Summary of Contents for Extreme Networks EAS 100-24t Switch CLI
Page 1
Extreme Networks EAS 100-24t Switch CLI Manual Layer 2 Managed Gigabit Switch Release 1.00 Extreme Networks, Inc. 3585 Monroe Street Santa Clara, California 95051 (888) 257-3000 (408) 579-2800 http://www.extremenetworks.com Published: July 2011 Part number: 120705-00 Rev. 01...
Page 2
Unified Access Architecture, Unified Access RF Manager, UniStack, XNV, the Extreme Networks logo, the Alpine logo, the BlackDiamond logo, the Extreme Turbodrive logo, the Summit logos, and the Powered by ExtremeXOS logo are trademarks or registered trademarks of Extreme Networks, Inc. or its subsidiaries in the United States and/or other countries.
Access Authentication Control Commands ......................254 MAC-based Access Control Commands ......................278 Multiple Authentication Commands ........................289 SSH Commands..............................290 SSL Commands ..............................297 Chapter 10: Support ..........................305 Technical Support Commands ..........................305 Appendix A: System Log Entries......................309 Appendix B: Trap List ..........................317 Extreme Networks EAS 100-24t Switch CLI Manual...
Page 5
Introduction C H A P T E R The Extreme Networks EAS 100-24t Switch CLI Manual contains information for the setup and management of the switch. This manual is intended for network managers familiar with network management concepts and terminology. This manual provides a reference for all of the commands contained in the CLI.
In the above example, the switch was assigned an IP address of 10.1.1.1 with a subnet mask of 255.0.0.0. The system message Success indicates that the command was executed successfully. The switch can Extreme Networks EAS 100-24t Switch CLI Manual...
Telnet program (in VT-100 compatible terminal mode) to access and control the switch. All of the screens are identical, whether accessed from the console port or from a Telnet interface. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 8
After the switch reboots and you have logged in, the console looks like this: Figure 4: Initial Console Screen after logging in EAS 100-24t Gigabit Ethernet Switch Command Line Interface Firmware: Build 1.00.002 Copyright (C) 2000-2011 Extreme Networks. All rights reserved. UserName:admin PassWord: EAS 100-24t:admin# Commands are entered at the command prompt, #.
Page 9
[ ] indicate required parameters. If a command is entered that is unrecognized by the CLI, the top-level commands will be displayed under the Available commands: prompt. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 10
Extreme Networks EAS 100-24t Switch CLI Manual...
In the above syntax example, users must specify either admin, or user. Do not type the vertical bar. Example Command create account admin ctsnow {braces} Purpose Encloses an optional value or set of optional arguments. Syntax reset {[config | system]} {force_agree} Extreme Networks EAS 100-24t Switch CLI Manual...
Page 12
Stops the display of remaining pages when multiple pages are to be displayed. Refreshes the pages currently displayed. Displays the remaining pages without pausing between pages. Enter Displays the next line or table entry. Extreme Networks EAS 100-24t Switch CLI Manual...
NOTE: If the Link Status field for an interface displays "Link Up", the value displayed in the Cable Length field may not be accurate for the interface. Parameters <portlist> - Specifies a range of ports to be tested. all - All ports Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Command: cable_diag ports 21-24 Perform Cable Diagnostics ... Port Type Link Status Test Result Cable Length (M) ---- ------- -------------- -------------------------- ----------------- Link Up Link Down No Cable Link Down No Cable Link Down No Cable Extreme Networks EAS 100-24t Switch CLI Manual...
There can be multiple V6 addresses defined on an interface. Thus, as a new address is defined, it is added on this ipif. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Basic Switch Commands The Basic switch commands in the CLI are listed (along with the appropriate parameters) in the following table: Command Parameters create account [admin | user] <username 15> config account <username> show account Extreme Networks EAS 100-24t Switch CLI Manual...
<username> – Name of the administrator account. user <username> – Name of the user account. Restrictions Only Administrator-level users can issue this command. Usernames can be between 1 and 15 characters. Passwords can be between 0 and 15 characters. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 18
Purpose Used to display user accounts. Syntax show account Description This command is used to display all user accounts created on the switch. Up to eight user accounts can exist at one time. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 19
Used to display a list of currently logged-in users. Syntax show session Description This command is used to display a list of all the users that are logged-in at the time the command is issued. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 20
CTRL+C ESC q Quit SPACE n Next Page p Previous Page r Refresh show switch Purpose Used to display general information about the switch. Syntax show switch Description This command is used to display information about the switch. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 21
CTRL+C ESC q Quit SPACE n Next Page ENTER Next Entry a All show serial_port Purpose Used to display the current serial port settings. Syntax show serial_port Description This command is used to display the current serial port settings. Parameters None. Restrictions None Extreme Networks EAS 100-24t Switch CLI Manual...
Page 22
15_minutes - The console will log out the current user if there is no user input for 15 minutes. Restrictions Only Administrator-level users can issue this command. Example usage: To configure the baud rate: #config serial_port baud_rate 115200 Command: config serial_port baud_rate 115200 Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 23
To disable pausing of the screen display when show command output reaches the end of the page: #disable clipaging Command: disable clipaging Success. enable telnet Purpose Used to enable communication with and management of the switch using the Telnet protocol. Syntax enable telnet {<tcp_port_number 1-65535>} Extreme Networks EAS 100-24t Switch CLI Manual...
Page 24
Command: disable telnet Success. telnet Purpose Used to Telnet another device on the network. Syntax telnet <ipaddr> {tcp_port <value 0-65535>} Description This command is used to connect to another device’s management through Telnet. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 25
Used to disable the HTTP-based management software on the switch. Syntax disable web Description This command disables the Web-based management software on the switch. Parameters None. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 26
#save config Command: save config Saving all configurations to NV-RAM..Done. Success. To save the switch’s current log to non-volatile RAM: #save log Command: save log Saving all log information to NV-RAM..Done. Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 27
Used to reset the switch to the factory default settings. Syntax reset {[config | system]} {force_agree} Description This command is used to restore the switch’s configuration to the default settings assigned from the factory. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 28
Command: reset system Are you sure you want to proceed with system reset, save and reboot?(y/n) Load Factory Default Configuration... Done. Saving all configurations to NV-RAM.. Done. Please wait, the switch is rebooting... Extreme Networks EAS 100-24t Switch CLI Manual...
Page 29
To terminate the current user’s console session: #logout clear Purpose This command is used to clear the terminal screen. Syntax clear Description This command is used to clear the terminal screen. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 30
This command is used to configure the jumbo frame setting as disable. Parameters None. Restrictions Only Administrator-level users can issue this command. Example usage: To disable jumbo frame: #disable jumbo_frame Command: disable jumbo_frame Success. Extreme Networks EAS 100-24t Switch CLI Manual...
[default | <value 20-80>] show terminal_line Each command is listed, in detail, in the following sections: download Purpose Used to download and install new firmware or a switch configuration file from a TFTP server. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 32
Connecting to server....Done. Download configuration....Done. Success. #------------------------------------------------------------------- EAS 100-24t Configuration Firmware: Build 1.00.002 Copyright (C) 2000-2011 Extreme Networks. All rights reserved. #------------------------------------------------------------------- # BASIC config serial_port baud_rate 115200 auto_logout never config terminal_line default Extreme Networks EAS 100-24t Switch CLI Manual...
Page 33
Command: config firmware image_id 1 boot_up Success. show firmware information Purpose Used to display the firmware section information. Syntax show firmware information Description This command is used to display the firmware section information. Parameters None. Restrictions None Extreme Networks EAS 100-24t Switch CLI Manual...
Page 34
CLI configuration command. Parameters current_config – Display system configuration from the DRAM database, i.e. the current system setting. config_in_nvram – Display the system configuration from NV-RAM. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 35
To display all system configurations from the DRAM database: EAS 100-24t:4#show config config_in_nvram Command: show config config_in_nvram #------------------------------------------------------------------- EAS 100-24t Configuration Firmware: Build 1.00.002 Copyright (C) 2000-2011 Extreme Networks. All rights reserved. #------------------------------------------------------------------- # BASIC config serial_port baud_rate 115200 auto_logout never # ACCOUNT LIST create account admin admin...
Page 36
#ping 10.48.74.121 times 4 Command: ping 10.48.74.121 Reply from 10.48.74.121, time<10ms Reply from 10.48.74.121, time<10ms Reply from 10.48.74.121, time<10ms Reply from 10.48.74.121, time<10ms Ping statistics for 10.48.74.121 Packets: Sent =4, Received =4, Lost =0 Extreme Networks EAS 100-24t Switch CLI Manual...
Page 37
<value 30000-64900> - The port number. It must be above 1024. The value range is between 30000 and 64900. probe <value 1-9> - The number of probes. The range is from 1 to 9. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 38
Used to show the number of rows which can be displayed on the screen. Syntax show terminal_line Description This command is used to show the number of rows which can be displayed on the screen. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 39
Switch Utility Commands Example usage: To show the current number of rows that can be displayed: #show terminal_line Command: show terminal_line Terminal Line : 24 (Default) Extreme Networks EAS 100-24t Switch CLI Manual...
{<command>} – Entering the question mark with an appropriate command will list all the corresponding parameters for the specified command, along with a brief description of the commands function and similar commands having the same words in the command. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Description: config user account Purpose Used to display all commands in the CLI. Syntax Description This command is used to display all of the commands available through the CLI. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Up to 40 of the latest executed commands may be viewed. Restrictions Only Administrator-level users can issue this command. Example usage To configure the command history: #config command_history 20 Command: config command_history 20 Success. Extreme Networks EAS 100-24t Switch CLI Manual...
DHCP packets can cross. The default hops value is 4. time <sec 0-65535> - If this time is exceeded; the switch will not relay the DHCP packet. The default time value is 0. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
DHCP/BOOTP relay table. Parameters [System] - The name of the IP interface that contains the IP address below. <ipaddr> - The DHCP server IP address. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 46
To show a single IP destination of the DHCP relay configuration: #show dhcp_relay ipif System Command: show dhcp_relay ipif System Interface Server 1 Server 2 Server 3 Server 4 --------- ----------- ------------ ----------- -------------- System 10.58.44.6 Extreme Networks EAS 100-24t Switch CLI Manual...
To disable DHCP relay: #disable dhcp_relay Command: disable dhcp_relay Success. LLDP Commands The LLDP commands in the CLI are listed (along with the appropriate parameters) in the following table: Command Parameters enable lldp Extreme Networks EAS 100-24t Switch CLI Manual...
Page 48
LLDP packets advertised from the neighbor in the neighbor table. The default state for LLDP is disabled. Parameters None. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 49
The Tx delay defines the minimum interval between the sending of LLDP messages due to constant changes of MIB content. An re-enabled LLDP port will wait for reinit_delay after last disable command before reinitializing Extreme Networks EAS 100-24t Switch CLI Manual...
Page 50
To configure the delay-interval interval: # config lldp tx_delay 8 Command: config lldp tx_delay 8 Success. To change the re-initialization delay interval: # config lldp reinit_delay 5 Command: config lldp reinit_delay 5 Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 51
The management addresses that are added in the list will be advertised in the LLDP from the specified interface associated with each management address. The interface for that management address will be also advertised in the if- index form. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 52
<ipaddr> - Specifies the IPv4 address. enable - Specifies that the management address option will be enabled. disable - Specifies that the management address option will be disabled. basic_tlvs - Specifies the basic TLVS used. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 53
If EAPOL, GVRP, STP (including MSTP), and LACP protocol identity is enabled on this port and it is enabled to be advertised, then this protocol identity will be advertised. The default state is disable. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 54
- Specifies that the Dot3 TLVS option will be disabled. Restrictions Only Administrator-level users can issue this command. Example usage To change the port SNMP notification state: # config lldp ports 1-5 notification enable Command: config lldp ports 1-5 notification enable Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 55
To configure the Port AND Protocol VLAN ID TLV from the outbound LLDP advertisements for all ports: # config lldp ports all dot1_tlv_protocol_vid vlanid 1 disable Command: config lldp ports all dot1_tlv_protocol_vid vlanid 1 disable Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 56
Description When LLDP is disabled and LLDP forward message is enabled, the received LLDPDU packets will be forwarded. The default state is disable. Parameters None. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 57
Purpose Used to display the LLDP management address information. Syntax show lldp mgt_addr {[ipv4 <ipaddr>]} Description This command is used to display LLDP management address information. Parameters ipv4 - IP address of IPV4. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 58
This command is used to display the LLDP per port configuration for advertisement options. Parameters <portlist> - Specify a range of ports to be displayed. When port list is not specified, information for all ports will be displayed. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 59
When a port list is not specified, information for all ports will be displayed. brief - Display the information in brief mode. normal - Display the information in normal mode. This is the default display mode. detailed - Display the information in detailed mode. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 60
Auto-negotiation Operational MAU Type : 0010(hex) Power Via MDI : Not Supported Link Aggregation Aggregation Capability : Aggregated Aggregation Status : Not Currently In Aggregation Aggregation Port ID Maximum Frame Size : 1536 Extreme Networks EAS 100-24t Switch CLI Manual...
Page 61
When a port list is not specified, information for all ports will be displayed. brief - Display the information in brief mode. normal - Display the information in normal mode. This is the default display mode. detailed - Display the information in detailed mode. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 62
Protocol ID Entries Count MAC/PHY Configuration/Status : (None) Power Via MDI : (None) Link Aggregation : (None) Maximum Frame Size Unknown TLVs Count CTRL+C ESC q Quit SPACE n Next Page ENTER Next Entry a All Extreme Networks EAS 100-24t Switch CLI Manual...
Page 63
To display global statistics information: # show lldp statistics Command: show lldp statistics Last Change Time : 6094 Number of Table Insert Number of Table Delete Number of Table Drop Number of Table Ageout Extreme Networks EAS 100-24t Switch CLI Manual...
Purpose Used to configure the command prompt. Syntax config command_prompt [<string 16> | username | default] Description Administrator level users can use this command to change the command prompt. Extreme Networks EAS 100-24t Switch CLI Manual...
EAS 100-24t Gigabit Ethernet Switch Command Line Interface Firmware: Build 1.00.002 Copyright (C) 2000-2011 Extreme Networks All rights reserved. ================================================================================ Network Management (SNMP) Commands The switch supports the Simple Network Management Protocol (SNMP) versions 1, 2c, and 3. You can specify which version of the SNMP you want to use to monitor and control the switch.
Page 69
– Adding this parameter will add no encryption. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 70
Used to display information about each SNMP username in the SNMP group username table. Syntax show snmp user Description This command is used to display information about each SNMP username in the SNMP group username table. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 71
Command: create snmp view exnview 1.3.6 view_type included Success. delete snmp view Purpose Used to remove an SNMP view entry previously created on the switch. Syntax delete snmp view <view_name 32> [all | <oid>] Extreme Networks EAS 100-24t Switch CLI Manual...
Page 72
This command is used to display an SNMP view previously created on the switch. Parameters <view_name 32> - An alphanumeric string of up to 32 characters that identifies the SNMP view that will be displayed. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 73
- Specifies that SNMP community members using the community string created with this command can read from and write to the contents of the MIBs on the switch. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 74
<community_string 32> - An alphanumeric string of up to 32 characters that is used to identify members of an SNMP community. This string is used like a password to give remote SNMP managers access to MIB objects in the switch’s SNMP agent. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 75
Used to display the identification of the SNMP engine on the switch. Syntax show snmp engineID Description This command is used to display the identification of the SNMP engine on the switch. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 76
<view_name 32> - An alphanumeric string of up to 32 characters that is used to identify the group of MIB objects that a remote SNMP manager is allowed to access on the switch. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 77
This command is used to display the group names of SNMP groups currently configured on the switch. The security model, level, and status of each group are also displayed. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 78
Purpose Used to create a recipient of SNMP traps generated by the switch’s SNMP agent. Syntax create snmp [host <ipaddr>] [v1 | v2c | v3 [noauth_nopriv | auth_nopriv | auth_priv]] <auth_string 32> Extreme Networks EAS 100-24t Switch CLI Manual...
Page 79
This command is used to delete a recipient of SNMP traps generated by the switch’s SNMP agent. Parameters <ipaddr> – The IP address of a remote SNMP manager that will receive SNMP traps generated by the switch’s SNMP agent. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 80
Host IP Address SNMP Version Community Name / SNMPv3 User Name --------------- --------------- --------------------------------- 10.48.76.23 V3 noauthnopriv initial 10.48.74.100 public Total Entries create trusted_host Purpose Used to create a trusted host. Syntax create trusted_host [<ipaddr> | network <network_address>] Extreme Networks EAS 100-24t Switch CLI Manual...
Page 81
<ipaddr> - The IP address of the trusted host. <network_address> – The network address of the trusted network. all – All trusted hosts will be deleted. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 82
Used to display a list of trusted hosts entered on the switch using the create trusted_host command above. Syntax show trusted_host Description This command is used to display a list of trusted hosts entered on the switch using the create trusted_host command above. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 83
This command is used to disable SNMP authentication trap support. Syntax disable snmp authenticate_traps Description This command is used to disable SNMP authentication trap support. Parameters None. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 84
This command is used to disable SNMP linkchange trap support. Parameters None. Restrictions Only Administrator-level users can issue this command. Example usage: To disable SNMP linkchange trap support: #disable snmp linkchange_traps Command: disable snmp linkchange_traps Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 85
Syntax config snmp linkchange_traps ports [all | <portlist>] [enable | disable] Description This command is used to configure the sending of linkchange traps and per port control for the sending of change traps. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 86
: Enabled Authenticate Traps : Enabled Linkchange Traps : Enabled config snmp system_contact Purpose Used to enter the name of a contact person who is responsible for the switch. Syntax config snmp system_contact {<sw_contact>} Extreme Networks EAS 100-24t Switch CLI Manual...
Page 87
{<sw_name>} Description This command is used to configure the name of the switch. Parameters <sw_name> - A maximum of 128 characters is allowed. A NULL string is accepted if no name is desired. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 88
Description This command is used, in conjunction with the enable rmon command above, to enable and disable remote monitoring (RMON) on the switch. Parameters None. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
[<index 1-4> | all] show syslog host {<index 1-4>} config log_save_timing [time_interval <min 1-65535> | on_demand | log_trigger] show log_save_timing delete ipif [System] [ipv6address <ipv6networkaddr>] enable ipif_ipv6_link_local_auto [System] disable ipif_ipv6_link_local_auto [System] show ipif_ipv6_link_local_auto Extreme Networks EAS 100-24t Switch CLI Manual...
Page 90
This command is used to display all of the packet error statistics collected and logged by the switch for a given port list. Parameters <portlist> - Specifies a port or range of ports to be displayed. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 91
Purpose This command is used to display the DRAM utilization statistics. Syntax show utilization dram Description This command is used to display the DRAM utilization statistics. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 92
This command is used to display the utilization statistics per port. Parameters ports – Entering this parameter will display the current port utilization of the switch. <portlist> – Specifies a range of ports to be displayed. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 93
<portlist> - Specifies a port or range of ports to be displayed. Restrictions Only Administrator-level users can issue this command. Example usage: To clear the counters: #clear counters ports 2-9 Command: clear counters ports 2-9 Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 94
0000-00-00 00:00:43 System cold start 0000-00-00 00:00:38 Port 1 link up, 100Mbps FULL duplex enable syslog Purpose Used to enable the system log to be sent to a remote host. Syntax enable syslog Extreme Networks EAS 100-24t Switch CLI Manual...
Page 95
Purpose Used to display the syslog protocol status as enabled or disabled. Syntax show syslog Description This command is used to display the syslog status as enabled or disabled. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 96
[local0 | local1 | local2 | local3 | local4 | local5 | local6 | local7] | udp_port <udp_port_number> | ipaddress [<ipaddr>] | state [enable | disable]} Description This command is used to create a new syslog host. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 98
[enable | disable] Allows the sending of syslog messages to the remote host, specified above, to be enabled and disabled. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 99
Facility may use any of the "local use" facilities or they may use the "user-level" Facility. Those Facilities that have been designated are shown in the following: Bold font indicates the facility values the switch currently supports. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 100
This corresponds to number 22 from the list above. local7 - Specifies that local use 7 messages will be sent to the remote host. This corresponds to number 23 from the list above. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 101
<index 1-4> - Specifies that the command will be applied to an index of hosts. There are four available indexes, numbered 1 through 4. all - Specifies that the command will be applied to all hosts. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 102
Used to configure the method of saving logs to the switch’s Flash memory. Syntax config log_save_timing [time_interval <min 1-65535> | on_demand | log_trigger] Description This command is used to configure the method used in saving logs to the switch’s Flash memory. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 103
[System] [ipv6address <ipv6networkaddr>] Description This command is used to delete an interface. The System interface cannot be deleted. By using this command, an IPv6 address can be deleted from the ipif. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 104
Used to disable the auto configuration of a link local address when no IPv6 address is configured. Syntax disable ipif_ipv6_link_local_auto [System] Description This command is used to disable the auto configuration of a link local address when no IPv6 address is explicitly configured. Extreme Networks EAS 100-24t Switch CLI Manual...
The maximum number of untransmitted mail messages placed in the queue cannot exceed 30 ● messages. Any new messages will be discarded if the queue is full. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 107
Only Administrator-level users can issue this command. Example usage: To enable SMTP on the switch: #enable smtp Command: enable smtp Success. disable smtp Purpose Used to disable the switch as a SMTP client. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 108
Up to eight e-mail addresses can be added per switch. delete mail_receiver <index 1-8> - Choose this parameter to delete mail recipients from the configured list. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 109
Index Mail Receiver Address -------- --------------------------------- mjones@domain.com djeffries@domain.com administrator@domain.com csmith@domain.com smtp send_testmsg Purpose Used to send a test message to mail recipients configured on the switch. Syntax smtp send_testmsg Extreme Networks EAS 100-24t Switch CLI Manual...
| disable] | [description <desc 32> | clear_description] | mdix [auto | normal | cross]} Description This command is used to configure the switch’s Ethernet ports. Only the ports listed in the <portlist> will be affected. Extreme Networks EAS 100-24t Switch CLI Manual...
If set to cross state, the port in mdi mode, can be connected to a port (in mdix mode) on another switch through a straight cable. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 112
– Use this to list disabled ports including connection status and reason for being disabled. media_type – Use this parameter the show the medium type of the ports. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 113
Enabled Auto/Disabled LinkDown Enabled Auto Enabled Auto/Disabled LinkDown Enabled Auto Enabled Auto/Disabled LinkDown Enabled Auto Enabled Auto/Disabled LinkDown Enabled Auto CTRL+C ESC q Quit SPACE n Next Page p Previous Page r Refresh Extreme Networks EAS 100-24t Switch CLI Manual...
Command: config sntp primary 10.1.1.1 secondary 10.1.1.2 poll-interval 30 Success. show sntp Purpose Used to display the SNTP information. Syntax show sntp Description This command is used to display SNTP settings information. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 116
To disable SNTP server support. Syntax disable sntp Description This command is used to disable SNTP support. SNTP service must be separately configured (see config sntp). Parameters None. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 117
UTC. The default time zone value is UTC +09:00 hour – Select the number of hours different from UTC. min – Select the number of minutes difference added or subtracted to adjust the time zone. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 118
– Configure the day of the week in which DST begins. <start_day sun-sat> - The day of the week in which DST begins expressed using a three character abbreviation (sun, mon, tue, wed, thu, fri, sat) Extreme Networks EAS 100-24t Switch CLI Manual...
Page 119
Used to display the current time settings and status. Syntax show time Description This command is used to display system time and date configuration as well as display current system time. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 120
: UTC +02:30 Daylight Saving Time: Repeating Offset in minutes : 30 Repeating From : Apr 2nd Tue 15:00 : Oct 2nd Wed 15:30 Annual From : 29 Apr 00:00 : 12 Oct 00:00 Extreme Networks EAS 100-24t Switch CLI Manual...
This command is used to enable the asymmetric VLAN function on the switch Parameters None. Restrictions Only Administrator-level users can issue this command. Example usage: To enable asymmetric VLANs: #enable asymmetric_vlan Command: enable asymmetric_vlan Success. Extreme Networks EAS 100-24t Switch CLI Manual...
This command is used to display the asymmetric VLAN state on the switch Parameters None. Restrictions None. Example usage: To display the asymmetric VLAN state currently set on the switch: #show asymmetric_vlan Command: show asymmetric_vlan Asymmetric VLAN: Enabled Extreme Networks EAS 100-24t Switch CLI Manual...
The switch will always forward traffic to the specified device through this port. Restrictions Only Administrator-level users can issue this command. Example usage: To create a unicast MAC FDB entry: #create fdb default 00-00-00-00-01-02 port 5 Command: create fdb default 00-00-00-00-01-02 port 5 Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 124
[add | delete] - add will add ports to the forwarding table. delete will remove ports from the multicast forwarding table. <portlist> - Specifies a port or range of ports to be configured. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 125
This command is used to delete a previous entry to the switch’s MAC address forwarding database. Parameters <vlan_name 32> - The name of the VLAN on which the MAC address resides. <macaddr> - The MAC address that will be added to the forwarding table. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 126
- Clears all dynamic entries to the switch’s forwarding database. Restrictions Only Administrator-level users can issue this command. Example usage: To clear all FDB dynamic entries: #clear fdb all Command: clear fdb all Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 127
<macaddr> - The MAC address that is present in the forwarding database table. static - Displays the static MAC address entries. aging_time - Displays the aging time for the MAC address forwarding database. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 128
To configure the multicast filtering mode to forward all groups on ports 1 through 4. #config multicast port_filtering_mode 1-4 forward_unregistered_groups Command: config multicast port_filtering_mode 1-4 forward_unregistered_groups Success. show multicast port_filtering_mode Purpose Used to show the multicast packet filtering mode for ports. Syntax show multicast port_filtering_mode Extreme Networks EAS 100-24t Switch CLI Manual...
Each command is listed, in detail, in the following sections: config igmp_snooping Purpose Used to configure IGMP snooping on the switch. Syntax config igmp_snooping [vlan_name <vlan_name 32> | vlanid <vidlist> | all] {state [enable | disable] | fast_leave [enable | disable]} Extreme Networks EAS 100-24t Switch CLI Manual...
Page 130
<vidlist> | all] {query_interval <sec 1-65535> | max_response_time <sec 1-25> | robustness_variable <value 1-255> | last_member_query_interval <sec 1-25> | state [enable | disable] | version <value 1-3>} Description This command is used to configure the IGMP snooping querier. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 131
Only Administrator-level users can issue this command. Example usage: To configure IGMP snooping querier: #config igmp_snooping querier vlan_name default query_interval 125 state enable Command: config igmp_snooping querier vlan_name default query_interval 125 state enable Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 132
[add | delete] - Specifies whether to add or delete forbidden ports of the specified VLAN. <portlist> - Specifies a range of ports that will be configured as forbidden router ports. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 133
IGMP control packet, and the disable igmp_snooping forward_mcrouter_only command will not take effect. The switch will learn the router port based on identification of the multicast routing protocol packet and the IGMP control packet. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 134
Parameters <vlan_name 32> - The name of the VLAN for which to view the IGMP snooping configuration. <vidlist> - The VID range of the configuration to be displayed. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 135
- Displays router ports that have been statically configured. dynamic - Displays router ports that have been dynamically configured. forbidden - Displays forbidden router ports that have been statically configured. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 136
#show igmp_snooping group Command: show igmp_snooping group Source/Group : NULL/239.255.255.255 VLAN Name/VID : default/1 Reports Member Ports Router Ports Up time : 122 Expire Time : 260 Filter Mode : EXCLUDE Total Entries Extreme Networks EAS 100-24t Switch CLI Manual...
The Link Aggregation commands in the CLI are listed (along with the appropriate parameters) in the following table: Parameters Command create link_aggregation group_id <value> {type [lacp | static]} delete link_aggregation group_id <value> config link_aggregation group_id <value> {master_port <port> | ports <portlist> | state [enable | disable]} Extreme Networks EAS 100-24t Switch CLI Manual...
Page 138
<value> - Specifies the group ID. The switch allows up to 8 link aggregation groups to be configured. The group number identifies each of the groups. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 139
This command is used to configure the part of the packet examined by the switch when selecting the egress port for transmitting load-sharing data. This feature is only available using the address-based load-sharing algorithm. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 140
The group number identifies each of the groups. algorithm - Allows users to specify the display of link aggregation by the algorithm in use by that switch. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 141
“active” LACP ports (see above). Restrictions Only Administrator-level users can issue this command. Example usage: To configure LACP port mode settings: #config lacp_ports 1-12 mode active Command: config lacp_ports 1-12 mode active Success. Extreme Networks EAS 100-24t Switch CLI Manual...
The default is disabled. enable – Set port loopback detection status to enable. disable - Set port loopback detection status to disable. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 144
Used to globally disable the loopback detection on the switch. Syntax disable loopdetect Description This command is used to globally disable the loopback detection on the switch. The default value is disabled. Parameters None. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 145
This command will display the switch’s current per-port loopback detection configuration and status. Parameters <portlist> – Specifies a range of ports to be displayed. all – To display all the ports in the system, use the all parameter. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 146
There is a global limitation of the maximum entries supported for the static MAC-based entry. Parameters mac_address – The MAC address. vlan – The VLAN to be associated with the MAC address. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
In the following example, MAC address “00:80:c2:33:c3:45” is assigned to VLAN 300 by manual configuration. It is assigned to VLAN 400 by 802.1X. Since 802.1X has higher priority than manual configuration, the manual configured entry will become inactive. Extreme Networks EAS 100-24t Switch CLI Manual...
The MLD Snooping commands in the CLI are listed (along with the appropriate parameters) in the following table. Command Parameters config mld_snooping [vlan <vlan_name 32> | vlanid <vidlist> | all] {state [enable | disable] | fast_done [enable | disable]} Extreme Networks EAS 100-24t Switch CLI Manual...
To configure the MLD snooping to the default VLAN with the state enabled: #config mld_snooping vlan default state enable Command: config mld_snooping vlan default state enable Success. config mld_snooping querier Purpose Used to configure the timers and the attributes of the MLD snooping querier. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 150
Only Administrator-level users can issue this command. Example usage: To configure the MLD snooping querier query interval to 125 seconds and state enable: #config mld_snooping querier vlan default query_interval 125 Command: config mld_snooping querier vlan default query_interval 125 Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 151
<vlan_name 32> - The name of the VLAN on which the forbidden router port resides. [add | delete] - Specifies to add or delete the forbidden router ports. <portlist> - Specifies a range of ports to be configured. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 152
This command is used to disable MLD snooping on the switch. Disabling MLD snooping allows all MLD and IPv6 multicast traffic to flood within a switch by default. Parameters None. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 153
: 125 Max Response Time : 10 Robustness Value Last Listener Query Interval : 1 Querier Router Behavior : Non-Querier State : Disabled Fast Done : Disabled Receive Query Count Total Entries: 1 Extreme Networks EAS 100-24t Switch CLI Manual...
Page 154
Used to display the currently configured router ports on the switch. Syntax show mld_snooping mrouter_ports {[vlan <vlan_name 32> | vlanid <vidlist>]} {[static | dynamic | forbidden]} Description This command is used to display the currently configured router ports on the switch. Extreme Networks EAS 100-24t Switch CLI Manual...
VLANs associated with them. These instances will be classified by an instance_id. MSTP will connect multiple spanning trees with a Common and Internal Spanning Tree (CIST). The CIST will automatically determine each MSTP Extreme Networks EAS 100-24t Switch CLI Manual...
Page 156
<portlist> instance_id <value 0-4> {internalCost [auto | <value 1-200000000>] | priority <value 0-240>} show stp show stp ports {<portlist>} {instance <value 0-4>} show stp instance {<value 0-4>} show stp mst_config_id Extreme Networks EAS 100-24t Switch CLI Manual...
Page 157
To disable STP on the switch: #disable stp Command: disable stp Success. config stp version Purpose Used to globally set the version of STP on the switch. Syntax config stp version [mstp | rstp | stp] Extreme Networks EAS 100-24t Switch CLI Manual...
Page 158
This command is used to set up the Spanning Tree Protocol (STP) for the entire switch. All commands here will be implemented for the STP version that is currently set on the switch. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 159
[true | false] | restricted_tcn [true | false] | p2p [true | false | auto] | state [enable | disable] | fbpdu [enable | disable]} Description This command is used to create and configure STP for a group of ports. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 160
2. Forwarding BPDU must be globally enabled. To globally disable STP, use the disable stp command, to globally enable fbpdu, use the config stp command. The default is enable. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 161
STP regions in a network but each region only supports a maximum of five spanning tree instances (one unchangeable default entry). VIDs can belong to only one spanning tree instance at a time. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 162
This command is used to delete a previously configured STP instance ID from the switch. Parameters <value 1-4> - Enter a value between 1 and 4 to identify the Spanning Tree instance on the switch. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 163
Information entered here will be attached to BPDU packets as an identifier for the MSTP region to which it belongs. Switches having the same revision_level and name will be considered as part of the same MSTP region. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 164
<value 0-240> - Enter a value between 0 and 240 to set the priority for the port interface. A higher priority will designate the interface to forward packets first. A lower number denotes a higher priority. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 165
STP Bridge Global Settings --------------------------- STP Status : Enabled STP Version : STP compatible Max Age : 20 Hello Time Forward Delay : 15 Max Hops : 20 TX Hold Count Forwarding BPDU : Enabled Extreme Networks EAS 100-24t Switch CLI Manual...
Page 166
Used to display the switch’s current STP ports configuration. Syntax show stp ports {<portlist>} {instance <value 0-4>} Description This command is used to display the STP port settings for a specified port or group of ports. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 167
<value 0-4> - Enter a value defining the previously configured instance_id on the switch. An entry of 0 will display the STP configuration for the CIST internally set on the switch. Restrictions None Extreme Networks EAS 100-24t Switch CLI Manual...
Page 168
CTRL+C ESC q Quit SPACE n Next Page p Previous Page r Refresh show stp mst_config_id Purpose Used to display the MSTP configuration identification. Syntax show stp mst_config_id Description This command is used to display the switch’s current MSTP configuration identification. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 170
This command is used to configure broadcast/multicast/unicast storm control. By adding the new software traffic control mechanism, the user can now use both a hardware and software mechanism, the latter of which will now provide shutdown, and recovery for the switch. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 171
5 minutes. <secs 5-30> - The Interval may be set between 5 and 30 seconds with the default setting of 5 seconds. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 172
Count Time hold Storm Storm Storm down Interval ---- ------- --------- --------- -------- -------- ----- -------- Disabled Disabled Disabled drop Disabled Disabled Disabled drop Disabled Disabled Disabled drop Disabled Disabled Disabled drop Total Entries Extreme Networks EAS 100-24t Switch CLI Manual...
- Mirrors all the packets received or sent by the port or ports in the port list. Restrictions The Target port cannot be listed as a source port. Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 174
Only Administrator-level users can issue this command. Example usage: To enable mirroring configurations: #enable mirror Command: enable mirror Success. disable mirror Purpose Used to disable a previously entered port mirroring configuration. Syntax disable mirror Extreme Networks EAS 100-24t Switch CLI Manual...
Page 175
This command displays the current port mirroring configuration on the switch. Parameters None Restrictions None. Example usage: To display mirroring configuration: #show mirror Command: show mirror Current Settings Mirror Status : Enabled Target Port Mirrored Port RX : TX : 5-7 Extreme Networks EAS 100-24t Switch CLI Manual...
(Aging Time is set using the FDB command). DeleteOnReset – The locked addresses will not age out until the switch has been reset. Permanent – The locked addresses will not age out. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
<auth_portlist> Description This command is used to clear MAC address entries which were learned by the switch by a specified port. This command only relates to the port security function. Extreme Networks EAS 100-24t Switch CLI Manual...
If this name already exists, then ProtocolGroup1ALT1 will be used instead. Restrictions Only Administrator-level users can issue this command. Example usage: To create a protocol group: # create dot1v_protocol_group group_id 1 group_name General_Group Command: create dot1v_protocol_group group_id 1 group_name General_Group Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 180
Command: config dot1v_protocol_group group_id 1 delete protocol ethernet_2 0x86DD The protocol value configured to delete will take effect on both frame types ethernet_2 and ieee802.3_snap. Success. delete dot1v_protocol_group Purpose Used to delete a protocol group. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 181
# show dot1v_protocol_group group_id 1 Command: show dot1v_protocol_group group_id 1 Protocol Group ID Protocol Group Name Frame Type Protocol Value ----------------- -------------------------------- -------------- -------------- General_Group EthernetII 86dd General_Group IEEE802.3 SNAP 86dd Total Entries: 1 Extreme Networks EAS 100-24t Switch CLI Manual...
Page 182
Parameters portlist – Specifies a range of ports to be displayed. If not specified, information for all ports will be displayed. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 183
[<vidlist> | all] show vlan_translation cvid {<vidlist>} Each command is listed, in detail, in the following sections: enable qinq Purpose This command is used to enable the Q-in-Q mode. Syntax enable qinq Extreme Networks EAS 100-24t Switch CLI Manual...
SP-VLANs will run as static 1Q VLANs. The default setting of Q-in-Q is disabled. Parameters None. Restrictions Only Administrator-level users can issue this command. Example usage: To disable Q-in-Q: #disable qinq Command: disable qinq Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 185
To show the Q-in-Q status for ports 1 to 4: #show qinq ports 1-4 Command: show qinq ports 1-4 Port Role Outer TPID VLAN Translation ---- ---- ---------- ---------------- 0x88a8 Disabled 0x88a8 Disabled 0x88a8 Disabled 0x88a8 Disabled Total Entries Extreme Networks EAS 100-24t Switch CLI Manual...
Page 186
– The S-VLAN ID that replaces the C-VLAN ID or is inserted in the packet. <vlanid 1-4094> - A VLAN ID between 1 and 4094. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 187
Used to show VLAN translation rules. Syntax show vlan_translation cvid {<vidlist>} Description The command used to show configured VLAN translation configurations. Parameters cvid - The Q-in-Q translation rules for the specified C-VID list. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
<portlist> - Specifies a range of ports for the forwarding list. This list must be on the same switch previously specified for traffic segmentation (i.e. following the <portlist> specified above for config traffic_segmentation). Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
---- -------------------------------------------------- 1-24 1-24 1-24 1-24 1-24 1-24 1-24 1-24 1-24 1-24 1-24 1-24 1-24 1-24 1-24 1-24 1-24 1-24 CTRL+C ESC q Quit SPACE n Next Page ENTER Next Entry a All Extreme Networks EAS 100-24t Switch CLI Manual...
VLAN cannot be configured to have forbidden ports. Restrictions Each VLAN name can be up to 32 characters. Up to 4094 static VLANs may be created per configuration. Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
This command is used to add ports to the port list of a previously configured VLAN. The user can specify the additional ports as tagging, untagging, or forbidden. The default is to assign the ports as untagging. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 192
<vidlist> - Specifies a range of multiple VLAN IDs to be created. advertisement - Join GVRP or not. If not, the VLAN can’t join dynamically. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 193
If the ports will join GVRP or not with the advertisement parameter can also be specified. The name parameter allows the name of the VLAN that needs to be modified to be specified. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 194
This command is used to enable auto-assignment of PVID. Parameters None. Restrictions Only Administrator-level users can issue this command. Example usage: To enable auto-assignment of PVID: #enable pvid auto_assign Command: enable pvid auto_assign Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 195
Description This command is used to configure the Group VLAN Registration Protocol on the switch. Ingress checking, the sending and receiving of GVRP information, and the Port VLAN ID (PVID) can be configured. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 196
GVRP on the switch, without changing the GVRP configuration on the switch. Parameters None. Restrictions Only Administrator-level users can issue this command. Example usage: To enable the generic VLAN Registration Protocol (GVRP): #enable gvrp Command: enable gvrp Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 197
<vlan_name 32> - The VLAN name of the VLAN for which to display a summary of settings. vlanid <vidlist> - Specifies a range of multiple VLAN IDs to be displayed. ports <portlist> - Specifies a port or range of ports that will be displayed. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 198
This command is used to display the GVRP status for a port list on the switch. Parameters <portlist> - Specifies a port or range of ports for which the GVRP status is to be displayed. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 199
All Frames Disabled Enabled All Frames Disabled Enabled All Frames Disabled Enabled All Frames Disabled Enabled All Frames Disabled Enabled All Frames Disabled Enabled All Frames Disabled Enabled All Frames Total Entries : 10 Extreme Networks EAS 100-24t Switch CLI Manual...
Page 200
Chapter 5: Layer 2 Features Extreme Networks EAS 100-24t Switch CLI Manual...
<ipaddr> - The IP address of the end node or station. <macaddr> - The MAC address corresponding to the IP address above. Restrictions Only Administrator-level users can issue this command. The switch supports up to 255 static ARP entries. Extreme Networks EAS 100-24t Switch CLI Manual...
Specifying all clears the switch’s ARP table. Parameters <ipaddr> - The IP address of the end node or station. all - Deletes all ARP entries. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
ARP table entry was made, resides on. ipaddress <ipaddr> - The network address corresponding to the IP interface name above. static – Displays the static entries to the ARP table. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 204
ARP table. Static ARP table entries are not affected. Parameters None. Restrictions Only Administrator-level users can issue this command. Example Usage: To remove dynamic entries in the ARP table: #clear arptable Command: clear arptable Success. Extreme Networks EAS 100-24t Switch CLI Manual...
To add the default static address 10.48.74.121, with a metric setting of 1, to the routing table: #create iproute default 10.48.74.121 1 Command: create iproute default 10.48.74.121 1 Success. delete iproute Purpose Used to delete a default IP route entry from the switch’s IP routing table. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 206
To display the contents of the IP routing table: #show iproute Command: show iproute Routing Table IP Address/Netmask Gateway Interface Hops Protocol --------------- ---------- ----------- ---- ----------- 0.0.0.0 10.1.1.254 System Default 10.0.0.0/8 10.48.74.122 System Local Total Entries: 2 Extreme Networks EAS 100-24t Switch CLI Manual...
Page 207
- Delete the dynamic entries. Restrictions Only Administrator-level users can issue this command. Example usage: To delete a neighbor cache: #delete ipv6 neighbor_cache ipif System 3ffc::1 Command: delete ipv6 neighbor_cache ipif System 3ffc::1 Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 208
<metric 1-65535> - Allows the entry of a routing protocol metric entry representing the number of routers between the switch and the IP address above. The default setting is 1. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 209
Used to display the interface’s information. Syntax show ipv6 nd {ipif <ipif_name 12>} Description This command is used to display the IPv6 ND related configuration. Parameters <ipif_name> - The name of the interface. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 210
This command is used to configure neighbor solicitation related arguments. Parameters <ipif_name 12> - The name of the interface. retrans_time - The neighbor solicitation’s retransmit timer in milliseconds. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 211
Routing Table Commands Example usage: To configure the IPv6 nd ns interface: #config ipv6 nd ns ipif System retrans_time 10000 Command: config ipv6 nd ns ipif System retrans_time 10000 Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 212
Chapter 6: Layer 3 Features Extreme Networks EAS 100-24t Switch CLI Manual...
#config bandwidth_control 1 rx_rate 64 Command: config bandwidth_control 1 rx_rate 64 Note: To perform precise bandwidth control, it is required to enable the flow control to mitigate the retransmission of TCP traffic. Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 215
The four hardware priority queues are identified by number - from 0 to 3 - with the 0 queue being the lowest priority. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 216
Command: show scheduling QOS Output Scheduling Class ID Weight --------- ------------- Class-0 Class-1 Class-2 Class-3 config scheduling_mechanism Purpose Used to configure the scheduling mechanism for the QoS function Syntax config scheduling_mechanism [strict | weight_fair] Extreme Networks EAS 100-24t Switch CLI Manual...
Page 217
Used to display the current traffic scheduling mechanisms in use on the switch. Syntax show scheduling_mechanism Description This command is used to display the current traffic scheduling mechanisms in use on the switch. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 218
<class_id 0-3> - The number of the switch’s hardware priority queue. The switch has four hardware priority queues available. They are numbered between 0 (the lowest priority) and 3 (the highest priority). Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 219
Used to configure the 802.1p default priority settings on the switch. If an untagged packet is received by the switch, the priority configured with this command will be written to the packet’s priority field. Syntax config 802.1p default_priority [<portlist> | all] <priority 0-7> Extreme Networks EAS 100-24t Switch CLI Manual...
Page 220
This command is used to display the currently configured 802.1p priority value that will be assigned to an incoming, untagged packet before being forwarded to its destination. Parameters <portlist> - Specifies a port or range of ports to be displayed. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 221
- Enable Ethernet frame based priority. 802.1p - Enable 802.1p CoS ip - Enable IP frame based priority. tos – Here the user can enable ToS dscp – Here the user can enable DSCP. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 222
<portlist> - Specifies a range of ports to be displayed. If no parameter is specified, the all ports priority settings will be shown. all – Specifies that all the ports will be displayed. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 223
<class_id 0-3> - The number of the switch’s hardware priority queue. The switch has four hardware priority queues available. They are numbered between 0 (the lowest priority) and 3 (the highest priority). Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 224
<class_id 0-3> - The number of the switch’s hardware priority queue. The switch has four hardware priority queues available. They are numbered between 0 (the lowest priority) and 3 (the highest priority). Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 225
DSCP value mapping to traffic class will be shown. Restrictions None. Example usage: To show the DSCP map to traffic class: #show dscp_mapping Command: show dscp_mapping DSCP Class CTRL+C ESC q Quit SPACE n Next Page ENTER Next Entry a All Extreme Networks EAS 100-24t Switch CLI Manual...
Page 226
Chapter 7: Quality of Service (QoS) Extreme Networks EAS 100-24t Switch CLI Manual...
Let’s further specify in the new rule to deny access to a range of IP addresses through an individual port: In this example, we want to filter any packets that Extreme Networks EAS 100-24t Switch CLI Manual...
Page 229
Purpose Used to delete a previously created access profile. Syntax delete access_profile [profile_id <value 1-256> | all] Description This command is used to delete a previously created access profile on the switch. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 230
This command is used to configure an access profile on the switch and to enter specific values that will be combined, using a logical AND operational method, with masks entered with the create access_profile command, above. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 231
- Specifies that the switch will examine the Internet Group Management Protocol (IGMP) field within each packet. type <value 0-255> - Specifies that the switch will examine each frame’s IGMP Type field. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 232
The user can also configure “all” to specify all ports. permit – Specifies that packets that match the access profile are permitted to be forwarded by the switch. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 233
Success. show access_profile Purpose Used to display the currently configured access profiles on the switch. Syntax show access_profile {profile_id <value 1-256>} Description This command is used to display the currently configured access profiles. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 234
Type: IPv4 Frame Filter – ICMP Masks Option VLAN Source IP Dest. IP DSCP Prot ---------------- --------------- --------------- ---- ---- 0xFFF 20.0.0.0 10.0.0.0 ICMP Total Profile Entries: 1 Total Used Rule Entries: 0 Total Unused Rule Entries: 256 Extreme Networks EAS 100-24t Switch CLI Manual...
The dropped packets. Remark_dscp: Mark the packet with a specified DSCP. The packet will also be set to high drop precedence. Delete – Delete the specified flow meter. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 236
Violate : Drop Profile ID : 1 Access ID : 2 Mode : Single-rate Two-color Rate: 2000(Kbps) Burst Size:1016(Kbyte) Actions: Conform : Permit Violate : Permit Replace_dscp : 20 Total Flow Meter Entries: 2 Extreme Networks EAS 100-24t Switch CLI Manual...
Page 237
<server_index 1-3> {ipaddress [<server_ip>] | key <passwd 32> | auth_port <udp_port_number 1-65535> | acct_port <udp_port_number 1-65535> } config radius parameter {timeout <int 1-255> | retransmit <int 1-255>} show radius show auth_statistics {ports <portlist>} show auth_diagnostics {ports <portlist>} show auth_session_statistics {ports <portlist>} Extreme Networks EAS 100-24t Switch CLI Manual...
This command is used to disable the 802.1X Network Access control application on the switch. Parameters None. Restrictions Only Administrator-level users can issue this command. Example usage: To disable 802.1x on the switch: #disable 802.1x Command: disable 802.1x Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 239
Description This command is used to display the current authentication state of the 802.1X server on the switch. Parameters ports <portlist> - Specifies a port or range of ports to view. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 240
Success Authorized ForceAuth Success Authorized ForceAuth Success Authorized ForceAuth Success Authorized ForceAuth Success Authorized ForceAuth Success Authorized ForceAuth Success Authorized CTRL+C ESC q Quit SPACE n Next Page ENTER Next Entry a All Extreme Networks EAS 100-24t Switch CLI Manual...
Page 241
Restrictions Only Administrator-level users can issue this command. Example usage: To configure 802.1X capability on ports 1 to 10: #config 802.1x capability ports 1–10 authenticator Command: config 802.1x capability ports 1–10 authenticator Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 242
[enable | disable] - Determines whether or not the switch will re-authenticate. Enabled causes re-authentication of users at the time interval specified in the Re-authentication Period field, above. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 243
<portlist> - Specifies a port or range of ports to be configured. all - Specifies all of the ports on the switch. mac_address <macaddr> - Enter the MAC address to be initialized. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 244
<server_index 1-3> [<server_ip>] key <passwd 32> [default | {auth_port<udp_port_number 1-65535> | acct_port <udp_port_number 1-65535> }] Description This command is used to configure the settings the switch will use to communicate with a RADIUS server. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 245
Up to three groups of RADIUS server settings can be entered on the switch. Restrictions Only Administrator-level users can issue this command. Example usage: To delete previously configured RADIUS server communication settings: #config radius delete 1 Command: config radius delete 1 Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 246
<int 1-255> - The time in second for waiting server reply. The default value is 5 seconds. retransmit <int 1-255> - The count for re-transmit. The default value is 2. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 247
Purpose Used to display the current RADIUS accounting client. Syntax show acct_client Description This command is used to display the current RADIUS accounting client currently configured on the switch. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 248
Purpose Used to display the current RADIUS authentication client. Syntax show auth_client Description This command is used to display the current RADIUS authentication client currently configured on the switch. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 249
{ports <portlist>} Description This command is used to display the current authentication diagnostics of the switch on a per port basis. Parameters ports <portlist> - Specifies a range of ports. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 250
This command is used to display the current authentication session statistics of the switch on a per port basis. Parameters ports <portlist> - Specifies a range of ports. all – Specifies that all ports will be viewed. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 251
{ports <portlist>} Description This command is used to display the current authentication statistics of the switch on a per port basis. Parameters ports <portlist> - Specifies a range of ports. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 252
Only Administrator-level users can issue this command. Example usage: To create an 802.1X user: #create 802.1x user dbrown Command: create 802.1x user dbrown Enter a case-sensitive new password:****** Enter the new password again for confirmation:****** Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 253
<username 15> - A username can be as many as 15 alphanumeric characters. Restrictions Only Administrator-level users can issue this command. Example usage: To delete 802.1X users: #delete 802.1x user dbrown Command: delete 802.1x user dbrown Success. Extreme Networks EAS 100-24t Switch CLI Manual...
(TACACS / XTACACS / TACACS+ / RADIUS / local / none) for authentication. These techniques will be listed in an order of preference, and defined by the user for normal user authentication on the switch, and may contain up to eight authentication techniques. When a user Extreme Networks EAS 100-24t Switch CLI Manual...
Page 256
In addition, the switch will now accept the local enable password as the authentication for normal users attempting to access administrator level privileges. Parameters None. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 257
Multiple method lists must be created and configured separately. Parameters <string 15> - Enter an alphanumeric string of up to 15 characters to define the given method list. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 258
(See the enable admin part of this section for more detailed information, concerning the enable admin command.) Extreme Networks EAS 100-24t Switch CLI Manual...
Page 259
NOTE: Entering none or local as an authentication protocol will override any other authentication that follows it on a method list or on the default method list. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 260
Purpose Used to display a previously configured user defined method list of authentication methods for users logging on to the switch. Syntax show authen_login [default | method_list_name <string 15> | all] Extreme Networks EAS 100-24t Switch CLI Manual...
Page 261
Administrator. A maximum of eight enable method lists can be implemented on the switch. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 262
Successful authentication using any of these methods will give the user an “Admin” level privilege. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 263
“config admin local_password” command. none – Adding this parameter will require no authentication to access the administration level privileges on the switch. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 264
Restrictions Only Administrator-level users can issue this command. Example usage: To delete the user-defined method list “Permit” #delete authen_enable method_list_name Permit Command: delete authen_enable method_list_name Permit Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 265
Keyword refers to authentication using a technique INSTEAD of TACACS/XTACACS/TACACS+/RADIUS which are local (authentication through the local_enable password on the switch) and none (no authentication necessary to access any function on the switch). Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 266
[default| method_list_name <string 15>] Description This command is used to configure switch configuration applications (console, telnet, ssh, web) for login at the user level and at the administration level (authen_enable) utilizing a previously configured method list. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 267
This command is used to display all of the authentication method lists (login, enable administrator privileges) for switch configuration applications (console, telnet, SSH, Web) currently configured on the switch. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 268
TACACS/XTACACS/TACACS+/RADIUS are separate entities and are not compatible with each other. The maximum supported number of server hosts is 16. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 269
Used to configure a user-defined authentication server host. Syntax config authen server_host <ipaddr> protocol [tacacs | xtacacs | tacacs+ | radius] {port <int 1-65535> | key [<key_string 254> | none] | timeout <int 1-255> | retransmit <int 1-255>} Extreme Networks EAS 100-24t Switch CLI Manual...
Page 271
TACACS server does not respond. This field is inoperable for the tacacs+ protocol. Key - Authentication key to be shared with a configured TACACS+ server and RADIUS server. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 272
<string 15> - Enter an alphanumeric string of up to 15 characters to define the newly created server group. Restrictions Only Administrator-level users can issue this command. Example usage: To create the server group “group_1”: #create authen server_group group_1 Command: create authen server_group group_1 Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 273
– Use this parameter to define the protocol if the server host is using the TACACS+ authentication protocol. radius – Use this parameter to define the protocol if the server host is using the RADIUS authentication protocol. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 274
Group Name - The name of the server group currently configured on the switch, including built in groups and user defined groups. IP Address - The IP address of the server host. Protocol - The authentication protocol used by the server host. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 275
The default value is 30 seconds. Restrictions Only Administrator-level users can issue this command. Example usage: To configure the response timeout for 60 seconds: #config authen parameter response_timeout 60 Command: config authen parameter response_timeout 60 Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 276
User attempts - The maximum number of attempts the user may try to become authenticated by the switch, before being locked out. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 277
When a user chooses the “local_enable” method to promote user level privileges to administrator privileges, he or she will be prompted to enter the password configured here that is set locally on the switch. Extreme Networks EAS 100-24t Switch CLI Manual...
Success. disable mac_based_access_control Purpose Used to disable MAC-based access control. Syntax disable mac_based_access_control Description This will disable MAC-based access control on the switch. Parameters None. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 280
This command specifies to authenticate via local database or via RADIUS server. Parameters local – Specify to authenticate via local database. radius – Specify to authenticate via RADIUS server. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 281
Command: config mac_based_access_control ports 1-8 state enable Success. clear mac_based_access_control auth_mac Purpose Used to reset the current state of a user. The re-authentication will be started after the user traffic is received again. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 282
VLAN. Restrictions Only Administrator-level users can issue this command. Example usage: To create a MAC-based access control local entry: #create mac_based_access_control_local mac 00-00-00-00-00-01 vlan default Command: create mac_based_access_control_local mac 00-00-00-00-00-01 vlan default Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 283
Parameters mac – Delete database by this MAC address. vlan – Delete database by this VLAN name. vlanid – Delete database by this VLAN ID. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 284
– Specifies that all the ports will be displayed. Restrictions None. Example usage: To display MAC-based access control: #show mac_based_access_control Command: show mac_based_access_control MAC Based Access Control ------------------------------------ State : Disabled Method : Local Password : default Max Users : 128 Extreme Networks EAS 100-24t Switch CLI Manual...
Page 285
None. Example usage To display MAC-based access control local databases: #show mac_based_access_control_local Command: show mac_based_access_control_local MAC Address VLAN NameVID ----------------- ---------------------- ------ 00-00-00-00-00-01 default1 00-00-00-00-00-02 v123123 00-00-00-00-00-03 v123123 00-00-00-00-00-04 default1 Total Entries: 4 Extreme Networks EAS 100-24t Switch CLI Manual...
Page 286
(target VLAN ID is 1234 in this example). MAC 00-00-00-00-00-03 failed to pass authentication, and packets with SA 00-00-00-00-00-03 will be ● dropped no matter which VLAN these packets are from. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 287
(for example VLAN) assigned by the RADUIS server or local database. Which attributes will be accepted depends on the individual module’s setting. Authorization for attributes is disabled by default. Parameters None. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 288
# disable authorization network Command: disable authorization network Success. show authorization Purpose Used to display authorization for attributes status. Syntax show authorization Description Used this to view authorization for attributes status. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Restrictions Only Administrator-level users can issue this command. Usage example: The following example sets the multiple authentication method of all ports to any: #config authentication auth_mode port_based Command: config authentication auth_mode port_based Success. Extreme Networks EAS 100-24t Switch CLI Manual...
4 Finally, enable SSH on the switch using the enable ssh command. After following the above steps, you can configure an SSH Client on the remote PC and manage the switch using secure, in-band communication. Extreme Networks EAS 100-24t Switch CLI Manual...
Command: enable ssh Success. disable ssh Purpose Used to disable SSH. Syntax disable ssh Description This command is used to disable SSH on the switch. Parameters None. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 292
Purpose Used to display the SSH authentication mode setting. Syntax show ssh authmode Description This command is used to display the current SSH authentication set on the switch. Parameters None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 293
Only Administrator-level users can issue this command. Usage example: To configure the SSH server: #config ssh server maxsession 2 contimeout 300 authfail 2 Command: config ssh server maxsession 2 contimeout 300 authfail 2 Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 294
– This parameter should be chosen to use the publickey on a SSH server for authentication. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
1 Key Exchange: The first part of the cyphersuite string specifies the public key algorithm to be used. This switch utilizes the Rivest Shamir Adleman (RSA) public key algorithm and the Digital Signature Algorithm (DSA), specified here as the DHE_DSS Diffie-Hellman (DHE) public key Extreme Networks EAS 100-24t Switch CLI Manual...
<ipaddr> certfilename <path_filename 64> keyfilename <path_filename 64> Each command is listed, in detail, in the following sections. enable ssl Purpose To enable the SSL function on the switch. Syntax enable ssl {ciphersuite {RSA_with_RC4_128_MD5 | RSA_with_3DES_EDE_CBC_SHA | DHE_DSS_with_3DES_EDE_CBC_SHA | RSA_EXPORT_with_RC4_40_MD5}} Extreme Networks EAS 100-24t Switch CLI Manual...
Page 299
Enabling the SSL function on the switch will disable the port for the web manager (port 80). To log on to the web based manager, the entry of the URL must begin with https://. (ex. https://10.1.1.1). Extreme Networks EAS 100-24t Switch CLI Manual...
Page 300
Success. To disable ciphersuite RSA_EXPORT_with_RC4_40_MD5 only: #disable ssl ciphersuite RSA_EXPORT_with_RC4_40_MD5 Command: disable ssl ciphersuite RSA_EXPORT_with_RC4_40_MD5 Success. config ssl cachetimeout Purpose Used to configure the SSL cache timeout. Syntax config ssl cachetimeout <value 60-86400> Extreme Networks EAS 100-24t Switch CLI Manual...
Page 301
#show ssl cachetimeout Command: show ssl cachetimeout Cache timeout is 600 second(s). show ssl Purpose Used to view the SSL status and the certificate file status on the switch. Syntax show ssl {certificate} Extreme Networks EAS 100-24t Switch CLI Manual...
Page 302
<path_filename 64> - Enter the path and the filename of the key exchange file users wish to download. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 303
Example usage: To download a certificate file and key file to the switch: #download ssl certificate 10.53.13.94 certfilename c:/cert.der keyfilename c:/ pkey.der Command: download ssl certificate 10.53.13.94 certfilename c:/cert.der keyfilename c:/pkey.der Certificate Loaded Successfully! Extreme Networks EAS 100-24t Switch CLI Manual...
This command is used to display technical support information. Syntax show tech_support Description It is especially useful for technical support personnel that need to view the overall device operation information. Parameters None. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Only Administrator-level users can issue this command. Example usage: To upload technical support information: # upload tech_support_toTFTP 10.0.0.66 tech_suppport.txt Command: upload tech_support_toTFTP 10.0.0.66 tech_suppport.txt Connecting to server....Done. Upload techsupport file....Done. Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 308
Chapter 10: Support Extreme Networks EAS 100-24t Switch CLI Manual...
Login failed through Telnet (Username: Warning <username>, IP: <ipaddr>) Logout through Telnet Logout through Telnet (Username: Informational <username>, IP: <ipaddr>) Telnet session timed out Telnet session timed out (Username: Informational <username>, IP: <ipaddr>) Extreme Networks EAS 100-24t Switch CLI Manual...
Page 311
AAA local method AAA local method (Username: <username>) Successful login through Successful login through Telnet from <userIP> Informational Telnet authenticated by authenticated by AAA local method AAA local method (Username: <username>) Extreme Networks EAS 100-24t Switch CLI Manual...
Page 312
AAA server (Username: <username>) Login failed through Login failed through Web(SSL) from <userIP> Warning Web(SSL) due to AAA due to AAA server timeout or improper server timeout or improper configuration (Username: <username>) configuration Extreme Networks EAS 100-24t Switch CLI Manual...
Page 313
AAA method (Username: <username>) local_enable method Successful Enable Admin Successful Enable Admin through SSH from Informational through SSH authenticated <userIP> authenticated by AAA local_enable by AAA local_enable method (Username: <username>) method Extreme Networks EAS 100-24t Switch CLI Manual...
Page 314
<userIP> authenticated by AAA server authenticated by AAA <serverIP> (Username: <username>) server Enable Admin failed Enable Admin failed through Web(SSL) from Warning through Web (SSL) <userIP> authenticated by AAA server authenticated by AAA <serverIP> (Username: <username>) server Extreme Networks EAS 100-24t Switch CLI Manual...
Page 315
Port <portNum> Broadcast storm is occurring Warning occurrence Broadcast storm cleared Port <portNum> Broadcast storm has cleared Informational Multicast storm occurrence Port <portNum> Multicast storm is occurring Warning Multicast storm cleared Port <portNum> Multicast storm has cleared Informational Extreme Networks EAS 100-24t Switch CLI Manual...
Page 316
Port <portNum> recovers from Loopback Informational Detection Loopback Detection Detection err-disabled state manually. err-disabled state manually. Port recovers from Port <portNum> recovers from Loopback Informational Loopback Detection Detection err-disabled state automatically. err-disabled state automatically. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 317
(but not from the notPresent state). This other state is indicated by the included value of ifOperStatus. Extreme Networks EAS 100-24t Switch CLI Manual...
The SNMP trap that is RFC2819 generated when an alarm 1.3.6.1.2.1.16.0.2 alarmVariable, (RMON-MIB) entry crosses its falling alarmSampleType, threshold and generates alarmValue, an event that is configured alarmFallingThreshold for sending SNMP traps. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 319
A lldpRemTablesChange LLDP notification is sent when the 1.0.8802.1.1.2.0.0.1 lldpStatsRemTablesDeletes, (LLDP-MIB) value of lldpStatsRemTablesDrops, lldpStatsRemTableLastChang eTime changes. It can be lldpStatsRemTablesAgeouts utilized by an NMS to trigger LLDP remote systems table maintenance polls. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 320
Appendix B: Trap List Extreme Networks EAS 100-24t Switch CLI Manual...