CLI Manual Product Model : DGS-3400 Series Layer 2 Gigabit Ethernet Managed Switch Release 2 .
March 2007 651GS3400045G RECYCLABLE .
Table of Contents INTRODUCTION ..........................................................................................................................................................1 USING THE CONSOLE CLI.........................................................................................................................................4 COMMAND SYNTAX ...................................................................................................................................................
D-LINK SINGLE IP MANAGEMENT COMMANDS.................................................................................................265 POE COMMANDS....................................................................................................................................................275 COMMAND HISTORY LIST.....................................................................................................................................280 MODIFY BANNER AND PROMPT COMMANDS ....................
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 1 INTRODUCTION The xStack DGS-3400 series is a member of the D-Link xStack switch family. xStack is a complete family of stackable devices that ranges from edge 10/100Mbps switches to core Gigabit switches.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Figure 1-2. Boot Screen The Switch’s MAC address can also be found in the Web management program on the Switch Information (Basic Settings) window on the Configuration menu. The IP address for the Switch must be set before it can be managed with the Web-based manager. The Switch IP address can be automatically set using BOOTP or DHCP protocols, in which case the actual address assigned to the Switch must be known.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual NOTE: The DGS-3400 series of switches have the capability to be configured for an IP address of 0.0.0.0, or, in essence, have no IP address. This function maybe used to disable Layer 3 functions of the Switch. When the IP address is set to 0.0.0.0 (invalid IP address), the Switch can only be managed through the console port or SIM.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 2 USING THE CONSOLE CLI The Switch supports a console management interface that allows the user to connect to the Switch’s management agent via a serial port and a terminal or a computer running a terminal emulation program. The console can also be used over the network using the TCP/IP Telnet protocol. The console program can be used to configure the Switch to use an SNMP-based network management software over the network.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Figure 2- 2. The ? Command When entering a command without its required parameters, the CLI will prompt you with a Next possible completions: message. Figure 2- 3. Example Command Parameter Help In this case, the command config account was entered with the parameter . The CLI will then prompt to enter the with the message, Next possible completions:.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Figure 2- 4. Using the Up Arrow to Re-enter a Command In the above example, the command config account was entered without the required parameter , the CLI returned the Next possible completions: prompt. The up arrow cursor control key was pressed to re-enter the previous command (config account) at the command prompt. Now the appropriate username can be entered and the config account command re-executed.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Figure 2- 6. Next possible completions: Show Command In the above example, all of the possible next parameters for the show command are displayed. At the next command prompt, the up arrow was used to re-enter the show command, followed by the account parameter. The CLI then displays the user accounts configured on the Switch.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 3 COMMAND SYNTAX The following symbols are used to describe how command entries are made and values and arguments are specified in this manual. The online help contained in the CLI and available through the console interface uses the same syntax. Note: All commands are case-sensitive. Be sure to disable Caps Lock or any other unwanted function that changes text case.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual {braces} Purpose Encloses an optional value or set of optional arguments. Syntax reset {[config | system]} Description In the above syntax example, users have the option to specify config or system. It is not necessary to specify either optional value, however the effect of the system reset is dependent on which, if any, value is specified. Therefore, with this example there are three possible outcomes of performing a system reset.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 4 BASIC SWITCH COMMANDS The basic switch commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Each command is listed, in detail, in the following sections. create account Purpose Used to create user accounts. Syntax create [admin | user] Description The create account command is used to create user accounts that consist of a username of 1 to 15 characters and a password of 0 to 15 characters. Up to 8 user accounts can be created.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show account Purpose Used to display user accounts. Syntax show account Description Displays all user accounts created on the Switch. Up to 8 user accounts can exist at one time. Parameters None. Restrictions Only Administrator-level users can issue this command.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Example usage: To display information about installed modules: DGS-3400:4# show module_info Command: show module_info BOX ID Module Name Rev. ID ---- ---------------1 1 DEM-410X A0 1 2 DEM-410X A0 Serial No. ---------PA5A5A5A5 PA5A5A5A5 Description -------------------------------1 Port XFP Module 1 Port XFP Module DGS-3400:4# show device_status Purpose Used to display current status of fans and power or power supplies.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3427:4#show session Command: show session ID Live Time --- -----------8 0:8:48.860 From Level Name -----------------------------Serial Port 4 Anonymous Total Entries: 1 CTRL+C ESC q Quit SPACE n Next Page p Previous Page r Refresh show switch Purpose Used to display general information about the Switch. Syntax show switch Description This command displays information about the Switch. Parameters None. Restrictions None.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show serial_port Purpose Used to display the current serial port settings. Syntax show serial_port Description This command displays the current serial port settings. Parameters None.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual enable clipaging Purpose Used to pause the scrolling of the console screen when a command displays more than one page. Syntax enable clipaging Description This command is used when issuing a command which causes the console screen to rapidly scroll through several pages. This command will cause the console to pause at the end of each page. The default setting is enabled. Parameters None.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual enable telnet the Telnet protocol is 23. Restrictions Only administrator-level users can issue this command. Example usage: To enable Telnet and configure port number: DGS-3400:4#enable telnet 23 Command: enable telnet 23 Success. DGS-3400:4# disable telnet Purpose Used to disable the Telnet protocol on the Switch. Syntax disable telnet Description This command is used to disable the Telnet protocol on the Switch. Parameters None.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#enable web 80 Command: enable web 80 Note: SSL will be disabled if web is enabled. Success. DGS-3400:4# disable web Purpose Used to disable the HTTP-based management software on the Switch. Syntax disable web Description This command disables the Web-based management software on the Switch. Parameters None. Restrictions Only administrator-level users can issue this command.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual reboot Purpose Used to restart the Switch. Syntax reboot Description This command is used to restart the Switch. Parameters None. Restrictions Only Administrator-level users can issue this command. Example usage: To restart the Switch: DGS-3400:4#reboot Command: reboot Are you sure want to proceed with the system reboot? (y|n) Please wait, the switch is rebooting...
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual login Purpose Used to log in a user to the Switch’s console. Syntax login Description This command is used to initiate the login procedure. The user will be prompted for a Username and Password. Parameters None. Restrictions None. Example usage: To initiate the login procedure: DGS-3400:4#login Command: login UserName: create trusted_host Purpose Used to create the trusted host.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show trusted_host Command: show trusted_host Management Stations IP Address ----------------------10.53.13.94 Total Entries: 1 DGS-3400:4# delete trusted_host Purpose Used to delete a trusted host entry made using the create trusted_host command above. Syntax delete trusted _host Description This command is used to delete a trusted host entry made using the create trusted_host command above.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 5 SWITCH PORT COMMANDS The switch port commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Example usage: To configure the speed of port 3 of switch 1 to be 10 Mbps, full duplex, with learning and state enabled: DGS-3400:4#config ports 1:1-1:3 speed 10_full learning enable state enable Command: config ports 1:1-1:3 speed 10_full learning enable state enable Success. DGS-3400:4# show ports Purpose Used to display the current configuration of a range of ports.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show ports Command: show ports Port Port Settings Connection Address State Speed/Duplex/FlowCtrl Speed/Duplex/FlowCtrl Learning -----------------------------------------------------------1:1 Enabled Auto/Enabled Link Down Enabled 1:2 Enabled Auto/Enabled Link Down Enabled 1:3 Enabled Auto/Enabled Link Down Enabled 1:4 Enabled Auto/Enabled Link Down Enabled 1:5 Enabled Auto/Enabled Link Down Enabled 1:6 Enabled Auto/Enabled Link Dow
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 6 PORT SECURITY COMMANDS The Switch’s port security commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#config port_security ports 1:1-1:5 admin_state enable max_learning_addr 5 lock_address_mode DeleteOnReset Command: config port_security ports 1:1-1:5 admin_state enable max_learning_addr 5 lock_address_mode DeleteOnReset Success. DGS-3400:4# delete port_security_entry Purpose Used to delete a port security entry by MAC address, port number and VLAN ID.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual clear port_security_entry specifies all of the ports between switch 1, port 3 and switch 2, port 4 − in numerical order. Non-contiguous portlist entries are separated by a comma. (ex: 1:1-1:3,1:7-1:9) Restrictions Only administrator-level users can issue this command. Example usage: To clear a port security entry by port: DGS-3400:4# clear port_security_entry port 1:6 Command: clear port_security_entry port 1:6 Success.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 7 STACKING COMMANDS The stacking configuration commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Usage example: To change a box ID: DGS-3400:4#config box_id current_box_id 1 new_box_id 2 Command: config box_id current_box_id 1 new_box_id 2 Success. DGS-3400:4# show stack_information Purpose Used to display the stack information table. Syntax show stack_information Description This command display stack information. Parameters None. Restrictions None.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config stacking mode Purpose Used to configure the stacking mode. Syntax config stacking mode [disable | enable] Description This command will enable or disable the stacking mode for the switch. When enabled, the 10G ports on the rear of the switch will be enabled for stacking. Parameters enable | disable – Use these parameters to enable or disable the stacking mode for the switch.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 8 NETWORK MANAGEMENT (SNMP) COMMANDS The network management commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. The xStack DGS-3400 Series supports the Simple Network Management Protocol (SNMP) versions 1, 2c, and 3. Users may specify which version of SNMP to use to monitor and control the Switch.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Command Parameters auth_nopriv | auth_priv]] delete snmp [host | v6host ] show snmp host {} show snmp v6host {} enable snmp traps enable snmp authenticate traps show snmp traps disable snmp traps disable snmp authenticate traps config snmp system_contact config snmp system_location config snmp system_name enable rmon disable rmon Each comm
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual create snmp user md5 − Specifies that the HMAC-MD5-96 authentication level will be used. md5 may be utilized by entering one of the following: • - An alphanumeric sting of between 8 and 16 characters that will be used to authorize the agent to receive packets for the host.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#delete snmp user dlink Command: delete snmp user dlink Success. DGS-3400:4# show snmp user Purpose Used to display information about each SNMP username in the SNMP group username table. Syntax show snmp user Description The show snmp user command displays information about each SNMP username in the SNMP group username table. Parameters None. Restrictions Only administrator-level users can issue this command.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#create snmp view dlinkview 1.3.6 view_type included Command: create snmp view dlinkview 1.3.6 view_type included Success. DGS-3400:4# delete snmp view Purpose Used to remove an SNMP view entry previously created on the Switch. Syntax delete snmp view [all | ] Description The delete snmp view command is used to remove an SNMP view previously created on the Switch.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show snmp view Command: show snmp view Vacm View Table Settings View Name -------------------ReadView WriteView NotifyView restricted restricted restricted restricted restricted CommunityView CommunityView CommunityView Subtree ------------------------1 1 1.3.6 1.3.6.1.2.1.1 1.3.6.1.2.1.11 1.3.6.1.6.3.10.2.1 1.3.6.1.6.3.11.2.1 1.3.6.1.6.3.15.1.1 1 1.3.6.1.6.3 1.3.6.1.6.3.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#create snmp community dlink view ReadView read_write Command: create snmp community dlink view ReadView read_write Success. DGS-3400:4# delete snmp community Purpose Used to remove a specific SNMP community string from the Switch. Syntax delete snmp community Description The delete snmp community command is used to remove a previously defined SNMP community string from the Switch.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show snmp community Command: show snmp community SNMP Community Table Community Name View Name -------------------------------- ------------------------------dlink ReadView private CommunityView public CommunityView Access Right -----------read_write read_write read_only Total Entries: 3 DGS-3400:4# config snmp engineID Purpose Used to configure a name for the SNMP engine on the Switch.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual create snmp group Purpose Used to create a new SNMP group, or a table that maps SNMP users to SNMP views. Syntax create snmp group [v1 | v2c | v3 [noauth_nopriv | auth_nopriv | auth_priv]] {read_view | write_view | notify_view } Description The create snmp group command creates a new SNMP group, or a table that maps SNMP users to SNMP views.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual delete snmp group Purpose Used to remove an SNMP group from the Switch. Syntax delete snmp group Description The delete snmp group command is used to remove an SNMP group from the Switch. Parameters − An alphanumeric name of up to 32 characters that will identify the SNMP group the new SNMP user will be associated with. Restrictions Only administrator-level users can issue this command.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Notify View Name Security Model Security Level : CommunityView : SNMPv2 : NoAuthNoPriv Group Name ReadView Name WriteView Name Notify View Name Security Model Security Level : private : CommunityView : CommunityView : CommunityView : SNMPv1 : NoAuthNoPriv Group Name ReadView Name WriteView Name Notify View Name Security Model Security Level : private : CommunityView : CommunityView : CommunityView : SNMPv2 : NoAuthNoPriv Group Name ReadV
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual create snmp host Purpose Used to create a recipient of SNMP traps generated by the Switch’s SNMP agent. Syntax create snmp [host | v6host ] [v1 | v2c | v3 [noauth_nopriv | auth_nopriv | auth_priv] ] Description The create snmp host command creates a recipient of SNMP traps generated by the Switch’s SNMP agent.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#create snmp v6host FF::FF v3 noauth_nopriv initial Command: create snmp v6host FF::FF v3 noauth_nopriv initial Success. DGS-3400:4# delete snmp host Purpose Used to remove a recipient of SNMP traps generated by the Switch’s SNMP agent. Syntax delete snmp [host | v6host ] Description The delete snmp host command deletes a recipient of SNMP traps generated by the Switch’s SNMP agent.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual To display the currently configured SNMP hosts on the Switch: DGS-3400:4#show snmp host Command: show snmp host SNMP Host Table Host IP Address SNMP Version --------------10.48.76.23 10.48.74.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#enable snmp traps Command: enable snmp traps Success. DGS-3400:4# enable snmp authenticate traps Purpose Used to enable SNMP authentication trap support. Syntax enable snmp authenticate traps Description This command is used to enable SNMP authentication trap support on the Switch. Parameters None. Restrictions Only administrator-level users can issue this command.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual disable snmp traps Purpose Used to disable SNMP trap support on the Switch. Syntax disable snmp traps Description This command is used to disable SNMP trap support on the Switch. Parameters None. Restrictions Only administrator-level users can issue this command. Example usage: To prevent SNMP traps from being sent from the Switch: DGS-3400:4#disable snmp traps Command: disable snmp traps Success.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#config snmp system_contact MIS Department II Command: config snmp system_contact MIS Department II Success. DGS-3400:4# config snmp system_location Purpose Used to enter a description of the location of the Switch. Syntax config snmp system_location Description The config snmp system_location command is used to enter a description of the location of the Switch. A maximum of 255 characters can be used.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual enable rmon Purpose Used to enable RMON on the Switch. Syntax enable rmon Description This command is used, in conjunction with the disable rmon command below, to enable and disable remote monitoring (RMON) on the Switch. Parameters None. Restrictions Only administrator-level users can issue this command. Example usage: To enable RMON: DGS-3400:4#enable rmon Command: enable rmon Success.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 9 SWITCH UTILITY COMMANDS The switch utility commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual download • − The IPv4 address of the TFTP server. • − The IPv6 address of the TFTP server. • − The DOS path and filename of the firmware or switch configuration file on the TFTP server. For example, C:\dgs3427.had. • config_id - The Switch can hold two configuration files specified by section ID. If no config_id is specified, the configuration being downloaded is applied to the system.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config configuration Purpose Used to designate a stored configuration file section ID as a boot up configuration, active configuration or to delete the configuration file.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#config firmware unit 1 image_id 1 boot_up Command: config firmware unit 1 image_id 1 boot_up Success. DGS-3400:4# show firmware information Purpose Used to display the firmware section information. Syntax show firmware information Description This command is used to display the firmware section information. Parameters None.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show config Purpose Used to display the current or saved version of the configuration settings of the switch. Syntax show config [current_config | config_in_nvram | information] Description Use this command to display all the configuration settings that are saved to NV RAM or display the configuration settings as they are currently configured.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3450:4#show config current_config Command: show config current_config #------------------------------------------------------------------------------# DGS-3450 Gigabit Ethernet Switch # Configuration # # Firmware: Build 2.00-B48 # Copyright(C) 2004-2007 D-Link Corporation. All rights reserved.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual upload upload the attack log. • - Specifies the location of the Switch configuration file on the TFTP server. This file will be replaced by the uploaded file from the Switch. • unit - Select the switch in the switch stack from where these attack log files will be uploaded, denoted by unit ID number. Restrictions Only administrator-level users can issue this command.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show attack_log index 1-2 Command: show attack_log index 1-2 Index ----2 1 Date Time ---------------- ----------2006-04-25 12:38:00 2006-04-25 12:37:42 Log Text ---------------------------------------------------Possible spoofing attack from 000d010023001 port 1:23 Possible spoofing attack from 000d010023001 port 1:23 DGS-3400:4# clear attack_log Purpose Used to clear the switch history of attack log files.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual NOTE: Dual-purpose (DHCP/TFTP) server utility software may require entry of the configuration file name and path within the user interface. Alternatively, the DHCP software may require creating a separate ext file with the configuration file name and path in a specific directory on the server. Consult the documentation for the DCHP server software if unsure.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual disable autoconfig Purpose Use this to deactivate autoconfiguration from DHCP. Syntax disable autoconfig Description This instructs the Switch not to accept autoconfiguration instruction from the DHCP server. This does not change the IP settings of the Switch. The ipif settings will continue as DHCP client until changed with the config ipif command. Parameters None. Restrictions Only administrator-level users can issue this command.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Example usage: To ping the IP address 10.48.74.121 four times: DGS-3400:4#ping 10.48.74.121 times 4 Command: ping 10.48.74.121 Reply from 10.48.74.121, time<10ms Reply from 10.48.74.121, time<10ms Reply from 10.48.74.121, time<10ms Reply from 10.48.74.121, time<10ms Ping statistics for 10.48.74.121 Packets: Sent =4, Received =4, Lost =0 DGS-3400:4# ping6 Purpose Used to test the connectivity between IPv6 ready network devices.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 10 NETWORK MONITORING COMMANDS The network monitoring commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show packet ports comma. (ex: 1:1-1:3,1:7-1:9) Restrictions None.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show error ports 1:3 Command: show error ports 1:3 Port number : 1:3 RX Frames --------------CRC Error 19 Undersize 0 Oversize 0 Fragment 0 Jabber 11 Drop Pkts 20837 Symbol Error 0 TX Frames ---------------Excessive Deferral 0 CRC Error 0 Late Collision 0 Excessive Collision 0 Single Collision 0 Collision 0 CTRL+C ESC q Quit SPACE n Next Page p Previous Page r Refresh show utilization Purpose Used to display real-time port and
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Example usage: To display the current CPU utilization: DGS-3400:4#show utilization cpu Command: show utilization cpu CPU utilization : -------------------------------------------------------------------------------------------Five seconds - 15% One minute - 25% Five minutes - 14% CTRL+C ESC q Quit SPACE n Next Page p Previous Page r Refresh clear counters Purpose Used to clear the Switch’s statistics counters.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#clear log Command: clear log Success. DGS-3400:4# show log Purpose Used to display the switch history log. Syntax show log {index } Description This command will display the contents of the Switch’s history log. Parameters index − This command will display the history log, beginning at 1 and ending at the value specified by the user in the field.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual disable syslog Purpose Used to disable the system log to be sent to a remote System log. Syntax disable syslog Description The disable syslog command disables the system log to be sent to a remote Syslog server. Parameters None. Restrictions Only administrator-level users can issue this command. Example usage: To disable the Syslog function on the Switch: DGS-3400:4#disable syslog Command: disable syslog Success.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual create syslog host Numerical Facility Code 0 kernel messages 1 user-level messages 2 mail system 3 system daemons 4 security/authorization messages 5 messages generated internally by 6 line printer subsystem 7 network news subsystem 8 UUCP subsystem 9 clock daemon 10 security/authorization messages 11 FTP daemon 12 NTP subsystem 13 log audit 14 log alert 15 clock daemon 16 local use 0 (local0) 17 local use 1 (local1) 18 local use 2 (local2) 1
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#create syslog host 1 ipaddress 10.1.1.1 state enable Command: create syslog host 1 ipaddress 10.1.1.1 state enable Success. DGS-3400:4# config syslog host Purpose Used to configure the Syslog protocol to send system log data to a remote host.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config syslog host 13 14 15 16 17 18 19 20 21 22 23 log audit log alert clock daemon local use 0 (local0) local use 1 (local1) local use 2 (local2) local use 3 (local3) local use 4 (local4) local use 5 (local5) local use 6 (local6) local use 7 (local7) local0 − Specifies that local use 0 messages will be sent to the remote host. This corresponds to number 16 from the list above.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#config syslog host 1 severity all Command: config syslog host 1 severity all Success. DGS-3400:4#config syslog host 1 facility local0 Command: config syslog host 1 facility local0 Success. DGS-3400:4#config syslog host 1 udp_port 6000 Command: config syslog host 1 udp_port 6000 Success. DGS-3400:4#config syslog host 1 ipaddress 10.44.67.8 Command: config syslog host 1 ipaddress 10.44.67.8 Success.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config syslog host all may use the "user-level" Facility. Those Facilities that have been designated are shown in the following: Bold font indicates that the facility values the Switch currently supports.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#config syslog host all severity all Command: config syslog host all severity all Success. DGS-3400:4#config syslog host all facility local0 Command: config syslog host all facility local0 Success DGS-3400:4#config syslog host all udp_port 6000 Command: config syslog host all udp_port 6000 Success. DGS-3400:4#config syslog host all ipaddress 10.44.67.8 Command: config syslog host all ipaddress 10.44.67.8 Success.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show syslog host Restrictions None. Example usage: To show Syslog host information: DGS-3400:4#show syslog host Command: show syslog host Syslog Global State: Disabled Host Id ------1 2 3 Host IP Address --------------10.1.1.2 10.40.2.3 10.21.13.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config system_severity • downloads or uploads and failed logins. Critical – Events classified as critical are fatal exceptions occurring on the Switch, such as hardware failures or spoofing attacks. Parameters Choose one of the following to identify where severity messages are to be sent. • trap – Entering this parameter will define which events occurring on the Switch will be sent to a SNMP agent for analysis.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config log_save_timing files will be save every x number of minutes that are configured here. on_demand - Users who choose this method will only save log files when they manually tell the Switch to do so, using the save or save log command. log_trigger - Users who choose this method will have log files saved to the Switch every time a log event occurs on the Switch. Restrictions Only administrator-level users can issue this command.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 11 MULTIPLE SPANNING TREE PROTOCOL (MSTP) COMMANDS This Switch supports three versions of the Spanning Tree Protocol; 802.1d STP, 802.1w Rapid STP and 802.1s MSTP. Multiple Spanning Tree Protocol, or MSTP, is a standard defined by the IEEE community that allows multiple VLANs to be mapped to a single spanning tree instance, which will provide multiple pathways across the network.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Each command is listed, in detail, in the following sections. enable stp Purpose Used to globally enable STP on the Switch. Syntax enable stp Description This command allows the Spanning Tree Protocol to be globally enabled on the Switch. Parameters None. Restrictions Only administrator-level users can issue this command. Example usage: To enable STP, globally, on the Switch: DGS-3400:4#enable stp Command: enable stp Success.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Example usage: To set the Switch globally for the Multiple Spanning Tree Protocol (MSTP): DGS-3400:4#config stp version mstp Command: config stp version mstp Success. DGS-3400:4# config stp Purpose Used to setup STP, RSTP and MSTP on the Switch.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Example usage: To configure STP with maxage 18 and maxhops of 15: DGS-3400:4#config stp maxage 18 maxhops 15 Command: config stp maxage 18 maxhops 15 Success. DGS-3400:4# config stp ports Purpose Used to setup STP on the port level.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config stp ports ports are similar to edge ports however they are restricted in that a P2P port must operate in full-duplex. Like edge ports, P2P ports transition to a forwarding state rapidly thus benefiting from RSTP. A p2p value of false indicates that the port cannot have p2p status. auto allows the port to have p2p status whenever possible and operate as if the p2p status were true.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config stp instance_id Purpose Used to add or delete an STP instance ID. Syntax config stp instance_id [add_vlan | remove_vlan] Description This command is used to map VIDs (VLAN IDs) to previously configured STP instances on the Switch by creating an instance_id. A STP instance may have multiple members with the same MSTP configuration.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Example usage: To delete STP instance ID 2 from the Switch. DGS-3400:4#delete stp instance_id 2 Command: delete stp instance_id 2 Success. DGS-3400:4# config stp priority Purpose Used to update the STP instance configuration Syntax config stp priority instance_id Description This command is used to update the STP instance configuration settings on the Switch.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config stp mst_config_id Restrictions Only administrator-level users can issue this command. Example usage: To configure the MSTP region of the Switch with revision_level 10 and the name “Trinity”: DGS-3400:4#config stp mst_config_id revision_level 10 name Trinity Command : config stp mst_config_id revision_level 10 name Trinity Success. DGS-3400:4# config stp mst_ports Purpose Used to update the port configuration for a MSTP instance.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#config stp mst_ports 1:1-1:2 instance_id 0 internalCost auto priority 0 Command: config stp mst_ports 1:1-1:2 instance_id 0 internalCost auto priority 0 Success. DGS-3400:4# show stp Purpose Used to display the Switch’s current STP configuration. Syntax show stp Description This command displays the Switch’s current STP configuration. Parameters None. Restrictions None.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Status 3 : STP enabled for MSTP DGS-3400:4#show stp Command: show stp STP Bridge Global Settings --------------------------STP Status : Enabled STP Version : MSTP Max Age : 20 Forward Delay : 15 Max Hops : 20 TX Hold Count :3 Forwarding BPDU : Enabled Loopback Detection : Enabled LBD Recover Time : 60 DGS-3400:4# show stp ports Purpose Used to display the Switch’s current STP port configuration.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show stp instance Purpose Used to display the Switch’s STP instance configuration Syntax show stp instance Description This command displays the Switch’s current STP Instance Settings and the STP Instance Operational Status. Parameters - Enter a value defining the previously configured instance_id on the Switch. An entry of 0 will display the STP configuration for the CIST internally set on the Switch.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show stp mst_config_id Command: show stp mst_config_id Current MST Configuration Identification ---------------------------------------Configuration Name : 00:10:20:33:45:00 MSTI ID Vid list ----------------CIST 1-4094 DGS-3400:4# 86 Revision Level :0
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 12 FORWARDING DATABASE COMMANDS The layer 2 forwarding database commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#create fdb default 00-00-00-00-01-02 port 1:5 Command: create fdb default 00-00-00-00-01-02 port 1:5 Success. DGS-3400:4# create multicast_fdb Purpose Used to create a static entry to the multicast MAC address forwarding table (database) Syntax create multicast_fdb Description This command will make an entry into the Switch’s multicast MAC address forwarding database.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual To add multicast MAC forwarding: DGS-3400:4#config multicast_fdb default 01-00-00-00-00-01 add 1:1-1:5 Command: config multicast_fdb default 01-00-00-00-00-01 add 1:1-1:5 Success. DGS-3400:4# config fdb aging_time Purpose Used to set the aging time of the forwarding database. Syntax config fdb aging_time Description The aging time affects the learning process of the Switch.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#delete fdb default 00-00-00-00-01-02 Command: delete fdb default 00-00-00-00-01-02 Success. DGS-3400:4# Example usage: To delete a multicast FDB entry: DGS-3400:4#delete fdb default 01-00-00-00-01-02 Command: delete fdb default 01-00-00-00-01-02 Success. DGS-3400:4# clear fdb Purpose Used to clear the Switch’s forwarding database of all dynamically learned MAC addresses.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show multicast_fdb Purpose Used to display the contents of the Switch’s multicast forwarding database. Syntax show mulitcast_fdb [vlan | mac_address ] Description This command is used to display the current contents of the Switch’s multicast MAC address forwarding database. Parameters − The name of the VLAN on which the MAC address resides.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show fdb Command: show fdb Unicast MAC Address Aging Time = 300 VID VLAN Name MAC Address Port Type ---- ---------------------------------------------------1 default 00-00-39-34-66-9A 1:10 Dynamic 1 default 00-00-51-43-70-00 1:10 Dynamic 1 default 00-00-5E-00-01-01 1:10 Dynamic 1 default 00-00-74-60-72-2D 1:10 Dynamic 1 default 00-00-81-05-00-80 1:10 Dynamic 1 default 00-00-81-05-02-00 1:10 Dynamic 1 default 00-00-81-48-70-01 1:10 D
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show multicast filtering_mode Purpose Used to show the multicast packet filtering mode as configured for the VLANs. Syntax show multicast filtering_mode {vlan } Description This command will display the current multicast packet filtering mode for specified VLANs or all VLANs on the Switch. Parameters vlan - Specifies a VLAN to display multicast filtering status. Restrictions None.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show ipfdb Command: show ipfdb Interface IP Address Port Learned ------------------------------- -----------System 10.0.0.1 1:13 Dynamic System 10.0.0.2 1:13 Dynamic System 10.0.0.3 1:13 Dynamic System 10.0.0.4 1:13 Dynamic System 10.0.0.7 1:13 Dynamic System 10.0.0.30 1:13 Dynamic System 10.0.34.1 1:13 Dynamic System 10.0.51.1 1:13 Dynamic System 10.0.58.4 1:13 Dynamic System 10.0.85.168 1:13 Dynamic System 10.1.1.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 13 TRAFFIC CONTROL COMMANDS On a computer network, packets such as Multicast packets and Broadcast packets continually flood the network as normal procedure. At times, this traffic may increase do to a malicious endstation on the network or a malfunctioning device, such as a faulty network card. Thus, switch throughput problems will arise and consequently affect the overall performance of the switch network.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config traffic control detected on the Switch. The user has two options: • drop - Utilizes the hardware Traffic Control mechanism, which means the Switch’s hardware will determine the Packet Storm based on the Threshold value stated and drop packets until the issue is resolved. • shutdown - Utilizes the Switch’s software Traffic Control mechanism to determine the Packet Storm occurring.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config traffic control_recover Purpose Used to configure traffic control recover for any or all ports. Syntax config traffic control_recover [ | all] Description Configuring a port for traffic control recover will require an administrator to restart the specified ports if storm control shuts down the port or ports.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show traffic control Purpose Used to display current traffic control settings. Syntax show traffic control {} Description This command displays the current storm traffic control configuration on the Switch. Parameters - Specify a range of ports to display. If unspecified, all ports will be displayed.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 14 QOS COMMANDS The xStack DGS-3400 Series supports 802.1p priority queuing. The Switch has 8 priority queues, one of which is internal and not configurable. These priority queues are numbered from 6 (Class 6) — the highest priority queue — to 0 (Class 0) — the lowest priority queue. The eight priority tags specified in IEEE 802.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config bandwidth_control Purpose Used to configure bandwidth control on a port-by-port basis. Syntax config bandwidth_control {rx_rate [no_limit | ] | tx_rate [no_limit | ]} Description The config bandwidth_control command is used to configure bandwidth on a port-by-port basis. Parameters − Specifies a port or range of ports to be configured.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show bandwidth_control switch number, and the highest port number of the range (also separated by a colon) are specified. The beginning and end of the port list range are separated by a dash. For example, 1:3 specifies switch number 1, port 3. 2:4 specifies switch number 2, port 4. 1:32:4 specifies all of the ports between switch 1, port 3 and switch 2, port 4 − in numerical order. Non-contiguous portlist entries are separated by a comma.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config scheduling Parameters − This specifies to which of the seven hardware priority queues the config scheduling command will apply. The seven hardware priority queues are identified by number − from 0 to 6 − with the 0 queue being the lowest priority.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config 802.1p user_priority Purpose Used to map the 802.1p user priority of an incoming packet to one of the seven hardware queues available on the Switch. Syntax config 802.1p user_priority Description This command allows users to configure the way the Switch will map an incoming packet, based on its 802.1p user priority, to one of the seven available hardware priority queues on the Switch.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual To show 802.1p user priority: DGS-3400:4#show 802.1p user_priority Command: show 802.1p user_priority QOS Class of Traffic Priority-0 Priority-1 Priority-2 Priority-3 Priority-4 Priority-5 Priority-6 Priority-7 -> -> -> -> -> -> -> -> DGS-3400:4# config 802.1p default_priority Purpose Used to configure the 802.1p default priority settings on the Switch.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show 802.1 default_priority Purpose Used to display the currently configured 802.1p priority value that will be assigned to an incoming, untagged packet before being forwarded to its destination. Syntax show 802.1p default_priority {} Description The show 802.1p default_priority command displays the currently configured 802.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config scheduling_mechanism Purpose Used to configure the scheduling mechanism for the QoS function Syntax config scheduling_mechanism [strict | weight_fair] Description The config scheduling_mechanism command allows the user to select between a weight fair and a Strict mechanism for emptying the priority classes of service of the QoS function. The Switch contains seven hardware priority classes of service.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show scheduling_mechanism Command: show scheduling_mechanism QOS scheduling_mechanism CLASS ID Mechanism -----------------Class-0 strict Class-1 strict Class-2 strict Class-3 strict Class-4 strict Class-5 strict Class-6 strict DGS-3400:4# enable hol_prevention Purpose Used to enable HOL prevention. Syntax enable hol_prevention Description The enable hol_prevention command enables Head of Line prevention. Parameters None.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show hol_prevention Purpose Used to show HOL prevention. Syntax show hol_prevention Description The show hol_prevention command displays the Head of Line prevention state. Parameters None. Restrictions None.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 15 PORT MIRRORING COMMANDS The port mirroring commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config mirror port [add | delete] source ports [rx | tx | both] enable mirror disable mirror show mirror Each command is listed, in detail, in the following sections.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config mirror port tx − Allows the mirroring of only packets sent to (flowing out of) the port or ports in the port list. both − Mirrors all the packets received or sent by the port or ports in the port list. Restrictions The Target port cannot be listed as a source port. Only administratorlevel users can issue this command.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual disable mirror and then turn the port mirroring on and off without having to modify the port mirroring configuration. Parameters None. Restrictions Only administrator-level users can issue this command. Example usage: To disable mirroring configurations: DGS-3400:4#disable mirror Command: disable mirror Success. DGS-3400:4# show mirror Purpose Used to show the current port mirroring configuration on the Switch.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 16 VLAN COMMANDS Along with normal VLAN configurations, this Switch now incorporate Double VLANs. Better known as Q-IN-Q VLANs, Double VLANs allow network providers to expand their VLAN configurations to place VLANs within a larger inclusive VLAN, which adds a new layer to the VLAN configuration.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual NOTE: A specific protocol VLAN and a user defined protocol VLAN with the same encapsulation protocol cannot coexist and will result in a Fail! Message. (For example, if a user creates an Ethernet2 protocol VLAN, the user can not create a userDefined protocol VLAN with an Ethernet encapsulation) create vlan Purpose Used to create a VLAN on the Switch.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual create vlan protocol. protocol-decLAT - Using this parameter will instruct the Switch to forward packets to this VLAN if the tag in the packet header is concurrent with this protocol. This packet header information is defined by the Digital Equipment Corporation (DEC) Local Area Transport (LAT) protocol.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual To create a VLAN v1, tag 2: DGS-3400:4#create vlan v1 tag 2 Command: create vlan v1 tag 2 Success. DGS-3400:4# delete vlan Purpose Used to delete a previously configured VLAN on the Switch. Syntax delete vlan Description This command will delete a previously configured VLAN on the Switch. Parameters − The VLAN name of the VLAN to delete. Restrictions Only administrator-level users can issue this command.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config vlan specified VLAN. Restrictions Only administrator-level users can issue this command. Example usage: To add 4 through 8 as tagged ports to the VLAN v1: DGS-3400:4#config vlan v1 add tagged 1:4-1:8 Command: config vlan v1 add tagged 1:4-1:8 Success. DGS-3400:4# To delete ports from a VLAN: DGS-3400:4#config vlan v1 delete 1:6-1:8 Command: config vlan v1 delete 1:6-1:8 Success.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Example usage: To set the ingress checking status, the sending and receiving GVRP information : DGS-3400:4#config gvrp 1:1-1:4 state enable ingress_checking enable acceptable_frame tagged_only pvid 2 Command: config gvrp 1:1-1:4 state enable ingress_checking enable acceptable_frame tagged_only pvid 2 Success. DGS-3400:4# enable gvrp Purpose Used to enable GVRP on the Switch.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show vlan Purpose Used to display the current VLAN configuration on the Switch Syntax show vlan {} Description This command displays summary information about each VLAN including the VLAN ID, VLAN name, the Tagging/Untagging status, and the Member/Non-member/Forbidden status of each port that is a member of the VLAN. Parameters − The VLAN name of the VLAN for which to display a summary of settings.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show gvrp by a dash. For example, 1:3 specifies switch number 1, port 3. 2:4 specifies switch number 2, port 4. 1:3-2:4 specifies all of the ports between switch 1, port 3 and switch 2, port 4 − in numerical order. Non-contiguous portlist entries are separated by a comma. (ex: 1:11:3,1:7-1:9) Restrictions None.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual enable double_vlan Restrictions Only administrator-level users can issue this command. Example usage: To enable the Double VLAN feature on the Switch, thus disabling normal VLANs and GVRP. DGS-3400:4#enable double_vlan Command: enable double_vlan Current Double VLAN mode : Disabled Enable Double VLAN need to reset system config. Are you sure ?(y/n)y Success.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual create double_vlan hex form, will help identify packets to devices as Double VLAN tagged packets. The default setting is 0x8100. Restrictions Only administrator-level users can issue this command. Users must have the Switch enabled for Double VLANs. DGS-3400:4#create double_vlan Trinity spvid 6 tpid 0x9100 Command: create double_vlan Trinity spvid 6 tpid 0x9100 Success.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config double_vlan entries are separated by a comma. (ex: 1:1-1:3,1:7-1:9) tpid - The tag protocol ID. This ID, identified here in hex form, will help identify packets to devices as Double VLAN tagged packets. The default setting is 0x8100. Restrictions Only administrator-level users can issue this command. Users must have the Switch enabled for Double VLANs.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show double_vlan Trinity Command: show double_vlan Trinity Global Double VLAN : Enabled ==================================================== SPVID :6 VLAN Name : Trinity TPID : 0x9200 Uplink ports : Access ports : 1:4-1:8 Unknow ports : ---------------------------------------------------Total Entries : 1 DGS-3400:4# 123
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 17 LINK AGGREGATION COMMANDS The link aggregation commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual NOTE: When using LACP or static type link aggregation, be sure that both sides of the connection are identical in speed and duplex settings. delete link_aggregation group_id Purpose Used to delete a previously configured link aggregation group. Syntax delete link_aggregation group_id Description This command is used to delete a previously configured link aggregation group. Parameters − Specifies the group ID.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config link_aggregation overlap. Up to eight ports can be set per link aggregation group. state [enable | disable] − Allows users to enable or disable the specified link aggregation group. Restrictions Only administrator-level users can issue this command. Link aggregation groups may not overlap.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show link_aggregation Description This command will display the current link aggregation configuration of the Switch. Parameters − Specifies the group ID. The Switch allows up to 32 link aggregation groups to be configured. The group number identifies each of the groups. algorithm − Allows the display of link aggregation to be specified by the algorithm in use. Restrictions None.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config lacp_port Restrictions Only administrator-level users can issue this command. Example usage: To configure LACP port mode settings: DGS-3400:4#config lacp_port 1:1-1:12 mode active Command: config lacp_port 1:1-1:12 mode active Success. DGS-3400:4# show lacp_port Purpose Used to display current LACP port mode settings.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 18 IP-MAC BINDING COMMANDS The IP network layer uses a four-byte address. The Ethernet link layer uses a six-byte MAC address. Binding these two address types together allows the transmission of data between the layers. The primary purpose of IP-MAC binding is to restrict the access to a switch to a number of authorized users.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Command Parameters create address_binding ip_mac ipaddress mac_address {ports [ portlist | all]} | mode [arp | acl]} enable address_binding acl_mode disable address_binding acl_mode enable address_binding trap_log disable address_binding trap_log Each command is listed, in detail, in the following sections. create address_binding ip_mac ipaddress Purpose Used to create an IP-MAC Binding entry.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#create address_binding ip_mac ipaddress 10.1.1.3 mac_address 00-00-00-00-00-04 mode acl Command: create address_binding ip_mac ipaddress 10.1.1.3 mac_address 00-00-00-00-00-04 mode acl Success.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config address_binding ip_mac ipaddress Restrictions Only administrator-level users can issue this command. Example usage: To configure address binding on the Switch: DGS-3400:4#config address_binding ip_mac ipaddress 10.1.1.3 mac_address 00-00-00-00-00-05 Command: config address_binding ip_mac ipaddress 10.1.1.3 mac_address 00-00-00-00-00-05 Success.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show address_binding Purpose Used to display IP-MAC Binding entries. Syntax show address_binding [ip_mac {[all | ipaddress mac_address ]} | blocked {[all | vlan_name mac_address ]} | ports] Description This command will display IP-MAC Binding entries. Three different kinds of information can be viewed.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual delete address_binding VLAN names and MAC addresses) can be deleted by entering the VLAN name and the physical address of the device. To delete all the Blocked Address Binding entries, toggle all. Parameters The IP address of the device where the IP-MAC binding is made. The MAC address of the device where the IP-MAC binding is made.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual disable address_binding acl_mode Purpose Used to disable the ACL mode for an IP-MAC binding entry. Syntax disable address_binding acl_mode Description This command, along with the enable address_binding acl_mode will enable and disable the ACL mode for IP-MAC binding on the Switch, without altering previously set configurations.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual disable address_binding trap_log Purpose Used to disable the trap log for the IP-MAC binding function. Syntax disable address_binding trap_log Description This command, along with the enable address_binding trap_log will enable and disable the sending of trap log messages for IP-MAC binding.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 19 IP COMMANDS (INCLUDING IPV6) The IP interface commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config ipif Purpose Used to configure the System IP interface. Syntax config ipif [{ipaddress | vlan | state [enable | disable]} | bootp | dhcp | ipv6 ipv6address ] Description This command is used to configure an IP interface on the Switch. Users may add one IPv4 address per interface but multiple IPv6 addresses may be added to a single interface.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#config ipif Trinity ipv6 ipv6address 3ffe:501:ffff:100::1/64 Command: config ipif Trinity ipv6 ipv6address 3ffe:501:ffff:100::1/64 Success. DGS-3400:4# show ipif Purpose Used to display the configuration of an IP interface on the Switch. Syntax show ipif {} Description This command will display the configuration of an IP interface on the Switch.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#enable ipif s2 Command: enable ipif s2 Success. DGS-3400:4# disable ipif Purpose Used to disable the configuration of an IP interface on the Switch. Syntax disable ipif { | all} Description This command will disable an IP interface on the Switch, without altering its configuration values. Parameters − The name previously created to define the IP interface.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual enable autoconfig Purpose Used to activate the autoconfiguration function for the Switch. This will load a configuration file for current use. Syntax enable autoconfig Description When autoconfig is enabled on the Switch, the DHCP reply will contain a configuration file and path name. It will then request the file from the TFTP server specified in the reply.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 20 IPV6 NEIGHBOR DETECTION COMMANDS The following commands are used to detect IPv6 neighbors of the switch and to keep a running database about these neighbor devices. The IPv6 Neighbor Detection commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual delete ipv6 neighbor_cache Purpose Used to remove a static IPv6 neighbor. Syntax delete ipv6 neighbor_cache [ | static | all] Description This command is used to remove a static IPv6 neighbor from an existing IPv6 interface previously created on the switch. Parameters - Enter the IPv6 address of the neighbor device to be removed from being an IPv6 neighbor of the IP interface previously entered in this command.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Example usage: To display the IPv6 neighbors of a configured IP interface: DGS-3400:4# show ipv6 neighbor_cache ipif Triton Command: show ipv6 neighbor_cache ipif Triton Neighbor FE80::20B:6AFF:FECF:7EC6 Linklayer Address 00:0B:6A:CF:7E:C6 Interface Triton State R Total Entries : 1 State: (I) means Incomplete State (S) means State State (P) means Probe State (R) means Reachable State (D) means Delay State (T) means Static State DGS-3400:
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config ipv6 nd ra ipif process to get both Global and link-local IPv6 addresses for the Switch. The default setting is Disabled. other_config_flag [enable | disable] – Used to enable or disable the alternate configuration flag. When enabled, this will trigger the router to use a stateful autoconfiguration process to get configuration information that is not address information, yet is important to the IPv6 settings of the Switch.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config ipv6 nd ra prefix_option ipif valid_life_time - This field states the time that this prefix is advertised as valid on the link local network, when using stateless address configuration. The user may configure a time between 0 and 4294967295 milliseconds.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show ipv6 nd Purpose Used to display information regarding Neighbor Detection on the switch. Syntax show ipv6 nd {ipif } Description This command is used to show information regarding the IPv6 Neighbor Detection function of the switch. Users may specify an IP interface for which to view this information. Parameters ipif - Enter the IP interface of the IPv6 interface for which to view this information.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 21 IGMP SNOOPING COMMANDS The IGMP Snooping commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual To configure IGMP snooping: DGS-3400:4# config igmp_snooping vlan default host_timeout 250 state enable Command: config igmp_snooping vlan default host_timeout 250 state enable Success. DGS-3400:4# NOTE: The Fast Leave function in the config igmp_snooping command can only be implemented if IGMP is disabled for all IP interfaces on the Switch.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Example usage: To configure IGMP snooping: DGS-3400:4#config igmp_snooping querier vlan default query_interval 125 state enable Command: config igmp_snooping querier vlan default query_interval 125 state enable Success. DGS-3400:4# config router_ports Purpose Used to configure ports as router ports.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config router_ports_forbidden [add | delete] - Specifies whether to add or delete forbidden ports of the specified VLAN. − Specifies a range of ports that will be configured as forbidden router ports. The port list is specified by listing the lowest switch number and the beginning port number on that switch, separated by a colon.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual disable igmp_snooping snooping can be disabled only if IP multicast routing is not being used. Disabling IGMP snooping allows all IGMP and IP multicast traffic to flood within a given IP interface. Parameters forward_mcrouter_only – Adding this parameter to this command will disable forwarding all multicast traffic to a multicast-enabled routers. The Switch will then forward all multicast traffic to any IP router.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show igmp_snooping Command: show igmp_snooping IGMP Snooping Global State : Enabled Multicast router Only : Enabled VLAN Name Query Interval Max Response Time Robustness Value Last Member Query Interval Host Timeout Router Timeout Leave Timer Querier State Querier Router Behavior State Fast Leave : default : 125 : 10 :2 :1 : 250 : 260 :2 : Enabled : Non-Querier : Enabled : Disabled Total Entries: 1 DGS-3400:4# show router_ports P
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show igmp_snooping group Parameters − The name of the VLAN for which to view IGMP snooping group information. Restrictions None. Example usage: To view the current IGMP snooping group: DGS-3400:4#show igmp_snooping group Command: show igmp_snooping group VLAN Name Multicast group MAC address Reports Port Member : default : 224.0.0.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 22 MLD SNOOPING COMMANDS Multicast Listener Discovery (MLD) Snooping is an IPv6 function used similarly to IGMP snooping in IPv4. It is used to discover ports on a VLAN that are requesting multicast data.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual enable mld_snooping Purpose Used to enable MLD snooping globally on the switch. Syntax enable mld_snooping {forward_mcrouter_only} Description This command, in conjunction with the disable mld_snooping will enable and disable MLD snooping globally on the Switch without affecting configurations. Parameters forward_mcrouter_only - Specifies that the Switch should only forward all multicast traffic to a multicast-enabled router.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config mld_snooping switch. node_timeout − Specifies the link node timeout, in seconds. After this timer expires, this node will no longer be considered as listening node. The user may specify a time between 1 and 16711450 with a default setting of 260 seconds.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual To configure MLD snooping multicast router ports: DGS-3400:4#config mld_snooping mrouter_ports default add 1:1-1:10 Command : config mld_snooping mrouter_ports default add 1:1-1:10 Success. DGS-3400:4# config mld_snooping mrouter_ports_forbidden Purpose Used to configure ports on the Switch as forbidden router ports.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config mld_snooping querier max_response_time - The maximum time to wait for reports from listeners. The user may specify a time between 1 and 25 seconds with a default setting of 10 seconds. robustness_variable - Provides fine-tuning to allow for expected packet loss on a subnet. The user may choose a value between 1 and 255 with a default setting of 2.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show mld_snooping Command: show mld_snooping MLD Snooping Global State Multicast Router Only : Disabled : Disabled VLAN Name Query Interval Max Response Time Robustness Value Last Listener Query Interval Node Timeout Router Timeout Done Timer Querier State Querier Router Behavior State Fast Done : default : 125 : 10 :2 :1 : 260 : 260 :2 : Disabled : Non-Querier : Disabled : Disabled Total Entries : 1 DGS-3400:4# show mld_snoopi
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show mld_snooping group Command : show mld_snooping group VLAN Name Multicast Group MAC Address Reports Listening Port : default : FF02 ::13 : 33-33-00-00-00-13 :1 : 1:1,1:7 VLAN Name Multicast Group MAC Address Reports Listening Port : default : FF02 ::14 : 33-33-00-00-00-14 :1 : 1:2,1:7 VLAN Name Multicast Group MAC Address Reports Listening Port : default : FF02 ::15 : 33-33-00-00-00-15 :1 : 1:2,1:9 VLAN Name Multicast Grou
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show mld_snooping mrouter_ports Commands: show mld_snooping mrouter_ports VLAN Name Static mrouter port Dynamic mrouter port Forbidden mrouter port : default : 1-10 : : Total Entries : 1 DGS-3400:4# 162
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 23 LIMITED IP MULTICAST ADDRESS The Limited IP Multicast Address commands allow users to specify which multicast address(es) reports are to be received on specified ports on the switch. This function will therefore limit the number of reports received and the number of multicast groups configured on the switch.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual delete limited multicast address Purpose Used to delete Limited IP multicast address range. Syntax delete limited multicast address [all | ] Description The delete limited multicast address command allows the user to delete all multicast address ranges or a selected range based on which port or ports the range has been assigned.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show limited multicast address 1:1-1:3 Command: show limited multicast address 1:1-1:3 Port ---1:1 1:2 1:3 From -------------224.1.1.1 224.1.1.1 224.1.1.1 To --------------224.1.1.2 224.1.1.2 224.1.1.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 24 802.1X COMMANDS The xStack DGS-3400 implements the server-side of the IEEE 802.1x Port-based and MAC-based Network Access Control. This mechanism is intended to allow only authorized users, or other network devices, access to network resources by establishing criteria for each port on the Switch that a user or network device must meet before allowing that port to forward or receive frames. The 802.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Command Parameters create 802.1x guest_vlan config 802.1x guest_vlan ports [ | all] state [enable | disable] delete 802.1x guest_vlan {} show 802.1x guest_vlan Each command is listed, in detail, in the following sections enable 802.1x Purpose Used to enable the 802.1x server on the Switch. Syntax enable 802.1x Description The enable 802.1x command enables the 802.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show 802.1x auth_configuration Purpose Used to display the current configuration of the 802.1x server on the Switch. Syntax show 802.1x auth_configuration {ports } Description The show 802.1x user command is used to display the 802.1x Portbased or MAC-based Network Access control local users currently configured on the Switch. Parameters ports − Specifies a port or range of ports to view.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show 802.1x auth_configuration ports 1:1 Command: show 802.1x auth_configuration ports 1:1 802.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show 802.1x auth_state Command: show 802.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config 802.1x auth_mode Purpose Used to configure the 802.1x authentication mode on the Switch. Syntax config 802.1x auth_mode {port_based | mac_based] Description The config 802.1x auth_mode command is used to enable either the portbased or MAC-based 802.1x authentication feature on the Switch. Parameters [port_based | mac_based] − The Switch allows users to authenticate 802.1x by either port or MAC address.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config 802.1x auth_parameter Purpose Used to configure the 802.1x Authentication parameters on a range of ports. The default parameter will return all ports in the specified range to their default 802.1x settings. Syntax config 802.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#config 802.1x auth_parameter ports 1:1–1:20 direction both Command: config 802.1x auth_parameter ports 1:1–1:20 direction both Success. DGS-3400:4# config 802.1x init Purpose Used to initialize the 802.1x function on a range of ports. Syntax config 802.1x init {port_based ports [ | all] | mac_based [ports] [ | all] {mac_address }] Description The config 802.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config 802.1x reauth can then be specified. mac_based − This instructs the Switch to re-authorize 802.1x functions based only on the MAC address. MAC addresses approved for reauthorization can then be specified. ports − Specifies a port or range of ports to be re-authorized. The port list is specified by listing the lowest switch number and the beginning port number on that switch, separated by a colon.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual To configure the RADIUS server communication settings: DGS-3400:4#config radius add 1 10.48.74.121 key dlink default Command: config radius add 1 10.48.74.121 key dlink default Success. DGS-3400:4# config radius delete Purpose Used to delete a previously entered RADIUS server configuration.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual To configure the RADIUS settings: DGS-3400:4#config radius 1 10.48.74.121 key dlink default Command: config radius 1 10.48.74.121 key dlink default Success. DGS-3400:4# show radius Purpose Used to display the current RADIUS configurations on the Switch. Syntax show radius Description The show radius command is used to display the current RADIUS configurations on the Switch. Parameters None. Restrictions None.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#create 802.1x user dtremblett Command: create 802.1x user dtremblett Enter a case-sensitive new password:****** Enter the new password again for confirmation:****** Success. DGS-3400:4# show 802.1x user Purpose Used to display the 802.1x user accounts on the Switch. Syntax show 802.1x user Description The show 802.1x user command is used to display the 802.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config 802.1x auth_protocol Purpose Used to configure the 802.1x authentication protocol on the Switch. Syntax config 802.1x auth_protocol [local | radius_eap] Description The config 802.1x auth_protocol command enables configuration of the authentication protocol. Parameters [local | radius_eap] – Specify the type of authentication protocol desired. Restrictions Only administrator-level users can issue this command.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show auth_client Purpose Used to display the current RADIUS authentication client. Syntax show auth_client Description The show auth_client command is used to display the current RADIUS authentication client currently configured on the Switch. Parameters None. Restrictions Only administrator-level users can issue this command.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Example usage: To display the current authentication diagnostics for port 16 of module 1: DGS-3400:4#show auth_diagnostics ports 1:16 Command: show auth_diagnostics ports 1:16 Port number : 1:16 EntersConnecting 0 EapLogoffsWhileConnecting 0 EntersAuthenticating 0 SuccessWhileAuthenticating 0 TimeoutsWhileAuthenticating 0 FailWhileAuthenticating 0 ReauthsWhileAuthenticating 0 EapStartsWhileAuthenticating 0 EapLogoffWhileAuthenticating 0 Reauth
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show auth_session_statistics ports 1:16 Command: show auth_session_statistics ports 1:16 Port number : 1:16 SessionOctetsRx SessionOctetsTx SessionFramesRx SessionFramesTx SessionId SessionAuthenticMethod SessionTime SessionTerminateCause SessionUserName 0 0 0 0 Remote Authentication Server 0 SupplicantLogoff Trinity CTRL+C ESC q Quit SPACE n Next Page Enter Next Entry a All show auth_statistics Purpose Used to display the curre
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual create 802.1x guest_vlan Purpose Used to configure a pre-existing VLAN as a 802.1x Guest VLAN. Syntax create 802.1x guest_vlan Description The create 802.1x guest_vlan command is used to configure a predefined VLAN as a 802.1x Guest VLAN. Guest 802.1X VLAN clients are those who have not been authorized for 802.1x or they haven’t yet installed the necessary 802.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#config 802.1x guest_vlan ports 1:1-1:5 state enable Command: config 802.1x guest_vlan ports 1:1-1:5 state enable Success. DGS-3400:4# show 802.1x guest_vlan Purpose Used to view the configurations for a 802.1x Guest VLAN. Syntax show 802.1x guest_vlan Description The show 802.1x guest_vlan command is used to display the settings for the VLAN that has been enabled as an 802.1x Guest VLAN. Guest 802.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 24 ACCESS CONTROL LIST (ACL) COMMANDS The xStack DGS-3400 implements Access Control Lists that enable the Switch to deny network access to specific devices or device groups based on IP settings and MAC address. Access profiles allows establishment of a criteria to determine whether or not the Switch will forward packets based on the information contained in each packet’s header. These criteria can be specified on a VLAN-by-VLAN basis.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Command Parameters | flowlabel | source_ipv6 | destionation_ipv6 ]} port [ | all] [permit {priority {replace_priority} | rx_rate [no_limit | ]} | deny]] {time_range } | delete access_id ] show access_profile {profile_id } enable cpu_interface_filtering disable cpu_interface_filtering create cpu access_profile [
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual create access_profile (for Ethernet) Parameters Restrictions profile_id - Specifies an index number between 1 and 6 that will identify the access profile being created with this command. ethernet - Specifies that the Switch will examine the layer 2 part of each packet header with emphasis on one or more of the following: • vlan − Specifies that the Switch will examine the VLAN part of each packet header.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config access_profile (for Ethernet) with this source MAC address. MAC address entries may be made in the following format: 000000000000-FFFFFFFFFFFF • destination_mac − Specifies that the access profile will apply to only packets with this destination MAC address. MAC address entries may be made in the following format: 000000000000-FFFFFFFFFFFF • 802.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual create access_profile (IP) Purpose Used to create an access profile on the Switch by examining the IP part of the packet header. Masks entered can be combined with the values the Switch finds in the specified frame header fields. Specific values for the rules are entered using the config access_profile command, below.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4# create access_profile profile_id 2 ip protocol_id_mask 0xFF Command: create access_profile profile_id 2 ip protocol_id_mask 0xFF Success. DGS-3400:4# config access_profile (IP) Purpose Used to configure the IP access profile on the Switch and to define specific values for the rules that will be used to by the Switch to determine if a given packet should be forwarded or filtered.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config access_profile (IP) • rst: TCP control flag (reset) • syn: TCP control flag (synchronize) • fin: TCP control flag (finish) • udp − Specifies that the Switch will examine the Universal Datagram Protocol (UDP) field in each packet. • src_port − Specifies that the access profile will apply only to packets that have this UDP source port in their header.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#config access_profile profile_id 2 add access_id 2 ip protocol_id 2 port 1:2 deny Command: config access_profile profile_id 2 add access_id 2 ip protocol_id 2 port 1:2 deny Success. DGS-3400:4# create access_profile (ipv6) Purpose Used to create an access profile on the Switch by examining the IPv6 part of the packet header.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config access_profile profile_id (ipv6) | destionation_ipv6 } port [ | all] [permit {priority {replace_priority} | rx_rate [no_limit | value 1-156249]} | deny]] {time_range } | delete access_id ] Description This command is used to define the rules used by the Switch to either filter or forward packets based on the IPv6 part of each packet header.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config access_profile profile_id (ipv6) deny – Specifies that packets that match the access profile are not permitted to be forwarded by the Switch and will be filtered. {time_range } – Choose this parameter and enter the name of the Time Range settings that has been previously configured using the config time_range command. This will set specific times when this access rule will be enabled or disabled on the Switch.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show access_profile Parameters profile_id − Enter an integer between 1 and 6 that is used to identify the access profile that will be viewed with this command. This value is assigned to the access profile when it is created with the create access_profile command. Entering this command without the profile_id parameter will command the Switch to display all access profile entries. Restrictions None.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual create cpu access_profile Purpose Used to create an access profile specifically for CPU Interface Filtering on the Switch and to define which parts of each incoming frame’s header the Switch will examine. Masks can be entered that will be combined with the values the Switch finds in the specified frame header fields. Specific values for the rules are entered using the config cpu access_profile command, below.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual create cpu access_profile (acknowledgement), psh (push), rst (reset), syn (synchronize) and fin (finish). • udp − Specifies that the switch will examine each frame’s Universal Datagram Protocol (UDP) field. • src_port_mask − Specifies a UDP port mask for the source port. • dst_port_mask − Specifies a UDP port mask for the destination port.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config cpu access_profile Purpose Used to configure a cpu access profile used for CPU Interface Filtering and to define specific values that will be used to by the Switch to determine if a given packet should be forwarded or filtered. Masks entered using the create cpu access_profile command will be combined, using a logical AND operation, with the values the Switch finds in the specified frame header fields.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config cpu access_profile Parameters • • type − Specifies that the access profile will apply to this ICMP type value. • code − Specifies that the access profile will apply to this ICMP code. • igmp − Specifies that the Switch will examine the Internet Group Management Protocol (IGMP) field within each packet.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#config cpu access_profile profile_id 5 add access_id 1 ip vlan default source_ip 20.2.2.3 destination_ip 10.1.1.252 dscp 3 icmp type 11 code 32 deny Command: config cpu access_profile profile_id 10 add access_id 1 ip vlan default source_ip 20.2.2.3 destination_ip 10.1.1.252 dscp 3 icmp type 11 code 32 deny Success. DGS-3400:4# show cpu_access_profile Purpose Used to view the CPU access profile entry currently set in the Switch.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 25 TIME RANGE COMMANDS The Time Range commands are used in conjunction with the Access Profile commands listed in the previous chapter to determine a starting point and an ending point, based on days of the week, when an Access Profile configuration will be enabled on the Switch. Once configured here, the time range are to be applied to an access profile rule using the config access_profile profile_id command.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Example usage: To configure the time range time1 to be between 6:30 a.m. and 9:40 p.m., Monday to Friday: DGS-3400:4#config time_range time1 hours start_time 6:30:00 end_time 21:40:00 weekdays mon-fri Command: config time_range time1 hours start_time 6:30:00 end_time 21:40:00 weekdays mon-fri Success. DGS-3400:4# show time_range Purpose To view the current configurations of the time range set on the Switch.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 26 SAFEGUARD ENGINE COMMANDS Periodically, malicious hosts on the network will attack the Switch by utilizing packet flooding (ARP Storm) or other methods. These attacks may increase the CPU utilization beyond its capability. To alleviate this problem, the Safeguard Engine function was added to the Switch’s software.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config safeguard_engine Parameters state [enable | disable] – Select the running state of the Safeguard Engine function as enable or disable. utilization – Select this option to trigger the Safeguard Engine function to enable based on the following determinates: • rising - The user can set a percentage value of the rising CPU utilization which will trigger the Safeguard Engine function.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show safeguard_engine Command: show safeguard_engine Safeguard engine state : Disabled Safeguard engine current status : normal mode ======================================================= CPU utilization information: Rising : 30% Falling : 20% Trap/Log state : Disabled Mode : Fuzzy DGS-3400:4# 204
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 27 TRAFFIC SEGMENTATION COMMANDS Traffic segmentation allows you to further sub-divide VLANs into smaller groups of ports that will help to reduce traffic on the VLAN. The VLAN rules take precedence, and then the traffic segmentation rules are applied.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4# config traffic_segmentation 1:1-1:10 forward_list 1:11-1:15 Command: config traffic_segmentation 1:1-1:10 forward_list 1:11-1:15 Success. DGS-3400:4# show traffic_segmentation Purpose Used to display the current traffic segmentation configuration on the Switch.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 28 TIME AND SNTP COMMANDS The Simple Network Time Protocol (SNTP) (an adaptation of the Network Time Protocol (NTP)) commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show sntp Purpose Used to display the SNTP information. Syntax show sntp Description This command will display SNTP settings information including the source IP address, time and poll interval. Parameters None. Restrictions None. Example usage: To display SNTP configuration information: DGS-3400:4#show sntp Command: show sntp Current Time Source : System Clock SNTP : Disabled SNTP Primary Server : 10.1.1.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual To disable SNTP: DGS-3400:4#disable sntp Command: disable sntp Success. DGS-3400:4# config time Purpose Used to manually configure system time and date settings. Syntax config time
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#config time_zone operator + hour 2 min 30 Command: config time_zone operator + hour 2 min 30 Success. DGS-3400:4# config dst Purpose Used to enable and configure time adjustments to allow for the use of Daylight Savings Time (DST).
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config dst Parameters e_date - Configure the specific date (day of the month) to begin DST. • - The end date is expressed numerically. offset [30 | 60 | 90 | 120] - Indicates number of minutes to add or to subtract during the summertime. The possible offset times are 30,60,90,120. The default value is 60. Restrictions Only administrator-level users can issue this command.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 29 DHCP RELAY The DHCP relay commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Example usage: To add an IP destination to the DHCP relay table: DGS-3400:4#config dhcp_relay add ipif System 10.58.44.6 Command: config dhcp_relay add ipif System 10.58.44.6 Success. DGS-3400:4# config dhcp_relay delete ipif Purpose Used to delete an IP destination addresses from the Switch's DHCP/BOOTP relay table.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config dhcp_relay option_82 state Restrictions Only administrator-level users can issue this command. Example usage: To configure DHCP relay option 82 state: DGS-3400:4#config dhcp_relay option_82 state enable Command: config dhcp_relay option_82 state enable Success. DGS-3400:4# config dhcp_relay option_82 check Purpose Used to configure the checking mechanism of DHCP relay agent information option 82 of the switch.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Example usage: To configure DHCP relay option 82 policy: DGS-3400:4#config dhcp_relay option_82 policy replace Command: config dhcp_relay option_82 policy replace Success. DGS-3400:4# show dhcp_relay Purpose Used to display the current DHCP/BOOTP relay configuration.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual enable dhcp_relay Purpose Used to enable the DHCP/BOOTP relay function on the Switch. Syntax enable dhcp_relay Description This command is used to enable the DHCP/BOOTP relay function on the Switch. Parameters None. Restrictions Only administrator-level users can issue this command. Example usage: To enable DHCP relay: DGS-3400:4#enable dhcp_relay Command: enable dhcp_relay Success.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 30 ARP COMMANDS The ARP commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual To delete an entry of IP address 10.48.74.121.125 from the ARP table: DGS-3400:4#delete arpentry 10.48.74.121 Command: delete arpentry 10.48.74.121 Success. DGS-3400:4# config arp_aging time Purpose Used to configure the age-out timer for ARP table entries on the Switch.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show arpentry Command: show arpentry ARP Aging Time : 30 Interface ------------System System System System System System System System System System System System System System System System System System System System IP Address --------------10.0.0.0 10.1.1.169 10.1.1.254 10.9.68.1 10.9.68.4 10.10.27.51 10.11.22.145 10.11.94.10 10.14.82.24 10.15.1.60 10.17.42.153 10.19.72.100 10.21.32.203 10.40.44.60 10.42.73.221 10.44.67.1 10.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config arpentry Purpose Used to configure a static entry in the ARP table. Syntax config arpentry Description This command is used to configure a static entry in the ARP Table. The user may specify the IP address and the corresponding MAC address of an entry in the Switch’s ARP table. Parameters − The IP address of the end node or station. − The MAC address corresponding to the IP address above.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 31 ROUTING TABLE COMMANDS The Switch supports only static routing for IP and IPv6 formatted addressing. Users can create up to 128 static route entries for IPv4 and IPv6 combined. Only manually configured static routes can route IP packets, which means the local route cannot route IP packets. For each device that is a part of the DGS-3400 network, users may only configure one IP address as a static route.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual create iproute Restrictions Only administrator-level users can issue this command. Example usage: To add a single static address 10.48.74.121, mask 255.0.0.0 and gateway 10.1.1.254 to the routing table: NOTE: Users must manually configure static ARP settings for hosts connected to the Switch, because the Switch cannot automatically learn host IP addresses. DGS-3400:4#create iproute 10.48.74.121/255.0.0.0 10.1.1.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual delete iproute [primary | backup] − The user may choose between Primary and Backup. If the Primary Static Route fails, the Backup Route will support the entry. Please take note that the Primary and Backup entries cannot have the same Gateway. Restrictions Only administrator-level users can issue this command. Example usage: To delete a backup static address 10.48.75.121, mask 255.0.0.0 and gateway (ipaddr) entry of 10.1.1.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show iproute Restrictions None. Example usage: To display the contents of the IP routing table: DGS-3400:4#show iproute Command: show iproute Routing Table IP Address/Netmask Gateway Interface ------------------------------- -----------10.0.0.0/8 0.0.0.0 System Cost Protocol ------- -------1 Local Total Entries : 1 DGS-3400:4# create iproute ipv6 Purpose Used to create Ipv6 route entries to the Switch’s IP routing table.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual delete iproute ipv6 Description This command will delete an existing static IPv6 entry from the Switch’s IP routing table. Parameters − IPV6 address and netmask of the IP interface that is the destination of the route. Specify the address and mask information using the format as ipv6address / prefix_length (ipv6address is hexadecimal number, prefix length is decimal number, for example 1234::5D7F/32).
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual create iproute ipv6 default Purpose Used to create IP route entries to the Switch’s IP routing table. Syntax create iproute ipv6 default [ {} | {}] Description This command is used to create a default static IPv6 route entry to the Switch’s IP routing table. Parameters - Enter the IP interface name for which to create a static route.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 32 MAC NOTIFICATION COMMANDS The MAC notification commands in the Command Line Interface (CLI) are listed, in the following table, along with their appropriate parameters.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#disable mac_notification Command: disable mac_notification Success. DGS-3400:4# config mac_notification Purpose Used to configure MAC address notification. Syntax config mac_notification {interval | historysize } Description MAC address notification is used to monitor MAC addresses learned and entered into the FDB.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#config mac_notification ports 1:7 enable Command: config mac_notification ports 1:7 enable Success. DGS-3400:4# show mac_notification Purpose Used to display the Switch’s MAC address table notification global settings Syntax show mac_notification Description This command is used to display the Switch’s MAC address table notification global settings. Parameters None. Restrictions None.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual To display all port’s MAC address table notification status settings: DGS-3400:4#show mac_notification ports Command: show mac_notification ports Port # MAC Address Table Notification State ------ ----------------------------------------------------1:1 Disabled 1:2 Disabled 1:3 Disabled 1:4 Disabled 1:5 Disabled 1:6 Disabled 1:7 Disabled 1:8 Disabled 1:9 Disabled 1:10 Disabled 1:11 Disabled 1:12 Disabled 1:13 Disabled 1:14 Disabled 1:15 Disabl
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 33 ACCESS AUTHENTICATION CONTROL COMMANDS The TACACS / XTACACS / TACACS+ / RADIUS commands allows users secure access to the Switch using the TACACS / XTACACS / TACACS+ / RADIUS protocols. When a user logs in to the Switch or tries to access the administrator level privilege, he or she is prompted for a password.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Command Parameters enable authen_policy disable authen_policy show authen_policy create authen_login method_list_name config authen_login [default | method_list_name ] method {tacacs | xtacacs | tacacs+ | radius | server_group | local | none} delete authen_login method_list_name show authen_login {default | method_list_name | all} create authen_enable method_list_name
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual enable authen_policy Purpose Used to enable system access authentication policy. Syntax enable authen_policy Description This command will enable an administrator-defined authentication policy for users trying to access the Switch. When enabled, the device will check the method list and choose a technique for user authentication upon login. Parameters None. Restrictions Only administrator-level users can issue this command.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Example usage: To display the system access authentication policy: DGS-3400:4#show authen_policy Command: show authen_policy Authentication Policy: Enabled DGS-3400:4# create authen_login method_list_name Purpose Used to create a user defined method list of authentication methods for users logging on to the Switch.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config authen_login Parameters Parameters default – The default method list for access authentication, as defined by the user. The user may choose one or a combination of up to four(4) of the following authentication methods: tacacs – Adding this parameter will require the user to be authenticated using the TACACS protocol from the remote TACACS server hosts of the TACACS server group list.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#config authen_login default method xtacacs tacacs+ local Command: config authen_login default method xtacacs tacacs+ local Success. DGS-3400:4# delete authen_login method_list_name Purpose Used to delete a previously configured user defined method list of authentication methods for users logging on to the Switch.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Example usage: To view the authentication login method list named Trinity: DGS-3400:4#show authen_login method_list_name Trinity Command: show authen_login method_list_name Trinity Method List Name Priority ----------------------Trinity 1 2 3 4 Method Name --------------tacacs+ tacacs Darren local Comment --------Built-in Group Built-in Group User-defined Group Keyword DGS-3400:4# create authen_enable method_list_name Purpose Used to crea
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config authen_enable If no verification is found, the Switch will send an authentication request to the second TACACS host in the server group and so on, until the list is exhausted. At that point, the Switch will restart the same sequence with the following protocol listed, xtacacs. If no authentication takes place using the xtacacs list, the local_enable password set in the Switch is used to authenticate the user.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#config authen_enable method_list_name Trinity method tacacs xtacacs local Command: config authen_enable method_list_name Trinity method tacacs xtacacs local Success.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show authen_enable all – Entering this parameter will display all the authentication login methods currently configured on the Switch. The window will display the following parameters: Method List Name – The name of a previously configured method list name. Priority – Defines which order the method list protocols will be queried for authentication when a user attempts to log on to the Switch. Priority ranges from 1(highest) to 4 (lowest).
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config authen application method. ssh – Choose this parameter to configure the Secure Shell login method. http – Choose this parameter to configure the web interface login method. all – Choose this parameter to configure all applications (console, Telnet, SSH, web) login method. login – Use this parameter to configure an application for normal login on the user level, using a previously configured method list.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual create authen server_host Purpose Used to create an authentication server host. Syntax create authen server_host protocol [tacacs | xtacacs | tacacs+ | radius] {port | key [ | none] | timeout | retransmit < 1-255>} Description This command will create an authentication server host for the TACACS/XTACACS/TACACS+/RADIUS security protocols on the Switch.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config authen server_host Purpose Used to configure a user-defined authentication server host. Syntax create authen server_host protocol [tacacs | xtacacs | tacacs+ | radius] {port | key [ | none] | timeout | retransmit < 1-255>} Description This command will configure a user-defined authentication server host for the TACACS/XTACACS/TACACS+/RADIUS security protocols on the Switch.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual delete authen server_host Purpose Used to delete a user-defined authentication server host. Syntax delete authen server_host protocol [tacacs | xtacacs | tacacs+ | radius] Description This command is used to delete a user-defined authentication server host previously created on the Switch. Parameters server_host - The IP address of the remote server host to be deleted.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Example usage: To view authentication server hosts currently set on the Switch: DGS-3400:4#show authen server_host Command: show authen server_host IP Address --------------10.53.13.94 Protocol Port Timeout Retransmit Key ------------ --------------------- -----------------TACACS 49 5 2 --------- Total Entries : 1 DGS-3400:4# create authen server_group Purpose Used to create a user-defined authentication server group.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config authen server_group protocol may be added to this group. xtacacs – Use this parameter to utilize the built-in XTACACS server protocol on the Switch. Only server hosts utilizing the XTACACS protocol may be added to this group. tacacs+ – Use this parameter to utilize the built-in TACACS+ server protocol on the Switch. Only server hosts utilizing the TACACS+ protocol may be added to this group.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#delete server_group group_1 Command: delete server_group group_1 Success. DGS-3400:4# show authen server_group Purpose Used to view authentication server groups on the Switch. Syntax show authen server_group Description This command will display authentication server groups currently configured on the Switch.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual To configure the response timeout for 60 seconds: DGS-3400:4# config authen parameter response_timeout 60 Command: config authen parameter response_timeout 60 Success. DGS-3400:4# config authen parameter attempt Purpose Used to configure the maximum number of times the Switch will accept authentication attempts.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show authen parameter Command: show authen parameter Response timeout : 60 seconds User attempts :5 DGS-3400:4# enable admin Purpose Used to promote user level privileges to administrator level privileges Syntax enable admin Description This command is for users who have logged on to the Switch on the normal user level, to become promoted to the administrator level.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual To configure the password for the “local_enable” authentication method. DGS-3400:4#config admin local_enable Command: config admin local_enable Enter the old password: Enter the case-sensitive new password:****** Enter the new password again for confirmation:****** Success.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 34 SSH COMMANDS The steps required to use the Secure Shell (SSH) protocol for secure communication between a remote PC (the SSH Client) and the Switch (the SSH Server), are as follows: • Create a user account with admin-level access using the create account admin command. This is identical to creating any other admin-lever user account on the Switch, including specifying a password.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#enable ssh Command: enable ssh TELNET will be disabled when enable SSH. Success. DGS-3400:4# disable ssh Purpose Used to disable SSH. Syntax disable ssh Description This command allows users to disable SSH on the Switch. Parameters None. Restrictions Only administrator-level users can issue this command. Usage example: To disable SSH: DGS-3400:4# disable ssh Command: disable ssh Success.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#config ssh authmode password enable Command: config ssh authmode password enable Success. DGS-3400:4# show ssh authmode Purpose Used to display the SSH authentication mode setting. Syntax show ssh authmode Description This command will allow users to display the current SSH authentication set on the Switch. Parameters None. Restrictions None.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4# config ssh server maxsession 2 contimeout 300 authfail 2 Command: config ssh server maxsession 2 contimeout 300 authfail 2 Success. DGS-3400:4# show ssh server Purpose Used to display the SSH server setting. Syntax show ssh server Description This command allows users to display the current SSH server setting. Parameters None. Restrictions None.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config ssh user publickey – This parameter should be chosen to use the publickey on a SSH server for authentication. Restrictions Only administrator-level users can issue this command. Example usage: To configure the SSH user: DGS-3400:4# config ssh user Trinity authmode Password Command: config ssh user Trinity authmode Password Enter a case sensitive new password: ******* Enter the new password again for conformation:******* Success.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config ssh algorithm Encryption Standard encryption algorithm. AES128 - This parameter will enable or disable the Advanced Encryption Standard AES128 encryption algorithm. AES192 - This parameter will enable or disable the Advanced Encryption Standard AES192 encryption algorithm. AES256 - This parameter will enable or disable the Advanced Encryption Standard AES256 encryption algorithm.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show ssh algorithm Command: show ssh algorithm Encryption Algorithm ---------------------------------3DES :Enabled AES128 :Enabled AES192 :Enabled AES256 :Enabled arcfour :Enabled blowfish :Enabled cast128 :Enabled twofish128 :Enabled twofish192 :Enabled twofish256 :Enabled Data Integrity Algorithm ---------------------------------MD5 :Enabled SHA1 :Enabled Public Key Algorithm --------------------------------RSA :Enabled DSA :Enabl
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 35 SSL COMMANDS Secure Sockets Layer or SSL is a security feature that will provide a secure communication path between a host and client through the use of authentication, digital signatures and encryption.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual enable ssl Purpose To enable the SSL function on the Switch. Syntax enable ssl {ciphersuite {RSA_with_RC4_128_MD5 | RSA_with_3DES_EDE_CBC_SHA | DHE_DSS_with_3DES_EDE_CBC_SHA | RSA_EXPORT_with_RC4_40_MD5}} Description This command will enable SSL on the Switch by implementing any one or combination of listed ciphersuites on the Switch. Entering this command without a parameter will enable the SSL status on the Switch.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual disable ssl Purpose To disable the SSL function on the Switch. Syntax disable ssl {ciphersuite {RSA_with_RC4_128_MD5 | RSA_with_3DES_EDE_CBC_SHA | DHE_DSS_with_3DES_EDE_CBC_SHA | RSA_EXPORT_with_RC4_40_MD5}} Description This command will disable SSL on the Switch and can be used to disable any one or combination of listed ciphersuites on the Switch.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config ssl cachetimeout timeout seconds to specify the total time an SSL key exchange ID stays valid before the SSL module will require a new, full SSL negotiation for connection. The default cache timeout is 600 seconds Restrictions Only administrator-level users can issue this command.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show ssl Command: show ssl SSL status RSA_WITH_RC4_128_MD5 RSA_WITH_3DES_EDE_CBC_SHA DHE_DSS_WITH_3DES_EDE_CBC_SHA RSA_EXPORT_WITH_RC4_40_MD5 0x0004 0x000A 0x0013 0x0003 Disabled Enabled Enabled Enabled Enabled DGS-3400:4# Example usage: To view certificate file information on the Switch: DGS-3400:4# show ssl certificate Command: show ssl certificate Loaded with RSA Certificate! DGS-3400:4# download SSL certificate Purpose Used
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 36 JUMBO FRAME COMMANDS Certain switches can support jumbo frames (frames larger than the standard Ethernet frame size of 1536 bytes). To transmit frames of up to 9K (and 9220 Bytes tagged), the user can increase the maximum transmission unit (MTU) size from the default of 1536 by enabling the Jumbo Frame command.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#disable jumbo_frame Command: disable jumbo_frame Success. DGS-3400:4# show jumbo_frame Purpose Used to show the status of the jumbo frame function on the Switch. Syntax show jumbo_frame Description This command will show the status of the jumbo frame function on the Switch. Parameters None. Restrictions None.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 37 D-LINK SINGLE IP MANAGEMENT COMMANDS Simply put, D-Link Single IP Management is a concept that will stack switches together over Ethernet instead of using stacking ports or modules. Switches using D-Link Single IP Management (labeled here as SIM) must conform to the following rules: • SIM is an optional feature on the Switch and can easily be enabled or disabled.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual With SIM enabled, the applications in the CS will redirect the packet instead of executing the packets. The applications will decode the packet from the administrator, modify some data, then send it to the MS. After execution, the CS may receive a response packet from the MS, which it will encode and send back to the administrator.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#enable sim Command: enable sim Success. DGS-3400:4# disable sim Purpose Used to disable Single IP Management (SIM) on the Switch. Syntax disable sim Description This command will disable SIM globally on the Switch. Parameters None. Restrictions Only administrator-level users can issue this command. Example usage: To disable SIM on the Switch: DGS-3400:4#disable sim Command: disable sim Success.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show sim information concerning the SIM group. To view a specific group, include the commander’s MAC address of the group. neighbor – Entering this parameter will display neighboring devices of the Switch. A SIM neighbor is defined as a switch that is physically connected to the Switch but is not part of the SIM group.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual To show other groups information in summary, if group is specified: DGS-3400:4#show sim group Command: show sim group SIM Group Name : default ID MAC Address --- ----------------*1 00-01-02-03-04-00 2 00-55-55-00-55-00 Platform / Capability -----------------------DGS-3400 L2 Switch DGS-3400 L2 Switch Hold Time ----40 140 Firmware Version --------2.00.B46 2.00.B46 Device Name Hold Time -----40 140 Firmware Version --------2.00.B46 2.00.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#reconfig member_id 2 Command: reconfig member_id 2 DGS-3400:4# Login: config sim_group Purpose Used to add candidates and delete members from the SIM group. Syntax config sim_group [add {} | delete ] Description This command is used to add candidates and delete members from the SIM group by ID number.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config sim Purpose Used to configure role parameters for the SIM protocol on the Switch. Syntax config sim [[commander {group_name | candidate] | dp_interval | hold_time ] Description This command is used to configure parameters of switches of the SIM.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual To transfer the CS (commander) to be a CaS (candidate): DGS-3400:4# config sim candidate Command: config sim candidate Success. DGS-3400:4# To transfer the Switch to be a CS: DGS-3400:4# config sim commander Command: config sim commander Success. DGS-3400:4# To update the name of a group: DGS-3400:4# config sim commander group_name Trinity Command: config sim commander group_name Trinity Success.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4# download sim_ms firmware_from_tftp 10.53.13.94 c:/dgs3426.had all Command: download sim_ms firmware_from_tftp 10.53.13.94 c:/dgs3426.had all This device is updating firmware. Please wait...
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual To upload configuration files to a TFTP server: DGS-3400:4# upload sim_ms configuration 10.55.47.1 D:\configuration.txt 1 Command: upload sim_ms configuration 10.55.47.1 D:\configuration.txt 1 This device is upload configuration. Please wait several minutes… Success.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 38 POE COMMANDS The xStack DGS-3426P supports Power over Ethernet (PoE) as defined by the IEEE 802.3af specification. Ports 1-24 supply 48 VDC power to PDs over Category 5 or Category 3 UTP Ethernet cables. The xStack DGS-3426P follows the standard PSE pinout Alternative A, whereby power is sent out over pins 1, 2, 3 and 6. The xStack DGS-3426P works with all D-Link 802.3af capable devices.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config poe system power_limit - The power limit parameter allows the user to configure the power budget of whole PoE system. The minimum setting is 37 W and the maximum is 370W (depending on the power supplier’s capability). Default setting is 370 W. power_disconnect_method -This parameter is used to configure the power management disconnection method.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config poe ports number 1, port 3. 2:4 specifies switch number 2, port 4. 1:3-2:4 specifies all of the ports between switch 1, port 3 and switch 2, port 4 − in numerical order. Non-contiguous portlist entries are separated by a comma. (ex: 1:1-1:3,1:7-1:9) all – Specifies that all ports on the Switch will be configured for PoE. state - Enables or disables the PoE function on the Switch.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show poe ports Purpose Used to display the setting and actual values of the whole PoE system. Syntax show poe ports {} Description Display the settings, actual values and port configuration of the whole PoE system. Parameters ports – Choosing this parameter will display the settings for PoE on a port-by-port basis. • portlist – Enter a port or range of ports to be displayed for their PoE settings.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show poe system switch power limit, consumption, remaining useable power and the power disconnection method. Parameters units - Select the switch in the switch stack for which to show the PoE system settings. This unit number is based on the unit ID assigned to switches in the switch stack. The DGS-3426P is currently the only switch in this series with PoE capabilities. Restrictions None.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 39 COMMAND HISTORY LIST The switch history commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters ? config command_history show command_history Each command is listed, in detail, in the following sections. ? Purpose Used to display all commands in the Command Line Interface (CLI).
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual To display the parameters for a specific command: DGS-3400:4# config stp Command:? config stp Command: config stp Usage: {maxage | maxhops | hellotime | forwarddelay | txholdcount | fbpdu [enable | disable] | lbd [enable | disable] | lbd_recover_timer [0 | ]} Description: Used to update the STP Global Configuration.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show command_history Command: show command_history ? ? show show vlan show command history DGS-3400:4# 282
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 40 MODIFY BANNER AND PROMPT COMMANDS Administrator level users can modify the login banner (greeting message) and command prompt by using the commands described below.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4# config greeting_message Command: config greeting_message Greeting Messages Editor ================================================================ DGS-3400 Gigabit Ethernet Switch Command Line Interface Firmware: Build 2.00.B46 Copyright(C) 2004-2007 D-Link Corporation. All rights reserved.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config command prompt command prompt. Restrictions Only administrator-level users can issue this command. Other restrictions include: • If the “reset” command is executed, the modified command prompt will remain modified. However, the “reset system/config” command will reset the command prompt to the original factory banner.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual A TECHNICAL SPECIFICATIONS Specifications listed here apply to all Switches in the xStack DGS-3400 series except where otherwise noted. General Standards IEEE 802.3 10BASE-T Ethernet IEEE 802.3u 100BASE-TX Fast Ethernet IEEE 802.3ab 1000BASE-T Gigabit Ethernet IEEE 802.3z 1000BASE-T (SFP “Mini GBIC”) IEEE 802.3ae (10G Optional Modules) IEEE 802.1D/w/s Spanning Tree (Rapid, Multiple) IEEE 802.1P/Q VLAN IEEE 802.1p Priority Queues IEEE 802.
xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Physical and Environmental Internal power supply AC Input: 100 - 240 VAC, 50-60 Hz Redundant power supply Power Consumption DGS-3400 Series Switch Module Inserts DGS-3426 (70.8 Watts) DEM-410CX (0.015 Watts) DGS-3426P (433 Watts) DEM-410X (6.16 Watts) DGS-3427 (71.6 Watts) DGS-3450 (131.
