Download Print this page

Dasan V5824G User Manual

Dasan V5824G User Manual

Gpon olt system

Hide thumbs Also See for V5824G:

User manual (831 pages)

Table Of Contents

page of 629

/ 629
Contents
Table of Contents
Bookmarks

Table of Contents

Advertisement

Quick Links

Download this manual See also: User Manual

V5824G

GPON OLT system

User Manual

Table of Contents

Advertisement

Table of Contents

Need help?

Need help?

Do you have a question about the V5824G and is the answer not in the manual?

Questions and answers

Summary of Contents for Dasan V5824G

Page 1 V5824G GPON OLT system User Manual...
Page 2 UMN:CLI User Manual V5824G ※ Copyright 2014 ⓒ DASAN Networks, Inc. Issued by Technical Documentation Team Korea Technical modifications possible. Technical specifications and features are binding only insofar as they are specifically and expressly agreed upon in a written contract.
Page 3: Summary Of Changes
User Manual UMN:CLI V5824G Summary of Changes Initial Issue Contents of update: Chapter/Section Contents Initial release Issue History Issue Date Update Number March. 2014 Initial release (NOS version 1.03 #0011)
Page 4: Table Of Contents
UMN:CLI User Manual V5824G Contents 1 Introduction ..................27 Audience ..................... 27 Document Structure................27 Document Convention ................. 28 Document Notation ................28 Virus Protection ................... 29 GPL/LGPL Warranty and Liability Exclusion ........29 2 System Overview ................31 System Features ................. 32 3 Command Line Interface (CLI) ............
Page 5 User Manual UMN:CLI V5824G 4.1.8 System Rebooting ..................57 4.1.8.1 Manual System Rebooting ................57 4.1.8.2 System Rebooting Scheduler ................. 58 4.1.9 Auto Reset Configuration ................58 4.1.9.1 CPU Load....................... 59 4.1.9.2 Memory ......................59 System Authentication ................. 60 4.2.1 Authentication Method ................
Page 6 UMN:CLI User Manual V5824G 4.5.1.9 Interval of Request to RADIUS Server ............76 4.5.2 802.1x Re-Authentication ................76 4.5.2.1 Enabling 802.1x Re-Authentication ..............76 4.5.2.2 Interval of Re-Authentication ................77 4.5.2.3 Interval of Requesting Re-Authentication ............77 4.5.2.4 802.1x Re-Authentication................77 4.5.3...
Page 7 User Manual UMN:CLI V5824G 6.1.13.6 System/SFP Module Operation ..............100 6.1.14 Enabling DMI Module ................101 Configuration Management ..............102 6.2.1 Displaying System Configuration .............. 102 6.2.2 Writing System Configuration ..............103 6.2.3 Auto-Saving....................103 6.2.4 System Configuration File ................. 103 6.2.5...
Page 8 UMN:CLI User Manual V5824G 7.1.11.3 Default Alarm Severity ................. 127 7.1.11.4 Generic Alarm Severity ................128 7.1.11.5 Displaying SNMP Alarm ................129 7.1.12 SNMP Message Logging ................. 129 7.1.13 Displaying SNMP Configuration ............... 130 7.1.14 Disabling SNMP ..................130 Link Layer Discovery Protocol (LLDP) ..........131 7.2.1...
Page 9 User Manual UMN:CLI V5824G 7.5.2 Packet Classification ................. 150 7.5.2.1 Flow Creation ....................150 7.5.2.2 Configuring Flow ..................151 7.5.2.3 Applying and modifying Flow................ 153 7.5.2.4 Class Creation ....................154 7.5.3 Packet Conditioning .................. 154 7.5.3.1 Policer Creation .................... 154 7.5.3.2...
Page 10 UMN:CLI User Manual V5824G 7.12.2 Configuring MAC Filter Policy ..............185 7.12.3 Listing MAC Filter Policy ................186 7.12.4 Displaying MAC Filter Policy ..............186 7.13 Address Resolution Protocol (ARP) ........... 187 7.13.1 ARP Table ....................187 7.13.1.1 Registering ARP Table ................. 187 7.13.1.2 Displaying ARP Table ...................
Page 11 User Manual UMN:CLI V5824G 8.1.5 Tagged VLAN .................... 216 8.1.6 VLAN Description ..................217 8.1.7 VLAN Precedence ..................217 8.1.8 Displaying VLAN Information ..............217 8.1.9 QinQ VLAN Mapping ................218 8.1.9.1 TPID Configuration ..................219 8.1.9.2 One-to-One VLAN Mapping between S-VID and C-VID ......219 8.1.9.3...
Page 12 UMN:CLI User Manual V5824G 8.3.5.3 BPDU Transmit hold count................251 8.3.5.4 Port Priority ....................252 8.3.5.5 Link Type ..................... 252 8.3.5.6 Enabling STP configuration on the Port ............252 8.3.5.7 Displaying Configuration ................253 8.3.6 Configuring MSTP ..................253 8.3.6.1 MST Region ....................
Page 13 User Manual UMN:CLI V5824G 8.5.1.18 Displaying DHCP Pool Configuration ............282 8.5.2 DHCP Address Allocation with Option 82 ..........282 8.5.2.1 DHCP Class Capability ................283 8.5.2.2 DHCP Class Creation................... 283 8.5.2.3 Relay Agent Information Pattern ..............283 8.5.2.4 Associating DHCP Class ................284 8.5.2.5...
Page 14 UMN:CLI User Manual V5824G 8.5.9.7 Forcing Release or Renewal of DHCP Lease ..........306 8.5.9.8 Displaying DHCP Client Configuration ............306 8.5.10 DHCP Filtering ..................307 8.5.10.1 DHCP Packet Filtering ................. 307 8.5.10.2 DHCP Server Packet Filtering ..............307 8.5.11 Debugging DHCP ..................308 Virtual Router Redundancy Protocol (VRRP) ........
Page 15 User Manual UMN:CLI V5824G 9.2.1.2 Forwarding Entry Aging ................341 9.2.1.3 Displaying McFDB Information ..............341 9.2.2 IGMP Snooping Basic ................342 9.2.2.1 Enabling IGMP Snooping ................343 9.2.2.2 IGMP Snooping Version ................343 9.2.2.3 IGMP Snooping Robustness Value .............. 344 9.2.3...
Page 16 UMN:CLI User Manual V5824G 9.3.2.3 Neighbor Filtering ..................374 9.3.2.4 PIM Join/Prune Message Group Filtering ............ 374 9.3.2.5 PIM Hello Message ..................374 9.3.2.6 PIM Join/Prune Interval ................375 9.3.2.7 PIM VIF Flap Discredit ................. 375 9.3.2.8 PIM Static Join ..................... 376 9.3.2.9...
Page 17 User Manual UMN:CLI V5824G 10.1.9 Route Flap Dampening ................408 10.1.10 BGP Session Reset .................. 409 10.1.10.1 Session Reset of All Peers ................410 10.1.10.2 Session Reset of Peers within Particular AS ..........410 10.1.10.3 Session Reset of Specific Route ..............411 10.1.10.4 Session Reset of External Peer ..............
Page 18 UMN:CLI User Manual V5824G 10.2.17 Blocking Routing Information ..............446 10.2.18 Summary Routing Information ..............446 10.2.19 OSPF Monitoring and Management ............447 10.2.19.1 Displaying OSPF Protocol Information ............447 10.2.19.2 Sending SNMP Trap ..................449 10.2.19.3 Logging Neighbor Changes ................. 449 10.2.19.4 Limiting Number of Database ..............
Page 19 User Manual UMN:CLI V5824G 11.1.12 ONU RX-Power Update ................477 11.1.13 Configurations for RF Return Packet Forwarding ........477 11.1.14 Downstream Traffic Control ..............478 11.1.15 Multicast/Broadcast GEM Port Separation ..........481 11.1.16 Configuring Port/TCONT Threshold ............482 11.1.17 ONU Deactivation Monitoring ..............482 11.1.18 OLT Bit Error Ratio (BER) .................
Page 20 UMN:CLI User Manual V5824G 11.2.21.3 Traffic Profile Configuration (Step2) ............. 519 11.2.21.4 ONU Profile & IP Host Configuration (Step3) ..........521 11.3 ONU Profile ..................524 11.3.1 Creating ONU Profile ................524 11.3.2 Configuring ONU Profile................525 11.3.2.1 RX Optical Power Threshold ................ 525 11.3.2.2 Rogue ONU ....................
Page 21 User Manual UMN:CLI V5824G 11.4.6.1 VoIP Service Management Mode ..............550 11.4.6.2 OMCI Managed VoIP ................... 551 11.4.6.3 IP-path Managed VoIP ................. 551 11.4.6.4 POTS UNI Configuration ................552 11.4.6.5 Protocol Type Configuration ................. 553 11.4.7 TDM Service Configuration (CES UNI) ............. 554 11.4.7.1 Expected Circuit Pack Type .................
Page 22 UMN:CLI User Manual V5824G 11.7.2.5 SIP User Data ....................582 11.7.2.6 Network Dial Plan ..................583 11.7.3 OMCI-based MGC Configuration ............. 584 11.7.4 Saving VoIP Profile .................. 586 11.7.5 Displaying VoIP Information ..............586 11.7.6 Sample Configuration ................586 11.8 TDM Pseudowire Profile ..............587 11.8.1 Creating TDM Pseudowire Profile ............
Page 23 User Manual UMN:CLI V5824G 11.12 Rate-limit Profile ................608 11.12.1 Creating Rate-limit Profile ................. 608 11.12.2 Configuring Rate-limit Profile ..............608 11.12.3 Saving Rate-limit Profile ................609 11.12.4 Applying Rate-limit Profile ................. 609 11.12.5 Displaying Rate-limit Profile ..............610 11.13 ONU Service Profile ................611 11.14 GPON Debug ..................
Page 24 UMN:CLI User Manual V5824G Illustrations Fig. 2.1 Front View of the V5824G ................31 Fig. 3.1 Overview of Configuration Mode ..............43 Fig. 4.1 Process of 802.1x Authentication ..............72 Fig. 4.2 Multiple Authentication Servers ..............73 Fig. 5.1 Port Mirroring ....................87 Fig.
Page 25 VRRP Track ....................314 Fig. 8.35 Rate Limit and Flood Guard ................. 319 Fig. 9.1 The V5824G with IGMP Snooping ............... 327 Fig. 9.2 The V5824G with PIM-SM ................328 Fig. 9.3 The Switch with IGMP Snooping and PIM-SM ..........328 Fig.
Page 26 UMN:CLI User Manual V5824G Tables Tab. 1.1 Overview of Chapters ..................27 Tab. 1.2 Command Notation of Guide Book..............28 Tab. 3.1 Main Command of Privileged EXEC View Mode .......... 36 Tab. 3.2 Main Command of Privileged EXEC Enable Mode ........36 Tab.
Page 27: Introduction
V5824G 1 Introduction Audience This manual is intended for V5824G multi-platform GPON OLT system operators and maintenance personnel for providers of Gigabit passive optical network (GPON) and Ethernet services. This manual assumes that you are familiar with the following: •...
Page 28: Document Convention
UMN:CLI User Manual V5824G Document Convention This guide uses the following conventions to convey instructions and information. Information This information symbol provides useful information when using commands to configure and means reader take note. Notes contain helpful suggestions or references.
Page 29: Virus Protection
You will, however, be required to reimburse Dasan Networks for its costs of postage and copying. Any source code request made by you must be sent within 3 years of your purchase of the product.
Page 30 User Manual V5824G You have no warranty claims against Dasan Networks when a defect in the product is or could have been caused by changes made by you in any part of the software or its configuration. In addition, you have no warranty claims against Dasan Networks when the Open Source Software infringes the intellectual property rights of a third party.
Page 31: System Overview
The Gigabit passive optical network (GPON) is the ideal solution for the bottleneck of Ethernet in the first mile, providing voice, data, and video solutions. The V5824G is a compact sized GPON Optical Line Terminal (OLT) that is comprised of 8 GPON ports. It provides 8 electrical (10/100/1000Base-T, RJ45) and optical...
Page 32: System Features
Network operator can use MIB also to monitor and manage the V5824G. IP Routing The V5824G is Layer 3 switch, which has routing table and IP address as router. Therefore, it supports static routing, RIPv1/v2, OSPFv2 and BGPv4 for unicast routing.
Page 33 V5824G Spanning Tree Protocol (STP) To prevent loop and preserve backup route in Layer 2 network, the V5824G supports Spanning Tree Protocol (STP) defined in IEEE 802.1D. Between STP enabled switches, a root bridge is automatically selected and the network remains in tree topology. However, the recovery time in STP is very slow (about 30 seconds), Rapid Spanning Tree Protocol (RSTP) is also provided.
Page 34 User Manual V5824G RADIUS and TACACS+ The V5824G supports client authentication protocol, that is RADIUS (Remote Authentication Dial-In User Service) and TACACS+ (Terminal Access Controller Access Control System Plus). Not only user IP and password registered in switch but also authentication through RADIUS server and TACACS+ server are required to access.
Page 35: Command Line Interface (Cli)
V5824G connects inband to the cascading switch, and then from the cascading switch to the management network through the outband interface. The V5824G also provides the RS232 console interface to simply access the system with a provided RJ45-to-DB9 cable.
Page 36: Privileged Exec View Mode
UMN:CLI User Manual V5824G 3.1.1 Privileged EXEC View Mode When you log in to the switch, the CLI will start with Privileged EXEC View mode which is a read-only mode. In this mode, you can see a system configuration and information with several commands.
Page 37: Global Configuration Mode
User Manual UMN:CLI V5824G 3.1.3 Global Configuration Mode In Global Configuration mode, you can configure general functions of the system. You can also open another configuration mode from this mode. To open Global Configuration mode, enter the configure terminal command, and then the system prompt will be changed from SWITCH# to SWITCH(config)#.
Page 38: Dhcp Pool Configuration Mode
DHCP Pool Configuration Mode In DHCP Pool Configuration mode, you can configure general functions of DHCP per each DHCP pool. The V5824G supports multiple DHCP environments with this pool- based DHCP configuration. To open DHCP Pool Configuration mode, enter the ip dhcp pool command, then the system prompt will be changed from SWITCH(config)# to SWITCH(config-dhcp[POOL])#.
Page 39: Dhcp Option 82 Configuration Mode
User Manual UMN:CLI V5824G Tab. 3.7 is the main commands of DHCP Option Configuration mode. Command Description attr Configures the attribute for option field in the DHCP packet. Tab. 3.6 Main Command of DHCP Option Configuration Mode 3.1.7 DHCP Option 82 Configuration Mode In DHCP Option 82 Configuration mode, you can configure DHCP option 82 for DHCP relay agent.
Page 40: Rule Configuration Mode
Main Command of Rule Configuration Mode 3.1.10 RMON Configuration Mode In RMON Configuration mode, you can configure RMON alarm, RMON event and RMON history. The V5824G provides three different configuration modes to configure each type of RMON. Command Mode Description rmon-alarm <1-65535>...
Page 41: Router Configuration Mode
In Router Configuration mode, you can configure IP routing protocols and VRRP. The V5824G provides three IP routing protocols such as RIP v2, BGP v4 and OSPF v2. To open Rule Configuration mode, enter the router command, then the system prompt will be changed from SWITCH(config)# to SWITCH(config-router)#.
Page 42: Gpon Configuration Mode
UMN:CLI User Manual V5824G Tab. 3.12 shows main commands of Route-map Configuration mode. Command Description match Classifies routing information to permit or deny. Configures routing information options. Tab. 3.12 Main Command of Route-map Configuration Mode 3.1.13 GPON Configuration Mode In PON Configuration mode, you can configure GPON-related functions. To open GPON Configuration mode, enter the gpon command, then the system prompt will be changed from SWITCH(config)# to SWITCH(gpon)#.
Page 43: Configuration Mode Overview
Configures an VLAN filtering. Tab. 3.14 Main Command of ONU Profile Configuration Mode Configuration Mode Overview Fig. 3.1 shows the overview of the configuration mode for the V5824G. Privileged EXEC View SWITCH> exit Back to previous mode enable Privileged EXEC Enable...
Page 44: Useful Tips
UMN:CLI User Manual V5824G Useful Tips This section describes useful tips for operating the V5824G with a CLI. • Listing Available Command • Calling Command History • Using Abbreviation • Using Command of Privileged EXEC Enable Mode • Exit Current Command Mode 3.3.1...
Page 45 -- more -- Press the <ENTER> key to skip to the next list. In case that the V5824G installed command shell, you can find out commands starting with a specific alphabet. Input the first letter and question mark without space. The following is an example of finding out the commands starting “s”...
Page 46: Calling Command History
UMN:CLI User Manual V5824G The V5824G also provides the simple instruction of calling the help string with the help command. You can see the instruction using the command regardless of the configuration mode. To display the instruction of calling the help string for using CLI, use the following command.
Page 47: Using Abbreviation
User Manual UMN:CLI V5824G To save the command history in non-volatile memory, use the following command. Command Mode Description history non-volatile Global Saves the command history. To delete the non-volatile command history, use the following command. Command Mode Description clear history non-volatile Deletes the command history.
Page 48: Using Command Of Privileged Exec Enable Mode
UMN:CLI User Manual V5824G 3.3.4 Using Command of Privileged EXEC Enable Mode You can execute the commands of Privileged EXEC Enable mode as show, ping, telnet, traceroute, and so on regardless of which mode you are located on. To execute the commands of Privileged EXEC Enable mode on different mode, use the following command.
Page 49: System Connection And Ip Address
4 System Connection and IP Address System Connection After installing the system, the V5824G is supposed to examine that each port is correctly connected to network and management PC. You can connect to the system to configure and manage the V5824G. This section provides instructions how to change password for system connection and how to connect to the system through telnet as the following order.
Page 50: Password For Privileged Exec Enable Mode
UMN:CLI User Manual V5824G 4.1.2 Password for Privileged EXEC Enable Mode You can configure a password to enhance the security for Privileged EXEC Enable mode. To configure a password for Privileged EXEC Enable mode, use the following command. Command Mode...
Page 51: Changing Login Password
4.1.4.1 Creating System Account For the V5824G, the administrator can create a system account. In addition, it is possible to set the security level from 0 to 15 to enhance the system security. To create a system account, use the following command.
Page 52: Security Level
4.1.4.2 Security Level For the V5824G, it is possible to configure the security level from 0 to 15 for a system account. The level 15, as the highest level, has a read-write authority. The administrator can configure from level 0 to level 14. The administrator decides which level user uses which commands in which level.
Page 53 User Manual UMN:CLI V5824G privilege rmon-history level <0-15> {COMMAND | all} privilege dhcp-option82 level Uses the specific command of DHCP Option 82 <0-15> {COMMAND | all} Configuration mode in the level. privilege mst level Uses the specific command of MST Configuration <0-15>...
Page 54 UMN:CLI User Manual V5824G no privilege flow level <0-15> {COMMAND | all} no privilege vrrp level <0-15> {COMMAND | all} no privilege policer level <0-15> {COMMAND | all} no privilege policy level <0-15> {COMMAND | all} no privilege ospf level <0-15> {COMMAND | all} no privilege bridge level <0-15>...
Page 55: Limiting Number Of Users
4.1.5 Limiting Number of Users For the V5824G, you can limit the number of users accessing the switch through telnet. In case of using the system authentication with RADIUS or TACACS+, a configured number includes the number of users accessing the switch via the authentication server.
Page 56: Auto Log-Out
V5824G 4.1.6 Auto Log-out For security reasons of the V5824G, if no command is entered within the configured inactivity time, the user is automatically logged out of the system. Administrator can configure the inactivity timer. To enable auto log-out function, use the following command.
Page 57: System Rebooting
User Manual UMN:CLI V5824G To enable/disable the telnet service, use the following command. Command Mode Description service telnet Enables the use of telnet service (default) Global no service telnet Disables the use of telnet service Shows the status of network connection...
Page 58: System Rebooting Scheduler
4.1.9 Auto Reset Configuration The V5824G reboots the system according to user’s configuration. There are two basises for system rebooting. These are CPU and memory. CPU is rebooted in case CPU Load or Interrupt Load continues for the configured time. Memory is automatically rebooted in...
Page 59: Cpu Load
4.1.9.2 Memory The V5824G provides auto system rebooting function using memory low configuration. Memory-low indicates the low threshold value of system memory in use. To enable auto reset function of memory low setting when a memory-low has occurred as many as its specified numbers during the certain minutes, use the following command.
Page 60: System Authentication
Deletes a configured system authentication method. no login 4.2.2 Authentication Interface If more than 2 interfaces exist in the V5824G, you can set one interface to access RA- DIUS or TACACS server. To set an authentication interface, use the following command. Command...
Page 61: Primary Authentication Method
User Manual UMN:CLI V5824G 4.2.3 Primary Authentication Method You can set the order of the authentication method by giving the priority to each authentication method. To set the primary authentication method, use the following command Command Mode Description Sets a system authentication method.
Page 62: Timeout Of Authentication Request
Deletes a specified timeout value. 4.2.4.4 Frequency of Retransmit In case of no response from a RADIUS server, the V5824G is supposed to retransmit an authentication request. To set the frequency of retransmitting an authentication request, use the following command.
Page 63: Timeout Of Authentication Request
User Manual UMN:CLI V5824G 4.2.5.3 Timeout of Authentication Request After the authentication request, the V5824G waits for the response from the TACACS+ server for specified time. To specify a timeout value, use the following command. Command Mode Description Specifies a timeout value.
Page 64: Accounting Mode
4.2.6 Accounting Mode The V5824G provides the accounting function of AAA (Authentication, Authorization, and Accounting). Accounting is the process of measuring the resources a user has consumed. Typically, accounting measures the amount of system time a user has used or the amount of data a user has sent and received.
Page 65: Configuring Interface
The Layer 2 switches do not need IP addresses to transmit packets. However, if you want to access to the V5824G from a remote place with TCP/IP through SNMP or telnet, it requires an IP address.
Page 66: Assigning Ip Address To Network Interface
UMN:CLI User Manual V5824G 4.3.2 Assigning IP Address to Network Interface After enabling an interface, assign an IP address. To assign an IP address to a network interface, use the following command. Command Mode Description ip address A.B.C.D/M Assigns a primary IP address to an interface.
Page 67: Interface Description
User Manual UMN:CLI V5824G To configure a default gateway, use the following command. Command Mode Description ip route default {GATEWAY | Global Configures a default gateway. null} [<1-255>] To delete a configure default gateway, use the following command. Command Mode...
Page 68: Displaying Interface
UMN:CLI User Manual V5824G 4.3.5 Displaying Interface To display an interface status and configuration, use the following command. Command Mode Description Enable Global Shows an interface status and configuration. show interface [INTERFACE] Bridge INTERFACE: interface name Interface Enable show ip interface {INTERFACE | Shows brief information of interface.
Page 69: Secure Shell (Ssh)
4.4.1 SSH Server The V5824G can be operated as SSH server. You can configure the switch as SSH server with the following procedure. • Enabling SSH Server •...
Page 70: Assigning Specific Authentication Key
Login to SSH Server • Secured File Copy • Authentication Key 4.4.2.1 Login to SSH Server To login to SSH server after configuring the V5824G as SSH client, use the following command. Command Mode Description Logins to SSH server. login...
Page 71: Secured File Copy
It is safer to use authentication key than inputting password every time for login, and it is possible to connect to several SSH servers with using one authentication key. To configure an authentication key in the V5824G, use the following command. Command Mode...
Page 72: Authentication
802.1x authentication adopts EAP (Extensible Authentication Protocol) structure. In EAP system, there are EAP-MD5 (Message Digest 5), EAP-TLS (Transport Level Security), EAP-SRP (Secure Remote Password), EAP-TTLS (Tunneled TLS) and the V5824G supports EAP-MD5 and EAP-TLS. Accessing with user’s ID and password, EAP-MD5 is 1-way Authentication based on the password.
Page 73: Authentication
User Manual UMN:CLI V5824G 4.5.1 802.1x Authentication 4.5.1.1 Enabling 802.1x To configure 802.1x, the user should enable 802.1x daemon first. To enable 802.1x daemon, use the following command. Command Mode Description dot1x system-auth-control Enables 802.1x daemon. Global no dot1x system-auth-control Disables 802.1x daemon.
Page 74: Authentication Mode
UMN:CLI User Manual V5824G After default server is designated, all requests start from the RADIUS server. If there’s no response from default server again, the authentication request is tried for RADIUS server designated as next one. To configure IP address of RADIUS server and key value, use the following command.
Page 75: Authentication Port
4.5.1.6 Interval for Retransmitting Request/Identity Packet In the V5824G, it is possible to specify how long the device waits for a client to send back a response/identity packet after the device has sent a request/identity packet. If the client does not send back a response/identity packet during this time, the device retransmits the request/identity packet.
Page 76: Number Of Requests To Radius Server
4.5.1.9 Interval of Request to RADIUS Server For the V5824G, it is possible to set the time for the retransmission of packets to check RADIUS server. If there is a response from other packets, the switch waits for a response from RADIUS server during the configured time before resending the request.
Page 77: Interval Of Re-Authentication
In the V5824G, you can set the number of seconds that the authenticator should wait for a response to request/identity packet from the suppliant before retransmitting the request.
Page 78: Initializing Authentication Status
UMN:CLI User Manual V5824G 4.5.3 Initializing Authentication Status The user can initialize the entire configuration on the port. Once the port is initialized, the supplicants accessing to the port should be re-authenticated. Command Mode Description dot1x initialize PORTS Global Initializes the authentication status on the port.
Page 79 User Manual UMN:CLI V5824G SWTICH(config)# dot1x system-auth-control SWTICH(config)# dot1x nas-port 6 SWTICH(config)# dot1x port-control force-authorized 6 SWTICH(config)# dot1x radius-server host 10.1.1.1 auth-port 1812 key test SWTICH(config)# show dot1x 802.1x authentication is enabled. RADIUS Server TimeOut: 1(S) RADIUS Server Retries: 3 RADIUS Server : 10.1.1.1 (Auth key : test)
Page 80: Port Configuration
Gigabit Ethernet components. In this chapter, you can find the instructions for the basic port configuration such as auto-negotiation, flow control, transmit rate, etc. Please read the following instructions carefully before you configure a port in the V5824G. This chapter contains the following sections.
Page 81: Auto-Negotiation
User Manual UMN:CLI V5824G TYPE PVID STATUS MODE FLOWCTRL INSTALLED (ADMIN/OPER) (ADMIN/OPER) ------------------------------------------------------------------------ GPON Down/Down Auto/Full/2500 Off/ Off SWITCH(bridge)# 5.2.2 Auto-Negotiation Auto-negotiation is a mechanism that takes control of the cable when a connection is established to a network device. Auto-negotiation detects the various modes that exist in the network device on the other end of the wire and advertises it own abilities to automatically configure the highest performance mode of interoperation.
Page 82: Duplex Mode
UMN:CLI User Manual V5824G 5.2.4 Duplex Mode Ethernet operates in either half-duplex or full-duplex mode. In full-duplex mode, frames travel in both directions simultaneously over two channels on the same connection for an aggregate bandwidth of twice that of half-duplex mode. Full duplex networks are very efficient since data can be sent and received simultaneously.
Page 83: L2 Port Bridge
5.2.7 L2 Port Bridge The V5824G supports L2 port bridge feature to allow the switch to transmit the packet out on the same port of which it received. It allows the switch to transmit the packet out on the same port of which it received. When the MAC address is found, the packet is forwarded to its destination port.
Page 84: Cpu Statistics
[PORTS] Bridge CPU. The V5824G can be configured to generate a syslog message when the number of the packets handled by CPU exceeds a specified value. This function allows system administrators to monitor the switch and network status more effectively.
Page 85: Protocol Statistics
User Manual UMN:CLI V5824G Disables the switch to generate a syslog message statistics-limit according to the number of the packets handled by {PORTS | all} CPU for all packet types. To display a configured value to generate a syslog message according to the number of the packets handled by CPU, use the following command.
Page 86: Port Information
UMN:CLI User Manual V5824G 5.2.9 Port Information To display the port information, use the following command. Command Mode Description show port [PORTS] Shows a current port status, enter a port number. PORTS: port number show port status [PORTS] Enable Shows a specified port description, enter a port...
Page 87: Port Mirroring
User Manual UMN:CLI V5824G Port Mirroring Port mirroring is the function of monitoring a designated port. Here, one port to monitor is called monitor port and a port to be monitored is called mirrored port. Traffic transmitted from mirrored port are copied and sent to monitor port so that user can monitor network traffic.
Page 88 Mode Description Designates the mirrored VLAN. mirror add vlan VLANS Bridge VLANS: VLAN ID The V5824G supports the VLAN mirroring function for the ingress traffic only. Step 3 Activate the port mirroring, using the following command. Command Mode Description mirror enable Bridge Activates port mirroring.
Page 89 User Manual UMN:CLI V5824G - Mirrored Ports ----------------------------------------- |123456789012345678 ----------------------------------------- Ingress Mirrored Ports|..oo..Egress Mirrored Ports |..oo..- Mirrored VLANs ---------------- ---------------- SWITCH(bridge)#...
Page 90: System Environment
Enable show clock Global Shows system time and date. Bridge The V5824G can be configured to observe the daylight saving time in specified area. It means that whenever the system time is updated using a time server located in a...
Page 91: Time Zone
6.1.3 Time Zone The V5824G provides three kinds of time zone, GMT, UCT and UTC. The time zone of the switch is predefined as GMT (Greenwich Mean Time). You can also set the time zone where the network element belongs.
Page 92: Network Time Protocol (Ntp)
UMN:CLI User Manual V5824G To set the time zone, use the following command. Command Mode Description time-zone TIMEZONE Sets the time zone (refer to the below table). Global clear time-zone Clears a configured time zone. To display the world time zone, use the following command.
Page 93: Simple Network Time Protocol (Sntp)
User Manual UMN:CLI V5824G To display a configured NTP, use the following command. Command Mode Description Enable show ntp Global Shows a configured NTP function. Bridge To synchronize the system clock, the system periodically sends the NTP message to the NTP server.
Page 94: Terminal Configuration
6.1.6 Terminal Configuration By default, the V5824G is configured to display 24 lines composed by 80 characters on console terminal. You can change the number of displaying lines by using the terminal length command. The maximum line displaying is 512 lines.
Page 95: Dns Server
User Manual UMN:CLI V5824G To restore a default banner, use the following command. Command Mode Description no banner no banner login Global Restores a default banner. no banner login-fail To display a current login banner, use the following command. Command...
Page 96: Fan Operation
UMN:CLI User Manual V5824G 6.1.9 Fan Operation For the V5824G, it is possible to control fan operation. To control fan operation, use the following command. Command Mode Description fan operation {on | off | auto} Global Configures fan operation. It is possible to configure to start and stop fan operation according to the system temperature.
Page 97: Disabling Daemon Operation
IP address. However, an interface of the V5824G may have multiple IP addresses. In such a multiple-IP environment, a primary IP address is normally used. You can configure the V5824G to use one of the secondary IP addresses as a source IP of an FTP client.
Page 98: System Threshold
6.1.13 System Threshold You can configure the system with various kinds of the system threshold such as CPU load, traffic, temperature, etc. Using this threshold, the V5824G generates syslog messages, sends SNMP traps, or performs a relevant procedure. 6.1.13.1 CPU Load To set the threshold of CPU load, use the following command.
Page 99: Fan Operation
User Manual UMN:CLI V5824G To set the blocking timer, use the following command. Command Mode Description Sets the blocking timer. threshold port PORTS block PORTS: port number timer <10-3600> Bridge 10-3600: blocking time (unit: second) no threshold port PORTS block Disables the blocking timer To display the configured threshold of port traffic, use the following command.
Page 100: System Memory
UMN:CLI User Manual V5824G To display the configured threshold of system temperature, use the following command. Command Mode Description Enable Shows the status and configured threshold of system show status temp Global temperature. Bridge 6.1.13.5 System Memory To set the threshold of system memory in use, use the following command.
Page 101: Enabling Dmi Module
This module DMI command is enabled by default. Thus, if you don’t want to get DMI information, configure this setting as disable. If disabled, the V5824G does not show DMI information of the SFP ports when using the show port module-info command.
Page 102: Configuration Management
UMN:CLI User Manual V5824G Configuration Management You can verify if the system configurations are correct and save them in the system. This section contains the following functions. • Displaying System Configuration • Writing System Configuration • Auto-Saving • System Configuration File •...
Page 103: Writing System Configuration
6.2.3 Auto-Saving The V5824G supports the auto-saving feature, allowing the system to save the system configuration automatically. This feature prevents the loss of unsaved system configuration by unexpected system failure. To allow the system to save the system configuration automatically, use the following command.
Page 104 Enable Shows a current startup configuration. Global show config-list Shows a list of configuration files. Bridge The following is an example of displaying a list of configuration files. SWITCH(config)# copy running-config V5824G SWITCH(config)# show config-list ========================= CONFIG-LIST ========================= l3_default V5824G...
Page 105: Restoring Default Configuration
The V5824G can be configured to generate core dumps and save them in ramdisk for useful debugging aids in several situations such as accesses to non-existent memory, segmentation errors.
Page 106: System Management
UMN:CLI User Manual V5824G System Management When there is any problem in the system, you must find what the problem is and its solution. Therefore, you should not only be aware of a status of the system but also verify if the system is correctly configured.
Page 107: Tab. 6.2 Options For Ping For Multiple Ip Addresses
User Manual UMN:CLI V5824G The following is an example of ping test 5 times to verify network status with IP address 10.55.193.110. SWITCH# ping Protocol [ip]: ip Target IP address: 10.55.193.110 Repeat count [5]: 5 Datagram size [100]: 100 Timeout in seconds [2]: 2 Extended commands [n]: n PING 10.55.193.110 (10.55.193.110) 100(128) bytes of data.
Page 108: Ip Icmp Source Routing
Ping Test for Network Status Fig. 6.1, if you perform ping test from PC to C, it goes through the route of A→B→C. This is the general case. But, the V5824G can enable to perform ping test from PC as the route of A→E→D→C.
Page 109: Tracing Packet Route
To perform ping test as the route which the manager designated, use the following steps. Step 1 Enable IP source-routing function from the equipment connected to PC which the PING test is going to be performed. To enable/disable IP source-routing in the V5824G, use the following command. Command Mode Description ip icmp source-route Enable IP source-routing function.
Page 110: Displaying User Connecting To System
UMN:CLI User Manual V5824G The followings are the configurable options to trace the routes. Items Description Protocol [ip] Supports ping test. Default is IP. Sends ICMP echo message by inputting IP address or host name of Target IP address destination in order to check network status with relative.
Page 111: Mac Table
User Manual UMN:CLI V5824G 6.3.5 MAC Table To display MAC table recorded in specific port, use the following command. Command Mode Description show mac [BRIDGE] Enable Shows MAC table. Global BRIDGE: bridge name show mac BRIDGE PORTS Bridge The following is an example of displaying a current MAC table.
Page 112: System Memory Information
Global 6.3.10 Running Process The V5824G provides a function that shows information of the running processes. The information with this command can be very useful to manage the switch. To display information of the running processes, use the following command.
Page 113: Displaying System Software
User Manual UMN:CLI V5824G The following is an example of displaying information of the running processes. SWITCH# show process USER PID %CPU %MEM STAT START TIME COMMAND admin 1448 20:12 0:05 init [3] admin 20:12 0:00 [keventd] admin 20:12 0:00...
Page 114: Default Os
6.3.13 Default OS The V5824G supports the dual OS feature. You can verify the running OS in the flash memory with the show flash command. When two system OSs are installed, you can set one of those as the default OS. To set the default OS of the system, use the following command.
Page 115: Tech Support Information
To reduce the effort to acquire the detail informtation of the system for a technical suppport, the V5824G provides the function that generates all the system information reflecting the current state. Using this function, you can verify all the details on a console screen or even in the remote place via FTP/TFTP.
Page 116 UMN:CLI User Manual V5824G To disable NSM debugging, use the following command. Command Mode Description no debug nsm [all] no debug nsm {events | kernel} Enable Disables NSM debugging. no debug nsm packet {send | recv} [detail] no debug nsm packet [detail] To display the debugging information, use the following command.
Page 117: Network Management
SNMP agent sends a trap to administrator for specific cases. Trap is a warning message to alert network status to SNMP administrator. The V5824G enhances access management of SNMP agent and limits the range of OID opened to agents. The following is how to configure SNMP.
Page 118: Snmp Community
UMN:CLI User Manual V5824G 7.1.2 SNMP Community Only an authorized person can access SNMP agent by configuring SNMP community with a community name and additional information. To configure SNMP community to allow an authorized person to access, use the following command.
Page 119: Assigning Ip Address Of Snmp Agent
User Manual UMN:CLI V5824G The following is an example of specifying basic information of SNMP agent. SWITCH(config)# snmp contact dasan<02.3484.6500> SWITCH(config)# show snmp contact contact dasan<02.3484.6500> SWITCH(config)# snmp location Seoul,Korea SWITCH(config)# show snmp location location Seoul,Korea SWITCH(config)# To display the basic information of the SNMP agent, use the following command.
Page 120: Snmp Com2Sec
UMN:CLI User Manual V5824G 7.1.5 SNMP Com2sec SNMP v2 authorizes the host to access the agent according to the identity of the host and community name. The com2sec command specifies the mapping from the identity of the host and community name to security name.
Page 121: Snmp View Record
User Manual UMN:CLI V5824G 7.1.7 SNMP View Record You can create an SNMP view record to limit access to MIB objects with object identity (OID) by an SNMP manager. To configure an SNMP view record, use the following command. Command...
Page 122: Snmp Version 3 User
UMN:CLI User Manual V5824G To display a granted SNMP group to access to a specific SNMP view record, use the following command. Command Mode Description Enable Shows a granted SNMP group to access to a specific show snmp access Global SNMP view record.
Page 123: Snmp Trap Host
User Manual UMN:CLI V5824G 7.1.10.2 SNMP Trap Host To set an SNMP trap host, use the following command. Command Mode Description snmp trap-host A.B.C.D [COMMUNITY] Specifies an SNMP trap v1 host. snmp trap2-host A.B.C.D [COMMUNITY] Global Specifies an SNMP trap v2 host.
Page 124 UMN:CLI User Manual V5824G • trap-log is shown when the trap logs are more than 90% full and will wrap around soon. The system is configured to send all the SNMP traps by default. To enable the SNMP trap, use the following command.
Page 125: Displaying Snmp Trap
User Manual UMN:CLI V5824G 7.1.10.4 Displaying SNMP Trap To display the configuration of the SNMP trap, use the following command. Command Mode Description show snmp trap Enable Shows the configuration of SNMP trap. Global show snmp alarm-report Shows a collected alarm report based trap.
Page 126: Snmp Trap Message Logging And Threshold
UMN:CLI User Manual V5824G 7.1.10.5 SNMP Trap Message Logging and Threshold SNMP trap message logs are useful to the system administrator for troubleshooting problems in the network. To enable/disable SNMP trap message logging to the non- volatile memory, use the following command.
Page 127: Snmp Alarm
7.1.11 SNMP Alarm The V5824G provides an alarm notification function. The alarm will be sent to a SNMP trap host whenever a specific event in the system occurs through CLI. You can also set the alarm severity on each alarm and make the alarm be shown only in case of selected severity or higher.
Page 128: Generic Alarm Severity
UMN:CLI User Manual V5824G 7.1.11.4 Generic Alarm Severity To set generic alarm severity, use the following command. Command Mode Description snmp alarm-severity admin-access-login Sets severity of an alarm for admin- {critical major minor warning access-login. intermediate} snmp alarm-severity auth-fail {critical | major Sets severity of an alarm for auth-fail.
Page 129: Displaying Snmp Alarm
User Manual UMN:CLI V5824G no snmp alarm-severity mfgd-block no snmp alarm-severity port-link-down no snmp alarm-severity port-link-up no snmp alarm-severity port-thread-over no snmp alarm-severity rmon-alarm-rising no snmp alarm-severity rmon-alarm-falling no snmp alarm-severity system-restart 7.1.11.5 Displaying SNMP Alarm To display a collected alarm, use the following command.
Page 130: Displaying Snmp Configuration
UMN:CLI User Manual V5824G To display the SNMP message logs in the non-volatile memory, use the following command. Command Mode Description show snmp log Shows the recorded SNMP message logs. Shows the recorded SNMP message logs in the non- show...
Page 131: Link Layer Discovery Protocol (Lldp)
LAN according to IEEE 802.1ab standard. 7.2.1 LLDP Operation The V5824G supporting LLDP transmits the management information between near switches. The information carries the management information that can recognize the network elements and the function. This information is saved in internal Management Information Base (MIB).
Page 132: Lldp Message
Deletes the specified TLV location ID. 7.2.5 LLDP Message For the V5824G, it is possible to configure the interval time and times of sending LLDP message. To configure the interval time and times of LLDP message, use the following command.
Page 133: Displaying Lldp Configuration
User Manual UMN:CLI V5824G To configure delay time of transmitting LLDP frame, use the following command. Command Mode Description Configures delay time of transmitting LLDP frame. lldp txdelay <1-8192> Bridge (default: 2) 7.2.7 Displaying LLDP Configuration To display LLDP configuration, use the following command.
Page 134: Remote Monitoring (Rmon)
RMON. There are nine RMON MIB groups defined in RFC 1757: Statistics, History, Alarm, Host, Host Top N, Matrix, Filter, Packet Capture and Event. The V5824G supports two MIB groups of them, most basic ones: Statistics (only for uplink ports) and History.
Page 135: Source Port Of Statistical Data
User Manual UMN:CLI V5824G write Write running configuration to memory or terminal SWITCH(config-rmonhistory[5])# 7.3.1.1 Source Port of Statistical Data To specify a source port of statistical data, use the following command. Command Mode Description Specifies a data object ID: data-source NAME RMON NAME: enters a data object ID.
Page 136: Deleting Configuration Of Rmon History
UMN:CLI User Manual V5824G Before activating RMON history, check if your configuration is correct. After RMON history is activated, you cannot change its configuration. If you need to change configuration, you need to delete the RMON history and configure it again.
Page 137: Subject Of Rmon Alarm
User Manual UMN:CLI V5824G 7.3.2.1 Subject of RMON Alarm You need to configure RMON alarm and identify subject using many kinds of data from alarm. To identify subject of alarm, use the following command. Command Mode Description Identifies subject using relevant data, enter the name...
Page 138: Lower Bound Of Threshold
UMN:CLI User Manual V5824G After configuring upper bound of threshold, configure to generate RMON event when object is more than configured threshold. Use the following command. Command Mode Description Configures to generate RMON event when object is rising-event <1-65535> RMON more than configured threshold.
Page 139: Interval Of Sample Inquiry
User Manual UMN:CLI V5824G To configure the first alarm to occur when object is firstly more than threshold or less than threshold, use the following command. Command Mode Description Configures the first Alarm to occur when object is firstly startup-type rising-and-falling RMON more than threshold or less than threshold.
Page 140: Event Community
UMN:CLI User Manual V5824G 7.3.3.1 Event Community When RMON event occurs, you need to input community to transmit SNMP trap message to host. Community means a password to give message transmission right. To configure community for trap message transmission, use the following command.
Page 141: Activating Rmon Event
User Manual UMN:CLI V5824G 7.3.3.5 Activating RMON Event After finishing all configurations, you should activate RMON event. To activate RMON event, use the following command. Command Mode Description active RMON Activates RMON event. 7.3.3.6 Deleting Configuration of RMON Event Before changing the configuration of RMON event, you should delete RMON event of the number and configure it again.
Page 142: Syslog
UMN:CLI User Manual V5824G Syslog The syslog is a function that allows the network element to generate the event notification and forward it to the event message collector like a syslog server. This function is enabled as default, so even though you disable this function manually, the syslog will be enabled again.
Page 143 User Manual UMN:CLI V5824G Syslog Output Level with a Priority To set a user-defined syslog output level with a priority, use the following command. Command Mode Description syslog output priority {auth | authpriv | kern | local0 | local1 |...
Page 144: Facility Code
UMN:CLI User Manual V5824G The order of priority is emergency > alert > critical > error > warning > notice > info > debug. If you set a specific level of syslog output, you will receive only a syslog message for selected level or higher.
Page 145: Syslog Bind Address
User Manual UMN:CLI V5824G 7.4.3 Syslog Bind Address You can specify an IP address to attach to the syslog message for its identity. To specify the IP address to bind to a syslog message, use the following command. Command Mode Description syslog bind-address A.B.C.D...
Page 146: Displaying Syslog Configuration
UMN:CLI User Manual V5824G 7.4.7 Displaying Syslog Configuration To display the configuration of the syslog, use the following command. Command Mode Description show syslog Shows the configuration of the syslog. Enable Shows the usage of the area where the received...
Page 147: Rule And Qos
V5824G Rule and QoS The V5824G provides a rule and QoS feature for traffic management. The rule classifies incoming traffic, and then processes the traffic according to user-defined policies. You can use the physical port, 802.1p priority (CoS), VLAN ID, DSCP, and so on to classify incoming packets.
Page 148: How To Operate Qos
UMN:CLI User Manual V5824G 7.5.1 How to Operate QoS QoS operation is briefly described as below. Incoming packets are classified by configured conditions, and then processed by packet counter and rate-limiting on specific policer. After marking and remarking action, the switch transmits those classified and processed packets via a given scheduling algorithm.
Page 149: Fig. 7.2 Structure Of Rule
• Scheduling Algorithm To handle traffic, you need to configure differently processing orders of traffic by using scheduling algorithms. The V5824G provides: – Strict Priority Queuing (SP) – Deficit Round Robin (DRR) – Weighted Round Robin (WRR) An already applied rule cannot be modified. It needs to be deleted and then created again with changed values.
Page 150: Packet Classification
Packet classification features allow traffic to be partitioned into multiple priority levels, or classes of service. In Flow Configuration mode, you can set packet classification criterias via flow, which is with unique name. If you specify the value of parameters, the V5824G classifies the packets corresponding to the parameters.
Page 151: Configuring Flow
User Manual UMN:CLI V5824G 7.5.2.2 Configuring Flow The packet classification condition needs to be defined. You can classify the packets via MAC address, IP address, Ethernet type, CoS, DSCP etc. To specify a packet-classifying pattern with source/destination IP address or MAC address, use the following command.
Page 152 UMN:CLI User Manual V5824G When specifying a source and destination IP address as a packet-classifying pattern, the destination IP address must be after the source IP address. To specify a packet-classifying pattern with various parameters (CoS, ToS, IP precedence, packet length, Ethernet type, IP header), use the following command.
Page 153: Applying And Modifying Flow
User Manual UMN:CLI V5824G DSCP name Value DSCP name Value Best Effort or Default AF21 AF22 AF23 AF31 AF32 AF33 AF41 AF42 AF11 AF43 AF12 AF13 Tab. 7.1 DSCP Values To delete the specified packet-classifying pattern, use the following command.
Page 154: Class Creation
UMN:CLI User Manual V5824G You should save and apply the flow to system whenever you modify or configure the flow. 7.5.2.4 Class Creation A class is a set of flows. More than 2 flows can belong to one class. You can simply handle and configure the packets on several flows at once.
Page 155: Packet Counter
User Manual UMN:CLI V5824G After opening Policer Configuration mode, a policer can be configured by user. The rate- limit, meter and packet count can be configured for each policer. • The policer name must be unique. Its size is limited to 32 significant characters.
Page 156: Rate-Limit
UMN:CLI User Manual V5824G 7.5.3.3 Rate-limit You can configure the rate limit in kbps unit for the classified packets and control the bandwidth. To set the bandwidth of classified packets in specified policer, use the following command. Command Mode Description...
Page 157 User Manual UMN:CLI V5824G After opening Policy Configuration mode, a policy can be configured by user. The rule priority and rule action(s) can be configured for each policy. • The policy name must be unique. Its size is limited to 32 significant characters.
Page 158: Metering
The V5824G provides Token Bucket (srTCM and trTCM) meters. Token Bucket The token bucket is a control mechanism that transmits traffic by tokens in the bucket.
Page 159: Fig. 7.4 Behavior Of Srtcm (1)
User Manual UMN:CLI V5824G Single Rate Three Color Marker (srTCM) The srTCM meters an IP packet stream and marks its packet the one among green, yellow, and red using Committed Information Rate (CIR) and two associated burst sizes, Committed Burst Size (CBS) and Excess Burst Size (EBS). A packet is marked green if it does not exceed the CBS, yellow if it exceeds the CBS, but not the EBS, and red otherwise.
Page 160: Fig. 7.5 Behavior Of Srtcm (2)
UMN:CLI User Manual V5824G Tokens are regenerated Tokens are regenerated based on CIR based on CIR Bucket C Bucket E Token Empty If the bucket C is empty, the tokens in the bucket E are decremented by the size of the packet...
Page 161: Fig. 7.7 Behavior Of Trtcm (1)
User Manual UMN:CLI V5824G PIR and CIR are the regenerating rate of tokens for PBS and CBS respectively, which is measured in bytes of IP packets per second. PIR must be equal to or greater than CIR. PBS and CBS are the maximum size for each token bucket, P and C, measured in bytes.
Page 162: Fig. 7.8 Behavior Of Trtcm (2)
UMN:CLI User Manual V5824G Tokens are regenerated Tokens are regenerated based on PIR faster than CIR based on CIR Bucket P Bucket C Empty Token If the bucket C is empty, the tokens in the bucket P are decremented by the...
Page 163 User Manual UMN:CLI V5824G In the color-blind mode, the meter assumes that the packet stream is uncolored. In the color-aware mode the meter assumes that some preceding entity has pre-colored the incoming packet stream so that each packet is the one among green, yellow, and red.
Page 164: Policy Priority
UMN:CLI User Manual V5824G 7.5.4.3 Policy Priority If rules that are more than two match the same packet then the rule having a higher priority will be processed first. To set a priority for a policy, use the following command.
Page 165: Setting Cos And Tos Values
User Manual UMN:CLI V5824G 7.5.4.5 Setting CoS and ToS values To specify a CoS or ToS value for a matching condition, use the following command. Command Mode Description Configures the 802.1p class of service value. action match <0-7> 0-7: CoS value overwrite overwrite: changes 802.1p class of service value with...
Page 166: Applying And Modifying Policy
UMN:CLI User Manual V5824G To detach a policy from an interface, use the following command. Command Mode Description interface-binding port Removes an attached policy from ingress port. ingress [PORTS] no interface-binding port egress Policy Removes an attached policy from egress port.
Page 167: Admin Rule
Shows all configurations of each rule policer | policy } 7.5.6 Admin Rule For the V5824G, it is possible to block a specific service connection like telnet, FTP, ICMP, etc with an admin rule function. 7.5.6.1 Creating Admin Flow for packet classification To classify packets by a specific admin flow for the V5824G, you need to open Admin- Flow Configuration mode first.
Page 168: Configuring Admin Flow
UMN:CLI User Manual V5824G 7.5.6.2 Configuring Admin Flow You can classify the packets according to IP address, ICMP, TCP, UDP and IP header length. To specify a packet-classifying pattern, use the following command. Command Mode Description Classifies an IP address.
Page 169: Applying And Modifying Admin Flow
User Manual UMN:CLI V5824G To delete a specified packet-classifying pattern, use the following command. Command Mode Description no ip Deletes a specified packet-classifying pattern for each Admin-Flow option. no ip header-length 7.5.6.3 Applying and modifying Admin Flow After configuring an admin flow using the above commands, apply it to the system with the following command.
Page 170: Admin Rule Action
User Manual V5824G 7.5.7 Admin Rule Action 7.5.7.1 Admin Policy Creation For the V5824G, you need to open Admin-Policy Configuration mode first. To open Policy Configuration mode, use the following command. Command Mode Description Creates an admin policy and opens Admin-Policy...
Page 171: Admin Policy Priority
User Manual UMN:CLI V5824G To remove flow or class from the policy, use the following command. Command Mode Description no include-flow Removes the admin flow from this policy. Admin- Policy no include-class Removes the admin class from this policy. 7.5.7.2...
Page 172: Applying And Modifying Admin Policy
UMN:CLI User Manual V5824G 7.5.7.4 Applying and Modifying Admin Policy After configuring an admin policy using the above commands, apply it to the system with the following command. If you do not apply this policy to the system, all specified configurations from Admin-Policy Configuration mode will be lost.
Page 173: Scheduling
UMN:CLI V5824G 7.5.9 Scheduling To process incoming packets by the queue scheduler, the V5824G provides the scheduling algorithm as Strict Priority Queuing (SP), Weighted Round Robin (WRR) and Deficit Round Robin (DRR). Strict Priority Queuing (SP) SPQ processes first more important data than the others. Since all data are processed by their priority, data with high priority can be processed fast but data without low priority might be delayed and piled up.
Page 174: Fig. 7.11 Deficit Round Robin
UMN:CLI User Manual V5824G Deficit Round Robin Queing Queue1 (50% b/w, Quantum [1] = 1000 Scheduler Queue2 (25% b/w, Quantum [2] = 500 Queue3 (25% b/w, Quantum [3] = 500 Fig. 7.11 Deficit Round Robin Weighted Round Robin (WRR) WRR processes packets as much as weight. Processing the packets that have higher priority is the same way as strict priority queuing.
Page 175: Scheduling Mode
User Manual UMN:CLI V5824G 7.5.9.1 Scheduling mode To select a packet scheduling mode, use the following command. Command Mode Description Selects a packet scheduling mode for a ports: sp: strict priority queuing qos scheduling-mode {sp | wrr | wrr: weighted round robin...
Page 176: Maximum And Minimum Bandwidth
UMN:CLI User Manual V5824G 7.5.9.3 Maximum and Minimum Bandwidth To set a maximum bandwidth, use the following command. Command Mode Description Sets a maximum bandwidth for each port and queue: PORTS: port numbers qos max-bandwidth PORTS <0- Global 0-7: queue number 7>...
Page 177: The Traffic Of Queue
User Manual UMN:CLI V5824G To display the DSCP-to-CoS configuration, use the following command. Command Mode Description Enable show qos map dscp [<0-63>] Global Shows the DSCP-to-CoS configuration. Bridge To determine the 802.1p priority of incoming packets through a port using dscp-to-cos mapping table, use the following command.
Page 178: Netbios Filtering
However, the more computers are used recently, the more strong security is required. To secure individual customer’s information and prevent information leakages in the LAN environ-men, the V5824G provides NetBIOS filtering function. Without NetBIOS filtering, customer’s data may be opened to each other even though the data should be kept.
Page 179: Martian Filtering
User Manual UMN:CLI V5824G Martian Filtering It is possible to block packets, which trying to bring different source IP out from same network. If packet brings different IP address, not its source IP address, then it is impossible to know it makes a trouble. Therefore, you would better prevent this kind of packet outgoing from your network.
Page 180: Max Host
UMN:CLI User Manual V5824G Max Host You can limit the number of users by configuring the maximum number of users also named as max hosts for each port. In this case, you need to consider not only the number of PCs in network but also devices such as switches in network.
Page 181: Port Security
User Manual UMN:CLI V5824G Port Security You can use the port security feature to restrict input to an interface by limiting and identifying MAC addresses of the PCs that are allowed to access the port. When you assign secure MAC addresses to a secure port, the port does not forward packets with source addresses outside the group of defined addresses.
Page 182: Port Security Aging
UMN:CLI User Manual V5824G To disable the configuration of port secure, use the following command. Command Mode Description no port security PORTS Disables port security on the port. no port security PORTS mac- Deletes a secure MAC address for the port.
Page 183: Displaying Port Security
Bridge 7.10 Outband Management Port Security The V5824G provides the function that prevents users from accessing the outband management network via the subscriber interface. Using this function, in case that a certain packet’s destination is MGMT interface—the V5824G’s outband management interface, the system discards that packet.
Page 184 UMN:CLI User Manual V5824G To remove the registered dynamic MAC addresses from the MAC table, use the following command. Command Mode Description Clears dynamic MAC addresses. clear mac [NAME] NAME: bridge name Enable Clears dynamic MAC addresses. clear mac NAME PORT...
Page 185: Mac Filtering
User Manual UMN:CLI V5824G 7.12 MAC Filtering It is possible to forward frame to MAC address of destination. Without specific performance degradation, maximum 4096 MAC addresses can be registered. 7.12.1 Default MAC Filter Policy The basic policy of filtering based on system is set to allow all packets for each port.
Page 186: Listing Mac Filter Policy
UMN:CLI User Manual V5824G To delete MAC filtering policy, use the following command. Command Mode Description mac-filter del SRC-MAC-ADDR Bridge Deletes filtering policy for specified MAC address. [<1-4094>] To delete MAC filtering function, use the following command. Command Mode Description...
Page 187: Address Resolution Protocol (Arp)
(VLAN ID) where packets are forwarded. The V5824G ARP saves IP/MAC addresses mappings in ARP table for quick search. Referring to the information in ARP table, packets attached IP address is transmitted to network.
Page 188: Displaying Arp Table
Although clients are joined in the same client switch, it may be impossible to communicate between them for security reasons. When you need to make them communicate each other, the V5824G supports ARP alias, which responses the ARP request from client net through the concentrating switch.
Page 189: Arp Inspection
User Manual UMN:CLI V5824G To set aging time of gateway IP address in ARP alias, use the following command. Command Mode Description arp alias aging-time Sets the aging time of gateway IP address. <5-2147483647> 5-2147483647: aging time (default: 300 seconds)
Page 190 UMN:CLI User Manual V5824G After opening ARP Access List Configuration mode, the prompt changes from SWITCH(config)# SWITCH(config-arp-acl[NAME])#. After opening ARP ACL Configuration mode, a range of IP addresses can be configured to apply ARP inspection. By default, ARP Access List discards the ARP packets of all IP addresses and MAC addresses.
Page 191 User Manual UMN:CLI V5824G To specify the range of IP address to forward ARP packets, use the following command. Command Mode Description Permits ARP packets of all IP addresses with all MAC addresses which have not learned before on ARP permit ip any mac {any | host inspection table or a specific MAC address.
Page 192: Enabling Arp Inspection Filtering
VLAN using the ip arp inspection filter command. 7.13.3.3 ARP Address Validation The V5824G also provides the ARP validation feature. Regardless of a static ARP table, the ARP validation will discard ARP packets in the following cases: • In case a sender MAC address of ARP packet does not match a source MAC address of Ethernet header.
Page 193: Arp Inspection On Trust Port
This function saves the information of users who are discarded by ARP inspection and generates periodic syslog messages. Log-buffer function is automatically enabled with ARP inspection. If V5824G receives invalid or denied ARP packets by ARP inspection, it creates the table of entries that include the information of port number, VLAN ID, source IP address, source MAC address and time.
Page 194: Displaying Arp Inspection
UMN:CLI User Manual V5824G To delete the configured options of log-buffer function, use the following command. Command Mode Description no ip arp inspection log-buffer Global Deletes the configured options of log-buffer function. {entries | logs} To display the configured log-buffer function and entries’ information, use the following command.
Page 195: Gratuitous Arp
7.13.5 Proxy ARP The V5824G supports the proxy ARP. Proxy ARP is the technique in which one host, usually a router, answers ARP requests intended for another machine. By “faking” its identity, the router accepts responsibility for routing packets to the “real” destination.
Page 196: Icmp Message Control
D, it will reply with its own MAC address to the host A. The proxy ARP replies that the V5824G sends to the host A. The proxy ARP reply packet is encapsulated in an Ethernet frame with its MAC address as the source address and the host A’s MAC address as the destination address.
Page 197: Blocking Echo Reply Message
User Manual UMN:CLI V5824G The following figure shows simple ICMP message structure. 15 16 8-bit Type 8-bit Code 16-bit Checksum (Contents Depend on Type and Code) Fig. 7.15 ICMP Message Structure It is possible to control ICMP message through user’s configuration. You can configure to block the echo reply message to the partner who is doing ping test to device and interval to transmit ICMP message.
Page 198: Tab. 7.3 Mask Calculation Of Default Value
UMN:CLI User Manual V5824G If mask that is input as hexadecimal number is calculated as binary number “1” means “Status ON”, “0” means “Status OFF”. In binary number, if the digit showed as “1” matches with the value of ICMP message. It means ICMP Message is selected as “Status ON”.
Page 199: Icmp Destination Unreachable Message
User Manual UMN:CLI V5824G To display ICMP interval configuration, use the following command. Command Mode Description Enable show ip icmp interval Global Shows ICMP interval configuration. Bridge 7.14.3 ICMP Destination Unreachable Message If the switch receives a packet that has an unknown protocol or no route to the destination address, the switch sends an ICMP unreachable message to its source address.
Page 200: Tcp Flag Control
V5824G 7.15 TCP Flag Control Transmission Control Protocol (TCP) header includes six kinds of flags that are URG, ACK, PSH, RST, SYN, and FIN. For the V5824G, you can configure RST and SYN as the below. 7.15.1 RST Configuration RST sends a message when TCP connection cannot be done to a person who tries to make it.
Page 201: Packet Dump
Do not use it to monitor normal network operation. The debug commands produce a large amount of processor overhead. The V5824G also provides debug command for Layer 3 routing protocols (BGP, OSPF, RIP and PIM). If you want to debug about them, refer to the each configuration chapter.
Page 202 UMN:CLI User Manual V5824G The following table shows the options for packet dump. Option Description Change Network & Broadcast address to name. Change the complied packet-matching code to readable letters and close it Output link-level header of each line Output outer internet address as symbol Buffer output data in line.
Page 203: Debug Packet Dump
7.17.3 Debug Packet Dump The V5824G provides network debugging function to prevent system overhead for unknown packet inflow. Monitoring process checks CPU load per 5 seconds. If there is more traffic than threshold, user can capture packets using tcpdump and save it to file.
Page 204: Access List
An IP access list (ACL) is a filter that enables you to restrict specific IP traffic. If you create an ACL entry to filter multicast packets based on their destination IP address, the V5824G can deny the packets matching to the destination IP address, a multicast address.
Page 205: Standard Access List
User Manual UMN:CLI V5824G Wildcard Bits Masks are used with IP addresses in IP ACLs to specify a range of IP addresses. Com- pared to subnet mask, masks for IP ACLs are the reverse. The mask bits 0.0.0.255 in IP ACL are same as 255.255.255.0 in subnet mask, for instance.
Page 206: Extended Access List
UMN:CLI User Manual V5824G To delete an existing standard IP address-based access list entry, use the following command. Command Mode Description no access-list {<1-99> | <1300- 1999>} {deny | permit} A.B.C.D [WILDCARD-BITS] no access-list {<1-99> | <1300- 1999>} {deny | permit} any Global Deletes an entry of the standard ACL.
Page 207 User Manual UMN:CLI V5824G Command Mode Description Specifies a deny or permit statement of the extended access-list {<100-199> | <2000- ACL with a single source host and other variables. 2699>} {deny | permit} ip host host: single source host A.B.C.D any A.B.C.D: source IP address of a host to match...
Page 208: Named Access List
UMN:CLI User Manual V5824G Command Mode Description access-list {<100-199> <2000-2699>} {deny | permit} ip host A.B.C.D host A.B.C.D access-list {<100-199> <2000-2699>} {deny | permit} ip any A.B.C.D A.B.C.D WILDCARD- BITS access-list {<100-199> Global Deletes an entry of the extended ACL.
Page 209: Access List Range
User Manual UMN:CLI V5824G Add entries to the list by repeating the command for different IP addresses. To delete an entry of the named ACL, use the following command. Command Mode Description no access-list WORD {deny | permit} A.B.C.D/M [exact-match]...
Page 210: Displaying Access List Entries
UMN:CLI User Manual V5824G To write comments for the specified access list range, use the following command. Command Mode Description Writes comments for the specified ACL range. access-list-range {<1-1024> 1-1024: IP standard access list range WORD} remark LINE WORD: IP access-list-range name...
Page 211: System Main Functions
User Manual UMN:CLI V5824G 8 System Main Functions Virtual Local Area Network (VLAN) The first step in setting up your bridging network is to define VLAN on your switch. VLAN is a bridged network that is logically segmented by customer or function. Each VLAN contains a group of ports called VLAN members.
Page 212: Port-Based Vlan
UMN:CLI User Manual V5824G 8.1.1 Port-based VLAN The simplest implicit mapping rule is known as port-based VLAN. A frame is assigned to a VLAN based solely on the switch port on which the frame arrives. In the example depicted in Fig.
Page 213: Creating Vlan
User Manual UMN:CLI V5824G 8.1.1.1 Creating VLAN To configure VLAN on user’s network, use the following command. Command Mode Description Creates new VLAN by assigning VLAN ID: vlan create VLANS Bridge VLANS: VLAN ID (1-4094, multiple entries possible) The variable VLANS is a particular set of bridged interfaces. Frames are bridged only among interfaces in the same VLAN.
Page 214: Deleting Vlan
UMN:CLI User Manual V5824G SWITCH(bridge)# 8.1.1.4 Deleting VLAN To delete VLAN, use the following command. Command Mode Description no vlan VLANS Bridge Deletes VLAN, enter the VLAN ID to be deleted. When you delete a VLAN, all ports must be removed from the VLAN; the VLAN must be empty.
Page 215: Mac-Based Vlan
8.1.3 MAC-based VLAN The V5824G can assign a frame to a VLAN based on the source MAC address in the received frames. Using this, all frames emitted by a given end station will be assigned to the same VLAN, regardless of the port on which the frame arrives. This is useful for mobility application.
Page 216: Tagged Vlan
UMN:CLI User Manual V5824G To configure subnet-based VLAN, use the following command. Command Mode Description Configures subnet based VLAN. vlan subnet A.B.C.D/M VLANS Bridge VLANS: VLAN ID (1-4094) To clear subnet-based VLAN configuration, use the following command. Command Mode Description no vlan subnet [A.B.C.D/M]...
Page 217: Vlan Description
User Manual UMN:CLI V5824G To configure the tagged VLAN, use the following command. Command Mode Description Configures tagged VLAN on a port: vlan add VLANS PORTS tagged Bridge VLANS: VLAN ID (1-4094) PORTS: port number 8.1.6 VLAN Description To specify a VLAN description, use the following command.
Page 218: Qinq Vlan Mapping
Fig. 8.3 Example of QinQ Configuration If QinQ is configured on the V5824G, it transmits packets adding another Tag to original Tag. Customer A group and customer B group can guarantee security because telecommunication is done between each VLANs at Double Tagging part.
Page 219: Tpid Configuration
User Manual UMN:CLI V5824G Trunk Port By trunk port we mean a LAN port that is configured to operate as an inter-switch link/port, able of carrying double-tagged traffic. A trunk port is always connected to another trunk port on a different switch. Switching shall be performed between trunk ports and tunnels ports and between different trunk ports.
Page 220: One-To-Two Vlan Mapping Between S-Vid And C-Vid
UMN:CLI User Manual V5824G Configures 1:1 VLAN mapping for UNI port and vlan dot1q-tunnel ingress range- translates multiple C-VLAN tags of incoming Single mapping PORTS c-vid <1-4094> Inner Tagged (SIT) packets to S-VLAN tag. trans-s-vid <1-4094> PORTS: UNI port number...
Page 221: Two-To-One Vlan Mapping Between S-Vid And C-Vid
User Manual UMN:CLI V5824G Configures 1:2 VLAN mapping for NNI port and vlan dot1q-tunnel egress translates outgoing Single Outer Tagged (SOT) packet mapping PORTS s-vid <1-4094> with given S-VLAN tag to Double Tagged (DT) packet trans-s-vid <1-4094> trans-c-vid by adding S-VLAN and C-VLAN tags.
Page 222: Two-To-Two Vlan Mapping Between S-Vid And C-Vid
UMN:CLI User Manual V5824G To delete the configured two-to-one VLAN mapping and translation, use the following command. Command Mode Description no vlan dot1q-tunnel ingress mapping PORTS s-vid <1-4094> c-vid <1-4094> Deletes the configured 2:1 VLAN mapping and Bridge translation. no vlan dot1q-tunnel egress mapping PORTS s-vid <1-4094>...
Page 223: Double Tagging Configuration
If Egress port is Access port (Access port is configured as Untagged), remove SPVLAN. If egress port is uplink port, transmit as it is. Step 4 The V5824G switch has 0x8100 TPID value as default and other values are used as hexadecimal number. 8.1.9.7...
Page 224: Inner Tag Configuration
UMN:CLI User Manual V5824G 8.1.9.8 Inner Tag Configuration To put the configured C-VLAN tag in the inner tag field of incoming untagged packet on a port, use the following command. Command Mode Description vlan dot1q-tunnel ingress push Puts the configured C-VLAN tag in the inner tag field of c-vid PORTS <1-4094>...
Page 225: Port Isolation
8.1.10.2 Shared VLAN This chapter is only for Layer 2 switch operation. The V5824G is Layer 3 switch, but it can be used for Layer 2 also. Because there is no routing information in Layer 2 switch, each VLAN cannot communicate. Especially, the uplink port should receive packets from all VLANs.
Page 226: Fig. 8.5 Outgoing Packets Under Layer 2 Shared Vlan Environment
UMN:CLI User Manual V5824G Outer Network SWITCH(bridge)# show vlan u: untagged port, t: tagged port ----------------------------------------------------------------- Name( VID| FID) |123456789012345678901234567890123456789012 Uplink Port ----------------------------------------------------------------- default( |u...uuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuu br2( |.u.....u....br3( |..u....u....br4( |...u....u....br5( |..u....u....default SWITCH(bridge)# Fig. 8.5 Outgoing Packets under Layer 2 Shared VLAN Environment As above configuration with untagged packet, if an untagged packet comes into port 1, it is added with tag 1 for PVID 1.
Page 227: Sample Configuration
Incoming Packets under Layer 2 Shared VLAN Environment (2) In conclusion, to use the V5824G as Layer 2 switch, user should add the uplink port to all VLANs and create new VLAN including all ports. If the communication between each VLAN is needed, FID should be same.
Page 228 UMN:CLI User Manual V5824G SWITCH(config)# interface br3 SWITCH(interface)# shutdown SWITCH(interface)# exit SWITCH(config)# bridge SWITCH(bridge)# no vlan br3 SWITCH(bridge)# show vlan u: untagged port, t: tagged port ----------------------------------------------------------------- Name( VID| FID) |123456789012345678901234567890123456789012 ----------------------------------------------------------------- default( 1) |u...uuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuu br2( 2) |.u........br4( 4) |...u........
Page 229 UMN:CLI V5824G Sample Configuration 5: Configuring Shared VLAN with FID Configure br2, br3, br4 in the V5824G configured Layer 2 environment and port 24 as Uplink port is configured. To transmit untagged packet through Uplink port rightly, follow below configuration.
Page 230: Link Aggregation (Lag)
Fig. 8.8 Link Aggregation The V5824G supports two kinds of link aggregation as port trunk and LACP. There is a little difference in these two ways. In case of port trunking, it is quite troublesome to set the configuration manually and the rate to adjust to the network environment changes when connecting to the switch using logical port.
Page 231: Configuring Port Trunk
(default: srcdstmac) srcip | srcmac} It is possible to input 0 to 7 to the trunk group ID because the V5824G supports 8 logical aggregated ports, and the group ID of port trunk and the aggregator number of LACP cannot coexist.
Page 232: Displaying Port Trunk
UMN:CLI User Manual V5824G If a port is deleted from a logical port or the port trunk is disabled, the port will be added to the default VLAN. 8.2.1.3 Displaying Port Trunk To display a configuration of port trunk, use the following command.
Page 233: Distribution Mode
Therefore, the V5824G is configured to decide the way of packet route in order to distribute (or forward) packets to the member port effectively when packets enter. It is...
Page 234: Operation Mode
UMN:CLI User Manual V5824G To delete a configured distribution mode, use the following command. Command Mode Description no lacp aggregator distmode Bridge Deletes a configured distribution mode. AGGREGETIONS 8.2.2.3 Operation Mode After configuring the member port, configure the LACP operation mode of the member port.
Page 235: Manual Aggregation
PORTS Bridge port for LACP. 8.2.2.6 BPDU Transmission Rate Member port transmits BPDU with its information. For the V5824G, it is possible to configure the BPDU transmission rate, use the following command. Command Mode Description Configures BPDU transmission rate: lacp port timeout PORTS {short | PORTS: select the port number.
Page 236: Port Priority
UMN:CLI User Manual V5824G To delete the key value of a specified member port, use the following command. Command Mode Description Deletes the key value of a specified member port, no lacp port admin-key PORTS Bridge select the member port number.
Page 237: Spanning Tree Protocol (Stp)
User Manual UMN:CLI V5824G Spanning Tree Protocol (STP) The local area network (LAN), which is composed of double paths like token ring, has the advantage that it is possible to access in case of disconnection with one path. However there is another problem called a loop when you always use the double paths.
Page 238: Stp Operation
UMN:CLI User Manual V5824G Meanwhile, the rapid spanning tree protocol (RSTP) defined in IEEE 802.1w dramatically reduces the time of network convergence on the spanning tree protocol (STP). It is easy and fast to configure new protocol. The IEEE 802.1w also supports backward compatibility with IEEE 802.1d.
Page 239: Designated Port And Root Port
User Manual UMN:CLI V5824G A compares the exchanged BPDU to decide the path to link. The critical information to decide path is the path-cost. The path-cost depends on the transmit rate of the LAN interface, and the path with the lower path-cost is selected.
Page 240: Port Priority
UMN:CLI User Manual V5824G 8.3.1.4 Port Priority If the path-costs of two paths are same, decisions are based on port-priorities. In the figure below, suppose that two switches are connected. Since the path-costs of two paths are both 100, their port priorities are compared and the port with smaller port priority is selected to transmit the packet.
Page 241 User Manual UMN:CLI V5824G • Blocking A port that is enabled, however neither a Designated port nor a Root port, will be in the blocking state. A blocking port will not receive or forward data frames, nor will it transmit BPDUs, but instead it will listen to other’s BPDUs to determine if and when the port should consider becoming active in the spanning tree.
Page 242: Rstp Operation
UMN:CLI User Manual V5824G 8.3.2 RSTP Operation STP or RSTP is configured on network where Loop can be created. However, RSTP is more rapidly progressed than STP at the stage of reaching to the last topology. This section describes how the RSTP more improved than STP works. It contains the below sections.
Page 243: Rapid Network Convergence
User Manual UMN:CLI V5824G If low BPDU is received from the root switch or the designated switch, it is immediately accepted. For example, suppose that the root switch is disconnected from the switch B in the figure below. Then, the switch B is considered to be the root due to the disconnection, and it forwards BPDU.
Page 244: Fig. 8.17 Convergence Of 802.1D Network
UMN:CLI User Manual V5824G Fig. 8.17 Convergence of 802.1d Network This is a very epochal way of preventing a loop. The matter is that communication is SWITCH D and SWITCH C is blocked. Then, right after the connection, it is possible to transmit BPDU although packets can not be transmitted and received between SWITCH A and the root.
Page 245: Fig. 8.19 Network Convergence Of 802.1W (2)
User Manual UMN:CLI V5824G Fig. 8.19 Network Convergence of 802.1w (2) SWITCH B has only edge-designated port. Edge-designated does not cause loop, so it is defined in 802.1w to be changed to forwarding state. Therefore, SWITCH B does not need to block specific port to the forwarding state of SWITCH A. However since SWITCH C has a port connected to SWITCH D, the port should be in the blocking state.
Page 246: Compatibility With 802.1D
8.3.3 MSTP Operation To operate the network more effectively, the V5824G uses MSTP (Multiple Spanning-Tree Protocol). It constitutes the network with VLAN subdividing logically the existing LAN domain and configures the route by VLAN or VLAN group instead of existing routing protocol.
Page 247: Mstp
User Manual UMN:CLI V5824G While existing STP is a protocol to prevent Loop in a LAN, domain establishes STP per VLAN in order to realize the routing suitable to the VLAN environment. It does not need to calculate all STPs for several VLANs so that traffic overload could be reduced.
Page 248: Fig. 8.24 Cst And Ist Of Mstp (2)
UMN:CLI User Manual V5824G CST root in IST is IST root. Fig. 8.24 CST and IST of MSTP (2) In the above situation, if B operates with MSTP, B will send its BPDU to CST root and IST root in order to request itself to be CST root. However, if any BPDU with higher priority...
Page 249: Stp Mode
8.3.4 STP Mode First of all, you need to enable STP function. You cannot configure any parameters related to Spanning Tree Protocol without this command. To enable STP function on the V5824G, use the following command. Command Mode Description spanning-tree Bridge Enables STP function.
Page 250: Tab. 8.2 Stp Path-Cost (Short)
UMN:CLI User Manual V5824G Transmit Rate (bps) Path-cost 100M Tab. 8.2 STP Path-cost (short) Transmit Rate (bps) Path-cost 20000000 2000000 100M 200000 20000 2000 Tab. 8.3 RSTP Path-cost (long) To decide the path-cost calculation method, use the following command. Command...
Page 251: Edge Ports
User Manual UMN:CLI V5824G 8.3.5.2 Edge Ports Edge ports are defined that the ports are connected to a nonbridging device. There are no switches or spanning-tree bridges directly connected to the edge port. To configure all ports as edge ports globally, use the following command.
Page 252: Port Priority
UMN:CLI User Manual V5824G 8.3.5.4 Port Priority When all conditions of two switches are same, the last standard to decide route is port- priority. It is also possible to configure port priority so that user can configure route manually. To configure the port-priority, use the following command.
Page 253: Displaying Configuration
User Manual UMN:CLI V5824G 8.3.5.7 Displaying Configuration To display the configurations of STP, use the following command. Command Mode Description Enable show spanning-tree Global Shows all configurations of STP Bridge Shows STP information on active interface: show spanning-tree active [detail] detail: detailed STP information (as option).
Page 254: Mst Region
If MSTP is established in the V5824G, decide a MSTP region the switch is going to belong to by configuring the MST configuration ID. Configuration ID contains a region name, revision, and a VLAN map.
Page 255: Enabling Mstp Configuration
Deletes the configured revision number. After configuring the configuration ID in the V5824G, you should apply the configuration to the switch. After changing or deleting the configuration, you must apply it to the switch. If not, it does not being reflected into the switch.
Page 256: Root Switch
4096 (default: 32768) Clears the Priority of the switch, enter the no spanning-tree mst <0-64> priority instance number. If you configure a priority of STP or RSTP in the V5824G, you should configure MSTP instance ID number as 0. 8.3.6.4 Path-cost After deciding a root swich, you need to decide to which route you will forward the packet.
Page 257: Displaying Configuration
User Manual UMN:CLI V5824G 8.3.6.6 Displaying Configuration To display the configuration of MSTP, use the following command. Command Mode Description Enable Shows all configurations of a specific MSTP instance: show spanning-tree mst <1-64> Global 1-64: MSTP instance ID number Bridge Shows information of a specific MSTP instance on show spanning-tree mst <1-64>...
Page 258: Configuring Pvstp
UMN:CLI User Manual V5824G 8.3.7 Configuring PVSTP STP and RSPT are designed with one VLAN in the network. If a port becomes blocking state, the physical port itself is blocked. But PVSTP (Per VLAN Spanning Tree Protocol) and PVRSTP (Per VLAN Rapid Spanning Tree Protocol) maintains spanning tree instance for each VLAN in the network.
Page 259: Root Switch
User Manual UMN:CLI V5824G PVSTP is activated after selecting PVSTP mode using spanning-tree mode rapid-pvst command. In PVSTP, you can configure the current VLAN only. If you input VLAN that does not exist, error message is displayed. For the switches in LAN where dual path does not exist, Loop does not generate even though STP function is not configured.
Page 260: Port Priority
UMN:CLI User Manual V5824G 8.3.7.4 Port Priority When all conditions of two routes of switch are same, the last standard to decide a route is port-priority. You can configure port priority and select a route manually. To configure a port priority for specified VLAN, use the following command.
Page 261: Root Guard
User Manual UMN:CLI V5824G 8.3.8 Root Guard The standard STP does not allow the administrator to enforce the position of the root bridge, as any bridge in the network with lower bridge ID will take the role of the root bridge.
Page 262: Loop Guard
UMN:CLI User Manual V5824G 8.3.9 Loop Guard An STP loop is created when an STP blocking port in an redundant topology erroneously transitions to the forwarding state. This usually happens because one of the ports in a physically redundant topology no longer receives BPDUs. In this case, the designated port transmits BPDUs, and the non-designated port receives BPDUs.
Page 263: Restarting Protocol Migration
If administrator wants to change network topology to MSTP mode, administrator has to clear the previously detected detected protocol manually. To prevent this, the V5824G provides the clear spanning-tree detected-protocols command. If you enable this command, the switch checks STP protocol packet once again.
Page 264: Bpdu Configuration
UMN:CLI User Manual V5824G To specify the time to recover from a specified error-disable cause, use the following command. Command Mode Description errdisable recovery interval Sets the interval of error-disable recovery: <30-86400> 30-86400: the recovery interval (default: 300 sec) Bridge...
Page 265: Hello Time
User Manual UMN:CLI V5824G 8.3.13.1 Hello Time Hello time decides an interval time when a switch transmits BPDU. To configure hello time, use the following command. Command Mode Description Configures hello time to transmit the message in spanning-tree mst hello-time <1- MSTP.
Page 266: Max Age
UMN:CLI User Manual V5824G 8.3.13.3 Max Age Maximum aging time is the number of seconds a switch waits without receiving spanning- tree configuration messages before attempting a reconfiguration. To configure the maximum aging time for deleting useless messages, use the following command.
Page 267: Bpdu Guard
User Manual UMN:CLI V5824G To enable or disable the BPDU filtering function on the port, use the following command. Command Mode Description spanning-tree port PORTS Enables a BPDU filtering fuction on specific port. bpdufilter enable spanning-tree port PORTS Bridge bpdufilter disable Disables a BPDU filtering fuction on specific port.
Page 268 To prevent this problem, the V5824G provides error-disable recovery function for BPDU guard cause. When an edge port is down for BPDU packet which came from other switch, the port is recovered automatically after configured time.
Page 269: Sample Configuration
User Manual UMN:CLI V5824G 8.3.14 Sample Configuration Backup Route When you design layer 2 network, you must consider backup route for stable STP network. This is to prevent network corruption when just one additional path exits. Fig. 8.27 Example of Layer 2 Network Design in RSTP Environment In ordinary case, data packets go to Root switch A through the blue path.
Page 270: Fig. 8.28 Example Of Layer 2 Network Design In Mstp Environment
UMN:CLI User Manual V5824G MSTP Configuration Fig. 8.28 Example of Layer 2 Network Design in MSTP Environment The following is an example of configuring MSTP in the switch. SWITCH(bridge)# spanning-tree SWITCH(bridge)# spanning-tree mode mst SWITCH(bridge)# spanning-tree mst configuration SWITCH(config-mst)# instance 2 vlan 1-50...
Page 271: Loop Detection
LAN like loop topology. That superfluous traffic eventually can result in network fault. It causes superfluous data transmission and network fault. To prevent this, the V5824G provides the loop detecting function. The loop detecting mechanism is as follows:...
Page 272 UMN:CLI User Manual V5824G You can also configure the source MAC address of the loop-detecting packet. Normally the system’s MAC address will be the source MAC address of the loop-detecting packet, but if needed, Locally Administered Address (LAA) can be the address as well.
Page 273: Dynamic Host Configuration Protocol (Dhcp)
User Manual UMN:CLI V5824G Dynamic Host Configuration Protocol (DHCP) Dynamic Host Configuration Protocol (DHCP) is a TCP/IP standard for simplifying the administrative management of IP address configuration by automating address configuration for network clients. The DHCP standard provides for the use of DHCP servers as a way to manage dynamic allocation of IP addresses and other relevant configuration details to DHCP-enabled clients on the network.
Page 274: Dhcp Server
UMN:CLI User Manual V5824G The V5824G flexibly provides the functions as the DHCP server or DHCP relay agent according to your DHCP configuration. This chapter contains the following sections: • DHCP Server • DHCP Address Allocation with Option 82 •...
Page 275: Dhcp Pool Creation
User Manual UMN:CLI V5824G 8.5.1.1 DHCP Pool Creation The DHCP pool is a group of IP addresses that will be assigned to DHCP clients by DHCP server. You can create various DHCP pools that can be configured with a different network, default gateway and range of IP addresses.
Page 276: Default Gateway
UMN:CLI User Manual V5824G The following is an example for specifying the range of IP addresses. SWITCH(config)# service dhcp SWITCH(config)# ip dhcp pool sample SWITCH(config-dhcp[sample])# network 100.1.1.0/24 SWITCH(config-dhcp[sample])# default-router 100.1.1.254 SWITCH(config-dhcp[sample])# range 100.1.1.1 100.1.1.100 SWITCH(config-dhcp[sample])# You can also specify several inconsecutive ranges of IP addresses in a single DHCP pool, e.g.
Page 277: Dns Server
User Manual UMN:CLI V5824G The following is an example of setting default and maximum IP lease time. SWITCH(config)# service dhcp SWITCH(config)# ip dhcp pool sample SWITCH(config-dhcp[sample])# network 100.1.1.0/24 SWITCH(config-dhcp[sample])# default-router 100.1.1.254 SWITCH(config-dhcp[sample])# range 100.1.1.1 100.1.1.100 SWITCH(config-dhcp[sample])# lease-time default 5000 SWITCH(config-dhcp[sample])# lease-time max 10000 SWITCH(config-dhcp[sample])# 8.5.1.6...
Page 278: Domain Name
8.5.1.10 Static Mapping The V5824G provides a static mapping function that enables to assign a static IP address without manually specifying static IP assignment by using a DHCP lease database in the DHCP database agent. To perform a static mapping, use the following command.
Page 279: Recognition Of Dhcp Client
User Manual UMN:CLI V5824G For more information of the file naming of a DHCP lease database, see Section 8.5.3.1. 8.5.1.11 Recognition of DHCP Client Normally, a DHCP server is supposed to prohibit assigning an IP address when DHCP packets have no client ID (CID). However, some Linux clients may send DHCP discover messages without CID.
Page 280: Authorized Arp
Some network devices may need plural IP addresses, but most DHCP clients like personal computers need only a single IP address. In this case, you can configure the V5824G to prohibit assigning plural IP addresses to a single DHCP client.
Page 281: Ignoring Bootp Request
User Manual UMN:CLI V5824G To prohibit assigning plural IP addresses to a DHCP client, use the following command. Command Mode Description ip dhcp check client-hardware- Prohibits assigning plural IP addresses. address Global dhcp check client- Permits assigning plural IP addresses.
Page 282: Setting Dhcp Pool Size
8.5.2 DHCP Address Allocation with Option 82 The DHCP server provided by the V5824G can assign dynamic IP addresses based on DHCP option 82 information sent by the DHCP relay agent. The information sent via DHCP option 82 will be used to identify which port the DHCP_REQUEST came in on.
Page 283: Dhcp Class Capability
User Manual UMN:CLI V5824G 8.5.2.1 DHCP Class Capability To enable the DHCP server to use a DHCP class to assign IP addresses, use the following command. Command Mode Description Enables the DHCP server to use a DHCP class to ip dhcp use class assign IP addresses.
Page 284: Associating Dhcp Class
8.5.3.1 DHCP Database Agent The V5824G provides a feature that allows to a DHCP server automatically saves a DHCP lease database on a DHCP database agent. The DHCP database agent should be a TFTP server, which stores a DHCP lease data- base as numerous files in the form of leasedb.MAC-ADDRESS, e.g.
Page 285: Displaying Dhcp Lease Status
User Manual UMN:CLI V5824G To specify a DHCP database agent and enable an automatic DHCP lease database back- up, use the following command. Command Mode Description Specifies a DHCP database agent and back-up dhcp database A.B.C.D interval. INTERVAL A.B.C.D: DHCP database agent address...
Page 286: Dhcp Relay Agent
UMN:CLI User Manual V5824G 8.5.4 DHCP Relay Agent A DHCP relay agent is any host that forwards DHCP packets between clients and servers. The DHCP relay agents are used to forward DHCP requests and replies between clients and servers when they are not on the same physical subnet. The DHCP relay agent forwarding is distinct from the normal forwarding of an IP router, where IP datagrams are switched between networks somewhat transparently.
Page 287: Smart Relay Agent Forwarding
Deletes a specified packet forwarding address. {A.B.C.D | all} If a DHCP helper address is specified on an interface, the V5824G will enable a DHCP relay agent. You can also specify an organizationally unique identifier (OUI) when configuring a DHCP helper address.
Page 288: Dhcp Server Id Option
UMN:CLI User Manual V5824G 8.5.4.3 DHCP Server ID Option In case that more than two DHCP servers are connected to one DHCP relay agent, if the relay agent is supposed to broadcast the DHCP_DISCOVER message sent from a DHCP client to all connected DHCP servers, and then the servers will return DHCP_OFFER message.
Page 289: Dhcp Option
User Manual UMN:CLI V5824G 8.5.5 DHCP Option This function enables administrators to define DHCP options that are carried in the DHCP communication between DHCP server and client or relay agent. The following indicates the format of the DHCP options field.
Page 290: Configuring Dhcp Option Format
UMN:CLI User Manual V5824G 8.5.5.2 Configuring DHCP Option Format To configure a DHCP option format, use the following command. Command Mode Description attr <1-32> type <0-255> length Sets the type, length, and value of an attribute for a {<1-64> | variable} value {hex | DHCP option.
Page 291: Displaying Dhcp Option
User Manual UMN:CLI V5824G 8.5.5.4 Displaying DHCP option To print a specified DHCP option format, use the following command. Command Mode Description Enable show ip dhcp option format Global Prints the given option format and actual raw data in NAME [port PORTS vlan VLANS] DHCP the packet.
Page 292: Dhcp Option 82
UMN:CLI User Manual V5824G 8.5.6 DHCP Option 82 In some networks, it is necessary to use additional information to further determine which IP addresses to allocate. By using the DHCP option 82, a DHCP relay agent can include additional information about itself when forwarding client-originated DHCP packets to a DHCP server.
Page 293: Enabling Dhcp Option 82
User Manual UMN:CLI V5824G Fig. 8.31 shows how the DHCP relay agent with the DHCP option 82 operates. Fig. 8.31 DHCP Option 82 Operation 8.5.6.1 Enabling DHCP Option 82 To enable/disable the DHCP option 82, use the following command. Command...
Page 294: Option 82 Reforwarding Policy
UMN:CLI User Manual V5824G To specify a remote ID, use the following command. Command Mode Description system-remote-id hex HEXSTRING system-remote-id ip A.B.C.D Specifies a remote ID. Option 82 (default: system MAC address) system-remote-id text STRING system-remote-id option format NAME To specify a circuit ID, use the following command.
Page 295: Option 82 Trust Policy
User Manual UMN:CLI V5824G 8.5.6.4 Option 82 Trust Policy Default Trust Policy To specify the default trust policy for DHCP packets, use the following command. Command Mode Description trust default {deny | permit} Option 82 Specifies the default trust policy for a DHCP packet.
Page 296: Dhcp Snooping
V5824G 8.5.7 DHCP Snooping For enhanced security, the V5824G provides the DHCP snooping feature. The DHCP snooping filters untrusted DHCP messages and builds/maintains a DHCP snooping binding table. The untrusted DHCP message is a message received from outside the network, and an untrusted interface is an interface configured to receive DHCP messages from outside the network.
Page 297: Dhcp Filter On Trust Port
User Manual UMN:CLI V5824G 8.5.7.3 DHCP Filter on Trust Port To filter broadcast request packets outgoing from the specified trust port, use the following command. Command Mode Description ip dhcp snooping trust PORTS Filters egress broadcast request packets on the trust filter egress bcast-req port.
Page 298: Dhcp Lease Limit
DHCP snooping function should be activated before setting the ip dhcp snooping limit- rate discover command. 8.5.7.6 Source MAC Address Verification The V5824G can verify that the source MAC address in a DHCP packet that is received on untrusted ports matches the client hardware address in the packet.
Page 299: Static Dhcp Snooping Binding
User Manual UMN:CLI V5824G To enable/disable the source MAC address verification, use the following command. Command Mode Description Enables the source MAC address ip dhcp snooping verify mac-address verification. Global Disables the source MAC address no ip dhcp snooping verify mac-address verification.
Page 300: Arp Inspection Start Time
DHCP packets back and forth the V5824G, would be lost. Thus, ARP inspection should be delayed to start during some time so that DHCP snooping table can build entries. If no time given, ARP inspection sees empty snooping table and drop every ARP packet.
Page 301: Dhcp Snooping Option
User Manual UMN:CLI V5824G If DHCP snooping is enabled in the system of V5824G, DHCP packets includes DHCP option82 field by default. To enable/disable the switch which is enabled by DHCP snooping to insert or remove DHCP option82 field, use the following command.
Page 302: Displaying Dhcp Snooping Configuration
UMN:CLI User Manual V5824G To specify a DHCP server default option, use the following command. Command Mode Description ip dhcp snooping default-option Specifies a snooping default option format for a switch. code <1-254> format NAME NAME: DHCP option format name...
Page 303: Ip Source Guard
User Manual UMN:CLI V5824G 8.5.8 IP Source Guard IP source guard is similar to DHCP snooping. This function is used on DHCP snooping untrusted Layer 2 port. Basically, except for DHCP packets that are allowed by DHCP snooping process, all IP traffic comes into a port is blocked. If an authorized IP address...
Page 304: Static Ip Source Binding
UMN:CLI User Manual V5824G To enable IP source guard with a source IP address and MAC address filtering on a port, use the following command. Command Mode Description ip dhcp verify source port- Enables IP source guard with a source IP address and security PORTS MAC address filtering on a port.
Page 305: Dhcp Client
8.5.9 DHCP Client An interface of the V5824G can be configured as a DHCP client, which can obtain an IP address from a DHCP server. The configurable DHCP client functionality allows a DHCP client to use a user-specified client ID, class ID or suggested lease time when requesting an IP address from a DHCP server.
Page 306: Ip Lease Time
8.5.9.7 Forcing Release or Renewal of DHCP Lease The V5824G supports two independent operation: immediate release a DHCP lease for a DHCP client and force DHCP renewal of a lease for a DHCP client. To force a release or renewal of a DHCP release for a DHCP client, use the following command.
Page 307: Dhcp Filtering
8.5.10.1 DHCP Packet Filtering For the V5824G, it is possible to block the specific client with MAC address. If the MAC address blocked by administrator requests an IP address, the server does not assign IP. This function is to strength the security of DHCP server.
Page 308: Debugging Dhcp
UMN:CLI User Manual V5824G Fig. 8.32 DHCP Server Packet Filtering To enable the DHCP server packet filtering, use the following command. Command Mode Description dhcp-server-filter PORTS Enables the DHCP server packet filtering. Bridge no dhcp-server-filter PORTS Disables the DHCP server packet filtering.
Page 309: Virtual Router Redundancy Protocol (Vrrp)
VRRP routers to prevent network failure caused by one dedicated router. You can configure maximum 255 VRRP routers in VRRP group of V5824G. First of all, decide which router plays a roll as Master Virtual Router. The other routers will be Backup Virtual Routers.
Page 310: Configuring Vrrp
UMN:CLI User Manual V5824G 8.6.1 Configuring VRRP To configure the V5824G as device in Virtual Router, use the following command on Global Configuration mode. Then you can configure VRRP by opening VRRP Configuration mode. Command Mode Description router vrrp INTERFACE GROUP- Configures Virtual Router (VRRP Group).
Page 311 User Manual UMN:CLI V5824G be higher precedence. If a problem occurs on Master Router and there are more than two routers, one of them is selected as new Master Router according to their precedence. To configure Priority of Virtual Router or delete the configuration, use the following commands.
Page 312 3.620 sec [1] associate address : 10.0.0.5 By default, Priority of the V5824G is configured as “100”. Therefore, unless you configure specific Priority, this switch becomes Master Router because a device, which has lower IP address, has higher precedence.
Page 313: Vrrp Track Function
Master Router cannot be recognized, the communication would be impossible. For the V5824G, you can configure Master Router to be changed by giving lower Priority to Master Router when the link of Master Router is disconnected. This function is VRRP...
Page 314: Fig. 8.34 Vrrp Track
UMN:CLI User Manual V5824G Fig. 8.34 VRRP Track To configure VRRP Track, use the following command. Command Mode Description track interface INTERFACE Enables the interface tracking and decreases the VRRP priority <1-254> VRRP priority as the track results. To release VRRP Track configuration, use the following command.
Page 315: Authentication Password
User Manual UMN:CLI V5824G 8.6.1.5 Authentication Password If anyone knows Group ID and Associated IP address, he can configure another device as a Virtual Router. To prevent this, user needs to configure a password, named authentication password that can be used only in Virtual Router user configured.
Page 316: Vrrp Monitoring And Management
UMN:CLI User Manual V5824G 8.6.2 VRRP Monitoring and Management You can view all kinds of statistics and database recorded in IP routing table. The information can be used to enhance system utility and solve problem in case of trouble. You can check network connection and data routes through the transmission.
Page 317: Vrrp Debug
User Manual UMN:CLI V5824G 8.6.2.3 VRRP Debug To enable VRRP debugging, use the following command. Command Mode Description Enables VRRP debugging. debug vrrp [all] all: all VRRP debugging Enables VRRP debugging. nsm: NSM notifications debugging debug vrrp nsm [interface | bfd]...
Page 318: Rate Limit
Egress and ingress can be configured both to be same and to be different. The V5824G can apply the rate limit with 64 Kbps unit for GE port, and support ingress policing and egress shaping. To set a rate limit for ports, use the following command.
Page 319: Flood Guard
User Manual UMN:CLI V5824G Flood Guard Flood guard limits number of packets, how many packets can be transmitted, in configured bandwidth, whereas Rate limit controls packets through configuring width of bandwidth, which packets pass through. This function prevents receiving packets more than configured amount without enlarging bandwidth.
Page 320: Cpu Flood Guard
UMN:CLI User Manual V5824G 8.8.2 CPU Flood Guard CPU flood guard controls the number of broadcast and multicast packets per second, which is coming to CPU to prevent CPU overload. If the number of those packets exceeds the threshold, the system generates an SNMP trap.
Page 321: System Flood Guard
A packet flooding occurs unexpectedly when a large number of broadcast or multicast packets are received on a port, which may cause unnecessary network congestion. V5824G provides the system flood guard function that controls traffic for a port by given threshold. If the number of incoming packets exceeds the threshold, the system generates a syslog message/SNMP trap or discards those packets.
Page 322: Attack Guard
Forwarding these packets can cause the network to slow down or to time out. The V5824G provides attack guard function that controls traffic for a specified port by threshold value. If a large number of incoming packets per second exceed a given threshold, the system disables a specified port or generates trap messages for warning when attack guard function enables on this port.
Page 323: Error Guard
The V5824G provides error guard function that controls incoming error packets through a specified port by threshold value. If a large number of incoming packets per second exceed a given threshold, the system disables a specified port or generates trap messages for warning when error guard function is enabled on this port.
Page 324: Pps Control
The V5824G provides the PPS control function that controls traffic for a port by given threshold. If the number of incoming packets exceeds the threshold, the system generates a syslog message and SNMP trap.
Page 325: Jumbo Frame Capacity
The packet range that can be capable to accept is from 64 bytes to 1518 bytes. Therefore, packets not between these ranges will not be taken. However, the V5824G can accept jumbo frame larger than 1518 bytes through user’s configuration.
Page 326: Bandwidth
Blocking Packet Forwarding RFC 2644 recommends that system blocks broadcast packet of same network bandwidth with interface of equipment, namely direct broadcast packet. Hereby, V5824G is supposed to block direct broadcast packet by default setting. However, you can enable or disable it in V5824G.
Page 327: Ip Multicast
Fig. 9.1 shows an example of the IP multicast network. In this case, the V5824G is configured only with IGMP snooping (L2 multicast forwarding feature) in the Layer 2 network.
Page 328: Fig. 9.2 The V5824G With Pim-Sm
Fig. 9.2 The V5824G with PIM-SM If more than one port are on the same Layer 2 interface and the V5824G is a border router of the Layer 3 network, you should configure the V5824G with both IGMP snooping and PIM-SM together.
Page 329 User Manual UMN:CLI V5824G IP Multicast to Ethernet/FDDI MAC Address Mapping All IP multicast frames use MAC layer addresses beginning with the 24-bit prefix of 0x0100.5Exx.xxxx. With only half of these MAC addresses available for use by IP Multicast, 23 bits of MAC address space are available for mapping L3 IP multicast addresses into L2 MAC addresses.
Page 330: Multicast Group Membership
Using IGMP, hosts express an interest in a certain multicast group, and routers maintain the multicast group membership database by collecting the interests from the hosts. The V5824G supports IGMP version 1, 2, and 3 each defined in RFC 1112, 2236, and 3376. 9.1.1...
Page 331: Igmp Version
User Manual UMN:CLI V5824G 9.1.1.1 IGMP Version By default, the V5824G runs IGMP version 3. To change the IGMP protocol version on a current interface, use the following command. Command Mode Description Sets an IGMP version on a current interface.
Page 332: Igmp Debug
UMN:CLI User Manual V5824G 9.1.1.4 IGMP Debug To enable debugging of all IGMP or a specific feature of IGMP, use the following command. Command Mode Description Enables IGMP debugging. all: all IGMP decode: IGMP decoding debug igmp {all | decode |...
Page 333: Igmp Static Join
User Manual UMN:CLI V5824G • Leave group This is used to explicitly leave a group. IGMPv2 Operation An IGMP querier is the only router that sends membership query messages for a network segment. In IGMP version 2, the querier is a router with the lowest IP address on the subnet.
Page 334 UMN:CLI User Manual V5824G To configure the IGMP static join, use the following command. Command Mode Description Configures the IGMP static join. ip igmp static-group A.B.C.D A.B.C.D: IGMP group address vlan VLAN port PORT [reporter VLANS: VLAN ID (1-4094) A.B.C.D]...
Page 335: Igmp Access Control
User Manual UMN:CLI V5824G To display the IGMP static join group list, use the following command. Command Mode Description show ip igmp static-group Shows the IGMP static join group list. show ip igmp static-group list Enable 1-99: IP standard access list...
Page 336 V5824G IGMP Startup Query Interval The V5824G needs to acquire information of its multicast members for the updated membership when it becomes the querier on the specified IGMP interface. For the updated membership, V5824G sends general query messages as a querier. You can specify the interval to send this query messages as many as the configured QRV value.
Page 337: Igmp Immediate Leave
User Manual UMN:CLI V5824G Upon receiving a leave message, a querier then sends out a group-specific (IGMPv2) or group-source-specific query (IGMPv3) message to determine if there is still any host interested in receiving the traffic. If there is no reply, the querier stops forwarding the multicast traffic.
Page 338: Igmp Version 3
Each record specifies the information of the filter mode and source list. The report can contain multiple group records, allowing reporting of full current state using fewer packets. The V5824G runs IGMPv3 by default, and there are no additional IGMPv3 parameters you need to configure. IGMPv3 snooping features are provided. IGMPv3 Messages...
Page 339: Displaying Igmp Information
User Manual UMN:CLI V5824G lowing information: – Current-state: This indicates the current filter mode including/excluding the speci- fied multicast address. – Filter-mode-change: This indicates a change from the current filter mode to the other mode. – Source-list-change: This indicates a change allowing/blocking a list of the multi- cast sources specified in the record.
Page 340: Multicast Functions
IGMP Filtering and Throttling 9.2.1 Multicast Forwarding Database Internally, the V5824G forwards the multicast traffic referred to the multicast forwarding database (McFDB). The McFDB maintains multicast forwarding entries collected from multicast protocols and features, such as PIM, IGMP, etc. The McFDB has the same behavior as the Layer 2 FDB. When certain multicast traffic comes to a port, the switch looks for the forwarding information (the forwarding entry) for the traffic in the McFDB.
Page 341: Forwarding Entry Aging
User Manual UMN:CLI V5824G 9.2.1.2 Forwarding Entry Aging To specify the aging time for forwarding entries on the McFDB, use the following command. Command Mode Description Specifies the aging time for forwarding entries on the ip mcfdb aging-time McFDB. <10-10000000>...
Page 342: Igmp Snooping Basic
By maintaining this multicast forwarding table, the V5824G dynamically forward multicast traffic only to those interfaces that want to receive it as nominal unicast forwarding does.
Page 343: Enabling Igmp Snooping
User Manual UMN:CLI V5824G 9.2.2.1 Enabling IGMP Snooping You can enable IGMP snooping globally or on each VLAN respectively. By default, IGMP snooping is globally disabled. To enable IGMP snooping, use the following command. Command Mode Description ip igmp snooping Enables IGMP snooping globally.
Page 344: Igmp Snooping Robustness Value
UMN:CLI User Manual V5824G 9.2.2.3 IGMP Snooping Robustness Value The robustness variable allows tuning for the expected packet loss on a network. If a network is expected to be lossy, the robustness variable may be increased. When receiving the query message that contains a certain robustness variable from an IGMP snooping querier, a host returns the report message as many as the specified robustness variable.
Page 345 User Manual UMN:CLI V5824G To disable the IGMP snooping querier, use the following command. Command Mode Description no ip igmp snooping querier [address] Disables the IGMP snooping querier. Global address: source address of IGMP snooping query igmp snooping vlan VLANS querier [address] If you do not specify a source address of an IGMP snooping query, the IP address configured on the VLAN is used as the source address by default.
Page 346: Igmp Snooping Last Member Query Interval
UMN:CLI User Manual V5824G To specify a maximum query response time advertised in general query messages, use the following command. Command Mode Description ip igmp snooping querier max- Specifies a maximum query response time. response-time <1-25> 1-25: maximum response time (default: 10 seconds)
Page 347: Igmp Snooping Immediate Leave
User Manual UMN:CLI V5824G To delete a specified an interval to send group-specific or group-source-specific query messages, use the following command. Command Mode Description igmp snooping last- member-query-interval Global Deletes a specified last member query interval. igmp snooping vlan VLANS...
Page 348: Igmp Snooping Report Suppression
The hosts received the group- specific queries send the report messages according to their IGMP membership status. However, V5824G is enabled as IGMP snooping S-Query report agency, the group- specific queries are not sent downstream. When the switch receives a group-specific query, the switch terminates the query and sends an IGMP report if there is a receiver for the group.
Page 349: Explicit Host Tracking
User Manual UMN:CLI V5824G To enable IGMP snooping S-Query Report Agency, use the following command. Command Mode Description ip igmp snooping s-query-report Global Enables IGMP snooping s-query-report agency. agency To disable IGMP snooping S-Query Report Agency, use the following command.
Page 350: Multicast Router Port Configuration
UMN:CLI User Manual V5824G To enable IGMP group-specific queries Suppression, use the following command. Command Mode Description Enables IGMP group-specific queries suppression. It igmp snooping explicit- Global does not send a group specific query to member host tracking s-query-suppression after one sends a leave message on a VLAN.
Page 351 User Manual UMN:CLI V5824G To specify a multicast router port, use the following command. Command Mode Description Specifies a multicast router port globally. ip igmp snooping mrouter port PORTS: port number {PORTS | cpu} cpu: CPU port Global ip igmp snooping vlan VLANS Specifies a multicast router port on a VLAN.
Page 352: Tcn Multicast Flooding
UMN:CLI User Manual V5824G Multicast Router Port Forwarding The multicast traffic should be forwarded to IGMP snooping membership ports and multicast router ports because the multicast router needs to receive muticast source information. To enable the switch to forward the traffic to multicast router ports, use the following command.
Page 353 User Manual UMN:CLI V5824G To disable the switch to flood multicast traffic when TCN is received, use the following command. Command Mode Description no ip igmp snooping tcn flood Disables the switch to flood multicast traffic when TCN Global no ip igmp snooping tcn vlan...
Page 354: Igmpv3 Snooping
UMN:CLI User Manual V5824G To disable the switch to send a query solicitation when TCN is received, use the following command. Command Mode Description no ip igmp snooping tcn query Disables the switch to send a query solicitation when Global solicit [address] TCN is received.
Page 355: Displaying Igmp Snooping Information
User Manual UMN:CLI V5824G 9.2.5 Displaying IGMP Snooping Information To display a current IGMP snooping configuration, use the following command. Command Mode Description show ip igmp snooping [vlan VLANS] Enable Shows a current IGMP snooping configuration. Global show ip igmp snooping info [vlan...
Page 356: Multicast Vlan Registration (Mvr)
MVR also provides the fast convergence for topology changes in the Ethernet ring-based service provider network with STP and IGMP snooping TCN, guaranteeing stable multicast services. MVR implemented for the V5824G has the following restrictions, so you must keep in mind those, before configuring MVR. •...
Page 357: Source/Receiver Port
User Manual UMN:CLI V5824G 9.2.6.3 Source/Receiver Port You need to specify the source and receiver ports for MVR. The followings are the definitions for the ports. • Source Port This is connected to multicast routers or sources as an uplink port, which receives and sends the multicast traffic.
Page 358: Igmp Filtering And Throttling
UMN:CLI User Manual V5824G 9.2.7 IGMP Filtering and Throttling IGMP filtering and throttling control the distribution of multicast services on each port. IGMP filtering controls which multicast groups a host on a port can join by associating an IGMP profile that contains one or more IGMP groups and specifies whether an access to the group is permitted or denied with a port.
Page 359 • IGMP filtering only supports IGMPv2. By the following command, V5824G can permit or deny the IGMP packets by referring to its DHCP snooping binding table. This reference enables the system to permit IGMP messages only when the source IP address and MAC address of host have identified from the DHCP snooping binding table.
Page 360: Igmp Throttling
UMN:CLI User Manual V5824G 9.2.7.2 IGMP Throttling You can configure the maximum number of multicast groups that a host on a port can join. To specify the maximum number of IGMP groups per port, use the following command. Command Mode...
Page 361: Igmp Proxy
IGMP Proxy enables this L3 switch to issue IGMP host messages on behalf of hosts that the switch discovered through standard IGMP interfaces. The switch acts as a proxy for its hosts. The V5824G supports IGMPv2. IGMP Proxy can only work in a simple tree topology; where traffic is distributed to explicit upstream and downstream.
Page 362: Configuring Upstream Interface Mode
Configuring Upstream Interface Mode When a single downstream interface is specified with multiple upstream interfaces, V5824G supports two methods of IGMP proxy operation that are priority mode and load balancing mode. You can choose the way how to handle multicast traffic going to upstream interfaces.
Page 363 IF flapping, which can increase the stability and quality for multicast service. Using this function, the V5824G gives a discredit to a IGMP IF for every flapping time, and then the IF is not selected as a forwarding path until its credit is regenerated.
Page 364: Disabling Verification Of Source Ip Of Igmp Packets
UMN:CLI User Manual V5824G To set the current IGMP IF credit as the default (100), use the following command. Command Mode Description clear ip igmp if flap discredit Enable Restores the current credit to a default value (100). [NAME] Global NAME: IGMP interface name 9.2.8.5...
Page 365: Querying With Real Querirer's Source Ip Address
User Manual UMN:CLI V5824G 9.2.8.7 Querying with Real Querirer’s Source IP Address To send hosts queries with the actual source IP addresses, not with mroute-proxy interface’s IP address, use the following command. Command Mode Description ip igmp mroute-proxy querier Sets IGMP queries with original query’s source IP...
Page 366: Multicast-Source Trust Port
Disables a configured IGMP state limit per interface. 9.2.10 Multicast-Source Trust Port Any port of V5824G can be specified as a multicast-source trust port which is registered in the multicast forwarding table. Only multicast-source trust ports can be received the multicast traffic.
Page 367: Multicast Routing
Multicast Routing 9.3.1.1 Enabling Multicast Routing By default, multicast routing is disabled. To configure the V5824G to forward multicast traffic via Layer 3 network, you need to enable multicast routing. To enable Layer 3 multicast routing, use the following command.
Page 368: Ecmp Load Splitting
UMN:CLI User Manual V5824G To specify a TTL threshold for multicast packets, use the following command. Command Mode Description ip multicast ttl-threshold Specifies a TTL threshold for multicast packets. <0-255> 0-255: TTL value (default: 1) Interface no ip multicast ttl-threshold Deletes a specified TTL threshold for multicast packets.
Page 369: Mrib Entry Limit
User Manual UMN:CLI V5824G To enable ECMP load splitting, use the following command. Command Mode Description Enables ECMP load splitting. ip multicast multipath [srcip | srcip: source address (default) srcgrpip] Global srcgrpip: source and group address no ip multicast multipath Disables ECMP load splitting.
Page 370: Displaying Mrib Statistics
UMN:CLI User Manual V5824G If you use the clear ip mroute command, the MRIB clears the multicast routing entries in its multicast routing table, and removes the entries from the multicast forwarder. To delete the multicast routing entries in the MRIB, use the following command.
Page 371: Displaying Mfib Information
User Manual UMN:CLI V5824G To delete the multicast routing statistics entries from the multicast routing table, use the following command. Command Mode Description clear ip mroute statistics * Deletes all multicast routing statistics entries. Enable Global clear ip mroute statistics Deletes a specific multicast routing statistics entry.
Page 372: Pim Basic
Prune messages are then used to prevent from propagating to routers with no group members. Both PIM protocols use the same message formats. The V5824G currently support PIM-SM only. PIM Messages The followings are simple descriptions of PIM control messages: •...
Page 373: Pim Mode
User Manual UMN:CLI V5824G 9.3.2.1 PIM Mode To enable PIM-SM on an interface, use the following command. Command Mode Description ip pim sparse-mode Enables PIM-SM on an interface. Interface no ip pim sparse-mode Disables PIM-SM on an interface. You can also enable PIM-SM as the passive mode. The passive mode operation is for local members.
Page 374: Neighbor Filtering
UMN:CLI User Manual V5824G 9.3.2.3 Neighbor Filtering If necessary, you can filter neighbor routers using access lists. When you enable this feature, PIM establishes adjacency without neighbor routers specified as deny in access lists. To enable filtering neighbor routers in PIM, use the following command.
Page 375: Pim Join/Prune Interval
VIF flapping, which can increase the stability and quality for multicast service. Using this function, the V5824G gives a discredit to a VIF for every flapping time, and then the VIF is not selected as a forwarding path until its credit is regenerated.
Page 376: Pim Static Join
UMN:CLI User Manual V5824G To enable/disable the PIM VIF flap discredit function, use the following command. Command Mode Description ip pim vif flap discredit Enables the PIM VIF flap discredit. (default) Global no ip pim vif flap discredit Disables the PIM VIF flap discredit.
Page 377: Displaying Pim Information
User Manual UMN:CLI V5824G 9.3.2.9 Displaying PIM Information To display current PIM information, use the following command. Command Mode Description Shows PIM interface information. show ip pim interface [detail] detail: includes VIF information show local-members Shows PIM local membership information.
Page 378: Fig. 9.6 Rendezvous Point Tree
UMN:CLI User Manual V5824G Fig. 9.6 Rendezvous Point Tree Shortest Path Tree (SPT) When the number of receivers increases, a shared tree may not be entirely efficient, so PIM-SM also provides the option to switch to receive multicast traffic on a shortest path tree (SPT).
Page 379: Rendezvous Point
Static RP To elect the RP among candidate RPs in the shared tree, the V5824G supports the BSR mechanism (see Section 9.3.3.2) and static RP, and also supports the simultaneous use of those.
Page 380 UMN:CLI User Manual V5824G To statically specify an RP address for multicast groups, use the following command. Command Mode Description Specifies an RP address for multicast groups. ip pim rp-address A.B.C.D [<1- A.B.C.D: RP address 99> | <1300-1999>] [override] 1-99: IP standard access list...
Page 381: Bootstrap Router
User Manual UMN:CLI V5824G no ip pim rp-candidate Configures an interface not to send the candidate RP INTERFACE advertisement. Configures an interface not to send the candidate RP no ip pim rp-candidate advertisement as well as deletes specified candidate RP information.
Page 382: Source Registration
UMN:CLI User Manual V5824G Interface for Candidate BSR To configure an interface to flood the candidate BSR advertisement, use the following command. Command Mode Description ip pim bsr-candidate Configures an interface to flood the candidate BSR INTERFACE advertisement. ip pim bsr-candidate INTERFACE: interface name INTERFACE <0-32>...
Page 383 User Manual UMN:CLI V5824G sending the multicast traffic without an encapsulation to the RP. When receiving the native multicast traffic, the RP unicasts the PIM register-stop message back to the DR. The DR then stops encapsulating the multicast traffic in the register message.
Page 384: Spt Switchover
UMN:CLI User Manual V5824G To enable the router to filter multicast sources, use the following command. Command Mode Description Enables the router to filter multicast sources. ip pim accept-register list {<100- 100-199: IP extended access list 199> | <2000-2699> | WORD}...
Page 385: Cisco's Router Interoperability
The Cisco’s routers, however, validate the checksum for the whole register message including the data portion, resulting in incompatibility with the standard-based routers. To guarantee compatibility with the Cisco’s routers, the V5824G provides the checksum option, which expands the range of the checksum calculation.
Page 386 The rebooted router then is able to quickly recover from the reboot. Some older Cisco’s routers cannot recognize the GenID option in the hello messages, so the V5824G provides the exclude-GenID option for the compatibility with the Cisco’s routers.
Page 387: Pim Debug
User Manual UMN:CLI V5824G 9.3.3.6 PIM Debug To enable PIM-SM debugging, use the following command. Command Mode Description Enables PIM-SM debugging. all: all PIM-SM debugging events: events debugging debug pim {all | events | nexthop nexthop: nexthop communications debugging | mib | mfc | nsm | state | packet...
Page 388: Source Specific Multicast (Ssm)
If V5824G receives IGMPv1 or IGMPv2 report message from the host when static SSM mapping is enabled, it handles as if it receives IGMPv3 report...
Page 389 User Manual UMN:CLI V5824G Static SSM mapping implemented for the V5824G has the following restriction, so you must keep it in mind, before configuring static SSM mapping. IGMP proxy and static SSM mapping cannot be enabled together. It means that SSM mapping cannot be enabled when the system is already configured with upstream or downstream interface with IGMP proxy feature.
Page 390: 10 Ip Routing Protocol
UMN:CLI User Manual V5824G 10 IP Routing Protocol 10.1 Border Gateway Protocol (BGP) The Border Gateway Protocol (BGP) is an exterior gateway protocol (EGP) that is used to exchange routing information among routers in different autonomous systems (AS). BGP routing information includes the complete route to each destination. BGP uses the routing information to maintain a database of network reachability information, which it exchanges with other BGP systems.
Page 391: Basic Configuration
The ZebOS type requires no specific configuration for sending out BGP community and extended community attributes. ZebOS type is the default for the V5824G. To select configuration type of the BGP router, use the following command.
Page 392: Enabling Bgp Routing
UMN:CLI User Manual V5824G 10.1.1.2 Enabling BGP Routing Step 1 To define an AS number and open Router Configuration mode, use the following command. Command Mode Description Assigns AS number to configure BGP routing and router bgp <1-65535> Global opens Router Configuration mode.
Page 393: Router Id
User Manual UMN:CLI V5824G 10.1.1.3 Router ID In case the loopback interface is configured the router-id is set to the IP address of a loopback interface. If not, the highest IP address is the router-id. To manually configure a fixed router ID as a BGP router identifier, use the following command.
Page 394: Bgp Path Selection
Deletes the configured strict RFC1771 setting. 10.1.2 Advanced Configuration The V5824G is possibly configured for the additional configurations related BGP. 10.1.2.1 Summary of Path Aggregation combines the characteristics of several different routes and advertises a single route. In the example of 2 routes information of 172.16.0.0/24 and 172.16.1.0/24, the as-set parameter creates an aggregate entry advertising the path for a single route of 172.16.0.0/23, consisting of all elements contained in all paths being summarized.
Page 395: Automatic Summarization Of Path
User Manual UMN:CLI V5824G To delete the route’s information of specific network address, use the following command. Command Mode Description no aggregate-address A.B.C.D/M as-set [summary-only] Router Disables the summarization function of routes. no aggregate-address A.B.C.D/M summary-only [as-set] 10.1.2.2 Automatic Summarization of Path Automatic summarization is new feature to expend the route information up to the class of specified IP address on interface connected directly to BGP router.
Page 396: Local Preference
BGP routers. Then, the MED is considered when selecting the best path among many alternative paths. The V5824G, MED comparison is configured only among all paths from the autonomous system. You can configure the comparison of MEDs among all BGP routers within autonomous system.
Page 397: Choosing Best Path
When comparing similar routes from more than 2 peers the BGP router does not consider router ID of the routes. It selects the first received route. The V5824G uses router ID in the selection process; similar routes are compared and the route with lowest router ID is selected as the best route.
Page 398: Graceful Restart
User Manual V5824G The V5824G is basically configured not to compare MED values of the path information that exchanges between the Confederation Peers. But just in case, it can be configured to compare MED values of the path information that exchanges between Confederation Peers.
Page 399: Administrative Distance For Bgp
User Manual UMN:CLI V5824G Therefore, 2 options of the time can be used to speed up routing convergence by its peer in case that BGP doesn’t come back after a restart. • Restart Time It’s the waiting time for the restarting of Neighboring router’s BGP process. Restart time allows BGP process time to restart and implement the internal connection (The session).
Page 400: Ip Address Family
10.1.5.1 Default Route The V5824G can be configured that particular neighboring BGP routers or peer group is assigned by default route as 0.0.0.0. Then, neighboring router or member of peer group is able to receive the information of default route from the designated routers.
Page 401: Peer Group
User Manual UMN:CLI V5824G The following command allows neighboring BGP routers or Peer Group to transmit 0.0.0.0 as the default route. To generate the default route to BGP neighbor or peer group, use the following command. Command Mode Description Generates the default route to BGP Neighbor.
Page 402: Route Map
10.1.5.4 Force Shutdown The V5824G supports the feature to force to shutdown any active session for the specified BGP router or peer group and to delete the routing data between them. It shutdowns all connections and deletes the received path information from neighboring router or peer group.
Page 403: Neighbor Password
User Manual UMN:CLI V5824G 10.1.5.6 Neighbor Password To enable/disable MD5 authentication on a TCP connection between BGP neighbors, use the following command. Command Mode Description neighbor {A.B.C.D WORD} Sets password to the neighbor. password PASSWORD A.B.C.D: BGP neighbor IP address...
Page 404: Updates For Inbound Soft Reconfiguration
10.1.5.9 Updates for Inbound Soft Reconfiguration Soft-reconfiguration may be used in lieu of BGP route refresh capability. The V5824G can store updates for inbound soft reconfiguration. When a soft reset (inbound) is done on this neighbor, the locally stored routes are reprocessed according to the inbound policy.
Page 405 User Manual UMN:CLI V5824G no-export: specifies routes not to be advertised outside of Autonomous System boundary ip community-list standard WORD Creates a standard community list. {deny | permit} [LINE] community-list expanded Creates a expanded community list. WORD {deny | permit} LINE Add entries to the list by repeating the command for different IP addresses.
Page 406 UMN:CLI User Manual V5824G extcommunity-list standard Creates a standard extcommunity-list. WORD {deny | permit} [LINE] WORD: extended community list name extcommunity-list expanded Creates a expanded extcommunity-list. WORD {deny | permit} LINE WORD: extended community list name To delete an entry in the extended community list, use the following command.
Page 407: Bgp Timers
User Manual UMN:CLI V5824G community show [ip] {unicast multicast} community {AA:NN | internet | local-AS | no- advertise | no-export} [exact-match] Shows the list of all bgp communities’ show ip bgp community-info information 10.1.7 BGP Timers BGP keepalive timer indicates that the frequency with which the keepalive messages are sent to the neighbors.
Page 408: Route Flap Dampening
UMN:CLI User Manual V5824G To delete a configured external route transmission, use the following command. Command Mode Description no redistribute { connected | kernel | static | rip | ospf} Deletes a configured external route Router transmission. no redistribute { connected | kernel | static | rip | ospf} route-map [MAP-NAME] 10.1.9...
Page 409: Bgp Session Reset
Because the internal connections are re-established newly after resetting, the route information of the connected routers is restored by default. You can reset the session in specified condition. The V5824G is available with several parameters to reset the BGP connections.
Page 410: Session Reset Of All Peers
UMN:CLI User Manual V5824G 10.1.10.1 Session Reset of All Peers To reset the sessions with all BGP peers, use the following command. Command Mode Description clear ip bgp * Global Resets all sessions with BGP peer groups. When the route parameters restore to the default value by reset command, you can configure the specific parameters for its initialization.
Page 411: Session Reset Of Specific Route
User Manual UMN:CLI V5824G To reset the sessions of BGP neighboring routers which are belong to specific AS number and initialize the details of route configurations, use the following command. Command Mode Description clear ip bgp <1-65535> in [prefix- Resets the session of BGP neighboring routers which filter] are configured a particular AC number.
Page 412: Session Reset Of External Peer
UMN:CLI User Manual V5824G clear ip bgp A.B.C.D soft [in | Updates the route information only while the session is out] possible of BGP neighboring router with specified IP address. Apply the route either incoming or outgoing clear ip bgp A.B.C.D {unicast | routes.
Page 413: Bgp As-Path Access List
User Manual UMN:CLI V5824G To reset the sessions of BGP routers which are members of specified peer group and initialize the details of route configurations, use the following command. Command Mode Description clear ip bgp peer-group GROUP Resets the session for all members of specified peer in [prefix-filter] group.
Page 414 UMN:CLI User Manual V5824G An AS path access list must be done within a route map and then referred to within a protocol. And AS path access lists can be used in match conditions in route-maps to match on access lists attached to BGP routes. For more information, refer to 10.4...
Page 415 User Manual UMN:CLI V5824G 10.1.12.1 Creating prefix list To create an entry of IPv4 prefix list, use the following command. Command Mode Description ip prefix-list WORD {deny | permit} Creates an entry of IPv4 prefix list. A.B.C.D/M ge <0-32> [le <0-32>]...
Page 416 UMN:CLI User Manual V5824G A.B.C.D/M ge <0-32> [le <0-32>] matched. permit: permits access of packet if conditions are matched. A.B.C.D/M: IPv4 prefix to match (e.g. 35.0.0.0/8) prefix-list WORD <1- any: any IP prefix to match. (same as 0.0.0.0/0 le 32) 4294967295>...
Page 417: Bgp Monitoring And Management
User Manual UMN:CLI V5824G 10.1.12.3 Displaying Prefix List Entries To display the information about a prefix list or prefix list entries, use the following command. Command Mode Description show ip prefix-list [WORD] Shows information about all prefix lists. Shows the prefix list entry according to the parameter.
Page 418: Bgp Neighbor
Enables logging of BGP neighbor status changes Router no bgp log-neighbor-changes Disables logging of BGP neighbor status changes The V5824G logs the following events using the above command. • BGP notification received • Erroneous BGP update received •...
Page 419: Checking The Bgp Network Route
User Manual UMN:CLI V5824G 10.1.13.4 Checking the BGP Network Route To check that the BGP network route is reachable through IGP, use the following command. Command Mode Description bgp network import-check Checks BGP network route exists in IGP. Router no bgp network import-check Disables the function.
Page 420: Open Shortest Path First (Ospf)
UMN:CLI User Manual V5824G 10.2 Open Shortest Path First (OSPF) Open shortest path first (OSPF) is an interior gateway protocol developed by the OSPF working group of Internet Engineering Task Force (IETF). OSPF designed for IP network supports IP subnetting and marks on information from exterior network. Moreover, it supports packet authorization and transmits/receives routing information through IP multicast.
Page 421 Use the clear ip ospf process command to restart OSPF process. If there is changing router ID while OSPF process is operating, configuration must be processed from the first. In this case, the V5824G can change only router ID without changing related configurations. Command...
Page 422: Abr Type Configuration
10.2.2 ABR Type Configuration The V5824G supports 4 types of OSPF ABR which are Cisco type ABR (RFC 3509), IBM type ABR (RFC 3509), IETF Draft type and RFC 2328 type. To configure ABR type of OSPF, use the following command.
Page 423: Authentication Key
User Manual UMN:CLI V5824G If there is no choice of authentication type, the code communication will be based on text. To delete comfigured authentication, use the following command. Command Mode Description no ip ospf authentication Interface Deletes configured authentication. ospf A.B.C.D...
Page 424: Interface Cost
UMN:CLI User Manual V5824G To delete a configured authentication key, use the following command. Command Mode Description no ip ospf authentication-key no ip ospf authentication-key {first | second} ospf A.B.C.D authentication-key Interface Deletes a configured authentication key. no ip ospf A.B.C.D authentica-...
Page 425: Routing Protocol Interval
User Manual UMN:CLI V5824G To release a blocked interface, use the following command. Command Mode Description no ip ospf database-filter Interface Releases a blocked interface. no ip ospf A.B.C.D database- filter 10.2.4.5 Routing Protocol Interval Routers on OSPF network exchange various packets, about that packet transmission,...
Page 426: Ospf Resynchronization Timeout
UMN:CLI User Manual V5824G To configure a retransmit interval, use the following command. Command Mode Description ip ospf retransmit-interval <1- 65535> Configures a retransmit interval in the unit of second. 1-65535: interval value (default: 5) ospf A.B.C.D retransmit- interval <1-65535>...
Page 427: Ospf Maximum Transmission Unit (Mtu)
User Manual UMN:CLI V5824G 10.2.4.7 OSPF Maximum Transmission Unit (MTU) Router verifies MTU when DD (Database Description) is exchanging among the routers on OSPF networks. Basically, OSPF network can not be organized if there are different sizes of MTUs between routers. Therefore MTU value must be consistent. Generally MTU value is 1500 bytes on Ethernet interface.
Page 428: Ospf Network Type
UMN:CLI User Manual V5824G To delete a configured priority of OSPF router, use the following command. Command Mode Description no ip ospf priority Interface Deletes a configured priority of OSPF router. no ip ospf A.B.C.D priority 10.2.4.9 OSPF Network Type There are 4 types of OSPF network.
Page 429: Non-Broadcast Network
User Manual UMN:CLI V5824G 10.2.5 Non-Broadcast Network To operate NBMA type network, neighbor router configuration is needed. And IP address, Priority, Poll-interval configuration as well. Priority is information for designate router selection and it configured [0] as a default. Poll-interval is the waiting time to re-get the hello packet from dead Neighbor router.
Page 430: Area Authentication
Blocking the Transmission of Routing Information Between Area ABR transmits routing information between Areas. In case of not to transmit router information to other area, the V5824G can configure it as a blocking. First of all, use the access-list or prefix-list command to assign LIST-NAME. And use...
Page 431: Not So Stubby Area (Nssa)
User Manual UMN:CLI V5824G only available in case of OSPF router is ABR. To block routing information on LIST-NAME, use the following command. Command Mode Description area {<0-4294967295> | A.B.C.D} filter-list access LIST-NAME {in | out} Blocks routing information on LIST- Router NAME.
Page 432 UMN:CLI User Manual V5824G • translator-role NSSA-LSA (Link State Advertisement) has three types according to the way of process type. always changes all NSSA-LSA into Type-5 LSA. candidate changes NSSA-LSA into Type-5 LSA when it is translator. never does not change NSSA-LSA.
Page 433 User Manual UMN:CLI V5824G area <0-4294967295> nssa no-redistribution default-information-originate translator-role { always | candidate | never } area <0-4294967295> nssa no-summary area {<0-4294967295> | A.B.C.D} nssa no- summary [no-redistribution] default- information-originate [metric <0-16777214>] area {<0-4294967295> | A.B.C.D} nssa no- summary...
Page 434: Area Range
UMN:CLI User Manual V5824G {candidate | never | always} no area {<0-4294967295> | A.B.C.D} nssa no-redistribution no-summary [translator-role {candidate | never | always}] no area {<0-4294967295> | A.B.C.D} nssa no-redistribution translator-role default-information-originate [no-summary] no area {<0-4294967295> | A.B.C.D} nssa no-redistribution translator-role [no-summary] [default-information-originate] no area {<0-4294967295>...
Page 435: Shortcut Area
User Manual UMN:CLI V5824G Use advertise option to transmit summarized routing information with using summarized information. And use the not-advertise option to block the transmission of summarized routing information to outside. To release the configuration, use the following command. Command...
Page 436: Maximum Area
UMN:CLI User Manual V5824G To delete a created Stub Area, use the following command. Command Mode Description area {<0-4294967295> Router Deletes a created Stub Area. A.B.C.D} stub [no-summary] 10.2.6.8 Maximum Area User can set the maximum number of OSPF area that the router can belong to.
Page 437 User Manual UMN:CLI V5824G mits LSA again. Retransmit-interval is configuration of the time interval between transmission and retransmission • Dead-interval If there is no hello packet for the configured time. The router perceives other router is stopped working. Dead-interval is configuration of the time interval which perceives other router is stopped operating.
Page 438: Default Metric
UMN:CLI User Manual V5824G To delete a configured virtual link, use the following command. Command Mode Description no area {<0-4294967295> | A.B.C.D} virtual-link A.B.C.D authentication [message-digest | null] no area {<0-4294967295> | A.B.C.D} virtual-link A.B.C.D authentication-key KEY no area {<0-4294967295> | A.B.C.D} virtual-link A.B.C.D message-digest-key KEY md5 KEY...
Page 439 User Manual UMN:CLI V5824G To configure the Graceful Restart, use the following command. Command Mode Description capability restart {graceful Configures the Graceful Restart. signaling | reliable-graceful} Router no capability restart Releases the configuration. The following items are additional options for the Graceful Restart: •...
Page 440: Opaque-Lsa Support
<1- 1800> 10.2.9 Opaque-LSA Support Opaque-LSA is LSA Type-9, Type-10, Type-11. The V5824G enables Opaque-LSA as a default but it can be released by user. To release the enabled Opaque-LSA management, use the following command. Command...
Page 441: Default Route
User Manual UMN:CLI V5824G 10.2.10 Default Route You can configure ASBR (Autonomous System Boundary Router) to transmit default route to OSPF network. Autonomous System Boundary router transmits route created externally to OSPF network. However, it does not create system default route.
Page 442: Ecmp Route Hashing
UMN:CLI User Manual V5824G The following example shows how to configure default route with more than 2 options: • default-information originate metric-type <1-2> always • default-information originate route-map MAP-NAME metric <0-16777214> To delete the configuration, use the following command. Command...
Page 443: External Routes To Ospf Network
User Manual UMN:CLI V5824G To configure the period of finding, use the following command. Command Mode Description Configures the period of finding in the unit of second. timers SPF-DELAY SPF- Router SPF-DELAY: 0-4294967295 (default: 5) HOLD SPF-HOLD: 0-4294967295 (default: 10) To release the configuration, use the following command.
Page 444: Ospf Distance
UMN:CLI User Manual V5824G The following example shows how to configure it with more than 2 options: • redistribute {bgp | connected | kernel | rip | static} metric <0-16777214> tag <0- 4294967295> • redistribute {bgp | connected | kernel | rip | static} tag <0-4294967295> metric- type <1-2>...
Page 445: Host Route
User Manual UMN:CLI V5824G The following example shows how to configure the distance with more than 2 options: • distance ospf external <1-255> inter-area <1-255> • distance ospf inter-area <1-255> intra-area <1-255> To make it as a default, use the following command.
Page 446: Blocking Routing Information
V5824G 10.2.17 Blocking Routing Information The V5824G can classify and restrict the routing information. To configure this function, sort the specific routing information in access-list first, and block the routing information in access-list. To block the routing information in access-list, use the following command.
Page 447: Ospf Monitoring And Management
User Manual UMN:CLI V5824G 10.2.19 OSPF Monitoring and Management You can view all kinds of statistics and database recorded in IP routing table. These information can be used to enhance system utility and solve problem in case of trouble. You can check network connection and data routes through the transmission.
Page 448 UMN:CLI User Manual V5824G opaque-area opaque-as} A.B.C.D self- originate show ip ospf [<0-65535>] database {asbr- summary | external | network | router | summary nssa-externalㅣopaque-link opaque-area | opaque-as} A.B.C.D adv-router A.B.C.D To display the interface information of OSPF, use the following command.
Page 449: Sending Snmp Trap
10.2.19.4 Limiting Number of Database The V5824G can limit the Number of Database to process in OSPF. For example, if a router connected with many of routers, it carries overload to process the database. Therefore, Limiting the Number of Database reduces the overload on system.
Page 450: Ospf Debug
UMN:CLI User Manual V5824G To assign the maximum number of LSA to process in OSPF, use the following command. Command Mode Description overflow database Assigns the number of LSA for internal route. <1-4294967294> [hard | soft] Router overflow database external Assigns the number of LSA for external route.
Page 451 User Manual UMN:CLI V5824G To disable OSPF debugging, use the following command. Command Mode Description no debug ospf [all] no debug ospf events [abr | asbr | lsa | nssa | os | router | vlink] no debug ospf ifsm [events |...
Page 452: Routing Information Protocol (Rip)
RIP v2 uses broadcast User Datagram Protocol (UDP) data packets to exchange routing information. The V5824G sends routing information and updates it every 30 seconds. This process is termed advertised. If a router does not receive an update from another router for 180 seconds or more, it marks the routes served by the non-updating router as being unusable.
Page 453: Rip Neighbor Router
User Manual UMN:CLI V5824G Step 2 Configure the network to operate as RIP. Command Mode Description Establishes the network to operate as RIP. network {A.B.C.D/M A.B.C.D/M: IP prefix (e.g. 35.0.0.0/8) INTERFACE } INTERFACE: interface name Router network {A.B.C.D/M Removes a specified network to operate as RIP.
Page 454: Rip Version
10.3.3 RIP Version Basically, the V5824G supports RIP version 1 and 2. However, you can configure to receive either RIP v1 type packets only or RIP v2 type packets only. To configure RIP version, use the following command. Command...
Page 455: Creating Available Static Route Only For Rip
10.3.4 Creating available Static Route only for RIP This feature is provided only by Dasan Networks’ route command creates static route available only for RIP. If you are not familiar with RIP protocol, you would better use redistribute static command.
Page 456: Redistributing Routing Information
10.3.5 Redistributing Routing Information The V5824G can redistribute the routing information from a source route entry into the RIP tables. For example, you can instruct the router to re-advertise connected, kernel, or static routes as well as other routes established by routing protocol. This capability applies to all the IP-based routing protocols.
Page 457: Administrative Distance
User Manual UMN:CLI V5824G To set metrics for redistributed routes, use the following command. Command Mode Description Configures the equal metric of all routes transmitted by default-metric <1-16> routing protocol, enter the value. 1-16: default metric value Router Removes the equal metric of all routes transmitted by no default-metric <1-16>...
Page 458: Routing Information Filtering
10.3.9.1 Filtering Access List and Prefix List The V5824G switch is able to permit and deny conditions that you can use to filter inbound or outbound routes by access-list or prefix-list. Use the distribute-list command to apply the access list to routes received from or forwarded to a neighbor.
Page 459: Disabling The Transmission To Interface
User Manual UMN:CLI V5824G 10.3.9.2 Disabling the transmission to Interface To prevent other routers on a local network from learning about routes dynamically, you can keep routing update messages from being sent through a router interface. This feature applies to all IP-based routing protocols except for BGP.
Page 460: Split Horizon
UMN:CLI User Manual V5824G • Update The routing information is updated once every 30 seconds. This is the fundamental timing parameter of the routing protocol. Every update timer seconds, the RIP proc- ess is supposed to send the routing table to all neighboring RIP routers.
Page 461: Authentication Key
If a key chain is not configured, plain text authentication can be performed using string command. The V5824G supports two modes of authentication on an interface for which RIP authentication is enabled: plain text authentication and MD5 authentication. The default authentication in every RIP v2 packet is plain text authentication.
Page 462: Restarting Rip
Removes a configured period. [<1-65535>] 10.3.15 UDP Buffer Size of RIP RIP protocol exchanges the routing information between routers using UDP packets. The V5824G can be configured theses UDP packets buffer size, use the following command. Command Mode Description recv-buffer size <8196- Sets the UDP Buffer size value for using RIP.
Page 463: Displaying Debugging Information
User Manual UMN:CLI V5824G To clear RIP information being used in router, use the following command. Command Mode Description Enable clear ip rip route [bgp | connected | kernel | Deletes RIP information being used in Global ospf | rip | static | all | A.B.C.D/M] router.
Page 464: Configuring Route Map
UMN:CLI User Manual V5824G 10.4 Configuring Route Map Route maps are used to redistribute routes between processes or for route health injection. To define a route map for use with supported feature, perform the following steps: Step1 Open Route-Map Configuration mode from Global Configuration mode to create a route map entry.
Page 465 User Manual UMN:CLI V5824G Command Mode Description match origin {egp Matches BGP origin code. incomplete} egp: learned via Exterior Gateway Protocol igp: local IGP incomplete: the origin of the path information is Route-map unknown or learned through other means match route-type external {type-1 | Matches the route type.
Page 466 UMN:CLI User Manual V5824G Command Mode Description Deletes the matched communities from set comm-list {<1-99> | <100-199> | WORD } community attribute delete inbound/outbound update when applying route-map. set dampening [<1-45>] Sets route-flap dampening set dampening <1-45> <1-20000> <1-20000> parameters.
Page 467 User Manual UMN:CLI V5824G Command Mode Description no set ip next-hop [A.B.C.D] no set local-preference [<0-4294967295>] no set metric {<0-4294967295> | <+/-metric>} no set metric-type {type-1 | type-2} no set origin {egp | igp | incomplete} Route-map Removes the specified action criteria.
Page 468: 11 Gpon Configuration
UMN:CLI User Manual V5824G 11 GPON Configuration Gigabit Passive Optical (GPON) technology has the active network elements OLT (Optical Line Termination) at the central office and ONU/ONT (Optical Network Unit / Termination) at the subscriber site. Typical GPON configuration consists of a single PON port at the OLT and a number of ONUs connected to it over a single fiber feeder.
Page 469: Fig. 11.2 Cli Structure Of Gpon Configuration Mode
User Manual UMN:CLI V5824G Specifying OLT and ONU ID When specifying an OLT ID in the CLI, you can simply put the number in the form of PORT number such as 1, 2, 3, 4… 7, 8. Multiple input is also possible, e.g. 1, 2, 3 or 3-4.
Page 470: Olt Management
UMN:CLI User Manual V5824G The following shows the main commands of GPON Configuration mode. SWITCH(config)# gpon SWITCH(gpon)# ? GPON configuration commands: clear Reset functions dba-profile Configure GPON DBA Profile debug Debugging functions To run exec commands in config mode exit...
Page 471: Olt Description
User Manual UMN:CLI V5824G 11.1.1.1 OLT Description To specify or modify a description of an OLT, use the following command. Command Mode Description olt description DESCRIPTION Registers the OLT’s description. GPON-OLT no olt description Deletes the description of OLT. To display a description of an OLT, use the following command.
Page 472: Olt Bandwidth
UMN:CLI User Manual V5824G To display the status of encryption mode or information of the encryption key exchange process, use the following command. Command Mode Description Shows the status of encryption mode. show onu encryption [ONU-ID] ONU-ID: ONU ID (1 to 128) or ONU serial number...
Page 473: Olt Optical Transceiver Parameter
(ONT) fault occurs by detecting the specific error signal. The auto ONU fault detecting mechanism is as follows: When detecting an error signal (an ONU fault) in a certain OLT, the V5824G generates a corresponding syslog message, and then disables the laser of each ONU currently connected to the OLT one by one for 60 seconds.
Page 474: Maximal Distance Between Olt And Onu (Ont)
UMN:CLI User Manual V5824G To display a current configuration of the auto ONU fault detection, use the following command. Command Mode Description Shows a current configuration of the auto ONU (ONT) show olt signal-check GPON-OLT fault detection. To guarantee a right operation of this feature, the OLT and an ONU (ONT) loaded with the newest firmware are needed.
Page 475: Mac Aging Time
If the power of ONU is turned off by user, this ONU is supposed to send the alarm message of dying-gasp to OLT. When the last ONU is deregistered from the V5824G after it generates an alarm by ONU dying-gasp event, we can regard that the link of this GPON port is down and it’s not the cable connection problem.
Page 476: Maximum Number Of Onu
11.1.11 OLT Anti-Spoofing When the V5824G learns the same MAC address from the two (or more) different ONUs on the same GPON, the system regards the latest ONU(s) as the fault operation, and make the ONU(s) block the inflow of sub-level MAC by MAC filtering. Through this anti- spoofing, the V5824G can prevent the malicious spoofing attack.
Page 477: Onu Rx-Power Update
User Manual UMN:CLI V5824G To display the user configuration of the OLT anti-spoofing, use the following command. Command Mode Description show olt anti-spoofing [OLT-ID] GPON Shows the user configuration of the OLT anti-spoofing. show olt anti-spoofing GPON-OLT To display the current OLT anti-spoofing status, use the following command.
Page 478: Downstream Traffic Control
11.1.14 Downstream Traffic Control The V5824G provides the function to control the downstream traffic based on MAC address and VLAN ID by each OLT. Basically, the OLT system creates MAC table through MAC learning with the incoming traffic from ONU, and transmits the downstream traffic to GEM port with the MAC table information.
Page 479 [vid RANGE] per flow. If the V5824G is configured in the downstream GEM mapping mode per flow, you can configure downstream QoS mapping mode based on MAC address / VLAN ID and the mapping between queue and CoS value. To configure the downstream traffic control by QoS mapping, use the following command.
Page 480 UMN:CLI User Manual V5824G To display the configuration of downstream traffic control, use the following command. Command Mode Description show olt ds-gem-mapping [OLT- GPON Shows the GEM port mapping mode configured on the OLT. show olt ds-gem-mapping show vlan-gem-mapping GPON-OLT Shows VLAN ID mapped to GEM port of ONU.
Page 481: Multicast/Broadcast Gem Port Separation
11.1.15 Multicast/Broadcast GEM Port Separation All the downstream multicast and broadcast flows from the V5824G are transmitted through a single GEM port ID. The multicast and broadcast flows need to be separated from each other to properly forward all broadcast/multicast traffic for multiple ONTs.
Page 482: Configuring Port/Tcont Threshold
UMN:CLI User Manual V5824G 11.1.16 Configuring Port/TCONT Threshold When one GPON port is connected to a lot of ONTs with T-CONTs and GEM ports, you can specify the maximum numbers (threshold) of T-CONTs and GEM port count. So that an alarm is generated if a given threshold is exceeded.
Page 483 User Manual UMN:CLI V5824G To configure ONU deactivation monitoring, use the following command. Command Mode Description olt deactive-monitor alarm-raise Sets the deactive ONU-raise percent. <1-99> 1-99: (default: 30%) Sets the deactive ONU-clear percent. If the current deactive-monitor alarm- percent becomes higher than this value, the alarm clear<1-99>...
Page 484: Olt Bit Error Ratio (Ber)
UMN:CLI User Manual V5824G 11.1.18 OLT Bit Error Ratio (BER) You can configure the monitor direction and the alarm threshold of the bit error ratio. The system generates a bit error ratio (BER) alarm when the total number of error bits or bit error rate of the data transferred between the OLT and ONUs exceeds the alarm threshold.
Page 485: Displaying Olt Information
Shows the information of active/inactive GPON OLT show olt status [OLT-ID] GPON-OLT IDs. The following is an example of displaying active/inactive OLT IDs of the V5824G. SWITCH(gpon)# show olt status ------------------------------------------------------------ OLT_ID | Status | Protect | Distance | FEC mode(DS/US)
Page 486: Olt Traffic Statistics
UMN:CLI User Manual V5824G 11.1.20.1 OLT Traffic Statistics To display traffic statistics of an OLT, use the following command. Command Mode Description show olt statistics Shows traffic statistics of an OLT. Shows traffic statistics of a specified ONU (ONT) show olt statistics onu ONU-IDs collected by an OLT.
Page 487: Mac Address
User Manual UMN:CLI V5824G 11.1.20.2 MAC Address To display the MAC addresses and a total MAC entry counts of the ONUs (ONTs) connected to a current OLT, use the following command. Command Mode Description show olt mac Shows the MAC addresses of ONUs (ONTs) connected...
Page 488: Onu Management
11.2 ONU Management This section describes how to manage an ONU (ONT). The V5824G provides the centralized remote ONU (ONT) management concept, so you can manage every remote ONU (ONT) connected to the V5824G without any local configuration for the ONUs (ONTs).
Page 489 (ONTs) periodically. OLT registers a specific ONU which replies to OLT with its serial number. The V5824G can allocate ONU-ID to an ONU which sends a valid serial number to OLT. When ONU with the specific serial number is activated, it is assigned the allocated ONU-ID.
Page 490: Manual Onu (Ont) Registration Mode
UMN:CLI User Manual V5824G 11.2.1.3 Manual ONU (ONT) Registration Mode To register/delete ONU (ONT) manually, use the following command. Command Mode Description Registers ONU (ONT) with specified ONU-ID, serial number and password. onu add ONU-ID SERIAL_NUM Enables/disables the password auto-learning mode of...
Page 491: Changing Onu Registration Mode
User Manual UMN:CLI V5824G 11.2.1.5 Changing ONU Registration Mode If user wants to change automatically the states of ONU (ONT) to manage manually at a time, use the following command. Command Mode Description Changes automatically registered ONUs (ONTs) to onu fix {all | ONU-ID} GPON-OLT manage manually.
Page 492: Activating Administration For Uni
UMN:CLI User Manual V5824G For the details of how to create and configure the IP host service, see 11.4.5 IP Host Service Configuration. The IP assignment on IP host service configuration has to be specified as “static” when assigning IP address to ONU.
Page 493: Loopback
User Manual UMN:CLI V5824G 11.2.5 Loopback To enable/disable the loopback for UNI of ONU, use the following command. Command Mode Description Enables/disables the loopback for the specified onu loopback ONU-IDs uni eth Ethernet (type 3) UNI port of ONU. UNI-PORTs {enable type 3 |...
Page 494: Source Mac Address Monitoring
11.2.7 Source MAC address Monitoring The V5824G can monitor its source MAC table to find a defective ONUs (ONTs). Auto ONU (ONT) blocking function can be used to manage and troubleshoot the defective ONU-related problems. To enable/disable OLT for source MAC address monitoring, use the following command.
Page 495: Onu Mac Address Filtering
User Manual UMN:CLI V5824G 11.2.8 ONU MAC address Filtering The MAC filter table lists MAC destination addresses associated with the bridge port, each with an allow/disallow forwarding indicator for traffic flowing out of the bridge port. In this way, the upstream traffic is filtered on the ANI-side bridge ports, and the downstream traffic is filtered on the UNI-side bridge ports.
Page 496: Pots Interface Configuration
Deletes the configured data parameters of VoIP user. number pots POTS-NUMBER For the enhanced system security, the V5824G can use authentication for a VoIP user to have access to the softswitch. To configure the authentication user name and password for VoIP user to have access to softswitch, use the following command.
Page 497: Voip Mgc Configuration
User Manual UMN:CLI V5824G 11.2.10 VoIP MGC Configuration 11.2.10.1 Message ID Configuration To configure the message ID according to the specific VoIP service, use the following command. Command Mode Description Configures the message ID according to the specific onu voip-mgc ONU-ID message- VoIP service.
Page 498: Onu Port Configuration
UMN:CLI User Manual V5824G 11.2.11 ONU Port Configuration 11.2.11.1 UNI Ethernet Port Configuration To configure the UNI Ethernet port of ONU, use the following command. Command Mode Description Configures the medium mode of ONU UNI Ethernet port. onu port-config ONU-IDs uni eth...
Page 499: Displaying Multicast Counter Information
User Manual UMN:CLI V5824G 11.2.11.3 Displaying Multicast Counter Information To display the multicast counter information per UNI Ethernet port of ONU, use the following command. Command Mode Description Shows the IGMP message counters per UNI port of ONU. counters total...
Page 500: Onu Reset
UMN:CLI User Manual V5824G To specify the registration aging time for the ONUs that are manually registered, use the following command. Command Mode Description Specifies the maximum number of days that an ONU is inactive. If the ONU has been inactive during that onu inactive aging-time <1-30>...
Page 501: Onu System Account
User Manual UMN:CLI V5824G To display the operating parameters of ONU’s GPON module, use the following command. Command Mode Description show onu ani optic-module-info Shows the operating parameters of the GPON module, ONU_ID including the optical characteristics. GPON-OLT show onu uni optic-module-info...
Page 502: Onu Authentication From Radius Server
UMN:CLI User Manual V5824G 11.2.18 ONU Authentication from RADIUS Server You can use the RADIUS authentication process when an ONU (ONT) is activated and it attempts to access an OLT. The RADIUS Access-Request message is sent from the OLT to the RADIUS server. If the ONU is valid, the RADIUS server consults a database of ONUs to find the ONU which matches the authentication attributes in the connection request.
Page 503: Tab. 11.1 Radius Authentication Message Type
Authentication Attributes (RADIUS Code Field) (a) Service-Type: “Authenticate Only (8)”. (b) User-Name & User-Password: ONU Model Name Access-Request (c) Vendor-Specific Vendor ID: IANA registered DASAN (6296) (OLT → server) (d) Vendor-Specific Attribute: OLT_ID, ONT_ID, Model Name, Serial Number, Firmware Version info.
Page 504 UMN:CLI User Manual V5824G To configure IP address and key value of RADIUS server for ONU authentication, use the following command. Command Mode Description Specifies an IP address with key value and UDP port of onu auth radius-server host RADIUS server.
Page 505: Onu Firmware Upgrade
11.2.19 ONU Firmware Upgrade The V5824G provides the remote ONU (ONT) upgradeability. This feature allows the system administrators not to offer the local service for a single ONU (ONT) upgrade at the customer premise. To upgrade an ONU (ONT) successfully, you need to download a new ONU (ONT) firmware in the system.
Page 506 UMN:CLI User Manual V5824G (2) Downloading Firmware to ONU (Upgrading) To download the specified ONU (ONT) firmware in the ONU (ONT), use the following command. Command Mode Description Downloads ONU (ONT) firmware in the ONU (ONT). onu firmware download ONU-ID...
Page 507: Manual Upgrade (2)
User Manual UMN:CLI V5824G To display the status of ONU firmware, use the following command. Command Mode Description Enable Shows the status of ONU firmware. show onu firmware version OLT- Global OLT-ID: GPON port number ID [ONU-IDs] GPON ONU-ID: ONU ID (1-128) or ONU serial number...
Page 508 UMN:CLI User Manual V5824G To display the list of the downloaded ONU (ONT) firmware in OLT, use the following command. Command Mode Description Enable Global Shows the downloaded ONU (ONT) firmware list in show onu firmware-list GPON OLT. GPON-OLT (2) Upgrading Firmware To upgrade an ONU (ONT) with the downloaded ONU (ONT) firmware, use the following command.
Page 509: Auto Upgrade
ONU-ID: ONU ID (1 to 128) or ONU serial number 11.2.19.3 Auto Upgrade For efficient system maintenance, the V5824G provides the auto upgrade functionality for ONU firmware in the operational environment. You can simply upgrade the ONU firmware without an effort for every single ONU.
Page 510 UMN:CLI User Manual V5824G To display the list of the downloaded ONU (ONT) firmware in OLT, use the following command. Command Mode Description Global Shows the downloaded ONU (ONT) firmware list in show onu firmware-list GPON OLT. GPON-OLT (2) Auto Upgrade Configuration (on GPON Configuration mode) To configure the auto upgrade for ONU, use the following command.
Page 511 User Manual UMN:CLI V5824G To specify the execution condition of ONU auto upgrade configuration above, you should specify a target version of ONU firmware with (or without) exclude option. Through the target version and the option, auto upgrade execution condition is determined.
Page 512 UMN:CLI User Manual V5824G • Retry Count for Auto Upgrade The retry count argument specifies how many times to retry the auto upgrading of ONU if the first attempt fails. To specify the retry count of auto upgrade, use the following command.
Page 513 User Manual UMN:CLI V5824G list [NAME] auto-upgraded. NAME: ONU model name The following is an example of displaying the progress of ONU auto-upgrade and a list of ONU model name configured to be auto-upgraded. SWITCH(gpon)# show onu auto-upgrade info ---------------------------------------------------------------------------------...
Page 514: Displaying Onu Information
UMN:CLI User Manual V5824G To display the status of ONU firmware, use the following command. Command Mode Description Enable Shows the status of ONU firmware. show onu firmware version OLT- Global OLT-ID: GPON port number ID [ONU-IDs] GPON ONU-ID: ONU ID (1-128) or ONU serial number...
Page 515 User Manual UMN:CLI V5824G The following is the sample output of displaying the ONUs connected to the OLT 1. SWITCH(config-gpon-olt[1])# show onu active -------------------------------------------------------------------------------- OLT | ONU | STATUS | MODE | Serial No. | Password | Link uptime --------------------------------------------------------------------------------...
Page 516: Onu's Basic Configurations Via Olt
ONT get the basic configuration via OLT. The following sections explain how to perform the configuration on the connected OLT. The following basic configurations are available for the H640 series ONTs only. If you use other ONTs from the different vendors, not Dasan Networks, the IOP (Interoperability) test should be performed.
Page 517: Upgrade Of Ont
User Manual UMN:CLI V5824G 11.2.21.1 Upgrade of ONT You may have to upgrade ONT first for the purpose of perfect support for the services before the basic ONT configuration. The following command lines show an example for the ONT upgrade.
Page 518: Fig. 11.3 Pon Structure Sample Scheme For Voip And Internet Connection Of Ont
UMN:CLI User Manual V5824G Fig. 11.3 PON Structure Sample Scheme for VoIP and Internet Connection of ONT The following config command lines show a sample config for pre-settings of traffic-profile corresponding to the sample scheme above. OLT(gpon)# show running-config gpon olt multicast-gem 4094 ...
Page 519: Traffic Profile Configuration (Step2)
User Manual UMN:CLI V5824G treat inner vid 903 cos 0 tpid 0x8100 apply create  extended-vlan-tagging-operation V501 downstream-mode enable untagged-frame 1 treat inner vid 501 cos 0 tpid 0x8100 apply create  voip-profile codec-nego 1 codec pcma packet-period 10 silence-suppression 1...
Page 520 UMN:CLI User Manual V5824G  dba-profile tcont 2 gemport 2/1-2/4  dba-profile tcont 3 gemport 3/1  dba-profile VOIP mapper 1 gemport count 4 mapper 2 gemport count 4 mapper 3 gemport count 1 bridge 1 ani mapper 1 uni eth 1 ...
Page 521: Onu Profile & Ip Host Configuration (Step3)
(ip-host-config ip address static, it is required to configure DNS. Otherwise, it is set In case of to the DASAN-specified value, by default, which may cause to limit any service.  1) to be associated to IP host Create a VoIP service (voip-service 1).
Page 522 UMN:CLI User Manual V5824G auto-learning  onu add 2 DSNW4bd68b38  onu-profile 2 10.45.33.11/16 gw 10.45.1.254  onu static-ip 2 ip-host 1 200.1.1.1/24 gw 200.1.1.254  onu static-ip 2 ip-host 2 onu voip-sip 2 phone-number pots 1 07070177670 onu voip-sip 2 auth pots 1 07070177670 39588102947 ...
Page 523 User Manual UMN:CLI V5824G Host name OLT(config-gpon-olt[2])# show onu voip line 2 ---------------------------------------------------------------------- OLT : 2, ONU : 2, POTS : 1 ---------------------------------------------------------------------- Registered  Line Status Used Codec : Auto select Session Type : Idle 1st Protocol Period / Dest Addr : 20 / 0.0.0.0 2nd Protocol Period / Dest Addr : 20 / 0.0.0.0...
Page 524: Onu Profile
ONU Profile Fig. 11.4 ONU Profile The V5824G provides the easy and efficient management solution for various service environments with the ONU profile. The ONU profile is a collection of configurations for the operation of an ONU (ONT). You can manage all ONUs connected to an OLT by simply applying the configured profile to ONUs without any local configuration.
Page 525: Configuring Onu Profile
User Manual UMN:CLI V5824G To modify an existing ONU profile, use the following command. Command Mode Description Modifies an ONU profile. onu-profile NAME modify GPON NAME: ONU profile name To delete a created ONU profile, use the following command. Command...
Page 526: Card Type Configuration
LAN. That superfluous traffic eventually can result in network fault. The V5824G provides the function to configure the ONU’s loop detecting. The loop detecting mechanism is as follows:...
Page 527: Onu Threshold
User Manual UMN:CLI V5824G The ONU periodically sends the loop-detecting packet to all the ports with a certain interval, and then if the loop-detecting packet is received, the switch performs a pre- defined behavior. To enable/disable the loop detection, use the following command.
Page 528: Management
Deletes the configured threshold of ONU memory. 11.3.2.6 TR-069 Management The V5824G supports TR-069 and it is used to remotely manage PON ONUs. TR-069 is the protocol for the remote management and configuration of IP services over PON and fiber access networks.
Page 529: Gpon Optic Module Threshold Of Onu
User Manual UMN:CLI V5824G To display the uplink MAC learning status of ONU, use the following command. Command Mode Description show onu switch-control ONU- Shows the uplink MAC learning status of ONU’s uplink GPON-OLT port. 11.3.2.8 GPON Optic Module Threshold of ONU The ONU’s GPON optic module can operate depending on monitoring type of...
Page 530: Applying Traffic & Pm Profile
UMN:CLI User Manual V5824G To delete the threshold of module operation depending on specified monitoring type, use the following command. Command Mode Description no {ani-rx-power | ani-voltage | ani-tx-bias | ani-tx-power | ani- ONU-Profile Deletes the configured threshold. temperature} threshold [{low | high}] 11.3.2.9...
Page 531: Vlan Configurations
User Manual UMN:CLI V5824G 11.3.3.1 VLAN Configurations To configure a VLAN tagging operation for a specific UNI port, use the following command. Command Mode Description Sets the policy of VLAN tagging for upstream frame. uni eth UNI-PORT vlan-operation keep: keeps forwarding the existing tagged/untagged...
Page 532: Igmp Group List
UMN:CLI User Manual V5824G 11.3.3.4 IGMP Group List You can configure the maximum number of multicast groups that a host on a port can join. To specify the maximum number of IGMP groups per UNI-side port, use the following command.
Page 533: Applying Onu Profile
User Manual UMN:CLI V5824G 11.3.5 Applying ONU Profile If you want to apply a created ONU profile to connected ONUs (ONTs), open GPON-OLT Configuration mode where you want to apply the profile. SWITCH(config-gpon-profile[AAA])# exit SWITCH(gpon)# gpon-olt 1 SWITCH(config-gpon-olt[1])# To apply/release an ONU profile to/from connected ONUs (ONTs), use the following command.
Page 534: Displaying Onu Profile
Traffic Profile Fig. 11.5 Traffic Profile The V5824G provides the easy and efficient management solution for various service models that are comprised of MAC bridging and 802.1p mapping functionality using the traffic profile. There are two major layer 2 functions available: MAC bridging and 802.1p mapping. MAC bridging is described in IEEE 802.1D.
Page 535: Creating Traffic Profile
ANI-side port-IDs. The mapper is equivalent to a MAC bridge with VLAN filters that only operate on the priority bits of the VLAN tags. The V5824G is supported by all G.984.4 compliant vender system based on the 1:N, N:M, 1:MP, and N:MP model. Only a single 802.1p mapper is need for 1:N, N:M model deployments.
Page 536 UMN:CLI User Manual V5824G To create an IEEE802.1p mapper for a specified traffic profile, use the following command. Command Mode Description Creates a 802.1p mapper for a specified traffic profile. mapper MAPPER_ID Traffic- MAPPER_ID: 1 to 32, 802.1p mapper ID...
Page 537: Mac Bridge Service Profile
User Manual UMN:CLI V5824G To apply the configured Rate-limit profile for GEM ports, use the following command. Command Mode Description Applies the configured Rate-limit profile to specified gemport RANGE rate-limit GEM port. profile NAME Traffic- NAME: Rate-limit profile name Mapper no gemport RANGE rate-limit Removes the Rate-limit profile from the GEM port.
Page 538: Mac Learning
UMN:CLI User Manual V5824G 11.4.3.2 MAC Learning To enable/disable the ONU’s MAC learning, use the following command. Command Mode Description Traffic- Enables/disables the MAC learning for this bridge mac-learning {enable | disable} Bridge service profile. (default: enable) 11.4.3.3 Multicast Interworking Termination Point The multicast GEM port is represented by a GEM network Connection Termination Point Managed Entity (CTP ME) and a multicast GEM interworking TP ME.
Page 539 Disables the VLAN tagging filtering function. The V5824G provides an alternate approach to address filtering from that supported through MAC bridge port filter table data. This alternate approach is useful when all groups of addresses are stored beforehand in the ONU, and it designates which groups are valid or invalid for filtering.
Page 540: Uni Port Configuration
UMN:CLI User Manual V5824G – NetBEUI 03.00.00.00.00.01 FF.FF.FF.FF.FF.FF 0x809B, 0x80F3 AppleTalk 09.00.07.00.00.00 – 09.00.07.00.00.FC, – 09.00.07.FF.FF.FF 01.80.C2.00.00.00 – 01.80.C2.00.00.FF Bridge management – information FF.FF.FF.FF.FF.FF 0x0806 PPPoE broadcast FF.FF.FF.FF.FF.FF 0x8863 Tab. 11.2 Protocol Types for MAC Filtering 11.4.3.5 UNI Port Configuration A UNI-side port is an ONU device port connected to a subscriber.
Page 541 User Manual UMN:CLI V5824G case of tagged frame overwrite: replaces an existing tagged/untagged frame to a specified VID with tag. 1-4094: VLAN ID 0-7: CoS value Sets the policy of VLAN tagging for downstream frame. keep: keeps forwarding the incoming tagged frame vlan-operation ds-oper {keep | from OLT to UNI.
Page 542 UMN:CLI User Manual V5824G Maximum Frame Size To specify the maximum frame size to be handled by an UNI-side port, use the following command. Command Mode Description max-frame <64-2036> Sets the maximum frame size for an UNI port. Traffic Bridge-UNI no max-frame Deletes the configured maximum frame size.
Page 543: Ip-Host Service Link
User Manual UMN:CLI V5824G Extended VLAN Tagging Operation Profile Association To associate the extended VLAN tagging operation profile to the current mode, use the following command. Command Mode Description Associates the extended VLAN tagging operation extended-vlan-tagging- profile. operation NAME Traffic...
Page 544: Tdm Service Link
UMN:CLI User Manual V5824G 11.4.3.7 TDM Service Link To link a TDM service to MAC bridge service profile, use the following command. Command Mode Description Links a TDM service to MAC bridge service profile. link tdm-service SERVICE_ID Traffic- SERVICE_ID: TDM service ID...
Page 545: T-Cont Mode
Lowest Priority Fig. 11.6 Priority of T-CONT types The V5824G provides the easy and efficient management solution using T-CONT concept with the Traffic profile. A GPON port is connected with multiple ONUs/ONTs via splitter. The GPON encapsulation mode (GEM) frames are transmitted between the OLT and the ONUs (ONTs).
Page 546: Gem Port Configuration
UMN:CLI User Manual V5824G To delete the T-CONT ID, use the following command. Command Mode Description Traffic- no tcont TCONT_ID Deletes the configured T-CONT ID. Profile 11.4.4.1 GEM Port Configuration To specify the GEM ports (priority queue) per T-CONT by mapping between T-CONT and GEM port, use the following command.
Page 547: Displaying T-Cont Information
User Manual UMN:CLI V5824G 11.4.4.4 Displaying T-CONT Information To display the information of T-CONT, use the following command. Command Mode Description show tcont-id OLT-ID [ONU-ID] GPON Shows the information of T-CONT ID of OLT. show tcont [ONU-ID] Shows the information of T-CONT allocation for ONU.
Page 548: Vlan Tagging Operating
UMN:CLI User Manual V5824G 11.4.5.3 VLAN Tagging Operating To configure a VLAN tagging operation on the host, use the following command. Command Mode Description Sets the policy of VLAN tagging for upstream frame. vlan-operation us-oper keep keep: keeps forwarding the existing tagged/untagged frame Sets the policy of VLAN tagging for upstream frame.
Page 549: Extended Vlan Tagging Operation Profile Association
User Manual UMN:CLI V5824G 11.4.5.5 Extended VLAN Tagging Operation Profile Association To associate the extended VLAN tagging operation profile to the host, use the following command. Command Mode Description Associates the extended VLAN tagging operation extended-vlan-tagging- profile. operation NAME Traffic-...
Page 550: Voip Service Configuration (Pots Uni)
OMCI might still be used either to communicate the URI (FTP/HTTP server) of a configuration file to VoIP client integrated in the ONT, or to configure the VoIP client itself. Fig. 11.7 VoIP Service Architecture The V5824G supports the VoIP service management with two modes based on the managed models above.
Page 551: Omci Managed Voip
Whenever an ONU is deployed with the IP-path managed VoIP service, the OLT should assign the URL of a VoIP configuration file to communicate with the ONU VoIP client. The V5824G provides an authentication method for ONUs to have access to the VoIP configuration server.
Page 552: Pots Uni Configuration
UMN:CLI User Manual V5824G To specify the protocol on the current VoIP service, use the following command. Command Mode Description Specifies the protocol on the current VoIP service. Traffic sip: Session Initiation Protocol protocol { h248 | sip | mgcp}...
Page 553: Protocol Type Configuration
User Manual UMN:CLI V5824G To specify the on-hook transmission type, use the following command. Command Mode Description Allows setting the POTS UNI either to full-time on-hook transmission-path {full-time transmission or part-time on-hook transmission. Traffic part-time} (default: full-time) VoIP-UNI no transmission-path Deletes the configured on-hook transmission type.
Page 554: Tdm Service Configuration (Ces Uni)
UMN:CLI User Manual V5824G 11.4.7 TDM Service Configuration (CES UNI) This section describes the configuration of CES UNI in the ONT where the physical path terminates and physical level functions are performed. In order to configure CES UNI and TDM service, you need to specify the CES port first.
Page 555: Line Length
User Manual UMN:CLI V5824G 11.4.7.4 Line Length To specify the cable line length with power feed, use the following command. Command Mode Description line-length power-feed ds1-non- Specifies the length of the twisted pair cable from a power line-length { 110 | 220 | DS1 physical UNI to the DSX-1 cross-connect point.
Page 556: Tdm Service Configuration
UMN:CLI User Manual V5824G 11.4.7.7 TDM Service Configuration In order to configure TDM service, you need to create an TDM service ID. To create the TDM service ID and enter the configuration mode for the service, use the following command.
Page 557: Displaying Tdm Pseudowire Information
User Manual UMN:CLI V5824G UDP/TOS Configuration To perform the configuration for protocol type-based service that is offered from an IP host, use the following command. Command Mode Description Specifies port number that offers UDP/TCP/TLSP/protocol type service and the value of udp port PORT tos TOS the TOS field of the IPv4 header.
Page 558: Video Return Path Mode
UMN:CLI User Manual V5824G To display the configured management mode of ONU, use the following command. Command Mode Description show onu uni-mgmt ONU-ID GPON-OLT Shows the management mode of ONU ID. 11.4.9 Video Return Path Mode RF return path technology enables the pay-per-view and video-on-demand services that are simply offered over traditional MSO (Multiservice Operator) infrastructure.
Page 559: Creating A Gem Port Network Ctp
User Manual UMN:CLI V5824G stage-10: Randomizer stage 10 preload (Bit 3) stage-11: Randomizer stage 11 preload (Bit 2) stage-12: Randomizer stage 12 preload (Bit 1) stage-13: Randomizer stage 13 preload (Bit 0) 11.4.10 Creating a GEM Port Network CTP The GEM port Network CTP profile manages the upstream traffic identified by the GEM Port-ID.
Page 560: Adding/Applying Traffic Profile
UMN:CLI User Manual V5824G Whenever you modify a traffic profile, you should apply the changes again using the apply command. If you do not, it will not be applied. 11.4.12 Adding/Applying Traffic Profile If you want to apply a created traffic profile to an ONU profile, open ONU Profile Configuration mode, where you can add the traffic profile.
Page 561: Sample Configuration
User Manual UMN:CLI V5824G To display the DBA profile associated with the specific Traffic profile, use the following command. Command Mode Description Shows the DBA profile associated with the specified show traffic-profile NAME dba- GPON Traffic profile. profile GPON-OLT NAME: Traffic profile name To display the VLAN filter configured on the specific Traffic profile, use the following command.
Page 562: Dba Profile
11.5.2 Configuring DBA Profile If the V5824G bandwidth allocation method for ONU upstream transmission is dynamic (DBA), there are two methods of DBA are defined for GPON: status-reporting (SR) DBA, which is based on ONU reports via the dynamic bandwidth report upstream (DBRu) field, and non-status-reporting (NSR) DBA, which is based on OLT monitoring per T-CONT utilization.
Page 563: Saving Dba Profile
User Manual UMN:CLI V5824G If there are a “non-assured” T-CONT and “best-effort” T-CONT, the “non-assured” T- CONT takes precedence over the other one to be allocated the remained bandwidth by OLT. To delete the configured bandwidth allocation policy of DBA profile, use the following command.
Page 564: Extended Vlan Tagging Operation Profile
UMN:CLI User Manual V5824G 11.6 Extended VLAN Tagging Operation Profile You can configure the ONU’s extended VLAN tagging operation. In order to configure the operation, you need to create an extended VLAN tagging operation profile. To create the profile, use the following command.
Page 565: Configuration For Single-Tagged Frame Treatment
User Manual UMN:CLI V5824G considered as a last resort for frames that do not match any other applicable rule. Best practice dictates that these entries not be deleted; however, they can be modified to produce the desired default behaviour. 15, x, x, 15, x, x, x, (0, 15, x, x, 15, x, x)
Page 566 UMN:CLI User Manual V5824G To configure the filtering for single-tagged frames, use the following command. Command Mode Description Configures the received single-tagged frames to be filtered by the provided values concerning inner tag. vid any: do not filter on the inner VID.
Page 567: Configuration For Double-Tagged Frame Treatment
User Manual UMN:CLI V5824G 11.6.1.2 Configuration for Double-tagged Frame Treatment To create the mapping table to configure the double-tagged frame treatment, use the following command. Command Mode Description Creates the mapping table to configure the double- double-tagged-frame TABLE tagged frame treatment.
Page 568: Configuration For Untagged Frame Treatment
UMN:CLI User Manual V5824G To configure the treatment of filtered double-tagged frames, use the following command. Command Mode Description Configures the treatment of filtered double-tagged frames. treat {remove {single | double} | remove single: removes one tag (the outer tag is discard-frame} stripped from double-tagged frames.)
Page 569: Tpid Configuration
User Manual UMN:CLI V5824G no filter ether-type Deletes the filtering configuration above. To configure the treatment of filtered untagged frames, use the following command. Command Mode Description Configures the inner tag treatment for filtered untagged treat inner vid <0-4094> cos {<0- frames.
Page 570: Downstream Mode Configuration
UMN:CLI User Manual V5824G 11.6.3 Downstream Mode Configuration Although the extended VLAN tagging operation pertains to upstream traffic, this configuration specifies the mode for downstreaming mapping. The operation performed in the downstream direction is the inverse of that performed in the upstream direction.
Page 571: Voip Profile
ONUs using the VoIP profile. The ONT must be applied by VoIP profile defined in V5824G if the ONT has POTS terminations and if OLT is to be used to remotely manage and provide the VoIP service.
Page 572: Voip Media Configuration
UMN:CLI User Manual V5824G 11.7.1.2 VoIP Media Configuration To specify fax mode, use the following command. Command Mode Description fax-mode {passthru | t-38} VoIP-Profile Specifies fax mode. To configure codec negotiation with codec type, packet period and silence suppression, use the following command.
Page 573: Rtp Configuration
User Manual UMN:CLI V5824G To configure the maximum depth of the jitter buffer, use the following command. Command Mode Description Specifies the maximum depth of the jitter buffer associated with this service. jitter-buffer-max VALUE VALUE: 0-65535, maximum depth of jitter buffer (unit:...
Page 574: Signalling Code
UMN:CLI User Manual V5824G To enable/disable RTP piggyback events, use the following command. Command Mode Description rtp-piggyback-event {enable Enables/disables RTP piggyback events. (default: VoIP-Profile disable} disable) To enable/disable handling of tones via RTP tone events, use the following command. Command...
Page 575: Dtmf Digit Configuration
User Manual UMN:CLI V5824G 11.7.1.6 DTMF Digit Configuration To configure DTMF digit power levels, use the following command. Command Mode Description Specifies the power level of DTMF digits that may be generated by the ONT toward the subscriber set. It is a...
Page 576: Omci-Based Sip Configuration
11.7.2 OMCI-based SIP Configuration If the ONUs are fully provisioned and managed from the V5824G using OMCI, you can configure POTS interface, call features and SIP agents of these ONUs. You need to enter SIP mode to perform the SIP-related detail configuration such as VoIP application service, SIP agent, etc.
Page 577 User Manual UMN:CLI V5824G To specify an outbound SIP proxy server, use the following command. Command Mode Description Configures IP address or URI of outbound SIP proxy server outbound-proxy-server for SIP signalling messages. ADDRESS ADDRESS: outbound SIP proxy server IP address or URI...
Page 578: Sip Detailed Feature Operation
UMN:CLI User Manual V5824G To configure the SIP re-registration head start time, use the following command. Command Mode Description Specifies the time prior to timeout that causes the SIP rereg-head-start-time <0-65535> VoIP-SIP agent to start the re-registration process. (unit: second, default: 360) To specify a host part , use the following command.
Page 579 INVITE responses td: wait time for response retransmissions The V5824G supports SIP session timer which allows a periodic refreshing of SIP sessions using the register message to prevent the termination of SIP session. When using NAT with SIP service, NAT terminates the SIP session in case there is no SIP message transmission for a certain time period.
Page 580: Voip Application Service
UMN:CLI User Manual V5824G 11.7.2.3 VoIP Application Service The configuration of VoIP application service defines the attributes of calling features used in conjunction with a VoIP line service, such as CID, call waiting, call transfer, call presentation, direct connect, and etc. To configure the CID features, use the following command.
Page 581 User Manual UMN:CLI V5824G To configure the call presentation features, use the following command. Command Mode Description Enables each feature for call presentation. (default: disabled) call-present {splash-ring | dial- splash-ring: message waiting indication splash ring tone | visual-indicate | call-...
Page 582: Voip Feature Access Codes
UMN:CLI User Manual V5824G 11.7.2.4 VoIP Feature Access Codes The configuration of VoIP feature access codes defines administrable feature access codes for the VoIP subscriber. To configure VoIP feature access codes, use the following command. Command Mode Description feature cancel-call-wait VALUE...
Page 583: Network Dial Plan
User Manual UMN:CLI V5824G To configure a release timer, use the following command. Command Mode Description Configures a release timer. The value 0 specifies that release-timer <0-255> VoIP-SIP the ONT is to use its internal default. (unit: second, default: 10) To configure a ROH timer, use the following command.
Page 584: Omci-Based Mgc Configuration
VoIP systems that typically interoperate with the public switched telephone network (PSTN). If the ONUs are fully provisioned and managed from the V5824G using OMCI, you can configure the MGC-related settings of these ONUs. The MGC entity defines the media gateway controller configuration associated with an MG subscriber.
Page 585 User Manual UMN:CLI V5824G To define the message format, use the following command. Command Mode Description mgc msg-format {text-long | VoIP-MGC Configures the message format. (default: text-long) text-short | binary} To specify the maximum retry time for MGC transactions, use the following command.
Page 586: Saving Voip Profile
UMN:CLI User Manual V5824G 11.7.4 Saving VoIP Profile After configuring a VoIP profile, you need to save the profile with the following command. Command Mode Description apply VoIP-Profile Saves a VoIP profile configuration. Whenever you modify a VoIP profile, you should apply the changes again using the apply command.
Page 587: Tdm Pseudowire Profile
User Manual UMN:CLI V5824G 11.8 TDM Pseudowire Profile Pseudowire emulation is a method for transmitting any Layer 2 protocol over PSNs (Packet Switched Networks). It allows a seamless connection between two network elements by creating logical links, or virtual tunnels, across the packet network. In TDM...
Page 588: Basic Service Type
UMN:CLI User Manual V5824G 11.8.2 Basic Service Type To specify the basic service type, use the following command. Command Mode Description Specifies the basic service type, either a transparent bit pipe or an encapsulation that recognizes the underlying structure of the payload.
Page 589: Payload Encapsulation Delay
User Manual UMN:CLI V5824G 11.8.5 Payload Encapsulation Delay To configure the payload encapsulation delay (only for structured service), use the following command. Command Mode Description Defines the delay time (which corresponds to number of 125 microsecond frames) to be encapsulated in each pseudowire packet.
Page 590: Clock Reference
UMN:CLI User Manual V5824G 11.8.7.1 Clock Reference To specify the frequency of the common timing reference, use the following command. Command Mode Description Specifies the frequency of the common timing TDM-PW- reference. rtp-clock-reference VALUE Profile VALUE: in multiples of 8 kHz (for example, input 1 means 8 kHz) (default: 1) 11.8.7.2...
Page 591: Rtp Synchronization Source
User Manual UMN:CLI V5824G 11.8.7.4 RTP Synchronization Source To configure the RTP synchronization source, use the following command. Command Mode Description Specifies the RTP synchronization source in the TDM to PSN direction. rtp-sync-source payload VALUE payload VALUE: for the payload channel...
Page 592: Displaying Tdm Pseudowire Information
UMN:CLI User Manual V5824G 11.8.10 Displaying TDM Pseudowire Information To display the information of TDM pseudowire profiles, use the following command. Command Mode Description Global GPON Shows the information of TDM pseudowire profiles. show tdm-pw-profile [NAME] GPON-OLT NAME: TDM pseudowire profile name...
Page 593: Pseudowire Maintenance Profile
User Manual UMN:CLI V5824G 11.9 Pseudowire Maintenance Profile The pseudowire maintenance profile permits the configuration of pseudowire service exception handling. The pseudowire maintenance profile primarily affects the alarms declared by the subscribing pseudowire termination. And also, the settings of a pseudowire maintenance profile affect the pseudowire performance monitoring history.
Page 594: Jitter Buffer Desired Depth
11.9.5 Alarm-related Policy The V5824G supports four pairs of alarm-related policies configuration which causes the corresponding alarm to be declared or cleared. To configure the policy (anomaly rate) that causes the alarm to be declared or cleared, use the following command.
Page 595: L-Bit/R-Bit Receive/Transmit Policy
User Manual UMN:CLI V5824G malformed-packet: malformed packet misconnect-packet-declaration- misconnect-packet: misconnect packet policy <1-100> 1-100: anomaly rate (unit: integer percentage) buffer-over-underrun-clear- Defines anomaly rate that causes policy <0-99> corresponding alarm to be cleared. If no more than this density of anomalies occurs during the alarm clear loss-packet-clear-policy <0-99>...
Page 596: Ses Threshold
UMN:CLI User Manual V5824G To configure the R-bit transmit set policy, use the following command. Command Mode Description Defines the number of consecutive lost packets that causes the transmitted R-bit to be set in the TDM to r-bit-transmit-set-policy VALUE PSN direction, indicating lost packets to the far end.
Page 597: Displaying Pseudowire Maintenance Information
User Manual UMN:CLI V5824G 11.9.9 Displaying Pseudowire Maintenance Information To display the information of pseudowire maintenance profiles, use the following command. Command Mode Description Global GPON Shows the information of pseudowire maintenance show pw-maintenance-profile GPON-OLT profiles. [NAME] NAME: pseudowire maintenance profile name...
Page 598: Performance Monitoring (Pm) Profile
UMN:CLI User Manual V5824G 11.10 Performance Monitoring (PM) Profile Performance Monitoring (PM) profile is used for the traffic statistics of all ONUs (ONTs) collected by an OLT. The ONT conceptually has only two storage bins: a current accumulator and a history bin. The current accumulator is used to store data collected for the current 15-minute interval.
Page 599 User Manual UMN:CLI V5824G To enable/disable the performance monitoring (PM) function to collect the traffic statistics of the configured ANI port, use the following command. Command Mode Description Enables PM function to collect the data of ANI port’s pm aniport counters that are FCS error and the downstream GEM frame discarded due to buffer overflow or etc.
Page 600: Saving Pm Profile
UMN:CLI User Manual V5824G 11.10.3 Saving PM Profile After configuring a PM profile, you need to save the profile with the following command. Command Mode Description apply PM-Profile Saves a PM profile configuration. Even if you modify a running profile, you also need to use the apply command to apply the changes to ONUs (ONTs).
Page 601: Sample Configuration
User Manual UMN:CLI V5824G Shows the information of ONU counters collected via PM profile based on Ethernet, POTS, TDM, GEM, ANI show onu statistics {pre_15 | port or pseudowire number. hour | day | total} ONU-ID {eth pre_15/hour/day/total: time duration (previous 15min /...
Page 602: Multicast Profile
UMN:CLI User Manual V5824G 11.11 Multicast Profile The multicast profile is used for ONU (ONT) to handle the multicast traffic using a IGMP- related commands. Multicast profile managed entity organizes data associated with multicast management at subscriber ports of 802.1 bridges, including 802.1p mappers when the provisioning model is mapper-based rather than bridge-based.
Page 603: Igmp Configurations
User Manual UMN:CLI V5824G 11.11.2 IGMP Configurations To configure the multicast profile, use the following command. Command Mode Description Sets an IGMP version on a current interface. igmp version <1-3> 1-3: IGMP version (default: 2) igmp function snooping Enables the IGMP snooping.
Page 604: Saving Multicast Profile
UMN:CLI User Manual V5824G To delete a specified IGMP configuration for multicast profile, use the following command. Command Mode Description igmp immediate-leave disable no igmp robustness-variable no igmp querier address no igmp querier query-interval no igmp querier max-response-time no igmp {access-list | static-access-list} all...
Page 605: Displaying Multicast Information
User Manual UMN:CLI V5824G To apply the configured multicast profile to a specified UNI-side port of a traffic profile, use the following command. Command Mode Description Applies the configured Multicast profile to a specified multicast-profile NAME UNI port. Traffic NAME: Multicast profile name...
Page 606: Igmp Access List Configuration
UMN:CLI User Manual V5824G To delete a created multicast access list, use the following command. Command Mode Description no multicast-access-list Deletes a created multicast access list. GPON {NAME | all} NAME: multicast access list name To modify an existing multicast access list, use the following command.
Page 607: Saving Multicast Acl
User Manual UMN:CLI V5824G 11.11.6.3 Saving Multicast ACL After configuring a multicast ACL, you need to save the profile with the following command. Command Mode Description apply Multicast-ACL Saves a multicast ACL configuration. Whenever you modify a multicast ACL, you should apply the changes again using the apply command.
Page 608: Rate-Limit Profile
UMN:CLI User Manual V5824G 11.12 Rate-limit Profile Basically the rate-limit configuration can be set in ‘Traffic Profile’. And the ‘Traffic Profile’ is assigned to ONT through 'ONU Profile'. When the service rate should be changed, you don’t need to modify all the 'Traffic Profiles' in the OLT. If an OLT has so many 'Traffic Profiles', you can create 'Rate-limit profile' and all Traffic Profiles can share this 'Rate-limit profile'.
Page 609: Saving Rate-Limit Profile
User Manual UMN:CLI V5824G 11.12.3 Saving Rate-limit Profile After configuring an Rate-limit profile, you need to save the profile with the following command. Command Mode Description Rate-limit apply Saves an Rate-limit profile configuration. Profile Whenever you modify an rate-limit profile, you should apply the changes again using the apply command.
Page 610: Displaying Rate-Limit Profile
UMN:CLI User Manual V5824G 11.12.5 Displaying Rate-limit Profile To display the information of Rate-limit profile, use the following command. Command Mode Description Global GPON show rate-limit-profile Shows the information of Rate-limit profile. GPON-OLT [NAME] NAME: Rate-limit profile name Rate-limit- profile...
Page 611: Onu Service Profile
11.13 ONU Service Profile The V5824G provides numerous functions to customize a GPON network with many CLI commands and parameters. Each ONU profile can be designed with several profiles such as T-CONT, DBA and VoIP to meet the requirement of data bandwidth, VoIP access and the advanced security issues.
Page 612: Gpon Debug
UMN:CLI User Manual V5824G 11.14 GPON Debug To enable debugging of all GPON or a specific feature of GPON, use the following command. Command Mode Description Enables GPON debugging. all: all GPON features func: GPON function db: GPON database debug gpon { all | func | db | comm.: GPON communication...
Page 613 User Manual UMN:CLI V5824G SWITCH(config-voip-profile[voip])# codec-nego 3 codec g729 packet-period 10 silence-suppression 1 SWITCH(config-voip-profile[voip])# codec-nego 4 codec g723 packet-period 10 silence-suppression 1 SWITCH(config-voip-profile[voip])# pstn-protocol-variant 616 SWITCH(config-voip-profile[voip])# protocol sip SWITCH(config-voip-profile[voip]-sip)# proxy-server proxy.xxxxx.com SWITCH(config-voip-profile[voip]-sip)# outbound-proxy-server proxy.xxxxx.com SWITCH(config-voip-profile[voip]-sip)# register-server proxy.xxxxx.com SWITCH(config-voip-profile[voip]-sip)# host-part-server proxy.xxxxx.com SWITCH(config-voip-profile[voip]-sip)# dns primary 168.126.63.1...
Page 614 UMN:CLI User Manual V5824G SWITCH(config-traffic-pf[g-60a]-tcont[3])# dba-profile sr_100m SWITCH(config-traffic-pf[g-60a]-tcont[3])# exit SWITCH(config-traffic-pf[g-60a])# mapper 1 SWITCH(config-traffic-pf[g-60a]-mapper[1])# gemport count 4 SWITCH(config-traffic-pf[g-60a]-mapper[1])# exit SWITCH(config-traffic-pf[g-60a])# mapper 2 SWITCH(config-traffic-pf[g-60a]-mapper[2])# gemport count 4 SWITCH(config-traffic-pf[g-60a]-mapper[2])# exit SWITCH(config-traffic-pf[g-60a])# mapper 3 SWITCH(config-traffic-pf[g-60a]-mapper[3])# gemport count 4 SWITCH(config-traffic-pf[g-60a]-mapper[3])# exit SWITCH(config-traffic-pf[g-60a])# bridge 1 SWITCH(config-traffic-pf[g-60a]-bridge[1])# ani mapper 1...
Page 615 User Manual UMN:CLI V5824G SWITCH(config-traffic-pf[g-60a]-iphost[2])# vlan-operation us-oper overwrite 200 0 SWITCH(config-traffic-pf[g-60a]-iphost[2])# vlan-operation ds-oper remove SWITCH(config-traffic-pf[g-60a]-iphost[2])# link tdm-service 1 SWITCH(config-traffic-pf[g-60a]-iphost[2])# exit SWITCH(config-traffic-pf[g-60a])# voip-service 1 SWITCH(config-traffic-pf[g-60a]-voip[1])# manage-method omci SWITCH(config-traffic-pf[g-60a]-voip[1])# voip-profile voip SWITCH(config-traffic-pf[g-60a]-voip[1])# uni pots 1 SWITCH(config-traffic-pf[g-60a]-voip[1]-uni[1])# exit SWITCH(config-traffic-pf[g-60a]-voip[1])# exit SWITCH(config-traffic-pf[g-60a])# ces 1...
Page 616 UMN:CLI User Manual V5824G Elapsed time after clear : 0d 1h 32m 33s Elapsed time after update : 0d 0h 5m 3s ------------------------------------------------------------------------------ GEM port PM counter | 15Min | Prev-15Min | Total ------------------------------------------------------------------------------ Lost Packets Misinserted Packets | Received Packets...
Page 617: 12 System Software Upgrade
12 System Software Upgrade For the system enhancement and stability, new system software may be released. Using this software, the V5824G can be upgraded without any hardware change. You can simply upgrade your system software with the provided upgrade functionality via the CLI.
Page 618: Boot Mode Upgrade
UMN:CLI User Manual V5824G SWITCH# default-os os1 SWITCH# write memory SWITCH# reload Do you want to save the system configuration? [y/n]y Do you want to reload the system? [y/n]y Broadcast message from admin (ttyp0) (Fri Aug 18 15:15:41 2006 +0000):...
Page 619 User Manual UMN:CLI V5824G To configure an IP address, use the following command. Command Mode Description ip A.B.C.D Configures an IP address. Boot Shows a currently configured IP address. To configure a subnet mask, use the following command. Command Mode Description netmask A.B.C.D...
Page 620 Using the load command, the system will download the new system software from the server. The following is an example of upgrading the system software stored in os1 in the boot mode. Boot> load os1 10.27.41.82 V5824G 1.02.x TFTP from server 10.27.41.82; our IP address is 10.27.41.83 Filename 'V5824G.1.02.x'. Load address: 0xffffe0...
Page 621: Ftp Upgrade
To upgrade the system software using FTP, perform the following step-by-step instruction: Step 1 Connect to the V5824G with your FTP client software. To login the system, you can use the system user ID and password. Note that you must use the command line-based interface FTP client software when upgrading the V5824G.
Page 622 To reflect the downloaded system software, the system must restart using the reload command! For more information, see Section 4.1.8.1. The following is an example of upgrading the system software of the V5824G using the FTP provided by Microsoft Windows XP in the remote place.
Page 623: Onu Upgrade
12.4 ONU Upgrade The V5824G provides the remote ONU (ONT) upgradeability. This feature allows the system administrators not to offer the local service for a single ONU (ONT) at the customer premise. To upgrade an ONU successfully, you need to download a new ONU firmware in the system.
Page 624: Auto Upgrade
[ONU-IDs] 12.4.2 Auto Upgrade For efficient system maintenance, the V5824G provides the auto upgrade functionality for ONU firmware in the operational environment. You can simply upgrade the ONU firmware without an effort for every single ONU. To automatically upgrade the ONU, perform the following step-by-step instruction: Step 1 Download GPON ONU firmware using the following command.
Page 625 User Manual UMN:CLI V5824G Step 4 To perform the auto upgrade of OLT firmware when the version of two firmware is different, regardless of the lastest firmware version, use the following command. Command Mode Description auto-upgrade version- Enables/disables the ONU auto upgrade function match all { enable | disable} without verification of the firmware version.
Page 626: 13 Abbreviations
UMN:CLI User Manual V5824G 13 Abbreviations Access Control List Advanced Encryption Standard Address Resolution Protocol Any Source Multicast Border Gateway Protocol Bootstrap Router Communauté Européenne CIDR Classless Inter Domain Routing Command Line Interface CLNS Connectionless Network Service Class of Service...
Page 627 User Manual UMN:CLI V5824G Identifier International Electrotechnical Commission IEEE 802 Standards for Local and Metropolitan Area Networks IEEE 802.1 Glossary, Network Management, MAC Bridges, and Internetworking IEEE Institute of Electrical and Electronic Engineers IETF Internet Engineering Task Force IFSM Interface Finite State Machine...
Page 628 UMN:CLI User Manual V5824G NBMA Non-Broadcast Multi-Access Network Element Network Entity Title NFSM Neighbor Finite State Machine Network Time Protocol Outgoing Interface Optical Line Termination Optical Network Terminal Operating System OSPF Open Shortest Path First Personal Computer Protocol Data Unit...
Page 629 User Manual UMN:CLI V5824G SNTP Simple Network Time Protocol Shortest Path Tree Secure Shell Source-Specific Multicast Spanning Tree Protocol Software Topology Change Notification Transmission Control Protocol Tree Information Base TFTP Trivial FTP Type of Service Time-To-Live User Datagram Protocol User Manual...

Save PDF