PLANET is a registered trademark of PLANET Technology Corp. All other trademarks belong to their respective owners. Disclaimer PLANET Technology does not warrant that the hardware will work properly in all environments and applications, and makes no warranty and representation, either implied or expressed, with respect to the quality, performance, merchantability, or fitness for a particular purpose.
Thank you for purchasing PLANET Desktop Managed Switch- WGSD-1022 and WGSD-8000. If any of these are missing or damaged, please contact your dealer immediately, if possible, retain the carton including the original packing material, and use them against to repack the product in case there is a need to return it to us for repair.
Support IGMP Snooping v1 and v2 Port Mirroring to monitor the incoming or outgoing traffic on a particular port Security 802.1x Port-Based Authentication IP-Based Access Control List (ACL) MAC-Based Access Control List Port Security Management User’s Manual of WGSD-1022/WGSD-8000 - 15 –...
Port disable/enable. Auto-negotiation 10/100Mbps full and half duplex mode selection. Flow Control disable / enable. Bandwidth control on each port. - 16 – User’s Manual of WGSD-1022/WGSD-8000 WGSD-8000 8-Port 10/100/1000Mbps with 2 shared SFP Managed Ethernet Switch 8 RJ-45 Auto-MDI/MDI-X ports...
Page 17
IEEE802.1Q VLAN Tagging Environment FCC Part 15 Class A, CE Regulation Compliance 0℃~50℃, Operating Temperature -40℃~70℃, Storage Temperature 5% to 90%, relative humidity, non-condensing Operating Humidity 5% to 90%, relative humidity, non-condensing Storage Humidity User’s Manual of WGSD-1022/WGSD-8000 - 17 –...
This section describes the functionalities of the Switch's components and guides how to install it on the desktop or shelf. Basic knowledge of networking is assumed. Please read this chapter completely before continuing. 2.1 Product Description The PLANET WGSD-Series are Full Managed Desktop Switches with gigabit interfaces equipped. It boasts a high performance switch architecture that is capable of providing non-blocking switch fabric and wire-speed throughput as high as 5.6Gbps and...
Lights to indicate the link through that port is successfully established. LNK/ACT Green Blink: indicate that the switch is actively sending or receiving data over that port. Lights to indicate the port is running in 100Mbps speed. Orange Off: indicate that the port is operating at 10Mbps.
Switch or the power adapter. 2.2 Install the Switch This section describes how to install the Ethernet Switch and make connections to it. Please read the following topics and perform the procedures in the order being presented.
Step3: Secure the brackets tightly. Step4: Follow the same steps to attach the second bracket to the opposite side. Step5: After the brackets are attached to the Switch, use suitable screws to securely attach the brackets to the rack, as shown in Figure 2-6 Figure 2-5 Attach brackets to the switch.
Switch. As the Figure 2-7 appears. Approved PLANET SFP Transceivers PLANET WGSD-Switch support both single mode and multi mode SFP transceiver. The following list of approved PLANET SFP transceivers is correct at the time of publication: ■MGB-SX SFP (1000BASE-SX SFP transceiver )
Page 23
Converter.. Check the LNK/ACT LED of the SFP slot on the front of the Switch. Ensure that the SFP transceiver is operating correctly. Check the Link mode of the SFP port if the link failed. Co works with some fiber-NICs or Media Converters, set the Link mode to “1000 Force”...
This chapter explains the methods that you can use to configure management access to the switch. It describes the types of management applications and the communication and management protocols that deliver data between your management device (work-station or personal computer) and the system. It also contains information about port connection options.
(such as HyperTerminal) to the switch console (serial) port. When using this management method, a null-modem cable is required to connect the switch to the PC. After making this connection, configure the terminal-emulation program to use the following parameters:...
3.2 Web Management The switch provides a browser interface that lets you configure and manage the switch remotely. After you set up your IP address for the switch, you can access the switch's Web interface applications directly in your Web browser by entering the IP address of the switch.
(for example, SNMP agent of Web browser). The management architecture of the switch adheres to the IEEE open standard. This compliance assures customers that the switch is compatible with, and will interoperate with other solutions that adhere to the same open standard.
The WGSD-1022 can be configured through an Ethernet connection, make sure the manager PC must be set on same the IP subnet address with the switch. For example, if you have changed the default IP address of the Switch to 192.168.1.1 with subnet mask 255.255.255.0 via console, then the manager PC should be set at 192.168.1.x (where x is a number between 1...
Page 29
After entering the username and password, the main screen appears as Figure 4-3. Figure 4-3 Web Main Screen of WGSD-Switch Now, you can use the Web management interface to continue the switch management or manage the switch by console interface.
The Switch provides a Web-based browser interface for configuring and managing the Switch. This interface allows you to access the switch using the Web browser of your choice. This chapter describes how to use the switch’s Web browser interface to con-figure and manage the switch.
The Setup menus include the tree sub-menus: Summary Network Settings Time 4.2.1 Summary The summary screen provides Device and System Information about the Switch. The page contains the following informations: Device Information • System Name • IP Address • Subnet Mask...
The operating system currently running on the switch Display where the Switch is located Display the administrative contact person The time in days, hours and minutes since the last switch reboot Specifies the time and date. The format is hour, minute, second, month, day, year - 32 –...
Page 33
Enter the administrative contact person • System Object ID Tthe system object identifier is in this field • Base MAC Address The MAC address of the Switch displays here IP Configuration: Where you can select the Management VLAN. • Management VLAN The default Managemanet VLAN is VLAN 1 Where select Static or Dynamic IP address configuration.
Specifies that the system time is not set by an external source but the Local time settings. • Use SNTP Time Specifies that the system time is set via an SNTP server Local Time Figure 4-5 Time screen - 34 – User’s Manual of WGSD-1022/WGSD-8000...
Page 35
• Day -- The day of the week from which DST begins every year. The possible field range is Sunday-Saturday. • Week -- The week within the month from which DST begins every year. The User’s Manual of WGSD-1022/WGSD-8000 - 35 –...
In this field, you can see these parts, such as port settings, Link aggregation, LACP. 4.3.1 Port settings To use the port settings screen for setting up each of the switch’s ports. It shows these parts: port, description, admin status, link status, speed, duplex, MDI/MDIX, Flow control, type, LAG, PVE (see Figure 4-6): possible field range is 1-5.
Page 37
To use the MDIX setting if the port is connected to a hub or another switch • Flow control Shows the flow control status of the port. It is active when the port uses Full Duplex User’s Manual of WGSD-1022/WGSD-8000 Figure 4-6 Port Settings screen - 37 –...
Page 38
Detail Port Configuration Detail screen (see figure 4-7) The Port Configuration screen contains the following fields: • Port Indicates the number of the port Figure 4-7 Per Port Configuration detail screen - 38 – User’s Manual of WGSD-1022/WGSD-8000...
Page 39
• Back Pressure The Back Pressure feature of the selected port can be enabled or disabled • Current Back Displays whether Back Pressure is enabled or disabled on the currently selected port Pressure User’s Manual of WGSD-1022/WGSD-8000 - 39 –...
• Auto - the port to automatically detect the cable type. • MDI - if the port is connected to an end station. • MDIX - if the port is connected to a hub or another switch • Current MDI/MDIX This is the current MDI/MDIX status of the port •...
Page 41
Detail Linkl Aggregation detail configuration At per-LAG detail configuration page, the administrator can select ports to be the members of the LAG interface. The scree appears as follow: User’s Manual of WGSD-1022/WGSD-8000 - 41 –...
User’s Manual of WGSD-1022/WGSD-8000 4.3.3 LACP Aggregated Links can be manually setup or automatically established on the relevant links by enabling Link Aggregation Control Protocol (LACP). Aggregate ports can be linked into link-aggregation port-groups. Each group is comprised of ports with the same speed, set to full-duplex operation.
A Virtual LAN (VLAN) is a logical network grouping that limits the broadcast domain. It allows you to isolate network traffic so only members of the VLAN receive traffic from the same VLAN members. Basically, creating a VLAN from a switch is logically equivalent of reconnecting a group of network devices to another Layer 2 switch.
User’s Manual of WGSD-1022/WGSD-8000 IEEE 802.1Q (tagged) VLAN are implemented on the Switch. 802.1Q VLAN require tagging, which enables them to span the entire network (assuming all switches on the network are IEEE 802.1Q-compliant). VLAN allow a network to be segmented in order to reduce the size of broadcast domains. All packets entering a VLAN will only be forwarded to the stations (over IEEE 802.1Q enabled switches) that are members of that VLAN, and this includes broadcast,...
VLAN ID (PVID). All untagged packets arriving to the device are tagged by the ports PVID. The page contains the following fields: Figure 4-10 Create VLAN screen button. Figure 4-11 VLAN Port Setting screen - 45 – User’s Manual of WGSD-1022/WGSD-8000...
It is also not possible to enable/ disable ingress filtering on an access port. optional single native VLAN). the port. VLAN Membership - 46 – User’s Manual of WGSD-1022/WGSD-8000 Frame Leave Untagged ( Tag=PVID be removed) Untagged (Tag=PVID be removed)
4.4.4 VLAN to Ports The VLAN to Ports screen (see figure 4-13) contains fields for configuring VLANs to a port. This screen displays these parts, such as: User’s Manual of WGSD-1022/WGSD-8000 Figure 4-12 Ports to VLAN screen - 47 –...
Page 48
Access mode, the packet types which are accepted on the port cannot be designated. Ingress filtering cannot be enabled/disabled on an access port. tagged, except for one port that can be untagged. - 48 – User’s Manual of WGSD-1022/WGSD-8000...
User’s Manual of WGSD-1022/WGSD-8000 Figure 4-14 Join VLAN to Port screen 4.4.5 GVRP GARP VLAN Registration Protocol (GVRP) is specifically provided for automatic distribution of VLAN membership information among VLAN-aware bridges. GVRP allows VLAN-aware bridges to automatically learn VLANs to bridge ports mapping, without having to individually configure each bridge and register VLAN membership.
Page 50
When the checkbox is checked, VLAN registration through GVRP is enabled on the • GVRP Registration device.. The Update button adds the configured GVRP setting to the table at the bottom of • Update the screen User’s Manual of WGSD-1022/WGSD-8000 - 50 –...
• 15 Sec, which indicates that the RMON statistics are refreshed every 15 seconds. • 30 Sec, which indicates that the RMON statistics are refreshed every 30 seconds. • 60 Sec, which indicates that the RMON statistics are refreshed every 60 seconds. - 51 – User’s Manual of WGSD-1022/WGSD-8000...
Page 52
• Frames of xx Bytes Number of xx-byte frames received on the interface since the device was last refreshed. Clear Counters button, this option will reset all of the statistic counts. Refresh Now button, which use this option to refresh the statistics. User’s Manual of WGSD-1022/WGSD-8000 - 52 –...
• Sampling Requested Displays the number of samples to be saved. The field range is 1-65535. The default value is 50 • Current Number of Displays the current number of samples taken. View History button. This button opens the RMON History screen Samples User’s Manual of WGSD-1022/WGSD-8000 Figure 4-17 RMON History screen - 53 –...
Page 54
• CRC Align Errors Which displays the number of CRC and Align errors that have occurred on the interface since the device was last refreshed. Figure 4-18 RMON History Table screen - 54 – User’s Manual of WGSD-1022/WGSD-8000...
The RMON Alarm screen (see figure 4-19) contains fields for setting network alarms. Network alarms occur when a network problem, or event, is detected. Rising and falling thresholds generate events. The page contains the following fields: User’s Manual of WGSD-1022/WGSD-8000 Figure 4-19 RMON Alarm screen - 55 –...
Page 56
• Both, indicates that both the Log and Trap mechanism are used to report alarms. • Startup Alarm Displays the trigger that activates the alarm generation. Rising is defined by crossing the threshold from a low-value threshold to a higher-value threshold User’s Manual of WGSD-1022/WGSD-8000 - 56 –...
Page 57
Defines the alarm interval time in seconds • Owner Dhere displays the device or user that defined the alarm Use the button when you add the RMON Alarms Table entry. Add to List User’s Manual of WGSD-1022/WGSD-8000 - 57 –...
RMON event to the Event Table at the bottom of the screen (see figure 4-21) The Event Table area contains the following additional field: User’s Manual of WGSD-1022/WGSD-8000 Figure 4-20 RMON Event screen - 58 –...
Page 59
User’s Manual of WGSD-1022/WGSD-8000 Where displays the time that the event occurred • Time Press the button to display the log store in the flash. Only the Event type is Log or Log and Trap, then the RMON Event Log entries appear.
• 15 Sec - indicates that the statistics are refreshed every 15 seconds. • 30 Sec - indicates that the statistics are refreshed every 30 seconds. • 60 Sec - indicates that the statistics are refreshed every 60 seconds. User’s Manual of WGSD-1022/WGSD-8000 Figure 4-22 Port Utilization screen - 60 –...
The GVRP Statistics Table contains the following fields: Which displays the device GVRP Join Empty statistics • Join Empty Displays the device GVRP Empty statistics • Empty Figure 4-24 GVRP Statistics screen seconds. seconds. seconds. - 62 – User’s Manual of WGSD-1022/WGSD-8000...
Page 63
Displays the device GVRP Invalid Attribute Value statistics. Invalid Attribute Length, • Attribute Value where displays the device GVRP Invalid Attribute Length statistics Where displays the device GVRP Invalid Events statistics. The Clear All Counters • Invalid Events button resets all tables User’s Manual of WGSD-1022/WGSD-8000 - 63 –...
Indicates the action assigned to the packet matching the ACL. Packets are forwarded or dropped. In addition, the port can be shutdown, a trap can be sent to User’s Manual of WGSD-1022/WGSD-8000 Figure 4-25 IP-Base ACL screen - 64 –...
Page 65
• Urg, indicates the packet is urgent. • Ack, indicates the packet is acknowledged. • Psh, indicates the packet is pushed. • Rst, indicates the connection is dropped. • Syn, indicates request to start a session. User’s Manual of WGSD-1022/WGSD-8000 - 65 –...
Sample Case: Deny IP packets to specific Class C network ■ Purpose: Verify a positive and negative matches to network IP address with a Class C (24 bit mask) , no matter the rule defined as permit or deny. User’s Manual of WGSD-1022/WGSD-8000 - 66 –...
Page 67
Any packets pass through the switch will be dropped – if the Destination IP Addresses match specific Class C. Any packets pass through the switch will be forwarded – if the Destination IP Addresses not match specific Class C. Case Design:...
Page 68
[Permit Rule]: Keep the “Destination IP Address” and “Wild Card Mask” be blanked. After click “Add to List" button, the entry would be show at the table. Rember to click the "Save Config" button. User’s Manual of WGSD-1022/WGSD-8000 - 68 –...
Page 69
Choose Port “g1” at the Interface. Choose “IP Based ACL”, select ACL name with “Deny-Source A” – that we had been created at step-1. Click “Add to List" button, the entry would be show at the table. User’s Manual of WGSD-1022/WGSD-8000 - 69 –...
User’s Manual of WGSD-1022/WGSD-8000 4.6.3 MAC Based ACL The MAC Based ACL screen (see figure 4-27) allows a MAC based ACL to be defined. ACLs can be added only if the ACL is not bound to an interface. Figure 4-26 MAC-Base ACL screen The Page contains the following fields: - 70 –...
” button to add the configured MAC Based ACLs to the MAC Based ACL Table at the bottom of the Add to List screen. 4.6.4 MAC Based ACL Configure Sample This chapter will teah you how to configure a MAC based ACL in the WGSD-Switch. ■ Sample Case: Deny IP packets to specific Class C network Purpose: port to which the packet was addressed.
Page 72
When the workstation with IP address 192.168.99.188 and MAC address 00-11-08-57-E0-1E ping to PC with IP address 192.168.99.57 and MAC address 00-30-4F-1D-9F-DE, use MAC based ACL function from ACL to deny or shutdown and permit the traffic transmit ability of notebook that connect to port 8 of WGSD-Switch. Case Design:...
Page 73
[Permit Rule]: Keep the “Destination MAC Address” and “Wild Card Mask” be blanked. After click “Add to List" button, the entry would be show at the table. User’s Manual of WGSD-1022/WGSD-8000 To allow all other packets be forwarded) - 73 –...
Page 74
Choose “MAC Based ACL”, select ACL name with “Deny-MAC A” – that we had been created at step-1. Click “Add to List" button, the entry would be show at the table. Please press "Save Config" to save current setting. If action "shutdown" is selected, the port will be force disabled Note: User’s Manual of WGSD-1022/WGSD-8000 - 74 –...
4.7 Security This section is to control the security access of the switch, includes the user access and management control. The Security function contains links to the following topics: • ACL Binding • RADIUS • TACACS+ • 802.1x Settings • Port Security •...
This defines the amount of the time in seconds the device waits for an answer from • Timeout for Reply the RADIUS server before retrying the query, or switching to the next server. User’s Manual of WGSD-1022/WGSD-8000 Figure 4-28 RADIUS screen - 76 –...
Page 77
• All, where indicates that the RADIUS server is used for authenticating user Use the button when you add the RADIUS configuration to the RADIUS Table at the bottom of the screen. Add to List and passwords. name and passwords, and 802.1X port authentication. - 77 – User’s Manual of WGSD-1022/WGSD-8000...
This displays the amount of time that passes before the connection between the device and the TACACS+ server times out. Reply The field range is 1-30 seconds. • Status Displays the connection status between the device and the TACACS+ server. The User’s Manual of WGSD-1022/WGSD-8000 Figure 4-29 TACACS+ screen - 78 –...
Page 79
Maintains a single open connection between the device and the TACACS+ server when selected the Add to List button to add the TACACS+ configuration to the TACACS+ table at the bottom of the screen. User’s Manual of WGSD-1022/WGSD-8000 - 79 –...
Authentication server—performs the actual authentication of the client. The authentication server validates the identity of the client and notifies the switch whether or not the client is authorized to access the LAN and switch services. Because the switch acts as the proxy, the authentication service is transparent to the client. In this release, the Remote Authentication Dial-In User Service (RADIUS) security system with Extensible Authentication Protocol (EAP) extensions is the only supported authentication server;...
Page 81
It then sends an EAP-request/identity frame to the client to request its identity (typically, the switch sends an initial identity/request frame followed by one or more requests for authentication information). Upon receipt of the frame, the client responds with an EAP-response/identity frame.
Page 82
Ports in Authorized and Unauthorized States The switch port state determines whether or not the client is granted access to the network. The port starts in the unauthorized state. While in this state, the port disallows all ingress and egress traffic except for 802.1X protocol packets. When a client is successfully authenticated, the port transitions to the authorized state, allowing all traffic for the client to flow normally.
Page 83
• Enable Periodic Permits immediate port re-authentication. The Setting Timer button opens the Setting Timer screen to configure ports for 802.1x functionality. Re-authentication Setting Timer Figure 4-30 802.1x setting screen traffic). (discard traffic). - 83 – User’s Manual of WGSD-1022/WGSD-8000...
• Quiet Period a failed authentication exchange (Range: 0-65535). Specifies the number of seconds that the switch waits for a response to an EAP - • Resending EAP request/ identity frame, from the supplicant (client), before resending the requests. Which the total amount of EAP requests sent. If a response is not received after the •...
Page 85
MAC addresses associated with the port. The port learns up to the maximum addresses allowed on the port. Both relearning and aging MAC addresses are enabled. - 85 – User’s Manual of WGSD-1022/WGSD-8000...
Page 86
The default value is 10 seconds In order to change the Learning Mode, the Lock Interface must be set to unlocked. Once the mode is Note changed, the Lock Interface can be reinstated. User’s Manual of WGSD-1022/WGSD-8000 - 86 –...
Defines the time period by which traps are sent to the host. The Trap Frequency (1-1000000) field can be defined only if multiple hosts are disabled. The default is 10 seconds. Figure 4-33 Multiple Hosts screen remains shut down until reactivated, or until the device is reset. - 87 – User’s Manual of WGSD-1022/WGSD-8000...
• Rate Threshold Where the maximum rate (packets per second) at which unknown packets are forwarded. The range is 70 -100000. The default value is 3500. Figure 4-34 Storm Control screen Broadcast traffic. - 88 – User’s Manual of WGSD-1022/WGSD-8000...
User’s Manual of WGSD-1022/WGSD-8000 4.8 QoS Network traffic is usually unpredictable, and the only basic assurance that can be offered is best effort traffic delivery. To overcome this challenge, Quality of Service (QoS) is applied throughout the network. This ensures that network traffic is prioritized according to specified criteria, and that specific traffic receives preferential treatment.
LAG to which the CoS configuration applies. • LAG 4.8.2 Queue Setting The Queue Setting screen (see figure 4-36) contains fields for defining the QoS queue forwarding types. User’s Manual of WGSD-1022/WGSD-8000 Figure 4-35 CoS Settings screen - 90 –...
These values are fixed and are not user- defined. Bandwidth • 6.67% • 13.33% • 26.67% • 53.33% 4.8.3 DSCP Settings The DSCP Settings screen (see figure 4-37) enables mapping DSCP values to specific queues User’s Manual of WGSD-1022/WGSD-8000 Figure 4-36 Quere Setting screen - 91 –...
The Bandwidth screen (refer to figure 4-38) allows network managers to define the bandwidth settings for a specified egress interface. Modifying queue scheduling affects the queue settings globally. The Bandwidth screen is not used with the Service mode, as bandwidth settings are based on services. User’s Manual of WGSD-1022/WGSD-8000 Figure 4-37 DSCP Settings screen - 92 –...
Page 93
Defines CIR as the queue shaping type. Information Rate The possible field value is 64 - 1,000,000 Kbps. (CIR) Figure 4-38 Bandwidth screen LAG, indicates the LAG for which the bandwidth settings are displayed. - 93 – User’s Manual of WGSD-1022/WGSD-8000...
The rules are based on the Access Control Lists (see Access Control Tab) Figure 4-39 Basic Mode screen determined the packet queue. DSCP, sets trust mode to the DSCP on the device. The DSCP mapping determines the packet queue. - 94 – User’s Manual of WGSD-1022/WGSD-8000...
Page 95
User’s Manual of WGSD-1022/WGSD-8000 Figure 4-40 Advance Mode screen MAC ACLs and IP ACLs can be grouped together in more complex structures, called policies. Policies can be applied to an interface. Policy ACLs are applied in the sequence they appear within the policy. Only a single policy can be attached to a port.
Page 96
• DSCP Out selected from the pull-down menu The Policy Settings button opens the Policy Name screen (see figure 4-42): Figure 4-41 Out of Profile DSCP Assignments screen Figure 4-42 Policy Settings screen - 96 – User’s Manual of WGSD-1022/WGSD-8000...
Page 97
• Add to List which selects an existing Policy by name • Select Policy • New Policy Name which defines a new Policy name where selects an existing Class Map by name • Class Map User’s Manual of WGSD-1022/WGSD-8000 - 97 –...
Page 98
MAC based ACLs. • MAC Based ACLs, matches packets to MAC based ACLs first, then matches packets to IP based ACLs. Or, either the MAC-based or the IP-based ACL must match a packet. - 98 – User’s Manual of WGSD-1022/WGSD-8000...
Page 99
• Drop, which drops packets exceeding the defined CIR value. • Remark DSCP, where remarks packet’s DSCP values exceeding the defined • Figure 4-44 Aggregate Policer Settings screen CIR value. None, forwarding packets exceeding the defined CIR value. - 99 – User’s Manual of WGSD-1022/WGSD-8000...
。 The shortest distance to the root switch is calculated for each switch 。 A designated switch is selected. This is the switch closest to the root switch through which packets will be forwarded to the 。 root. A port for each switch is selected. This is the port providing the best path from the switch to the root switch.
Page 101
It is to make the root port a fastest link. If all switches have STP enabled with default settings, the switch with the lowest MAC address in the network will become the root switch. By increasing the priority (lowering the priority number) of the best switch, STP can be forced to select the best switch as the root switch.
Page 102
STP Operation Levels The Switch allows for two levels of operation: the switch level and the port level. The switch level forms a spanning tree consisting of links between one or more switches. The port level constructs a spanning tree consisting of groups of one or more ports.
Page 103
Hello Time – The Hello Time can be from 1 to 10 seconds. This is the interval between two transmissions of BPDU packets sent by the Root Bridge to tell all other Switches that it is indeed the Root Bridge. If you set a Hello Time for your Switch, and it is not the Root Bridge, the set Hello Time will be used if and when your Switch becomes the Root Bridge.
Page 104
STP assistance is not applied. If switch A broadcasts a packet to switch B, switch B will broadcast it to switch C, and switch C will broadcast it to back to switch A ... and so on. The broadcast packet will be passed indefinitely in a loop, potentially causing a network failure.
Page 105
LAN 2 The switch with the lowest Bridge ID (switch C) was elected the root bridge, and the ports were selected to give a high port cost between switches B and C. The two (optional) Gigabit ports (default port cost = 4) on switch A are connected to one (optional) Gigabit port on both switch B and C.
Where indicates the port number that offers the lowest cost path from this bridge to • Root Port the Root Bridge. It is significant when the Bridge is not the Root. The default is zero. User’s Manual of WGSD-1022/WGSD-8000 Figure 4-45 STP Status screen - 106 –...
Page 107
• Last Topology or reset, and the last topographic change occurred. The time is displayed in a day Change hour minute second format, for example, 2 days 5 hours 10 minutes and 4 seconds. User’s Manual of WGSD-1022/WGSD-8000 - 107 –...
This is the default value. Flooding, where floods BPDU packets when spanning tree is disabled on an interface. This is the default value. path costs assigned to an interface varies according to the selected method. - 108 – User’s Manual of WGSD-1022/WGSD-8000...
Network administrators can assign STP settings to specific interfaces using the STP Interface Settings screen (see figure 4-47). The STP Interface Settings page contains the following fields: The page contains the following fields: Figure 4-47 STP Port Settings screen - 109 – User’s Manual of WGSD-1022/WGSD-8000...
Page 110
Indicates the selected port’s priority and interface. • Designated Cost Where indicates the cost of the port participating in the STP topology. Ports with a lower cost are less likely to be blocked if STP detects loops. User’s Manual of WGSD-1022/WGSD-8000 - 110 –...
User’s Manual of WGSD-1022/WGSD-8000 • Forward Transitions This indicates the number of times the port has changed from the Blocking state to Forwarding state. STP Port status table Figure 4-48 STP Port status screen 4.9.4 RSTP Port settings While the classic spanning tree prevents Layer 2 forwarding loops in a general network topology, convergence can take between 30-60 seconds.
Page 112
• Role STP paths. The possible field values are: • Root, where provides the lowest cost path to forward packets to root switch. • Designated, where indicates that the port or LAG via which the designated • Alternate, which provides an alternate path to the root switch from the root •...
The link remains configured for communications until explicit LCP or NCP packets close the link, or until some external event occurs. This is the actual switch port link type. It may differ from the administrative state.
Network Administrators can define MSTP Instances settings using the MSTP Instance Settings screen. The page contains the following fields: Instance Configuration Figure 4-51 MSTP Instance Settings screen - 114 – User’s Manual of WGSD-1022/WGSD-8000...
Page 115
Indicates the selected instance’s path cost. • Root Path Cost Indicates the bridge ID of the selected instance. • Bridge ID Indicates the number of hops remaining to the next destination. • Remaining Hops User’s Manual of WGSD-1022/WGSD-8000 - 115 –...
• Root, provides the lowest cost path to forward packets to root device. • Designated, indicates the port or LAG via which the designated device is attached to the LAN. • Alternate, provides an alternate path to the root device from the root - 116 – User’s Manual of WGSD-1022/WGSD-8000...
Page 117
Backup ports also occur when a LAN has two or more connections connected to a shared segment. • Disabled, which indicates the port is not participating in the Spanning Tree. Figure 4-54 MSTP Interfance configuration screen - 117 – User’s Manual of WGSD-1022/WGSD-8000...
Multicast routers send IGMP queries (to the all-hosts group address: 224.0.0.1) periodically to see whether any group members exist on their sub networks. If there is no response from a particular group, the router assumes that there are no group members User’s Manual of WGSD-1022/WGSD-8000 Checksum...
Page 119
IGMP. Enabling IGMP allows the ports to detect IGMP queries and report packets and manage IP multicast traffic through the switch. IGMP have three fundamental types of message as follows: Message...
This results in the creation of the Multicast filtering database. The page contains the following fields: IGMP Global Indicates if IGMP Snooping is enabled or Disabled on the device. • IGMP Snooping Status VLAN IGMP Settings Figure 4-55 IGMP Snooping screen - 120 – User’s Manual of WGSD-1022/WGSD-8000...
• Leave Timeout receiving a Join message from another station, before timing out. If a Leave Timeout occurs, the switch notifies the Multicast device to stop sending traffic. The Leave Timeout value is either user-defined, or an immediate leave value.
Page 122
• Forbidden, forbidden ports are not included the Multicast group, even if IGMP snooping designated the port to join a Multicast group. • None, displays the port is not configured for Multicast service. - 122 – User’s Manual of WGSD-1022/WGSD-8000...
The LAG is assigned to the Multicast group, and the device is updated. 4.10.3 Bridge Multicast Forward All The Bridge Multicast Forward All Screen contains fields for attaching ports or LAGs to a device attached to a neighboring Figure 4-57 Bridge Multicast screen - 123 – User’s Manual of WGSD-1022/WGSD-8000...
Page 124
Multicast router/switch. Once IGMP Snooping is enabled, Multicast packets are forwarded to the appropriate port or VLAN. Refer to figure 4-58. The Bridge Multicast Forward All Screen contains the following fields: For which Multicast parameters are displayed. This identifies a VLAN to be •...
First 4 octets — first bit = 1, the rest is IANA Enterprise number. To locate the IANA Enterprise number by referring to the Vendor website, or use the show SNMP command using a CLI interface. Figure 4-59 SNMP Global Parameter - 125 – User’s Manual of WGSD-1022/WGSD-8000...
The options to select the following Subtree: Figure 4-60 SNMP View screen • Default - which displays the default SNMP view for read and read/write views. • DefaultSuper - indicates the default SNMP view for administrator views. - 126 – User’s Manual of WGSD-1022/WGSD-8000...
Page 127
This indicates if the defined OID branch will be included or excluded in the • View Type selected SNMP view. Use the button when you want to add the Views configuration to the Views Table at the bottom of the screen. User’s Manual of WGSD-1022/WGSD-8000 - 127 –...
• Read. The management access is restricted to read-only, and changes cannot Figure 4-61 Group Profile screen Privacy security levels are assigned to the group. SNMP messages original is authenticated. be made to the assigned SNMP view. - 128 – User’s Manual of WGSD-1022/WGSD-8000...
• Group Name SNMP Group Profile page. Indicates the Authentication method used. The possible field values are: • Authentication assigned SNMP view. Figure 4-62 Group Membership Engine ID is defined, remote devices receive inform messages - 129 – User’s Manual of WGSD-1022/WGSD-8000...
Page 130
Use the button when you want to add the Group Membership configuration to the respective table at the bottom of the screen. password authentication. password authentication. authentication. - 130 – User’s Manual of WGSD-1022/WGSD-8000...
View Name - contains a list of user-defined SNMP views. Figure 4-63 Communities configuration screen and changes cannot be made to the community. the device configuration, but not to the community. permissions to modify the community. - 131 – User’s Manual of WGSD-1022/WGSD-8000...
Page 132
Advanced Table • Management Station Displays the management station IP address for which the basic SNMP community is defined. Community String, which displays the password used to authenticate the Figure 4-64 Communities table screen - 132 – User’s Manual of WGSD-1022/WGSD-8000...
Select from List or the Object ID List. There are two configuration options: Select from List, select the OID from the list provided. Object ID, you can enter an OID not offered in the Select from List option. Figure 4-65 Notification Filter screen - 133 – User’s Manual of WGSD-1022/WGSD-8000...
Notification Version fields are enabled for configuration: • Community String, where identifies the community string of the trap manager. • Notification Version, determines the trap type. The possible field values are: User’s Manual of WGSD-1022/WGSD-8000 Figure 4-66 Notification Recipient - 134 –...
Page 135
Notification Recipient configuration to the relevant table at the bottom of the screen. SNMP V1, which indicates SNMP Version 1 traps are sent. SNMP V2, which indicates SNMP Version 2 traps are sent. encrypted. Figure 4-67 Notification Recipient - 135 – User’s Manual of WGSD-1022/WGSD-8000...
Page 136
User’s Manual of WGSD-1022/WGSD-8000 - 136 –...
The page contains the following fields: • Authentication Type Defines the user authentication methods. Also you can choose combinations of all the authentication methods. The possible field values are: Figure 4-68 User Authentication screen - 137 – User’s Manual of WGSD-1022/WGSD-8000...
4.12.2 Static Address A static address can be assigned to a specific interface on this switch. Static addresses are bound to the assigned interface and cannot be moved. When a static address is seen on another interface, the address will be ignored and will not be written to the...
The Dynamic Address Table contains the MAC addresses learned by monitoring the source address for traffic entering the switch. When the destination address for inbound traffic is found in the database, the packets intended for that address are forwarded directly to the associated port. Otherwise, the traffic is flooded to all ports.
Page 140
Specifies the VLAN ID for which the table is queried. • VLAN ID Specifies the means by which the Dynamic MAC Address table is • Address Table Sort sorted by address, VLAN, or interface. Figure 4-70 Dynamic Address screen - 140 – User’s Manual of WGSD-1022/WGSD-8000...
The system is in a critical state. • Critical A system error has occurred. • Error • Warning A system warning has occurred The system is functioning properly, but system notice has occurred. • Notice User’s Manual of WGSD-1022/WGSD-8000 Figure 4-71 Loggin screen - 141 –...
Page 142
• Informational Provides device information. Provides detailed information about the log. If a Debug error occurs, • Debug contact Customer Tech Support. User’s Manual of WGSD-1022/WGSD-8000 - 142 –...
Port mirroring can be used as diagnostic tool and/or a debugging feature. Port mirroring also enables switch performance monitoring (refer to figure 4-72). Network administrators configure port mirroring by selecting a specific port to copy all packets, and different ports from which the packets are copied.
The Cable Length test can be performed only when the port is up and operating at 1Gbps 4.12.7 Save Configuration On this screen, you can choose two methods to save the configuration: Via TFTP Upgrade and Via HTTP. See figure 4-74 User’s Manual of WGSD-1022/WGSD-8000 Figure 4-73 Cable Test screen - 144 –...
Page 145
The page contains the following fields: Via TFTP Select this option to upgrade the switch from a file located on a TFTP • Via TFTP Upgrade Server. The TFTP Server IP Address that contains the source file to upgrade • TFTP Server from.
Specifies the name of the upgrade file on the TFTP Server. • Source File Type in the name and path of the file or Browse to locate the upgrade • Destination File file. Figure 4-76 Firmware Upgrade via TFTP - 146 – User’s Manual of WGSD-1022/WGSD-8000...
There is a known issue. Sometimes after the “Reboot” button be pressed, it costs lot Note time to stop the curent tasks. So it might be rebooted after more then 5 minutes. Figure 4-77 Firmware Upgrade via HTTP Figure 4-78 Reboot screen - 147 – User’s Manual of WGSD-1022/WGSD-8000...
User’s Manual of WGSD-1022/WGSD-8000 4.12.10 Factory Defaults The Factory Reset screen (see figure 4-79) allows network managers to reset the device to the factory defaults settings, but if you restore factory defaults results in erasing the configuration file. Although restoring the factory defaults will erase your configuration, you can save a backup of your current configuration settings from the Admin - Save Configuration screen.
Provides device information. Provides detailed information about the log. If a Debug error occurs, contact Dell Online Technical Support - 149 – User’s Manual of WGSD-1022/WGSD-8000 Example Memories overflow. Main system memory pool overflow. Cannot bind to SNMP.
When a severity level is selected, all severity level choices above the selection are selected Note automatically. 4.12.12 Memory Logs The Memory Log screen (see figure 4-81) contains all system logs in a chronological order that are saved in RAM (Cache), Log User’s Manual of WGSD-1022/WGSD-8000 Figure 4-80 Server Logs screen - 150 –...
The Flash Log screen (see figure 4-82) contains information about log entries saved to the Log File in FLASH, the time that the log generated, the log severity, and description of the log message. The Message Log is available after reboot. User’s Manual of WGSD-1022/WGSD-8000 Figure 4-81 Memory Logs screen...
Web interface. This chapter describer how to configure the Switch through these interfaces. When you are ready to configure the smart functions of the Switch, make sure you had connected the supplied RS-232 serial cable to the RS-232 port at the front panel of your WGSW-24010 Switch and your PC.
Enter the password and press <Enter>. The password is displayed as "*". The privileged EXEC mode prompt is displayed. The Privileged EXEC mode prompt consists of the device "host name" followed by "#". console # User’s Manual of WGSD-1022/WGSD-8000 - 154 –...
To return from Global Configuration mode to Privileged EXEC mode, the user can use one of the following commands: exit Ctrl+Z The following example illustrates how to access Global Configuration mode and teturn back to the Privileged EXEC mode: console # console # configure console(config) # exit console # User’s Manual of WGSD-1022/WGSD-8000 - 155 –...
5.2.2 Starting the CLI The switch can be managed over a direct connection to the switch console port, or via a Telnet connection. The switch can also be managed via an out-of-band (OOB) management port. The switch is managed by entering command keywords and parameters at the prompt.
Keyword lookup—The character ? is entered in place of a command. A list of all valid commands and corresponding help messages are displayed. Partial keyword lookup—A command is incomplete and the character ? is entered in place of a parameter. The matched parameters for this command are displayed. User’s Manual of WGSD-1022/WGSD-8000 - 157 –...
Incorrect or incomplete commands are automatically re-entered next to the cursor. If a parameter must be added, the parameter can be added to the basic command already displayed next to the cursor. The following example indicated that the command interface ethernet requires the parameter <port-num>. User’s Manual of WGSD-1022/WGSD-8000 - 158 –...
In a command line, curly brackets indicate a selection of compulsory parameters separated by the | character. One option must be selected. For example: flowcontrol {auto|on|off} means that for the flowcontrol command either auto, on or off must be selected. User’s Manual of WGSD-1022/WGSD-8000 - 159 –...
[method2...]—Specify at least one from the following table: Keyword Source or destination enable Uses the enable password for authentication. line Uses the line password for authentication. local Uses the local username database for authentication User’s Manual of WGSD-1022/WGSD-8000 - 160 –...
— Uses the listed authentication methods that follow this argument as the default list of methods,when using higher privilege levels. list-name — Character string used to name the list of authentication methods activated, when using accesshigher privilege levels. User’s Manual of WGSD-1022/WGSD-8000 - 161 –...
All aaa authentication enable default requests sent by the router to a RADIUS server include the username "$enabx$.", where x is the requested privilege level. Example The following example sets authentication when accessing higher privilege levels. console (config) # aaa authentication enable default enable User’s Manual of WGSD-1022/WGSD-8000 - 162 –...
— Uses the default list created with the authentication enable command. list-name — Uses the indicated list created with the authentication enable command. Default Configuration Uses the default set with the command authentication enable. User’s Manual of WGSD-1022/WGSD-8000 - 163 –...
The additional methods of authentication are used only if the previous method returns an error, not if it fails. To ensure that the authentication succeeds even if all methods return an error, specify none as the final method in the command line. User’s Manual of WGSD-1022/WGSD-8000 - 164 –...
Example The following example configures https authentication. console (config) # ip https authentication radius local User’s Manual of WGSD-1022/WGSD-8000 - 165 –...
5.3.8 password The password line configuration command specifies a password on a line. To remove the password, use the no form of this command. Syntax password password [encrypted] no password User’s Manual of WGSD-1022/WGSD-8000 Enable Method List ----------------------------------- Console_Enable Default Default...
There are no user guidelines for this command. Example The following example sets a local level 15 password "abc" to control access to user and privilege levels. console (config-line) # enable password level 15 abc User’s Manual of WGSD-1022/WGSD-8000 - 167 –...
The show users accounts privileged EXEC command displays information about the local user database. Syntax show users accounts Default Configuration This command has no default configuration. Command Mode Privileged EXEC mode User Guidelines There are no user guidelines for this command. User’s Manual of WGSD-1022/WGSD-8000 - 168 –...
Default Configuration No static addresses are defined. The default mode for an added address is permanent. Command Mode Interface configuration (VLAN) mode User’s Manual of WGSD-1022/WGSD-8000 - 169 –...
The bridge multicast address interface configuration command registers MAC-layer multicast addresses to the bridge table, and adds static ports to the group. To unregister the MAC address, use the no form of the bridge multicast address command. Syntax bridge multicast address {mac-multicast-address | ip-multicast-address} User’s Manual of WGSD-1022/WGSD-8000 - 170 –...
— Separate nonconsecutive Ethernet ports with a comma and no spaces; use a hyphen to designate a range of ports. (Range: Valid Ethernet port) port-channel-number-list — Separate nonconsecutive port-channels with a comma and no spaces; use a hyphen to designate a range of port-channels. (Range: Valid Port-channel number) User’s Manual of WGSD-1022/WGSD-8000 - 172 –...
— Separate nonconsecutive port-channels with a comma and no spaces; use a hyphen to designate a range of port-channels. (Range: Valid Port-channel number) Default Configuration Not forbidden Command Modes Interface configuration (VLAN) mode User Guidelines There are no user guidelines for this command. User’s Manual of WGSD-1022/WGSD-8000 - 173 –...
5.4.8 bridge multicast forbidden forward-all The bridge multicast forbidden forward-all interface configuration command forbids a port to be a forward-allmulticast port. To restore the default, use the no form of the bridge multicast forward-all command. User’s Manual of WGSD-1022/WGSD-8000 - 174 –...
The bridge aging-time global configuration command sets the address table aging time. To restore the default, use the no form of the bridge aging-time command. Syntax bridge aging-time seconds no bridge aging-time seconds — Time is number of seconds. (Range: 10 - 630 seconds) Default Configuration 300 seconds User’s Manual of WGSD-1022/WGSD-8000 - 175 –...
The port security interface configuration command locks the port. By locking the port, new addresses are not learned on the port. To enable new address learning, use the no form of the port security command. Syntax port security [forward | discard | discard-shutdown] [trap seconds] no port security User’s Manual of WGSD-1022/WGSD-8000 - 176 –...
The command enables adding secure MAC addresses to a routed ports in port security mode. The command is available when the port is a routed port and in port security mode. The address is deleted if the port exits the security mode or is not a routed port. User’s Manual of WGSD-1022/WGSD-8000 - 177 –...
In this example, all classes of entries in the bridge-forwarding database are displayed. console# show bridge address-table Aging time is 250 sec vlan mac address ----- ------------------- 0060.704C.73FF 0060.708C.73FF 0010.0D48.37FF User’s Manual of WGSD-1022/WGSD-8000 port type ------ -------- dynamic dynamic static - 178 –...
The show bridge address-table count privileged EXEC command displays the number of addresses present in all VLANs or at a specific VLAN. Syntax show bridge address-table count [vlan vlan] vlan — Specific VLAN. User’s Manual of WGSD-1022/WGSD-8000 port type ------ -------...
This command has no default configuration. Command Mode Privileged EXEC mode User Guidelines There are no user guidelines for this command. Example In this example, multicast MAC address table information is displayed. User’s Manual of WGSD-1022/WGSD-8000 Static --------- - 180 –...
In this example, the multicast configuration for VLAN 1 is displayed. Type Ports -------- ---------- static e1, g2 static e1-8 dynamic e9-11 Ports ---------- Type Ports ------------ ---------- static e1,g2 static e1-8 dynamic e9-11 Ports ---------- - 181 – User’s Manual of WGSD-1022/WGSD-8000...
In this example, all classes of entries in the port-lock status are displayed. console# show ports security Port status Learning Action ------- -------- ------------- ----------------- --------- -------- --------- Disabled Lock Disabled Lock Disabled Lock Disabled Lock Status ----------- Filter Forward(s) Forward(d) Maximum Trap - 182 – User’s Manual of WGSD-1022/WGSD-8000 Frequency...
The following example sets the system time to 13:32:00 on the 7th March 2005. console# clock set 13:32:00 7 Mar 2005 5.5.2 clock source The clock source Privileged EXEC command configures an external time source for the system clock. User’s Manual of WGSD-1022/WGSD-8000 - 183 –...
The system internally keeps time in UTC, so this command is used only for display purposes and when the time is manually set. Examples The following example sets the timezone to 6 hours difference from UTC. User’s Manual of WGSD-1022/WGSD-8000 - 184 –...
5.5.4 clock summer-time The clock summer-time global configuration command configures the system to automatically switch to summer time (daylight saving time),. To configure the software to not automatically switch to summer time, use the no form of this command. Syntax...
— Key value (Range: Up to 8 characters) Default Configuration No authentication key is defined. Command Mode Global Configuration mode User Guidelines There are no user guidelines for this command. Examples The following example defines the authentication key for SNTP. User’s Manual of WGSD-1022/WGSD-8000 - 186 –...
Protocol (SNTP) will synchronize. To disable authentication of the identity of the system, use the no form of this command. Syntax sntp trusted-key key-number no sntp trusted-key key-number key-number — Key number of authentication key to be trusted. (Range: 1 - 4294967295) User’s Manual of WGSD-1022/WGSD-8000 - 187 –...
There are no user guidelines for this command. Examples The following example sets the polling time for the Simple Network Time Protocol (SNTP) client to 120 seconds. Console(config)# sntp client poll timer 120 User’s Manual of WGSD-1022/WGSD-8000 - 188 –...
User’s Manual of WGSD-1022/WGSD-8000 5.5.9 sntp broadcast client enable The sntp broadcast client enable global configuration command enables the Simple Network Time Protocol (SNTP) broadcast clients. To disable the SNTP broadcast clients, use the no form of this command. Syntax...
Time Protocol (SNTP) to request and accept Network Time Protocol (NTP) traffic from servers. To disable requesting and accepting Network Time Protocol (NTP) traffic from servers, use the no form of this command. User’s Manual of WGSD-1022/WGSD-8000 - 190 –...
User’s Manual of WGSD-1022/WGSD-8000 Syntax sntp unicast client enable no sntp unicast client enable This command has no arguments or keywords. Default Configuration Disabled Command Mode Global Configuration mode User Guidelines There are no user guidelines for this command. Examples The following example enables the device to use the Simple Network Time Protocol (SNTP) to request and accept Network Time Protocol (NTP) traffic from servers.
To define an SNTP server on the out-of-band port, use the out-of-band IP address format: oob/ip-address. Examples The following example configures the device to accept Network Time Protocol (NTP) traffic from the server on 192.1.1.1 Console (config)# sntp server 192.1.1.1 User’s Manual of WGSD-1022/WGSD-8000 - 192 –...
This command has no keywords or arguments. Default Configuration This command has no default configuration. Command Mode Privileged EXEC mode User Guidelines There are no user guidelines for this command. User’s Manual of WGSD-1022/WGSD-8000 - 193 –...
The show sntp status Privileged EXEC command shows the status of the Simple Network Time Protocol (SNTP), Syntax show sntp status This command has no keywords or arguments. Default Configuration This command has no default configuration. Command Mode Privileged EXEC mode Encryption Key ---------------------- Disabled Encryption Key ---------------------- - 194 – User’s Manual of WGSD-1022/WGSD-8000...
— Used only when copying from /to startup-config. Specifies that the destination/source file is inSNMP format. The following table displays keywords aliases to URL: Status Last response ----------- ---------------------- AFE252C1.6DBDDFF2 Unknown AFE21789.643287C9 Last response ------------------------ AFE252C1.6DBDDFF2 AFE21789.643287C9 - 195 – User’s Manual of WGSD-1022/WGSD-8000 Offset Delay [mSec] [mSec] ----------- ------------ 7.33 117.79 8.98 189.19...
Page 196
"active" image is either the last downloaded image or the image configured as the "active" image. The switch boot code first tries to load and run the active image. However, if the active image is found to be corrupt, the boot code tries to load the back-up image.
Page 197
The configuration is added to the "running configuration" as if the commands were typed in the command-line interface (CLI). The resulting configuration file is a combination of the previous "running configuration" and the loaded User’s Manual of WGSD-1022/WGSD-8000 - 197 –...
Page 198
Console# copy tftp://172.16.101.101/file1 image Accessing file 'file1' on 172.16.101.101... Loading file1 from 172.16.101.101: !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!!!! [OK] Copy took 0:01:11 [hh:mm:ss] Accessing file 'configfile' on oob/172.16.1.1... Loading file1 from oob/172.16.1.1: !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! !!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!!! User’s Manual of WGSD-1022/WGSD-8000 - 198 –...
The following example displays the contents of the startup-config file. Console# show startup-config software version 1.1 hostname device interface ethernet 1/1 ip address 176.242.100.100 255.255.255.0 duplex full speed 1000 interface ethernet 1/2 ip address 176.243.100.100 255.255.255.0 duplex full speed 1000 User’s Manual of WGSD-1022/WGSD-8000 - 199 –...
Page 200
User’s Manual of WGSD-1022/WGSD-8000 - 200 –...
Separate non consecutive ports with a comma and no spaces; a hyphen is used to designate a range of ports. all—All Ethernet ports. Default Configuration This command has no default configuration. Command Mode Global Configuration mode User’s Manual of WGSD-1022/WGSD-8000 - 201 –...
There are no user guidelines for this command. Examples The following example disables Ethernet e5. Console(config)# interface ethernet e5 Console(config-if)# shutdown The following example re-enables Ethernet port e5. Console(config)# interface ethernet e5 Console(config-if)# no shutdown User’s Manual of WGSD-1022/WGSD-8000 - 202 –...
10—Configures the port to 10 Mbps. 100—Configures the port to 100 Mbps. 1000—Configures the port to 1000 Mbps. Default Configuration Maximum port capability. Command Mode Interface Configuration (Ethernet, port-channel, out-of-band Ethernet) mode User’s Manual of WGSD-1022/WGSD-8000 - 203 –...
Half duplex mode can be set only for ports operating at 10 Mbps or 100 Mbps. Example The following example configures the duplex operation of Ethernet e5 to force full duplex operation. Console(config)# interface ethernet e5 Console(config-if)# duplex full User’s Manual of WGSD-1022/WGSD-8000 - 204 –...
Mdix Auto : All possibilities to connect a PC with cross OR normal cables are supported and are automatically detected. Mdix ON: It is possible to connect to a PC only with a normal cable and to connect to another switch ONLY with a cross cable.
Console(config-if)# back-pressure 5.7.11 port jumbo-frame The port jumbo-frame global configuration command enables jumbo frames for the device. To disable jumbo frames, use the no form of this command. Syntax port jumbo-frame no port jumbo-frame User’s Manual of WGSD-1022/WGSD-8000 - 207 –...
In the following example, the counters for interface g1 are cleared. console# clear counters ethernet g1 5.7.13 set interface active The set interface active privileged EXEC mode command reactivates an interface that was suspended by the system. User’s Manual of WGSD-1022/WGSD-8000 - 208 –...
This command has no default configuration. Command Modes Privilege EXEC mode User Guidelines There are no user guidelines for this command. Example The following example displays the configuration for all configured interfaces: console# show interfaces configuration User’s Manual of WGSD-1022/WGSD-8000 - 209 –...
Enabled Off Enabled Off Enabled Off Enabled Off Enabled Off Flow Admin State ------- ----- - 210 – User’s Manual of WGSD-1022/WGSD-8000 Back Mdix Disabled Auto Disabled Auto Disabled Auto Disabled Auto Disabled Auto Disabled Auto Disabled Auto Disabled Auto...
Page 211
Back Pressure—Displays the Back Pressure status. Link State—Displays the Link Aggregation status. Flow Link Back Control State Pressure ----------- ---------- ------------ Auto Down Flow Back Control Pressure -------------- Disable - 211 – User’s Manual of WGSD-1022/WGSD-8000 Mdix Mode ----------- Enable Disable Disable Link State ---------...
Console# show interfaces description ethernet g1 Port Description ------ -------------------- Management_port R&D_port Finance_port Description ----- ------------------ Output 5.7.17 show interfaces counters The show interfaces counters user EXEC command displays traffic seen by the physical interface. User’s Manual of WGSD-1022/WGSD-8000 - 212 –...
This command has no default configuration. Command Modes User EXEC mode User Guidelines There are no user guidelines for this command. Example The following example displays the jumbo frames configuration. Console# show ports jumbo-frame Jumbo frames are disabled User’s Manual of WGSD-1022/WGSD-8000 - 215 –...
Privileged EXEC mode User Guidelines There are no user guidelines for this command. Example The following example displays the storm control configuration. Console# show ports storm-control Port ----- Broadcast Storm control [kbyes/sec] ------------------------------------------------- - 217 – User’s Manual of WGSD-1022/WGSD-8000...
GVRP, or GARP VLAN Registration Protocol, is an industry-standard protocol designed to propagate VLAN information from device to device. With GVRP, a single switch is manually configured with all desired VLANs for the network, and all other switches on the network learn these VLANs dynamically.
GVRP exchanges on an interface are restricted only to those VLANs for which static VLAN registration exists. Example The following example disables dynamic VLAN creation on port e8. Console (config)# interface ethernet e8 Console (config-if)# gvrp vlan-creation-forbid User’s Manual of WGSD-1022/WGSD-8000 - 220 –...
GVRP Feature is currently enabled on the switch. Maximum VLANs: 255, Port(s) GVRP Registration Status -------- ------------- ---------------- Enabled Normal Enabled Normal Dynamic Timers VLAN (milliseconds) Creation --------------- --------------------- ---------------- ------------- Enabled Enabled - 222 – User’s Manual of WGSD-1022/WGSD-8000 Leave Leave Join 10000 10000...
: Join In Received rLIn : Leave In Received rLA : Leave All Received sJIn : Join In Sent sLIn : Leave In Sent sLA : Leave All Sent sJIn sEmp - 223 – User’s Manual of WGSD-1022/WGSD-8000 sLIn ----- -------- ------...
VLAN. To disable IGMP snooping on a VLAN interface, use the no form of this command. Syntax ip igmp snooping no ip igmp snooping Default Configuration IGMP snooping is disabled on all VLANs in the set context. User’s Manual of WGSD-1022/WGSD-8000 - 225 –...
The default value is 300 seconds. Command Mode Interface Configuration (VLAN) mode User Guidelines There are no user guidelines for this command. Example The following example configures the mrouter timeout to 200 seconds. User’s Manual of WGSD-1022/WGSD-8000 - 227 –...
Console (config-if)# ip igmp snooping leave-time-out 60 5.9.7 show ip igmp snooping mrouter The show ip igmp snooping mrouter User EXEC command displays information on dynamically learned multicast router interfaces. Syntax show ip igmp snooping mrouter [interface vlan-id] User’s Manual of WGSD-1022/WGSD-8000 - 228 –...
User EXEC mode User Guidelines There are no user guidelines for this command. Example The example displays IGMP snooping information. Console # show ip igmp snooping interface 1 IGMP Snooping is globaly disabled User’s Manual of WGSD-1022/WGSD-8000 - 229 –...
To see the full multicast address table (including static addresses) use the show bridge address-table command. Example The example shows IGMP snooping information. Console # show ip igmp snooping groups Vlan IP Address ------- ------------------------------------- ------------- 224-239.130|2.2.3 224-239.130|2.2.8 Querier Ports ------------ e1, g2 e5-8 - 230 – User’s Manual of WGSD-1022/WGSD-8000...
[hostname host-name] no ip address dhcp hostname — Specifies the host name. host-name — DHCP host name. This name need not be the same as the host name entered in global configuration User’s Manual of WGSD-1022/WGSD-8000 - 231 –...
The ip default-gateway command defines a default gateway (router). To remove the default gateway use the no form of this command. Syntax ip default-gateway ip-address no ip default-gateway ip-address — Valid IP address that specifies the IP address of the default gateway. User’s Manual of WGSD-1022/WGSD-8000 - 232 –...
This command has no default configuration. Command Mode User EXEC mode User Guidelines There are no user guidelines for this command. Example The following example displays VLAN 1 configuration. Console# show ip interface vlan 1 User’s Manual of WGSD-1022/WGSD-8000 - 233 –...
Syntax arp timeout seconds no arp timeout seconds seconds — Time (in seconds) that an entry remains in the ARP cache. (Range: 1 - 40000000) Default Configuration The default timeout is 60000 seconds. User’s Manual of WGSD-1022/WGSD-8000 - 234 –...
There are no user guidelines for this command. Example The following example deletes all dynamic entries from the ARP cache. Console# clear arp-cache 5.10.8 show arp The show arp privileged EXEC command displays entries in the ARP table. User’s Manual of WGSD-1022/WGSD-8000 - 235 –...
— Value of the priority. (Range: 1 - 65535) Default Configuration The default system priority value is 1. HW address status -------- 00:10:B5:04:DB:4B Dynamic 00:50:22:00:2A:A4 Static - 236 – User’s Manual of WGSD-1022/WGSD-8000...
Console (config-if)# lacp port-priority 247 5.11.3 lacp timeout The lacp timeout interface configuration command assigns an administrative LACP timeout. To reset the default administrative LACP timeout use the no form of this command. User’s Manual of WGSD-1022/WGSD-8000 - 237 –...
This command has no default configuration. Command Mode Privilege EXEC mode User Guidelines There are no user guidelines for this command. Example The following example shows how to display LACP statistics information. Console# show lacp ethernet e1 statistics User’s Manual of WGSD-1022/WGSD-8000 - 238 –...
The following example shows how to display LACP port-channel information. Console# show lacp port-channel 1 Port-Channel 1:Port Type 1000 Ethernet Actor System Priority:1 MAC Address: 000285:0E1C00 Admin Key: 29 Oper Key: 29 Partner System Priority:0 MAC Address: 000000:000000 Oper Key: 14 User’s Manual of WGSD-1022/WGSD-8000 - 239 –...
Syntax speed {bps} bps — Baud rate in bits per second (bps). The options are 2400, 9600, 19200 and 38400. Default Configuration This default speed is 115200. Command Mode Line Configuration (console) mode User’s Manual of WGSD-1022/WGSD-8000 - 240 –...
The following example configures the interval that the system waits until user input is detected to 20 minutes. Console (config)# line console Console(config-line)# exec-timeout 20 5.12.4 show line The show line user EXEC command displays line parameters. Syntax show line [console | telnet | ssh] User’s Manual of WGSD-1022/WGSD-8000 - 241 –...
— Name of the access list. If unspecified, defaults to an empty access-list.(Range: Valid name) console-only — The device can be managed only from the console. Default Configuration This command has no default configuration. User’s Manual of WGSD-1022/WGSD-8000 - 245 –...
There are no user guidelines for this command. Example The following example displays the active management access-list. Console# show management access-list mlist ------- permit ethernet g1 permit ethernet g9 ! (Note: all other access implicitly denied) User’s Manual of WGSD-1022/WGSD-8000 - 246 –...
The port can only be tested if cable is connected to both sides. The port under test should be shut down during the test, unless it is a combo port with an active fiber port. User’s Manual of WGSD-1022/WGSD-8000 - 247 –...
The following example displays the last TDR (Time Domain Reflectometry) tests on all ports. Console# show copper-ports tdr Port Result ------- ----------- Short Test has not been preformed Short Fiber User’s Manual of WGSD-1022/WGSD-8000 Length Date [meters] -------------- --------- 13:32:00 23 July 2003 13:32:00 23 July 2003 - 248 –...
Fiber 5.14.4 show fiber-ports optical-transceiver The show fiber-ports optical-transceiver privileged EXEC command displays the optical transceiver diagnostics. Syntax show fiber-ports optical-transceiver [interface] [detailed] interface — A valid Ethernet port. Detailed — Detailed diagnostics. User’s Manual of WGSD-1022/WGSD-8000 - 249 –...
Page 250
The following example displays detailed optical transceiver diagnostics console# show fiber-ports transceiver detailed Port Temp Voltage [Volt] Current Output Input Power Power Power ------------ ----------- ---------- Current Output Input [mA] Power Power [mWatt] [mWatt] - 250 – User’s Manual of WGSD-1022/WGSD-8000 ---------...
The channel-group interface configuration command associates a port with a port-channel. To remove a port from a port channel, use the no form of this command. Syntax channel-group port-channel-number mode {on | auto} no channel-group port-channel_number — Specifies the number of the valid port-channel for the current port to join. User’s Manual of WGSD-1022/WGSD-8000 - 252 –...
Syntax show interfaces port-channel [port-channel-number] port-channel-number — Valid port-channel number information to display. Default Configuration This command has no default configuration. Command Mode User EXEC mode User’s Manual of WGSD-1022/WGSD-8000 - 253 –...
The port being monitored cannot be set faster than the monitoring port. The following restrictions apply to ports configured to be destination ports: The port cannot be already configured as a source port. User’s Manual of WGSD-1022/WGSD-8000 - 254 –...
5.16.2 show ports monitor The show ports monitor user EXEC command displays the port monitoring status. Syntax show ports monitor Default Configuration This command has no default configuration. Command Mode User EXEC mode User’s Manual of WGSD-1022/WGSD-8000 - 255 –...
Destination Port ---------------- ----------------------- 1/18 5.17 QoS Commands 5.17.1 qos The qos global configuration command enables quality of service (QoS) on the device and enters QoS basic or advanced mode. User’s Manual of WGSD-1022/WGSD-8000 Type Status ------------ ----------- RX, TX Active...
User EXEC mode User Guidelines There are no user guidelines for this command. Example The following example displays a device where basic mode is supported. Console# show qos Qos: basic Basic trust: dscp User’s Manual of WGSD-1022/WGSD-8000 - 257 –...
It is recommended to specifically map a single VPT to a queue, rather than mapping multiple VPTs to a single queue Example The following example maps CoS 3 to queue 7. Console (config)# wrr-queue cos-map 7 3 User’s Manual of WGSD-1022/WGSD-8000 - 258 –...
Use the priority-queue out num-of-queues command to globally configure a queue as WRR or Strict Priority. Use this command to set a weight per interface. Example The following example sets queue weights as follows: Queue 1—6/36 Queue 2—6/36 Queue 3—6/36 Queue 4—6/36 User’s Manual of WGSD-1022/WGSD-8000 - 259 –...
The show qos interface user EXEC command displays interface QoS data. Syntax show qos interface [ethernet interface-number | vlan vlan-id | port-channel number] [buffers | queuing | policers | shapers] ethernet interface-number — Ethernet port number. User’s Manual of WGSD-1022/WGSD-8000 - 260 –...
Page 261
There are no user guidelines for this command. Examples The following example displays output from the show qos interface ethernet e1 buffers command. Console# show qos interface ethernet e1 buffers Ethernet e1 Notify Q depth: Size User’s Manual of WGSD-1022/WGSD-8000 Threshold - 261 –...
Packets entering a quality of service (QoS) domain are classified at the edge of the QoS domain. When the packets are classified at the edge, the switch port within the QoS domain can be configured to one of the trusted states because there is no need to classify the packets at every switch within the domain.
Console (config)# interface ethernet e5 Console (config-if) qos trust 5.17.10 qos cos The qos cos interface configuration command configures the default port CoS value. To return to the default setting, use the no form of this command. User’s Manual of WGSD-1022/WGSD-8000 - 265 –...
Default Configuration CoS Override is disabled Command Mode Interface configuration (Ethernet, Port-Channel). User Guidelines This command enables to override the CoS value of tagged packets, with the value configured by the qos cos command. User’s Manual of WGSD-1022/WGSD-8000 - 266 –...
The following example displays the DSCP port-queue map. console# show qos map Dscp-queue map: d1 : d2 0 ---- ---- ---- The following example displays the policed-DSCP map. ---- ---- ---- ---- ---- ---- - 267 – User’s Manual of WGSD-1022/WGSD-8000 ----...
The radius-server host global configuration command specifies a RADIUS server host. To delete the specified RADIUS host, use the no form of this command. Syntax radius-server host {ip-address} [auth-port auth-port-number] [timeout timeout] [retransmit retransmit] [deadtime deadtime] [key key] [source source] [priority priority] no radius-server host ip-address - 268 – User’s Manual of WGSD-1022/WGSD-8000...
Page 269
The following example specifies a RADIUS server host with the following characteristics: Server host IP address — 192.168.10.1 Authentication port number — 20 Timeout period — 20 seconds Console (config)# radius-server host 192.168.10.1 auth-port 20 timeout 20 User’s Manual of WGSD-1022/WGSD-8000 - 269 –...
RADIUS server hosts. To reset the default configuration, use the no form of this command. Syntax radius-server retransmit retries no radius-server retransmit Default Configuration The default is 3 attempts. Command Mode Global Configuration mode User’s Manual of WGSD-1022/WGSD-8000 - 270 –...
The radius-server timeout global configuration command sets the interval for which a router waits for a server host to reply. To restore the default, use the no form of this command. Syntax radius-server timeout timeout no radius-server timeout User’s Manual of WGSD-1022/WGSD-8000 - 271 –...
User Guidelines There are no user guidelines for this command. Example The following example sets a dead time where a RADIUS server is skipped over by transaction requests for this period, to 10 minutes. User’s Manual of WGSD-1022/WGSD-8000 - 272 –...
Deadtime: 0 Source IP: 172.16.8.1 Retransmit Deadtime Source IP ---------------- --------------- --------------- ---------- --------- Global Global Global Global Global Retransmit Deadtime Source IP Priority ------------------ ------------- --------------- ----------- Global Global Global - 273 – User’s Manual of WGSD-1022/WGSD-8000 Priority Usage...
The total number of events in which packets are dropped by the probe due to lack of resources. Dropped This number is not always the number of packets dropped; it is the number of User’s Manual of WGSD-1022/WGSD-8000 - 274 –...
Page 275
(excluding framing bits but including FCS octets). The total number of packets (including bad packets) received that are between 1024 and 1518 1024 to 1518 octets in length inclusive (excluding framing bits but including FCS octets). Octets User’s Manual of WGSD-1022/WGSD-8000 - 275 –...
The show rmon collection history user EXEC command displays the requested history group configuration. Syntax show rmon collection history [ethernet interface | port-channel port-channel-number] interface — Valid Ethernet port. port-channel-number — Valid port-channel trunk index. User’s Manual of WGSD-1022/WGSD-8000 - 276 –...
Page 279
(excluding framing bits but including FCS octets) but were otherwise well formed. etherHistoryFragments to increment because it counts both runts (which are normal occurrences due to collisions) and noise hits. Owner: CLI Interval: 1800 Granted samples: 50 Dropped Collisions -------------- -------------- - 279 – User’s Manual of WGSD-1022/WGSD-8000...
If the method is absolute, the value of the selected variable is compared directly with the thresholds at the end of the sampling interval. If the method is delta, the selected variable value at the last sample is subtracted from the current value, and the difference compared with the thresholds. User’s Manual of WGSD-1022/WGSD-8000 - 280 –...
Console (config)# rmon alarm 1000 abc 360000 1000000 1000000 10 20 5.19.6 show rmon alarm-table The show rmon alarm-table user EXEC command displays the alarms summary table. Syntax show rmon alarm-table Default Configuration This command has no default configuration. User’s Manual of WGSD-1022/WGSD-8000 - 281 –...
— Alarm index. (Range: 1 - 65535) Default Configuration This command has no default configuration. Command Mode User EXEC mode User Guidelines There are no user guidelines for this command. User’s Manual of WGSD-1022/WGSD-8000 Owner ----------- Manager - 282 –...
Page 283
If the first sample is less than or equal to the falling threshold, and startup alarm is equal falling or rising and falling, then a single falling alarm User’s Manual of WGSD-1022/WGSD-8000 - 283 –...
— Enter a name that specifies who configured this event. If unspecified, the name is an empty string. (Range: 0-127 characters) Default Configuration This command has no default configuration. Command Mode Global Configuration mode User Guidelines There are no user guidelines for this command. User’s Manual of WGSD-1022/WGSD-8000 - 284 –...
The type of notification that the device generates about this event. Can have the following Community Owner ----------------- ------------ router Manager - 285 – User’s Manual of WGSD-1022/WGSD-8000 Last time sent -------------------- Jan 18 2002 23:58:17 Jan 18 2002 23:59:48...
Errors High Broadcast Console# show rmon log Maximum table size: 500 (800 after reset) Event Description --------- ---------------- User’s Manual of WGSD-1022/WGSD-8000 Time --------- Jan 18 2002 23:48:19 Jan 18 2002 23:58:17 Jan 18 2002 23:59:48 Time --------- - 286 –...
The configured table size is effective after the device is rebooted. Example The following example configures the maximum RMON history table sizes to 1000 entries. Console (config)# rmon table-size history 1000 User’s Manual of WGSD-1022/WGSD-8000 Jan 18 2002 23:48:19 Jan 18 2002 23:58:17 Jan 18 2002 23:59:48...
SNMP community, the administrator must indicate which tables are being configured. If type is oob, this indicates that OOB tables are being configured. If type is router, it means that the device's tables are being configured. User’s Manual of WGSD-1022/WGSD-8000 - 288 –...
This command has no default configuration. Command Mode Global Configuration mode User Guidelines Do not include spaces in the text string. Example The following example displays setting up the system contact point as "abc_Technical_Support". User’s Manual of WGSD-1022/WGSD-8000 - 289 –...
The following example sets the device location as "New_York". Console (config)# snmp-server location New_York 5.20.4 snmp-server enable traps The snmp-server enable traps global configuration command enables the switch to send SNMP traps. To disable SNMP traps use the no form of the command. Syntax...
Console (config)# snmp-server enable traps 5.20.5 snmp-server trap authentication The snmp-server trap authentication global configuration command enables the switch to send Simple Network Management Protocol traps when authentication fails. To disable SNMP authentication failed traps, use the no form of this command.
Inform requests should be used, if it is important that the SNMP manager receives every notification. If traffic on the network or memory in the switch is a concern and notification is not required, traps should be used.
This command has no default configuration. Command Mode Privileged EXEC mode User Guidelines There are no user guidelines for this command. Example The following example displays the SNMP communications status. Console# show snmp User’s Manual of WGSD-1022/WGSD-8000 - 293 –...
Page 294
Traps are enabled. Authentication trap is enabled. Trap-Rec-Address Trap-Rec-Community 192.122.173.42 OOB trap receivers Trap-Rec-Address 176.16.8.9 System Contact: Robert System Location: Marketing IP address ------------------ 172.16.1.1 172.17.1.1 IP address ------------------ 176.16.8.9 Version public Trap-Rec-Community Version public - 294 – User’s Manual of WGSD-1022/WGSD-8000...
The spanning-tree hello-time global configuration command configures the spanning-tree bridge hello time, which is how often the switch broadcasts hello messages to other switches.To reset the default hello time, use the no form of this command. User’s Manual of WGSD-1022/WGSD-8000...
The default max-age for IEEE STP is 20 seconds. Command Modes Global Configuration mode User Guidelines There are no user guidelines for this command. Example The following example configures the spanning-tree bridge maximum-age to 10 seconds. User’s Manual of WGSD-1022/WGSD-8000 - 297 –...
5.21.7 spanning-tree disable The spanning-tree disable interface configuration command disables spanning-tree on a specific port. To enable spanning-tree on a port use, the no form of this command. Syntax spanning-tree disable no spanning-tree disable User’s Manual of WGSD-1022/WGSD-8000 - 298 –...
Interface Configuration (Ethernet, port-channel) mode User Guidelines The method used (long or short) is set by using the spanning-tree pathcost method command. Example The following example configures the spanning-tree cost on e5 to 35000. User’s Manual of WGSD-1022/WGSD-8000 - 299 –...
The spanning-tree portfast interface configuration command enables PortFast mode. In PortFast mode, the interface is immediately put into the forwarding state upon linkup, without waiting for the timer to expire. To disable PortFast mode, use the no form of this command. Syntax spanning-tree portfast no spanning-tree portfast User’s Manual of WGSD-1022/WGSD-8000 - 300 –...
— Specifies that the port link type is shared. Default Configuration The switch derives the link type of a port from the duplex mode. A full-duplex port is considered a point-to-point link, and a half-duplex port is considered a shared link.
Auto Command Mode Global configuration mode User Guidelines This command applies to all the spanning tree instances on the switch. The priority value must be a multiple of 4096. The cost is set using the spanning-tree cost command. Example The following example sets the default path cost method to "long".
The following example restarts the protocol migration process (forces the renegotiation with neighboring switches) on g1. Console# clear spanning-tree detected-protocols ethernet g1 5.21.15 show spanning-tree The show spanning-tree privileged EXEC command displays spanning-tree configuration. User’s Manual of WGSD-1022/WGSD-8000 - 303 –...
Page 304
Address 0002.4b29.7a00 Hello Time 2 sec Max Age 20 sec Forward Delay 15 sec Number of topology changes 2 last change occurred 2d18h ago Times: hold 1, topology change 35, notification 2 32768 - 304 – User’s Manual of WGSD-1022/WGSD-8000...
If encryption keys are not generated, the SSH server is in standby until the keys are generated. To generate SSH server keys, use the commands crypto key generate rsa, and crypto key generate dsa. Example The following example enables the device to be configured from a SSH server. Console (config)# ip ssh server User’s Manual of WGSD-1022/WGSD-8000 - 306 –...
User’s Manual of WGSD-1022/WGSD-8000 5.22.3 crypto key generate dsa The ip ssh server global configuration command generates DSA key pairs. Syntax crypto key generate dsa Default Configuration DSA key pairs do not exist. Command Mode Global Configuration mode User Guidelines DSA keys are generated in pairs: one public DSA key and one private DSA key.
5.22.6 crypto key pubkey-chain ssh The crypto key pubkey-chain ssh global configuration command enters SSH Public Key-chain configuration mode. The mode is used to manually specify other device public keys such as SSH client public keys. User’s Manual of WGSD-1022/WGSD-8000 - 308 –...
User Guidelines Follow this command with the key-string command to specify the key. Example The following example enables a SSH public key to be manually configured for the SSH public key chain called "bob". User’s Manual of WGSD-1022/WGSD-8000 - 309 –...
The following example enters public key strings for SSH public key clients called "bob". Console(config)# crypto key pubkey-chain ssh Console(config-pubkey-chain)# user-key bob rsa Console(config-pubkey-key)# key-string rsa AAAAB3NzaC1yc2EAAAADAQABAAABAQCvTnRwPWl Al4kpqIw9GBRonZQZxjHKcqKL6rMlQ+ ZNXfZSkvHG+QusIZ/76ILmFT34v7u7ChFAE+ Vu4GRfpSwoQUvV35LqJJk67IOU/zfwOl1g kTwml75QR9gHujS6KwGN2QWXgh3ub8gDjTSq muSn/Wd05iDX2IExQWu08licglk02LYciz +Z4TrEU/9FJxwPiVQOjc+KBXuR0juNg5nFYsY 0ZCk0N/W9a/tnkm1shRE7Di71+w3fNiOA 6w9o44t6+AINEICBCCA4YcF6zMzaT1wefWwX6f+ User’s Manual of WGSD-1022/WGSD-8000 - 310 –...
The following table describes the significant fields shown in the display: Field Description IP address Client address SSH username User name Version SSH version number Cipher Encryption type (3DES, Blowfish, RC4) Version Cipher --------------- -------------- 2.0 3 - 311 – User’s Manual of WGSD-1022/WGSD-8000 Auth Code ------------------- HMAC-SH1...
| hostname [size packet_size] [count packet_count] [timeout time_out] ip-address — IP address to ping. An out-of-band IP address can be specified as described in the usage guidelines. hostname — hostname to ping (Range: 1 - 160 characters) User’s Manual of WGSD-1022/WGSD-8000 - 313 –...
Destination does not respond—If the host does not respond, a “no answer from host” message appears in 10 seconds. Destination unreachable—The gateway for this destination indicates that the destination is unreachable. Network or host unreachable—The switch found no corresponding entry in the route table. To ping an out-of-band IP address, use the out-of-band IP address format — oob/ip-address.
Page 315
The traceroute command terminates when the destination responds, when the maximum TTL is exceeded, or when the user interrupts the trace with Esc. To find the trace to an out-of-band IP address, use the out-of-band IP address format: oob/ip-address. User’s Manual of WGSD-1022/WGSD-8000 - 315 –...
Page 316
The following table describes the characters that can appear in the traceroute command output. Field Description The probe timed out. Unknown packet type. Administratively unreachable. Usually, this output indicates that an access list is blocking traffic. Host unreachable. Network unreachable. Protocol unreachable. Source quench. Port unreachable. User’s Manual of WGSD-1022/WGSD-8000 - 316 –...
At any time during an active Telnet session, the Telnet commands can be listed by pressing the Ctrl-shift-6 key, followed by a question mark at the system prompt: Ctrl-shift-6 ? A sample of this list follows. The following example displays the system service tag information. User’s Manual of WGSD-1022/WGSD-8000 - 317 –...
Page 318
UNIX-to-UNIX Copy Program (UUCP) and other non-Telnet protocols. Ports Table Keyword Description Border Gateway Protocol chargen Character generator Remote commands daytime Daytime discard Discard domain Domain Name Service echo Echo exec Exec finger Finger User’s Manual of WGSD-1022/WGSD-8000 Port number - 318 –...
Unix-to-Unix Copy Program whois Nickname World Wide Web Example Console> telnet 176.213.10.50 Esc U sends telnet EL 5.23.4 resume The resume command in EXEC mode is used to switch to another open Telnet session. User’s Manual of WGSD-1022/WGSD-8000 - 319 –...
Caution should be exercised when resetting the device, to ensure that no other activity is being performed. In particular, the user should verify that no configuration files are being downloaded at the time of reset. Example The following example reloads the operating system. Console# reload User’s Manual of WGSD-1022/WGSD-8000 - 320 –...
User’s Manual of WGSD-1022/WGSD-8000 5.23.6 hostname The hostname global configuration command specifies or modifies the device host name. To remove the existing host name, use the no form of the command. Syntax hostname name no hostname name — The device host name.
172.16.1.2 172.16.1.2 Field Description Connection Connection number Host Remote host to which the device is connected through a Telnet session. Protocol Location ------------ ------------ Serial HTTP Address Port -------- - 322 – User’s Manual of WGSD-1022/WGSD-8000 172.16.0.1 172.16.0.8 Byte -------...
Temperature-Indicates the temperature at which the device is currently running. The device temperature is displayed in Celsius. The device temperature threshold is 0 - 40 C (32 - 104F). The following table displays the temperature in Fahrenheit in increments of 5. Celsius Fahrenheit User’s Manual of WGSD-1022/WGSD-8000 01,02:48:20 00:03:6d:30:57:00 1.3.6.1.4.1.89.1.1 - 323 –...
The logging on global configuration command controls error messages logging. This command sends debug or error messages to a logging process, which logs messages to designated locations asynchronously to the process that generated the messages. To disable the logging process, use the no form of this command. User’s Manual of WGSD-1022/WGSD-8000 - 324 –...
— The facility that is indicated in the message. Can be one of the following values: local0, local1, local2, local3, local4, local5, local 6, local7. If unspecified, the port number defaults to local7. text — Syslog server description, which can be up to 64 characters. User’s Manual of WGSD-1022/WGSD-8000 - 325 –...
Global Configuration mode User Guidelines There are no user guidelines for this command. Example The following example limits messages logged to the console based on severity level "errors". Console (config)# logging console errors User’s Manual of WGSD-1022/WGSD-8000 - 326 –...
— Numeric value indicating the maximum number of messages stored in the history table. (Range: 20 - 400) Default Configuration The default number of messages is 200. User’s Manual of WGSD-1022/WGSD-8000 - 327 –...
5.24.7 logging file The logging file global configuration command limits syslog messages sent to the logging file based on severity. To cancel the buffer, use the no form of this command. 23.7.1 Syntax User’s Manual of WGSD-1022/WGSD-8000 - 328 –...
Command Mode Privileged EXEC mode User Guidelines There are no user guidelines for this command. Example The following example clears messages from the logging file. Console# clear logging file Clear Logging File [y/n] y User’s Manual of WGSD-1022/WGSD-8000 - 329 –...
%LINEPROTO-5-UPDOWN: Line protocol on Interface FastEthernet g0, changed state to up 11-Aug-2002 15:41:39: %LINEPROTO-5-UPDOWN: Line protocol on Interface Ethernet g0, changed state to down 11-Aug-2002 15:41:39: %LINEPROTO-5-UPDOWN: Line protocol on Interface Ethernet g1, changed User’s Manual of WGSD-1022/WGSD-8000 - 330 –...
11-Aug-2002 15:41:43: %LINK-3-UPDOWN: Interface Ethernet g0, changed state to up 11-Aug-2002 15:41:43: %LINK-3-UPDOWN: Interface Ethernet g1, changed state to up 11-Aug-2002 15:41:43: %LINK-3-UPDOWN: Interface Ethernet g2, changed state to up 11-Aug-2002 15:41:43: %LINK-3-UPDOWN: Interface Ethernet e3, changed state to up User’s Manual of WGSD-1022/WGSD-8000 - 331 –...
There are no user guidelines for this command. Example The following example displays the syslog server settings. Console# show syslog-servers IP address Port ---------------- ------ 192.180 192.180.2.285 Severity Facility ------------ ------------ Informational local Warning local - 332 – User’s Manual of WGSD-1022/WGSD-8000 Description ----------------...
Multiple tacacs-server host commands can be used to specify multiple hosts. If no host-specific timeout, key or source values are specified, the global values apply to each host. To define TACACS server on the out-of-band port, use the out-of-band IP address format: oob/ip-address. User’s Manual of WGSD-1022/WGSD-8000 - 333 –...
5.25.3 tacacs-server timeout The tacacs-server timeout command in global configuration mode sets the timeout value. To restore the default, use the no form of this command. Syntax tacacs-server timeout timeout no tacacs-server timeout User’s Manual of WGSD-1022/WGSD-8000 - 334 –...
To define an out-of-band IP address use the out-of-band IP address format: oob/ip-address. Command Mode Global Configuration mode User Guidelines There are no user guidelines for this command. Examples The following example specifies the source IP address. Console (config)# tacacs-server source-ip 172.16.8.1 User’s Manual of WGSD-1022/WGSD-8000 - 335 –...
Source IP: 172.16.8.1 OOB Source IP: 176.16.8.1 OOB TACACS servers IP address Status Source IP Priority --------------- --------- Port Single Connection ------- ---------------- -------------- Port Single Connection ------- ---------------- -------------- - 336 – User’s Manual of WGSD-1022/WGSD-8000 TimeOut Global TimeOut...
The default privilege level is 15. Command Mode User EXEC mode User Guidelines There are no user guidelines for this command. Example The following example shows how to enter privileged mode: Console> enable enter password: Console# - 337 – User’s Manual of WGSD-1022/WGSD-8000 Global...
Privileged EXEC mode User Guidelines There are no user guidelines for this command. Example In the following example, because no keyword is entered, a prompt is displayed. After the keyword is selected, a message User’s Manual of WGSD-1022/WGSD-8000 - 338 –...
Password:* * * * * Console# 5.26.5 exit(configuration) The exit command exits any configuration mode to the next highest mode in the CLI mode hierarchy. Syntax exit Default Configuration This command has no default configuration. User’s Manual of WGSD-1022/WGSD-8000 - 339 –...
The following example closes an active terminal session. Console> exit 5.26.7 end The end global configuration command ends the current configuration session and returns to the privileged command mode. Syntax Default Configuration This command has no default configuration. User’s Manual of WGSD-1022/WGSD-8000 - 340 –...
The history line configuration command enables the command history function. To disable the command history feature, use the no form of this command. Syntax history no history Default Configuration The history function is enabled. User’s Manual of WGSD-1022/WGSD-8000 - 341 –...
The following example changes the command history buffer size to 100 entries for a particular line. Console (config-line)# history size 100 5.26.12 show history The show history user EXEC command lists the commands entered in the current session. User’s Manual of WGSD-1022/WGSD-8000 - 342 –...
This command has no default configuration. Command Mode User EXEC command mode User Guidelines There are no user guidelines for this command. Example The following example displays the current privilege level. Console# show privilege User’s Manual of WGSD-1022/WGSD-8000 - 343 –...
— A list of valid VLAN IDs to be added. List separate, non-consecutive VLAN IDs separated by commas (without spaces); use a hyphen to designate a range of IDs. (Range: 2 - 4063) User’s Manual of WGSD-1022/WGSD-8000 - 344 –...
This command has no keywords or arguments. Default Configuration Enabled Command Modes Vlan configuration mode User Guidelines There are no user guidelines for this command. Examples1 Console# vlan database Console(config-vlan)# default-vlan disable User’s Manual of WGSD-1022/WGSD-8000 - 345 –...
— A list of valid VLAN IDs to add. Separate non consecutive VLAN IDs with a comma and no spaces; a hyphen designates a range of IDs. all — All existing static VLANs. Default Configuration This command has no default configuration. Command Mode Global Configuration mode User’s Manual of WGSD-1022/WGSD-8000 - 346 –...
5.27.7 switchport mode The switchport mode interface configuration command configures the VLAN membership mode of a port. To reset the mode to the appropriate default for the device, use the no form of this command. User’s Manual of WGSD-1022/WGSD-8000 - 347 –...
Syntax switchport access vlan vlan-id no switchport access vlan vlan-id — VLAN ID of the VLAN to which the port is configured. Default Configuration VLAN ID=1 Command Mode Interface configuration (Ethernet, port-channel) mode User’s Manual of WGSD-1022/WGSD-8000 - 348 –...
Example The following example shows how to add VLANs 2 and 5 to 8 to the allowed list of e8. Console (config)# interface ethernet e8 Console (config-if)# switchport trunk allowed vlan add 2,5-8 User’s Manual of WGSD-1022/WGSD-8000 - 349 –...
— List of VLAN IDs to add. Separate non consecutive VLAN IDs with a comma and no spaces. A hyphen designates a range of IDs. remove vlan-list — List of VLAN IDs to remove. Separate non consecutive VLAN IDs with a comma and no spaces. A hyphen designates a range of IDs. User’s Manual of WGSD-1022/WGSD-8000 - 350 –...
Interface configuration (Ethernet, port-channel) mode User Guidelines There are no user guidelines for this command. Example The following example shows how to configure the PVID for e8, when the interface is in general mode. User’s Manual of WGSD-1022/WGSD-8000 - 351 –...
The switchport general acceptable-frame-type tagged-only interface configuration command discards untagged frames at ingress. To enable untagged frames at ingress, use the no form of this command. Syntax switchport general acceptable-frame-type tagged-only no switchport general acceptable-frame-type tagged-only User’s Manual of WGSD-1022/WGSD-8000 - 352 –...
All VLANs allowed. Command Mode Interface Configuration (Ethernet, port-channel) mode User Guidelines There are no user guidelines for this command. Example The following example forbids adding VLANs number 234 till 256, to e8. User’s Manual of WGSD-1022/WGSD-8000 - 353 –...
VLAN Database mode User Guidelines The following protocol names are reserved: ip-arp Example The following example maps protocol ip-arp to the group named "213". Console (config)# vlan database Console (config-vlan)# map protocol ip-arp protocols-group 213 User’s Manual of WGSD-1022/WGSD-8000 - 354 –...
Syntax ip internal-usage-vlan vlan-id no ip internal-usage-vlan vlan-id — VLAN ID of the internal usage VLAN.(Range: Valid VLAN) Default Configuration This command has no default configuration. User’s Manual of WGSD-1022/WGSD-8000 - 355 –...
Default Configuration This command has no default configuration. Command Mode Privileged EXEC mode User Guidelines There are no user guidelines for this command. Example The following example displays all VLAN information. console# show vlan User’s Manual of WGSD-1022/WGSD-8000 - 356 –...
VLAN_2 VLAN_3 5.27.20 show vlan internal usage The show vlan internal usage privileged EXEC command displays a list of VLANs being used internally by the switch. Syntax show vlan internal usage Default Configuration This command has no default configuration.
Page 358
Port is member in: Vlan Name ------- ---------- default VLAN008 VLAN011 Forbidden VLANS: VLAN Name -------- --------- Classification rules: Group ID VLAN ------------ --------- Egress rule Type ----------------- --------- untagged System tagged Dynamic tagged Static - 358 – User’s Manual of WGSD-1022/WGSD-8000...
TCP port, use the no form of this command. Syntax ip http port port-number no ip http port port-number — Port number for use by the HTTP server. (Range: 0 - 65535) User’s Manual of WGSD-1022/WGSD-8000 - 359 –...
User Guidelines You must use the crypto certificate generate command to generate the HTTPS certificate. Example The following example enables the device to be configured from a browser. Console (enable)# ip https server User’s Manual of WGSD-1022/WGSD-8000 - 360 –...
The Certificate and the SSL RSA key pairs do not exist. Command Mode Global Configuration mode User Guidelines The command is not saved in the router configuration; however, the certificate and keys generated by this command are saved User’s Manual of WGSD-1022/WGSD-8000 - 361 –...
HTTP server enable. Port: 80 5.28.7 show ip https The show ip http privileged EXEC command displays the HTTPS server configuration. Syntax show ip https Default Configuration This command has no default configuration. User’s Manual of WGSD-1022/WGSD-8000 - 362 –...
The additional methods of authentication are used only if the previous method returns an error, not if it fails. To ensure that the authentication succeeds even if all methods return an error, specify none as the final method in the command line. User’s Manual of WGSD-1022/WGSD-8000 - 363 –...
— Enable 802.1X authentication on the interface and cause the port to transition to the authorized or unauthorized state based on the 802.1X authentication exchange between the switch and the client. User’s Manual of WGSD-1022/WGSD-8000 - 364 –...
— Deny all access through this interface by forcing the port to transition to the unauthorized state, ignoring all attempts by the client to authenticate. The switch cannot provide authentication services to the client through the interface.
5.29.6 dot1x re-authenticate The dot1x re-authenticate privileged EXEC command manually initiates a re-authentication of all 802.1Xenabled ports or the specified 802.1X-enabled port. dot1x re-authenticate [ethernet interface] interface — The full syntax is: unit/port. User’s Manual of WGSD-1022/WGSD-8000 - 366 –...
Syntax dot1x timeout quiet-period seconds no dot1x timeout quiet-period seconds — Time in seconds that the switch remains in the quiet state following a failed authentication exchange with the client. (Range: 0 - 65535 seconds) Default Configuration Command Mode...
Command Mode Interface configuration (Ethernet) Examples The following command sets the number of seconds that the switch waits for a response to an EAP - request/identity frame, to 3600 seconds. Console (config)# interface ethernet e8 Console (config-if)# dot1x timeout tx-period 3600 5.29.9 dot1x max-req...
Syntax dot1x timeout supp-timeout seconds no dot1x timeout supp-timeout seconds — Time in seconds that the switch should wait for a response to an EAP-request frame from the client before resending the request. (Range: 1 - 65535 seconds) Default Configuration...
Use the no form of this command to return to the default setting. Syntax dot1x timeout server-timeout seconds no dot1x timeout server-timeout seconds — Time in seconds that the switch should wait for a response from the authentication server before resending the request. (Range: 1 - 65535 seconds) Default Configuration Command Mode...
Page 371
* Port is down or not present Console# show dot1x ethernet e3 Interface Admin Mode Reauth Username 1/e3 Auto 3600 Clark User’s Manual of WGSD-1022/WGSD-8000 Reauth Reauth Username Control Period Disabled 3600 Disabled 3600 Disabled 3600 Disabled 3600 Disabled 3600...
State The current value of the Authenticator PAE state machine. Quiet period The number of seconds that the switch remains in the quiet state following a failed authentication exchange (for example, the client provided an invalid password). Tx period The number of seconds that the switch waits for a response to an Extensible Authentication Protocol (EAP)-request/identity frame from the client before resending the request.
Page 373
Authentication Method The authentication method used to establish the session. Mac address The supplicant MAC address. Interface The interface that the user is using. Last Auth Auth Method MAC Address ------------------ --------------------- Remote None - 373 – User’s Manual of WGSD-1022/WGSD-8000...
Description EapolFramesRx The number of valid EAPOL frames of any type that have been received by this Authenticator. EapolFramesTx The number of EAPOL frames of any type that have been transmitted by this User’s Manual of WGSD-1022/WGSD-8000 - 374 –...
Interface configuration (VLAN) mode User Guidelines To define a VLAN for authorized and unauthorized users use the dot1x auth-not-req interface VLAN command. Examples The following example enables unauthorized users access to the VLAN. User’s Manual of WGSD-1022/WGSD-8000 - 375 –...
MAC address is not the supplicant MAC address, attempts to access the interface. Use the no form of this command to return to default. Syntax dot1x single-host-violation {forward | discard | discard-shutdown} [trap seconds] no port dot1x single-host-violation forward — Forward frames with source addresses not the supplicant address, but do not learn the address. User’s Manual of WGSD-1022/WGSD-8000 - 376 –...
The following example uses the forward action to forward frames with source addresses. console config-if(Config-VLAN)# dot1x single-host-violation forward trap 100 5.29.19 show dot1x advanced The show dot1x advanced privileged EXEC command displays 802.1X advanced features for the switch or for the specified interface. Syntax show dot1x advanced [ethernet interface] interface —...
Page 378
Unauthenticated VLANs: 91, 92 Use user attributes from Authentication Server: Enabled User VLAN not created: Create Interface Multiple Hosts Disabled Enabled Single Host Violation: Discard Trap: Enabled Frequency: 100 Status: Authorized (Locked) Counter: 9 User’s Manual of WGSD-1022/WGSD-8000 - 378 –...
Performance is bad Solution: Check the full duplex status of the Ethernet Switch. If the Ethernet Switch is set to full duplex and the partner is set to half duplex, then the performance will be poor. 100Base-TX port link LED is lit, but the traffic is irregular Solution: Check that the attached device is not set to dedicate full duplex.
A.1 Switch's RJ-45 Pin Assignments When connecting your 10/100Mbps Ethernet Switch to another switch, a bridge or a hub, a straight or crossover cable is necessary. Each port of the Switch supports auto-MDI/MDI-X detection. That means you can directly connect the Switch to any Ethernet devices without making a crossover cable.
Page 381
6 = Green 7 = White / Brown 8 = Brown Figure A-1: Straight-Through and Crossover Cable - 381 – User’s Manual of WGSD-1022/WGSD-8000 SIDE2 1 = White / Orange 2 = Orange 3 = White / Green 4 = Blue...