HP 10Gb Ethernet BL-c Switch Command Reference Guide 2350 Mission College Blvd. Part number BMD00022 January 2008 Suite 600 Santa Clara, CA 95054 www.bladenetwork.
Legal notices © 2007 Blade Network Technologies. Inc. This document is protected by copyright and distributed under licenses restricting its use, copying, distribution, and decompilation. No part of this document may be reproduced in any form by any means without prior written authorization of Blade Network Technologies, Inc.
Contents Command line interface .......................................................................................................................... 8 Introduction ............................................................................................................................................. 8 Additional references ............................................................................................................................... 8 Connecting to the switch ....................
VLAN information ............................................................................................................................. 48 Fast Uplink Convergence status........................................................................................................... 49 Layer 3 information ................................................................................................................................ 50 Route information .......................................................
TCP statistics................................................................................................................................... 101 UDP statistics .................................................................................................................................. 101 CPU statistics .................................................................................................................................. 102 Access Control List (ACL) statistics menu ....................
Network Filter configuration ............................................................................................................. 163 Route Map configuration.................................................................................................................. 163 IP Access List configuration ............................................................................................................... 164 Routing Information Protocol configuration........................................
Introduction ......................................................................................................................................... 216 Menu information ................................................................................................................................ 216 System maintenance options............................................................................................................. 217 Forwarding Database options........................................
Command line interface Introduction The HP 10Gb Ethernet BL-c Switch is ready to perform basic switching functions right out of the box. Some of the more advanced features, however, require some administrative configuration before they can be used effectively. This guide provides a command reference for the HP 10Gb Ethernet BL-c Switch.
Establishing a console connection To establish a console connection with the switch, you need: • A null modem cable with a female DB-9 connector (See the HP 10Gb Ethernet BL-c Switch User Guide for more information.
Establishing a Telnet connection A Telnet connection offers the convenience of accessing the switch from any workstation connected to the network. Telnet provides the same options for user, operator, and administrator access as those available through the console port. By default, Telnet is enabled on the switch. The switch supports four concurrent Telnet connections. Once the IP parameters are configured, you can access the CLI using a Telnet connection.
The following SSH clients are supported: • • • • • SSH 3.0.1 for Linux (freeware) SecureCRT® 4.1.8 (VanDyke Technologies, Inc.) OpenSSH_3.9 for Linux (FC 3) FedoraCore 3 for SCP commands PuTTY Release 0.58 (Simon Tatham) for Windows NOTE: The switch implementation of SSH is based on versions 1.5 and 2.0, and supports SSH clients from version 1.0 through version 2.0. SSH clients of other versions are not supported. You may configure the client software to use protocol SSH version 1 or version 2.
Table 2 User access levels User account Description and tasks performed User The user has no direct responsibility for switch management. He or she can view all switch status information and statistics, but cannot make any configuration changes to the switch. The user account is enabled by default, and the default password is user. Oper The operator manages all functions of the switch. The operator can reset ports or the entire switch. By default, the operator account is disabled and has no password.
Typographical conventions The following table describes the typographic styles used in this guide: Table 3 Typographical conventions Typeface or symbol Meaning Example AaBbCc123 This type depicts onscreen computer output and prompts. Main# AaBbCc123 This type displays in command examples and shows text that must be typed in exactly as shown. Main# sys This italicized type displays in command examples as a parameter placeholder.
Menu basics Introduction The AOS CLI is used for viewing switch information and statistics. In addition, the administrator can use the CLI for performing all levels of switch configuration. To make the CLI easy to use, the various commands have been logically grouped into a series of menus and submenus. Each menu displays a list of commands and/or submenus that are available, along with a summary of what each command will do.
Operations-level commands are used for making immediate and temporary changes to switch configuration. This menu is used for bringing ports temporarily in and out of service. This menu is available only from an administrator and operator login. • Boot Options Menu The Boot Options Menu is available only from an administrator login. This menu is used for upgrading switch software, selecting configuration blocks, and for resetting the switch when necessary.
Table 4 Global commands Command Action save Saves the active configuration to backup, and saves the current configuration as active. save n saves the current configuration as active, without saving the active configuration to backup. revert Removes changes that have been made, but not applied. revert apply removes all changes that have not been saved. Exit or quit Exits from the command line interface and logs out. ping Verifies station-to-station connectivity across the network.
Command line history and editing Using the command line interface, you can retrieve and modify previously entered commands with just a few keystrokes. The following options are available globally at the command line: Table 5 Command line history and editing options Option Description history Displays a numbered list of the last ten previously entered commands. !! Repeats the last entered command. !n Repeats the nth command shown on the history list.
Command line interface shortcuts The following shortcuts allow you to enter commands quickly and easily. Command stacking As a shortcut, you can type multiple commands on a single line, separated by forward slashes (/). You can connect as many commands as required to access the menu option that you want.
First-time configuration Introduction This chapter describes how to perform first-time configuration and how to change system passwords. To begin first-time configuration of the switch, perform the following steps. 1. Connect to the switch console. After connecting, the login prompt displays. HP 10Gb Ethernet BL-c Switch Copyright(C)2006 Hewlett-Packard Development Company, L.P. Password: 2. Enter admin as the default administrator password.
Configuring Simple Network Management Protocol support NOTE: SNMP support is enabled by default. 1. Use the following command to enable SNMP: >> # /cfg/sys/access/snmp disable|read only|read/write 2. Set SNMP read or write community string. By default, they are public and private respectively: >> # /cfg/sys/ssnmp/rcomm|wcomm 3. When prompted, enter the proper community string. 4. Apply and save configuration if you are not configuring the switch with Telnet support.
3. From the Configuration Menu, use the following command to select the System Menu: >> Configuration# sys The System Menu is displayed. [System Menu] syslog sshd radius tacacs+ ntp ssnmp access date time timezone olddst dlight idle notice bannr hprompt bootp dhcp reminders cur 4.
Changing the default user password The user login has limited control of the switch. Through a user account, you can view switch information and statistics, but you cannot make configuration changes. The default password for the user account is user. This password cannot be changed from the user account. Only the administrator has the ability to change passwords, as shown in the following procedure. 1. Connect to the switch and log in using the admin password. 2.
Only the administrator can change the user password. Entering the administrator password confirms your authority. Changing OPERATOR password; validation required... Enter current administrator password: 6. Enter the new operator password at the prompt: Enter new operator password: 7. Enter the new operator password, again, at the prompt: Re-enter new operator password: 8.
Information Menu Introduction You can view configuration information for the switch in the user, operator, and administrator command modes. This chapter discusses how to use the CLI to display switch information.
Table 6 Information Menu options Command Usage port Displays port status information, including: • • • • • Port number Whether the port uses VLAN tagging or not Port VLAN ID (PVID) Port name VLAN membership transcvr Displays the status of the Small Form Pluggable (SFP) module on each Fiber External Port. ufd Displays Uplink Failure Detection information. sfd Displays Server Link Failure Detection information.
Table 7 System Information Menu options Command Usage user Displays the User Access Information Menu. dump Dumps all switch information available from the Information Menu (10K or more, depending on your configuration).
SNMPv3 USM User Table information Command: /info/sys/snmpv3/usm usmUser Table: User Name -------------------------------adminmd5 adminsha v1v2only Protocol -------------------------------HMAC_MD5, DES PRIVACY HMAC_SHA, DES PRIVACY NO AUTH, NO PRIVACY The User-based Security Model (USM) in SNMPv3 provides security services such as authentication and privacy of messages. This security model makes use of a defined set of user identities displayed in the USM user table.
The following table describes the SNMPv3 View Table information. Table 10 View Table parameters Field Description View Name Displays the name of the view. Subtree Displays the MIB subtree as an OID string. A view subtree is the set of all MIB object instances which have a common Object Identifier prefix to their names. Mask Displays the bit mask. Type Displays whether a family of view subtrees is included or excluded from the MIB view.
SNMPv3 Group Table information Command: /info/sys/snmpv3/group Sec Model --------snmpv1 usm usm User Name ----------------------------v1v2only adminmd5 adminsha Group Name -------------------v1v2grp admingrp admingrp A group is a combination of security model and security name that defines the access rights assigned to all the security names belonging to that group. The group is identified by a group name. The following table describes the SNMPv3 Group Table information.
SNMPv3 Target Address Table information Command: /info/sys/snmpv3/taddr Name ---------trap1 Transport Addr --------------47.81.25.66 Port ---162 Taglist ---------v1v2trap Params --------------v1v2param This command displays the SNMPv3 target address table information, which is stored in the SNMP engine. The following table describes the SNMPv3 Target Address Table information.
SNMPv3 Notify Table information Command: /info/sys/snmpv3/notify Name Tag -------------------- -------------------v1v2trap v1v2trap The following table describes the SNMPv3 Notify Table information. Table 16 SNMPv3 Notify Table Field Description Name The locally arbitrary, but unique identifier associated with this snmpNotifyEntry. Tag This represents a single tag value which is used to select entries in the snmpTargetAddrTable.
SNMPv3 dump Command: /info/sys/snmpv3/dump Engine ID = 80:00:07:50:03:00:0F:6A:F8:EF:00 usmUser Table: User Name Protocol -------------------------------- -------------------------------admin NO AUTH, NO PRIVACY adminmd5 HMAC_MD5, DES PRIVACY adminsha HMAC_SHA, DES PRIVACY v1v2only NO AUTH, NO PRIVACY vacmAccess Table: Group Name Prefix Model ---------- ------ ------admin usm v1v2grp snmpv1 admingrp usm Level -----------noAuthNoPriv noAuthNoPriv authPriv Match -----exact exact exact ReadV ------org org o
System information Command: /info/sys/gen System Information at 6:56:22 Thu Jan 10, 2008 Time zone: America/US/Pacific HP 10Gb Ethernet BL-c Switch sysName: sysLocation: RackName: Default Rack Name EnclosureName: Default Chassis Name BayNumber: 1 Switch has been up for 3 days, 14 hours, 56 minutes and 22 seconds. Last boot: 17:25:38 Mon Jan 8, 2007 (software reset) MAC address: 00:10:00:01:00:01 IP (If 1) address: 10.14.4.
Show last 100 syslog messages Command: /info/sys/log Date ---Jul 8 Jul 8 Jul 8 Jul 8 Jul 8 Jul 8 Jul 8 Jul 8 Jul 8 Jul 8 Jul 8 Jul 8 Jul 8 Jul 8 Jul 8 Jul 8 Jul 8 Jul 8 Jul 8 Jul 8 Time ---17:25:41 17:25:41 17:25:41 17:25:41 17:25:41 17:25:41 17:25:41 17:25:41 17:25:41 17:25:41 17:25:41 17:25:41 17:25:41 17:25:41 17:25:42 17:25:42 17:25:42 17:25:42 17:25:42 17:25:42 Severity level ----------------NOTICE NOTICE NOTICE NOTICE NOTICE NOTICE NOTICE NOTICE NOTICE NOTICE NOTICE NOTICE NOTICE NOTICE NOTICE NOTIC
System user information Command: /info/sys/user Usernames: user - enabled oper - disabled admin - Always Enabled Current User ID table: 1: name tech1 , ena, cos user 2: name tech2 , ena, cos user , password valid, online , password valid, offline The following table describes the User Name information. Table 17 User Name information menu Field Usage user Displays the status of the user access level. oper Displays the status of the oper (operator) access level.
Layer 2 information Command: /info/l2 [Layer 2 Menu] fdb lacp hotlink 8021x stp cist trunk vlan uplink dump - Forwarding Database Information Menu Link Aggregation Control Protocol Menu Show Hot Links information Show 802.1X information Show STP information Show CIST information Show Trunk Group information Show VLAN information Show uplink information Dump all layer 2 information The following table describes the Layer 2 Information Menu options.
Table 18 Layer 2 Information Menu options Command Usage vlan Displays VLAN configuration information, including: • • • • VLAN Number VLAN Name Status Port membership of the VLAN uplink Displays the status of Spanning Tree Uplink Fast. dump Dumps all switch information available from the Layer 2 menu (10K or more, depending on your configuration).
Show all FDB information Command: /info/l2/fdb/dump MAC address ----------------00:02:01:00:00:00 00:02:01:00:00:01 00:02:01:00:00:02 00:02:01:00:00:03 00:02:01:00:00:04 00:02:01:00:00:05 00:02:01:00:00:06 00:02:01:00:00:07 00:02:01:00:00:08 00:02:01:00:00:09 00:02:01:00:00:0a 00:02:01:00:00:0b 00:02:01:00:00:0c VLAN ---300 300 300 300 300 300 300 300 300 300 300 300 300 Port ---- Trnk ---1 20 20 20 20 20 20 20 20 20 20 20 20 State ----TRK FWD FWD FWD FWD FWD FWD FWD FWD FWD FWD FWD FWD An address tha
LACP dump Command: /info/l2/lacp/dump >> LACP# dump port lacp adminkey operkey selected prio attached trunk aggr -----------------------------------------------------------------1 off 1 1 n 32768 --2 off 2 2 n 32768 --3 off 3 3 n 32768 --4 off 4 4 n 32768 --5 off 5 5 n 32768 --6 off 6 6 n 32768 --7 off 7 7 n 32768 --8 off 8 8 n 32768 --… LACP dump includes the following information for each port in the switch: • • • • • • • lacp—Displays the port’s LACP mode (active, passive, or off) adminkey—Display
802.
Table 21 802.1X information Field Description Authenticator PAE State Displays the Authenticator Port Access Entity State. The PAE state can be one of the following: • • • • • • • • Backend Auth State initialize disconnected connecting authenticating authenticated aborting held forceAuth Displays the Backend Authorization State.
Spanning Tree information Command: /info/l2/stp -----------------------------------------------------------------upfast disabled, update 40 BPDU Guard disabled Pvst+ compatibility mode enabled -----------------------------------------------------------------Spanning Tree Group 1: On (STP/PVST+) VLANs: 1 Current Root: 8000 00:02:a5:d1:0f:ed Parameters: Port ---1 2 3 Priority 32768 Priority -------0 0 0 Cost ---0 0 0 Path-Cost 8 Hello 2 FastFwd -------n n n MaxAge 20 Port 20 FwdDel 15 Hello MaxAge Fw
You can also refer to the following port-specific STP information: • • • • • • Port number and priority Cost State Port Fast Forwarding state Designated bridge Designated port The following table describes the STP parameters. Table 22 STP parameters Parameters Description Current Root Shows information about the root bridge for the Spanning Tree. Information includes the priority (hex) and MAC address of the root. Path-Cost Path-cost is the total path cost to the root bridge.
Rapid Spanning Tree / Multiple Spanning Tree information Command: /info/l2/stp -----------------------------------------------------------------upfast disabled, update 40 BPDU Guard disabled Pvst+ compatibility mode enabled -----------------------------------------------------------------Spanning Tree Group 1: On (RSTP) VLANs: 1-3 Current Root: 8000 00:00:01:00:19:00 Parameters: Port ---1 2 3 4 5 6 7 8 9 10 11 12 Prio ---0 0 0 0 0 0 0 0 0 0 0 0 Priority 32768 Cost ---0 0 0 0 0 0 0 0 0 0 0 0 Path-Cost 0
The following table describes the STP parameters in RSTP or MSTP mode. Table 23 Rapid Spanning Tree parameter descriptions Parameter Description Current Root Shows information about the root bridge for the Spanning Tree. Information includes the priority (hex) and MAC address of the root. Path-Cost Path-cost is the total path cost to the root bridge. It is the summation of the path cost between bridges (up to the root bridge).
Common Internal Spanning Tree information Command: /info/l2/cist Mstp Digest: 0xac36177f50283cd4b83821d8ab26de62 Common Internal Spanning Tree: VLANs MAPPED: 1-16 18-31 33-4094 VLANs: 1 25 26 4095 Current Root: 8000 00:03:42:fa:3b:80 Path-Cost 0 Port 1 MaxAge 20 FwdDel 15 CIST Regional Root: Path-Cost 8000 00:03:42:fa:3b:81 11 Parameters: Port ---1 2 3 4 5 6 7 8 9 10 11 12 ...
The following table describes the CIST parameters. Table 24 Common Internal Spanning Tree parameter description Parameter Description CIST Root Shows information about the root bridge for the Common Internal Spanning Tree (CIST). Values on this row of information refer to the CIST root. CIST Regional Root Shows information about the root bridge for this MSTP region. Values on this row of information refer to the regional root.
Trunk group information Command: /info/l2/trunk Trunk group 1, Enabled port state: 20: STG 1 forwarding 21: STG 1 forwarding When trunk groups are configured, you can view the state of each port in the various trunk groups. NOTE: If Spanning Tree Protocol on any port in the trunk group is set to forwarding, the remaining ports in the trunk group will also be set to forwarding.
This information display includes all configured VLANs and all member ports that have an active link state. VLAN information includes: • • • • • • VLAN Number VLAN Name Status Port membership of the VLAN Protocol VLAN information Private VLAN information Fast Uplink Convergence status Command: /info/l2/uplink STP uplink fast mode : disabled The following table describes the status of Fast Uplink Convergence.
Layer 3 information Command: /info/l3 [Layer 3 Menu] route arp ospf rip ip igmp vrrp sm dump - IP Routing Information Menu ARP Information Menu OSPF Routing Information Menu RIP Routing Information Menu Show IP information Show IGMP Snooping Multicast Group information Show Virtual Router Redundancy Protocol information Server Mobility Information Menu Dump all layer 3 information The following table describes the Layer 3 Information Menu options.
Route information Command: /info/l3/route [IP Routing Menu] find - Show gw - Show type - Show tag - Show if - Show dump - Show a single route by destination IP address routes to a single gateway routes of a single type routes of a single tag routes on a single interface all routes Using the commands listed below, you can display all or a portion of the IP routes currently held in the switch. Table 27 Route Information menu options Command Usage find Displays a single route by IP address.
The following table describes the Type parameter. Table 28 IP Routing Type information Field Description indirect The next hop to the host or subnet destination will be forwarded through a router at the Gateway address. direct Packets will be delivered to a destination host or subnet attached to the switch. local Indicates a route to one of the switch’s IP interfaces. broadcast Indicates a broadcast route. martian The destination belongs to a host or subnet which is filtered out.
ARP information Command: /info/arp [Address Resolution Protocol Menu] find - Show a single ARP entry by IP address port - Show ARP entries on a single port vlan - Show ARP entries on a single VLAN addr - Show ARP entries for switch's interfaces dump - Show all ARP entries The Address Resolution Protocol (ARP) information includes IP address and MAC address of each entry, address status flags, VLAN, and port for the address, and port referencing information.
ARP address list information Command: /info/arp/addr IP address --------------205.178.18.66 205.178.50.1 205.178.18.64 IP mask --------------255.255.255.255 255.255.255.255 255.255.255.255 MAC address VLAN Flags ----------------- ---- ----00:70:cf:03:20:04 P 00:70:cf:03:20:06 1 00:70:cf:03:20:05 1 This screen displays all entries in the ARP cache.
OSPF general information Command: /info/l3/ospf/general OSPF Version 2 Router ID: 10.10.10.
OSPF Database information menu Command: /info/l3/ospf/dbase [OSPF Database Menu] advrtr - LS Database info for an Advertising Router asbrsum - ASBR Summary LS Database info dbsumm - LS Database summary ext - External LS Database info nw - Network LS Database info nssa - NSSA External LS Database info rtr - Router LS Database info self - Self Originated LS Database info summ - Network-Summary LS Database info all - All The following table describes the OSPF Database information menu options.
Table 33 OSPF Database information Command Usage rtr | | Displays the router (type 1) LSAs with detailed information of each field of the LSAs. The usage of this command is the same as the usage of the command asbrsum. self Displays all the self-advertised LSAs. No parameters are required. summ | | Displays the network summary (type 3) LSAs with detailed information of each field of the LSAs.
Routing Information Protocol information Command: /info/l3/rip [RIP Information Menu] routes - Show RIP routes dump - Show RIP user's configuration The following table describes the Routing Information Protocol information menu options. Table 34 RIP information Command Usage routes Displays information about RIP routes. dump <0-249> Displays RIP user’s configuration. Enter 0 (zero) for all interfaces. RIP Routes information Command: /info/l3/rip/routes >> IP Routing# /info/l3/rip/routes 3.0.0.
IP information Command: /info/l3/ip IP information: Interface information: 1: 10.80.23.243 255.255.254.0 250: 10.20.7.144 255.255.0.0 10.80.23.255, 10.20.255.255, vlan 1, up vlan 4095, up Default gateway information: metric strict 1: 10.80.22.1, vlan any, up active 254: 10.20.1.
IGMP multicast group information Command: /info/l3/igmp [IGMP Multicast mrouter find vlan port trunk detail dump - Group Menu] Show IGMP Snooping Multicast Router Port information Show a single group by IP group address Show groups on a single vlan Show groups on a single port Show groups on a single trunk Show detail of a single group by IP group address Show all groups The following table describes the commands used to display information about IGMP groups learned by the switch.
IGMP multicast router information Command: /info/l3/igmp/mrouter [IGMP Multicast Router Menu] vlan - Show all multicast router ports on a single vlan dump - Show all learned multicast router ports The following table describes the commands used to display information about multicast routers learned through IGMP Snooping. Table 36 IGMP Multicast Router menu options Command Usage vlan <1-4094> Displays information for all multicast groups on a single VLAN.
VRRP information Virtual Router Redundancy Protocol (VRRP) support on the HP 10GbE switch provides redundancy between routers in a LAN. This is accomplished by configuring the same virtual router IP address and ID number on each participating VRRP-capable routing device. One of the virtual routers is then elected as the master, based on a number of priority criteria, and assumes control of the shared virtual router IP address.
Server Mobility Port information Command: /info/l3/sm/port -----------------------------------------------------Server Mobility Port 2 Information: agent.circuit-id = 55:53:45:36:33:35:31:4d:34:36:00:00:00:00:00:00 agent.
QoS information Command: /info/qos [QoS Menu] 8021p - Show QOS 802.1p information The following table describes the commands used to display Quality of Service (QoS) information. Table 37 QoS menu options Command Usage 8021p Displays the QoS 802.1p Information Menu. 802.
The following table describes the IEEE 802.1p port priority information. Table 39 802.1p Port Priority information Field Description Port Displays the port number. Priority Displays the 802.1p Priority level. Cosq Displays the Class of Service queue. Weight Displays the scheduling weight.
RMON Information Menu Command: /info/rmon [RMON Information Menu] hist - Show RMON History group information alarm - Show RMON Alarm group information event - Show RMON Event group information dump - Show all RMON information The following table describes the RMON Information parameters. Table 40 RMON History Information Menu Command Usage hist Displays the RMON History Information menu. alarm Displays the RMON Alarm Information menu. event Displays the RMON Event Information menu.
RMON alarm information Command: /info/rmon/alarm RMON Alarm group configuration: Index ----1 2 3 4 5 8 10 11 15 18 100 Interval -------30 900 300 1800 1800 1800 1800 1800 1800 1800 1800 Type ---abs abs abs abs abs abs abs abs abs abs abs rLimit -------10 0 10 10 10 10 10 10 10 10 10 fLimit -------0 10 20 0 0 0 0 0 0 0 0 Index ----1 2 3 4 5 8 10 11 15 18 100 OID -----------------------------1.3.6.1.2.1.2.2.1.10.257 1.3.6.1.2.1.2.2.1.11.258 1.3.6.1.2.1.2.2.1.12.259 1.3.6.1.2.1.2.2.1.13.260 1.3.6.1.2.1.
Table 42 RMON Alarm Information Menu Field Description Last value Displays the last sampled value. OID Displays the MIB Object Identifier for each alarm index.
Link status information Command: /info/link -----------------------------------------------------------------Port Speed Duplex Flow Ctrl Link --------------- --TX-----RX------1 10000 full yes yes down 2 10000 full yes yes down 3 10000 full yes yes down 4 10000 full yes yes down 5 10000 full yes yes down 6 10000 full yes yes down 7 10000 full yes yes down 8 10000 full yes yes down 9 10000 full yes yes up 10 10000 full yes yes down 11 10000 full yes yes down 12 10000 full yes yes down 13 10000 full yes yes do
Port information Command: /info/port Port Tag RMON PVID NAME ---- --- ---- ---- -------------1 n d 1 Downlink1 2 n d 1 Downlink2 3 n d 1 Downlink3 4 n d 1 Downlink4 5 n d 1 Downlink5 6 n d 1 Downlink6 7 n d 1 Downlink7 8 n d 1 Downlink8 9 n d 1 Downlink9 10 n d 1 Downlink10 11 n d 1 Downlink11 12 n d 1 Downlink12 13 n d 1 Downlink13 14 n d 1*Downlink14 15 n d 1*Downlink15 16 n d 1*Downlink16 17 n d 4095 Mgmt 18 n d 1*Uplink1 19 n d 1*Uplink2 20 n d 1*Uplink3 21 n d 1*Uplink4 * = PVID is tagged.
Uplink Failure Detection information Command: /info/ufd Uplink Failure Detection: Enabled LtM status: Down Member STG STG State ---------------------port 20 1 DISABLED 10 DISABLED * 15 DISABLED * * = STP turned off for this port.
Statistics Menu Introduction You can view switch performance statistics in the user, operator, and administrator command modes. This chapter discusses how to use the CLI to display switch statistics.
Table 44 Statistics Menu options Command Usage sfd Displays Server Link Failure Detection (SFD) statistics. Add the argument, clear, to clear SFD statistics. clrmp Clears all Management Processor statistics. dump Dumps all switch statistics. Use this command to gather data for tuning and debugging switch performance. If you want to capture dump data to a file, set your communication software on your workstation to capture session data prior to issuing the dump command.
802.
Table 46 802.1X statistics for port Statistics Port authTimeoutsWhileAuthenticating Total number of times that the state machine transitions from AUTHENTICATING to ABORTING, as a result of the Backend Authentication state machine indicating authentication timeout. authFailWhileAuthenticating Total number of times that the state machine transitions from AUTHENTICATING to HELD, as a result of the Backend Authentication state machine indicating authentication failure.
Table 46 802.1X statistics for port Statistics backendAuthFails Port Total number of times that the state machine receives a Reject message from the Authentication Server. Indicates that the Supplicant has not authenticated to the Authentication Server.
Ethernet statistics Command: /stats/port /ether Ethernet statistics for port 1: dot3StatsAlignmentErrors: dot3StatsFCSErrors: dot3StatsSingleCollisionFrames: dot3StatsMultipleCollisionFrames: dot3StatsLateCollisions: dot3StatsExcessiveCollisions: dot3StatsInternalMacTransmitErrors: dot3StatsFrameTooLongs: dot3StatsInternalMacReceiveErrors: 0 0 0 0 0 0 NA 0 0 The following table describes the Ethernet statistics for a selected port: Table 48 Ethernet statistics for port Statistics Description
Table 48 Ethernet statistics for port Statistics Description dot3StatsMultipleCollisionFrames A count of successfully transmitted frames on a particular interface for which transmission is inhibited by more than one collision. A frame that is counted by an instance of this object is also counted by the corresponding instance of either the ifOutUcastPkts, ifOutMulticastPkts, or ifOutBroadcastPkts, and is not counted by the corresponding instance of the dot3StatsSingleCollisionFrames object.
Table 48 Ethernet statistics for port Statistics Description dot3StatsInternalMacReceiveErrors A count of frames for which reception on a particular interface fails due to an internal MAC sublayer receive error. A frame is only counted by an instance of this object if it is not counted by the corresponding instance of the dot3StatsFrameTooLongs object, the dot3StatsAlignmentErrors object, or the dot3StatsFCSErrors object.
Table 49 Interface statistics for port Statistics Description Errors—IfHCIn For packet-oriented interfaces, the number of inbound packets that contained errors preventing them from being delivered to a higher-layer protocol. For character-oriented or fixed-length interfaces, the number of inbound transmission units that contained errors preventing them from being deliverable to a higher-layer protocol.
Internet Protocol (IP) statistics Command: /stats/port /ip GEA IP statistics for port 1: ipInReceives : 0 ipInHeaderError: 0 ipInDiscards : 0 The following table describes the Internet Protocol (IP) statistics for a selected port: Table 50 IP statistics for port Statistics Description ipInReceives The total number of input datagrams received from interfaces, including those received in error.
Port RMON statistics Command: /stats/port /rmon RMON statistics for port 2: etherStatsDropEvents: etherStatsOctets: etherStatsPkts: etherStatsBroadcastPkts: etherStatsMulticastPkts: etherStatsCRCAlignErrors: etherStatsUndersizePkts: etherStatsOversizePkts: etherStatsFragments: etherStatsJabbers: etherStatsCollisions: etherStatsPkts64Octets: etherStatsPkts65to127Octets: etherStatsPkts128to255Octets: etherStatsPkts256to511Octets: etherStatsPkts64Octets: etherStatsPkts1024to1518Octets: NA 0 0 0 0
Table 52 RMON statistics Statistics Description etherStatsFragments The total number of packets received that were less than 64 octets in length (excluding framing bits but including FCS octets) and had either a bad Frame Check Sequence (FCS) with an integral number of octets (FCS Error) or a bad FCS with a non-integral number of octets (Alignment Error).
Layer 2 statistics Command: /stats/l2 [Layer 2 Statistics Menu] fdb - Show FDB stats lacp - Show LACP stats hotlink - Show Hot Links stats The following table describes the Layer 2 Statistics Menu options. Table 53 Layer 2 Statistics Menu options Command Usage fdb Displays the Forwarding Database statistics menu. lacp Displays the Link Aggregation Control Protocol statistics menu. hotlink Displays Hot Links statistics.
Hot Links statistics Command: /stats/l2/hotlink Trigger 1 statistics: Trigger Name: Trigger 1 Master active: Backup active: FDB update: 0 0 0 failed: 0 The following table describes the Hot Links statistics: Table 55 Hot Links statistics Statistic Description Master active Total number of times the Master interface transitioned to the Active state. Backup active Total number of times the Backup interface transitioned to the Active state. FDB update Total number of FDB update requests sent.
Layer 3 statistics Command: /stats/l3 [Layer 3 Statistics Menu] geal3 - GEA Layer 3 Stats Menu ip - Show IP stats route - Show route stats arp - Show ARP stats dns - Show DNS stats icmp - Show ICMP stats tcp - Show TCP stats udp - Show UDP stats igmp - Show IGMP stats ospf - OSPF stats vrrp - Show VRRP stats clrvrrp - Clear VRRP stats rip - Show RIP stats igmpgrps - Total number of IGMP groups ipmcgrps - Total number of IPMC groups clrigmp - Clear IGMP stats ipclear - Clear IP stats ripclear - Clear RIP sta
Table 56 Layer 3 Statistics Menu options Command Usage ipmcgrps Displays the total number of Internet Protocol Multicast (IPMC) groups registered on the switch. clrigmp <1-4094>|all Clears all IGMP statistics for the selected VLANs. ipclear Clears IP statistics. Use this command with caution as it will delete all the IP statistics. ripclear Clears all Routing Information Protocol (RIP) statistics. ospfclear Clears all Open Shortest Path First (OSPF) statistics.
IP statistics Command: /stats/l3/ip IP statistics: ipInReceives: 36475 ipInAddrErrors: 905 ipInUnknownProtos: 0 ipInDelivers: 4103 ipOutDiscards: 0 ipDefaultTTL: 255 ipInHdrErrors: 0 ipInDiscards: 0 ipOutRequests: 30974 The following table describes the IP statistics: Table 58 IP statistics Statistics Description ipInReceives The total number of input datagrams received from interfaces, including those received in error.
Route statistics Command: /stats/l3/route Route statistics: ipRoutesCur: ipRoutesMax: 8 4096 ipRoutesHighWater: 8 The following table describes the Route statistics: Table 59 Route statistics Statistics Description ipRoutesCur The total number of outstanding routes in the route table. ipRoutesMax The maximum number of supported routes. ipRoutesHighWater The highest number of routes ever recorded in the route table.
ICMP statistics Command: /stats/l3/icmp ICMP statistics: icmpInMsgs: icmpInDestUnreachs: icmpInParmProbs: icmpInRedirects: icmpInEchoReps: icmpInTimestampReps: icmpInAddrMaskReps: icmpOutErrors: icmpOutTimeExcds: icmpOutSrcQuenchs: icmpOutEchos: icmpOutTimestamps: icmpOutAddrMasks: 245802 41 0 0 244350 0 0 0 0 0 253777 0 0 icmpInErrors: icmpInTimeExcds: icmpInSrcQuenchs: icmpInEchos: icmpInTimestamps: icmpInAddrMasks: icmpOutMsgs: icmpOutDestUnreachs: icmpOutParmProbs: icmpOutRedirects: icmpOutEchoReps: i
Table 62 ICMP statistics Statistics Description icmpOutDestUnreachs The number of ICMP Destination Unreachable messages sent. icmpOutTimeExcds The number of ICMP Time Exceeded messages sent. icmpOutParmProbs The number of ICMP Parameter Problem messages sent. icmpOutSrcQuenchs The number of ICMP Source Quench (buffer almost full, stop sending data) messages sent. icmpOutRedirects The number of ICMP Redirect messages sent. icmpOutEchos The number of ICMP Echo (request) messages sent.
Table 63 TCP statistics Statistics Description tcpRtoMax The maximum value permitted by a TCP implementation for the retransmission timeout, measured in milliseconds. More refined semantics for objects of this type depend upon the algorithm used to determine the retransmission timeout. In particular, when the timeout algorithm is rsre(3), an object of this type has the semantics of the UBOUND quantity described in RFC 793.
UDP statistics Command: /stats/l3/udp UDP statistics: udpInDatagrams: udpInErrors: 54 0 udpOutDatagrams: udpNoPorts: 43 1578077 The following table describes the User Datagram Protocol (UDP) statistics: Table 64 UDP statistics Statistics Description udpInDatagrams The total number of UDP datagrams delivered to the switch. udpOutDatagrams The total number of UDP datagrams sent from this switch.
Table 65 IGMP statistics Statistic Description rxIgmpReports Total number of Membership Reports received txIgmpReports Total number of Membership reports transmitted txIgmpGrpSpecificQueries Total number of Membership Query packets transmitted to specific groups txIgmpLeaves Total number of Leave messages transmitted rxIgmpV3CurrentStateRecords Total number of Current State records received rxIgmpV3SourceListChangeRecords Total number of Source List Change records received rxIgmpV3FilterChange
OSPF global statistics Command: /stats/l3/ospf/general OSPF stats ---------Rx/Tx Stats: Pkts hello database ls requests ls acks ls updates Nbr change stats: hello start n2way adjoint ok negotiation done exchange done bad requests bad sequence loading done n1way rst_ad down Timers kickoff hello retransmit lsa lock lsa ack dbage summary ase export Rx -------0 23 4 3 7 9 2 0 2 2 2 2 0 0 2 0 0 1 Tx -------0 518 12 1 7 7 Intf change Stats: up 4 down 2 loop 0 unloop 0 wait timer 2 backup 0 nbr change 5 514 102
Table 67 OSPF global statistics Statistic Description Rx ls Acks The sum total of all Link State Acknowledgement packets received on all OSPF areas and interfaces. Tx ls Acks The sum total of all Link State Acknowledgement packets transmitted on all OSPF areas and interfaces. Rx ls Updates The sum total of all Link State Update packets received on all OSPF areas and interfaces. Tx ls Updates The sum total of all Link State Update packets transmitted on all OSPF areas and interfaces.
Table 67 OSPF global statistics Statistic Description down The total number of Neighboring routers down (that is, in the initial state of a neighbor conversation) across all OSPF areas and interfaces. Intf Change Stats: up The sum total number of interfaces up in all OSPF areas. down The sum total number of interfaces down in all OSPF areas. loop The sum total of interfaces no longer connected to the attached network across all OSPF areas and interfaces.
VRRP statistics Virtual Router Redundancy Protocol (VRRP) support on the HP 10GbE switch provides redundancy between routers in a LAN. This is accomplished by configuring the same virtual router IP address and ID number on each participating VRRP-capable routing device. One of the virtual routers is then elected as the master, based on a number of priority criteria, and assumes control of the shared virtual router IP address.
RIP statistics Command: /stats/l3/rip RIP ALL STATS INFORMATION: RIP packets received = 12 RIP packets sent = 75 RIP request received = 0 RIP response received = 12 RIP request sent = 3 RIP response sent = 72 RIP route timeout = 0 RIP bad size packet received = 0 RIP bad version received = 0 RIP bad zeros received = 0 RIP bad src port received = 0 RIP bad src IP received = 0 RIP packets from self received = 0 Statistics Menu 99
Management Processor statistics Command: /stats/mp [MP-specific Statistics Menu] pkt - Show Packet stats tcb - Show All TCP control blocks in use ucb - Show All UDP control blocks in use cpu - Show CPU utilization The following table describes the Statistics Menu options for the management processor (MP): Table 69 MP-specific Statistics Menu options Command Usage pkt Displays packet statistics, to check for leads and load.
Table 70 MP specific packet statistics Description Example statistic smalls hi-watermark The highest number of packet allocation with size less than 128 bytes from the packet buffer pool by the TCP/IP protocol stack. failures Total number of packet allocation failures from the packet buffer pool by the TCP/IP protocol stack. TCP statistics Command: /stats/mp/tcb All TCP allocated control blocks: 10ad41e8: 0.0.0.0 0 <=> 0.0.0.0 10ad5790: 47.81.27.5 1171 <=> 47.80.23.
CPU statistics Command: /stats/mp/cpu CPU utilization: cpuUtil1Second: cpuUtil4Seconds: cpuUtil64Seconds: 8% 9% 8% The following table describes the management port CPU utilization statistics: Table 73 CPU statistics Statistics Description cpuUtil1Second The utilization of MP CPU over 1 second. This is shown as a percentage. cpuUtil4Seconds The utilization of MP CPU over 4 seconds. This is shown as a percentage. cpuUtil64Seconds The utilization of MP CPU over 64 seconds.
SNMP statistics Command: /stats/snmp SNMP statistics: snmpInPkts: snmpInBadC'tyNames: snmpInASNParseErrs: snmpOutPkts: snmpInTooBigs: snmpInBadValues: snmpInGenErrs: snmpInTotalSetVars: snmpInGetNexts: snmpInGetResponses: snmpOutTooBigs: snmpOutBadValues: snmpOutGenErrs: snmpOutGetNexts: snmpOutGetResponses: snmpSilentDrops: 54 0 0 54 0 0 0 0 52 0 0 0 0 0 54 0 snmpInBadVersions: snmpInBadC'tyUses: snmpEnableAuthTraps: snmpInBadTypes: snmpInNoSuchNames: snmpInReadOnlys: snmpInTotalReqVars: snmpInGetRequest
Table 75 SNMP statistics Statistics Description snmpInTooBigs The total number of SNMP Protocol Data Units (PDUs) that were delivered to the SNMP protocol entity and for which the value of the error-status field is too big. snmpInNoSuchNames The total number of SNMP Protocol Data Units (PDUs) that were delivered to the SNMP protocol entity and for which the value of the error-status field is noSuchName.
Table 75 SNMP statistics Statistics Description snmpOutGetRequests The total number of SNMP Get-Request Protocol Data Units (PDUs), which have been generated by the SNMP protocol entity. snmpOutGetNexts The total number of SNMP Get-Next Protocol Data Units (PDUs), which have been generated by the SNMP protocol entity. snmpOutSetRequests The total number of SNMP Set-Request Protocol Data Units (PDUs), which have been generated by the SNMP protocol entity.
The following table describes the NTP statistics: Table 76 NTP statistics Statistics Description Primary Server • Requests Sent—The total number of NTP requests the switch sent to the primary NTP server to synchronize time. • Responses Received—The total number of NTP responses received from the primary NTP server. • Updates—The total number of times the switch updated its time based on the NTP responses received from the primary NTP server.
Statistics dump Command: /stats/dump Use the dump command to dump all switch statistics available from the Statistics Menu (40K or more, depending on your configuration). This data can be used to tune or debug switch performance. If you want to capture dump data to a file, set your communication software on your workstation to capture session data prior to issuing the dump commands.
Configuration Menu Introduction The Configuration Menu is only available from an administrator login. It includes submenus for configuring every aspect of the switch. Changes to configuration are not active until explicitly applied. Changes can be saved to non-volatile memory (NVRAM).
Table 78 Configuration Menu options Command Usage ptcfg Backs up current configuration to FTP/TFTP server. gtcfg Restores current configuration from FTP/TFTP server. cur Displays the current configuration parameters.
Saving the configuration In addition to applying the configuration changes, you can save them to flash memory on the switch. IMPORTANT: If you do not save the changes, they will be lost the next time the system is rebooted. To save the new configuration, enter the following command at any prompt: # save When you save configuration changes, the changes are saved to the active configuration block. The configuration being replaced by the save is first copied to the backup configuration block.
System configuration Command: /cfg/sys [System Menu] syslog sshd radius tacacs+ ntp ssnmp access date time timezone olddst dlight idle notice bannr hprompt bootp dhcp reminders cur - Syslog Menu SSH Server Menu RADIUS Authentication Menu TACACS+ Authentication Menu NTP Server Menu System SNMP Menu System Access Menu Set system date Set system time Set system timezone (daylight savings) Set system DST for US Set system daylight savings Set timeout for idle CLI sessions Set login notice Set login banner Ena
Table 79 System Configuration Menu options Command Usage dlight enable|disable Enables or disables daylight savings time in the system clock. When enabled, the switch adds an extra hour to the system clock so that it is consistent with the local clock. The default setting is disabled. idle <1-60> Sets the idle timeout for CLI sessions, from 1 to 60 minutes. The default value is 5 minutes. This setting affects both the console port and Telnet port.
The following table describes the Syslog Configuration Menu options. Table 80 Syslog Configuration Menu options Command Description host Sets the IP address of the first syslog host. For example, 100.10.1.1. host2 Sets the IP address of the second syslog host. For example, 100.10.1.2. sever <1-7> Sets the severity level of the first syslog host displayed. The default is 7, which means log all the severity levels.
Secure Shell Server configuration Command: /cfg/sys/sshd [SSHD Menu] interval– scpadm – hkeygen skeygen sshport ena dis on off cur - Set Interval for generating the RSA server key Set SCP-only admin password Generate the RSA host key Generate the RSA server key Set SSH server port number Enable the SCP apply and save Disable the SCP apply and save Turn SSH server ON Turn SSH server OFF Display current SSH server configuration Telnet traffic on the network is not secure.
Table 81 SSHD Configuration Menu options Command Description off Disables the SSH server. This is the default for the SSH server. cur Displays the current SSH server configuration.
Table 82 RADIUS Server Configuration Menu options Command Description on Enables the RADIUS server. off Disables the RADIUS server. This is the default. cur Displays the current RADIUS server parameters. IMPORTANT: If RADIUS is enabled, you must login using RADIUS authentication when connecting via the console or Telnet/SSH/HTTP/HTTPS.
TACACS+ offers the following advantages over RADIUS as the authentication device: • • • TACACS+ is TCP-based, so it facilitates connection-oriented traffic. It supports full-packet encryption, as opposed to password-only in authentication requests. It supports decoupled authentication, authorization, and accounting. The following table describes the TACACS+ Server Configuration Menu options.
IMPORTANT: If TACACS+ is enabled, you must login using TACACS+ authentication when connecting via the console or Telnet/SSH/HTTP/HTTPS. Backdoor for console is always enabled, so you can connect using notacacs and the administrator password even if the backdoor (bckdoor) or secure backdoor (secbd) are disabled. If Telnet backdoor is enabled (bckdoor ena), type notacacs as a backdoor to bypass TACACS+ checking, and use the administrator password to log into the switch.
System SNMP configuration Command: /cfg/sys/ssnmp [SNMP Menu] snmpv3 name locn cont rcomm wcomm timeout auth linkt ufd cur - SNMPv3 Menu Set SNMP "sysName" Set SNMP "sysLocation" Set SNMP "sysContact" Set SNMP read community string Set SNMP write community string Set timeout for the SNMP state machine Enable/disable SNMP "sysAuthenTrap" Enable/disable SNMP link up/down trap Enable/disable SNMP Uplink Failure Detection trap Display current SNMP configuration The switch software supports SNMP-based network
Table 85 System SNMP Configuration Menu options Command Description wcomm <1-32 characters> Configures the SNMP write community string. The write community string controls SNMP “set” and “get” access to the switch. It can have a maximum of 32 characters. The default write community string is private. timeout <1-30> Sets the timeout value for the SNMP state machine. The range is 1-30 minutes. The default value is 5 minutes.
The following table describes the SNMPv3 Configuration Menu options. Table 86 SNMPv3 Configuration Menu options Command Description usm <1-16> Configures a user security model (USM) entry for an authorized user. You can also configure this entry through SNMP. The range is 1-16. view <1-128> Configures different MIB views. The range is 1-128. access <1-32> Configures access rights.
The following table describes the User Security Model Configuration Menu options. Table 87 User Security Model Configuration Menu options Command Description name <1-32 characters> Configures a string up to 32 characters long that represents the name of the user. This is the login name that you need in order to access the switch. auth md5|sha|none Configures the authentication protocol between HMAC-MD5-96 or HMACSHA-96. The default algorithm is none.
Table 88 SNMPv3 View Configuration Menu options Command Description del Deletes the vacmViewTreeFamily group entry. cur Displays the current vacmViewTreeFamily configuration.
SNMPv3 Group configuration Command: /cfg/sys/ssnmp/snmpv3/group [SNMPv3 vacmSecurityToGroup 1 Menu] model - Set security model uname - Set USM user name gname - Set group name del - Delete vacmSecurityToGroup entry cur - Display current vacmSecurityToGroup configuration The following table describes the SNMPv3 Group Configuration Menu options. Table 90 SNMPv3 Group Configuration Menu options Command Description model usm|snmpv1|snmpv2 Defines the security model.
Table 91 SNMPv3 Community Table Configuration Menu options Command Description tag <1-255 characters> Configures a tag of up to 255 characters maximum. This tag specifies a set of transport endpoints to which a command responder application sends an SNMP trap. del Deletes the community table entry. cur Displays the community table configuration.
SNMPv3 Target Parameters Table configuration Command: /cfg/sys/ssnmp/snmpv3/tparam [SNMPv3 snmpTargetParamsTable 1 Menu] name - Set targetParams name mpmodel - Set message processing model model - Set security model uname - Set USM user name level - Set minimum level of security del - Delete targetParamsTable entry cur - Display current targetParamsTable configuration You can configure the target parameters entry and store it in the target parameters table in the SNMP engine.
SNMPv3 Notify Table configuration Command: /cfg/sys/ssnmp/snmpv3/notify [SNMPv3 snmpNotifyTable 1 Menu] name - Set notify name tag - Set notify tag del - Delete notifyTable entry cur - Display current notifyTable configuration SNMPv3 uses Notification Originator to send out traps. A notification typically monitors a system for particular events or conditions, and generates Notification-Class messages based on these events or conditions.
Table 95 System Access Configuration Menu options Command Description wport Sets the switch port used for serving switch Web content. The default is HTTP port 80. snmp disable|readonly|read-write Disables or provides read-only/write-read SNMP access. tsbbi enable|disable Enables or disables BBI configuration control s for Telnet and SSH. tnet disable|enable Enables or disables Telnet access. You see this command only if you are connected to the switch through a serial connection.
User Access Control configuration Command: /cfg/sys/access/user [User Access Control Menu] uid - User ID Menu eject - Eject user usrpw - Set user password (user) opw - Set operator password (oper) admpw - Set administrator password (admin) cur - Display current user status The following table describes the User Access Control menu options. Table 97 User Access Control Configuration menu options Command Description uid <1-10> Displays the User ID Menu for the selected user.
Table 98 User ID Configuration menu options Command Description ena Enables the user ID. dis Disables the user ID. del Deletes the user ID. cur Displays the current user ID parameters.
Port configuration Command: /cfg/port [Port 1 Menu] gig aclqos stp 8021ppri pvid name rmon tag tagpvid brate mrate drate ena dis cur - Gig Phy Menu Acl/Qos Configuration Menu STP Menu - for PVRST only Set default 802.1p priority Set default port VLAN id Set port name Enable/Disable RMON for port Enable/disable VLAN tagging for port Enable/disable tagging on pvid Set BroadCast Threshold Set MultiCast Threshold Set Dest.
Table 100 Port Configuration Menu options Command Description mrate <0-262143>|dis Limits the number of multicast packets per second to the specified value. If disabled (dis), the port forwards all multicast packets. drate <0-262143>|dis Limits the number of unknown unicast packets per second to the specified value. If disabled (dis), the port forwards all unknown unicast packets. ena Enables the port. dis Disables the port.
The following table describes the Gigabit Link Configuration Menu options. Table 101 Gigabit Link Configuration Menu options Command Description speed 100|10000 Sets the link speed. All downlink and uplink ports are fixed at 10000 Mbps, and cannot be changed. Management port 17 is fixed at 100 Mbps. Sets the operating mode, as follows: mode • Full-duplex All ports are fixed at full duplex, and cannot be changed. fctl rx|tx|both|none Sets the flow control.
Port PVRST configuration Command: /cfg/port /stp [Port 1 STP Menu] edge - Enable/disable edge port (for PVRST only) link - Set port link type (auto, p2p, or shared; default: auto) (for PVRST only) cur - Display current port stp configuration The following table describes the port PVRST Configuration Menu options. Table 103 Port PVRST Configuration Menu options Command Description edge enable|disable Enables or disables this port as an edge port.
Layer 2 configuration Command: /cfg/l2 [Layer 2 Menu] 8021x mrst stp fdb trunk thash lacp hotlink vlan pvstcomp bpdugrd upfast update cur - 802.
802.1X configuration Command: /cfg/l2/8021x [802.1X Configuration Menu] global - Global 802.1X configuration menu port - Port 802.1X configuration menu ena - Enable 802.1X access control dis - Disable 802.1X access control cur - Show 802.1X configuration This feature allows you to configure the HP 10GbE switch as an IEEE 802.1X Authenticator, to provide port-based network access control. The following table describes the 802.1X Configuration Menu options. Table 105 802.
802.1X Global configuration Command: /cfg/l2/8021x/global [802.
802.1X Port configuration Command: /cfg/l2/8021x/port [802.
Table 107 802.1X Port Configuration Menu options Command Description reauth on|off Sets the re-authentication status to on or off. The default value is off. default Resets the global 802.1X parameters to their default values. global Applies the global 802.1X parameters to the port. cur Displays current 802.1X parameters.
Rapid Spanning Tree Protocol/ Multiple Spanning Tree Protocol configuration Command: /cfg/l2/mrst [Multiple Spanning Tree Menu] cist - Common and Internal Spanning Tree menu name - Set MST region name rev - Set revision level of this MST region maxhop - Set Maximum Hop Count for MST (4 - 60) mode - Spanning Tree Mode on - Globally turns RSTP/MSTP ON off - Globally turns RSTP/MSTP OFF cur - Display current MST parameters The switch supports the IEEE 802.1w Rapid Spanning Tree Protocol (RSTP) and IEEE 802.
NOTE: • IEEE 802.1w standard-based RSTP implementation runs on one STG (i.e. same as one spanning tree instance) only. As a result, if ‘rstp’ mode is selected under the /cfg/mrst/mode command, then only a single RSTP instance (default for STG 1) is supported for all VLANs, including the Default VLAN 1. • If multiple spanning tree instances are required, then select ‘mstp’ mode so that multiple VLANs are handled by multiple spanning tree instances, as specified by IEEE 802.
CIST bridge configuration Command: /cfg/l2/mrst/cist/brg [CIST Bridge Menu] prior - Set CIST bridge mxage - Set CIST bridge fwd - Set CIST bridge cur - Display current Priority (0-65535) Max Age (6-40 secs) Forward Delay (4-30 secs) CIST bridge parameters CIST bridge parameters are used only when the switch is in MSTP mode. CIST parameters do not affect operation of STP/PVST. The following table describes the commands used to configure CIST Bridge Configuration Menu options parameters.
CIST port configuration Command: /cfg/l2/mrst/cist/port [CIST Port prior cost hello link edge on off cur 1 - Menu] Set port Priority (0-240) Set port Path Cost (1-200000000) Set CIST port Hello Time (1-10 secs) Set MSTP link type (auto, p2p, or shared; default: auto) Enables or disables this port as an edge port Turn port's Spanning Tree ON Turn port's Spanning Tree OFF Display current port Spanning Tree parameters CIST port parameters are used to modify MRST operation on an individual port
Table 111 CIST Port Configuration Menu options Command Description edge disable|enable Enables or disables this port as an edge port. An edge port is not connected to a bridge, and can begin forwarding traffic as soon as the link is up. Configure server ports as edge ports (enabled). This command is disabled by default. on Enables CIST on the port. off Disables CIST on the port. cur Displays the current CIST port configuration.
Table 112 Spanning Tree Configuration Menu options Command Description cur Displays current Spanning Tree Protocol parameters. Bridge Spanning Tree configuration Command: /cfg/l2/stp/brg [Bridge Spanning Tree Menu] prior - Set bridge Priority [0-65535] hello - Set bridge Hello Time [1-10 secs] mxage - Set bridge Max Age (6-40 secs) fwd - Set bridge Forward Delay (4-30 secs) cur - Display current bridge parameters Spanning tree bridge parameters can be configured for each Spanning Tree Group.
Table 113 Bridge Spanning Tree Configuration Menu options Command Description fwd <4-30> Configures the bridge forward delay parameter. The forward delay parameter specifies the amount of time that a bridge port has to wait before it changes from the listening state to the learning state and from the learning state to the forwarding state. The range is 4 to 30 seconds, and the default is 15 seconds. This command does not apply to MSTP.
The following table describes the Spanning Tree Port Configuration Menu options. Table 114 Spanning Tree Port Configuration Menu options Command Description prior <0-255> Configures the port priority. The port priority helps determine which bridge port becomes the designated port. In a network topology that has multiple bridge ports connected to a single segment, the port with the lowest port priority becomes the designated port for the segment. The range is 0 to 255, and the default is 128.
Forwarding Database configuration Command: /cfg/l2/fdb [FDB Menu] static aging cur - Static FDB Menu - Configure FDB aging value - Display current FDB configuration The following table describes the Forwarding Database Configuration Menu options. Table 115 FDB Configuration Menu options Command Description static Displays the Static FDB Configuration Menu. aging <0-65535> Configures the aging value for FDB entries. The default value is 300. cur Displays current FDB parameters.
Trunk configuration Command: /cfg/l2/trunk <1-12> [Trunk group 1 Menu] add - Add port to trunk group rem - Remove port from trunk group ena - Enable trunk group dis - Disable trunk group del - Delete trunk group cur - Display current Trunk Group configuration Trunk groups can provide super-bandwidth connections between switches or other trunk capable devices. A trunk is a group of ports that act together, combining their bandwidth to create a single, larger port.
IP Trunk Hash configuration Command: /cfg/l2/thash [IP Trunk Hash Menu] set - IP Trunk Hash Settings Menu cur - Display current IP trunk hash configuration The following table describes the IP Trunk Hash Configuration Menu options. Table 118 IP Trunk Hash Configuration Menu options Command Description set Displays the Trunk Hash Settings menu. cur Display current trunk hash configuration.
Link Aggregation Control Protocol configuration Command: /cfg/l2/lacp [LACP Menu] sysprio timeout port cur - Set LACP system priority Set LACP system timeout scale for timing out partner info LACP port Menu Display current LACP configuration The following table describes the LACP Configuration Menu options. Table 120 LACP Configuration Menu options Command Description sysprio <1-65535> Defines the priority value (1 through 65535) for the switch. Lower numbers provide higher priority.
Table 121 LACP Port Configuration Menu options Command Description adminkey <1-65535> Set the admin key for this port. Only ports with the same admin key and oper key (operational state generated internally) can form a LACP trunk group. cur Displays the current LACP configuration for this port.
Table 122 VLAN Configuration Menu options Command Description del Deletes this VLAN. cur Displays the current VLAN configuration. IMPORTANT: All ports must belong to at least one VLAN. Any port which is removed from a VLAN and which is not a member of any other VLAN is automatically added to default VLAN #1. You cannot remove a port from VLAN #1 if the port has no membership in any other VLAN. Also, you cannot add a port to more than one VLAN unless the port has VLAN tagging turned on.
Table 123 Protocol VLAN Configuration Menu options Command Description prio <0-7> Configures the priority value for this PVLAN. add Adds a port to the selected PVLAN. rem Removes a port from the selected PVLAN. ports Defines a list of ports that belong to the selected protocol on this VLAN. Enter 0 (zero) to remove all ports. tagpvl enable|disable Enables or disables port tagging on this PVLAN. taglist Defines a list of ports that will be tagged by the selected protocol on this VLAN.
Table 124 Private VLAN Configuration Menu options Command Description dis Disables the Private VLAN. cur Displays current parameters for the Private VLAN. Hot Links configuration Command: /cfg/l2/hotlink [Hot Links Menu] trigger - Trigger Menu bpdu - Enable/disable BPDU flood sndfdb - Enable/disable FDB update on - Globally turn Hot Links ON off - Globally turn Hot Links OFF cur - Display current Hot Links configuration The following table describes the Hot Links Configuration menu options.
Hot Links Trigger configuration Command: /cfg/l2/hotlink/trigger <1-4> [Trigger 1 Menu] master - Master Menu backup - Backup Menu fdelay - Set Forward Delay (secs) name - Set Trigger Name preempt - Enable/disable Preemption ena - Enable Trigger dis - Disable Trigger del - Delete Trigger cur - Display current Trigger configuration The following table describes the Hot Links Trigger Menu options.
Table 127 Hot Links Master Menu options Command Description cur Displays the current Master interface configuration. Hot Links Backup configuration Command: /cfg/l2/hotlink/trigger <1-4>/backup [Backup Menu] port - Set port in Backup trunk - Set trunk in Backup cur - Display current Backup configuration The following table describes the Hot Links Backup Menu options.
Layer 3 configuration Command: /cfg/l3 [Layer 3 Menu] if gw route arp frwd nwf rmap rip ospf igmp dns bootp sm vrrp rtrid cur - Interface Menu Default Gateway Menu Static Route Menu ARP Menu Forwarding Menu Network Filters Menu Route Map Menu Routing Information Protocol Menu Open Shortest Path First (OSPF) Menu IGMP Menu Domain Name System Menu Bootstrap Protocol Relay Menu ServerMobility Menu Virtual Router Redundancy Protocol Menu Set router ID Display current IP configuration The following table descr
IP interface configuration Command: /cfg/l3/if <1-250> [IP Interface addr mask vlan relay ena dis del cur 1 - Menu] Set IP address Set subnet mask Set VLAN number Enable/disable BOOTP relay Enable IP interface Disable IP interface Delete IP interface Display current interface configuration The switch can be configured with up to 250 IP interfaces. Each IP interface represents the switch on an IP subnet on your network. The IP Interface option is disabled by default.
Default Gateway configuration Command: /cfg/l3/gw <1-4, 254> [Default gateway 1 Menu] addr - Set IP address intr - Set interval between ping attempts retry - Set number of failed attempts to declare gateway DOWN arp - Enable/disable ARP only health checks ena - Enable default gateway dis - Disable default gateway del - Delete default gateway cur - Display current default gateway configuration The switch supports up to four gateways, plus the management gateway 254.
IP Static Route configuration Command: /cfg/l3/route [IP Static Route Menu] add - Add static route rem - Remove static route cur - Display current static route configuration The following table describes the Static Route Configuration Menu options. Table 132 Static Route Configuration Menu options Command Description add Adds a static route. You will be prompted to enter a destination IP address, destination subnet mask, and gateway address.
Static ARP configuration Command: /cfg/l3/arp/static [Static ARP Menu] add - Add a permanent ARP entry del - Delete an ARP entry clear - Clear static ARP entries cur - Display current static ARP configuration Static ARP entries are permanent in the ARP cache and do not age out like the ARP entries that are learnt dynamically. Static ARP entries enable the switch to reach the hosts without sending an ARP broadcast request to the network.
Network Filter configuration Command: /cfg/l3/nwf <1-256> [IP Network Filter 1 Menu] addr - IP Address mask - IP Subnet mask enable - Enable Network Filter disable - Disable Network Filter delete - Delete Network Filter current - Display current Network Filter configuration The following table describes the Network Filter Configuration Menu options. Table 136 Network Filter Configuration Menu options Command Description addr Sets the starting IP address for this filter.
Table 137 Route Map Configuration Menu options Command Description type 1|2|none Assigns the type of OSPF metric. The default is type 1. • 1—External routes are calculated using both internal and external metrics. • 2—External routes are calculated using only the external metrics. Type 2 routes have more cost than Type 2. • none—Removes the OSPF metric. prec <1-255> Sets the precedence of the route map. The smaller the value, the higher the precedence. Default value is 10.
Routing Information Protocol configuration Command: /cfg/l3/rip [Routing Information Protocol Menu] if - RIP Interface Menu update - Set update period in seconds redist - RIP Route Redistribute Menu on - Globally turn RIP ON off - Globally turn RIP OFF current - Display current RIP configuration The RIP Menu is used for configuring Routing Information Protocol parameters. This option is turned off by default. The following table describes the RIP Configuration Menu options.
RIP Interface configuration Command: /cfg/l3/rip/if <1-249> [RIP Interface 1 Menu] version - Set RIP version supply - Enable/disable supplying route updates listen - Enable/disable listening to route updates poison - Enable/disable poisoned reverse split - Enable/disable split horizon trigg - Enable/disable triggered updates mcast - Enable/disable multicast updates default - Set default route action metric - Set metric auth - Set authentication type key - Set authentication key enable - Enable interface dis
Table 140 RIP Interface Configuration Menu options Command Description key Configures the authentication key password. enable Enables this RIP interface. disable Disables this RIP interface. cur Displays the current RIP configuration.
Open Shortest Path First configuration Command: /cfg/l3/ospf [Open Shortest Path First Menu] aindex - OSPF Area (index) Menu range - OSPF Summary Range Menu if - OSPF Interface Menu virt - OSPF Virtual Links Menu md5key - OSPF MD5 Key Menu host - OSPF Host Entry Menu redist - OSPF Route Redistribute Menu lsdb - Set the LSDB limit for external LSA default - Export default route information on - Globally turn OSPF ON off - Globally turn OSPF OFF cur - Display current OSPF configuration The following table de
OSFP Area Index configuration Command: /cfg/l3/ospf/aindex <0-2> [OSPF Area (index) 1 Menu] areaid - Set area ID type - Set area type metric - Set stub area metric auth - Set authentication type spf - Set time interval between two SPF calculations enable - Enable area disable - Disable area delete - Delete area cur - Display current OSPF area configuration The following table describes the Area Index Configuration Menu options.
OSPF Summary Range configuration Command: /cfg/l3/ospf/range <1-16> [OSPF Summary addr mask aindex hide enable disable delete cur Range 1 Menu] - Set IP address - Set IP mask - Set area index - Enable/disable hide range - Enable range - Disable range - Delete range - Display current OSPF summary range configuration The following table describes the OSPF Summary Range Configuration Menu options.
The following table describes the OSPF Interface Configuration Menu options. Table 145 OSPF Interface Configuration Menu options Command Description aindex <0-2> Configures the OSPF area index. prio <0-255> Configures the assigned priority value to the OSPF interfaces. (A priority value of 255 is the highest and 1 is the lowest. A priority value of 0 specifies that the interface cannot be used as Designated Router (DR) or Backup Designated Router (BDR).
OSPF Virtual Link configuration Command: /cfg/l3/ospf/virt <1-3> [OSPF Virtual aindex hello dead trans retra nbr key mdkey enable disable delete cur Link 1 Menu] - Set area index - Set hello interval in seconds - Set dead interval in seconds - Set transit delay in seconds - Set retransmit interval in seconds - Set router ID of virtual neighbor - Set authentication key - Set MD5 key ID - Enable interface - Disable interface - Delete interface - Display current OSPF interface configuration The following tab
OSPF Host Entry configuration Command: /cfg/l3/ospf/host <1-128> [OSPF Host Entry 1 Menu] addr - Set host entry IP address aindex - Set area index cost - Set cost of this host entry enable - Enable host entry disable - Disable host entry delete - Delete host entry cur - Display current OSPF host entry configuration The following table describes the OSPF Host Entry Configuration Menu options.
Table 148 OSPF Route Redistribution Configuration Menu options Command Description export <1-16777215> 1|2|none Exports the routes of this protocol as external OSPF AS-external LSAs in which the metric and metric type are specified. To remove a previous configuration and stop exporting the routes of the protocol, enter none. cur Displays the current route map settings.
IGMP configuration Command: /cfg/l3/igmp [IGMP Menu] snoop mrouter igmpflt on off cur - IGMP Snoop Menu Static Multicast Router Menu IGMP Filtering Menu Globally turn IGMP ON Globally turn IGMP OFF Display current IGMP configuration IGMP Snooping allows the switch to forward multicast traffic only to those ports that request it. IGMP Snooping prevents multicast traffic from being flooded to all ports.
The following table describes the IGMP Snoop Configuration Menu options. Table 151 IGMP Snoop Menu options Command Description igmpv3 Displays the IGMPv3 Snooping menu. timeout <1-255> Sets the Maximum Response Time (MRT) for IGMP hosts. MRT is one of the parameters used to determine the age out period of the IGMP hosts. Increasing the timeout increases the age out period. The range is from 1 to 255 seconds. The default is 10 seconds.
IGMPv3 Snooping configuration Command: /cfg/l3/igmp/snoop/igmpv3 [IGMP V3 Snoop Menu] sources - Set the number of sources to snoop in group record v1v2 - Enable/disable snooping IGMPv1/v2 reports exclude - Enable/disable snooping EXCLUDE mode reports ena - Enable IGMPv3 Snooping dis - Disable IGMPv3 Snooping cur - Display current IGMP Snooping V3 configuration The following table describes the IGMPv3 Snooping Configuration Menu options.
IGMP static multicast router configuration Command: /cfg/l3/igmp/mrouter [Static add rem cur Multicast Router Menu] - Add port as Multicast Router Port - Remove port as Multicast Router Port - Display current Multicast Router configuration The following table describes the Static Multicast Router Configuration Menu options. NOTE: When you configure a static multicast router on a VLAN, the process of learning multicast routers is disabled for that VLAN.
IGMP filter definition Command: /cfg/l3/igmp/igmpflt/filter <1-16> [IGMP Filter 1 Definition Menu] range - Set IP Multicast address range action - Set filter action ena - Enable filter dis - Disable filter del - Delete filter cur - Display current IGMP filter configuration The following table describes the IGMP Filter Definition Menu options.
Domain Name System configuration Command: /cfg/l3/dns [Domain Name System Menu] prima - Set IP address of primary DNS server secon - Set IP address of secondary DNS server dname - Set default domain name cur - Display current DNS configuration The Domain Name System (DNS) Configuration Menu is used for defining the primary and secondary DNS servers on your local network, and for setting the default domain name served by the switch services.
The following table describes the BOOTP Configuration Menu options. Table 158 BOOTP Configuration Menu options Command Description addr Sets the IP address of the BOOTP server. For example, 100.10.1.1. addr2 Sets the IP address of the secondary BOOTP server. For example, 100.10.1.2. on Globally turns on BOOTP relay. off Globally turns on BOOTP relay. cur Displays the current BOOTP relay configuration.
Server Mobility port configuration Command: /cfg/l3/sm/port [Port 20 Menu] addback - Set backup port remback - Remove backup port cur - Display current configuration The following table describes the Server Mobility port Configuration menu options. Table 160 Server Mobility Configuration menu options Command Description addback Configures a backup port for the selected port. The server connected to the backup port acts as a backup to the server connected to this port.
Virtual Router Redundancy Protocol configuration Command: /cfg/l3/vrrp [Virtual Router vr group if track on off cur - Redundancy Protocol Menu] VRRP Virtual Router Menu VRRP Virtual Router Group Menu VRRP Interface Menu VRRP Priority Tracking Menu Globally turn VRRP ON Globally turn VRRP OFF Display current VRRP configuration Virtual Router Redundancy Protocol (VRRP) support on the HP 10GbE switch provides redundancy between routers in a LAN.
VRRP Virtual Router configuration Command: /cfg/l3/vrrp/vr <1-250> [VRRP Virtual track vrid addr if prio adver preem ena dis del cur Router 1 Menu] - Priority Tracking Menu - Set virtual router ID - Set IP address - Set interface number - Set renter priority - Set advertisement interval - Enable/disable preemption - Enable virtual router - Disable virtual router - Delete virtual router - Display current VRRP virtual router configuration This menu is used for configuring virtual routers for this switch.
Table 162 Virtual Router Configuration Menu options Command Description prio <1-254> Defines the election priority bias for this virtual server. This can be any integer between 1 and 254. The default value is 100. During the master router election process, the routing device with the highest virtual router priority number wins. If there is a tie, the device with the highest IP interface address wins.
The following table describes the Virtual Router Priority Tracking Configuration Menu options. Table 163 Virtual Router Priority Tracking Configuration Menu options Command Description vrs disable|enable When enabled, the priority for this virtual router will be increased for each virtual router in master mode on this switch. This is useful for making sure that traffic for any particular client/server pairing are handled by the same switch, increasing routing and load balancing efficiency.
The following table describes the Virtual Router Group Configuration Menu options. Table 164 Virtual Router Group Configuration Menu options Command Description track Displays the VRRP Priority Tracking Menu for the virtual router group. Tracking is a proprietary extension to VRRP, used for modifying the standard priority system used for electing the master router. vrid <1-250> Defines the virtual router ID.
VRRP Virtual Router Group Priority Tracking configuration Command: /cfg/l3/vrrp/group/track [Virtual Router ifs ports cur - Group Priority Tracking Menu] Enable/disable tracking other interfaces Enable/disable tracking VLAN switch ports Display current VRRP Group Tracking configuration NOTE: If Virtual Router Group Tracking is enabled, the tracking option will be available only under group option. The tracking setting for the other individual virtual routers will be ignored.
Table 166 VRRP Interface Configuration Menu options Command Description cur Displays the current configuration for this IP interface’s authentication parameters.
Quality of Service configuration Command: /cfg/qos [QOS Menu] 8021p - 802.1p Menu Use the Quality of Service (QoS) menus to configure the IEEE 802.1p priority value of incoming packets. This allows you to differentiate between various types of traffic, and provide different priority levels. The following table describes the QoS Configuration Menu options. Table 168 QoS Configuration Menu options Command Description 8021p Displays 802.1p configuration menu. QoS 802.
Access Control configuration Command: /cfg/acl [ACL Menu] acl group cur - Access Control List Item Config Menu - Access Control List Group Config Menu - Display current ACL configuration Use this menu to create Access Control Lists (ACLs) and ACL Groups. ACLs define matching criteria used for IP filtering and Quality of Service functions. The following table describes the Access Control Configuration Menu options.
Table 171 ACL Configuration Menu options Command Description egrport Configures the ACL to function on egress packets. The egress port ACL will not match a Layer 2 broadcast or multicast packet. The egress port ACL will not match packets if the destination port is a trunk. action permit|deny|setprio <0-7> Configures a filter action for packets that match the ACL definitions. You can choose to permit (pass) or deny (drop) packets, or set the 802.1p priority for the packets.
ACL IP Version 4 Filter configuration Command: /cfg/acl/acl <1-384>/ipv4 [Filtering IPv4 Menu] sip - Set to filter on source IP address dip - Set to filter on destination IP address proto - Set to filter on protocol tos - Set to filter on TOS reset - Reset all fields cur - Display current parameters This menu allows you to define IPv4 matching criteria for an ACL. The following table describes the IP version 4 Filter Configuration Menu options.
ACL TCP/UDP Filter configuration Command: /cfg/acl/acl <1-384>/tcpudp [Filtering TCP/UDP Menu] sport - Set to filter on TCP/UDP source port dport - Set to filter on TCP/UDP destination port flags - Set to filter TCP/UDP flags reset - Reset all fields cur - Display current parameters This menu allows you to define TCP/UDP matching criteria for an ACL. The following table describes the TCP/UDP Filter Configuration Menu options.
ACL Meter configuration Command: /cfg/acl/acl <1-384>/meter [Metering Menu] cir mbsize enable dpass reset cur - Set committed rate in KiloBits/s Set maximum burst size in KiloBits Enable/disable port metering Set to Drop or Pass out of profile traffic Reset meter parameters Display current settings This menu defines the metering profile for the selected ACL. Table 175 ACL Meter Configuration Menu options Command Description cir <1000-10000000> Configures the committed rate, in Kilobits per second.
ACL Re-mark In-Profile configuration Command: /cfg/acl/acl <1-384>/re-mark/inprof [Re-marking - In Profile Menu] up1p - Set Update User Priority Menu updscp - Set the update DSCP reset - Reset in profile settings cur - Display current settings Table 177 ACL Re-mark In-Profile Configuration Menu options Command Description up1p Displays the Re-Mark In-Profile Update User Priority Menu. updscp <0-63> Sets the DiffServ Code Point (DSCP) of In-Profile packets to the selected value.
ACL Re-mark Out-of-Profile configuration Command: /cfg/acl/acl <1-384>/re-mark/outprof [Re-marking - Out Of Profile Menu] updscp - Set the update DSCP reset - Reset out of profile settings cur - Display current settings Table 179 ACL Re-mark Out-of-Profile Configuration Menu options Command Description updscp <0-63> Sets the DiffServ Code Point (DSCP) of Out-of-Profile packets to the selected value. The switch sets the DSCP value on Out-of-Profile packets.
ACL Group configuration Command: /cfg/acl/group <1-384> [ACL Group 1 Menu] add - Add ACL to group rem - Remove ACL from group cur - Display current ACL items in group This menu allows you to compile one or more ACLs into an ACL Group. Once you create an ACL Group, you can assign the ACL Group to one or more ports. The following table describes the ACL Group Configuration Menu options.
Remote Monitoring configuration Command: /cfg/rmon [RMON Menu] hist event alarm cur - RMON History Menu RMON Event Menu RMON Alarm Menu Display current RMON configuration Remote Monitoring (RMON) allows you to monitor traffic flowing through the switch. The RMON MIB is described in RFC 1757. The following table describes the RMON Configuration Menu options. Table 182 RMON Menu options Command Description hist Displays the RMON History Menu. event Displays the RMON Event Menu.
Table 183 RMON History Menu options Command Description owner <1-127 characters> Enter a text string that identifies the person or entity that uses this history index. The owner can have a maximum of 127 characters. delete Deletes the selected history index. cur Displays the current RMON History parameters.
RMON alarm configuration Command: /cfg/rmon/alarm <1-65535> [RMON Alarm 1 oid intrval sample almtype rlimit flimit revtidx fevtidx owner delete cur Menu] - Set MIB oid datasource to monitor - Set alarm interval - Set sample type - Set startup alarm type - Set rising threshold - Set falling threshold - Set event index to fire on rising threshold crossing - Set event index to fire on falling threshold crossing - Set owner for the alarm - Delete this alarm and restore defaults - Display current alarm configur
Table 185 RMON Alarm Menu options Command Description revtidx <0-65535> Configures the rising alarm event index that is triggered when a rising threshold is crossed. The range is from 0 to 65535. The default value is 0. Configures the falling alarm event index that is triggered when a falling threshold is crossed. fevtidx <0-65535> The range is from 0 to 65535. The default value is 0. owner <1-127 characters> Enter a text string that identifies the person or entity that uses this alarm index.
Port-based port mirroring Command: /cfg/pmirr/monport [Port 1 Menu] add rem delete cur - Add "Mirrored" port Rem "Mirrored" port Delete this “Monitor” port Display current Port-based Port Mirroring configuration The following table describes the port-based Port Mirroring Configuration Menu options. Table 187 Port Mirroring Configuration Menu options Command Description add in|out|both Adds the port to be mirrored.
Uplink Failure Detection configuration Command: /cfg/ufd [Uplink Failure Detection Menu] fdp - Failure Detection Pair Menu on - Globally turn Uplink Failure Detection ON off - Globally turn Uplink Failure Detection OFF cur - Display current Uplink Failure Detection configuration Uplink Failure Detection (UFD) supports network fault tolerance in network adapter teams. Use this menu to configure a Failure Detection Pair of one Links to Monitor (LtM) group and one Links to Disable (LtD) group.
Table 189 Failure Detection Pair Configuration Menu options Command Description current Displays the current FDP configuration.
Link to Disable configuration Command: /cfg/ufd/fdp/ltd [Failure Link addport remport addtrnk remtrnk addkey remkey cur to Disable Menu] - Add port to Link to Disable - Remove port from Link to Disable - Add trunk to Link to Disable - Remove trunk from Link to Disable - Add adminkey to Link to Disable - Remove adminkey from Link to Disable - Display current LtD configuration The following table describes the Link to Disable (LtD) Menu options.
Dump Command: /cfg/dump The dump program writes the current switch configuration to the terminal screen. To start the dump program, at the Configuration# prompt, enter: Configuration# dump The configuration is displayed with parameters that have been changed from the default values. The screen display can be captured, edited, and placed in a script file, which can be used to configure other switches. Paste the configuration commands from the script file at the command line prompt of the switch.
Operations Menu Introduction Operations-level commands are used for making immediate and temporary changes to switch configuration. The Operations Menu is used for bringing ports temporarily in and out of service. This menu is available only from an administrator and operator login.
Operations-level port options are used for temporarily disabling or enabling a port. Table 193 Operations-Level Port Menu options Command Description 8021x Displays the 802.1X Port Menu. rmon disable|enable Enables or disables Remote Monitoring for the port. RMON must be enabled for any RMON configurations to function. ena Temporarily enables the port. The port will be returned to its configured operation mode when the switch is reset.
Operations-level VRRP options Command: /oper/vrrp [VRRP Operations Menu] back - Set virtual router to backup Operations-level VRRP options are described in the following table. Table 195 Operations-Level VRRP Menu options Command Description back <1-255> Forces the specified master virtual router on this switch into backup mode. This is generally used for passing master control back to a preferred switch once the preferred switch has been returned to service after a failure.
Boot Options Menu Introduction You must be logged in to the switch as the administrator to use the Boot Options Menu. The Boot Options Menu provides options for: • • • Selecting a switch software image to be used when the switch is next reset. Selecting a configuration block to be used when the switch is next reset. Downloading or uploading a new software image to the switch via FTP/TFTP.
To download new software to the switch, you will need the following: • • • • The image or boot software loaded on a FTP or TFTP server on your network The hostname or IP address of the FTP or TFTP server The user name and password for FTP server, if necessary The name of the new software image or boot file NOTE: The DNS parameters must be configured if specifying hostnames. See the “Domain name system configuration” section in the “Configuration Menu” chapter.
9. If you are loading an image from which you are not currently booted, the system prompts you to change the image. image2 currently contains Software Version 1.0.1 that was downloaded at 15:46:36 Wed Mar 21, 2008. New download will replace image2 with file "4.0.0_OS.img" from TFTP server 10.168.2.4. Confirm download operation [y/n]: y Invoking TFTP over port 69... Starting download... File appears valid Download in progress....................................................
7. The system then requests confirmation of what you have entered. To have the file uploaded, enter y. image2 currently contains Software Version 4.0.0 Upload will transfer image2 (1889411 bytes) to file "test" on TFTP server 10.1.1.1. Confirm upload operation [y/n]: y Selecting a configuration block When you make configuration changes to the switch, you must save the changes so that they are retained beyond the next time the switch is reset.
Accessing the ISCLI To access the ISCLI, enter the following command from the AOS CLI, and reset the switch: Boot Options# mode iscli The default command-line interface for the HP 10GbE switch is the AOS CLI. To access the AOS CLI, enter the following command and reset the switch: >> Switch# boot cli-mode aos Users can select the CLI mode upon login, if the /boot/prompt command is enabled. Only an administrator connected through the console port can view and enable /boot/prompt.
Maintenance Menu Introduction The Maintenance Menu is used for debugging purposes, enabling you to generate a technical support dump of the critical state information in the switch, and to clear entries in the Forwarding Database and the Address Resolution Protocol (ARP) and routing tables. This menu is available only from an administrator and operator login.
Table 196 Maintenance Menu options Command Usage igmp Displays the IGMP Maintenance Menu. uudmp Displays dump information in uuencoded format. ptdmp Saves the system dump information via FTP/TFTP. ptfile Saves a specified file from the switch root file system to an FTP/TFTP server. cldmp Clears dump information from flash memory. panic Dumps MP information to flash and reboots. tsdmp Dumps all switch information, statistics, and configuration.
Forwarding Database options Command: /maint/fdb [FDB Manipulation Menu] find - Show a single FDB entry by MAC address port - Show FDB entries for a single port vlan - Show FDB entries for a single VLAN dump - Show all FDB entries clear - Clear entire FDB, then re-add static entries The Forwarding Database (FDB) Manipulation Menu can be used to view information and to delete a MAC address from the Forwarding Database or clear the entire Forwarding Database.
The following table describes the Miscellaneous Debug Menu options: Table 199 Miscellaneous Debug Menu options Command Usage tbuf Displays the management processor trace buffer. Header information similar to the following is shown: MP trace buffer at 13:28:15 Fri May 25, 2002; mask: 0x2ffdf748 The buffer information is displayed after the header. snap Displays the management processor snap (or post-mortem) trace buffer. This buffer contains information traced at the time that a reset occurred.
IP Route Manipulation options Command: /maint/route [IP Routing Menu] find - Show a single route by destination IP address gw - Show routes to a single gateway type - Show routes of a single type tag - Show routes of a single tag if - Show routes on a single interface dump - Show all routes clear - Clear route table The following table describes the IP Route Manipulation Menu options: Table 201 IP Route Manipulation Menu options Command Usage find Shows a single route by destination IP addr
IGMP Snooping options Command: /maint/igmp/snoop [IGMP Multicast find vlan port trunk detail dump clear - Group Menu] Show a single group by IP group address Show groups on a single vlan Show groups on a single port Show groups on a single trunk Show detail of a single group by IP address Show all groups Clear group tables The following table describes the IGMP Snoop Maintenance Menu options.
Uuencode flash dump Command: /maint/uudmp Using this command, dump information is presented in uuencoded format. This format makes it easy to capture the dump information as a file or a string of characters. If you want to capture dump information to a file, set your communication software on your workstation to capture session data prior to issuing the uudmp command. This will ensure that you do not lose any information.
Panic command Command: /maint/panic The panic command causes the switch to immediately dump state information to flash memory and automatically reboot. To select panic, at the Maintenance# prompt, enter: >> Maintenance# panic A FLASH dump already exists. Confirm replacing existing dump and reboot [y/n]: Enter y to confirm the command: Confirm dump and reboot [y/n]: y A list of messages is displayed: Starting system dump...done. Reboot at 11:54:08 Wednesday March 21, 2008... . . . . . . . . . . . . . . . .
Index dump information, 222 8 802.1x information, 40 commands abbreviations, 18 802.
user, 22 IGMP Mrouter options, 221 diff command, 15, 109 IGMP Multicast Group options, 220 diff flash command, 15, 109 IGMP Snooping options, 221 disconnect idle timeout, 12 IGMPv3 configuration, 177 download software, 211 dump image configuration, 207 download, 211 information, 71 software, selection, 213 state information, 223 information dump, 71 statistics, 107 Information Menu, 24 duplex mode, link status, 24, 69 interface statistics, 79, 81 dynamic routes, 220 Internet Protocol (I
mask, IP interface subnet address, 159 information, 70 MD5 cryptographic authentication, 169 membership of the VLAN, 49 media access control (MAC) address priority, 43, 45, 47 ARP information, 53 display address, 9 STP port priority, 147 preemption FDB information, 37 FDB manipulation, 218 assuming VRRP master routing authority, 185 priority (STP port option), 147 Miscellaneous Debug Menu, 218 prisrv, primary radius server, 115 monitor port, 202 Private VLAN configuration, 154 N Network Time P
secsrv, secondary radius server, 115 syslog Secure Shell (SSH) encryption and authentication methods, 10 display messages, 34 system Secure Shell Server (SSHD) Menu, 114 date and time, 25, 26, 27, 28, 29, 30, 31, 35, 36, 50, 84 Server Mobility information, 33, 71 configuration, 181 Setup utility System Configuration Menu, 111 introduction, 19 System Information Menu, 25 start, 19 system options shortcuts, 18 login banner, 112 Simple Network Management Protocol (SNMP) tnport, 112 optional s
VRRP priority tracking, 187 Virtual Router Redundancy Protocol (VRRP) password, authentication VRRP authentication, 188 group options (prio) virtual router priority, 187 priority election for the virtual router, 185 virtual routers increasing priority level of, 185 master preemption (preem) virtual router, 187 master preemption (prio) virtual router, 185 VLAN active port VLAN, 188 VLAN tagging port configuration, 131 VLANs ARP entry information, 53 configuration, 152 information, 49 name, 49 port membershi
