Ruckus Wireless ZoneSwitch 4224 User Manual

page of 410

/ 410
Contents
Table of Contents
Bookmarks

Table of Contents

Quick Links

Enlarged version

Ruckus Wireless

™

ZoneSwitch

4124/4224

™

User Guide

Part Number 800-70292-001 (Revision B)

Published July 2011

www.ruckuswireless.com

Table of Contents

Chapters

Table of Contents

Summary of Contents for Ruckus Wireless ZoneSwitch 4224

Page 1: User Guide
Ruckus Wireless ™ ZoneSwitch 4124/4224 ™ User Guide Part Number 800-70292-001 (Revision B) Published July 2011 www.ruckuswireless.com...
Page 3: About This Guide
Most user guides and release notes are available in Adobe Acrobat Reader Portable Document Format (PDF) or HTML on the Ruckus Wireless Support Web site at: http://support.ruckuswireless.com/...
Page 4: Related Documentation
Documentation Feedback Ruckus Wireless is interested in improving its documentation and welcomes your comments and suggestions. You can e-mail your comments to Ruckus Wireless at: docs@ruckuswireless.com When contacting us, please include the following information: Document title ■...
Page 5: Table Of Contents
About This Guide ..............i Document Conventions ................. i Related Documentation ................ii Documentation Feedback ................ii ii Contents ................iii 1 Introducing Ruckus Wireless ZoneSwitch ......1 Overview ....................... 2 General Specifications .................. 3 Physical Features ..................4 ZoneSwitch 4124 ......................4 Buttons, LEDs, Ports, and Connectors ..............
Page 6: Contents
Contents Desktop Installation ..................27 Rack Mount Installation ................28 Cabling and Powering On the Switch ............30 Preparing your Computer for Switch Setup ..........31 Windows XP Setup ....................31 Windows 7 Setup ...................... 34 MAC OSX Setup ......................38 3 Accessing the Switch ............
Page 7 Contents Spanning Tree ..................115 MSTP Global Config ....................115 CIST Config ......................116 CIST Basic Port Config .................... 117 CIST Advanced Port Config ................... 119 MSTP Instance Config .................... 120 Designated Topology Info ..................121 Regional Topology Info ..................122 LLDP ......................
Page 8 Contents logout ........................166 mode ........................167 ping .......................... 168 reboot ........................169 run download config-file tftp ................. 170 run download image tftp ..................171 run download bootloader tftp ................172 run save config to flash ................... 172 run upload config-file tftp ..................173 show running-config ....................
Page 9 Contents telnet-server enable ....................206 telnet-server inactivity-timer ................... 207 username ......................... 208 Layer-2 Interface Commands ..............209 flow-control ......................209 getport ........................210 jumbo ........................210 port monitor ......................211 show interface counters ..................212 show interface counters error ................213 clear interface counters ..................
Page 10 Contents spanning-tree mst forward-time ................241 spanning-tree mst max-age ................... 242 spanning-tree mst max-hops ................. 243 spanning-tree mst instance priority ............... 243 spanning-tree mst instance vlan ................244 spanning-tree mst shutdown ................. 245 spanning-tree mst port-priority ................245 spanning-tree mst cost ................... 246 spanning-tree mst init-migration ................
Page 11 Contents show vlan-gvrp ......................275 show vlan port ......................276 show vlan-by-port ....................277 show vlan protocols-group ..................278 show protocol-vlan ....................279 Quality of Service Commands ..............280 mls qos ........................280 qos trust mode ......................280 show qos trust mode ....................281 priority-queue cos-map ..................
Page 12 Contents dot1x re-authenticate ..................... 314 dot1x init ........................314 dot1x control-direction ................... 315 dot1x port-control ....................316 show dot1x ....................... 317 RADIUS Commands .................. 318 RADIUS-server host ....................318 show RADIUS-server ....................319 SNTP Commands ..................320 show SNTP ....................... 320 SNTP daylight-saving ....................
Page 13 Contents show IP ssl service ....................346 show IP ssl configuration ..................347 IP ssl service ......................349 IP ssl cipher-list ......................350 IP ssl default-ciphers ....................351 crypto ssl gen key rsa ....................351 crypto ssl gen cert-req algo rsa ................352 crypto ssl save-key-cert ...................
Page 14 Contents Electromagnetic Emissions ..................383 Safety Agency Approvals ..................383 Industry Canada Statement ..................383 Australia Statement ....................383 European Union Notices ..................383 Disposal & Recycling ....................383 7 Index ................385...
Page 15: Introducing Ruckus Wireless Zoneswitch
Introducing Ruckus Wireless ZoneSwitch Introducing Ruckus Wireless ZoneSwitch In this Chapter Overview ............
Page 16: Overview
The ZoneSwitch 4124 supports IEEE802.3af PoE on all 24 ports, with a total power ■ budget of 180W. The ZoneSwitch 4224 supports IEEE802.3at PoE on all 24 ports, with a total power ■ budget of 375W. ZoneSwitch also features MDI/MDI-X auto-sense on all ports, flow control to ensure zero packet loss, back pressure for half-duplex operation, non-blocking, and Store-and- Forward mechanisms to ensure optimal network efficiency.
Page 17: General Specifications
Introducing Ruckus Wireless ZoneSwitch General Specifications General Specifications Item Specification Models ZoneSwitch 4124 ZoneSwitch 4224 Form Factor EIA Standard 1RU size Standards IEEE 802.1d, IEEE 802.1p, IEEE 802.1q, IEEE 802.1s, IEEE 802.1w, IEEE 802.1x, IEEE 802.1ab, IEEE 802.3ab, IEEE 802.3ad, IEEE 802.3af, IEEE 802.3at...
Page 18: Physical Features
Introducing Ruckus Wireless ZoneSwitch Physical Features Physical Features Two models of ZoneSwitch are currently available: ZoneSwitch 4124 and ZoneSwitch 4224. This section describes the physical features of these two ZoneSwitch models. ZoneSwitch 4124 This section describes the following physical features of ZoneSwitch 4124: Buttons, LEDs, Ports, and Connectors ■...
Page 19 Introducing Ruckus Wireless ZoneSwitch Physical Features 4. RJ-45 Ports 1-24 • 24-Gigabit Ethernet RJ-45 ports • 10BASE-T/100BASE-TX/1000BASE-TX • Half Duplex and Full Duplex mode • Auto-negotiation • MDI/MDI-X Auto Sense • Supports Flow Control to 802.3x for full duplex operation and backpressure for half duplex operation •...
Page 20: Front Panel
Introducing Ruckus Wireless ZoneSwitch Physical Features Front Panel Left Side Panel Right Side Panel Rear Panel...
Page 21: Zoneswitch 4224
Front, Side, and Rear Panel Layout ■ Figure 2. ZoneSwitch 4224 Buttons, LEDs, Ports, and Connectors Table 2 describes the buttons, LEDs, ports, and connectors on ZoneSwitch 4224. Table 2. Buttons, LEDs, ports, and connectors on ZoneSwitch 4224 Label Description 1.
Page 22 Introducing Ruckus Wireless ZoneSwitch Physical Features LINK/ACT LED • OFF - No link detected • Solid Green - On, link detected (Left LED Green) • Blinking Green - Active, data transfer POE LED • OFF - No powered device detected •...
Page 23: Front Panel
Introducing Ruckus Wireless ZoneSwitch Physical Features Front Panel Left Side Panel Right Side Panel Rear Panel...
Page 24: Hardware Features
Introducing Ruckus Wireless ZoneSwitch Hardware Features Hardware Features • Supports half duplex and full duplex modes and auto-negotiation for all 24-10BASE- T/100BASE-TX/1000BASE-TX ports. • ZS4124 supports IEEE 802.3af over all 24 ports, total POE power budget 180W. • ZS4224 supports IEEE 802.3at over all 24 ports, total POE power budget 375W.
Page 25: Software Features
Introducing Ruckus Wireless ZoneSwitch Software Features Software Features Switching Features Feature 24 port 802.3af 24 port 802.3af capable concurrent full 12 port 802.3af 12 port 802.3at concurrent full concurrent full 802.1d Spanning Tree Protocol (STP) • • • • 802.1w Rapid Spanning Tree Protocol (RSTP) 802.1s Multiple Spanning Tree Protocol (MSTP)
Page 26: Quality Of Service (Qos) And Access List (Acl) Features
Introducing Ruckus Wireless ZoneSwitch Software Features Quality of Service (QOS) and Access List (ACL) Features Feature 24 port 802.3af 24 port 802.3af capable concurrent full 12 port 802.3af 12 port 802.3at concurrent full concurrent full • • 802.1Q/P based Layer 2 QoS DSCP-based Recognition •...
Page 27: Security Features
Introducing Ruckus Wireless ZoneSwitch Software Features Security Features Feature 24 port 802.3af 24 port 802.3af capable concurrent full 12 port 802.3af 12 port 802.3at concurrent full concurrent full • • RADIUS Authentication / Authorization / Accounting • • TACACS+ Authentication / Authorization / Accounting 802.1x Extensible Authentication (EAP) - (SHSA)
Page 28: Management And Operation Features
Introducing Ruckus Wireless ZoneSwitch Software Features Management and Operation Features Feature 24 port 802.3af 24 port 802.3af capable concurrent full 12 port 802.3af 12 port 802.3at concurrent full concurrent full • • Web-based GUI - Device Configuration • • •...
Page 29: Layer 2 Functional Specifications
Introducing Ruckus Wireless ZoneSwitch Layer 2 Functional Specifications Layer 2 Functional Specifications 1. Ping Sends a 64-byte packet query to another device or computer over the TCP/IP network and waits for a reply. 2. TFTP & HTTP Upgrade ZoneSwitch configuration may be downloaded/uploaded via HTTP or TFTP.
Page 30 Introducing Ruckus Wireless ZoneSwitch Layer 2 Functional Specifications 9. ACL The ACL (access control list) provides packet filtering features for all packets that filter on source MAC addresses, destination MAC addresses, source IP addresses, destination IP addresses, protocol, source TCP/UDP port numbers, and destination TCP/UDP port numbers.
Page 31: Acl Action Flow
Introducing Ruckus Wireless ZoneSwitch Layer 2 Functional Specifications ACL Action Flow Incoming Packets Match Rule 1 No match Match Rule 2 No match Match Rule n No match Deny Action Drop Permit Pass...
Page 32 Introducing Ruckus Wireless ZoneSwitch Layer 2 Functional Specifications 10. DIFFSERV Diffserv provides different services for packets based on source MAC address, destination MAC address, VLAN ID, DSCP, source IP address, Destination IP address, protocol, source TCP/UDP port number, and destination TCP/UDP port number.
Page 33 Introducing Ruckus Wireless ZoneSwitch Layer 2 Functional Specifications 13. VLAN Up to 256 VLANs may be created simultaneously. The VLAN ID Range is 1 to 4094 and supports port based VLAN as each port may be configured as a PVID (default 1).
Page 34: Mac Address
Introducing Ruckus Wireless ZoneSwitch Layer 2 Functional Specifications 16. MAC Address The switch supports the IVL learning method. The capacity and secrue MAC specifications are as follows. Capacity: up to 8K MAC addresses 1024 static MAC addresses 256 L2 Multicast MAC addresses 512 secure MAC addresses Secure MAC: Once enabled, only specific MAC addresses can be forwarded by ...
Page 35: Sntp Client
Introducing Ruckus Wireless ZoneSwitch Layer 2 Functional Specifications 20. SNTP Client Supports server IP, polling interval, time zone, and display current time. 21. SYSLOG Supports log to remote host and console logging parameters. 22. DHCP Client supported DHCP functionality is allowed on the system.
Page 36: Qos Decision Flow
Introducing Ruckus Wireless ZoneSwitch Layer 2 Functional Specifications 27. QoS Quality of Service support on the system is IEEE802.1p based priority. This feature provides more than 4 level priority queues, queue scheduling (WRR and strict), DSCP (Diffserv), and TOS (IP Precedence). Also supports the enabling/disabling of DSCP/TOS priority and provides traffic class table.
Page 37 Introducing Ruckus Wireless ZoneSwitch Layer 2 Functional Specifications 28. SSH The SSH protocol provides a secure, remote connection to networked devices. The system supports SSH server function version SSHv2, and up to 4 concurrent SSH sessions. Users may use all CLI commands over an SSH session after successful login.
Page 38 Introducing Ruckus Wireless ZoneSwitch Layer 2 Functional Specifications 31. GVRP System supports dynamic VLANs and can Learn VLAN information from other switches. GVRP can be enabled/disabled on the system and individually for each port. 32. PoE Supports IEEE 802.3af/802.3at and PoE may be enabled/disabled for each port on the system.
Page 39: Installation & Setup
Installation & Setup Installation & Setup In this Chapter Before you Begin ........... Package Contents .
Page 40: Before You Begin
Package Contents One ZoneSwitch 4124 or ZoneSwitch 4224 ■ One Mounting Kit Including: ■...
Page 41: Desktop Installation
Installation & Setup Desktop Installation Desktop Installation The ZoneSwitch may be installed on a sturdy desktop or shelf area. Locate the four rubber feet included in the packaging and install them at the appropriate indentations located at the four corners of the bottom of the ZoneSwitch. Push each rubber foot into the indentation firmly.
Page 42: Rack Mount Installation
Installation & Setup Rack Mount Installation Rack Mount Installation The ZoneSwitch may be mounted in an EIA standard size 19-inch rack. Attach the L-shaped mounting brackets to the left and right sides of the ZoneSwitch. Line up the mounting bracket holes to the chassis screw holes. Use a Phillips #1 screwdriver and the included eight chassis screws (flat-head Phillips screws) provided in the mounting kit to secure the mounting brackets to the chassis Insert the ZoneSwitch into any available 1RU slot on the 19-inch rack.
Page 43 Installation & Setup Rack Mount Installation Mechanical Loading - Mounting of the equipment in a rack should be such that a hazardous condition is not a achieved due to uneven mechanical loading. Circuit Overloading - Consideration should be given to the connection of the equipment to the supply circuit and the effect that overloading of the circuits might have on over current protection and supply wiring.
Page 44: Cabling And Powering On The Switch
Installation & Setup Cabling and Powering On the Switch Cabling and Powering On the Switch 1. After installing your ZoneSwitch 4124/4224 hardware, prepare the included power cable and console cable (or Network cable - not included) for cabling and powering on the switch.
Page 45: Preparing Your Computer For Switch Setup
Installation & Setup Preparing your Computer for Switch Setup Preparing your Computer for Switch Setup The following section describes how to configure your Admin PC’s IP settings for TCP/IP connectivity to the switch. These instructions assume user knowledge and understanding of current and widely used Microsoft and Apple Computer operating systems.
Page 46 Installation & Setup Preparing your Computer for Switch Setup 2. When the Network Connections window appears, right click the icon for “Local Area Connection“ and select Properties.When the Local Area Connection Properties dialog box appears, select Internet Protocol (TCP/IP) from the scrolling list and click Properties.
Page 47 Installation & Setup Preparing your Computer for Switch Setup 3. Select Use the following IP address and make the following entries: 192.168.10.2 (or any address in the 192.168.10.x network other  IP Address than 192.168.10.1, which is being used by the switch) Subnet mask 255.255.255.0...
Page 48: Windows 7 Setup
Installation & Setup Preparing your Computer for Switch Setup Windows 7 Setup 1. On your Admin PC, right-click on the Networking icon, and select Open Network and Sharing Center.  Menu Bar > Networking icon > Open Network and Sharing Center ...
Page 49 Installation & Setup Preparing your Computer for Switch Setup 2. When the Network and Sharing Center window appears, click Change Adapter Settings. A list of the communications devices and network connectivity will open in the main window. Right-click Local Area Connection, and select Properties. ...
Page 50 Installation & Setup Preparing your Computer for Switch Setup 3. When the Local Area Connection Properties dialog box opens, select Internet Protocol Version 4 (TCP/IPv4), and click Properties....
Page 51 Installation & Setup Preparing your Computer for Switch Setup 4. Select Use the following IP address and make the following entries: 192.168.10.2 (or any address in the 192.168.10.x network other  IP Address than 192.168.10.1, which is being used by the switch) Subnet mask 255.255.255.0...
Page 52: Mac Osx Setup
Installation & Setup Preparing your Computer for Switch Setup MAC OSX Setup 1. On your Admin PC (Macintosh), go to the upper left corner of the screen and click the Apple logo. A drop down menu will appear. Click System Preferences and the System Preferences panel will open (or you may access the System Preferences directly from its icon in the dock depending on how your computer is setup).
Page 53 Installation & Setup Preparing your Computer for Switch Setup 2. When the Network window opens, the Location menu should be set to Automatic and the Show menu should be set to Network Status, which will display all network connectivity on your computer. Click the drop down Show menu and select Built-in Ethernet.
Page 54 Installation & Setup Preparing your Computer for Switch Setup 3. Select the TCP/IP tab and select Manually on the Configure IPv4 drop down menu. Make the following entries: 192.168.10.2 (or any address in the 192.168.10.x network other  IP Address than 192.168.10.1, which is being used by the switch)...
Page 55: Accessing The Switch
Accessing the Switch Accessing the Switch In this Chapter Overview ............Graphical User Interface Access .
Page 56: Overview
Accessing the Switch Overview Overview The Ruckus Wireless ZoneSwitch 4124/4224 is designed to assist attached hardware in switching frames based on Layer 2 smart switch technologies. This chapter introduces how to access the switch to establish enterprise and carrier class network environments.
Page 57: Graphical User Interface Access
Accessing the Switch Overview Graphical User Interface Access Access and configure the switch from any location via the switch’s IP address ■ Connect securely via SSL or SSH ■ Compatible for use with Internet Explorer 6, Firefox 3.5, or Safari 3.0 (or later versions ■...
Page 58 Accessing the Switch Overview 1. On your Admin PC, connect one end of a Network cable to any RJ-45 port on the front panel of the ZS4124/4224 and connect the other end to your computer. Open your compatible web browser and in the address bar, type the switch’s default IP address as follows: http://192.168.10.1...
Page 59: Command Line Interface Access
Accessing the Switch Overview Command Line Interface Access Access via direct cable connection which eliminates network bottlenecks, crashes, or ■ access irregularities No need for IP address or subnet configuration ■ Compatible for use with Microsoft Windows NT/2000/XP/Vista/7 and Apple MAC OSX ■...
Page 60 Accessing the Switch Overview 1. On your Admin PC, using the included console cable, connect one end of the console cable to the console port at the rear panel of the ZS4124/4224, connect the other end to an available console port your computer, then open the HyperTerminal as follows:  Start Menu >...
Page 61 Accessing the Switch Overview 3. The screen will prompt you how to connect. Select Com 1 or Com 2 (depending on which Com port the console cable on your computer is connected) press OK.  4. The next prompt asks you to confirm the Com properties. Match the settings in the illustration and press Apply, then OK: Depending on your system, the CLI login screen may not immediately display.
Page 62 Accessing the Switch Overview 5. Enter the default Admin name and Password at the login screen. Admin Name: admin Password: admin  Insert Image Here 6. You are now ready to configure a new network, change passwords or change IP address to match your network settings.
Page 63: Simple Network Protocol Management (Snmp) Access
Accessing the Switch Overview Simple Network Protocol Management (SNMP) Access Access and configure the switch using open standards and functions at the Manage- ■ ment Information Base (MIB) level Connect securely via SNMPv3 ■ Requires SNMP management software ■ Some settings may require calculations and there are limited amounts of information ■...
Page 64 Accessing the Switch Overview...
Page 65: Graphical User Interface
Graphical User Interface Graphical User Interface In this Chapter Overview ............GUI Layout .
Page 66: Overview
Overview Overview The Ruckus Wireless Graphical User Interface (GUI) is an embedded web based software tool that enables you to configure and monitor the ZoneSwitch 4124/4224 switch. Using the graphical user interface, you can issue commands remotely and securely via SSL or SSH with a supported web browser such as Microsoft Internet Explorer 6, Firefox 3.5, or...
Page 67: Gui Layout
GUI Layout GUI Layout The Ruckus Wireless ZoneSwitch 4124/4224 GUI application is presented visually in a main window (the dashboard) with two sub components (Menu Bar and Workspace) that you can use to manage and monitor your switch. Each component scales to the features, options, or information displayed within your web browser.
Page 68 Graphical User Interface GUI Layout User ID (click to log out) System date & time Product Name Current (Active) Page Workspace Menu Bar Dashboard...
Page 69: Navigation
Graphical User Interface GUI Layout Navigation The GUI enables navigation through a menu bar presented as a list of expandable menu items and sub-menus on the left side of the dashboard within your browser. The main menu bar is displayed on each page of the GUI and allows access to all switch commands and viewable information.
Page 70: General Information
Graphical User Interface General Information General Information The General Information menu group presents an overview of the ZoneSwitch 4124/4224 software configuration, hardware information, administration information, and system address information. General Info General Information > General Info The General Info menu item displays general system, software, hardware, administration and address information for the switch.
Page 71 Graphical User Interface General Information General Information System up for: Total switch up time in days, hours, minutes, and seconds ■ Boot Code Version/Date: Current Boot Code version and release date ■ Runtime Code Version/Date: Current software code and release date ■...
Page 72: System Admin
Graphical User Interface System Admin System Admin The System Administration menu group allows general configuration of the switch. It includes sub-menus including System Access, SNMP Configuration, and Tools. Access System Admin > Access The Access sub-menu presents menu items that configure how the switch interacts with connected devices, which IP addresses and servers to connect with, as well as the security settings that allow network access.
Page 73 Graphical User Interface System Admin IP Configuration MAC Address: Displays the switch MAC address ■ IP Address: Sets the switch IP address ■ Subnet Mask: Sets the switch subnet mask address ■ Default Gateway: Sets the switch default gateway address ■...
Page 74 Graphical User Interface System Admin Management Access System Admin > Access > Management Access The Management Access menu item Sets the access protocols to communicate with the switch including session idle time-out length and authentication login mode. Management Access Console UI Idle Timeout: Sets the time in minutes for console UI timeout. Timeout ■...
Page 75 Graphical User Interface System Admin TACACS Server Config System Admin > Access > TACACS Server Config The TACACS Server Configuration menu item allows you to add/remove, configure and display TACACS servers. TACACS Config Server IP Address: Sets the TACACS server IP address. ■...
Page 76 Graphical User Interface System Admin TACACS Statistics System Admin > Access > TACACS Statistics The TACACS Statistics menu item displays all TACACS statistical information on the system. You may refresh this menu item to view updated statistics.
Page 77: Ssh Configuration
Graphical User Interface System Admin SSH Configuration System Admin > Access > SSH Configuration The Secure Shell (SSH) Configuration menu item enables (default) and configures or disables the embedded SSH server on the system. SSH Config SSH Server: Enables (default) or disables the SSH Server. ■...
Page 78 Graphical User Interface System Admin SSH Server Key System Admin > Access > SSH Server Key The SSH Server Key menu item displays all Secure Shell (SSH) Server key information.
Page 79: Ssl Configuration
Graphical User Interface System Admin SSL Configuration System Admin > Access > SSL Configuration The Secure Socket Layer (SSL) Configuration menu item enables (default) or disables secure communications with the embedded web server within the switch. SSL Config SSL Server: Enables (default) or disables the SSL Server. ■...
Page 80 Graphical User Interface System Admin SSL Certification Info System Admin > Access > SSL Certification Info The SSL Certification Info menu item displays all SSL Server Certification information.
Page 81 Graphical User Interface System Admin Username/Password System Admin > Access > Username/Password The Username/Password menu item allows you to change the system Username and Password. User Name Password Change Current User Name: Enters the current user name to change. ■ Current Password: Enters the current user password.
Page 82 Graphical User Interface System Admin Access Control System Admin > Access > Access Control The Access Control menu item configures and creates lists of network IP addresses and masks that may communicate with the system. Access Control Config Network: Sets the network IP address. ■...
Page 83 Graphical User Interface System Admin RADIUS Server Config System Admin > Access > RADIUS Server Config The RADIUS Server Config menu item configures centralized Authentication, Authoriza- tion, and Accounting (AAA) management for computers to connect and use the switch. RADIUS Config Server IP Address: Sets the RADIUS server IP address.
Page 84: Snmp Config
Graphical User Interface System Admin SNMP Config System Admin > SNMP Config The Simple Network Management Protocol (SNMP) Config sub-menu presents menu items that allow configuration of network attached devices. SNMP v1/v2c/v3 and SNMP trap is supported on the switch and supports up to 50 user-name, 10 community, 50 group, 50 access, 10 context-name, 50 view-tree, 10 notify, 10 target-address, and 10 target- parameter entries.
Page 85 Graphical User Interface System Admin SNMP Security Settings System Admin > SNMP Config > SNMP Security Settings The SNMP Security Settings menu item creates, configures, and displays SNMP security settings. SNMP Security Settings User Name: Sets the user name to create and/or configure. ■...
Page 86: Snmp Group Settings
Graphical User Interface System Admin SNMP Group Settings System Admin > SNMP Config > SNMP Group Settings The SNMP Group Settings menu item creates, configures, and displays SNMP group settings. SNMP Group Settings Group Name: Sets the group name to create and/or configure. ■...
Page 87 Graphical User Interface System Admin SNMP Access Settings System Admin > SNMP Config > SNMP Access Settings The SNMP Access Settings menu item creates, configures, and displays SNMP user group access to the switch. SNMP Group Settings Group Name: Sets the group name to create and/or configure. ■...
Page 88 Graphical User Interface System Admin SNMP ViewTree Settings System Admin > SNMP Config > SNMP ViewTree Settings The SNMP ViewTree Settings menu item creates, configures, and displays view tree settings. SNMP ViewTree Settings View Name: Sets the view name to create and/or configure. ■...
Page 89 Graphical User Interface System Admin SNMP Notify Settings System Admin > SNMP Config > SNMP Notify Settings The SNMP Notify Settings menu item configures and displays notify settings. SNMP ViewTree Settings Notify Name: Sets the notify name to create and/or configure. ■...
Page 90 Graphical User Interface System Admin SNMP Community Settings System Admin > SNMP Config > SNMP Community Settings The SNMP Community Settings menu item creates, configures, and displays SNMP community settings. SNMP Community Settings Community Index: Sets the community access ID for SNMP v1 & v2c and it must be ■...
Page 91 Graphical User Interface System Admin SNMP Target Address Settings System Admin > SNMP Config > SNMP Target Address Settings The SNMP Target Address Settings menu item creates, configures, and displays SNMP target addresses. SNMP Target Address Settings Target Name: Sets the target address (host) name. ■...
Page 92 Graphical User Interface System Admin SNMP Target Parameter Settings System Admin > SNMP Config > SNMP Target Parameter Settings The SNMP Target Parameter Settings menu item creates, configures, and displays target parameter settings. SNMP Target Parameter Settings Param Name: Sets the target parameter name. ■...
Page 93 Graphical User Interface System Admin Trap Selection System Admin > SNMP Config > Trap Selection The Trap Selection menu item configures specified SNMP notifications. SNMP Trap Selection Enabled Link Up/Down Port: Sets the port to enable SNMP traps. ■ Authentication Failure: Enables or disables (default) notification if authentication failure. Bridge New Root: Enables or disables (default) notification if new root change.
Page 94: Tools
Graphical User Interface System Admin Tools System Admin > Tools The Tools sub-menu presents menu items that configure what communications protocols the switch uses, configuration settings, as well as uploading and downloading software on the system. Software Management System Admin > Tools > Software Management The Software Management menu item allows you to download and upload TFTP and HTTP management software.
Page 95 Graphical User Interface System Admin TFTP Management Image Version/Date: Displays the current system software and its release date. ■ TFTP Server IP: Sets the TFTP Server IP address. ■ TFTP Download/Upload: Sets whether to download (default) or upload files to the ■...
Page 96 Graphical User Interface System Admin System Reboot System Admin > Tools > System Reboot The System Reboot menu item allows you to reboot the switch. System Reboot Reboot Type: Sets the type of reboot to execute. May be normal reboot (reboots the ■...
Page 97 Graphical User Interface System Admin Save Config System Admin > Tools > Save Config The Save Config menu item saves all user defined configuration settings to non-volatile flash memory. NOTE: Remember to save configuration often to avoid losing your changes to system settings.
Page 98 Graphical User Interface System Admin SNTP Config System Admin > Tools > SNTP Config The SNTP Config menu item configures and displays current system time settings. SNTP Configuration Time (HH:MM:SS): Displays the current system time. ■ Date (YYYY/MM/DD): Displays the current system date and day of the week. ■...
Page 99: Syslog Settings
Graphical User Interface System Admin Syslog Settings System Admin > Tools > Syslog Settings The Syslog Settings menu item adds, deletes, and displays logging status settings on the system. Logging Status Settings: Logging Status: Enables (default) or disables logging on the system. ■...
Page 100 Graphical User Interface System Admin System Log System Admin > Tools > System Log The System Log menu item displays and clears system log events.
Page 101 Graphical User Interface System Admin Upload/Download Config System Admin > Tools > Upload/Download Config The Upload/Download Config menu item sets the TFTP Server IP address and configura- tion file to upload or download. TFTP Configuration: TFTP Server IP: Sets the TFTP Server IP address to access the configuration file. ■...
Page 102: Ports
Graphical User Interface Ports Ports The Ports menu group presents sub menus and menu items that configure and display port information on the switch. Basic Port Config Ports > Basic Port Config The Basic Port Config sub-menu presents menu items that configure and display how each individual port on the switch interacts with connected devices.
Page 103 Graphical User Interface Ports Port Config: Select the port(s) to configure, make changes and click “Apply”. Admin Status: Enables (default) or disables a port. ■ Mode: Sets the speed duplex on a port. Default Auto. ■ Jumbo: Enables or disables (default) jumbo frame control on a port. ■...
Page 104: Port Counters
Graphical User Interface Ports Port Counters Ports > Basic Port Config > Port Counters The Port Counters menu item configures and displays port counter (data transmission) information. Port Counters Select Port: Sets the port to refresh or reset. ■ Refresh Time: Sets the time in seconds to refresh port counter information. May be 5 ■...
Page 105 Graphical User Interface Ports Port Mirror Ports > Basic Port Config > Port Mirror The Port Mirror menu item enables or disables port mirroring and configures and displays port monitoring settings. Mirroring Status Status: Enables or disables (default) port mirroring on the system. ■...
Page 106: Port Security
Graphical User Interface Ports Port Security Ports > Port Security The Port Security sub-menu presents menu items that configure and display each port’s security settings. Secure MAC Ports > Port Security > Secure MAC The Secure MAC menu item configures and displays ports, VLANs and their associated MAC addresses.
Page 107 Graphical User Interface Ports 802.1x Ports > Port Security >802.1x The 802.1x menu item configures advanced 802.1x protocol security settings in the system.
Page 108 Graphical User Interface Ports Dot1x Status Setting: Enables (default) or disables Dot1x settings. Flood eapol Setting: Enables or disables (default) flood eapol settings. Authentication Mode Setting: Sets Dot1x authentication mode. Default RADIUS. Accounting Mode Setting: Sets accounting mode. Default none. NAS ID Setting: Sets the Dot1x Network Access Server (NAS) ID.
Page 109: Link Aggregation
Graphical User Interface Ports Link Aggregation Ports > Link Aggregation The Link Aggregation sub-menu presents menu items that configure multiple network cables/ports in parallel to increase the link speed and increase redundancy for higher availability System Priority Ports > Link Aggregation > System Priority The System Priority menu item configures and displays system priority settings.
Page 110 Graphical User Interface Ports Add / Modify Group Ports > Link Aggregation > Add / Modify Group The Add / Modify Group menu item creates, configures and displays link aggregation groups. Add Group Group Admin Key: Sets the unique group admin key. May be 0 to 65535. ■...
Page 111 Graphical User Interface Ports Port Priority Ports > Link Aggregation > Port Priority The Port Priority menu item configures and displays port priority status. Port Priority Port: Sets the port to configure. ■ Port Priority: Sets the port priority. May be 0 to 255. Default 1. ■...
Page 112: Port Protected
Graphical User Interface Ports Port Protected Ports > Port Protected The Port Protected sub-menu presents menu items that configure individual port protec- tion. Port Protected Ports > Port Protected > Port Protected The Port Protected menu item sets and displays the port(s) to protect (isolate) and an uplink interface.
Page 113 Graphical User Interface Ports Port Protected Uplink Settings Port: Sets the port to configure. ■ Status: Enables or disables (default) port protection. ■ Interface Type: Sets the interface type. Default Ethernet. ■ Uplink: Sets the uplink port. ■ Port Protected Uplink Status: Displays a list of ports and their associated protected status and uplink settings.
Page 114: Vlans
Graphical User Interface VLANs VLANs The Virtual Local Area Network (VLAN) menu group configures a group of hosts with a common set of requirements that communicate as if they were attached to the same broadcast domain, regardless of their physical location. The switch supports up to 256 VLANs created simultaneously and multiple management VLAN configuration.
Page 115 Graphical User Interface VLANs Create / Modify 802.1Q Trunk VLANs > 802.1Q Vlan > Create/Modify 802.1Q Trunk The Create/Modify 802.1Q Trunk menu item creates, configures and displays 802.1Q Trunk settings. Global GVRP: Enables or disables (default) Global GVRP on the system. 802.1Q Trunk config: Enables or disables (default) Global GVRP on the system.
Page 116 Graphical User Interface VLANs VLANs by Port VLANs > 802.1Q Vlan > VLANs by Port The VLANs by Port menu item displays and configures VLANs by port...
Page 117: Protocol Vlan
Graphical User Interface VLANs Protocol Vlan VLANs > Protocol Vlan The Protocol Vlan sub-menu presents menu items that configure individual and group VLAN protocol settings. Protocol Vlan Status VLANs > Protocol Vlan > Protocol Vlan Status The Protocol Vlan Status menu item configures global and individual VLAN status settings. Global Protocol VLAN Status: Enables or disables (default) Global VLAN protocol on the system.
Page 118 Graphical User Interface VLANs Protocol Group VLANs > Protocol Vlan > Protocol Group The Protocol Group menu item configures and displays protocol group VLANs. VLAN Protocol Group Settings Frame Type: Sets the VLAN encap frame type. May be enet-v2, snap, or llc. Default ■...
Page 119 Graphical User Interface VLANs Port Protocol VLANs > Protocol Vlan > Port Protocol The Port Protocol menu item configures and displays individual port VLAN protocol settings. Port VLAN Protocol Settings Port: Sets the port to configure. ■ Group ID: Sets the group ID to associate with the selected port. ■...
Page 120: Igmp Snooping
Graphical User Interface IGMP Snooping IGMP Snooping The Internet Group Management Protocol (IGMP) Snooping menu group presents settings that configure listening to (snooping) IGMP network traffic between hosts and routers by processing the packets sent over the network. IGMP Snooping Config IGMP Snooping >...
Page 121: Vlan Filter Table
Graphical User Interface IGMP Snooping VLAN Filter Table IGMP Snooping > VLAN Filter Table The VLAN Filter Table menu item configures and displays VLAN filters. VLAN Filter setting VLAN ID: Sets the VLAN ID. May be 1 to 4094. ■ Status: Filters (default) or accepts all data packets sent through the VLAN.
Page 122: Router Port Table
Graphical User Interface IGMP Snooping Router Port Table IGMP Snooping > Router Port Table The Router Port Table menu item displays a table of VLANs and associated router ports.
Page 123: Static Multicast Config
Graphical User Interface IGMP Snooping Static Multicast Config IGMP Snooping > Static Multicast Config The Static Multicast Config menu item configures and displays the Static MAC address associated with a VLAN. Static Multicast Config: Allows you to add or remove MAC address, VLAN settings. VLAN ID: Sets the host port timer in seconds.
Page 124: Multicast Members Config
Graphical User Interface IGMP Snooping Multicast Members Config IGMP Snooping > Multicast Members Config The Multicast Members Config menu item configures VLAN multicast members. Multicast Member Config VLAN ID: Sets the VLAN to configure. ■ Multicast address: Sets the multicast address to associated with a VLAN ID. ■...
Page 125: Forwarding Db
Graphical User Interface Forwarding DB Forwarding DB The Forwarding Data Base (FDB) menu group presents menu items that configure FDB settings for individual ports, MAC addresses and VLANs. Add Static FDB Entries Forwarding DB > Add Static FDB Entries The Add Static FDB Entries menu item adds, removes and displays forwarding database setting on the system.
Page 126: Fdb By Port
Graphical User Interface Forwarding DB FDB by Port Forwarding DB > FDB by Port The FDB by Port menu item configures and displays forwarding database age-out time by port. Age-Out Time: Sets the age-out time in seconds. May be 10 to 630. Default 300. FDB Entries By Port Select Port: Sets a port and displays a list of port entries.
Page 127: Fdb By Mac
Graphical User Interface Forwarding DB FDB by MAC Forwarding DB > FDB by MAC The FDB by MAC menu item configures and displays forwarding database age-out time by MAC address. Age-Out Time: Sets the age-out time in seconds. May be 10 to 630. Default 300. FDB Entries by MAC: Displays a list of FDB entries.
Page 128: Fdb By Vid
Graphical User Interface Forwarding DB FDB by VID Forwarding DB > FDB by VID The FDB by VID menu item configures and displays forwarding database age-out time by VLAN ID. Age-Out Time: Sets the age-out time in seconds. May be 10 to 630. Default 300. FDB Entries by VID Select VLAN ID: Sets a VLAN and displays a list of entries.
Page 129: Spanning Tree
Graphical User Interface Spanning Tree Spanning Tree The Multiple Spanning tree protocol (STP) menu group presents menu items that ensures a loop-free topology for any bridged LAN. Therefore preventing bridge loops and ensuing broadcast radiation. MSTP Global Config Spanning Tree > MSTP Global Config The MSTP Global Config menu item configures MSTP settings on the system.
Page 130: Cist Config
Graphical User Interface Spanning Tree CIST Config Spanning Tree > CIST Config The CIST Config menu item configures CIST settings. Bridge Information: Displays current CIST bridge information. Bridge Configure CIST Bridge ID: Displays current CIST bridge ID. ■ CIST Bridge Priority: Sets the CIST bridge priority. ■...
Page 131: Cist Basic Port Config
Graphical User Interface Spanning Tree CIST Basic Port Config Spanning Tree > CIST Basic Port Config The CIST Basic Port Config menu item configures and displays individual port priority, path and STP status.
Page 132 Graphical User Interface Spanning Tree Port Configure Priority (Hex): Selects and sets the port priority. Default 0x80. ■ Path Cost (1-200000000): Selects and sets the CIST path cost. Default 2000000. ■ STP Status: Selects, then Enables (default) or disables STP status. ■...
Page 133: Cist Advanced Port Config
Graphical User Interface Spanning Tree CIST Advanced Port Config Spanning Tree > CIST Advanced Port Config The CIST Advanced Port Config menu item configures and displays administrative/ operator port settings. Port Configure: Admin/OperEdge: Selects and sets Administrator or Operator edge. Default True. ■...
Page 134: Mstp Instance Config
Graphical User Interface Spanning Tree MSTP Instance Config Spanning Tree > MSTP Instance Configuration The MSTP Instance Configuration menu item sets and displays MSTP settings. Instance Configuration: MSTP Instance ID: Sets the MSTP instance ID. May be 1 to 31. ■...
Page 135: Designated Topology Info
Graphical User Interface Spanning Tree Designated Topology Info Spanning Tree > Designated Topology Info The Designated Topology Info menu item displays all designated topology information on the system.
Page 136: Regional Topology Info
Graphical User Interface Spanning Tree Regional Topology Info Spanning Tree > Regional Topology Info The Regional Topology Info menu item displays all regional topology information on the system.
Page 137: Lldp
Graphical User Interface LLDP LLDP The Link Layer Discovery Protocol (LLDP) menu group provides a method for switch, routers and access points to advertise their identification, configuration, and capabilities to neighboring devices that store the data in a MIB. LLDP Basic Settings LLDP >...
Page 138: Lldp Port Settings
Graphical User Interface LLDP LLDP Port Settings LLDP > LLDP Port Settings The LLDP Port Settings menu item configures and displays LLDP ports settings to transmit or receive state.
Page 139 Graphical User Interface LLDP Port Configure: Transmit State: Selects, enables (default) or disables LLDP transmit state on a port. ■ Receive Status: Selects, enables (default) or disables LLDP transmit state on a port ■ Port Setting Information: Selects and displays LLDP transmit state by port. ■...
Page 140: Lldp Basic Tlv Settings
Graphical User Interface LLDP LLDP Basic Tlv Settings LLDP > LLDP Basic Tlv Settings The LLDP Basic Tlv Settings menu item sets and displays basic tlv settings.
Page 141 Graphical User Interface LLDP Tlv Configure: Port Description: Selects, enables (default) or disables port description. ■ System Name: Selects, enables (default) or disables system name. ■ System Description: Selects, enables (default) or disables system description. ■ System Capability: Selects, enables (default) or disables system capability. ■...
Page 142: Llds Dot1/Dot3 Tlv Settings
Graphical User Interface LLDP LLDS Dot1/Dot3 Tlv Settings LLDP > LLDP Dot1/Dot3 Tlv Settings The LLDP Dot1/Dot3 Tlv Settings menu item sets and displays Dot1/Dot3 tlv settings.
Page 143 Graphical User Interface LLDP Tlv Configure: Dot1 Tlv Port Vlan Id: Selects, enables (default) or disables port Vlan ID. ■ Dot3 Tlv MAC PHY Config: Selects, enables (default) or disables MAC PHY config. ■ Power Via MDI: Selects, enables (default) or disables power via MDI. ■...
Page 144: Lldp Neighbors Info
Graphical User Interface LLDP LLDP Neighbors Info LLDP > LLDP Neighbors Info The LLDP Neighbors Info menu item displays all or specific LLDP neighbor information by port. You may also clear the displayed information.
Page 145: Lldp Traffic
Graphical User Interface LLDP LLDP Traffic LLDP > LLDP Traffic The LLDP Traffic menu item displays all or specific LLDP traffic information by port. You may also clear the displayed information...
Page 146: Lldp Errors
Graphical User Interface LLDP LLDP Errors LLDP > LLDP Errors The LLDP Errors menu item displays all LLDP errors on the system.
Page 147: Qos
Graphical User Interface The Quality of Service (QoS) menu group configure the ability to provide different priorities to different applications, users, or data flows, or to guarantee a certain level of performance to a data flow. Policy Config QoS > Policy Config The Policy Config sub-menu presents menu items that configure and display QoS policies on the system.
Page 148 Graphical User Interface Diffserv Status: Enables or disables (default) diffserve status on the system. Create Classifier Classifier Index: Sets the classifier index. May be 1 to 65535. ■ Source MAC Address: Sets the source MAC address. ■ Destination MAC Address: Sets the destination MAC address. ■...
Page 149 Graphical User Interface Create / Modify In-Profile Action QoS > Policy Config > Create / Modify In-Profile Action The Create / Modify In-Profile Action menu item sets and displays in-profile actions. Create In-Profile Index: Sets the in-profile index. May be 1 to 65535. ■...
Page 150 Graphical User Interface Create / Modify Meter QoS > Policy Config > Create / Modify Meter The Create / Modify Meter menu item sets and displays meter actions. Create Meter ID: Sets the meter ID. May be 1 to 65535. ■...
Page 151 Graphical User Interface Create / Modify Out-Profile Action QoS > Policy Config > Create / Modify Out-Profile Action The Create / Modify Out-Profile Action menu item sets and displays out-profile actions Create Out-Profile Index: Sets the out-profile index. May be 1 to 65535. ■...
Page 152 Graphical User Interface Create / Modify Port List QoS > Policy Config > Create / Modify Port List The Create / Modify Port List menu item sets and displays port lists. Create Port List Index: Sets the out-profile index. May be 1 to 65535. ■...
Page 153 Graphical User Interface Create / Modify Policy QoS > Policy Config > Create / Modify Policy The Create / Modify Policy menu item sets and displays policies on the system. Create Port List Policy Index: Sets the policy index to create. May be 1 to 65535. ■...
Page 154: Access List
Graphical User Interface Access List QoS > Access List The Access List sub-menu presents menu items that configure a list of permissions attached to an object thus providing packet filtering features for all packets that filter packet bases on source MAC address, destination MAC address, source IP address, destination IP address, protocol, source TCP/UDP port numbers, and destination TCP/ UDP port numbers Access List Config...
Page 155 Graphical User Interface Access List Binding QoS > Access List > Access List Port Binding The Access List Port Binding menu item sets and displays access lists to bind.
Page 156: Queue Config
Graphical User Interface Queue Config QoS > Queue Config The Queue Config sub-menu presents menu items that configure and display queue and DSCP mapping on the system. Queue Mapping QoS > Queue Config > Queue Mapping The Queue Mapping menu item sets and displays queue mapping settings. Queue Trust Mode: Selects Up (default) or DSCP mapping mode.
Page 157: Dscp Mapping
Graphical User Interface DSCP Mapping QoS > Queue Config > DSCP Mapping The DSCP Mapping menu item sets all DSCP to Queue mapping on the system. DSCP to Queue Mapping: Sets the priority for each DSCP ID on the system. Low priority is 0, high priority is 3.
Page 158: Storm Control
Graphical User Interface Storm Control QoS > Storm Control The Storm Control menu item sets and displays system wide storm control by port. Port Storm Control Setting No.: Selects the port to configure. ■ DLF: Enables or disables (default) DLF (Destination Lookup Failure). ■...
Page 159: Rmon
Graphical User Interface RMON RMON The Remote Network Monitoring (RMON) menu group configures the monitoring and protocol analysis of LANs. RMON Global Status RMON > RMON Global Status The RMON Global Status menu item enables or disables RMON status on the switch. Global RMON Status: Enables (default) or disables global RMON status.
Page 160: Rmon Statistics
Graphical User Interface RMON RMON Statistics RMON > RMON Statistics The RMON Statistics menu item selects and displays SNMP access settings by port. SNMP Access Settings Interface: Selects a port to display and refreshes current information. ■ RMON Interface Statistics: Displays all RMON interface statistics.
Page 161: History Control
Graphical User Interface RMON History Control RMON > History Control The History Control menu item sets and displays RMON history by interface. History Control Settings History Entry No.: Sets the history index. May be 1 to 65535. ■ Source Interface: Selects a port. ■...
Page 162: History Table
Graphical User Interface RMON History Table RMON > History Table The History Table menu item selects a history entry number and displays its associated history table statistics.
Page 163: Events Control
Graphical User Interface RMON Events Control RMON > Events Control The Events Control menu item sets and displays RMON events. Events Control Event Entry: Sets the event index. May be 1 to 65535. ■ Description: Enters a comment describing the event. May be up to 127 characters. ■...
Page 164: Events Log
Graphical User Interface RMON Events Log RMON > Events Log The Events Log menu item displays event logs.
Page 165: Alarms
Graphical User Interface RMON Alarms RMON > Alarms The Alarms menu item sets and displays switch alarms. Alarms Settings Alarm Entry: Sets the alarm group index. May be 1 to 65535. ■ Alarm Variable: Enters a comment describing the event. May be up to 127 characters. ■...
Page 166: Poe
Graphical User Interface The Power over Ethernet (POE) menu group configures the transmission of electrical power along with data on Ethernet cabling on the switch. The switch supports IEEE 802.3af/ 802.3at and enable/disable POE for each port on the system. Users may set POE priority as Critical/High/Low for each port on the system.
Page 167 Graphical User Interface Port POE Settings Port: Selects the port to configure. ■ Power-Inline: Selects the port power inline settings. May be auto (default) or never. ■ Power-Priority: Selects the port power priority. May be critical (default), high, or low. ■...
Page 168 Graphical User Interface...
Page 169: Command Line Interface
Command Line Interface Command Line Interface In this Chapter Overview ............157 Help Key.
Page 170 Command Line Interface RMON Commands ..........364 POE Commands .
Page 171: Overview
Overview Overview The Ruckus Wireless Command Line Interface (CLI) is a software tool that enables you to configure and monitor supported Ruckus Wireless devices. Using the command line interface, you can issue commands from an operating system prompt, such as the Microsoft Windows command prompt (C:\) or a Apple MAC OSX terminal.
Page 172: Help Key
Command Line Interface Overview Help Key COMMAND Description abbreviated-command-entry<?> Provides a list of commands that begin with a particular character string. (No space between command and question mark.) Completes a partial command name. abbreviated-command-entry<Tab> <?> Lists all commands available for a particular command mode.
Page 173 Command Line Interface Overview [Syntax] : spanning-tree mst shutdown [Syntax] : spanning-tree mst port-priority <priority> [Syntax] : spanning-tree mst cost <cost> [Syntax] : spanning-tree mst init-migration [Syntax] : spanning-tree mst edgeport [Syntax] : spanning-tree mst point-to-point {forcetrue|force- false|auto} [Syntax] : spanning-tree mst <instance> shutdown [Syntax] : spanning-tree mst <instance>...
Page 174: Command Hierarchy
Command Line Interface Command Hierarchy Command Hierarchy Command Mode Hierarchy Figure 3. CLI Command Mode Hierarchy User EXEC Mode (exec) Privileged EXEC Mode (privExec) Global Configuration Mode (config) ACL Configuration Mode Interface Configuration Mode (config-if) (config-access) A specific value is presented for each command mode at the prompt line. You must use specific commands to enter or exit each command mode;...
Page 175: Command Mode Prompts
Command Line Interface Command Hierarchy Command Mode Prompts Command Mode Prompts and Entrace/Exit Commands TABLE 1. Command Mode Prompt Enter/Exit Command User EXEC (exec) Switch> • Default mode, automatically entered • Logout or exit to quit Privileged EXEC Switch# • Enable to enter from (privExec) User EXEC mode •...
Page 176: Configuration Hierarchy
Command Line Interface Command Hierarchy Configuration Hierarchy Figure 4. Configuration Hierarchy hostname switch Global configuration commands hostname switch interface gigabitEthernet 1/1 Insert Image Here speed-duplex 10-half no flow-control spanning-tree mst cost 11 Port interface commands spanning-tree mst port-priority 81 speed-duplex 10-half no flow-control spanning-tree mst cost 11 spanning-tree mst port-priority 81...
Page 177: Basic Commands
Command Line Interface Basic Commands Basic Commands Basic commands allow you to switch between command modes, upload/download soft- ware, ping interfaces and reboot the switch. Basic commands give access to and config- uration options for all other commands on the system. config Allows access to the Global Configuration (config) command mode.
Page 178: Exit
Command Line Interface Basic Commands Exits configuration mode to Privileged EXEC mode. Command Mode: All Command Modes Example Switch(config-if)# end Switch# exit Exits from the current mode to the parent mode. Command Mode: All Command Modes Example Switch# exit Switch> Switch(config-if)# exit Switch(config)#...
Page 179: Help
Command Line Interface Basic Commands help Available in all command modes and displays all the commands supported in the system. Command Mode: All Command Modes Syntax help [<command>] Description help [<command>] - Displays the help message for the command ■ Example switch# help config...
Page 180: Logout
Command Line Interface Basic Commands interface Moves you to the Interface Configuration (config-if) command mode. Command Mode: Global Configuration Syntax interface <interface name> Example interface Switch(config)# GigabitEthernet 1/1 Switch(config-if)# Switch(config)# interface VLAN 1 Switch(config-if)# logout Logs you out of the CLI session and returns you to the Main Menu of the console interface. Command Mode: All Command Modes Syntax logout...
Page 181: Mode
Command Line Interface Basic Commands mode Displays all available modes. Command Mode: All Command Modes Syntax mode show Example mode show Switch# ENABLE:# CONFIG:(config)# IF_PORT:(config-if)# IF_VLAN:(config-if)# TACACS:(TACACS)# ACCESS:(config-access)# Switch#...
Page 182: Ping
Command Line Interface Basic Commands ping Sends a 64 byte packet of data to a specified address to check its connectivity. Command Mode: All Command Modes Syntax ping <IP> [-n <count>] [-w <timeout(sec)>] Description <IP> - IP address ■ [-n <count>] - Number of times to ping ■...
Page 183: Reboot
Command Line Interface Basic Commands reboot Reboots the switch. Command Mode: All Command Modes Syntax reboot [factory-default] Description reboot - reboots the switch and prompts you whether the running-configuration has ■ changed and if to save it or not. [factory-default] - reboots the switch to factory default settings without any ■...
Page 184: Run Download Config-File Tftp
Command Line Interface Basic Commands run download config-file tftp This command downloads the Config file Command Mode: Privileged EXEC Syntax run download config-file tftp <IP-address> <filename> Description <IP-address> - IP address ■ <filename> - file name to download ■ Example run download config-file tftp Switch# 172.16.3.152 config.txt...
Page 185: Run Download Image Tftp
Command Line Interface Basic Commands run download image tftp Downloads a runtime image file to the non-activated bank for all stacking units. Command Mode: Privileged EXEC Syntax run download image tftp <IP-address> <filename> Description <IP-address> - IP address ■ <filename> - file name to download ■...
Page 186: Run Download Bootloader Tftp
Command Line Interface Basic Commands run download bootloader tftp Downloads a bootloader image file to the local device(s). Command Mode: Privileged EXEC Syntax run download bootloader tftp <IP-address> <filename> Description <IP-address> - IP address ■ <filename> - file name to download ■...
Page 187: Run Upload Config-File Tftp
Command Line Interface Basic Commands run upload config-file tftp Uploads the Config file. Command Mode: Privileged EXEC Syntax run upload config-file tftp <IP-address> <filename> Description <IP-address> - IP address ■ <filename> - file name to download ■ Example run upload config-file tftp Switch# 172.16.3.152 config.txt Please wait a minute.
Page 188: Snmp Commands
Command Line Interface SNMP Commands SNMP Commands Simple Network Management Protocol (SNMP) allows network management of network attached devices. SNMP v1/v2c/v3 and SNMP trap is supported on the switch and supports up to 50 user-name, 10 community, 50 group, 50 access, 10 context-name, 50 view-tree, 10 notify, 10 target-address, and 10 target-parameter entries.
Page 189: Show Snmp-Server Access
Command Line Interface SNMP Commands show SNMP-server access Displays SNMP access information. Command Mode: Privileged EXEC Syntax show SNMP-server access Example show SNMP-server access Switch# SNMP Access Table ****************** VACM Access Group : group VACM Access Context Prefix : default VACM Access SecModel : v3 VACM Access Sec Level...
Page 190 Command Line Interface SNMP Commands VACM Access Sec Level : authNoPriv VACM Access Context Match : exact VACM Access Read View : internet VACM Access Write View : internet VACM Access Notify View : internet VACM Access Storage : volatile VACM Access Status : active ------------------------------...
Page 191: Show Snmp-Server Community
Command Line Interface SNMP Commands show SNMP-server community Displays SNMP community information. Command Mode: Privileged EXEC Syntax show SNMP-server community Example show SNMP-server community Switch# SNMP Community Mapping Table ***************************** SNMP Community Index SNMP Community Name : gs5240 SNMP Community SecName : gs5240 SNMP Community ContextName : default SNMP Community TransTag...
Page 192: Show Snmp-Server Group
Command Line Interface SNMP Commands show SNMP-server group Displays SNMP group information. Command Mode: Privileged EXEC Syntax show SNMP-server group Example Switch# show SNMP-server group SNMP Security To Group Table ***************************** VACM SecurityModel : v3 VACM Security Name : initial VACM Group Name : initial VACM StorageType...
Page 193: Show Snmp-Server Notify
Command Line Interface SNMP Commands show SNMP-server notify Displays SNMP notify information. Command Mode: Privileged EXEC Syntax show SNMP-server notify Example show SNMP-server notify Switch# SNMP Notification Table ************************ SNMP Notify Index : notify SNMP Notify Tag : tag1 SNMP Notify Type : trap SNMP Notify Storage : volatile...
Page 194: Show Snmp-Server Targetaddress
Command Line Interface SNMP Commands show SNMP-server targetaddress Displays SNMP target address information. Command Mode: Privileged EXEC Syntax show SNMP-server targetaddr Example show SNMP-server targetaddr Switch# SNMP Target Address Details *************************** Target Address Name : taddr Target Address : 192.168.0.25 Target Tag List : tag1 Target Address Params...
Page 195: Show Snmp-Server Targetparam
Command Line Interface SNMP Commands show SNMP-server targetparam Displays SNMP server target parameters. Command Mode: Privileged EXEC Syntax show SNMP-server targeparam Example show SNMP-server targetparam Switch# SNMP Target Param Details *************************** Target Params Name : addrparam Target Params MP Model : v2c Target Params Security Model : v2c...
Page 196: Show Snmp-Server User-Usm
Command Line Interface SNMP Commands show SNMP-server user-usm Displays SNMP server user-usm information. Command Mode: Privileged EXEC Syntax show SNMP-server user-usm Example show SNMP-server user-usm Switch# SNMP USM Details **************** User Name : gs5240 Engine ID : 8000081c044653 Security Name : gs5240 Auth Protocol : none...
Page 197 Command Line Interface SNMP Commands Engine ID : 8000081c044653 Security Name : templateSHA Auth Protocol : SHA Priv Protocol : DES_CBC User Storage Type : volatile User Status : active ------------------------------ Switch#...
Page 198: Show Snmp-Server Viewtree
Command Line Interface SNMP Commands show SNMP-server viewtree Displays SNMP server viewtree information. Command Mode: Privileged EXEC Syntax show SNMP-server viewtree Example show SNMP-server viewtree Switch# SNMP View Tree Table ******************** VACM ViewTree ViewName : read VACM ViewTree SubTree : 1.3.6 VACM ViewTree Mask : 1.1.1 VACM ViewTree Family Type...
Page 199: Snmp-Server Agent
Command Line Interface SNMP Commands SNMP-server agent Enables or disables access to the SNMP agent embedded in the system. Command Mode: Global Configuration Syntax [no] SNMP-server agent Description SNMP-server agent - Enables SNMP server agent [default] ■ no SNMP-server agent - Disables SNMP server agent ■...
Page 200: Snmp-Server Location
Command Line Interface SNMP Commands SNMP-server location Specifies the location of the system. Command Mode: Global Configuration Syntax [no] SNMP-server location <server location> Description <server location> - Sets the name of the system location. String may be up to 50 ■...
Page 201: Snmp-Server Contact
Command Line Interface SNMP Commands SNMP-server contact Specifies the contact information of the system. Command Mode: Global Configuration Syntax [no] SNMP-server contact <server contact> Description <server contact> - Sets the contact information of the system. String may be up ■ to 50 characters in lenth.
Page 202: Snmp-Server User-Usm
Command Line Interface SNMP Commands SNMP-server user-usm Specifies user(s) for SNMP protocols Command Mode: Global Configuration Syntax [no] SNMP-server user-usm <Username> [auth-protocol { MD5 | none } <authpassswd | none> pri-protocol {DES | none} priv-passwd<passwd | none>] Description <Username> - Sets the SNMP user name. May be 1 to 32 characters. Cannot be ■...
Page 203: Snmp-Server Group
Command Line Interface SNMP Commands SNMP-server group Specifies the group name(s) for SNMP protocols. Command Mode: Global Configuration Syntax [no] SNMP-server group <Groupname> user-usm <secname> sec-model {v1 | v2c | v3 } Description <Groupname> - Sets the group name string. ■...
Page 204: Snmp-Server Access
Command Line Interface SNMP Commands SNMP-server access Specifies access for SNMP protocol(s). NOTE: You must first create a group using the SNMP group command to configure SNMP server access along with a group. v3 sec-model is the most secure security model as it allows packet encryption with a privacy keyword.
Page 205: Snmp-Server Viewtree
Command Line Interface SNMP Commands SNMP-server viewtree Specifies the SNMP protocol viewtree. NOTE: You must first create a group using the SNMP group command and also an SNMP group access command to configure an SNMP view tree (read/write/notify). Command Mode: Global Configuration Syntax [no] SNMP-server view-tree <ViewName>...
Page 206: Snmp-Server Community
Command Line Interface SNMP Commands SNMP-server community Specifies the community access string for SNMP protocol v1/v2c. NOTE: If the trans-tag is not an empty string, match the tag in the snmpTargetAddrTable to search the snmpTargetParamsTable, then use the security name in the target-parameter to set user authentication.
Page 207: Snmp-Server Notify
Command Line Interface SNMP Commands SNMP-server notify Specifies the notify for SNMP protocol. Trap version is defined by target-parameters sec- model. Trap set by default. Command Mode: Global Configuration Syntax [no] SNMP-server notify <NotifyName> tag <TagName|none> Description <NotifyName> - Sets the notification name. ■...
Page 208: Snmp-Server Targetaddr
Command Line Interface SNMP Commands SNMP-server targetaddr Specifies target IP addresses for SNMP protocols. Command Mode: Global Configuration Syntax [no] SNMP-server target-address <AddrName> IP-addr <ip_addr> address- paramname <AddrParams> tag-list <TagName| none> Description <AddrName> - Sets the target address (host) name. ■...
Page 209: Snmp-Server Target-Parameters
Command Line Interface SNMP Commands SNMP-server target-parameters Specifies the target parameters for SNMP protocols. Command Mode: Global Configuration Syntax [no] SNMP-server target-parameters <ParamName> sec-model { v1 | v2c | v3 } user-usm <SecurityName> sec-level { noAuthNoPriv | authNoPriv | authPriv } Description <ParamName>...
Page 210: Snmp-Server Enable Traps
Command Line Interface SNMP Commands SNMP-server enable traps Enables or disables specified SNMP notifications. Command Mode: Global Configuration Syntax [no] SNMP-server enable traps <notification-type> <notification- option> Description <notification-type> - Sepcifies the type of notification. ■ <notification-option> - Specifies the option for notification. ■...
Page 211: Basic System Management Commands
Command Line Interface Basic System Management Commands Basic System Management Commands console inactivity-timer Specifies the inactivity timeout value for the console. Command Mode: Global Configuration Syntax console inactivity-timer <minute> Description <minute> - Sets the time in minutes for console inactivity. May be 0 to 60 minutes. 0 ■...
Page 212: Hostname
Command Line Interface Basic System Management Commands hostname Specifies the system hostname. Command Mode: Global Configuration Syntax [no] hostname <hostname> Description <hostname> - Sets the system host name. May be up to 50 characters. There is no ■ default host name. no hostname - Clears (disables) the system host name.
Page 213: Ip Address
Command Line Interface Basic System Management Commands IP address Specifies the system IP address and subnet mask. Command Mode: Global Configuration Syntax IP address <IP> <mask> Description <IP> - Sets the system IP address.Default IP 0.0.0.0. ■ <mask> - Sets the mask for the asociated IP subnet. Default mask 0.0.0.0. ■...
Page 214: Ip Address Renew
Command Line Interface Basic System Management Commands IP address renew Renews system IP address. Command Mode: Global Configuration Syntax IP adress renew Example IP address renew Switch(config)# Switch(config)# IP http server Enables or disables access to the system’s embedded web server. Enabled by default. Command Mode: Global Configuration Syntax [no] IP http server...
Page 215: Ip Authorized Manager Address
Command Line Interface Basic System Management Commands IP authorized manager address Specifies the IP addresses to authroize. Sets which PC’s and/or workstations are allowed to access the switch’s web browser interface (HTTP/HTTPS), SNMP interface, or the console interface (TELNET/SSH). Allows up to 10 authorized manager addresses, where each address applies to either a single management station or multiple stations.
Page 216: Show Ip Authorized-Managers
Command Line Interface Basic System Management Commands show IP authorized-managers Displays IP authorized-managers information. Command Mode: Privileged EXEC Syntax show IP authorized-managers Example show IP authorized-managers Switch# IP Manager Table ---------------- Authorised Manager IP IP Mask Protocol ------------------------------------------------------------------- 192.168.0.10 255.255.255.255 HTTP SNMP SSH 192.168.1.0 255.255.255.0...
Page 217: Show Ip Http Server
Command Line Interface Basic System Management Commands show IP http server Displays http server information. Command Mode: Privileged EXEC Syntax show IP http server Example show IP http server Switch# Web Server --------------- Enabled Switch# show IP conf Displays IP address and subnet mask information. Command Mode: Privileged EXEC Syntax show IP conf...
Page 218: Show Sys-Info
DRAM Size : 128MB Fixed Baud Rate : 115200bps Flash Size : 16MB Manufacture : Ruckus Wireless, Inc. Administration Information Switch Name : ZS4124 Switch Location Switch Contact System Default Interface, MAC Address, IP Address, Subnet Mask and Default Gate way...
Page 219: Show Console
Command Line Interface Basic System Management Commands show console Displays console configuration information. Command Mode: Privileged EXEC Syntax show console Example show console Switch# Console UI Idle Timeout: 5 Min. Console -------- Active Switch# show telnet-server Displays telnet configuration information. Command Mode: Privileged EXEC Syntax show telnet-server...
Page 220: Telnet
Command Line Interface Basic System Management Commands telnet Sets the telnet server configuration. Command Mode: Global Configuration and Privileged EXEC Syntax telnet <ipaddr> [<port>] Description - Sets the telnet server IP address. <ipaddr> ■ - Sets the telnet server port number. Default port 23. [<port>] ■...
Page 221: Telnet-Server Inactivity-Timer
Command Line Interface Basic System Management Commands telnet-server inactivity-timer Specifies the telnet server timeout value in minutes. Command Mode: Global Configuration Syntax telnet-server inactivity-timer <minute> Description - Sets the telnet server inactivity timer. Default 5 minutes. <minute> ■ Example !Sets telnet timeout to 10 minutes telnet-server inactivity-timer Switch(config)# Switch(config)#...
Page 222: Username
Command Line Interface Basic System Management Commands username Specifies the user name and password for logging into the system. Command Mode: Global Configuration Syntax username <new username> Example !Sets username to "ruckus" and password to "switch". Default username and default password are “admin”. username Switch(config)# ruckus...
Page 223: Layer-2 Interface Commands
Command Line Interface Layer-2 Interface Commands Layer-2 Interface Commands Layer-2 Interface Commands specify network bridges operating at the Media Access Control (MAC) sublayer of the data link layer that interconnect devices in the network environment. flow-control Enables or Disables the flow control for a port. Disabled by default. Command Mode: Interface Configuration Syntax [no] flow-control...
Page 224: Getport
Command Line Interface Layer-2 Interface Commands getport Retrieves port information. Command Mode: Interface Configuration Syntax getport Example interface Switch(config)# GigabitEthernet 1/1 getport Switch(config-if)# Module : 1 Port : 1 Switch(config-if)# jumbo Enables or disables jumbo framecontrol for a port. Command Mode: Interface Configuration Syntax [no] jumbo Example...
Page 225: Port Monitor
Command Line Interface Layer-2 Interface Commands port monitor Configures a port to monitor the traffic from another port. NOTE: Enable monitor in global configuration mode after setting the monitor port. Command Mode: Interface Configuration Syntax [no] port monitor <port> direction <direction> Description - Sets the port to be monitored.
Page 226: Show Interface Counters
Command Line Interface Layer-2 Interface Commands show interface counters Displays interface counter statistics information. Command Mode: Privileged EXEC Syntax show interface counters <interface port> Description - Specifies the interface port counter information to display. <interface port> ■ Example Switch# show interface counters refreshtime = 300 s Total TX/RX Bytes Total TX/RX Pkts...
Page 227: Show Interface Counters Error
Command Line Interface Layer-2 Interface Commands show interface counters error Displays interface counter error statistics information. Command Mode: Privileged EXEC Syntax show interface counters error <interface port> Description - Specifies the interface port counter error information to display. <interface port> ■...
Page 228: Clear Interface Counters
Command Line Interface Layer-2 Interface Commands clear interface counters Clears interface counter statistics information. Command Mode: Privileged EXEC Syntax clear interface counters <interface port> Description - Specifies the interface port counter information to clear. <interface port> ■ Example clear interface counters Switch# Switch#...
Page 229: Show Interface Info
Command Line Interface Layer-2 Interface Commands show interface info Displays all interface information. Command Mode: Privileged EXEC Syntax show interface info Example show interface info Switch# Unit/Port Trunk Type Status Link Mode Jumbo Flow Ctrl ---------------- ------- ------ ----- ---- ------ --------- 1/ 1...
Page 230: Show Monitor
Command Line Interface Layer-2 Interface Commands show monitor Displays port monitoring information. Command Mode: Privileged EXEC Syntax show monitor Example Displays monitor information. show monitor Switch# Port monitor status is ENABLED Monitoring unit/port: 1/Ge2 Monitored unit/port Direction -------------------- ---------- 1/Ge4 Both 1/Ge5 Switch#...
Page 231: Show Storm-Control
Command Line Interface Layer-2 Interface Commands show storm-control Displays storm control information. Command Mode: Privileged EXEC Syntax show storm-control Example Switch# show storm-control Port Storm Control Setting: Unit/Port Broadcast Multicast Threshold --------- --------- --------- --------- --------- 1/ 1 Disabled Disabled Disabled 2000 1/ 2...
Page 232: Shutdown
Command Line Interface Layer-2 Interface Commands shutdown Enables or disables a port. All ports are enabled by default. The shutdown command is disabled by default. Command Mode: Interface Configuration Syntax [no] shutdown Example !Enables port 3 interface Switch(config)# GigabitEthernet 1/3 no shutdown Switch(config-if)# Switch(config-if)#...
Page 233: Speed-Duplex
Command Line Interface Layer-2 Interface Commands speed-duplex Configures the speed and duplex mode of a port. Command Mode: Interface Configuration Syntax speed-duplex <option> Description <option> - Sepcifies the port speed and duplex mode. ■ Option Description auto Auto negotiation mode (default) 10-h 10 Mbps &...
Page 234: Statistics Refresh Timer
Command Line Interface Layer-2 Interface Commands statistics refresh timer Sets the refresh timer for statistical information. Command Mode: Global Configuration Syntax statistics refresh timer <second> Description <second> - Sepcifies the statistics refresh timer in seconds. ■ Example statistics refresh timer Switch(config)# Switch(config)# storm-control broadcast...
Page 235: Storm-Control Multicast
Command Line Interface Layer-2 Interface Commands storm-control multicast Enables or disables multicast storm control for all ports. Disabled by default. Command Mode: Interface Configuration Syntax [no] storm-control multicast Example !Enables multicast storm control storm-control multicast Switch(config-if)# Switch(config-if)# !Disables multicast storm control no storm-control multicast Switch(config-if)# Switch(config-if)#...
Page 236: Storm-Control Unicast
Command Line Interface Layer-2 Interface Commands storm-control unicast Enables or disables storm control unicast (DLF - Destination Lookup Failure) storm control for all ports. Disabled by default. Command Mode: Interface Configuration Syntax [no] storm-control unicast Example !Enables unicast storm control storm-control unicast Switch(config-if)# Switch(config-if)#...
Page 237: Switchport Protected Uplink
Command Line Interface Layer-2 Interface Commands switchport protected uplink Specifies the port to isolate (protect) and an uplink interface. Disabled by default. Command Mode: Interface Configuration Syntax [no] switchport protected uplink { ethernet <port id> | port-channel <trunk id> } Description - Sepcifies the ethernet port to be used as an uplink interface.
Page 238: Show Port Protected
Command Line Interface Layer-2 Interface Commands show port protected Displays port isolation (protected) and uplink status. Disabled by default. Command Mode: Privileged EXEC Syntax show port protected <port-list> Description - Specifies a list of port instances or a single port instance such as <1/ <port-list>...
Page 239: Link Aggregation Commands
Command Line Interface Link Aggregation Commands Link Aggregation Commands Link Aggregation Commands configure multiple network cables/ports in parallel to increase the link speed beyond the limits of any one single cable or port, and increase redundancy for higher availability. lacp Specifies ports to be added or removed to/from an LACP group.
Page 240 Command Line Interface Link Aggregation Commands !Sets ports 5 through 7 to be link aggregation ports. LACP key is 12 and mode is manual: lacp Switch(config)# 12 1/[5-7] manual Switch(config)# !Removes port 5 from LACP key 10 no lacp Switch(config)# 10 1/5 Switch(config)#...
Page 241: Lacp Mode
Command Line Interface Link Aggregation Commands lacp mode Changes LACP group mode. Command Mode: Global Configuration Syntax lacp mode <LACP-key> <mode> Description - Specifies the LACP group ID. <LACP-key> ■ - Specifies the LACP mode as active, passive or manual. <mode>...
Page 242: Lacp System-Priority
Command Line Interface Link Aggregation Commands lacp system-priority Sets LACP system priority. Command Mode: Global Configuration Syntax lacp system-priority <priority-value> Description - Specifies the LACP system priority. May be an integer from 0 to <priority-value> ■ 65,535. Default value 32768. Example !Sets the LACP system priority to 40000 lacp system-priority...
Page 243: Show Lacp
Command Line Interface Link Aggregation Commands show lacp Displays LACP system information. Command Mode: Privileged EXEC Syntax show lacp [all | <la-key>] Description - Specifies the LACP key to display. If no key specified, all LACP system [<la-key>] ■ information will be displayed. Example !Displays all LACP system information.
Page 244: Mac Address Commands
Command Line Interface MAC Address Commands MAC Address Commands Media Access Control address (MAC address) Commands use the unique identifier assigned to network interfaces for communications on the physical network segment. secure-mac Enables or Disables global port secure MAC status. Command Mode: Global Configuration Syntax [no] secure-mac...
Page 245: Mac-Address-Table Static
Command Line Interface MAC Address Commands mac-address-table static Creates or disables (removes) static MAC addresses. Command Mode: Global Configuration Syntax mac-address-table static <mac address> <interface> vlan <vlan-id> no mac-address-table static {all|mac <mac address> vlan <vlan-id>} Description - Specifies the static MAC address to create (enable). <mac address>...
Page 246: Mac-Address-Table Secure
Command Line Interface MAC Address Commands mac-address-table secure Creates (enables) secure MAC addresses. Command Mode: Global Configuration Syntax mac-address-table secure <mac address> <interface> vlan <vlan-id> no mac-address-table secure {all|mac <mac address> vlan <vlan-id>} Description - Specifies the secure MAC address to create (enable). <mac address>...
Page 247: Show Mac-Address-Table Aging-Time
Command Line Interface MAC Address Commands show mac-address-table aging-time Displays dynamic MAC address aging time. Command Mode: Privileged EXEC Syntax show mac-address-table aging-time Example Switch# show mac-address-table aging-time Aging Time: 300 Sec(s) Switch# show mac-address-table interface Displays MAC address tables by port. Command Mode: Privileged EXEC Syntax show mac-address-table interface <interface>...
Page 248: Show Mac-Address-Table Mac
Command Line Interface MAC Address Commands show mac-address-table mac Displays MAC address tables by MAC. Command Mode: Privileged EXEC Syntax show mac-address-table mac Example Switch# show mac-address-table mac MAC Address Port ----------------- ---- 00:00:00:22:33:44 00:04:76:4A:28:58 00:0B:45:23:44:CA 00:20:ED:4D:88:77 1/11 00:40:33:AA:A4:4B 1/21 00:40:33:D3:43:F8 1/22 Switch#...
Page 249: Show Mac-Address-Table Secure
Command Line Interface MAC Address Commands show mac-address-table secure Displays MAC address tables by secure addresses. Command Mode: Privileged EXEC Syntax show mac-address-table static Example Switch# show mac-address-table secure Status: Disable Destination Address Vlan Destination Port -------------------- ------------ ------------------- 00:00:00:00:00:11 GigabitEthernet1/1 Switch# show mac-address-table vlan...
Page 250: Multiple Spanning Tree Commands
Command Line Interface Multiple Spanning Tree Commands Multiple Spanning Tree Commands Multiple Spanning tree protocol (STP) Commands ensures a loop-free topology for any bridged LAN. Therefore preventing bridge loops and ensuing broadcast radiation. spanning-tree mst enable Enables or disables spanning trees. Disabled by default. Command Mode: Global Configuration Syntax [no] spanning-tree mst enable...
Page 251: Spanning-Tree Mst Name
Command Line Interface Multiple Spanning Tree Commands spanning-tree mst name Specifies a multiple spanning tree protocol region name. Command Mode: Global Configuration Syntax spanning-tree mst name <name> Description - Specifies the region name. <name> ■ Example !Specifies the MSTP region name as be "ruckus". spanning-tree mst name Switch(config)# ruckus...
Page 252: Spanning-Tree Mst Version
Command Line Interface Multiple Spanning Tree Commands spanning-tree mst version Specifies the spanning tree bridge force version. Command Mode: Global Configuration Syntax spanning-tree mst version <ver> Description - Specifies the spanning tree bridge force version. <ver> ■ Force Version Description stpCompatible STP compatible rstp...
Page 253: Spanning-Tree Mst Priority
Command Line Interface Multiple Spanning Tree Commands spanning-tree mst priority Specifies bridge priority value. Command Mode: Global Configuration Syntax spanning-tree mst priority <priority> Description - Specifies the bridge priority value. Default value 32786. Valid values <priority> ■ include; 4096, 8192, 12288, 16384, 20480, 24576, 28672, 32768, 36864, 40960, 45056, 49152, 53248, 57344, and 61440.
Page 254: Spanning-Tree Mst Hello-Time
Command Line Interface Multiple Spanning Tree Commands spanning-tree mst hello-time Specifies bridge hello time. Command Mode: Global Configuration Syntax spanning-tree mst hello-time <seconds> Description - Specifies the time in seconds for bridge hello time. Default is 2 seconds. <seconds> ■ May be an integer from 1 to 10, and enforce the following relationships.
Page 255: Spanning-Tree Mst Forward-Time
Command Line Interface Multiple Spanning Tree Commands spanning-tree mst forward-time Specifies bridge forward time. Command Mode: Global Configuration Syntax spanning-tree mst forward-time <seconds> Description - Specifies the time in seconds for bridge forward time. Default is 15 <seconds> ■ seconds. May be an integer from 4 to 30, and enforce the following relationships. Forward Time Relationship 2 * ( Bridge_Forward_Delay - 1.0 seconds ) >= Bridge_Max_Age Bridge_Max_Age >= 2 * ( Bridge_Hello_Time + 1.0 seconds )
Page 256: Spanning-Tree Mst Max-Age
Command Line Interface Multiple Spanning Tree Commands spanning-tree mst max-age Specifies bridge maximum age. Command Mode: Global Configuration Syntax spanning-tree mst max-age <seconds> Description - Specifies the time in seconds for bridge maximum age. Default is 20 <seconds> ■ seconds. May be an integer from 6 to 40, and enforce the following relationships. Maximum Age Relationship 2 * ( Bridge_Forward_Delay - 1.0 seconds ) >= Bridge_Max_Age Bridge_Max_Age >= 2 * ( Bridge_Hello_Time + 1.0 seconds )
Page 257: Spanning-Tree Mst Max-Hops
Command Line Interface Multiple Spanning Tree Commands spanning-tree mst max-hops Specifies maximum hop count. Command Mode: Global Configuration Syntax spanning-tree mst max-hops <hop> Description - Specifies the maximum hop count. May be an integer from 6 to 40. Default is <hop>...
Page 258: Spanning-Tree Mst Instance Vlan
Command Line Interface Multiple Spanning Tree Commands spanning-tree mst instance vlan Adds or removes VLAN mapping to instances. Command Mode: Global Configuration Syntax [no] spanning-tree mst instance <instance-id> vlan <vlan-range> Description - Specifies the instance ID as an integer from 1 to 31. <instance-id>...
Page 259: Spanning-Tree Mst Shutdown
Command Line Interface Multiple Spanning Tree Commands spanning-tree mst shutdown Enables or disables spanning tree on the interface. Disabled by default. Command Mode: Interface Configuration Syntax [no] spanning-tree mst shutdown Example !Disables MSTP on port 4 interface Switch(config)# GigabitEthernet 1/4 spanning-tree mst shutdown Switch(config-if)# Switch(config-if)#...
Page 260: Spanning-Tree Mst Cost
Command Line Interface Multiple Spanning Tree Commands spanning-tree mst cost Configures port path cost. Command Mode: Interface Configuration Syntax spanning-tree mst cost <cost> Description - Specifies port path cost. May be an integer from 1 to 200000000. Default is <cost> ■...
Page 261: Spanning-Tree Mst Edgeport
Command Line Interface Multiple Spanning Tree Commands spanning-tree mst edgeport Enables or Disables edge port status. Command Mode: Interface Configuration Syntax [no] spanning-tree mst edgeport Example !Enables edge port status on port 4 interface Switch(config)# GigabitEthernet 1/4 spanning-tree mst edgeport Switch(config-if)# Switch(config-if)# !Disables edge port status on port 4...
Page 262: Spanning-Tree Mst Point-To-Point
Command Line Interface Multiple Spanning Tree Commands spanning-tree mst point-to-point Configures Point-to-Point status on a port. Command Mode: Interface Configuration Syntax spanning-tree mst point-to-point <status> Description - Specifies the point-to-point status as forcetrue, forcefalse or auto. Default <status> ■ is auto. Status Description forcetrue...
Page 263: Spanning-Tree Mst Shutdown
Command Line Interface Multiple Spanning Tree Commands spanning-tree mst <instance> shutdown Enables or disables mstp on the interface for a specific instance. Command Mode: Interface Configuration Syntax [no] spanning-tree mst <instance> shutdown Description - Specifies the instance to configure. May be an integer from 1 to 31. <instance>...
Page 264: Spanning-Tree Mst Instance Port-Priority
Command Line Interface Multiple Spanning Tree Commands spanning-tree mst instance port-priority Configures port priority for a specific instance. Command Mode: Interface Configuration Syntax spanning-tree mst <instance> port-priority <priority> Description - Specifies the instance to configure. May be an integer from 1 to 31. <instance>...
Page 265: Show Spanning-Tree Configuration
Command Line Interface Multiple Spanning Tree Commands show spanning-tree configuration Displays spanning tree configuration. Command Mode: Privileged EXEC Syntax show spanning-tree configuration Example Switch# show spanning-tree configuration Global Spanning-tree Status: Enabled Forward BPDU: Disabled Protocol Version: MSTP Root Port: Time Since Topology Change: 17 Root Path Cost: 40029 Topology Change Count:...
Page 266: Show Spanning-Tree Interface
Command Line Interface Multiple Spanning Tree Commands show spanning-tree interface Displays spanning tree interface configuration by port list. Command Mode: Privileged EXEC Syntax show spanning-tree interface <port list> Description - Specifies a list of port instances, such as 1/[1-2,3] or 1/1,1/2 or 1/[1,2,3-5]. <port list>...
Page 267: Show Spanning-Tree Mst Configuration
Command Line Interface Multiple Spanning Tree Commands show spanning-tree mst configuration Displays mstp configuration. Command Mode: Privileged EXEC Syntax show spanning-tree mst configuration Example Switch# show spanning-tree mst configuration Global MSTP Status: Enabled Protocol Version: MSTP Msti Config ID Selector: Msti Region Name: 00:00:00:00:00:00 Msti Region Version:...
Page 268: Show Spanning-Tree Mst Cist Configuration
Command Line Interface Multiple Spanning Tree Commands show spanning-tree mst cist configuration Displays mstp cist configuration. Command Mode: Privileged EXEC Syntax show spanning-tree mst cist configuration Example Switch# show spanning-tree mst cist configuration Cist Root Port: Time Since Topology Change: 186 Sec.
Page 269: Show Spanning-Tree Mst Cist Interface
Command Line Interface Multiple Spanning Tree Commands show spanning-tree mst cist interface Displays mstp cist configuration informtion for an instance by port list. Command Mode: Privileged EXEC Syntax show spanning-tree mst cist interface <port list> Description - Specifies a list of port instances, such as 1/[1-2,3] or 1/1,1/2 or 1/[1,2,3-5]. <port list>...
Page 270: Show Spanning-Tree Mst Instance Configuration
Command Line Interface Multiple Spanning Tree Commands show spanning-tree mst instance configuration Displays mstp instance configuration informtion. Command Mode: Privileged EXEC Syntax show spanning-tree mst instance <instance> configuration Description - Specifies the instance to display. May be an integer from 1 to 31. <instance>...
Page 271: Show Spanning-Tree Mst Instance Interface
Command Line Interface Multiple Spanning Tree Commands show spanning-tree mst instance interface Displays mstp instance configuration informtion for an instance by port list.. Command Mode: Privileged EXEC Syntax show spanning-tree mst instance <instance> interface <port list> Description - Specifies the instance to display. May be an integer from 1 to 31. <instance>...
Page 272: Igmp Snooping Commands
Command Line Interface IGMP Snooping Commands IGMP Snooping Commands Internet Group Management Protocol (IGMP) Snooping Commands configure listening to (snooping) IGMP network traffic between hosts and routers by processing the packets sent over the network. IP igmp snooping enable Enables or disables igmp snooping in the system. Disabled by default. Command Mode: Global Configuration Syntax [no] IP igmp snooping enable...
Page 273: Ip Igmp Snooping Aging-Time
Command Line Interface IGMP Snooping Commands IP igmp snooping aging-time Configures igmp snooping aging time for router port or host port. Command Mode: Global Configuration Syntax IP igmp snooping aging-time {router | host} <sec> Description - Specifies the router port aging time in seconds. May be an integer from {router} ■...
Page 274: Ip Igmp Snooping Vlan-Filter Vlan
Command Line Interface IGMP Snooping Commands IP igmp snooping vlan-filter vlan Enables or disables igmp snooping filtering on a vlan. Disabled by default. Command Mode: Global Configuration Syntax [no] IP igmp snooping vlan-filter vlan <vlan-id> Description - Specifies the vlan ID. <vlan-id>...
Page 275: Mac-Address-Table Multicast-Entry
Command Line Interface IGMP Snooping Commands mac-address-table multicast-entry Enables or disables a multicast entry. Command Mode: Global Configuration Syntax [no] mac-address-table multicast-entry <mc-mac> vlan <vlan-id> Description - Specifies the multicast MAC address. <mc-mac> ■ - Specifies the vlan id. <vlan-id> ■...
Page 276: Mac-Address-Table Multicast-Port
Command Line Interface IGMP Snooping Commands mac-address-table multicast-port Enables or disables a multicast port. A multicast entry must be created before this command can be enabled. Command Mode: Global Configuration Syntax [no] mac-address-table multicast-port <mc-mac> vlan <vlan-id> <ports> Description - Specifies the multicast MAC address. <mc-mac>...
Page 277: Show Ip Igmp Snooping Conf
Command Line Interface IGMP Snooping Commands show IP igmp snooping conf Displays IP igmp snooping configuration information. Command Mode: Privileged EXEC Syntax show IP igmp snooping conf Example Switch# show IP igmp snooping conf IGMP Snooping Status : Enabled Host Port Age-Out Time : 260 sec Router Port Age-Out Time : 300 sec Switch#...
Page 278: Show Ip Igmp Snooping Vlan-Filter-Table
Command Line Interface IGMP Snooping Commands show IP igmp snooping vlan-filter-table Displays igmp shooping vlan filter information. Command Mode: Privileged EXEC Syntax show IP igmp snooping vlan-filter-table Example Switch# show IP igmp snooping vlan-filter-table VLAN ID Status ------- ------------ Filtered Switch# show IP igmp snooping mrouter Displays mrouter ports for each vlan.
Page 279: Vlan Commands
Command Line Interface VLAN Commands VLAN Commands Virtual Local Area Network Commands configure a group of hosts with a common set of requirements that communicate as if they were attached to the same broadcast domain, regardless of their physical location. The switch supports up to 256 VLANs created simultaneously and multiple management VLAN configuration.
Page 280: Member
Command Line Interface VLAN Commands member Creates or modifys vlan information. Command Mode: Interface Configuration Syntax member <port list> Description - Specifies the list of port instances. <port list> ■ Example !Creats and adds members into a VLAN. interface Switch(config)# vlan 3 member Switch(config-if)#...
Page 281: No Interface Vlan
Command Line Interface VLAN Commands no interface vlan Disables (removes) a vlan. May be executed in Interface or Global configuration modes. Command Mode: Interface Configuration or Global Configuration Syntax no interface vlan <vlan-id> Description - Specifies the vlan to disable. <vlan-id>...
Page 282: Frame-Type
Command Line Interface VLAN Commands frame-type Configures port frame type. Command Mode: Interface Configuration Syntax frame-type { all | tag-only } Description - Configures frame type to accept all packets. {all} ■ - Configures frame type to accept only tagged packets. {tag-only} ■...
Page 283: Untagged
Command Line Interface VLAN Commands untagged Configure Untagged member ports for a static vlan. Command Mode: Interface Configuration Syntax untagged [<port list>] Description - Specifies the port list to configure, such as [<1/[2,6-10], 1/3>]. [<port list>] ■ Example Switch(config)# interface vlan 2 untagged Switch(config-if)#...
Page 284: Show Vlan
Command Line Interface VLAN Commands show vlan Displays vlan information. Command Mode: Privileged EXEC Syntax show vlan {all | <vlan-id>} Description - Displays all vlan information. {all} ■ - Displays specific vlan information (one vlan). {<vlan-id>} ■ Example show vlan Switch# VLAN Name...
Page 285: Gvrp
Command Line Interface VLAN Commands gvrp Enables or disables gvrp protocol in the system. Disabled by default. Command Mode: Global Configuration Syntax [no] gvrp Example !Enables GVRP in the system. gvrp Switch(config)# Switch(config)# !Disables GVRP in the system (default). Switch(config)# no gvrp Switch(config)# gvrp...
Page 286: Protocol-Vlan
Command Line Interface VLAN Commands protocol-vlan Enables or disables protocol based vlan on all ports. Disabled by default. Command Mode: Global Configuration Syntax [no] protocol-vlan Example !Enables protocol based VLAN on all ports. protocol-vlan Switch(config)# Switch(config)# !Disables protocol based VLAN on all ports (default). Switch(config)# no protocol-vlan Switch(config)#...
Page 287: Map Protocol
Command Line Interface VLAN Commands map protocol Enables (creates) or disables (deletes) protocol vlan groups. Disabled by default. Command Mode: Global Configuration Syntax [no] map protocol {IP | novell | netbios | appletalk | other <aa:aa>} {enet-v2 | snap | llc} protocols-group <Group id(0-2147483647)> Description - Specifies standard {IP | novell | netbios | appletalk | other <aa:aa>}...
Page 288: Port Protocol-Vlan
Command Line Interface VLAN Commands port protocol-vlan Enables or disables protocol based vlan on a port. Disabled by default. Command Mode: Interface Configuration Syntax [no] port protocol-vlan Example !Enables protocol based VLAN on port 4. interface Switch(config)# GigabitEthernet 1/4 port protocol-vlan Switch(config-if)# Switch(config-if)# !Disables protocol based VLAN on port 4.
Page 289: Switchport Map Protocol
Command Line Interface VLAN Commands switchport map protocol Attaches or detaches a port with protocol VLAN group to vlan. Disabled by default. Command Mode: Interface Configuration Syntax [no] switchport map protocols-group <Group id(0-2147483647)> vlan <vlan-id(1-4094)> Description - Specifies the protocol group ID. <Group id(0-2147483647)>...
Page 290: Show Vlan Port
Command Line Interface VLAN Commands show vlan port Displays vlan port information. Command Mode: Privileged EXEC Syntax show vlan port Example Switch# show vlan port Unit/Port PVID Acceptable Frame Type GVRP -------- ---- --------------------- ----------- 1/ 1 Admit All Disabled 1/ 2 Admit All Disabled...
Page 291: Show Vlan-By-Port
Command Line Interface VLAN Commands show vlan-by-port Displays vlan information by port. Command Mode: Privileged EXEC Syntax show vlan-by-port Example Switch# show vlan-by-port Unit/Port VLAN ID ----------- ---------------------------------------------------- 1/ 1 1/ 2 1/ 3 1/ 4 1/ 5 1/ 6 1/ 7 1/ 8 1/ 9...
Page 292: Show Vlan Protocols-Group
Command Line Interface VLAN Commands show vlan protocols-group Displays vlan protocol group. Command Mode: Privileged EXEC Syntax show vlan protocols-group Example Switch# show vlan protocols-group Protocol Group Table -------------------- ------------------------------------------ Frame Type Protocol Group ------------------------------------------ Enet-v2 Novell ------------------------------------------ Switch#...
Page 293: Show Protocol-Vlan
Command Line Interface VLAN Commands show protocol-vlan Displays port protocol vlan groups. Command Mode: Privileged EXEC Syntax show protocol-vlan Example Switch# show vlan protocols-group Port Protocol Table -------------------------------------- Port Group VLAN ID -------------------------------------- -------------------------------------- Switch#...
Page 294: Quality Of Service Commands
Command Line Interface Quality of Service Commands Quality of Service Commands Quality of Service Commands configure the ability to provide different priorities to different applications, users, or data flows, or to guarantee a certain level of performance to a data flow. mls qos Enables or disables quality of service commands in the system.
Page 295: Show Qos Trust Mode
Command Line Interface Quality of Service Commands show qos trust mode Dispays QoS trust mode settings. Command Mode: Privileged EXEC Syntax show qos trust mode Example Switch# show qos trust mode QOS Trust Mode:Trust User Priority Switch# priority-queue cos-map Dispays QoS trust mode settings. Command Mode: Global Configuration Syntax priority-queue cos-map <traffic class>...
Page 296: Dscp To Cos Map
Command Line Interface Quality of Service Commands dscp to cos map Maps the 802.1p traffic class to port transmitting queues. Command Mode: Global Configuration Syntax dscp to cos map <dscp> <traffic class> Description - Specifies the dscp as an integer from 0 to 63. <dscp>...
Page 297: Show Mls Qos
Command Line Interface Quality of Service Commands show mls qos Displays QoS status. Command Mode: Privileged EXEC Syntax show mls qos Example Switch# show mls qos Quality of Service Status: Disabled Switch#...
Page 298: Show Dscp To Cos Map
Command Line Interface Quality of Service Commands show dscp to cos map Displays dscp to cos map table information. Command Mode: Privileged EXEC Syntax show dscp to cos map Example Switch# show dscp to cos map DSCP Traffic cls DSCP Traffic cls DSCP Traffic cls DSCP Traffic cls ---- ----------- ---- ----------- ----- ----------- ---- -----------...
Page 299 Command Line Interface Quality of Service Commands Switch#...
Page 300: Show Priority-Queue Cos-Map
Command Line Interface Quality of Service Commands show priority-queue cos-map Displays priority queue cos map information. Command Mode: Privileged EXEC Syntax show priority-queue cos-map Example Switch# show priority-queue cos-map QoS scheduler: WRR Weight: 1: 2: 3: 4 Priority Traffic Class ---------- ----------- Switch#...
Page 301: Diffserv Commands
Command Line Interface Diffserv Commands Diffserv Commands Differentiated Services Commands provide different services for packets based on source MAC address, destination MAC address, VLAN ID, DSCP, source IP address, Destination IP address, protocol, source TCP/UDP port number, and destination TCP/UDP port number.
Page 302 Command Line Interface Diffserv Commands !Creates a classifier that matches source IP from 192.168.1.0 to 192.168.1.255. diffserv classifier Switch(config)# 1 src-IP 192.168.1.0 255.255.255.0 Switch(config)# !Creates a classifier on vlan 100 with dscp 27 and protocol 2. Switch(config)# diffserv classifier 2 vlan-id 100 dscp 27 protocol 2 Switch(config)# !Deletes classifier Index 23 no diffserv classifier...
Page 303: Diffserv Enable
Command Line Interface Diffserv Commands diffserv enable Enables or disables diffserv features. Disabled by default. NOTE: Diffserv must be enabled before you can successfully configure diffserv features. ACL must be disabled before you can enable and use diffserv. Command Mode: Global Configuration Syntax [no] diffserv enable Example...
Page 304: Diffserv Inprofile
Command Line Interface Diffserv Commands diffserv inprofile Enables (creates and configures) or disables (deletes) diffserv in-profile. May enable up to 128 in-profiles for the switch. If more than 128 in-profiles are created, a warning will prompt the user and the new in-profiles will be ignored. Command Mode: Global Configuration Syntax [no] diffserv inprofile <id>...
Page 305: Diffserv Meter
Command Line Interface Diffserv Commands diffserv meter Enables (creates and configures) or disables (deletes) diffserv meter for out-profile. May enable up to 8 meters for the switch. Deleting a meter entry bound to an out-profile is not allowed. Command Mode: Global Configuration Syntax [no] diffserv meter <meter-id>...
Page 306: Diffserv Outprofile
Command Line Interface Diffserv Commands diffserv outprofile Creates and configures or deletes an diffserv out-profile action. May enable up to 128 out- profiles for the switch. If more than 128 out-profiles are created, a warning will prompt the user and the new out-profiles will be ignored. Deleting an entry bound to an out-profile action is not allowed.
Page 307: Diffserv Policy
Command Line Interface Diffserv Commands diffserv policy Enables (creates and configures) or disables (deletes) a diffserv policy. May define up to 128 policies for the switch. If more than 128 policies are created, a warning will prompt the user and the new out-profiles will be ignored. Diffserve policy maps the classifier, in-profile, out-profile, and no mach actions into a port list so some port limits may occur.
Page 308: Diffserv Policy Status Enable
Command Line Interface Diffserv Commands diffserv policy status enable Enables a diffserv policy. Enabled by default. Command Mode: Global Configuration Syntax diffserv policy <index> status enable Description - Sets the diffserv policy index ID. <index> ■ Example !Enables index 1 diffserv policy. diffserv policy status enable Switch(config)#...
Page 309: Diffserv Portlist
Command Line Interface Diffserv Commands diffserv portlist Enables (creates and configures) or disables (deletes) a diffserv port list. May define up to 1024 port lists for the switch. If more than 1024 port lists are created, a warning will prompt the user and the new out-profiles will be ignored.
Page 310: Show Diffserv Classifier
Command Line Interface Diffserv Commands show diffserv classifier Displays all diffserv classifier information. Command Mode: Privileged EXEC Syntax show diffserv classifier {all | <classifier-number>} Description - Displays all diffserv classifiers. {all} ■ - Displays specific diffserv classifiers. {<classifier-number>} ■ Example !Displays all diffserv classifier information.
Page 311 Command Line Interface Diffserv Commands Source IP Mask : Ignore Dest IP Mask : Ignore Source MAC Addr : 00:00:01:02:03:04 Dest MAC Addr : Ignore Source Port : Ignore Dest L4 Port : Ignore DSCP : Ignore Protocol : Ignore VLAN ID : 40 Switch#...
Page 312: Show Diffserv Inprofile
Command Line Interface Diffserv Commands show diffserv inprofile Displays diffserv in-profile information. Without an argument this command will display all in-profiles. Command Mode: Privileged EXEC Syntax show diffserv inprofile [inprofile-id] Description - Displays in-profile ID specific information. [inprofile-id] ■ Example !Displays all in-profile information.
Page 313: Show Diffserv Meter
Command Line Interface Diffserv Commands show diffserv meter Displays diffserv meter information. Without an argument this command will display all meter information. Command Mode: Privileged EXEC Syntax show diffserv meter [meter-id] Description - Displays meter ID specific information. [meter-id] ■ Example Switch# show diffserv meter...
Page 314: Show Diffserv Outprofile
Command Line Interface Diffserv Commands show diffserv outprofile Displays diffserv out-profile information. Without an argument this command will display all out-profile information. Command Mode: Privileged EXEC Syntax show diffserv outprofile [outprofile-id] Description - Displays out-profile ID specific information. [outprofile-id] ■ Example !Displays out-profile ID 2 information.
Page 315: Show Diffserv Policy
Command Line Interface Diffserv Commands show diffserv policy Displays diffserv policy information. Command Mode: Privileged EXEC Syntax show diffserv policy {all | <policy-id>} Description - Displays all diffserv policy information. {all} ■ - Displays policy ID specific information. {<policy-id>} ■ Example !Displays all difserv policy information.
Page 316: Show Diffserv Portlist
Command Line Interface Diffserv Commands show diffserv portlist Displays diffserv port list information. Without an argument this command will display all port list information. Command Mode: Privileged EXEC Syntax show diffserv portlist [portlist-number] Description - Displays port list ID specific information. [portlist-number] ■...
Page 317: Acl Commands
Command Line Interface ACL Commands ACL Commands Access Control List Commands configure a list of permissions attached to an object thus providing packet filtering features for all packets that filter packet bases on source MAC address, destination MAC address, source IP address, destination IP address, protocol, source TCP/UDP port numbers, and destination TCP/UDP port numbers.
Page 318: Access-List
Command Line Interface ACL Commands access-list Creates access lists. Command Mode: ACL Configuration Syntax [no] access-list <list_name> Description <list_name> - Sets the access list name. Can create up to 128 lists with up to 32 rules ■ per list. no access-list - Disables the access list. ■...
Page 319: Deny
Command Line Interface ACL Commands deny Enables and disables deny rules in access lists. Command Mode: ACL Configuration Syntax [no] deny {any|<src_mac>} {any|<dst_mac>} {any|<src_ip/mask>} {any|<dst_ip/mask>} [protocol <protocol_no>] [src_port <port_no>] [dsc_port <port_no>] Description {any|<src_mac>} - Sets the source MAC address. ■ {any|<dst_mac>} - Sets the destination MAC address.
Page 320: Ip Access-List
Command Line Interface ACL Commands IP access-list Applies access lists to port interfaces. NOTE: The relationship between access lists and an interface is one to many, meaning, an interface may be applied with at most one ACL, while an ACL may applied to more than one interface.
Page 321: Permit
Command Line Interface ACL Commands permit Enables and disables permit rules in access lists. Command Mode: ACL Configuration Syntax [no] permit {any|<src_mac>} {any|<dst_mac>} {any|<src_ip/mask>} {any|<dst_ip/mask>} [protocol <protocol_number>] [src_port <port_no>] [dst_port <port_no>] Description {any|<src_mac>} - Sets the source MAC address. ■ {any|<dst_mac>} - Sets the destination MAC address.
Page 322: Show Access-List
Command Line Interface ACL Commands show access-list Displays access list information for specified lists. Command Mode: Privileged EXEC Syntax show access-list [{status|<access-list name>}] Description {status} - Displays access list overview informaiton. Types of list rules in use. ■ <access-list name> - Specifies the access list informaiton to display. ■...
Page 323: 802.1X Commands
Command Line Interface 802.1X Commands 802.1X Commands 802.1x Commands configure the authentication mechanisms to devices wishing to attach to a LAN or WLAN. The switch supports port based IEEE802.1x. and EAP-MD5 and enabled/disabled forwarding of EAP frame when 802.1x is disabled. dot1x system-auth-control Enables or disables dot1x in the switch.
Page 324: Dot1X Radius
Command Line Interface 802.1X Commands dot1x RADIUS Configures 802.1x NAS ID. Command Mode: Global Configuration Syntax dot1x RADIUS [<NAS-Identifier>] Description - Sets a string of up to 16 characters that specifies the dot1x [<NAS-Identifier>] ■ network access server. Default is DNINas1. Example !Configures the NAS Identifier.
Page 325: Dot1X Timeout Re-Authperiod
Command Line Interface 802.1X Commands dot1x timeout re-authperiod Configures the time (in seconds) between re-authorization attempts. This command affects the behavior of the switch only if the re-authorization period is enabled. Command Mode: Interface Configuration Syntax dot1x timeout re-authperiod <seconds> Description - Sets the timeout re-authorization period in seconds.
Page 326: Dot1X Timeout Quiet-Period
Command Line Interface 802.1X Commands dot1x timeout quiet-period Configures the dot1x quiet state period following a failed authentication exchange with a client. Command Mode: Interface Configuration Syntax dot1x timeout quiet-period <seconds> Description - Sets the timeout quiet period in seconds. Default is 60 seconds. <seconds>...
Page 327: Dot1X Timeout Tx-Period
Command Line Interface 802.1X Commands dot1x timeout tx-period Configures the dot1x tx-period timeout in seconds that the switch waits for a response from a client EAP-request/identity frame before retransmitting the request. Command Mode: Interface Configuration Syntax dot1x timeout tx-period <seconds> Description - Sets the tx-period timeout in seconds.
Page 328: Dot1X Re-Authenticate
Command Line Interface 802.1X Commands dot1x re-authenticate Initiates a re-authentication on an 802.1x authorized port. Command Mode: Interface Configuration Syntax dot1x re-authenticate Example !Re-authenticates port 7. interface Switch(config)# gigabitEthernet 1/7 dot1x re-authenticate Switch(config-if)# Switch(config-if)# dot1x init Initializes the status on an 802.1x authorized port. Command Mode: Interface Configuration Syntax dot1x init...
Page 329: Dot1X Control-Direction
Command Line Interface 802.1X Commands dot1x control-direction Configures 802.1x control direction (traffic). Command Mode: Interface Configuration Syntax dot1x control-direction {both|in} Description - Controls dot1x authentication on incoming and outgoing traffic. {both} ■ - Controls dot1x authentication on incoming traffic. {in} ■...
Page 330: Dot1X Port-Control
Command Line Interface 802.1X Commands dot1x port-control Configures 802.1x port control status. Command Mode: Interface Configuration Syntax dot1x port-control {auto|force-authorized|force-unauthorized} Description - Enables 802.1x authentication on the interface and causes the port to {auto} ■ transition betweem authorized or unauthorized states based on 802.1x authentication exchanges between the server and the client.
Page 331: Show Dot1X
Command Line Interface 802.1X Commands show dot1x Displays dot1x information. Command Mode: Privileged EXEC Syntax show dot1x <port-list> Description - Specifies the list of the ports instances or a single port instance such <port-list> ■ as <1/1,1/2,1/5 or 1/[1-2,5-6] or 1/1>. Example !Displays dot1x information on port list 1 show dot1x...
Page 332: Radius Commands
Command Line Interface RADIUS Commands RADIUS Commands Remote Authentication Dial In User Service (RADIUS) Commands configure a networking protocol that provides centralized Authentication, Authorization, and Accounting (AAA) management for computers to connect and use the switch. The system supports RADIUS authentication for IEEE802.1x, timeout and retry-count changes, re-authentication timer, and RADIUS accounting for 802.1x.
Page 333: Show Radius-Server
Command Line Interface RADIUS Commands show RADIUS-server Displays RADIUS server configure information. Command Mode: Privileged EXEC Syntax show RADIUS-server [sort <priority |IP-address>] Description [sort <priority | IP-address>] - Selects whether to short all RADIUS by ■ priority or by IP address. Example show RADIUS Switch#...
Page 334: Sntp Commands
Command Line Interface SNTP Commands SNTP Commands Simple Network Time Protocol Commands configure the clock syncronization of computer systems over packet-switched, variable-latency data networks. show SNTP Displays SNTP configuration information. Command Mode: Privileged EXEC Syntax show SNTP Example show SNTP Switch# Date ( YYYY/MM/DD ) : 03:41:07...
Page 335: Sntp Daylight-Saving
Command Line Interface SNTP Commands SNTP daylight-saving Enables or disables daylight savings. Command Mode: Global Configuration Syntax [no] SNTP daylight-saving Description [no] SNTP daylight-saving - Disables daylight savings. Default setting. ■ Example !Enables daylight savings. Switch(config)# SNTP daylight-saving Switch(config)# !Disables daylight savings. no SNTP daylight-saving Switch(config)# Switch(config)#...
Page 336: Sntp Server
Command Line Interface SNTP Commands SNTP server Configures the SNTP server IP address. Command Mode: Global Configuration Syntax SNTP server <IP> Description <IP> - Sets the IP address of the recipient server. Hosts are not assigned by default. ■ Example SNTP server Switch(config)# 172.16.5.198...
Page 337: Syslog Commands
Command Line Interface Syslog Commands Syslog Commands System Log Commands configure logging program messages and allows the separation of the software that generates messages from the system that stores them and the software that reports and analyzes them. It also provides devices a means to notify administrators of problems or performance.
Page 338: Logging Server
Command Line Interface Syslog Commands logging server Sets the system log server configuration. Command Mode: Global Configuration Syntax logging server <IP-addr> [port <port>] [severity <emergencies | alerts | critical | errors | warnings | notifications | informational | debugging>] [facility <local0 | local1 | local2 | local3 | local4 | local5 | local6 | local7>] [description <random_str>] Description <IP-addr>...
Page 339: Show Logs
Command Line Interface Syslog Commands show logs Displays all system logs. Command Mode: Privileged EXEC Syntax show logs Example show logs Switch# Logging Status: Enable Console Logging: Disable Entry Time(HH:MM:SS) Event ----- ------------------------- -------------------------------- <001> 1900/01/01 00:00:08 mstp-6:Port 1/1 transits to state Discarding <002>...
Page 340 Command Line Interface Syslog Commands <022> 1900/01/01 00:00:30 mstp-6:Port 1/22 transits to state Discarding <023> 1900/01/01 00:00:31 mstp-6:Port 1/23 transits to state Discarding <024> 1900/01/01 00:00:32 mstp-6:Port 1/24 transits to state Discarding <025> 1900/01/01 00:00:33 interface-6:Port # 1/1 link up <026>...
Page 341: Lldp Commands
Command Line Interface LLDP Commands LLDP Commands Link Layer Discovery Protocol Commands provide a method for switch, routers and access points to advertise their identification, configuration, and capabilities to neighboring devices that store the data in a MIB. Supports mandatory tlv, basic tlv, IEEE802.1 tlv, and IEEE802.3 tlv. •...
Page 342: Show Lldp Interface
Command Line Interface LLDP Commands show LLDP interface Displays LLDP interface information. Command Mode: Privileged EXEC Syntax show LLDP interface [GigabitEthernet <1/[1-2,5] or 1/3,1/4>] Description - Specifies the port list or individual [GigabitEthernet <1/[1-2,5] or 1/3,1/4>] ■ port to display. Example show LLDP interface Switch#...
Page 343: Show Lldp Neighbors
Command Line Interface LLDP Commands show LLDP neighbors Displays LLDP information on neighboring ports. May be all ports or a specific port. Displays all LLDP neighbor information by default. Command Mode: Privileged EXEC Syntax show LLDP [([interface GigabitEthernet <port>] [detail])] Description - Specifies the port to display.
Page 344 Command Line Interface LLDP Commands Port Id SubType : Interface Alias Port Id : Slot0/1 Port Description : Ethernet Interface System Name : Aricent Linux Router Ver 1.0 System Desc : SNMPV2 Local Intf 1/ 3 Time Remaining : 118 Seconds System Capabilities Supported : B,R System Capabilities Enabled : B,R...
Page 345: Show Lldp Traffic
Command Line Interface LLDP Commands show LLDP traffic Displays LLDP traffic counter information. May be all ports or a specific port. Displays all LLDP traffic counters by default. Command Mode: Privileged EXEC Syntax show LLDP traffic [interface GigabitEthernet <1/[1-2,5] or 1/3,1/4>] Description - Specifies the port [interface GigabitEthernet <1/[1-2,5] or 1/3,1/4>]...
Page 346: Show Lldp Errors
Command Line Interface LLDP Commands show LLDP errors Displays LLDP errors. Command Mode: Privileged EXEC Syntax show LLDP errors Example show LLDP errors Switch# Total Memory Allocation Failures Total Input Queue Overflows Total Table Overflows Switch# clear LLDP Resets LLDP traffic counters or table of neigbors information. Command Mode: Privileged EXEC Syntax clear LLDP {counter | table}...
Page 347: Lldp Shutdown
Command Line Interface LLDP Commands LLDP shutdown Shuts down or starts LLDP on the system. LLDP is disabled (no LLDP shutdown) by default. Command Mode: Global Configuration Syntax [no] LLDP shutdown Example !Shuts down LLDP on the system. LLDP shutdown Switch(config)# Switch(config)# !Starts LLDP on the system (default).
Page 348: Lldp Timer
Command Line Interface LLDP Commands LLDP timer Configures transmission frequency of LLDP updates (in seconds) on the system. Command Mode: Global Configuration Syntax [no] LLDP timer <integer> Description - Sets the LLDP timer. May be an integer from 5 to 32768. <integer>...
Page 349: Lldp Reinit
Command Line Interface LLDP Commands LLDP reinit Configures the delay time in seconds to re-initialize LLDP on any interface. Command Mode: Global Configuration Syntax [no] LLDP reinit <integer> Description - Sets the initialization time delay in seconds. May be an integer from 1 to <integer>...
Page 350: Lldp Tlv-Select Basic-Tlv
Command Line Interface LLDP Commands LLDP tlv-select basic-tlv Enables or disables basic tlv transmission on a given port. Disabled by default. Command Mode: Interface Configuration Syntax [no] LLDP tlv-select basic-tlv [port-description] [system-name] [system-description] [system-capability] [management-address] [all] Description - Sets port description tlv transmission. [port-description] ■...
Page 351: Lldp Tlv-Select Dotltlv Port-Vlan-Id
Command Line Interface LLDP Commands LLDP tlv-select dotltlv port-vlan-id Enables or disables 802.1 port vlan id tlv transmission on a given port. Disabled by default. Command Mode: Interface Configuration Syntax [no] LLDP tlv-select tlv-select dot1tlv port-vlan-id Example !Enables 802.1 port vlan id tlv transmission. LLDP tlv-select dot1tlv port-vlan-id Switch(config-if)# Switch(config-if)#...
Page 352: Ssh Commands
Command Line Interface SSH Commands SSH Commands Secure Shell Commands configure a secure, remote connection to a device. The system supports SSH server function version SSHv2, and up to 4 concurrent SSH sessions. • Users may use all CLI commands over an SSH session after successful login. •...
Page 353: Show Ip Ssh Configuration
Command Line Interface SSH Commands show IP ssh configuration Displays ssh server configuration informtion. Command Mode: Privileged EXEC Syntax show IP ssh configuration Example Switch# show IP ssh configuration SSH Server Configuration ------------------------ SSH Server Listen Port : SSH Server Idle Timeout: 5 Min.
Page 354 Command Line Interface SSH Commands show IP ssh key Displays ssh server key informtion. Command Mode: Privileged EXEC Syntax show IP ssh key Example Switch# show IP ssh key SSH Server RSA Key: Private-Key: (1024 bit) modulus: 00:d6:2c:ff:ac:9d:18:04:5f:96:ef:01:d6:1b:0e: 79:2f:75:73:88:9a:9e:6e:44:48:81:a0:b8:18:c3: c4:51:8d:03:9f:48:92:a0:e8:e1:04:ed:30:69:16: 8d:b9:0b:d2:65:c0:46:5f:1e:d1:2d:25:0a:de:2f: 9c:c6:71:f2:2b:74:94:a1:e2:96:4a:04:0e:82:ae: 65:5d:dc:2d:e8:f4:b4:1c:da:dd:42:7b:92:1d:07:...
Page 355 Command Line Interface SSH Commands 88:ba:f7:26:4a:6b:cb:c6:3a:49:a6:c8:34:f0:a5: 7e:59:00:8c:7b prime2: 00:db:f2:5c:28:87:2f:4e:48:de:06:6e:82:47:fc: ef:d4:88:e0:f7:9b:36:77:02:64:3b:d0:21:f3:18: 77:12:18:d2:43:4e:0e:26:ee:d5:39:42:d8:5b:1b: 3a:20:0d:17:e2:b6:97:5a:97:91:8b:47:51:4d:66: 32:06:01:7d:49 exponent1: 00:a3:d0:89:f6:46:30:1c:78:64:c6:41:64:dc:8e: 3b:39:74:db:39:2e:f1:76:81:9a:74:b1:ae:26:44: 93:17:b1:61:f4:c3:4c:c0:16:0c:97:a7:21:c3:6f: c0:40:59:45:0c:55:77:47:bf:e7:41:b6:c3:b4:14: fb:41:cd:29:1d exponent2: 00:a9:ac:55:b8:dd:50:60:f6:62:22:37:fe:1a:46: c7:a3:f4:90:49:fb:64:87:b1:63:44:15:96:88:54: b3:a0:3f:08:9a:52:28:2c:a9:9d:2c:2c:40:80:cb: dc:61:de:36:ff:59:a7:f5:6d:9c:29:9d:6a:9a:cb: 2d:e7:60:3c:13 coefficient: 00:e1:26:a1:a0:3c:98:c4:1f:26:5e:7e:38:de:56: 76:8b:d3:a8:77:d9:e6:d1:aa:ee:26:2d:21:f4:ae: eb:0c:27:d5:79:1c:2f:92:e0:58:12:98:90:5e:41: fb:23:af:42:6a:09:90:e6:57:7d:1f:ec:60:b7:44: ba:6f:42:fe:cc...
Page 356: Ip Ssh Service
Command Line Interface SSH Commands IP ssh service Enables or disables the embedded ssh server on the system. Command Mode: Global Configuration Syntax [no] IP ssh service Example !Enables ssh server. Switch(config)# IP ssh service SSH Service is Enabled now Switch(config)# !Disables ssh server.
Page 357: Ip Ssh Inactivity-Timer
Command Line Interface SSH Commands IP ssh port Configures ssh listen port. Command Mode: Global Configuration Syntax IP ssh port <portno> Description - Sets ssh listen port number. May be an integer from 1025 to 65535. Default <portno> ■ port 22. Example !Configures ssh listen port 1025 Switch(config)# IP ssh port 1025...
Page 358: Ip Ssh Cipher-List
Command Line Interface SSH Commands IP ssh cipher-list Configures ssh cipher algorithm list. May be one or more of 3des-cbc and des-cbc. Command Mode: Global Configuration Syntax IP ssh cipher-list <cipher1> [<cipher2>] Description - Sets the first cipher algorithm list. Default 3des-cbc. <cipher1>...
Page 359: Crypto Ssh Generate-Key
Command Line Interface SSH Commands crypto ssh generate-key Generates ssh server key in the system. Command Mode: Global Configuration Syntax crypto ssh generate-key Example crypto ssh generate-key Switch(config)# SSH key generation is in progress. This might take a few minutes, Please wait...Done. SSH Generate Key success Switch(config)# crypto ssh save-key...
Page 360: Show Ip Ssl Service
Command Line Interface SSL Commands SSL Commands Secure Socket Layer Commands configure cryptographic protocols that provide security for communications with the embedded Web server within the switch. • The connection between the browser and the server is encrypted. • The SSL key can be generated with specified bits (512 or 1024). •...
Page 361: Show Ip Ssl Configuration
Command Line Interface SSL Commands show IP ssl configuration Displays ssl server configuration information. Command Mode: Privileged EXEC Syntax show IP ssl configuration Example show IP ssl configuration Switch# SSL Server Configuration ------------------------ SSL Server Listen Port : SSL Server Support Cipher algorithms: RSA-DES-SHA:RSA-3DES-SHA:RSA- EXP1024-DES-SHA SSL Server Cert country:...
Page 362 Command Line Interface SSL Commands 0a:f4:c4:a1:d2:3c:06:4f:c0:e1:a2:2f:24:c3:e4: cf:0e:43:5d:78:fc:84:c5:af:6f:3f:d6:a1:16:3b: 33:8d:0a:c8:1a:a0:49:a3:dc:07:22:72:c5:32:ae: d3:ea:62:a3:de:8d:cd:7d:8e:9d:95:ce:6c:bd:df: fe:69:ba:26:a7:31:2c:65:4b Exponent: 65537 (0x10001) Signature Algorithm: md5WithRSAEncryption 03:a5:32:b6:d5:45:7e:99:cc:eb:33:df:b4:d6:15:44:23:63: 1e:dc:44:81:46:6d:50:ce:a4:b3:5e:e3:7e:85:e3:48:4c:31: 27:41:f0:bb:4c:fd:c7:c5:32:9f:bc:a6:a0:68:f1:f3:3f:f5: 14:c1:66:56:bb:e9:d7:0d:8a:1d:37:29:3c:a9:ed:73:47:3e: 8f:92:a5:d5:2d:0e:27:5f:b5:f0:3e:6d:a7:f9:16:46:b7:06: 32:1e:79:c2:d2:cb:e3:e4:7d:65:c6:ed:a9:21:2c:d9:3a:73: 77:94:d6:f1:6f:53:50:2c:cc:7f:27:9a:18:ce:9b:4c:47:db: f5:28 Switch#...
Page 363: Ip Ssl Service
Command Line Interface SSL Commands IP ssl service Enables or disables access to the ssl server. Enabled by default. Command Mode: Global Configuration Syntax [no] IP ssl service Example !Enables access to ssl server. IP ssl service Switch(config)# SSL Service is Enabled now Switch(config)# !Disables access to ssl server.
Page 364: Ip Ssl Cipher-List
Command Line Interface SSL Commands IP ssl cipher-list Configures ssl cipher algorithm list. May be one or more of RSA-NULL-MD5, RSA-NULL- SHA, RSA-DES-SHA, RSA-3DES-SHA, DH-RSA-DES-SHA, DH-RSA-3DES -SHA, or RSA- EXP1024-DES-SHA. Default is RSA-SES-SHA, RSA-3DES-SHA, and RSA-EXP1024-DES- SHA. Command Mode: Global Configuration Syntax IP ssl cipher-list <cipher1>...
Page 365: Ip Ssl Default-Ciphers
Command Line Interface SSL Commands IP ssl default-ciphers Configures the default ssl cipher algorithm list. Default is RSA-DES-SHA RSA-3DES-SHA and RSA-EXP1024-DES- SHA. Command Mode: Global Configuration Syntax IP ssl default-ciphers Example switch(config)# IP ssl default-ciphers Switch(config)# crypto ssl gen key rsa Generates an ssl server key.
Page 366: Crypto Ssl Gen Cert-Req Algo Rsa
Command Line Interface SSL Commands crypto ssl gen cert-req algo rsa Generates an ssl server certificate. Command Mode: Global Configuration Syntax crypto ssl gen cert-req algo {rsa} Description - Sets RSA key type. {rsa} ■ Example crypto ssl gen cert-req algo rsa Switch(config)# SSL Generate Cert success Switch(config)#...
Page 367: Crypto Ssl Cert Country-Name
Command Line Interface SSL Commands crypto ssl cert country-name Sets ssl certification country name. Command Mode: Global Configuration Syntax crypto ssl cert country-name [<CN>] Description - May be null or any two letter country code. [<CN>] ■ Example crypto ssl cert country-name Switch(config)# Switch(config)# crypto ssl cert organization-name...
Page 368: Tacacs+ Commands
Command Line Interface TACACS+ Commands TACACS+ Commands Terminal Access Controller Access-Control System (TACACS) Commands configure a remote authentication protocols used to communicate with an authentication server. aaa authentication dot1x Sets dot1x authentication mode as local, TACACS, or RADUIS. Default RADIUS. Command Mode: Global Configuration Syntax aaa authentication dot1x {local|RADIUS|TACACS}...
Page 369: Aaa Accounting Dot1X
Command Line Interface TACACS+ Commands aaa accounting dot1x Sets the dot1x accounting mode as none, TACACS, or RADUIS. Default none. Command Mode: Global Configuration Syntax aaa accounting dot1x {none|RADIUS|TACACS} Description - Sets no accounting mode (default). {none} ■ - Sets RADIUS accounting mode. {RADIUS} ■...
Page 370: Aaa Authentication Login
Command Line Interface TACACS+ Commands aaa authentication login Sets the user authentication mode as local or TACACS. Default local. Command Mode: Global Configuration Syntax aaa authentication login {local|TACACS} Description - Sets the user authentication mode to local (default). {local} ■ - Sets RADIUS accounting mode.
Page 371: No Tacacs-Server Host
Command Line Interface TACACS+ Commands no TACACS-server host Disables (deletes) a server entry from the TACACS server table. Command Mode: TACACS Configuration Syntax no TACACS-server host <IP-address> Description - Specifies the TACACS server address to be disabled (deleted). <IP-address> ■ Example !Deletes (disables) TACACS server 199.199.200.110.
Page 372: Show Tacacs Server
Command Line Interface TACACS+ Commands show TACACS server Displays configured TACACS server and the active server. Command Mode: Privileged EXEC Syntax show TACACS server [address <IP-address>] Description - Specifies the TACACS server address to be displayed. <IP-address> ■ Example !Displays TACACS server infomation. show TACACS server Switch# Server : 1...
Page 373: Show Tacacs Statistics
Command Line Interface TACACS+ Commands show TACACS statistics Displays statistical log information for the TACACS+ client. Command Mode: Privileged EXEC Syntax show TACACS statistics Example !Displays TACACS statisticss. show TACACS statistics Switch# Authen. Starts sent Authen. Continues sent : 0 Authen.
Page 374 Command Line Interface TACACS+ Commands Acct. Sess. timeouts Malformed Pkts. rcvd. Socket failures Connection failures Switch#...
Page 375: Tacacs-Server Host
Command Line Interface TACACS+ Commands TACACS-server host Configures a TACACS+ server. Default no single-connection, port 49, timeout 60. Command Mode: TACACS Configuration Syntax TACACS-server host <IP-address> [single-connection] [port <TCP port>] [timeout <time out in seconds>] [key <secret key>] Description - Sets the TACACS server IP. <IP-address>...
Page 376: Tacacs Trace-Level
Command Line Interface TACACS+ Commands TACACS trace-level Configures the debug trace level for the TACACS+ client module. Command Mode: TACACS Configuration Syntax TACACS trace-level <bit mapped trace level in hexa decimal> Trace Level Hexa decimal trace value no trace 0x00000000 (default) info 0x00000001 errors...
Page 377: Tacacs Use-Server Address
Command Line Interface TACACS+ Commands TACACS use-server address Configures a server from the server table for TACACS+ client use. Command Mode: TACACS Configuration Syntax TACACS use-server address <IP-address> Description - Sets the TACACS server IP address for use. <IP-address> ■ Example config Switch#...
Page 378: Rmon Commands
Command Line Interface RMON Commands RMON Commands Remote Network Monitoring (RMON) Commands configure the monitoring and protocol analysis of LANs. rmon enable Enables or disables RMON in the system Command Mode: Global Configuration Syntax rmon {enable | disable} Description enable - Enables RMON in the system. ■...
Page 379: Rmon Collect History
Command Line Interface RMON Commands rmon collect history Enables RMON MIB history group on an interface. Command Mode: Interface Configuration Syntax [no] rmon collect history <index(1-65535)> [buckets <buckets-number(1- 65535)> ] [interval <poll-time(1-3600)>] [owner <string>] Description <index(1-65535)> - Specifies the history group index from 1 to 65535. ■...
Page 380: Rmon Event
Command Line Interface RMON Commands rmon event Configures an RMON event and specific related actions. Command Mode: Global Configuration Syntax [no] rmon event <index(1-65535)> [description <event-description>] [log][trap <CommunityIndex>] [owner <owner>] Description <index(1-65535)> - Specifies the event group index from 1 to 65535. ■...
Page 381: Rmon Alarm
Command Line Interface RMON Commands rmon alarm Configures RMON alarm conditions. Command Mode: Global Configuration Syntax [no] rmon alarm <index(1-65535)> <mib-word > <Interval(secs)> {<abso- lute|delta>} rising-threshold <RisingThreshold> <risingEventIndex(1- 65535)> falling-threshold <FallingThreshold> <fallingEventIndex(1- 65535)> [owner <string>] Description <index(1-65535)> - Specifies the RMON alarm group index. ■...
Page 382: Show Rmon Statistics
Command Line Interface RMON Commands show rmon statistics Displays RMON statistics. Command Mode: User EXEC Syntax show rmon statistics [<interface number>] Description [<interface number>] - Specifies the interface number such as 1/1 or 2/1. ■ Example show rmon statistics Switch# RMON is enabled Collection 1 on interface 1/1 is valid and owned by , Monitors ifIndex.65 which has...
Page 383 Command Line Interface RMON Commands 64: 15, 65-127: 43, 128-255: 31, 256-511: 0, 512-1023: 0, 1024-1518: 0 Collection 3 on interface 1/3 is valid and owned by , Monitors ifIndex.75 which has Received 64 octets, 1 packets, 1 broadcast and 0 multicast packets, 0 undersized and 0 oversized packets, 0 fragments and 0 jabbers, 0 CRC alignment errors and 0 collisions.
Page 384: Show Rmon History
Command Line Interface RMON Commands show rmon history Displays RMON index group history Command Mode: User EXEC Syntax show rmon history [<Index(1-65535)>] Description [<Index(1-65535)>] - Specifies the history group index, from 1 to 65535. If no value ■ entered diplays all RMON history information. Example show rmon history Switch#...
Page 385 Command Line Interface RMON Commands Network utilization is estimated at 0 Sample 3 Start Interval at 1900/01/01 04:28:27 0 octets, 0 packets, 0 broadcast and 0 multicast packets, 0 undersized and 0 oversized packets, 0 fragments and 0 jabbers, 0 CRC alignment errors and 0 collisions, # of dropped packet events is 0 Network utilization is estimated at 0 show rmon history...
Page 386: Show Rmon Events
Command Line Interface RMON Commands show rmon events Displays RMON events Command Mode: User EXEC Syntax show rmon events [<Index(1-65535)>] Description [<Index(1-65535)>] - Specifies the statistics group index, from 1 to 65535. If no ■ value entered diplays all RMON event information. Example show rmon events Switch#...
Page 387: Show Rmon Alarms
Command Line Interface RMON Commands show rmon alarms Displays RMON alarms Command Mode: User EXEC Syntax show rmon alarms [<Index(1-65535)>] Description [<Index(1-65535)>] - Specifies the alarm group index, from 1 to 65535. ■ Example show rmon alarms Switch# RMON is enabled Alarm 1 is valid owned by Monitors 1.3.6.1.2.1.16.1.1.1.4.1 every 20 second(s) Taking absolute samples, last value was 12764...
Page 388: Poe Commands
Command Line Interface POE Commands POE Commands Power over Ethernet Commands configure the transmission of electrical power along with data on Ethernet cabling on the switch. The switch supports IEEE 802.3af/802.3at and enable/disable POE for each port on the system. Users may set POE priority as Critical/ High/Low for each port on the system.
Page 389: Power-Priority
Command Line Interface POE Commands power-priority Sets the POE priority of the interface Command Mode: Interface Configuration Syntax power-priority {critical | high | low} Description critical - Sets highest interface priority. ■ high - Sets high interface priority. ■ low - Sets low interface priority. Default setting. ■...
Page 390: Show Power-Info
Command Line Interface POE Commands show power-info Displays POE information about all interfaces Command Mode: User EXEC Syntax show power-info Example !Displays Switch power-info Switch# show power-info The Total Available Power is 375 Watts The Total Consumed Power is 12 Watts No.
Page 391 Command Line Interface POE Commands Searching 0.00 Searching 0.00 Searching 0.00 Searching 0.00 Switch#...
Page 392: Configuration File Example
Command Line Interface Configuration File Example Configuration File Example ! -- start of config file -- enable config no SNMP-server enable traps linkupdown qos schedule strict interface vlan 1 exit interface GigabitEthernet 1/1 no shutdown interface GigabitEthernet 1/2 no shutdown interface GigabitEthernet 1/3 no shutdown interface GigabitEthernet 1/4...
Page 393 Command Line Interface Configuration File Example interface GigabitEthernet 1/5 no shutdown interface GigabitEthernet 1/6 no shutdown interface GigabitEthernet 1/7 no shutdown interface GigabitEthernet 1/8 no shutdown interface GigabitEthernet 1/9 no shutdown interface GigabitEthernet 1/10 no shutdown interface GigabitEthernet 1/11 no shutdown interface GigabitEthernet 1/12 no shutdown interface GigabitEthernet 1/13...
Page 394 Command Line Interface Configuration File Example interface GigabitEthernet 1/19 no shutdown interface GigabitEthernet 1/20 no shutdown interface GigabitEthernet 1/21 no shutdown interface GigabitEthernet 1/22 no shutdown interface GigabitEthernet 1/23 no shutdown interface GigabitEthernet 1/24 no shutdown exit ! -- end of configuration --...
Page 395: Safety And Ce Regulations
Safety and CE Regulations Safety and CE Regulations In this Chapter Safety Notices ........... . Compliance Statements .
Page 396: Safety Notices
Safety and CE Regulations Safety Notices Overview Please read this User Guide carefully before using the ZoneSwitch 4124/4224. The ZoneSwitch 4124/4224 is designed as a Layer 2 smart switch that connects network segments and/or network devices for enterprise and carrier class network environments. The manufacturer advises no to use this device for any other purpose, as doing so may cause damage to the equipment or harm to users.
Page 397: Compliance Statements
Safety and CE Regulations Compliance Statements CE Markings This product complies with EN 60950-1:2006+A11:2009 CE standards. Federal Communications Commission Notices This product complies with Part 15 of the FCC Rules. Operation is subject to the following two conditions: (1) this device may not cause harmful interference, and (2) this device must accept any interference received, including interference that may cause undesired oper- ation.
Page 398 Safety and CE Regulations...
Page 399: Index
Index Index Numerics 802.1Q Vlan, 802.1x, 802.1X Commands, aaa accounting dot1x, aaa accounting dot1x mode show, aaa authentication dot1x, aaa authentication dot1x mode show, aaa authentication login, aaa authentication login mode show, About This Guide, Access, Access Control, Access List, Access List Binding, Access List Config, access-list,...
Page 400 Index config, Configuration Hierarchy, console inactivity-timer, Create / Modify 802.1Q Trunk, Create / Modify Classifier, Create / Modify In-Profile Action, Create / Modify Meter, Create / Modify Out-Profile Action, Create / Modify Policy, Create / Modify Port List, Create / Modify VLAN, crypto ssh generate-key, crypto ssh save-key, crypto ssl cert country-name,...
Page 401 Index dot1x timeout server, dot1x timeout supp-timeout, dot1x timeout tx-period, DSCP Mapping, dscp to cos map, Electromagnetic Emissions, enable, end, Environment, Equipment, European Union Notices, Events Control, Events Log, exit, FDB by MAC, FDB by Port, FDB by VID, Federal Communications Commission Notices, flow-control, forbidden, Forwarding DB,...
Page 402 Index IGMP Snooping Config, Industry Canada Statement, interface, ip access-list, ip address, ip address dhcp, ip address renew, IP Config, ip http server, ip igmp snooping aging-time, ip igmp snooping enable, ip igmp snooping vlan-filter vlan, ip ssh cipher-list, ip ssh inactivity-timer, ip ssh mac-list, ip ssh port, ip ssh service,...
Page 403 Index lldp tlv-select dot3tlv, lldp tlv-select dotltlv port-vlan-id, LLDP Traffic, LLDS Dot1/Dot3 Tlv Settings, logging console, logging on, logging server, logout, MAC Address Commands, Mac OSX Setup, mac-address-table aging-time, mac-address-table secure, mac-address-table static, Management Access, Management and Operation Features, map protocol, member, Menu Bar, mls qos,...
Page 404 Index Port Protocol, port protocol-vlan, Port Security, Port Status and Config, Ports, power-inline, power-priority, Preparing your Computer for Switch Setup, priority-queue cos-map, Protocol Group, Protocol Vlan, Protocol Vlan Status, protocol-vlan, pvid, QoS, qos schedule, qos trust mode, Quality of Service (QOS) and Access List (ACL) Features, Quality of Service Commands, Queue Config, Queue Mapping,...
Page 405 Index Safety Agency Approvals, Safety Notices, Save Config, Secure MAC, secure-mac, Security Features, sho mac-address-table interface, show access-list, show console, show diffserv classifier, show diffserv inprofile, show diffserv meter, show diffserv outprofile, show diffserv policy, show diffserv portlist, show dot1x, show dscp to cos map, show interface counters, show interface counters error,...
Page 406 Index show priority-queue cos-map, show protocol-vlan, show qos trust mode, show radius-server, show rmon alarms, show rmon events, show rmon history, show rmon statistics, show running-config, show snmp-server access, show snmp-server community, show snmp-server group, show snmp-server notify, show snmp-server targetaddress, show snmp-server targetparam, show snmp-server user-usm, show snmp-server viewtree,...
Page 407 Index snmp-server community, snmp-server contact, snmp-server enable traps, snmp-server group, snmp-server location, snmp-server notify, snmp-server targetaddr, snmp-server targetparam, snmp-server user-usm, snmp-server viewtree, SNTP Commands, SNTP Config, sntp dayligh-saving, sntp poll-interval, sntp server, sntp timezone, Software Features, Software Management, Spanning Tree, spanning-tree mst shutdown, spanning-tree mst config-id, spanning-tree mst cost,...
Page 408 Index statistics refresh timer, Storm Control, storm-control broadcast, storm-control multicast, storm-control threshold, storm-control unicast, Switching Features, switchport map protocol, switchport protected uplink, Syslog Commands, Syslog Settings, System Admin, System Info, System Log, System Priority, System Reboot, TACACS Server Config, TACACS Statistics, tacacs trace-level, tacacs use-server address, TACACS+ Commands,...
Page 409 Index Workspace, ZoneSwitch 4124, ZoneSwitch 4224,...
Page 410 Index...

This manual is also suitable for:

Zs4124 Zoneswitch 4124 Zs4224

Ruckus Wireless ZoneSwitch 4224 User Manual

Table of Contents

About this Guide

Contents

1 Introducing Ruckus Wireless Zoneswitch

2 Installation & Setup

3 Accessing the Switch

4 Graphical User Interface

5 Command Line Interface

6 Safety and CE Regulations

7 Index

Quick Links

User Guide

Chapters

Related Manuals for Ruckus Wireless ZoneSwitch 4224

Summary of Contents for Ruckus Wireless ZoneSwitch 4224