1. Manuals
  2. Brands
  3. D-Link Manuals
  4. Network Router
  5. xStack DGS-3426
  6. Cli manual

D-Link xStack DGS-3426 Cli Manual

Xstack dgs-3400 series layer 2 gigabit ethernet managed switch
Hide thumbs Also See for xStack DGS-3426:
Table of Contents

Advertisement

Quick Links

Download this manual See also: Reference Manual, User Manual
CLI Manual
DGS-3400 Series
Product Model:
Layer 2 Gigabit Ethernet Managed Switch
Release 1.2
.

Advertisement

Table of Contents
loading

Related Manuals for D-Link xStack DGS-3426

Summary of Contents for D-Link xStack DGS-3426

  • Page 1 CLI Manual DGS-3400 Series Product Model: Layer 2 Gigabit Ethernet Managed Switch Release 1.2...
  • Page 2 May 2006 651GS3400025G RECYCLABLE...

  • Page 3: Table Of Contents

    TIME AND SNTP COMMANDS ..........................172 ARP COMMANDS..............................177 ROUTING TABLE COMMANDS..........................182 MAC NOTIFICATION COMMANDS ........................188 ACCESS AUTHENTICATION CONTROL COMMANDS ..................192 SSH COMMANDS..............................212 SSL COMMANDS ..............................219 JUMBO FRAME COMMANDS ..........................225 D-LINK SINGLE IP MANAGEMENT COMMANDS....................227 COMMAND HISTORY LIST.............................237 MODIFY BANNER AND PROMPT COMMANDS ....................240 TECHNICAL SPECIFICATIONS..........................243...

  • Page 4: Introduction

    DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual NTRODUCTION The DGS-3400 Series is a member of the D-Link xStack switch family. xStack is a complete family of stackable devices that ranges from edge 10/100Mbps switches to core Gigabit switches. xStack provides unsurpassed performance, fault tolerance, scalable flexibility, robust security, standard-based interoperability and an impressive support for 10Gigabit technology to future- proof departmental and enterprise network deployments with an easy migration path.
  • Page 5 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Figure 1-2. Boot Screen The Switch’s MAC address can also be found in the Web management program on the Switch Information (Basic Settings) window on the Configuration menu. The IP address for the Switch must be set before it can be managed with the Web-based manager. The Switch IP address can be automatically set using BOOTP or DHCP protocols, in which case the actual address assigned to the Switch must be known.
  • Page 6 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual NOTE: The DGS-3400 Series of switches have the capability to be configured for an IP address of 0.0.0.0, or, in essence, have no IP address. This function maybe used to disable Layer 3 functions of the Switch.

  • Page 7: Using The Console Cli

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual SING THE ONSOLE The Switch supports a console management interface that allows the user to connect to the Switch’s management agent via a serial port and a terminal or a computer running a terminal emulation program. The console can also be used over the network using the TCP/IP Telnet protocol.
  • Page 8 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Figure 2- 2. The ? Command When you enter a command without its required parameters, the CLI will prompt you with a Next possible completions: message. Figure 2- 3. Example Command Parameter Help In this case, the command config account was entered with the parameter <username>.
  • Page 9 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Figure 2- 4. Using the Up Arrow to Re-enter a Command In the above example, the command config account was entered without the required parameter <username>, the CLI returned the Next possible completions: <username> prompt. The up arrow cursor control key was pressed to re-enter the previous command (config account) at the command prompt.
  • Page 10 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Figure 2- 6. Next possible completions: Show Command In the above example, all of the possible next parameters for the show command are displayed. At the next command prompt, the up arrow was used to re-enter the show command, followed by the account parameter.

  • Page 11: Command Syntax

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual OMMAND YNTAX The following symbols are used to describe how command entries are made and values and arguments are specified in this manual. The online help contained in the CLI and available through the console interface uses the same syntax. Note: All commands are case-sensitive.
  • Page 12 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual {braces} Purpose Encloses an optional value or set of optional arguments. Syntax reset {[config | system]} Description In the above syntax example, you have the option to specify config or system. It is not necessary to specify either optional value, however the effect of the system reset is dependent on which, if any, value is specified.

  • Page 13: Basic Switch Commands

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual ASIC WITCH OMMANDS The basic switch commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters create account [admin | user] <username 15> config account <username>...
  • Page 14 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Example usage: To create an administrator-level user account with the username “dlink”. DGS-3400:4#create account admin dlink Command: create account admin dlink Enter a case-sensitive new password:**** Enter the new password again for confirmation:**** Success.
  • Page 15 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show account Command: show account Current Accounts: Username Access Level --------------- ------------ User101 user Administrator Admin DGS-3400:4# delete account Used to delete an existing user account. Purpose Syntax delete account <username> Description The delete account command deletes a user account that has been created using the create account command.
  • Page 16 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show device_status Purpose Used to display current status of fans and power or power supplies. Syntax show device_status Description Displays information on the status of system fans and power supplies. Parameters None.
  • Page 17 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual To display the Switch’s information: DGS-3400:4#show switch Command: show switch Device Type : DGS-3427 Gigabit Ethernet Switch MAC Address : 00-80-C8-34-27-00 IP Address : 10.34.27.100 (Manual) VLAN Name : default Subnet Mask : 255.0.0.0 Default Gateway...
  • Page 18 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config serial_port Purpose Used to configure the serial port. Syntax config serial_port {baud_rate [9600 | 19200 | 38400 | 115200] | auto_logout [never | 2_minutes | 5_minutes | 10_minutes | 15_minutes]} Description This command is used to configure the serial port’s baud rate and auto...
  • Page 19 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual disable clipaging Purpose Used to disable the pausing of the console screen scrolling at the end of each page when the show command displays more than one screen of information. Syntax disable clipaging Description...
  • Page 20 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Example usage: To disable the Telnet protocol on the Switch: DGS-3400:4#disable telnet Command: disable telnet Success. DGS-3400:4# enable web Purpose Used to enable the HTTP-based management software on the Switch. Syntax enable web <tcp_port_number 1-65535>...
  • Page 21 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual save Purpose Used to save changes in the Switch’s configuration to non-volatile RAM. Syntax save {[config <config_id 1-2> | log | all]} Description This command is used to enter the current switch configuration into non-volatile RAM.
  • Page 22 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual reset Purpose Used to reset the Switch to the factory default settings. Syntax reset {[config | system]} Description This command is used to restore the Switch’s configuration to the default settings assigned from the factory. config −...
  • Page 23 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual logout Purpose Used to log out a user from the Switch’s console. Syntax logout Description This command terminates the current user’s session on the Switch’s console. None. Parameters Restrictions None. Example usage: To terminate the current user’s console session: DGS-3400:4#logout...

  • Page 24: Switch Port Commands

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual WITCH OMMANDS The switch port commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config ports [<portlist> | all] {medium_type [fiber | copper]} {speed [auto | 10_half | 10_full | 100_half | 100_full | 1000_full {[master | slave]}] | flow_control [enable | disable] | learning [enable | disable] | state [enable | disable] | [description <desc 1-32>...
  • Page 25 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#config ports 1-3 speed 10_full learning enable state enable Command: config ports 1-3 speed 10_full learning enable state enable Success. DGS-3400:4# show ports Purpose Used to display the current configuration of a range of ports. Syntax show ports {<portlist>} {description | err_disabled} Description...
  • Page 26 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Example usage: To display the configuration of all ports on a standalone switch, with description: DGS-3400:4#show ports description Command: show ports description Port Port Settings Connection Address State Speed/Duplex/FlowCtrl Speed/Duplex/FlowCtrl Learning ------ -------- ---------------------...

  • Page 27: Port Security Commands

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual ECURITY OMMANDS The Switch’s port security commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config port_security ports [<portlist> | all] {admin_state [enable| disable] | max_learning_addr <max_lock_no 0-16>...
  • Page 28 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual delete port_security_entry Purpose Used to delete a port security entry by MAC address, port number and VLAN ID. Syntax delete port_security_entry_vlan_name <vlan_name 32> port <port> mac_address <macaddr> Description This command is used to delete a single, previously learned port security entry by port, VLAN name, and MAC address.
  • Page 29 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show port_security Purpose Used to display the current port security configuration. Syntax show port_security {ports <portlist>} Description This command is used to display port security information of the Switch’s ports. The information displayed includes port security, admin state, maximum number of learning address and lock mode.

  • Page 30: Network Management (Snmp) Commands

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual (SNMP) C ETWORK ANAGEMENT OMMANDS The network management commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. The DGS-3400 Series supports the Simple Network Management Protocol (SNMP) versions 1, 2c, and 3. After enabling SNMP, you can specify which version of SNMP you want to use to monitor and control the Switch.
  • Page 31 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Command Parameters create snmp host <ipaddr> {v1 | v2c | v3 [noauth_nopriv | auth_nopriv | auth_priv]} <auth_string 32> delete snmp host <ipaddr> show snmp host <ipaddr> create trusted_host <ipaddr> delete trusted_host <ipaddr>...
  • Page 32 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual create snmp user md5 − Specifies that the HMAC-MD5-96 authentication level will be used. md5 may be utilized by entering one of the following: • <auth password 8-16> - An alphanumeric sting of between 8 and 16 characters that will be used to authorize the agent to receive packets for the host.
  • Page 33 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#delete snmp user dlink Command: delete snmp user dlink Success. DGS-3400:4# show snmp user Purpose Used to display information about each SNMP username in the SNMP group username table. Syntax show snmp user Description The show snmp user command displays information about each...
  • Page 34 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#create snmp view dlinkview 1.3.6 view_type included Command: create snmp view dlinkview 1.3.6 view_type included Success. DGS-3400:4# delete snmp view Purpose Used to remove an SNMP view entry previously created on the Switch.
  • Page 35 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show snmp view Command: show snmp view Vacm View Table Settings View Name Subtree View Type -------------------- ------------------------- ---------- ReadView Included WriteView Included NotifyView 1.3.6 Included restricted 1.3.6.1.2.1.1 Included restricted 1.3.6.1.2.1.11 Included restricted...
  • Page 36 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#create snmp community dlink view ReadView read_write Command: create snmp community dlink view ReadView read_write Success. DGS-3400:4# delete snmp community Purpose Used to remove a specific SNMP community string from the Switch. Syntax delete snmp community <community_string 32>...
  • Page 37 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show snmp community Command: show snmp community SNMP Community Table Community Name View Name Access Right -------------------------------- ------------------------------- ------------ dlink ReadView read_write private CommunityView read_write public CommunityView read_only Total Entries: 3 DGS-3400:4# config snmp engineID Purpose...
  • Page 38 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual create snmp group Purpose Used to create a new SNMP group, or a table that maps SNMP users to SNMP views. Syntax create snmp group <groupname 32> [v1 | v2c | v3 [noauth_nopriv | auth_nopriv | auth_priv]] {read_view <view_name 32>...
  • Page 39 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual delete snmp group Purpose Used to remove an SNMP group from the Switch. Syntax delete snmp group <groupname 32> Description The delete snmp group command is used to remove an SNMP group from the Switch.
  • Page 40 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual ReadView Name : CommunityView WriteView Name Notify View Name : CommunityView Security Model : SNMPv2 Security Level : NoAuthNoPriv Group Name : private ReadView Name : CommunityView WriteView Name : CommunityView Notify View Name : CommunityView Security Model...
  • Page 41 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual create snmp host Purpose Used to create a recipient of SNMP traps generated by the Switch’s SNMP agent. Syntax create snmp host <ipaddr> [v1 | v2c | v3 [noauth_nopriv | auth_nopriv | auth_priv] <auth_string 32>] Description The create snmp host command creates a recipient of SNMP traps...
  • Page 42 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual delete snmp host Purpose Used to remove a recipient of SNMP traps generated by the Switch’s SNMP agent. Syntax delete snmp host <ipaddr> Description The delete snmp host command deletes a recipient of SNMP traps generated by the Switch’s SNMP agent.
  • Page 43 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual create trusted_host Purpose Used to create the trusted host. Syntax create trusted_host <ipaddr> Description The create trusted_host command creates the trusted host. The Switch allows you to specify up to four IP addresses that are allowed to manage the Switch via in-band SNMP or TELNET based management software.
  • Page 44 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual delete trusted_host Purpose Used to delete a trusted host entry made using the create trusted_host command above. Syntax delete trusted _host <ipaddr> Description This command is used to delete a trusted host entry made using the create trusted_host command above.
  • Page 45 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#enable snmp authenticate traps Command: enable snmp authenticate traps Success. DGS-3400:4# show snmp traps Purpose Used to show SNMP trap support on the Switch . Syntax show snmp traps Description This command is used to view the SNMP trap support status currently configured on the Switch.
  • Page 46 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual disable snmp authenticate traps Purpose Used to disable SNMP authentication trap support. Syntax disable snmp authenticate traps Description This command is used to disable SNMP authentication support on the Switch. Parameters None.
  • Page 47 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual To configure the Switch location for “ ”: H Q 5 F DGS-3400:4#config snmp system_location HQ 5F Command: config snmp system_location HQ 5F Success. DGS-3400:4# config snmp system_name Purpose Used to configure the name for the Switch. Syntax config snmp system_name <sw_name>...
  • Page 48 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual disable rmon Purpose Used to disable RMON on the Switch. Syntax disable rmon Description This command is used, in conjunction with the enable rmon command above, to enable and disable remote monitoring (RMON) on the Switch.

  • Page 49: Switch Utility Commands

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual WITCH TILITY OMMANDS The switch utility commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters download [firmware_fromTFTP <ipaddr> <path_filename 64> {image_id <1-2>} | config <ipaddr>...
  • Page 50 DGS-3450:4# DGS-3450:4##------------------------------------------------------------------------------- DGS-3450:4## DGS-3450 Gigabit Ethernet Switch DGS-3450:4## Configuration DGS-3450:4## DGS-3450:4## Firmware: Build 1.20-B15 DGS-3450:4## Copyright(C) 2004-2007 D-Link Corporation. All rights reserved. DGS-3450:4##------------------------------------------------------------------------------- DGS-3450:4# DGS-3450:4## STACK DGS-3450:4# DGS-3450:4# DGS-3450:4## BASIC DGS-3450:4# DGS-3450:4#config serial_port auto_logout never Command: config serial_port auto_logout never The download configuration command will initiate the loading of the various settings in the order listed in the configuration file.
  • Page 51 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Example usage: To configure configuration section 1 as a boot up section: DGS-3400:4#config configuration 1 boot_up Command: config configuration 1 boot_up Success. DGS-3400:4# config firmware Purpose Used to configure the firmware section as a boot up section, or to delete the firmware section Syntax config firmware image_id <int 1-2>...
  • Page 52 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show firmware information Command: show firmware information ID Version Size(B) Update Time From User -- --------- ------- ------------------- ------------------ --------------- 1 1.00-B27 2013171 0 days 00:00:00 Serial Port(Prom) Unknown *2 1.00-B30 2013334 2005/12/12 11:50:15 10.41.44.44(W) '*' means boot up firmware (R) means firmware update thru Serial Port(RS232)
  • Page 53 To view the current configuration settings: DGS-3450:4#show config current_config Command: show config current_config #------------------------------------------------------------------------------- DGS-3450 Gigabit Ethernet Switch Configuration Firmware: Build 1.20-B15 Copyright(C) 2004-2007 D-Link Corporation. All rights reserved. #------------------------------------------------------------------------------- # STACK # BASIC config serial_port auto_logout never enable telnet 50000 enable web 60000...
  • Page 54 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#upload config 10.48.74.121 c:\cfg\log.txt Command: upload config 10.48.74.121 c:\cfg\log.txt Connecting to server....Done. Upload configuration....Done. DGS-3400:4# enable autoconfig Purpose Used to activate the autoconfiguration function for the Switch. This will load a configuration from the TFTP server specified in the reply.
  • Page 55 DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400 Gigabit Ethernet Switch Command Line Interface Firmware: Build 1.20-B15 Copyright(C) 2004-2007 D-Link Corporation. All rights reserved. DGS-3400:4# DGS-3400:4# DGS-3400:4#download config 10.41.44.44 c:\cfg\setting.txt Command: download config 10.41.44.44 c:\cfg\setting.txt Connecting to server....Done.
  • Page 56 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show autoconfig Purpose Used to display the current autoconfig status of the Switch. Syntax show autoconfig Description This will list the current status of the autoconfiguration function. Parameters None. Restrictions Only administrator-level users can issue this command.

  • Page 57: Network Monitoring Commands

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual ETWORK ONITORING OMMANDS The network monitoring commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters show packet ports <portlist> show error ports <portlist>...
  • Page 58 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show packet port 2 Command: show packet port 2 Port number :2 ================================================================ Frame Size/Type Frame Counts Frames/sec --------------- ---------------------- ----------- 3275 65-127 128-255 256-511 512-1023 1024-1518 Unicast RX Multicast RX Broadcast RX 3686 Frame Type...
  • Page 59 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show utilization Purpose Used to display real-time port and CPU utilization statistics. Syntax show utilization [ports | cpu] Description This command will display the real-time port and cpu utilization statistics for the Switch. Parameters ports - Entering this parameter will display the current port utilization of the Switch.
  • Page 60 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual clear counters Purpose Used to clear the Switch’s statistics counters. Syntax clear counters {ports<portlist>} Description This command will clear the counters used by the Switch to compile statistics. ports <portlist> − Specifies a port or range of ports to be displayed. Parameters Restrictions Only administrator-level users can issue this command.
  • Page 61 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show log Command: show log Index Date Time Log Text ----- ---------------- ----------- ---------------------------------------------------- 2006-04-26 09:38:18 Successful login through Console (Username: Anonymous) 2006-04-26 09:36:20 System started up 2006-04-25 12:38:18 Port 1 link up, 100Mbps FULL duplex 2006-04-25 12:38:00 Spanning Tree Protocol is disabled...
  • Page 62 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual create syslog host Purpose Used to create a new syslog host. Syntax create syslog host <index 1-4> {severity [informational | warning | all] | facility [local0 | local1 | local2 | local3 | local4 | local5 | local6 | local7] | udp_port <udp_port_number>...
  • Page 63 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual create syslog host clock daemon local use 0 (local0) local use 1 (local1) local use 2 (local2) local use 3 (local3) local use 4 (local4) local use 5 (local5) local use 6 (local6) local use 7 (local7) local0 −...
  • Page 64 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config syslog host Purpose Used to configure the syslog protocol to send system log data to a remote host. Syntax config syslog host <index 1-4> [severity [informational | warning | all] | facility [local0 | local1 | local2 | local3 | local4 | local5 | local6 | local7] | udp_port<udp_port_number>...
  • Page 65 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config syslog host local use 7 (local7) local0 − Specifies that local use 0 messages will be sent to the remote host. This corresponds to number 16 from the list above. local1 −...
  • Page 66 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config syslog host all Purpose Used to configure the syslog protocol to send system log data to a remote host. Syntax config syslog host all [severity [informational | warning | all] | facility [local0 | local1 | local2 | local3 | local4 | local5 | local6 | local7] | udp_port <udp_port_number>...
  • Page 67 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config syslog host all local use 6 (local6) local use 7 (local7) local0 − Specifies that local use 0 messages will be sent to the remote host. This corresponds to number 16 from the list above. local1 −...
  • Page 68 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual delete syslog host Purpose Used to remove a syslog host, that has been previously configured, from the Switch. Syntax delete syslog host [<index 1-4> | all] Description The delete syslog host command is used to remove a syslog host that has been previously configured from the Switch.
  • Page 69 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show syslog Purpose Used to display the global current running status of the syslog function. Syntax show syslog Description The show syslog command will display the current running status of the syslog function on the Switch. Parameters None.
  • Page 70 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Example usage: To configure the system severity settings for critical traps only: DGS-3400:4#config system_severity trap critical Command: config system_severity trap critical Success. DGS-3400:4#...

  • Page 71: Multiple Spanning Tree Protocol (Mstp) Commands

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual (MSTP) C ULTIPLE PANNING ROTOCOL OMMANDS This Switch supports three versions of the Spanning Tree Protocol; 802.1d STP, 802.1w Rapid STP and 802.1s MSTP. Multiple Spanning Tree Protocol, or MSTP, is a standard defined by the IEEE community that allows multiple VLANs to be mapped to a single spanning tree instance, which will provide multiple pathways across the network.
  • Page 72 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Command Parameters show stp instance {<value 0-15>} show stp mst_config id Each command is listed, in detail, in the following sections. enable stp Purpose Used to globally enable STP on the Switch. Syntax enable stp Description...
  • Page 73 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config stp version Purpose Used to globally set the version of STP on the Switch. Syntax config stp version [mstp | rstp | stp] Description This command allows the user to choose the version of the spanning tree to be implemented on the Switch.
  • Page 74 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config stp switches utilizing the Multiple Spanning Tree Protocol. forwarddelay <value 4-30> − The maximum amount of time (in seconds) that the root device will wait before changing states. The user may choose a time between 4 and 30 seconds.
  • Page 75 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config stp ports out BDPU packets to other bridges, requesting information on their STP setting If the Switch is configured for RSTP, the port will be capable to migrate from 802.1d STP to 802.1w RSTP. If the Switch is configured for MSTP, the port is capable of migrating from 802.1d STP to 802.1s MSTP.
  • Page 76 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Example usage: To create a spanning tree instance 2: DGS-3400:4#create stp instance_id 2 Command: create stp instance_id 2 Success. DGS-3400:4# config stp instance_id Purpose Used to add or delete an STP instance ID. Syntax config stp instance_id <value 1-15>...
  • Page 77 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual delete stp instance_id Purpose Used to delete a STP instance ID from the Switch. Syntax delete stp instance_id <value 1-15> Description This command allows the user to delete a previously configured STP instance ID from the Switch.
  • Page 78 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config stp mst_config_id Purpose Used to update the MSTP configuration identification. Syntax config stp mst_config_id {revision_level <int 0-65535> | name <string>} Description This command will uniquely identify the MSTP configuration currently configured on the Switch.
  • Page 79 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config stp mst_ports occurs. A lower internalCost represents a quicker transmission. priority <value 0-240> - Enter a value between 0 and 240 to set the priority for the port interface. A higher priority will designate the interface to forward packets first.
  • Page 80 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show stp Command: show stp STP Status : Enabled STP Version : RSTP Max Age : 20 Hello Time Forward Delay : 15 Max Age : 20 TX Hold Count Forwarding BPDU : Enabled Loopback Detection...
  • Page 81 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show stp ports 1-9 Command: show stp ports 1-9 MSTP Port Information ---------------------- Port Index , Hello Time: 2 /2 , Port STP enabled , LBD : No External PathCost : Auto/200000 , Edge Port : No /No , P2P : Auto /Yes Msti Designated Bridge Internal PathCost Prio Status...
  • Page 82 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show stp instance_id Purpose Used to display the Switch’s STP instance configuration Syntax show stp instance_id <value 0-15> Description This command displays the Switch’s current STP Instance Settings and the STP Instance Operational Status. Parameters <value 0-15>...
  • Page 83 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show stp mst_config_id Command: show stp mst_config_id Current MST Configuration Identification ---------------------------------------- Configuration Name : 00:10:20:33:45:00 Revision Level :0 MSTI ID Vid list ------- ----------- CIST 1-4094 DGS-3400:4#...

  • Page 84: Forwarding Database Commands

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual ORWARDING ATABASE OMMANDS The layer 2 forwarding database commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters create fdb <vlan_name 32>...
  • Page 85 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual create multicast_fdb Purpose Used to create a static entry to the multicast MAC address forwarding table (database) Syntax create multicast_fdb <vlan_name 32> <macaddr> Description This command will make an entry into the Switch’s multicast MAC address forwarding database.
  • Page 86 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config fdb aging_time Purpose Used to set the aging time of the forwarding database. Syntax config fdb aging_time <sec 10-1000000> Description The aging time affects the learning process of the Switch. Dynamic forwarding table entries, which are made up of the source MAC addresses and their associated port numbers, are deleted from the table if they are not accessed within the aging time.
  • Page 87 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#delete fdb default 01-00-00-00-01-02 Command: delete fdb default 01-00-00-00-01-02 Success. DGS-3400:4# clear fdb Purpose Used to clear the Switch’s forwarding database of all dynamically learned MAC addresses. Syntax clear fdb [vlan <vlan_name 32> | port <port> | all] Description This command is used to clear dynamically learned entries to the Switch’s forwarding database.
  • Page 88 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show multicast_fdb vlan default Command: show multicast_fdb vlan default VLAN Name : default MAC Address : 01-00-5E-00-00-00 Egress Ports : 1-5 Mode : Static Total Entries DGS-3400:4# show fdb Purpose Used to display the current unicast MAC address forwarding database.
  • Page 89 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config multicast filtering_mode Purpose Used to configure the multicast packet filtering mode for specific VLANs . Syntax config multicast filtering_mode [<vlan_name 32> | all] [forward_all_groups | forward_unregistered_groups | filter_unregistered_groups] Description This command will configure the multicast packet filtering mode for specified VLANs on the Switch.

  • Page 90: Traffic Control Commands

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual RAFFIC ONTROL OMMANDS On a computer network, packets such as Multicast packets and Broadcast packets continually flood the network as normal procedure. At times, this traffic may increase do to a malicious endstation on the network or a malfunctioning device, such as a faulty network card.
  • Page 91 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config traffic control detected on the Switch. The user has two options: • drop - Utilizes the hardware Traffic Control mechanism, which means the Switch’s hardware will determine the Packet Storm based on the Threshold value stated and drop packets until the issue is resolved.
  • Page 92 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config traffic control_recover Purpose Used to configure traffic control recover for any or all ports. Syntax config traffic control_recover [<portlist> | all] Description Configuring a port for traffic control recover will require an administrator to restart the specified ports if storm control shuts down the port or ports.
  • Page 93 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show traffic control Purpose Used to display current traffic control settings. Syntax show traffic control {<portlist>} Description This command displays the current storm traffic control configuration on the Switch. Parameters <portlist>...

  • Page 94: Qos Commands

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual OMMANDS The DGS-3400 Series supports 802.1p priority queuing. The Switch has 8 priority queues, one of which is internal and unconfigurable. These priority queues are numbered from 6 (Class 6) — the highest priority queue — to 0 (Class 0) — the lowest priority queue.
  • Page 95 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config bandwidth_control Purpose Used to configure bandwidth control on a port by-port basis. Syntax <portlist> {rx_rate [no_limit | <value 1-156249>] | tx_rate [no_limit | <value 1-156249>]} Description The config bandwidth_control command is used to configure bandwidth on a port by-port basis.
  • Page 96 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show bandwidth_control 1-10 Command: show bandwidth_control 1-10 Bandwidth Control Table Port RX Rate (64Kbit/sec) TX_Rate (64Kbit/sec) ---- ------------------------ ---------------------- no_limit no_limit no_limit no_limit no_limit no_limit no_limit no_limit no_limit no_limit DGS-3400:4# config scheduling Purpose Used to configure the traffic scheduling mechanism for each COS queue.
  • Page 97 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4# config scheduling 0 max_packet 12 Command: config scheduling 0 max_packet 12 Success. DGS-3400:4# show scheduling Purpose Used to display the currently configured traffic scheduling on the Switch. Syntax show scheduling Description The show scheduling command will display the current traffic scheduling mechanisms in use on the Switch.
  • Page 98 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config 802.1p user_priority This mapping scheme is based upon recommendations contained in IEEE 802.1D. You can change this mapping by specifying the 802.1p user priority you want to go to the <class_id 0-6> (the number of the hardware queue).
  • Page 99 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config 802.1p default_priority Purpose Used to configure the 802.1p default priority settings on the Switch. If an untagged packet is received by the Switch, the priority configured with this command will be written to the packet’s priority field. Syntax config 802.1p default_priority [<portlist>...
  • Page 100 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4# show 802.1p default_priority Command: show 802.1p default_priority Port Priority ------- ----------- DGS-3400:4# config scheduling_mechanism Purpose Used to configure the scheduling mechanism for the QoS function Syntax config scheduling_mechanism [strict | weight_fair] Description The config scheduling_mechanism command allows the user to select between a weight fair and a Strict mechanism for emptying the priority...
  • Page 101 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Example usage: To configure the traffic scheduling mechanism for each COS queue: DGS-3400:4#config scheduling_mechanism strict Command: config scheduling_mechanism strict Success. DGS-3400:4# show scheduling_mechanism Purpose Used to display the current traffic scheduling mechanisms in use on the Switch.
  • Page 102 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#enable hol_prevention Command: enable hol_prevention Success. DGS-3400:4# disable hol_prevention Purpose Used to disable HOL prevention. Syntax disable hol_prevention Description The disable hol_prevention command disables Head of Line prevention. Parameters None. Restrictions You must have administrator privileges.

  • Page 103: Port Mirroring Commands

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual IRRORING OMMANDS The port mirroring commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config mirror port <port> [add | delete] source ports <portlist> [rx | tx | both] enable mirror disable mirror show mirror...
  • Page 104 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4# config mirror port 1 add source ports 2-7 both Command: config mirror port 1 add source ports 2-7 both Success. DGS-3400:4# Example usage: To delete the mirroring ports: DGS-3400:4#config mirror port 1 delete source port 2-4 Command: config mirror 1 delete source 2-4 Success.
  • Page 105 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#disable mirror Command: disable mirror Success. DGS-3400:4# show mirror Purpose Used to show the current port mirroring configuration on the Switch. Syntax show mirror Description This command displays the current port mirroring configuration on the Switch.

  • Page 106: Vlan Commands

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual VLAN C OMMANDS The VLAN commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters create vlan <vlan_name 32> {tag <vlanid 2-4094> | advertisement} delete vlan <vlan_name 32>...
  • Page 107 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual delete vlan Purpose Used to delete a previously configured VLAN on the Switch. Syntax delete vlan <vlan_name 32> Description This command will delete a previously configured VLAN on the Switch. Parameters <vlan_name 32>...
  • Page 108 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#config vlan v1 delete 6-8 Command: config vlan v1 delete 6-8 Success. DGS-3400:4# config gvrp Purpose Used to configure GVRP on the Switch. Syntax config gvrp [<portlist> | all] {state [enable | disable] | ingress_checking [enable | disable] | acceptable_frame [tagged_only | admit_all] | pvid <vlanid 1-4094>} Description...
  • Page 109 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual enable gvrp Purpose Used to enable GVRP on the Switch. Syntax enable gvrp Description This command, along with disable gvrp below, is used to enable and disable GVRP on the Switch, without changing the GVRP configuration on the Switch.
  • Page 110 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual To display the Switch’s current VLAN settings: DGS-3400:4#show vlan Command: show vlan VLAN Name : default VLAN TYPE : static Advertisement : Enabled Member ports : 32,49-50 Static ports : 32 Untagged ports : 32 Forbidden ports...
  • Page 111 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show gvrp Command: show gvrp Global GVRP : Disabled Port PVID GVRP Ingress Checking Acceptable Frame Type ------ ---- -------- ---------------- --------------------------- Disabled Enabled All Frames Disabled Enabled All Frames Disabled Enabled All Frames...

  • Page 112: Link Aggregation Commands

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual GGREGATION OMMANDS The link aggregation commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters create link_aggregation <value 1-32> {type [lacp | static]} group_id delete link_aggregation <value 1-32>...
  • Page 113 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#create link_aggregation group_id 1 Command: create link_aggregation group_id 1 Success. DGS-3400:4# delete link_aggregation group_id Purpose Used to delete a previously configured link aggregation group. Syntax delete link_aggregation group_id <value 1-32> Description This command is used to delete a previously configured link aggregation group.
  • Page 114 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#config link_aggregation group_id 1 master_port 5 ports 5-7, 9 Command: config link_aggregation group_id 1 master_port 5 ports 5-7, 9 Success. DGS-3400:4# config link_aggregation algorithm Purpose Used to configure the link aggregation algorithm. Syntax config link_aggregation algorithm [mac_source | mac_destination | mac_source_dest | ip_source | ip_destination | ip_source_dest]...
  • Page 115 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Example usage: To display Link Aggregation configuration: DGS-3400:4#show link_aggregation Command: show link_aggregation Link Aggregation Algorithm = MAC-source-dest Group ID Type : LACP Master Port : 50 Member Port : 49-50 Active Port Status : Disabled...
  • Page 116 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show lacp_port Purpose Used to display current LACP port mode settings. Syntax show lacp_port {<portlist>} Description This command will display the LACP mode settings as they are currently configured. Parameters <portlist>...

  • Page 117: Ip-Mac Binding Commands

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual IP-MAC B INDING OMMANDS The IP-MAC Binding commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters create address_binding ip_mac <ipaddr>...
  • Page 118 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config address_binding ip_mac ipaddress Purpose Used to Configure a IP-MAC Binding entry. Syntax config address_binding ip_mac ipaddress <ipaddr> mac_address <macaddr> {ports [ portlist | all]} Description This command will configure an IP-MAC Binding entry. Parameters <ipaddr>...
  • Page 119 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show address_binding Purpose Used to display IP-MAC Binding entries. Syntax show address_binding [ip_mac {[all | ipaddress <ipaddr> mac_address <macaddr>]} | blocked {[all | vlan_name <vlan_name> mac_address <macaddr>]} | ports] Description This command will display IP-MAC Binding entries.
  • Page 120 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual delete address-binding Purpose Used to delete IP-MAC Binding entries. Syntax delete address-binding [ip-mac [ipaddress <ipaddr> mac_address <macaddr> | all] | blocked [all | vlan_name <vlan_name> mac_address <macaddr>]] Description This command will delete IP-MAC Binding entries. Two different kinds of information can be deleted.

  • Page 121: Basic Ip Commands

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual IP C ASIC OMMANDS The IP interface commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config ipif <ipif_name 12> [{ipaddress <network_address> | vlan <vlan_name 32>...
  • Page 122 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show ipif Purpose Used to display the configuration of an IP interface on the Switch. Syntax show ipif {<ipif_name 12>} Description This command will display the configuration of an IP interface on the Switch.
  • Page 123 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#enable autoconfig Command: enable autoconfig Success. DGS-3400:4# NOTE: More detailed information for this command and related commands can be found in the section titled Switch Utility Commands.

  • Page 124: Igmp Snooping Commands

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual IGMP S NOOPING OMMANDS The IGMP Snooping commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config igmp_snooping [vlan <vlan_name 32> | all] {host_timeout <sec 1-16711450> | router_timeout <sec 1-16711450>...
  • Page 125 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual To configure IGMP snooping: DGS-3400:4# config igmp_snooping vlan default host_timeout 250 state enable Command: config igmp_snooping vlan default host_timeout 250 state enable Success. DGS-3400:4# NOTE: The Fast Leave function in the config igmp_snooping command can only be implemented if IGMP is disabled for all IP interfaces on the Switch.
  • Page 126 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Example usage: To configure IGMP snooping: DGS-3400:4#config igmp_snooping querier vlan default query_interval 125 state enable Command: config igmp_snooping querier vlan default query_interval 125 state enable Success. DGS-3400:4# config router_ports Purpose Used to configure ports as router ports.
  • Page 127 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#config router_ports_forbidden default add 2-10 Command: config router_ports_forbidden default add 2-10 Success. DGS-3400:4# enable igmp_snooping Purpose Used to enable IGMP snooping on the Switch. Syntax enable igmp_snooping {forward_mcrouter_only} Description This command allows you to enable IGMP snooping on the Switch. If forward_mcrouter_only is specified, the Switch will only forward all multicast traffic to the multicast router, only.
  • Page 128 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#disable igmp_snooping Command: disable igmp_snooping Success. DGS-3400:4# Example usage: To disable forwarding all multicast traffic to a multicast-enabled router: DGS-3400:4#disable igmp_snooping forward_mcrouter_only Command: disable igmp_snooping forward_mcrouter_only Success. DGS-3400:4# show igmp_snooping Purpose Used to show the current status of IGMP snooping on the Switch.
  • Page 129 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show router_ports Purpose Used to display the currently configured router ports on the Switch. Syntax show router_ports [static | dynamic | forbidden] Description This command will display the router ports currently configured on the Switch.
  • Page 130 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show igmp_snooping group Command: show igmp_snooping group VLAN Name : default Multicast group : 224.0.0.2 MAC address : 01-00-5E-00-00-02 Reports Port Member : 2,4 VLAN Name : default Multicast group : 224.0.0.9 MAC address : 01-00-5E-00-00-09...

  • Page 131: Mld Snooping Commands

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual MLD S NOOPING OMMANDS Multicast Listener Discovery (MLD) Snooping is an IPv6 function used similarly to IGMP snooping in IPv4. It is used to discover ports on a VLAN that are requesting multicast data. Instead of flooding all ports on a selected VLAN with multicast traffic, MLD snooping will only forward multicast data to ports that wish to receive this data through the use of queries and reports produced by the requesting ports and the source of the multicast traffic.
  • Page 132 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Each command is listed, in detail, in the following sections. enable mld_snooping Purpose Used to enable MLD snooping globally on the switch. Syntax enable mld_snooping {forward_mcrouter_only} Description This command, in conjunction with the disable mld_snooping will enable and disable MLD snooping globally on the Switch without affecting configurations.
  • Page 133 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config mld_snooping be configured. all – Entering this parameter will configure MLD snooping for all VLANs on the switch. node_timeout <sec 1-16711450> − Specifies the link node timeout, in seconds. After this timer expires, this node will no longer be considered as listening node.
  • Page 134 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#config mld_snooping mrouter_ports default add 1-10 Command : config mld_snooping mrouter_ports default add 1-10 Success. DGS-3400:4# config mld_snooping mrouter_ports_forbidden Purpose Used to configure ports on the Switch as forbidden router ports. Syntax config mld_snooping mrouter_ports_forbidden <vlan_name 32>...
  • Page 135 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config mld_snooping querier between group-specific query messages. This interval may be reduced to lower the amount of time it takes a router to detect the loss of a last listener group. The user may set this interval between 1 and 25 seconds with a default setting of 1 second.
  • Page 136 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show mld_snooping Command: show mld_snooping MLD Snooping Global State : Disabled Multicast Router Only : Disabled VLAN Name : default Query Interval : 125 Max Response Time : 10 Robustness Value Last Listener Query Interval Node Timeout : 260...
  • Page 137 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show mld_snooping group Command : show mld_snooping group VLAN Name : default Multicast Group : FF02 ::13 MAC Address : 33-33-00-00-00-13 Reports Listening Port : 1,7 VLAN Name : default Multicast Group : FF02 ::14 MAC Address...
  • Page 138 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show mld_snooping mrouter_ports Commands : show mld_snooping mrouter_ports VLAN Name : default Static mrouter port : 1-10 Dynamic mrouter port Forbidden mrouter port : Total Entries : 1 DGS-3400:4#...

  • Page 139: Commands

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual 802.1X C OMMANDS The DGS-3400 implements the server-side of the IEEE 802.1x Port-based and MAC-based Network Access Control. This mechanism is intended to allow only authorized users, or other network devices, access to network resources by establishing criteria for each port on the Switch that a user or network device must meet before allowing that port to forward or receive frames.
  • Page 140 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual enable 802.1x Purpose Used to enable the 802.1x server on the Switch. Syntax enable 802.1x Description The enable 802.1x command enables the 802.1x Network Access control server application on the Switch. To select between port- based or MAC-based, use the config 802.1x auth_mode command.
  • Page 141 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show 802.1x auth_configuration MAC address or by port. Authentication Protocol: Radius_Eap/Local − Shows the authentication protocol suite in use between the Switch and a RADIUS server. Port number − Shows the physical port number on the Switch. Capability: Authenticator|None −...
  • Page 142 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show 802.1x auth_state Purpose Used to display the current authentication state of the 802.1x server on the Switch. Syntax show 802.1x auth_state {ports <portlist>} Description The show 802.1x auth_state command is used to display the current authentication state of the 802.1x Port-based or MAC-based Network Access Control server application on the Switch.
  • Page 143 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show 802.1x auth_state Command: show 802.1x auth_state Port number : 1 Index MAC Address Auth PAE State Backend State Port Status ------ ------------------- ----------------------- --------------------- ----------------- 00-08-02-4E-DA-FA Authenticated Idle Authorized CTRL+C ESC q Quit SPACE n...
  • Page 144 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config 802.1x capability ports all − Specifies all of the ports on the Switch. authenticator − A user must pass the authentication process to gain access to the network. none − The port is not controlled by the 802.1x functions. Restrictions Only administrator-level users can issue this command.
  • Page 145 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config 802.1x auth_parameter response from a RADIUS server. max_req <value 1-10> − Configures the number of times to retry sending packets to a supplicant (user). reauth_period <sec 1-65535> − Configures the time interval between successive re-authentications.
  • Page 146 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config 802.1x reauth Purpose Used to configure the 802.1x re-authentication feature of the Switch. Syntax config 802.1x reauth {port_based ports [<portlist> | all] | mac_based [ports] [<portlist> | all] {mac_address <macaddr>}] Description The config 802.1x reauth command is used to re-authenticate a previously authenticated device based on port number.
  • Page 147 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Example usage: To configure the RADIUS server communication settings: DGS-3400:4#config radius add 1 10.48.74.121 key dlink default Command: config radius add 1 10.48.74.121 key dlink default Success. DGS-3400:4# config radius delete Purpose Used to delete a previously entered RADIUS server configuration.
  • Page 148 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Example usage: To configure the RADIUS settings: DGS-3400:4#config radius 1 10.48.74.121 key dlink default Command: config radius 1 10.48.74.121 key dlink default Success. DGS-3400:4# show radius Purpose Used to display the current RADIUS configurations on the Switch. Syntax show radius Description...
  • Page 149 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#create 802.1x user dtremblett Command: create 802.1x user dtremblett Enter a case-sensitive new password:****** Enter the new password again for confirmation:****** Success. DGS-3400:4# show 802.1x user Purpose Used to display the 802.1x user accounts on the Switch. Syntax show 802.1x user Description...
  • Page 150 RADIUS accounting client currently configured on the Switch. Parameters None. Restrictions None. Example usage: To view the current RADIUS accounting client: DGS-3400:4#show acct_client Command: show acct_client radiusAcctClient --------------------------------------------------------------------------------------- radiusAcctClientInvalidServerAddresses radiusAcctClientIdentifier D-Link radiusAuthServerEntry --------------------------------------------------------------------------------------- radiusAccServerIndex radiusAccServerAddress 10.53.13.199 radiusAccClientServerPortNumber radiusAccClientRoundTripTime radiusAccClientRequests radiusAccClientRetransmissions radiusAccClientResponses radiusAccClientMalformedResponses radiusAccClientBadAuthenticators...
  • Page 151 RADIUS authentication client currently configured on the Switch. Parameters None. Restrictions None. Example usage: To view the current RADIUS authentication client: DGS-3400:4#show auth_client Command: show auth_client radiusAuthClient ---------------------------------------------------------------------------------------- radiusAuthClientInvalidServerAddresses radiusAuthClientIdentifier D-Link radiusAuthServerEntry ---------------------------------------------------------------------------------------- radiusAuthServerIndex radiusAuthServerAddress : 0.0.0.0 radiusAuthClientServerPortNumber radiusAuthClientRoundTripTime radiusAuthClientAccessRequests radiusAuthClientAccessRetransmissions radiusAuthClientAccessAccepts radiusAuthClientAccessRejects radiusAuthClientAccessChallenges...
  • Page 152 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show auth_diagnostics ports 16 Command: show auth_diagnostics ports 16 Port number : 16 EntersConnecting EapLogoffsWhileConnecting EntersAuthenticating SuccessWhileAuthenticating TimeoutsWhileAuthenticating FailWhileAuthenticating ReauthsWhileAuthenticating EapStartsWhileAuthenticating EapLogoffWhileAuthenticating ReauthsWhileAuthenticated EapStartsWhileAuthenticated EapLogoffWhileAuthenticated BackendResponses BackendAccessChallenges BackendOtherRequestsToSupplicant BackendNonNakResponsesFromSupplicant BackendAuthSuccesses BackendAuthFails CTRL+C ESC q Quit...
  • Page 153 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show auth_statistics Purpose Used to display the current authentication statistics. Syntax show auth_statistics {ports <portlist> | all]} Description The show auth_statistics command is used to display the current authentication statistics of the Switch on a per port basis. ports <portlist>...

  • Page 154: Access Control List (Acl) Commands

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual (ACL) C CCESS ONTROL OMMANDS The DGS-3400 implements Access Control Lists that enable the Switch to deny network access to specific devices or device groups based on IP settings and MAC address. Access profiles allow you to establish criteria to determine whether or not the Switch will forward packets based on the information contained in each packet’s header.
  • Page 155 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Command Parameters 0xfffff> | source_ipv6 <ipv6addr> | destionation_ipv6 <ipv6addr>]} port [<portlist> | all] [permit {priority <value 0-7> {replace_priority} | rx_rate [no_limit | <value 1-156249>]] | delete access_id <value 1-128>] show access_profile {profile_id <value 1-6>} enable cpu_interface_filtering...
  • Page 156 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual create access_profile (for Ethernet) access profile being created with this command. ethernet - Specifies that the Switch will examine the layer 2 part of each packet header with emphasis on one or more of the following: vlan −...
  • Page 157 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config access_profile (for Ethernet) format: 000000000000-FFFFFFFFFFFF destination_mac <macaddr> − Specifies that the access profile will apply to only • packets with this destination MAC address. MAC address entries may be made in the following format: 000000000000-FFFFFFFFFFFF 802.1p <value 0-7>...
  • Page 158 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual create access_profile (IP) Description This command will allow the user to create a profile for packets that may be accepted or denied by the Switch by examining the IP part of the packet header. Specific values for rules pertaining to the IP part of the packet header may be defined by configuring the config access_profile command for IP, as stated below.
  • Page 159 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config access_profile (IP) Purpose Used to configure the IP access profile on the Switch and to define specific values for the rules that will be used to by the Switch to determine if a given packet should be forwarded or filtered.
  • Page 160 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config access_profile (IP) protocol_id <value 0-255> − Specifies that the Switch will examine the Protocol • field in each packet and if this field contains the value entered here, apply the appropriate rules.
  • Page 161 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual create access_profile (ipv6) Parameters profile_id <value 1-6> - Specifies an index number between 1 and 6 that will identify the access profile being created with this command. ipv6 – Denotes that IPv6 packets will be examined by the Switch for forwarding or filtering based on the rules configured in the config access_profile command for IPv6.
  • Page 162 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config access_profile profile_id (ipv6) ipv6 - Specifies that the Switch will look into the IPv6 fields in each packet, with emphasis on one or more of the following fields: class <value 0-255> - Entering this parameter will instruct the Switch to examine •...
  • Page 163 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual delete access_profile Purpose Used to delete a previously created access profile. Syntax delete access_profile profile_id <value 1-6> Description The delete access_profile command is used to delete a previously created access profile on the Switch. profile_id <value 1-6>...
  • Page 164 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show access_profile Command: show access_profile Access Profile Table Access Profile ID: 1 TYPE : Ethernet ====================================================================== MASK Option : VLAN 802.1p ----------- ------ Access ID : 3 Mode: Permit(replaced) priority: 1 Ports: 1 ----------- ------ Trinity...
  • Page 165 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual create cpu access_profile Description The create cpu access_profile command is used to create an access profile used only for CPU Interface Filtering. Masks can be entered that will be combined with the values the Switch finds in the specified frame header fields.
  • Page 166 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4# create cpu access_profile profile_id 1 ip vlan source_ip_mask 20.0.0.0 destination_ip_mask 10.0.0.0 dscp icmp type code Command: create cpu access_profile profile_id 1 ip vlan source_ip_mask 20.0.0.0 destination_ip_mask 10.0.0.0 dscp icmp type code Success.
  • Page 167 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config cpu access_profile above. profile_id <value 1-5> − Enter an integer used to identify the access profile that will be Parameters configured with this command. This value is assigned to the access profile when it is created with the create access_profile command.
  • Page 168 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config cpu access_profile Parameters rules. • user_define_mask <hex 0x0-0xffffffff> − Specifies that the rule applies to the IP protocol ID and the mask options behind the IP header. packet_content_mask – Specifies that the Switch will mask the packet header •...
  • Page 169 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show cpu_access_profile Purpose Used to view the CPU access profile entry currently set in the Switch. Syntax show cpu_access_profile {profile_id <value 1-5> {access_id <value 1-5>}} Description The config cpu_interface_filtering state command is used view the current CPU interface filtering entries set on the Switch.

  • Page 170: Safeguard Engine Commands

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual AFEGUARD NGINE OMMANDS Periodically, malicious hosts on the network will attack the Switch by utilizing packet flooding (ARP Storm) or other methods. These attacks may increase the CPU utilization beyond its capability. To alleviate this problem, the Safeguard Engine function was added to the Switch’s software.
  • Page 171 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config safeguard_engine state [enable | disable] – Select the running state of the Safeguard Engine Parameters function as enable or disable. utilization – Select this option to trigger the Safeguard Engine function to enable based on the following determinates: •...
  • Page 172 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show safeguard_engine Command: show safeguard_engine Safeguard engine state : Disabled Safeguard engine current status : normal mode ======================================================= CPU utilization information: Rising : 30% Falling : 20% Trap/Log state : Disabled Mode : Fuzzy DGS-3400:4#...

  • Page 173: Traffic Segmentation Commands

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual RAFFIC EGMENTATION OMMANDS Traffic segmentation allows you to further sub-divide VLANs into smaller groups of ports that will help to reduce traffic on the VLAN. The VLAN rules take precedence, and then the traffic segmentation rules are applied. Command Parameters config traffic_segmentation...
  • Page 174 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Example usage: To display the current traffic segmentation configuration on the Switch. DGS-3400:4#show traffic_segmentation Command: show traffic_segmentation Traffic Segmentation Table Port Forward Portlist ------ -------------------------------------------------- 1-28 1-28 1-28 1-28 1-28 1-28 1-28 1-28...

  • Page 175: Time And Sntp Commands

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual SNTP C IME AND OMMANDS The Simple Network Time Protocol (SNTP) (an adaptation of the Network Time Protocol (NTP)) commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config sntp...
  • Page 176 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show sntp Purpose Used to display the SNTP information. Syntax show sntp Description This command will display SNTP settings information including the source IP address, time and poll interval. Parameters None.
  • Page 177 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual To disable SNTP support: DGS-3400:4#disable sntp Command: disable sntp Success. DGS-3400:4# config time Purpose Used to manually configure system time and date settings. Syntax config time <date ddmthyyyy> <time hh:mm:ss> Description This will configure the system time and date settings.
  • Page 178 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#config time_zone operator + hour 2 min 30 Command: config time_zone operator + hour 2 min 30 Success. DGS-3400:4# config dst Purpose Used to enable and configure time adjustments to allow for the use of Daylight Savings Time (DST).
  • Page 179 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config dst Parameters e_date - Configure the specific date (day of the month) to begin DST. • <end_date 1-31> - The end date is expressed numerically. offset [30 | 60 | 90 | 120] - Indicates number of minutes to add or to subtract during the summertime.

  • Page 180: Arp Commands

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual ARP C OMMANDS The ARP commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters create arpentry <ipaddr> <macaddr> create arpentry ipv6 <ipv6addr>...
  • Page 181 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual create arpentry ipv6 Restrictions Only administrator-level users can issue this command. The Switch supports up to 255 static ARP entries. Example Usage: To create a static ARP entry for the IPv6 address 10.48.74.121.125 and MAC address 00:50:BA:00:07:36: DGS-3400:4#create arpentry ipv6 2D30::AC21 00-50-BA-00-07-36 Command: create arpentry ipv6 2D30::AC21 00-50-BA-00-07-36 Success.
  • Page 182 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#delete arpentry ipv6 2D30::AC21 Command: delete arpentry ipv6 2D30::AC21 Success. DGS-3400:4# config arp_aging time Purpose Used to configure the age-out timer for ARP table entries on the Switch. Syntax config arp_aging time <value 0-65535> Description This command sets the maximum amount of time, in minutes, that an ARP entry can remain in the Switch’s ARP table, without being...
  • Page 183 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show arpentry Command: show arpentry ARP Aging Time : 30 Interface IP Address MAC Address Type ------------- --------------- ----------------- --------------- System 10.0.0.0 FF-FF-FF-FF-FF-FF Local/Broadcast System 10.1.1.169 00-50-BA-70-E4-4E Dynamic System 10.1.1.254 00-01-30-FA-5F-00 Dynamic System...
  • Page 184 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual clear arptable Purpose Used to remove all dynamic ARP table entries. Syntax clear arptable Description This command is used to remove dynamic ARP table entries from the Switch’s ARP table. Static ARP table entries are not affected. Parameters None.

  • Page 185: Routing Table Commands

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual OUTING ABLE OMMANDS The routing table commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters create iproute <network_address> <ipaddr> {<metric 1-65535>} {[primary | backup]} create iproute default <ipaddr>...
  • Page 186 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#create iproute 10.48.74.121/255.0.0.0 10.1.1.254 1 Command: create iproute 10.48.74.121/8 10.1.1.254 1 Success. DGS-3400:4# create iproute default Purpose Used to create IP route entries to the Switch’s IP routing table. Syntax create iproute default <ipaddr>...
  • Page 187 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#delete iproute 10.48.74.121/8 10.1.1.254 Command: delete iproute 10.48.74.121/8 10.1.1.254 Success. DGS-3400:4# delete iproute default Purpose Used to delete a default IP route entry from the Switch’s IP routing table. Syntax delete iproute default Description This command will delete an existing default entry from the Switch’s...
  • Page 188 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual create iproute ipv6 Purpose Used to create Ipv6 route entries to the Switch’s IP routing table. Syntax create iproute ipv6 <ipv6networkaddr> < ipv6addr > {<metric 1-65535>} Description This command is used to create a primary and backup IP route entry to the Switch’s IP routing table.
  • Page 189 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4# delete iproute 1234::5D7F/32 2D30::AC21 Command: delete iproute 1234::5D7F/32 2D30::AC21 Success. DGS-3400:4# show iproute ipv6 Purpose Used to display the Switch’s current static IPv6 routing table or a specified IPv6 address. Syntax show iproute ipv6 {<ipv6networkaddr>} Description...
  • Page 190 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#create iproute default 1234::5D7F/32 2D30::AC21 metric 1 Command: create iproute default 1234::5D7F/32 2D30::AC21 metric 1 Success. DGS-3400:4# delete iproute ipv6 default Purpose Used to delete a default IPv6 route entry from the Switch’s IP routing table.

  • Page 191: Mac Notification Commands

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual MAC N OTIFICATION OMMANDS The MAC notification commands in the Command Line Interface (CLI) are listed, in the following table, along with their appropriate parameters. Command Parameters enable mac_notification disable mac_notification config mac_notification {interval <int 1-2147483647>...
  • Page 192 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#disable mac_notification Command: disable mac_notification Success. DGS-3400:4# config mac_notification Purpose Used to configure MAC address notification. Syntax config mac_notification {interval <int 1-2147483647> | historysize <int 1-500> Description MAC address notificiation is used to monitor MAC addresses learned and entered into the FDB.
  • Page 193 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show mac_notification Purpose Used to display the Switch’s MAC address table notification global settings Syntax show mac_notification Description This command is used to display the Switch’s MAC address table notification global settings. Parameters None.
  • Page 194 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show mac_notification ports Command: show mac_notification ports Port # MAC Address Table Notification State ------ ----------------------------------------------------- Disabled Disabled Disabled Disabled Disabled Disabled Disabled Disabled Disabled Disabled Disabled Disabled Disabled Disabled Disabled Disabled Disabled...

  • Page 195: Access Authentication Control Commands

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual CCESS UTHENTICATION ONTROL OMMANDS The TACACS / XTACACS / TACACS+ / RADIUS commands let you secure access to the Switch using the TACACS / XTACACS / TACACS+ / RADIUS protocols. When a user logs in to the Switch or tries to access the administrator level privilege, he or she is prompted for a password.
  • Page 196 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Command Parameters enable authen_policy disable authen_policy show authen_policy create authen_login <string 15> method_list_name config authen_login [default | method_list_name <string 15>] method {tacacs | xtacacs | tacacs+ | radius | server_group <string 15> | local | none} delete authen_login <string 15>...
  • Page 197 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual enable authen_policy Purpose Used to enable system access authentication policy. Syntax enable authen_policy Description This command will enable an administrator-defined authentication policy for users trying to access the Switch. When enabled, the device will check the method list and choose a technique for user authentication upon login.
  • Page 198 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Example usage: To display the system access authentication policy: DGS-3400:4#show authen_policy Command: show authen_policy Authentication Policy: Enabled DGS-3400:4# create authen_login method_list_name Purpose Used to create a user defined method list of authentication methods for users logging on to the Switch.
  • Page 199 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config authen_login Parameters default – The default method list for access authentication, as defined by the user. The user may choose one or a combination of up to four(4) of the following authentication methods: tacacs –...
  • Page 200 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#config authen_login default method xtacacs tacacs+ local Command: config authen_login default method xtacacs tacacs+ local Success. DGS-3400:4# delete authen_login method_list_name Purpose Used to delete a previously configured user defined method list of authentication methods for users logging on to the Switch.
  • Page 201 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Example usage: To view the authentication login method list named Trinity: DGS-3400:4#show authen_login method_list_name Trinity Command: show authen_login method_list_name Trinity Method List Name Priority Method Name Comment ---------------- -------- --------------- --------- Trinity tacacs+...
  • Page 202 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config authen_enable If no verification is found, the Switch will send an authentication request to the second TACACS host in the server group and so on, until the list is exhausted. At that point, the Switch will restart the same sequence with the following protocol listed, xtacacs.
  • Page 203 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#config authen_enable method_list_name Trinity method tacacs xtacacs local Command: config authen_enable method_list_name Trinity method tacacs xtacacs local Success. DGS-3400:4# Example usage: To configure the default method list with authentication methods xtacacs, tacacs+ and local, in that order: DGS-3400:4#config authen_enable default method xtacacs tacacs+ local Command: config authen_enable default method xtacacs tacacs+ local Success.
  • Page 204 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show authen_enable all – Entering this parameter will display all the authentication login methods currently configured on the Switch. The window will display the following parameters: Method List Name – The name of a previously configured method list name.
  • Page 205 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config authen application method. ssh – Choose this parameter to configure the Secure Shell login method. http – Choose this parameter to configure the web interface login method. all – Choose this parameter to configure all applications (console, telnet, ssh, web) login method.
  • Page 206 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual create authen server_host Purpose Used to create an authentication server host. Syntax create authen server_host <ipaddr> protocol [tacacs | xtacacs | tacacs+ | radius] {port <int 1-65535> | key [<key_string 254> | none] | timeout <int 1-255>...
  • Page 207 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config authen server_host Purpose Used to configure a user-defined authentication server host. Syntax create authen server_host <ipaddr> protocol [tacacs | xtacacs | tacacs+ | radius] {port <int 1-65535> | key [<key_string 254> | none] | timeout <int 1-255>...
  • Page 208 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual delete authen server_host Purpose Used to delete a user-defined authentication server host. Syntax delete authen server_host <ipaddr> protocol [tacacs | xtacacs | tacacs+ | radius] Description This command is used to delete a user-defined authentication server host previously created on the Switch.
  • Page 209 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Example usage: To view authenticaion server hosts currently set on the Switch: DGS-3400:4#show authen server_host Command: show authen server_host IP Address Protocol Port Timeout Retransmit Key --------------- -------- ----- ------- --------------- ------------------ 10.53.13.94 TACACS...
  • Page 210 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config authen server_group protocol may be added to this group. xtacacs – Use this parameter to utilize the built-in XTACACS server protocol on the Switch. Only server hosts utilizing the XTACACS protocol may be added to this group.
  • Page 211 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#delete server_group group_1 Command: delete server_group group_1 Success. DGS-3400:4# show authen server_group Purpose Used to view authentication server groups on the Switch. Syntax show authen server_group <string 15> Description This command will display authentication server groups currently configured on the Switch.
  • Page 212 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual To configure the response timeout for 60 seconds: DGS-3400:4# config authen parameter response_timeout 60 Command: config authen parameter response_timeout 60 Success. DGS-3400:4# config authen parameter attempt Purpose Used to configure the maximum number of times the Switch will accept authentication attempts.
  • Page 213 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show authen parameter Command: show authen parameter Response timeout : 60 seconds User attempts DGS-3400:4# enable admin Purpose Used to promote user level privileges to administrator level privileges Syntax enable admin Description This command is for users who have logged on to the Switch on the normal user level, to become promoted to the administrator level.
  • Page 214 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual To configure the password for the “local_enable” authentication method. DGS-3400:4#config admin local_enable Command: config admin local_ebable Enter the old password: Enter the case-sensitive new password:****** Enter the new password again for confirmation:****** Success.

  • Page 215: Ssh Commands

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual SSH C OMMANDS The steps required to use the Secure Shell (SSH) protocol for secure communication between a remote PC (the SSH Client) and the Switch (the SSH Server), are as follows: Create a user account with admin-level access using the create account admin <username>...
  • Page 216 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#enable ssh Command: enable ssh TELNET will be disabled when enable SSH. Success. DGS-3400:4# disable ssh Purpose Used to disable SSH. Syntax disable ssh Description This command allows you to disable SSH on the Switch. Parameters None.
  • Page 217 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#config ssh authmode password enable Command: config ssh authmode password enable Success. DGS-3400:4# show ssh authmode Purpose Used to display the SSH authentication mode setting. Syntax show ssh authmode Description This command will allow you to display the current SSH authentication set on the Switch.
  • Page 218 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4# config ssh server maxsession 2 contimeout 300 authfail 2 Command: config ssh server maxsession 2 contimeout 300 authfail 2 Success. DGS-3400:4# show ssh server Purpose Used to display the SSH server setting. Syntax show ssh server Description...
  • Page 219 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config ssh user password, and then to retype the password for confirmation. publickey – This parameter should be chosen if the user wishes to use the publickey on a SSH server for authentication. Restrictions Only administrator-level users can issue this command.
  • Page 220 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config ssh algorithm Parameters 3DES – This parameter will enable or disable the Triple_Data Encryption Standard encryption algorithm. AES128 - This parameter will enable or disable the Advanced Encryption Standard AES128 encryption algorithm. AES192 - This parameter will enable or disable the Advanced Encryption Standard AES192 encryption algorithm.
  • Page 221 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show ssh algorithm Command: show ssh algorithm Encryption Algorithm ---------------------------------- 3DES :Enabled AES128 :Enabled AES192 :Enabled AES256 :Enabled arcfour :Enabled blowfish :Enabled cast128 :Enabled twofish128 :Enabled twofish192 :Enabled twofish256 :Enabled Data Integrity Algorithm ---------------------------------- :Enabled...

  • Page 222: Ssl Commands

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual SSL C OMMANDS Secure Sockets Layer or SSL is a security feature that will provide a secure communication path between a host and client through the use of authentication, digital signatures and encryption. These security functions are implemented through the use of a ciphersuite, which is a security string that determines the exact cryptographic parameters, specific encryption algorithms and key sizes to be used for an authentication session and consists of three levels: 1.
  • Page 223 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual enable ssl Purpose To enable the SSL function on the Switch. Syntax enable ssl {ciphersuite {RSA_with_RC4_128_MD5 | RSA_with_3DES_EDE_CBC_SHA | DHE_DSS_with_3DES_EDE_CBC_SHA | RSA_EXPORT_with_RC4_40_MD5}} Description This command will enable SSL on the Switch by implementing any one or combination of listed ciphersuites on the Switch.
  • Page 224 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual disable ssl Purpose To disable the SSL function on the Switch. Syntax disable ssl {ciphersuite {RSA_with_RC4_128_MD5 | RSA_with_3DES_EDE_CBC_SHA | DHE_DSS_with_3DES_EDE_CBC_SHA | RSA_EXPORT_with_RC4_40_MD5}} Description This command will disable SSL on the Switch and can be used to disable any one or combination of listed ciphersuites on the Switch.
  • Page 225 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config ssl cachetimeout timeout seconds to specify the total time an SSL key exchange ID stays valid before the SSL module will require a new, full SSL negotiation for connection. The default cache timeout is 600 seconds Restrictions Only administrator-level users can issue this command.
  • Page 226 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show ssl Command: show ssl SSL status Disabled RSA_WITH_RC4_128_MD5 0x0004 Enabled RSA_WITH_3DES_EDE_CBC_SHA 0x000A Enabled DHE_DSS_WITH_3DES_EDE_CBC_SHA 0x0013 Enabled RSA_EXPORT_WITH_RC4_40_MD5 0x0003 Enabled DGS-3400:4# show ssl certificate Purpose Used to view the SSL certificate file status on the Switch. Syntax show ssl certificate Description...
  • Page 227 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#download ssl certificate 10.53.13.94 certfilename c:/cert.der keyfilename c:/pkey.der Command: download ssl certificate 10.53.13.94 certfilename c:/cert.der keyfilename c:/pkey.der Certificate Loaded Successfully! DGS-3400:4#...

  • Page 228: Jumbo Frame Commands

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual UMBO RAME OMMANDS Certain switches can support jumbo frames (frames larger than the standard Ethernet frame size of 1518 bytes). To transmit frames of up to 9K (and 9216 bytes tagged), the user can increase the maximum transmission unit (MTU) size from the default of 1536 by enabling the Jumbo Frame command.
  • Page 229 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#disable jumbo_frame Command: disable jumbo_frame Success. DGS-3400:4# show jumbo_frame Purpose Used to show the status of the jumbo frame function on the Switch. Syntax show jumbo_frame Description This command will show the status of the jumbo frame function on the Switch.

  • Page 230: D-Link Single Ip Management Commands

    ANAGEMENT OMMANDS Simply put, D-Link Single IP Management is a concept that will stack switches together over Ethernet instead of using stacking ports or modules. Switches using D-Link Single IP Management (labeled here as SIM) must conform to the following rules: SIM is an optional feature on the Switch and can easily be enabled or disabled.
  • Page 231 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual When a CS becomes a MS, it automatically becomes a member of the first SNMP community (include read/write and read only) to which the CS belongs. However if a MS has its own IP address, it can belong to SNMP communities to which other switches in the group, including the CS, do not belong.
  • Page 232 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#enable sim Command: enable sim Success. DGS-3400:4# disable sim Purpose Used to disable Single IP Management (SIM) on the Switch Syntax disable sim Description This command will disable SIM globally on the Switch. Parameters None.
  • Page 233 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual show sim information concerning the SIM group. To view a specific group, include the commander’s MAC address of the group. neighbor – Entering this parameter will display neighboring devices of the Switch. A SIM neighbor is defined as a switch that is physically connected to the Switch but is not part of the SIM group.
  • Page 234 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual To show other groups information in summary, if group is specified: DGS-3400:4#show sim group Command: show sim group SIM Group Name : default ID MAC Address Platform / Hold Firmware Device Name Capability Time...
  • Page 235 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#reconfig member_id 2 Command: reconfig member_id 2 DGS-3400:4# Login: config sim_group Purpose Used to add candidates and delete members from the SIM group. Syntax config sim_group [add <candidate_id 1-100> {<password>} | delete <member_id 1-32>] Description This command is used to add candidates and delete members from...
  • Page 236 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config sim Purpose Used to configure role parameters for the SIM protocol on the Switch. Syntax config sim [[commander {group_name <groupname 64> | candidate] | dp_interval <sec 30-90> | hold_time <sec 100-255>] Description This command is used to configure parameters of switches of the SIM.
  • Page 237 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual To transfer the CS (commander) to be a CaS (candidate): DGS-3400:4# config sim candidate Command: config sim candidate Success. DGS-3400:4# To transfer the Switch to be a CS: DGS-3400:4# config sim commander Command: config sim commander Success.
  • Page 238 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4# download sim_ms firmware_from_tftp 10.53.13.94 c:/des3828.had all Command: download sim_ms firmware_from_tftp 10.53.13.94 c:/des3828.had all This device is updating firmware. Please wait... Download Status : MAC Address Result ----------------- ------------- 00-01-02-03-04-00 Success 00-07-06-05-04-03 Success 00-07-06-05-04-03 Success DGS-3400:4#...
  • Page 239 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual To upload configuration files to a TFTP server: DGS-3400:4# upload sim_ms configuration 10.55.47.1 D:\configuration.txt 1 Command: upload sim_ms configuration 10.55.47.1 D:\configuration.txt 1 Success. DGS-3400:4#...

  • Page 240: Command History List

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual OMMAND ISTORY The switch history commands in the Command Line Interface (CLI) are listed (along with the appropriate parameters) in the following table. Command Parameters config <value 1-40> command_history show command_history Each command is listed, in detail, in the following sections.
  • Page 241 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual To display the parameters for a specific command: DES-3400:4# config stp Command:? config stp Command: config stp Usage: {maxage <value 6-40> | maxhops <value1-20> | hellotime <value 1- 10> | forwarddelay <value 4-30> | txholdcount <value 1-10> | fbpdu [enable | disable] | lbd [enable | disable] | lbd_recover_timer [0 | <value 60-1000000>]} Description: Used to update the STP Global Configuration.
  • Page 242 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4#show command_history Command: show command_history ? show show vlan show command history DGS-3400:4#...

  • Page 243: Modify Banner And Prompt Commands

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual ODIFY ANNER AND ROMPT OMMANDS Administrator level users can modify the login banner (greeting message) and command prompt by using the commands described below. Command Parameters config greeting_message {default} config command_ prompt [<string 16>...
  • Page 244 DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual DGS-3400:4# config greeting_message Command: config greeting_message Greeting Messages Editor ================================================================================ DGS-3400 Gigabit Ethernet Switch Command Line Interface Firmware: Build 1.20-B15 Copyright(C) 2004-2007 D-Link Corporation. All rights reserved. ================================================================================ <Function Key> <Control Key> Ctrl+C Quit without save left/right/ Ctrl+W...
  • Page 245 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual config command prompt Purpose Used to Configure the command prompt. Syntax config command_prompt [<string 16> | username | default] Description Administrator level users can use this command to change the command prompt.

  • Page 246: Technical Specifications

    xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual ECHNICAL PECIFICATIONS Sepecifications listed here apply to all Switches in the DGS-3400 Series except where otherwise noted. General Standards IEEE 802.3 10BASE-T Ethernet IEEE 802.3u 100BASE-TX Fast Ethernet IEEE 802.3ab 1000BASE-T Gigabit Ethernet IEEE 802.3z 1000BASE-T (SFP “Mini GBIC”) IEEE 802.3ae (10G modules) IEEE 802.1D Spanning Tree...
  • Page 247 xStack DGS-3400 Series Layer 2 Gigabit Managed Switch CLI Manual Physical and Environmental Internal Power Supply AC Input: 100 - 240 VAC, 50-60 Hz Redundant Power Supply Power Consumption DGS-3400 Series Switch Module Inserts DGS-3426 (70.8 Watts) DEM-410CX (0.015 Watts) DGS-3427 (71.6 Watts) DEM-410X (6.16 Watts) DGS-3450 (131.34 Watts)

This manual is also suitable for:

Xstack dgs-3427Xstack dgs-3450

Table of Contents