Page 1 User’s Manual of WGSD-1022/WGSD-8000 User's Manual WGSD-1022 8-Port 10/100Mbps + 2-Port Gigabit TP/SFP Combo Managed Ethernet Switch WGSD-8000 8-Port 10/100/1000Mbps with 2 Shared SFP Managed Ethernet Switch - 1 –...
Page 2: Fcc Warning
PLANET is a registered trademark of PLANET Technology Corp. All other trademarks belong to their respective owners. Disclaimer PLANET Technology does not warrant that the hardware will work properly in all environments and applications, and makes no warranty and representation, either implied or expressed, with respect to the quality, performance, merchantability, or fitness for a particular purpose.
Page 3: Table Of Contents
4.2.3 Time...34 4.3 Port Configuration...36 4.3.1 Port settings...36 4.3.2 Link Aggregation...40 4.3.3 LACP ...42 4.4 VLAN Configuration ...43 4.4.1 Create VLAN ...44 4.4.2 Port setting ...45 4.4.3 Ports to VLAN...46 TABLE OF CONTENTS - 3 – User’s Manual of WGSD-1022/WGSD-8000...
Page 4 4.9.3 STP Port Settings ...109 4.9.4 RSTP Port settings ... 111 4.9.5 MSTP Properties ... 113 4.9.6 MSTP Instance Settings ... 114 4.9.7 MSTP Interface Settings... 116 4.10 Multicast ... 118 4.10.1 IGMP Snooping ...120 User’s Manual of WGSD-1022/WGSD-8000 - 4 –...
Page 5 5.3.1 aaa authentication login...160 5.3.2 aaa authentication enable...161 5.3.3 login authentication...163 5.3.4 enable authentication ...163 5.3.5 ip http authentication ...164 5.3.6 ip https authentication...165 5.3.7 show authentication methods ...166 5.3.8 password ...166 5.3.9 enable password ...167 User’s Manual of WGSD-1022/WGSD-8000 - 5 –...
Page 6 5.5.12 sntp unicast client enable ...190 5.5.13 sntp unicast client poll...191 5.5.14 sntp server...192 5.5.15 show clock ...193 5.5.16 show sntp configuration ...193 5.5.17 show sntp status ...194 5.6 Configuration and Image Files ...195 User’s Manual of WGSD-1022/WGSD-8000 - 6 –...
Page 7 5.9 IGMP Snooping Commands ...225 5.9.1 ip igmp snooping (Global)...225 5.9.2 ip igmp snooping (Interface) ...225 5.9.3 ip igmp snooping mrouter ...226 5.9.4 ip igmp snooping host-time-out...226 5.9.5 ip igmp snooping mrouter-time-out ...227 User’s Manual of WGSD-1022/WGSD-8000 - 7 –...
Page 8 5.14 PHY Diagnostics Commands...247 5.14.1 test copper-port tdr ...247 5.14.2 show copper-ports tdr ...248 5.14.3 show copper-ports cable-length...249 5.14.4 show fiber-ports optical-transceiver ...249 5.15 Port Channel Commands ...251 5.15.1 interface port-channel ...251 5.15.2 interface range port-channel...252 User’s Manual of WGSD-1022/WGSD-8000 - 8 –...
Page 9 5.19.6 show rmon alarm-table ...281 5.19.7 show rmon alarm ...282 5.19.8 rmon event...284 5.19.9 show rmon events...285 5.19.10 show rmon log ...286 5.19.11 rmon table-size ...287 5.20 SNMP Commands ...288 5.20.1 snmp-server community ...288 User’s Manual of WGSD-1022/WGSD-8000 - 9 –...
Page 10 5.22.8 key-string ...310 5.22.9 show ip ssh... 311 5.22.10 show crypto key mypubkey...312 5.22.11 show crypto key pubkey-chain ssh ...312 5.23 System Management...313 5.23.1 ping...313 5.23.2 traceroute ...314 5.23.3 telnet...317 5.23.4 resume...319 5.23.5 reload...320 User’s Manual of WGSD-1022/WGSD-8000 - 10 –...
Page 11 5.26.6 exit(EXEC)...340 5.26.7 end ...340 5.26.8 help...341 5.26.9 history ...341 5.26.10 history size...342 5.26.12 show history...342 5.26.13 show privilege...343 5.27 VLAN Commands ...344 5.27.1 vlan database ...344 5.27.2 vlan ...344 5.27.3 default-vlan disable...345 User’s Manual of WGSD-1022/WGSD-8000 - 11 –...
Page 12 5.29.6 dot1x re-authenticate ...366 5.29.7 dot1x timeout quiet-period ...367 5.29.8 dot1x timeout tx-period ...368 5.29.9 dot1x max-req...368 5.29.10 dot1x timeout supp-timeout ...369 5.29.11 dot1x timeout server-timeout ...370 5.29.12 show dot1x ...370 5.29.13 show dot1x users...372 User’s Manual of WGSD-1022/WGSD-8000 - 12 –...
Page 13 5.29.17 dot1x multiple-hosts...376 5.29.18 dot1x single-host-violation ...376 5.29.19 show dot1x advanced ...377 TROUBLE SHOOTING...379 APPENDEX A ...380 A.1 Switch's RJ-45 Pin Assignments ...380 A.2 RJ-45 cable pin assignment ...380 A.3 Available Modules ...382 User’s Manual of WGSD-1022/WGSD-8000 - 13 –...
Page 14: Introduction
Thank you for purchasing PLANET Desktop Managed Switch- WGSD-1022 and WGSD-8000. If any of these are missing or damaged, please contact your dealer immediately, if possible, retain the carton including the original packing material, and use them against to repack the product in case there is a need to return it to us for repair.
Page 15: Product Feature
Support IGMP Snooping v1 and v2 Port Mirroring to monitor the incoming or outgoing traffic on a particular port Security 802.1x Port-Based Authentication IP-Based Access Control List (ACL) MAC-Based Access Control List Port Security Management User’s Manual of WGSD-1022/WGSD-8000 - 15 –...
Page 16: Product Specification
Port disable/enable. Auto-negotiation 10/100Mbps full and half duplex mode selection. Flow Control disable / enable. Bandwidth control on each port. - 16 – User’s Manual of WGSD-1022/WGSD-8000 WGSD-8000 8-Port 10/100/1000Mbps with 2 shared SFP Managed Ethernet Switch 8 RJ-45 Auto-MDI/MDI-X ports...
Page 17 IEEE802.1Q VLAN Tagging Environment FCC Part 15 Class A, CE Regulation Compliance 0℃~50℃, Operating Temperature -40℃~70℃, Storage Temperature 5% to 90%, relative humidity, non-condensing Operating Humidity 5% to 90%, relative humidity, non-condensing Storage Humidity User’s Manual of WGSD-1022/WGSD-8000 - 17 –...
Page 18: Installation
This section describes the functionalities of the Switch's components and guides how to install it on the desktop or shelf. Basic knowledge of networking is assumed. Please read this chapter completely before continuing. 2.1 Product Description The PLANET WGSD-Series are Full Managed Desktop Switches with gigabit interfaces equipped. It boasts a high performance switch architecture that is capable of providing non-blocking switch fabric and wire-speed throughput as high as 5.6Gbps and...
Page 19: Led Indications
Lights to indicate the link through that port is successfully established. LNK/ACT Green Blink: indicate that the switch is actively sending or receiving data over that port. Lights to indicate the port is running in 100Mbps speed. Orange Off: indicate that the port is operating at 10Mbps.
Page 20: Install The Switch
Switch or the power adapter. 2.2 Install the Switch This section describes how to install the Ethernet Switch and make connections to it. Please read the following topics and perform the procedures in the order being presented.
Page 21: Rack Mounting
Step3: Secure the brackets tightly. Step4: Follow the same steps to attach the second bracket to the opposite side. Step5: After the brackets are attached to the Switch, use suitable screws to securely attach the brackets to the rack, as shown in Figure 2-6 Figure 2-5 Attach brackets to the switch.
Page 22: Installing The Sfp Transceiver
Switch. As the Figure 2-7 appears. Approved PLANET SFP Transceivers PLANET WGSD-Switch support both single mode and multi mode SFP transceiver. The following list of approved PLANET SFP transceivers is correct at the time of publication: ■MGB-SX SFP (1000BASE-SX SFP transceiver )
Page 23 Converter.. Check the LNK/ACT LED of the SFP slot on the front of the Switch. Ensure that the SFP transceiver is operating correctly. Check the Link mode of the SFP port if the link failed. Co works with some fiber-NICs or Media Converters, set the Link mode to “1000 Force”...
Page 24: Configuration
This chapter explains the methods that you can use to configure management access to the switch. It describes the types of management applications and the communication and management protocols that deliver data between your management device (work-station or personal computer) and the system. It also contains information about port connection options.
Page 25: Administration Console
(such as HyperTerminal) to the switch console (serial) port. When using this management method, a null-modem cable is required to connect the switch to the PC. After making this connection, configure the terminal-emulation program to use the following parameters:...
Page 26: Web Management
3.2 Web Management The switch provides a browser interface that lets you configure and manage the switch remotely. After you set up your IP address for the switch, you can access the switch's Web interface applications directly in your Web browser by entering the IP address of the switch.
Page 27: Management Architecture
(for example, SNMP agent of Web browser). The management architecture of the switch adheres to the IEEE open standard. This compliance assures customers that the switch is compatible with, and will interoperate with other solutions that adhere to the same open standard.
Page 28: Web Configuration
The WGSD-1022 can be configured through an Ethernet connection, make sure the manager PC must be set on same the IP subnet address with the switch. For example, if you have changed the default IP address of the Switch to 192.168.1.1 with subnet mask 255.255.255.0 via console, then the manager PC should be set at 192.168.1.x (where x is a number between 1...
Page 29 After entering the username and password, the main screen appears as Figure 4-3. Figure 4-3 Web Main Screen of WGSD-Switch Now, you can use the Web management interface to continue the switch management or manage the switch by console interface.
Page 30: Main Screen
The Switch provides a Web-based browser interface for configuring and managing the Switch. This interface allows you to access the switch using the Web browser of your choice. This chapter describes how to use the switch’s Web browser interface to con-figure and manage the switch.
Page 31: Setup
The Setup menus include the tree sub-menus: Summary Network Settings Time 4.2.1 Summary The summary screen provides Device and System Information about the Switch. The page contains the following informations: Device Information • System Name • IP Address • Subnet Mask...
Page 32: Network Settings
The operating system currently running on the switch Display where the Switch is located Display the administrative contact person The time in days, hours and minutes since the last switch reboot Specifies the time and date. The format is hour, minute, second, month, day, year - 32 –...
Page 33 Enter the administrative contact person • System Object ID Tthe system object identifier is in this field • Base MAC Address The MAC address of the Switch displays here IP Configuration: Where you can select the Management VLAN. • Management VLAN The default Managemanet VLAN is VLAN 1 Where select Static or Dynamic IP address configuration.
Page 34: Time
Specifies that the system time is not set by an external source but the Local time settings. • Use SNTP Time Specifies that the system time is set via an SNTP server Local Time Figure 4-5 Time screen - 34 – User’s Manual of WGSD-1022/WGSD-8000...
Page 35 • Day -- The day of the week from which DST begins every year. The possible field range is Sunday-Saturday. • Week -- The week within the month from which DST begins every year. The User’s Manual of WGSD-1022/WGSD-8000 - 35 –...
Page 36: Port Configuration
In this field, you can see these parts, such as port settings, Link aggregation, LACP. 4.3.1 Port settings To use the port settings screen for setting up each of the switch’s ports. It shows these parts: port, description, admin status, link status, speed, duplex, MDI/MDIX, Flow control, type, LAG, PVE (see Figure 4-6): possible field range is 1-5.
Page 37 To use the MDIX setting if the port is connected to a hub or another switch • Flow control Shows the flow control status of the port. It is active when the port uses Full Duplex User’s Manual of WGSD-1022/WGSD-8000 Figure 4-6 Port Settings screen - 37 –...
Page 38 Detail Port Configuration Detail screen (see figure 4-7) The Port Configuration screen contains the following fields: • Port Indicates the number of the port Figure 4-7 Per Port Configuration detail screen - 38 – User’s Manual of WGSD-1022/WGSD-8000...
Page 39 • Back Pressure The Back Pressure feature of the selected port can be enabled or disabled • Current Back Displays whether Back Pressure is enabled or disabled on the currently selected port Pressure User’s Manual of WGSD-1022/WGSD-8000 - 39 –...
Page 40: Link Aggregation
• Auto - the port to automatically detect the cable type. • MDI - if the port is connected to an end station. • MDIX - if the port is connected to a hub or another switch • Current MDI/MDIX This is the current MDI/MDIX status of the port •...
Page 41 Detail Linkl Aggregation detail configuration At per-LAG detail configuration page, the administrator can select ports to be the members of the LAG interface. The scree appears as follow: User’s Manual of WGSD-1022/WGSD-8000 - 41 –...
Page 42: Lacp
User’s Manual of WGSD-1022/WGSD-8000 4.3.3 LACP Aggregated Links can be manually setup or automatically established on the relevant links by enabling Link Aggregation Control Protocol (LACP). Aggregate ports can be linked into link-aggregation port-groups. Each group is comprised of ports with the same speed, set to full-duplex operation.
Page 43: Vlan Configuration
A Virtual LAN (VLAN) is a logical network grouping that limits the broadcast domain. It allows you to isolate network traffic so only members of the VLAN receive traffic from the same VLAN members. Basically, creating a VLAN from a switch is logically equivalent of reconnecting a group of network devices to another Layer 2 switch.
Page 44: Create Vlan
User’s Manual of WGSD-1022/WGSD-8000 IEEE 802.1Q (tagged) VLAN are implemented on the Switch. 802.1Q VLAN require tagging, which enables them to span the entire network (assuming all switches on the network are IEEE 802.1Q-compliant). VLAN allow a network to be segmented in order to reduce the size of broadcast domains. All packets entering a VLAN will only be forwarded to the stations (over IEEE 802.1Q enabled switches) that are members of that VLAN, and this includes broadcast,...
Page 45: Port Setting
VLAN ID (PVID). All untagged packets arriving to the device are tagged by the ports PVID. The page contains the following fields: Figure 4-10 Create VLAN screen button. Figure 4-11 VLAN Port Setting screen - 45 – User’s Manual of WGSD-1022/WGSD-8000...
Page 46: Ports To Vlan
It is also not possible to enable/ disable ingress filtering on an access port. optional single native VLAN). the port. VLAN Membership - 46 – User’s Manual of WGSD-1022/WGSD-8000 Frame Leave Untagged ( Tag=PVID be removed) Untagged (Tag=PVID be removed)
Page 47: Vlan To Ports
4.4.4 VLAN to Ports The VLAN to Ports screen (see figure 4-13) contains fields for configuring VLANs to a port. This screen displays these parts, such as: User’s Manual of WGSD-1022/WGSD-8000 Figure 4-12 Ports to VLAN screen - 47 –...
Page 48 Access mode, the packet types which are accepted on the port cannot be designated. Ingress filtering cannot be enabled/disabled on an access port. tagged, except for one port that can be untagged. - 48 – User’s Manual of WGSD-1022/WGSD-8000...
Page 49: Gvrp
User’s Manual of WGSD-1022/WGSD-8000 Figure 4-14 Join VLAN to Port screen 4.4.5 GVRP GARP VLAN Registration Protocol (GVRP) is specifically provided for automatic distribution of VLAN membership information among VLAN-aware bridges. GVRP allows VLAN-aware bridges to automatically learn VLANs to bridge ports mapping, without having to individually configure each bridge and register VLAN membership.
Page 50 When the checkbox is checked, VLAN registration through GVRP is enabled on the • GVRP Registration device.. The Update button adds the configured GVRP setting to the table at the bottom of • Update the screen User’s Manual of WGSD-1022/WGSD-8000 - 50 –...
Page 51: Statistics
• 15 Sec, which indicates that the RMON statistics are refreshed every 15 seconds. • 30 Sec, which indicates that the RMON statistics are refreshed every 30 seconds. • 60 Sec, which indicates that the RMON statistics are refreshed every 60 seconds. - 51 – User’s Manual of WGSD-1022/WGSD-8000...
Page 52 • Frames of xx Bytes Number of xx-byte frames received on the interface since the device was last refreshed. Clear Counters button, this option will reset all of the statistic counts. Refresh Now button, which use this option to refresh the statistics. User’s Manual of WGSD-1022/WGSD-8000 - 52 –...
Page 53: Rmon History
• Sampling Requested Displays the number of samples to be saved. The field range is 1-65535. The default value is 50 • Current Number of Displays the current number of samples taken. View History button. This button opens the RMON History screen Samples User’s Manual of WGSD-1022/WGSD-8000 Figure 4-17 RMON History screen - 53 –...
Page 54 • CRC Align Errors Which displays the number of CRC and Align errors that have occurred on the interface since the device was last refreshed. Figure 4-18 RMON History Table screen - 54 – User’s Manual of WGSD-1022/WGSD-8000...
Page 55: Rmon Alarm
The RMON Alarm screen (see figure 4-19) contains fields for setting network alarms. Network alarms occur when a network problem, or event, is detected. Rising and falling thresholds generate events. The page contains the following fields: User’s Manual of WGSD-1022/WGSD-8000 Figure 4-19 RMON Alarm screen - 55 –...
Page 56 • Both, indicates that both the Log and Trap mechanism are used to report alarms. • Startup Alarm Displays the trigger that activates the alarm generation. Rising is defined by crossing the threshold from a low-value threshold to a higher-value threshold User’s Manual of WGSD-1022/WGSD-8000 - 56 –...
Page 57 Defines the alarm interval time in seconds • Owner Dhere displays the device or user that defined the alarm Use the button when you add the RMON Alarms Table entry. Add to List User’s Manual of WGSD-1022/WGSD-8000 - 57 –...
Page 58: Rmon Events
RMON event to the Event Table at the bottom of the screen (see figure 4-21) The Event Table area contains the following additional field: User’s Manual of WGSD-1022/WGSD-8000 Figure 4-20 RMON Event screen - 58 –...
Page 59 User’s Manual of WGSD-1022/WGSD-8000 Where displays the time that the event occurred • Time Press the button to display the log store in the flash. Only the Event type is Log or Log and Trap, then the RMON Event Log entries appear.
Page 60: Port Utilization
• 15 Sec - indicates that the statistics are refreshed every 15 seconds. • 30 Sec - indicates that the statistics are refreshed every 30 seconds. • 60 Sec - indicates that the statistics are refreshed every 60 seconds. User’s Manual of WGSD-1022/WGSD-8000 Figure 4-22 Port Utilization screen - 60 –...
Page 61: Statistic
• Name Displays the measured 802.1x statistic • Description Describes the measured 802.1x statistic • Packet Displays the amount of packets measured for the particular 802.1x statistic Figure 4-23 802.1x Statistics screen seconds. seconds. - 61 – User’s Manual of WGSD-1022/WGSD-8000...
Page 62: Gvrp Statistics
The GVRP Statistics Table contains the following fields: Which displays the device GVRP Join Empty statistics • Join Empty Displays the device GVRP Empty statistics • Empty Figure 4-24 GVRP Statistics screen seconds. seconds. seconds. - 62 – User’s Manual of WGSD-1022/WGSD-8000...
Page 63 Displays the device GVRP Invalid Attribute Value statistics. Invalid Attribute Length, • Attribute Value where displays the device GVRP Invalid Attribute Length statistics Where displays the device GVRP Invalid Events statistics. The Clear All Counters • Invalid Events button resets all tables User’s Manual of WGSD-1022/WGSD-8000 - 63 –...
Page 64: Acl
Indicates the action assigned to the packet matching the ACL. Packets are forwarded or dropped. In addition, the port can be shutdown, a trap can be sent to User’s Manual of WGSD-1022/WGSD-8000 Figure 4-25 IP-Base ACL screen - 64 –...
Page 65 • Urg, indicates the packet is urgent. • Ack, indicates the packet is acknowledged. • Psh, indicates the packet is pushed. • Rst, indicates the connection is dropped. • Syn, indicates request to start a session. User’s Manual of WGSD-1022/WGSD-8000 - 65 –...
Page 66: Ip Based Acl Configure Sample
Sample Case: Deny IP packets to specific Class C network ■ Purpose: Verify a positive and negative matches to network IP address with a Class C (24 bit mask) , no matter the rule defined as permit or deny. User’s Manual of WGSD-1022/WGSD-8000 - 66 –...
Page 67 Any packets pass through the switch will be dropped – if the Destination IP Addresses match specific Class C. Any packets pass through the switch will be forwarded – if the Destination IP Addresses not match specific Class C. Case Design:...
Page 68 [Permit Rule]: Keep the “Destination IP Address” and “Wild Card Mask” be blanked. After click “Add to List" button, the entry would be show at the table. Rember to click the "Save Config" button. User’s Manual of WGSD-1022/WGSD-8000 - 68 –...
Page 69 Choose Port “g1” at the Interface. Choose “IP Based ACL”, select ACL name with “Deny-Source A” – that we had been created at step-1. Click “Add to List" button, the entry would be show at the table. User’s Manual of WGSD-1022/WGSD-8000 - 69 –...
Page 70: Mac Based Acl
User’s Manual of WGSD-1022/WGSD-8000 4.6.3 MAC Based ACL The MAC Based ACL screen (see figure 4-27) allows a MAC based ACL to be defined. ACLs can be added only if the ACL is not bound to an interface. Figure 4-26 MAC-Base ACL screen The Page contains the following fields: - 70 –...
Page 71: Mac Based Acl Configure Sample
” button to add the configured MAC Based ACLs to the MAC Based ACL Table at the bottom of the Add to List screen. 4.6.4 MAC Based ACL Configure Sample This chapter will teah you how to configure a MAC based ACL in the WGSD-Switch. ■ Sample Case: Deny IP packets to specific Class C network Purpose: port to which the packet was addressed.
Page 72 When the workstation with IP address 192.168.99.188 and MAC address 00-11-08-57-E0-1E ping to PC with IP address 192.168.99.57 and MAC address 00-30-4F-1D-9F-DE, use MAC based ACL function from ACL to deny or shutdown and permit the traffic transmit ability of notebook that connect to port 8 of WGSD-Switch. Case Design:...
Page 73 [Permit Rule]: Keep the “Destination MAC Address” and “Wild Card Mask” be blanked. After click “Add to List" button, the entry would be show at the table. User’s Manual of WGSD-1022/WGSD-8000 To allow all other packets be forwarded) - 73 –...
Page 74 Choose “MAC Based ACL”, select ACL name with “Deny-MAC A” – that we had been created at step-1. Click “Add to List" button, the entry would be show at the table. Please press "Save Config" to save current setting. If action "shutdown" is selected, the port will be force disabled Note: User’s Manual of WGSD-1022/WGSD-8000 - 74 –...
Page 75: Security
4.7 Security This section is to control the security access of the switch, includes the user access and management control. The Security function contains links to the following topics: • ACL Binding • RADIUS • TACACS+ • 802.1x Settings • Port Security •...
Page 76: Radius
This defines the amount of the time in seconds the device waits for an answer from • Timeout for Reply the RADIUS server before retrying the query, or switching to the next server. User’s Manual of WGSD-1022/WGSD-8000 Figure 4-28 RADIUS screen - 76 –...
Page 77 • All, where indicates that the RADIUS server is used for authenticating user Use the button when you add the RADIUS configuration to the RADIUS Table at the bottom of the screen. Add to List and passwords. name and passwords, and 802.1X port authentication. - 77 – User’s Manual of WGSD-1022/WGSD-8000...
Page 78: Tacacs
This displays the amount of time that passes before the connection between the device and the TACACS+ server times out. Reply The field range is 1-30 seconds. • Status Displays the connection status between the device and the TACACS+ server. The User’s Manual of WGSD-1022/WGSD-8000 Figure 4-29 TACACS+ screen - 78 –...
Page 79 Maintains a single open connection between the device and the TACACS+ server when selected the Add to List button to add the TACACS+ configuration to the TACACS+ table at the bottom of the screen. User’s Manual of WGSD-1022/WGSD-8000 - 79 –...
Page 80: Settings
Authentication server—performs the actual authentication of the client. The authentication server validates the identity of the client and notifies the switch whether or not the client is authorized to access the LAN and switch services. Because the switch acts as the proxy, the authentication service is transparent to the client. In this release, the Remote Authentication Dial-In User Service (RADIUS) security system with Extensible Authentication Protocol (EAP) extensions is the only supported authentication server;...
Page 81 It then sends an EAP-request/identity frame to the client to request its identity (typically, the switch sends an initial identity/request frame followed by one or more requests for authentication information). Upon receipt of the frame, the client responds with an EAP-response/identity frame.
Page 82 Ports in Authorized and Unauthorized States The switch port state determines whether or not the client is granted access to the network. The port starts in the unauthorized state. While in this state, the port disallows all ingress and egress traffic except for 802.1X protocol packets. When a client is successfully authenticated, the port transitions to the authorized state, allowing all traffic for the client to flow normally.
Page 83 • Enable Periodic Permits immediate port re-authentication. The Setting Timer button opens the Setting Timer screen to configure ports for 802.1x functionality. Re-authentication Setting Timer Figure 4-30 802.1x setting screen traffic). (discard traffic). - 83 – User’s Manual of WGSD-1022/WGSD-8000...
Page 84: Port Security
• Quiet Period a failed authentication exchange (Range: 0-65535). Specifies the number of seconds that the switch waits for a response to an EAP - • Resending EAP request/ identity frame, from the supplicant (client), before resending the requests. Which the total amount of EAP requests sent. If a response is not received after the •...
Page 85 MAC addresses associated with the port. The port learns up to the maximum addresses allowed on the port. Both relearning and aging MAC addresses are enabled. - 85 – User’s Manual of WGSD-1022/WGSD-8000...
Page 86 The default value is 10 seconds In order to change the Learning Mode, the Lock Interface must be set to unlocked. Once the mode is Note changed, the Lock Interface can be reinstated. User’s Manual of WGSD-1022/WGSD-8000 - 86 –...
Page 87: Multiple Hosts
Defines the time period by which traps are sent to the host. The Trap Frequency (1-1000000) field can be defined only if multiple hosts are disabled. The default is 10 seconds. Figure 4-33 Multiple Hosts screen remains shut down until reactivated, or until the device is reset. - 87 – User’s Manual of WGSD-1022/WGSD-8000...
Page 88: Storm Control
• Rate Threshold Where the maximum rate (packets per second) at which unknown packets are forwarded. The range is 70 -100000. The default value is 3500. Figure 4-34 Storm Control screen Broadcast traffic. - 88 – User’s Manual of WGSD-1022/WGSD-8000...
Page 89: Qos
User’s Manual of WGSD-1022/WGSD-8000 4.8 QoS Network traffic is usually unpredictable, and the only basic assurance that can be offered is best effort traffic delivery. To overcome this challenge, Quality of Service (QoS) is applied throughout the network. This ensures that network traffic is prioritized according to specified criteria, and that specific traffic receives preferential treatment.
Page 90: Queue Setting
LAG to which the CoS configuration applies. • LAG 4.8.2 Queue Setting The Queue Setting screen (see figure 4-36) contains fields for defining the QoS queue forwarding types. User’s Manual of WGSD-1022/WGSD-8000 Figure 4-35 CoS Settings screen - 90 –...
Page 91: Dscp Settings
These values are fixed and are not user- defined. Bandwidth • 6.67% • 13.33% • 26.67% • 53.33% 4.8.3 DSCP Settings The DSCP Settings screen (see figure 4-37) enables mapping DSCP values to specific queues User’s Manual of WGSD-1022/WGSD-8000 Figure 4-36 Quere Setting screen - 91 –...
Page 92: Bandwidth
The Bandwidth screen (refer to figure 4-38) allows network managers to define the bandwidth settings for a specified egress interface. Modifying queue scheduling affects the queue settings globally. The Bandwidth screen is not used with the Service mode, as bandwidth settings are based on services. User’s Manual of WGSD-1022/WGSD-8000 Figure 4-37 DSCP Settings screen - 92 –...
Page 93 Defines CIR as the queue shaping type. Information Rate The possible field value is 64 - 1,000,000 Kbps. (CIR) Figure 4-38 Bandwidth screen LAG, indicates the LAG for which the bandwidth settings are displayed. - 93 – User’s Manual of WGSD-1022/WGSD-8000...
Page 94: Basic Mode
The rules are based on the Access Control Lists (see Access Control Tab) Figure 4-39 Basic Mode screen determined the packet queue. DSCP, sets trust mode to the DSCP on the device. The DSCP mapping determines the packet queue. - 94 – User’s Manual of WGSD-1022/WGSD-8000...
Page 95 User’s Manual of WGSD-1022/WGSD-8000 Figure 4-40 Advance Mode screen MAC ACLs and IP ACLs can be grouped together in more complex structures, called policies. Policies can be applied to an interface. Policy ACLs are applied in the sequence they appear within the policy. Only a single policy can be attached to a port.
Page 96 • DSCP Out selected from the pull-down menu The Policy Settings button opens the Policy Name screen (see figure 4-42): Figure 4-41 Out of Profile DSCP Assignments screen Figure 4-42 Policy Settings screen - 96 – User’s Manual of WGSD-1022/WGSD-8000...
Page 97 • Add to List which selects an existing Policy by name • Select Policy • New Policy Name which defines a new Policy name where selects an existing Class Map by name • Class Map User’s Manual of WGSD-1022/WGSD-8000 - 97 –...
Page 98 MAC based ACLs. • MAC Based ACLs, matches packets to MAC based ACLs first, then matches packets to IP based ACLs. Or, either the MAC-based or the IP-based ACL must match a packet. - 98 – User’s Manual of WGSD-1022/WGSD-8000...
Page 99 • Drop, which drops packets exceeding the defined CIR value. • Remark DSCP, where remarks packet’s DSCP values exceeding the defined • Figure 4-44 Aggregate Policer Settings screen CIR value. None, forwarding packets exceeding the defined CIR value. - 99 – User’s Manual of WGSD-1022/WGSD-8000...
Page 100: Spanning Tree
。 The shortest distance to the root switch is calculated for each switch 。 A designated switch is selected. This is the switch closest to the root switch through which packets will be forwarded to the 。 root. A port for each switch is selected. This is the port providing the best path from the switch to the root switch.
Page 101 It is to make the root port a fastest link. If all switches have STP enabled with default settings, the switch with the lowest MAC address in the network will become the root switch. By increasing the priority (lowering the priority number) of the best switch, STP can be forced to select the best switch as the root switch.
Page 102 STP Operation Levels The Switch allows for two levels of operation: the switch level and the port level. The switch level forms a spanning tree consisting of links between one or more switches. The port level constructs a spanning tree consisting of groups of one or more ports.
Page 103 Hello Time – The Hello Time can be from 1 to 10 seconds. This is the interval between two transmissions of BPDU packets sent by the Root Bridge to tell all other Switches that it is indeed the Root Bridge. If you set a Hello Time for your Switch, and it is not the Root Bridge, the set Hello Time will be used if and when your Switch becomes the Root Bridge.
Page 104 STP assistance is not applied. If switch A broadcasts a packet to switch B, switch B will broadcast it to switch C, and switch C will broadcast it to back to switch A ... and so on. The broadcast packet will be passed indefinitely in a loop, potentially causing a network failure.
Page 105 LAN 2 The switch with the lowest Bridge ID (switch C) was elected the root bridge, and the ports were selected to give a high port cost between switches B and C. The two (optional) Gigabit ports (default port cost = 4) on switch A are connected to one (optional) Gigabit port on both switch B and C.
Page 106: Stp Status
Where indicates the port number that offers the lowest cost path from this bridge to • Root Port the Root Bridge. It is significant when the Bridge is not the Root. The default is zero. User’s Manual of WGSD-1022/WGSD-8000 Figure 4-45 STP Status screen - 106 –...
Page 107 • Last Topology or reset, and the last topographic change occurred. The time is displayed in a day Change hour minute second format, for example, 2 days 5 hours 10 minutes and 4 seconds. User’s Manual of WGSD-1022/WGSD-8000 - 107 –...
Page 108: The Global Stp
This is the default value. Flooding, where floods BPDU packets when spanning tree is disabled on an interface. This is the default value. path costs assigned to an interface varies according to the selected method. - 108 – User’s Manual of WGSD-1022/WGSD-8000...
Page 109: Stp Port Settings
Network administrators can assign STP settings to specific interfaces using the STP Interface Settings screen (see figure 4-47). The STP Interface Settings page contains the following fields: The page contains the following fields: Figure 4-47 STP Port Settings screen - 109 – User’s Manual of WGSD-1022/WGSD-8000...
Page 110 Indicates the selected port’s priority and interface. • Designated Cost Where indicates the cost of the port participating in the STP topology. Ports with a lower cost are less likely to be blocked if STP detects loops. User’s Manual of WGSD-1022/WGSD-8000 - 110 –...
Page 111: Rstp Port Settings
User’s Manual of WGSD-1022/WGSD-8000 • Forward Transitions This indicates the number of times the port has changed from the Blocking state to Forwarding state. STP Port status table Figure 4-48 STP Port status screen 4.9.4 RSTP Port settings While the classic spanning tree prevents Layer 2 forwarding loops in a general network topology, convergence can take between 30-60 seconds.
Page 112 • Role STP paths. The possible field values are: • Root, where provides the lowest cost path to forward packets to root switch. • Designated, where indicates that the port or LAG via which the designated • Alternate, which provides an alternate path to the root switch from the root •...
Page 113: Mstp Properties
The link remains configured for communications until explicit LCP or NCP packets close the link, or until some external event occurs. This is the actual switch port link type. It may differ from the administrative state.
Page 114: Mstp Instance Settings
Network Administrators can define MSTP Instances settings using the MSTP Instance Settings screen. The page contains the following fields: Instance Configuration Figure 4-51 MSTP Instance Settings screen - 114 – User’s Manual of WGSD-1022/WGSD-8000...
Page 115 Indicates the selected instance’s path cost. • Root Path Cost Indicates the bridge ID of the selected instance. • Bridge ID Indicates the number of hops remaining to the next destination. • Remaining Hops User’s Manual of WGSD-1022/WGSD-8000 - 115 –...
Page 116: Mstp Interface Settings
• Root, provides the lowest cost path to forward packets to root device. • Designated, indicates the port or LAG via which the designated device is attached to the LAN. • Alternate, provides an alternate path to the root device from the root - 116 – User’s Manual of WGSD-1022/WGSD-8000...
Page 117 Backup ports also occur when a LAN has two or more connections connected to a shared segment. • Disabled, which indicates the port is not participating in the Spanning Tree. Figure 4-54 MSTP Interfance configuration screen - 117 – User’s Manual of WGSD-1022/WGSD-8000...
Page 118: Multicast
Multicast routers send IGMP queries (to the all-hosts group address: 224.0.0.1) periodically to see whether any group members exist on their sub networks. If there is no response from a particular group, the router assumes that there are no group members User’s Manual of WGSD-1022/WGSD-8000 Checksum...
Page 119 IGMP. Enabling IGMP allows the ports to detect IGMP queries and report packets and manage IP multicast traffic through the switch. IGMP have three fundamental types of message as follows: Message...
Page 120: Igmp Snooping
This results in the creation of the Multicast filtering database. The page contains the following fields: IGMP Global Indicates if IGMP Snooping is enabled or Disabled on the device. • IGMP Snooping Status VLAN IGMP Settings Figure 4-55 IGMP Snooping screen - 120 – User’s Manual of WGSD-1022/WGSD-8000...
Page 121: Bridge Multicast
• Leave Timeout receiving a Join message from another station, before timing out. If a Leave Timeout occurs, the switch notifies the Multicast device to stop sending traffic. The Leave Timeout value is either user-defined, or an immediate leave value.
Page 122 • Forbidden, forbidden ports are not included the Multicast group, even if IGMP snooping designated the port to join a Multicast group. • None, displays the port is not configured for Multicast service. - 122 – User’s Manual of WGSD-1022/WGSD-8000...
Page 123: Bridge Multicast Forward All
The LAG is assigned to the Multicast group, and the device is updated. 4.10.3 Bridge Multicast Forward All The Bridge Multicast Forward All Screen contains fields for attaching ports or LAGs to a device attached to a neighboring Figure 4-57 Bridge Multicast screen - 123 – User’s Manual of WGSD-1022/WGSD-8000...
Page 124 Multicast router/switch. Once IGMP Snooping is enabled, Multicast packets are forwarded to the appropriate port or VLAN. Refer to figure 4-58. The Bridge Multicast Forward All Screen contains the following fields: For which Multicast parameters are displayed. This identifies a VLAN to be •...
Page 125: Snmp
First 4 octets — first bit = 1, the rest is IANA Enterprise number. To locate the IANA Enterprise number by referring to the Vendor website, or use the show SNMP command using a CLI interface. Figure 4-59 SNMP Global Parameter - 125 – User’s Manual of WGSD-1022/WGSD-8000...
Page 126: Views
The options to select the following Subtree: Figure 4-60 SNMP View screen • Default - which displays the default SNMP view for read and read/write views. • DefaultSuper - indicates the default SNMP view for administrator views. - 126 – User’s Manual of WGSD-1022/WGSD-8000...
Page 127 This indicates if the defined OID branch will be included or excluded in the • View Type selected SNMP view. Use the button when you want to add the Views configuration to the Views Table at the bottom of the screen. User’s Manual of WGSD-1022/WGSD-8000 - 127 –...
Page 128: Group Profile
• Read. The management access is restricted to read-only, and changes cannot Figure 4-61 Group Profile screen Privacy security levels are assigned to the group. SNMP messages original is authenticated. be made to the assigned SNMP view. - 128 – User’s Manual of WGSD-1022/WGSD-8000...
Page 129: Group Membership
• Group Name SNMP Group Profile page. Indicates the Authentication method used. The possible field values are: • Authentication assigned SNMP view. Figure 4-62 Group Membership Engine ID is defined, remote devices receive inform messages - 129 – User’s Manual of WGSD-1022/WGSD-8000...
Page 130 Use the button when you want to add the Group Membership configuration to the respective table at the bottom of the screen. password authentication. password authentication. authentication. - 130 – User’s Manual of WGSD-1022/WGSD-8000...
Page 131: Communities
View Name - contains a list of user-defined SNMP views. Figure 4-63 Communities configuration screen and changes cannot be made to the community. the device configuration, but not to the community. permissions to modify the community. - 131 – User’s Manual of WGSD-1022/WGSD-8000...
Page 132 Advanced Table • Management Station Displays the management station IP address for which the basic SNMP community is defined. Community String, which displays the password used to authenticate the Figure 4-64 Communities table screen - 132 – User’s Manual of WGSD-1022/WGSD-8000...
Page 133: Notification Filter
Select from List or the Object ID List. There are two configuration options: Select from List, select the OID from the list provided. Object ID, you can enter an OID not offered in the Select from List option. Figure 4-65 Notification Filter screen - 133 – User’s Manual of WGSD-1022/WGSD-8000...
Page 134: Notification Recipient
Notification Version fields are enabled for configuration: • Community String, where identifies the community string of the trap manager. • Notification Version, determines the trap type. The possible field values are: User’s Manual of WGSD-1022/WGSD-8000 Figure 4-66 Notification Recipient - 134 –...
Page 135 Notification Recipient configuration to the relevant table at the bottom of the screen. SNMP V1, which indicates SNMP Version 1 traps are sent. SNMP V2, which indicates SNMP Version 2 traps are sent. encrypted. Figure 4-67 Notification Recipient - 135 – User’s Manual of WGSD-1022/WGSD-8000...
Page 136 User’s Manual of WGSD-1022/WGSD-8000 - 136 –...
Page 137: Admin
The page contains the following fields: • Authentication Type Defines the user authentication methods. Also you can choose combinations of all the authentication methods. The possible field values are: Figure 4-68 User Authentication screen - 137 – User’s Manual of WGSD-1022/WGSD-8000...
Page 138: Static Address
4.12.2 Static Address A static address can be assigned to a specific interface on this switch. Static addresses are bound to the assigned interface and cannot be moved. When a static address is seen on another interface, the address will be ignored and will not be written to the...
Page 139: Dynamic Address
The Dynamic Address Table contains the MAC addresses learned by monitoring the source address for traffic entering the switch. When the destination address for inbound traffic is found in the database, the packets intended for that address are forwarded directly to the associated port. Otherwise, the traffic is flooded to all ports.
Page 140 Specifies the VLAN ID for which the table is queried. • VLAN ID Specifies the means by which the Dynamic MAC Address table is • Address Table Sort sorted by address, VLAN, or interface. Figure 4-70 Dynamic Address screen - 140 – User’s Manual of WGSD-1022/WGSD-8000...
Page 141: Logging
The system is in a critical state. • Critical A system error has occurred. • Error • Warning A system warning has occurred The system is functioning properly, but system notice has occurred. • Notice User’s Manual of WGSD-1022/WGSD-8000 Figure 4-71 Loggin screen - 141 –...
Page 142 • Informational Provides device information. Provides detailed information about the log. If a Debug error occurs, • Debug contact Customer Tech Support. User’s Manual of WGSD-1022/WGSD-8000 - 142 –...
Page 143: Port Mirroring
Port mirroring can be used as diagnostic tool and/or a debugging feature. Port mirroring also enables switch performance monitoring (refer to figure 4-72). Network administrators configure port mirroring by selecting a specific port to copy all packets, and different ports from which the packets are copied.
Page 144: Save Configuration
The Cable Length test can be performed only when the port is up and operating at 1Gbps 4.12.7 Save Configuration On this screen, you can choose two methods to save the configuration: Via TFTP Upgrade and Via HTTP. See figure 4-74 User’s Manual of WGSD-1022/WGSD-8000 Figure 4-73 Cable Test screen - 144 –...
Page 145 The page contains the following fields: Via TFTP Select this option to upgrade the switch from a file located on a TFTP • Via TFTP Upgrade Server. The TFTP Server IP Address that contains the source file to upgrade • TFTP Server from.
Page 146: Firmware Upgrade
Specifies the name of the upgrade file on the TFTP Server. • Source File Type in the name and path of the file or Browse to locate the upgrade • Destination File file. Figure 4-76 Firmware Upgrade via TFTP - 146 – User’s Manual of WGSD-1022/WGSD-8000...
Page 147: Reboot
There is a known issue. Sometimes after the “Reboot” button be pressed, it costs lot Note time to stop the curent tasks. So it might be rebooted after more then 5 minutes. Figure 4-77 Firmware Upgrade via HTTP Figure 4-78 Reboot screen - 147 – User’s Manual of WGSD-1022/WGSD-8000...
Page 148: Factory Defaults
User’s Manual of WGSD-1022/WGSD-8000 4.12.10 Factory Defaults The Factory Reset screen (see figure 4-79) allows network managers to reset the device to the factory defaults settings, but if you restore factory defaults results in erasing the configuration file. Although restoring the factory defaults will erase your configuration, you can save a backup of your current configuration settings from the Admin - Save Configuration screen.
Page 149: Server Logs
Provides device information. Provides detailed information about the log. If a Debug error occurs, contact Dell Online Technical Support - 149 – User’s Manual of WGSD-1022/WGSD-8000 Example Memories overflow. Main system memory pool overflow. Cannot bind to SNMP.
Page 150: Memory Logs
When a severity level is selected, all severity level choices above the selection are selected Note automatically. 4.12.12 Memory Logs The Memory Log screen (see figure 4-81) contains all system logs in a chronological order that are saved in RAM (Cache), Log User’s Manual of WGSD-1022/WGSD-8000 Figure 4-80 Server Logs screen - 150 –...
Page 151: Flash Logs
The Flash Log screen (see figure 4-82) contains information about log entries saved to the Log File in FLASH, the time that the log generated, the log severity, and description of the log message. The Message Log is available after reboot. User’s Manual of WGSD-1022/WGSD-8000 Figure 4-81 Memory Logs screen...
Page 152 User’s Manual of WGSD-1022/WGSD-8000 Figure 4-82 Flash Logs screen - 152 –...
Page 153: Command Structure
Web interface. This chapter describer how to configure the Switch through these interfaces. When you are ready to configure the smart functions of the Switch, make sure you had connected the supplied RS-232 serial cable to the RS-232 port at the front panel of your WGSW-24010 Switch and your PC.
Page 154: User Exec Mode
Enter the password and press <Enter>. The password is displayed as "*". The privileged EXEC mode prompt is displayed. The Privileged EXEC mode prompt consists of the device "host name" followed by "#". console # User’s Manual of WGSD-1022/WGSD-8000 - 154 –...
Page 155: Global Configuration Mode
To return from Global Configuration mode to Privileged EXEC mode, the user can use one of the following commands: exit Ctrl+Z The following example illustrates how to access Global Configuration mode and teturn back to the Privileged EXEC mode: console # console # configure console(config) # exit console # User’s Manual of WGSD-1022/WGSD-8000 - 155 –...
Page 156: Starting The Cli
5.2.2 Starting the CLI The switch can be managed over a direct connection to the switch console port, or via a Telnet connection. The switch can also be managed via an out-of-band (OOB) management port. The switch is managed by entering command keywords and parameters at the prompt.
Page 157: Editing Features
Keyword lookup—The character ? is entered in place of a command. A list of all valid commands and corresponding help messages are displayed. Partial keyword lookup—A command is incomplete and the character ? is entered in place of a parameter. The matched parameters for this command are displayed. User’s Manual of WGSD-1022/WGSD-8000 - 157 –...
Page 158: Negating The Effect Of Commands
Incorrect or incomplete commands are automatically re-entered next to the cursor. If a parameter must be added, the parameter can be added to the basic command already displayed next to the cursor. The following example indicated that the command interface ethernet requires the parameter <port-num>. User’s Manual of WGSD-1022/WGSD-8000 - 158 –...
Page 159: Keyboard Shortcuts
In a command line, curly brackets indicate a selection of compulsory parameters separated by the | character. One option must be selected. For example: flowcontrol {auto|on|off} means that for the flowcontrol command either auto, on or off must be selected. User’s Manual of WGSD-1022/WGSD-8000 - 159 –...
Page 160: Aaa Commands
[method2...]—Specify at least one from the following table: Keyword Source or destination enable Uses the enable password for authentication. line Uses the line password for authentication. local Uses the local username database for authentication User’s Manual of WGSD-1022/WGSD-8000 - 160 –...
Page 161: Aaa Authentication Enable
— Uses the listed authentication methods that follow this argument as the default list of methods,when using higher privilege levels. list-name — Character string used to name the list of authentication methods activated, when using accesshigher privilege levels. User’s Manual of WGSD-1022/WGSD-8000 - 161 –...
Page 162: Default Configuration
All aaa authentication enable default requests sent by the router to a RADIUS server include the username "$enabx$.", where x is the requested privilege level. Example The following example sets authentication when accessing higher privilege levels. console (config) # aaa authentication enable default enable User’s Manual of WGSD-1022/WGSD-8000 - 162 –...
Page 163: Login Authentication
— Uses the default list created with the authentication enable command. list-name — Uses the indicated list created with the authentication enable command. Default Configuration Uses the default set with the command authentication enable. User’s Manual of WGSD-1022/WGSD-8000 - 163 –...
Page 164: Ip Http Authentication
The additional methods of authentication are used only if the previous method returns an error, not if it fails. To ensure that the authentication succeeds even if all methods return an error, specify none as the final method in the command line. User’s Manual of WGSD-1022/WGSD-8000 - 164 –...
Page 165: Ip Https Authentication
Example The following example configures https authentication. console (config) # ip https authentication radius local User’s Manual of WGSD-1022/WGSD-8000 - 165 –...
Page 166: Show Authentication Methods
5.3.8 password The password line configuration command specifies a password on a line. To remove the password, use the no form of this command. Syntax password password [encrypted] no password User’s Manual of WGSD-1022/WGSD-8000 Enable Method List ----------------------------------- Console_Enable Default Default...
Page 167: Enable Password
There are no user guidelines for this command. Example The following example sets a local level 15 password "abc" to control access to user and privilege levels. console (config-line) # enable password level 15 abc User’s Manual of WGSD-1022/WGSD-8000 - 167 –...
Page 168: Username
The show users accounts privileged EXEC command displays information about the local user database. Syntax show users accounts Default Configuration This command has no default configuration. Command Mode Privileged EXEC mode User Guidelines There are no user guidelines for this command. User’s Manual of WGSD-1022/WGSD-8000 - 168 –...
Page 169: Address Table Commands
Default Configuration No static addresses are defined. The default mode for an added address is permanent. Command Mode Interface configuration (VLAN) mode User’s Manual of WGSD-1022/WGSD-8000 - 169 –...
Page 170: Bridge Multicast Filtering
The bridge multicast address interface configuration command registers MAC-layer multicast addresses to the bridge table, and adds static ports to the group. To unregister the MAC address, use the no form of the bridge multicast address command. Syntax bridge multicast address {mac-multicast-address | ip-multicast-address} User’s Manual of WGSD-1022/WGSD-8000 - 170 –...
Page 171: Bridge Multicast Forbidden Address
The bridge multicast forbidden address interface configuration command forbids adding a specific multicast address to specific ports. Syntax bridge multicast forbidden address {mac-multicast-address | ip-multicast-address} {add | remove} {Ethernet interface-list | port-channel port-channel-number-list} User’s Manual of WGSD-1022/WGSD-8000 - 171 –...
Page 172: Bridge Multicast Forward-Unregistered
— Separate nonconsecutive Ethernet ports with a comma and no spaces; use a hyphen to designate a range of ports. (Range: Valid Ethernet port) port-channel-number-list — Separate nonconsecutive port-channels with a comma and no spaces; use a hyphen to designate a range of port-channels. (Range: Valid Port-channel number) User’s Manual of WGSD-1022/WGSD-8000 - 172 –...
Page 173: Bridge Multicast Forbidden Forward-Unregistered
— Separate nonconsecutive port-channels with a comma and no spaces; use a hyphen to designate a range of port-channels. (Range: Valid Port-channel number) Default Configuration Not forbidden Command Modes Interface configuration (VLAN) mode User Guidelines There are no user guidelines for this command. User’s Manual of WGSD-1022/WGSD-8000 - 173 –...
Page 174: Bridge Multicast Forward-All
5.4.8 bridge multicast forbidden forward-all The bridge multicast forbidden forward-all interface configuration command forbids a port to be a forward-allmulticast port. To restore the default, use the no form of the bridge multicast forward-all command. User’s Manual of WGSD-1022/WGSD-8000 - 174 –...
Page 175: Bridge Aging-Time
The bridge aging-time global configuration command sets the address table aging time. To restore the default, use the no form of the bridge aging-time command. Syntax bridge aging-time seconds no bridge aging-time seconds — Time is number of seconds. (Range: 10 - 630 seconds) Default Configuration 300 seconds User’s Manual of WGSD-1022/WGSD-8000 - 175 –...
Page 176: Clear Bridge
The port security interface configuration command locks the port. By locking the port, new addresses are not learned on the port. To enable new address learning, use the no form of the port security command. Syntax port security [forward | discard | discard-shutdown] [trap seconds] no port security User’s Manual of WGSD-1022/WGSD-8000 - 176 –...
Page 177: Port Security Routed Secure-Address
The command enables adding secure MAC addresses to a routed ports in port security mode. The command is available when the port is a routed port and in port security mode. The address is deleted if the port exits the security mode or is not a routed port. User’s Manual of WGSD-1022/WGSD-8000 - 177 –...
Page 178: Show Bridge Address-Table
In this example, all classes of entries in the bridge-forwarding database are displayed. console# show bridge address-table Aging time is 250 sec vlan mac address ----- ------------------- 0060.704C.73FF 0060.708C.73FF 0010.0D48.37FF User’s Manual of WGSD-1022/WGSD-8000 port type ------ -------- dynamic dynamic static - 178 –...
Page 179: Show Bridge Address-Table Static
The show bridge address-table count privileged EXEC command displays the number of addresses present in all VLANs or at a specific VLAN. Syntax show bridge address-table count [vlan vlan] vlan — Specific VLAN. User’s Manual of WGSD-1022/WGSD-8000 port type ------ -------...
Page 180: Show Bridge Multicast Address-Table
This command has no default configuration. Command Mode Privileged EXEC mode User Guidelines There are no user guidelines for this command. Example In this example, multicast MAC address table information is displayed. User’s Manual of WGSD-1022/WGSD-8000 Static --------- - 180 –...
Page 181: Show Bridge Multicast Filtering
In this example, the multicast configuration for VLAN 1 is displayed. Type Ports -------- ---------- static e1, g2 static e1-8 dynamic e9-11 Ports ---------- Type Ports ------------ ---------- static e1,g2 static e1-8 dynamic e9-11 Ports ---------- - 181 – User’s Manual of WGSD-1022/WGSD-8000...
Page 182: Show Ports Security
In this example, all classes of entries in the port-lock status are displayed. console# show ports security Port status Learning Action ------- -------- ------------- ----------------- --------- -------- --------- Disabled Lock Disabled Lock Disabled Lock Disabled Lock Status ----------- Filter Forward(s) Forward(d) Maximum Trap - 182 – User’s Manual of WGSD-1022/WGSD-8000 Frequency...
Page 183: Clock Commands
The following example sets the system time to 13:32:00 on the 7th March 2005. console# clock set 13:32:00 7 Mar 2005 5.5.2 clock source The clock source Privileged EXEC command configures an external time source for the system clock. User’s Manual of WGSD-1022/WGSD-8000 - 183 –...
Page 184: Clock Timezone
The system internally keeps time in UTC, so this command is used only for display purposes and when the time is manually set. Examples The following example sets the timezone to 6 hours difference from UTC. User’s Manual of WGSD-1022/WGSD-8000 - 184 –...
Page 185: Clock Summer-Time
5.5.4 clock summer-time The clock summer-time global configuration command configures the system to automatically switch to summer time (daylight saving time),. To configure the software to not automatically switch to summer time, use the no form of this command. Syntax...
Page 186: Sntp Authentication-Key
— Key value (Range: Up to 8 characters) Default Configuration No authentication key is defined. Command Mode Global Configuration mode User Guidelines There are no user guidelines for this command. Examples The following example defines the authentication key for SNTP. User’s Manual of WGSD-1022/WGSD-8000 - 186 –...
Page 187: Sntp Authenticate
Protocol (SNTP) will synchronize. To disable authentication of the identity of the system, use the no form of this command. Syntax sntp trusted-key key-number no sntp trusted-key key-number key-number — Key number of authentication key to be trusted. (Range: 1 - 4294967295) User’s Manual of WGSD-1022/WGSD-8000 - 187 –...
Page 188: Sntp Client Poll Timer
There are no user guidelines for this command. Examples The following example sets the polling time for the Simple Network Time Protocol (SNTP) client to 120 seconds. Console(config)# sntp client poll timer 120 User’s Manual of WGSD-1022/WGSD-8000 - 188 –...
Page 189: Sntp Broadcast Client Enable
User’s Manual of WGSD-1022/WGSD-8000 5.5.9 sntp broadcast client enable The sntp broadcast client enable global configuration command enables the Simple Network Time Protocol (SNTP) broadcast clients. To disable the SNTP broadcast clients, use the no form of this command. Syntax...
Page 190: Sntp Client Enable (Interface)
Time Protocol (SNTP) to request and accept Network Time Protocol (NTP) traffic from servers. To disable requesting and accepting Network Time Protocol (NTP) traffic from servers, use the no form of this command. User’s Manual of WGSD-1022/WGSD-8000 - 190 –...
Page 191: Sntp Unicast Client Poll
User’s Manual of WGSD-1022/WGSD-8000 Syntax sntp unicast client enable no sntp unicast client enable This command has no arguments or keywords. Default Configuration Disabled Command Mode Global Configuration mode User Guidelines There are no user guidelines for this command. Examples The following example enables the device to use the Simple Network Time Protocol (SNTP) to request and accept Network Time Protocol (NTP) traffic from servers.
Page 192: Sntp Server
To define an SNTP server on the out-of-band port, use the out-of-band IP address format: oob/ip-address. Examples The following example configures the device to accept Network Time Protocol (NTP) traffic from the server on 192.1.1.1 Console (config)# sntp server 192.1.1.1 User’s Manual of WGSD-1022/WGSD-8000 - 192 –...
Page 193: Show Clock
This command has no keywords or arguments. Default Configuration This command has no default configuration. Command Mode Privileged EXEC mode User Guidelines There are no user guidelines for this command. User’s Manual of WGSD-1022/WGSD-8000 - 193 –...
Page 194: Show Sntp Status
The show sntp status Privileged EXEC command shows the status of the Simple Network Time Protocol (SNTP), Syntax show sntp status This command has no keywords or arguments. Default Configuration This command has no default configuration. Command Mode Privileged EXEC mode Encryption Key ---------------------- Disabled Encryption Key ---------------------- - 194 – User’s Manual of WGSD-1022/WGSD-8000...
Page 195: Configuration And Image Files
— Used only when copying from /to startup-config. Specifies that the destination/source file is inSNMP format. The following table displays keywords aliases to URL: Status Last response ----------- ---------------------- AFE252C1.6DBDDFF2 Unknown AFE21789.643287C9 Last response ------------------------ AFE252C1.6DBDDFF2 AFE21789.643287C9 - 195 – User’s Manual of WGSD-1022/WGSD-8000 Offset Delay [mSec] [mSec] ----------- ------------ 7.33 117.79 8.98 189.19...
Page 196 "active" image is either the last downloaded image or the image configured as the "active" image. The switch boot code first tries to load and run the active image. However, if the active image is found to be corrupt, the boot code tries to load the back-up image.
Page 197 The configuration is added to the "running configuration" as if the commands were typed in the command-line interface (CLI). The resulting configuration file is a combination of the previous "running configuration" and the loaded User’s Manual of WGSD-1022/WGSD-8000 - 197 –...
Page 198 Console# copy tftp://172.16.101.101/file1 image Accessing file 'file1' on 172.16.101.101... Loading file1 from 172.16.101.101: !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!!!! [OK] Copy took 0:01:11 [hh:mm:ss] Accessing file 'configfile' on oob/172.16.1.1... Loading file1 from oob/172.16.1.1: !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! User’s Manual of WGSD-1022/WGSD-8000 - 198 –...
Page 199: Show Startup-Config
The following example displays the contents of the startup-config file. Console# show startup-config software version 1.1 hostname device interface ethernet 1/1 ip address 176.242.100.100 255.255.255.0 duplex full speed 1000 interface ethernet 1/2 ip address 176.243.100.100 255.255.255.0 duplex full speed 1000 User’s Manual of WGSD-1022/WGSD-8000 - 199 –...
Page 200 User’s Manual of WGSD-1022/WGSD-8000 - 200 –...
Page 201: Ethernet Configuration Commands
Separate non consecutive ports with a comma and no spaces; a hyphen is used to designate a range of ports. all—All Ethernet ports. Default Configuration This command has no default configuration. Command Mode Global Configuration mode User’s Manual of WGSD-1022/WGSD-8000 - 201 –...
Page 202: Shutdown
There are no user guidelines for this command. Examples The following example disables Ethernet e5. Console(config)# interface ethernet e5 Console(config-if)# shutdown The following example re-enables Ethernet port e5. Console(config)# interface ethernet e5 Console(config-if)# no shutdown User’s Manual of WGSD-1022/WGSD-8000 - 202 –...
Page 203: Description
10—Configures the port to 10 Mbps. 100—Configures the port to 100 Mbps. 1000—Configures the port to 1000 Mbps. Default Configuration Maximum port capability. Command Mode Interface Configuration (Ethernet, port-channel, out-of-band Ethernet) mode User’s Manual of WGSD-1022/WGSD-8000 - 203 –...
Page 204: Duplex
Half duplex mode can be set only for ports operating at 10 Mbps or 100 Mbps. Example The following example configures the duplex operation of Ethernet e5 to force full duplex operation. Console(config)# interface ethernet e5 Console(config-if)# duplex full User’s Manual of WGSD-1022/WGSD-8000 - 204 –...
Page 205: Negotiation
{auto | on | off | rx | tx} no flowcontrol auto—Enables auto-negotiation of Flow Control. on—Enables Flow Control. off—Disables Flow Control. rx—Enables receiving pause frames only. tx—Enables transmitting pause frames only User’s Manual of WGSD-1022/WGSD-8000 - 205 –...
Page 206: Mdix
Mdix Auto : All possibilities to connect a PC with cross OR normal cables are supported and are automatically detected. Mdix ON: It is possible to connect to a PC only with a normal cable and to connect to another switch ONLY with a cross cable.
Page 207: Back-Pressure
Console(config-if)# back-pressure 5.7.11 port jumbo-frame The port jumbo-frame global configuration command enables jumbo frames for the device. To disable jumbo frames, use the no form of this command. Syntax port jumbo-frame no port jumbo-frame User’s Manual of WGSD-1022/WGSD-8000 - 207 –...
Page 208: Clear Counters
In the following example, the counters for interface g1 are cleared. console# clear counters ethernet g1 5.7.13 set interface active The set interface active privileged EXEC mode command reactivates an interface that was suspended by the system. User’s Manual of WGSD-1022/WGSD-8000 - 208 –...
Page 209: Show Interfaces Configuration
This command has no default configuration. Command Modes Privilege EXEC mode User Guidelines There are no user guidelines for this command. Example The following example displays the configuration for all configured interfaces: console# show interfaces configuration User’s Manual of WGSD-1022/WGSD-8000 - 209 –...
Page 210: Show Interfaces Status
Enabled Off Enabled Off Enabled Off Enabled Off Enabled Off Flow Admin State ------- ----- - 210 – User’s Manual of WGSD-1022/WGSD-8000 Back Mdix Disabled Auto Disabled Auto Disabled Auto Disabled Auto Disabled Auto Disabled Auto Disabled Auto Disabled Auto...
Page 211 Back Pressure—Displays the Back Pressure status. Link State—Displays the Link Aggregation status. Flow Link Back Control State Pressure ----------- ---------- ------------ Auto Down Flow Back Control Pressure -------------- Disable - 211 – User’s Manual of WGSD-1022/WGSD-8000 Mdix Mode ----------- Enable Disable Disable Link State ---------...
Page 212: Show Interfaces Description
Console# show interfaces description ethernet g1 Port Description ------ -------------------- Management_port R&D_port Finance_port Description ----- ------------------ Output 5.7.17 show interfaces counters The show interfaces counters user EXEC command displays traffic seen by the physical interface. User’s Manual of WGSD-1022/WGSD-8000 - 212 –...
Page 213: Command Modes
OutOctets OutUcastPkts ------- ------------- ------------------- 9188 8789 InOctets InUcastPkts InMcastPkts ---- ------------ ---------------- ---------------- 27889 OutOctets OutUcastPkts ---- ------------- -------------------- 23739 InBcastPkts ----------------- OutMcastPkts OutBcastPkts ------------------- ------------------ InBcastPkts ----------------- OutMcastPkts OutBcastPkts ------------------ ------------------- - 213 – User’s Manual of WGSD-1022/WGSD-8000...
Page 214 Counted received unicast packets. InMcastPkts Counted received multicast packets. InBcastPkts Counted received broadcast packets. OutOctets Counted transmitted octets. OutUcastPkts Counted transmitted unicast packets. OutMcastPkts Counted transmitted multicast packets. OutMcastPkts OutBcastPkts ------------------- ------------------ OutMcastPkts OutBcastPkts ------------------- ------------------ - 214 – User’s Manual of WGSD-1022/WGSD-8000...
Page 215: Show Ports Jumbo-Frame
This command has no default configuration. Command Modes User EXEC mode User Guidelines There are no user guidelines for this command. Example The following example displays the jumbo frames configuration. Console# show ports jumbo-frame Jumbo frames are disabled User’s Manual of WGSD-1022/WGSD-8000 - 215 –...
Page 216: Port Storm-Control Broadcast Enable
(Rate: 70 - 100000) User’s Manual of WGSD-1022/WGSD-8000 - 216 –...
Page 217: Show Ports Storm-Control
Privileged EXEC mode User Guidelines There are no user guidelines for this command. Example The following example displays the storm control configuration. Console# show ports storm-control Port ----- Broadcast Storm control [kbyes/sec] ------------------------------------------------- - 217 – User’s Manual of WGSD-1022/WGSD-8000...
Page 218: Gvrp Commands
GVRP, or GARP VLAN Registration Protocol, is an industry-standard protocol designed to propagate VLAN information from device to device. With GVRP, a single switch is manually configured with all desired VLANs for the network, and all other switches on the network learn these VLANs dynamically.
Page 219: Garp Timer
— Timer values in milliseconds. Default Configuration The default timer values are as follows: Join timer — 200 milliseconds Leave timer — 600 milliseconds Leavall timer — 10000 milliseconds Command Mode Interface configuration (Ethernet, port-channel) mode User’s Manual of WGSD-1022/WGSD-8000 - 219 –...
Page 220: Gvrp Vlan-Creation-Forbid
GVRP exchanges on an interface are restricted only to those VLANs for which static VLAN registration exists. Example The following example disables dynamic VLAN creation on port e8. Console (config)# interface ethernet e8 Console (config-if)# gvrp vlan-creation-forbid User’s Manual of WGSD-1022/WGSD-8000 - 220 –...
Page 221: Gvrp Registration-Forbid
[ethernet interface | port-channel port-channel-number] • interface — A valid Ethernet interface. • port-channel-number — A valid port-channel trunk index. Default Configuration This command has no default configuration. Command Mode Privileged EXEC mode User’s Manual of WGSD-1022/WGSD-8000 - 221 –...
Page 222: Show Gvrp Configuration
GVRP Feature is currently enabled on the switch. Maximum VLANs: 255, Port(s) GVRP Registration Status -------- ------------- ---------------- Enabled Normal Enabled Normal Dynamic Timers VLAN (milliseconds) Creation --------------- --------------------- ---------------- ------------- Enabled Enabled - 222 – User’s Manual of WGSD-1022/WGSD-8000 Leave Leave Join 10000 10000...
Page 223: Show Gvrp Statistics
: Join In Received rLIn : Leave In Received rLA : Leave All Received sJIn : Join In Sent sLIn : Leave In Sent sLA : Leave All Sent sJIn sEmp - 223 – User’s Manual of WGSD-1022/WGSD-8000 sLIn ----- -------- ------...
Page 224: Show Gvrp Error-Statistics
INVATYP : Invalid Attribute Type INVAVAL : Invalid Attribute Value Port INVPROT INVATYP ------ ------------- ------------- INVPLEN : Invalid PDU Length INVALEN : Invalid Attribute Length INVEVENT : Invalid Event INVAVAL INVALEN ------------- -------------- - 224 – User’s Manual of WGSD-1022/WGSD-8000 INVEVENT ---------------...
Page 225: Igmp Snooping Commands
VLAN. To disable IGMP snooping on a VLAN interface, use the no form of this command. Syntax ip igmp snooping no ip igmp snooping Default Configuration IGMP snooping is disabled on all VLANs in the set context. User’s Manual of WGSD-1022/WGSD-8000 - 225 –...
Page 226: Ip Igmp Snooping Mrouter
To reset to default host-time-out use the no form of this command. User’s Manual of WGSD-1022/WGSD-8000 - 226 –...
Page 227: Ip Igmp Snooping Mrouter-Time-Out
The default value is 300 seconds. Command Mode Interface Configuration (VLAN) mode User Guidelines There are no user guidelines for this command. Example The following example configures the mrouter timeout to 200 seconds. User’s Manual of WGSD-1022/WGSD-8000 - 227 –...
Page 228: Ip Igmp Snooping Leave-Time-Out
Console (config-if)# ip igmp snooping leave-time-out 60 5.9.7 show ip igmp snooping mrouter The show ip igmp snooping mrouter User EXEC command displays information on dynamically learned multicast router interfaces. Syntax show ip igmp snooping mrouter [interface vlan-id] User’s Manual of WGSD-1022/WGSD-8000 - 228 –...
Page 229: Show Ip Igmp Snooping Interface
User EXEC mode User Guidelines There are no user guidelines for this command. Example The example displays IGMP snooping information. Console # show ip igmp snooping interface 1 IGMP Snooping is globaly disabled User’s Manual of WGSD-1022/WGSD-8000 - 229 –...
Page 230: Show Ip Igmp Snooping Groups
To see the full multicast address table (including static addresses) use the show bridge address-table command. Example The example shows IGMP snooping information. Console # show ip igmp snooping groups Vlan IP Address ------- ------------------------------------- ------------- 224-239.130|2.2.3 224-239.130|2.2.8 Querier Ports ------------ e1, g2 e5-8 - 230 – User’s Manual of WGSD-1022/WGSD-8000...
Page 231: Ip Addressing Commands
[hostname host-name] no ip address dhcp hostname — Specifies the host name. host-name — DHCP host name. This name need not be the same as the host name entered in global configuration User’s Manual of WGSD-1022/WGSD-8000 - 231 –...
Page 232: Ip Default-Gateway
The ip default-gateway command defines a default gateway (router). To remove the default gateway use the no form of this command. Syntax ip default-gateway ip-address no ip default-gateway ip-address — Valid IP address that specifies the IP address of the default gateway. User’s Manual of WGSD-1022/WGSD-8000 - 232 –...
Page 233: Show Ip Interface
This command has no default configuration. Command Mode User EXEC mode User Guidelines There are no user guidelines for this command. Example The following example displays VLAN 1 configuration. Console# show ip interface vlan 1 User’s Manual of WGSD-1022/WGSD-8000 - 233 –...
Page 234: Arp
Syntax arp timeout seconds no arp timeout seconds seconds — Time (in seconds) that an entry remains in the ARP cache. (Range: 1 - 40000000) Default Configuration The default timeout is 60000 seconds. User’s Manual of WGSD-1022/WGSD-8000 - 234 –...
Page 235: Clear Arp-Cache
There are no user guidelines for this command. Example The following example deletes all dynamic entries from the ARP cache. Console# clear arp-cache 5.10.8 show arp The show arp privileged EXEC command displays entries in the ARP table. User’s Manual of WGSD-1022/WGSD-8000 - 235 –...
Page 236: Lacp Commands
— Value of the priority. (Range: 1 - 65535) Default Configuration The default system priority value is 1. HW address status -------- 00:10:B5:04:DB:4B Dynamic 00:50:22:00:2A:A4 Static - 236 – User’s Manual of WGSD-1022/WGSD-8000...
Page 237: Lacp Port-Priority
Console (config-if)# lacp port-priority 247 5.11.3 lacp timeout The lacp timeout interface configuration command assigns an administrative LACP timeout. To reset the default administrative LACP timeout use the no form of this command. User’s Manual of WGSD-1022/WGSD-8000 - 237 –...
Page 238: Show Lacp Ethernet
This command has no default configuration. Command Mode Privilege EXEC mode User Guidelines There are no user guidelines for this command. Example The following example shows how to display LACP statistics information. Console# show lacp ethernet e1 statistics User’s Manual of WGSD-1022/WGSD-8000 - 238 –...
Page 239: Show Lacp Port-Channel
The following example shows how to display LACP port-channel information. Console# show lacp port-channel 1 Port-Channel 1:Port Type 1000 Ethernet Actor System Priority:1 MAC Address: 000285:0E1C00 Admin Key: 29 Oper Key: 29 Partner System Priority:0 MAC Address: 000000:000000 Oper Key: 14 User’s Manual of WGSD-1022/WGSD-8000 - 239 –...
Page 240: Line Commands
Syntax speed {bps} bps — Baud rate in bits per second (bps). The options are 2400, 9600, 19200 and 38400. Default Configuration This default speed is 115200. Command Mode Line Configuration (console) mode User’s Manual of WGSD-1022/WGSD-8000 - 240 –...
Page 241: Exec-Timeout
The following example configures the interval that the system waits until user input is detected to 20 minutes. Console (config)# line console Console(config-line)# exec-timeout 20 5.12.4 show line The show line user EXEC command displays line parameters. Syntax show line [console | telnet | ssh] User’s Manual of WGSD-1022/WGSD-8000 - 241 –...
Page 242: Management Acl Commands
History: 10 SSH configuration: Interactive timeout: 10 minutes 10 seconds History: 10 5.13 Management ACL Commands 5.13.1 management access-list The management access-list configuration command defines an access-list for management, and enters the access-list for User’s Manual of WGSD-1022/WGSD-8000 - 242 –...
Page 243 Console (config)# management access-list mlist Console (config-macl)# deny ethernet g1 Console (config-macl)# deny ethernet g2 Console (config-macl)# permit Console (config-macl)# exit Console (config)# management access-class mlist User’s Manual of WGSD-1022/WGSD-8000 - 243 –...
Page 244: Permit (Management)
Console (config)# management access-list mlist Console (config-macl)# permit 5.13.3 deny (management) The deny management access-list configuration command defines a deny rule. Syntax deny [ethernet interface-number | vlan vlan-id | port-channel number ] [service service] User’s Manual of WGSD-1022/WGSD-8000 - 244 –...
Page 245: Management Access-Class
— Name of the access list. If unspecified, defaults to an empty access-list.(Range: Valid name) console-only — The device can be managed only from the console. Default Configuration This command has no default configuration. User’s Manual of WGSD-1022/WGSD-8000 - 245 –...
Page 246: Show Management Access-List
There are no user guidelines for this command. Example The following example displays the active management access-list. Console# show management access-list mlist ------- permit ethernet g1 permit ethernet g9 ! (Note: all other access implicitly denied) User’s Manual of WGSD-1022/WGSD-8000 - 246 –...
Page 247: Show Management Access-Class
The port can only be tested if cable is connected to both sides. The port under test should be shut down during the test, unless it is a combo port with an active fiber port. User’s Manual of WGSD-1022/WGSD-8000 - 247 –...
Page 248: Show Copper-Ports Tdr
The following example displays the last TDR (Time Domain Reflectometry) tests on all ports. Console# show copper-ports tdr Port Result ------- ----------- Short Test has not been preformed Short Fiber User’s Manual of WGSD-1022/WGSD-8000 Length Date [meters] -------------- --------- 13:32:00 23 July 2003 13:32:00 23 July 2003 - 248 –...
Page 249: Show Copper-Ports Cable-Length
Fiber 5.14.4 show fiber-ports optical-transceiver The show fiber-ports optical-transceiver privileged EXEC command displays the optical transceiver diagnostics. Syntax show fiber-ports optical-transceiver [interface] [detailed] interface — A valid Ethernet port. Detailed — Detailed diagnostics. User’s Manual of WGSD-1022/WGSD-8000 - 249 –...
Page 250 The following example displays detailed optical transceiver diagnostics console# show fiber-ports transceiver detailed Port Temp Voltage [Volt] Current Output Input Power Power Power ------------ ----------- ---------- Current Output Input [mA] Power Power [mWatt] [mWatt] - 250 – User’s Manual of WGSD-1022/WGSD-8000 ---------...
Page 251: Port Channel Commands
------------ ----------- ---------- 5.15 1.789 5.15 1.789 - 251 – User’s Manual of WGSD-1022/WGSD-8000 ---------...
Page 252: Interface Range Port-Channel
The channel-group interface configuration command associates a port with a port-channel. To remove a port from a port channel, use the no form of this command. Syntax channel-group port-channel-number mode {on | auto} no channel-group port-channel_number — Specifies the number of the valid port-channel for the current port to join. User’s Manual of WGSD-1022/WGSD-8000 - 252 –...
Page 253: Show Interfaces Port-Channel
Syntax show interfaces port-channel [port-channel-number] port-channel-number — Valid port-channel number information to display. Default Configuration This command has no default configuration. Command Mode User EXEC mode User’s Manual of WGSD-1022/WGSD-8000 - 253 –...
Page 254: Port Monitor Commands
The port being monitored cannot be set faster than the monitoring port. The following restrictions apply to ports configured to be destination ports: The port cannot be already configured as a source port. User’s Manual of WGSD-1022/WGSD-8000 - 254 –...
Page 255: Show Ports Monitor
5.16.2 show ports monitor The show ports monitor user EXEC command displays the port monitoring status. Syntax show ports monitor Default Configuration This command has no default configuration. Command Mode User EXEC mode User’s Manual of WGSD-1022/WGSD-8000 - 255 –...
Page 256: Qos Commands
Destination Port ---------------- ----------------------- 1/18 5.17 QoS Commands 5.17.1 qos The qos global configuration command enables quality of service (QoS) on the device and enters QoS basic or advanced mode. User’s Manual of WGSD-1022/WGSD-8000 Type Status ------------ ----------- RX, TX Active...
Page 257: Show Qos
User EXEC mode User Guidelines There are no user guidelines for this command. Example The following example displays a device where basic mode is supported. Console# show qos Qos: basic Basic trust: dscp User’s Manual of WGSD-1022/WGSD-8000 - 257 –...
Page 258: Wrr-Queue Cos-Map
It is recommended to specifically map a single VPT to a queue, rather than mapping multiple VPTs to a single queue Example The following example maps CoS 3 to queue 7. Console (config)# wrr-queue cos-map 7 3 User’s Manual of WGSD-1022/WGSD-8000 - 258 –...
Page 259: Wrr-Queue Bandwidth
Use the priority-queue out num-of-queues command to globally configure a queue as WRR or Strict Priority. Use this command to set a weight per interface. Example The following example sets queue weights as follows: Queue 1—6/36 Queue 2—6/36 Queue 3—6/36 Queue 4—6/36 User’s Manual of WGSD-1022/WGSD-8000 - 259 –...
Page 260: Priority-Queue Out Num-Of-Queues
The show qos interface user EXEC command displays interface QoS data. Syntax show qos interface [ethernet interface-number | vlan vlan-id | port-channel number] [buffers | queuing | policers | shapers] ethernet interface-number — Ethernet port number. User’s Manual of WGSD-1022/WGSD-8000 - 260 –...
Page 261 There are no user guidelines for this command. Examples The following example displays output from the show qos interface ethernet e1 buffers command. Console# show qos interface ethernet e1 buffers Ethernet e1 Notify Q depth: Size User’s Manual of WGSD-1022/WGSD-8000 Threshold - 261 –...
Page 262 Committed rate: 192000 bps Committed burst: 9600 bytes status Target Committed Rate [bps] Enable 100000 Disable Enable 200000 Disable Disable Disable Enable 178000 Enable 23000 Priority Target Committed Burst [bytes] 17000 19000 8000 1000 - 262 – User’s Manual of WGSD-1022/WGSD-8000 Weight...
Page 263: Qos Map Dscp-Queue
QoS Commands qos trust (Global) Copyright © 2004 Marvell CONFIDENTIAL January 19, 2004, Preliminary Document Classification: Proprietary Information Page 147 Default Configuration The following table describes the default map. Doc. No. MV-S200005-00 Rev. C - 263 – User’s Manual of WGSD-1022/WGSD-8000...
Page 264: Qos Trust (Global)
Packets entering a quality of service (QoS) domain are classified at the edge of the QoS domain. When the packets are classified at the edge, the switch port within the QoS domain can be configured to one of the trusted states because there is no need to classify the packets at every switch within the domain.
Page 265: Qos Trust (Interface)
Console (config)# interface ethernet e5 Console (config-if) qos trust 5.17.10 qos cos The qos cos interface configuration command configures the default port CoS value. To return to the default setting, use the no form of this command. User’s Manual of WGSD-1022/WGSD-8000 - 265 –...
Page 266: Qos Cos Override
Default Configuration CoS Override is disabled Command Mode Interface configuration (Ethernet, Port-Channel). User Guidelines This command enables to override the CoS value of tagged packets, with the value configured by the qos cos command. User’s Manual of WGSD-1022/WGSD-8000 - 266 –...
Page 267: Show Qos Map
The following example displays the DSCP port-queue map. console# show qos map Dscp-queue map: d1 : d2 0 ---- ---- ---- The following example displays the policed-DSCP map. ---- ---- ---- ---- ---- ---- - 267 – User’s Manual of WGSD-1022/WGSD-8000 ----...
Page 268: Radius Commands
The radius-server host global configuration command specifies a RADIUS server host. To delete the specified RADIUS host, use the no form of this command. Syntax radius-server host {ip-address} [auth-port auth-port-number] [timeout timeout] [retransmit retransmit] [deadtime deadtime] [key key] [source source] [priority priority] no radius-server host ip-address - 268 – User’s Manual of WGSD-1022/WGSD-8000...
Page 269 The following example specifies a RADIUS server host with the following characteristics: Server host IP address — 192.168.10.1 Authentication port number — 20 Timeout period — 20 seconds Console (config)# radius-server host 192.168.10.1 auth-port 20 timeout 20 User’s Manual of WGSD-1022/WGSD-8000 - 269 –...
Page 270: Radius-Server Key
RADIUS server hosts. To reset the default configuration, use the no form of this command. Syntax radius-server retransmit retries no radius-server retransmit Default Configuration The default is 3 attempts. Command Mode Global Configuration mode User’s Manual of WGSD-1022/WGSD-8000 - 270 –...
Page 271: Radius-Server Source-Ip
The radius-server timeout global configuration command sets the interval for which a router waits for a server host to reply. To restore the default, use the no form of this command. Syntax radius-server timeout timeout no radius-server timeout User’s Manual of WGSD-1022/WGSD-8000 - 271 –...
Page 272: Radius-Server Deadtime
User Guidelines There are no user guidelines for this command. Example The following example sets a dead time where a RADIUS server is skipped over by transaction requests for this period, to 10 minutes. User’s Manual of WGSD-1022/WGSD-8000 - 272 –...
Page 273: Show Radius-Servers
Deadtime: 0 Source IP: 172.16.8.1 Retransmit Deadtime Source IP ---------------- --------------- --------------- ---------- --------- Global Global Global Global Global Retransmit Deadtime Source IP Priority ------------------ ------------- --------------- ----------- Global Global Global - 273 – User’s Manual of WGSD-1022/WGSD-8000 Priority Usage...
Page 274: Rmon Commands
The total number of events in which packets are dropped by the probe due to lack of resources. Dropped This number is not always the number of packets dropped; it is the number of User’s Manual of WGSD-1022/WGSD-8000 - 274 –...
Page 275 (excluding framing bits but including FCS octets). The total number of packets (including bad packets) received that are between 1024 and 1518 1024 to 1518 octets in length inclusive (excluding framing bits but including FCS octets). Octets User’s Manual of WGSD-1022/WGSD-8000 - 275 –...
Page 276: Rmon Collection History
The show rmon collection history user EXEC command displays the requested history group configuration. Syntax show rmon collection history [ethernet interface | port-channel port-channel-number] interface — Valid Ethernet port. port-channel-number — Valid port-channel trunk index. User’s Manual of WGSD-1022/WGSD-8000 - 276 –...
Page 277: Show Rmon History
— The requested set of samples. (Range: 1 - 65535) throughput — Displays throughput counters. errors — Displays error counters. other — Displays drop and collision counters. Requested Granted Owner Samples Sample --------------- ------------ --------- - 277 – User’s Manual of WGSD-1022/WGSD-8000...
Page 278 ------------------------------ --------------- Jan 18 2002 21:57:00 Jan 18 2002 21:57:30 Packets Broadcast -------------- ----------------- 357568 3289 275686 2789 Undersize Oversize ---------------- ------------- - 278 – User’s Manual of WGSD-1022/WGSD-8000 Multicast --------- ------ 7287 19.98% 2789 20.17% Fragments Jabbers --------------- -------------...
Page 279 (excluding framing bits but including FCS octets) but were otherwise well formed. etherHistoryFragments to increment because it counts both runts (which are normal occurrences due to collisions) and noise hits. Owner: CLI Interval: 1800 Granted samples: 50 Dropped Collisions -------------- -------------- - 279 – User’s Manual of WGSD-1022/WGSD-8000...
Page 280: Rmon Alarm
If the method is absolute, the value of the selected variable is compared directly with the thresholds at the end of the sampling interval. If the method is delta, the selected variable value at the last sample is subtracted from the current value, and the difference compared with the thresholds. User’s Manual of WGSD-1022/WGSD-8000 - 280 –...
Page 281: Show Rmon Alarm-Table
Console (config)# rmon alarm 1000 abc 360000 1000000 1000000 10 20 5.19.6 show rmon alarm-table The show rmon alarm-table user EXEC command displays the alarms summary table. Syntax show rmon alarm-table Default Configuration This command has no default configuration. User’s Manual of WGSD-1022/WGSD-8000 - 281 –...
Page 282: Show Rmon Alarm
— Alarm index. (Range: 1 - 65535) Default Configuration This command has no default configuration. Command Mode User EXEC mode User Guidelines There are no user guidelines for this command. User’s Manual of WGSD-1022/WGSD-8000 Owner ----------- Manager - 282 –...
Page 283 If the first sample is less than or equal to the falling threshold, and startup alarm is equal falling or rising and falling, then a single falling alarm User’s Manual of WGSD-1022/WGSD-8000 - 283 –...
Page 284: Rmon Event
— Enter a name that specifies who configured this event. If unspecified, the name is an empty string. (Range: 0-127 characters) Default Configuration This command has no default configuration. Command Mode Global Configuration mode User Guidelines There are no user guidelines for this command. User’s Manual of WGSD-1022/WGSD-8000 - 284 –...
Page 285: Show Rmon Events
The type of notification that the device generates about this event. Can have the following Community Owner ----------------- ------------ router Manager - 285 – User’s Manual of WGSD-1022/WGSD-8000 Last time sent -------------------- Jan 18 2002 23:58:17 Jan 18 2002 23:59:48...
Page 286: Show Rmon Log
Errors High Broadcast Console# show rmon log Maximum table size: 500 (800 after reset) Event Description --------- ---------------- User’s Manual of WGSD-1022/WGSD-8000 Time --------- Jan 18 2002 23:48:19 Jan 18 2002 23:58:17 Jan 18 2002 23:59:48 Time --------- - 286 –...
Page 287: Rmon Table-Size
The configured table size is effective after the device is rebooted. Example The following example configures the maximum RMON history table sizes to 1000 entries. Console (config)# rmon table-size history 1000 User’s Manual of WGSD-1022/WGSD-8000 Jan 18 2002 23:48:19 Jan 18 2002 23:58:17 Jan 18 2002 23:59:48...
Page 288: Snmp Commands
SNMP community, the administrator must indicate which tables are being configured. If type is oob, this indicates that OOB tables are being configured. If type is router, it means that the device's tables are being configured. User’s Manual of WGSD-1022/WGSD-8000 - 288 –...
Page 289: Snmp-Server Contact
This command has no default configuration. Command Mode Global Configuration mode User Guidelines Do not include spaces in the text string. Example The following example displays setting up the system contact point as "abc_Technical_Support". User’s Manual of WGSD-1022/WGSD-8000 - 289 –...
Page 290: Snmp-Server Location
The following example sets the device location as "New_York". Console (config)# snmp-server location New_York 5.20.4 snmp-server enable traps The snmp-server enable traps global configuration command enables the switch to send SNMP traps. To disable SNMP traps use the no form of the command. Syntax...
Page 291: Snmp-Server Trap Authentication
Console (config)# snmp-server enable traps 5.20.5 snmp-server trap authentication The snmp-server trap authentication global configuration command enables the switch to send Simple Network Management Protocol traps when authentication fails. To disable SNMP authentication failed traps, use the no form of this command.
Page 292: Snmp-Server Set
Inform requests should be used, if it is important that the SNMP manager receives every notification. If traffic on the network or memory in the switch is a concern and notification is not required, traps should be used.
Page 293: Show Snmp
This command has no default configuration. Command Mode Privileged EXEC mode User Guidelines There are no user guidelines for this command. Example The following example displays the SNMP communications status. Console# show snmp User’s Manual of WGSD-1022/WGSD-8000 - 293 –...
Page 294 Traps are enabled. Authentication trap is enabled. Trap-Rec-Address Trap-Rec-Community 192.122.173.42 OOB trap receivers Trap-Rec-Address 176.16.8.9 System Contact: Robert System Location: Marketing IP address ------------------ 172.16.1.1 172.17.1.1 IP address ------------------ 176.16.8.9 Version public Trap-Rec-Community Version public - 294 – User’s Manual of WGSD-1022/WGSD-8000...
Page 295: Spanning-Tree Commands
Syntax spanning-tree mode {stp | rstp} no spanning-tree mode stp — STP is supported. rstp — RSTP is supported. Default Configuration Spanning-tree protocol (STP) is supported. Command Modes Global Configuration mode User’s Manual of WGSD-1022/WGSD-8000 - 295 –...
Page 296: Spanning-Tree Forward-Time
The spanning-tree hello-time global configuration command configures the spanning-tree bridge hello time, which is how often the switch broadcasts hello messages to other switches.To reset the default hello time, use the no form of this command. User’s Manual of WGSD-1022/WGSD-8000...
Page 297: Spanning-Tree Max-Age
The default max-age for IEEE STP is 20 seconds. Command Modes Global Configuration mode User Guidelines There are no user guidelines for this command. Example The following example configures the spanning-tree bridge maximum-age to 10 seconds. User’s Manual of WGSD-1022/WGSD-8000 - 297 –...
Page 298: Spanning-Tree Priority
5.21.7 spanning-tree disable The spanning-tree disable interface configuration command disables spanning-tree on a specific port. To enable spanning-tree on a port use, the no form of this command. Syntax spanning-tree disable no spanning-tree disable User’s Manual of WGSD-1022/WGSD-8000 - 298 –...
Page 299: Spanning-Tree Cost
Interface Configuration (Ethernet, port-channel) mode User Guidelines The method used (long or short) is set by using the spanning-tree pathcost method command. Example The following example configures the spanning-tree cost on e5 to 35000. User’s Manual of WGSD-1022/WGSD-8000 - 299 –...
Page 300: Spanning-Tree Port-Priority
The spanning-tree portfast interface configuration command enables PortFast mode. In PortFast mode, the interface is immediately put into the forwarding state upon linkup, without waiting for the timer to expire. To disable PortFast mode, use the no form of this command. Syntax spanning-tree portfast no spanning-tree portfast User’s Manual of WGSD-1022/WGSD-8000 - 300 –...
Page 301: Spanning-Tree Link-Type
— Specifies that the port link type is shared. Default Configuration The switch derives the link type of a port from the duplex mode. A full-duplex port is considered a point-to-point link, and a half-duplex port is considered a shared link.
Page 302: Spanning-Tree Bpdu
Auto Command Mode Global configuration mode User Guidelines This command applies to all the spanning tree instances on the switch. The priority value must be a multiple of 4096. The cost is set using the spanning-tree cost command. Example The following example sets the default path cost method to "long".
Page 303: Clear Spanning-Tree Detected-Protocols
The following example restarts the protocol migration process (forces the renegotiation with neighboring switches) on g1. Console# clear spanning-tree detected-protocols ethernet g1 5.21.15 show spanning-tree The show spanning-tree privileged EXEC command displays spanning-tree configuration. User’s Manual of WGSD-1022/WGSD-8000 - 303 –...
Page 304 Address 0002.4b29.7a00 Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec Number of topology changes 2 last change occurred 2d18h ago Times: hold 1, topology change 35, notification 2 32768 - 304 – User’s Manual of WGSD-1022/WGSD-8000...
Page 305: Ssh And Slogin Commands
----------------------- 38 32768 0030.9441.62c1 57 32769 0002.4b29.7a00 57 32769 0002.4b29.7a00 Designated Cost Bridge ID ------ ----------------------- 38 32768 0030.9441.62c1 - 305 – User’s Manual of WGSD-1022/WGSD-8000 Port ID Prio. Nbr --------------- 128.25 128.25 128.65 Port ID Prio. Nbr --------------- 128.25...
Page 306: Ip Ssh Server
If encryption keys are not generated, the SSH server is in standby until the keys are generated. To generate SSH server keys, use the commands crypto key generate rsa, and crypto key generate dsa. Example The following example enables the device to be configured from a SSH server. Console (config)# ip ssh server User’s Manual of WGSD-1022/WGSD-8000 - 306 –...
Page 307: Crypto Key Generate Dsa
User’s Manual of WGSD-1022/WGSD-8000 5.22.3 crypto key generate dsa The ip ssh server global configuration command generates DSA key pairs. Syntax crypto key generate dsa Default Configuration DSA key pairs do not exist. Command Mode Global Configuration mode User Guidelines DSA keys are generated in pairs: one public DSA key and one private DSA key.
Page 308: Ip Ssh Pubkey-Auth
5.22.6 crypto key pubkey-chain ssh The crypto key pubkey-chain ssh global configuration command enters SSH Public Key-chain configuration mode. The mode is used to manually specify other device public keys such as SSH client public keys. User’s Manual of WGSD-1022/WGSD-8000 - 308 –...
Page 309: User-Key
User Guidelines Follow this command with the key-string command to specify the key. Example The following example enables a SSH public key to be manually configured for the SSH public key chain called "bob". User’s Manual of WGSD-1022/WGSD-8000 - 309 –...
Page 310: Key-String
The following example enters public key strings for SSH public key clients called "bob". Console(config)# crypto key pubkey-chain ssh Console(config-pubkey-chain)# user-key bob rsa Console(config-pubkey-key)# key-string rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCvTnRwPWl Al4kpqIw9GBRonZQZxjHKcqKL6rMlQ+ ZNXfZSkvHG+QusIZ/76ILmFT34v7u7ChFAE+ Vu4GRfpSwoQUvV35LqJJk67IOU/zfwOl1g kTwml75QR9gHujS6KwGN2QWXgh3ub8gDjTSq muSn/Wd05iDX2IExQWu08licglk02LYciz +Z4TrEU/9FJxwPiVQOjc+KBXuR0juNg5nFYsY 0ZCk0N/W9a/tnkm1shRE7Di71+w3fNiOA 6w9o44t6+AINEICBCCA4YcF6zMzaT1wefWwX6f+ User’s Manual of WGSD-1022/WGSD-8000 - 310 –...
Page 311: Show Ip Ssh
The following table describes the significant fields shown in the display: Field Description IP address Client address SSH username User name Version SSH version number Cipher Encryption type (3DES, Blowfish, RC4) Version Cipher --------------- -------------- 2.0 3 - 311 – User’s Manual of WGSD-1022/WGSD-8000 Auth Code ------------------- HMAC-SH1...
Page 312: Show Crypto Key Mypubkey
5.22.11 show crypto key pubkey-chain ssh The show crypto key pubkey-chain ssh privileged EXEC command displays SSH public keys stored on the device. Syntax show crypto key pubkey-chain ssh [username username] [fingerprint bubble-babble | hex] User’s Manual of WGSD-1022/WGSD-8000 - 312 –...
Page 313: System Management
| hostname [size packet_size] [count packet_count] [timeout time_out] ip-address — IP address to ping. An out-of-band IP address can be specified as described in the usage guidelines. hostname — hostname to ping (Range: 1 - 160 characters) User’s Manual of WGSD-1022/WGSD-8000 - 313 –...
Page 314: Traceroute
Destination does not respond—If the host does not respond, a “no answer from host” message appears in 10 seconds. Destination unreachable—The gateway for this destination indicates that the destination is unreachable. Network or host unreachable—The switch found no corresponding entry in the route table. To ping an out-of-band IP address, use the out-of-band IP address format — oob/ip-address.
Page 315 The traceroute command terminates when the destination responds, when the maximum TTL is exceeded, or when the user interrupts the trace with Esc. To find the trace to an out-of-band IP address, use the out-of-band IP address format: oob/ip-address. User’s Manual of WGSD-1022/WGSD-8000 - 315 –...
Page 316 The following table describes the characters that can appear in the traceroute command output. Field Description The probe timed out. Unknown packet type. Administratively unreachable. Usually, this output indicates that an access list is blocking traffic. Host unreachable. Network unreachable. Protocol unreachable. Source quench. Port unreachable. User’s Manual of WGSD-1022/WGSD-8000 - 316 –...
Page 317: Telnet
At any time during an active Telnet session, the Telnet commands can be listed by pressing the Ctrl-shift-6 key, followed by a question mark at the system prompt: Ctrl-shift-6 ? A sample of this list follows. The following example displays the system service tag information. User’s Manual of WGSD-1022/WGSD-8000 - 317 –...
Page 318 UNIX-to-UNIX Copy Program (UUCP) and other non-Telnet protocols. Ports Table Keyword Description Border Gateway Protocol chargen Character generator Remote commands daytime Daytime discard Discard domain Domain Name Service echo Echo exec Exec finger Finger User’s Manual of WGSD-1022/WGSD-8000 Port number - 318 –...
Page 319: Resume
Unix-to-Unix Copy Program whois Nickname World Wide Web Example Console> telnet 176.213.10.50 Esc U sends telnet EL 5.23.4 resume The resume command in EXEC mode is used to switch to another open Telnet session. User’s Manual of WGSD-1022/WGSD-8000 - 319 –...
Page 320: Reload
Caution should be exercised when resetting the device, to ensure that no other activity is being performed. In particular, the user should verify that no configuration files are being downloaded at the time of reset. Example The following example reloads the operating system. Console# reload User’s Manual of WGSD-1022/WGSD-8000 - 320 –...
Page 321: Hostname
User’s Manual of WGSD-1022/WGSD-8000 5.23.6 hostname The hostname global configuration command specifies or modifies the device host name. To remove the existing host name, use the no form of the command. Syntax hostname name no hostname name — The device host name.
Page 322: Show Sessions
172.16.1.2 172.16.1.2 Field Description Connection Connection number Host Remote host to which the device is connected through a Telnet session. Protocol Location ------------ ------------ Serial HTTP Address Port -------- - 322 – User’s Manual of WGSD-1022/WGSD-8000 172.16.0.1 172.16.0.8 Byte -------...
Page 323: Show System
Temperature-Indicates the temperature at which the device is currently running. The device temperature is displayed in Celsius. The device temperature threshold is 0 - 40 C (32 - 104F). The following table displays the temperature in Fahrenheit in increments of 5. Celsius Fahrenheit User’s Manual of WGSD-1022/WGSD-8000 01,02:48:20 00:03:6d:30:57:00 1.3.6.1.4.1.89.1.1 - 323 –...
Page 324: Show Version
The logging on global configuration command controls error messages logging. This command sends debug or error messages to a logging process, which logs messages to designated locations asynchronously to the process that generated the messages. To disable the logging process, use the no form of this command. User’s Manual of WGSD-1022/WGSD-8000 - 324 –...
Page 325: Logging
— The facility that is indicated in the message. Can be one of the following values: local0, local1, local2, local3, local4, local5, local 6, local7. If unspecified, the port number defaults to local7. text — Syslog server description, which can be up to 64 characters. User’s Manual of WGSD-1022/WGSD-8000 - 325 –...
Page 326: Logging Console
Global Configuration mode User Guidelines There are no user guidelines for this command. Example The following example limits messages logged to the console based on severity level "errors". Console (config)# logging console errors User’s Manual of WGSD-1022/WGSD-8000 - 326 –...
Page 327: Logging Buffered
— Numeric value indicating the maximum number of messages stored in the history table. (Range: 20 - 400) Default Configuration The default number of messages is 200. User’s Manual of WGSD-1022/WGSD-8000 - 327 –...
Page 328: Clear Logging
5.24.7 logging file The logging file global configuration command limits syslog messages sent to the logging file based on severity. To cancel the buffer, use the no form of this command. 23.7.1 Syntax User’s Manual of WGSD-1022/WGSD-8000 - 328 –...
Page 329: Clear Logging File
Command Mode Privileged EXEC mode User Guidelines There are no user guidelines for this command. Example The following example clears messages from the logging file. Console# clear logging file Clear Logging File [y/n] y User’s Manual of WGSD-1022/WGSD-8000 - 329 –...
Page 330: Show Logging
%LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet g0, changed state to up 11-Aug-2002 15:41:39: %LINEPROTO-5-UPDOWN: Line protocol on Interface Ethernet g0, changed state to down 11-Aug-2002 15:41:39: %LINEPROTO-5-UPDOWN: Line protocol on Interface Ethernet g1, changed User’s Manual of WGSD-1022/WGSD-8000 - 330 –...
Page 331: Show Logging File
11-Aug-2002 15:41:43: %LINK-3-UPDOWN: Interface Ethernet g0, changed state to up 11-Aug-2002 15:41:43: %LINK-3-UPDOWN: Interface Ethernet g1, changed state to up 11-Aug-2002 15:41:43: %LINK-3-UPDOWN: Interface Ethernet g2, changed state to up 11-Aug-2002 15:41:43: %LINK-3-UPDOWN: Interface Ethernet e3, changed state to up User’s Manual of WGSD-1022/WGSD-8000 - 331 –...
Page 332: Show Syslog-Servers
There are no user guidelines for this command. Example The following example displays the syslog server settings. Console# show syslog-servers IP address Port ---------------- ------ 192.180 192.180.2.285 Severity Facility ------------ ------------ Informational local Warning local - 332 – User’s Manual of WGSD-1022/WGSD-8000 Description ----------------...
Page 333: Tacacs Commands
Multiple tacacs-server host commands can be used to specify multiple hosts. If no host-specific timeout, key or source values are specified, the global values apply to each host. To define TACACS server on the out-of-band port, use the out-of-band IP address format: oob/ip-address. User’s Manual of WGSD-1022/WGSD-8000 - 333 –...
Page 334: Tacacs-Server Key
5.25.3 tacacs-server timeout The tacacs-server timeout command in global configuration mode sets the timeout value. To restore the default, use the no form of this command. Syntax tacacs-server timeout timeout no tacacs-server timeout User’s Manual of WGSD-1022/WGSD-8000 - 334 –...
Page 335: Tacacs-Server Source-Ip
To define an out-of-band IP address use the out-of-band IP address format: oob/ip-address. Command Mode Global Configuration mode User Guidelines There are no user guidelines for this command. Examples The following example specifies the source IP address. Console (config)# tacacs-server source-ip 172.16.8.1 User’s Manual of WGSD-1022/WGSD-8000 - 335 –...
Page 336: Show Tacacs
Source IP: 172.16.8.1 OOB Source IP: 176.16.8.1 OOB TACACS servers IP address Status Source IP Priority --------------- --------- Port Single Connection ------- ---------------- -------------- Port Single Connection ------- ---------------- -------------- - 336 – User’s Manual of WGSD-1022/WGSD-8000 TimeOut Global TimeOut...
Page 337: User Interface Commands
The default privilege level is 15. Command Mode User EXEC mode User Guidelines There are no user guidelines for this command. Example The following example shows how to enter privileged mode: Console> enable enter password: Console# - 337 – User’s Manual of WGSD-1022/WGSD-8000 Global...
Page 338: Disable
Privileged EXEC mode User Guidelines There are no user guidelines for this command. Example In the following example, because no keyword is entered, a prompt is displayed. After the keyword is selected, a message User’s Manual of WGSD-1022/WGSD-8000 - 338 –...
Page 339: Login
Password:* * * * * Console# 5.26.5 exit(configuration) The exit command exits any configuration mode to the next highest mode in the CLI mode hierarchy. Syntax exit Default Configuration This command has no default configuration. User’s Manual of WGSD-1022/WGSD-8000 - 339 –...
Page 340: Exit(Exec)
The following example closes an active terminal session. Console> exit 5.26.7 end The end global configuration command ends the current configuration session and returns to the privileged command mode. Syntax Default Configuration This command has no default configuration. User’s Manual of WGSD-1022/WGSD-8000 - 340 –...
Page 341: Help
The history line configuration command enables the command history function. To disable the command history feature, use the no form of this command. Syntax history no history Default Configuration The history function is enabled. User’s Manual of WGSD-1022/WGSD-8000 - 341 –...
Page 342: History Size
The following example changes the command history buffer size to 100 entries for a particular line. Console (config-line)# history size 100 5.26.12 show history The show history user EXEC command lists the commands entered in the current session. User’s Manual of WGSD-1022/WGSD-8000 - 342 –...
Page 343: Show Privilege
This command has no default configuration. Command Mode User EXEC command mode User Guidelines There are no user guidelines for this command. Example The following example displays the current privilege level. Console# show privilege User’s Manual of WGSD-1022/WGSD-8000 - 343 –...
Page 344: Vlan Commands
— A list of valid VLAN IDs to be added. List separate, non-consecutive VLAN IDs separated by commas (without spaces); use a hyphen to designate a range of IDs. (Range: 2 - 4063) User’s Manual of WGSD-1022/WGSD-8000 - 344 –...
Page 345: Default-Vlan Disable
This command has no keywords or arguments. Default Configuration Enabled Command Modes Vlan configuration mode User Guidelines There are no user guidelines for this command. Examples1 Console# vlan database Console(config-vlan)# default-vlan disable User’s Manual of WGSD-1022/WGSD-8000 - 345 –...
Page 346: Interface Vlan
— A list of valid VLAN IDs to add. Separate non consecutive VLAN IDs with a comma and no spaces; a hyphen designates a range of IDs. all — All existing static VLANs. Default Configuration This command has no default configuration. Command Mode Global Configuration mode User’s Manual of WGSD-1022/WGSD-8000 - 346 –...
Page 347: Name
5.27.7 switchport mode The switchport mode interface configuration command configures the VLAN membership mode of a port. To reset the mode to the appropriate default for the device, use the no form of this command. User’s Manual of WGSD-1022/WGSD-8000 - 347 –...
Page 348: Switchport Access Vlan
Syntax switchport access vlan vlan-id no switchport access vlan vlan-id — VLAN ID of the VLAN to which the port is configured. Default Configuration VLAN ID=1 Command Mode Interface configuration (Ethernet, port-channel) mode User’s Manual of WGSD-1022/WGSD-8000 - 348 –...
Page 349: Switchport Trunk Allowed Vlan
Example The following example shows how to add VLANs 2 and 5 to 8 to the allowed list of e8. Console (config)# interface ethernet e8 Console (config-if)# switchport trunk allowed vlan add 2,5-8 User’s Manual of WGSD-1022/WGSD-8000 - 349 –...
Page 350: Switchport Trunk Native Vlan
— List of VLAN IDs to add. Separate non consecutive VLAN IDs with a comma and no spaces. A hyphen designates a range of IDs. remove vlan-list — List of VLAN IDs to remove. Separate non consecutive VLAN IDs with a comma and no spaces. A hyphen designates a range of IDs. User’s Manual of WGSD-1022/WGSD-8000 - 350 –...
Page 351: Switchport General Pvid
Interface configuration (Ethernet, port-channel) mode User Guidelines There are no user guidelines for this command. Example The following example shows how to configure the PVID for e8, when the interface is in general mode. User’s Manual of WGSD-1022/WGSD-8000 - 351 –...
Page 352: Switchport General Ingress-Filtering Disable
The switchport general acceptable-frame-type tagged-only interface configuration command discards untagged frames at ingress. To enable untagged frames at ingress, use the no form of this command. Syntax switchport general acceptable-frame-type tagged-only no switchport general acceptable-frame-type tagged-only User’s Manual of WGSD-1022/WGSD-8000 - 352 –...
Page 353: Switchport Forbidden Vlan
All VLANs allowed. Command Mode Interface Configuration (Ethernet, port-channel) mode User Guidelines There are no user guidelines for this command. Example The following example forbids adding VLANs number 234 till 256, to e8. User’s Manual of WGSD-1022/WGSD-8000 - 353 –...
Page 354: Map Protocol Protocols-Group
VLAN Database mode User Guidelines The following protocol names are reserved: ip-arp Example The following example maps protocol ip-arp to the group named "213". Console (config)# vlan database Console (config-vlan)# map protocol ip-arp protocols-group 213 User’s Manual of WGSD-1022/WGSD-8000 - 354 –...
Page 355: Switchport General Map Protocols-Group Vlan
Syntax ip internal-usage-vlan vlan-id no ip internal-usage-vlan vlan-id — VLAN ID of the internal usage VLAN.(Range: Valid VLAN) Default Configuration This command has no default configuration. User’s Manual of WGSD-1022/WGSD-8000 - 355 –...
Page 356: Show Vlan
Default Configuration This command has no default configuration. Command Mode Privileged EXEC mode User Guidelines There are no user guidelines for this command. Example The following example displays all VLAN information. console# show vlan User’s Manual of WGSD-1022/WGSD-8000 - 356 –...
Page 357: Show Vlan Internal Usage
VLAN_2 VLAN_3 5.27.20 show vlan internal usage The show vlan internal usage privileged EXEC command displays a list of VLANs being used internally by the switch. Syntax show vlan internal usage Default Configuration This command has no default configuration.
Page 358 Port is member in: Vlan Name ------- ---------- default VLAN008 VLAN011 Forbidden VLANS: VLAN Name -------- --------- Classification rules: Group ID VLAN ------------ --------- Egress rule Type ----------------- --------- untagged System tagged Dynamic tagged Static - 358 – User’s Manual of WGSD-1022/WGSD-8000...
Page 359: Web Server Commands
TCP port, use the no form of this command. Syntax ip http port port-number no ip http port port-number — Port number for use by the HTTP server. (Range: 0 - 65535) User’s Manual of WGSD-1022/WGSD-8000 - 359 –...
Page 360: Ip Https Server
User Guidelines You must use the crypto certificate generate command to generate the HTTPS certificate. Example The following example enables the device to be configured from a browser. Console (enable)# ip https server User’s Manual of WGSD-1022/WGSD-8000 - 360 –...
Page 361: Ip Https Port
The Certificate and the SSL RSA key pairs do not exist. Command Mode Global Configuration mode User Guidelines The command is not saved in the router configuration; however, the certificate and keys generated by this command are saved User’s Manual of WGSD-1022/WGSD-8000 - 361 –...
Page 362: Show Ip Http
HTTP server enable. Port: 80 5.28.7 show ip https The show ip http privileged EXEC command displays the HTTPS server configuration. Syntax show ip https Default Configuration This command has no default configuration. User’s Manual of WGSD-1022/WGSD-8000 - 362 –...
Page 363: Commands
The additional methods of authentication are used only if the previous method returns an error, not if it fails. To ensure that the authentication succeeds even if all methods return an error, specify none as the final method in the command line. User’s Manual of WGSD-1022/WGSD-8000 - 363 –...
Page 364: Dot1X System-Auth-Control
— Enable 802.1X authentication on the interface and cause the port to transition to the authorized or unauthorized state based on the 802.1X authentication exchange between the switch and the client. User’s Manual of WGSD-1022/WGSD-8000 - 364 –...
Page 365: Dot1X Re-Authentication
— Deny all access through this interface by forcing the port to transition to the unauthorized state, ignoring all attempts by the client to authenticate. The switch cannot provide authentication services to the client through the interface.
Page 366: Dot1X Timeout Re-Authperiod
5.29.6 dot1x re-authenticate The dot1x re-authenticate privileged EXEC command manually initiates a re-authentication of all 802.1Xenabled ports or the specified 802.1X-enabled port. dot1x re-authenticate [ethernet interface] interface — The full syntax is: unit/port. User’s Manual of WGSD-1022/WGSD-8000 - 366 –...
Page 367: Dot1X Timeout Quiet-Period
Syntax dot1x timeout quiet-period seconds no dot1x timeout quiet-period seconds — Time in seconds that the switch remains in the quiet state following a failed authentication exchange with the client. (Range: 0 - 65535 seconds) Default Configuration Command Mode...
Page 368: Dot1X Timeout Tx-Period
Command Mode Interface configuration (Ethernet) Examples The following command sets the number of seconds that the switch waits for a response to an EAP - request/identity frame, to 3600 seconds. Console (config)# interface ethernet e8 Console (config-if)# dot1x timeout tx-period 3600 5.29.9 dot1x max-req...
Page 369: Dot1X Timeout Supp-Timeout
Syntax dot1x timeout supp-timeout seconds no dot1x timeout supp-timeout seconds — Time in seconds that the switch should wait for a response to an EAP-request frame from the client before resending the request. (Range: 1 - 65535 seconds) Default Configuration...
Page 370: Dot1X Timeout Server-Timeout
Use the no form of this command to return to the default setting. Syntax dot1x timeout server-timeout seconds no dot1x timeout server-timeout seconds — Time in seconds that the switch should wait for a response from the authentication server before resending the request. (Range: 1 - 65535 seconds) Default Configuration Command Mode...
Page 371 * Port is down or not present Console# show dot1x ethernet e3 Interface Admin Mode Reauth Username 1/e3 Auto 3600 Clark User’s Manual of WGSD-1022/WGSD-8000 Reauth Reauth Username Control Period Disabled 3600 Disabled 3600 Disabled 3600 Disabled 3600 Disabled 3600...
Page 372: Show Dot1X Users
State The current value of the Authenticator PAE state machine. Quiet period The number of seconds that the switch remains in the quiet state following a failed authentication exchange (for example, the client provided an invalid password). Tx period The number of seconds that the switch waits for a response to an Extensible Authentication Protocol (EAP)-request/identity frame from the client before resending the request.
Page 373 Authentication Method The authentication method used to establish the session. Mac address The supplicant MAC address. Interface The interface that the user is using. Last Auth Auth Method MAC Address ------------------ --------------------- Remote None - 373 – User’s Manual of WGSD-1022/WGSD-8000...
Page 374: Show Dot1X Statistics
Description EapolFramesRx The number of valid EAPOL frames of any type that have been received by this Authenticator. EapolFramesTx The number of EAPOL frames of any type that have been transmitted by this User’s Manual of WGSD-1022/WGSD-8000 - 374 –...
Page 375: Dot1X Auth-Not-Req
Interface configuration (VLAN) mode User Guidelines To define a VLAN for authorized and unauthorized users use the dot1x auth-not-req interface VLAN command. Examples The following example enables unauthorized users access to the VLAN. User’s Manual of WGSD-1022/WGSD-8000 - 375 –...
Page 376: Dot1X Multiple-Hosts
MAC address is not the supplicant MAC address, attempts to access the interface. Use the no form of this command to return to default. Syntax dot1x single-host-violation {forward | discard | discard-shutdown} [trap seconds] no port dot1x single-host-violation forward — Forward frames with source addresses not the supplicant address, but do not learn the address. User’s Manual of WGSD-1022/WGSD-8000 - 376 –...
Page 377: Show Dot1X Advanced
The following example uses the forward action to forward frames with source addresses. console config-if(Config-VLAN)# dot1x single-host-violation forward trap 100 5.29.19 show dot1x advanced The show dot1x advanced privileged EXEC command displays 802.1X advanced features for the switch or for the specified interface. Syntax show dot1x advanced [ethernet interface] interface —...
Page 378 Unauthenticated VLANs: 91, 92 Use user attributes from Authentication Server: Enabled User VLAN not created: Create Interface Multiple Hosts Disabled Enabled Single Host Violation: Discard Trap: Enabled Frequency: 100 Status: Authorized (Locked) Counter: 9 User’s Manual of WGSD-1022/WGSD-8000 - 378 –...
Page 379: Trouble Shooting
Performance is bad Solution: Check the full duplex status of the Ethernet Switch. If the Ethernet Switch is set to full duplex and the partner is set to half duplex, then the performance will be poor. 100Base-TX port link LED is lit, but the traffic is irregular Solution: Check that the attached device is not set to dedicate full duplex.
Page 380: Appendex A
A.1 Switch's RJ-45 Pin Assignments When connecting your 10/100Mbps Ethernet Switch to another switch, a bridge or a hub, a straight or crossover cable is necessary. Each port of the Switch supports auto-MDI/MDI-X detection. That means you can directly connect the Switch to any Ethernet devices without making a crossover cable.
Page 381 6 = Green 7 = White / Brown 8 = Brown Figure A-1: Straight-Through and Crossover Cable - 381 – User’s Manual of WGSD-1022/WGSD-8000 SIDE2 1 = White / Orange 2 = Orange 3 = White / Green 4 = Blue...
Page 382: Available Modules
SFP-port 1000Base-LX (WDM,TX:1310nm) mini-GBIC module-10KM MGB-LA10 SFP-port 1000Base-LX (WDM,TX:1550nm) mini-GBIC module-10KM MGB-LB10 SFP-port 1000Base-LX (WDM,TX:1310nm) mini-GBIC module-20KM MGB-LA20 SFP-port 1000Base-LX (WDM,TX:1550nm) mini-GBIC module-20KM MGB-LB20 SFP-port 1000Base-LX (WDM,TX:1310nm) mini-GBIC module-40KM MGB-LA40 SFP-port 1000Base-LX (WDM,TX:1550nm) mini-GBIC module-40KM MGB-LB40 2081-A34030-001 User’s Manual of WGSD-1022/WGSD-8000 - 382 –...

This manual is also suitable for:

Wgsd-8000

Planet WGSD-1022 User Manual

1 Introduction

2 Installation

3 Configuration

4 Web Configuration

5 Command Structure

Quick Links

Related Manuals for Planet WGSD-1022

Summary of Contents for Planet WGSD-1022