ECS3510-26P_Management Guide R02
Table Of Contents
- About This Guide
- Contents
- Figures
- Tables
- Getting Started
- Web Configuration
- Using the Web Interface
- Basic Management Tasks
- Displaying System Information
- Displaying Hardware/Software Versions
- Configuring Support for Jumbo Frames
- Displaying Bridge Extension Capabilities
- Managing System Files
- Setting the System Clock
- Configuring the Console Port
- Configuring Telnet Settings
- Displaying CPU Utilization
- Displaying Memory Utilization
- Resetting the System
- Interface Configuration
- VLAN Configuration
- Address Table Settings
- Spanning Tree Algorithm
- Congestion Control
- Class of Service
- Quality of Service
- VoIP Traffic Configuration
- Security Measures
- AAA Authorization and Accounting
- Configuring User Accounts
- Web Authentication
- Network Access (MAC Address Authentication)
- Configuring HTTPS
- Configuring the Secure Shell
- Access Control Lists
- ARP Inspection
- Filtering IP Addresses for Management Access
- Configuring Port Security
- Configuring 802.1X Port Authentication
- IP Source Guard
- DHCP Snooping
- DoS Protection
- Basic Administration Protocols
- IP Configuration
- IP Services
- Multicast Filtering
- Command Line Interface
- Using the Command Line Interface
- General Commands
- System Management Commands
- SNMP Commands
- Remote Monitoring Commands
- Authentication Commands
- User Accounts
- Authentication Sequence
- RADIUS Client
- TACACS+ Client
- AAA
- Web Server
- Telnet Server
- Secure Shell
- 802.1X Port Authentication
- dot1x default
- dot1x eapol-pass-through
- dot1x system-auth-control
- dot1x intrusion-action
- dot1x max-req
- dot1x operation-mode
- dot1x port-control
- dot1x re-authentication
- dot1x timeout quiet-period
- dot1x timeout re-authperiod
- dot1x timeout supp-timeout
- dot1x timeout tx-period
- dot1x re-authenticate
- dot1x identity profile
- dot1x max-start
- dot1x pae supplicant
- dot1x timeout auth-period
- dot1x timeout held-period
- dot1x timeout start-period
- show dot1x
- Management IP Filter
- General Security Measures
- Port Security
- Network Access (MAC Address Authentication)
- network-access aging
- network-access mac-filter
- mac-authentication reauth-time
- network-access dynamic-qos
- network-access dynamic-vlan
- network-access guest-vlan
- network-access link-detection
- network-access link-detection link-down
- network-access link-detection link-up
- network-access link-detection link-up-down
- network-access max-mac-count
- network-access mode mac-authentication
- network-access port-mac-filter
- mac-authentication intrusion-action
- mac-authentication max-mac-count
- clear network-access
- show network-access
- show network-access mac-address-table
- show network- access mac-filter
- Web Authentication
- DHCP Snooping
- IP Source Guard
- ARP Inspection
- ip arp inspection
- ip arp inspection filter
- ip arp inspection log-buffer logs
- ip arp inspection validate
- ip arp inspection vlan
- ip arp inspection limit
- ip arp inspection trust
- show ip arp inspection configuration
- show ip arp inspection interface
- show ip arp inspection log
- show ip arp inspection statistics
- show ip arp inspection vlan
- Denial of Service Protection
- Access Control Lists
- Interface Commands
- Link Aggregation Commands
- Port Mirroring Commands
- Rate Limit Commands
- Automatic Traffic Control Commands
- Threshold Commands
- SNMP Trap Commands
- snmp-server enable port-traps atc broadcast-alarm- clear
- snmp-server enable port-traps atc broadcast-alarm-fire
- snmp-server enable port-traps atc broadcast-control- apply
- snmp-server enable port-traps atc broadcast-control- release
- snmp-server enable port-traps atc multicast-alarm- clear
- snmp-server enable port-traps atc multicast-alarm-fire
- snmp-server enable port-traps atc multicast-control- apply
- snmp-server enable port-traps atc multicast-control- release
- ATC Display Commands
- Address Table Commands
- Spanning Tree Commands
- spanning-tree
- spanning-tree cisco-prestandard
- spanning-tree forward-time
- spanning-tree hello-time
- spanning-tree max-age
- spanning-tree mode
- spanning-tree pathcost method
- spanning-tree priority
- spanning-tree mst configuration
- spanning-tree transmission-limit
- max-hops
- mst priority
- mst vlan
- name
- revision
- spanning-tree bpdu-filter
- spanning-tree bpdu-guard
- spanning-tree cost
- spanning-tree edge- port
- spanning-tree link-type
- spanning-tree loopback-detection
- spanning-tree loopback-detection action
- spanning-tree loopback-detection release-mode
- spanning-tree loopback-detection trap
- spanning-tree mst cost
- spanning-tree mst port-priority
- spanning-tree port-priority
- spanning-tree root-guard
- spanning-tree spanning-disabled
- spanning-tree loopback-detection release
- spanning-tree protocol-migration
- show spanning-tree
- show spanning-tree mst configuration
- VLAN Commands
- Class of Service Commands
- Quality of Service Commands
- Multicast Filtering Commands
- IGMP Snooping
- ip igmp snooping
- ip igmp snooping proxy-reporting
- ip igmp snooping querier
- ip igmp snooping router-alert-option- check
- ip igmp snooping router-port-expire- time
- ip igmp snooping tcn-flood
- ip igmp snooping tcn-query-solicit
- ip igmp snooping unregistered-data- flood
- ip igmp snooping unsolicited-report- interval
- ip igmp snooping version
- ip igmp snooping version-exclusive
- ip igmp snooping vlan general-query- suppression
- ip igmp snooping vlan immediate- leave
- ip igmp snooping vlan last-memb- query-count
- ip igmp snooping vlan last-memb- query-intvl
- ip igmp snooping vlan mrd
- ip igmp snooping vlan proxy-address
- ip igmp snooping vlan query-interval
- ip igmp snooping vlan query-resp- intvl
- ip igmp snooping vlan static
- show ip igmp snooping
- show ip igmp snooping mrouter
- show ip igmp snooping group
- Static Multicast Routing
- IGMP Filtering and Throttling
- Multicast VLAN Registration
- IGMP Snooping
- LLDP Commands
- lldp
- lldp holdtime-multiplier
- lldp med-fast-start- count
- lldp notification-interval
- lldp refresh-interval
- lldp reinit-delay
- lldp tx-delay
- lldp admin-status
- lldp basic-tlv management-ip- address
- lldp basic-tlv port-description
- lldp basic-tlv system-capabilities
- lldp basic-tlv system-description
- lldp basic-tlv system-name
- lldp dot1-tlv proto-ident
- lldp dot1-tlv proto-vid
- lldp dot1-tlv pvid
- lldp dot1-tlv vlan-name
- lldp dot3-tlv link-agg
- lldp dot3-tlv max-frame
- lldp med-location civic-addr
- lldp med-notification
- lldp med-tlv ext-poe
- lldp med-tlv inventory
- lldp med-tlv location
- lldp med-tlv med-cap
- lldp med-tlv network-policy
- lldp notification
- show lldp config
- show lldp info local-device
- show lldp info remote-device
- show lldp info statistics
- Domain Name Service Commands
- DHCP Commands
- IP Interface Commands
- Appendices
- Glossary
- Command List
- Index
I
NDEX
– 1022 –
port priority 396
power savings
configuring 159, 747
enabling per port
159, 747
priority, default port ingress 239, 860
private key
309, 635
problems, troubleshooting 997
protocol migration 216, 817
protocol VLANs
185, 842
configuring 186, 842
configuring groups 186, 843
configuring interfaces
187, 843
group configuration 186, 843
interface configuration 187, 843
proxy query address, IGMP snooping
486, 900
proxy query interval, IGMP snooping 485, 901
proxy query response interval, IGMP snooping 485,
902
proxy reporting, IGMP snooping 484, 889
public key 309, 635
PVID, port native VLAN
172, 833
Q
QinQ Tunneling See 802.1Q tunnel
QoS 253, 869
configuration guidelines 254, 870
configuring
253, 869
CoS/CFI to PHB/drop precedence 249, 862
DSCP to PHB/drop precedence 247, 864
dynamic assignment
301, 669
matching class settings 255, 872
PHB to queue 243, 865
selecting DSCP, CoS
246, 866
QoS policy
committed burst size 261, 262, 263, 875, 877,
879
excess burst size
262, 877
peak burst size 263, 879
policing flow
257, 261
srTCM 258, 877
srTCM police meter
262, 877
trTCM
259, 879
trTCM police meter
263, 879
QoS policy, committed information rate
261, 262,
263, 875, 877, 879
QoS policy, peak information rate
263, 879
Quality of Service See QoS
queue mode, setting
240, 858
queue weight, assigning to CoS
242, 859
R
RADIUS
logon authentication
279, 614
settings
279, 614
rate limit
port
227, 771
setting
227, 771
remote engine ID 401, 589
remote logging 372, 558
Remote Monitoring See RMON
rename, DiffServ
873
restarting the system
122, 518, 522, 523
at scheduled times 122, 518
RMON 420, 601
alarm, displaying settings
422, 606
alarm, setting thresholds 420, 602
commands 601
event settings, displaying
424, 606
response to alarm setting 423, 603
statistics history, collection 425, 604
statistics history, displaying
427, 606
statistics, collection 428, 605
statistics, displaying 429, 607
root guard
216, 815
RSA encryption 313, 315, 641
RSTP 203, 799
global settings, configuring
207, 799
global settings, displaying 212, 818
interface settings, configuring 213, 806–816
interface settings, displaying
217, 818
running configuration files, displaying 528
S
secure shell 309, 635
configuration 309, 636
security, general measures
275, 663
serial port, configuring 117, 544
Simple Mail Transfer Protocol See SMTP
Simple Network Management Protocol See SNMP
single rate three color meter See srTCM
SMTP
event handling
373, 561
sending log events
373, 561
SNMP 397, 581
community string
410, 583
enabling traps 415, 585
filtering IP addresses
338, 660
global settings, configuring
399, 582
trap manager
415, 586
users, configuring
411, 413
SNMPv3
589–591
engine ID
400, 401, 589
engine identifier, local
400, 589
engine identifier, remote
401, 589
groups
405, 590
local users, configuring
411, 591
remote users, configuring
413, 591
user configuration
411, 413, 591
views
402, 592
SNTP
setting the system clock 112, 565–567
specifying servers
113, 567
software
displaying version
98, 532