Page 1 DGS-3212SR Release III 12-Port Gigabit Layer 2 Stackable Switch Command Line Interface Reference Manual Third Edition (February 2005) Version 0.3 Printed In Taiwan RECYCLABLE...
Page 3 Microsoft Corporation. Other trademarks and trade names may be used in this document to refer to either the entities claiming the marks and names or their products. D-Link Computer Corporation disclaims any proprietary interest in trademarks and trade names other than its own.
Page 5: Wichtige Sicherheitshinweise
CAUSE BEYOND THE RANGE OF THE INTENDED USE, OR BY ACCIDENT, FIRE, LIGHTNING OR OTHER HAZARD. LIMITATION OF LIABILITY IN NO EVENT WILL D-LINK BE LIABLE FOR ANY DAMAGES, INCLUDING LOSS OF DATA, LOSS OF PROFITS, COST OF COVER OR OTHER INCIDENTAL, CONSEQUENTIAL OR INDIRECT DAMAGES ARISING OUT THE INSTALLATION, MAINTENANCE, USE, PERFORMANCE, FAILURE OR INTERRUPTION OF A D- LINK PRODUCT, HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY.
Page 6: Limited Warranty
Registration Card. If a Registration Card for the product in question has not been returned to a D-Link office, then a proof of purchase (such as a copy of the dated purchase invoice) must be provided when requesting warranty service.
Page 7 Spare parts and spare kits Ninety (90) days D-Link’s sole obligation shall be to repair or replace the defective Hardware during the Warranty Period at no charge to the original owner or to refund at D- Link’s sole discretion. Such repair or replacement will be rendered by D-Link at an Authorized D-Link Service Office. The replacement Hardware need not be new or have an identical make, model or part.
Page 8: Copyright Statement
D-Link may reject or return any product that is not packaged and shipped in strict compliance with the foregoing requirements, or for which an RMA number is not visible from the outside of the package. The product owner agrees to pay D-Link’s reasonable handling and return shipping charges for any product that is not packaged and shipped in accordance with the foregoing requirements, or that is determined by D-Link not to be defective or non-conforming.
Page 9 equipment in a residential area is likely to cause harmful interference in which case the user will be required to correct the interference at his own expense. CE Mark Warning This is a Class A product. In a domestic environment, this product may cause radio interference in which case the user may be required to take adequate measures.
Page 10: Table Of Contents
Table of Contents Introduction.......................................1 Using the Console CLI ..................................4 Command Syntax....................................10 Basic Switch Commands ................................13 Switch Port Commands ..................................25 Port Security Commands ................................29 Network Management (SNMP) Commands ...........................33 Switch Utility Commands................................56 Network Monitoring Commands ..............................59 Multiple Spanning Tree Protocol (MSTP) Commands........................76 Forwarding Database Commands ..............................92 Broadcast Storm Control Commands ............................102 QoS Commands ....................................105...
Page 11 D-Link Single IP Management Commands ..........................224 Time and SNTP Commands................................. 236 ARP Commands................................... 244 Routing Table Commands................................249 Command History List ................................. 252 Technical Specifications ................................255...
Page 13: Introduction
DGS-3212SR Layer 3 Gigabit Switch NTRODUCTION The switch can be managed through the switch’s serial port, Telnet, or the Web-based management agent. The Command Line Interface (CLI) can be used to configure and manage the switch via the serial port or Telnet interfaces.
Page 14 DGS-3212SR Layer 3 Gigabit Switch There is no initial username or password. Just press the Enter key twice to display the CLI input cursor − DGS-3212SR:4#. This is the command line where all commands are input. Setting the Switch’s IP Address Each Switch must be assigned its own IP Address, which is used for communication with an SNMP network manager or other TCP/IP application (for example BOOTP, TFTP).
Page 15 DGS-3212SR Layer 3 Gigabit Switch Figure 1-3. Assigning an IP Address In the above example, the switch was assigned an IP address of 10.58.44.99 with a subnet mask of 255.0.0.0. The system message Success indicates that the command was executed successfully. The switch can now be configured and managed via...
Page 16: Using The Console Cli
ONSOLE The DGS-3212SR supports a console management interface that allows the user to connect to the switch’s management agent via a serial port and a terminal or a computer running a terminal emulation program. The console can also be used over the network using the TCP/IP Telnet protocol.
Page 17 DGS-3212SR Layer 3 Gigabit Switch Figure 2-1. Initial Console Screen Commands are entered at the command prompt, DGS-3212SR:4#. There are a number of helpful features included in the CLI. Entering the ? command will display a list of all of the top-level commands.
Page 18 DGS-3212SR Layer 3 Gigabit Switch When you enter a command without its required parameters, the CLI will prompt you with a Next possible completions: message. Figure 2-3. Example Command Parameter Help In this case, the command config account was entered with the parameter <username>. The CLI will then prompt you to enter the <username>...
Page 19 DGS-3212SR Layer 3 Gigabit Switch Figure 2-4. Using the Up Arrow to Re-enter a Command In the above example, the command config account was entered without the required parameter <username>, the CLI returned the Next possible completions: <username> prompt. The up arrow cursor control key was pressed to re-enter the previous command (config account) at the command prompt.
Page 20 DGS-3212SR Layer 3 Gigabit Switch Figure 2-5. The Next Available Commands Prompt The top-level commands consist of commands such as show or config. Most of these commands require one or more parameters to narrow the top-level command. This is equivalent to show what? or config what? Where the what? is the next parameter.
Page 21 DGS-3212SR Layer 3 Gigabit Switch Figure 2-6. Next possible completions: Show Command In the above example, all of the possible next parameters for the show command are displayed. At the next command prompt, the up arrow was used to re-enter the show command, followed by the account parameter. The CLI then displays the user...
Page 22: Command Syntax
DGS-3212SR Layer 3 Gigabit Switch OMMAND YNTAX The following symbols are used to describe how command entries are made and values and arguments are specified in this manual. The online help contained in the CLI and available through the console interface uses the same syntax.
Page 23 DGS-3212SR Layer 3 Gigabit Switch {braces} Purpose Encloses an optional value or set of optional arguments. Syntax reset {[config | system]} Description In the above syntax example, you have the option to specify config or system. It is not necessary to specify either optional value, however the effect of the system reset is dependent on which, if any, value is specified.
Page 24 DGS-3212SR Layer 3 Gigabit Switch Enter Displays the next line or table entry.
Page 25: Basic Switch Commands
DGS-3212SR Layer 3 Gigabit Switch ASIC WITCH OMMANDS The basic switch commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters create account [admin | user] <username 15> config account <username 15>...
Page 26 DGS-3212SR Layer 3 Gigabit Switch create account Only Administrator-level users can issue this command. Restrictions Usernames can be between 1 and 15 characters. Passwords can be between 0 and 15 characters. Example usage: To create an administrator-level user account with the username “dlink”.
Page 27 DGS-3212SR Layer 3 Gigabit Switch DGS-3212SR:4# show account Purpose Used to display user accounts Syntax show account Description Displays all user accounts created on the switch. Up to 8 user accounts can exist on the switch at one time. None.
Page 28 DGS-3212SR Layer 3 Gigabit Switch DGS-3212SR:4# show switch Purpose Used to display information about the switch. Syntax show switch Description This command displays information about the switch. Parameters None. Restrictions None. Example usage: To display the switch information: DGS-3212SR:4#show switch...
Page 29 DGS-3212SR Layer 3 Gigabit Switch Spanning Tree : Disabled GVRP : Disabled IGMP Snooping : Disabled TELNET : Enabled (TCP 23) : Enabled (TCP 80) RMON : Disabled DGS-3212SR:4# show serial_port Used to display the current serial port settings. Purpose...
Page 30 DGS-3212SR Layer 3 Gigabit Switch config serial_port This command is used to configure the serial port’s baud rate Description and auto logout settings. baud_rate [9600 | 19200 | 38400 | 115200] − The serial bit rate Parameters that will be used to communicate with the management host.
Page 31 DGS-3212SR Layer 3 Gigabit Switch Example usage: To enable pausing of the screen display when the show command output reaches the end of the page: DGS-3212SR:4#enable clipaging Command: enable clipaging Success. DGS-3212SR:4# disable clipaging Purpose Used to disable the pausing of the console screen scrolling at the end of each page when the show command displays more than one screen of information.
Page 32 DGS-3212SR Layer 3 Gigabit Switch enable telnet TCP port for the Telnet protocol is 23. Only administrator-level users can issue this command. Restrictions Example usage: To enable Telnet and configure port number: DGS-3212SR:4#enable telnet 23 Command: enable telnet 23 Success.
Page 33 DGS-3212SR Layer 3 Gigabit Switch enable web number the switch will use to listen for Telnet requests. <tcp_port_number 1-65535> − The TCP port number. TCP ports Parameters are numbered between 1 and 65535. The “well-known” port for the Web-based management software is 80.
Page 34 DGS-3212SR Layer 3 Gigabit Switch save Syntax save This command is used to enter the current switch configuration into Description non-volatile RAM. The saved switch configuration will be loaded into the switch’s memory each time the switch is restarted. Parameters...
Page 35 DGS-3212SR Layer 3 Gigabit Switch Reset This command is used to restore the switch’s configuration to the Description default settings assigned from the factory. config − If the keyword ‘config’ is specified, all of the factory Parameters default settings are restored on the switch including the IP address, user accounts, and the switch history log.
Page 36 DGS-3212SR Layer 3 Gigabit Switch DGS-3212SR:4#login Command: login UserName: logout Purpose Used to log out a user from the switch’s console. Syntax logout Description This command terminates the current user’s session on the switch’s console. Parameters None. Restrictions None. Example usage: To terminate the current user’s console session:...
Page 37: Switch Port Commands
DGS-3212SR Layer 3 Gigabit Switch WITCH OMMANDS The switch port commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config ports [ <portlist>| all ] { speed [auto | 10_half | 10_full | 100_half |...
Page 38 DGS-3212SR Layer 3 Gigabit Switch config ports [master | slave] – The master and slave parameters refer to connections running a 1000BASE-T cable for connection between the Switch port and other device capable of a gigabit connection. The master setting will allow the port to advertise capabilities related to duplex, speed and physical layer type.
Page 39 Restrictions Example usage: To configure the speed of port 3 to be 10 Mbps, full duplex, learning and state enable: DGS-3212SR:4#config ports 1:1-1:3 speed 10_full learning enable state enable Command: config ports 1:1-1:3 speed 10_full learning enable state enable Success.
Page 40 DGS-3212SR Layer 3 Gigabit Switch 15:3 Enabled Auto/Enabled Link Down Enabled 15:4 Enabled Auto/Enabled Link Down Enabled 15:5 Enabled Auto/Enabled Link Down Enabled 15:6 Enabled Auto/Enabled Link Down Enabled 15:7 Enabled Auto/Enabled Link Down Enabled 15:8 Enabled Auto/Enabled Link Down...
Page 41: Port Security Commands
DGS-3212SR Layer 3 Gigabit Switch ECURITY OMMANDS The switch port security commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config port_security ports [<portlist>| all ] {admin_state [enable | disable] | max_learning_addr <max_lock_no 0-10>...
Page 42 Restrictions Only administrator-level users can issue this command. Example usage: To configure the port security: DGS-3212SR:4#config port_security ports 1:1-1:5 admin_state enable max_learning_addr 5 lock_address_mode DeleteOnReset Command: config port_security ports 1:1-1:5 admin_state enable max_learning_addr 5 lock_address_mode DeleteOnReset Success...
Page 43 DGS-3212SR Layer 3 Gigabit Switch DGS-3212SR:4#show port_security ports Command: show port_security ports Port# Admin State Max. Learning Addr. Lock Address Mode ---- ----------- ------------------- ----------------- 15:1 Disabled DeleteOnReset 15:2 Disabled DeleteOnReset 15:3 Disabled DeleteOnReset 15:4 Disabled DeleteOnReset 15:5 Disabled DeleteOnReset...
Page 44 DGS-3212SR Layer 3 Gigabit Switch DGS-3212SR:4#delete port_security_entry vlan_name default mac_address 00-0C-6E-73-2B-C9 port 1:1 Command: delete port_security_entry vlan_name default mac_address 00-0C-6E-73-2B-C9 port 1:1 Success DGS-3212SR:4# clear port_security_entry port Purpose Used to clear MAC address entries learned from a specified port for the port security function.
Page 45: Network Management (Snmp) Commands
OMMANDS The DGS-3212SR supports the Simple Network Management Protocol (SNMP) versions 1, 2c, and 3. You can specify which version of the SNMP you want to use to monitor and control the switch. The three versions of SNMP vary in the level of security provided between the management station and the network device.
Page 46 DGS-3212SR Layer 3 Gigabit Switch Command Parameters create snmp group <groupname 32> {v1 | v2c |v3 [noauth_nopriv | auth_nopriv | auth_priv ]} {read_view <view_name 32> | write_view <view_name 32> | notify_view <view_name 32>} delete snmp group <groupname 32> show snmp groups create snmp host <ipaddr>...
Page 47 Only administrator-level users can issue this command. Example usage: To create an SNMP user on the switch: DGS-3212SR:4#create snmp user dlink default encrypted by_password auth md5 auth_password priv none Command: create snmp user dlink default encrypted by_password auth md5 auth_password priv none...
Page 48 DGS-3212SR Layer 3 Gigabit Switch DGS-3212SR:4# delete snmp user Purpose Used to remove an SNMP user from an SNMP group and also to delete the associated SNMP group. Syntax delete snmp user <username 32> Description The delete snmp user command removes an SNMP user from its SNMP group and then deletes the associated SNMP group.
Page 49 − Exclude this object from the list of objects that an SNMP manager can access. Restrictions Only administrator-level users can issue this command. Example usage: To create an SNMP view: DGS-3212SR:4#create snmp view dlinkview 1.3.6 view_type included Command: create snmp view dlinkview 1.3.6 view_type included Success. DGS-3212SR:4# delete snmp view Purpose Used to remove an SNMP view entry previously created on the switch.
Page 50 DGS-3212SR Layer 3 Gigabit Switch delete snmp view Parameters <view_name 32> − An alphanumeric string of up to 32 characters that identifies the SNMP view to be deleted. all − Specifies that all of the SNMP views on the switch will be deleted.
Page 51 DGS-3212SR Layer 3 Gigabit Switch restricted 1.3.6.1.6.3.15.1.1 Included CommunityView Included CommunityView 1.3.6.1.6.3 Excluded CommunityView 1.3.6.1.6.3.1 Included Total Entries: 11 DGS-3212SR:4# create snmp community Purpose Used to create an SNMP community string to define the relationship between the SNMP manager and an agent. The community string acts like a password to permit access to the agent on the switch.
Page 52 DGS-3212SR Layer 3 Gigabit Switch DGS-3212SR:4#create snmp community dlink view ReadView read_write Command: create snmp community dlink view ReadView read_write Success. DGS-3212SR:4# delete snmp community Purpose Used to remove a specific SNMP community string from the switch. Syntax delete snmp community <community_string 32>...
Page 53 DGS-3212SR Layer 3 Gigabit Switch show snmp community SNMP managers access to MIB objects in the switch’s SNMP agent. Restrictions Only administrator-level users can issue this command. Example usage: To display the currently entered SNMP community strings: DGS-3212SR:4#show snmp community...
Page 54 DGS-3212SR Layer 3 Gigabit Switch DGS-3212SR:4# show snmp engineID Purpose Used to display the identification of the SNMP engine on the switch. Syntax show snmp engineID Description The show snmp engineID command displays the identification of the SNMP engine on the switch.
Page 55 Only administrator-level users can issue this command. Example usage: To create an SNMP group named “sg1:” DGS-3212SR:4#create snmp group sg1 v3 noauth_nopriv read_view v1 write_view v1 notify_view v1 Command: create snmp group sg1 v3 noauth_nopriv read_view v1 write_view v1 notify_view v1...
Page 56 DGS-3212SR Layer 3 Gigabit Switch DGS-3212SR:4# delete snmp group Purpose Used to remove an SNMP group from the switch. Syntax delete snmp group <groupname 32> Description The delete snmp group command is used to remove an SNMP group from the switch.
Page 57 DGS-3212SR Layer 3 Gigabit Switch Group Name : Group3 ReadView Name : ReadView WriteView Name : WriteView Notify View Name : NotifyView Security Model : SNMPv3 Security Level : NoAuthNoPriv Group Name : Group4 ReadView Name : ReadView WriteView Name...
Page 58 SNMP manager to access the switch’s SNMP agent. Restrictions Only administrator-level users can issue this command. Example usage: To create an SNMP host to receive SNMP messages: DGS-3212SR:4#create snmp host 10.48.74.100 v3 auth_priv public Command: create snmp host 10.48.74.100 v3 auth_priv public Success. DGS-3212SR:4# delete snmp host...
Page 59 DGS-3212SR Layer 3 Gigabit Switch delete snmp host Restrictions Only administrator-level users can issue this command. Example usage: To delete an SNMP host entry: DGS-3212SR:4#delete snmp host 10.48.74.100 natas Command: delete snmp host 10.48.74.100 natas Success. DGS-3212SR:4# show snmp host...
Page 60 DGS-3212SR Layer 3 Gigabit Switch create trusted_host Purpose Used to create the trusted host. Syntax create trusted_host <ipaddr> Description The create trusted_host command creates the trusted host. The switch allows you to specify up to four IP addresses that are allowed to manage the switch via in-band SNMP or TELNET based management software.
Page 61 DGS-3212SR Layer 3 Gigabit Switch Management Stations IP Address -------------------- 10.53.13.94 Total Entries: 1 DGS-3212SR:4# delete trusted_host Purpose Used to delete a trusted host entry made using the create trusted_host command above. Syntax delete trusted _host <ipaddr> Description This command is used to delete a trusted host entry made using the create trusted_host command above.
Page 62 DGS-3212SR Layer 3 Gigabit Switch To enable SNMP trap support on the switch: DGS-3212SR:4#enable snmp traps Command: enable snmp traps Success. DGS-3212SR:4# enable snmp authenticate_traps Purpose Used to enable SNMP authentication trap support. Syntax enable snmp authenticate_traps Description This command is used to enable SNMP authentication trap support on the Switch.
Page 63 DGS-3212SR Layer 3 Gigabit Switch DGS-3212SR:4#show snmp traps Command: show snmp traps SNMP Traps : Enabled Authenticate Trap : Enabled DGS-3212SR:4# disable snmp traps Purpose Used to disable SNMP trap support on the switch. Syntax disable snmp traps Description This command is used to disable SNMP trap support on the Switch.
Page 64 DGS-3212SR Layer 3 Gigabit Switch disable snmp authenticate_traps Purpose Used to disable SNMP authentication trap support. Syntax disable snmp authenticate_traps Description This command is used to disable SNMP authentication support on the Switch. Parameters None. Restrictions Only administrator-level users can issue this command.
Page 65 DGS-3212SR Layer 3 Gigabit Switch DGS-3212SR:4#config snmp system_contact MIS Department II Command: config snmp system_contact MIS Department II Success. DGS-3212SR:4# config snmp system_location Purpose Used to enter a description of the location of the switch. Syntax config snmp system_location {<sw_location>}...
Page 66 DGS-3212SR Layer 3 Gigabit Switch To configure the switch name for “ DGS-3212SR Stackable Switch ”: DGS-3212SR:4#config snmp system_name DGS-3212SR Stackable Switch Command: config snmp system_name DGS-3212SR Stackable Switch Success. DGS-3212SR:4# enable rmon Purpose Used to enable RMON on the switch.
Page 67 DGS-3212SR Layer 3 Gigabit Switch Example Usage: To disable RMON: DGS-3212SR:4#disable rmon Command: disable rmon Success. DGS-3212SR:4#...
Page 68: Switch Utility Commands
- Download a switch configuration file from a TFTP server. unit [all |master| <unitid 1-12>] all specifies all units (switches). master is the DGS-3212SR switch, <unitid> is the unit ID of the switch that will receive the download. <ipaddr> − The IP address of the TFTP server.
Page 69 DGS-3212SR Layer 3 Gigabit Switch To download a configuration file: DGS-3212SR:4#download configuration 10.48.74.121 c:\cfg\setting.txt Command: download configuration 10.48.74.121 c:\cfg\setting.txt Connecting to server....Done. Download configuration..... Done. DGS-3212SR:4# upload Purpose Used to upload the current switch settings or the switch history log to a TFTP server.
Page 70 DGS-3212SR Layer 3 Gigabit Switch ping Syntax ping <ipaddr> {times <value 1-255>} {timeout <sec 1-99>} Description The ping command sends Internet Control Message Protocol (ICMP) echo messages to a remote IP address. The remote IP address will then “echo” or return the message. This is used to confirm connectivity between the switch and the remote device.
Page 71: Network Monitoring Commands
DGS-3212SR Layer 3 Gigabit Switch ETWORK ONITORING OMMANDS The network monitoring commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters show packet ports <portlist> show error ports <portlist> show utilization [cpu | unit_id <int>]...
Page 72 DGS-3212SR Layer 3 Gigabit Switch show packet ports port number on that switch, separated by a colon. Then the highest switch number, and the highest port number of the range (also separated by a colon) are specified. The beginning and end of the port list range are separated by a dash.
Page 73 DGS-3212SR Layer 3 Gigabit Switch show error ports For example, 1:3 specifies switch number 1, port 3. 2:4 specifies switch number 2, port 4. 1:3-2:4 specifies all of the ports between switch 1, port 3 and switch 2, port 4 − in numerical order.
Page 74 DGS-3212SR Layer 3 Gigabit Switch DGS-3212SR:4#show utilization unit_id 1 Port TX/sec RX/sec Util Port TX/sec RX/sec Util ---- ---------- ---------- ---- ---- ---------- ---------- ---- 1:10 1:11 1:12 CTRL+C ESC q Quit SPACE n Next Page p Previous Page r Refresh...
Page 75 DGS-3212SR Layer 3 Gigabit Switch clear counters port 4 − in numerical order. Restrictions Only administrator-level users can issue this command. Example usage: To clear the counters: DGS-3212SR:4#clear counters ports 2:7-2:9 Command: clear counters ports 2:7-2:9 Success. DGS-3212SR:4# clear log Purpose Used to clear the switch’s history log.
Page 76 DGS-3212SR Layer 3 Gigabit Switch show log Parameters index <value> − Enter a value that corresponds to an entry made in the log. Multiple entries may be made in the form of x-x where x is the number of an entry in the log. The smallest number (and therefore the earlier entry) will be first.
Page 77 DGS-3212SR Layer 3 Gigabit Switch disable syslog Purpose Used to disable the system log function on the switch. Syntax disable syslog Description The disable syslog command disables the system log function on the switch. After disabling, Syslog entries will no longer be sent to a remote host.
Page 78 DGS-3212SR Layer 3 Gigabit Switch Example usage: To display the current status of the syslog function: DGS-3212SR:4#show syslog Command: show syslog Syslog Global State: Enabled DGS-3212SR:4# create syslog host Purpose Used to create a new syslog host. Syntax create syslog host <index 1-4> ipaddress <ipaddr> {severity...
Page 79 DGS-3212SR Layer 3 Gigabit Switch create syslog host Parameters <index 1-4> − Specifies that the command will be applied to an index of hosts. There are four available indexes, numbered 1 through 4. ipaddress <ipaddr> − Specifies the IP address of the remote host where syslog messages will be sent.
Page 80 DGS-3212SR Layer 3 Gigabit Switch create syslog host facility − Some of the operating system daemons and processes have been assigned Facility values. Processes and daemons that have not been explicitly assigned a Facility may use any of the "local use" facilities or they may use the "user-level" Facility.
Page 81 DGS-3212SR Layer 3 Gigabit Switch create syslog host local use 0 (local0) local use 1 (local1) local use 2 (local2) local use 3 (local3) local use 4 (local4) local use 5 (local5) local use 6 (local6) local use 7 (local7) local0 −...
Page 82 DGS-3212SR Layer 3 Gigabit Switch DGS-3212SR:4#create syslog host 1 ipaddress 10.53.13.200 severity all facility local0 state enable Command: create syslog host 1 ipaddress 10.53.13.200 severity all facility local0 state enable Success. DGS-3212SR:4# config syslog host Purpose Used to configure the syslog protocol to send system log data to a remote host.
Page 83 DGS-3212SR Layer 3 Gigabit Switch config syslog host Parameters all − Specifies that the command will be applied to all hosts. <index 1-4> − Specifies that the command will be applied to an index of hosts. There are four available indexes, numbered 1 through 4.
Page 84 DGS-3212SR Layer 3 Gigabit Switch config syslog host facility − Some of the operating system daemons and processes have been assigned Facility values. Processes and daemons that have not been explicitly assigned a Facility may use any of the "local use" facilities or they may use the "user-level" Facility.
Page 85 DGS-3212SR Layer 3 Gigabit Switch config syslog host local use 0 (local0) local use 1 (local1) local use 2 (local2) local use 3 (local3) local use 4 (local4) local use 5 (local5) local use 6 (local6) local use 7 (local7) local0 −...
Page 86 DGS-3212SR Layer 3 Gigabit Switch DGS-3212SR:4#config syslog host all severity all facility local0 Command: config syslog host all severity all facility local0 Success. DGS-3212SR:4# delete syslog host Purpose Used to remove a syslog host, that has been previously configured, from the switch.
Page 87 DGS-3212SR Layer 3 Gigabit Switch Example usage: To show syslog host information: DGS-3212SR:4#show syslog host Command: show syslog host Syslog Global State: Disabled Host Id Host IP Address Severity Facility UDP port Status ------- --------------- -------------- -------- -------- -------- 10.1.1.2...
Page 88: Multiple Spanning Tree Protocol (Mstp) Commands
DGS-3212SR Layer 3 Gigabit Switch (MSTP) C ULTIPLE PANNING ROTOCOL OMMANDS This switch supports three versions of the Spanning Tree Protocol; 802.1d STP, 802.1w Rapid STP and 802.1s MSTP. Multiple Spanning Tree Protocol, or MSTP, is a standard defined by the IEEE community that allows multiple VLANs to be mapped to a single spanning tree instance, which will provide multiple pathways across the network.
Page 89 DGS-3212SR Layer 3 Gigabit Switch Command Parameters delete stp instance_id <value 1-15> config stp priority <value 0-61440> instance_id <value 0-15> config stp {revision_level <int 0-65535> | name <string>} mst_config_id config stp mst_ports <portlist> instance_id <value 0-15> {internalCost [auto | value 1- 200000000] | priority <value 0-240>}...
Page 90 DGS-3212SR Layer 3 Gigabit Switch disable stp Restrictions Only administrator-level users can issue this command. Example usage: To disable STP on the Switch: DGS-3212SR:4#disable stp Command: disable stp Success. DGS-3212SR:4# config stp version Purpose Used to globally set the version of STP on the Switch.
Page 91 DGS-3212SR Layer 3 Gigabit Switch config stp Syntax config stp {maxage <value 6-40> | maxhops <value 1-20> | hellotime <1-10> | forwarddelay <value 4-30> | txholdcount <value 1-10> | fbpdu [enable | disable]} Description This command is used to setup the Spanning Tree Protocol (STP) for the entire switch.
Page 92 DGS-3212SR Layer 3 Gigabit Switch Example usage: To configure STP with maxage 18 and maxhops of 15: DGS-3212SR:4#config stp maxage 18 maxhops 15 Command: config stp maxage 18 maxhops 15 Success. DGS-3212SR:4# config stp ports Purpose Used to setup STP on the port level.
Page 93 DGS-3212SR Layer 3 Gigabit Switch config stp ports Parameters <portlist> − Specifies a range of ports to be configured. The port list is specified by listing the lowest switch number and the beginning port number on that switch, separated by a colon. Then the highest switch number, and the highest port number of the range (also separated by a colon) are specified.
Page 94 To configure STP with path cost 19, hellotime set to 5 seconds, migration enable, and state enable for ports 1-5 of module 1. DGS-3212SR:4#config stp ports 1:1-1:5 externalCost 19 hellotime 5 migrate yes state enable Command: config stp ports 1:1-1:5 externalCost 19 hellotime 5 migrate yes state enable Success.
Page 95 DGS-3212SR Layer 3 Gigabit Switch Example usage: To create a spanning tree instance 2: DGS-3212SR:4#create stp instance_id 2 Command: create stp instance_id 2 Success. DGS-3212SR:4# config stp instance_id Purpose Used to add or delete an STP instance ID. Syntax config stp instance_id <value 1-15> [add_vlan | remove_vlan] <vidlist>...
Page 96 DGS-3212SR Layer 3 Gigabit Switch Example usage: To configure instance id 2 to add VID 10: DGS-3212SR:4#config stp instance_id 2 add_vlan 10 Command : config stp instance_id 2 add_vlan 10 Success. DGS-3212SR:4# Example usage: To remove VID 10 from instance id 2:...
Page 97 (CIST) internally set on the Switch. Restrictions Only administrator-level users can issue this command. Example usage: To set the priority value for instance_id 2 as 4096: DGS-3212SR:4#config stp priority 4096 instance_id 2 Command : config stp priority 4096 instance_id 2 Success. DGS-3212SR:4# config stp mst_config_id Purpose Used to update the MSTP configuration identification.
Page 98 Only administrator-level users can issue this command. Example usage: To configure the MSTP region of the Switch with revision_level 10 and the name “Trinity”: DGS-3212SR:4#config stp mst_config_id revision_level 10 name Trinity Command : config stp mst_config_id revision_level 10 name Trinity Success.
Page 99 Example usage: To designate ports 1 through 5 on module one, with instance ID 2, to have an auto internalCost and a priority of 16: DGS-3212SR:4#config stp mst_config_id ports 1:1-1:5 instance_id 2 internalCost auto priority 16 Command : config stp mst_config_id ports 1:1-1:5 instance_id 2 internalCost auto priority 16 Success.
Page 100 DGS-3212SR Layer 3 Gigabit Switch Example usage: To display the status of STP on the Switch: Status 1: STP enabled with STP compatible version DGS-3212SR:4#show stp Command: show stp STP Status : Enabled STP Version : STP Compatible Max Age...
Page 101 DGS-3212SR Layer 3 Gigabit Switch show stp ports Description This command displays the STP Instance Settings and STP Instance Operational Status currently implemented on the Switch. Parameters <portlist> − Specifies a range of ports to be viewed. The port list is specified by listing the lowest switch number and the beginning port number on that switch, separated by a colon.
Page 102 DGS-3212SR Layer 3 Gigabit Switch Example usage: To display the STP instance configuration for instance 0 (the internal CIST) on the Switch: DGS-3212SR:4#show stp instance 0 Command: show stp instance 0 STP Instance Settings --------------------------- Instance Type : CIST Instance Status...
Page 103 DGS-3212SR Layer 3 Gigabit Switch DGS-3212SR:4#show stp mst_config_id Command: show stp mst_config_id Current MST Configuration Identification ---------------------------------------- Configuration Name : 00:53:13:1A:33:24 Revision Level :0 MSTI ID Vid list ------- ----------- CIST 2-4094 DGS-3212SR:4#...
Page 104: Forwarding Database Commands
DGS-3212SR Layer 3 Gigabit Switch ORWARDING ATABASE OMMANDS The forwarding database commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config multicast [<portlist> | all] [forward_all_groups | port_filtering_mode forward_unregistered_groups | filter_unregistered_groups] show multicast {<portlist>}...
Page 105 DGS-3212SR Layer 3 Gigabit Switch To configure the multicast filtering mode to forward all groups on ports 1 through 4. DGS-3212SR:4 #config multicast port_filtering_mode 1-4 forward_all_groups Command: config multicast port_filtering_mode 1-4 forward_all_groups Success. DGS-3212SR:4# show multicast port_filtering_mode Purpose Used to show the multicast packet filtering mode on a port per port basis.
Page 106 The switch will always forward traffic to the specified device through this port. Restrictions Only administrator-level users can issue this command. Example usage: To create a unicast MAC FDB entry: DGS-3212SR:4#create fdb default 00-00-00-00-01-02 port 2:5 Command: create fdb default 00-00-00-00-01-02 port 2:5...
Page 107 DGS-3212SR Layer 3 Gigabit Switch Success. DGS-3212SR:4# create multicast_fdb Purpose Used to create a static entry to the multicast MAC address forwarding table (database) Syntax create multicast_fdb <vlan_name 32> <macaddr> Description This command will make an entry into the switch’s multicast MAC address forwarding database.
Page 108 2, port 4 − in numerical order. Restrictions Only administrator-level users can issue this command. Example usage: To add multicast MAC forwarding: DGS-3212SR:4#config multicast_fdb default 01-00-00-00-00-01 add 1:1-1:5 Command: config multicast_fdb default 01-00-00-00-00-01 add 1:1-1:5 Success. DGS-3212SR:4# config fdb aging_time Purpose Used to set the aging time of the forwarding database.
Page 109 DGS-3212SR Layer 3 Gigabit Switch config fdb aging_time Restrictions Only administrator-level users can issue this command. Example usage: To set the fdb aging time: DGS-3212SR:4#config fdb aging_time 300 Command: config fdb aging_time 300 Success. DGS-3212SR:4# delete fdb Purpose Used to delete an entry to the switch’s forwarding database.
Page 110 DGS-3212SR Layer 3 Gigabit Switch DGS-3212SR:4# clear fdb Purpose Used to clear the switch’s forwarding database of all dynamically learned MAC addresses. Syntax clear fdb [vlan <vlan_name 32> | port <port> | all] Description This command is used to clear dynamically learned entries to the switch’s forwarding database.
Page 111 DGS-3212SR Layer 3 Gigabit Switch show multicast_fdb Syntax show mulitcast_fdb [vlan <vlan_name 32> | mac_address <macaddr>] Description This command is used to display the current contents of the switch’s multicast MAC address forwarding database. Parameters <vlan_name 32> − The name of the VLAN on which the MAC address resides.
Page 112 DGS-3212SR Layer 3 Gigabit Switch show fdb port 4. 1:3-2:4 specifies all of the ports between switch 1, port 3 and switch 2, port 4 − in numerical order. <vlan_name 32> − The name of the VLAN on which the MAC address resides.
Page 113 DGS-3212SR Layer 3 Gigabit Switch To view the IP forwarding database table:...
Page 114: Broadcast Storm Control Commands
DGS-3212SR Layer 3 Gigabit Switch ROADCAST TORM ONTROL OMMANDS The broadcast storm control commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config traffic control [<storm_grouplist> | all ] {broadcast [enable | disable] | multicast [enable | disable] | dlf [enable | disable] | threshold <value 0-...
Page 115 Restrictions Only administrator-level users can issue this command. Example usage: To configure traffic control and enable broadcast storm control system wide: DGS-3212SR:4#config traffic control all broadcast enable Command: config traffic control all broadcast enable Success. DGS-3212SR:4# show traffic control Purpose Used to display current traffic control settings.
Page 116 DGS-3212SR Layer 3 Gigabit Switch [ 4 ] Disabled Disabled Disabled [ 5 ] Disabled Disabled Disabled Total Entries: 5 DGS-3212SR:4#...
Page 117: Qos Commands
DGS-3212SR Layer 3 Gigabit Switch OMMANDS The DGS-3212SR switch supports 802.1p priority queuing. The switch has nine hardware priority queues, one of which is internal and not configurable. These hardware priority queues are numbered from 7 (Class 7) — the highest hardware priority queue —...
Page 118 DGS-3212SR Layer 3 Gigabit Switch Command Parameters bandwidth_control config 802.1p {<priority 0-7> <class_id 0-7>} user_priority show 802.1p user_priority config 802.1p [<portlist> | all] | <priority 0-7> default_priority show 802.1p {<portlist>} default_priority config [strict | round_robin] scheduling_mechanism show scheduling_mechanism Each command is listed, in detail, in the following sections.
Page 119 DGS-3212SR Layer 3 Gigabit Switch config bandwidth_control <value 1-1000> − Specifies the packet limit, in Mbps, that the above ports will be allowed to receive. Restrictions Only administrator-level users can issue this command. Example usage: To configure bandwidth control: DGS-3212SR:4#config bandwidth_control 1:1-1:10 tx_rate 10 Command: config bandwidth_control 1:1-1:10 tx_rate 10 Success.
Page 120 DGS-3212SR Layer 3 Gigabit Switch Port RX Rate (Mbit/sec) TX_RATE (Mbit/sec) ---- ------------------------ ---------------------- no_limit no_limit no_limit no_limit no_limit no_limit no_limit no_limit no_limit 1:10 no_limit DGS-3212SR:4# config 802.1p user_priority Purpose Used to map the 802.1p user priority tags of an incoming packet to one of the eight hardware queues available on the switch.
Page 121 802.1p priority tags (specified above) will be mapped Restrictions Only administrator-level users can issue this command. Example usage: To configure 802.1 user priority on the switch: DGS-3212SR:4# config 802.1p user_priority 1 3 Command: config 802.1p user_priority 1 3 Success. DGS-3212SR:4# show 802.1p user_priority Purpose Used to display the current 802.1p user priority tags to hardware...
Page 122 DGS-3212SR Layer 3 Gigabit Switch Priority-3 -> <Class-3> Priority-4 -> <Class-4> Priority-5 -> <Class-5> Priority-6 -> <Class-6> Priority-7 -> <Class-7> DGS-3212SR:4# config 802.1p default_priority Purpose Used to specify default priority settings on the switch. Untagged packets that are received by the switch will be assigned a priority tag in its priority field using this command.
Page 123 DGS-3212SR Layer 3 Gigabit Switch show 802.1 default_priority Purpose Used to display the currently configured 802.1p priority tags that will be assigned to incoming, untagged packets before being forwarded to its destination. Syntax show 802.1p default_priority {<portlist>} Description The show 802.1p default_priority command displays the currently configured 802.1p priority tag that will be assigned to an...
Page 124 DGS-3212SR Layer 3 Gigabit Switch config scheduling_mechanism Purpose Used to configure the scheduling mechanism for the QoS function Syntax config scheduling mechanism [strict | round_robin] Description The config scheduling_mechanism command allows the user to select between a round_robin and a strict mechanism for emptying the priority queues of the QoS function.
Page 125 DGS-3212SR Layer 3 Gigabit Switch show scheduling_mechanism Description This command will display the current traffic scheduling mechanisms in use on the switch. Parameters None. Restrictions None. Example Usage: To show the scheduling mechanism: DGS-3212SR:4#show scheduling_mechanism Command: show scheduling_mechanism QOS scheduling_mechanism...
Page 126: Port Mirroring Commands
DGS-3212SR Layer 3 Gigabit Switch IRRORING OMMANDS The port mirroring commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config mirror port <port> [add | delete] source ports <portlist> [rx | tx | both]...
Page 127 The Target port cannot be listed as a source port. Only administrator-level users can issue this command. Example usage: To add the mirroring ports: DGS-3212SR:4# config mirror port 1:5 add source ports 1:1-1:5 both Command: config mirror port 1:5 add source ports 1:1-1:5 both Success. DGS-3212SR:4#...
Page 128 Restrictions Only administrator-level users can issue this command. Example usage: To delete the mirroring ports: DGS-3212SR:4#config mirror port 1:5 delete source port 1:1-1:5 both Command: config mirror 1:5 delete source 1:1-1:5 both Success. DGS-3212SR:4# enable mirror Purpose Used to enable a previously entered port mirroring configuration.
Page 129 DGS-3212SR Layer 3 Gigabit Switch To enable mirroring configurations: DGS-3212SR:4#enable mirror Command: enable mirror Success. DGS-3212SR:4# disable mirror Purpose Used to disable a previously entered port mirroring configuration. Syntax disable mirror Description This command, combined with the enable mirror command...
Page 130 DGS-3212SR Layer 3 Gigabit Switch To display mirroring configuration: DGS-3212SR:4#show mirror Command: show mirror Current Settings Mirror Status: Enabled Target Port : 1:9 Mirrored Port: TX: 1:1-1:5 DGS-3212SR:4#...
Page 131: Vlan Commands
DGS-3212SR Layer 3 Gigabit Switch VLAN C OMMANDS The VLAN commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters create vlan <vlan_name 32> {tag <vlanid 1-4094> | advertisement} delete vlan <vlan_name 32>...
Page 132 DGS-3212SR Layer 3 Gigabit Switch To create a VLAN v1, tag 2: DGS-3212SR:4#create vlan v1 tag 2 Command: create vlan v1 tag 2 Success. DGS-3212SR:4# delete vlan Purpose Used to delete a previously configured VLAN on the switch. Syntax delete vlan <vlan_name 32>...
Page 133 Restrictions Only administrator-level users can issue this command. Example usage: To add 4 through 8 of module 2 as tagged ports to the VLAN v1: DGS-3212SR:4#config vlan v1 add tagged 2:4-2:8 Command: config vlan v1 add tagged 2:4-2:8 Success. DGS-3212SR:4#...
Page 134 Only administrator-level users can issue this command. Example usage: To set the ingress checking status, the sending and receiving GVRP information : DGS-3212SR:4#config gvrp 1:1-1:4 state enable ingress_checking enable acceptable_frame tagged_only pvid 2 Command: config gvrp 1:1-1:4 state enable ingress_checking enable acceptable_frame tagged_only pvid 2 Success.
Page 135 DGS-3212SR Layer 3 Gigabit Switch Example usage: To enable the generic VLAN Registration Protocol (GVRP): DGS-3212SR:4#enable gvrp Command: enable gvrp Success. DGS-3212SR:4# disable gvrp Purpose Used to disable GVRP on the switch. Syntax disable gvrp Description This command, along with disable gvrp below, is used to enable and disable GVRP on the switch, without changing the GVRP configuration on the switch.
Page 136 DGS-3212SR Layer 3 Gigabit Switch show vlan Restrictions None. Example usage: To display the switch’s current VLAN settings: DGS-3212SR:4#show vlan Command: show vlan VLAN Name : default VLAN TYPE : static Advertisement : Enabled Member ports : 1:1-1:11,2:1-2:11 Static ports...
Page 137 DGS-3212SR Layer 3 Gigabit Switch show gvrp numerical order. Restrictions None. Example usage: To display GVRP port status: DGS-3212SR:4#show gvrp Command: show gvrp Global GVRP : Disabled Port PVID GVRP Ingress Checking Acceptable Frame Type ------ ---- -------- ---------------- ---------------------------...
Page 138: Link Aggregation Commands
DGS-3212SR Layer 3 Gigabit Switch GGREGATION OMMANDS The link aggregation commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters create group_id <value 1-6> {type [lacp | static]} link_aggregation delete group_id <value 1-6>...
Page 139 DGS-3212SR Layer 3 Gigabit Switch create link_aggregation static – This designates the aggregated port group as static. Static port groups can not be changed as easily as LACP compliant port groups since both linked devices must be manually configured if the configuration of the trunked group is changed.
Page 140 This command allows you to configure a link aggregation group that was created with the create link_aggregation command above. The DGS-3212SR supports link aggregation cross box which specifies that link aggregation groups may be spread over multiple switches in the switching stack.
Page 141 DGS-3212SR Layer 3 Gigabit Switch config link_aggregation algorithm Purpose Used to configure the link aggregation algorithm. Syntax config link_aggregation algorithm [mac_source | mac_destination | mac_source_dest | ip_source | ip_destination | ip_source_dest] Description This command configures to part of the packet examined by the switch when selecting the egress port for transmitting load-sharing data.
Page 142 DGS-3212SR Layer 3 Gigabit Switch show link_aggregation Parameters group_id <value 1-6> − Specifies the group ID. The switch allows up to 6 link aggregation groups to be configured. The group number identifies each of the groups. algorithm − Allows you to specify the display of link aggregation by the algorithm in use by that group.
Page 143 DGS-3212SR Layer 3 Gigabit Switch config lacp_ports active – Active LACP ports are capable of processing and sending LACP control frames. This allows LACP compliant devices to negotiate the aggregated link so the group may be changed dynamically as needs require. In order to utilize the...
Page 144 DGS-3212SR Layer 3 Gigabit Switch DGS-3212SR:4#show lacp_port 1:1-1:11 Command: show lacp_port 1:1-1:11 Port Activity ------ -------- Active Active Active Active Active Active Active Active Active 1:10 Active 1:11 Active DGS-3212SR:4#...
Page 145: Basic Ip Commands
DGS-3212SR Layer 3 Gigabit Switch IP C ASIC OMMANDS The IP interface commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config ipif <ipif_name12> [{ipaddress <network_address> | {vlan <vlan_name 32> | state [enable | disable]} | bootp | dhcp] show ipif <ipif_name 12>...
Page 146 DGS-3212SR Layer 3 Gigabit Switch To configure the IP interface System: DGS-3212SR:4#config ipif System ipaddress 10.48.74.122/8 Command: config ipif System ipaddress 10.48.74.122/8 Success. DGS-3212SR:4# show ipif Purpose Used to display the configuration of an IP interface on the switch. Syntax show ipif <ipif_name 12>...
Page 147: Igmp Snooping Commands
DGS-3212SR Layer 3 Gigabit Switch IGMP S NOOPING OMMANDS The switch port commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config igmp_snooping [<vlan_name 32> | all] {host_timeout <sec 1-16711450> | router_timeout <sec 1-16711450>...
Page 148 VLAN. Restrictions Only administrator-level users can issue this command. Example usage: To configure the igmp snooping: DGS-3212SR:4#config igmp_snooping default host_timeout 250 state enable Command: config igmp_snooping default host_timeout 250 state enable Success. DGS-3212SR:4# config igmp_snooping querier Purpose This command configures IGMP snooping querier.
Page 149 [enable | disable] − Allows the switch to be specified as an IGMP Querier or Non-querier. Restrictions Only administrator-level users can issue this command. Example usage: To configure the igmp snooping: DGS-3212SR:4#config igmp_snooping querier default query_interval 125 state enable Command: config igmp_snooping querier default query_interval 125 state enable Success. DGS-3212SR:4#...
Page 150 DGS-3212SR Layer 3 Gigabit Switch enable igmp_snooping Purpose Used to enable IGMP snooping on the switch. Syntax enable igmp_snooping {forward_mcrouter_only} Description This command allows you to enable IGMP snooping on the switch. If forward_mcrouter_only is specified, the switch will only forward all multicast traffic to the multicast router, only.
Page 151 DGS-3212SR Layer 3 Gigabit Switch DGS-3212SR:4#disable igmp_snooping Command: disable igmp_snooping Success. DGS-3212SR:4# config router_ports Purpose Used to configure ports as router ports. Syntax config router_ports <vlan_name 32> [add | delete] <portlist> Description This command allows you to designate a range of ports as being connected to multicast-enabled routers.
Page 152 DGS-3212SR Layer 3 Gigabit Switch show router_ports Purpose Used to display the currently configured router ports on the switch. Syntax show router_ports {vlan <vlan_name 32>} {static | dynamic} Description This command will display the router ports currently configured on the switch.
Page 153 DGS-3212SR Layer 3 Gigabit Switch show igmp_snooping Restrictions None. Example usage: To show igmp snooping: DGS-3212SR:4#show igmp_snooping Command: show igmp_snooping IGMP Snooping Global State : Disabled Multicast router Only : Disabled VLAN Name : default Query Interval : 125 Max Response Time...
Page 154 DGS-3212SR Layer 3 Gigabit Switch show igmp_snooping group the switch. Syntax show igmp_snooping group {vlan <vlan_name 32>} Description This command will display the current IGMP snooping group configuration on the switch. Parameters vlan <vlan_name 32> − The name of the VLAN for which you want to view IGMP snooping group configuration information.
Page 155 DGS-3212SR Layer 3 Gigabit Switch Multicast group: 239.255.255.250 MAC address : 01-00-5E-7F-FF-FA Reports Port Member : 1:8,2:4 VLAN Name : default Multicast group: 239.255.255.254 MAC address : 01-00-5E-7F-FF-FE Reports Port Member : 1:5,2:5 Total Entries DGS-3212SR:4# show igmp_snooping forwarding Purpose Used to display the IGMP snooping forwarding table entries on the switch.
Page 156 DGS-3212SR Layer 3 Gigabit Switch DGS-3212SR:4#show igmp_snooping forwarding vlan Trinity Command: show igmp_snooping forwarding vlan Trinity VLAN Name : Trinity Multicast group : 224.0.0.2 MAC address : 01-00-5E-00-00-02 Port Member : 1:11 Total Entries: 1 DGS-3212SR:4#...
Page 157: Mac Notification Commands
DGS-3212SR Layer 3 Gigabit Switch MAC N OTIFICATION OMMANDS The MAC Notification Commands in the Command Line Interface (CLI) are listed, in the following table, along with their appropriate parameters. Command Parameters enable mac_notification disable mac_notification config mac_notification {interval <int 1-2147483647> | historysize <int 1-500>} config mac_notification ports [<portlist>...
Page 158 Restrictions Only administrator-level users can issue this command. Example usage: To configure the switch’s MAC address table notification global settings: DGS-3212SR:4#config mac_notification interval 1 historysize 500 Command: config mac_notification interval 1 historysize 500 Success. DGS-3212SR:4#...
Page 159 DGS-3212SR Layer 3 Gigabit Switch config mac_notification ports Purpose Used to configure MAC address notification status settings. Syntax config mac_notification ports [<portlist | all] [enable | disable] Description MAC address notification is used to monitor MAC addresses learned and entered into the FDB.
Page 160 DGS-3212SR Layer 3 Gigabit Switch DGS-3212SR:4#show mac_notification Command: show mac_notification Global Mac Notification Settings State : Enabled Interval History Size : 1 DGS-3212SR:4# show mac_notification ports Purpose Used to display the switch’s MAC address table notification status settings Syntax show mac_notification ports {<portlist>} Description This command is used to display the switch’s MAC address table...
Page 161 DGS-3212SR Layer 3 Gigabit Switch Disabled Disabled Disabled Disabled Disabled 1:10 Disabled 1:11 Disabled 1:12 Disabled CTRL+C ESC q Quit SPACE n Next Page p Previous Page r Refresh...
Page 162: Access Authentication Control Commands
DGS-3212SR Layer 3 Gigabit Switch CCESS UTHENTICATION ONTROL OMMANDS The TACACS / XTACACS / TACACS+ / RADIUS commands let you secure access to the switch using the TACACS / XTACACS / TACACS+ / RADIUS protocols. When a user logs in to the switch or tries to access the administrator level privilege, he or she is prompted for a password.
Page 163 DGS-3212SR Layer 3 Gigabit Switch NOTE: TACACS, XTACACS and TACACS+ are separate entities and are not compatible. The switch and the server must be configured exactly the same, using the same protocol. (For example, if the switch is set up for TACACS authentication, so must be the host server.)
Page 164 DGS-3212SR Layer 3 Gigabit Switch Command Parameters radius] show authen server_host config authen parameter <int 1-255> response_timeout config authen parameter attempt <int 1-255> show authen parameter enable admin config admin local_enable Each command is listed, in detail, in the following sections.
Page 165 DGS-3212SR Layer 3 Gigabit Switch disable authen_policy Parameters None. Restrictions Only administrator-level users can issue this command. Example usage: To disable the system access authentication policy: DGS-3212SR:4#disable authen_policy Command: disable authen_policy Success. DGS-3212SR:4# show authen_policy Purpose Used to display the system access authentication policy status on the switch.
Page 166 DGS-3212SR Layer 3 Gigabit Switch create authen_login method_list_name Description This command is used to create a list for authentication techniques for user login. The switch can support up to eight method lists, but one is reserved as a default and cannot be deleted. Multiple method lists must be created and configured separately.
Page 167 DGS-3212SR Layer 3 Gigabit Switch config authen_login Parameters default – The default method list for access authentication, as defined by the user. The user may choose one or a combination of up to four (4) of the following authentication methods: tacacs –...
Page 168 DGS-3212SR Layer 3 Gigabit Switch config authen_login method_list_name – Enter a previously implemented method list name defined by the user. The user may add one, or a combination of up to four (4) of the following authentication methods to this method list: tacacs –...
Page 169 DGS-3212SR Layer 3 Gigabit Switch To configure the default method list with authentication methods xtacacs, tacacs+ and local, in that order: DGS-3212SR:4#config authen_login default method xtacacs tacacs+ local Command: config authen_login default method xtacacs tacacs+ local Success. DGS-3212SR:4# delete authen_login method_list_name...
Page 170 DGS-3212SR Layer 3 Gigabit Switch show authen_login to the switch. Priority ranges from 1(highest) to 4 (lowest). Method Name – Defines which security protocols are implemented, per method list name. Comment – Defines the type of Method. User-defined Group refers to server group defined by the user. Built-in Group refers to the TACACS, XTACACS, TACACS+ or RADIUS security protocols which are permanently set in the switch.
Page 171 DGS-3212SR Layer 3 Gigabit Switch create authen_enable method_list_name Syntax create authen_enable method_list_name <string 15> Description This command is used to promote users with normal level privileges to Administrator level privileges using authentication methods on the switch. Once a user acquires normal user level...
Page 172 DGS-3212SR Layer 3 Gigabit Switch config authen_enable password set in the switch is used to authenticate the user. Successful authentication using any of these methods will give the user a “Admin” privilege.
Page 173 DGS-3212SR Layer 3 Gigabit Switch config authen_enable Parameters default – The default method list for administration rights authentication, as defined by the user. The user may choose one or a combination of up to four (4) of the following authentication methods: tacacs –...
Page 174 Success. DGS-3212SR:4# Example usage: To configure the default method list with authentication methods xtacacs, tacacs+ and local, in that order: DGS-3212SR:4#config authen_enable default method xtacacs tacacs+ local Command: config authen_enable default method xtacacs tacacs+ local Success. DGS-3212SR:4# delete authen_enable method_list_name...
Page 175 DGS-3212SR Layer 3 Gigabit Switch delete authen_enable method_list_name define the given enable method list the user wishes to delete. Restrictions Only administrator-level users can issue this command. Example usage: To delete the user-defined method list “Permit” DGS-3212SR:4#delete authen_enable method_list_name Permit Command: delete authen_enable method_list_name Permit Success.
Page 176 DGS-3212SR Layer 3 Gigabit Switch show authen_enable 15 characters to define the given method list the user wishes to view. all – Entering this parameter will display all the authentication login methods currently configured on the switch. Restrictions None Example usage: To display all method lists for promoting user level privileges to administrator level privileges.
Page 177 Restrictions Only administrator-level users can issue this command. Example usage: To configure the default method list for the web interface: DGS-3212SR:4#config authen application http login default Command: config authen application http login default Success. DGS-3212SR:4# show authen application...
Page 178 DGS-3212SR Layer 3 Gigabit Switch Example usage: To display the login and enable method list for all applications on the switch: DGS-3212SR:4#show authen application Command: show authen application Application Login Method List Enable Method List ---------------- ------------------ ------------------------ Console default...
Page 179 To create a TACACS+ authentication server host, with port number 1234, a timeout value of 10 seconds and a retransmit count of 5. DGS-3212SR:4#create authen server_host 10.1.1.121 protocol tacacs+ port 1234 timeout 10 retransmit 5 Command: create authen server_host 10.1.1.121 protocol tacacs+ port 1234 timeout 10 retransmit 5 Success.
Page 180 DGS-3212SR Layer 3 Gigabit Switch config authen server_host host. The TACACS/XTACACS/TACACS+/RADIUS server host will then verify or deny the request and return the appropriate message to the switch. More than one authentication protocol can be run on the same physical server host but, remember that TACACS/XTACACS/TACACS+/RADIUS are separate entities and are not compatible with each other.
Page 181 - Enter this parameter if the server host utilizes the RADIUS protocol. Restrictions Only administrator-level users can issue this command. Example usage: To delete a user-defined TACACS+ authentication server host: DGS-3212SR:4#delete authen server_host 10.1.1.121 protocol tacacs+ Command: delete authen server_host 10.1.1.121 protocol tacacs+ Success. DGS-3212SR:4# show authen server_host Purpose Used to view a user-defined authentication server host.
Page 182 DGS-3212SR Layer 3 Gigabit Switch show authen server_host Description This command is used to view user-defined authentication server hosts previously created on the switch. The following parameters are displayed: IP address – The IP address of the authentication server host.
Page 183 DGS-3212SR Layer 3 Gigabit Switch create authen server_group TACACS/XTACACS/TACACS+/RADIUS server hosts into user defined categories for authentication using method lists. The user may add up to eight (8) authentication server hosts to this group using the config authen server_group command.
Page 184 RADIUS authentication protocol. Restrictions Only administrator-level users can issue this command. Example usage: To add an authentication host to server group “group_1”: DGS-3212SR:4#config authen server_group group_1 add server_host 10.1.1.121 protocol tacacs+ Command: config authen server_group group_1 add server_host 10.1.1.121 protocol tacacs+ Success.
Page 185 DGS-3212SR Layer 3 Gigabit Switch delete authen server_group Parameters <string 15> - Enter an alphanumeric string of up to 15 characters to define the previously created server group the user wishes to delete. Restrictions Only administrator-level users can issue this command.
Page 186 Restrictions Only administrator-level users can issue this command. Example usage: To configure the response timeout for 60 seconds: DGS-3212SR:4# config authen parameter response_timeout 60 Command: config authen parameter response_timeout 60 Success. DGS-3212SR:4# config authen parameter attempt...
Page 187 DGS-3212SR Layer 3 Gigabit Switch config authen parameter attempt Parameters parameter attempt <int 1-255> - Set the maximum number of attempts the user may try to become authenticated by the switch, before being locked out. Restrictions Only administrator-level users can issue this command.
Page 188 DGS-3212SR Layer 3 Gigabit Switch DGS-3212SR:4# enable admin Purpose Used to promote user level privileges to administrator level privileges Syntax enable admin Description This command is for users who have logged on to the switch on the normal user level, to become promoted to the administrator level.
Page 189 DGS-3212SR Layer 3 Gigabit Switch config admin local_enable Purpose Used to configure the local enable password for administrator level privileges. Syntax config admin local_enable Description This command will configure the locally enabled password for the enable admin command. When a user chooses the “local_enable”...
Page 190: Ssh Commands
DGS-3212SR Layer 3 Gigabit Switch SSH C OMMANDS The steps required to use the SSH protocol for secure communication between a remote PC (the SSH Client) and the Switch (the SSH Server), are as follows: Create a user account with admin-level access using the create account admin <username> <password> command.
Page 191 DGS-3212SR Layer 3 Gigabit Switch enable shh Syntax enable ssh Description This command allows you to enable SSH on the switch. Parameters None. Restrictions Only administrator-level users can issue this command. Usage Example: To enable SSH: DGS-3212SR:4#enable ssh Command: enable ssh Success.
Page 192 DGS-3212SR Layer 3 Gigabit Switch config ssh authmode [enable | disable] Description This command will allow you to configure the SSH authentication mode for users attempting to access the switch. Parameters password – This parameter may be chosen if the administrator wishes to use a locally configured password for authentication on the switch.
Page 193 The default TCP port number for SSH is 22. Restrictions Only administrator-level users can issue this command. Usage Example: To configure the SSH server: DGS-3212SR:4# config ssh server maxsession 2 contimeout 300 authfail 2 Command: config ssh server maxsession 2 contimeout 300 authfail 2 Success.
Page 194 DGS-3212SR Layer 3 Gigabit Switch DGS-3212SR:4# show ssh server Purpose Used to display the SSH server setting. Syntax show ssh server Description This command allows you to display the current SSH server setting. Parameters None. Restrictions None. Usage Example: To display the SSH server:...
Page 195 None – Choose this parameter if no authentication is desired. Restrictions Only administrator-level users can issue this command. Example usage: To configure the SSH user: DGS-3212SR:4# config ssh user Trinity authmode Password Command: config ssh user Trinity authmode Password Success. DGS-3212SR:4# show ssh user authmode Purpose Used to display the SSH user setting.
Page 196 DGS-3212SR Layer 3 Gigabit Switch DGS-3212SR:4#show ssh user authmode Command: show ssh user authmode Current Accounts: Authentication UserName -------------------------- -------------------------- Trinity Publickey Success. DGS-3212SR:4# Note: To configure the SSH user, the administrator must create a user account on the switch. For information concerning configuring a user account, please see the section of this manual entitled Basic Switch Commands and then the command, create user account.
Page 197 [enable | disable] – This allows you to enable or disable algorithms entered in this command, on the switch. Restrictions Only administrator-level users can issue this command. Usage Example: To configure SSH algorithm: DGS-3212SR:4# config ssh algorithm blowfish enable Command: config ssh algorithm blowfish enable Success. DGS-3212SR:4# show ssh algorithm Purpose Used to display the SSH algorithm setting.
Page 198 DGS-3212SR Layer 3 Gigabit Switch 3DES :Enable AES128 :Enable AES192 :Enable AES256 :Enable ARC4 :Enable Blowfish :Enable Cast128 :Enable Twofish128 :Enable Twofish192 :Enable Twofish256 :Enable :Enable :Enable :Enable :Enable Success. DGS-3212SR:4#...
Page 199: Ssl Commands
DGS-3212SR Layer 3 Gigabit Switch SSL C OMMANDS Secure Sockets Layer or SSL is a security feature that will provide a secure communication path between a host and client through the use of authentication, digital signatures and encryption. These security functions are implemented through the use of...
Page 200 DGS-3212SR Layer 3 Gigabit Switch Command Parameters show certificate Each command is listed, in detail, in the following sections. enable ssl Purpose To enable the SSL function on the switch. Syntax enable ssl {ciphersuite {RSA_with_RC4_128_MD5 | RSA_with_3DES_EDE_CBC_SHA | DHE_DSS_with_3DES_EDE_CBC_SHA |...
Page 201 DGS-3212SR Layer 3 Gigabit Switch NOTE: Enabling the SSL function on the switch will disable the port for the web manager (port 80). To log on to the web based manager, the entry of your URL must begin with https://. (ex. https://10.90.90.90)
Page 202 DGS-3212SR Layer 3 Gigabit Switch DGS-3212SR:4#disable ssl ciphersuite RSA_EXPORT_with_RC4_40_MD5 Command: disable ssl ciphersuite RSA_EXPORT_with_RC4_40_MD5 Success. DGS-3212SR:4# show ssl Purpose Used to view the SSL status and the certificate file status on the switch. Syntax show ssl Description This command is used to view the SSL status on the switch.
Page 203 DGS-3212SR Layer 3 Gigabit Switch download certificate certificate files for optimal use of the SSL function. The switch only supports certificate files with .der file extensions. Parameters <ipaddr> - Enter the IP address of the TFTP server. certfilename <path_filename 64> - Enter the path and the filename of the certificate file you wish to download.
Page 204: Commands
802.1X C OMMANDS The DGS-3212SR implements the server-side of the IEEE 802.1x Port-based Network Access Control. This mechanism is intended to allow only authorized users, or other network devices, access to network resources by establishing criteria for each port on the switch that a user or network device must meet before allowing that port to forward or receive frames.
Page 205 DGS-3212SR Layer 3 Gigabit Switch enable 802.1x Purpose Used to enable the 802.1x server on the switch. Syntax enable 802.1x Description The enable 802.1x command enables the 802.1x Port-based Network Access control server application on the switch. Parameters None. Restrictions Only administrator-level users can issue this command.
Page 206 DGS-3212SR Layer 3 Gigabit Switch show 802.1x auth_configuration Purpose Used to display the current configuration of the 802.1x server on the switch. Syntax show 802.1x auth_configuration {ports [<portlist>} Description The show 802.1x command is used to display the current configuration of the 802.1x Port-based Network Access Control...
Page 207 DGS-3212SR Layer 3 Gigabit Switch show 802.1x auth_configuration Parameters ports <portlist> − Specifies a range of ports. The port list is specified by listing the lowest switch number and the beginning port number on that switch, separated by a colon. Then the highest switch number, and the highest port number of the range (also separated by a colon) are specified.
Page 208 DGS-3212SR Layer 3 Gigabit Switch show 802.1x auth_configuration ReAuthPeriod − Shows the time interval between successive re- authentications. ReAuthenticate: Enabled/Disabled − Shows whether or not to re- authenticate. Restrictions Only administrator-level users can issue this command. Example usage: To display the 802.1x authentication states (stacking disabled): DGS-3212SR:4#show 802.1x auth_configuration ports 1...
Page 209 DGS-3212SR Layer 3 Gigabit Switch show 802.1x auth_state Parameters ports <portlist> − Specifies a range of ports. The port list is specified by listing the lowest switch number and the beginning port number on that switch, separated by a colon. Then highest switch number, and the highest port number of the range (also separated by a colon) are specified.
Page 210 DGS-3212SR Layer 3 Gigabit Switch 1:12 ForceAuth Success Authorized CTRL+C ESC q Quit SPACE n Next Page Enter Next Entry config 802.1x auth_mode Purpose Used to configure the 802.1x authentication mode on the switch. Syntax config 802.1x auth_mode [port_based | mac_based] Description The config 802.1x auth_mode command is used to enable either...
Page 211 Restrictions Only administrator-level users can issue this command. Example usage: To configure 802.1x capability on ports 1-10 on switch 1: DGS-3212SR:4#config 802.1x capability ports 1:1 – 1:10 authenticator Command: config 802.1x capability ports 1:1 – 1:10 authenticator Success. DGS-3212SR:4# config 802.1x auth_parameter Purpose Used to configure the 802.1x Authentication parameters on a...
Page 212 DGS-3212SR Layer 3 Gigabit Switch config 802.1x auth_parameter Parameters <portlist> − Specifies a range of ports. The port list is specified by listing the lowest switch number and the beginning port number on that switch, separated by a colon. Then the highest switch number, and the highest port number of the range (also separated by a colon) are specified.
Page 213 Only administrator-level users can issue this command. Example usage: To configure 802.1x authentication parameters for ports 1 – 20 of switch 1: DGS-3212SR:4#config 802.1x auth_parameter ports 1:1 – 1:20 direction both Command: config 802.1x auth_parameter ports 1:1-1:20 direction both Success.
Page 214 Restrictions Only administrator-level users can issue this command. Example usage: To initialize the authentication state machine of some or all: DGS-3212SR:4# config 802.1x init port_based ports all Command: config 802.1x init port_based ports all Success. DGS-3212SR:4# config 802.1x reauth Purpose Used to configure the 802.1x re-authentication feature of the...
Page 215 Restrictions Only administrator-level users can issue this command. Example usage: To configure 802.1x reauthentication for ports 1-10: DGS-3212SR:4#config 802.1x reauth port_based ports 1:1-1:18 Command: config 802.1x reauth port_based ports 1:1-1:18 Success. DGS-3212SR:4# config radius add Purpose Used to add a new RADIUS server.
Page 216 The default is 1813. Restrictions Only administrator-level users can issue this command. Example usage: To configure the RADIUS server communication settings: DGS-3212SR:4#config radius add 1 10.48.74.121 key dlink default Command: config radius add 1 10.48.74.121 key dlink default Success. DGS-3212SR:4# config radius delete Purpose Used to delete a previously entered RADIUS server configuration.
Page 217 <udp_port_number> − The UDP port number for accounting requests. The default is 1813. Restrictions Only administrator-level users can issue this command. Example usage: To configure the RADIUS settings: DGS-3212SR:4#config radius 1 10.48.74.121 key dlink default Command: config radius 1 10.48.74.121 key dlink default Success. DGS-3212SR:4#...
Page 218 DGS-3212SR Layer 3 Gigabit Switch show radius Purpose Used to display the current RADIUS configurations on the switch. Syntax show radius Description The show radius command is used to display the current RADIUS configurations on the switch. Parameters None. Restrictions None.
Page 219: Access Control List (Acl) Commands
OMMANDS The DGS-3212SR implements Access Control Lists that enable the switch to deny network access to specific devices or device groups based on IP settings or MAC address. The ACL commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
Page 220 DGS-3212SR Layer 3 Gigabit Switch Creating an access profile is divided into two basic parts. First, an access profile must be created using the create access_profile command. For example, if you want to deny all traffic to the subnet 10.42.73.0 to 10.42.73.255, you must first create an access profile that instructs the switch to examine all of the relevant fields of each frame: create access_profile ip source_ip_mask 255.255.255.0 profile_id 1...
Page 221 DGS-3212SR Layer 3 Gigabit Switch create access_profile 0xffffffff><hex 0x0-0xffffffff><hex 0x0-0xffffffff> | offset_32-47 <hex 0x0-0xffffffff><hex 0x0-0xffffffff><hex 0x0-0xffffffff><hex 0x0-0xffffffff> | offset_48-63 <hex 0x0-0xffffffff><hex 0x0- 0xffffffff><hex 0x0-0xffffffff><hex 0x0-0xffffffff> | offset_64-79 <hex 0x0-0xffffffff><hex 0x0-0xffffffff><hex 0x0-0xffffffff><hex 0x0-0xffffffff>}]{port[<portlist>|all]}[profile_id <value 1-255>] Description The create access_profile command is used to create an access profile on the switch and to define which parts of each incoming frame’s header the switch will examine.
Page 222 DGS-3212SR Layer 3 Gigabit Switch create access_profile Parameters ethernet − Specifies that the switch will examine the layer 2 part of each packet header. vlan − Specifies that the switch will examine the VLAN part • of each packet header.
Page 223 DGS-3212SR Layer 3 Gigabit Switch create access_profile tcp − Specifies that the switch will examine each frames • Transport Control Protocol (TCP) field. src_port_mask <hex 0x0-0xffff> − Specifies a TCP port • mask for the source port. dst_port_mask <hex 0x0-0xffff> − Specifies a TCP port •...
Page 224 Example usage: To create an access profile that will deny service to the subnet ranging from 10.42.73.0 to 10.42.73.255: DGS-3212SR:4#create access_profile ip vlan source_ip_mask 20.0.0.0 destination_ip_mask 10.0.0.0 dscp icmp type code permit profile_id 101 Command: create access_profile ip vlan source_ip_mask 20.0.0.0 destination_ip_mask 10.0.0.0 dscp icmp type code permit profile_id 101...
Page 225 DGS-3212SR Layer 3 Gigabit Switch Command: delete access_profile profile_id 1 Success. DGS-3212SR:4# config access_profile profile_id Purpose Used to configure an access profile on the switch and to define specific values that will be used to by the switch to determine if a given packet should be forwarded or filtered.
Page 226 DGS-3212SR Layer 3 Gigabit Switch config access_profile profile_id Parameters profile_id <value 1-255> − Enter an integer between 1 and 255 that is used to identify the access profile that will be deleted with this command. This value is assigned to the access profile when it is created with the create access_profile command.
Page 227 DGS-3212SR Layer 3 Gigabit Switch config access_profile profile_id igmp − Specifies that the switch will examine the Internet Group • Management Protocol (IGMP) field within each packet. type <value 0-255> − Specifies that the access profile will • apply to packets that have this IGMP type value.
Page 228 To configure the access profile with the profile ID of 1 to filter frames that have IP addresses in the range between 10.42.73.0 to 10.42.73.255: DGS-3212SR:4# config access_profile profile_id 2 add access_id 1 ip source_ip 10.42.73.1 deny Command: config access_profile profile_id 1 add access_id 1 ip source_ip 10.42.73.1 deny...
Page 229 DGS-3212SR Layer 3 Gigabit Switch DGS-3212SR:4# show access_profile Purpose Used to display the currently configured access profiles on the switch. Syntax show access_profile {profile_id <value 1-255>} Description The show access_profile command is used to display the currently configured access profiles Parameters profile_id <value 1-255>...
Page 230: Traffic Segmentation Commands
DGS-3212SR Layer 3 Gigabit Switch RAFFIC EGMENTATION OMMANDS Traffic segmentation allows you to further sub-divide VLANs into smaller groups of ports that will help to reduce traffic on the VLAN. The VLAN rules take precedence, and then the traffic segmentation rules are applied. The traffic segmentation commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
Page 231 DGS-3212SR Layer 3 Gigabit Switch Example usage: To configure ports 1 through 9 to be able to forward frames to port 10 through 12: DGS-3212SR:4# config traffic_segmentation 1 9 forward_list 1 10-1 Command: config traffic_segmentation 1 9 forward_list 1 10-1 Success.
Page 232 DGS-3212SR Layer 3 Gigabit Switch 1:1-1:12,2:1-2:12 1:1-1:12,2:1-2:12 1:1-1:12,2:1-2:12 1:1-1:12,2:1-2:12 1:1-1:12,2:1-2:12 1:10 1:1-1:12,2:1-2:12 1:11 1:1-1:12,2:1-2:12 1:12 1:1-1:12,2:1-2:12 DGS-3212SR:4#...
Page 233: Stacking Commands
DGS-3212SR Layer 3 Gigabit Switch TACKING OMMANDS The stacking configuration commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config stacking mode [ disable{ports[<portlist>]} | enable {ports[<portlist>]}] show stacking mode Each command is listed, in detail, in the following sections.
Page 234 It is also possible to use any of the built-in combination ports for stacking. Follow the example below to enable stacking for a built-in port. To configure built-n port number 4 to function as a stacking port: DGS-3212SR:4#config stacking mode enable ports 4 Command: config stacking mode enable ports 4 The new stacking mode configuration must be saved and the system restarted to put the new settings into effect.
Page 235 DGS-3212SR Layer 3 Gigabit Switch show stacking Purpose Used to display the current stacking mode. Syntax show stacking {mode} Description This command will display the current stacking configurations, and mode, if specified. Parameters mode − Displays the current stacking mode.
Page 236: D-Link Single Ip Management Commands
ANAGEMENT OMMANDS Simply put, D-Link Single IP Management is a concept that will stack switches together over Ethernet instead of using stacking ports or modules. Switches using Single IP Management (labeled here as SIM) must conform to the following rules: SIM is an optional feature on the switch and can easily be enabled or disabled.
Page 237 DGS-3212SR Layer 3 Gigabit Switch 1. Each device begins in a Commander state. 2. CS’s must change their role to CaS and then to MS, to become a MS of a SIM group. Thus, the CS cannot directly be converted to a MS.
Page 238 DGS-3212SR Layer 3 Gigabit Switch enable sim Description This command will enable SIM globally on the switch. SIM features and functions will not function properly unless this function is enabled. Parameters None. Restrictions Only administrator-level users can issue this command.
Page 239 DGS-3212SR Layer 3 Gigabit Switch show sim Syntax show sim {[candidates {<candidate_id 1-32>} | members {<member_id 1-32>} | group {commander_mac <macaddr>} neighbor]} Description This command will display the current information regarding the SIM group on the switch, including the following: SIM Version - Displays the current Single IP Management version on the switch.
Page 240 DGS-3212SR Layer 3 Gigabit Switch show sim located. MAC Address – Displays the MAC Address of the neighbor switch. Role – Displays the role (CS, CaS, MS) of the neighbor switch. Restrictions Only administrator-level users can issue this command. Example usage:...
Page 241 DGS-3212SR Layer 3 Gigabit Switch DGS-3212SR:4#show sim member Command: show sim member ID MAC Address Platform / Hold Firmware Device Name Capability Time Version --- ----------------- ------------------------ ---- --------- ---------------- 00-01-04-03-04-00 DGS-3212SR L2 Switch 3.00-B09 The Man 00-55-35-00-55-00 DGS-3212SR L2 Switch 3.00-B09...
Page 242 DGS-3212SR Layer 3 Gigabit Switch DGS-3212SR:4# Example usage: To view SIM neighbors: DGS-3212SR:4#show sim neighbor Command: show sim neighbor Neighbor Info Table Port MAC Address Role ------ ------------------------- --------- 00-35-26-00-11-99 Commander 00-35-26-00-11-91 Member 00-35-26-00-11-90 Candidate Total Entries: 3 DGS-3212SR:4# reconfig...
Page 243 DGS-3212SR Layer 3 Gigabit Switch config sim_group Purpose Used to add candidates and delete members from the SIM group. Syntax config sim [add <candidate_id 1-32> {<password>} | delete <member_id 1-32>] Description This command is used to add candidates and delete members from the SIM group by id number.
Page 244 DGS-3212SR Layer 3 Gigabit Switch config sim Purpose Used to configure role parameters for the SIM protocol on the switch. Syntax config sim [{[ commander {group_name <groupname 64> | candidate] | dp_interval <30-90> | hold_time <sec 100-255>}] Description This command is used to configure parameters of switches of the SIM.
Page 245 DGS-3212SR Layer 3 Gigabit Switch DGS-3212SR:4# To change the hold time of the discovery protocol: DGS-3212SR:4# config sim commander hold_time 120 Command: config sim commander hold_time 120 Success. DGS-3212SR:4# To transfer the switch to be a commander: DGS-3212SR:4#config sim commander Command: config sim commander Success.
Page 246 DGS-3212SR Layer 3 Gigabit Switch download sim_ms members – Enter this parameter to specify the members the user prefers to download firmware or switch configuation files to. The user may specify a member or members by adding one of the following: <mslist 1-32>...
Page 247 ID number of the specified member. Restrictions Only administrator-level users can issue this command. Example usage: To upload configuration files to a TFTP server: DGS-3212SR:4#upload sim_ms configuration 10.55.47.1 D:\configuration.txt 1 Command: upload sim_ms configuration 10.55.47.1 D:\configuration.txt 1 Success. DGS-3212SR:4#...
Page 248: Time And Sntp Commands
DGS-3212SR Layer 3 Gigabit Switch SNTP C IME AND OMMANDS The Simple Network Time Protocol (SNTP) (an adaptation of the Network Time Protocol (NPT)) commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table.
Page 249 Only administrator-level users can issue this command. SNTP service must be enabled for this command to function (enable sntp). Example usage: To configure SNTP settings: DGS-3212SR:4#config sntp primary 10.1.1.1 secondary 10.1.1.2 poll-interval 30 Command: config sntp primary 10.1.1.1 secondary 10.1.1.2 poll-interval 30 Success. DGS-3212SR:4# show sntp Purpose Used to display the SNTP information.
Page 250 DGS-3212SR Layer 3 Gigabit Switch enable sntp Purpose Enables SNTP server support. Syntax enable sntp Description This will enable SNTP support. SNTP service must be separately configured (see config sntp).Enabling and configuring SNTP support will override any manually configured system time settings.
Page 251 DGS-3212SR Layer 3 Gigabit Switch config time Purpose Used to manually configure system time and date settings. Syntax config time date <date ddmmmyyyy> <time hh:mm:ss> Description This will configure the system time and date settings. These will be overridden if SNTP is configured and enabled.
Page 252 DGS-3212SR Layer 3 Gigabit Switch To configure time zone settings: DGS-3212SR:4#config time_zone operator + hour 2 min 30 Command: config time_zone operator + hour 2 min 30 Success. DGS-3212SR:4# config dst Purpose Used to enable and configure time adjustments to allow for the use of Daylight Savings Time (DST).
Page 253 DGS-3212SR Layer 3 Gigabit Switch config dst Parameters disable - Disable the DST seasonal time adjustment for the Switch. repeating - Using repeating mode will enable DST seasonal time adjustment. Repeating mode requires that the DST beginning and ending date be specified using a formula. For example, specify to begin DST on Saturday during the second week of April and end DST on Sunday during the last week of October.
Page 254 Example usage: To configure daylight savings time on the switch: DGS-3212SR:4#config dst repeating s_week 2 s_day tue s_mth 4 s_time 15:00 e_week 2 e_day wed e_mth 10 e_time 15:30 offset 30 Command: config dst repeating s_week 2 s_day tue s_mth 4 s_time 15:00 e_week 2 e_day wed e_mth 10 e_time 15:30 offset 30 Success.
Page 255 DGS-3212SR Layer 3 Gigabit Switch DGS-3212SR:4#show time Command: show time Current Time Source : System Clock Current Time : 10 Jul 2003 01:43:41 Time Zone : GMT +02:30 Daylight Saving Time : Repeating Offset in Minutes : 60 Repeating From...
Page 256: Arp Commands
DGS-3212SR Layer 3 Gigabit Switch ARP C OMMANDS The ARP commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters create arpentry <ipaddr> <macaddr> delete arpentry [<ipaddr> | all] show arpentry {ipif <ipif_name 12>...
Page 257 DGS-3212SR Layer 3 Gigabit Switch delete arpentry Syntax delete arpentry {<ipaddr> | all} Description This command is used to delete a static ARP entry, made using the create arpentry command above, by specifying either the IP address of the entry or all. Specifying all clears the switch’s ARP table.
Page 258 DGS-3212SR Layer 3 Gigabit Switch DGS-3212SR:4# show arpentry Purpose Used to display the ARP table. Syntax {ipif <ipif_name 12> | ipaddress <ipaddr> | static} Description This command is used to display the current contents of the switch’s ARP table. <ipif_name 12> − The name of the IP interface the end node or Parameters station for which the ARP table entry was made, resides on.
Page 259 DGS-3212SR Layer 3 Gigabit Switch clear arptable Purpose Used to remove all dynamic ARP table entries. Syntax clear arptable Description This command is used to remove dynamic ARP table entries from the switch’s ARP table. Static ARP table entries are not affected.
Page 260 DGS-3212SR Layer 3 Gigabit Switch...
Page 261: Routing Table Commands
DGS-3212SR Layer 3 Gigabit Switch OUTING ABLE OMMANDS The routing table commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters create iproute default <ipaddr> {<metric 1-65535>} delete iproute default show iproute {<network_address>} {static}...
Page 262 Parameters None. Restrictions Only administrator-level users can issue this command. Example usage: To delete the default IP route 10.53.13.254: DGS-3212SR:4#delete iproute default Command: delete iproute default Success. DGS-3212SR:4# show iproute Purpose Used to display the switch’s current IP routing table.
Page 263 DGS-3212SR Layer 3 Gigabit Switch...
Page 264: Command History List
DGS-3212SR Layer 3 Gigabit Switch OMMAND ISTORY The command history list commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters show command_history config command_history <value 1-40> Each command is listed, in detail, in the following sections.
Page 265 DGS-3212SR Layer 3 Gigabit Switch config 802.1x reauth config access profile profile_id config account config admin local_enable config all_boxes_id config arp_aging time config authen_application CTRL+C ESC q Quit SPACE n Next Page ENTER Next Entry a All show command_history Purpose Used to display the command history.
Page 266 DGS-3212SR Layer 3 Gigabit Switch config command_history Purpose Used to configure the command history. Syntax config command_history <value 1-40> Description This command is used to configure the command history. <value 1-40> − The number of previously executed commands Parameters maintained in the buffer. Up to 40 of the latest executed commands may be viewed.
Page 267: Technical Specifications
DGS-3212SR Layer 3 Gigabit Switch ECHNICAL PECIFICATIONS Physical and Environmental AC input & External Redundant 100 – 120; 200 - 240 VAC, 50/60 Hz (internal power Supply: universal power supply) Power Consumption: 90 watts maximum DC fans: 2 built-in 40 x 40 x10 mm fans...
Page 268 DGS-3212SR Layer 3 Gigabit Switch General Protocols: CSMA/CD Data Transfer Rates: Half-duplex Full-duplex Ethernet 10 Mbps 20Mbps Fast Ethernet 100Mbps 200Mbps Gigabit Ethernet 2000Mbps Fiber Optic SFP (Mini GBIC) Support IEEE 802.3z 1000BASE-LX (DEM-310GT transceiver) IEEE 802.3z 1000BASE-SX (DEM-311GT transceiver) IEEE 802.3z 1000BASE-LH (DEM-314GT...
Page 269 DGS-3212SR Layer 3 Gigabit Switch Performance 1,488,100 pps per port (for 1000Mbps) MAC Address Learning: Automatic update. Forwarding Table Age Time: Max age: 10 - 1000000 seconds. Default = 300.

D-Link DGS-3212SR Command Line Interface Reference Manual

Quick Links

Related Manuals for D-Link DGS-3212SR

Summary of Contents for D-Link DGS-3212SR

Table of Contents