooping information Used to display the configuration of an IP interface on the Switch. show iproute link_aggregation show link_aggregation More: , Quit: q, One line: Figure 2-3. Example Command Parameter Help In this case, the command show was entered without a parameter.
DGS-3048 Layer 2 Switch CLI Reference Manual DGS3048# the clear clear config config create create crypto Cryptographic commands debug-mode Exit from the EXEC to debug mode delete delete dir display all commands. disable disable download download enable enable login log in a user to the switch's console. logout log out a user from the switch's console. ping test the connectivity between network devices. reboot restart the switch.
DGS-3048 Layer 2 Switch CLI Reference Manual administrator level privileges on the switch. authen_login display a previously configured user defined method list of authentication methods for users logging on to the switch. command_history display the command history. configuration configuration cpu cpu crypto Cryptographic commands error display the error statistics for a range of ports.
DGS-3048 Layer 2 Switch CLI Reference Manual 3 C OMMAND S YNTAX The following symbols are used to describe how command entries are made and values and arguments are specified in this manual. The online help contained in the CLI and available through the console interface uses the same syntax. Note: All commands are case-sensitive. Be sure to disable Caps Lock or any other unwanted function that changes text case. Purpose Encloses a variable or value that must be specified.
DGS-3048 Layer 2 Switch CLI Reference Manual {braces} Purpose Encloses an optional value or set of optional arguments. Syntax reset {[config | system]} Description In the above syntax example, you have the option to specify config or system. It is not necessary to specify either optional value, however the effect of the system reset is dependent on which, if any, value is specified. Therefore, with this example there are three possible outcomes of performing a system reset.
DGS-3048 Layer 2 Switch CLI Reference Manual 4 B ASIC S WITCH C OMMANDS The basic switch commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
DGS-3048 Layer 2 Switch CLI Reference Manual Each command is listed, in detail, in the following sections. create account Purpose Used to create user accounts. Syntax create [admin | user] Description The create account command is used to create user accounts that consist of a username of 1 to 15 characters and a password of 0 to 15 characters. Up to 8 user accounts can be created.
DGS-3048 Layer 2 Switch CLI Reference Manual Example usage: To configure the user password of “dlink” account: DGS3048#config account dlink Command: config account dlink Enter a old password:**** Enter a case-sensitive new password:**** Enter the new password again for confirmation:**** Success. DGS3048# show account Purpose Used to display user accounts. Syntax show account Description Displays all user accounts created on the Switch. Up to 8 user accounts can exist on the Switch at one time.
DGS-3048 Layer 2 Switch CLI Reference Manual To delete the user account “System”: DGS3048#delete account System Command: delete account System Are you sure to delete the last administrator account?(y/n) Success. DGS3048# show session Purpose Used to display a list of currently logged-in users. Syntax show session Description This command displays a list of all the users that are logged-in at the time the command is issued. Parameters None. Restrictions None.
DGS-3048 Layer 2 Switch CLI Reference Manual To display the Switch information: DGS3048#show switch Command: show switch Device Type : DGS3048# Gigabit-Ethernet Switch MAC Address : DA-10-21-00-00-01 IP Address : 10.41.44.22 (Manual) VLAN Name : default Subnet Mask : 255.0.0.0 Default Gateway : 0.0.0.0 Boot PROM Version : Build 2.00.004 Firmware Version : Build 2.
DGS-3048 Layer 2 Switch CLI Reference Manual config serial_port Purpose Used to configure the serial port. Syntax config serial_port {baud_rate [9600 | 19200 | 38400 | 115200] auto_logout [never | 2_minutes | 5_minutes| 10_minutes | 15_minutes]} Description This command is used to configure the serial port’s baud rate and auto logout settings. Parameters baud rate [9600 | 19200 | 38400 | 115200] − The serial bit rate that will be used to communicate with the management host.
DGS-3048 Layer 2 Switch CLI Reference Manual enable clipaging Purpose Used to pause the scrolling of the console screen when the show command displays more than one page. Syntax enable clipaging Description This command is used when issuing a command which causes the console screen to rapidly scroll through several pages. This command will cause the console to pause at the end of each page. The default setting is enabled. Parameters None.
DGS-3048 Layer 2 Switch CLI Reference Manual enable web Purpose Used to enable the HTTP-based management software on the Switch. Syntax enable web Description This command is used to enable the Web-based management software on the Switch. The user can specify the TCP port number the Switch will use to listen for Telnet requests. Parameters − The TCP port number. TCP ports are numbered between 1 and 65535.
DGS-3048 Layer 2 Switch CLI Reference Manual save Purpose Used to save changes in the Switch’s configuration to non-volatile RAM. Syntax save Description This command is used to enter the current switch configuration into non-volatile RAM. The saved switch configuration will be loaded into the Switch’s memory each time the Switch is restarted. Parameters None. Restrictions Only administrator-level users can issue this command.
DGS-3048 Layer 2 Switch CLI Reference Manual reset Purpose Used to reset the Switch to the factory default settings. Syntax reset Description This command is used to restore the Switch’s configuration to the default settings assigned from the factory. Parameters config − If the keyword ‘config’ is specified, all of the factory default settings are restored on the Switch including the IP address, user accounts, and the Switch history log. The Switch will not save or reboot.
DGS-3048 Layer 2 Switch CLI Reference Manual logout Purpose Used to log out a user from the Switch’s console. Syntax logout Description This command terminates the current user’s session on the Switch’s console. Parameters None. Restrictions None. Example usage: To terminate the current user’s console session: DGS3048#logout ping Purpose Used to test the connectivity between network devices.
DGS-3048 Layer 2 Switch CLI Reference Manual Example usage: To ping the IP address 10.48.74.121 four times: DGS3048#ping 10.48.74.121 times 4 Command: ping 10.48.74.121 Reply from 10.48.74.121, time<10ms Reply from 10.48.74.121, time<10ms Reply from 10.48.74.121, time<10ms Reply from 10.48.74.121, time<10ms Ping statistics for 10.48.74.121 Packets: Sent =4, Received =4, Lost =0 DGS3048# Show CPU Utilization Purpose Used to measuring CPU utilization.
DGS-3048 Layer 2 Switch CLI Reference Manual To show configuration information: DGS3048# show configuration Command: show configuration running startup running-config startup-config DGS3048# show configuration enable jumbo_frame Purpose Used to enable jumbo frames on the device. Syntax enable jumbo_frame Description The port jumbo-frame command enables jumbo frames on the device. Parameters None. Restrictions None. Example usage: To enable jumbo frames: DGS3048# enable jumbo_frame Success.
DGS-3048 Layer 2 Switch CLI Reference Manual To disable jumbo_frames: DGS3048# disable jumbo_frame Success. DGS3048# show jumbo_frame Purpose Used to display the jumbo frame configuration. Syntax show ports jumbo-frame Description The show ports jumbo-frame displays the configuration of jumbo frames. Parameters None. Restrictions None. Example usage: To show the configuration of jumbo_frames status on the dev ice: DGS3048# show jumbo_frame Jumbo frames are disabled.
DGS-3048 Layer 2 Switch CLI Reference Manual 5 S WITCH P ORT C OMMANDS The switch port commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
DGS-3048 Layer 2 Switch CLI Reference Manual config ports Purpose Used to configure the Switch’s Ethernet port settings. Syntax config ports [all | ] {speed [auto | 10_half | 10_full | 100_half | 100_full | 1000_full] | flow_control [enable | disable] | learning [enable | disable] | state [enable | disable]} Description This command allows for the configuration of the Switch’s Ethernet ports. Only the ports listed in the will be affected.
DGS-3048 Layer 2 Switch CLI Reference Manual show ports Purpose Used to display the current configuration of a range of ports. Syntax show ports {} Description This command is used to display the current configuration of a range of ports. Parameters − Specifies a port or range of ports to be displayed. Restrictions None.
DGS-3048 Layer 2 Switch CLI Reference Manual delete ports description Purpose Used to delete a descrition to an interface or rages of interface Syntax Description This command enables user to delete a descrition to an interface or rages of interfaces. Parameters − Specifies a port or range of ports to be displayed. Restrictions None Example usage: To delete a description of an interface: DGS3048# delete ports description 1-5 Success.
DGS-3048 Layer 2 Switch CLI Reference Manual 6 N ETWORK M ANAGEMENT (SNMP) C OMMANDS The network management commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. The DGS-3048 supports the Simple Network Management Protocol (SNMP) versions 1, 2c, and 3. The user may specify which version of the SNMP to use to monitor and control the Switch.
DGS-3048 Layer 2 Switch CLI Reference Manual Command Parameters | write_view } delete snmp group show snmp groups create snmp host [v1 | v2c | v3 [noauth_nopriv | auth_nopriv | auth_priv] delete snmp host show snmp host {} create trusted_host delete trusted_host show trusted_host enable snmp traps disable snmp traps enable snmp authentica
DGS-3048 Layer 2 Switch CLI Reference Manual create snmp user Purpose Used to create a new SNMP user and adds the user to an SNMP group that is also created by this command.
DGS-3048 Layer 2 Switch CLI Reference Manual Example usage: To create an SNMP user on the Switch: DGS3048#create snmp user dlink default encrypted by_password auth md5 auth_password priv none Command: create snmp user dlink default encrypted by_password auth md5 auth_password priv none Success. DGS3048# delete snmp user Purpose Used to remove an SNMP user from an SNMP group and also to delete the associated SNMP group.
DGS-3048 Layer 2 Switch CLI Reference Manual Example usage: To display the SNMP users currently configured on the Switch: DGS3048#show snmp user Command: show snmp user Username Group Name SNMP Version Auth-Protocol PrivProtocol --------------- ------------------------------------------------initial initial V3 None None Total Entries: 1 DGS3048# create snmp view Purpose Used to assign views to community strings to limit which MIB objects and SNMP manager can access.
DGS-3048 Layer 2 Switch CLI Reference Manual delete snmp view Purpose Used to remove an SNMP view entry previously created on the Switch. Syntax delete snmp view [all | ] Description The delete snmp view command is used to remove an SNMP view previously created on the Switch. Parameters − An alphanumeric string of up to 30 characters that identifies the SNMP view to be deleted. all − Specifies that all of the SNMP views on the Switch will be deleted.
DGS-3048 Layer 2 Switch CLI Reference Manual DGS3048#show snmp view Command: show snmp view Vacm View Table Settings View Name Subtree -------------------------------------------ReadView 1 WriteView 1 NotifyView 1.3.6 restricted 1.3.6.1.2.1.1 restricted 1.3.6.1.2.1.11 restricted 1.3.6.1.6.3.10.2.1 restricted 1.3.6.1.6.3.11.2.1 restricted 1.3.6.1.6.3.15.1.1 CommunityView 1 CommunityView 1.3.6.1.6.3 CommunityView 1.3.6.1.6.3.
DGS-3048 Layer 2 Switch CLI Reference Manual create snmp community to the contents of the MIBs on the Switch. Restrictions Only administrator-level users can issue this command. Example usage: To create the SNMP community string “dlink:” DGS3048#create snmp community dlink view ReadView read_write Command: create snmp community dlink view ReadView read_write Success. DGS3048# delete snmp community Purpose Used to remove a specific SNMP community string from the Switch.
DGS-3048 Layer 2 Switch CLI Reference Manual Example usage: To display the currently entered SNMP community strings: DGS3048#show snmp community Command: show snmp community SNMP Community Table Community Name -------------------------------dlink private public View Name -------------------------ReadView CommunityView CommunityView Access Right -----------read_write read_write read_only Total Entries: 3 DGS3048# config snmp engineID Purpose Used to configure a name for the SNMP engine on the Switch.
DGS-3048 Layer 2 Switch CLI Reference Manual Example usage: To display the current name of the SNMP engine on the Switch: DGS3048#show snmp engineID Command: show snmp engineID SNMP Engine ID : 0035636666 DGS3048# create snmp group Purpose Used to create a new SNMP group, or a table that maps SNMP users to SNMP views.
DGS-3048 Layer 2 Switch CLI Reference Manual create snmp group remote SNMP manager. auth_priv − Specifies that authorization will be required, and that packets sent between the Switch and a remote SNMP manger will be encrypted. read_view – Specifies that the SNMP group being created can request SNMP messages. − An alphanumeric string of up to 32 characters that is used to identify the group of MIB objects that a remote SNMP manager is allowed to access on the Switch.
DGS-3048 Layer 2 Switch CLI Reference Manual delete snmp group Purpose Used to remove an SNMP group from the Switch. Syntax delete snmp group Description The delete snmp group command is used to remove an SNMP group from the Switch. Parameters − An alphanumeric name of up to 30 characters that will identify the SNMP group the new SNMP user will be associated with. Restrictions Only administrator-level users can issue this command.
DGS-3048 Layer 2 Switch CLI Reference Manual Security Level : authNoPriv Group Name ReadView Name WriteView Name Notify View Name Security Model Security Level : Group5 : ReadView : WriteView : NotifyView : SNMPv3 : authNoPriv Group Name ReadView Name WriteView Name Notify View Name Security Model Security Level : Group6 : ReadView : WriteView : NotifyView : SNMPv3 : authPriv Group Name ReadView Name WriteView Name Notify View Name Security Model Security Level : Group7 : ReadView : WriteView : Notif
DGS-3048 Layer 2 Switch CLI Reference Manual create snmp host Purpose Used to create a recipient of SNMP traps generated by the Switch’s SNMP agent. Syntax create snmp host [v1 | v2c | v3 [noauth_nopriv | auth_nopriv | auth_priv]] Description The create snmp host command creates a recipient of SNMP traps generated by the Switch’s SNMP agent.
DGS-3048 Layer 2 Switch CLI Reference Manual DGS3048#create snmp host 10.48.74.100 v3 auth_priv public Command: create snmp host 10.48.74.100 v3 auth_priv public Success. DGS3048# delete snmp host Purpose Used to remove a recipient of SNMP traps generated by the Switch’s SNMP agent. Syntax delete snmp host Description The delete snmp host command deletes a recipient of SNMP traps generated by the Switch’s SNMP agent.
DGS-3048 Layer 2 Switch CLI Reference Manual SNMP Host Table Host IP Address SNMP Version ----------------------------------10.48.76.23 V2c 10.48.74.100 V3 Community Name / SNMPv3 User Name -----------------------------private public Total Entries: 2 DGS3048# create trusted_host Purpose Used to create the trusted host. Syntax create trusted_host Description The create trusted_host command creates the trusted host.
DGS-3048 Layer 2 Switch CLI Reference Manual DGS3048#delete trusted_host 10.48.74.121 Command: delete trusted_host 10.48.74.121 Success.
DGS-3048 Layer 2 Switch CLI Reference Manual show trusted_host Purpose Used to display a list of trusted hosts entered on the Switch using the create trusted_host command above. Syntax show trusted_host {} Description This command is used to display a list of trusted hosts entered on the Switch using the create trusted_host command above. Parameters − The IP address of the trusted host. Restrictions None.
DGS-3048 Layer 2 Switch CLI Reference Manual disable snmp traps Purpose Used to disable SNMP trap support on the Switch. Syntax disable snmp traps Description This command is used to disable SNMP trap support on the Switch. Parameters None. Restrictions Only administrator-level users can issue this command. Example Usage: To prevent SNMP traps from being sent from the Switch: DGS3048#disable snmp traps Command: disable snmp traps Success.
DGS-3048 Layer 2 Switch CLI Reference Manual disable snmp authenticate trap Restrictions Only administrator-level users can issue this command. Example Usage: To disable the SNMP authentication trap support: DGS3048#disable snmp authenticate trap Command: disable snmp authenticate trap Success. DGS3048# show snmp traps Purpose Used to show SNMP trap support on the Switch .
DGS-3048 Layer 2 Switch CLI Reference Manual To configure the Switch contact to “M I S D e p a r t m e n t I I ”: DGS3048#config snmp system_contact MIS Department II Command: config snmp system_contact MIS Department II Success. DGS3048# config snmp system_location Purpose Used to enter a description of the location of the Switch. Syntax config snmp system_location {} Description The config snmp system_location command is used to enter a description of the location of the Switch.
DGS-3048 Layer 2 Switch CLI Reference Manual DGS3048#config snmp system_name DGS3048 Switch Command: config snmp system_name DGS3048 Switch Success.
DGS-3048 Layer 2 Switch CLI Reference Manual 7 D OWNLOAD /U PLOAD C OMMANDS The download/upload commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
DGS-3048 Layer 2 Switch CLI Reference Manual To download a firmware file: DGS3048#download firmware 10.48.74.121 c:\DGS3048 b08.had Command: download firmware 10.48.74.121 c:\DGS3048 b08.had Connecting to server................... Done. Download firmware...........……… Done. Do not power off! Please wait, programming flash…….. Done. Saving current settings to NV-RAM……Done. Please wait, the switch is rebooting…. Example usage: To download a configuration file: DGS3048#download configuration 10.48.74.
DGS-3048 Layer 2 Switch CLI Reference Manual To upload a log file: DGS3048#upload log 10.48.74.121 c:\cfg\log.txt Command: upload log 10.48.74.121 c:\cfg\log.txt Connecting to server................... Done. Upload configuration...................Done. DGS3048# Example usage: To upload a configuration file: DGS3048#upload configuration 10.48.74.121 c:\cfg\setting.txt Command: upload configuration 10.48.74.121 c:\cfg\setting.txt Connecting to server................... Done. Upload configuration.............
DGS-3048 Layer 2 Switch CLI Reference Manual 8 N ETWORK M ONITORING C OMMANDS The network monitoring commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
DGS-3048 Layer 2 Switch CLI Reference Manual DGS3048#show packet ports 7 Command: show packet ports 7 Port number : 7 A Frame Size Frame Counts Frames/sec Frame Type ----------------------------------------64 3275 10 RX Bytes 65-127 755 10 RX Frames 128-255 316 1 256-511 145 0 TX Bytes 512-1023 15 0 TX Frames 1024-1518 0 0 C Unicast RX 152 1 Multicast RX 557 2 Broadcast RX 3686 16 B Total Total/sec --------------408973 1657 4395 19 7918 111 178 2 More: , Quit: q, One line: show error po
DGS-3048 Layer 2 Switch CLI Reference Manual show utilization Purpose Used to display real-time port utilization statistics. Syntax show utilization Description This command will display the real-time port utilization statistics for the Switch. Parameters None. Restrictions None.
DGS-3048 Layer 2 Switch CLI Reference Manual DGS3048#clear counters Command: clear counters Success. DGS3048# clear log Purpose Used to clear the Switch’s history log. Syntax clear log Description This command will clear the Switch’s history log. Parameters None. Restrictions Only administrator-level users can issue this command. Example usage: To clear the log information: DGS3048#clear log Command: clear log Success. DGS3048# show log Purpose Used to display the Switch history log.
DGS-3048 Layer 2 Switch CLI Reference Manual enable syslog Purpose Used to enable the system log to be sent to a remote host. Syntax enable syslog Description The enable syslog command enables the system log to be sent to a remote host. Parameters None. Restrictions Only administrator-level users can issue this command. Example usage: To the syslog function on the Switch: DGS3048#enable syslog Command: enable syslog Success.
DGS-3048 Layer 2 Switch CLI Reference Manual To display the current status of the syslog function: DGS3048#show syslog Command: show syslog Syslog Global State: Enabled DGS3048# create syslog host Purpose Used to create a new syslog host.
DGS-3048 Layer 2 Switch CLI Reference Manual create syslog host Numerical Code Facility 0 1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 kernel messages user-level messages mail system system daemons security/authorization messages messages generated internally by syslog line printer subsystem network news subsystem UUCP subsystem clock daemon security/authorization messages FTP daemon NTP subsystem log audit log alert clock daemon local use 0 (local0) local use 1 (local1) local use 2 (loca
DGS-3048 Layer 2 Switch CLI Reference Manual DGS3048#create syslog host 1 ipaddress 10.53.13.94 severity all facility local0 Command: create syslog host 1 ipaddress 10.53.13.94 severity all facility local0 Success. DGS3048# config syslog host Purpose Used to configure the syslog protocol to send system log data to a remote host.
DGS-3048 Layer 2 Switch CLI Reference Manual config syslog host 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 security/authorization messages messages generated internally by syslog line printer subsystem network news subsystem UUCP subsystem clock daemon security/authorization messages FTP daemon NTP subsystem log audit log alert clock daemon local use 0 (local0) local use 1 (local1) local use 2 (local2) local use 3 (local3) local use 4 (local4) local use 5 (local5) local use 6 (local6) local use
DGS-3048 Layer 2 Switch CLI Reference Manual DGS3048# delete syslog host Purpose Used to remove a syslog host, that has been previously configured, from the Switch. Syntax delete syslog host [ | all] Description The delete syslog host command is used to remove a syslog host that has been previously configured from the Switch. Parameters − Specifies that the command will be applied to an index of hosts. There are four available indexes, numbered 1 through 4.
DGS-3048 Layer 2 Switch CLI Reference Manual DGS3048#show syslog host Command: show syslog host Syslog Global State: Disabled Host Id ------1 2 3 Host IP Address --------------10.1.1.2 10.40.2.3 10.21.13.
DGS-3048 Layer 2 Switch CLI Reference Manual 9 M ULTIPLE S PANNING T REE P ROTOCOL (MSTP) C OMMANDS This switch supports three versions of the Spanning Tree Protocol; 802.1d STP, 802.1w Rapid STP and 802.1s MSTP. Multiple Spanning Tree Protocol, or MSTP, is a standard defined by the IEEE community that allows multiple VLANs to be mapped to a single spanning tree instance, which will provide multiple pathways across the network.
DGS-3048 Layer 2 Switch CLI Reference Manual Command Parameters mst_config_id config stp mst_ports instance_id {internalCost [auto | value 1200000000] | priority } show stp show stp ports {} show stp instance_id {} show stp mst_config id Each command is listed, in detail, in the following sections. enable stp Purpose Used to globally enable STP on the Switch.
DGS-3048 Layer 2 Switch CLI Reference Manual Command: disable stp Success. DGS3048# config stp version Purpose Used to globally set the version of STP on the Switch. Syntax config stp version [mstp | rstp | stp] Description This command allows the user to choose the version of the spanning tree to be implemented on the Switch. Parameters mstp – Selecting this parameter will set the Multiple Spanning Tree Protocol (MSTP) globally on the Switch.
DGS-3048 Layer 2 Switch CLI Reference Manual config stp become the Root Bridge. The user may choose a time between 6 and 40 seconds. The default value is 20. maxhops - The number of hops between devices in a spanning tree region before the BPDU (bridge protocol data unit) packet sent by the Switch will be discarded. Each switch on the hop count will reduce the hop count by one until the value reaches zero.
DGS-3048 Layer 2 Switch CLI Reference Manual config stp ports range (also separated by a colon) are specified. The beginning and end of the port list range are separated by a dash. For example, 1:3 specifies switch number 1, port 3. 2:4 specifies switch number 2, port 4. 1:3-2:4 specifies all of the ports between switch 1, port 3 and switch 2, port 4 − in numerical order. externalCost − This defines a metric that indicates the relative cost of forwarding packets to the specified port list.
DGS-3048 Layer 2 Switch CLI Reference Manual DGS3048# config stp instance_id Purpose Used to add or delete an STP instance ID. Syntax config stp instance_id [add_vlan | remove_vlan] Description This command is used to map VIDs (VLAN IDs) to previously configured STP instances on the Switch by creating an instance_id. A STP instance may have multiple members with the same MSTP configuration.
DGS-3048 Layer 2 Switch CLI Reference Manual config stp priority Purpose Used to update the STP instance configuration. Syntax config stp priority instance_id Description This command is used to update the STP instance configuration settings on the Switch. The MSTP will utilize the priority in selecting the root bridge, root port and designated port.
DGS-3048 Layer 2 Switch CLI Reference Manual Example usage: To configure the MSTP region of the Switch with revision_level 10 and the name “Trinity”: DGS3048#config stp mst_config_id revision_level 10 name Trinity Command : config stp mst_config_id revision_level 10 name Trinity Success. DGS3048# config stp mst_ports Purpose Used to update the port configuration for a MSTP instance.
DGS-3048 Layer 2 Switch CLI Reference Manual config stp mst_ports higher priority. Restrictions Only administrator-level users can issue this command. Example usage: To designate ports 1 through 5 on module one, with instance ID 2, to have an auto internalCost and a priority of 16: DGS3048#config stp mst_config_id ports 1:1-1:5 instance_id 2 internalCost auto priority 16 Command : config stp mst_config_id ports 1:1-1:5 instance_id 2 internalCost auto priority 16 Success.
DGS-3048 Layer 2 Switch CLI Reference Manual STP Status STP Version Max Age Hello Time Forward Delay Max Age TX Hold Count Forwarding BPDU : Enabled : RSTP : 20 :2 : 15 : 20 :3 : Enabled DGS3048# Status 3 : STP enabled for MSTP DGS3048#show stp Command: show stp STP Status STP Version Max Age Forward Delay Max Age TX Hold Count Forwarding BPDU : Enabled : MSTP : 20 : 15 : 20 :3 : Enabled DGS3048# show stp ports Purpose Used to display the Switch’s current instance_id configuration.
DGS-3048 Layer 2 Switch CLI Reference Manual MSTP Port Information ---------------------Port Index :1, Hello Time: 2 /2 , Port STP enabled External PathCost : Auto/200000 , Edge Port : No /No , P2P : Auto /Yes Msti ----0 1 Designated Bridge Internal PathCost Prio Status Role ------------------------------------- ------------------8000/0050BA7120D6 200000 128 Forwarding Root 8001/0053131A3324 200000 128 Forwarding Master More: , Quit: q, One line: show stp instance_id Purpose Used to disp
DGS-3048 Layer 2 Switch CLI Reference Manual show stp mst_config_id Purpose Used to display the MSTP configuration identification. Syntax show stp mst_config_id Description This command displays the Switch’s current MSTP configuration identification. Parameters None. Restrictions None.
DGS-3048 Layer 2 Switch CLI Reference Manual 10 F ORWARDING D ATABASE C OMMANDS The layer 2 forwarding database commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
DGS-3048 Layer 2 Switch CLI Reference Manual create multicast_fdb Purpose Used to create a static entry to the multicast MAC address forwarding table (database). Syntax create multicast_fdb Description This command will make an entry into the Switch’s multicast MAC address forwarding database. Parameters − The name of the VLAN on which the MAC address resides. − The MAC address that will be added to the forwarding table.
DGS-3048 Layer 2 Switch CLI Reference Manual DGS3048#config multicast_fdb default 01-00-5E-00-00-00 add 1 Command: config multicast_fdb default 01-00-5E-00-00-00 add 1 Success. DGS3048# config fdb aging_time Purpose Used to set the aging time of the forwarding database. Syntax config fdb aging_time minutes Description The aging time affects the learning process of the Switch.
DGS-3048 Layer 2 Switch CLI Reference Manual To delete a permanent FDB entry: DGS3048#delete fdb default 00-00-00-00-01-02 Command: delete fdb default 00-00-00-00-01-02 Success. DGS3048# clear fdb Purpose Used to clear the Switch’s forwarding database of all dynamically learned MAC addresses. Syntax clear fdb Description This command is used to clear dynamically learned entries to the Switch’s forwarding database. Parameters all − Clears all dynamic entries to the Switch’s forwarding database.
DGS-3048 Layer 2 Switch CLI Reference Manual MAC Address : 01-00-5E-00-00-00 Egress Ports : 1-5,26 Mode : Static Total Entries :1 DGS3048# show fdb Purpose Used to display the current unicast MAC address forwarding database. Syntax show fdb {port | vlan | mac_address | static | aging_time} Description This command will display the current contents of the Switch’s forwarding database.
DGS-3048 Layer 2 Switch CLI Reference Manual 1 default 00-01-30-10-2C-C7 10 1 default 00-01-30-FA-5F-00 10 1 default 00-02-3F-63-DD-68 10 More: , Quit: q, One line: l Dynamic Dynamic Dynamic To display the aging time: DGS3048#show fdb aging_time Command: show fdb aging_time Unicast MAC Address Aging Time = 5 DGS3048# Delete trusted_host Purpoe Used to delete a trusted host entry made using the create trusted_host command above.
DGS-3048 Layer 2 Switch CLI Reference Manual 11 B ROADCAST S TORM C ONTROL C OMMANDS The broadcast storm control commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
DGS-3048 Layer 2 Switch CLI Reference Manual DGS3048#config traffic control ports all state enable Command: config traffic control ports all state enable Success. DGS3048#config traffic control storm_type broadcast threshold 15000 Command: config traffic control storm_type broadcast threshold 15000 Success. DGS3048#config traffic control threshold 15000 Command: config traffic control threshold 15000 Success. DGS3048# show traffic control Purpose Used to display current traffic control settings.
DGS-3048 Layer 2 Switch CLI Reference Manual 12 Q O S C OMMANDS The DGS-3048 switch supports 802.1p priority queuing. The Switch has 8 priority classes of service. These priority classes of service are numbered from 7 (Class 7) — the highest priority class of service — to 0 (Class 0) — the lowest priority class of service. The eight priority queues specified in IEEE 802.1p (p0 to p7) are mapped to the Switch’s priority classes of service as follows: • Priority 0 is assigned to the Switch’s Q0 class.
DGS-3048 Layer 2 Switch CLI Reference Manual Command Parameters show 802.1p default_priority {} config scheduling_mechanism [strict | round_robin] show scheduling_mechanism config rate_limit [ | all] show rate_limit Each command is listed, in detail, in the following sections. config scheduling Purpose Used to configure traffic scheduling for each of the Switch’s QoS queues.
DGS-3048 Layer 2 Switch CLI Reference Manual config scheduling specified. The default value is 0. Restrictions Only administrator-level users can issue this command. Example usage: To configure traffic scheduling: DGS30484# config scheduling 7 max_packet 15 Command: config scheduling 7 max_packet 15 Success. DGS30484# show scheduling Purpose Used to display the currently configured traffic scheduling on the Switch.
DGS-3048 Layer 2 Switch CLI Reference Manual DGS3048# config 802.1p user_priority Purpose Used to map the 802.1p user priority of an incoming packet to one of the eight hardware classes of service available on the Switch. Syntax config 802.1p user_priority Description The config 802.1p user_priority command is used to configure the way the Switch will map an incoming packet, based on its 802.
DGS-3048 Layer 2 Switch CLI Reference Manual Example usage: To configure 802.1 user priority on the Switch: DGS3048# config 802.1p user_priority 1 3 Command: config 802.1p user_priority 1 3 Success. DGS3048# show 802.1p user_priority Purpose Used to display the current mapping between an incoming packet’s 802.1p priority value and one of the Switch’s eight hardware priority classes of service. Syntax show 802.1p user_priority Description The show 802.
DGS-3048 Layer 2 Switch CLI Reference Manual config 802.1p default_priority Parameters − Specifies a port or range of ports to be configured. all − Specifies that the config 802.1p default_priority command will be applied to all ports on the Switch. − Specifies the 802.1p priority value that an untagged, incoming packet will be given before being forwarded to its destination. Restrictions Only administrator-level users can issue this command. Example usage: To configure 802.
DGS-3048 Layer 2 Switch CLI Reference Manual show 802.1 default_priority Purpose Used to display the currently configured 802.1p priority value that will be assigned to an incoming, untagged packet before being forwarded to its destination. Syntax show 802.1p default_priority {} Description The show 802.1p default_priority command displays the currently configured 802.1p priority value that will be assigned to an incoming, untagged packet before being forwarded to its destination.
DGS-3048 Layer 2 Switch CLI Reference Manual config scheduling_mechanism Purpose Used to configure the scheduling mechanism for the QoS function Syntax config scheduling mechanism [strict | round_robin] Description The config scheduling_mechanism command allows the user to select between a round robin (WRR) and a Strict mechanism for emptying the priority classes of service of the QoS function. The Switch contains seven hardware priority classes of service.
DGS-3048 Layer 2 Switch CLI Reference Manual To show the scheduling mechanism: DGS3048#show scheduling_mechanism Command: show scheduling_mechanism QOS scheduling_mechanism CLASS ID Mechanism --------------------Class-0 strict Class-1 strict Class-2 strict Class-3 strict Class-4 strict Class-5 strict Class-6 strict Class-7 strict DGS3048# config rate_limit Purpose To enable rate limitation of specific egress port Syntax config rate_limit[ | all] Description The command enab
DGS-3048 Layer 2 Switch CLI Reference Manual To show a port’s rate limit: DGS3048# show rate_limit all Current rate limit Port Rate Limit ---- ---------1 3500 2 3500 3 3500 4 3500 5 3500 6 3500 7 3500 8 3500 9 3500 10 3500 11 3500 12 3500 13 3500 14 3500 15 3500 16 3500 17 3500 CTRL+C ESC q Quit SPACE n Next Page ENTER Next Entry a ALL 94
DGS-3048 Layer 2 Switch CLI Reference Manual 13 P ORT M IRRORING C OMMANDS The port mirroring commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config mirror {target | ingress_source | egress_source } disable mirror show mirror Each command is listed, in detail, in the following sections. config mirror Purpose Used to configure a mirror port − source port pair on the Switch.
DGS-3048 Layer 2 Switch CLI Reference Manual disable mirror Purpose Used to disable port mirroring and to remove a previously entered port mirroring configuration. Syntax disable mirror Description This command, combined with the config mirror command above, allows you to enter a port mirroring configuration into the Switch, and then turn the port mirroring on and off without having to modify the port mirroring configuration. Parameters None.
DGS-3048 Layer 2 Switch CLI Reference Manual 14 VLAN C OMMANDS The VLAN commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
DGS-3048 Layer 2 Switch CLI Reference Manual Syntax delete vlan Description This command will delete a previously configured VLAN on the Switch. Parameters − The VLAN name of the VLAN to delete. Restrictions Only administrator-level users can issue this command. Example usage: To remove a vlan v1: DGS3048#delete vlan v1 Command: delete vlan v1 Success. DGS3048# config vlan Purpose Used to add additional ports to a previously configured VLAN.
DGS-3048 Layer 2 Switch CLI Reference Manual DGS3048# config gvrp Purpose Used to configure GVRP on the Switch. Syntax config gvrp [ | ch1 | ch2 | ch3 | ch4 | ch5 | ch6 | ch7 | ch8 | all] {state [enable | disable] | ingress_checking [enable | disable] | acceptable_frame [tagged_only | admit_all] | pvid } Description This command is used to configure the Group VLAN Registration Protocol on the Switch.
DGS-3048 Layer 2 Switch CLI Reference Manual enable gvrp Purpose Used to enable GVRP on the Switch. Syntax enable gvrp Description This command, along with disable gvrp below, is used to enable and disable GVRP on the Switch, without changing the GVRP configuration on the Switch. Parameters None. Restrictions Only administrator-level users can issue this command. Example usage: To enable the generic VLAN Registration Protocol (GVRP): DGS3048#enable gvrp Command: enable gvrp Success.
DGS-3048 Layer 2 Switch CLI Reference Manual show vlan member of the VLAN. Parameters − The VLAN name of the VLAN for which to display a summary of settings. Restrictions None.
DGS-3048 Layer 2 Switch CLI Reference Manual DGS3048# 102
DGS-3048 Layer 2 Switch CLI Reference Manual 15 L INK A GGREGATION C OMMANDS The link aggregation commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
DGS-3048 Layer 2 Switch CLI Reference Manual delete link_aggregation Restrictions Only administrator-level users can issue this command. Example usage: To delete link aggregation group: DGS3048#delete link_aggregation group_id 1 Command: delete link_aggregation group_id 1 Success. DGS3048# config link_aggregation Purpose Used to configure a previously created link aggregation group.
DGS-3048 Layer 2 Switch CLI Reference Manual show link_aggregation Purpose Used to display the current link aggregation configuration on the Switch. Syntax show link_aggregation {group_id } Description This command will display the current link aggregation configuration of the Switch. Parameters group_id − Specifies the group ID. The Switch allows up to 8 link aggregation groups to be configured. The group number identifies each of the groups. Restrictions None.
DGS-3048 Layer 2 Switch CLI Reference Manual 16 B ASIC IP C OMMANDS The IP interface commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config ipif [{ipaddress | vlan | state [enable | disable]} | dhcp] show ipif {} Each command is listed, in detail, in the following sections. config ipif System Purpose Used to configure the System IP interface.
DGS-3048 Layer 2 Switch CLI Reference Manual show ipif Purpose Used to display the configuration of an IP interface on the Switch. Syntax show ipif {system} Description This command will display the configuration of an IP interface on the Switch. Parameters - Enter the name of the IP interface for which to view the settings. (Always System) Restrictions None. Example usage: To display IP interface settings.
DGS-3048 Layer 2 Switch CLI Reference Manual 17 IGMP S NOOPING C OMMANDS The IGMP Snooping commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
DGS-3048 Layer 2 Switch CLI Reference Manual DGS3048#config igmp_snooping default host_timeout 250 state enable Command: config igmp_snooping default host_timeout 250 state enable Success. DGS3048# config router_ports Purpose Used to configure ports as router ports. Syntax config router_ports [add | delete] Description This command allows you to designate a range of ports as being connected to multicast-enabled routers.
DGS-3048 Layer 2 Switch CLI Reference Manual DGS3048#enable igmp_snooping Command: enable igmp_snooping Success. DGS3048# disable igmp_snooping Purpose Used to disable IGMP snooping on the Switch. Syntax disable igmp_snooping Description This command disables IGMP snooping on the Switch. IGMP snooping can be disabled only if IP multicast routing is not being used. Disabling IGMP snooping allows all IGMP and IP multicast traffic to flood within a given IP interface. Parameters None.
DGS-3048 Layer 2 Switch CLI Reference Manual show igmp_snooping Purpose Used to show the current status of IGMP snooping on the Switch. Syntax show igmp_snooping {vlan } Description This command will display the current IGMP snooping configuration on the Switch. Parameters − The name of the VLAN for which to view the IGMP snooping configuration. Restrictions None.
DGS-3048 Layer 2 Switch CLI Reference Manual DGS3048#show igmp_snooping group Command: show igmp_snooping group VLAN Name : default Multicast group: 224.0.0.2 MAC address : 01-00-5E-00-00-02 Reports :1 Port Member : 3,4 Total Entries :1 DGS3048# show igmp_snooping forwarding Purpose Used to display the IGMP snooping forwarding table entries on the Switch.
DGS-3048 Layer 2 Switch CLI Reference Manual To display the router ports.
DGS-3048 Layer 2 Switch CLI Reference Manual 18 802.1X C OMMANDS The DGS-3024 implements the server-side of the IEEE 802.1x Port-based Network Access Control. This mechanism is intended to allow only authorized users, or other network devices, access to network resources by establishing criteria for each port on the Switch that a user or network device must meet before allowing that port to forward or receive frames. Command Parameters enable 802.1x disable 802.1x show 802.
DGS-3048 Layer 2 Switch CLI Reference Manual Command: enable 802.1x Success. DGS3048# disable 802.1x Purpose Used to disable the 802.1x server on the Switch. Syntax disable 802.1x Description The disable 802.1x command is used to disable the 802.1x Port-based Network Access control server application on the Switch. Parameters None. Restrictions Only administrator-level users can issue this command. Example usage: To disable 802.1x on the Switch: DGS3048#disable 802.1x Command: disable 802.
DGS-3048 Layer 2 Switch CLI Reference Manual Example usage: To display the 802.1x authentication states (stacking disabled) for Port-based 802.1x: DGS3048:4#show 802.1x auth_state ports 1-5 Command: show 802.
DGS-3048 Layer 2 Switch CLI Reference Manual show 802.1x auth_configuration Authenticator of the port to become Authorized. ForceUnauth forces the port to become Unauthorized. QuietPeriod − Shows the time interval between authentication failure and the start of a new authentication attempt. TxPeriod − Shows the time to wait for a response from a supplicant (user) to send EAP Request/Identity packets.
DGS-3048 Layer 2 Switch CLI Reference Manual config 802.1x auth_parameter ports Purpose Used to configure the 802.1x Authentication parameters on a range of ports. The default parameter will return all ports in the specified range to their default 802.1x settings. Syntax config 802.
DGS-3048 Layer 2 Switch CLI Reference Manual DGS3048#config 802.1x auth_parameter ports 1 – 20 direction both Command: config 802.1x auth_parameter ports 1 – 20 direction both Success.
DGS-3048 Layer 2 Switch CLI Reference Manual config 802.1x init Purpose Used to initialize the 802.1x function on a range of ports. Syntax config 802.1x init [port_based ports [ | all] Description The config 802.1x init command is used to immediately initialize the 802.1x functions on a specified range of ports or for specified MAC addresses operating from a specified range of ports. Parameters port_based ports – This instructs the Switch to initialize 802.
DGS-3048 Layer 2 Switch CLI Reference Manual config 802.1x reauth Purpose Used to configure the 802.1x re-authentication feature of the Switch. Syntax config 802.1x reauth [port_based ports [ | all] Description The config 802.1x reauth command is used to re-authenticate a previously authenticated device based on a port number. Parameters port_based – This instructs the Switch to re-authorize 802.1x function based only on the port number.
DGS-3048 Layer 2 Switch CLI Reference Manual config radius add Purpose Used to configure the settings the Switch will use to communicate with a RADIUS server. Syntax config radius add [ ][ key ] [default | {auth_port | acct_port }] Description The config radius add command is used to configure the settings the Switch will use to communicate with a RADIUS server. Parameters − The IP address of the RADIUS server.
DGS-3048 Layer 2 Switch CLI Reference Manual Command: config radius delete 10.48.74.121 Success. DGS3048# config radius Purpose Used to configure the Switch’s RADIUS settings. Syntax config radius {| key | auth_port | acct_port } Description The config radius command is used to configure the Switch’s RADIUS settings. Parameters − The IP address of the RADIUS server.
DGS-3048 Layer 2 Switch CLI Reference Manual To display RADIUS settings on the Switch: DGS3048#show radius Command: show radius Index IP Address ----1 2 3 -----------------10.1.1.1 20.1.1.1 30.1.1.
DGS-3048 Layer 2 Switch CLI Reference Manual 19 A CCESS A UTHENTICATION C ONTROL C OMMANDS Please note that user granted access to the Switch will be granted normal user privileges on the Switch. To gain access to admin level privileges, the user must enter the enable admin command and then enter a password, which was previously configured by the administrator of the Switch. The Access Authentication Control commands let you secure access to the Switch using the TACACS+ and RADIUS protocols.
DGS-3048 Layer 2 Switch CLI Reference Manual Command Parameters method_list_name show authen_login {all | default | method_list_name } create authen_enable method_list_name config authen_enable [default | method_list_name ] method {tacacs+ | radius | local_enable | none} delete authen_enable method_list_name show authen_enable [default | method_list_name | all] config authen application {console | telnet | ssh | all] [login | enable] [d
DGS-3048 Layer 2 Switch CLI Reference Manual Command: create authen_login method_list_name Trinity Success. DGS3048# config authen_login Purpose Used to configure a user-defined or default method list of authentication methods for user login. Syntax config authen_login [default | method_list_name ] method {tacacs+ | radius | local | none} Description This command will configure a user-defined or default method list of authentication methods for users logging on to the Switch.
DGS-3048 Layer 2 Switch CLI Reference Manual config authen_login radius - Adding this parameter will require the user to be authenticated using the RADIUS protocol from a previously configured RADIUS server. local - Adding this parameter will require the user to be authenticated using the local user account database on the Switch. none – Adding this parameter will require no authentication to access the Switch.
DGS-3048 Layer 2 Switch CLI Reference Manual delete authen_login method_list_name Restrictions Only administrator-level users can issue this command. Example usage: To delete the method list name “Trinity”: DGS3048#delete authen_login method_list_name Trinity Command: delete authen_login method_list_name Trinity Success. DGS3048# show authen_login Purpose Used to display a previously configured user defined method list of authentication methods for users logging on to the Switch.
DGS-3048 Layer 2 Switch CLI Reference Manual Method List Name Priority ----------------------Darren 1 default 1 GoHabs! 1 Trinity 1 Method Name --------------tacacs+ radius Newfie local Comment --------Built-in Group Built-in Group User-defined Group Keyword DGS3048# create authen_enable method_list_name Purpose Used to create a user-defined method list of authentication methods for promoting normal user level privileges to Administrator level privileges on the Switch.
DGS-3048 Layer 2 Switch CLI Reference Manual config authen_enable The sequence of methods implemented in this command will affect the authentication result. For example, if a user enters a sequence of methods like tacacs + – local_enable, the Switch will send an authentication request to the first tacacs host in the server group. If no verification is found, the Switch will send an authentication request to the second tacacs host in the server group and so on, until the list is exhausted.
DGS-3048 Layer 2 Switch CLI Reference Manual DGS3048#config authen_enable method_list_name Trinity method tacacs + local Command: config authen_enable method_list_name Trinity method tacacs xtacacs local Success. DGS3048# Example usage: To configure the default method list with authentication methods TACACS+ and local, in that order: DGS3048#config authen_enable default method tacacs+ local Command: config authen_enable default method tacacs+ local Success.
DGS-3048 Layer 2 Switch CLI Reference Manual show authen_enable Purpose Used to display the method list of authentication methods for promoting normal user level privileges to Administrator level privileges on the Switch. Syntax show authen_enable [all | default | method_list_name ] Description This command is used to delete a user-defined method list of authentication methods for promoting user level privileges to Administrator level privileges.
DGS-3048 Layer 2 Switch CLI Reference Manual DGS3048# config authen application Purpose Used to configure various applications on the Switch for authentication using a previously configured method list.
DGS-3048 Layer 2 Switch CLI Reference Manual show authen application Purpose Used to display authentication methods for the various applications on the Switch. Syntax show authen application Description This command will display all of the authentication method lists (login, enable administrator privileges) for switch configuration applications (console, telnet, SSH, web) currently configured on the Switch. Parameters None. Restrictions None.
DGS-3048 Layer 2 Switch CLI Reference Manual create authen server_host radius - Enter this parameter if the server host utilizes the RADIUS protocol. port - Enter a number between 1 and 65535 to define the virtual port number of the authentication protocol on a server host. The default port number is 49 for TACACS+ servers but the user may set a unique port number for higher security. The default port number of the authentication protocol on the RADIUS server is 1812.
DGS-3048 Layer 2 Switch CLI Reference Manual config authen server_host be altered. protocol – The protocol used by the server host. The user may choose one of the following: tacacs+ - Enter this parameter if the server host utilizes the TACACS+ protocol. radius - Enter this parameter if the server host utilizes the RADIUS protocol. port - Enter a number between 1 and 65535 to define the virtual port number of the authentication protocol on a server host.
DGS-3048 Layer 2 Switch CLI Reference Manual delete authen server_host the TACACS+ protocol. radius - Enter this parameter if the server host utilizes the RADIUS protocol. Restrictions Only administrator-level users can issue this command. Example usage: To delete a user-defined TACACS+ authentication server host: DGS3048#delete authen server_host 10.1.1.121 protocol tacacs+ Command: delete authen server_host 10.1.1.121 protocol tacacs+ Success.
DGS-3048 Layer 2 Switch CLI Reference Manual IP Address Protocol Port Timeout Retransmit Key --------------- ------------ --------------------- -------10.53.13.94 TACACS+ 49 5 no use -------Total Entries : 1 DGS3048# local_enable admin Purpose Used to promote user level privileges to administrator level privileges Syntax local_enable admin Description This command is for users who have logged on to the Switch on the normal user level, to become promoted to the administrator level.
DGS-3048 Layer 2 Switch CLI Reference Manual config admin local_enable alphanumeric string of no more than 15 characters, and finally prompted to enter the new password again to confirm. See the example below. Restrictions Only users who have the authentication password can issue this command. Example usage: To configure the password for the “local_enable” authentication method.
DGS-3048 Layer 2 Switch CLI Reference Manual 141
DGS-3048 Layer 2 Switch CLI Reference Manual 20 SSH C OMMANDS The Secure Shell (SSH) commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
DGS-3048 Layer 2 Switch CLI Reference Manual disable ssh Purpose Used to disable SSH. Syntax disable ssh Description This command allows you to disable SSH on the Switch. Parameters None. Restrictions Only administrator-level users can issue this command. Usage Example: To disable SSH: DGS3048# disable ssh Command: disable ssh Success. DGS3048# config ssh authmode Purpose Used to configure the SSH authentication mode setting.
DGS-3048 Layer 2 Switch CLI Reference Manual DGS3048# show ssh authmode Purpose Used to display the SSH authentication mode setting. Syntax show ssh authmode Description This command will allow you to display the current SSH authentication set on the Switch. Parameters None. Restrictions None.
DGS-3048 Layer 2 Switch CLI Reference Manual show ssh server Purpose Used to display the SSH server setting. Syntax show ssh server Description This command allows you to display the current SSH server setting. Parameters None. Restrictions None.
DGS-3048 Layer 2 Switch CLI Reference Manual show ssh crypto Purpose Used to display SSH public key stored on the device. Syntax show ssh crypto Description This command allows user display SSH public key stored on the device. Parameters None Restrictions Only administrator-level users can issue this command.
DGS-3048 Layer 2 Switch CLI Reference Manual show ssh algorithm Purpose Used to display the SSH algorithm setting. Syntax show ssh algorithm Description This command will display the current SSH algorithm setting status. Parameters None. Restrictions None.
DGS-3048 Layer 2 Switch CLI Reference Manual 21 SSL C OMMANDS Secure Sockets Layer or SSL is a security feature that will provide a secure communication path between a host and client through the use of authentication, digital signatures and encryption.
DGS-3048 Layer 2 Switch CLI Reference Manual Command Parameters crypto certificate request {cn | ou | or | loc | st| cu crypto certificate import import config ssl certificate show crypto certificate mycertificate {number 1-2} Each command is listed, in detail, in the following sections.
DGS-3048 Layer 2 Switch CLI Reference Manual disable ssl Description This command will disable SSL on the Switch. Parameters None Restrictions Only administrator-level users can issue this command. Example usage: To disable the SSL status on the Switch: DGS3048#disable ssl Command: disable ssl Success. DGS3048# show ssl cachetimeout Purpose Used to show the SSL cache timeout.
DGS-3048 Layer 2 Switch CLI Reference Manual Example usage: To view the SSL status on the Switch: DGS3048#show ssl Command: show ssl SSL status RSA_WITH_RC4_128_MD5 RSA_WITH_3DES_EDE_CBC_SHA DHE_DSS_WITH_3DES_EDE_CBC_SHA RSA_EXPORT_WITH_RC4_40_MD5 DGS3048# 151 0x0004 0x000A 0x0013 0x0003 Disabled Enabled Enabled Enabled Enabled
DGS-3048 Layer 2 Switch CLI Reference Manual crypto certificate generate Purpose Used to generate a self-signed HTTPS certificate Syntax Crypto certificate generate generate {keygenerate | cn | ou | or| loc | st | cu | duration Description This command allow administrator to generate a self-signed HTTPS certificate for device.
DGS-3048 Layer 2 Switch CLI Reference Manual crypto certificate certificate. Parameters number — Specifies the certificate number. (Range: 1 - 2) common- name — Specifies the fully qualified URL or IP address of the device. (Range: 1- 64) organization-unit — Specifies the organization-unit or department name. (Range: 1- 64) organization — Specifies the organization name. (Range: 1- 64) location — Specifies the location or city name. (Range: 1- 64) state — Specifies the state or province name.
DGS-3048 Layer 2 Switch CLI Reference Manual Usage Example: To import a certificate signed by the Certification Authority for HTTPS.: DGS3048# crypto certificate 1 generate Success. DGS3048# config ssl certificate Purpose Used to configure the active certificate for HTTPS. Syntax config ssl certificate Description This command should be used to generate SSL certificates. Parameters number — Specifies the certificate number.
DGS-3048 Layer 2 Switch CLI Reference Manual show crypto certificate mycertificate Purpose Used to displays the SSH certificates of the device. Syntax show crypto certificate mycertificate {number 1-2} Description This command used to displays the SSH certificates of the device Parameters number — Specifies the certificate number. (Range: 1 - 2) Restrictions Only administrator-level users can issue this command.
DGS-3048 Layer 2 Switch CLI Reference Manual 22 T IME AND SNTP C OMMANDS The Simple Network Time Protocol (SNTP) (an adaptation of the Network Time Protocol (NTP)) commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
DGS-3048 Layer 2 Switch CLI Reference Manual interval 30 Success. DGS3048# show sntp Purpose Used to display the SNTP information. Syntax show sntp Description This command will display SNTP settings information including the source IP address, time and poll interval. Parameters None. Restrictions Only administrator-level users can issue this command.
DGS-3048 Layer 2 Switch CLI Reference Manual DGS3048# disable sntp Purpose Disables SNTP server support. Syntax disable sntp Description This will disable SNTP support. SNTP service must be separately configured (see config sntp). Parameters None. Restrictions Only administrator-level users can issue this command. Example: To stop SNTP support: DGS3048#disable sntp Command: disable sntp Success.
DGS-3048 Layer 2 Switch CLI Reference Manual config time Purpose Used to manually configure system time and date settings. Syntax config time date
DGS-3048 Layer 2 Switch CLI Reference Manual DGS3048# config dst Purpose Used to enable and configure time adjustments to allow for the use of Daylight Savings Time (DST). Syntax config dst [disable | repeating {week day month hh:mm week day month hh:mm | offset [30 | 60 | 90 | 120]} | annual {date month hh:mm date month hh:mm | offset [30 | 60 | 90 | 120]}] Description DST can be enabled and configured using this command.
DGS-3048 Layer 2 Switch CLI Reference Manual config dst e_time - Configure the time of day to end DST. • - Time is expressed using a 24-hour clock, in hours and minutes. s_date - Configure the specific date (day of the month) to begin DST. • - The start date is expressed numerically. e_date - Configure the specific date (day of the month) to begin DST. • - The end date is expressed numerically.
DGS-3048 Layer 2 Switch CLI Reference Manual DGS3048#show time Command: show time Current Time Source Boot Time Current Time Time Zone Daylight Saving Time Offset in Minutes Repeating From To Annual From To : System Clock : 01 Jul 2003 01:03:41 : 01 Jul 2003 01:43:41 : GMT +02:30 : Repeating : 30 : Apr 2nd Tue 15:00 : Oct 2nd Wed 15:30 : 29 Apr 00:00 : 12 Oct 00:00 DGS3048# 162
DGS-3048 Layer 2 Switch CLI Reference Manual 23 R OUTING TABLE C OMMANDS The routing table commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters create iproute [default] {} delete iproute [default] show iproute Each command is listed, in detail, in the following sections. create iproute Purpose Used to create IP route entries to the Switch’s IP routing table.
DGS-3048 Layer 2 Switch CLI Reference Manual To delete the default IP route 10.53.13.254: DGS3048#delete iproute default 10.53.13.254 Command: delete iproute default 10.53.13.254 Success. DGS3048# show iproute Purpose Used to display the Switch’s current IP routing table. Syntax show iproute {} {static} Description This command will display the Switch’s current IP routing table.
DGS-3048 Layer 2 Switch CLI Reference Manual 24 ARP C OMMANDS The ARP commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters create arpentry config arpentry delete arpentry [ | all] show arpentry {ipif system | ipaddress | static} config arp_aging time clear arptable Each command is listed, in detail, in the following sections.
DGS-3048 Layer 2 Switch CLI Reference Manual config arpentry Purpose Used to configure a static entry in the ARP table. Syntax config arpentry Description This command is used to configure a static entry in the ARP Table. The user may specify the IP address and the corresponding MAC address of an entry in the Switch’s ARP table. Parameters − The IP address of the end node or station. − The MAC address corresponding to the IP address above.
DGS-3048 Layer 2 Switch CLI Reference Manual config arp_aging time Purpose Used to configure the age-out timer for ARP table entries on the Switch. Syntax config arp_aging time Description This command sets the maximum amount of time, in minutes, that an ARP entry can remain in the Switch’s ARP table, without being accessed, before it is dropped from the table. Parameters time − The ARP age-out time, in minutes.
DGS-3048 Layer 2 Switch CLI Reference Manual Interface ------------System System System System System System System System System System System System System System System System System System System System IP Address --------------10.0.0.0 10.1.1.169 10.1.1.254 10.9.68.1 10.9.68.4 10.10.27.51 10.11.22.145 10.11.94.10 10.14.82.24 10.15.1.60 10.17.42.153 10.19.72.100 10.21.32.203 10.40.44.60 10.42.73.221 10.44.67.1 10.47.65.25 10.50.8.7 10.90.90.90 10.255.255.
DGS-3048 Layer 2 Switch CLI Reference Manual 25 C OMMAND H ISTORY L IST The command history list commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters ? show command_history dir config command_history Each command is listed, in detail, in the following sections. ? Purpose Used to display all commands in the Command Line Interface (CLI).
DGS-3048 Layer 2 Switch CLI Reference Manual config authen application config authen parameter attempt config authen parameter response_timeout config authen server group More: , Quit: q, One line: Example usage: To display the parameters for a specific command: DGS3048#? config igmp_snooping Command: config igmp_snooping Command: config igmp_snooping Usage: [ | all] {host_timeout | router_timeout | leave_timer | state [enable
DGS-3048 Layer 2 Switch CLI Reference Manual dir Purpose Used to display all commands. Syntax dir Description This command will display all commands. Parameters None. Restrictions None. Example usage To display all of the commands: DGS3048#dir Command: dir .. ? clear clear arptable clear counters clear fdb clear log config 802.1p default_priority config 802.1p user_priority config 802.1x auth_parameter ports config 802.1x auth_protocol config 802.1x capability ports config 802.1x init config 802.
DGS-3048 Layer 2 Switch CLI Reference Manual DGS3048#config command_history 20 Command: config command_history 20 Success.
DGS-3048 Layer 2 Switch CLI Reference Manual A T ECHNICAL S PECIFICATIONS Physical and Environmental AC input & External Redundant power Supply: 100 – 120; 200 - 240 VAC, 50/60 Hz (internal universal power supply) Power Consumption: 86.
DGS-3048 Layer 2 Switch CLI Reference Manual General Standards: IEEE 802.3 10BASE-T Ethernet IEEE 802.3u 100BASE-TX Fast Ethernet IEEE 802.3z 1000BASE-SX Gigabit Ethernet IEEE 802.3ab 1000BASE-T Gigabit Ethernet IEEE 802.1D Spanning Tree IEEE 802.1 P/Q VLAN IEEE 802.3x Full-duplex Flow Control IEEE 802.
