Page 1 Extreme Networks EAS 100-24t Switch CLI Manual Layer 2 Managed Gigabit Switch Release 1.00 Extreme Networks, Inc. 3585 Monroe Street Santa Clara, California 95051 (888) 257-3000 (408) 579-2800 http://www.extremenetworks.com Published: July 2011 Part number: 120705-00 Rev. 01...
Page 2 Unified Access Architecture, Unified Access RF Manager, UniStack, XNV, the Extreme Networks logo, the Alpine logo, the BlackDiamond logo, the Extreme Turbodrive logo, the Summit logos, and the Powered by ExtremeXOS logo are trademarks or registered trademarks of Extreme Networks, Inc. or its subsidiaries in the United States and/or other countries.
Page 3: Table Of Contents
Port Security Commands............................176 Protocol VLAN Commands...........................179 Q-in-Q Commands ...............................183 Traffic Segmentation Commands .........................188 VLAN Commands..............................190 Chapter 6: Layer 3 Features ........................201 ARP Commands..............................201 Routing Table Commands............................205 Chapter 7: Quality of Service (QoS)......................213 QoS Commands ..............................213 Extreme Networks EAS 100-24t Switch CLI Manual...
Page 4: Table Of Contents
Access Authentication Control Commands ......................254 MAC-based Access Control Commands ......................278 Multiple Authentication Commands ........................289 SSH Commands..............................290 SSL Commands ..............................297 Chapter 10: Support ..........................305 Technical Support Commands ..........................305 Appendix A: System Log Entries......................309 Appendix B: Trap List ..........................317 Extreme Networks EAS 100-24t Switch CLI Manual...
Page 5 Introduction C H A P T E R The Extreme Networks EAS 100-24t Switch CLI Manual contains information for the setup and management of the switch. This manual is intended for network managers familiar with network management concepts and terminology. This manual provides a reference for all of the commands contained in the CLI.
Page 6: Chapter 1: Introduction
In the above example, the switch was assigned an IP address of 10.1.1.1 with a subnet mask of 255.0.0.0. The system message Success indicates that the command was executed successfully. The switch can Extreme Networks EAS 100-24t Switch CLI Manual...
Page 7: Using The Console Cli
Telnet program (in VT-100 compatible terminal mode) to access and control the switch. All of the screens are identical, whether accessed from the console port or from a Telnet interface. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 8 After the switch reboots and you have logged in, the console looks like this: Figure 4: Initial Console Screen after logging in EAS 100-24t Gigabit Ethernet Switch Command Line Interface Firmware: Build 1.00.002 Copyright (C) 2000-2011 Extreme Networks. All rights reserved. UserName:admin PassWord: EAS 100-24t:admin# Commands are entered at the command prompt, #.
Page 9 [ ] indicate required parameters. If a command is entered that is unrecognized by the CLI, the top-level commands will be displayed under the Available commands: prompt. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 10 Extreme Networks EAS 100-24t Switch CLI Manual...
Page 11: Command Syntax
In the above syntax example, users must specify either admin, or user. Do not type the vertical bar. Example Command create account admin ctsnow {braces} Purpose Encloses an optional value or set of optional arguments. Syntax reset {[config | system]} {force_agree} Extreme Networks EAS 100-24t Switch CLI Manual...
Page 12 Stops the display of remaining pages when multiple pages are to be displayed. Refreshes the pages currently displayed. Displays the remaining pages without pausing between pages. Enter Displays the next line or table entry. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 13: Cable Diagnostics Commands
NOTE: If the Link Status field for an interface displays "Link Up", the value displayed in the Cable Length field may not be accurate for the interface. Parameters <portlist> - Specifies a range of ports to be tested. all - All ports Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 14: Chapter 2: Interface And Hardware
Command: cable_diag ports 21-24 Perform Cable Diagnostics ... Port Type Link Status Test Result Cable Length (M) ---- ------- -------------- -------------------------- ----------------- Link Up Link Down No Cable Link Down No Cable Link Down No Cable Extreme Networks EAS 100-24t Switch CLI Manual...
Page 15: Basic Ip Commands
There can be multiple V6 addresses defined on an interface. Thus, as a new address is defined, it is added on this ipif. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 16: Chapter 3: Fundamentals
Basic Switch Commands The Basic switch commands in the CLI are listed (along with the appropriate parameters) in the following table: Command Parameters create account [admin | user] <username 15> config account <username> show account Extreme Networks EAS 100-24t Switch CLI Manual...
Page 17: Basic Switch Commands
<username> – Name of the administrator account. user <username> – Name of the user account. Restrictions Only Administrator-level users can issue this command. Usernames can be between 1 and 15 characters. Passwords can be between 0 and 15 characters. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 18 Purpose Used to display user accounts. Syntax show account Description This command is used to display all user accounts created on the switch. Up to eight user accounts can exist at one time. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 19 Used to display a list of currently logged-in users. Syntax show session Description This command is used to display a list of all the users that are logged-in at the time the command is issued. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 20 CTRL+C ESC q Quit SPACE n Next Page p Previous Page r Refresh show switch Purpose Used to display general information about the switch. Syntax show switch Description This command is used to display information about the switch. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 21 CTRL+C ESC q Quit SPACE n Next Page ENTER Next Entry a All show serial_port Purpose Used to display the current serial port settings. Syntax show serial_port Description This command is used to display the current serial port settings. Parameters None. Restrictions None Extreme Networks EAS 100-24t Switch CLI Manual...
Page 22 15_minutes - The console will log out the current user if there is no user input for 15 minutes. Restrictions Only Administrator-level users can issue this command. Example usage: To configure the baud rate: #config serial_port baud_rate 115200 Command: config serial_port baud_rate 115200 Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 23 To disable pausing of the screen display when show command output reaches the end of the page: #disable clipaging Command: disable clipaging Success. enable telnet Purpose Used to enable communication with and management of the switch using the Telnet protocol. Syntax enable telnet {<tcp_port_number 1-65535>} Extreme Networks EAS 100-24t Switch CLI Manual...
Page 24 Command: disable telnet Success. telnet Purpose Used to Telnet another device on the network. Syntax telnet <ipaddr> {tcp_port <value 0-65535>} Description This command is used to connect to another device’s management through Telnet. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 25 Used to disable the HTTP-based management software on the switch. Syntax disable web Description This command disables the Web-based management software on the switch. Parameters None. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 26 #save config Command: save config Saving all configurations to NV-RAM..Done. Success. To save the switch’s current log to non-volatile RAM: #save log Command: save log Saving all log information to NV-RAM..Done. Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 27 Used to reset the switch to the factory default settings. Syntax reset {[config | system]} {force_agree} Description This command is used to restore the switch’s configuration to the default settings assigned from the factory. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 28 Command: reset system Are you sure you want to proceed with system reset, save and reboot?(y/n) Load Factory Default Configuration... Done. Saving all configurations to NV-RAM.. Done. Please wait, the switch is rebooting... Extreme Networks EAS 100-24t Switch CLI Manual...
Page 29 To terminate the current user’s console session: #logout clear Purpose This command is used to clear the terminal screen. Syntax clear Description This command is used to clear the terminal screen. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 30 This command is used to configure the jumbo frame setting as disable. Parameters None. Restrictions Only Administrator-level users can issue this command. Example usage: To disable jumbo frame: #disable jumbo_frame Command: disable jumbo_frame Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 31: Switch Utility Commands
[default | <value 20-80>] show terminal_line Each command is listed, in detail, in the following sections: download Purpose Used to download and install new firmware or a switch configuration file from a TFTP server. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 32 Connecting to server....Done. Download configuration....Done. Success. #------------------------------------------------------------------- EAS 100-24t Configuration Firmware: Build 1.00.002 Copyright (C) 2000-2011 Extreme Networks. All rights reserved. #------------------------------------------------------------------- # BASIC config serial_port baud_rate 115200 auto_logout never config terminal_line default Extreme Networks EAS 100-24t Switch CLI Manual...
Page 33 Command: config firmware image_id 1 boot_up Success. show firmware information Purpose Used to display the firmware section information. Syntax show firmware information Description This command is used to display the firmware section information. Parameters None. Restrictions None Extreme Networks EAS 100-24t Switch CLI Manual...
Page 34 CLI configuration command. Parameters current_config – Display system configuration from the DRAM database, i.e. the current system setting. config_in_nvram – Display the system configuration from NV-RAM. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 35 To display all system configurations from the DRAM database: EAS 100-24t:4#show config config_in_nvram Command: show config config_in_nvram #------------------------------------------------------------------- EAS 100-24t Configuration Firmware: Build 1.00.002 Copyright (C) 2000-2011 Extreme Networks. All rights reserved. #------------------------------------------------------------------- # BASIC config serial_port baud_rate 115200 auto_logout never # ACCOUNT LIST create account admin admin...
Page 36 #ping 10.48.74.121 times 4 Command: ping 10.48.74.121 Reply from 10.48.74.121, time<10ms Reply from 10.48.74.121, time<10ms Reply from 10.48.74.121, time<10ms Reply from 10.48.74.121, time<10ms Ping statistics for 10.48.74.121 Packets: Sent =4, Received =4, Lost =0 Extreme Networks EAS 100-24t Switch CLI Manual...
Page 37 <value 30000-64900> - The port number. It must be above 1024. The value range is between 30000 and 64900. probe <value 1-9> - The number of probes. The range is from 1 to 9. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 38 Used to show the number of rows which can be displayed on the screen. Syntax show terminal_line Description This command is used to show the number of rows which can be displayed on the screen. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 39 Switch Utility Commands Example usage: To show the current number of rows that can be displayed: #show terminal_line Command: show terminal_line Terminal Line : 24 (Default) Extreme Networks EAS 100-24t Switch CLI Manual...
Page 40 Chapter 3: Fundamentals Extreme Networks EAS 100-24t Switch CLI Manual...
Page 41: Command History Commands
{<command>} – Entering the question mark with an appropriate command will list all the corresponding parameters for the specified command, along with a brief description of the commands function and similar commands having the same words in the command. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 42: Chapter 4: Management
Description: config user account Purpose Used to display all commands in the CLI. Syntax Description This command is used to display all of the commands available through the CLI. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 43: Command History Commands
Up to 40 of the latest executed commands may be viewed. Restrictions Only Administrator-level users can issue this command. Example usage To configure the command history: #config command_history 20 Command: config command_history 20 Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 44: Dhcp Relay Commands
DHCP packets can cross. The default hops value is 4. time <sec 0-65535> - If this time is exceeded; the switch will not relay the DHCP packet. The default time value is 0. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 45: Dhcp Relay Commands
DHCP/BOOTP relay table. Parameters [System] - The name of the IP interface that contains the IP address below. <ipaddr> - The DHCP server IP address. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 46 To show a single IP destination of the DHCP relay configuration: #show dhcp_relay ipif System Command: show dhcp_relay ipif System Interface Server 1 Server 2 Server 3 Server 4 --------- ----------- ------------ ----------- -------------- System 10.58.44.6 Extreme Networks EAS 100-24t Switch CLI Manual...
Page 47: Lldp Commands
To disable DHCP relay: #disable dhcp_relay Command: disable dhcp_relay Success. LLDP Commands The LLDP commands in the CLI are listed (along with the appropriate parameters) in the following table: Command Parameters enable lldp Extreme Networks EAS 100-24t Switch CLI Manual...
Page 48 LLDP packets advertised from the neighbor in the neighbor table. The default state for LLDP is disabled. Parameters None. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 49 The Tx delay defines the minimum interval between the sending of LLDP messages due to constant changes of MIB content. An re-enabled LLDP port will wait for reinit_delay after last disable command before reinitializing Extreme Networks EAS 100-24t Switch CLI Manual...
Page 50 To configure the delay-interval interval: # config lldp tx_delay 8 Command: config lldp tx_delay 8 Success. To change the re-initialization delay interval: # config lldp reinit_delay 5 Command: config lldp reinit_delay 5 Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 51 The management addresses that are added in the list will be advertised in the LLDP from the specified interface associated with each management address. The interface for that management address will be also advertised in the if- index form. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 52 <ipaddr> - Specifies the IPv4 address. enable - Specifies that the management address option will be enabled. disable - Specifies that the management address option will be disabled. basic_tlvs - Specifies the basic TLVS used. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 53 If EAPOL, GVRP, STP (including MSTP), and LACP protocol identity is enabled on this port and it is enabled to be advertised, then this protocol identity will be advertised. The default state is disable. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 54 - Specifies that the Dot3 TLVS option will be disabled. Restrictions Only Administrator-level users can issue this command. Example usage To change the port SNMP notification state: # config lldp ports 1-5 notification enable Command: config lldp ports 1-5 notification enable Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 55 To configure the Port AND Protocol VLAN ID TLV from the outbound LLDP advertisements for all ports: # config lldp ports all dot1_tlv_protocol_vid vlanid 1 disable Command: config lldp ports all dot1_tlv_protocol_vid vlanid 1 disable Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 56 Description When LLDP is disabled and LLDP forward message is enabled, the received LLDPDU packets will be forwarded. The default state is disable. Parameters None. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 57 Purpose Used to display the LLDP management address information. Syntax show lldp mgt_addr {[ipv4 <ipaddr>]} Description This command is used to display LLDP management address information. Parameters ipv4 - IP address of IPV4. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 58 This command is used to display the LLDP per port configuration for advertisement options. Parameters <portlist> - Specify a range of ports to be displayed. When port list is not specified, information for all ports will be displayed. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 59 When a port list is not specified, information for all ports will be displayed. brief - Display the information in brief mode. normal - Display the information in normal mode. This is the default display mode. detailed - Display the information in detailed mode. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 60 Auto-negotiation Operational MAU Type : 0010(hex) Power Via MDI : Not Supported Link Aggregation Aggregation Capability : Aggregated Aggregation Status : Not Currently In Aggregation Aggregation Port ID Maximum Frame Size : 1536 Extreme Networks EAS 100-24t Switch CLI Manual...
Page 61 When a port list is not specified, information for all ports will be displayed. brief - Display the information in brief mode. normal - Display the information in normal mode. This is the default display mode. detailed - Display the information in detailed mode. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 62 Protocol ID Entries Count MAC/PHY Configuration/Status : (None) Power Via MDI : (None) Link Aggregation : (None) Maximum Frame Size Unknown TLVs Count CTRL+C ESC q Quit SPACE n Next Page ENTER Next Entry a All Extreme Networks EAS 100-24t Switch CLI Manual...
Page 63 To display global statistics information: # show lldp statistics Command: show lldp statistics Last Change Time : 6094 Number of Table Insert Number of Table Delete Number of Table Drop Number of Table Ageout Extreme Networks EAS 100-24t Switch CLI Manual...
Page 64: Modify Banner And Prompt Commands
Purpose Used to configure the command prompt. Syntax config command_prompt [<string 16> | username | default] Description Administrator level users can use this command to change the command prompt. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 65: Modify Banner And Prompt Commands
Banner Editor: • Quit without save: Ctrl+C • Save and quit: Ctrl+W • Move cursor: Left/Right/Up/Down • Delete line: Ctrl+D • Erase all setting: Ctrl+X • Reload original setting: Ctrl+L Extreme Networks EAS 100-24t Switch CLI Manual...
Page 66 To modify the banner: #config greeting_message Command: config greeting_message Greeting Messages Editor ================================================================================ EAS 100-24t Gigabit Ethernet Switch Command Line Interface Firmware: Build 1.00.002 Copyright (C) 2000-2011 Extreme Networks All rights reserved. ================================================================================ <Function Key> <Control Key> Ctrl+C Quit without save left/right/ Ctrl+W...
Page 67: Network Management (Snmp) Commands
EAS 100-24t Gigabit Ethernet Switch Command Line Interface Firmware: Build 1.00.002 Copyright (C) 2000-2011 Extreme Networks All rights reserved. ================================================================================ Network Management (SNMP) Commands The switch supports the Simple Network Management Protocol (SNMP) versions 1, 2c, and 3. You can specify which version of the SNMP you want to use to monitor and control the switch.
Page 68 <SNMP_name 32> <groupname 32> {encrypted [by_password auth [md5 <auth_password 8-16> | sha <auth_password 8- 20>] priv [none |des <priv_password 8-16>]|by_key auth [ md5 <auth_key 32-32> | sha <auth_key 40-40>] priv[ none | des <priv_key 32-32>]]} Extreme Networks EAS 100-24t Switch CLI Manual...
Page 69 – Adding this parameter will add no encryption. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 70 Used to display information about each SNMP username in the SNMP group username table. Syntax show snmp user Description This command is used to display information about each SNMP username in the SNMP group username table. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 71 Command: create snmp view exnview 1.3.6 view_type included Success. delete snmp view Purpose Used to remove an SNMP view entry previously created on the switch. Syntax delete snmp view <view_name 32> [all | <oid>] Extreme Networks EAS 100-24t Switch CLI Manual...
Page 72 This command is used to display an SNMP view previously created on the switch. Parameters <view_name 32> - An alphanumeric string of up to 32 characters that identifies the SNMP view that will be displayed. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 73 - Specifies that SNMP community members using the community string created with this command can read from and write to the contents of the MIBs on the switch. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 74 <community_string 32> - An alphanumeric string of up to 32 characters that is used to identify members of an SNMP community. This string is used like a password to give remote SNMP managers access to MIB objects in the switch’s SNMP agent. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 75 Used to display the identification of the SNMP engine on the switch. Syntax show snmp engineID Description This command is used to display the identification of the SNMP engine on the switch. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 76 <view_name 32> - An alphanumeric string of up to 32 characters that is used to identify the group of MIB objects that a remote SNMP manager is allowed to access on the switch. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 77 This command is used to display the group names of SNMP groups currently configured on the switch. The security model, level, and status of each group are also displayed. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 78 Purpose Used to create a recipient of SNMP traps generated by the switch’s SNMP agent. Syntax create snmp [host <ipaddr>] [v1 | v2c | v3 [noauth_nopriv | auth_nopriv | auth_priv]] <auth_string 32> Extreme Networks EAS 100-24t Switch CLI Manual...
Page 79 This command is used to delete a recipient of SNMP traps generated by the switch’s SNMP agent. Parameters <ipaddr> – The IP address of a remote SNMP manager that will receive SNMP traps generated by the switch’s SNMP agent. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 80 Host IP Address SNMP Version Community Name / SNMPv3 User Name --------------- --------------- --------------------------------- 10.48.76.23 V3 noauthnopriv initial 10.48.74.100 public Total Entries create trusted_host Purpose Used to create a trusted host. Syntax create trusted_host [<ipaddr> | network <network_address>] Extreme Networks EAS 100-24t Switch CLI Manual...
Page 81 <ipaddr> - The IP address of the trusted host. <network_address> – The network address of the trusted network. all – All trusted hosts will be deleted. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 82 Used to display a list of trusted hosts entered on the switch using the create trusted_host command above. Syntax show trusted_host Description This command is used to display a list of trusted hosts entered on the switch using the create trusted_host command above. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 83 This command is used to disable SNMP authentication trap support. Syntax disable snmp authenticate_traps Description This command is used to disable SNMP authentication trap support. Parameters None. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 84 This command is used to disable SNMP linkchange trap support. Parameters None. Restrictions Only Administrator-level users can issue this command. Example usage: To disable SNMP linkchange trap support: #disable snmp linkchange_traps Command: disable snmp linkchange_traps Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 85 Syntax config snmp linkchange_traps ports [all | <portlist>] [enable | disable] Description This command is used to configure the sending of linkchange traps and per port control for the sending of change traps. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 86 : Enabled Authenticate Traps : Enabled Linkchange Traps : Enabled config snmp system_contact Purpose Used to enter the name of a contact person who is responsible for the switch. Syntax config snmp system_contact {<sw_contact>} Extreme Networks EAS 100-24t Switch CLI Manual...
Page 87 {<sw_name>} Description This command is used to configure the name of the switch. Parameters <sw_name> - A maximum of 128 characters is allowed. A NULL string is accepted if no name is desired. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 88 Description This command is used, in conjunction with the enable rmon command above, to enable and disable remote monitoring (RMON) on the switch. Parameters None. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 89: Network Monitoring Commands
[<index 1-4> | all] show syslog host {<index 1-4>} config log_save_timing [time_interval <min 1-65535> | on_demand | log_trigger] show log_save_timing delete ipif [System] [ipv6address <ipv6networkaddr>] enable ipif_ipv6_link_local_auto [System] disable ipif_ipv6_link_local_auto [System] show ipif_ipv6_link_local_auto Extreme Networks EAS 100-24t Switch CLI Manual...
Page 90 This command is used to display all of the packet error statistics collected and logged by the switch for a given port list. Parameters <portlist> - Specifies a port or range of ports to be displayed. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 91 Purpose This command is used to display the DRAM utilization statistics. Syntax show utilization dram Description This command is used to display the DRAM utilization statistics. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 92 This command is used to display the utilization statistics per port. Parameters ports – Entering this parameter will display the current port utilization of the switch. <portlist> – Specifies a range of ports to be displayed. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 93 <portlist> - Specifies a port or range of ports to be displayed. Restrictions Only Administrator-level users can issue this command. Example usage: To clear the counters: #clear counters ports 2-9 Command: clear counters ports 2-9 Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 94 0000-00-00 00:00:43 System cold start 0000-00-00 00:00:38 Port 1 link up, 100Mbps FULL duplex enable syslog Purpose Used to enable the system log to be sent to a remote host. Syntax enable syslog Extreme Networks EAS 100-24t Switch CLI Manual...
Page 95 Purpose Used to display the syslog protocol status as enabled or disabled. Syntax show syslog Description This command is used to display the syslog status as enabled or disabled. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 96 [local0 | local1 | local2 | local3 | local4 | local5 | local6 | local7] | udp_port <udp_port_number> | ipaddress [<ipaddr>] | state [enable | disable]} Description This command is used to create a new syslog host. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 97 • 4 security/authorization messages • 5 messages generated internally by syslog • 6 line printer subsystem • 7 network news subsystem • 8 UUCP subsystem • 9 clock daemon • 10 security/authorization messages Extreme Networks EAS 100-24t Switch CLI Manual...
Page 98 [enable | disable]  Allows the sending of syslog messages to the remote host, specified above, to be enabled and disabled. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 99 Facility may use any of the "local use" facilities or they may use the "user-level" Facility. Those Facilities that have been designated are shown in the following: Bold font indicates the facility values the switch currently supports. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 100 This corresponds to number 22 from the list above. local7 - Specifies that local use 7 messages will be sent to the remote host. This corresponds to number 23 from the list above. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 101 <index 1-4> - Specifies that the command will be applied to an index of hosts. There are four available indexes, numbered 1 through 4. all - Specifies that the command will be applied to all hosts. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 102 Used to configure the method of saving logs to the switch’s Flash memory. Syntax config log_save_timing [time_interval <min 1-65535> | on_demand | log_trigger] Description This command is used to configure the method used in saving logs to the switch’s Flash memory. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 103 [System] [ipv6address <ipv6networkaddr>] Description This command is used to delete an interface. The System interface cannot be deleted. By using this command, an IPv6 address can be deleted from the ipif. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 104 Used to disable the auto configuration of a link local address when no IPv6 address is configured. Syntax disable ipif_ipv6_link_local_auto [System] Description This command is used to disable the auto configuration of a link local address when no IPv6 address is explicitly configured. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 105: Smtp Commands
Extreme Networks EAS 100-24t Switch CLI Manual...
Page 106: Smtp Commands
The maximum number of untransmitted mail messages placed in the queue cannot exceed 30 ● messages. Any new messages will be discarded if the queue is full. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 107 Only Administrator-level users can issue this command. Example usage: To enable SMTP on the switch: #enable smtp Command: enable smtp Success. disable smtp Purpose Used to disable the switch as a SMTP client. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 108 Up to eight e-mail addresses can be added per switch. delete mail_receiver <index 1-8> - Choose this parameter to delete mail recipients from the configured list. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 109 Index Mail Receiver Address -------- --------------------------------- mjones@domain.com djeffries@domain.com administrator@domain.com csmith@domain.com smtp send_testmsg Purpose Used to send a test message to mail recipients configured on the switch. Syntax smtp send_testmsg Extreme Networks EAS 100-24t Switch CLI Manual...
Page 110: Switch Port Commands
| disable] | [description <desc 32> | clear_description] | mdix [auto | normal | cross]} Description This command is used to configure the switch’s Ethernet ports. Only the ports listed in the <portlist> will be affected. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 111: Switch Port Commands
If set to cross state, the port in mdi mode, can be connected to a port (in mdix mode) on another switch through a straight cable. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 112 – Use this to list disabled ports including connection status and reason for being disabled. media_type – Use this parameter the show the medium type of the ports. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 113 Enabled Auto/Disabled LinkDown Enabled Auto Enabled Auto/Disabled LinkDown Enabled Auto Enabled Auto/Disabled LinkDown Enabled Auto Enabled Auto/Disabled LinkDown Enabled Auto CTRL+C ESC q Quit SPACE n Next Page p Previous Page r Refresh Extreme Networks EAS 100-24t Switch CLI Manual...
Page 114: Time And Sntp Commands
<start_date 1-31> | s_mth <start_mth 1-12> | s_time <start_time hh:mm> | e_date <end_date 1-31> | e_mth <end_mth 1-12> | e_time <end_time hh:mm> | offset [30 | 60 | 90 | 120]} (7)] show time Extreme Networks EAS 100-24t Switch CLI Manual...
Page 115: Time And Sntp Commands
Command: config sntp primary 10.1.1.1 secondary 10.1.1.2 poll-interval 30 Success. show sntp Purpose Used to display the SNTP information. Syntax show sntp Description This command is used to display SNTP settings information. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 116 To disable SNTP server support. Syntax disable sntp Description This command is used to disable SNTP support. SNTP service must be separately configured (see config sntp). Parameters None. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 117 UTC. The default time zone value is UTC +09:00 hour – Select the number of hours different from UTC. min – Select the number of minutes difference added or subtracted to adjust the time zone. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 118 – Configure the day of the week in which DST begins. <start_day sun-sat> - The day of the week in which DST begins expressed using a three character abbreviation (sun, mon, tue, wed, thu, fri, sat) Extreme Networks EAS 100-24t Switch CLI Manual...
Page 119 Used to display the current time settings and status. Syntax show time Description This command is used to display system time and date configuration as well as display current system time. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 120 : UTC +02:30 Daylight Saving Time: Repeating Offset in minutes : 30 Repeating From : Apr 2nd Tue 15:00 : Oct 2nd Wed 15:30 Annual From : 29 Apr 00:00 : 12 Oct 00:00 Extreme Networks EAS 100-24t Switch CLI Manual...
Page 121: Layer 2 Features
This command is used to enable the asymmetric VLAN function on the switch Parameters None. Restrictions Only Administrator-level users can issue this command. Example usage: To enable asymmetric VLANs: #enable asymmetric_vlan Command: enable asymmetric_vlan Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 122: Chapter 5: Layer 2 Features
This command is used to display the asymmetric VLAN state on the switch Parameters None. Restrictions None. Example usage: To display the asymmetric VLAN state currently set on the switch: #show asymmetric_vlan Command: show asymmetric_vlan Asymmetric VLAN: Enabled Extreme Networks EAS 100-24t Switch CLI Manual...
Page 123: Forwarding Database Commands
The switch will always forward traffic to the specified device through this port. Restrictions Only Administrator-level users can issue this command. Example usage: To create a unicast MAC FDB entry: #create fdb default 00-00-00-00-01-02 port 5 Command: create fdb default 00-00-00-00-01-02 port 5 Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 124 [add | delete] - add will add ports to the forwarding table. delete will remove ports from the multicast forwarding table. <portlist> - Specifies a port or range of ports to be configured. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 125 This command is used to delete a previous entry to the switch’s MAC address forwarding database. Parameters <vlan_name 32> - The name of the VLAN on which the MAC address resides. <macaddr> - The MAC address that will be added to the forwarding table. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 126 - Clears all dynamic entries to the switch’s forwarding database. Restrictions Only Administrator-level users can issue this command. Example usage: To clear all FDB dynamic entries: #clear fdb all Command: clear fdb all Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 127 <macaddr> - The MAC address that is present in the forwarding database table. static - Displays the static MAC address entries. aging_time - Displays the aging time for the MAC address forwarding database. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 128 To configure the multicast filtering mode to forward all groups on ports 1 through 4. #config multicast port_filtering_mode 1-4 forward_unregistered_groups Command: config multicast port_filtering_mode 1-4 forward_unregistered_groups Success. show multicast port_filtering_mode Purpose Used to show the multicast packet filtering mode for ports. Syntax show multicast port_filtering_mode Extreme Networks EAS 100-24t Switch CLI Manual...
Page 129: Igmp Snooping Commands
Each command is listed, in detail, in the following sections: config igmp_snooping Purpose Used to configure IGMP snooping on the switch. Syntax config igmp_snooping [vlan_name <vlan_name 32> | vlanid <vidlist> | all] {state [enable | disable] | fast_leave [enable | disable]} Extreme Networks EAS 100-24t Switch CLI Manual...
Page 130 <vidlist> | all] {query_interval <sec 1-65535> | max_response_time <sec 1-25> | robustness_variable <value 1-255> | last_member_query_interval <sec 1-25> | state [enable | disable] | version <value 1-3>} Description This command is used to configure the IGMP snooping querier. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 131 Only Administrator-level users can issue this command. Example usage: To configure IGMP snooping querier: #config igmp_snooping querier vlan_name default query_interval 125 state enable Command: config igmp_snooping querier vlan_name default query_interval 125 state enable Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 132 [add | delete] - Specifies whether to add or delete forbidden ports of the specified VLAN. <portlist> - Specifies a range of ports that will be configured as forbidden router ports. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 133 IGMP control packet, and the disable igmp_snooping forward_mcrouter_only command will not take effect. The switch will learn the router port based on identification of the multicast routing protocol packet and the IGMP control packet. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 134 Parameters <vlan_name 32> - The name of the VLAN for which to view the IGMP snooping configuration. <vidlist> - The VID range of the configuration to be displayed. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 135 - Displays router ports that have been statically configured. dynamic - Displays router ports that have been dynamically configured. forbidden - Displays forbidden router ports that have been statically configured. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 136 #show igmp_snooping group Command: show igmp_snooping group Source/Group : NULL/239.255.255.255 VLAN Name/VID : default/1 Reports Member Ports Router Ports Up time : 122 Expire Time : 260 Filter Mode : EXCLUDE Total Entries Extreme Networks EAS 100-24t Switch CLI Manual...
Page 137: Link Aggregation Commands
The Link Aggregation commands in the CLI are listed (along with the appropriate parameters) in the following table: Parameters Command create link_aggregation group_id <value> {type [lacp | static]} delete link_aggregation group_id <value> config link_aggregation group_id <value> {master_port <port> | ports <portlist> | state [enable | disable]} Extreme Networks EAS 100-24t Switch CLI Manual...
Page 138 <value> - Specifies the group ID. The switch allows up to 8 link aggregation groups to be configured. The group number identifies each of the groups. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 139 This command is used to configure the part of the packet examined by the switch when selecting the egress port for transmitting load-sharing data. This feature is only available using the address-based load-sharing algorithm. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 140 The group number identifies each of the groups. algorithm - Allows users to specify the display of link aggregation by the algorithm in use by that switch. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 141 “active” LACP ports (see above). Restrictions Only Administrator-level users can issue this command. Example usage: To configure LACP port mode settings: #config lacp_ports 1-12 mode active Command: config lacp_ports 1-12 mode active Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 142: Loopback Detection Commands
{recover_timer [0 | <value 60-1000000>] | interval <value 1-32767>} config loopdetect ports [<portlist> | all] state [enabled | disabled] enable loopdetect disable loopdetect show loopdetect show loopdetect ports [<portlist> | all] Extreme Networks EAS 100-24t Switch CLI Manual...
Page 143: Loopback Detection Commands
The default is disabled. enable – Set port loopback detection status to enable. disable - Set port loopback detection status to disable. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 144 Used to globally disable the loopback detection on the switch. Syntax disable loopdetect Description This command is used to globally disable the loopback detection on the switch. The default value is disabled. Parameters None. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 145 This command will display the switch’s current per-port loopback detection configuration and status. Parameters <portlist> – Specifies a range of ports to be displayed. all – To display all the ports in the system, use the all parameter. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 146 There is a global limitation of the maximum entries supported for the static MAC-based entry. Parameters mac_address – The MAC address. vlan – The VLAN to be associated with the MAC address. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 147: Mac-Based Vlan Commands
In the following example, MAC address “00:80:c2:33:c3:45” is assigned to VLAN 300 by manual configuration. It is assigned to VLAN 400 by 802.1X. Since 802.1X has higher priority than manual configuration, the manual configured entry will become inactive. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 148: Mld Snooping Commands
The MLD Snooping commands in the CLI are listed (along with the appropriate parameters) in the following table. Command Parameters config mld_snooping [vlan <vlan_name 32> | vlanid <vidlist> | all] {state [enable | disable] | fast_done [enable | disable]} Extreme Networks EAS 100-24t Switch CLI Manual...
Page 149: Mld Snooping Commands
To configure the MLD snooping to the default VLAN with the state enabled: #config mld_snooping vlan default state enable Command: config mld_snooping vlan default state enable Success. config mld_snooping querier Purpose Used to configure the timers and the attributes of the MLD snooping querier. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 150 Only Administrator-level users can issue this command. Example usage: To configure the MLD snooping querier query interval to 125 seconds and state enable: #config mld_snooping querier vlan default query_interval 125 Command: config mld_snooping querier vlan default query_interval 125 Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 151 <vlan_name 32> - The name of the VLAN on which the forbidden router port resides. [add | delete] - Specifies to add or delete the forbidden router ports. <portlist> - Specifies a range of ports to be configured. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 152 This command is used to disable MLD snooping on the switch. Disabling MLD snooping allows all MLD and IPv6 multicast traffic to flood within a switch by default. Parameters None. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 153 : 125 Max Response Time : 10 Robustness Value Last Listener Query Interval : 1 Querier Router Behavior : Non-Querier State : Disabled Fast Done : Disabled Receive Query Count Total Entries: 1 Extreme Networks EAS 100-24t Switch CLI Manual...
Page 154 Used to display the currently configured router ports on the switch. Syntax show mld_snooping mrouter_ports {[vlan <vlan_name 32> | vlanid <vidlist>]} {[static | dynamic | forbidden]} Description This command is used to display the currently configured router ports on the switch. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 155: Multiple Spanning Tree Protocol (Mstp) Commands
VLANs associated with them. These instances will be classified by an instance_id. MSTP will connect multiple spanning trees with a Common and Internal Spanning Tree (CIST). The CIST will automatically determine each MSTP Extreme Networks EAS 100-24t Switch CLI Manual...
Page 156 <portlist> instance_id <value 0-4> {internalCost [auto | <value 1-200000000>] | priority <value 0-240>} show stp show stp ports {<portlist>} {instance <value 0-4>} show stp instance {<value 0-4>} show stp mst_config_id Extreme Networks EAS 100-24t Switch CLI Manual...
Page 157 To disable STP on the switch: #disable stp Command: disable stp Success. config stp version Purpose Used to globally set the version of STP on the switch. Syntax config stp version [mstp | rstp | stp] Extreme Networks EAS 100-24t Switch CLI Manual...
Page 158 This command is used to set up the Spanning Tree Protocol (STP) for the entire switch. All commands here will be implemented for the STP version that is currently set on the switch. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 159 [true | false] | restricted_tcn [true | false] | p2p [true | false | auto] | state [enable | disable] | fbpdu [enable | disable]} Description This command is used to create and configure STP for a group of ports. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 160 2. Forwarding BPDU must be globally enabled. To globally disable STP, use the disable stp command, to globally enable fbpdu, use the config stp command. The default is enable. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 161 STP regions in a network but each region only supports a maximum of five spanning tree instances (one unchangeable default entry). VIDs can belong to only one spanning tree instance at a time. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 162 This command is used to delete a previously configured STP instance ID from the switch. Parameters <value 1-4> - Enter a value between 1 and 4 to identify the Spanning Tree instance on the switch. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 163 Information entered here will be attached to BPDU packets as an identifier for the MSTP region to which it belongs. Switches having the same revision_level and name will be considered as part of the same MSTP region. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 164 <value 0-240> - Enter a value between 0 and 240 to set the priority for the port interface. A higher priority will designate the interface to forward packets first. A lower number denotes a higher priority. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 165 STP Bridge Global Settings --------------------------- STP Status : Enabled STP Version : STP compatible Max Age : 20 Hello Time Forward Delay : 15 Max Hops : 20 TX Hold Count Forwarding BPDU : Enabled Extreme Networks EAS 100-24t Switch CLI Manual...
Page 166 Used to display the switch’s current STP ports configuration. Syntax show stp ports {<portlist>} {instance <value 0-4>} Description This command is used to display the STP port settings for a specified port or group of ports. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 167 <value 0-4> - Enter a value defining the previously configured instance_id on the switch. An entry of 0 will display the STP configuration for the CIST internally set on the switch. Restrictions None Extreme Networks EAS 100-24t Switch CLI Manual...
Page 168 CTRL+C ESC q Quit SPACE n Next Page p Previous Page r Refresh show stp mst_config_id Purpose Used to display the MSTP configuration identification. Syntax show stp mst_config_id Description This command is used to display the switch’s current MSTP configuration identification. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 169: Packet Storm Control Commands
[<portlist> | all] {broadcast [enable | disable] | multicast [enable | disable] | unicast [enable | disable] | action [drop | shutdown] | threshold <value 64- 1000000> | time_interval <secs 5-30> | countdown [<minutes 0> | <minutes 5- 30>]} show traffic control {<portlist>} Extreme Networks EAS 100-24t Switch CLI Manual...
Page 170 This command is used to configure broadcast/multicast/unicast storm control. By adding the new software traffic control mechanism, the user can now use both a hardware and software mechanism, the latter of which will now provide shutdown, and recovery for the switch. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 171 5 minutes. <secs 5-30> - The Interval may be set between 5 and 30 seconds with the default setting of 5 seconds. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 172 Count Time hold Storm Storm Storm down Interval ---- ------- --------- --------- -------- -------- ----- -------- Disabled Disabled Disabled drop Disabled Disabled Disabled drop Disabled Disabled Disabled drop Disabled Disabled Disabled drop Total Entries Extreme Networks EAS 100-24t Switch CLI Manual...
Page 173: Port Mirroring Commands
- Mirrors all the packets received or sent by the port or ports in the port list. Restrictions The Target port cannot be listed as a source port. Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 174 Only Administrator-level users can issue this command. Example usage: To enable mirroring configurations: #enable mirror Command: enable mirror Success. disable mirror Purpose Used to disable a previously entered port mirroring configuration. Syntax disable mirror Extreme Networks EAS 100-24t Switch CLI Manual...
Page 175 This command displays the current port mirroring configuration on the switch. Parameters None Restrictions None. Example usage: To display mirroring configuration: #show mirror Command: show mirror Current Settings Mirror Status : Enabled Target Port Mirrored Port RX : TX : 5-7 Extreme Networks EAS 100-24t Switch CLI Manual...
Page 176: Port Security Commands
(Aging Time is set using the FDB command). DeleteOnReset – The locked addresses will not age out until the switch has been reset. Permanent – The locked addresses will not age out. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 177: Port Security Commands
<auth_portlist> Description This command is used to clear MAC address entries which were learned by the switch by a specified port. This command only relates to the port security function. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 178 Port Admin State Max. Learning Addr. Lock Address Mode ---- ----------- ------------------ ----------------- Disabled DeleteOnTimeout Disabled DeleteOnTimeout Disabled DeleteOnTimeout Disabled DeleteOnTimeout Disabled DeleteOnTimeout Disabled DeleteOnTimeout Disabled DeleteOnTimeout Disabled DeleteOnTimeout Disabled DeleteOnTimeout Disabled DeleteOnTimeout Extreme Networks EAS 100-24t Switch CLI Manual...
Page 179: Protocol Vlan Commands
If this name already exists, then ProtocolGroup1ALT1 will be used instead. Restrictions Only Administrator-level users can issue this command. Example usage: To create a protocol group: # create dot1v_protocol_group group_id 1 group_name General_Group Command: create dot1v_protocol_group group_id 1 group_name General_Group Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 180 Command: config dot1v_protocol_group group_id 1 delete protocol ethernet_2 0x86DD The protocol value configured to delete will take effect on both frame types ethernet_2 and ieee802.3_snap. Success. delete dot1v_protocol_group Purpose Used to delete a protocol group. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 181 # show dot1v_protocol_group group_id 1 Command: show dot1v_protocol_group group_id 1 Protocol Group ID Protocol Group Name Frame Type Protocol Value ----------------- -------------------------------- -------------- -------------- General_Group EthernetII 86dd General_Group IEEE802.3 SNAP 86dd Total Entries: 1 Extreme Networks EAS 100-24t Switch CLI Manual...
Page 182 Parameters portlist – Specifies a range of ports to be displayed. If not specified, information for all ports will be displayed. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 183 [<vidlist> | all] show vlan_translation cvid {<vidlist>} Each command is listed, in detail, in the following sections: enable qinq Purpose This command is used to enable the Q-in-Q mode. Syntax enable qinq Extreme Networks EAS 100-24t Switch CLI Manual...
Page 184: Q-In-Q Commands
SP-VLANs will run as static 1Q VLANs. The default setting of Q-in-Q is disabled. Parameters None. Restrictions Only Administrator-level users can issue this command. Example usage: To disable Q-in-Q: #disable qinq Command: disable qinq Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 185 To show the Q-in-Q status for ports 1 to 4: #show qinq ports 1-4 Command: show qinq ports 1-4 Port Role Outer TPID VLAN Translation ---- ---- ---------- ---------------- 0x88a8 Disabled 0x88a8 Disabled 0x88a8 Disabled 0x88a8 Disabled Total Entries Extreme Networks EAS 100-24t Switch CLI Manual...
Page 186 – The S-VLAN ID that replaces the C-VLAN ID or is inserted in the packet. <vlanid 1-4094> - A VLAN ID between 1 and 4094. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 187 Used to show VLAN translation rules. Syntax show vlan_translation cvid {<vidlist>} Description The command used to show configured VLAN translation configurations. Parameters cvid - The Q-in-Q translation rules for the specified C-VID list. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 188: Traffic Segmentation Commands
<portlist> - Specifies a range of ports for the forwarding list. This list must be on the same switch previously specified for traffic segmentation (i.e. following the <portlist> specified above for config traffic_segmentation). Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 189: Traffic Segmentation Commands
---- -------------------------------------------------- 1-24 1-24 1-24 1-24 1-24 1-24 1-24 1-24 1-24 1-24 1-24 1-24 1-24 1-24 1-24 1-24 1-24 1-24 CTRL+C ESC q Quit SPACE n Next Page ENTER Next Entry a All Extreme Networks EAS 100-24t Switch CLI Manual...
Page 190: Vlan Commands
VLAN cannot be configured to have forbidden ports. Restrictions Each VLAN name can be up to 32 characters. Up to 4094 static VLANs may be created per configuration. Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 191: Vlan Commands
This command is used to add ports to the port list of a previously configured VLAN. The user can specify the additional ports as tagging, untagging, or forbidden. The default is to assign the ports as untagging. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 192 <vidlist> - Specifies a range of multiple VLAN IDs to be created. advertisement - Join GVRP or not. If not, the VLAN can’t join dynamically. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 193 If the ports will join GVRP or not with the advertisement parameter can also be specified. The name parameter allows the name of the VLAN that needs to be modified to be specified. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 194 This command is used to enable auto-assignment of PVID. Parameters None. Restrictions Only Administrator-level users can issue this command. Example usage: To enable auto-assignment of PVID: #enable pvid auto_assign Command: enable pvid auto_assign Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 195 Description This command is used to configure the Group VLAN Registration Protocol on the switch. Ingress checking, the sending and receiving of GVRP information, and the Port VLAN ID (PVID) can be configured. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 196 GVRP on the switch, without changing the GVRP configuration on the switch. Parameters None. Restrictions Only Administrator-level users can issue this command. Example usage: To enable the generic VLAN Registration Protocol (GVRP): #enable gvrp Command: enable gvrp Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 197 <vlan_name 32> - The VLAN name of the VLAN for which to display a summary of settings. vlanid <vidlist> - Specifies a range of multiple VLAN IDs to be displayed. ports <portlist> - Specifies a port or range of ports that will be displayed. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 198 This command is used to display the GVRP status for a port list on the switch. Parameters <portlist> - Specifies a port or range of ports for which the GVRP status is to be displayed. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 199 All Frames Disabled Enabled All Frames Disabled Enabled All Frames Disabled Enabled All Frames Disabled Enabled All Frames Disabled Enabled All Frames Disabled Enabled All Frames Disabled Enabled All Frames Total Entries : 10 Extreme Networks EAS 100-24t Switch CLI Manual...
Page 200 Chapter 5: Layer 2 Features Extreme Networks EAS 100-24t Switch CLI Manual...
Page 201: Layer 3 Features
<ipaddr> - The IP address of the end node or station. <macaddr> - The MAC address corresponding to the IP address above. Restrictions Only Administrator-level users can issue this command. The switch supports up to 255 static ARP entries. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 202: Chapter 6: Layer 3 Features
Specifying all clears the switch’s ARP table. Parameters <ipaddr> - The IP address of the end node or station. all - Deletes all ARP entries. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 203: Arp Commands
ARP table entry was made, resides on. ipaddress <ipaddr> - The network address corresponding to the IP interface name above. static – Displays the static entries to the ARP table. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 204 ARP table. Static ARP table entries are not affected. Parameters None. Restrictions Only Administrator-level users can issue this command. Example Usage: To remove dynamic entries in the ARP table: #clear arptable Command: clear arptable Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 205: Routing Table Commands
To add the default static address 10.48.74.121, with a metric setting of 1, to the routing table: #create iproute default 10.48.74.121 1 Command: create iproute default 10.48.74.121 1 Success. delete iproute Purpose Used to delete a default IP route entry from the switch’s IP routing table. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 206 To display the contents of the IP routing table: #show iproute Command: show iproute Routing Table IP Address/Netmask Gateway Interface Hops Protocol --------------- ---------- ----------- ---- ----------- 0.0.0.0 10.1.1.254 System Default 10.0.0.0/8 10.48.74.122 System Local Total Entries: 2 Extreme Networks EAS 100-24t Switch CLI Manual...
Page 207 - Delete the dynamic entries. Restrictions Only Administrator-level users can issue this command. Example usage: To delete a neighbor cache: #delete ipv6 neighbor_cache ipif System 3ffc::1 Command: delete ipv6 neighbor_cache ipif System 3ffc::1 Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 208 <metric 1-65535> - Allows the entry of a routing protocol metric entry representing the number of routers between the switch and the IP address above. The default setting is 1. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 209 Used to display the interface’s information. Syntax show ipv6 nd {ipif <ipif_name 12>} Description This command is used to display the IPv6 ND related configuration. Parameters <ipif_name> - The name of the interface. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 210 This command is used to configure neighbor solicitation related arguments. Parameters <ipif_name 12> - The name of the interface. retrans_time - The neighbor solicitation’s retransmit timer in milliseconds. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 211 Routing Table Commands Example usage: To configure the IPv6 nd ns interface: #config ipv6 nd ns ipif System retrans_time 10000 Command: config ipv6 nd ns ipif System retrans_time 10000 Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 212 Chapter 6: Layer 3 Features Extreme Networks EAS 100-24t Switch CLI Manual...
Page 213: Qos Commands
<portlist> {rx_rate [no_limit | <value 64-1024000>] | tx_rate [no_limit | <value 64-1024000>]} show bandwidth_control {<portlist>} config scheduling <class_id 0-3> weight <value 1-55> config scheduling_mechanism [strict | weight_fair] show scheduling show scheduling_mechanism config 802.1p user_priority <priority 0-7> <class_id 0-3> show 802.1p user_priority Extreme Networks EAS 100-24t Switch CLI Manual...
Page 214: Chapter 7: Quality Of Service (Qos)
#config bandwidth_control 1 rx_rate 64 Command: config bandwidth_control 1 rx_rate 64 Note: To perform precise bandwidth control, it is required to enable the flow control to mitigate the retransmission of TCP traffic. Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 215 The four hardware priority queues are identified by number - from 0 to 3 - with the 0 queue being the lowest priority. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 216 Command: show scheduling QOS Output Scheduling Class ID Weight --------- ------------- Class-0 Class-1 Class-2 Class-3 config scheduling_mechanism Purpose Used to configure the scheduling mechanism for the QoS function Syntax config scheduling_mechanism [strict | weight_fair] Extreme Networks EAS 100-24t Switch CLI Manual...
Page 217 Used to display the current traffic scheduling mechanisms in use on the switch. Syntax show scheduling_mechanism Description This command is used to display the current traffic scheduling mechanisms in use on the switch. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 218 <class_id 0-3> - The number of the switch’s hardware priority queue. The switch has four hardware priority queues available. They are numbered between 0 (the lowest priority) and 3 (the highest priority). Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 219 Used to configure the 802.1p default priority settings on the switch. If an untagged packet is received by the switch, the priority configured with this command will be written to the packet’s priority field. Syntax config 802.1p default_priority [<portlist> | all] <priority 0-7> Extreme Networks EAS 100-24t Switch CLI Manual...
Page 220 This command is used to display the currently configured 802.1p priority value that will be assigned to an incoming, untagged packet before being forwarded to its destination. Parameters <portlist> - Specifies a port or range of ports to be displayed. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 221 - Enable Ethernet frame based priority. 802.1p - Enable 802.1p CoS ip - Enable IP frame based priority. tos – Here the user can enable ToS dscp – Here the user can enable DSCP. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 222 <portlist> - Specifies a range of ports to be displayed. If no parameter is specified, the all ports priority settings will be shown. all – Specifies that all the ports will be displayed. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 223 <class_id 0-3> - The number of the switch’s hardware priority queue. The switch has four hardware priority queues available. They are numbered between 0 (the lowest priority) and 3 (the highest priority). Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 224 <class_id 0-3> - The number of the switch’s hardware priority queue. The switch has four hardware priority queues available. They are numbered between 0 (the lowest priority) and 3 (the highest priority). Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 225 DSCP value mapping to traffic class will be shown. Restrictions None. Example usage: To show the DSCP map to traffic class: #show dscp_mapping Command: show dscp_mapping DSCP Class CTRL+C ESC q Quit SPACE n Next Page ENTER Next Entry a All Extreme Networks EAS 100-24t Switch CLI Manual...
Page 226 Chapter 7: Quality of Service (QoS) Extreme Networks EAS 100-24t Switch CLI Manual...
Page 227 126> <hex 0x0-0xffffffff> | offset2 <value 2-126> <hex 0x0-0xffffffff> | offset3 <value 2-126> <hex 0x0-0xffffffff> | offset4 <value 2-126> <hex 0x0-0xffffffff> | } ] profile_id <value 1-256> delete access_profile [profile_id <value 1-256> | all] Extreme Networks EAS 100-24t Switch CLI Manual...
Page 228: Chapter 8: Access Control List (Acl)
Let’s further specify in the new rule to deny access to a range of IP addresses through an individual port: In this example, we want to filter any packets that Extreme Networks EAS 100-24t Switch CLI Manual...
Page 229 Purpose Used to delete a previously created access profile. Syntax delete access_profile [profile_id <value 1-256> | all] Description This command is used to delete a previously created access profile on the switch. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 230 This command is used to configure an access profile on the switch and to enter specific values that will be combined, using a logical AND operational method, with masks entered with the create access_profile command, above. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 231 - Specifies that the switch will examine the Internet Group Management Protocol (IGMP) field within each packet. type <value 0-255> - Specifies that the switch will examine each frame’s IGMP Type field. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 232 The user can also configure “all” to specify all ports. permit – Specifies that packets that match the access profile are permitted to be forwarded by the switch. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 233 Success. show access_profile Purpose Used to display the currently configured access profiles on the switch. Syntax show access_profile {profile_id <value 1-256>} Description This command is used to display the currently configured access profiles. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 234 Type: IPv4 Frame Filter – ICMP Masks Option VLAN Source IP Dest. IP DSCP Prot ---------------- --------------- --------------- ---- ---- 0xFFF 20.0.0.0 10.0.0.0 ICMP Total Profile Entries: 1 Total Used Rule Entries: 0 Total Unused Rule Entries: 256 Extreme Networks EAS 100-24t Switch CLI Manual...
Page 235: Flow Meter Commands
The dropped packets. Remark_dscp: Mark the packet with a specified DSCP. The packet will also be set to high drop precedence. Delete – Delete the specified flow meter. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 236 Violate : Drop Profile ID : 1 Access ID : 2 Mode : Single-rate Two-color Rate: 2000(Kbps) Burst Size:1016(Kbyte) Actions: Conform : Permit Violate : Permit Replace_dscp : 20 Total Flow Meter Entries: 2 Extreme Networks EAS 100-24t Switch CLI Manual...
Page 237 <server_index 1-3> {ipaddress [<server_ip>] | key <passwd 32> | auth_port <udp_port_number 1-65535> | acct_port <udp_port_number 1-65535> } config radius parameter {timeout <int 1-255> | retransmit <int 1-255>} show radius show auth_statistics {ports <portlist>} show auth_diagnostics {ports <portlist>} show auth_session_statistics {ports <portlist>} Extreme Networks EAS 100-24t Switch CLI Manual...
Page 238: Chapter 9: Security
This command is used to disable the 802.1X Network Access control application on the switch. Parameters None. Restrictions Only Administrator-level users can issue this command. Example usage: To disable 802.1x on the switch: #disable 802.1x Command: disable 802.1x Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 239 Description This command is used to display the current authentication state of the 802.1X server on the switch. Parameters ports <portlist> - Specifies a port or range of ports to view. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 240 Success Authorized ForceAuth Success Authorized ForceAuth Success Authorized ForceAuth Success Authorized ForceAuth Success Authorized ForceAuth Success Authorized ForceAuth Success Authorized CTRL+C ESC q Quit SPACE n Next Page ENTER Next Entry a All Extreme Networks EAS 100-24t Switch CLI Manual...
Page 241 Restrictions Only Administrator-level users can issue this command. Example usage: To configure 802.1X capability on ports 1 to 10: #config 802.1x capability ports 1–10 authenticator Command: config 802.1x capability ports 1–10 authenticator Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 242 [enable | disable] - Determines whether or not the switch will re-authenticate. Enabled causes re-authentication of users at the time interval specified in the Re-authentication Period field, above. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 243 <portlist> - Specifies a port or range of ports to be configured. all - Specifies all of the ports on the switch. mac_address <macaddr> - Enter the MAC address to be initialized. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 244 <server_index 1-3> [<server_ip>] key <passwd 32> [default | {auth_port<udp_port_number 1-65535> | acct_port <udp_port_number 1-65535> }] Description This command is used to configure the settings the switch will use to communicate with a RADIUS server. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 245 Up to three groups of RADIUS server settings can be entered on the switch. Restrictions Only Administrator-level users can issue this command. Example usage: To delete previously configured RADIUS server communication settings: #config radius delete 1 Command: config radius delete 1 Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 246 <int 1-255> - The time in second for waiting server reply. The default value is 5 seconds. retransmit <int 1-255> - The count for re-transmit. The default value is 2. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 247 Purpose Used to display the current RADIUS accounting client. Syntax show acct_client Description This command is used to display the current RADIUS accounting client currently configured on the switch. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 248 Purpose Used to display the current RADIUS authentication client. Syntax show auth_client Description This command is used to display the current RADIUS authentication client currently configured on the switch. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 249 {ports <portlist>} Description This command is used to display the current authentication diagnostics of the switch on a per port basis. Parameters ports <portlist> - Specifies a range of ports. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 250 This command is used to display the current authentication session statistics of the switch on a per port basis. Parameters ports <portlist> - Specifies a range of ports. all – Specifies that all ports will be viewed. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 251 {ports <portlist>} Description This command is used to display the current authentication statistics of the switch on a per port basis. Parameters ports <portlist> - Specifies a range of ports. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 252 Only Administrator-level users can issue this command. Example usage: To create an 802.1X user: #create 802.1x user dbrown Command: create 802.1x user dbrown Enter a case-sensitive new password:****** Enter the new password again for confirmation:****** Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 253 <username 15> - A username can be as many as 15 alphanumeric characters. Restrictions Only Administrator-level users can issue this command. Example usage: To delete 802.1X users: #delete 802.1x user dbrown Command: delete 802.1x user dbrown Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 254: Access Authentication Control Commands
(TACACS / XTACACS / TACACS+ / RADIUS / local / none) for authentication. These techniques will be listed in an order of preference, and defined by the user for normal user authentication on the switch, and may contain up to eight authentication techniques. When a user Extreme Networks EAS 100-24t Switch CLI Manual...
Page 255: Access Authentication Control Commands
<ipaddr> protocol [tacacs | xtacacs | tacacs+ | radius] {port <int 1-65535> | key [<key_string 254> | none] | timeout <int 1-255> | retransmit <int 1-255>} delete authen server_host <ipaddr> protocol [tacacs | xtacacs | tacacs+ | radius] Extreme Networks EAS 100-24t Switch CLI Manual...
Page 256 In addition, the switch will now accept the local enable password as the authentication for normal users attempting to access administrator level privileges. Parameters None. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 257 Multiple method lists must be created and configured separately. Parameters <string 15> - Enter an alphanumeric string of up to 15 characters to define the given method list. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 258 (See the enable admin part of this section for more detailed information, concerning the enable admin command.) Extreme Networks EAS 100-24t Switch CLI Manual...
Page 259 NOTE: Entering none or local as an authentication protocol will override any other authentication that follows it on a method list or on the default method list. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 260 Purpose Used to display a previously configured user defined method list of authentication methods for users logging on to the switch. Syntax show authen_login [default | method_list_name <string 15> | all] Extreme Networks EAS 100-24t Switch CLI Manual...
Page 261 Administrator. A maximum of eight enable method lists can be implemented on the switch. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 262 Successful authentication using any of these methods will give the user an “Admin” level privilege. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 263 “config admin local_password” command. none – Adding this parameter will require no authentication to access the administration level privileges on the switch. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 264 Restrictions Only Administrator-level users can issue this command. Example usage: To delete the user-defined method list “Permit” #delete authen_enable method_list_name Permit Command: delete authen_enable method_list_name Permit Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 265 Keyword refers to authentication using a technique INSTEAD of TACACS/XTACACS/TACACS+/RADIUS which are local (authentication through the local_enable password on the switch) and none (no authentication necessary to access any function on the switch). Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 266 [default| method_list_name <string 15>] Description This command is used to configure switch configuration applications (console, telnet, ssh, web) for login at the user level and at the administration level (authen_enable) utilizing a previously configured method list. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 267 This command is used to display all of the authentication method lists (login, enable administrator privileges) for switch configuration applications (console, telnet, SSH, Web) currently configured on the switch. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 268 TACACS/XTACACS/TACACS+/RADIUS are separate entities and are not compatible with each other. The maximum supported number of server hosts is 16. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 269 Used to configure a user-defined authentication server host. Syntax config authen server_host <ipaddr> protocol [tacacs | xtacacs | tacacs+ | radius] {port <int 1-65535> | key [<key_string 254> | none] | timeout <int 1-255> | retransmit <int 1-255>} Extreme Networks EAS 100-24t Switch CLI Manual...
Page 270 4. #config authen server_host 10.1.1.121 protocol tacacs+ port 4321 timeout 12 retransmit 4 Command: config authen server_host 10.1.1.121 protocol tacacs+ port 4321 timeout 12 retransmit 4 Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 271 TACACS server does not respond. This field is inoperable for the tacacs+ protocol. Key - Authentication key to be shared with a configured TACACS+ server and RADIUS server. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 272 <string 15> - Enter an alphanumeric string of up to 15 characters to define the newly created server group. Restrictions Only Administrator-level users can issue this command. Example usage: To create the server group “group_1”: #create authen server_group group_1 Command: create authen server_group group_1 Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 273 – Use this parameter to define the protocol if the server host is using the TACACS+ authentication protocol. radius – Use this parameter to define the protocol if the server host is using the RADIUS authentication protocol. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 274 Group Name - The name of the server group currently configured on the switch, including built in groups and user defined groups. IP Address - The IP address of the server host. Protocol - The authentication protocol used by the server host. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 275 The default value is 30 seconds. Restrictions Only Administrator-level users can issue this command. Example usage: To configure the response timeout for 60 seconds: #config authen parameter response_timeout 60 Command: config authen parameter response_timeout 60 Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 276 User attempts - The maximum number of attempts the user may try to become authenticated by the switch, before being locked out. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 277 When a user chooses the “local_enable” method to promote user level privileges to administrator privileges, he or she will be prompted to enter the password configured here that is set locally on the switch. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 278 <macaddr> {[vlan <vlan_name 32> | vlanid <vlanid 1-4094>]} mac_based_access_control_local config <macaddr> [vlan< vlan_name 32> | vlanid <vlanid 1-4094> | clear_vlan] mac_based_access_control_local delete [mac <macaddr> | vlan<vlan_name 32> | vlanid <vlanid 1-4094>] mac_based_access_control_local show mac_based_access_control {ports [<portlist> | all]} Extreme Networks EAS 100-24t Switch CLI Manual...
Page 279: Mac-Based Access Control Commands
Success. disable mac_based_access_control Purpose Used to disable MAC-based access control. Syntax disable mac_based_access_control Description This will disable MAC-based access control on the switch. Parameters None. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 280 This command specifies to authenticate via local database or via RADIUS server. Parameters local – Specify to authenticate via local database. radius – Specify to authenticate via RADIUS server. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 281 Command: config mac_based_access_control ports 1-8 state enable Success. clear mac_based_access_control auth_mac Purpose Used to reset the current state of a user. The re-authentication will be started after the user traffic is received again. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 282 VLAN. Restrictions Only Administrator-level users can issue this command. Example usage: To create a MAC-based access control local entry: #create mac_based_access_control_local mac 00-00-00-00-00-01 vlan default Command: create mac_based_access_control_local mac 00-00-00-00-00-01 vlan default Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 283 Parameters mac – Delete database by this MAC address. vlan – Delete database by this VLAN name. vlanid – Delete database by this VLAN ID. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 284 – Specifies that all the ports will be displayed. Restrictions None. Example usage: To display MAC-based access control: #show mac_based_access_control Command: show mac_based_access_control MAC Based Access Control ------------------------------------ State : Disabled Method : Local Password : default Max Users : 128 Extreme Networks EAS 100-24t Switch CLI Manual...
Page 285 None. Example usage To display MAC-based access control local databases: #show mac_based_access_control_local Command: show mac_based_access_control_local MAC Address VLAN NameVID ----------------- ---------------------- ------ 00-00-00-00-00-01 default1 00-00-00-00-00-02 v123123 00-00-00-00-00-03 v123123 00-00-00-00-00-04 default1 Total Entries: 4 Extreme Networks EAS 100-24t Switch CLI Manual...
Page 286 (target VLAN ID is 1234 in this example). MAC 00-00-00-00-00-03 failed to pass authentication, and packets with SA 00-00-00-00-00-03 will be ● dropped no matter which VLAN these packets are from. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 287 (for example VLAN) assigned by the RADUIS server or local database. Which attributes will be accepted depends on the individual module’s setting. Authorization for attributes is disabled by default. Parameters None. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 288 # disable authorization network Command: disable authorization network Success. show authorization Purpose Used to display authorization for attributes status. Syntax show authorization Description Used this to view authorization for attributes status. Parameters None. Restrictions None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 289: Multiple Authentication Commands
Restrictions Only Administrator-level users can issue this command. Usage example: The following example sets the multiple authentication method of all ports to any: #config authentication auth_mode port_based Command: config authentication auth_mode port_based Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 290: Ssh Commands
4 Finally, enable SSH on the switch using the enable ssh command. After following the above steps, you can configure an SSH Client on the remote PC and manage the switch using secure, in-band communication. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 291: Ssh Commands
Command: enable ssh Success. disable ssh Purpose Used to disable SSH. Syntax disable ssh Description This command is used to disable SSH on the switch. Parameters None. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 292 Purpose Used to display the SSH authentication mode setting. Syntax show ssh authmode Description This command is used to display the current SSH authentication set on the switch. Parameters None. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 293 Only Administrator-level users can issue this command. Usage example: To configure the SSH server: #config ssh server maxsession 2 contimeout 300 authfail 2 Command: config ssh server maxsession 2 contimeout 300 authfail 2 Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 294 – This parameter should be chosen to use the publickey on a SSH server for authentication. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 295 [3DES | AES128 | AES192 | AES256 | arcfour | blowfish | cast128 | twofish128 | twofish192 | twofish256 | MD5 | SHA1 | RSA | DSA] [enable | disable] Extreme Networks EAS 100-24t Switch CLI Manual...
Page 296 Usage example: To configure SSH algorithm: # config ssh algorithm blowfish enable Command: config ssh algorithm blowfish enable Success. show ssh algorithm Purpose Used to display the SSH algorithm setting. Syntax show ssh algorithm Extreme Networks EAS 100-24t Switch CLI Manual...
Page 297: Ssl Commands
1 Key Exchange: The first part of the cyphersuite string specifies the public key algorithm to be used. This switch utilizes the Rivest Shamir Adleman (RSA) public key algorithm and the Digital Signature Algorithm (DSA), specified here as the DHE_DSS Diffie-Hellman (DHE) public key Extreme Networks EAS 100-24t Switch CLI Manual...
Page 298: Ssl Commands
<ipaddr> certfilename <path_filename 64> keyfilename <path_filename 64> Each command is listed, in detail, in the following sections. enable ssl Purpose To enable the SSL function on the switch. Syntax enable ssl {ciphersuite {RSA_with_RC4_128_MD5 | RSA_with_3DES_EDE_CBC_SHA | DHE_DSS_with_3DES_EDE_CBC_SHA | RSA_EXPORT_with_RC4_40_MD5}} Extreme Networks EAS 100-24t Switch CLI Manual...
Page 299 Enabling the SSL function on the switch will disable the port for the web manager (port 80). To log on to the web based manager, the entry of the URL must begin with https://. (ex. https://10.1.1.1). Extreme Networks EAS 100-24t Switch CLI Manual...
Page 300 Success. To disable ciphersuite RSA_EXPORT_with_RC4_40_MD5 only: #disable ssl ciphersuite RSA_EXPORT_with_RC4_40_MD5 Command: disable ssl ciphersuite RSA_EXPORT_with_RC4_40_MD5 Success. config ssl cachetimeout Purpose Used to configure the SSL cache timeout. Syntax config ssl cachetimeout <value 60-86400> Extreme Networks EAS 100-24t Switch CLI Manual...
Page 301 #show ssl cachetimeout Command: show ssl cachetimeout Cache timeout is 600 second(s). show ssl Purpose Used to view the SSL status and the certificate file status on the switch. Syntax show ssl {certificate} Extreme Networks EAS 100-24t Switch CLI Manual...
Page 302 <path_filename 64> - Enter the path and the filename of the key exchange file users wish to download. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 303 Example usage: To download a certificate file and key file to the switch: #download ssl certificate 10.53.13.94 certfilename c:/cert.der keyfilename c:/ pkey.der Command: download ssl certificate 10.53.13.94 certfilename c:/cert.der keyfilename c:/pkey.der Certificate Loaded Successfully! Extreme Networks EAS 100-24t Switch CLI Manual...
Page 304 Chapter 9: Security Extreme Networks EAS 100-24t Switch CLI Manual...
Page 305: Technical Support Commands
This command is used to display technical support information. Syntax show tech_support Description It is especially useful for technical support personnel that need to view the overall device operation information. Parameters None. Restrictions Only Administrator-level users can issue this command. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 306: Chapter 10: Support
: Build 1.00.002 Firmware Version : Build 1.00.002 Hardware Version Serial Number : ABCDE-10002 Spanning Tree : Disabled GVRP : Disabled IGMP Snooping : Disabled 802.1x : Disabled TELNET : Enabled (TCP 23) Extreme Networks EAS 100-24t Switch CLI Manual...
Page 307: Technical Support Commands
Only Administrator-level users can issue this command. Example usage: To upload technical support information: # upload tech_support_toTFTP 10.0.0.66 tech_suppport.txt Command: upload tech_support_toTFTP 10.0.0.66 tech_suppport.txt Connecting to server....Done. Upload techsupport file....Done. Success. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 308 Chapter 10: Support Extreme Networks EAS 100-24t Switch CLI Manual...
Page 309: System Log Entries
Warning was unsuccessful (Username: <username>, IP: <ipaddr>) Configuration download by Configuration download by console was Warning console was unsuccessful unsuccessful! (Username: <username>) Configuration successfully Configuration successfully uploaded Informational uploaded (Username: <username>, IP: <ipaddr>) Extreme Networks EAS 100-24t Switch CLI Manual...
Page 310: Appendix A: System Log Entries
Login failed through Telnet (Username: Warning <username>, IP: <ipaddr>) Logout through Telnet Logout through Telnet (Username: Informational <username>, IP: <ipaddr>) Telnet session timed out Telnet session timed out (Username: Informational <username>, IP: <ipaddr>) Extreme Networks EAS 100-24t Switch CLI Manual...
Page 311 AAA local method AAA local method (Username: <username>) Successful login through Successful login through Telnet from <userIP> Informational Telnet authenticated by authenticated by AAA local method AAA local method (Username: <username>) Extreme Networks EAS 100-24t Switch CLI Manual...
Page 312 AAA server (Username: <username>) Login failed through Login failed through Web(SSL) from <userIP> Warning Web(SSL) due to AAA due to AAA server timeout or improper server timeout or improper configuration (Username: <username>) configuration Extreme Networks EAS 100-24t Switch CLI Manual...
Page 313 AAA method (Username: <username>) local_enable method Successful Enable Admin Successful Enable Admin through SSH from Informational through SSH authenticated <userIP> authenticated by AAA local_enable by AAA local_enable method (Username: <username>) method Extreme Networks EAS 100-24t Switch CLI Manual...
Page 314 <userIP> authenticated by AAA server authenticated by AAA <serverIP> (Username: <username>) server Enable Admin failed Enable Admin failed through Web(SSL) from Warning through Web (SSL) <userIP> authenticated by AAA server authenticated by AAA <serverIP> (Username: <username>) server Extreme Networks EAS 100-24t Switch CLI Manual...
Page 315 Port <portNum> Broadcast storm is occurring Warning occurrence Broadcast storm cleared Port <portNum> Broadcast storm has cleared Informational Multicast storm occurrence Port <portNum> Multicast storm is occurring Warning Multicast storm cleared Port <portNum> Multicast storm has cleared Informational Extreme Networks EAS 100-24t Switch CLI Manual...
Page 316 Port <portNum> recovers from Loopback Informational Detection Loopback Detection Detection err-disabled state manually. err-disabled state manually. Port recovers from Port <portNum> recovers from Loopback Informational Loopback Detection Detection err-disabled state automatically. err-disabled state automatically. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 317 (but not from the notPresent state). This other state is indicated by the included value of ifOperStatus. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 318: Appendix B: Trap List
The SNMP trap that is RFC2819 generated when an alarm 1.3.6.1.2.1.16.0.2 alarmVariable, (RMON-MIB) entry crosses its falling alarmSampleType, threshold and generates alarmValue, an event that is configured alarmFallingThreshold for sending SNMP traps. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 319 A lldpRemTablesChange LLDP notification is sent when the 1.0.8802.1.1.2.0.0.1 lldpStatsRemTablesDeletes, (LLDP-MIB) value of lldpStatsRemTablesDrops, lldpStatsRemTableLastChang eTime changes. It can be lldpStatsRemTablesAgeouts utilized by an NMS to trigger LLDP remote systems table maintenance polls. Extreme Networks EAS 100-24t Switch CLI Manual...
Page 320 Appendix B: Trap List Extreme Networks EAS 100-24t Switch CLI Manual...

Extreme Networks EAS 100-24t Switch CLI Manual

Chapter 1: Introduction

Chapter 2: Interface and Hardware

Chapter 3: Fundamentals

Chapter 4: Management

Purpose Syntax Description

Parameters Restrictions

Purpose Syntax Description

Parameters Restrictions

LLDP Commands

Command Enable Lldp

None

Only Administrator-Level Users Can Issue this Command

Only Administrator-Level Users Can Issue this Command

Parameters

Chapter 5: Layer 2 Features

Quick Links

Related Manuals for Extreme Networks EAS 100-24t Switch CLI

Summary of Contents for Extreme Networks EAS 100-24t Switch CLI

Table of Contents