Download Print this page

D-Link xStack DGS-3612G series Cli Manual

D-Link xStack DGS-3612G series Cli Manual

Layer 3 gigabit ethernet managed switch release 2.5

Hide thumbs Also See for xStack DGS-3612G series:

Reference manual (546 pages)

,

Instruction manual (326 pages)

,

Specifications (3 pages)

Table Of Contents

page of 493

/ 493
Contents
Table of Contents
Bookmarks

Table of Contents

Advertisement

Quick Links

See also: Reference Manual , Instruction Manual

®

CLI Manual

®

DGS-3600 Series

Product Model:

xStack

Layer 3 Gigabit Ethernet Managed Switch

Release 2.5

©Copyright 2009. All rights reserved.

Table of Contents

Advertisement

Table of Contents

Need help?

Need help?

Do you have a question about the xStack DGS-3612G series and is the answer not in the manual?

Questions and answers

Summary of Contents for D-Link xStack DGS-3612G series

Page 1 ® CLI Manual ® DGS-3600 Series Product Model: xStack Layer 3 Gigabit Ethernet Managed Switch Release 2.5 ©Copyright 2009. All rights reserved.
Page 2: Table Of Contents
SWITCH PORT COMMANDS ...24 PORT SECURITY COMMANDS ...30 STACKING COMMANDS ...33 NETWORK MANAGEMENT (SNMP) COMMANDS ...37 SWITCH UTILITY COMMANDS (INCLUDING FILE SYSTEM COMMANDS) ...60 NETWORK MONITORING COMMANDS ...77 MULTIPLE SPANNING TREE PROTOCOL (MSTP) COMMANDS ...93 FORWARDING DATABASE COMMANDS...105 BROADCAST STORM CONTROL COMMANDS ...112 QOS COMMANDS ...116...
Page 3 ACCESS AUTHENTICATION CONTROL COMMANDS ...388 SSH COMMANDS...409 SSL COMMANDS ...416 JUMBO FRAME COMMANDS ...421 LLDP COMMANDS...423 D-LINK SINGLE IP MANAGEMENT COMMANDS...439 STATIC MAC-BASED VLAN COMMANDS ...449 OSPF EQUAL-COST MULTI-PATH FUNCTION COMMANDS...452 MAC-BASED ACCESS CONTROLCOMMANDS ...455 RSPAN COMMANDS...466 BPDU TUNNELLING COMMANDS...472 QINQ COMMANDS ...475...
Page 4: Introduction
IP address to meet the specification of your networking address scheme. The Switch is also assigned a unique MAC address by the factory. This MAC address cannot be changed, and can be found on the initial boot console screen – shown below.
Page 5 IP interface named System and the z represents the corresponding number of subnets in CIDR notation. The IP interface named System on the Switch can be assigned an IP address and subnet mask which can then be used to connect a management station to the Switch’s Telnet or Web-based management agent.
Page 6: Using The Console Cli
No flow control Users can also access the same functions over a Telnet interface. Once an IP address has been set for the Switch, users can use a Telnet program (in VT-100 compatible terminal mode) to access and control the Switch. All of the screens are identical, whether accessed from the console port or from a Telnet interface.
Page 7 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#? Command: ? clear clear address_binding dhcp_snoop binding_entry ports clear arptable clear attack_log clear counters clear dhcp_binding clear fdb clear log clear mac_based_access_control auth_mac clear port_security_entry port config 802.1p default_priority config 802.1p user_priority...
Page 8 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual To re-enter the previous command at the command prompt, press the up arrow cursor key. The previous command will appear at the command prompt. DGS-3627:5#config account Command: config account Next possible completions: <username>...
Page 9 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#create Command: create Next possible completions: 802.1x arpentry double_vlan ipmroute link_aggregation mac_based_access_control_local multicast_fdb policy_route snmp vlan DGS-3627:5# Figure 2- 6. Next possible completions: Create command In the above example, all of the possible next parameters for the create command are displayed.
Page 10: Vertical Bar
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual The following symbols are used to describe how command entries are made and values and arguments are specified in this manual. The online help contained in the CLI and available through the console interface uses the same syntax.
Page 11 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual {braces} Purpose Encloses an optional value or set of optional arguments. Syntax reset {[config | system]} Description In the above syntax example, users have the option to specify config or system.
Page 12: Basic Switch Commands
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual The basic switch commands in the Command Line Interface (CLI) are listed (with the appropriate parameters) in the following table. Command create account config account show account delete account...
Page 13: Create Account
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual create account Purpose Used to create user accounts. Syntax create account [admin | operator | user] <username 15> Description The create account command is used to create user accounts that consist of a username of 1 to 15 characters and a password of 0 to 15 characters.
Page 14: Config Account
Only Administrator-level users can issue this command. Used to display user accounts show account Displays all user accounts created on the Switch. Up to eight user accounts can exist at one time. None. Only Administrator-level users can issue this command.
Page 15: Delete Account
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual delete account Purpose Syntax Description Parameters Restrictions Example usage: To delete the user account “System”: DGS-3627:5#delete account System Command: delete account System Are you sure to delete the last administrator account?(y/n)y Success.
Page 16: Show Switch
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual show switch Purpose Syntax Description Parameters Restrictions Example usage: To display the Switch’s information: DGS-3627:5#show switch Command: show switch Device Type MAC Address IP Address VLAN Name Subnet Mask Default Gateway Boot PROM Version : Build 1.10-B09...
Page 17 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#show serial_port Command: show serial_port Baud Rate Data Bits Parity Bits Stop Bits Auto-Logout DGS-3627:5# config serial_port Purpose Used to configure the serial port. Syntax config serial_port {baud_rate [9600 | 19200 | 38400 | 115200] |...
Page 18: Enable Clipaging
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual enable clipaging Purpose Syntax Description Parameters Restrictions Example usage: To enable pausing of the screen display when the show command output reaches the end of the page: DGS-3627:5#enable clipaging Command: enable clipaging Success.
Page 19: Enable Telnet
{<tcp_port_number 1-65535>} This command is used to enable the Telnet protocol on the Switch. The user can specify the TCP or UDP port number the Switch will use to listen for Telnet requests. {<tcp_port_number 1-65535>} − The TCP port number. TCP ports are numbered between 1 and 65535.
Page 20: Enable Web
{<tcp_port_number 1-65535>} This command is used to enable the Web-based management software on the Switch. The user can specify the TCP port number the Switch will use to listen for Telnet requests. {<tcp_port_number 1-65535>} − The TCP port number. TCP ports are numbered between 1 and 65535.
Page 21: Disable Web
Used to save changes in the Switch’s configuration to non-volatile RAM. save {[config {<drive_id>} <pathname 64> | log | all]} This command is used to enter the current switch configuration or log file into non-volatile RAM. The saved switch configuration will be loaded into the Switch’s memory each time the Switch is restarted.
Page 22 − If the keyword ‘config’ is specified, all of the factory default settings are restored on the Switch including the IP address, user accounts, and the switch history log. The Switch will not save or reboot. system − If the keyword ‘system’ is specified all of the factory default settings are restored on the Switch.
Page 23 In the fan status display there are fans on the left of the switch, on the right, at the back and a CPU fan, if the fans are working normally the display will read “OK” in the fan field. If any of the fans fail the corresponding field will read ‘Fail’.
Page 24 # by entering a string of 16 alphanumerical characters with no spaces, or the user may enter the current login username configured on the Switch. <string 16> – Enter an alphanumeric string of no more than 16 characters to define the command prompt for the CLI interface.
Page 25 Description Parameters Restrictions Example usage: To configure the greeting message: DGS-3627:5#config greeting_message Command: config greeting_message Greeting Messages Editor =============================================================================== Copyright(C) 2009 D-Link Corporation. All rights reserved. ================================================================================ <Function Key> Ctrl+C Quit without save Ctrl+W Save and quit show greeting_message Purpose...
Page 26 DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual To view the currently configured greeting message: DGS-3627:5#show greeting_message Command: show greeting_message ================================================================================ DGS-3627 Gigabit Ethernet Switch Command Line Interface Firmware: Build 2.50.B15 Copyright(C) 2009 D-Link Corporation. All rights reserved. ================================================================================ DGS-3627:5#...
Page 27: Config Ports
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual The switch port commands in the Command Line Interface (CLI) are listed (with the appropriate parameters) in the following table. Command Parameters config ports config ports [ <portlist> | all ] {medium_type [fiber | copper]} { speed[auto...
Page 28 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config ports state [enable | disable] − Enables or disables the specified range of ports. If the specific ports are in an error-disabled state configuring their state to enable will recover these ports from disabled to enabled state.
Page 29: Show Ports
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual To restart auto negotiation for ports 1-3: DGS-3627:5#config ports 1:1-1:3 auto_negotiation restart_an Command: config ports 1:1-1:3 auto_negotiation restart_an Success. DGS-3627:5# show ports Purpose Used to display the current configuration of a range of ports.
Page 30 Enabled 1:17 Enabled 1:18 Enabled 1:19 Enabled CTRL+C ESC q Quit SPACE n To display the configuration of all ports on the Switch, with a description: DGS-3627:5#show ports description Command: show ports description Port Port State ------- -------- Enabled Description:...
Page 31 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Enabled Auto/Disabled Description: Enabled Auto/Disabled Description: Enabled Auto/Disabled Description: Enabled Auto/Disabled Description: CTRL+C ESC q Quit SPACE n To display the Error Disabled ports: DGS-3627:5#show ports err_disabled Command : show ports err_disabled...
Page 32 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Port : 1:2 -------------------- Auto Negotiation Capability Bits Capbility Advertised Bits : 1000M_Full Capbility Received Bits Port : 1:3 -------------------- Auto Negotiation Capability Bits Capbility Advertised Bits : 1000M_Full...
Page 33: Config Port_Security Ports
The primary purpose of port security function is to restrict the access to a switch port to a number of authorized users. If an unauthorized user tries to access a port-security enabled port, the system will block the access by dropping its packet.
Page 34 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#config port_security ports 1-5 admin_state enable max_learning_addr 5 lock_address_mode DeleteOnReset Command: config port_security ports 1-5 admin_state enable max_learning_addr 5 lock_address_mode DeleteOnReset Success. DGS-3627:5# delete port_security_entry vlan_name Purpose Syntax...
Page 35 <portlist> This command is used to clear MAC address entries which were learned by the Switch by a specified port. This command only relates to the port security function. <portlist> − Specifies a port or port range to clear. The beginning and end of the port list range are separated by a dash.
Page 36: Command Parameters
The possible priority range is 1-63. This field is important when the stacking mode is automatically configured. Users who wish a certain switch become the primary master of the switch stack should configure their choice for the priority master switch to have the highest priority (and in essence the lowest number).
Page 37 This command will assign box IDs to switches in a stack. current_box_id – Identifies the Switch being configured. Range is 1-12. new_box_id – The new ID being assigned to the Switch (box). Range is 1- • auto – Allows the box ID to be assigned automatically.
Page 38 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#show stack_information Command: show stack_information Topology :Duplex_Chain My Box ID Master ID Box Count Box User Type --- ---- ------------ ----- ---- ------------------ -------- -------- -------- 1 Auto DGS-3627...
Page 39 [disable | enable] {<string>} This command will enable or disable the stacking mode for the switch. When enabled, the 10G ports on the rear of the switch will be enabled for stacking. enable | disable – Use these parameters to enable or disable the stacking mode for the switch.
Page 40: Network Management (Snmp) Commands
The Switch supports the Simple Network Management Protocol (SNMP) versions 1, 2c, and 3. After enabling SNMP, users can specify which version of SNMP to use to monitor and control the Switch. Three versions of SNMP vary in the level of security provided between the management station and the network device.
Page 41 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Command create snmp view delete snmp view show snmp view create snmp community delete snmp community show snmp community config snmp engineID show snmp engineID create snmp group...
Page 42: Enable Snmp
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual enable snmp Purpose Syntax Description Parameters Restrictions Example Usage: To enable SNMP: DGS-3627:5#enable snmp Command: enable snmp Success. DGS-3627:5# disable snmp Purpose Syntax Description Parameters Restrictions Example usage:...
Page 43 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example Usage: To enable SNMP linkchange traps: DGS-3627:5#enable snmp linkchange_traps Command: enable snmp linkchange_traps Success. DGS-3627:5# disable snmp linkchange_traps Purpose Syntax Description Parameters Restrictions Example usage: To disable SNMP linkchange traps:...
Page 44: Create Snmp User
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#config snmp linkchange_traps ports all enable Command: enable snmp linkchange_traps all enable Success. DGS-3627:5# create snmp user Purpose Used to create a new SNMP user and adds the user to an SNMP group that is also created by this command.
Page 45: Delete Snmp User
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual create snmp user Restrictions Only Administrator-level users can issue this command. Example usage: To create an SNMP user on the Switch: DGS-3627:5#create snmp user dlink default encrypted by_password auth md5...
Page 46: Show Snmp User
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual show snmp user Purpose Syntax Description Parameters Restrictions Example usage: To display the SNMP users currently configured on the Switch: DGS-3627:5#show snmp user Command: show snmp user Username...
Page 47: Delete Snmp View
<view_name 32> − An alphanumeric string of up to 32 characters that identifies the SNMP view to be deleted. all − Specifies that all of the SNMP views on the Switch will be deleted. <oid> − The object ID that identifies an object tree (MIB tree) that will be deleted from the Switch.
Page 48: Create Snmp Community
Used to create an SNMP community string to define the relationship between the SNMP manager and an agent. The community string acts like a password to permit access to the agent on the Switch. One or more of the following characteristics can be associated with the community string: An Access List of IP addresses of SNMP managers that are permitted to use the community string to gain access to the Switch’s SNMP agent.
Page 49: Delete Snmp Community
Restrictions Example usage: To display the currently entered SNMP community strings: Used to remove a specific SNMP community string from the Switch. delete snmp community <community_string 32> The delete snmp community command is used to remove a previously defined SNMP community string from the Switch.
Page 50: Config Snmp Engineid
Purpose Syntax Description Parameters Restrictions Example usage: To display the current name of the SNMP engine on the Switch: View Name --------------------------- CommunityView CommunityView Used to configure a name for the SNMP engine on the Switch. config snmp engineID <snmp_engineID 10-64>...
Page 51: Create Snmp Group
Switch and a remote SNMP manager. auth_nopriv − Specifies that authorization will be required, but there will be no encryption of packets sent between the Switch and a remote SNMP manager. auth_priv − Specifies that authorization will be required, and that packets sent between the Switch and a remote SNMP manger will be encrypted.
Page 52: Delete Snmp Group
Only Administrator-level users can issue this command. Used to display the group-names of SNMP groups currently configured on the Switch. The security model, level, and status of each group are also displayed. show snmp groups The show snmp groups command displays the group-names of SNMP groups currently configured on the Switch.
Page 53 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#show snmp groups Command: show snmp groups Vacm Access Table Settings Group Name : public ReadView Name : CommunityView WriteView Name Notify View Name : CommunityView Securiy Model...
Page 54: Create Snmp Host
DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual create snmp host Purpose Used to create a recipient of SNMP traps generated by the Switch’s SNMP agent. Syntax create snmp [host <ipaddr> | v6host <ipv6addr>] [v1 | v2c | v3 [noauth_nopriv | auth_nopriv | auth_priv] ] <auth_string 32>...
Page 55: Delete Snmp Host
Restrictions Example usage: To display the currently configured SNMP hosts on the Switch: Used to remove a recipient of SNMP traps generated by the Switch’s SNMP agent. delete snmp [host <ipaddr> | v6host <ipv6addr>] The delete snmp host command deletes a recipient of SNMP traps generated by the Switch’s SNMP agent.
Page 56: Show Snmp V6Host
DGS-3627:5# show snmp v6host Purpose Syntax Description Parameters Restrictions Example usage: To display the currently configured IPv6 SNMP hosts on the Switch: DGS-3627:5#show snmp v6host Command: show snmp v6host SNMP Host Table ----------------------------------------------------------- Host IPv6 Address SNMP Version CommunityName/SNMPv3 Total Entries: 1...
Page 57 (for example, 10.1.2.3/255.0.0.0 or in CIDR format, 10.1.2.3/8). Only Administrator and Operator-level users can issue this command. Used to display a list of trusted hosts entered on the Switch using the create trusted_host command above. show trusted_host {<network_address>} This command is used to display a list of trusted hosts entered on the Switch using the create trusted_host command above.
Page 58: Enable Snmp Traps
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#show trusted_host Command: show trusted_host Management Stations IP Address ----------------------- 10.53.13.94 Total Entries: 1 DGS-3627:5# delete trusted_host Purpose Syntax Description Parameters Restrictions Example usage: To delete a trusted host with an IP address 10.48.74.121: DGS-3627:5#delete trusted_host ipaddr 10.48.74.121...
Page 59: Show Snmp Traps
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual To enable SNMP trap support on the Switch: DGS-3627:5#enable snmp traps Command: enable snmp traps Success. DGS-3627:5# enable snmp authenticate_traps Purpose Syntax Description Parameters Restrictions Example Usage: To turn on SNMP authentication trap support:...
Page 60: Disable Snmp Traps
Parameters Restrictions Used to disable SNMP trap support on the Switch. disable snmp traps This command is used to disable SNMP trap support on the Switch. None. Only Administrator and Operator-level users can issue this command. Used to disable SNMP authentication trap support.
Page 61 Command: config snmp system_name DGS-3600 Switch Success. DGS-3627:5# Used to enter a description of the location of the Switch. config snmp system_location <sw_location> The config snmp system_location command is used to enter a description of the location of the Switch. A maximum of 255 characters can be used.
Page 62: Enable Rmon
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual enable rmon Purpose Syntax Description Parameters Restrictions Example Usage: To enable RMON: DGS-3627:5#enable rmon Command: enable rmon Success. DGS-3627:5# disable rmon Purpose Syntax Description Parameters Restrictions Example usage:...
Page 63: Switch Utility Commands (Including File System Commands)
[<ipaddr> | <ipv6addr>] <path_filename 64> {{<drive_id>} {<pathname 64>}] Description This command is used to download a new firmware or a Switch configuration file from a TFTP server. The user now has the option of saving the firmware or configuration file on the flash memory located in the Switch using the previously allocated c:\ drive.
Page 64 <path_filename 64> − The DOS path and filename of the firmware file on the TFTP server. For example, C:\3612.had. unit <unitid1-12> – Enter the ID of the Switch in the switch stack to where to save the file. all – Use this parameter to select all switches in the switch stack.
Page 65 Switch’s flash memory to a TFTP server. log_toTFTP − Used to upload a log file on the Switch to a TFTP server, or to upload a log file saved in the Switch’s flash memory to a TFTP server.
Page 66 Connecting to server…………………………..Done. Upload configuration…………………………..Done. DGS-3627:5# To upload a configuration file saved in the flash memory of the Switch to the TFTP server. DGS-3627:5# upload cfg_toTFTP 10.53.13.3 c:\3627.cfg c:\ startup.cfg Command: upload cfg_toTFTP 10.53.13.3 c:\3627.cfg c:\ startup.cfg Connecting to server…………………………..Done.
Page 67: Config Firmware
This command is used to configure firmware files located on the flash memory of the Switch, as the boot up configuration file. unit <unit_id 1-12> − Select the switch in the switch stack where the firmware image is that will be configured, denoted by unit ID number.
Page 68 <pathname 64> − The user may enter the path and file name of a configuration file located on the flash memory of the Switch, which will then be displayed Restrictions Only Administrator-level users can issue this command.
Page 69: Config Configuration
This command is used to configure the configuration file on the flash drive of the Switch. The user may choose to use it as a boot up or active section. drive_id – Enter the drive ID number where the configuration file is located on the flash drive that is to be configured.
Page 70 This command is used to erase a file located on the internal flash memory of the Switch. unit <unit_id 1-12> – Select the switch in the switch stack where the file is that will be configured, denoted by unit ID number.
Page 71 This command is used to display files saved to the flash directory of the Switch. Since there is only one labeled drive located on the flash, the user can only input the command dir c: to view the contents of the flash memory.
Page 72 <pathname 64> – Enter the path and name of the file to be renamed. unit <unit_id 1-12> – Select the switch in the switch stack where the firmware image is to be copied to, denoted by unit ID number.
Page 73 Label: Description assigned to this storage media accessory. FS_Type: Description of the type of format of this storage media accessory. unit <unit_id 1-12> – Select the switch in the switch stack where the storage media information is located, denoted by unit ID number.
Page 74 Note: Do not use release 1 firmware after upgrading the file system version as it may damage the file system of the switch. Note: Do not power off the switch during the execution of this file as it may damage the file system of the switch.
Page 75 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual ping Purpose Syntax Description Parameters Restrictions Example usage: To ping the IP address 10.48.74.121 four times: DGS-3627:5#ping 10.48.74.121 times 4 Command: ping 10.48.74.121 times 4 Reply from 10.48.74.121, time<10ms Reply from 10.48.74.121, time<10ms...
Page 76 The user may choose an entry between 1 and 65535 seconds. probe <value 1-9> – The probe value is the number of times the Switch will send probe packets to the next hop on the intended traceroute path.
Page 77: Enable Autoconfig
DGS-3627:5# When autoconfig is enabled and the Switch is rebooted, the normal login screen will appear for a few moments while the autoconfig request (i.e. download configuration) is initiated. The console will then display the configuration parameters as they are loaded from the configuration file specified in the DHCP or TFTP server.
Page 78: Disable Autoconfig
This instructs the Switch not to accept autoconfiguration instruction from the DHCP server. This does not change the IP settings of the Switch. The ipif settings will continue as DHCP client until changed with the config ipif command.
Page 79: Show Autoconfig
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#disable autoconfig Command: disable autoconfig Success. DGS-3627:5# show autoconfig Purpose Syntax Description Parameters Restrictions Example usage: To upload an autoconfiguration-: DGS-3627:5#show autoconfig Command: show autoconfig Autoconfig State: Disabled.
Page 80: Show Packet Ports
Each command is listed, in detail, in the following sections. show packet ports Purpose Used to display statistics about the packets sent and received by the Switch. Syntax show packet ports <portlist> Description This command is used to display statistics about packets sent and received by ports specified in the <portlist>.
Page 81: Show Error Ports
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual To display the packets analysis for port 2: DGS-3627:5#show packet ports 2 Command: show packet ports 2 Port number : 1:2 ================================================================== Frame Size/Type --------------- 65-127 128-255 256-511...
Page 82: Show Utilization
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#show error ports 3 Command: show error ports 3 ort number : 1:3 CRC Error Undersize Oversize Fragment Jabber Drop Pkts Symbol Error Buffer Full Drop ACL Drop...
Page 83 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#show utilization ports Command: show utilization ports Port TX/sec ----- ---------- ---------- ---- 1:10 1:11 1:12 1:13 1:14 1:15 1:16 1:17 1:18 1:19 1:20 1:21 DGS-3627:5# Example usage:...
Page 84: Clear Counters
Restrictions Used to clear the Switch’s statistics counters. clear counters ports <portlist> This command will clear the counters used by the Switch to compile statistics. <portlist> − Specifies a port or range of ports to be displayed. The beginning and end of the port list range are separated by a dash.
Page 85 {unit <unit_id 1-12>} {index <value_list>} Description This command will display the contents of the attack log of the Switch. This log displays the time and date of a possible attack on the switch, such as a spoofing attack. Parameters unit <unit_id 1-12>...
Page 86: Enable Syslog
Used to clear the switch history of attack log files. clear attack_log {[unit <unit_id 1-12> | all]} This command will clear the contents of the attack log of the Switch. unit <unit_id 1-12> – Select the switch in the switch stack for which to clear attack log files.
Page 87: Show Syslog
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual To disable the syslog function on the Switch: DGS-3627:5#disable syslog Command: disable syslog Success. DGS-3627:5# show syslog Purpose Syntax Description Parameters Restrictions Example usage: To display the current status of the syslog function:...
Page 88 − Specifies that all of the currently supported syslog messages that are generated by the Switch will be sent to the remote host. facility − Some of the operating system daemons and processes have been assigned Facility values. Processes and daemons that have not been explicitly assigned a Facility may use any of the "local use"...
Page 89: Config Syslog Host
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual create syslog host Restrictions Example usage: To create syslog host: DGS-3627:5#create syslog host 1 ipaddress 10.1.1.1 state enable Command: create syslog host 1 ipaddress 10.1.1.1 state enable Success.
Page 90 This corresponds to number 4 from the list above. all − Specifies that all of the currently supported syslog messages that are generated by the Switch will be sent to the remote host. facility − Some of the operating system daemons and processes have been assigned Facility values.
Page 91 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config syslog host Restrictions Example usage: To configure a syslog host: DGS-3627:5#config syslog host 1 severity all Command: config syslog host 1 severity all Success. DGS-3627:5# DGS-3627:5#config syslog host 1 facility local0 Command: config syslog host 1 facility local0 Success.
Page 92: Delete Syslog Host
There are four available indexes, numbered 1 through 4. all − Specifies that the command will be applied to all hosts. Used to display the syslog hosts currently configured on the Switch. show syslog host {<index 1-4>} The show syslog host command is used to display the syslog hosts that are currently configured on the Switch.
Page 93 This command is used to configure the system severity levels on the Switch. When an event occurs on the Switch, a message will be sent to the SNMP agent (trap), the Switch’s log or both. Events occurring on the Switch are separated into three main categories, these categories are NOT precisely the same as the parameters of the same name (see below).
Page 94 – Users who choose this method will only save log files when they manually tell the Switch to do so, using the save or save log command. log_trigger – Users who choose this method will have log files saved to the Switch every time a log event occurs on the Switch.
Page 95 Used to display the method configured for saving log files to the switch’s flash memory. show log_save_timing The show log_save_timing command allows the user to view the time method configured for saving log files to the switch’s flash memory. None. None.
Page 96: Multiple Spanning Tree Protocol (Mstp) Commands
ULTIPLE This Switch supports three versions of the Spanning Tree Protocol; 802.1D STP, 802.1w Rapid STP and 802.1s MSTP. Multiple Spanning Tree Protocol, or MSTP, is a standard defined by the IEEE community that allows multiple VLANs to be mapped to a single spanning tree instance, which will provide multiple pathways across the network.
Page 97: Enable Stp
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Command show stp show stp ports show stp instance_id show stp mst_config id Each command is listed, in detail, in the following sections. enable stp Purpose Syntax Description...
Page 98 Set by the Root Bridge, this value will aid in determining that the Switch has spanning tree configuration values consistent with other devices on the bridged LAN.
Page 99: Config Stp Ports
[enable | disable] – This feature is used to temporarily shutdown a port on the Switch when a BPDU packet has been looped back to the switch. When the Switch detects its own BPDU packet coming back, it signifies a loop on the network.
Page 100 [yes | no] – Setting this parameter as “yes” will set the ports to send out BPDU packets to other bridges, requesting information on their STP setting If the Switch is configured for RSTP, the port will be capable to migrate from 802.1D STP to 802.1w RSTP. If the Switch is configured for MSTP, the port is capable of migrating from 802.1D STP to 802.1s MSTP.
Page 101 VIDs to the previously configured STP instance_id. <vidlist> – Specify the VID range from configured VLANs set on the Switch. Supported VIDs on the Switch range from ID number 1 to 4094. Restrictions Only Administrator and Operator-level users can issue this command.
Page 102: Config Stp Priority
<value 0-61440> instance_id <value 0-15> This command is used to update the STP instance configuration settings on the Switch. The MSTP will utilize the priority in selecting the root bridge, root port and designated port. Assigning higher priorities to STP regions will instruct the Switch to give precedence to the selected instance_id for forwarding packets.
Page 103 Syntax Description Parameters Restrictions Example usage: To configure the MSTP region of the Switch with revision_level 10 and the name “Zira”: DGS-3627:5#config stp mst_config_id revision_level 10 name ZIra Command: config stp mst_config_id revision_level 10 name Zira Success. DGS-3627:5# config stp mst_ports...
Page 104 <value 0-15> – Enter a numerical value between 0 and 15 to identify the instance_id previously configured on the Switch. An entry of 0 will denote the CIST (Common and Internal Spanning Tree.
Page 105 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#show stp Command: show stp STP Bridge Global Settings ----------------------------------------- STP Status STP Version Max Age Hello Time Forward Delay Max Hops TX Hold Count Forwarding BPDU Loopback Detection...
Page 106: Show Stp Ports
This command displays the Switch’s current STP Instance Settings and the STP Instance Operational Status. <value 0-15> − Enter a value defining the previously configured instance_id on Parameters the Switch. An entry of 0 will display the STP configuration for the CIST internally set on the Switch. Restrictions None.
Page 107 This command displays the Switch’s current MSTP configuration identification. Parameters None. Restrictions None. Example usage: To show the MSTP configuration identification currently set on the Switch: DGS-3627:5#show stp mst_config_id Command: show stp mst_config_id Current MST Configuration Identification ------------------------------------------------------------------------ Configuration Name : 00:10:20:33:45:00...
Page 108: Create Fdb
Used to create a static entry to the unicast MAC address forwarding table (database). create fdb <vlan_name 32> <macaddr> port <port> This command will make an entry into the Switch’s unicast MAC address forwarding database. <vlan_name 32> − The name of the VLAN on which the MAC address resides.
Page 109 Used to create a static entry to the multicast MAC address forwarding table (database) create multicast_fdb <vlan_name 32> <macaddr> This command will make an entry into the Switch’s multicast MAC address forwarding database. <vlan_name 32> − The name of the VLAN on which the MAC address resides.
Page 110: Delete Fdb
Used to delete an entry to the Switch’s forwarding database. delete fdb <vlan_name 32> <macaddr> This command is used to delete a previous entry to the Switch’s MAC address forwarding database. <vlan_name 32> − The name of the VLAN on which the MAC address resides.
Page 111: Clear Fdb
<vlan_name 32> − The name of the VLAN on which the MAC address resides. Parameters port <port> − The port number corresponding to the MAC destination address. The Switch will always forward traffic to the specified device through this port. all − Clears all dynamic entries to the Switch’s forwarding database. Restrictions Only Administrator and Operator-level users can issue this command.
Page 112 {[vlan <vlan_name 32> | vlanid <vidlist>]| mac_address <macaddr>} This command is used to display the current contents of the Switch’s multicast MAC address forwarding database. <vlan_name 32> − The name of the VLAN on which the MAC address resides.
Page 113: Show Ipfdb
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual To display unicast MAC address table: DGS-3627:5#show fdb Command: show fdb Unicast MAC Address Aging Time = 300 VLAN Name ---- ------------------- ----------------- ----- ----------------- default default default...
Page 114 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config multicast filtering_mode Purpose Used to configure the multicast packet filtering mode for specific VLANs . Syntax config multicast filtering_mode [<vlan_name 32> | all] [forward_all_groups | forward_unregistered_groups |...
Page 115: Config Traffic Control
Once a packet storm has been detected, the Switch will drop packets coming into the Switch until the storm has subsided. This method can be utilized by selecting the Drop option of the Action field in the window below. The Switch will also scan and monitor packets coming into the Switch by monitoring the Switch’s chip counter.
Page 116 • value 5-30 – Select a time from 5 to 30 minutes that the Switch will wait before shutting down. Once this time expires and the port is still experiencing packet storms, the port will be placed in shutdown forever mode and can only be manually recovered using the config traffic control_recover <portlist>...
Page 117: Config Traffic Trap
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config traffic control_recover Purpose Used to configure traffic control recover for any or all ports. Syntax config traffic control_recover [<portlist> | all] Description Configuring a port for traffic control recover will require an administrator to restart the specified ports if storm control shuts down the port or ports.
Page 118: Show Traffic Control
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual show traffic control Purpose Syntax Description Parameters Restrictions Example usage: To display traffic control setting: DGS-3627:5#show traffic control Command: show traffic control Traffic Storm Control Trap :[None] Port Thres...
Page 119: Qos Commands
Priority 7 is assigned to the Switch’s Q6 queue. Priority scheduling is implemented by the priority queues stated above. The Switch will empty the eight hardware priority queues in order, beginning with the highest priority queue, 6, to the lowest priority queue, 0. Each hardware queue will transmit all of the packets in its buffer before permitting the next lower priority to transmit its packets.
Page 120 <portlist> − Specifies a port or range of ports to be configured. The beginning and end of the port list range are separated by a dash. all − Specifies that the command applies to all ports on the Switch. rx_rate − Specifies that one of the parameters below (no_limit or <value 64-10000000>) will be applied to the rate at which the above specified...
Page 121: Config Scheduling
This command is used to specify the rotation by which these eight hardware priority queues are emptied. The Switch’s default (if the config scheduling command is not used, or if the config scheduling command is entered with the max_packet set to 0) is to empty the hardware priority queues in order −...
Page 122: Show Scheduling
Command: config scheduling 0 max_packet 12 Success. DGS-3627:5# show scheduling Purpose Used to display the currently configured traffic scheduling on the Switch. Syntax show scheduling Description The show scheduling command will display the current traffic scheduling mechanisms in use on the Switch.
Page 123 802.1p user_priority <priority 0-7> <class_id 0-6> Description This command allows users to configure the method that the Switch will map an incoming packet, based on its 802.1p user priority, to one of the seven available hardware priority queues on the Switch.
Page 124 <portlist> − Specifies a port or range of ports to be configured. The beginning and end of the port list range are separated by a dash. all − Specifies that the command applies to all ports on the Switch. <priority 0-7> − The priority value to assign to untagged packets received by the Switch or a range of ports on the Switch.
Page 125 DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual show 802.1p default_priority Purpose Syntax Description Parameters Restrictions Example usage: To display the current 802.1p default priority configuration on the Switch: DGS-3627:5# show 802.1p default_priority Command: show 802.1p default_priority Port Priority ---- ----------- 1:10...
Page 126 This command is used to specify the rotation by which these seven hardware priority classes of service are emptied. The Switch’s default is to empty the seven priority classes of service in order − from the highest priority class of service (queue 6) to the lowest priority class of service (queue 0).
Page 127 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#show scheduling_mechanism Command: show scheduling_mechanism QOS scheduling_mechanism CLASS ID Mechanism -------- ----------- Class-0 strict Class-1 strict Class-2 strict Class-3 strict Class-4 strict Class-5 strict Class-6 strict DGS-3627:5# enable hol_prevention...
Page 128 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual show hol_prevention Purpose Syntax Description Parameters Restrictions Example usage: To view the HOL prevention status: DGS-3627:5#show hol_prevention Command: show hol_prevention Device HOL Prevention State: Enabled DGS-3627:5# Used to show HOL prevention.
Page 129: Config Mirror Port
Parameters <port> {[add |delete] source ports <portlist> [rx|tx|both]} Used to configure a mirror port − source port pair on the Switch. Traffic from any source port to a target port can be mirrored for real- time analysis. A logic analyzer or an RMON probe can then be attached to study the traffic crossing the source port in a completely obtrusive manner.
Page 130: Enable Mirror
Used to enable a previously entered port mirroring configuration. enable mirror This command, combined with the disable mirror command below, allows users to enter a port mirroring configuration into the Switch, and then turn the port mirroring on and off without having to modify the port mirroring configuration.
Page 131: Disable Mirror
Used to disable a previously entered port mirroring configuration. disable mirror This command, combined with the enable mirror command above, allows users to enter a port mirroring configuration into the Switch, and then turn the port mirroring on and off without having to modify the port mirroring configuration.
Page 132 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#show mirror Command: show mirror Current Settings Mirror Status: Disabled Target Port : 1:1 Mirrored Port RX: 1:2-1:7 TX: 1:2-1:7 DGS-3627:5#...
Page 133: Vlan Commands
DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Along with normal VLAN configurations, this Switch now incorporate Double VLANs. Better known as Q-IN-Q VLANs, Double VLANs allow network providers to expand their VLAN configurations to place VLANs within a larger inclusive VLAN, which adds a new layer to the VLAN configuration.
Page 134: Create Vlan
– This parameter uses the type field of the packet header to determine the packet protocol and destination VLAN: 1q_vlan – Allows the creation of a normal 802.1Q VLAN on the Switch. advertisement − Specifies that the VLAN is able to join GVRP.
Page 135: Config Vlan Add
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config vlan add Purpose Syntax Description Parameters Restrictions Example usage: To add 4 through 8 as tagged ports to the VLAN v1: DGS-3627:5#config vlan v1 add tagged 1:4-1:8 Command: config vlan v1 add tagged 1:4-1:8 Success.
Page 136: Config Gvrp
[tagged_only | admit_all] – This parameter states the frame type that will be accepted by the Switch for this function. tagged_only implies that only VLAN tagged frames will be accepted, while admit_all implies tagged and untagged frames will be accepted by the Switch.
Page 137: Disable Gvrp
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#enable gvrp Command: enable gvrp Success. DGS-3627:5# disable gvrp Purpose Syntax Description Parameters Restrictions Example usage: To disable the Generic VLAN Registration Protocol (GVRP): DGS-3627:5#disable gvrp Command: disable gvrp Success.
Page 138 : 1:4,1:8 : 1:4,1:8 : 1:4,1:8 : 1:4,1:8 Used to display the GVRP status for a port list on the Switch. show gvrp {<portlist>} This command displays the GVRP status for a port list on the Switch. <portlist> − Specifies a range of ports for which the GVRP status is to be displayed.
Page 139 Description Parameters Restrictions Example usage: To enable the Double VLAN feature on the Switch, thus disabling normal VLANs and GVRP. DGS-3627:5#enable double_vlan Command: enable double_vlan Current Double VLAN mode : Disabled Enable Double VLAN need to reset system config. Are you sure ?(y/n)y Success.
Page 140 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual disable double_vlan Purpose Syntax Description Parameters Restrictions Example usage: To disable the Double VLAN feature on the Switch DGS-3627:5#disable double_vlan Command: disable double_vlan Current Double VLAN mode : Enabled Disable Double VLAN need to reset system config.
Page 141 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5# create double_vlan RG spvid 2 tpid 0x9100 Command: create double_vlan RG spvid 2 tpid 0x9100 Success. DGS-3627:5# config double_vlan Purpose Syntax Description Parameters Restrictions Example usage: To add ports 4 through 8 as access ports to the Double VLAN “RG”:...
Page 142 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#config double_vlan Drazen delete 1:4-1:8 Command: config double_vlan Drazen delete 1:4-1:8 Success. DGS-3627:5# show double_vlan Purpose Syntax Description Parameters Restrictions Example usage: To display parameters for the Double VLAN “RG”:...
Page 143 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#enable pvid auto_assign Command: enable pvid auto_assign Success. DGS-3627:5# disable pvid auto_assign Purpose Syntax Description Parameters Restrictions Example usage: To disable the auto-assign PVID: DGS-3627:5#disable pvid auto_assign Command: disable pvid auto_assign Success.
Page 144: Protocol Vlan Group Commands
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual For bridges that implement Port-and-Protocol-based VLAN classification, the VID associated with an Untagged or Priority-tagged Frame is determined based on the Port of arrival of the frame into the bridge and on the protocol identifier of the frame. If there is no protocol VLAN configured on the ingress port, all the untagged packets incoming on the port will be classified into PVID VLAN.
Page 145 This protocol is identified using the following protocol parameter. protocol – Choose the appropriate frame type to be added to this group. This frame type will be identified by the switch by examining the packet header of incoming packets and matching it to the protocol_value stated here.
Page 146 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual delete dot1v_protocol_group Purpose Syntax Description Parameters Restrictions Example usage: To delete a protocol VLAN group: DGS-3627:5#delete dot1v_protocol_group group_id 1 Command: delete dot1v_protocol_group group_id 1 Success. DGS-3627:5# show dot1v_protocol_group...
Page 147: Config Port Dot1V
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config port dot1v Purpose Syntax Description Parameters Restrictions Example usage: To bind a VLAN with a protocol template: DGS-3627:5#config port dot1v ports 1:6-1:8 add protocol_group group_id 1 vlan vlan_name building1...
Page 148 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To configure the ports for a protocol VLAN group: DGS-3627:5#show port dot1v ports 1:6-1:8 Command: show port dot1v ports 1:6-1:8 Port: 1:6 Protocol Group ID -------------------------...
Page 149: Link Aggregation Commands
Description This command will create a link aggregation group with a unique identifier. <value> − Specifies the group ID. The Switch allows up to 32 link aggregation Parameters groups to be configured. The group number identifies each of the groups.
Page 150 This command allows users to configure a link aggregation group that was created with the create link_aggregation command above. group _id <value 32> − Specifies the group ID. The Switch allows up to 32 link Parameters aggregation groups to be configured. The group number identifies each of the groups.
Page 151: Config Link_Aggregation Algorithm
[mac_source | mac_destination | mac_source_dest | ip_source | ip_destination | ip_source_dest] Description This command configures the part of the packet examined by the Switch when selecting the egress port for transmitting load-sharing data. This feature is only available using the address-based load-sharing algorithm.
Page 152 {group_id <value 1-32> | algorithm} This command will display the current link aggregation configuration of the Switch. <value 1-32> − Specifies the group ID. The Switch allows up to 32 link aggregation groups to be configured. The group number identifies each of the groups.
Page 153 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To configure LACP port mode settings: DGS-3627:5#config lacp_port 1:1-1:12 mode active Command: config lacp_port 1:1-1:12 mode active Success. DGS-3627:5# show lacp_port Purpose Syntax Description Parameters Restrictions...
Page 154: Ip-Mac-Port Binding (Impb)
IMPB, which should alleviate this problem for users. When enabled, the Switch will create one entry in the Access Profile Table. The entry may only be created if there is at least one Profile ID available on the Switch. If not, when the ACL Mode is enabled, an error message will be prompted to the user.
Page 155 MAC address match the binding entries, the packet will be dropped if they did not match. For this function, the switch can operate in ACL mode or ARP mode. In either ARP mode or ACL mode, IP and ARP packets can be both be checked.
Page 156 (To deny all ip packets on this port). If the acl pool is full and the switch can not create any new ACL access entry, the switch will show a warning message. At this moment, this port will enter normal address_binding mode.
Page 157 (To deny all ip packets on this port). If the acl pool is full and the switch can not create any new ACL access entry, the switch will show a warning message. At this moment, this port will enter normal address_binding mode.
Page 158 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config address_binding ip_mac ports forwarded by the hardward until the S/W learn entries for the port. The port will check ARP packets and IP packets by IP-MAC-PORT Binding entries.
Page 159: Create Address_Binding Ip_Mac Ipaddress
<ports> − Specifies a port or range of ports to be configured for address binding. all – Specifies that all ports on the switch will be configured for address binding. Only Administrator and Operator-level users can issue this command.
Page 160 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual delete address_binding Purpose Syntax Description Parameters Restrictions Example usage: To delete an IP-MAC-Port binding on the Switch: DGS-3627:5#delete mac_address 00-00-00-00-00-06 Command: delete address-binding ip-mac ipaddress 10.1.1.1 mac_address 00-00-00-00-00-06 Success.
Page 161: Config Address_Binding Ip_Mac Ipaddress
The beginning and end of the port list range are separated by a dash. Non-contiguous portlist entries are separated by a comma. (ex: 1- 3,7-9) all – Specifies that all ports on the switch will be configured for address binding. Only Administrator and Operator-level users can issue this command.
Page 162 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual show address_binding Purpose Used to display IP-MAC-Port binding entries. Syntax show address_binding {ip_mac [all | ipaddress <ipaddr> mac_address <macaddr> ]| blocked [ all | vlan_name <vlan_name> mac_address <macaddr>] |ports} Description This command will display IP-MAC-Port binding entries.
Page 163 By default, DHCP snooping is disabled. If user enables auto mode, all address_binding disabled ports will take as server ports (the switch will learned IP address through server ports (by DHCP OFFER and DHCP ACK packets)). Note that the DHCP discover packet can not be passed thru the user ports if the allow_zeroip function is disabled on this port.
Page 164 Purpose Syntax Description Parameters Restrictions Example usage: To clear address_binding dhcp_snoop binding entries specific ports on the Switch: DGS-3627:5#clear address_binding dhcp_snoop binding_entry ports 1:1-1:2 Command: clear address_binding dhcp_snoop binding_entry ports 1:1-1:2 Success. DGS-3627:5# To disable the address binding auto mode.
Page 165 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual show address_binding dhcp_snoop Purpose Syntax Description Parameters Restrictions Example usage: To display address binding DHCP state on the Switch: DGS-3627:5#show address_binding dhcp_snoop Command: show address_binding dhcp_snoop DHCP_Snoop : Enabled...
Page 166 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#show address_binding dhcp_snoop max_entry ports 1-12 Command: show address_binding dhcp_snoop max_entry ports 1:1-1:12 Port Max Entry ---- --------- no_limit no_limit no_limit no_limit no_limit no_limit no_limit no_limit no_limit 1:10...
Page 167 DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual enable address_binding trap_log Purpose Syntax Description Parameters Restrictions Example usage: To enable the sending of IP-MAC-Port binding trap log messages on the Switch: DGS-3627:5#enable address_binding trap_log Command: enable address_binding trap_log Success. DGS-3627:5# disable address_binding trap_log Purpose Syntax...
Page 168: Create Ipif
IP interface cannot be changed to another VLAN. IP Multinetting is a valuable tool for network administrators requiring a multitude of IP addresses, but configuring the Switch for IP multinetting may cause troubleshooting and bandwidth problems, and should not be used as a long term solution. Problems may include: The Switch may use extra resources to process packets for multiple IP interfaces.
Page 169: Config Ipif
– Allows the user to enable or disable the proxy ARP state on the above IP interface. local – Allows the switch to respond to the proxy ARP, if the source IP and destination IP are in the same interface.
Page 170: Enable Ipif
Command: enable ipif s2 Success. DGS-3627:5# local – Allows the switch to respond to the proxy ARP, if the source IP and destination IP are in the same interface. bootp − Allows the selection of the BOOTP protocol for the assignment of an IP address to the Switch’s System IP interface.
Page 171: Disable Ipif
DGS-3627:5#delete ipif s2 Command: delete ipif s2 Success. DGS-3627:5# Used to disable the configuration of an IP interface on the Switch. disable ipif [<ipif_name 12> | all] This command will disable an IP interface on the Switch, without altering its configuration values.
Page 172 DGS-3627:5#enable ipif_ipv6_link_local_auto all Command:enable ipif_ipv6_link_local_auto all Success. DGS-3627:5# Used to display the configuration of an IP interface on the Switch. show ipif {<ipif_name 12>} This command will display the configuration of an IP interface on the Switch. <ipif_name 12> − The name created for the IP interface to be viewed.
Page 173 [<ipif_name 12> | all] This command will disable the automatic creation of an IPv6 link local address for the Switch. Once this command is entered, any previous IPv6 link local address that has been created for the IP interface selected will be deleted from the switch.
Page 174: Ipv6 Neighbor Detection Commands
DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual The following commands are used to detect IPv6 neighbors of the switch and to keep a running database about these neighbor devices. The IPv6 Neighbor Detection commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
Page 175 Parameters create ipif commands. all – Enter this parameter to denote all IPv6 interfaces created on the switch. <ipv6addr> − Enter the IPv6 address of the neighbor device to be removed from being an IPv6 neighbor of the IP interface previously entered in this command.
Page 176 A value of 0 represents that this Switch should not be recognized as the default router for this link-local network. The user may set a time between 0 and 9000 seconds with a default setting of 1800 seconds.
Page 177 Neighbor Solicitation message. If this Switch is set as the default router for this local link, this value should not exceed the value stated in the Life Time field previously mentioned.
Page 178 Router Advertisement message to be shared on the link-local network. The user must first have a Global Unicast Address set for the Switch. <ipif_name 12> − Enter the IPv6 interface name that will be dispatching these Parameters router advertisements.
Page 179: Config Ipv6 Nd Ns Ipif
Description This command is used to show information regarding the IPv6 Neighbor Detection function of the switch. Users may specify an IP interface for which to view this information. ipif <ipif_name 12> − Enter the IP interface of the IPv6 interface for which to Parameters view this information.
Page 180 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To display the neighbor detection parameters for IPv6: DGS-3627:5#show ipv6 nd Command: show ipv6 nd Interface Name Hop Limit NS Retransmit Time Router Advertisement RA Max Router AdvInterval : 600 (s)
Page 181: Igmp Commands (Including Igmp V3)
IGMP or Internet Group Management Protocol is a protocol implemented by systems utilizing IPv4 to collect the membership information needed by the multicast routing protocol through various query messages sent out from the router or switch. Computers and network devices that want to receive multicast transmissions need to inform nearby routers that they will become members of a multicast group.
Page 182 [enable | disable] − Enables or disables IGMP for the specified IP interface. Only Administrator and Operator-level users can issue this command. Used to display the IGMP configuration for the Switch of for a specified IP interface. show igmp {ipif <ipif_name 12>} This command will display the IGMP configuration for the Switch if no IP interface name is specified.
Page 183: Show Igmp Group
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual show igmp group Purpose Syntax Description Parameters Restrictions Example usage: To display IGMP group table: DGS-3627:5#show igmp group Command: show igmp group Interface Multicast Group ------------ --------------- System 224.0.0.2...
Page 184: Igmp Snooping Commands
Layer 2 interfaces so that multicast traffic is forwarded to only those interfaces associated with IP multicast devices. As the name implies, IGMP snooping requires the LAN switch to snoop on the IGMP transmissions between the host and the router and to keep track of multicast groups and member ports.
Page 185 <sec 1-16711450> − Specifies the maximum amount of time a host can be a member of a multicast group without the Switch receiving a host membership report. The default is 260 seconds. Note: This parameter only displays the host timeout information. Users can configure it, but it will not take effect.
Page 186: Config Igmp_Snooping Querier
Users may lower this interval to reduce the amount of time it takes a router to detect the loss of the last member of a group. state [enable | disable] − Allows the Switch to be specified as an IGMP Querier or Non-querier.
Page 187 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config router_ports Purpose Syntax Description Parameters Restrictions Example usage: To set up static router ports: DGS-3627:5#config router_ports default add 1-10 Command: config router_ports default add 1-10 Success. DGS-3627:5#...
Page 188 – Adding this parameter to this command will disable forwarding all multicast traffic to a multicast-enabled routers. The Switch will then forward all multicast traffic to any IP router. Entering this command without the parameter will disable igmp snooping on the Switch.
Page 189 Fast Leave Version Total Entries: 1 DGS-3627:5# Used to show the current status of IGMP snooping on the Switch. show igmp_snooping {vlan <vlan_name 32>} This command will display the current IGMP snooping configuration on the Switch. <vlan_name 32> − The name of the VLAN for which to view the IGMP snooping configuration.
Page 190: Show Igmp_Snooping Group
Filter Mode Total Entries DGS-3627:5# show router_ports Purpose Used to display the currently configured router ports on the Switch. Syntax show router_ports {vlan <vlan_name 32>} {[static | dynamic | forbidden]} Description This command will display the router ports currently configured on the Switch.
Page 191: Show Igmp_Snooping Forwarding
<vlan_name 32> <vlanid 2- 4094> This command allows you to create a multicast VLAN on the Switch. <vlan_name 32> − The name of the multicast VLAN to be created. This name may be up to 32 characters in length.
Page 192 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To create a multicast VLAN: DGS-3627:5#create igmp_snooping multicast_vlan accounting 2 Command: create igmp_snooping multicast_vlan accounting 2 Success. DGS-3627:5# config igmp_snooping multicast_vlan Purpose Used to configure the settings for a previously created multicast VLAN.
Page 193 Command: delete igmp_snooping multicast_vlan accounting Success. DGS-3627:5# show igmp_snooping multicast_vlan Purpose Used to display the settings of a multicast VLAN on the Switch. Syntax show igmp_snooping multicast_vlan {<vlan_name 32>} Description This command allows you to display the settings of a multicast VLAN on the Switch.
Page 194 1 Success. DGS-3627:5# show igmp_snooping multicast_vlan_group Purpose Used to display the settings of a multicast VLAN group on the Switch. Syntax show igmp_snooping multicast_vlan_group {<vlan_name 32>} Description This command allows you to display the settings of a multicast VLAN group on the Switch.
Page 195 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#show igmp_snooping multicast_vlan_group accounting Command: snow igmp_snooping multicast_vlan_group accounting Multicast VLAN : accounting Name ---- -------------------------- DGS-3627:5# From ----------- ---------- 229.1.1.1 229.1.1.2...
Page 196: Mld Snooping Commands
MLD snooping is accomplished through the examination of the layer 3 part of an MLD control packet transferred between end nodes and a MLD router. When the Switch discovers that this route is requesting multicast traffic, it adds the port directly attached to it into the correct IPv6 multicast table, and begins the process of forwarding multicast traffic to that port.
Page 197 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Command show mld_snooping group show mld_snooping mrouter_ports show mld_snooping forwarding Each command is listed, in detail, in the following sections. enable mld_snooping Purpose Used to enable MLD snooping globally on the switch.
Page 198 <sec 1-16711450> − Specifies the maximum amount of time a router can remain in the Switch’s routing table as a listening node of a multicast group without the Switch receiving a node listener report. The user may specify a time between 1 and 16711450 with a default setting of 260 seconds.
Page 199 Command : config mld_snooping mrouter_ports default add 1-10 Success. DGS-3627:5# config mld_snooping mrouter_ports_forbidden Purpose Used to configure ports on the Switch as forbidden router ports. Syntax config mld_snooping mrouter_ports_forbidden <vlan_name 32> [add | delete] <portlist> Description This command allows the user to designate a port or range of ports as being forbidden from being connected to multicast enabled routers.
Page 200: Config Mld_Snooping Querier
1 and 25 seconds with a default setting of 1 second. state [enable | disable] – Enabling the querier state will set the Switch as a MLD querier and disabling it will set it as a Non-querier. The default setting is disabled.
Page 201 DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual show mld_snooping Purpose Used to display the current status of the MLD snooping function on the Switch. Syntax show mld_snooping {vlan<vlan_name 32} Description This command allows the user to display the current status of the MLD snooping function on the Switch.
Page 202: Show Mld_Snooping Group
This command displays MLD snooping group configurations on the Switch. vlan <vlan_name 32> − The name of the VLAN for which to view the MLD Parameters snooping group configurations. If no parameter is specified, the Switch will display all current MLD snooping group configurations. Restrictions None.
Page 203: Show Mld_Snooping Forwarding
– Displays router ports that have been statically configured. dynamic – Displays router ports that have been dynamically configured. forbidden – Displays router ports that have been configured as forbidden. If no parameter is specified, the Switch will display all currently configured router ports on the Switch. Restrictions None.
Page 204 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To view the MLD snooping forwarding table for VLAN “accounting”: DGS-3627:5#show mld_snooping forwarding vlan accounting Command: show mld_snooping forwarding vlan accounting VLAN Name Source IP Multicast Group : FF1E::1...
Page 205: Dhcp Relay
<value 1-16> − Specifies the maximum number of relay agent hops that the DHCP packets can cross. time <sec 0-65535> − If this time is exceeded, the Switch will relay the DHCP packet. Only Administrator and Operator-level users can issue this command.
Page 206: Config Dhcp_Relay Add Ipif
<ipaddr> − The DHCP server IP address. Only Administrator and Operator-level users can issue this command. Used to delete one or all IP destination addresses from the Switch's DHCP/BOOTP relay table. config dhcp_relay delete ipif <ipif_name 12> <ipaddr>...
Page 207 This command is used to configure the checking mechanism of DHCP/BOOTP relay agent information option 82 of the switch. The relay agent will check the validity of the packet’s option 82 field. If the switch receives a packet that contains the option 82 field from a DHCP client, the switch drops the packet because it is invalid.
Page 208 {ipif <ipif_name 12>} This command will display the current DHCP relay configuration for the Switch, or if an IP interface name is specified, the DHCP relay configuration for that IP interface. ipif <ipif_name 12> − The name of the IP interface for which to display the current DHCP relay configuration.
Page 209 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#show dhcp_relay Command: show dhcp_relay DHCP/Bootp Relay Status DHCP/Bootp Hops Count Limit DHCP/Bootp Relay Time Threshold : 0 DHCP Relay Agent Information Option 82 State DHCP Relay Agent Information Option 82 Check...
Page 210 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual disable dhcp_relay Purpose Syntax Description Parameters Restrictions Example usage: To disable DHCP relay: DGS-3627:5#disable dhcp_relay Command: disable dhcp_relay Success. DGS-3627:5# Used to disable the DHCP/BOOTP relay function on the Switch.
Page 211: Dhcp Server Commands
DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual For this release, the Switch now has the capability to act as a DHCP server to devices within its locally attached network. DHCP, or Dynamic Host Configuration Protocol, allows the switch to delegate IP addresses, subnet masks, default gateways and other IP parameters to devices that request this information.
Page 212: Create Dhcp Pool
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Command create dhcp excluded_address begin_address delete dhcp excluded_address show dhcp excluded_address show dhcp pool Each command is listed in detail in the following sections. create dhcp pool Purpose...
Page 213 Ethernet will denote that the manually bound device is connected directly to the Switch, while the IEEE802 denotes that the manually bound device is outside the local network of the Switch.
Page 214 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#delete dhcp pool manual_binding Floor2 10.10.10.1 Command: delete dhcp pool manual_binding Floor2 10.10.10.1 Success. DGS-3627:5# show dhcp pool manual_binding Purpose Syntax Description Parameters Restrictions Example usage: To display the manual binding entries of the DHCP pool accounting:...
Page 215 <number 2-10> − Enter a number between 2 and 10 to denote the number of ping packets that the Switch will send out on the network containing the IP address to be allotted. If the ping request is not returned, the IP address is considered unique to the local network and then allotted to the requesting client.
Page 216 Command: config dhcp pool boot_file accounting boot.had Success. DGS-3627:5# Used to set the time the Switch will wait before timing out a ping packet. config dhcp ping_timeout <millisecond 500-2000> This command is used set the time the Switch will wait before timing out a ping packet.
Page 217 {<ipaddr>} {<ipaddr>} This command is used to configure the default router for DHCP clients requesting DHCP information for the switch. Users may add up to three IP addresses to identify the router, but must specify at least one. <pool_name 12> − Enter the previously created pool name for which to add a default router.
Page 218: Config Dhcp Pool Lease
Command: config dhcp pool lease accounting infinite Success. DGS-3627:5# Used to configure the domain name for the DHCP pool of the Switch. config dhcp pool domain_name<pool_name 12> <domain_name 64> This command is used to configure the domain name for the DHCP pool of the Switch.
Page 219 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config dhcp pool netbios_name_server Purpose Syntax Description Parameters Restrictions Example usage: To configure the Net BIOS name server for the DHCP pool: DGS-3627:5# config dhcp pool netbios_name_server accounting 10.98.254.2...
Page 220 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config dhcp pool network_addr Purpose Syntax Description Parameters Restrictions Example usage: To configure the network address for the DHCP pool: DGS-3627:5#config dhcp pool network_addr accounting 10.1.1.1/8 Command:config dhcp pool network_addr accounting 10.1.1.1/8 Success.
Page 221 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To configure the IP address of the next server: DGS-3627:5#config dhcp pool next_server accounting 10.99.88.77 Command: config dhcp pool next_server accounting 10.99.88.77 Success. DGS-3627:5# enable dhcp_server...
Page 222 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To disable the DHCP server: DGS-3627:5# disable dhcp_server Command: disable dhcp_server Success. DGS-3627:5# show dhcp_server Purpose Syntax Description Parameters Restrictions Example usage: To display the DHCP server settings:...
Page 223 This command will allow the user to delete a previously set IP address, or a range of IP addresses that are NOT to be included in the range of IP addresses that the Switch will allot to clients requesting DHCP service.
Page 224: Show Dhcp Pool
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#show dhcp excluded_address Command:show dhcp excluded_address Index Begin Address ------- ----------------- 192.168.0.1 10.10.10.10 Total Entries : 2 DGS-3627:5# show dhcp pool Purpose Syntax Description Parameters Restrictions Example usage:...
Page 225: Dhcp Server Screening Commands
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual The DHCP Server Screening Commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. The DHCP Server Screening commands allow you not only to restrict all DHCP Server packets but also to receive any specified DHCP server packets by any specified DHCP client, it is useful when one or more than one DHCP servers are present on the network and both provide DHCP services to different distinct groups of clients.
Page 226 Restrictions Example usage: To display the DHCP server/client filter list created on the switch the log ceasing unauthorized duration and the log/trap state: Enabling the DHCP filter will create one access profile and create one access rule per port (UDP port 67).
Page 227 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#show filter dhcp_server Command: show filter dhcp_server Filter DHCP Server Trap_Log State: Disabled Enabled Ports: 1:1-1:3 Illegal Server Log Suppress Duration:5 minutes Filter DHCP Server/Client Table Server IP Address Client MAC Address ----------------- ------------------ 10.1.1.1...
Page 228 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5# config filter dhcp_server illegal_server_log_suppress_duration 30min Command: config filter dhcp_server illegal_server_log_suppress_duration 30min Success. DGS-3627:5#...
Page 229: Config Limited Multicast Address
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual The Limited IP Multicast command allows the administrator to permit or deny access to a port or range of ports by specifying a range of multicast addresses. The Limited IP Multicast Commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
Page 230: Delete Limited Multicast Address
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#config limited multicast address 1-3 from 224.1.1.1 to 224.1.1.2 access permit state enable Command: config limited multicast address 1-3 from 224.1.1.1 to 224.1.1.2 access permit state enable Success.
Page 231 Once created, this range name can be added to the config limited_multicast_addr command, therefore setting a list of multicast addresses that will be permitted or denied by the switch. <range_name 32> − Enter a name of up to 32 alphanumeric characters that will be used to identify this multicast range.
Page 232 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual delete multicast_range Purpose Syntax Description Parameters Restrictions DGS-3627:5#delete multicast_range accounting Command: create multicast_range accounting Success. DGS-3627:5# show multicast_range Purpose Syntax Description Parameters Restrictions Example usage: To display the multicast range “accounting”:...
Page 233 To grant the multicast range permission to access the ports: Used to add or delete ports to a previously created multicast address range and then to give that range access to or denial from the Switch. config limited_multicast_addr ports <portlist> [add multicast_range <range_name 32>...
Page 234 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#config limited_multicast_addr ports 5-8 access permit Command: config limited_multicast_addr ports 5-8 add access permit Success. DGS-3627:5# show limited_multicast_addr Purpose Syntax Description Parameters Restrictions Example usage: To display the multicast range Trinity:...
Page 235: Commands
Switch that a user or network device must meet before allowing that port to forward or receive frames.
Page 236 Used to enable the 802.1X server on the Switch. Syntax enable 802.1x Description The enable 802.1x command enables the 802.1X Network Access control server application on the Switch. To select between port-based or MAC- based, use the config 802.1x auth_mode command. Parameters None. Restrictions Only Administrator and Operator-level users can issue this command.
Page 237: Show 802.1X Auth_Configuration
Command: enable 802.1x Success. DGS-3627:5# show 802.1x auth_configuration Purpose Used to display the current configuration of the 802.1X server on the Switch. Syntax show 802.1x auth_configuration {ports [<portlist> | all]} Description The show 802.1x auth_configuration command is used to display 802.1X configurations of some or all ports.
Page 238 – Specify to view all ports. The following details are displayed: Port number − Shows the physical port number on the Switch. Auth PAE State: Initialize / Disconnected / Connecting / Authenticating / Authenticated / Held / ForceAuth / ForceUnauth / Aborting − Shows the current state of the Authenticator PAE.
Page 239 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#show 802.1x auth_state Command: show 802.1x auth_state Port Auth PAE State ------ -------------- ForceAuth ForceAuth ForceAuth ForceAuth ForceAuth ForceAuth ForceAuth ForceAuth ForceAuth 1:10 ForceAuth 1:11 ForceAuth 1:12 ForceAuth...
Page 240: Config 802.1X Capability Ports
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config 802.1x auth_mode Purpose Syntax Description Parameters Restrictions Example usage: To configure 802.1X authentication by MAC address: DGS-3627:5#config 802.1x auth_mode mac_based Command: config 802.1x auth_mode mac_based Success. DGS-3627:5# config 802.1x capability ports...
Page 241 <sec 1-65535> − Configures the time interval between successive re-authentications. enable_reauth [enable | disable] − Determines whether or not the Switch will re-authenticate. Enabled causes re-authentication of users at the time interval specified in the Re-authentication Period field, above.
Page 242: Config 802.1X Init
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#config 802.1x auth_parameter ports 1–10 direction both Command: config 802.1x auth_parameter ports 1–10 direction both Success. DGS-3627:5# config 802.1x init Purpose Syntax Description Parameters Restrictions Example usage: To initialize the authentication state machine of all ports: DGS-3627:5# config 802.1x init port_based ports all...
Page 243: Config 802.1X Reauth
<macaddr> − Enter the MAC address to be re-authorized. Only Administrator and Operator-level users can issue this command. Used to configure the settings the Switch will use to communicate with a RADIUS server. config radius add <server_index 1-3> <server_ip> key <passwd 32>...
Page 244: Config Radius Delete
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config radius add Restrictions Example usage: To configure the RADIUS server communication settings: DGS-3627:5#config radius add 1 10.48.74.121 key dlink default Command: config radius add 1 10.48.74.121 key dlink default Success.
Page 245: Show Radius
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config radius Restrictions Example usage: To configure the RADIUS settings: DGS-3627:5#config radius 1 ipaddress 10.48.74.121 key dlink default Command: config radius 1 ipaddress 10.48.74.121 key dlink default Success.
Page 246 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual To view the current RADIUS accounting client: DGS-3627:5#show acct_client Command: show acct_client radiusAcctClient ==> radiusAcctClientInvalidServerAddresses radiusAcctClientIdentifier radiusAuthServerEntry ==> radiusAccServerIndex : 1 radiusAccServerAddress radiusAccClientServerPortNumber radiusAccClientRoundTripTime radiusAccClientRequests radiusAccClientRetransmissions radiusAccClientResponses radiusAccClientMalformedResponses...
Page 247 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual radiusAuthClientRoundTripTime radiusAuthClientAccessRequests radiusAuthClientAccessRetransmissions radiusAuthClientAccessAccepts radiusAuthClientAccessRejects radiusAuthClientAccessChallenges radiusAuthClientMalformedAccessResponses 0 radiusAuthClientBadAuthenticators radiusAuthClientPendingRequests radiusAuthClientTimeouts radiusAuthClientUnknownTypes radiusAuthClientPacketsDropped CTRL+C ESC q Quit show auth_diagnostics Purpose Syntax Description Parameters Restrictions Example usage: To display the current authentication diagnostics for port 1:...
Page 248 {ports [<portlist> | all]} The show auth_session statistics command is used to display the current authentication session statistics of the Switch on a per port basis. ports <portlist> − Specifies a port or range of ports to be viewed. The beginning and end of the port list range are separated by a dash.
Page 249: Create 802.1X User
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#show auth_statistics ports 1 Command: show auth_statistics ports 1 Port number : 1:1 EapolFramesRx EapolFramesTx EapolStartFramesRx EapolReqIdFramesTx EapolLogoffFramesRx EapolReqFramesTx EapolRespIdFramesRx EapolRespFramesRx InvalidEapolFramesRx EapLengthErrorFramesRx LastEapolFrameVersion LastEapolFrameSource CTRL+C ESC q Quit create 802.1x user...
Page 250: Delete 802.1X User
802.1X or they haven’t yet installed the necessary 802.1X software, yet would still like limited access rights on the Switch. However it cannot be WAC authentication VLAN. <vlan_name 32> − Enter an alphanumeric string of no more than 32 characters to define a pre-existing VLAN as an 802.1X Guest VLAN.
Page 251 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To configure a previously created VLAN as a 802.1X Guest VLAN for the Switch. DGS-3627:5#create 802.1x guest_vlan Tiberius Command: create 802.1x guest_vlan Tiberius Success. DGS-3627:5# config 802.1x guest_vlan ports Purpose Used to configure ports for a pre-existing 802.1X guest VLAN.
Page 252 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#show 802.1x guest_vlan Command: show 802.1x guest_vlan Guest VLAN Setting ----------------------------------------------------------- Guest VLAN : Tiberius Enable guest VLAN ports: 5-8 DGS-3627:5# delete 802.1x guest_vlan Purpose Used to delete an 802.1X Guest VLAN.
Page 253: Access Control List (Acl) Commands
− in this case, when a logical AND operation between an IP address specified in the next step and the ip_source_mask match. The default for an access profile on the Switch is to permit traffic flow. If you want to restrict traffic, you must use the deny parameter.
Page 254 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Command show access_profile enable cpu_interface_filtering disable cpu_interface_filtering create cpu access_profile profile_id delete cpu access_profile config cpu access_profile show cpu access_profile Each command is listed, in detail, in the following sections.
Page 255 Used to configure the Ethernet access profile on the Switch and to define specific values for the rules that will be used to by the Switch to determine if a given packet should be forwarded or filtered. Masks entered using the create access_profile command will be combined, using a logical AND operational method, with the values the Switch finds in the specified frame header fields.
Page 256 (between 1 and 128) for the rule being configured. ethernet − Specifies that the Switch will look only into the layer 2 part of each packet to determine if it is to be filtered or forwarded based on one or more of the following: vlan <vlan_name 32>...
Page 257 (IP) Purpose Used to create an access profile on the Switch by examining the IP part of the packet header. Masks entered can be combined with the values the Switch finds in the specified frame header fields. Specific values for the rules are entered using the config access_profile command, below.
Page 258 Used to configure the IP access profile on the Switch and to define specific values for the rules that will be used to by the Switch to determine if a given packet should be forwarded or filtered. Masks entered using the create access_profile command will be combined, using a logical AND operational method, with the values the Switch finds in the specified frame header fields.
Page 259 (between 1 and 128) for the rule being configured. ip − Specifies that the Switch will look into the IP fields in each packet to see if it will be either forwarded or filtered based on one or more of the following: source_ip <ipaddr>...
Page 260 Range settings that has been previously configured using the config time_range command. This will set specific times when this access rule will be enabled or disabled on the Switch. delete access_id <value 1-128> − Use this command to delete a specific rule from the IP profile.
Page 261 Packet content masks entered will specify certain bytes of the packet header to be identified by the Switch. When the Switch recognizes a packet with the identical byte as the one configured, it will either forward or filter the packet, based on the users command entered here.
Page 262 <portlist> | all − The access profile for IP may be defined for each port on the Switch. Up to 128 rules may be configured for each port. Selecting all will configure this rule for all ports on the Switch.
Page 263 DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config access_profile profile_id (packet content) This will set specific times when this access rule will be enabled or disabled on the Switch. delete access_id <value 1-128> − Use this command to delete a specific rule from the IP profile.
Page 264 Used to configure the IPv6 access profile on the Switch and to define specific values for the rules that will be used to by the Switch to determine if a given packet should be forwarded or filtered. Masks entered using the create access_profile command will be combined, using a logical AND operational method, with the values the Switch finds in the specified frame header fields.
Page 265 Switch. Up to 128 rules may be configured for each port. Selecting all will configure this rule for all ports on the Switch. The beginning and end of the port list range are separated by a dash. Non-contiguous portlist entries are separated by a comma. (ex: 1-3,7-9) permit –...
Page 266 This value is assigned to the access profile when it is created with the create access_profile command. all – Use this parameter to delete all created access profiles on the Switch. Restrictions Only Administrator and Operator-level users can issue this command.
Page 267 The create cpu access_profile command is used to create an access profile used only for CPU Interface Filtering. Masks can be entered that will be combined with the values the Switch finds in the specified frame header fields. Specific values for the rules are entered using the config cpu access_profile command, below.
Page 268 − Enter a value in hex form to mask the packet from byte 64 to byte 79. • ipv6 – Denotes that IPv6 packets will be examined by the Switch for forwarding or filtering based on the rules configured in the config access_profile command for IPv6. IPv6 packets may be identified by the following: •...
Page 269 Used to configure a CPU access profile used for CPU Interface Filtering and to define specific values that will be used to by the Switch to determine if a given packet should be forwarded or filtered. Masks entered using the create cpu access_profile command will be combined, using a logical AND operational method, with the values the Switch finds in the specified frame header fields.
Page 270 − Enter a value in hex form to mask the packet from byte 64 to byte 79. • ipv6 − Specifies that the Switch will look into the IPv6 fields in each packet, with emphasis on one or more of the following fields: class <value 0-255>...
Page 271 Switch. Up to 128 rules may be configured for each port. Selecting all will configure this rule for all ports on the Switch. The beginning and end of the port list range are separated by a dash. Non-contiguous portlist entries are separated by a comma. (ex: 1-3,7-9) permit –...
Page 272 Command: delete cpu access_profile profile_id 1 Success. DGS-3627:5# show cpu_access_profile Purpose Used to view the CPU access profile entry currently set in the Switch. show cpu access_profile {profile_id <value 1-5>} Syntax The config cpu_interface_filtering state command is used view the current CPU Description interface filtering entries set on the Switch.
Page 273: Time Range Commands
The Time Range commands are used in conjunction with the Access Profile commands listed in the previous chapter to determine a starting point and an ending point, based on days of the week, when an Access Profile configuration will be enabled on the Switch.
Page 274 : 06:30:00 End time : 21:40:00 Total entries: 1 DGS-3627:5# To view the current configurations of the time range set on the Switch. show time_range This command is used to display the currently configured time range(s) set on the Switch. None.
Page 275: Acl Flow Metering Commands
Before configuring the ACL Flow Meter, here is a list of acronyms and terms users will need to know. trTCM – Two Rate Three Color Marker. This, along with the srTCM, are two methods available on the switch for metering and marking packet flow.
Page 276 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Command config flow_meter profile_id show flow_meter Each command is listed, in detail, in the following sections. config flow_meter profile_id Purpose Used to configure the flow metering function for ACL..
Page 277 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config flow_meter profile_id conform − This field denotes the green packet flow. Green packet flows may have their DSCP field rewritten to a value stated in this field. Users may also choose to count green packets by checking the Counter check box.
Page 278 Violate : Drop Total Entries : 1 DGS-3627:5# Used to display the ACL flow meter parameters set on the switch. show flow_meter {profile_id <value 1-14> {access_id <value 1- 128>}} This command will display the flow meter parameters set on the switch.
Page 279: Sflow
The Switch will take sample packets from the normal running traffic of the Switch based on a sampling interval configured by the user. Once this information has been gathered by the switch, it is packaged into a packet called an sFlow datagram, which is then sent to the sFlow Analyzer for analysis.
Page 280: Enable Sflow
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual enable sflow Purpose Syntax Description Parameters Restrictions Example usage: To enable the sFlow function: DGS-3627:5#enable sflow Command:enable sflow Success. DGS-3627:5# disable sflow Purpose Syntax Description Parameters Restrictions Example usage:...
Page 281 Syntax Description Parameters that originate from the Switch. Users must have the proper sFlow software set on the Analyzer in order to receive datagrams from the switch to be analyzed, and to analyze these datagrams. Users may specify up to four unique analyzers to receive datagrams, yet the virtual port used must be unique to each entry.
Page 282 1400 bytes. Only Administrator and Operator-level users can issue this command. Used to delete an sFlow analyzer server set on the switch. delete sflow analyzer_server <value 1-4> This command will delete a previously created sFlow analyzer server.
Page 283 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To delete an sFlow analyzer server: DGS-3627:5# delete sflow analyzer_server 1 Command: delete sflow analyzer_server 1 Success. DGS-3627:5# show sflow analyzer_server Purpose Syntax Description Parameters Restrictions...
Page 284 [disable | <sec 20-120>] − Users may configure the Polling Interval here. The switch will take a poll of the IF counters every time this interval reaches 0, and this information will be included in the sFlow datagrams that will be sent to the sFlow Analyzer for examination.
Page 285 DGS-3627:5# interval [disable | <sec 20-120>] − Users may configure the Polling Interval here. The switch will take a poll of the IF counters every time this interval reaches 0, and this information will be included in the sFlow datagrams that will be sent to the sFlow Analyzer for examination.
Page 286: Create Sflow Flow_Sampler Ports
For example, if the user enters a figure of 20 into this field, the switch will sample one out of every 5120 packets (20 x 256 = 5120) that pass through the individual port. Users may enter a value between 1 and 65535.
Page 287: Config Sflow Flow_Sampler Ports
The value entered here is to be multiplied by 256 to get the percentage of packets sampled. For example, if the user enters a figure of 20 into this field, the switch will sample one out of every 5120 packets (20 x 256 = 5120) that pass through the individual port.
Page 288: Delete Sflow Flow_Sampler Ports
---- ------------------ Total Entries : 1 DGS-3627:5# Used to delete the flow sampler for the sFlow function of the switch. delete sflow sflow_sampler ports [<portlist> | all] This command will allow the user to delete the Switch’s flow sampler settings.
Page 289: Show Sflow
SFlow Address SFlow State DGS-3627:5# Used to display the sflow settings configured on the switch show sflow This command will allow the user to display the Switch’s sFlow settings. None. Only Administrator and Operator-level users can issue this command. : 1.00 :10.53.13.199...
Page 290: Config Sntp
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual The Simple Network Time Protocol (SNTP) (an adaptation of the Network Time Protocol (NTP)) commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
Page 291: Enable Sntp
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#config sntp primary 10.1.1.1 secondary 10.1.1.2 poll- interval 30 Command: config sntp primary 10.1.1.1 secondary 10.1.1.2 poll- interval 30 Success. DGS-3627:5# show sntp Purpose Syntax Description Parameters Restrictions...
Page 292: Disable Sntp
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#enable sntp Command: enable sntp Success. DGS-3627:5# disable sntp Purpose Syntax Description Parameters Restrictions Example: To disable SNTP support: DGS-3627:5#disable sntp Command: disable sntp Success. DGS-3627:5# config time...
Page 293: Config Dst
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#config time 30jun2003 16:30:30 Command: config time 30jun2003 16:30:30 Success. DGS-3627:5# config time_zone Purpose Syntax Description Parameters Restrictions Example usage: To configure time zone settings: DGS-3627:5#config time_zone operator + hour 2 min 30 Command: config time_zone operator + hour 2 min 30 Success.
Page 294 DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config dst Parameters disable – Disable the DST seasonal time adjustment for the Switch. repeating – Using repeating mode will enable DST seasonal time adjustment. Repeating mode requires that the DST beginning and ending date be specified using a formula.
Page 295 Purpose Syntax Description Parameters Restrictions Example usage: To show the time currently set on the Switch’s System clock: DGS-3627:5#show time Command: show time Current Time Source Boot Time Current Time : 27 Nov 2008 Time Zone Daylight Saving Time...
Page 296: Policy Route Commands
DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Policy Based routing is a method used by the Switch to give specified devices a cleaner path to the Internet. Used in conjunction with the Access Profile feature, the Switch will identify traffic originating from a specified IP address and forward it on to a next hop router that has a less congested connection to the Internet than the normal routing scheme of your network.
Page 297 This field must be set or no policy routing will take place. state [enable | disable] – Used to enable or disable this policy route on the Switch. Restrictions Only Administrator and Operator-level users can issue this command.
Page 298 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#delete policy_route name manager Command: delete policy_route name manager Success. DGS-3627:5# show policy_route Purpose Used to display policy route settings. Syntax show policy_route Description This command is used to display policy route settings.
Page 299: Safeguard Engine Commands
When the Switch either (a) receives too many packets to process or (b) exerts too much memory, it will enter an Exhausted mode. When in this mode, the Switch will perform the following tasks to minimize the CPU usage: 1.
Page 300 Safeguard Engine mechanism will shut down. trap_log [enable | disable] – Choose whether to enable or disable the sending of messages to the device’s SNMP agent and switch log once the Safeguard Engine has been activated by a high CPU utilization rate.
Page 301 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#show safeguard_engine Command: show safeguard_engine Safeguard engine state Safeguard engine current status ======================================================= CPU utilization information: Rising Falling Trap/Log state Mode DGS-3627:5# Disabled normal mode Disabled Fuzzy...
Page 302: Traffic Segmentation Commands
• <portlist> − Specifies a range of ports for the forwarding list. This list must be on the same Switch previously specified for traffic segmentation (i.e. following the <portlist> specified above for config traffic_segmentation). The beginning and end of the port list range are separated by a dash.
Page 303 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual show traffic_segmentation Purpose Syntax Description Parameters Restrictions Example usage: To display the current traffic segmentation configuration on the Switch. DGS-3627:5#show traffic_segmentation Command: show traffic_segmentation Traffic Segmentation Table Port...
Page 304: Create Arpentry
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual The ARP commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command create arpentry delete arpentry show arpentry config arp_aging time...
Page 305: Delete Arpentry
− Deletes all ARP entries. Only Administrator and Operator-level users can issue this command. Used to configure the age-out timer for ARP table entries on the Switch. config arp_aging time <value 0-65535> This command sets the maximum amount of time, in minutes, that an ARP entry can remain in the Switch’s ARP table, without being...
Page 306: Show Arpentry
Used to display the ARP table. show arpentry {ipif <ipif_name 12> | ipaddress <ipaddr> | static} This command is used to display the current contents of the Switch’s ARP table. ipif <ipif_name 12> − The name of the IP interface the end node or station for which the ARP table entry was made, resides on.
Page 307: Config Arpentry
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config arpentry Purpose Syntax Description Parameters Restrictions Example usage: To configure a static ARP entry for the IP address 10.48.74.12 and MAC address 00:50:BA:00:07:36: DGS-3627:5#config arpentry 10.48.74.12 00-50-BA-00-07-36 Command: config arpentry 10.48.74.12 00-50-BA-00-07-36...
Page 308 [enable|disable] The command is used to enable/disable updating the ARP cache based on the received gratuitous ARP packets. If the switch receives a gratuitous ARP packet, it should update the ARP aging timer. By default, the state is disabled.
Page 309 {ipif <ipif_name 12>} {trap |log } The command is used to enable gratuitous ARP trap and log state. The switch can trap and log the IP conflict event to inform the administrator. By default, trap is disabled and event log is disabled.
Page 310: Config Gratuitous_Arp Send Periodically
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config gratuitous_arp send periodically Purpose Syntax Description Parameters Restrictions Example usage: To configure gratuitous ARP interval to 5 for IPIF System: DGS-3627:5#config gratuitous_arp send periodically ipif System interval 5 Command: config gratuitous_arp send periodically ipif System interval Success.
Page 311: Enable Vrrp
To configure VRRP for virtual routers on the Switch, an IP interface must be present on the system and it must be a part of a VLAN.
Page 312: Disable Vrrp
IP address from being pinged from other host end nodes to verify connectivity. This will only disable the ping connectivity check function. To disable the VRRP protocol on the Switch, omit this parameter. Only Administrator and Operator-level users can issue this...
Page 313 <int 1-255> | preempt [true | false] | critical_ip <ipaddr> | critical_ip_state [enable | disable]} Description This command is used to create a VRRP interface on the Switch. Parameters vrid <vrid 1-255> – Enter a value between 1 and 255 to uniquely identify this VRRP group on the Switch.
Page 314 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual create vrrp vrid Example usage: To create a VRRP entry: DGS-3627:5#create vrrp vrid 1 ipif Tiberius ipaddress 11.1.1.1 state enable priority 200 advertisement_interval 1 preempt true critical_ip 10.53.13.224 critical_ip_state enable Command: create vrrp vrid 1 ipif Tiberius ipaddress 11.1.1.1 state...
Page 315 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config vrrp vrid Restrictions Example usage: To configure a VRRP entry: DGS-3627:5#config vrrp vrid 1 ipif Zira state enable priority 100 advertisement_interval 2 Command: config vrrp vrid 1 ipif Zira state enable priority 100 advertisement_interval 2 Success.
Page 316 Parameters Restrictions Example Usage: To view the global VRRP settings currently implemented on the Switch (VRRP Enabled): ip authdata <string 16> – This parameter will require the user to set an alphanumeric authentication string of no more than 16 characters to generate a MD5 message digest for authentication in comparing VRRP messages received by the router.
Page 317 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#show vrrp Command: show vrrp Global VRRP Non-owner response PING Interface Name Authentication type VRID Virtual IP Address Virtual MAC Address Virtual Router State State Priority Master IP Address...
Page 318: Create Iproute
65535>} {[primary|backup|weight <value 1-4> ]} ] Description The create iproute command creates an IP route entry on the switch’s IP routing table. “Primary”, “backup” and “weight” are mutually exclusive. Users can select only one when creating one new route. Users can choose how to set up the route by setting primary, secondly, backup or multipath.
Page 319: Delete Iproute
Purpose Syntax Description Used to delete an IP route entry from the Switch’s IP routing table. delete iproute [default | <network_address>] [null0|<ipaddr>] This command will delete an existing entry from the Switch’s IP routing table. default – Use this parameter to delete a default static IP route entry from the Switch’s IP routing table.
Page 320 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual show iproute Parameters Restrictions Example usage: To display the contents of the IP routing table: DGS-3627:5#show iproute Command: show iproute Routing Table IP Address/Netmask ------------------ 10.0.0.0/8 10.0.0.0/8 Total Entries : 2...
Page 321: Create Ipv6Route
Command:create ipv6route 1234::5D7F/32 2D30::AC21 Success. DGS-3627:5# delete ipv6route Purpose Used to delete an static IPv6 route entry from the Switch’s IP routing table. Syntax delete ipv6route [[default | <ipv6networkaddr>] [<ipif_name 12> <ipv6addr> | <ipv6addr>] | all] Description This command will delete an existing static IPv6 entry from the Switch’s IP routing table.
Page 322: Show Ipv6Route
Backup : Backup Total Entries : 1 DGS-3627:5# Used to display the Switch’s current static IPv6 routing table or a specified IPv6 address. show ipv6route {<ipv6networkaddr>} This command will display the Switch’s current static IPv6 routing table or a specific IPv6 entry.
Page 323: Route Redistribution Commands
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual The route redistribution commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command create route redistribute dst ospf src...
Page 324 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Allowed Metric Type combinations are mettype 1 or mettype 2. The metric value 0 above will be redistributed in OSPF as the metric Example usage: To add route redistribution settings:...
Page 325 OSPF and RIP routing protocols to all routers on the network that are running OSPF or RIP. Routing information entered into the Static Routing Table on the local switch is also redistributed. src [static | rip | local] − Allows the selection of the protocol of the source device.
Page 326 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To configure route redistributions: DGS-3627:5#config route redistribute dst ospf src all metric 2 Command: config route redistribute dst ospf src all metric 2 Success. DGS-3627:5# config route redistribute dst rip src...
Page 327: Delete Route Redistribute
DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual delete route redistribute Purpose Used to delete an existing route redistribute configuration on the Switch. Syntax delete route redistribute [dst [rip | ospf] src [rip | static | local | ospf]] Description This command will delete the route redistribution settings on this switch.
Page 328: Config Dnsr
[[primary | secondary] nameserver <ipaddr> | [add | delete] static <domain_name 32> <ipaddr>] This command is used to configure the DNS relay function on the Switch. primary − Indicates that the IP address below is the address of the primary DNS server.
Page 329: Enable Dnsr
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To delete an entry domain name dns1, IP address 10.43.21.12 from DNS static table. DGS-3627:5#config dnsr delete static dns1 10.43.21.12 Command: config dnsr delete static dns1 10.43.21.12 Success.
Page 330: Disable Dnsr
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual disable dnsr Purpose Syntax Description Parameters Restrictions Example usage: To disable status of DNS relay. DGS-3627:5#disable dnsr Command: disable dnsr Success. DGS-3627:5# Example usage: To disable cache lookup for DNS relay.
Page 331 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#show dnsr Command: show dnsr DNSR Status Primary Name Server Secondary Name Server DNSR Cache Status DNSR Static Table Status : Disabled DNS Relay Static Table Domain Name -------------------------------- www.123.com.tw...
Page 332: Config Rip
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual The RIP commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command config rip enable rip disable rip show rip Each command is listed, in detail, in the following sections.
Page 333: Enable Rip
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual To change the RIP receive mode for the IP interface System: DGS-3627:5#config rip ipif System rx_mode v1_only Command: config rip ipif System rx_mode v1_only Success. DGS-3627:5# enable rip...
Page 334 Authentication: Disabled Total Entries: 1 DGS-3627:5# Used to display the RIP configuration and statistics for the Switch. show rip {ipif <ipif_name 12>} This command will display the RIP configuration and statistics for a given IP interface or for all IP interfaces.
Page 335: Dvmrp Commands
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual The DVMRP commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. DVMRP is a distance-vector multicast routing protocol designed to support the forwarding of multicast datagrams through an inter- network.
Page 336: Enable Dvmrp
Only Administrator and Operator-level users can issue this command. Used to disable DVMRP. disable dvmrp This command is used, in combination with the enable dvmrp command above, is used to enable and disable DVMRP on the Switch. None. Only Administrator and Operator-level users can issue this command.
Page 337 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual show dvmrp routing_table Purpose Syntax Description Parameters Restrictions Example usage: To display DVMRP routing table: DGS-3627:5#show dvmrp routing_table Command: show dvmrp routing_table DVMRP Routing Table Source Address/Netmask Upstream Neighbor --------------- 10.0.0.0/8...
Page 338 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#show dvmrp neighbor Command: show dvmrp neighbor DVMRP Neighbor Address Table Interface --------------- ----------------- System Total Entries: 1 DGS-3627:5# show dvmrp nexthop Purpose Syntax Description Parameters Restrictions Example usage:...
Page 339 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual show dvmrp Purpose Syntax Description Parameters Restrictions Example usage: To show DVMRP configurations: DGS-3627:5#show dvmrp Command: show dvmrp DVMRP Global State : Disabled Interface IP Address ---------- ----------- System 10.90.90.90/8...
Page 340: Pim Commands
RP. This can be configured by the switch administrator by setting the multicast data rate threshold. Once the threshold has been passed, the data path will switch to the SPT. Therefore, a closer link can be created between the source and destination, eliminating hops previously used and shortening the time a multicast packet is sent from the source to its final destination.
Page 341 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Assert Messages At times on the PIM-SM enabled network, parallel paths are created from source to receiver, meaning some receivers will receive the same multicast packets twice. To improve this situation, Assert messages are sent from the receiving device to both multicast sources to determine which single router will send the receiver the necessary multicast data.
Page 342 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Command delete pim register_checksum_include_data rp_address show pim register_checksum_include_data_rp_list Each command is listed, in detail, in the following sections. enable pim Purpose Syntax Description Parameters Restrictions Example usage: To enable PIM as previously configured on the Switch:...
Page 343 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config pim Purpose Used to configure the parameters for the PIM protocol. Syntax config pim [[ipif <ipif_name 12> | all] {hello <sec 1-18724> | jp_interval <sec 1- 18724> | state [enable | disable] | mode [dm | sm| sm-dm] | dr_priority <unit 0 –...
Page 344 Purpose Syntax Description Parameters Restrictions Example usage: To create an IP interface to become a Candidate RP on the Switch: DGS-3627:5#create pim crp group 231.0.0.1/32 rp Zira Command: create pim crp group 231.0.0.1/32 rp Zira Success. DGS-3627:5# delete pim crp...
Page 345 Static RP. This address must be a class D IP address. rp <ipaddr> − Enter the IP address of the RP the switch administrator wishes to become the Static RP for this group. Only Administrator and Operator-level users can issue this command.
Page 346 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual To create the settings to determine a static RP: DGS-3627:5#create pim static_rp group 231.0.0.1/32 rp 11.1.1.1 Command: create pim static_rp group 231.0.0.1/32 rp 11.1.1.1 Success. DGS-3627:5# delete pim static_rp...
Page 347 Total entries: 4 DGS-3627:5# config pim last_hop_spt_switchover Purpose Syntax Description Parameters Restrictions Example usage: To configure the last hop router to immediately switch to SPT: DGS-3627:5#config pim last_hop_spt_switchover immediately Command: config pim last_hop_spt_switchover immediately Success. DGS-3627:5# show pim rpset Purpose Syntax Description...
Page 348 Syntax Description Holdtime ------------ Used to display the Candidate RP settings on the Switch, along with CRP parameters configured for the Switch. show pim crp This command will display the settings for Candidate RPs that are accessible to the switch. This command is for PIM-SM configurations only.
Page 349 See the examples below for a better understanding. bootstrap_period <value 1-255> − Enter a time period between 1 and 255 to determine the interval the Switch will send out Boot Strap Messages (BSM) to the PIM enabled network. The default setting is 60 seconds.
Page 350 Restrictions Example usage: To view the PIM settings: Used to display the Candidate BSR settings of the switch, along with CBSR parameters configured for the Switch. show pim cbsr {ipif <ipif_name12>} This command will display the settings for Candidate BSRs that are accessible to the switch.
Page 351: Show Pim Neighbor
Used to display PIM neighbors of the Switch. show pim neighbor {ipif <ipif_name12> | ipaddress <network_address>} This command will display the PIM neighbor table for the Switch. <ipif_name 12> − Enter the name of the IP interface for which to display PIM information regarding PIM neighbors.
Page 352 Restrictions Example usage: To create an RP to which the Switch will send Register packets to and create checksums to be included with the data in Registered packets: Used to display the PIM IP Multicast Route Table on the Switch.
Page 353 Syntax Description Parameters Restrictions Example usage: To delete RPs that the Switch will send Register packets to and create checksums to be included with the data in Registered packets: DGS-3627:5#delete pim register_checksum_include_data rp_address 11.1.1.1 Command: delete pim register_checksum_include_data rp_address 11.1.1.1 Success.
Page 354 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#show pim register_checksum_include_data_rp_list Command: show pim register_checksum_include_data_rp_list PIM Register Checksum Include Data RP Address ------------------------------------------- 11.1.1.1 Total Entries: 1 DGS-3627:5#...
Page 355: Static Multicast Route Commands
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual The static multicast route commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. IP multicast static routes are used to configure static RPF check paths that don’t depend on the unicast route table. The main goal of IP multicast static routes is to let multicast traffic diverge from unicast traffic.
Page 356: Show Ipmroute
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual delete ipmroute Purpose Used to delete an IP multicast static route configuration entry. Syntax delete ipmroute [<network_address>|all] Description Deletes an IP multicast static route configuration entry. Parameters network_address – The entry corresponds to the specified network to be deleted.
Page 357: Ip Multicasting Commands
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual The IP multicasting commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command show ipmc cache show ipmc Each command is listed, in detail, in the following sections.
Page 358 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual show ipmc Restrictions Usage example To display the current IP multicast interface table by DVMRP entry: DGS-3627:5#show ipmc protocol dvmrp Command: show ipmc protocol dvmrp Interface Name ---------------...
Page 359: Md5 Commands
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual The MD5 configuration commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command create md5 key config md5 key...
Page 360 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#config md5 key 1 taboo Command: config md5 key 1 taboo Success. DGS-3627:5# delete md5 key Purpose Syntax Description Parameters Restrictions Usage example The delete an entry in the MD5 key table:...
Page 361: Ospf Configuration Commands
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual The OSPF configuration commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command config ospf router_id enable ospf disable ospf...
Page 362: Enable Ospf
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config ospf router_id Purpose Syntax Description Parameters Restrictions Usage example To configure the OSPF router ID: DGS-3627:5#config ospf router_id 10.48.74.122 Command: config ospf router_id 10.48.74.122 Success. DGS-3627:5# enable ospf...
Page 363 Quit SPACE n Used to display the current OSPF state on the Switch. show ospf This command will display the current state of OSPF on the Switch, divided into the following categories: General OSPF settings OSPF Interface settings OSPF Area settings...
Page 364 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual create ospf area Purpose Syntax Description Parameters Restrictions Example usage: To create an OSPF area: DGS-3627:5#create ospf area 10.48.74.122 type normal Command: create ospf area 10.48.74.122 type normal Success.
Page 365 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual delete ospf area Purpose Syntax Description Parameters Restrictions Example usage: To delete an OSPF area: DGS-3627:5#delete ospf area 10.48.74.122 Command: delete ospf area 10.48.74.122 Success. DGS-3627:5# config ospf area...
Page 366 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#config ospf area 10.48.74.122 type stub stub_summary enable metric 1 Command: config ospf area 10.48.74.122 type stub stub_summary enable metric 1 Success. DGS-3627:5# show ospf area Purpose Syntax...
Page 367 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual delete ospf host_route Purpose Syntax Description Parameters Restrictions Usage example To delete an OSPF host route: DGS-3627:5#delete ospf host_route 10.48.74.122 Command: delete ospf host_route 10.48.74.122 Success. DGS-3627:5# config ospf host_route Purpose Used to configure OSPF host route settings.
Page 368 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#show ospf host_route Command: show ospf host_route Host Address --------------- --------------- 10.48.73.21 10.48.74.122 Total Entries: 2 DGS-3627:5# create ospf aggregation Purpose Used to configure OSPF area aggregation settings.
Page 369 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual delete ospf aggregation Purpose Used to delete an OSPF area aggregation configuration. Syntax delete ospf aggregation <area_id> <network_address> lsdb_type [summary | nssa_ext] Description This command is used to delete an OSPF area aggregation configuration.
Page 370 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#config ospf aggregation 10.1.1.1 10.48.76.122/16 lsdb_type summary advertise enable Command: config ospf aggregation 10.1.1.1 10.48.76.122/16 lsdb_type summary advertise enable Success. DGS-3627:5# show ospf aggregation Purpose Used to display the current OSPF area aggregation settings.
Page 371 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To display the link state database of OSPF: DGS-3627:5#show ospf lsdb Command: show ospf lsdb Area LSDB Type --------------- --------- --------------- ------------------ -------- --------- 0.0.0.0 RTRLink 0.0.0.0...
Page 372 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual show ospf virtual_neighbor Purpose Used to display the current OSPF virtual neighbor router table. Syntax show ospf virtual_neighbor {<area_id> <neighbor id>} Description This command will display the current OSPF virtual neighbor router table.
Page 373 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config ospf ipif metric <value 1-65535> − This field allows the entry of a number between 1 and 65,535 that is representative of the OSPF cost of reaching the selected OSPF interface.
Page 374 Switch. Parameters None. Restrictions None. Example usage: To display the current OSPF interface settings, for all OSPF interfaces on the Switch: DGS-3627:5#show ospf all Command: show ospf all Interface Name: System (Link Up) Network Medium Type: BROADCAST Area ID: 0.0.0.0...
Page 375 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual create ospf virtual_link Purpose Syntax Description Parameters Restrictions Usage example To create an OSPF virtual interface: DGS-3627:5#create ospf virtual_link 10.1.12 20.1.1.1 hello_interval 10 Command: create ospf virtual_link 10.1.12 20.1.1.1 hello_interval 10 Success.
Page 376 Syntax delete ospf virtual_link <area_id> <neighbor_id> Description This command will delete an OSPF virtual interface from the Switch. <area_id> − A 32-bit number in the form of an IP address Parameters (xxx.xxx.xxx.xxx) that uniquely identifies the OSPF area in the OSPF domain.
Page 377 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#delete ospf virtual_link 10.1.12 20.1.1.1 Command: delete ospf virtual_link 10.1.12 20.1.1.1 Success. DGS-3627:5# show ospf virtual_link Purpose Syntax Description Parameters Restrictions Example usage: To display the current OSPF virtual interface configuration:...
Page 378: Route Preference Commands
Switch. 2. If the user is not fully aware of all the features and functions of the routing protocols on the Switch, a change in the default route preference value may cause routing loops or black holes.
Page 379: Config Route Preference
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config route preference Purpose Syntax Description Parameters Restrictions Example usage: To configure the route preference value for RIP as 50: DGS-3627:5#config route preference rip 50 Command: config route preference rip 50 Success.
Page 380 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual show route preference Restrictions Example usage: To view the route preference values for all routes: DGS-3627:5#show route preference Command: show route preference Route Preference Settings Route Type ----------...
Page 381: Mac Notification Commands
Parameters {interval <int 1-2147483647> | historysize <int 1-500>} [<portlist> | all] [enable | disable] {<portlist>} Used to enable global MAC address table notification on the Switch. enable mac_notification This command is used to enable MAC address notification without changing configuration.
Page 382: Config Mac_Notification Ports
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#disable mac_notification Command: disable mac_notification Success. DGS-3627:5# config mac_notification Purpose Syntax Description Parameters Restrictions Example usage: To configure the Switch’s MAC address table notification global settings: DGS-3627:5#config mac_notification interval 1 historysize 500 Command: config mac_notification interval 1 historysize 500 Success.
Page 383: Show Mac_Notification Ports
To display all port’s MAC address table notification status settings: Used to display the Switch’s MAC address table notification global settings show mac_notification This command is used to display the Switch’s MAC address table notification global settings. None. None. : Enabled Used to display the Switch’s MAC address table notification status...
Page 384 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#show mac_notification ports Command: show mac_notification ports Port # MAC Address Table Notification State ------ ----------------------------------------- CTRL+C ESC q Quit SPACE n Disabled Disabled Disabled Disabled Disabled Disabled...
Page 385: Enable Wac
This function will allow user authentication through a RADIUS server or through the local username and password set on the Switch when a user is trying to access the network via the Switch, if the port connected to the user is enabled for this feature.
Page 386: Disable Wac
– Choose this parameter to use the local authentication method of the Switch as the authenticating method for users trying to access the network via the switch. This is, in fact, the username and password to access the Switch.
Page 387 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config wac Restrictions Example usage: To configure the WAC VLAN: DGS-3627:5#config wac vlan Balkman Command: config wac vlan Balkman Success. DGS-3627:5# Example usage: To configure the WAC ports:...
Page 388: Create Wac User
Switch. <username 15> – Enter a username of up to 15 alphanumeric characters used to authenticate users trying to access the network via the Switch. This username must be identical to the one the user enters to access the Web-based Access Control for the Switch.
Page 389: Config Wac User
<username 15> – Enter a username of up to 15 alphanumeric characters used to authenticate users trying to access the network via the Switch. This username must be identical to the one the user enters to access the Web-based Access Control for the Switch.
Page 390 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual show wac Purpose Syntax Description Parameters Restrictions Example usage: To display the WAC parameters DGS-3627:5#show wac Command: show wac Web Based Access Control --------------------------------------- State Method VLAN Redirection Page...
Page 391: Access Authentication Control Commands
Switch. The users will set server hosts in a preferable order in the built-in server group and when a user tries to gain access to the Switch, the Switch will ask the first server host for authentication.
Page 392 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual The Access Authentication Control commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command enable authen_policy disable authen_policy show authen_policy...
Page 393 Syntax enable authen_policy Description This command will enable an administrator-defined authentication policy for users trying to access the Switch. When enabled, the device will check the method list and choose a technique for user authentication upon login. Parameters None. Restrictions Only Administrator-level users can issue this command.
Page 394 <string 15> This command is used to create a list for authentication techniques for user login. The Switch can support up to eight method lists, but one is reserved as a default and cannot be deleted. Multiple method lists must be created and configured separately.
Page 395 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config authen_login administrator level, the user must implement the enable admin command, followed by a previously configured password. (See the enable admin part of this section for more detailed information, concerning the enable admin command.)
Page 396 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To configure the user defined method list “DLee” with authentication methods TACACS, XTACACS and local, in that order. DGS-3627:5#config authen_login method_list_name DLee method tacacs xtacacs local...
Page 397 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual show authen_login Purpose Syntax Description Parameters Restrictions Example usage: To view the authentication login method list named Trinity: DGS-3627:5#show authen_login method_list_name Trinity Command: show authen_login method_list_name Trinity Method List...
Page 398 Administrator level privileges using authentication methods on the Switch. Once a user acquires normal user level privileges on the Switch, he or she must be authenticated by a method on the Switch to gain administrator privileges on the Switch, which is defined by the Administrator.
Page 399 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config authen_enable Restrictions Example usage: To configure the user defined method list “Permit” with authentication methods TACACS, XTACACS and local, in that order. tacacs – Adding this parameter will require the user to be authenticated using the TACACS protocol from the remote TACACS server hosts of the TACACS server group list.
Page 400 Only Administrator-level users can issue this command. Used to display the method list of authentication methods for promoting normal user level privileges to Administrator level privileges on the Switch. show authen_enable [default | method_list_name <string 15> | all] This command is used to delete a user-defined method list of authentication methods for promoting user level privileges to Administrator level privileges.
Page 401: Config Authen Application
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual show authen_enable Restrictions Example usage: To display all method lists for promoting user level privileges to administrator level privileges. DGS-3627:5#show authen_enable all Command: show authen_enable all Method List Name...
Page 402: Show Authen Application
DGS-3627:5# show authen application Purpose Syntax Description Parameters Restrictions Example usage: To display the login and enable method list for all applications on the Switch: DGS-3627:5#show authen application Command: show authen application Application Login Method List ----------- ----------------- Console default...
Page 403 TACACS+ or RADIUS server only. Specify an alphanumeric string up to 254 characters. timeout <int 1-255> – Enter the time in seconds the Switch will wait for the server host to reply to an authentication request. The default value is 5 seconds.
Page 404 TACACS+ or RADIUS server only. Specify an alphanumeric string up to 254 characters or choose none. timeout <int 1-255> – Enter the time in seconds the Switch will wait for the server host to reply to an authentication request. The default value is 5 seconds.
Page 405 TACACS, XTACACS, TACACS+ or RADIUS. Port – The virtual port number on the server host. The default value is 49. Timeout – The time in seconds the Switch will wait for the server host to reply to an authentication request.
Page 406 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To view authentication server hosts currently set on the Switch: DGS-3627:5#show authen server_host Command: show authen server_host IP Address --------------- 10.53.13.94 Total Entries : 1 DGS-3627:5#...
Page 407 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config authen server_group add/delete – Enter the correct parameter to add or delete a server host from a server group. server_host <ipaddr> – Enter the IP address of the previously configured server host to add or delete.
Page 408 TACACS -------------------------------------- -------------------------------------- Used to configure the amount of time the Switch will wait for a user to enter authentication before timing out. config authen parameter response_timeout <int 0-255> This command will set the time the Switch will wait for a response of authentication from the user.
Page 409: Config Authen Parameter Attempt
This command will display the following fields: Response timeout – The configured time allotted for the Switch to wait for a response of authentication from the user attempting to log in from the command line interface or telnet interface.
Page 410: Enable Admin
Used to promote user level privileges to administrator level privileges enable admin This command is for users who have logged on to the Switch on the normal user level, to become promoted to the administrator level. After logging on to the Switch users will have only user level privileges.
Page 411 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To configure the password for the “local_enable” authentication method. DGS-3627:5#config admin local_enable Command: config admin local_enable Enter the old password: Enter the case-sensitive new password:****** Enter the new password again for confirmation:****** Success.
Page 412: Enable Ssh
SSH Server. Finally, enable SSH on the Switch using the enable ssh command. After following the above steps, you can configure an SSH Client on the remote PC and manage the Switch using secure, in-band communication. The Secure Shell (SSH) commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
Page 413: Disable Ssh
To enable the SSH authentication mode by password: Used to disable SSH. disable ssh This command allows users to disable SSH on the Switch. Enabling SSH will disable the Telnet-manager on the Switch. None. Only Administrator and Operator-level users can issue this command.
Page 414: Show Ssh Authmode
SSH authentication. After the maximum number of attempts is exceeded, the Switch will be disconnected and the user must reconnect to the Switch to attempt another login. rekey [10min |30min | 60min | never] – Sets the time period that the Switch will change the security shell encryptions.
Page 415: Show Ssh Server
<username> – Enter a username of no more than 15 characters to identify the SSH user. authmode – Specifies the authentication mode of the SSH user wishing to log on to the Switch. The administrator may choose between: • hostbased – This parameter should be chosen if the user wishes to use a remote SSH server for authentication purposes.
Page 416: Show Ssh User Authmode
– This parameter should be chosen if the user wishes to use an administrator defined password for authentication. Upon entry of this command, the Switch will prompt the user for a password, and then to retype the password for confirmation.
Page 417: Config Ssh Algorithm
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config ssh algorithm Purpose Used to configure the SSH algorithm. Syntax config ssh algorithm [3DES | AES128 | AES192 | AES256 | arcfour | blowfish | cast128 | twofish128 | twofish192 | twofish256 | MD5 | SHA1 |...
Page 418: Show Ssh Algorithm
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual show ssh algorithm Purpose Syntax Description Parameters Restrictions Example usage: To display SSH algorithms currently set on the Switch: DGS-3627:5#show ssh algorithm Command: show ssh algorithm Encryption Algorithm...
Page 419: Ssl Commands
The Switch supports two types of cryptology algorithms: Stream Ciphers – There are two types of stream ciphers on the Switch, RC4 with 40-bit keys and RC4 with 128-bit keys. These keys are used to encrypt messages and need to be consistent between client and host for optimal use.
Page 420: Enable Ssl
The user may choose any combination of the following: The ciphersuites are enabled by default on the Switch, yet the SSL status is disabled by default. Enabling SSL with a ciphersuite will not enable the SSL status on the Switch.
Page 421: Disable Ssl
RSA_with_3DES_EDE_CBC_SHA | DHE_DSS_with_3DES_EDE_CBC_SHA | RSA_EXPORT_with_RC4_40_MD5}} This command will disable SSL on the Switch and can be used to disable any one or combination of listed ciphersuites on the Switch. ciphersuite – A security string that determines the exact cryptographic parameters, specific encryption algorithms and key sizes to be used for an authentication session.
Page 422: Show Ssl Cachetimeout
Switch. None. None. Used to view the SSL status and the certificate file status on the Switch. show ssl {certificate} This command is used to view the SSL status on the Switch. {certificate} – Use this parameter to display the SSL certificate file information currently implemented on the Switch.
Page 423: Download Ssl Certificate
64> keyfilename <path_filename 64> This command is used to download a certificate file for the SSL function on the Switch from a TFTP server. The certificate file is a data record used for authenticating devices on the network. It contains information on the owner, keys for authentication and digital signatures.
Page 424: Jumbo Frame Commands
Used to enable the jumbo frame function on the Switch. enable jumbo_frame This command will allow ethernet frames larger than 1536 bytes to be processed by the Switch. The maximum size of the jumbo frame may not exceed 9216 bytes tagged. None.
Page 425 Command: show jumbo_frame Jumbo frame state: disabled Maximum frame size: 1536 bytes DGS-3627:5# Used to show the status of the jumbo frame function on the Switch. show jumbo_frame This command will show the status of the jumbo frame function on the Switch.
Page 426: Lldp Commands
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual The LLDP commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. The Link Layer Discovery Protocol (LLDP) specified in this standard allows stations attached to an 802 LAN to advertise to other stations attached to the same 802 LAN the connectivity and management information necessary to identify to those management entities the station's point of attachment to the 802 LAN.
Page 427: Enable Lldp
LLDP setting. For the advertisement of LLDP packets, the switch announces the information to its neighbor through ports. For the receiving of LLDP packets, the switch will learn the information from the LLDP packets advertised from the neighbor in the Neighbor’s table.
Page 428 65535 and (message_tx_interval * message_tx_hold_multiplier). At the partner switch, when the tme-to-Live for a given advertisement expires, the advertised data is deleted from the neighbor switch’s MIB message_hold_multiplier – The range is from 2 to 10. The default setting is 4.
Page 429 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config lldp tx_delay Purpose Syntax Description Parameters Restrictions Example usage: To configure the delay interval: DGS-3627:5#config lldp tx_delay 8 Command: config lldp tx_delay 8 Success. DGS-3627:5# config lldp reinit_delay...
Page 430: Config Lldp Ports Notification
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config lldp notification _interval Purpose Syntax Description Parameters Restrictions Example usage: To change the notification interval to 10 seconds: DGS-3627:5#config lldp notification_interval 10 Command: config lldp notification_interval 10 Success.
Page 431 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config lldp ports admin_status Purpose Syntax Description Parameters Restrictions Example usage: To configure ports 1 to 5 to transmit and receive: DGS-3627:5#config lldp ports 1:1-1:5 admin_status tx_and_rx Command: config lldp ports 1:1-1:5 admin_status tx_and_rx Success.
Page 432 | system_description | system_capabilities}] [enable | disable] An active LLDP port on the switch always includes the mandatory data in its outbound advertisements. And there are four optional data that can be configured for an individual port or group of ports to exclude one or more of these data types from outbound LLDP advertisements.
Page 433 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config lldp dot1_tlv_pvid Purpose Syntax Description Parameters Restrictions Example usage: To configure exclude the VLAN nameTLV from the outbound LLDP advertisements for all ports: DGS-3627:5#config lldp ports all dot1_tlv_pvid enable Command: config lldp ports all dot1_tlv_pvid enable Success.
Page 434 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#config lldp ports all dot1_tlv_protocol_vid vlanid 1-3 enable Command: config lldp ports all dot1_tlv_protocol_vid vlanid 1-3 enable Success. DGS-3627:5# config lldp dot1_tlv_vlan_name Purpose Syntax Description Parameters Restrictions Example usage:...
Page 435 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config lldp dot1_tlv_protocol_identity Purpose Syntax Description Parameters Restrictions Example usage: To configure exclude the protocol identity TLV from the outbound LLDP advertisements for all ports: DGS-3627:5#config lldp ports all dot1_tlv_protocol_identity all...
Page 436 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config lldp dot3_tlvs Restrictions Example usage: To configure exclude the MAC/PHY configuration/status TLV from the outbound LLDP advertisements for all ports: DGS-3627:5#config lldp ports all dot3_tlvs mac_phy_configuration_status enable...
Page 437 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#config lldp forward_message enable Command: config lldp forward_message enable Success. DGS-3627:5# show lldp Purpose Syntax Description Parameters Restrictions Example usage: To display the LLDP system level configuration status:...
Page 438: Show Lldp Ports
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To display management address information for port 1: DGS-3627:5# show lldp mgt_addr ipv4 192.168.254.10 Command: show lldp mgt_addr ipv4 192.168.254.10 Address 1 -------------------------------------------------------------------- Subtype Address IF type...
Page 439 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual show lldp local_ports Purpose Syntax Description Parameters Restrictions Example usage: To display outbound LLDP advertisements for port 1: DGS-3627:5#show lldp local_ports 1 Command: show lldp local_ports 1 Port ID : 1:1...
Page 440: Show Lldp Statistics Ports
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To display remote table in brief mode: DGS-3627:5#show lldp remote_ports 1-2 mode brief Command: show lldp remote_ports 1-2 mode brief Port ID: 1:1 -------------------------------------------------------------------- Remote Entities Count...
Page 441 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#show lldp statistics ports 1 Command: show lldp statistics ports 1 Port ID : 1:1 --------------------------------------------- LLDPStatsTxPortFramesTotal LLDPStatsRxPortFramesDiscardedTotal LLDPStatsRxPortFramesErrors LLDPStatsRxPortFramesTotal LLDPStatsRxPortTLVsDiscardedTotal LLDPStatsRxPortTLVsUnrecognizedTotal : 0 LLDPStatsRxPortAgeoutsTotal DGS-3627:5#...
Page 442: D-Link Single Ip Management Commands
It is not a Commander Switch or Member Switch of another Single IP group. It is connected to the Member Switches through its management VLAN. Member Switch (MS) – This is a switch that has joined a single IP group and is accessible from the CS, and it takes on the following characteristics: It is not a CS or MS of another IP group.
Page 443: Command Parameters
MS switches cannot be rediscovered. For example, if the Switch is still powered down, if it has become the member of another group, or if it has been configured to be a Commander Switch, the rediscovery process cannot occur.
Page 444: Enable Sim
Syntax Description Used to enable Single IP Management (SIM) on the Switch enable sim This command will enable SIM globally on the Switch. SIM features and functions will not function properly unless this function is enabled. None. Only Administrator-level users can issue this command.
Page 445 Holdtime DGS-3627:5# MAC Address – Displays the MAC Address of the Switch. Capabilities – Displays the type of switch, be it Layer 2 (L2) or Layer 3 (L3). Platform – Switch Description including name and model number. SIM State –Displays the current Single IP Management State of the Switch, whether it be enabled or disabled.
Page 446 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual To show the candidate information in summary, if the candidate ID is specified: DGS-3627:5#show sim candidates Command: show sim candidates MAC Address ---------------- 00-55-55-00-55-00 Total Entries: 2 DGS-3627:5#...
Page 447 SIM group by ID number. add <candidate_id 1-100> <password> – Use this parameter to change a candidate switch (CaS) to a member switch (MS) of a SIM group. The CaS may be defined by its ID number and a password (if necessary).
Page 448: Config Sim
SIM Config Success!!! Success. DGS-3627:5# config sim Purpose Used to configure role parameters for the SIM protocol on the Switch. Syntax config sim [[commander {group_name <groupname 64>} | candidate] | dp_interval <sec 30-90> | hold_time <sec 100-255>]} Description This command is used to configure parameters of switches of the SIM.
Page 449 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5# config sim commander dp_interval 40 Command: config sim commander dp_interval 40 Success. DGS-3627:5# To change the hold time of the discovery protocol: DGS-3627:5# config sim hold_time 120 Command: config sim hold_time 120 Success.
Page 450 TFTP server. members – Enter this parameter to specify the members the user prefers to download firmware or switch configuration files to. The user may specify a member or members by adding one of the following: <mslist 1-32> – Enter a value, or values to specify which members of the SIM group will receive the firmware or switch configuration.
Page 451 TFTP server to which to upload configuration files. members – Enter this parameter to specify the members the user prefers to upload switch configuration or log files to. The user may specify a member or members by adding one of the following: <mslist>...
Page 452: Static Mac-Based Vlan Commands
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual The Static MAC-Based VLAN commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. For bridges that implement MAC-based VLAN classification, the VID associated with an Untagged or Priority-tagged Frame is determined based on the source MAC address.
Page 453 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual delete mac_based_vlan Purpose Syntax Description Parameters Restrictions Example usage To delete a static mac-based-vlan entry: DGS-3627:5# delete mac_based_vlan mac_address 00-00-00-00-00-01 vlan default Command: delete mac_based_vlan mac mac_address 00-00-00-00-00-01 vlan default Success.
Page 454 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5# show mac_based_vlan Command: show mac_based_vlan MAC Address VLAN ID ------------- ----------- 00-80-e0-14-a7-57 00-80-c2-33-c3-45 00-80-c2-33-c3-45 00-80-c2-33-c3-90 00-a2-44-17-32-98 Total Entries : 5 DGS-3627:5# Status Type ------------- ------------ Active Static...
Page 455: Ospf Equal-Cost Multi-Path Function Commands
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual OSPF E The OSPF ECMP function commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command config ecmp algorithm...
Page 456 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual show ecmp Purpose Syntax Description Parameters Restrictions Example usage: To show current ECMP related settings: DGS-3627:5# show ecmp Command: show ecmp ECMP for OSPF : Enabled ECMP Load Balance Algorithm : Destination Ip : used.
Page 457 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual disable ecmp ospf Purpose Syntax Description Parameters Restrictions Example usage: To disable OSPF ECMP function: DGS-3627:5#disable ecmp ospf Command: disable ecmp ospf Success. DGS-3627:5# Used to disable the OSPF ECMP function.
Page 458: Mac-Based Access Controlcommands
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual The MAC-based Access Control commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. MAC-based Access Control is a method to authenticate and authorizes a port/MAC network access right based on the MAC address on which the user is located rather than user’s identification (e.g.
Page 459: Config Mac_Based_Access_Control Password
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual enable mac_based_access_control Purpose Syntax Description Parameters Restrictions Example usage: To enable MAC-based access control: DGS-3627:5#enable mac_based_access_control Command: enable mac_based_access_control Success. DGS-3627:5# disable mac_based_access_control Purpose Syntax Description Parameters Restrictions...
Page 460 The user that does not pass the authentication will not be serviced by the switch. If the user pass the authentication, the user will be able to forward traffic operated under the assigned VLAN configuration.
Page 461: Config Mac_Based_Access_Control Method
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To config the MAC-based access control port state: DGS-3627:5# config enable Command: config mac_based_access_control ports 1:1-1:8 state enable Success. DGS-3627:5# config mac_based_access_control method Purpose Syntax Description...
Page 462 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5# config mac_based_access_control guest_vlan ports 1-8 Command: config mac_based_access_control guest_vlan ports 1-8 Success. DGS-3627:5# create mac_based_access_control Purpose Syntax Description Parameters Restrictions Example usage: To create MAC-based access control guest VLAN:...
Page 463 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual delete mac_based_access_control guest_vlan Purpose Syntax Description Parameters Restrictions Example usage: To de-assign a guest VLAN: DGS-3627:5#delete mac_based_access_control guest_vlan default Command: delete mac_based_access_control_guest_vlan default Success. DGS-3627:5# clear mac_based_access_control_auth mac...
Page 464 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual create mac_based_access_control_local mac Purpose Syntax Description Parameters Restrictions Example usage: To create MAC-based access control local: DGS-3627:5# create mac_based_access_control_local mac 00-00-00-00-00- 01 vlan default Command: create mac_based_access_control_local mac 00-00-00-00-00-01 vlan default Success.
Page 465 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual To config MAC-based access control local by VLAN: DGS-3627:5# config mac_based_access_control_local mac 00-00-00-00- 00-01 vlan RG Command: config mac_based_access_control_local mac 00-00-00-00-00-01 vlan RG Success. DGS-3627:5# delete mac_based_access_control_local Purpose...
Page 466 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual show mac_based_access_control Purpose Syntax Description Parameters Restrictions Example usage To show MAC-based access control: DGS-3627:5# show mac_based_access_control Command: show mac_based_access_control MAC Based Access Control ------------------------------------ State Method Password...
Page 467 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual show mac_based_access_control_local Purpose Syntax Description Parameters Restrictions Example usage To show MAC-based access control local: DGS-3627:5#show mac_based_access_control_local Command: show mac_based_access_control_local MAC Address ----------------- 00-00-00-00-00-01 Total Entries:1 DGS-3627:5# To show MAC-based access control local by MAC address:...
Page 468 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual show mac_based_access_control auth_mac Purpose Used to display MAC-based access control authentication status. Syntax show mac_based_access_control auth_mac {ports <portlist>} Description The show mac_based_access_control auth_mac command is used to display MAC-based access control authentication status.
Page 469: Enable Rspan
The packet travels from the source switch through the intermediate switch, where the monitored packet is received, then to the switch where the sniffer is attached. To make the RSPAN work, for the source switch, the RSPAN VLAN source setting must be configured.
Page 470: Disable Rspan
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5# disable rspan Purpose Syntax Description Parameters Restrictions Example usage: To disable RSPAN: DGS-3627:5#disable rspan Command: disable rspan Success. DGS-3627:5# create rspan vlan Purpose Syntax Description Parameters Restrictions...
Page 471: Delete Rspan Vlan
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5# create rspan vlan vlan_id 6 Command: create rspan vlan vlan_id 6 Success. DGS-3627:5# delete rspan vlan Purpose Syntax Description Parameters Restrictions Example usage: To delete an RSPAN VLAN by VLAN name:...
Page 472: Config Rspan Vlan Source
Command: config rspan vlan vlan_name vlan2 source add ports 1:2-1:5 rx Success. DGS-3627:5# Used by the source switch to configure the source settings for the RSPAN VLAN. config rspan vlan [vlan_name <vlan_name>| vlan_id <vlanid 1- 4094>] source {[add | delete] ports <portlist> [rx | tx | both]}] This command configures the source setting for the RSPAN VLAN on the source switch.
Page 473: Config Rspan Vlan Redirect
DGS-3627:5# config rspan vlan vlan_id 2 redirect add port 1:18 Command: config rspan vlan vlan_id 2 redirect add port 1:18 DGS-3627:5# Used by the intermediate or the last switch to configure the output for the RSPAN mirrored packet. config rspan vlan [vlan_name <vlan_name>| vlan_id <vlanid 1- 4094>] redirect [add | delete] port <port>...
Page 474: Show Rspan
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual show rspan Purpose Syntax Description Parameters Restrictions Example usage: To display RSPAN: DGS-3627:5#show rspan Command: show rspan RSPAN : Enabled RSPAN VLAN ID -------------------- Source Port Redirect Port...
Page 475: Bpdu Tunnelling Commands
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual The BPDU Tunnelling commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Users at different sites connected across a service-provider network need to use various Layer 2 protocols to scale their topologies to include all remote sites, as well as the local sites.
Page 476 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#config bpdu_tunnel ports 1:1-1:4 type tunnel stp Command: config bpdu_tunnel ports 1:1-1:4 type tunnel stp Success. DGS-3627:5# show bpdu_tunnel Purpose Syntax Description Parameters Restrictions Example usage: To display the BPDU tunnelling state of all ports:...
Page 477 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Example usage: To enable BPDU tunnel: DGS-3627:5#enable bpdu_tunnel Command: enable bpdu_tunnel Success. DGS-3627:5# disable bpdu_tunnel Purpose Syntax Description Parameters Restrictions Example usage: To disable BPDU tunnel: DGS-3627:5#disable bpdu_tunnel Command: disable bpdu_tunnel Success.
Page 478: Enable Qinq
VLANs will run as SP-VLAN. All dynamically learned L2 address will be cleared. GVRP will be disabled automatically and STP will be disabled manually. If you need to run GVRP on the switch, you must first enable GVRP manually. All existing SP-VLANs will run as static 1Q VLANs.
Page 479: Disable Qinq
VLAN entries will be cleared, GVRP will be disabled automatically and STP will be disabled manually. If you need to run GVRP on the switch, you must first enable GVRP manually. All existing SP-VLANs will run as static 1Q VLANs. The default setting of QinQ is disabled.
Page 480 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#show qinq Command: show qinq QinQ Status : Enabled DGS-3627:5# config qinq port Purpose Syntax Description Parameters Restrictions Example usage: To configure port list 1-4 as NNI port, set outer TPID to 0x88a8:...
Page 481 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual show qinq port Purpose Syntax Description Parameters Restrictions Example usage: To display QinQ mode for ports 1 to 8 of unit 1: DGS-3627:5#show qinq ports 1:1-1:8 Command: show qinq ports 1:1-1:8...
Page 482 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual create vlan_translation Purpose Syntax Description Parameters Restrictions Example usage: To create VLAN translation rule which assign to add SP-VLAN 100 to C-VLAN 1-10 on ports 1 to 4 and the priority is 4:...
Page 483 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#delete vlan_translation ports 1:1-1:4 Command: delete vlan_translation ports 1:1-1:4 Success. DGS-3627:5# show vlan_translation Purpose Syntax Description Parameters Restrictions Example usage: To show vlan translations rules on the system:...
Page 484: Config Loopdetect
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual The Loopback Detection commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command config loopdetect config loopdetect ports enable loopdetect...
Page 485: Config Loopdetect Ports
Only Administrator and Operator-level users can issue this command. Used to globally enable loop-back detection on the switch. enable loopdetect Used to globally enable loop-back detection on the switch. The default is enabled. None. Only Administrator-level users can issue this command.
Page 486: Show Loopdetect Ports
Parameters Restrictions Example usage: To show loopdetect ports 1 to 9 on unit 1: Used to display the current loop-back detection settings on the switch. show loopdetect Used to display the current loop-back detection settings on the switch None. None.
Page 487: Config Loopdetect Trap
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#show loopdetect ports 1:1-1:9 Command: show loopdetect ports 1:1-1:9 Port LoopDetect State ------ ------------------ ---------- Disabled Disabled Disabled Disabled Disabled Disabled Disabled Disabled Disabled DGS-3627:5# config loopdetect trap...
Page 488: Command History List
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual The switch history commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command config command_history show command_history Each command is listed, in detail, in the following sections.
Page 489 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3627:5#? clear clear address_binding dhcp_snoop binding_entry ports clear arptable clear attack_log clear counters clear dhcp_binding clear fdb clear log clear mac_based_access_control auth_mac clear port_security_entry port config 802.1p default_priority config 802.1p user_priority...
Page 490 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual config command_history Purpose Syntax Description Parameters Restrictions Example usage To configure the command history: DGS-3627:5#config command_history 20 Command: config command_history 20 Success. DGS-3627:5# show command_history Purpose Syntax Description...
Page 491: Technical Specifications
® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual IEEE 802.3 10BASE-T Ethernet Protocols IEEE 802.3u 100BASE-TX Fast Ethernet IEEE 802.3ab 1000BASE-T Gigabit Ethernet IEEE 802.3z 1000BASE-T (SFP “Mini GBIC”) IEEE 802.1D Spanning Tree IEEE 802.1s Multiple Spanning Tree IEEE 802.1w Rapid Spanning Tree...
Page 492 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual DGS-3650: DGS-3612G: 12 x 100/1000Mbps SFP ports DGS-3612: Input: 100~240V, AC/1.3A, 50~60Hz Internal Power Supply Output: 12V, 10A (MAX) Power Consumption DGS-3627 – 72.3W DGS-3627G – 77W DGS-3650 – 131.3W DGS-3612G –...
Page 493 ® xStack DGS-3600 Series Layer 3 Gigabit Ethernet Managed Switch CLI Manual Transmission Method Store-and-forward Packet Buffer 2 MB per device Packet 14,881 pps (10M port) Filtering/Forwarding 148.810 pps (100M port) Rate 1,488,100 pps (1Gbps port) MAC Address Automatic update. Supports 16K MAC address.

This manual is also suitable for:

Xstack dgs-3650 series Xstack dgs-3627 series Xstack dgs-3627g series Xstack dgs-3612 series