Page 1: Command Line
AT-S60 Management ® Software AT-S60 ◆ Command Line User’s Guide AT-8400 SERIES SWITCH VERSION 2.0.0 PN 613-50401-00 Rev B...
Page 2 Copyright © 2004 Allied Telesyn, Inc. 960 Stewart Drive Suite B, Sunnyvale, CA 94085 USA All rights reserved. No part of this publication may be reproduced without prior written permission from Allied Telesyn, Inc. Microsoft is a registered trademark of Microsoft Corporation, Netscape Navigator is a registered trademark of Netscape Communications Corporation.
Page 3: Table Of Contents
Table of Contents Preface ............................................7 How This Guide is Organized ..................................... 7 Security Features ......................................9 Document Conventions ....................................10 Where to Find Web-based Guides .................................11 Contacting Allied Telesyn ....................................12 Online Support ......................................12 Email and Telephone Support ................................12 For Sales or Corporate Information ..............................
Page 4 Table of Contents RESET IP ROUTE ........................................37 RESET SYSTEM ........................................38 RESTART REBOOT ........................................ 39 RESTART SWITCH ......................................... 40 SET ASYN ..........................................41 SET IP ............................................42 SET IP ROUTE ......................................... 44 SET PASSWORD MANAGER ....................................45 SET PASSWORD OPERATOR ..................................... 46 SET SWITCH CONSOLETIMER ..................................
Page 5 Chapter 7 Port Parameter Commands ..................................93 RESET SWITCH PORT ......................................94 SET SWITCH PORT ........................................95 SHOW SWITCH PORT ......................................99 Chapter 8 Port Security Command ....................................100 SET SWITCH PORT SECURITYMODE ................................101 Chapter 9 Port Trunking Commands ..................................104 ADD SWITCH TRUNK ......................................105 CREATE SWITCH TRUNK ....................................
Page 6 Table of Contents Chapter 14 RSTP Commands ......................................148 ACTIVATE RSTP ........................................149 DISABLE RSTP ........................................150 ENABLE RSTP ........................................151 RESET RSTP ...........................................152 SET RSTP ..........................................153 SET RSTP PORT ........................................156 SHOW RSTP ..........................................159 Chapter 15 MSTP Commands ......................................161 ACTIVATE MSTP ........................................163 ADD MSTP ..........................................164 CREATE MSTP ........................................165 DELETE MSTP ........................................166 DESTROY MSTP MSTI ......................................167...
Page 7 SET SWITCH AGINGTIMER ....................................219 SHOW SWITCH FDB ......................................220 Chapter 19 IGMP Snooping Commands ..................................222 SET IP IGMP .......................................... 223 SHOW IP IGMP ........................................225 Chapter 20 Statistics Commands ..................................... 226 RESET SWITCH COUNTER ....................................227 RESET SWITCH LINECARD COUNTER ................................228 RESET SWITCH PORT COUNTER ...................................
Page 8 Table of Contents SET SSH SERVER ........................................270 Creating a Secure Shell Server ................................271 SHOW SSH ..........................................273 Chapter 26 802.1x Port-Based Access Control Commands ..........................274 DISABLE PORTACCESS .....................................275 ENABLE PORTACCESS ......................................276 SET PORTACCESS .......................................277 SET PORTACCESS PORT AUTHENTICATOR ...............................278 SET PORTACCESS PORT ROLE ..................................280 SET PORTACCESS PORT SUPPLICANT .................................281 SHOW PORTACCESS ......................................283 Chapter 27...
Page 9: Preface
Preface This guide contains information about the AT-S60 command line interface. The commands for both the AT-S60 version 2.0.0 NE and 2.0.0 software are included in this manual. This chapter discusses the following topics: ❑ How This Guide is Organized on page 7 ❑...
Page 10 Preface ❑ Chapter 7: Port Parameter Commands ❑ Chapter 8: Port Security Command ❑ Chapter 9: Port Trunking Commands ❑ Chapter 10: Port Mirroring Commands ❑ Chapter 11: File System Commands ❑ Chapter 12: File Download and Upload Commands ❑ Chapter 13: STP Commands ❑...
Page 11: Security Features
AT-S60 Command Line User’s Guide Security As mentioned above, the commands for both the AT-S60 version 2.0.0 NE and 2.0.0 software are included in this manual. There are several Features chapters that contain security information for the AT-S60 version 2.0.0 software.
Page 12: Document Conventions
Preface Document Conventions This document uses the following conventions: Note Notes provide additional information. Warning Warnings inform you that performing or omitting a specific action may result in bodily injury. Caution Cautions inform you that performing or omitting a specific action may result in equipment damage or loss of data.
Page 13: Where To Find Web-Based Guides
AT-S60 Command Line User’s Guide Where to Find Web-based Guides The installation and user guides for all Allied Telesyn products are available in Portable Document Format (PDF) from on our web site at www.alliedtelesyn.com. You can view the documents on-line or download them onto a local workstation or server.
Page 14: Contacting Allied Telesyn
Preface Contacting Allied Telesyn This section provides Allied Telesyn contact information for technical support as well as sales or corporate information. Online Support You can request technical support online by accessing the Allied Telesyn Knowledge Base from the following web site: kb.alliedtelesyn.com. You can use the Knowledge Base to submit questions to our technical support staff and review answers to previously asked questions.
Page 15: Obtaining Management Software Updates
AT-S60 Command Line User’s Guide Obtaining Management Software Updates New releases of management software for our managed products can be downloaded from either of the following Internet sites: • the Allied Telesyn web site: http://www.alliedtelesyn.com • the Allied Telesyn FTP server: ftp://ftp.alliedtelesyn.com To use the FTP server, go to the above web site.
Page 16: Starting A Command Line Management Session
Chapter 1 Starting a Command Line Management Session This chapter contains the following topics: ❑ Starting a Management Session on page 15 ❑ Command Line Interface Features on page 16 ❑ Command Formatting on page 17...
Page 17: Starting A Management Session
AT-S60 Command Line User’s Guide Starting a Management Session In order to manage an AT-8400 Series switch using the command line, you must first start a local or Telnet management session. For instructions, refer to the AT-S60 Software Management User’s Guide.
Page 18: Command Line Interface Features
Chapter 1: Starting a Command Line Management Session Command Line Interface Features The following features are supported in the command line interface: ❑ Command history - Use the up and down arrow keys. ❑ Context-specific help - Press the question mark key at any time to see a list of legal next parameters.
Page 19: Command Formatting
Slot is the number of the slot in the AT-8400 Series switch containing the line card. The AT-8400 Chassis has 12 slots for line cards. Port is the port number on the line card. For instance, to indicate Port 4 on a line card in...
Page 20 Chapter 1: Starting a Command Line Management Session Note The AT-8413 G/BT line card comes with one 10/100/1000Base-T twisted pair port and one GBIC expansion slot. Only one port is active on the line card at a time. The port number for the active port is always 1.
Page 21: Basic Command-Line Commands
Chapter 2 Basic Command-Line Commands This chapter contains the following commands: ❑ CLEAR SCREEN on page 20 ❑ LOGOFF and QUIT on page 21 ❑ MENU on page 22 ❑ SAVE CONFIGURATION on page 23 ❑ SET PROMPT on page 24 ❑...
Page 22: Clear Screen
Chapter 2: Basic Command Line Commands CLEAR SCREEN Syntax clear screen Parameters None. Description This command clears the screen. Example The following command clears the screen: clear screen...
Page 23: Logoff And Quit
AT-S60 Command Line User’s Guide LOGOFF and QUIT Syntax logoff quit Parameters None. Description Both commands perform the same function: they end a management session. If you are managing a slave switch, the commands return you to the master switch from which you started the management session. Example The following command ends a management session: logoff...
Page 24: Menu
Chapter 2: Basic Command Line Commands MENU Syntax menu Parameters None. Description This command displays the AT-S60 Main Menu. For instructions on how to use the management menus, refer to the AT-S60 Management Software User’s Guide. Example The following command displays the AT-S60 Main Menu: menu...
Page 25: Save Configuration
AT-S60 Command Line User’s Guide SAVE CONFIGURATION Syntax save configuration Parameters None. Description This command saves your changes to the switch’s flash memory for permanent storage. Whenever you make a change to an operating parameter of the switch, such as enter a new IP address or create a new VLAN, the change is stored in temporary memory.
Page 26: Set Prompt
Chapter 2: Basic Command Line Commands SET PROMPT Syntax set prompt=”prompt” Parameter prompt Specifies the command line prompt. The prompt can be from one to seven alphanumeric characters. Spaces and special characters are allowed. The prompt must be enclosed in quotes. Description This command changes the command prompt.
Page 27: Set Switch Consolemode
AT-S60 Command Line User’s Guide SET SWITCH CONSOLEMODE Syntax set switch consolemode=menu|cli Parameter consolemode Specifies the mode you want management sessions to start in. Options are: menu Specifies the AT-S60 Main Menu. This is the default. Specifies the command line prompt. Description You use this command to specify whether you want your management sessions to start by displaying the command line interface or the AT-S60...
Page 28: Show User
Chapter 2: Basic Command Line Commands SHOW USER Syntax show user Parameter None. Description Displays the user account you used to log on to the switch. The user account is Manager or Operator. Example show user...
Page 29: Basic Switch Commands
Chapter 3 Basic Switch Commands This chapter contains the following commands: ❑ DISABLE DHCPBOOTP on page 29 ❑ DISABLE TELNET on page 30 ❑ ENABLE DHCPBOOTP on page 31 ❑ ENABLE TELNET on page 32 ❑ PING on page 33 ❑...
Page 30 Chapter 3: Basic Switch Commands ❑ SET SYSTEM on page 48 ❑ SET SYSTEM TEMPTHRESHOLD on page 49 ❑ SHOW ASYN on page 50 ❑ SHOW CONFIG on page 51 ❑ SHOW DHCPBOOTP on page 52 ❑ SHOW IP on page 53 ❑...
Page 31: Disable Dhcpbootp
AT-S60 Command Line User’s Guide DISABLE DHCPBOOTP Syntax disable dhcpbootp Parameters None. Description This command deactivates the DHCP and BOOTP client software on the switch. Example The following command deactivates DHCP and BOOTP: disable dhcpbootp...
Page 32: Disable Telnet
Chapter 3: Basic Switch Commands DISABLE TELNET Syntax disable telnet Parameters None Description This command disables Telnet access to the switch. Caution Before you enable the Secure Shell (SSH) feature, disable Telnet access to the switch. If you do not disable Telnet while SSH is enabled, the security provided by SSH is rendered ineffective.
Page 33: Enable Dhcpbootp
AT-S60 Command Line User’s Guide ENABLE DHCPBOOTP Syntax enable dhcpbootp Parameters None. Description This command activates the DHCP and BOOTP client software on the switch. When activated, the switch obtains its IP configuration from a DHCP or BOOTP server on your network, whenever the unit is power cycled or reset.
Page 34: Enable Telnet
Chapter 3: Basic Switch Commands ENABLE TELNET Syntax enable telnet Parameters None. Description This command enables Telnet access to the switch. Example The following command enables Telnet access to the switch: enable telnet...
Page 35: Ping
AT-S60 Command Line User’s Guide PING Syntax ping ipaddress Parameter ipaddress Specifies the IP address of an end node you want the switch to ping. Description This command instructs the switch to ping an end node. You can use this command to determine whether a valid link exists between the switch and another device.
Page 36: Purge Ip
Chapter 3: Basic Switch Commands PURGE IP Syntax purge ip [ipaddress] [netmask] [route] Parameters ipaddress Returns the switch’s IP address to the default setting of 0.0.0.0. netmask Returns the subnet mask to the default setting of 0.0.0.0. route Returns the gateway address to the default setting of 0.0.0.0.
Page 37: Reset Asyn
AT-S60 Command Line User’s Guide RESET ASYN Syntax reset asyn Parameter None. Description This command resets the speed of the serial port on the AT-8401 management fabric card to the default value of 9600 bps. Note If you are managing the switch locally, changing the baud rate of the serial port ends your management session.
Page 38: Reset Ip
Chapter 3: Basic Switch Commands RESET IP Syntax reset ip interface=1 Parameter interface Specifies the interface number. This value is always 1. Description This command returns the IP address, subnet mask, and gateway address to their default values, which are: ❑...
Page 39: Reset Ip Route
AT-S60 Command Line User’s Guide RESET IP ROUTE Syntax reset ip route Parameter None. Description This command returns the default gateway address to its default value of 0.0.0.0. (You can use the PURGE IP on page 34 to perform the same function.) Example The following command returns the default gateway address to 0.0.0.0:...
Page 40: Reset System
Chapter 3: Basic Switch Commands RESET SYSTEM Syntax reset system [name] [contact] [location] Parameters name Deletes the name of the switch. contact Deletes the name of the network administrator responsible for managing the unit. location Deletes the location of the switch. Description This command deletes the switch’s name, the name of the network administrator responsible for managing the unit, and the location of the...
Page 41: Restart Reboot
AT-S60 Command Line User’s Guide RESTART REBOOT Syntax restart reboot Parameters None. Description This command returns the switch’s operating parameters to the default settings. For a list of the default settings, see Appendix A: AT-S60 Default Settings of the AT-S60 Management Software User’s Guide. Example The following command returns the switch’s operating parameters to the default settings:...
Page 42: Restart Switch
Chapter 3: Basic Switch Commands RESTART SWITCH Syntax restart switch Parameters None. Description This command resets the switch. The system reset takes approximately 20 to 30 seconds to complete. The unit does not forward traffic during the time required to run its internal diagnostics and reload the operating software.
Page 43: Set Asyn
AT-S60 Command Line User’s Guide SET ASYN Syntax set asyn speed=1200|2400|4800|9600|19200|38400| 57600|115200 Parameter speed Sets the speed of the serial port on the AT-8401 management card. The default is 9600 bps. Description This command sets the baud rate of the serial port on the AT-8401 management card.
Page 44: Set Ip
Chapter 3: Basic Switch Commands SET IP Syntax set ip interface=1 ipaddress=ipaddress|DHCP netmask=subnetmask Parameters interface Specifies the interface number. This value is always 1. ipaddress Specifies an IP address for the switch or activates the DHCP and BOOTP client software. For background information on when to assign a switch an IP address, refer to the AT-S60 Management Software User’s Guide.
Page 45 AT-S60 Command Line User’s Guide Examples The following command sets the switch’s IP address to 140.35.22.22 and the subnet mask to 255.255.255.0: set ip interface=1 ipaddress=140.35.22.22 netmask=255.255.255.0 The following command sets the subnet mask: set ip interface=1 netmask=255.255.255.252 The following command activates the DHCP and BOOTP client software: set ip interface=1 ipaddress=dhcp To deactivate DHCP and BOOTP client software on the switch, refer to DISABLE DHCPBOOTP on page 29.
Page 46: Set Ip Route
Description This command specifies the IP address of the default gateway for the AT-8400 Series switch. This IP address is required if you intend to remotely manage the device from a remote management station that is separated from the unit by a router.
Page 47: Set Password Manager
AT-S60 Command Line User’s Guide SET PASSWORD MANAGER Syntax set password manager Parameters None. Description This command sets the manager’s password. The default password is “friend.” The password can be from 1 to 20 alphanumeric characters. Allied Telesyn International recommends avoiding special characters, such as spaces, asterisks or exclamation points, since some web browsers do not accept them in passwords.
Page 48: Set Password Operator
Chapter 3: Basic Switch Commands SET PASSWORD OPERATOR Syntax set password operator Parameters None. Description This command sets the operator’s password. The default password is “operator.” The password can be from 1 to 20 alphanumeric characters. Allied Telesyn International recommends avoiding special characters, such as spaces, asterisks or exclamation points, since some web browsers do not accept them in passwords.
Page 49: Set Switch Consoletimer
AT-S60 Command Line User’s Guide SET SWITCH CONSOLETIMER Syntax set switch consoletimer=value Parameter consoletimer Specifies the console timer in minutes. The range is 1 to 60 minutes. The default is 10 minutes. Description This command sets the console timer, which is used by the management software, to end inactive management sessions.
Page 50: Set System
Chapter 3: Basic Switch Commands SET SYSTEM Syntax set system [name=”name”] [contact=”contact”] [location=”location”] Parameters The parameters are defined below: name Specifies the name of the switch. The name can be from 1 to 15 alphanumeric characters in length and must be enclosed in quotes (“...
Page 51: Set System Tempthreshold
AT-S60 Command Line User’s Guide SET SYSTEM TEMPTHRESHOLD Syntax set system tempthreshold=temperature Parameter The parameter is defined below: tempthreshold Specifies the maximum operating temperature for the ° ° ° switch. The range is 0 to 90 C. The default is 80 Description This command sets the switch’s maximum operating temperature.
Page 52: Show Asyn
Chapter 3: Basic Switch Commands SHOW ASYN Syntax show asyn Parameters None. Description This command displays the following operating parameters of the serial port on the AT-8401 management card: ❑ Baud rate ❑ Parity ❑ Data bits ❑ Stop bits Of the above values, only the baud rate is adjustable on the serial port.
Page 53: Show Config
AT-S60 Command Line User’s Guide SHOW CONFIG Syntax show config Parameters None. Description This command displays the following information: ❑ Boot configuration file - This is the configuration file the switch will use the next time it is reset or power cycled. ❑...
Page 54: Show Dhcpbootp
Chapter 3: Basic Switch Commands SHOW DHCPBOOTP Syntax show dhcpbootp Parameters None. Description This command displays the status of the DHCP and BOOTP client software on the switch. The status is either “enabled” or “disabled.” The default setting for DHCP and BOOTP is disabled. To enable DHCP and BOOTP client software, refer to ENABLE DHCPBOOTP on page 31.
Page 55: Show Ip
AT-S60 Command Line User’s Guide SHOW IP Syntax show ip interface=1 Parameters interface Specifies the switch’s interface number. This value is always 1. Description This command displays the current values for the following switch parameters: ❑ IP address ❑ Subnet mask ❑...
Page 56: Show Ip Route
Chapter 3: Basic Switch Commands SHOW IP ROUTE Syntax show ip route Parameters None. Description This command displays the switch’s default gateway address. You can also display the gateway address using SHOW IP on page 53. To set the default gateway address, refer to SET IP ROUTE on page 44. Example The following command displays the default gateway address of the switch:...
Page 57: Show Switch
AT-S60 Command Line User’s Guide SHOW SWITCH Syntax show switch Parameters None. Description This command displays the following switch parameters: ❑ Application software version ❑ Application software build date ❑ Bootloader version ❑ Bootloader build date ❑ MAC address of the AT-8401 management card ❑...
Page 58: Show Switch Linecard
Chapter 3: Basic Switch Commands SHOW SWITCH LINECARD Syntax show switch linecard=slotnumber Parameter linecard Specifies the slot number containing the line card whose information you want to view. Description This command displays the following line card information: ❑ Serial number ❑...
Page 59: Show System
AT-S60 Command Line User’s Guide SHOW SYSTEM Syntax show system Parameters None. Description This command displays the following information: ❑ Application software version ❑ Application software build date ❑ Bootloader version ❑ Bootloader version build date ❑ Model name ❑ Switch name ❑...
Page 60: Simple Network Time Protocol (Sntp) Commands
Chapter 4 Simple Network Time Protocol (SNTP) Commands This chapter contains the following commands: ❑ ADD SNTPSERVER IPADDRESS on page 59 ❑ DELETE SNTPSERVER IPADDRESS on page 60 ❑ DISABLE SNTP on page 61 ❑ ENABLE SNTP on page 62 ❑...
Page 61: Add Sntpserver Ipaddress
AT-S60 Command Line User’s Guide ADD SNTPSERVER IPADDRESS Syntax add sntpserver ipaddress=ip-address Parameter ipaddress Specifies the IP address of the SNTP server. Description This command specifies the IP address of the SNTP server. Example The following command adds an SNTP server IP address: add sntpserver ipaddress=148.35.16.248...
Page 62: Delete Sntpserver Ipaddress
Chapter 4: SNTP Commands DELETE SNTPSERVER IPADDRESS Syntax delete sntpserver ipaddress=ip-address Parameter ipaddress Specifies the IP address of the SNTP server. Description This command deletes the IP address of the SNTP server. Example The following command deletes the SNTP server IP address: delete sntpserver ipaddress=148.35.16.248...
Page 63: Disable Sntp
AT-S60 Command Line User’s Guide DISABLE SNTP Syntax disable sntp Parameters None. Description This command disables SNTP. Example The following command disables SNTP on the switch: disable sntp...
Page 64: Enable Sntp
Chapter 4: SNTP Commands ENABLE SNTP Syntax enable sntp Parameters None. Description This command enables SNTP. Example The following command enables SNTP: enable sntp...
Page 65: Reset Sntp
AT-S60 Command Line User’s Guide RESET SNTP Syntax reset sntp Parameters None. Description This command resets SNTP to its default values. Example The following command resets SNTP: reset sntp...
Page 66: Set Date
Chapter 4: SNTP Commands SET DATE Syntax set date dd-mm-yyyy Parameter date Specifies the date for the SNTP server in day/month/year format. Description This command sets the date on the SNTP server. Example The following command sets the date to November 9, 2003: set date 9-11-2003...
Page 67: Set Sntp
AT-S60 Command Line User’s Guide SET SNTP Syntax set sntp[dst=enabled|disabled] [pollinterval=integer] [utcoffset=integer] Parameters Daylight savings time. By setting this parameter to enabled, you allow the switch to automatically adjust to daylight savings time. By setting this parameter to disabled, you prevent the switch from automatically adjusting to daylight savings time.
Page 68: Set Time
Chapter 4: SNTP Commands SET TIME Syntax set time hh:mm:ss Parameter time Specifies the hour, minutes, and seconds of the current time in 24-hour format. Description This command sets the system time. Example The following command sets the time to 4:34:52 pm. set time 16:34:52...
Page 69: Show Sntp
AT-S60 Command Line User’s Guide SHOW SNTP Syntax show sntp Parameters None. Description This command displays the following information: ❑ Status ❑ Server IP address ❑ UTC Offset ❑ Daylight Savings Time (DST) - enabled or disabled ❑ Poll Interval ❑...
Page 70: Show Time
Chapter 4: SNTP Commands SHOW TIME Syntax show time Parameters None. Description This command shows the current system time. Example The following command shows the current system time. show time...
Page 71: Snmp Community Strings And Trap Commands
Chapter 5 SNMP Community Strings and Trap Commands This chapter contains the following commands: ❑ ADD SNMP COMMUNITY on page 70 ❑ CREATE SNMP COMMUNITY on page 72 ❑ DELETE SNMP COMMUNITY on page 75 ❑ DESTROY SNMP COMMUNITY on page 76 ❑...
Page 72: Add Snmp Community
Chapter 5: SNMP Community Strings and Trap Commands ADD SNMP COMMUNITY Syntax add snmp community=community [traphost=ipaddress] [manager=ipaddress] Parameters community Specifies an existing SNMP community string on the switch. traphost Specifies the IP address of a trap receiver. manager Specifies the IP address of a management workstation that has SNMP access to the switch using the community string.
Page 73 AT-S60 Command Line User’s Guide The following command adds the IP address of 149.212.10.11 as a trap receiver to the “public” community string: add snmp community=public traphost=149.212.10.11...
Page 74: Create Snmp Community
Chapter 5: SNMP Community Strings and Trap Commands CREATE SNMP COMMUNITY Syntax create snmp community=community [access=read|write] [open=yes|no] [traphost=ipaddress] [manager=ipaddress] Parameters community Specifies a new community string. The maximum length of a community string is 15 alphanumeric characters. access Specifies the access level of the new community string.
Page 75 AT-S60 Command Line User’s Guide Description This command creates a new SNMP community string on the switch. The switch comes with two default community strings, “public,” with an access of read only, and “private,” with an access level of read and write. A switch can support up to eight community strings.
Page 76 Chapter 5: SNMP Community Strings and Trap Commands The following command creates the new community string “wind11” with read and write access level. To limit the use of the string, it is given an access status of closed and assigned the IP address of a management workstation: create snmp community=wind11 access=write open=no manager=149.35.24.22...
Page 77: Delete Snmp Community
AT-S60 Command Line User’s Guide DELETE SNMP COMMUNITY Syntax delete snmp community=community traphost=ipaddress manager=ipaddress Parameters community Specifies the SNMP community string on the switch to be modified. The community string must already exist on the switch. traphost Specifies the IP address of a trap receiver to be removed from the community string.
Page 78: Destroy Snmp Community
Chapter 5: SNMP Community Strings and Trap Commands DESTROY SNMP COMMUNITY Syntax destroy snmp community=community Parameter community Specifies a SNMP community string to delete from the switch. Description This command deletes a SNMP community string from the switch. Any IP addresses of management stations and trap receivers assigned to the community string are deleted as well.
Page 79: Disable Snmp
AT-S60 Command Line User’s Guide DISABLE SNMP Syntax disable snmp Parameters None. Description This command disables SNMP on the switch. When SNMP is disabled, you cannot manage the switch from an SNMP management station. The default setting for SNMP is disabled. Example The following command disables SNMP on the switch: disable snmp...
Page 80: Disable Snmp Authenticatetrap
Chapter 5: SNMP Community Strings and Trap Commands DISABLE SNMP AUTHENTICATETRAP Syntax disable snmp authenticatetrap Parameters None. Description This command stops the switch from sending authentication failure traps to trap receivers. However, the switch will continue to send other system traps, such as alarm traps. The default setting for sending authentication failure traps is enabled.
Page 81: Disable Snmp Community
AT-S60 Command Line User’s Guide DISABLE SNMP COMMUNITY Syntax disable snmp community=community Parameters community Specifies an SNMP community string to disable on the switch. Description This command disables a community string on the switch, while leaving SNMP and all other community strings active. Any IP addresses of management stations or trap receivers assigned to the community string are also disabled.
Page 82: Enable Snmp
Chapter 5: SNMP Community Strings and Trap Commands ENABLE SNMP Syntax enable snmp Parameters None. Description This command activates SNMP on the switch. When SNMP is activated, you can remotely manage the unit with an SNMP application program from a management station on your network. The default setting for SNMP on the switch is disabled.
Page 83: Enable Snmp Authenticatetrap
AT-S60 Command Line User’s Guide ENABLE SNMP AUTHENTICATETRAP Syntax enable snmp authenticatetrap Parameters None. Description This command configures the switch to send authentication failure traps to trap receivers. The switch sends an authentication failure trap whenever a SNMP management station attempts to access the switch using an incorrect or invalid community string, or the management station’s IP address has not been added to a community string that has a closed access status.
Page 84: Enable Snmp Community
Chapter 5: SNMP Community Strings and Trap Commands ENABLE SNMP COMMUNITY Syntax enable snmp community=string Parameters community Specifies an SNMP community string. Description This command enables a community string on the switch. The default setting for a community string is enabled. Use this command to enable a community string that you previously disabled with the DISABLE SNMP COMMUNITY command.
Page 85: Set Snmp Community
AT-S60 Command Line User’s Guide SET SNMP COMMUNITY Syntax set snmp community=community [access=read|write] [open=yes|no] Parameters community Specifies the SNMP community string whose access level or access status is changed. This community string must already exist on the switch. access Specifies the new access level. Options are “read” for read only access and “write”...
Page 86 Chapter 5: SNMP Community Strings and Trap Commands The following command changes the access level for the SNMP community string “serv12” to read and write with open access: set snmp community=serv12 access=write open=yes...
Page 87: Show Snmp
AT-S60 Command Line User’s Guide SHOW SNMP Syntax show snmp [community=communitystring] Parameter community Specifies a community string on the switch. This parameter is case sensitive. The default community strings are “public” and “private.” Description This command displays the following SNMP information: ❑...
Page 88 Chapter 5: SNMP Community Strings and Trap Commands ❑ Trap receiver IP addresses - The IP addresses of management stations to receive traps from the switch. To add IP addresses, refer to ADD SNMP COMMUNITY on page 70. To delete trap receiver IP addresses, refer to DELETE SNMP COMMUNITY on page 75.
Page 89: Enhanced Stacking Commands
Chapter 6 Enhanced Stacking Commands This chapter contains the following commands: ❑ ACCESS SWITCH on page 88 ❑ EXIT on page 90 ❑ SET SWITCH STACKMODE on page 91 ❑ SHOW REMOTELIST on page 92 Note Remember to save your changes with the SAVE CONFIGURATION command.
Page 90: Access Switch
Description This command starts a management session on another switch that supports enhanced stacking, such as another AT-8400 Series switch or an AT-8000 Series switch. You can specify the switch by switch number or by MAC address, both of which are displayed with SHOW REMOTELIST on page 92.
Page 91 AT-S60 Command Line User’s Guide Examples The following command starts a management session on switch number 12: access switch number=12 The following command starts a management session on a switch with a MAC address of 00:30:84:52:02:11 access switch macaddress=003084520211...
Page 92: Exit
Chapter 6: Enhanced Stacking Commands EXIT Syntax exit Parameters None. Description This command ends a management session. The menu or screen that is displayed as a result of this command depends on whether your switch is a master or slave as well as the configuration of the console mode on your switch.
Page 93: Set Switch Stackmode
AT-S60 Command Line User’s Guide SET SWITCH STACKMODE Syntax set switch stackmode=[master|slave|unavailable] Parameter stackmode Specifies the enhanced stacking mode of the switch. Possible settings are: master Specifies the switch’s stacking mode as master. A master switch must be assigned an IP address and subnet mask.
Page 94: Show Remotelist
Chapter 6: Enhanced Stacking Commands SHOW REMOTELIST Syntax show remotelist [sorted=macaddress|name] Parameter sorted Sorts the list either by MAC address or by name. The default is by MAC address. Description This command displays a list of the switches in an enhanced stack. This command can only be performed from a management session on a master switch.
Page 95: Port Parameter Commands
Chapter 7 Port Parameter Commands This chapter contains the following commands: ❑ RESET SWITCH PORT on page 94 ❑ SET SWITCH PORT on page 95 ❑ SHOW SWITCH PORT on page 99 Note Remember to save your changes with the SAVE CONFIGURATION command.
Page 96: Reset Switch Port
Chapter 7: Port Parameter Commands RESET SWITCH PORT Syntax reset switch port=port Parameter port Specifies the port to reset. You can specify more than one port at a time. (For information on how to specify ports, refer to Command Formatting on page 17.) Description This command resets a port.
Page 97: Set Switch Port
AT-S60 Command Line User’s Guide SET SWITCH PORT Syntax set switch port=port [status=enabled|disabled] [flowcontrol=disable|enable|auto] [holblocking=enabled|disabled] [broadcastfilter=enabled|disabled] [backpressure=enabled|disabled] [mdimode=mdi|mdix|auto] [speed=autonegotiate|10mhalf|10mfull|10mhauto| 10mfauto|100mhalf|100mfull|100mhauto|100mfauto| 1000mfull|1000mfauto] [priority=nooverride|lowpriority|highpriority] Parameters port Specifies the port you want to configure. You can specify more than one port at a time. (For information on how to enter ports, refer to Specifying Ports on page 17.) status...
Page 98 Chapter 7: Port Parameter Commands broadcastfilter Controls the broadcast filter. Possible values are: enabled The port accepts and forwards broadcast frames. disabled The port discards all ingress broadcast frames. backpressure Controls backpressure on the port. Possible values are: enabled Enables backpressure. disabled Disables backpressure.
Page 99 AT-S60 Command Line User’s Guide Note The selections 10mfauto, 100mhauto, 100mfauto, and 1000mfauto cause a port to Auto-Negotiate to a lower speed and/or to half duplex mode if required by the end node. priority Specifies the port’s priority. Settings for this parameter are: nooverride A tagged frame’s priority is...
Page 100 Chapter 7: Port Parameter Commands The following command sets port priority to the high priority queue and activates the broadcast filter for Ports 5 and 8 on the line card in Slot 6 and Port 8 on the line card in Slot 12: set switch port=6.5,8,12.8 priority=highpriority broadcastfilter=enabled...
Page 101: Show Switch Port
AT-S60 Command Line User’s Guide SHOW SWITCH PORT Syntax show switch port[=port] Parameters port Specifies the port whose parameter settings you want to view. You can specify more than one port at a time. (For information on how to enter ports, refer to Specifying Ports on page 17.) If you do not specify a port, all ports are displayed.
Page 102: Port Security Command
Chapter 8 Port Security Command This chapter contains the following command: ❑ SET SWITCH PORT SECURITYMODE on page 101 Note Remember to save your changes with the SAVE CONFIGURATION command. Note Refer to the AT-S60 Management Software User’s Guide for background information on port security.
Page 103: Set Switch Port Securitymode
AT-S60 Command Line User’s Guide SET SWITCH PORT SECURITYMODE Syntax set switch port=port [securitymode=automatic|limited|secure|locked] [learn=integer] [intrusionaction=discard|trap|disable] [participate=yes|no] Parameters port Specifies the port where you want to set security. You can specify more than one port at a time. (For information on how to enter ports, refer to Specifying Ports on page 17.) securitymode Specifies the port’s security mode.
Page 104 Chapter 8: Port Security Command learn Specifies the maximum number of dynamic MAC addresses a port on the switch can learn. This parameter applies only to ports set to the Limited security mode. The range is 1 to 150 addresses. The default is 100.
Page 105 AT-S60 Command Line User’s Guide The following command sets the security level to Secure for Ports 1 through 4 on the line card in Slot 9 and the intrusion action to disable the ports: set switch port=9.1-4 securitymode=secure intrusionaction=disable participate=yes The Participate option is required in the above command to activate the disable intrusion action.
Page 106: Port Trunking Commands
Chapter 9 Port Trunking Commands This chapter contains the following commands: ❑ ADD SWITCH TRUNK on page 105 ❑ CREATE SWITCH TRUNK on page 106 ❑ DELETE SWITCH TRUNK on page 108 ❑ DESTROY SWITCH TRUNK on page 109 ❑ SET SWITCH TRUNK on page 110 ❑...
Page 107: Add Switch Trunk
AT-S60 Command Line User’s Guide ADD SWITCH TRUNK Syntax add switch trunk=name port=ports Parameters trunk Specifies the name of the port trunk to be modified. The name is case-sensitive. port Specifies the port to be added to the port trunk. You can add more than one port at a time.
Page 108: Create Switch Trunk
Chapter 9: Port Trunking Commands CREATE SWITCH TRUNK Syntax create switch trunk=name port=ports speed=10_100m|1000m Parameters trunk Specifies the name of the trunk. The name can be up to 10 alphanumeric characters. No spaces or special characters are allowed. The name is case-sensitive. port Specifies the ports of the trunk.
Page 109 AT-S60 Command Line User’s Guide The following command creates a port trunk of two 1000 Mbps ports on two AT-8413 line cards in Slots 3 and 4. It assigns the trunk the name “rm44:” create switch trunk=rm44 port=3.1,4.1 speed=1000m...
Page 110: Delete Switch Trunk
Chapter 9: Port Trunking Commands DELETE SWITCH TRUNK Syntax delete switch trunk=name port=ports|all Parameters trunk Specifies the name of the trunk to be modified. The name is case-sensitive. port Specifies the ports to be removed from the existing port trunk. To remove all ports, use the ALL option. Description This command removes ports from a port trunk.
Page 111: Destroy Switch Trunk
AT-S60 Command Line User’s Guide DESTROY SWITCH TRUNK Syntax destroy switch trunk=name Parameter trunk Specifies the name of the trunk to be deleted. The name is case-sensitive. Description This command deletes a port trunk from a switch. Once a port trunk has been deleted, the ports that made up the trunk can be connected to different end nodes.
Page 112: Set Switch Trunk
Chapter 9: Port Trunking Commands SET SWITCH TRUNK Syntax set switch trunk=name speed=10_100m|1000m Parameters trunk Specifies the name of the port trunk whose speed you want to change. The name is case-sensitive. speed Specifies the new speed of the trunk. Options are: 10_100m The ports of the trunk are operating at 10 or 100 Mbps.
Page 113: Show Switch Trunk
AT-S60 Command Line User’s Guide SHOW SWITCH TRUNK Syntax show switch trunk Parameters None. Description This command displays the names and ports of the port trunks on the switch. Example The following command displays port trunking information: show switch trunk...
Page 114: Port Mirroring Commands
Chapter 10 Port Mirroring Commands This chapter contains the following commands: ❑ ADD SWITCH MIRROR on page 113 ❑ CREATE SWITCH MIRROR on page 114 ❑ DELETE SWITCH MIRROR on page 115 ❑ DESTROY SWITCH MIRROR on page 116 ❑ DISABLE SWITCH MIRROR on page 117 ❑...
Page 115: Add Switch Mirror
AT-S60 Command Line User’s Guide ADD SWITCH MIRROR Syntax add switch mirror=destinationport port=sourceport Parameters mirror Specifies the destination port of the port mirror where you want to add more source ports. This port must already be functioning as a destination port of a port mirror.
Page 116: Create Switch Mirror
Chapter 10: Port Mirroring Commands CREATE SWITCH MIRROR Syntax create switch mirror=destinationport port=sourceport Parameters mirror Specifies the destination port where the data is copied to and where the network analyzer is connected. You can specify only one destination port. (For information on how to specify ports, refer to Specifying Ports on page 17.) port Specifies the source port whose traffic is to be...
Page 117: Delete Switch Mirror
AT-S60 Command Line User’s Guide DELETE SWITCH MIRROR Syntax delete switch mirror=destinationport port=sourceport Parameters mirror Specifies the destination port of the port mirror where you want to remove source ports. This port must already be functioning as a destination port of a port mirror.
Page 118: Destroy Switch Mirror
Chapter 10: Port Mirroring Commands DESTROY SWITCH MIRROR Syntax destroy switch mirror=destinationport Parameter mirror Specifies the destination port of the port mirror you want to delete. Description This command deletes a port mirror. Once a port mirror has been deleted, the port that was functioning as the destination (mirror) port can be disconnected from the network analyzer and connected to an end node for normal network operations.
Page 119: Disable Switch Mirror
AT-S60 Command Line User’s Guide DISABLE SWITCH MIRROR Syntax disable switch mirror=destinationport Parameter mirror Specifies the destination port of the port mirror to be disabled. Description This command disables a port mirror. The source ports continue to forward traffic to and from their respective end nodes, but no traffic is copied to the destination port of the port mirror.
Page 120: Enable Switch Mirror
Chapter 10: Port Mirroring Commands ENABLE SWITCH MIRROR Syntax enable switch mirror=destinationport Parameter mirror Specifies the destination port of the port mirror to be enabled. Description This command enables a port mirror. Traffic from the source ports is again copied to the destination port. A port mirror is enabled when created.
Page 121: Set Switch Mirror
AT-S60 Command Line User’s Guide SET SWITCH MIRROR Syntax set switch mirror=destinationport port=sourceport Parameters mirror Specifies the destination port of the port mirror to which you want to add new source ports. This port must already be functioning as a destination port of a port mirror.
Page 122: Show Switch Mirror
Chapter 10: Port Mirroring Commands SHOW SWITCH MIRROR Syntax show switch mirror Parameters None. Description This command displays the source and destination ports of port mirrors on the switch. Example The following command displays the switch mirror ports: show switch mirror...
Page 123: Chapter 11 File System Commands
Chapter 11 File System Commands This chapter contains the following commands: ❑ COPY on page 122 ❑ CREATE CONFIG on page 123 ❑ DELETE FILE on page 124 ❑ RENAME on page 125 ❑ SET CONFIG on page 126 ❑ SHOW FILE on page 127 Note Refer to the AT-S60 Management Software User’s Guide for background information on the AT-S60 file system.
Page 124: Copy
Chapter 11: File System Commands COPY Syntax copy filename1.ext filename2.ext Parameters filename1.ext The name of the file to be copied. filename2.ext The name of the new file. Description This command copies an existing file into a new file. The new filename must be a valid filename between 1 and 16 characters long.
Page 125: Create Config
AT-S60 Command Line User’s Guide CREATE CONFIG Syntax create config=filename Parameter config Specifies the name of the configuration file. Description This command creates a configuration file containing the commands required to recreate the current dynamic configuration of the switch. The CONFIG parameter specifies the name of the configuration file to create.
Page 126: Delete File
Chapter 11: File System Commands DELETE FILE Syntax delete file=filename Parameter file Specifies the name of the file or files to be deleted. Description This command deletes the specified file or files. Wildcards are allowed in the name elements of the file identifier. The filename must be a valid filename between 1 and 16 characters long.
Page 127: Rename
AT-S60 Command Line User’s Guide RENAME Syntax rename filename1 filename2 Parameters None. Description This command renames the specified file. The source file name must identify an existing file, and the destination file name must not already exist. The source and destination file extensions must be the same. For table of file extension names, see COPY on page 122.
Page 128: Set Config
Chapter 11: File System Commands SET CONFIG Syntax set config=filename Parameter config Specifies the name of a configuration file. Description This command sets the configuration file for a switch. The switch will use the configuration file the next time it is rebooted or power cycled. The configuration file must already exist in the switch’s file system.
Page 129: Show File
AT-S60 Command Line User’s Guide SHOW FILE Syntax show file=filename Parameter file Specifies the name of the file to be displayed. Description This command displays a list of the files that are stored on the switch. Wildcards can be used to replace any part of the file name to allow a more selective display.
Page 130: File Download And Upload Commands
Chapter 12 File Download and Upload Commands This chapter contains the following commands: ❑ LOAD on page 129 ❑ UPLOAD on page 134 Note For background information on downloading and uploading software images and configuration files, refer to the AT-S60 Management Software User’s Guide.
Page 131: Load
AT-S60 Command Line User’s Guide LOAD Syntax load method=tftp|xmodem|remoteswitch destfile=filename server=ipaddress file=filename switchlist=switches Parameters method Specifies the method of download. Options are: tftp Specifies a TFTP download. To use this option, there must be a network node with TFTP server software.
Page 132 Chapter 12: File Download and Upload Commands destfile Specifies the name under which the file is to be stored on the switch. server Specifies the IP address of network node containing the TFTP server software. This parameter is required for a TFTP download. file Specifies the path and filename of the file you are downloading onto the switch.
Page 133 AT-S60 Command Line User’s Guide The XMODEM download method uses the XMODEM utility to download a file onto the switch from a terminal or computer with a terminal emulator program connected to the RS-232 Terminal Port on the AT-8401 fabric management card. This type of download can only be performed from a local management session and the file to download must be stored on the computer connected to the AT-8401 management card.
Page 134 Chapter 12: File Download and Upload Commands ❑ If you are downloading files switch-to-switch using the REMOTESWITCH command, use the SHOW REMOTELIST command first to view the switch numbers. (This also allows the management software to determine which switches are in the enhanced stack.) ❑...
Page 135 AT-S60 Command Line User’s Guide The following command downloads a new AT-S60 image to the switch using TFTP. Since this is a TFTP download, you can perform this command from either a local or Telnet management session. The command specifies the IP address of the TFTP server and the location of the image file on the server.
Page 136: Upload
Chapter 12: File Download and Upload Commands UPLOAD Syntax upload method=tftp|xmodem destfile=filename server=ipaddress file=filename Parameters method Specifies the method of the upload. The options are: tftp Specifies a TFTP upload. To use this option, there must be TFTP server software on a network node.
Page 137 AT-S60 Command Line User’s Guide The METHOD parameter states the type of upload. There are two possible types of uploads. A TFTP upload uses the TFTP client software on the switch to upload a file from the switch to a TFTP server on your network.
Page 138 Chapter 12: File Download and Upload Commands Examples The following command uses Xmodem to upload a switch’s configuration file called sw22_boot.cfg from a local management session: upload method=xmodem file=sw22_boot.cfg After entering the command, use your terminal emulator program to indicate where you want to store the file on your computer and its filename.
Page 139: Chapter 13 Stp Commands
Chapter 13 STP Commands This chapter contains the following commands: ❑ ACTIVATE STP on page 138 ❑ DISABLE STP on page 139 ❑ ENABLE STP on page 140 ❑ RESET STP on page 141 ❑ SET STP on page 142 ❑...
Page 140: Activate Stp
Chapter 13: STP Commands ACTIVATE STP Syntax activate stp Parameters None. Description Use this command to designate STP as the active spanning tree on the switch. You cannot configure the STP parameters until you have designated it as the active spanning tree with this command. Note Activating STP reboots the switch.
Page 141: Disable Stp
AT-S60 Command Line User’s Guide DISABLE STP Syntax disable stp Parameters None. Description This command disables the Spanning Tree Protocol on the switch. The default setting for STP is disabled. To view the current status of STP, refer to SHOW STP on page 147. Example The following command disables STP: disable stp...
Page 142: Enable Stp
Chapter 13: STP Commands ENABLE STP Syntax enable stp Parameters None. Description This command enables the Spanning Tree Protocol on the switch. The default setting for STP is disabled. To view the current status of STP, refer to SHOW STP on page 147. Note You cannot enable STP until after you have activated it with the ACTIVATE STP command.
Page 143: Reset Stp
AT-S60 Command Line User’s Guide RESET STP Syntax reset stp Parameters None. Description This command returns all STP bridge and port parameters to the default settings. STP must be disabled in order for you to use this command. To disable STP, refer to DISABLE STP on page 139. Example The following command resets the STP parameter settings to their default values:...
Page 144: Set Stp
Chapter 13: STP Commands SET STP Syntax set stp [default] [priority=priority] [hellotime=hellotime] [forwarddelay=forwarddelay] [maxage=maxage] Parameters default Returns all bridge and port STP settings to the default values. This parameter cannot be used with any other command parameter. (This parameter performs the same function as the RESET STP command.) priority Specifies the priority number for the bridge.
Page 145 AT-S60 Command Line User’s Guide hellotime Specifies the time interval between generating and sending configuration messages by the bridge. This parameter can be from 1 to 10 seconds. The default is 2 seconds. forwarddelay Specifies the waiting period before a bridge changes to a new state, for example, becomes the new root bridge after the topology changes.
Page 146 Chapter 13: STP Commands Examples The following command sets the switch’s bridge priority value to 45,056 (increment 11): set stp priority=11 The following command sets the hello time to 7 seconds and the forwarding delay to 25 seconds: set stp hellotime=7 forwarddelay=25 The following command returns all STP parameters on the switch to the default values: set stp default...
Page 147: Set Stp Port
AT-S60 Command Line User’s Guide SET STP PORT Syntax set stp port=port|all [default] [portcost=portcost] [portpriority=portpriority] Parameters port Specifies the port (that is, slot.port) you want to configure. You can specify more than one port at a time. To configure all ports, enter ALL. (For information on how to enter ports, refer to Specifying Ports on page 17.) default...
Page 148 Chapter 13: STP Commands Table 4 Port Priority Value Increments Bridge Bridge Increment Increment Priority Priority Description This command configures the following STP parameter settings for a switch port: ❑ Port cost ❑ Port priority Example The following command sets the port cost to 15 and the port priority to 192 (increment 12) for Port 6 on the line card in Slot 10: set stp port=10.6 portcost=15 portpriority=12...
Page 149: Show Stp
AT-S60 Command Line User’s Guide SHOW STP Syntax show stp [port=port] Parameter port Specifies the port whose STP parameters you want to view. You can specify more than one port at a time. (For information on how to enter ports, refer to Specifying Ports on page 17.) Description This command displays the current values for the following STP...
Page 150: Chapter 14 Rstp Commands
Chapter 14 RSTP Commands This chapter contains the following commands: ❑ ACTIVATE RSTP on page 149 ❑ DISABLE RSTP on page 150 ❑ ENABLE RSTP on page 151 ❑ RESET RSTP on page 152 ❑ SET RSTP on page 153 ❑...
Page 151: Activate Rstp
AT-S60 Command Line User’s Guide ACTIVATE RSTP Syntax activate rstp Parameters None. Description Use this command to designate RSTP as the active spanning tree on the switch. Once you have selected RSTP, you can enable or disable it using the ENABLE RSTP and DISABLE RSTP commands. RSTP is active on a switch only after you have designated it as the active spanning tree with this command and enabled it with the ENABLE RSTP command.
Page 152: Disable Rstp
Chapter 14: RSTP Commands DISABLE RSTP Syntax disable rstp Parameters None. Description This command disables the Rapid Spanning Tree Protocol on the switch. To view the current status of RSTP, use the SHOW RSTP command. Example The following command disables RSTP: disable rstp...
Page 153: Enable Rstp
AT-S60 Command Line User’s Guide ENABLE RSTP Syntax enable rstp Parameters None. Description This command enables the Rapid Spanning Tree Protocol on the switch. The default setting for RSTP is disabled. To view the current status of RSTP, use the SHOW RSTP command. You cannot enable RSTP until you have activated it with the ACTIVATE RSTP command.
Page 154: Reset Rstp
Chapter 14: RSTP Commands RESET RSTP Syntax reset rstp Parameters None. Description This command returns all RSTP bridge and port parameters to the default settings. RSTP must be disabled before you can use this command. To disable RSTP, refer to DISABLE RSTP on page 150. Example The following command resets RSTP: reset rstp...
Page 155: Set Rstp
AT-S60 Command Line User’s Guide SET RSTP Syntax set rstp [default] [priority=priority] [hellotime=hellotime] [forwarddelay=forwarddelay] [maxage=maxage] [forceversion=forcestpcompatible|normalrstp] Parameters default Returns all bridge and port RSTP settings to the default values. This parameter cannot be used with any other command parameter. (This parameter performs the same function as the RESET RSTP command.) priority...
Page 156 Chapter 14: RSTP Commands hellotime Specifies the time interval between generating and sending configuration messages by the bridge. The range of this parameter is from 1 to 10 seconds. The default is 2 seconds. forwarddelay Specifies the waiting period before a bridge changes to a new state, for example, becomes the new root bridge after the topology changes.
Page 157: Port Priority
AT-S60 Command Line User’s Guide ❑ Forwarding delay ❑ Maximum age time ❑ Port priority ❑ Force version of STP or normal RSTP Examples The following command returns all RSTP parameter settings to their default values: set rstp default The following command sets the bridge priority to 20480 (increment 5), the hello time to 5 seconds, and the forwarding delay to 20 seconds: set rstp priority=5 hellotime=5 forwarddelay=20 The following command uses the FORCEVERSION parameter to...
Page 158: Set Rstp Port
Chapter 14: RSTP Commands SET RSTP PORT Syntax set rstp port=port|all [default] [portcost=portcost|auto] [portpriority=portpriority][edgeport=yes|no] [pointtopoint=yes|no|autoupdate] [migrationcheck=yes|no] Parameters port Specifies the port (that is, slot.port) you want to configure. You can specify more than one port at a time. To configure all ports, enter ALL. (For information on how to enter ports, refer to Specifying Ports on page 17.) default...
Page 159 AT-S60 Command Line User’s Guide portpriority Specifies the port’s priority. This parameter is used as a tie breaker when two or more ports are determined to have equal costs to the root bridge. The range is 0 to 240 in increments of 16. There are sixteen increments. You specify the increment that corresponds to the desired value.
Page 160 Chapter 14: RSTP Commands migrationcheck This parameter resets a RSTP port, allowing it to send RSTP BPDUs. When an RSTP bridge receives STP BPDUs on an RSTP port, the port transmits STP BPDUs. The RSTP port continues to transmit STP BPDUs indefinitely.
Page 161: Show Rstp
AT-S60 Command Line User’s Guide SHOW RSTP Syntax show rstp [portconfig=port|portstate=port] Parameters portconfig Displays the RSTP port settings. You can specify more than one port at a time. portstate Displays the RSTP port status. You can specify more than one port at a time. Description You can use this command to display the RSTP parameter settings.
Page 162 Chapter 14: RSTP Commands The following command displays RSTP port status for port 5 on the module in slot 8: show rstp portstate=8.5...
Page 163: Chapter 15 Mstp Commands
Chapter 15 MSTP Commands This chapter contains the following commands: ❑ ACTIVATE MSTP on page 163 ❑ ADD MSTP on page 164 ❑ CREATE MSTP on page 165 ❑ DELETE MSTP on page 166 ❑ DESTROY MSTP MSTI on page 167 ❑...
Page 164 Chapter 15: MSTP Commands Note Refer to the AT-S60 Management Software User’s Guide for background information on the Multiple Spanning Tree Protocol (MSTP).
Page 165: Activate Mstp
AT-S60 Command Line User’s Guide ACTIVATE MSTP Syntax activate mstp Parameters None. Description This command designates MSTP as the active spanning tree on the switch. Only one spanning tree protocol (that is, STP, RSTP, or MSTP) can be active on the switch at a time. Note Changing the active spanning tree protocol reboots the switch.
Page 166: Add Mstp
Chapter 15: MSTP Commands ADD MSTP Syntax add mstp mstiid=mstiid mstivlanassoc=vids Parameters mstiid Specifies the ID of the multiple spanning tree instance (MSTI) to which you want to associate VLANs. You can specify only one MSTI ID at a time. The range is 1 to 15. mstivlanassoc Specifies the VID of the VLAN you want to associate with the MSTI ID.
Page 167: Create Mstp
AT-S60 Command Line User’s Guide CREATE MSTP Syntax create mstp mstiid=mstiid [mstivlanassoc=vids] Parameters mstiid Specifies the MSTI ID of the spanning tree instance you want to create. You can specify only one MSTI ID at a time. The range is 1 to 15. mstivlanassoc Specifies the VID of the VLAN you want to associate with the MSTI ID.
Page 168: Delete Mstp
Chapter 15: MSTP Commands DELETE MSTP Syntax delete mstp mstiid=mstiid mstivlanassoc=vids Parameters mstiid Specifies the MSTI ID of the spanning tree instance where you want to remove VLANs. You can specify only one MSTI ID at a time. The range is 1 to 15. mstivlanassoc Specifies the VID of the VLAN you want to remove from the spanning tree instance.
Page 169: Destroy Mstp Msti
AT-S60 Command Line User’s Guide DESTROY MSTP MSTI Format destroy mstp mstiid=mstiid Parameter mstiid Specifies the MSTI ID of the spanning tree instance you want to delete. You can specify only one MSTI ID at a time. The range is 1 to 15. Description This command deletes a spanning tree instance.
Page 170: Disable Mstp
Chapter 15: MSTP Commands DISABLE MSTP Syntax disable mstp Parameters None. Description This command disables the Multiple Spanning Tree Protocol on the switch. To view the current status of MSTP, refer to SHOW MSTP on page 181. Example The following command disables MSTP: disable mstp...
Page 171: Enable Mstp
AT-S60 Command Line User’s Guide ENABLE MSTP Syntax enable mstp Parameters None. Description This command enables Multiple Spanning Tree Protocol on the switch. To view the current status of MSTP, refer to SHOW MSTP on page 181. You must select MSTP as the active spanning tree on the switch before you can enable it with this command.
Page 172: Reset Mstp
Chapter 15: MSTP Commands RESET MSTP Syntax reset mstp Parameters None. Description This command returns all MSTP bridge and port parameters settings to their default values. In order for you to use this command, MSTP must be the active spanning tree protocol on the switch and the protocol must be disabled.
Page 173: Set Mstp
AT-S60 Command Line User’s Guide SET MSTP Syntax set mstp [default] [forceversion=forcestpcompatible|normalmstp] [hellotime=hellotime] [forwarddelay=forwarddelay] [maxage=maxage] [maxhops=maxhops] [configname=”name”] [revisionlevel=number] Parameters default Disables MSTP and returns all bridge and port MSTP settings to the default values. This parameter cannot be used with any other parameter. (This parameter performs the same function as the RESET MSTP command.) The spanning tree protocol must be disabled to use this parameter.
Page 174 Chapter 15: MSTP Commands forwarddelay Specifies the waiting period before a bridge changes to a new state, for example, becomes the new root bridge after the topology changes. If the bridge transitions too soon, not all links may have yet adapted to the change, resulting in network loops.
Page 175 AT-S60 Command Line User’s Guide Description This command configures the following MSTP parameter settings. ❑ Hello time ❑ Forwarding delay ❑ Maximum age time ❑ Maximum hop count ❑ Force version of STP or normal MSTP ❑ Configuration name ❑ Revision level Examples The following command disables MSTP and returns all MSTP parameter settings to their default values:...
Page 176: Set Mstp Cist
Chapter 15: MSTP Commands SET MSTP CIST Syntax set mstp cist priority=priority Parameter priority Specifies the CIST priority number for the switch. The range is 0 to 61,440 in increments of 4,096. The range is divided into sixteen increments, as shown in the following table.
Page 177: Set Mstp Msti
AT-S60 Command Line User’s Guide SET MSTP MSTI Syntax set mstp msti mstiid=mstiid priority=priority] Parameters mstiid Specifies a MSTI ID. You can specify only one MSTI ID at a time. The range is 1 to 15. priority Specifies the MSTI priority value for the switch. The range is 0 to 61,440 in increments of 4,096.
Page 178 Chapter 15: MSTP Commands The PRIORITY parameter specifies the new MSTI priority value. The range is 0 (zero) to 61,440 in increments of 4,096, with 0 being the highest priority. Examples This command changes the MSTI priority value to increment 11 for the MSTI ID 4: set mstp msti mstiid=4 priority=11 This command changes the MSTI priority value to increment 2 for the...
Page 179: Set Mstp Mstivlanassoc
AT-S60 Command Line User’s Guide SET MSTP MSTIVLANASSOC Syntax set mstp mstivlanassoc mstiid=mstiid vlanlist=vids Parameters mstiid Specifies the ID of the spanning tree instance where you want to associate VLANs. You can specify only one MSTI ID at a time. The range is 1 to 15. vlanlist Specifies the VID of the VLAN you want to associate with the MSTI ID.
Page 180: Set Mstp Port
Chapter 15: MSTP Commands SET MSTP PORT Syntax set mstp port=port|all [default] [intportcost=auto|portcost] [extportcost=portcost] [portpriority=priority][edgeport=yes|no] [pointtopoint=yes|no|autoupdate] [migrationcheck=yes|no] Parameters port Specifies the port (that is, slot.port) you want to configure. You can specify more than one port at a time. To configure all ports in the switch, enter ALL. (For information on how to enter ports, refer to Specifying Ports on page 17.) default...
Page 181 AT-S60 Command Line User’s Guide Table 10 Port Priority Value Increments Port Port Increment Increment Priority Priority edgeport Defines whether the port is functioning as an edge port. An edge port is connected to a device operating at half-duplex mode and is not connected to any device running STP or MSTP.
Page 182 Chapter 15: MSTP Commands migrationcheck This parameter resets a MSTP port, allowing it to send MSTP BPDUs. When a MSTP bridge receives STP BPDUs on an MSTP port, the port transmits STP BPDUs. The MSTP port continues to transmit STP BPDUs indefinitely.
Page 183: Show Mstp
AT-S60 Command Line User’s Guide SHOW MSTP Syntax show mstp [portconfig=ports|all] [portstate=ports|all] [msti] [cist] [mstivlanassoc] Parameters portconfig Specifies a port. You can specify more than one port at a time. To display all ports, use ALL. For a list of the MSTP information displayed by this parameter, refer to Description below.
Page 184 Chapter 15: MSTP Commands ❑ Maximum age ❑ Maximum hops ❑ Configuration name ❑ Reversion level ❑ Bridge identifier The PORTCONFIG parameter displays the following MSTP port parameter settings: ❑ Edge-port status ❑ Point-to-point status ❑ External and internal port costs ❑...
Page 185: Vlans And Multiple Vlan Commands
Chapter 16 VLANs and Multiple VLAN Commands This chapter contains the following commands: ❑ ADD VLAN on page 184 ❑ CREATE VLAN on page 187 ❑ DELETE VLAN on page 191 ❑ DESTROY VLAN on page 194 ❑ RESET VLAN on page 195 ❑...
Page 186: Add Vlan
Chapter 16: VLAN and MVLAN Commands ADD VLAN Syntax 1 add vlan=name [vid=vid] port=ports|all frame=untagged|tagged Syntax 2 add vlan=name [vid=vid] taggedports=ports|all untaggedports=ports|all Parameters vlan Specifies the name of the VLAN you want to modify. Specifies the VID of the VLAN you want to modify. This parameter is optional.
Page 187 AT-S60 Command Line User’s Guide This command has two syntaxes. You can use either command to add ports to a VLAN. The difference between the two is that Syntax 1 can add only one type of port, tagged or untagged, at a time to a VLAN, while Syntax 2 can add both in the same command.
Page 188 Chapter 16: VLAN and MVLAN Commands Using Syntax 2, you can add both types of ports with just one command: add vlan=Service untaggedports=2.7-8 taggedports=2.5...
Page 189: Create Vlan
AT-S60 Command Line User’s Guide CREATE VLAN Syntax 1 create vlan=name vid=vid port=ports|ALL frame=untagged|tagged Syntax 2 create vlan=name vid=vid taggedports=ports|ALL untaggedports=ports|ALL Parameters vlan Specifies the name of the VLAN. You must assign a name to a VLAN. The name can be from 1 to 20 characters in length and should reflect the function of the nodes that will be a part of the VLAN (for example, Sales or Accounting).
Page 190 Chapter 16: VLAN and MVLAN Commands port Specifies the ports (that is, slot.port) on the switch that are either tagged or untagged members of the new VLAN. To specify all ports on the switch, use ALL. This parameter must be followed by the FRAME parameter.
Page 191 AT-S60 Command Line User’s Guide Tagged ports of the new VLAN remain as tagged and untagged members of their current VLAN assignments. No change is made to a tagged port’s current VLAN assignments, other than its addition to the new VLAN. This is because a tagged port can belong to more than one VLAN at a time.
Page 192 Chapter 16: VLAN and MVLAN Commands Syntax 2 allows you to create a VLAN of both tagged and untagged ports all in one command. Here is the command that would create our example: create vlan=Service vid=16 untaggedports=1.1,4,5- 7 taggedports=8.1,2 That’s the advantage of Syntax 2 over Syntax 1. You can create VLANs containing both types of ports with one rather than two commands.
Page 193: Delete Vlan
AT-S60 Command Line User’s Guide DELETE VLAN Syntax 1 delete vlan=name [vid=vid] port=ports|all frame=untagged|tagged Syntax 2 delete vlan=name [vid=vid] taggedports=ports|all untaggedports=ports|all Parameters vlan Specifies the name of the VLAN to be modified. Specifies the VID of the VLAN to be modified. This parameter is optional.
Page 194 Chapter 16: VLAN and MVLAN Commands Note To delete a VLAN, see DESTROY VLAN on page 194. Note You cannot change a VLAN’s name or VID. When you remove an untagged port from a VLAN, the following happens: ❑ The port is returned to the Default_VLAN as an untagged port. ❑...
Page 195 AT-S60 Command Line User’s Guide To delete both tagged and untagged ports from a VLAN using Syntax 1 takes two commands. For example, if you had a VLAN called Service and you wanted to delete from the VLAN tagged Port 2 and untagged Ports 6 to 8 on the line card in Slot 6, the commands would be: delete vlan=Service port=6.2 frame=tagged delete vlan=Service port=6.6-8 frame=untagged...
Page 196: Destroy Vlan
Chapter 16: VLAN and MVLAN Commands DESTROY VLAN Syntax destroy vlan=name [vid=vid] Parameters vlan Specifies the name of the VLAN to be deleted. Specifies the VID of the VLAN to be deleted. This parameter is optional. Description This command deletes a VLAN from a switch. All untagged ports in a deleted VLAN are automatically returned to the Default_VLAN.
Page 197: Reset Vlan
AT-S60 Command Line User’s Guide RESET VLAN Syntax reset vlan Parameters None. Description This command deletes all port-based and tagged VLANs on a switch, except for the Default_VLAN. All ports are returned to the Default_VLAN as untagged ports. Example The following command deletes VLANs on a switch: reset vlan...
Page 198: Set Switch Managementvlan
Chapter 16: VLAN and MVLAN Commands SET SWITCH MANAGEMENTVLAN Syntax set switch managementvlan=name|VID Parameter managementvlan Specifies the management VLAN. You can specify the VLAN by name or by its VID. You can specify only one management VLAN. The default management VLAN is Default_VLAN (VID 1). Description This command sets the management VLAN.
Page 199: Set Switch Switchmode
AT-S60 Command Line User’s Guide SET SWITCH SWITCHMODE Syntax set switch switchmode=basic|tagged Parameter vlanmode Controls the switch’s VLAN mode. Options are: tagged Configures the switch to support port- based and tagged VLANs as well as the multiple VLAN modes. basic Configures the switch for the Basic VLAN mode.
Page 200: Set Vlanmode
Chapter 16: VLAN and MVLAN Commands SET VLANMODE Syntax set switch vlanmode=userconfigured|dotqmultiple| multiple [uplinkport=port] Parameters vlanmode Controls the switch’s VLAN mode when the switch is operating in the tagged VLAN mode. Options are: userconfigured When the switch is operating in this mode you can create your own port-based and tagged VLANs.
Page 201 AT-S60 Command Line User’s Guide Examples The following command configures the switch for the 802.1Q-compliant multiple VLAN mode and specifies port 4 on line card 6 as the uplink port: set vlanmode=dotqmultiple uplinkport=6.4 The following command sets the switch so that you can create port- based and tagged VLANs: set vlanmode=userconfigured...
Page 202: Show Vlan
Chapter 16: VLAN and MVLAN Commands SHOW VLAN Syntax show vlan[=name|vid] Parameter vlan Specifies the name or VID of the VLAN. Description This command displays the following information: ❑ VLAN mode ❑ VLAN name ❑ Untagged ports ❑ Tagged ports Examples The following command displays all the VLANs on the switch: show vlan...
Page 203: Garp Vlan Registration Protocol Commands
Chapter 17 GARP VLAN Registration Protocol Commands This chapter contains the following commands: ❑ DISABLE GARP on page 202 ❑ ENABLE GARP on page 203 ❑ RESET GARP on page 204 ❑ SET GARP PORT on page 205 ❑ SET GARP TIMER on page 207 ❑...
Page 204: Disable Garp
Chapter 17: GARP VLAN Registration Protocol Commands DISABLE GARP Syntax disable garp=gvrp [gip] Parameters garp Specifies the GARP application you want to disable. The only GARP application supported by AT-S60 management software is GVRP. Disables GARP Information Propagation (GIP). Note The online help for this command contains an STP option.
Page 205: Enable Garp
AT-S60 Command Line User’s Guide ENABLE GARP Syntax enable garp=gvrp [gip] Parameters garp Specifies the GARP application you want to enable. The only GARP application supported by AT-S60 management software is GVRP. Enables GARP Information Propagation (GIP). Note The online help for this command contains an STP option. The option is not supported.
Page 206: Reset Garp
Chapter 17: GARP VLAN Registration Protocol Commands RESET GARP Syntax reset garp=gvrp Parameter garp Specifies the GARP application you want to reset. The only GARP application supported by AT-S60 management software is GVRP. Note The online help for this command contains an STP option. The option is not supported.
Page 207: Set Garp Port
AT-S60 Command Line User’s Guide SET GARP PORT Syntax set garp=gvrp port=port|ALL [mode=normal|none] Parameters garp Specifies the GARP application you want to configure. The only GARP application supported by AT-S60 management software is GVRP. port Specifies the port (that is, slot.port) you want to configure on the switch.
Page 208 Chapter 17: GARP VLAN Registration Protocol Commands The following command activates GVRP on port 3 on the line card in slot set garp=gvrp port=12.3 mode=normal...
Page 209: Set Garp Timer
AT-S60 Command Line User’s Guide SET GARP TIMER Syntax set garp=gvrp timer [default] [jointime=integer] [leavetime=integer] [leavealltime=integer] Parameters garp Specifies the GARP application you want to configure. The only GARP application supported by AT-S60 management software is GVRP. default Returns the GARP timers to their default settings. jointime Specifies the Join Timer in centi seconds, which are one hundredths of a second.
Page 210 Chapter 17: GARP VLAN Registration Protocol Commands Examples The following command sets the Join Period timer to 0.1 second, Leave Period timer to 0.35 seconds, and the LeaveAllPeriod timer to 11 seconds for all GVRP applications: set garp=gvrp timer jointime=10 leavetime=35 leavealltime=1100 The following command sets the timers to their default values: set garp=gvrp timer default...
Page 211: Show Garp
AT-S60 Command Line User’s Guide SHOW GARP Syntax show garp=gvrp Parameter garp Specifies the GARP application you want to display. The only GARP application supported by AT-S60 management software is GVRP. Note The online help for this command contains an STP option. The option is not supported.
Page 212: Show Garp Counter
Chapter 17: GARP VLAN Registration Protocol Commands SHOW GARP COUNTER Syntax show garp=gvrp counter Parameter garp Specifies the GARP application you want to display. The only GARP application supported by AT-S60 management software is GVRP. Note The online help for this command contains an STP option. The option is not supported.
Page 213 AT-S60 Command Line User’s Guide ❑ Receive GARP Messages: JoinIn ❑ Transmit GARP Messages: JoinIn ❑ Receive GARP Messages: LeaveEmpty ❑ Transmit GARP Messages: LeaveEmpty ❑ Receive GARP Messages: LeaveIn ❑ Transmit GARP Messages: LeaveIn ❑ Receive GARP Messages: Empty ❑...
Page 214: Show Garp Database
Chapter 17: GARP VLAN Registration Protocol Commands SHOW GARP DATABASE Syntax show garp=gvrp database Parameters garp Specifies the GARP application you want to display. The only GARP application supported by AT-S60 management software is GVRP. Note The online help for this command contains an STP option. The option is not supported.
Page 215: Show Garp Gip
AT-S60 Command Line User’s Guide SHOW GARP GIP Syntax show garp=gvrp gip Parameter garp Specifies the GARP application you want to display. The only GARP application supported by AT-S60 management software is GVRP. Note The online help for this command contains an STP option. The option is not supported.
Page 216: Show Garp Machine
Chapter 17: GARP VLAN Registration Protocol Commands SHOW GARP MACHINE Syntax show garp=gvrp machine Parameter garp Specifies the GARP application you want to display. The only GARP application supported by AT-S60 management software is GVRP. Note The online help for this command contains an STP option. The option is not supported.
Page 217: Mac Address Table Commands
Chapter 18 MAC Address Table Commands This chapter contains the following commands: ❑ ADD SWITCH FDB on page 216 ❑ DELETE SWITCH FDB on page 218 ❑ SET SWITCH AGINGTIMER on page 219 ❑ SHOW SWITCH FDB on page 220 Note Remember to save your changes with the SAVE CONFIGURATION command.
Page 218: Add Switch Fdb
Chapter 18: MAC Address Table Commands ADD SWITCH FDB Syntax add switch fdb macaddress=macaddress port=port vlan=name|vid Parameters macaddress Specifies the static unicast or multicast address added to the switch’s MAC address table. The address can be entered in either of the following formats: xxxxxxxxxxxx or xx:xx:xx:xx:xx:xx port...
Page 219 AT-S60 Command Line User’s Guide The following command adds the multicast MAC address 01:00:51:00:00 10 to Port 1-5 in Slot 6. The ports belongs to the Engineering VLAN: add switch fdb macaddress=010051000010 port=6.1-5 vlan=Engineering...
Page 220: Delete Switch Fdb
Chapter 18: MAC Address Table Commands DELETE SWITCH FDB Syntax delete switch fdb macaddress=macaddress|dynamic [vlan=name|vid] Parameters macaddress Specifies the dynamic or static unicast or multicast MAC address to delete from the MAC address table. The address can be entered in either of the following formats: xxxxxxxxxxxx or xx:xx:xx:xx:xx:xx To delete all dynamic addresses from the table, specify...
Page 221: Set Switch Agingtimer
AT-S60 Command Line User’s Guide SET SWITCH AGINGTIMER Syntax set switch agingtimer=value Parameter agingtimer Specifies the aging timer for the MAC address table. The value is in seconds. The range is 1 to 512. The default is 300 seconds (5 minutes). Description The switch uses the aging timer to delete inactive dynamic MAC addresses from the MAC address table.
Page 222: Show Switch Fdb
Chapter 18: MAC Address Table Commands SHOW SWITCH FDB Syntax show switch fdb [address=macaddress] [port=port] [status=static|dynamic|multicast] [vlan=name|VID] Parameters address Specifies a MAC address. Use this parameter to determine the port on the switch on which a particular MAC address was learned (dynamic) or assigned (static). The address can be entered in either of the following formats: xxxxxxxxxxxx or xx:xx:xx:xx:xx:xx port...
Page 223 AT-S60 Command Line User’s Guide The following command displays the port number on which the MAC address 00:A0:D2:18:1A:11 was learned (dynamic) or added (static): show switch fdb address=00A0D2181A11 The following command displays the MAC addresses learned on Port 2 on the line card in Slot 6: show switch fdb port=6.2 The following command displays the MAC addresses learned on the ports in the Sales VLAN:...
Page 224: Igmp Snooping Commands
Chapter 19 IGMP Snooping Commands This chapter contains the following commands: ❑ SET IP IGMP on page 223 ❑ SHOW IP IGMP on page 225 Note Remember to use the SAVE CONFIGURATION command to save your changes on the switch. Note Refer to the AT-S60 Management Software User’s Guide for background information on IGMP Snooping.
Page 225: Set Ip Igmp
AT-S60 Command Line User’s Guide SET IP IGMP Syntax set ip igmp [snoopingstatus=enabled|disabled] [hoststatus=singlehost|multihost] [timeout=integer] [numbermulticastgroups=integer] [routerport=port|auto|none] Parameters snoopingstatus Activates and deactivates IGMP snooping on the switch. Possible settings are: enabled Activates IGMP snooping. disabled Deactivates IGMP snooping. This is the default setting hoststatus Specifies the IGMP host node topology.
Page 226 Chapter 19: IGMP Snooping Commands numbermulticastgroups Specifies the maximum number of multicast addresses the switch learns. This parameter is useful with networks that contain a large number of multicast groups. You can use the parameter to prevent the switch’s MAC address table from filling up with multicast addresses, leaving no room for dynamic or static MAC addresses.
Page 227: Show Ip Igmp
AT-S60 Command Line User’s Guide SHOW IP IGMP Syntax show ip igmp [hostlist] [routerlist] Parameters hostlist Displays a list of the multicast groups learned by the switch, as well as the ports on the switch that are connected to host nodes. routerlist Displays the ports on the switch that are connected to multicast routers.
Page 228: Statistics Commands
Chapter 20 Statistics Commands This chapter contains the following commands: ❑ RESET SWITCH COUNTER on page 227 ❑ RESET SWITCH LINECARD COUNTER on page 228 ❑ RESET SWITCH PORT COUNTER on page 229 ❑ SHOW SWITCH COUNTER on page 230 ❑...
Page 229: Reset Switch Counter
AT-S60 Command Line User’s Guide RESET SWITCH COUNTER Syntax reset switch counter Parameters None. Description This command returns all statistic counters on the switch to zero. Example The following command resets the statistic counters: reset switch counter...
Page 230: Reset Switch Linecard Counter
Chapter 20: Statistics Commands RESET SWITCH LINECARD COUNTER Syntax reset switch linecard=slotnumber counter Parameter linecard Specifies the slot containing the line card whose statistics counters you want to return to zero. Description This command returns the statistics counters for the ports on a line card to zero.
Page 231: Reset Switch Port Counter
AT-S60 Command Line User’s Guide RESET SWITCH PORT COUNTER Syntax reset switch port=port|all counter Parameter port Specifies the port whose statistics counter you want to return to zero. You can specify more than one port at a time. Description This command returns the statistics counter for a port to zero. Example The following command returns the counters on Ports 4 and 5 on the line card in Slot 8 to zero.
Page 232: Show Switch Counter
Chapter 20: Statistics Commands SHOW SWITCH COUNTER Syntax show switch counter Parameters None. Description This command displays switch operating statistics, such as the number of packets received and transmitted, and the number of CRC errors. For a list of and definitions for the statistics, refer to the AT-S60 Management Software User’s Guide.
Page 233: Show Switch Linecard Counter
AT-S60 Command Line User’s Guide SHOW SWITCH LINECARD COUNTER Syntax show switch linecard=slotnumber counter Parameter linecard Specifies the slot containing the line card whose statistics you want to view. Description This command displays the operating statistics for all the ports on a line card.
Page 234: Show Switch Port Counter
Chapter 20: Statistics Commands SHOW SWITCH PORT COUNTER Syntax show switch port=port counter Parameter port Specifies the port whose statistics you want to view. You can view more than one port at a time. To view all ports, do not specify a port. Description This command displays the operating statistics for a port on the switch.
Page 235: Chapter 21 Web Server Commands
Chapter 21 Web Server Commands This chapter contains the following commands: ❑ DISABLE HTTP SERVER on page 234 ❑ ENABLE HTTP SERVER on page 235 ❑ RESET HTTP SERVER on page 236 ❑ SET HTTP SERVER on page 237 ❑ SHOW HTTP SERVER on page 241 Note This chapter lists some encryption commands.
Page 236: Disable Http Server
Chapter 21: Web Server Commands DISABLE HTTP SERVER Syntax disable http server Parameters None. Description This command disables the HTTP server on the switch. When HTTP is disabled, you cannot manage the switch using a web browser management session. To view the current status of the HTTP server, see the command SHOW HTTP SERVER on page 241.
Page 237: Enable Http Server
AT-S60 Command Line User’s Guide ENABLE HTTP SERVER Syntax enable http server Parameters None. Description This command activates the HTTP server on the switch. Activating HTTP allows you to manage the switch using a web browser management session. To view the current status of the HTTP server, see the command SHOW HTTP SERVER on page 241.
Page 238: Reset Http Server
Chapter 21: Web Server Commands RESET HTTP SERVER Syntax reset http server Parameters None. Description This command resets the HTTP server on the switch to its default values. To view the current status of the HTTP server, see the command SHOW HTTP SERVER on page 241.
Page 239: Set Http Server
AT-S60 Command Line User’s Guide SET HTTP SERVER Syntax set http server [security=enabled|disabled] [sslkey=key-id] [port=port] Parameters security Specifies whether or not security is implemented on the switch when it is configured as an HTTP server. Possible settings are: enabled Specifies that the server accepts only SSL connections using HTTPS.
Page 240: Creating A Self-Signed Certificate
Chapter 21: Web Server Commands Example The following command disables the HTTP server: disable http server The following command configures the switch as an HTTPS server with a key ID of 5: set http server security=enabled sslkey=5 Creating a Self- This section provides a procedure to configure the switch as a web server using a self-signed certificate.
Page 241: Creating A Ca Certificate
AT-S60 Command Line User’s Guide Example of Creating a Self-Signed Certificate Here is an example of creating a self-signed certificate. #set date 29-02-2004 #set time 10:40:55 #set system distinguishedname=”cn=Cleo Starfas ou=Operations o=Arctic Company l=Fairbanks s=Alaska c=us” #create enco key=1 type=rsa length=512 description=serverkey05 format=hex #create pki certifcate=accountingserver14 keypair=1 serialnumber=217...
Page 242 Chapter 21: Web Server Commands 9. Disable the switch’s web server using DISABLE HTTP SERVER on page 234. 10. Configure the web server using SET HTTP SERVER on page 237. 11. Activate the web server using ENABLE HTTP SERVER on page 235. Example of Creating a CA Certificate Here is an example of creating a CA certificate.
Page 243: Show Http Server
AT-S60 Command Line User’s Guide SHOW HTTP SERVER Syntax show http server Parameters None. Description This command displays the following information about the HTTP server on the switch: ❑ Status ❑ SSL security ❑ SSL key ID ❑ Port ❑ Listen port Example The following command displays the status of the HTTP server: show http server...
Page 244: Encryption Commands
Chapter 22 Encryption Commands This chapter contains the following commands: ❑ CREATE ENCO KEY on page 243 ❑ DESTROY ENCO KEY on page 246 ❑ SET ENCO KEY on page 247 ❑ SHOW ENCO KEY on page 248 Note The encryption commands only appear in the AT-S60 version 2.0.0 software.
Page 245: Create Enco Key
AT-S60 Command Line User’s Guide CREATE ENCO KEY Syntax create enco key=key-id type=rsa [length=key- length] [description=description-string] [file=file-name] [format=hex|ssh] Parameters Enter a number in the range of 0 to 65535. The default is 0. type Generates a random RSA key. The only option for this parameter is RSA.
Page 246 Chapter 22: Encryption Commands Description This command creates an encryption key and stores the key information in the switch’s file system. This command can also be used to import or export RSA keys. The KEY parameter specifies the identification number for the key. The TYPE parameter specifies the type of key to be created.
Page 247 AT-S60 Command Line User’s Guide Note In the above command, you are creating a key id. Therefore, the key id of 300 must not exist before this command is executed. To import an RSA key from the file RSA.KEY, which is in HEX format, as key 3: create enco key=3 type=rsa file=rsa.key format=hex To export an RSA key with an existing key id of 4 in HEX format:...
Page 248: Destroy Enco Key
Chapter 22: Encryption Commands DESTROY ENCO KEY Syntax destroy enco key=key-id Parameter A number in the range 0 to 65535. There is no default. Description This command destroys the specified encryption key. The memory the key occupied is overwritten to ensure that the key is irretrievable. The KEY parameter specifies the identification number for the key.
Page 249: Set Enco Key
AT-S60 Command Line User’s Guide SET ENCO KEY Syntax set enco key=key-id [description=description- string] Parameters A number in the range 0 to 65535. description A character string, 1 to 25 characters in length. Valid characters are any printable character. To add spaces to this parameter spaces, enclosed them in double quotes.
Page 250: Show Enco Key
Chapter 22: Encryption Commands SHOW ENCO KEY Syntax show enco key=key-id Parameter A number in the range of 0 to 65535. There is no default. Description This command displays information about a specific encryption key. Of course, the key must already be configured. Example This command displays information about a key with a key id of 150: show enco key=150...
Page 251: Public Key Infrastructure (Pki) Commands
AT-S60 Command Line User’s Guide Chapter 23 Public Key Infrastructure (PKI) Commands This chapter contains the following commands: ❑ ADD PKI CERTIFICATE on page 250 ❑ CREATE PKI CERTIFICATE on page 252 ❑ CREATE PKI ENROLLMENTREQUEST on page 254 ❑ DELETE PKI CERTIFICATE on page 256 ❑...
Page 252: Add Pki Certificate
Chapter 23: PKI Commands ADD PKI CERTIFICATE Syntax add pki certificate=certificate-name location=file-name [trusted=true|false] [type=ca|ee|self] Parameters certificate A character string, 1 to 24 characters in length. Valid characters are any printable characters. If the name contains spaces, it must be enclosed in double quotes.
Page 253 AT-S60 Command Line User’s Guide The LOCATION parameter specifies the file name of the certificate. This is the name that is used to retrieve a certificate from the switch’s file system. The local file must be a valid filename with the file extension of.cer.
Page 254: Create Pki Certificate
Chapter 23: PKI Commands CREATE PKI CERTIFICATE Syntax create pki certificate=certificate-name keypair=key-id serialnumber=serial-number [format=der|pem] [subject=distinguished-name] Parameters certificate A character string, 1 to 8 characters in length. Valid characters are uppercase letters (A-Z), lowercase letters (a-z), digits (0-9), the underscore character (“_”), the hyphen character (“-”), any printable characters, and any alphanumeric characters.
Page 255 AT-S60 Command Line User’s Guide Description This command creates a self-signed certificate using an ENCO private RSA key and the switch’s distinguished name. The switch’s distinguished name, set with the SET SYSTEM DISTINGUISHEDNAME on page 261, is inserted in the issuer field of the certificate. This certificate is suitable for use with an SSL-enabled HTTP server or where third party trust is not required.
Page 256: Create Pki Enrollmentrequest
Chapter 23: PKI Commands CREATE PKI ENROLLMENTREQUEST Syntax create pki enrollmentrequest=request-name keypair=key-id [format=der|pem] [type=pkcs10] Parameters enrollmentrequest A character string, 1 to 8 characters in length. Valid characters are any printable characters. If the name contains spaces, it must be enclosed in double quotes.
Page 257 AT-S60 Command Line User’s Guide The FORMAT parameter specifies the type of encoding format for the request. The DER value specifies that the enrollment request is written to the binary file which cannot be displayed in a text editor. The default is DER.
Page 258: Delete Pki Certificate
Chapter 23: PKI Commands DELETE PKI CERTIFICATE Syntax delete pki certificate=certificate-name Parameter certificate A character string, 1 to 24 characters in length. Valid characters are any printable characters. If the name contains spaces, it must be enclosed in double quotes. Wildcards are not allowed. Description This command deletes one or all of the certificates stored in the switch’s certificate database.
Page 259: Purge Pki
AT-S60 Command Line User’s Guide PURGE PKI Syntax purge pki Parameter None. Description This command deletes any certificates saved on the switch and resets the PKI parameters to their default values. The following parameters are affected: ❑ Maximum number of certificates is reset to 256. Example The following command deletes certificates and resets the PKI parameters to their default values:...
Page 260: Set Pki Certificate
Chapter 23: PKI Commands SET PKI CERTIFICATE Syntax set pki certificate=certificate-name [trusted=true|false] [type=ca|ee|self] Parameter certificate A character string, 1 to 24 characters in length. Valid characters are any printable characters. If the name contains spaces, it must be enclosed in double quotes.
Page 261 AT-S60 Command Line User’s Guide Example The following command configures a trusted certificate with a type of self: set pki certificate=giftcertificate trusted=true type=self...
Page 262: Set Pki Certstorelimit
Chapter 23: PKI Commands SET PKI CERTSTORELIMIT Syntax set pki certstorelimit=certificate-limit Parameter certstorelimit A number between 12 and 256. The default is 256. Description This command sets the maximum number of certificates which can be stored in the switch’s certificate database. The default is 256. Example This command sets the certificate storage limit to 100: set pki certstorelimit=100...
Page 263: Set System Distinguishedname
AT-S60 Command Line User’s Guide SET SYSTEM DISTINGUISHEDNAME Syntax set system distinguishedname=distinguished-name Parameter distinguishedname Specifies a distinguished name that is compliant with RFC 1779. Description This command sets the switch’s distinguished name for use by PKI. The DISTINGUISHEDNAME parameter specifies the desired distinguished name.
Page 264: Show Pki
Chapter 23: PKI Commands SHOW PKI Syntax show pki Parameters None. Description This command displays the following information about the PKI module: ❑ Maximum # of certificates Example This command shows PKI module information: show pki...
Page 265: Show Pki Certificate
AT-S60 Command Line User’s Guide SHOW PKI CERTIFICATE Syntax show pki certificate=certificate-name Parameter certificate A character string, 1 to 24 characters in length. Valid characters are any printable characters. If the name contains spaces, it must be enclosed in double quotes.
Page 266: Secure Sockets Layer (Ssl) Commands
Chapter 24 Secure Sockets Layer (SSL) Commands This chapter contains the following command: ❑ SET SSL on page 265 ❑ SHOW SSL on page 266 Note The SSL feature only appears in the AT-S60 version 2.0.0 software. Refer to the AT-S60 Management Software User’s Guide for background information on SSL.
Page 267: Set Ssl
AT-S60 Command Line User’s Guide SET SSL Syntax set ssl cachetimeout=timeout value in seconds [maxsessions=maximum-sessions] Parameters cachetimeout A decimal number in the range of 1 to 600. The default is 1. maxsessions A decimal number in the range of 0 to 100. Description This command sets the parameters required to configure SSL.
Page 268: Show Ssl
Chapter 24: SSL Commands SHOW SSL Syntax show ssl Parameters None. Description This command displays current values for the following SSL parameters: ❑ Version ❑ Ciphers Available ❑ Maximum Number of Sessions ❑ Cache Timeout Example The following command displays the SSL parameters. show ssl...
Page 269: Secure Shell (Ssh) Commands
Chapter 25 Secure Shell (SSH) Commands This chapter contains the following commands: ❑ DISABLE SSH SERVER on page 268 ❑ ENABLE SSH SERVER on page 269 ❑ SET SSH SERVER on page 270 ❑ SHOW SSH on page 273 Note The SSL feature only appears in the AT-S60 version 2.0.0 software.
Page 270: Disable Ssh Server
Chapter 25: SSH Commands DISABLE SSH SERVER Syntax disable ssh server Parameters None. Description This command disables the Secure Shell server. When the Secure Shell server is disabled, connections from Secure Shell clients are not accepted. By default, the Secure Shell server is disabled. Example The following command disables the Secure Shell server: disable ssh server...
Page 271: Enable Ssh Server
AT-S60 Command Line User’s Guide ENABLE SSH SERVER Syntax enable ssh server hostkey=key-id serverkey=key-id [expirytime=hours] [logintimeout=seconds] Parameters hostkey A decimal key ID. serverkey A decimal key ID. expirytime The time in hours. logintimeout The time in seconds. Description This command enables the Secure Shell server. When the Secure Shell server is enabled, connections from Secure Shell clients are accepted.
Page 272: Set Ssh Server
Chapter 25: SSH Commands SET SSH SERVER Syntax set ssh server hostkey=key-id serverkey=key-id [expirytime=hours] [logintimeout=seconds] Parameters hostkey A decimal key ID. serverkey A decimal key ID. expirytime The time in hours. logintimeout The time in seconds. Description This command modifies the configuration of the Secure Shell server. The HOSTKEY parameter specifies the key that is used for the switch host key.
Page 273: Creating A Secure Shell Server
AT-S60 Command Line User’s Guide Creating a This section provides a procedure to configure the switch as a secure shell server. It is followed by an example. Secure Shell Server Configuring the SSH server requires you to perform several procedures. The information in this section lists the commands you need to enter to configure the SSH feature.
Page 274 Chapter 25: SSH Commands TACACS+ feature. For information about how to configure RADIUS and TACACS+, see TACACS+ and RADIUS Commands on page 284. Example Here is an example of creating a SSH web server: #create enco key=1 type=rsa length=1024 description=”host key” format=ssh #create enco key=2 type=rsa length=768 description=”server key”...
Page 275: Show Ssh
AT-S60 Command Line User’s Guide SHOW SSH Syntax show ssh Parameters None. Description This command displays current values for the following SHOW SSH configuration: ❑ Versions supported ❑ Server Status ❑ Server Port ❑ Host Key ID ❑ Host Key Bits (size of host key in bits) ❑...
Page 276: Port-Based Access Control Commands
Chapter 26 802.1x Port-Based Access Control Commands This chapter contains the following commands: ❑ DISABLE PORTACCESS on page 275 ❑ ENABLE PORTACCESS on page 276 ❑ SET PORTACCESS on page 277 ❑ SET PORTACCESS PORT AUTHENTICATOR on page 278 ❑ SET PORTACCESS PORT ROLE on page 280 ❑...
Page 277: Disable Portaccess
AT-S60 Command Line User’s Guide DISABLE PORTACCESS Syntax disable portaccess Parameters None. Description This command disables 802.1x Port-based Access Control on your switch. This is the default setting. Note Enabling or disabling Port Access Control can only be performed in a local management session.
Page 278: Enable Portaccess
Chapter 26: 802.1x Port-Based Access Control Commands ENABLE PORTACCESS Syntax enable portaccess Parameters None. Description This command enables 802.1x Port-based Access Control on the switch. Note Enabling or disabling Port Access Control can only be performed in a local management session. Note You must activate and configure the RADIUS protocol on the switch before you can activate port-based access control.
Page 279: Set Portaccess
AT-S60 Command Line User’s Guide SET PORTACCESS Syntax set portaccess authmethod=RADIUSEAP Parameters authmethod Indicates the authentication method for the switch. The default value for this parameter is RADIUSEAP. There is no other value for this parameter. Description This command sets RADIUS EAP as the authentication method for the switch.
Page 280: Set Portaccess Port Authenticator
Chapter 26: 802.1x Port-Based Access Control Commands SET PORTACCESS PORT AUTHENTICATOR Syntax set portaccess port=port|all authenticator [control=auto|forceauthenticate| forceunauthenticate] [quietperiod=integer] [txperiod=integer] [reauthperiod=integer] [supptimeOut=integer] [servtimeout=integer] [maxreq=integer] Parameters port Specifies the port whose Authenticator settings you want to set. You can specify more than one port at a time.
Page 281 AT-S60 Command Line User’s Guide quietperiod Sets the number of seconds that the switch remains in the quiet state following a failed authentication exchange with the client. The default value is 60 seconds. The range is 0 to 65,535 seconds. txperiod Sets the number of seconds that the switch waits for a response to an EAP-request/identity frame from the...
Page 282: Set Portaccess Port Role
Chapter 26: 802.1x Port-Based Access Control Commands SET PORTACCESS PORT ROLE Syntax set portaccess port=port|all role=none|authenticator|supplicant Parameters port Specifies the port, or ports, whose role you want to set. To set all ports, specify ALL. role Specifies the role of the port. Options are: Authenticator Sets the port to the Authenticator role.
Page 283: Set Portaccess Port Supplicant
AT-S60 Command Line User’s Guide SET PORTACCESS PORT SUPPLICANT Syntax set portaccess port=port|all supplicant [authperiod=integer] [heldperiod=integer] [maxstart=integer] [startperiod=integer] [name=string] [password=string] Parameters port Specifies the port whose Supplicant settings you want to set. You can specify more than one port at a time. To set all ports, specify ALL.
Page 284 Chapter 26: 802.1x Port-Based Access Control Commands password Specifies the password for the port. The port sends the password to the authentication server for verification when the port logs on to the network. The password can contain alphanumeric characters (A to Z, a to z, and 1 to 9). Do not use spaces or special characters, such as asterisks or exclamation points.
Page 285: Show Portaccess
AT-S60 Command Line User’s Guide SHOW PORTACCESS Syntax show portaccess config|status|[port=port [authenticator|supplicant] [config|status]] Parameters config Displays whether port-based access control is enabled or disabled on the switch. status Displays the role and status for each port. port Displays the port access status settings for a specific port.
Page 286: Tacacs+ And Radius Commands
Chapter 27 TACACS+ and RADIUS Commands This chapter contains the following commands: ❑ ADD RADIUSSERVER on page 285 ❑ ADD TACACSSERVER on page 286 ❑ DELETE RADIUSSERVER on page 287 ❑ DELETE TACACSSERVER on page 288 ❑ DISABLE AUTHENTICATION on page 289 ❑...
Page 287: Add Radiusserver
AT-S60 Command Line User’s Guide ADD RADIUSSERVER Syntax add radiusserver ipaddress=ipaddress order=integer [secret=string] [port=integer] Parameters ipaddress Specifies an IP address of a RADIUS server. order Specifies the order that the RADIUS server is queried by the switch. You can assign order to up to 3 servers. Assigning a server to an order of 1 means this is the first server queried.
Page 288: Add Tacacsserver
Chapter 27: TACACS+ and RADIUS Commands ADD TACACSSERVER Syntax add tacacsserver ipaddress=ipaddress order=integer [secret=string] Parameters ipaddress Specifies an IP address of a TACACS+ server. order Specifies the order that your TACACS+ server is queried by the switch. You can assign order to up to 3 servers. Assigning a server to an order of 1 means this is the first server queried.
Page 289: Delete Radiusserver
AT-S60 Command Line User’s Guide DELETE RADIUSSERVER Syntax delete radiusserver ipaddress=ipaddress Parameter ipaddress Specifies the IP address of the RADIUS server to be deleted. Description Use this command to delete the IP address of a RADIUS from your switch. Example The following command deletes the RADIUS server with the IP address of 149.245.22.22: delete radiusserver ipaddress=149.245.22.22...
Page 290: Delete Tacacsserver
Chapter 27: TACACS+ and RADIUS Commands DELETE TACACSSERVER Syntax delete tacacsserver ipaddress=ipaddress Parameter ipaddress Specifies the IP address of the TACACS+ server that you want to delete. Description Use this command to delete the IP address of a TACACS+ server from your switch.
Page 291: Disable Authentication
AT-S60 Command Line User’s Guide DISABLE AUTHENTICATION Syntax disable authentication Parameters None. Description Use this command to disable TACACS+ and RADIUS authentication on your switch. When you disable authentication you retain your current authentication parameter settings. Example The following command disables TACACS+ and RADIUS authentication on your switch: disable authentication...
Page 292: Enable Authentication
Chapter 27: TACACS+ and RADIUS Commands ENABLE AUTHENTICATION Syntax enable authentication Parameters None. Description Use this parameter to enable TACACS+ and RADIUS authentication on your switch. Example The following command enables authentication on your switch: enable authentication...
Page 293: Reset Authentication
AT-S60 Command Line User’s Guide RESET AUTHENTICATION Syntax reset authentication Parameters None. Description This command disables authentication. When you reset authentication, you retain your current command settings, including server IP addresses and encryption keys (both local and global). This command performs the same function as the DISABLE AUTHENTICATION command.
Page 294: Set Authentication
Chapter 27: TACACS+ and RADIUS Commands SET AUTHENTICATION Syntax set authentication method=[tacacs|radius] [secret=string] [timeout=integer] Parameters method Specifies which protocol, TACACS+ or RADIUS, is to be the active protocol on the switch. secret Specifies the global encryption key that is used by the TACACS+ or RADIUS servers.
Page 295 AT-S60 Command Line User’s Guide The following command selects TACACS+ as the authentication protocol and specifies a global encryption key of tiger54: set authentication method=tacacs secret=tiger54 The following command selects RADIUS as the authentication protocol with a global encryption key of leopard09 and a timeout of 15 seconds: set authentication method=radius secret=leopard09 timeout=15...
Page 296: Show Authentication
Chapter 27: TACACS+ and RADIUS Commands SHOW AUTHENTICATION Syntax show authentication Parameters None. Description Use this command to display the following information about the authenticated protocols on the switch: ❑ Status - The status of your authenticated protocol: enabled or disabled.
Page 297: Index
Index Numerics [0] ADD MSTP command 164 802.1Q multiple VLAN mode 198 ADD PKI CERTIFICATE command 250 ADD RADIUS SERVER command 285 802.1x port-based access control authenticator port ADD SNMP COMMUNITY command 70 configuring 278 ADD SNTPSERVER IP ADDRESS command 59 displaying 283 ADD SWITCH FDB command 216 specifying 280...
Page 298 Index back pressure 95 daylight savings time, setting 65 Basic VLAN mode 197 default gateway, displaying 53 BOOTP DELETE FILE command 124 activating 42 DELETE MSTP command 166 disabling 29 DELETE PKI CERTIFICATE command 256 enabling 31 DELETE RADIUSSERVER command 287 status, displaying 52 DELETE SNMP COMMUNITY command 75 BPDU 154, 172...
Page 299 AT-S60 Command Line User’s Guide edge port 156, 178 GARP ENABLE AUTHENTICATION command 290 counters, displaying 210 ENABLE DHCPBOOTP command 31 database, displaying 212 ENABLE GARP command 203 disabling 202 ENABLE HTTP SERVER command 235, 236 displaying 209 ENABLE MSTP command 169 enabling 203 ENABLE PORTACCESS command 276, 277 GID state machines 214...
Page 300 Index line card counter statistics operator password 46 displaying 231 resetting 228 line card information, displaying 56 PING command 33 LOAD command 129 PKI certificate database 260 location, configuring 48 PKI certificate enrollment request LOGOFF command 21 creating 254 downloading 129 uploading 134 MAC address table PKI certificates...
Page 301 AT-S60 Command Line User’s Guide creating 106 configuration overview 271 deleting 108 serial port destroying 109 parameters, displaying 50 displaying 111 speed setting 110 resetting 35 speed, setting 110 setting 41 ports, specifying 17 SET ASYN command 41 PURGE IP command 34 SET AUTHENTICATION command 292 SET CONFIG command 126 SET DATE command 64...
Page 302 Index SET SWITCH PORT SECURITYMODE command SHOW SYSTEM command 57 SHOW TIME command 68 SET SWITCH STACKMODE command 91 SHOW USER command 26 SET SWITCH SWITCHMODE command 197 SHOW VLAN command 200 SET SWITCH TRUNK command 110 slave switch 91 SET SYSTEM command 48 SNMP SET SYSTEM DISTINGUISHED NAME command...
Page 303 AT-S60 Command Line User’s Guide configuring 281 uploading files 134 displaying 283 UTC offset, setting 65 role 280 switch accessing via enhanced stacking 88 VLAN configuration, displaying 51 adding 184 distinguished name 57 creating 187 information, displaying 57 deleting 191 location, deleting 38 destroying 194 name, deleting 38...

Aruba AT-8400 SERIES User Manual

Preface

Chapter 1 Starting a Command Line Management Session

Chapter 2 Basic Command-Line Commands

Chapter 3 Basic Switch Commands

Chapter 4 Simple Network Time Protocol (SNTP) Commands

Chapter 5 SNMP Community Strings and Trap Commands

Chapter 6 Enhanced Stacking Commands

Chapter 7 Port Parameter Commands

Chapter 8 Port Security Command

Chapter 9 Port Trunking Commands

Chapter 10 Port Mirroring Commands

Chapter 11 File System Commands

Chapter 12 File Download and Upload Commands

Chapter 13 STP Commands

Chapter 14 RSTP Commands

Chapter 15 MSTP Commands

Chapter 16 Vlans and Multiple VLAN Commands

Chapter 17 GARP VLAN Registration Protocol Commands

Chapter 18 MAC Address Table Commands

Chapter 19 IGMP Snooping Commands

Chapter 20 Statistics Commands

Reset Switch Counter

Reset Switch Linecard Counter

Reset Switch Port Counter

Show Switch Counter

Show Switch Linecard Counter

Show Switch Port Counter

Chapter 21 Web Server Commands

Chapter 22 Encryption Commands

Chapter 23 Public Key Infrastructure (PKI) Commands

Chapter 24 Secure Sockets Layer (SSL) Commands

Chapter 25 Secure Shell (SSH) Commands

Chapter 26 Port-Based Access Control Commands

Disable Portaccess

Enable Portaccess

Set Portaccess

Set Portaccess Port Authenticator

Set Portaccess Port Role

Set Portaccess Port Supplicant

Show Portaccess

Chapter 27 TACACS+ and RADIUS Commands

Refer to the AT-S60 Management Software User's Guide for

Quick Links

Command Line

Need help?

Questions and answers

Related Manuals for Aruba AT-8400 SERIES

Summary of Contents for Aruba AT-8400 SERIES