user manual

ManualsBrandsNETGEAR ManualsNetwork RouterNetwork Router 7300S

202-10088-01, March 2005

202-10088-01

March 2005

NETGEAR, Inc.

4500 Great America

Parkway

Santa Clara, CA

User Manual for the

NETGEAR 7300S Series

Layer 3 Managed Switch

Software

Summary of content (402 pages)

PAGE 1
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software NETGEAR, Inc.
PAGE 2
© 2005 by NETGEAR, Inc., March 2005. FullManual All rights reserved. Technical Support Please register to obtain technical support. Please retain your proof of purchase and warranty information. To register your product, get product support or obtain product information and product documentation, go to http://www.netgear.com. If you do not have access to the World Wide Web, you may register your product by filling out the registration card and mailing it to NETGEAR customer service.
PAGE 3
Canadian Department of Communications Compliance Statement This Class B Digital apparatus (NETGEAR 7300S Series Layer 3 Managed Switch) meets all the requirements of the Canadian Interference Causing Equipment Regulations. Cet appareil numerique del la classe B respect les exigences du Regalement sur le material broilleur du Canada. This device comples with Class B limits of Industry of Canada. Operation is subject to the following two conditions: 1. This device may not cause harmful interference. 2.
PAGE 4
iv 202-10088-01, March 2005
PAGE 5
Contents Chapter 1 About This Guide Audience .........................................................................................................................1-1 Why the Document was Created ....................................................................................1-1 How to Use This Document ............................................................................................1-1 Typographical Conventions .............................................................................
PAGE 6
Chapter 5 Command Line Interface Structure CLI Command Format ....................................................................................................5-1 Command .................................................................................................................5-1 Parameters ...............................................................................................................5-2 Values ........................................................................................
PAGE 7
show logging ..........................................................................................................8-13 show mac-addr-table ..............................................................................................8-13 show msglog ..........................................................................................................8-14 show running-config ...............................................................................................8-14 show sysinfo .............
PAGE 8
set prompt ..............................................................................................................8-23 serviceport ip ..........................................................................................................8-23 serviceport protocol ................................................................................................8-23 show telnet .............................................................................................................
PAGE 9
snmptrap ipaddr .....................................................................................................8-34 snmptrap mode ......................................................................................................8-34 no snmptrap mode ...........................................................................................8-34 snmp trap link-status ..............................................................................................8-35 no snmp trap link-status ..........
PAGE 10
speed .....................................................................................................................8-42 speed all .................................................................................................................8-42 storm-control broadcast .........................................................................................8-43 no storm-control broadcast ..............................................................................8-43 storm-control flowcontrol ..
PAGE 11
vlan protocol group add protocol ............................................................................8-53 no vlan protocol group add protocol ................................................................8-54 vlan protocol group remove ....................................................................................8-54 protocol group ........................................................................................................8-54 no protocol group ...................................
PAGE 12
Configuration Scripting .................................................................................................8-64 configscript apply ...................................................................................................8-65 configscript delete ..................................................................................................8-65 configscript list ........................................................................................................
PAGE 13
sntp unicast client poll-timeout ...............................................................................8-74 no sntp unicast client poll-timeout ...................................................................8-74 sntp unicast client poll-retry ....................................................................................8-74 no sntp unicast client poll-retry ........................................................................8-74 sntp multicast client poll-interval ....................
PAGE 14
no hardware-address .......................................................................................8-84 host ........................................................................................................................8-84 no host .............................................................................................................8-84 ip dhcp excluded-address ......................................................................................8-84 no ip dhcp excluded-address ....
PAGE 15
show ip dhcp conflict ..............................................................................................8-93 clear ip dhcp binding ..............................................................................................8-94 clear ip dhcp server statistics .................................................................................8-94 clear ip dhcp conflict ...............................................................................................8-94 Provisioning (IEEE 802.
PAGE 16
no set gmrp interfacemode ............................................................................8-103 set gmrp interfacemode all ...................................................................................8-103 no set gmrp interfacemode all .......................................................................8-103 show gmrp configuration ......................................................................................8-104 show mac-address-table gmrp .....................................
PAGE 17
port lacpmode ...................................................................................................... 8-114 no port lacpmode ........................................................................................... 8-114 port lacpmode all .................................................................................................. 8-114 no port lacpmode all ...................................................................................... 8-114 port-channel ........................
PAGE 18
no spanning-tree mst instance .......................................................................8-124 spanning-tree mst priority .....................................................................................8-124 no spanning-tree mst priority .........................................................................8-124 spanning-tree mst vlan .........................................................................................8-125 no spanning-tree mst vlan ..................................
PAGE 19
no port-security max-dynamic ...........................................................................9-2 port-security max-static ............................................................................................9-2 no port-security max-static .................................................................................9-2 port-security mac-address ........................................................................................9-3 no port-security mac-address .......................
PAGE 20
no dot1x user ................................................................................................... 9-11 show radius accounting .......................................................................................... 9-11 show authentication ...............................................................................................9-12 show authentication users ......................................................................................9-13 show dot1x ..........................
PAGE 21
no ip http server ...............................................................................................9-25 show ip http ............................................................................................................9-25 Chapter 10 Routing Commands Address Resolution Protocol (ARP) Commands ..........................................................10-1 arp ..........................................................................................................................
PAGE 22
no ip route distance .........................................................................................10-9 ip forwarding ...........................................................................................................10-9 no ip forwarding .............................................................................................10-10 ip netdirbcast ........................................................................................................10-10 no ip netdirbcast ............
PAGE 23
ip irdp maxadvertinterval ......................................................................................10-19 no ip irdp maxadvertinterval ...........................................................................10-19 ip irdp minadvertinterval .......................................................................................10-20 no ip irdp minadvertinterval ............................................................................10-20 ip irdp preference ...................................
PAGE 24
split-horizon ..........................................................................................................10-27 no split-horizon ..............................................................................................10-27 redistribute ...........................................................................................................10-28 no redistribute ................................................................................................10-28 show ip rip .............
PAGE 25
match destination-address mac ..................................................................... 11-13 match dstip .................................................................................................... 11-14 match dstl4port .............................................................................................. 11-14 match ip dscp ................................................................................................ 11-15 match ip precedence .................................
PAGE 26
Show Commands ................................................................................................. 11-30 show class-map ............................................................................................. 11-31 show diffserv .................................................................................................. 11-32 show policy-map ............................................................................................ 11-33 show diffserv service .......................
PAGE 27
show interfaces tail-drop-threshold ...................................................................... 11-48 Chapter 12 Managing Switch Stacks Understanding Switch Stacks .......................................................................................12-1 Switch Stack Membership ......................................................................................12-2 Switch Stack Cabling ..............................................................................................
PAGE 28
Appendix A IS CLI Mapping Appendix B Cabling Guidelines Fast Ethernet Cable Guidelines ..................................................................................... B-1 Category 5 Cable ........................................................................................................... B-2 Category 5 Cable Specifications ............................................................................. B-2 Twisted Pair Cables ........................................................................
PAGE 29
T .................................................................................................................................. C-19 U .................................................................................................................................. C-20 V .................................................................................................................................. C-20 W ................................................................................................
PAGE 30
xxx Contents 202-10088-01, March 2005
PAGE 31
Chapter 1 About This Guide Thank you for purchasing the NETGEAR™ 7300S Series L3 Switch. Audience This reference manual assumes that the reader has basic-to-intermediate computer and Internet skills. However, basic computer network, Internet, and wireless technology tutorial information is provided in the Appendices. This document describes configuration commands for the 7300S Series L3 Switch software. The commands can be accessed from the CLI, telnet, and Web interfaces.
PAGE 32
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software • Chapter 10, “Routing Commands” describes the Routing commands. • Chapter 11, “Quality of Service (QoS) Commands” describes the QOS commands. • Chapter 12, “Managing Switch Stacks” describes the switch stacking. Note: Refer to the release notes for the 7000 Series L3 Managed Switch Software application level code.
PAGE 33
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Note: Product updates are available on the NETGEAR, Inc. Web site at http://www.netgear.com/support/main.asp.
PAGE 34
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software 1-4 About This Guide 202-10088-01, March 2005
PAGE 35
Chapter 2 Switch Management Overview This chapter gives an overview of switch management, including the methods you can use to manage your NETGEAR 7300S Series Layer 3 Managed Switch. • Management Access Overview • SNMP Access • Protocols Scope The NETGEAR 7300S Series Layer 3 Managed Switch software has two purposes: • Assist attached hardware in switching frames, based on Layer 2 or 3 information contained in the frames.
PAGE 36
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software • Simple Network Protocol Management (SNMP) Each management method enables the network administrator to configure, manage, and control the managed switch locally or remotely using in-band or out-of-band mechanisms. Management is standards-based, with configuration parameters and a private MIB providing control for functions not completely specified in the MIBs. Table 2-1.
PAGE 37
Chapter 3 Administration Console Interface The administration console is an internal, character-oriented, VT-100/ANSI command-driven user interface for performing management activities. Using this method, you can view the administration console from a terminal, PC, Apple Macintosh, or UNIX workstation connected to the switch’s console port. Figure 3-1 shows an example of this management method.
PAGE 38
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Examples of terminal-emulation programs include: • HyperTerminal, which is included with Microsoft Windows operating systems • ZTerm for the Apple Macintosh • TIP for UNIX workstations This example describes how to set up the connection using a HyperTerminal on a PC, but other systems follow similar steps. 1. Click the Windows Start button. Select Accessories and then Communications.
PAGE 39
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software 4. When the following screen appears, make sure that the port setting are as follows: Baud Rate: Data Bits: Parity: Stop Bits: Flow Control: 9600 8 None 1 None Figure 3-4: Connection Settings 5. Click OK. The HyperTerminal window will open and you should be connected to the switch. If you do not get a welcome screen or a system menu, press the return key.
PAGE 40
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software 3-4 Administration Console Interface 202-10088-01, March 2005
PAGE 41
Chapter 4 Web-Based Management Interface Your NETGEAR 7300S Series Layer 3 Managed Switch provides a built-in browser interface that lets you configure and manage it remotely using a standard Web browser such as Microsoft Internet Explorer 5.0 or later or Netscape Navigator 6.0 or later. This interface also allows for system monitoring and management of the switch. The ‘help’ page covers many of the basic functions and features of the switch and it’s web interface.
PAGE 42
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Web Based Management Overview The menu options available are: System Management, Switch, Routing, Traffic Management, and Smart Wizard. There is a help menu in the top of right side of screen; you can click the ‘help’ or the question mark to read the help menu. The help menu contains: • Web-Based Management Introduction to the Web management features.
PAGE 43
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software A login window opens: Figure 4-3: Login splash screen for the Managed Switch Click the Login link. A user name and password dialog box opens like this one. Figure 4-4: User name/password dialog box 4. Type the default user name of admin and default of no password, or whatever password you have set up.
PAGE 44
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Once you have entered your user name and password, your Web browser should automatically retrieve and display the home page, as shown below.
PAGE 45
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Interactive Switch Image Figure 4-6: Interactive switch image This dynamic image shows various real time conditions about the switch, including the status, fan operation, power, and the connectivity and traffic indication for each port. In addition, using the popup menus described below, you can directly access a wealth of information by right-clicking on a port and selecting a menu item from the popup-menu that displays.
PAGE 46
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Menus The Web-based interface enables navigation through several menus. The main navigation menu is on the left of every page and contains the screens that let you access all the commands and statistics the switch provides.
PAGE 47
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Secondary Menus The Secondary Menus under the Main Menu contain a host of options that you can use to configure your switch. The online help contains a detailed description of the features on each screen. You can click the ‘help’ or the question mark at the top right of each screen to view the help menu topics.
PAGE 48
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Routing • Routing Commands — see “Routing Commands” on page 10-1 Traffic Management • Diffserv — see “Differentiated Services (DiffServ) Commands” on page 11-7 • Traffic Control — see “System Management Commands” on page 8-15 Smart Wizard • VLAN Routing Wizard — see “Routing Commands” on page 10-1 System-Wide Popup Menus The 7300S Series L3 Switch also provides several popup menus.
PAGE 49
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Port-Specific Popup Menus The 7300S Series L3 Switch also provides several popup menus for each port. Figure 4-9: Switch popup menus You can access a port-specific popup menu by right clicking on the port in the image of the switch and browsing to the menu you want to use.
PAGE 50
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software 4-10 Web-Based Management Interface 202-10088-01, March 2005
PAGE 51
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Chapter 5 Command Line Interface Structure The Command Line Interface (CLI) syntax, conventions and terminology are described in this section. Each CLI command is illustrated using the structure outlined below. CLI Command Format Commands are followed by values, parameters, or both. Example 1 network parms [] • • • network parms is the command name.
PAGE 52
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Parameters Parameters are order dependent. The text in bold italics should be replaced with a name or number. To use spaces as part of a name parameter, enclose it in double quotes like this: "System Name with Spaces". Parameters may be mandatory values, optional values, choices, or a combination. – . The <> angle brackets indicate that a mandatory parameter must be entered in place of the brackets and text inside them.
PAGE 53
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software logical slot/port This parameter denotes a logical slot number and logical port number assigned. This is applicable in the case of a port-channel (LAG). The operator can use the logical slot number and the logical port number to configure the port-channel. Conventions Network addresses are used to define a link to a remote host, workstation or network. Network addresses are shown using the following syntax: Table 5-1.
PAGE 54
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Annotations The CLI allows the user to type single-line annotations at the command prompt for use when writing test or configuration scripts and for better readability. The exclamation point (‘!’) character flags the beginning of a comment. The comment flag character can begin a word anywhere on the command line and all input following this character is ignored.
PAGE 55
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Chapter 6 Quick Start up The CLI Quick Start up details procedures to quickly become acquainted with the 7300S Series L3 Switch. Quick Starting the Switch 1. Read the device Installation Guide for the connectivity procedure. In-band connectivity allows access to the 7300S Series L3 Switch locally or from a remote workstation. The device must be configured with IP information (IP address, subnet mask, and default gateway). 2.
PAGE 56
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software System Info and System Setup Quick Start up Software Version Information Table 6-1. Quick Start up Software Version Information Command Details show hardware (in Privileged EXEC) Allows the user to see the software version the device contains Machine Model (The type and number of ports the device provides.
PAGE 57
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Quick Start up User Account Management Table 6-3. Quick Start up User Account Management Command Details show users Displays all of the users that are allowed to access the switch (in Privileged EXEC) Access Mode - Shows whether the user is able to change parameters on the switch(Read/Write) or is only able to view then (Read Only). As a factory default, admin has Read/Write access and guest has Read Only access.
PAGE 58
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Note: The user should do a copy system:running-config nvram:startup-config after configuring the network parameters so that the configurations are not lost. Table 6-4. Quick Start-up IP Address Using Switch as Layer-2 Device Command Details show network (in User EXEC) Displays the Network Configurations IP Address - IP Address of the interface Default IP is 0.0.0.0 Subnet Mask - IP Subnet Mask for the interface Default is 0.0.0.
PAGE 59
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 6-5.
PAGE 60
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Quick Start up Downloading from Out-of-Band PC to Switch (Only XMODEM) Table 6-7. Quick Start up Downloading from Out-of-Band PC to Switch (Only XMODEM) Command Details copy {nvram:startup-config | system:image} Sets the download datatype to be an image or config file.
PAGE 61
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 6-9. Quick Start up Factory Defaults Command Details copy system:running-config nvram:startup-config Enter yes when the prompt pops up that asks if you want to save the configurations made to the switch. reload OR Cold Boot the Switch Enter yes when the prompt pops up that asks if you want to reset the system. This is the users choice either reset the switch or cold boot the switch, both work effectively.
PAGE 62
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software 6-8 Quick Start up 202-10088-01, March 2005
PAGE 63
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Chapter 7 Mode-based CLI The CLI groups all the commands in appropriate modes according to the nature of the command. A sample of the CLI command modes are described below. Each of the command modes support specific 7300S Series L3 Switch commands.
PAGE 64
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 7-1. Command Mode (continued) Exit or Access Next Mode Command Mode Access Method Prompt VLAN Mode From the Privileged User Exec mode, enter the vlan database command. Switch (Vlan) # To exit to the Privileged Exec mode, enter the exit command, or press Ctrl-Z to switch to user exec mode. Global Config Mode From the Privileged Exec mode, enter the configure command.
PAGE 65
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Mode-based Topology The CLI tree is built on a mode concept where the commands are available according to the interface. Some of the modes are depicted in the mode-based CLI Figure 1. ROOT User Exec User Exec commands are also accessible in Privileged Exec mode.
PAGE 66
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Access to all commands in the Privileged Exec mode and below are restricted through a password. Mode-based Command Hierarchy The CLI is divided into various modes. The Commands in one mode are not available until the operator switches to that particular mode, with the exception of the User Exec mode commands. The User Exec mode commands may also be executed in the Privileged Exec mode.
PAGE 67
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software In this mode, a physical port is set up for a specific logical connection operation. The Interface Config mode provides access to the router interface configuration commands.
PAGE 68
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Flow of Operation This section captures the flow of operation for the CLI: The operator logs into the CLI session and enters the User Exec mode. In the User Exec mode the $(exec)> prompt is displayed on the screen. 1. The parsing process is initiated whenever the operator types a command and presses . The command tree is searched for the command of interest.
PAGE 69
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software “No” Form of a Command "No" is a specific form of an existing command and does not represent a new or distinct command. Only the configuration commands are available in the "no"form. The behavior and the support details of the “no” form is captured as part of the mapping sheets. The mapping sheets are contained in the Appendix A, “IS CLI Mapping section. Support for “No” Form Almost every configuration command has a “no” form.
PAGE 70
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software 7-8 Mode-based CLI 202-10088-01, March 2005
PAGE 71
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Chapter 8 Switching Commands This chapter provides detailed explanation of the Switching commands. The commands are divided into five functional groups: • Show commands display switch settings, statistics, and other information. • Configuration commands configure features and options of the switch. For every configuration command, there is a show command that displays the configuration setting.
PAGE 72
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software show arp switch This command displays connectivity between the switch and other devices. The Address Resolution Protocol (ARP) cache identifies the MAC addresses of the IP stations communicating with the switch. Format Mode show arp switch MAC Address A unicast MAC address for which the switch has forwarding and/ or filtering information.
PAGE 73
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Machine Type Specifies the machine model as defined by the Vital Product Data. Machine Model Specifies the machine model as defined by the Vital Product Data. Serial Number The unique box serial number for this switch. FRU Number The field replaceable unit number. Part Number Manufacturing part number. Maintenance Level Indicates hardware changes that are significant to software.
PAGE 74
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Transmit Packets Errors The number of outbound packets that could not be transmitted because of errors. Collisions Frames The best estimate of the total number of collisions on this Ethernet segment. Time Since Counters Last Cleared The elapsed time, in days, hours, minutes, and seconds since the statistics for this port were last cleared.
PAGE 75
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Format show interface ethernet { | switchport} Mode Privileged EXEC The display parameters, when the argument is '', are as follows : Packets Received Octets Received - The total number of octets of data (including those in bad packets) received on the network (excluding framing bits but including Frame Check Sequence (FCS) octets). This object can be used as a reasonable estimate of ethernet utilization.
PAGE 76
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software 1518 octets in length inclusive (excluding framing bits but including FCS octets). Packets Received 1519-1522 Octets - The total number of packets (including bad packets) received that were between 1519 and 1522 octets in length inclusive (excluding framing bits but including FCS octets).
PAGE 77
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Alignment Errors - The total number of packets received that had a length (excluding framing bits, but including FCS octets) of between 64 and 1518 octets, inclusive, but had a bad Frame Check Sequence (FCS) with a non-integral number of octets.
PAGE 78
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software CFI Discards - The number of frames discarded that have CFI bit set and the addresses in RIF are in non-canonical format. Upstream Threshold - The number of frames discarded due to lack of cell descriptors available for that packet's priority level. Packets Transmitted Octets Total Bytes - The total number of octets of data (including those in bad packets) received on the network (excluding framing bits but including FCS octets).
PAGE 79
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software and 1522 octets in length inclusive (excluding framing bits but including FCS octets). Max Info - The maximum size of the Info (non-MAC) field that this port will receive or transmit. Packets Transmitted Successfully Total - The number of frames that have been transmitted by this port to its segment.
PAGE 80
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Multiple Collision Frames - A count of the number of successfully transmitted frames on a particular interface for which transmission is inhibited by more than one collision. Excessive Collisions - A count of frames for which transmission on a particular interface fails due to excessive collisions. Port Membership - The number of frames discarded on egress for this port due to egress filtering being enabled.
PAGE 81
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software RST BPDUs Transmitted - Rapid Spanning Tree Protocol Bridge Protocol Data Units sent RSTP BPDUs Received - Rapid Spanning Tree Protocol Bridge Protocol Data Units received MSTP BPDUs Transmitted - Multiple Spanning Tree Protocol Bridge Protocol Data Units sent MSTP BPDUs Received - Multiple Spanning Tree Protocol Bridge Protocol Data Units received Dot1x Statistics EAPOL Frames Received - The number of valid EAPOL frames of any type t
PAGE 82
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Octets Transmitted - The total number of octets transmitted out of the interface, including framing characters. Packets Transmitted without Errors - The total number of packets transmitted out of the interface. Unicast Packets Transmitted - The total number of packets that higher-level protocols requested be transmitted to a subnetworkunicast address, including those that were discarded or not sent.
PAGE 83
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software show logging This command displays the trap log maintained by the switch. The trap log contains a maximum of 256 entries that wrap. Format show logging Mode Privileged EXEC Number of Traps since last reset The number of traps that have occurred since the last reset of this device. Number of Traps since log last displayed The number of traps that have occurred since the traps were last displayed.
PAGE 84
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Static Learned Management The value of the corresponding instance was added by the system or a user when a static MAC filter was defined. It cannot be relearned. The value of the corresponding instance was learned by observing the source MAC addresses of incoming traffic, and is currently in use. The value of the corresponding instance (system MAC address) is also the value of an existing instance of dot1dStaticAddress.
PAGE 85
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Mode Privileged EXEC show sysinfo This command displays switch information. Format show sysinfo Mode Privileged EXEC Switch Description Text used to identify this switch. System Name Name used to identify the switch. System Location Text used to identify the location of the switch. May be up to 31 alpha-numeric characters. The factory default is blank. System Contact Text used to identify a contact person for this switch.
PAGE 86
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software • Show commands display switch settings, statistics, and other information. • Configuration commands configure features and options of the switch. For every configuration command, there is a show command that displays the configuration setting. telnet This command establishes a new outbound telnet connection to a remote host. The host value must be a valid IP address.
PAGE 87
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software transport output telnet This command regulates new outbound telnet connections. If enabled, new outbound telnet sessions can be established until it reaches the maximum number of simultaneous outbound telnet sessions allowed. If disabled, no new outbound telnet session can be established. An established session remains active until the session is ended or an abnormal network error ends it.
PAGE 88
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Default 0 Format Mode session-timeout <0-160> Line Config no session-timeout This command sets the outbound telnet session timeout value to the default. The timeout value unit of time is minutes. Format Mode no session-timeout Line Config bridge aging-time This command configures the forwarding database address aging timeout in seconds. In an IVL system, the [fdbid | all] parameter is required.
PAGE 89
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software mtu This command sets the maximum transmission unit (MTU) size (in bytes) for physical and portchannel (LAG) interfaces. For the standard implementation, the range of is a valid integer between 1522-9216. Default Format Mode 1522 mtu <1522-9216> Interface Config no mtu This command sets the default maximum transmission unit (MTU) size (in bytes) for the interface.
PAGE 90
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software • Bit 6 of byte 0 (called the U/L bit) indicates whether the address is universally administered (b'0') or locally administered (b'1'). • Bit 7 of byte 0 (called the I/G bit) indicates whether the destination address is an individual address (b'0') or a group address (b'1'). • The second character, of the twelve character macaddr, must be 2, 6, A or E.
PAGE 91
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software network protocol This command specifies the network configuration protocol to be used. If you modify this value change is effective immediately. The parameter bootp indicates that the switch periodically sends requests to a Bootstrap Protocol (BootP) server or a dhcp server until a response is received. none indicates that the switch should be manually configured with IP information.
PAGE 92
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software no telnetcon timeout This command sets the telnet connection session timeout value, in minutes, to the default. Note: Changing the timeout value for active sessions does not become effective until the session is reaccessed. Any keystroke will also activate the new timeout duration. Format Mode no telnetcon timeout Privileged EXEC serial baudrate This command specifies the communication rate of the terminal interface.
PAGE 93
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Mode Line Config set prompt This command changes the name of the prompt. The length of name may be up to 64 alphanumeric characters. Format Mode set prompt Privileged EXEC serviceport ip This command sets the IP address, the netmask and the gateway of the router.
PAGE 94
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Allow New Outbound Telnet Sessions Indicates whether outbound telnet sessions will be allowed. show forwardingdb agetime This command displays the timeout for address aging. In an IVL system, the [fdbid | all] parameter is required.
PAGE 95
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Locally Administered MAC Address If desired, a locally administered MAC address can be configured for in-band connectivity. To take effect, 'MAC Address Type' must be set to 'Locally Administered'. Enter the address as twelve hexadecimal digits (6 bytes) with a colon between each byte. Bit 1 of byte 0 must be set to a 1 and bit 0 to a 0, i.e. byte 0 should have the following mask 'xxxx xx10'.
PAGE 96
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Allow New Telnet Sessions Indicates that new telnet sessions will not be allowed when set to no. The factory default value is yes. show serial This command displays serial communication settings for the switch. Format show serial Mode Privileged EXEC and User EXEC Serial Port Login Timeout (minutes) Specifies the time, in minutes, of inactivity on a Serial port connection, after which the Switch will close the connection.
PAGE 97
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software ServPort Configuration Protocol Current Indicates what network protocol was used on the last, or current power-up cycle, if any. Burned in MAC Address The burned in MAC address used for in-band connectivity. SNMP Community Commands show snmpcommunity This command displays SNMP community information. Six communities are supported. You can add, change, or delete communities.
PAGE 98
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Access Mode The access level for this community string. Status The status of this community access entry. show snmptrap This command displays SNMP trap receivers. Trap messages are sent across a network to an SNMP Network Manager. These messages alert the manager to events occurring within the switch or on the network. Six trap receivers are simultaneously supported.
PAGE 99
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Multiple Users Flag May be enabled or disabled. The factory default is enabled. Indicates whether a trap will be sent when the same user ID is logged into the switch more than once at the same time (either via telnet or serial port). Spanning Tree Flag May be enabled or disabled. The factory default is enabled. Indicates whether spanning tree traps will be sent. Broadcast Storm Flag May be enabled or disabled.
PAGE 100
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software snmp-server community ipaddr This command sets a client IP address for an SNMP community. The address is the associated community SNMP packet sending address and is used along with the client IP mask value to denote a range of IP addresses from which SNMP clients may use that community to access the device. A value of 0.0.0.0 allows access from any IP address.
PAGE 101
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Mode Global Config snmp-server community mode This command activates an SNMP community. If a community is enabled, an SNMP manager associated with this community manages the switch according to its access right. If the community is disabled, no SNMP requests using this community are accepted. In this case the SNMP manager associated with this community cannot manage the switch until the Status is changed back to Enable.
PAGE 102
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software snmp-server enable traps This command enables the Authentication Flag. Default enabled Format Mode snmp-server enable traps Global Config no snmp-server enable traps This command disables the Authentication Flag. Format Mode no snmp-server enable traps Global Config snmp-server enable traps bcaststorm This command enables the broadcast storm trap.
PAGE 103
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Mode Global Config no snmp-server enable traps linkmode This command disables Link Up/Down traps for the entire switch. Format Mode no snmp-server enable traps linkmode Global Config snmp-server enable traps multiusers This command enables Multiple User traps.
PAGE 104
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software snmptrap This command adds an SNMP trap name. The maximum length of name is 16 case-sensitive alphanumeric characters. Default The default name for the six undefined community names is Delete. Format Mode snmptrap Global Config no snmptrap This command deletes trap receivers for a community.
PAGE 105
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Format Mode no snmptrap mode Global Config snmp trap link-status This command enables link status traps by interface. Note: This command is valid only when the Link Up/Down Flag is enabled. See ‘snmp-server enable traps linkmode’ command. Format Mode snmp trap link-status Interface Config no snmp trap link-status This command disables link status traps by interface.
PAGE 106
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Management VLAN Command This command is used to set the Management VLAN. network mgmt_vlan This command configures the Management VLAN ID. Default 1 Format Mode network mgmt_vlan <1-4094> Privileged EXEC System Configuration Commands This chapter provides a detailed explanation of the System configuration commands.
PAGE 107
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Mode Interface Config no auto-negotiate This command disables automatic negotiation on a port. Note: Automatic sensing is disabled when automatic negotiation is disabled. Format Mode no auto-negotiate Interface Config auto-negotiate all This command enables automatic negotiation on all ports. The default value is enable.
PAGE 108
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software macfilter This command adds a static MAC filter entry for the MAC address on the VLAN . The parameter must be specified as a 6-byte hexadecimal number in the format of b1:b2:b3:b4:b5:b6. The restricted MAC Addresses are: 00:00:00:00:00:00, 01:80:C2:00:00:00 to 01:80:C2:00:00:0F, 01:80:C2:00:00:20 to 01:80:C2:00:00:21, and FF:FF:FF:FF:FF:FF. The parameter must identify a valid VLAN.
PAGE 109
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software no macfilter adddest This command removes a port from the destination filter set for the MAC filter with the given and VLAN of . The parameter must be specified as a 6-byte hexadecimal number in the format of b1:b2:b3:b4:b5:b6. The parameter must identify a valid VLAN.
PAGE 110
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Mode Interface Config no macfilter addsrc This command removes a port from the source filter set for the MAC filter with the MAC address of and VLAN of . The parameter must be specified as a 6-byte hexadecimal number in the format of b1:b2:b3:b4:b5:b6. The parameter must identify a valid VLAN.
PAGE 111
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Format monitor session source Mode Global Config no monitor session This command removes the monitor session (port monitoring) designation from both the source probe port and the destination monitored port and removes the probe port from all VLANs. The port must be manually re-added to any desired VLANs.
PAGE 112
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software no shutdown This command enables a port. Format Mode no shutdown Interface Config shutdown all This command disables all ports. Default enabled Format Mode shutdown all Global Config no shutdown all This command enables all ports. Format Mode no shutdown all Global Config speed This command sets the speed and duplex setting for the interface.
PAGE 113
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Format Mode speed all {<100 | 10> } Global Config Acceptable values are: 100h 100BASE-T half-duplex 100f 100BASE-T full duplex 10h 10BASE-T half duplex 10f 10BASE-T full duplex storm-control broadcast This command enables broadcast storm recovery mode. If the mode is enabled, broadcast storm recovery with high and low thresholds is implemented.
PAGE 114
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 2. Broadcast Storm Recovery Thresholds Link Speed High Low 10M 20 10 100M 5 2 1000M 5 2 Format Mode no storm-control broadcast Global Config storm-control flowcontrol This command enables 802.3x flow control for the switch. Note: This command only applies to full-duplex mode ports. Default disabled Format Mode storm-control flowcontrol Global Config no storm-control flowcontrol This command disables 802.
PAGE 115
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Type This displays the type of the entry. Static entries are those that are configured by the end user. Dynamic entries are added to the table as a result of a learning process or protocol. Component The component that is responsible for this entry in the Multicast Forwarding Database. Possible values are IGMP Snooping, GMRP, and Static Filtering. Description The text description of this multicast table entry.
PAGE 116
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Type This displays the type of the entry. Static entries are those that are configured by the end user. Dynamic entries are added to the table as a result of a learning process or protocol. Description The text description of this multicast table entry. Interfaces The list of interfaces that are designated for forwarding (Fwd:) and filtering (Flt:).
PAGE 117
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Format Mode show port { | all} Slot/Port Valid slot and port number separated by forward slashes. Type If not blank, this field indicates that this port is a special type of port. The possible values are: Mon - this port is a monitoring port. Look at the Port Monitoring screens to find out more information. Lag - this port is a member of a port-channel (LAG). Privileged EXEC Probe - this port is a probe port.
PAGE 118
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software VLAN This field indicates the VLAN associated with this Protocol Group. Interface(s) This field lists the slot/port interface(s) that are associated with this Protocol Group. show storm-control This command displays switch configuration information. Format show storm-control Mode Privileged EXEC Broadcast Storm Recovery Mode May be enabled or disabled. The factory default is disabled. 802.
PAGE 119
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software vlan acceptframe This command sets the frame acceptance mode per interface. For VLAN Only mode, untagged frames or priority frames received on this interface are discarded. For Admit All mode, untagged frames or priority frames received on this interface are accepted and assigned the value of the interface VLAN ID for this port. With either option, VLAN tagged frames are forwarded in accordance with the IEEE 802.1Q VLAN Specification.
PAGE 120
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software vlan makestatic This command changes a dynamically created VLAN (one that is created by GVRP registration) to a static VLAN (one that is permanently configured and defined). The ID is a valid VLAN identification number. VLAN range is 2-4094. Format Mode vlan makestatic <2-4094> VLAN database vlan name This command changes the name of a VLAN.
PAGE 121
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software exclude The interface is never a member of this VLAN. This is equivalent to registration forbidden. auto The interface is dynamically registered in this VLAN by GVRP. The interface will not participate in this VLAN unless a join request is received on this interface. This is equivalent to registration normal. vlan participation all This command configures the degree of participation for all interfaces in a VLAN.
PAGE 122
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software no vlan port acceptframe all This command sets the frame acceptance mode for all interfaces to Admit All. For Admit All mode, untagged frames or priority frames received on this interface are accepted and assigned the value of the interface VLAN ID for this port. With either option, VLAN tagged frames are forwarded in accordance with the IEEE 802.1Q VLAN Specification.
PAGE 123
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Format Mode no vlan port pvid all Global Config vlan port tagging all This command configures the tagging behavior for all interfaces in a VLAN to enabled. If tagging is enabled, traffic is transmitted as tagged frames. If tagging is disabled, traffic is transmitted as untagged frames. The ID is a valid VLAN identification number.
PAGE 124
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Mode Global Config no vlan protocol group add protocol This command removes the from this protocol-based VLAN group that is identified by this . The possible values for protocol are ip, arp, and ipx. Format no vlan protocol group add protocol Mode Global Config vlan protocol group remove This command removes the protocol-based VLAN group that is identified by this .
PAGE 125
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software protocol vlan group This command adds the physical interface to the protocol-based VLAN identified by . A group may have more than one interface associated with it. Each interface and protocol combination can only be associated with one group.
PAGE 126
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Format Mode no protocol vlan group all Global Config vlan pvid This command changes the VLAN ID per interface. Default 1 Format Mode vlan pvid <1-4094> Interface Config no vlan pvid This command sets the VLAN ID per interface to 1. Format Mode no vlan pvid Interface Config vlan tagging This command configures the tagging behavior for a specific interface in a VLAN to enabled.
PAGE 127
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Format Mode VLAN ID show vlan Privileged EXEC and User EXEC There is a VLAN Identifier (VID) associated with each VLAN. The range of the VLAN ID is 1 to 4094. VLAN Name A string associated with this VLAN as a convenience. It can be up to 32 alphanumeric characters long, including blanks. The default is blank. VLAN ID 1 always has a name of `Default`. This field is optional.
PAGE 128
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Untagged - specifies to transmit traffic for this VLAN as untagged frames. show vlan brief This command displays a list of all configured VLANs. Format Mode VLAN ID show vlan brief Privileged EXEC and User EXEC There is a VLAN Identifier (vlanid )associated with each VLAN. The range of the VLAN ID is 1 to 4094. VLAN Name A string associated with this VLAN as a convenience.
PAGE 129
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software port. With either option, VLAN tagged frames are forwarded in accordance to the 802.1Q VLAN specification. Ingress Filtering May be enabled or disabled. When enabled, the frame is discarded if this port is not a member of the VLAN with which this frame is associated. In a tagged frame, the VLAN is identified by the VLAN ID in the tag. In an untagged frame, the VLAN is the Port VLAN ID specified for the port that received this frame.
PAGE 130
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software clear config This command resets the configuration to the factory defaults without powering off the switch. The switch is automatically reset when this command is processed. You are prompted to confirm that the reset should proceed. Format clear config Mode Privileged EXEC clear counters This command clears the stats for a specified or for all the ports or for the entire switch based upon the argument.
PAGE 131
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Mode Privileged EXEC clear port-channel This command clears all port-channels (LAGs). Format Mode clear port-channel Privileged EXEC clear traplog This command clears the trap log. Format clear traplog Mode Privileged EXEC clear vlan This command resets VLAN configuration parameters to the factory defaults.
PAGE 132
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software ping This command checks if another computer is on the network and listens for connections. To use this command, configure the switch for network (in-band) connection. The source and target devices must have the ping utility enabled and running on top of TCP/IP.
PAGE 133
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software The command can be used to the save the running configuration to nvram by specifying the source as system:running-config and the destination as nvram:startup-config The command can also be used to download ssh key files as nvram:sshkey-rsa, nvram:sshkey-rsa2, and nvram:sshkey-dsa and http secure-server certificates as nvram:sslpem-root, nvram:sslpem-server, nvram:sslpem-dhweak, and nvram:sslpem-dhstrong.
PAGE 134
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software CLI Command Logging This section provides a detailed explanation of the CLI Command Logging commands. logging cli-command This command enables the CLI command Logging feature.The Command Logging component enables the software to log all Command Line Interface (CLI) commands issued on the system.
PAGE 135
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software configscript apply This command applies the commands in the configuration script to the switch. The apply command backs up the running configuration and then starts applying the commands in the script file. Application of the commands stops at the first failure of a command. The parameter is the name of the script to be applied.
PAGE 136
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software configscript validate This command validates a configuration script file by parsing each line in the script file where is the name of the script to be validated. The validation will stop at the first failure of a command.. Format configscript validate Mode Privileged EXEC show running-config This command is used to display/capture the current setting of different protocol packages supported on switch.
PAGE 137
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software logging buffered This command enables logging to in-memory log where up to 128 logs are kept. The value is specified as either an integer from 0 to 7 or symbolically through one of the following keywords: emergency (0), alert (1), critical (2), error (3), warning (4), notice (5), informational (6), debug (7).
PAGE 138
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Default disabled; critical Format logging console [severitylevel] Mode Global Config no logging console This command disables logging to the console. Format no logging console Mode Global Config logging history This command enables logging of system startup and system operation logs to storage.
PAGE 139
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software logging host remove This command disables logging to host. See ‘show logging hosts’ for a list of host indices. Format logging host remove Mode Global Config logging port This command sets the local port number of the LOG client for logging messages. The can be in the range from 1 to 65535.
PAGE 140
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software show logging This command displays logging. Format show logging Mode Privileged EXEC Client Local Port The port on the collector/relay to which syslog messages are sent Console Logging Administrative Mode The mode for console logging. Console Logging Severity Filter The minimum severity to log to the console log. Messages with an equal or lower numerical severity are logged.
PAGE 141
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Log Messages: The number of messages received by the log process. This includes messages that are dropped or ignored show logging buffered This command displays buffered logging (system startup and system operation logs). Format show logging buffered Mode Privileged EXEC Admin Status The current state of the in-memory log. Severity Level Filter The minimum severity to log to the in memory log.
PAGE 142
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Host Status The state of logging to configured syslog hosts. If the status is disable, no logging occurs. Simple Network Time Protocol (SNTP) This section provides a detailed explanation of the SNTP commands. The commands are divided into two functional groups: • Show commands display spanning tree settings, statistics, and other information. • Configuration Commands configure features and options of the switch.
PAGE 143
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software sntp client mode This command will disable Simple Network Time Protocol (SNTP) client mode. Format no sntp client mode Mode Global Config sntp client port This command will set the SNTP client port id to a value from 1-65535. Default 123 Format sntp client port Mode Global Config no sntp client port This command will reset the SNTP client port back to its default value.
PAGE 144
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software sntp unicast client poll-timeout This command will set the poll timeout for SNTP unicast clients in seconds to a value from 1-30. Default 5 Format sntp unicast client poll-timeout Mode Global Config no sntp unicast client poll-timeout This command will reset the poll timeout for SNTP unicast clients to its default value.
PAGE 145
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software no sntp multicast client poll-interval This command will reset the poll interval for SNTP multicast clients to its default value. Format no sntp multicast client poll-interval Mode Global Config sntp server This command configures an SNTP server (with a maximum of three) where the server address can be an ip address or a domain name and the address type either ipv4 or dns.
PAGE 146
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Multicast Count Current number of unsolicited multicast messages that have been received and processed by the SNTP client since last reboot show sntp client This command is used to display SNTP client settings. Format show sntp client Mode Privileged Exec Client Supported Modes Supported SNTP Modes (Broadcast, Unicast, or Multicast).
PAGE 147
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Address Type Address Type of configured SNTP server. Priority IP priority type of the configured server. Version SNTP Version number of the server. The protocol version used to query the server in unicast mode. Port Server Port Number Last Attempt Time Last Attempt Status Last server attempt time for the specified server. Last server attempt status for the server. Total Unicast Requests Number of requests to the server.
PAGE 148
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software case sensitive. Two users are included as the factory default, ‘admin’ and ‘guest’. Connection From IP address of the telnet client machine or EIA-232 for the serial port connection. Idle Time Time this session has been idle. Session Time Total time this session has been connected. show users This command displays the configured user names and their settings. This command is only available for users with Read/Write privileges.
PAGE 149
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software users name This command adds a new user (account) if space permits. The account can be up to eight characters in length. The name may be comprised of alphanumeric characters as well as the dash (‘-’) and underscore (‘_’). The is not case-sensitive. Six user names can be defined. Format users name Mode Global Config no users name This command removes an operator.
PAGE 150
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software users snmpv3 accessmode This command specifies the snmpv3 access privileges for the specified login user. The valid accessmode values are readonly or readwrite. The is the login user name for which the specified access mode applies.
PAGE 151
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software users snmpv3 encryption This command specifies the encryption protocol to be used for the specified login user. The valid encryption protocols are des or none. If des is specified, the required key may be specified on the command line. The encryption key must be 8 to 64 characters long. If the des protocol is specified but a key is not provided, the user will be prompted for the key.
PAGE 152
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software client-identifier This command specifies the unique identifier for a DHCP client. Unique-identifier is a valid notation in hexadecimal format. In some systems, such as Microsoft DHCP clients, the client identifier is required instead of hardware addresses. The unique-identifier is a concatenation of the media type and the MAC address. For example, the Microsoft client identifier for Ethernet address c819.2488.f177 is 01c8.1924.88f1.
PAGE 153
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software default-router This command specifies the default router list for a DHCP client. {address1, address2… address8} are valid IP addresses, each made up of four decimal bytes ranging from 0 to 255. IP address 0.0.0.0 is invalid. Default None Format default-router [....] Mode DHCP Pool Config no default-router This command removes the default router list.
PAGE 154
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Type indicates the protocol of the hardware platform. It is 1 for 10 MB Ethernet and 6 for IEEE 802. Default ethernet Format hardware-address [type] Mode DHCP Pool Config no hardware-address This command removes the hardware address of the DHCP client. Format no hardware-address Mode DHCP Pool Config host This command specifies the IP address and network mask for a manual binding to a DHCP client.
PAGE 155
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Mode Global Config no ip dhcp excluded-address This command removes the excluded IP addresses for a DHCP client. Low-address and highaddress are valid IP addresses; each made up of four decimal bytes ranging from 0 to 255. IP address 0.0.0.0 is invalid.
PAGE 156
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Format ip dhcp pool Mode Global Config Mode no ip dhcp pool This command removes the DHCP address pool. The name should be previously configured pool name. Format no ip dhcp pool Mode Global Config Mode lease This command configures the duration of the lease for an IP address that is assigned from a DHCP server to a DHCP client. The overall lease time should be between 1-86400 minutes.
PAGE 157
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software no network This command removes the subnet number and mask. Format no network Mode DHCP Pool Config service dhcp This command enables the DHCP server and relay agent features on the router. Default disabled Format service dhcp Mode Global Config no service dhcp This command disables the DHCP server and relay agent features.
PAGE 158
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software domain-name This command specifies the domain name for a DHCP client. The specifies the domain name string of the client. Default none Format domain-name Mode DHCP Pool Config no domain-name This command removes the domain name. Format no domain-name Mode DHCP Pool Config ip dhcp bootp automatic This command enables the allocation of the addresses to the bootp client.
PAGE 159
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software no ip dhcp conflict logging This command disables conflict logging on DHCP server. Format no ip dhcp conflict logging Mode Global Config netbios-name-server This command configures NetBIOS Windows Internet Naming Service (WINS) name servers that are available to DHCP clients. One IP address is required, although one can specify up to eight addresses in one command line.
PAGE 160
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Format netbios-node-type Mode DHCP Pool Config no netbios-node-type This command removes the NetBIOS node Type. Format no netbios-node-type Mode DHCP Pool Config next-server This command configures the next server in the boot process of a DHCP client. Address is the IP address of the next server in the boot process, which is typically a Trivial File Transfer Protocol (TFTP) server.
PAGE 161
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Format option {ascii string | hex [... ] | ip [... ]} Mode DHCP Pool Config no option This command removes the options. Format no option Mode DHCP Pool Config show ip dhcp binding This command displays address bindings for the specific IP address on the DHCP server.
PAGE 162
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software The ranges of IP addresses that a DHCP server should not assign to DHCP clients. Excluded Address show ip dhcp pool configuration This command displays pool configuration. If all is specified, configuration for all the pools is displayed. Format show ip dhcp pool configuration { | all} Modes Privileged EXEC User EXEC Pool Name The name of the configured pool. Pool Type The pool type.
PAGE 163
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Manual bindings The number of IP addresses that have been manually mapped to the MAC addresses of hosts that are found in the DHCP database. Expired bindings The number of expired leases. Malformed messages The number of truncated or corrupted messages that were received by the DHCP server. Message Received DHCPREQUEST The number of DHCPREQUEST messages that were received by the server.
PAGE 164
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software clear ip dhcp binding This command deletes an automatic address binding from the DHCP server database. If “*” is specified, the bindings corresponding to all the addresses are deleted.
is a valid IP address made up of four decimal bytes ranging from 0 to 255. IP address 0.0.0.0 is invalid.
PAGE 165
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software classofservice dot1pmapping This command maps an 802.1p priority to an internal traffic class for a device when in ‘Global Config’ mode. The number of available traffic classes may vary with the platform. Userpriority and trafficclass can both be the range from 0-7.
PAGE 166
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Default 0 Format Mode vlan priority Interface Config GARP Commands This chapter provides a detailed explanation of the GARP commands. The commands are divided into two functional groups: • Show commands display switch settings, statistics, and other information. • Configuration commands configure features and options of the switch.
PAGE 167
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software set garp timer join all This command sets the GVRP join time for all ports and per GARP. Join time is the interval between the transmission of GARP Protocol Data Units (PDUs) registering (or re-registering) membership for a VLAN or multicast group. This command has an effect only when GVRP is enabled. The time is from 10 to 100 (centiseconds). The value 20 centiseconds is 0.2 seconds.
PAGE 168
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Mode Interface Config set garp timer leave all This command sets the GVRP leave time for all ports. Leave time is the time to wait after receiving an unregister request for a VLAN or a multicast group before deleting the VLAN entry. This can be considered a buffer time for another station to assert registration for the same attribute in order to maintain uninterrupted service.time is 20 to 600 (centiseconds).
PAGE 169
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Note: This command has an effect only when GVRP is enabled. Format no set garp timer leaveall Mode Interface Config set garp timer leaveall all This command sets how frequently Leave All PDUs are generated for all ports. A Leave All PDU indicates that all registrations will be unregistered. Participants would need to rejoin in order to maintain registration. The value applies per port and per GARP participation.
PAGE 170
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software GARP VLAN Registration Protocol (GVRP) Commands This chapter provides a detailed explanation of the GVRP commands. The commands are divided into two functional groups: • Show commands display switch settings, statistics, and other information. • Configuration commands configure features and options of the switch. For every configuration command, there is a show command that displays the configuration setting.
PAGE 171
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software set gvrp interfacemode all This command enables GVRP (GARP VLAN Registration Protocol) for all ports. Default disabled Format Mode set gvrp interfacemode all Global Config no set gvrp interfacemode all This command disables GVRP (GARP VLAN Registration Protocol) for all ports. If GVRP is disabled, Join Time, Leave Time and Leave All Time have no effect.
PAGE 172
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software instance of this timer on a per-Port, per-GARP participant basis. The Leave All Period Timer is set to a random value in the range of LeaveAllTime to 1.5*LeaveAllTime. Permissible values are 200 to 6000 centiseconds (2 to 60 seconds). The factory default is 1000 centiseconds (10 seconds). The finest granularity of specification is 1 centisecond (0.01 seconds). Port GMRP Mode Indicates the GMRP administrative mode for the port.
PAGE 173
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software set gmrp interfacemode This command enables GARP Multicast Registration Protocol on a selected interface. If an interface which has GARP enabled is enabled for routing or is enlisted as a member of a portchannel (LAG), GARP functionality will be disabled on that interface. GARP functionality will subsequently be re-enabled if routing is disabled and port-channel (LAG) membership is removed from an interface that has GARP enabled.
PAGE 174
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Mode Global Config show gmrp configuration This command displays Generic Attributes Registration Protocol (GARP) information for one or all interfaces. Format Mode show gmrp configuration { | all} Interface This displays the slot/port of the interface that this row in the table describes.
PAGE 175
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Mode Privileged EXEC Mac Address A unicast MAC address for which the switch has forwarding and or filtering information. The format is 6 or 8 two-digit hexadecimal numbers that are separated by colons, for example 01:23:45:67:89:AB. In an IVL system the MAC address will be displayed as 8 bytes. Type This displays the type of the entry. Static entries are those that are configured by the end user.
PAGE 176
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software no set igmp This command disables IGMP Snooping on the system. Format no set igmp Mode Global Config set igmp This command enables IGMP Snooping on a selected interface. If an interface which has IGMP Snooping enabled is enabled for routing or is enlisted as a member of a port-channel (LAG), IGMP Snooping functionality will be disabled on that interface.
PAGE 177
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Format no set igmp groupmembership-interval Mode Global Config set igmp interfacemode all This command enables IGMP Snooping on all interfaces. If an interface which has IGMP Snooping enabled is enabled for routing or is enlisted as a member of a port-channel (LAG), IGMP Snooping functionality will be disabled on that interface.
PAGE 178
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software set igmp mcrtrexpiretime This command sets the Multicast Router Present Expiration time on the system. This is the amount of time in seconds that a switch will wait for a query to be received on an interface before the interface is removed from the list of interfaces with multicast routers attached. The range is 0 to 3600 seconds. A value of 0 indicates an infinite timeout, i.e. no expiration.
PAGE 179
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Multicast Control Frame Count This displays the number of multicast control frames that are processed by the CPU. show mac-address-table igmpsnooping This command displays the IGMP Snooping entries in the Multicast Forwarding Database (MFDB) table. Format Mode show mac-address-table igmpsnooping Mac Address A multicast MAC address for which the switch has forwarding and or filtering information.
PAGE 180
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Mode Vlan Mode no set igmp This command disables IGMP snooping on a particular VLAN, and in turn disabling IGMP snooping on all interfaces participating in this VLAN. Format no set igmp Mode Vlan Mode set igmp groupmembershipinterval This command sets the IGMP Group Membership Interval on a particular VLAN.
PAGE 181
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Format set igmp maxresponse <1-3599> Mode Vlan Mode no set igmp maxresponse This command sets the IGMP Maximum Response time on the VLAN to the default value. Format no set igmp maxresponse Mode Vlan Mode set igmp mcrtexpiretime This command sets the Multicast Router Present Expiration time on a particular VLAN.
PAGE 182
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Fast-leave admin mode should be enabled only on VLANs where only one host is connected to each layer 2 LAN port, to prevent the inadverdent dropping of the other hosts that were connected to the same layer 2 LAN port but were still interested in receiving multicast traffic directed to that group. Also, fast-leave processing is supported only with IGMP version 2 hosts.
PAGE 183
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Fast Leave Mode This indicates whether or not IGMP Snooping Fast-leave is active on the VLAN. Group Membership Interval Time The Group Membership Interval time is the amount of time in seconds that a switch will wait for a report from a particular group on a particular interface, which is participating in the VLAN, before deleting the interface from the entry.
PAGE 184
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software no port-channel staticcapability This command disables the support of static port-channels (link aggregations - LAGs) on the device. Format Mode no port-channel staticcapability Global Config port lacpmode This command enables Link Aggregation Control Protocol (LACP) on a port. Default disabled Format Mode port lacpmode Interface Config no port lacpmode This command disables Link Aggregation Control Protocol (LACP) on a port.
PAGE 185
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software port-channel This command configures a new port-channel (LAG) and generates a logical slot/port number for the port-channel. The field is a character string which allows the dash '-' character as well as alphanumeric characters. Display this number using the “show port-channel”. Note: Before including a port in a port-channel, set the port physical mode. See ‘speed’ command.
PAGE 186
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Default enabled Format Mode port-channel linktrap { | all} Global Config no port-channel linktrap This command disables link trap notifications for the port-channel (LAG). The interface is a logical unit, slot and port slot and port for a configured port-channel. The option all sets every configured port-channel with the same administrative mode setting.
PAGE 187
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Active Ports This field lists the ports that are actively participating in this portchannel. show port-channel This command displays an overview of all port-channels (LAGs) on the switch. Format Mode show port-channel { | all} Privileged EXEC Logical slot/port Valid slot and port number separated by forward slashes. Name The name of this port-channel (LAG).
PAGE 188
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Spanning Tree (STP) Commands This chapter provides a detailed explanation of the Spanning Tree commands. The commands are divided into two functional groups: • Show commands display switch settings, statistics, and other information. • Configuration commands configure features and options of the switch. For every configuration command, there is a show command that displays the configuration setting.
PAGE 189
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Default disabled Format spanning-tree Mode Global Config no spanning-tree This command sets the spanning-tree operational mode to disabled. While disabled, the spanningtree configuration is retained and can be changed, but is not activated.
PAGE 190
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software no spanning-tree configuration revision This command sets the Configuration Identifier Revision Level for use in identifying the configuration that this switch is currently using to the default value, i.e. 0. Format no spanning-tree configuration revision Mode Global Config spanning-tree edgeport This command specifies that this port is an Edge Port within the common and internal spanning tree.
PAGE 191
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software no spanning-tree forceversion This command sets the Force Protocol Version parameter to the default value, i.e. 802.1s. Format no spanning-tree forceversion Mode Global Config spanning-tree forward-time This command sets the Bridge Forward Delay parameter to a new value for the common and internal spanning tree.
PAGE 192
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software This command sets the admin Hello Time parameter for the common and internal spanning tree to the default value. Format Mode no spanning-tree hello-time Interface Config spanning-tree max-age This command sets the Bridge Max Age parameter to a new value for the common and internal spanning tree. The max-age value is in seconds within a range of 6 to 40, with the value being less than or equal to "2 times (Bridge Forward Delay - 1)".
PAGE 193
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software If the ‘external-cost’ token is specified, this command sets the external-path cost for MST instance ‘0’ i.e. CIST instance. The external pathcost can be specified as a number in the range of 1 to 200000000 or auto. If "auto" is specified, the external pathcost value will be set based on Link Speed.
PAGE 194
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software spanning-tree mst instance This command adds a multiple spanning tree instance to the switch. The instance is a number within a range of 1 to 4094, that corresponds to the new instance ID to be added. The maximum number of multiple instances supported by the software is 4.
PAGE 195
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software If 0 (defined as the default CIST ID) is passed as the , then this command sets the Bridge Priority parameter for the common and internal spanning tree to the default value, i.e. 32768. Format spanning-tree mst priority Mode Global Config spanning-tree mst vlan This command adds an association between a multiple spanning tree instance and a VLAN.
PAGE 196
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software spanning-tree port mode all This command sets the Administrative Switch Port State for all ports to enabled. Default disabled Format spanning-tree port mode all Mode Global Config no spanning-tree port mode all This command sets the Administrative Switch Port State for all ports to disabled.
PAGE 197
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software no spanning-tree bpdumigrationcheck This command disables BPDU migration check on a given interface. The all option disables BPDU migration check on all interfaces. Format no spanning-tree bpdumigrationcheck { | all} Mode Global Config show spanning-tree This command displays spanning tree settings for the common and internal spanning tree, when the optional parameter “brief” is not included in the command.
PAGE 198
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software CST Regional Root Bridge Identifier of the common spanning tree regional root. It is derived using the bridge priority and the base MAC address of the bridge. Regional Root Path Cost Path cost to the common spanning tree Regional Root. Associated FIDs List of forwarding database identifiers currently associated with this instance. Associated VLANs List of VLAN IDs currently associated with this instance.
PAGE 199
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software MSTP BPDUs Transmitted Multiple Spanning Tree Protocol Bridge Protocol Data Units sent MSTP BPDUs Received Multiple Spanning Tree Protocol Bridge Protocol Data Units received. show spanning-tree mst detailed This command displays settings and parameters for the specified multiple spanning tree instance. The instance is a number that corresponds to the desired existing multiple spanning tree instance ID.
PAGE 200
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Port Priority The priority for a particular port within the selected MST instance. Port Forwarding State Port Role Current spanning tree state of this port Each MST Bridge Port that is enabled is assigned a Port Role for each spanning tree. Port Path Cost Configured value of the Internal Port Path Cost parameter Designated Root The Identifier of the designated root for this port.
PAGE 201
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Point To Point MAC Status Derived value indicating if this port is part of a point to point link. CST Regional Root The regional root identifier in use for this port. CST Port Cost The configured path cost for this port. show spanning-tree mst port summary This command displays the settings of one or all ports within the specified multiple spanning tree instance. The parameter indicates a particular MST instance.
PAGE 202
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Associated FIDs List of forwarding database identifiers associated with this instance. Associated VLANs List of VLAN IDs associated with this instance. show spanning-tree summary This command displays spanning tree settings and parameters for the switch. The following details are displayed on execution of the command.
PAGE 203
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software spanning-tree max-hops This command sets the MSTP Max Hops parameter to a new value for the common and internal spanning tree. The max-hops value is a range from 1 to 127. Default 20 Format Mode spanning-tree max-hops <1-127> Global Config no spanning-tree max-hops This command sets the Bridge Max Hops parameter for the common and internal spanning tree to the default value.
PAGE 204
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software If the ‘port-priority’ token is specified, this command sets the priority for this port within a specific multiple spanning tree instance or the common and internal spanning tree instance, depending on the parameter. The port-priority value is a number in the range of 0 to 240 in increments of 16.
PAGE 205
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software This command sets the Admin Hello Time parameter to a new value for the common and internal spanning tree. The hellotime is in whole seconds within a range of 1 to 10 with the value being less than or equal to "(Bridge Max Age / 2) - 1".
PAGE 206
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Root Port Bridge Forward Delay Derived value Hello Time Configured value Bridge Hold Time Minimum time between transmission of Configuration Bridge Protocol Data Units (BPDUs) Bridge Max Hops CST Regional Root Bridge max-hops count for the device. Regional Root Path Cost Associated FIDs List of forwarding database identifiers currently associated with this instance.
PAGE 207
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software STP BPDUs Transmitted Spanning Tree Protocol Bridge Protocol Data Units sent STP BPDUs Received Spanning Tree Protocol Bridge Protocol Data Units received. RST BPDUs Transmitted Rapid Spanning Tree Protocol Bridge Protocol Data Units sent RST BPDUs Received Rapid Spanning Tree Protocol Bridge Protocol Data Units received.
PAGE 208
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software If 0 (defined as the default CIST ID) is passed as the , then this command displays the settings and parameters for a specific switch port within the common and internal spanning tree. The is the desired switch port. In this case, the following are displayed. Port Identifier The port identifier for this port within the CST. Port Priority The priority of the port within the CST.
PAGE 209
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Chapter 9 Security Commands This section provides a detailed explanation of the Security commands. The commands are divided into the following groups: • Configuration commands are used to configure features and options of the switch. For every configuration command there is a show command that will display the configuration setting. • Show commands are used to display switch settings, statistics and other information.
PAGE 210
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Modes Global Config Interface Config port-security max-dynamic This command sets the maximum of dynamically locked MAC addresses allowed on a specific port. Default 600 Format port-security max-dynamic Mode Interface Config no port-security max-dynamic This command resets the maximum of dynamically locked MAC addresses allowed on a specific port to its default value.
PAGE 211
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software port-security mac-address This command adds a MAC address to the list of statically locked MAC addresses. Format port-security mac-address Mode Interface Config no port-security mac-address This command removes a MAC address to the list of statically locked MAC addresses.
PAGE 212
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software show port-security This command displays the port-security settings for the entire system. Format show port-security Mode Privileged EXEC Admin Mode Port Locking mode for the entire system show port-security This command displays the port-security settings for a particular interface or all interfaces. Format show port-security Mode Privileged EXEC Interface Admin Mode Port Locking mode for the Interface.
PAGE 213
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software show port-security violation This command displays the source MAC address of the last packet that was discarded on a locked port. Format show port-security violation Mode Privileged EXEC MAC Address MAC Address of discarded packet on locked port. Port Based Network Access Control (IEEE 802.1X) Commands This section provides a detailed explanation of the 802.1x commands.
PAGE 214
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Format authentication login [method1 [method2 [method3]]] Mode Global Config no authentication login This command deletes the specified authentication login list.
PAGE 215
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Format dot1x defaultlogin Mode Global Config dot1x initialize This command begins the initialization sequence on the specified port. This command is only valid if the control mode for the specified port is 'auto'. If the control mode is not 'auto' an error will be returned.
PAGE 216
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software dot1x port-control This command sets the authentication mode to be used on the specified port. . The control mode may be one of the following. force-unauthorized: The authenticator PAE unconditionally sets the controlled port to unauthorized. force-authorized: The authenticator PAE unconditionally sets the controlled port to authorized.
PAGE 217
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Mode Global Config no dot1x port-control All This command sets the authentication mode to be used on all ports to 'auto'. Format no dot1x port-control all Mode Global Config dot1x re-authenticate This command begins the re-authentication sequence on the specified port. This command is only valid if the control mode for the specified port is 'auto'. If the control mode is not 'auto' an error will be returned.
PAGE 218
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Format dot1x system-auth-control Mode Global Config no dot1x system-auth-control This command is used to disable the dot1x authentication support on the switch. Format no dot1x system-auth-control Mode Global Config dot1x timeout This command sets the value, in seconds, of the timer used by the authenticator state machine on this port.
PAGE 219
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Format dot1x timeout {{reauth-period } | {quietperiod } | {tx-period } | {supp-timeout } | {server-timeout }} Mode Interface Config no dot1x timeout This command sets the value, in seconds, of the timer used by the authenticator state machine on this port to the default values. Depending on the token used, the corresponding default values are set.
PAGE 220
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software IP Address The configured IP address of the RADIUS accounting server Port The port in use by the RADIUS accounting server Secret Configured Yes or No If the optional token 'statistics ' is included, the statistics for the configured RADIUS accounting server are displayed. The IP address parameter must match that of a previously configured RADIUS accounting server.
PAGE 221
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Format show authentication Mode Privileged EXEC Authentication Login List This displays the authentication login listname. Method 1 This displays the first method in the specified authentication login list, if any. Method 2 This displays the second method in the specified authentication login list, if any. Method 3 This displays the third method in the specified authentication login list, if any.
PAGE 222
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Control Mode The configured control mode for this port. Possible values are force-unauthorized | force-authorized | auto Operating Control Mode The control mode under which this port is operating.
PAGE 223
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Reauthentication Enabled Indicates if reauthentication is enabled on this port. Possible values are ‘True” or “False”. Key Transmission Enabled Indicates if the key is transmitted to the supplicant for the specified port. Possible values are True or False. Control Direction Indicates the control direction for the specified port or ports. Possible values are both or in.
PAGE 224
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software show dot1x users This command displays 802.1x port security user information for locally configured users. Format show dot1x users Mode Privileged EXEC User Users configured locally to have access to the specified port. show users authentication This command displays all user and all authentication login information. It also displays the authentication login list assigned to the default user.
PAGE 225
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Note that the login list associated with the ‘admin’ user can not be changed to prevent accidental lockout from the switch. Format users login Mode Global Config Remote Authentication Dial In User Service (RADIUS) Commands This section provides a detailed explanation of the RADIUS commands.
PAGE 226
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software If the 'auth' token is used, the command configures the IP address to use to connect to a RADIUS authentication server. Up to 3 servers can be configured per RADIUS client. If the maximum number of configured servers is reached, the command will fail until one of the servers is removed by executing the no form of the command.
PAGE 227
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software radius server key This command is used to configure the shared secret between the RADIUS client and the RADIUS accounting / authentication server. Depending on whether the 'auth' or 'acct' token is used, the shared secret will be configured for the RADIUS authentication or RADIUS accounting server. The IP address provided must match a previously configured server. When this command is executed, the secret will be prompted.
PAGE 228
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Format radius server retransmit Mode Global Config no radius server retransmit This command sets the maximum number of times a request packet is re-transmitted, when no response is received from the RADIUS server, to the default value, i.e. 10.
PAGE 229
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Number of configured servers The configured IP address of the authentication server Max number of retransmits The configured value of the maximum number of times a request packet is retransmitted Timeout Duration The configured timeout value, in seconds, for request re-transmissions Accounting Mode Yes or No If the optional token 'servers' is included, the following information regarding the configured RADIUS servers is displayed.
PAGE 230
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Access Retransmission The number of RADIUS Access-Request packets retransmitted to this RADIUS authentication server. Access Accepts The number of RADIUS Access-Accept packets, including both valid and invalid packets, which were received from this server. Access Rejects The number of RADIUS Access-Reject packets, including both valid and invalid packets, which were received from this server.
PAGE 231
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Mode Privileged EXEC no ip ssh This command is used to disable SSH. Format Mode no ip ssh Privileged EXEC ip ssh protocol This command is used to set or remove protocol levels (or versions) for SSH. Either SSH1 (1), SSH2 (2), or both SSH 1 and SSH 2 (1 and 2) can be set. Default 1 and 2 Format Mode ip ssh protocol [1] [2] Privileged EXEC show ip ssh This command displays the ssh settings.
PAGE 232
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software ip http secure-port This command is used to set the sslt port where port can be 1-65535 and the default is port 443. Default 443 Format Mode ip http secure-port Privileged EXEC no ip http secure-port This command is used to reset the sslt port to the default value. Format Mode no ip http secure-port Privileged EXEC ip http secure-protocol This command is used to set protocol levels (versions).
PAGE 233
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software ip http server This command enables access to the switch through the Web interface. When access is enabled, the user can login to the switch from the Web interface. When access is disabled, the user cannot login to the switch's Web server. Disabling the Web interface takes effect immediately. All interfaces are effected.
PAGE 234
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software 9-26 Security Commands 202-10088-01, March 2005
PAGE 235
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Chapter 10 Routing Commands This chapter provides a detailed explanation of the Routing commands. Address Resolution Protocol (ARP) Commands This chapter provides a detailed explanation of the ARP commands. The commands are divided by functionality into the following different groups: • Show commands are used to display switch settings, statistics and other information.
PAGE 236
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Mode Global Config ip proxy-arp This command enables proxy ARP on a router interface. Without proxy ARP, a device only responds to an ARP request if the target IP address is an address configured on the interface where the ARP request arrived. With proxy ARP, the device may also respond if the target IP address is reachable.
PAGE 237
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software arp dynamicrenew This command enables ARP component to automatically renew ARP entries of type dynamic when they age out. Format Mode arp dynamicrenew Privileged Exec no arp dynamicrenew This command disables ARP component from automatically renewing ARP entries of type dynamic when they age out. Format Mode no arp dynamicrenew Privileged Exec arp purge This command causes the specified IP address to be removed from the ARP cache.
PAGE 238
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software arp retries This command configures the ARP count of maximum request for retries. The value for is an integer, which represents the maximum number of request for retries. The range for is an integer between 0-10 retries. Default Format Mode 4 arp retries <0-10> Global Config no arp retries This command configures the default ARP count of maximum request for retries.
PAGE 239
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Format Mode clear arp-cache [gateway] Privileged Exec show arp This command displays the Address Resolution Protocol (ARP) cache. The displayed results are not the total ARP entries. To view the total ARP entries, the operator should view the show arp results in conjunction with the show arp switch results. Format Mode Age Time (seconds) show arp Privileged EXEC Is the time it takes for an ARP entry to age out.
PAGE 240
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software show arp brief This command displays the brief Address Resolution Protocol (ARP) table information. Format Mode Age Time (seconds) show arp brief Privileged EXEC Is the time it takes for an ARP entry to age out. This value was configured into the unit. Age time is measured in seconds. Response Time (seconds) Is the time it takes for an ARP request timeout. This value was configured into the unit.
PAGE 241
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software The current value for this function is displayed under "show ip interface" labeled as "Routing Mode". Default Format disabled Mode Interface Config routing no routing This command disables routing for an interface. The current value for this function is displayed under "show ip interface" labeled as "Routing Mode".
PAGE 242
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Mode Interface Config no ip address This command deletes an IP address from an interface. The value for is the IP Address of the interface. The value for is a 4-digit dotted-decimal number which represents the Subnet Mask of the interface. Format Mode no ip address [secondary] Interface Config ip route This command configures a static route. The is a valid ip address.
PAGE 243
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Format ip route default [] Mode Global Config no ip route default This command deletes all configured default routes. If the optional parameter is designated, the specific next hop is deleted from the configured default route and if the optional preference value is designated, the preference of the configured default route is reset to its default.
PAGE 244
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Format Mode ip forwarding Global Config no ip forwarding This command disables forwarding of IP frames. Format Mode no ip forwarding Global Config ip netdirbcast This command enables the forwarding of network-directed broadcasts. When enabled, network directed broadcasts are forwarded. When disabled they are dropped.
PAGE 245
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Mode Interface Config show ip brief This command displays all the summary information of the IP. This command takes no options. Format Mode Default Time to Live show ip brief Privileged EXEC and User EXEC The computed TTL (Time to Live) of forwarding a packet from the local router to the final destination. Router ID Is a 32 bit integer in dotted decimal format identifying the router, about which information is displayed.
PAGE 246
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Link Speed Data Rate Is an integer representing the physical link data rate of the specified interface. This is measured in Megabits per second (Mbps). MAC Address Is the burned in physical address of the specified interface. The format is 6 two-digit hexadecimal numbers that are separated by colons. Encapsulation Type Is the encapsulation type for the specified interface. The types are: Ethernet or SNAP.
PAGE 247
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Subnet Mask Is a mask of the network and host portion of the IP address for the router interface. Protocol Tells which protocol added the specified route. The possibilities are: local, static, or RIP. Total Number of Routes The total number of routes. For each Next Hop Next Hop Intf The outgoing router interface to use when forwarding traffic to the next destination.
PAGE 248
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Mode Network Address Privileged EXEC Is a valid network address identifying the network on the specified interface. Subnet Mask Is a mask of the network and host portion of the IP address for the attached network. Protocol Tells which protocol added the specified route. The possibilities are: local, static, or RIP.
PAGE 249
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software encapsulation This command configures the link layer encapsulation type for the packet. Acceptable values for are Ethernet and SNAP. The default is Ethernet. Format Mode Restrictions encapsulation {ethernet | snap} Interface Config Routed frames are always Ethernet encapsulated when a frame is routed to a VLAN. Bootp/DHCP Relay Commands This chapter provides a detailed explanation of the BootP/DHCP Relay commands.
PAGE 250
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software bootpdhcprelay enable This command enables the forwarding of relay requests for BootP/DHCP Relay on the system. Default disabled Format Mode bootpdhcprelay enable Global Config no bootpdhcprelay enable This command disables the forwarding of relay requests for BootP/DHCP Relay on the system.
PAGE 251
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Format Mode bootpdhcprelay minwaittime <0-100> Global Config no bootpdhcprelay minwaittime This command configures the default minimum wait time in seconds for BootP/DHCP Relay on the system. Format Mode no bootpdhcprelay minwaittime Global Config bootpdhcprelay serverip This command configures the server IP Address for BootP/DHCP Relay on the system. The parameter is an IP address in a 4-digit dotted decimal format.
PAGE 252
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Requests Received Is the number or requests received. Requests Relayed Is the number of requests relayed. Packets Discarded Is the number of packets discarded. Router Discovery Protocol Commands This chapter provides a detailed explanation of the Router Discovery commands.
PAGE 253
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Mode Interface Config no ip irdp address This command configures the default address to be used to advertise the router for the interface. Format Mode no ip irdp address Interface Config ip irdp holdtime This command configures the value, in seconds, of the holdtime field of the router advertisement sent from this interface. The range is the maxadvertinterval to 9000 seconds.
PAGE 254
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software ip irdp minadvertinterval This command configures the minimum time, in seconds, allowed between sending router advertisements from the interface. The range for minadvertinterval is 3 to the value of maxadvertinterval. Default Format Mode 0.75 * maxadvertinterval ip irdp minadvertinterval <3-maxadvertinterval> Interface Config no ip irdp minadvertinterval This command configures the default minimum time, in seconds.
PAGE 255
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Mode Ad Mode Privileged EXEC and User EXEC Displays the advertise mode which indicates whether router discovery is enabled or disabled on this interface. Max Int Displays the maximum advertise interval which is the maximum time allowed between sending router advertisements from the interface in seconds.
PAGE 256
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Mode VLAN Database show ip vlan This command displays the VLAN routing information for all VLANs with routing enabled in the system. Format show ip vlan Mode Privileged EXEC and User EXEC MAC Address used by Routing VLANs Is the MAC Address associated with the internal bridge-router interface (IBRI). The same MAC Address is used by all VLAN routing interfaces. It will be displayed above the per-VLAN information.
PAGE 257
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software no enable (RIP) This command sets the administrative mode of RIP in the router to inactive. Format Mode no enable Router RIP Config ip rip This command enables RIP on a router interface. Default Format Mode disabled ip rip Interface Config no ip rip This command disables RIP on a router interface. Format Mode no ip rip Interface Config auto-summary This command enables the RIP auto-summarization mode.
PAGE 258
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Format Mode default-information originate Router RIP Config no default-information originate (RIP) This command is used to control the advertisement of default routes. Format Mode no default-information originate Router RIP Config default-metric (RIP) This command is used to set a default for the metric of distributed routes.
PAGE 259
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software distribute-list out This command is used to specify the access list to filter routes received from the source protocol. Default Format Mode 0 distribute-list <1-199> out {bgp | static | connected} Router RIP Config no distribute-list out This command is used to specify the access list to filter routes received from the source protocol.
PAGE 260
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software no ip rip authentication This command sets the default RIP Version 2 Authentication Type. Format Mode no ip rip authentication Interface Config ip rip receive version This command configures the interface to allow RIP control packets of the specified version(s) to be received.
PAGE 261
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software no ip rip send version This command configures the interface to allow RIP control packets of the default version to be sent. Format Mode no ip rip send version Interface Config hostroutesaccept This command enables the RIP hostroutesaccept mode. Default Format Mode enabled hostroutesaccept Router RIP Config no hostroutesaccept This command disables the RIP hostroutesaccept mode.
PAGE 262
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software redistribute This command configures RIP protocol to redistribute routes from the specified source protocol/ routers. There are five possible match options. When you submit the command redistribute match the match-type or types specified are added to any match types presently being redistributed. Internal routes are redistributed by default.
PAGE 263
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Auto Summary Mode Host Routes Accept Mode Global Route Changes Global queries - Default Metric Default Route Advertise Select enable or disable from the pulldown menu. If you select enable groups of adjacent routes will be summarized into single entries, in order to reduce the total number of entries The default is enable. Select enable or disable from the pulldown menu. If you select enable the router will be accept host routes.
PAGE 264
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software show ip rip interface This command displays information related to a particular RIP interface. Format Mode Interface show ip rip interface Privileged EXEC and User EXEC Valid slot and port number separated by forward slashes. This is a configured value. IP Address The IP source address used by the specified RIP interface. This is a configured value.
PAGE 265
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Chapter 11 Quality of Service (QoS) Commands This chapter provides a detailed explanation of the Quality of Service (QOS) commands. The following QOS commands are available in the software QOS module. The commands are divided into these different groups: • Show commands are used to display device settings, statistics and other information. • Configuration Commands are used to configure features and options of the switch.
PAGE 266
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Note: The CLI mode is changed to Mac-Access-List Config when this command is successfully executed. Format Mode mac access-list extended Global Config no mac access-list extended This command deletes a MAC ACL identified by from the system.
PAGE 267
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software The Ethertype may be specified as either a keyword or a four-digit hexadecimal value from 0x0600-0xFFFF. The currently supported values are: appletalk, arp, ibmsna, ipv4, ipv6, ipx, mplsmcast, mplsucast, netbios, novell, pppoe, rarp. Each of these translates into its equivalent Ethertype value(s). The assign-queue parameter allows specification of a particular hardware queue for handling traffic that matches this rule.
PAGE 268
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software no mac access-group {in|out} This command removes a MAC ACL identified by from the interface in a given direction. Format Mode no mac access-list {in|out} Global Config or Interface Config show mac access-list This command displays a MAC access list and all of the rules that are defined for the ACL. The parameter is used to identify a specific MAC ACL to display.
PAGE 269
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Note: This does not include the implicit 'deny all' rule defined at the end of every MAC ACL. Interfaces Displays the list of interfaces (slot/port) to which this MAC ACL is attached in a given direction. Direction Denotes the direction in which this MAC ACL is attached to the set of interfaces listed. The possible values are Inbound or Outbound.
PAGE 270
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software no access-list This command deletes an ACL that is identified by the parameter from the system. Format no access-list Mode Global Config ip access-group This command attach a specified access-control list to an interface.
PAGE 271
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Source IP Mask This field displays the source IP Mask for this rule. Source Ports This field displays the source port range for this rule. Destination IP Address This displays the destination IP address for this rule. Destination IP Mask This field displays the destination IP Mask for this rule. Destination Ports This field displays the destination port range for this rule.
PAGE 272
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Note that the type of class - all, any, or acl - has a bearing on the validity of match criteria specified when defining the class. A class type of 'any' processes its match rules in an ordered sequence; additional rules specified for such a class simply extend this list. A class type of ‘acl’ obtains its rule list by interpreting each ACL rule definition at the time the Diffserv class is created.
PAGE 273
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Format diffserv Mode Global Config no diffserv This command sets the DiffServ operational mode to inactive. While disabled, the DiffServ configuration is retained and can be changed, but it is not activated. When enabled, Diffserv services are activated.
PAGE 274
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software The class type of match-all indicates all of the individual match conditions must be true for a packet to be considered a member of the class. The class type of match-any indicates only one of the match criteria must be true for a packet to belong to the class; multiple matching criteria are evaluated in a sequential order, with the highest precedence awarded to the first criterion defined for the class.
PAGE 275
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software class-map rename This command changes the name of a DiffServ class. The is the name of an existing DiffServ class. The parameter is a case-sensitive alphanumeric string from 1 to 31 characters uniquely identifying the class (Note: the class name ‘default’ is reserved and must not be used here).
PAGE 276
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software match any This command adds to the specified class definition a match condition whereby all packets are considered to belong to the class. The optional [not] parameter has the effect of negating this match condition for the class (i.e., none of the packets are considered to belong to the class).
PAGE 277
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software no match class-map This command removes from the specified class definition the set of match conditions defined for another class. The is the name of an existing DiffServ class whose match conditions are being referenced by the specified class definition. Note: there is no [not] option for this match command.
PAGE 278
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software match dstip This command adds to the specified class definition a match condition based on the destination IP address of a packet. The parameter specifies an IP address. The parameter specifies an IP address bit mask; note that although similar to a standard subnet mask, this bit mask need not be contiguous. The optional [not] parameter has the effect of negating this match condition for the class (i.e.
PAGE 279
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software match ip dscp This command adds to the specified class definition a match condition based on the value of the IP DiffServ Code Point (DSCP) field in a packet, which is defined as the high-order six bits of the Service Type octet in the IP header (the low-order two bits are not checked). The optional [not] parameter has the effect of negating this match condition for the class (i.e.
PAGE 280
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software match ip tos This command adds to the specified class definition a match condition based on the value of the IP TOS field in a packet, which is defined as all eight bits of the Service Type octet in the IP header. The value of is a two-digit hexadecimal number from 00 to ff. The value of is a two-digit hexadecimal number from 00 to ff.
PAGE 281
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Mode Class-Map Config match source-address mac This command adds to the specified class definition a match condition based on the source MAC address of a packet. The
parameter is any layer 2 MAC address formatted as six, twodigit hexadecimal numbers separated by colons (e.g., 00:11:22:dd:ee:ff).
PAGE 282
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software To specify the match condition as a numeric value, one layer 4 port number is required. The port number is an integer from 0 to 65535. To specify the match condition as a range, rwo layer 4 port numbers are required and together they specify a contiguous port range. Each port number is an integer from 0 to 65535, but with the added requirement that the second number be equal to or greater than the first.
PAGE 283
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software The DiffServ CLI does not necessarily require that users associate only one traffic class to one policy. In fact, multiple traffic classes can be associated with a single policy, each defining a particular treatment for packets that match the class definition.
PAGE 284
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software redirect This command specifies that all incoming packets for the associated traffic stream are redirected to a specific egress interface (physical port or port-channel). Format redirect Mode Policy-Class-Map Config conform-color This command is used to enable color-aware traffic policing and define the conform-color and exceed-color class maps used.
PAGE 285
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Incompatibilities Expedite (all forms) bandwidth percent This command identifies a minimum amount of bandwidth to be reserved for the specified class instance within the named policy using a relative rate notation. The committed information rate is specified as a percentage of total link capacity and is an integer from 1 to 100.
PAGE 286
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software no class This command deletes the instance of a particular class and its defined treatment from the specified policy. is the names of an existing DiffServ class. Note that this command removes the reference to the class definition for the specified policy.
PAGE 287
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Note: The actual bandwidth allocation does not occur until the policy is attached to an interface in a particular direction. Note: The expedite kbps and percent commands are alternative ways to specify the same expedite policy attribute.
PAGE 288
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Policy Type In Incompatibilities Mark IP Precedence, Police (all forms) mark ip-precedence This command marks all packets for the associated traffic stream with the specified IP Precedence value. The IP Precedence value is an integer from 0 to 7.
PAGE 289
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Restrictions Only one style of police command (simple, singlerate, tworate) is allowed for a given class instance in a particular policy. Policy Type In Incompatibilities Mark IP DSCP, Mark IP Precedence police-single-rate This command is used to establish the traffic policing style for the specified class.
PAGE 290
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software police-two-rate This command is used to establish the traffic policing style for the specified class. The two-rate form of the police command uses two data rates and two burst sizes, resulting in three outcomes: conform, exceed and violate. The first two data parameters are the conforming data rate and burst size.
PAGE 291
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software policy-map This command establishes a new DiffServ policy. The parameter is a case-sensitive alphanumeric string from 1 to 31 characters uniquely identifying the policy. The type of policy is specific to either the inbound or outbound traffic direction as indicated by the {in | out} parameter. Note: The policy type dictates which of the individual policy attribute commands are valid within the policy definition.
PAGE 292
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software The remaining parameters are all optional. The fourth data parameter is the sampling rate, indicating the period at which the queue is sampled for computing the average depth. Expressed in microseconds, the sampling rate is an integer from 0 to 1000000, with a default of 0 (meaning perpacket sampling).
PAGE 293
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Note: Queue depth management defaults to tail drop, but the randomdrop command can be used to change to a RED scheme. Format shape peak <1-4294967295> <1-4294967295> Mode Policy-classmap Config Restrictions Neither of the shaping rate parameters is allowed to exceed the maximum link data rate of the interface to which the policy is applied.
PAGE 294
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Note: This command shall fail if any attributes within the policy definition exceed the capabilities of the interface. Once a policy is successfully attached to an interface, any attempt to change the policy definition such that it would result in a violation of said interface capabilities shall cause the policy change attempt to fail.
PAGE 295
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software show class-map This command displays all configuration information for the specified class. The is the name of an existing DiffServ class. Format show class-map Mode Privileged EXEC and User EXEC If the Class Name is specified the following fields are displayed: Class Name The name of this class. Class Type The class type (all, any, or acl) indicating how the match criteria are evaluated for this class.
PAGE 296
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Class Type The class type (all, any, or acl) indicating how the match criteria are evaluated for this class. A class type of all means every match criterion defined for the class is evaluated simultaneously they must all be true to indicate a class match.For a type of any each match criterion is evaluated sequentially and only one need be true to indicate a class match.
PAGE 297
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Policy Attribute Table Size The current number of entries (rows) in the Policy Attribute Table. Policy Attribute Table Max The maximum allowed entries (rows) for the Policy Attribute Table. Service Table Size The current number of entries (rows) in the Service Table. Service Table Max The maximum allowed entries (rows) for the Service Table.
PAGE 298
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software ing action. It may also be specified along with a QoS queue assignment. If the Policy Name is specified the following fields are displayed: Policy Name The name of this policy. Type The policy type, namely whether it is an inbound or outbound policy definition.
PAGE 299
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Conform DSCP Value This field shows the DSCP mark value if the conform action is markdscp. Conform IP Precedence Value This field shows the IP Precedence mark value if the conform action is markprec. Exceed Action The current setting for the action taken on a packet considered to exceed to the policing parameters. This is not displayed if policing not in use for the class under this policy.
PAGE 300
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Random Drop Maximum Threshold This field displays the RED maximum threshold.This is not displayed if the queue depth management scheme is not RED. Random Drop Maximum Drop Probability This field displays the RED maximum drop probability.This is not displayed if the queue depth management scheme is not RED. Random Drop Sampling Rate This field displays the RED sampling rate.
PAGE 301
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Policy Details Attached policy details, whose content is identical to that described for the show policy-map command (content not repeated here for brevity). show diffserv service brief This command displays all interfaces in the system to which a DiffServ policy has been attached.
PAGE 302
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Policy Name The name of the policy attached to the interface in the indicated direction. Interface Offered Octets/Packets A cumulative count of the octets/packets offered to this service interface in the specified direction before the defined DiffServ treatment is applied.
PAGE 303
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Sent Octets/Packets A count of the octets/packets forwarded for this class instance after the defined DiffServ treatment was applied. In this case, forwarding means the traffic stream was passed to the next functional element in the data path, such as the switching or routing function or an outbound link transmission element. Only displayed for the 'out' direction.
PAGE 304
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Policy Name The name of the policy attached to the interface. Note: None of the counters listed here are guaranteed to be supported on all platforms. Only supported counters are shown in the display output. Class of Service (CoS) Commands This chapter provides a detailed explanation of the software QoS CoS commands. The following commands are available in the software QOS module.
PAGE 305
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Modes Global Config Interface Config classofservice ip-precedence-mapping This command maps an IP precedence value to an internal traffic class. The ipprecedence and trafficclass can both range from 0-7, although the actual number of available traffic classes depends on the platform. The 'no' form of this command is not supported.
PAGE 306
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software no cos-queue max-bandwidth This command restores the default for each queue's maximum bandwidth value. Format Mode no cos-queue max-bandwidth Global Config Interface Config cos-queue min-bandwidth This command specifies the minimum transmission bandwidth guarantee for each interface queue. The total number of queues supported per interface is platform specific.
PAGE 307
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Modes Global Config Interface Config cos-queue strict This command activates the strict priority scheduler mode for each specified queue. Format Modes cos-queue strict [ … ] Global Config Interface Config no cos-queue strict This command restores the default weighted scheduler mode for each specified queue.
PAGE 308
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software random-detect exponential-weighting-constant This command sets the decay exponent used by the WRED average queue depth calculation for the interface. Format Modes random-detect exponential-weighting-constant <1-15> Global Config Interface Config no random-detect exponential-weighting-constant This command restores the default value.
PAGE 309
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software tail-drop queue-parms [ … ] threshold <0-16> <0-16> <0-16> no tail-drop queue-parms [ … ] Modes Global Config Interface Config traffic-shape This command specifies the maximum transmission bandwidth limit for the interface as a whole.
PAGE 310
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software show classofservice ip-precedence-mapping This command displays the current IP Precedence mapping to internal traffic classes for a specific interface. The slot/port parameter is optional and is only valid on platforms that support independent per-port class of service mappings. If specified, the IP Precedence mapping table of the interface is displayed. If omitted, the most recent global configuration settings are displayed.
PAGE 311
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Interface Intf Shaping Rate Queue Mgmt Type WRED Decay Exponent This displays the slot/port of the interface. If displaying the global configuration, this output line is replaced with a Global Config indication. The maximum transmission bandwidth limit for the interface as a whole. It is independent of any per-queue maximum bandwidth value(s) in effect for the interface. This is a configured value.
PAGE 312
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Interface This displays the slot/port of the interface. If displaying the global configuration, this output line is replaced with a Global Config indication. The following information is repeated for each queue on the interface. An interface supports n queues numbered 0 to (n-1). The number n is platform dependent and corresponds to the number of supported queues (traffic classes).
PAGE 313
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software An interface supports n queues numbered 0 to (n-1). The number n is platform dependent and corresponds to the number of supported queues (traffic classes). Queue IdQueue identification number The following information is repeated for each drop precedence level defined for the preceding Queue Id. Drop Precedence Level Tail Drop Threshold The drop precedence level for this queue, from 1 to p.
PAGE 314
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software 11-50 Quality of Service (QoS) Commands 202-10088-01, March 2005
PAGE 315
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Chapter 12 Managing Switch Stacks This chapter describes the concepts and recommended operating procedures to manage FSM7328S or FSM7352S switches running Release 4.0.
PAGE 316
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software A switch stack is identified in the network by its network IP address. The network IP address is assigned according to the MAC address of the stack master. Every stack member is uniquely identified by its own stack member number. All stack members are eligible stack masters. If the stack master becomes unavailable, the remaining stack members participate in electing a new stack master from among themselves.
PAGE 317
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software If you replace a stack member with an identical model, the new switch functions with exactly the same configuration as the replaced switch, assuming that the new switch is using the same member number as the replaced switch. For information about the benefits of preconfiguring a switch stack, see “Preconfiguration” on page 12-15.
PAGE 318
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Switch Stack Cabling Figure 12-1 and Figure 12-2 illustrate how individual switches are interconnected to form a stack. You can use the regular Category 5 Ethernet 8 wire cable.
PAGE 319
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Stack Master Election and Re-Election The stack master is elected or re-elected based on one of these factors and in the order listed: 1. The switch that is currently the stack master 2. The switch with the highest stack member priority value Note: Netgear recommends assigning the highest priority value to the switch that you prefer to be the stack master.
PAGE 320
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Stack members in the same switch stack cannot have the same stack member number. Every stack member, including a standalone switch, retains its member number until you manually change the number or unless the number is already being used by another member in the stack. See “Renumbering Stack Members” on page 12-13 and “Merging Two Operational Stacks” on page 12-14.
PAGE 321
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-1. Results of comparing the preconfiguration with the new switch Scenario Result The stack member numbers and the switch types match. • If the stack member number of the preconfigured switch matches the stack member number in the configuration on the stack, and • If the switch type of the preconfigured switch matches the switch type in the configuration on the stack.
PAGE 322
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Switch Stack Software Compatibility Recommendations All stack members must run the same software version to ensure compatibility between stack members. The software versions on all stack members, including the stack master, must be the same. This helps ensure full compatibility in the stack protocol version among the stack members.
PAGE 323
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Switch Stack Management Connectivity You manage the switch stack and the stack member interfaces through the stack master. You can use the web interface, the CLI, and SNMP. You cannot manage stack members on an individual switch basis. Connectivity to the Switch Stack Through Console Ports You can connect to the stack master through the console port of the stack master only.
PAGE 324
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-2. Switch stack configuration scenarios (continued) Stack master election specifically determined by the MAC address • Assuming that both stack members have the same priority value and software image, restart both stack members at the same time. The stack member with the higher MAC address is elected stack master.
PAGE 325
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software General Practices • When issuing a command (such as move management, or renumber), it is recommended that the command has fully completed before issuing the next command. For example, if a reset is issued to a stack member, use the “show port” command to verify that the unit has remerged with the stack, and all ports are joined before issuing the next command.
PAGE 326
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Removing a Unit from the Stack 1. Make sure the redundant stack connection is in place and functional. All stack members should be connected in a logical ring. 2. Power down the unit to be removed. 3. Disconnect stack cables. 4. If unit is not to be replaced, reconnect the stack cable from the stack member above to the stack member below the unit being removed. 5. Remove unit from the rack. 6.
PAGE 327
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software • Follow the process in section Removing a Unit from the Stack to remove the desired stack member. • Follow the process in section Adding a Unit to an Operating Stack to add a new member to the stack with the following exceptions: – Insert the new member in the same position in the stack as the one removed. – Preconfiguration described in step Preconfigure the new unit, if desired. of that procedure is not required.
PAGE 328
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Moving a Master to a Different Unit in the Stack 1. Using the “movemanagement” command, move the master to the desired unit number. The operation may take between 30 seconds and 3 minutes depending on the stack size and configuration. The command is movemanagement 2. Make sure that you can log in on the console attached to the new master.
PAGE 329
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Preconfiguration 1. General Information: All configuration on the stack except unit numbers is stored on the management unit. This means that a stack unit may be replaced with another device of the same type without having to reconfigure the switch. Unit numbers are stored independently on each switch, so that after power cycling the stack the units always come back with the same unit numbers.
PAGE 330
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software 2. All units in the stack must run the same code version. Ports on stack units that don’t match the management unit code version don’t come up and the show switch command shows a “code mismatch” error. To resolve this situation the administrator may issue archive command. This command copies management unit’s software to the other units with mismatched code version.
PAGE 331
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Appendix A IS CLI Mapping This chapter illustrates the mapping between CLI commands and the previous 7300S Series L3 Switch commands. The Package column indicates the 7300S Series L3 Switch package in which the command is located. Table 12-3.
PAGE 332
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 333
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 334
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 335
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 336
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 337
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 338
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 339
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 340
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 341
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 342
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 343
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 344
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 345
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 346
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 347
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 348
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 349
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 350
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 351
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 352
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 353
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 354
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 355
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 356
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 357
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 358
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 359
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 360
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 361
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 362
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 363
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 364
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 365
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 366
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 367
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 368
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 369
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 370
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 371
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-3.
PAGE 372
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software A-42 IS CLI Mapping 202-10088-01, March 2005
PAGE 373
Appendix B Cabling Guidelines This appendix provides specifications for cables used with a NETGEAR NETGEAR 7300S Series Layer 3 Managed Switch. Fast Ethernet Cable Guidelines Fast Ethernet uses UTP cable, as specified in the IEEE 802.3u standard for 100BASE-TX.The specification requires Category 5 UTP cable consisting of either two-pair or four-pair twisted insulated copper conductors bound in a single plastic sheath. Category 5 cable is certified up to 100 MHz bandwidth.
PAGE 374
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Category 5 Cable Category 5 distributed cable that meets ANSI/EIA/TIA-568-A building wiring standards can be a maximum of 328 feet (ft.) or 100 meters (m) in length, divided as follows: 20 ft. (6 m) between the hub and the patch panel (if used) 295 ft. (90 m) from the wiring closet to the wall outlet 10 ft.
PAGE 375
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-4. Electrical Requirements of Category 5 Cable SPECIFICATIONS CATEGORY 5 CABLE REQUIREMENTS Number of pairs Four Impedance 100 ± 15% Mutual capacitance at 1 KHz 5.6 nF per 100 m Maximum attenuation (dB per 100 m, at 20° C) at 4 MHz: 8.2 at 31 MHz: 11.7 at 100 MHz: 22.
PAGE 376
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Figure 12-4 illustrates crossover twisted pair cable. Figure 12-4: Crossover Twisted-Pair Cable Patch Panels and Cables If you are using patch panels, make sure that they meet the 100BASE-TX requirements. Use Category 5 UTP cable for all patch cables and work area cables to ensure that your UTP patch cable rating meets or exceeds the distribution cable rating.
PAGE 377
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Note: Flat “silver satin” telephone cable may have the same RJ-45 plug. However, using telephone cable results in excessive collisions, causing the attached port to be partitioned or disconnected from the network. Using 1000BASE-T Gigabit Ethernet over Category 5 Cable When using the new 1000BASE-T standard, the limitations of cable installations and the steps necessary to ensure optimum performance must be considered.
PAGE 378
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Unlike 10BASE-T and 100BASE-TX, which use only two of the four pairs of wires within the Category 5, 1000BASE-T uses all four pairs of the twisted pair. Make sure all wires are tested ⎯ this is important. Factors that affect the return loss are: The number of transition points, as there is a connection via an RJ-45 to another connector, a patch panel, or device at each transition point.
PAGE 379
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Figure 12-6 shows the RJ-45 plug and RJ-45 connector. Figure 12-6: RJ-45 Plug and RJ-45 Connector with Built-in LEDs Table 12-1 lists the pin assignments for the 10/100 Mbps RJ-45 plug and the RJ-45 connector. Table 12-1.
PAGE 380
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Table 12-2.
PAGE 381
Appendix C Glossary Use the list below to find definitions for technical terms used in this manual. Numeric 802.1D The IEEE designator for Spanning Tree Protocol (STP). STP, a link management protocol, is part of the 802.1D standard for media access control bridges. Using the spanning tree algorithm, STP provides path redundancy while preventing endless loops in a network. An endless loop is created by multiple active paths between stations where there are alternate routes between hosts.
PAGE 382
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software 100BASE-TX The IEEE specification for 100 Mbps Fast Ethernet over Category 5 twisted-pair cable. 1000BASE-SX The IEEE specification for 1000 Mbps Gigabit Ethernet over fiber-optic cable. 1000BASE-T The IEEE specification for 1000 Mbps Gigabit Ethernet over Category 5 twisted-pair cable. gain access. A ABR See “Area Border Router” on page 2.
PAGE 383
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software ASBR See “Autonomous System Boundary Router” on page 3. Autonomous System Boundary Router ABR located between an OSPF autonomous system and a non-OSPF network. ASBRs run both OSPF and another routing protocol, such as RIP. ASBRs must reside in a non-stub OSPF area. See also ABR, non-stub area, and OSPF. (Cisco Systems Inc.
PAGE 384
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Bootstrap Protocol An Internet protocol that enables a diskless workstation to discover its own IP address, the IP address of a BootP server on the network, and a file to be loaded into memory to boot the machine. This enables the workstation to boot without requiring a hard or floppy disk drive. Bridge Protocol Data Unit BPDU is the IEEE 802.
PAGE 385
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Class of Service A term to describe treating different types of traffic with different levels of service priority. Higher priority traffic gets faster treatment during times of switch congestion CLI See “Command Line Interface” on page 5. Collision A term used to describe two colliding packets in an Ethernet network.
PAGE 386
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software complex policy or rule statements to determine how to forward a given network packet. An analogy is made to travel services, in which a person can choose among different modes of travel - train, bus, airplane degree of comfort, the number of stops on the route, standby status, the time of day or period of year for the trip, and so forth.
PAGE 387
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software transmits that identity to an authentication server such as RADIUS. The server asks the AP for proof of identity, which the AP gets from the user and then sends back to the server to complete the authentication. EAP is defined by RFC 2284. Endstation A computer, printer, or server that is connected to a network. Ethernet A LAN specification developed jointly by Xerox, Intel and Digital Equipment Corporation.
PAGE 388
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Full-duplex A system that allows packets to be transmitted and received at the same time and, in effect, doubles the potential throughput of a link. G GARP See “Generic Attribute Registration Protocol” on page 8. GARP Information Propagation GIP is the propagation of information between GARP participants for the same application in a bridge is carried out by a GIP component.
PAGE 389
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software GMRP See “GARP Multicast Registration Protocol” on page 8. GVD GARP VLAN Database. GVRP See “GARP VLAN Registration Protocol” on page 8. H Half-duplex A system that allows packets to transmitted and received, but not at the same time. Contrast with full-duplex. hop count The number of routers that a data packet passes through on its way to its destination. I ICMP See “Internet Control Message Protocol” on page 10.
PAGE 390
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Internet Control Message Protocol ICMP is an extension to the Internet Protocol (IP) that supports packets containing error, control, and informational messages. The PING command, for example, uses ICMP to test an Internet connection. Internet Group Management Protocol IGMP is the standard for IP Multicasting on the Internet. IGMP is used to establish host memberships in particular multicast groups on a single network.
PAGE 391
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software L LAN See “Local Area Network” on page 11. LDAP See “Lightweight Directory Access Protocol” on page 11. Lightweight Directory Access Protocol A set of protocols for accessing information directories. LDAP is based on the standards contained within the X.500 standard, but is significantly simpler. Unlike X.500, LDAP supports TCP/IP, which is necessary for any type of Internet access.
PAGE 392
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software M MAC (1) Medium Access Control. In LANs, the sublayer of the data link control layer that supports medium-dependent functions and uses the services of the physical layer to provide services to the logical link control (LLC) sublayer. The MAC sublayer includes the method of determining when a device has access to the transmission medium. (2) Message Authentication Code.
PAGE 393
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software MPLS See “Multi-Protocol Label Switching” on page 13. Multicast Backbone The MBONE is a virtual network. It is layered on top of portions of the physical Internet to support routing of IP multicast packets since that function has not yet been integrated into many production routers.
PAGE 394
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software Routers (LSRs) place outgoing labels on the packets. With these LSPs, network operators can divert and route traffic based on data-stream type and Internet-access customer. MUX See “Multiplexing” on page 13. N NAT See “Network Address Translation” on page 14. netmask Combined with the IP address, the IP Subnet Mask allows a device to know which other addresses are local to it, and which must be reached through a gateway or router.
PAGE 395
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software protocol. This protocol's algorithm determines the shortest path from its router to all the other routers in the network. This protocol is rapidly replacing RIP on the Internet. Open Systems Interconnection OSI is a seven (7) layer architecture model for communications systems developed by the ISO for the interconnection of data communications systems. Each layer uses and builds on the services provided by those below it.
PAGE 396
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software if necessary. Port mirroring can be managed locally or remotely. An administrator configures port mirroring by assigning a port from which to copy all packets and another port where those packets will be sent. A packet bound for or heading away from the first port will be forwarded onto the second port as well. The administrator places a protocol analyzer on the port receiving the mirrored data to monitor each segment separately.
PAGE 397
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software R RADIUS Short for Remote Authentication Dial-In User Service, RADIUS is an authentication system. Using RADIUS, you must enter your user name and password before gaining access to a network. This information is passed to a RADIUS server, which checks that the information is correct, and then authorizes access. Though not an official standard, the RADIUS specification is maintained by a working group of the IETF.
PAGE 398
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software RSVP See “Resource Reservation Setup Protocol” on page 17. RTOS See “Real-Time Operating System” on page 17. S Simple Network Management Protocol SNMP is the protocol governing network management and the monitoring of network devices and their functions. It is not necessarily limited to TCP/IP networks. The versions have the following differences: SNMPv1 (full): Security is based on community strings.
PAGE 399
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software SNMP See “Simple Network Management Protocol” on page 18. Spanning Tree A technique that detects loops in a network and logically blocks the redundant paths, ensuring that only one route exists between any two LANs. Spanning Tree Protocol (STP) A protocol that finds the most efficient path between segments of a multi-looped, bridged network.
PAGE 400
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software TFTP See “TLS” on page 20. TLS Short for Transport Layer Security, TLS is a protocol that guarantees privacy and data integrity between client/server applications communicating over the Internet. The TLS protocol is made up of two layers. The TLS Record Protocol ensures that a connection is private by using symmetric data encryption and ensures that the connection is reliable.
PAGE 401
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software an 802.1Q-compliant switch or router. Devices recognizing 802.1Q-tagged frames maintain appropriate tables to track VLANs. The first three bits of the 802.1Q tag are used by 802.1P to establish priority for the packet. Virtual Router Redundancy Protocol VRRP specifies an election protocol that dynamically assigns responsibility for a virtual router to one of the VRRP routers on a LAN.
PAGE 402
User Manual for the NETGEAR 7300S Series Layer 3 Managed Switch Software WINS WINS. Windows Internet Naming Service is a server process for resolving Windows-based computer names to IP addresses. X XModem One of the most popular file transfer protocols (FTPs). Xmodem is fairly effective at detecting errors. It sends blocks of data together with a checksum and then waits for acknowledgment of the block's receipt.