Page 1 V5824G GPON OLT system User Manual...
Page 2 UMN:CLI User Manual V5824G ※ Copyright 2016 ⓒ DASAN Network Solutions, Inc. Issued by Technical Documentation Team Korea Technical modifications possible. Technical specifications and features are binding only insofar as they are specifically and expressly agreed upon in a written contract.
Page 3 UMN:CLI User Manual V5824G Summary of Changes Changes for Issue 5: Contents of update Chapter/Section Reason for Update “Limiting the Number of login attempts” Chapter added. 4.1.7 “Authentication Interface” related CLI updated. 4.2.2 “Automated Blocking of IP Host Chapter added.
Page 4 UMN:CLI User Manual V5824G Chapter/Section Reason for Update “PIM Join/Prune Interval“ Chapter updated. 9.3.2.6 “Displaying MLD Information“ Chapter updated. 10.1.7 “Graceful Restart“ Chapter updated. 11.1.2.7 “Session Reset of All Peers“ Chapter updated. 11.1.10.1 “Session Reset of Route Flap Chapter added.
Page 5 UMN:CLI User Manual V5824G Issue History Issue Date Update Number 03/2014 Initial release (NOS version 1.03 #0011) 11/2014 Issue 2 (NOS version 1.05) 02/2016 Issue 3 (NOS version 1.08 #0063) 03/2016 Issue 4 (NOS version 1.08 #0074) 05/2017 Issue 5 (NOS version 1.10 #0093)
Page 6 UMN:CLI User Manual V5824G Chapter/Section Reason for Update 10.3.9 Sorce Specific Multicast (SSM) related CLI added. “IPv6 Prefix Lists” added. 10.3.10 Changes made between issue2 and issue 3: Chapter/Section Reason for Update 12.1.19 Relevant CLI added. 12.2.23 ONU video-status related CLI added.
Page 7 UMN:CLI User Manual V5824G Chapter/Section Reason for Update “SNMP Trap Message Logging and Thrshold” added. 7.1.12.5 “Simple RMON Event Configuration” added. 7.3.4 7.4.1 IPv6-related CLI added. 7.5.2.2 IPv6-related CLI added. 7.5.6.2 IPv6-related CLI added. 7.11 Relevant CLI added. “ARP Request Message Interval” added.
Page 8 UMN:CLI User Manual V5824G Chapter/Section Reason for Update “Port Bridge” added. 11.4.3.3 12.11.2 Relevant CLI added. 11.4.5.5 IPv6-related CLI added. “Web-based Management” added. “11.3.2.6 TR-069 Management” chapter removed.
Page 9: Table Of Contents
UMN:CLI User Manual V5824G Contents 1 Introduction ..................37 Audience ..................... 37 Document Structure ................37 Document Convention ................. 38 Document Notation ................38 Virus Protection ................... 39 GPL/LGPL Warranty and Liability Exclusion ........39 2 System Overview ................41 System Features..................
Page 10 UMN:CLI User Manual V5824G 4.1.8 Auto Log-out ....................68 4.1.9 Telnet Access ..................... 69 4.1.10 System Rebooting ..................70 4.1.10.1 Manual System Rebooting ................70 4.1.10.2 System Rebooting Scheduler ................ 70 4.1.11 Auto Reset Configuration ................71 4.1.11.1 CPU Load ...................... 71 4.1.11.2 Memory ......................
Page 11 UMN:CLI User Manual V5824G 4.5.2.2 Secured File Copy ..................93 4.5.2.3 Authentication Key ..................93 802.1x Authentication ................95 4.6.1 802.1x Authentication .................. 96 4.6.1.1 Enabling 802.1x ..................... 96 4.6.1.2 RADIUS Server ....................96 4.6.1.3 Authentication Mode ..................97 4.6.1.4 Authentication Port ..................
Page 12 UMN:CLI User Manual V5824G 6.1.4 Network Time Protocol (NTP) ..............115 6.1.4.1 Configuring NTP Server ................115 6.1.4.2 Configuring NTP Authentication ..............116 6.1.5 Simple Network Time Protocol (SNTP) ............. 117 6.1.6 Terminal Configuration ................118 6.1.7 Login Banner ..................... 118 6.1.8...
Page 13 UMN:CLI User Manual V5824G Simple Network Management Protocol (SNMP) ........ 144 7.1.1 SNMP Service ................... 144 7.1.2 SNMP Community..................144 7.1.3 SNMP Agent Administrator ............... 145 7.1.4 Assigning IP Address of SNMP Agent ............146 7.1.5 SNMP Com2sec ..................146 7.1.6...
Page 14 UMN:CLI User Manual V5824G 7.3.2.4 Upper Bound of Threshold ................149 7.3.2.5 Lower Bound of Threshold ................149 7.3.2.6 Standard of the First Alarm ................149 7.3.2.7 Interval of Sample Inquiry ................149 7.3.2.8 Activating RMON Alarm ................149 7.3.2.9 Deleting Configuration of RMON Alarm ............
Page 15 UMN:CLI User Manual V5824G 7.5.7.2 Admin Policy Priority ..................149 7.5.7.3 Admin Policy Action ..................149 7.5.7.4 Applying and Modifying Admin Policy ............149 7.5.8 Displaying Admin Rule ................149 7.5.9 Scheduling ....................149 7.5.9.1 Scheduling mode ..................149 7.5.9.2 Weight and Quantum ...................
Page 16 UMN:CLI User Manual V5824G 7.16.10 Static IPv6 Neighbor Entry ............... 149 7.16.11 IPv6 Neighbor Discovery (ND) Inspection ..........149 7.16.11.1 ND Access List ..................... 149 7.16.11.2 Enabling ND Inspection Filtering ..............149 7.16.11.3 ND Inspection on Trust Port ................. 149 7.16.11.4 ND Inspection Log-buffer ................
Page 17 UMN:CLI User Manual V5824G 7.22.2.1 sFlow Receiver Setting ................149 7.22.2.2 Collect-IP Address and Port Setting ............. 149 7.22.2.3 Datagram Size ..................... 149 7.22.2.4 User Name ....................149 7.22.2.5 Timeout ......................149 8 System Main Functions ..............149 Virtual Local Area Network (VLAN) ............ 149 8.1.1...
Page 18 UMN:CLI User Manual V5824G 8.3.1 STP Operation ..................149 8.3.1.1 Root Switch ....................149 8.3.1.2 Designated Switch ..................149 8.3.1.3 Designated Port and Root Port ..............149 8.3.1.4 Port Priority ....................149 8.3.2 RSTP Operation ..................149 8.3.2.1 Port States ....................149 8.3.2.2...
Page 19 UMN:CLI User Manual V5824G 8.5.1.2 DHCP Subnet ....................149 8.5.1.3 Range of IP Address ..................149 8.5.1.4 Default Gateway ................... 149 8.5.1.5 IP Lease Time ....................149 8.5.1.6 DNS Server ....................149 8.5.1.7 Manual Binding .................... 149 8.5.1.8 Domain Name ....................149 8.5.1.9...
Page 20 UMN:CLI User Manual V5824G 8.5.7.8 DHCP Snooping Database Agent ..............149 8.5.7.9 ARP Inspection Start Time ................149 8.5.7.10 DHCP Snooping with Option82 ..............149 8.5.7.11 DHCP Snooping Option ................149 8.5.7.12 Displaying DHCP Snooping Configuration ........... 149 8.5.8 IP Source Guard ..................149 8.5.8.1...
Page 21 UMN:CLI User Manual V5824G 8.7.2.4 Displaying GVRP ..................149 8.7.3 GARP Multicast Registration Protocol (GMRP) ........149 8.7.3.1 Enabling GMRP ................... 149 8.7.3.2 GMRP Forward-All Option ................149 8.7.3.3 GMRP Registration Mode ................149 8.7.3.4 GMRP PDUs Transmission ................149 8.7.3.5...
Page 22 UMN:CLI User Manual V5824G 9.1.1.1 IGMP Version ....................149 Querier’s Robustness Variable ..............149 9.1.1.2 9.1.1.3 Clearing IGMP Entry ..................149 9.1.1.4 IGMP Debug ....................149 9.1.2 IGMP Version 2 ..................149 9.1.2.1 IGMP Static Join ..................149 9.1.2.2 IGMP Access Control ................... 149 9.1.2.3...
Page 23 UMN:CLI User Manual V5824G 9.2.10 Multicast-Source Trust Port ............... 149 Multicast Routing ................149 9.3.1 Multicast Routing ..................149 9.3.1.1 Enabling Multicast Routing ................149 9.3.1.2 TTL Threshold ....................149 9.3.1.3 ECMP Load Splitting ..................149 9.3.1.4 MRIB Entry Limit ..................149 9.3.1.5...
Page 24 UMN:CLI User Manual V5824G 10.2.1.2 Forwarding Entry Aging ................149 10.2.1.3 Displaying McFDB Information ..............149 10.2.2 MLD Snooping Basic ................149 10.2.2.1 Enabling MLD Snooping ................149 10.2.2.2 MLD Snooping Version ................149 10.2.2.3 MLD Snooping Robustness Value ............... 149 10.2.3 MLD Snooping ..................
Page 25 UMN:CLI User Manual V5824G 10.3.8 IPv6 PIM Debug ..................149 10.3.9 Source Specific Multicast (SSM) ............... 149 10.3.9.1 PIMv6-SSM ....................149 10.3.9.2 Static SSM Mapping ..................149 10.3.10 IPv6 Prefix Lists ..................149 11 IP Routing Protocol ................. 149 11.1 Border Gateway Protocol (BGP) ............149 11.1.1 Basic Configuration ...................
Page 26 UMN:CLI User Manual V5824G 11.1.14 BGP Monitoring and Management ............149 11.1.14.1 Displaying BGP Information ................. 149 11.1.14.2 Displaying BGP Neighbor ................149 11.1.14.3 Logging Neighbor Changes ................. 149 11.1.14.4 Checking the BGP Network Route ............... 149 11.1.14.5 Sending SNMP Trap ..................149 11.2 Open Shortest Path First (OSPF) ............
Page 27 UMN:CLI User Manual V5824G 11.3 Open Shortest Path First Version 3 (OSPFv3) ........149 11.3.1 Enabling OSPFv3 ..................149 11.3.2 ABR Type Configuration ................149 11.3.3 OSPFv3 Interface ..................149 11.3.3.1 Interface Cost ....................149 11.3.3.2 Routing Protocol Interval ................149 11.3.3.3 OSPFv3 Priority ...................
Page 28 UMN:CLI User Manual V5824G 11.5.8 Originating Default Information ..............149 11.5.9 Routing Information Filtering ..............149 11.5.9.1 Filtering Access List and Prefix List ............. 149 11.5.9.2 Filtering Route-map ..................149 11.5.9.3 Passive Interface ..................149 11.5.9.4 Maximum Path ..................... 149 11.5.9.5 Offset List .....................
Page 29 UMN:CLI User Manual V5824G 12.1.11 OLT Anti-Spoofing ..................149 12.1.12 ONU RX-Power Update ................149 12.1.13 Configurations for RF Return Packet Forwarding ........149 12.1.14 Downstream Traffic Control ..............149 12.1.15 Multicast/Broadcast GEM Port Separation ..........149 12.1.16 Configuring Port/TCONT Threshold ............149 12.1.17 ONU Deactivation Monitoring ..............
Page 30 UMN:CLI User Manual V5824G 12.2.21 CFM OAM for ONU Management ............149 12.2.22 ONU Firmware Upgrade ................149 12.2.22.1 Manual Upgrade (1) ..................149 12.2.22.2 Manual Upgrade (2) ..................149 12.2.22.3 Auto Upgrade ....................149 12.2.23 Displaying ONU Information ..............149 12.2.24 ONU’s Basic Configurations via OLT ............
Page 31 UMN:CLI User Manual V5824G 12.4.3.5 ANI Port Configuration ................. 149 12.4.3.6 UNI Port Configuration ................. 149 12.4.3.7 IP-host Service Link ..................149 12.4.3.8 TDM Service Link ..................149 12.4.4 T-CONT Mode ................... 149 12.4.4.1 GEM Port Configuration ................149 12.4.4.2 Configuration of Weight on WRR Scheduling ..........149 12.4.4.3 DBA Profile Association ................
Page 32 UMN:CLI User Manual V5824G 12.6.2 TPID Configuration ................... 149 12.6.3 Downstream Mode Configuration ............149 12.6.4 Saving Profile ................... 149 12.6.5 Displaying Extended VLAN Tagging Operation Profile ......149 12.7 VoIP Profile ..................149 12.7.1 OMCI Management Configuration ............149 12.7.1.1 Creating VoIP Profile..................
Page 33 UMN:CLI User Manual V5824G 12.10 Performance Monitoring (PM) Profile ......... 149 12.10.1 Creating PM Profile ................... 149 12.10.2 Collecting ONU Traffic Statistics ............... 149 12.10.3 Saving PM Profile ..................149 12.10.4 Displaying PM Profile Information ............. 149 12.10.5 Displaying ONU Traffic Statistics .............. 149 12.10.6 Sample Configuration ................
Page 34 UMN:CLI User Manual V5824G Illustrations Fig. 2.1 Front View of the V5824G ................41 Fig. 3.1 Overview of Configuration Mode ..............53 Fig. 4.1 Structure of IPv6 Header ................84 Fig. 4.2 Process of 802.1x Authentication ..............95 Fig. 4.3 Multiple Authentication Servers ..............
Page 35 VRRP Track ....................402 Fig. 8.38 Rate Limit and Flood Guard ................. 407 Fig. 9.1 The V5824G with IGMP Snooping ............... 422 Fig. 9.2 The V5824G with PIM-SM ................423 Fig. 9.3 The Switch with IGMP Snooping and PIM-SM ..........423 Fig.
Page 36 UMN:CLI User Manual V5824G Tables Tab. 1.1 Overview of Chapters ..................37 Tab. 1.2 Command Notation of Guide Book..............38 Tab. 3.1 Main Command of Privileged EXEC View Mode .......... 46 Tab. 3.2 Main Command of Privileged EXEC Enable Mode ........46 Tab.
Page 37: Introduction
V5824G 1 Introduction Audience This manual is intended for V5824G multi-platform GPON OLT system operators and maintenance personnel for providers of Gigabit passive optical network (GPON) and Ethernet services. This manual assumes that you are familiar with the following: •...
Page 38: Document Convention
UMN:CLI User Manual V5824G Document Convention This guide uses the following conventions to convey instructions and information. Information This information symbol provides useful information when using commands to configure and means reader take note. Notes contain helpful suggestions or references.
Page 39: Virus Protection
(including the related copyright notices) by sending your request to the following e-mail address: opensrc@dasannetworks.com. You will, however, be required to reimburse DASAN Network Solutions for its costs of postage and copying. Any source code request made by you must be sent within 3 years of your purchase of the product.
Page 40 V5824G consult the GPL and LGPL. You have no warranty claims against DASAN Network Solutions when a defect in the product is or could have been caused by changes made by you in any part of the software or its configuration. In addition, you have no warranty claims against DASAN Network Solutions when the Open Source Software infringes the intellectual property rights of a third party.
Page 41: System Overview
The Gigabit passive optical network (GPON) is the ideal solution for the bottleneck of Ethernet in the first mile, providing voice, data, and video solutions. The V5824G is a compact sized GPON Optical Line Terminal (OLT) that is comprised of 8 GPON ports. It provides 8 electrical (10/100/1000Base-T, RJ45) and optical...
Page 42: System Features
Network operator can use MIB also to monitor and manage the V5824G. IP Routing The V5824G is Layer 3 switch, which has routing table and IP address as router. Therefore, it supports static routing, RIPv1/v2, OSPFv2 and BGPv4 for unicast routing.
Page 43 V5824G Spanning Tree Protocol (STP) To prevent loop and preserve backup route in Layer 2 network, the V5824G supports Spanning Tree Protocol (STP) defined in IEEE 802.1D. Between STP enabled switches, a root bridge is automatically selected and the network remains in tree topology. However, the recovery time in STP is very slow (about 30 seconds), Rapid Spanning Tree Protocol (RSTP) is also provided.
Page 44 User Manual V5824G RADIUS and TACACS+ The V5824G supports client authentication protocol, that is RADIUS (Remote Authentication Dial-In User Service) and TACACS+ (Terminal Access Controller Access Control System Plus). Not only user IP and password registered in switch but also authentication through RADIUS server and TACACS+ server are required to access.
Page 45: Command Line Interface (Cli)
V5824G connects inband to the cascading switch, and then from the cascading switch to the management network through the outband interface. The V5824G also provides the RS232 console interface to simply access the system with a provided RJ45-to-DB9 cable.
Page 46: Privileged Exec View Mode
UMN:CLI User Manual V5824G 3.1.1 Privileged EXEC View Mode When you log in to the switch, the CLI will start with Privileged EXEC View mode which is a read-only mode. In this mode, you can see a system configuration and information with several commands.
Page 47: Global Configuration Mode
UMN:CLI User Manual V5824G 3.1.3 Global Configuration Mode In Global Configuration mode, you can configure general functions of the system. You can also open another configuration mode from this mode. To open Global Configuration mode, enter the configure terminal command, and then the system prompt will be changed from SWITCH# to SWITCH(config)#.
Page 48: Dhcp Pool Configuration Mode
DHCP Pool Configuration Mode In DHCP Pool Configuration mode, you can configure general functions of DHCP per each DHCP pool. The V5824G supports multiple DHCP environments with this pool- based DHCP configuration. To open DHCP Pool Configuration mode, enter the ip dhcp pool command, then the system prompt will be changed from SWITCH(config)# to SWITCH(config-dhcp[POOL])#.
Page 49: Dhcp Option 82 Configuration Mode
UMN:CLI User Manual V5824G Tab.3.6 is the main commands of DHCP Option Configuration mode. Command Description attr Configures the attribute for option field in the DHCP packet. Tab. 3.6 Main Command of DHCP Option Configuration Mode 3.1.7 DHCP Option 82 Configuration Mode In DHCP Option 82 Configuration mode, you can configure DHCP option 82 for DHCP relay agent.
Page 50: Rule Configuration Mode
Main Command of Rule Configuration Mode 3.1.10 RMON Configuration Mode In RMON Configuration mode, you can configure RMON alarm, RMON event and RMON history. The V5824G provides three different configuration modes to configure each type of RMON. Command Mode Description rmon-alarm <1-65535>...
Page 51: Router Configuration Mode
In Router Configuration mode, you can configure IP routing protocols and VRRP. The V5824G provides three IP routing protocols such as RIP v2, BGP v4 and OSPF v2. To open Rule Configuration mode, enter the router command, then the system prompt will be changed from SWITCH(config)# to SWITCH(config-router)#.
Page 52: Gpon Configuration Mode
UMN:CLI User Manual V5824G Tab. 3.12 shows main commands of Route-map Configuration mode. Command Description match Classifies routing information to permit or deny. Configures routing information options. Tab. 3.12 Main Command of Route-map Configuration Mode 3.1.13 GPON Configuration Mode In PON Configuration mode, you can configure GPON-related functions. To open GPON Configuration mode, enter the gpon command, then the system prompt will be changed from SWITCH(config)# to SWITCH(gpon)#.
Page 53: Configuration Mode Overview
Configures an VLAN filtering. Tab. 3.14 Main Command of ONU Profile Configuration Mode Configuration Mode Overview Fig. 3.1 shows the overview of the configuration mode for the V5824G. Privileged EXEC View SWITCH> exit Back to previous mode enable Privileged EXEC Enable...
Page 54: Useful Tips
UMN:CLI User Manual V5824G Useful Tips This section describes useful tips for operating the V5824G with a CLI. • Listing Available Command • Calling Command History • Using Abbreviation • Using Command of Privileged EXEC Enable Mode • Exit Current Command Mode •...
Page 55 -- more -- Press the <ENTER> key to skip to the next list. In case that the V5824G installed command shell, you can find out commands starting with a specific alphabet. Input the first letter and question mark without space. The following is an example of finding out the commands starting “s”...
Page 56: Calling Command History
User Manual V5824G SWITCH# write The V5824G also provides the simple instruction of calling the help string with the help command. You can see the instruction using the command regardless of the configuration mode. To display the instruction of calling the help string for using CLI, use the following command.
Page 57 UMN:CLI User Manual V5824G SWITCH# show clock (press the arrow key ↑) To save the command history in non-volatile memory, use the following command. Command Mode Description Saves the command history. history non-volatile [<10-2000>] Global 10-2000: history recording max. count (default:2000) To delete the non-volatile command history, use the following command.
Page 58: Using Abbreviation
UMN:CLI User Manual V5824G To display the configured status of command history logging, use the following command. Command Mode Description show command-history-log Enable Shows the command history logging status. status Global 3.3.3 Using Abbreviation Several commands can be used in the abbreviated form. The following table shows some examples of abbreviated commands.
Page 59: The Command Execution Limit
UMN:CLI User Manual V5824G 3.3.6 The Command Execution Limit If you try to have more than ‘1000’ processes executed by a command, you meet a limit block with “Too many to process” error message by system policy as follows: SWITCH(bridge)# vlan add 3-4090 1-24 tagged...
Page 60: System Connection And Ip Address
4 System Connection and IP Address System Connection After installing the system, the V5824G is supposed to examine that each port is correctly connected to network and management PC. You can connect to the system to configure and manage the V5824G. This section provides instructions how to change password for system connection and how to connect to the system through telnet.
Page 61: Changing Login Password
UMN:CLI User Manual V5824G To encrypt the password which will be shown at running-config, you should use the service password-encryption command. And to represent the string (password) is encrypted, input 8 before the encrypted string. When you use the password enable command with 8 and “the string”, you will make into Privileged EXEC Enable mode with the encrypted string.
Page 62: Login Password Recovery Process
To recovery login password to default, perform the following step-by-step instruction: Step 1 After the V5824G is manually restarted, the booting messages are shown up. Keep on pressing [Space Bar] key right after “ ” is shown up on the [Loading OS1 image ...]...
Page 63: Management For System Account
4.1.5.1 Creating System Account For the V5824G, the administrator can create a system account. In addition, it is possible to set the security level from 0 to 15 to enhance the system security. To create a system account, use the following command.
Page 64: Security Level
4.1.5.2 Security Level For the V5824G, it is possible to configure the security level from 0 to 15 for a system account. The level 15, as the highest level, has a read-write authority. The administrator can configure from level 0 to level 14. The administrator decides which level user uses which commands in which level.
Page 65 UMN:CLI User Manual V5824G <0-15> {COMMAND | all} Configuration mode in the level. privilege dhcp-option82 level Uses the specific command of DHCP Option 82 <0-15> {COMMAND | all} Configuration mode in the level. privilege dhcp-class level Uses specific command DHCP Class <0-15>...
Page 66 UMN:CLI User Manual V5824G no privilege configure level <0-15> {COMMAND | all} no privilege interface level <0-15> {COMMAND | all} no privilege flow level <0-15> {COMMAND | all} no privilege vrrp level <0-15> {COMMAND | all} no privilege policer level <0-15> {COMMAND | all} no privilege policy level <0-15>...
Page 67: Limiting Number Of Users
4.1.6 Limiting Number of Users For the V5824G, you can limit the number of users accessing the switch through telnet. In case of using the system authentication with RADIUS or TACACS+, a configured number includes the number of users accessing the switch via the authentication server.
Page 68: Limiting The Number Of Login Attempts
Bridge 4.1.8 Auto Log-out For security reasons of the V5824G, if no command is entered within the configured inactivity time, the user is automatically logged out of the system. Administrator can configure the inactive session timeout. To enable auto log-out function, use the following command.
Page 69: Telnet Access
Shows a configuration of auto-logout function. Bridge The V5824G uses the global auto log-out function to determine how long to manage state information for a session and to determine when to drop sessions that do not become fully established. These global auto log-out timeouts apply globally to all sessions.
Page 70: System Rebooting
UMN:CLI User Manual V5824G no service telnet Disables the use of telnet service Shows the status of network connection services show service Enable/Global/Bridge (telnet/ssh/ftp/tftp/snmp). The following is an example of disconnecting a user connected from a remote place. SWITCH# where admin at ttys0 from console for 4 days 22 hours 15 minutes 24.88 seconds...
Page 71: Auto Reset Configuration
4.1.11 Auto Reset Configuration The V5824G reboots the system according to user’s configuration. There are two basises for system rebooting. These are CPU and memory. CPU is rebooted in case CPU Load or Interrupt Load continues for the configured time. Memory is automatically rebooted in case memory low occurs as the configured times.
Page 72: Memory
4.1.11.2 Memory The V5824G provides auto system rebooting function using memory low configuration. Memory-low indicates the low threshold value of system memory in use. To enable auto reset function of memory low setting when a memory-low has occurred as many as its specified numbers during the certain minutes, use the following command.
Page 73: System Authentication
Deletes a configured system authentication method. no login 4.2.2 Authentication Interface If more than 2 interfaces exist in the V5824G, you can set one interface to access RA- DIUS or TACACS server. To set an authentication interface, use the following command. Command...
Page 74: Primary Authentication Method
UMN:CLI User Manual V5824G 4.2.3 Primary Authentication Method You can set the order of the authentication method by giving the priority to each authentication method. To set the primary authentication method, use the following command Command Mode Description Sets a system authentication method.
Page 75: Radius Server
<1-100> 1-100: timeout value for a response (default: 5) Global no login radius timeout Deletes a specified timeout value. 4.2.5.4 Frequency of Retransmit In case of no response from a RADIUS server, the V5824G is supposed to retransmit an...
Page 76: Tacacs+ Server
A.B.C.D <1-5> 1-5: priority of TACACS server 4.2.6.3 Timeout of Authentication Request After the authentication request, the V5824G waits for the response from the TACACS+ server for specified time. To specify a timeout value, use the following command. Command Mode Description Specifies a timeout value.
Page 77: Accounting Mode
4.2.7 Accounting Mode The V5824G provides the accounting function of AAA (Authentication, Authorization, and Accounting). Accounting is the process of measuring the resources a user has consumed. Typically, accounting measures the amount of system time a user has used or the amount of data a user has sent and received.
Page 78: Displaying System Authentication
UMN:CLI User Manual V5824G stop: measures stop point only. both: measures start and stop point both. no login accounting-mode Deletes a configured accounting mode. 4.2.8 Displaying System Authentication To display a configured system authentication, use the following command. Command Mode...
Page 79: Configuring Interface
The Layer 2 switches do not need IP addresses to transmit packets. However, if you want to access to the V5824G from a remote place with TCP/IP through SNMP or telnet, it requires an IP address.
Page 80: Static Route And Default Gateway
UMN:CLI User Manual V5824G ip address A.B.C.D/M Assigns a primary IP address to an interface. ip address A.B.C.D/M secondary Assigns a secondary IP address to an interface. ip address dhcp Assigns an IP address from a DHCP server. Interface no ip address [A.B.C.D/M] Clears an IP address assigned to an interface.
Page 81: Interface Description
UMN:CLI User Manual V5824G Command Mode Description ip route default {GATEWAY | Global Configures a default gateway. null} [<1-255>] To delete a configure default gateway, use the following command. Command Mode Description no ip route default {GATEWAY | Global Deletes a default gateway.
Page 82: Displaying Interface
UMN:CLI User Manual V5824G inet 10.27.41.91/24 broadcast 10.27.41.255 input packets 3208070, bytes 198412141, dropped 203750, multicast packets 0 input errors 12, length 0, overrun 0, CRC 0, frame 0, fifo 12, missed 0 output packets 11444, bytes 4192789, dropped 0...
Page 83 UMN:CLI User Manual V5824G Enables IP address overlapping. The IP addresses ip overlap-interface should have a different netmask Global no overlap-interface Disables IP address overlapping.
Page 84: Assigning An Ipv6 Address
UMN:CLI User Manual V5824G Assigning an IPv6 Address IPv6 is designed as an evolutionary step from IPv4. IPv6 runs well on high performance networks like Gigabit Ethernet, ATM, and others, as well as low bandwidth networks. The main changes from IPv4 to IPv6 are summarized as follows: •...
Page 85: Tab. 4.1 Overview Of Ipv6 Header Fields
UMN:CLI User Manual V5824G Tab.4.1 provides an overview of the IPv6 header fields. Field Description Version Version of the protocol (4 Bits) This field replaces the Type of Service field in IPv4. This field is used by sending Priority nodes and forwarding routers to identify and distinguish between different classes or priorities of IPv6 packets.
Page 86: Enabling Interface
UMN:CLI User Manual V5824G IPv6 Address Types IPv6 uses multicast addresses instead of the broadcast address. An IPv6 address can be classified into one of three categories, which Unicast, Multicast and Anycast address. The Anicast address, a new type of address introduced with RFC 1546, is now used with IPv6.
Page 87: Assigning Ipv6 Address To Network Interface
UMN:CLI User Manual V5824G Command Mode Description no shutdown Enables an interface. Interface shutdown Disables an interface. 4.4.2 Assigning IPv6 Address to Network Interface After enabling an interface, assign an IPv6 global address. To assign an IPv6 address to a network interface, use the following command.
Page 88: Assigning Link Local Address To Network Interface
UMN:CLI User Manual V5824G command. Command Mode Description Configures IPv6 address which dynamically changeable according to the prefix name. ipv6 address PREFIX X:X::X:X/M PREFIX: prefix name Interface X:X::X:X/M : IPv6 prefix of sub host. ipv6 address PREFIX Disables a dynamic IPv6 address allocation using the X:X::X:X/M prefix name and sub-host address.
Page 89: Static Route And Default Gateway
UMN:CLI User Manual V5824G 4.4.4 Static Route and Default Gateway The static route is a predefined route to a specific network and/or device such as a host. Packets are transmitted to destination through static route. Static route includes destination address, neighbor router to receive packet, number of routes that packets have to go through.
Page 90: Enabling Ipv6 Processing
UMN:CLI User Manual V5824G 4.4.5 Enabling IPv6 Processing To enable/disable the IPv6 processing on an interface, use the following command. Command Mode Description ipv6 enable Enables the IPv6 processing on an interface. Interface no ipv6 enable Disables the IPv6 processing on an interface.
Page 91: Displaying Ipv6 Interface
UMN:CLI User Manual V5824G 4.4.7 Displaying IPv6 Interface To display an assigned IPv6 address, use the following command. Command Mode Description show ipv6 Interface Shows the IPv6 addresses assigned to an interface. To display an interface status and configuration, use the following command.
Page 92: Secure Shell (Ssh)
4.5.1 SSH Server The V5824G can be operated as SSH server. You can configure the switch as SSH server. 4.5.1.1 Enabling SSH Server To enable/disable SSH server, use the following command.
Page 93: Displaying Connection History Of Ssh Client
SSH server up to now. Bridge 4.5.2 SSH Client 4.5.2.1 Login to SSH Server To login to SSH server after configuring the V5824G as SSH client, use the following command. Command Mode Description Logins to SSH server. login...
Page 94 Step 3 Connect to SSH server with the authentication key. SWITCH_A(config)# ssh login 172.16.209.10 Enter passphrase for key '/etc/.ssh/id_dsa': networks SWITCH_B# To display the configured authentication keys in the V5824G, use the following command. Command Mode Description Enable show key-list Shows an authentication key of SSH server.
Page 95: Authentication
802.1x authentication adopts EAP (Extensible Authentication Protocol) structure. In EAP system, there are EAP-MD5 (Message Digest 5), EAP-TLS (Transport Level Security), EAP-SRP (Secure Remote Password), EAP-TTLS (Tunneled TLS) and the V5824G supports EAP-MD5 and EAP-TLS. Accessing with user’s ID and password, EAP-MD5 is 1-way Authentication based on the password.
Page 96: Enabling 802.1X
UMN:CLI User Manual V5824G 4.6.1 802.1x Authentication 4.6.1.1 Enabling 802.1x To configure 802.1x, the user should enable 802.1x daemon first. To enable 802.1x daemon, use the following command. Command Mode Description dot1x system-auth-control Enables 802.1x daemon. Global no dot1x system-auth-control Disables 802.1x daemon.
Page 97: Authentication Mode
UMN:CLI User Manual V5824G After default server is designated, all requests start from the RADIUS server. If there’s no response from default server again, the authentication request is tried for RADIUS server designated as next one. To configure IP address of RADIUS server and key value, use the following command.
Page 98: Authentication Port
4.6.1.6 Interval for Retransmitting Request/Identity Packet In the V5824G, it is possible to specify how long the device waits for a client to send back a response/identity packet after the device has sent a request/identity packet. If the client does not send back a response/identity packet during this time, the device retransmits the request/identity packet.
Page 99: Number Of Requests To Radius Server
4.6.1.9 Interval of Request to RADIUS Server For the V5824G, it is possible to set the time for the retransmission of packets to check RADIUS server. If there is a response from other packets, the switch waits for a response from RADIUS server during the configured time before resending the request.
Page 100: Interval Of Re-Authentication
In the V5824G, you can set the number of seconds that the authenticator should wait for a response to request/identity packet from the suppliant before retransmitting the request.
Page 101: Initializing Authentication Status
UMN:CLI User Manual V5824G time interval. 4.6.3 Initializing Authentication Status The user can initialize the entire configuration on the port. Once the port is initialized, the supplicants accessing to the port should be re-authenticated. Command Mode Description dot1x initialize PORTS Global Initializes the authentication status on the port.
Page 102: Sample Configuration
UMN:CLI User Manual V5824G 4.6.7 Sample Configuration The following is the example of configuring the port 6 with the port-based authentication specifying the information of RADIUS server. SWTICH(config)# dot1x system-auth-control SWTICH(config)# dot1x nas-port 6 SWTICH(config)# dot1x port-control force-authorized 6 SWTICH(config)# dot1x radius-server host 10.1.1.1 auth-port 1812 key test SWTICH(config)# show dot1x 802.1x authentication is enabled.
Page 103: Port Configuration
Gigabit Ethernet components. In this chapter, you can find the instructions for the basic port configuration such as auto-negotiation, flow control, transmit rate, etc. Please read the following instructions carefully before you configure a port in the V5824G. Port Basic 5.1.1...
Page 104: Auto-Negotiation
UMN:CLI User Manual V5824G ------------------------------------------------------------------------ TYPE PVID STATUS MODE FLOWCTRL INSTALLED (ADMIN/OPER) (ADMIN/OPER) ------------------------------------------------------------------------ Ethernet Down/Down Auto/Full/0 Off/ Off SWITCH(bridge)# 5.2.2 Auto-Negotiation Auto-negotiation is a mechanism that takes control of the cable when a connection is established to a network device. Auto-negotiation detects the various modes that exist in the network device on the other end of the wire and advertises it own abilities to automatically configure the highest performance mode of interoperation.
Page 105: Flow Control
UMN:CLI User Manual V5824G Sets full-duplex or half-duplex mode on a specified port duplex PORTS {full | half} Bridge port. PORTS: port number 5.2.5 Flow Control In Ethernet networking, the flow control is the process of adjusting the flow of data from one network device to another to ensure that the receiving device can handle all of the incoming data.
Page 106: Port Crossover
UMN:CLI User Manual V5824G packet arrived. If one port is enabled with L2 port bridge feature, it forwards the packets to its destination port when the MAC address is found in the L2 table. The switch can have multiple MAC addresses associated with the same port.
Page 107: Packet Statistics
[PORTS] Bridge CPU. The V5824G can be configured to generate a syslog message when the number of the packets handled by CPU exceeds a specified value. This function allows system administrators to monitor the switch and network status more effectively.
Page 108: Protocol Statistics
UMN:CLI User Manual V5824G To configure the switch to generate a syslog message according to the number of the packets handled by CPU, use the following command. Command Mode Description Generates a syslog message according to the specified number of the packets handled by CPU. This cpu statistics-limit {unicast | is configurable for each packet type and physical port.
Page 109: Port Information
Uninstalled. 5.2.12 Port Debounce Timer The V5824G can be configured to enable the debounce timer for Ethernet ports by specifying a debounce time (in milliseconds) or disable the timer by specifying a debounce time of 0.
Page 110: Port Mirroring
UMN:CLI User Manual V5824G Port Mirroring Port mirroring is the function of monitoring a designated port. Here, one port to monitor is called monitor port and a port to be monitored is called mirrored port. Traffic transmitted from mirrored port are copied and sent to monitor port so that user can monitor network traffic.
Page 111 Mode Description Designates the mirrored VLAN. mirror add vlan VLANS Bridge VLANS: VLAN ID The V5824G supports the VLAN mirroring function for the ingress traffic only. Step 3 Activate the port mirroring, using the following command. Command Mode Description mirror enable Bridge Activates port mirroring.
Page 112 UMN:CLI User Manual V5824G |123456789012345678 ----------------------------------------- Ingress Mirrored Ports|..oo..Egress Mirrored Ports |..oo..- Mirrored VLANs ---------------- ---------------- SWITCH(bridge)#...
Page 113: System Environment
Shows system time and date. Bridge The V5824G can be configured to observe the daylight saving time in specified area. It means that whenever the system time is updated using a time server located in a different time area, it will be automatically corrected with the local daylight saving time offset.
Page 114: Time Zone
6.1.3 Time Zone The V5824G provides three kinds of time zone, GMT, UCT and UTC. The time zone of the switch is predefined as GMT (Greenwich Mean Time). You can also set the time zone where the network element belongs.
Page 115: Network Time Protocol (Ntp)
UMN:CLI User Manual V5824G To display the world time zone, use the following command. Command Mode Description Enable show time-zone Global Shows the world time zone map. Bridge Tab. 6.1 shows the world time zone. Time Zone Country/City Time Zone...
Page 116: Configuring Ntp Authentication
UMN:CLI User Manual V5824G SERVER1 [SERVER2] Enables NTP function with a specified NTP server. [SERVER3] SERVER: server IP address (maximum 3 servers) no ntp SERVER1 Global Deletes a specified NTP server. [SERVER2] [SERVER3] SERVER: server IP address no ntp Disables the NTP function.
Page 117: Simple Network Time Protocol (Sntp)
UMN:CLI User Manual V5824G To enable the NTP authentication, use the following command. Command Mode Description ntp authenticate Enables the NTP authencation. Global no ntp authenticate Disables the NTP authentication. To define the authentication keys, use the following command. Command...
Page 118: Terminal Configuration
6.1.6 Terminal Configuration By default, the V5824G is configured to display 24 lines composed by 80 characters on console terminal. You can change the number of displaying lines by using the terminal length command. The maximum line displaying is 512 lines.
Page 119: Dns Server
UMN:CLI User Manual V5824G banner login-fail Sets a banner when failing to login the system. To restore a default banner, use the following command. Command Mode Description no banner no banner login Global Restores a default banner. no banner login-fail To display a current login banner, use the following command.
Page 120: Fan Operation
Global Deletes DNS server and domain name. 6.1.9 Fan Operation For the V5824G, it is possible to control fan operation. To control fan operation, use the following command. Command Mode Description fan operation {on | off | auto} Global Configures fan operation.
Page 121: Ftp Bind Address
IP address. However, an interface of the V5824G may have multiple IP addresses. In such a multiple-IP environment, a primary IP address is normally used. You can configure the V5824G to use one of the secondary IP addresses as a source IP of an FTP client.
Page 122: System Threshold
6.1.13 System Threshold You can configure the system with various kinds of the system threshold such as CPU load, traffic, temperature, etc. Using this threshold, the V5824G generates syslog messages, sends SNMP traps, or performs a relevant procedure. 6.1.13.1 CPU Load To set the threshold of CPU load, use the following command.
Page 123: Fan Operation
UMN:CLI User Manual V5824G configured threshold, the port will discard that traffic during a specified time. To set the blocking timer, use the following command. Command Mode Description Sets the blocking timer. threshold port PORTS block PORTS: port number timer <10-3600>...
Page 124: System Memory
UMN:CLI User Manual V5824G no threshold temp Deletes a configured threshold of system temperature. To display the configured threshold of system temperature, use the following command. Command Mode Description Enable Shows the status and configured threshold of system show status temp Global temperature.
Page 125: Enabling Dmi Module
This module DMI command is enabled by default. Thus, if you don’t want to get DMI information, configure this setting as disable. If disabled, the V5824G does not show DMI information of the SFP ports when using the show port module-info command.
Page 126: Configuration Management
UMN:CLI User Manual V5824G Configuration Management You can verify if the system configurations are correct and save them in the system. 6.2.1 Displaying System Configuration To display the current running configuration of the system, use the following command. Command Mode...
Page 127: Auto-Saving
6.2.3 Auto-Saving The V5824G supports the auto-saving feature, allowing the system to save the system configuration automatically. This feature prevents the loss of unsaved system configuration by unexpected system failure. To allow the system to save the system configuration automatically, use the following command.
Page 128: Restoring Default Configuration
Enable Shows a current startup configuration. Global show config-list Shows a list of configuration files. Bridge The following is an example of displaying a list of configuration files. SWITCH(config)# copy running-config V5824G SWITCH(config)# show config-list ========================= CONFIG-LIST ========================= l3_default V5824G SWITCH(config)# 6.2.5...
Page 129: Core Dump File
The V5824G can be configured to generate core dumps and save them in ramdisk for useful debugging aids in several situations such as accesses to non-existent memory, segmentation errors.
Page 130: System Management
UMN:CLI User Manual V5824G System Management When there is any problem in the system, you must find what the problem is and its solution. Therefore, you should not only be aware of a status of the system but also verify if the system is correctly configured 6.3.1...
Page 131: Tab. 6.2 Options For Ping For Multiple Ip Addresses
UMN:CLI User Manual V5824G 5 packets transmitted, 5 received, 0% packet loss, time 8008ms rtt min/avg/max/mdev = 0.058/0.581/1.632/0.542 ms SWITCH# When multiple IP addresses are assigned to the switch, sometimes you need to verify the connection status between the specific IP address and network status.
Page 132: Ip Icmp Source Routing
Fig. 6.1, if you perform ping test from PC to C, it goes through the route of A→B→C. This is the general case. But, the V5824G can enable to perform ping test from PC as the route of A→E→D→C. Fig. 6.2...
Page 133: Tracing Packet Route
To perform ping test as the route which the manager designated, use the following steps. Step 1 Enable IP source-routing function from the equipment connected to PC which the PING test is going to be performed. To enable/disable IP source-routing in the V5824G, use the following command. Command Mode Description ip icmp source-route Enable IP source-routing function.
Page 134: Displaying User Connecting To System
UMN:CLI User Manual V5824G The following is an example of tracing packet route sent to 10.55.193.104. SWITCH# traceroute 10.55.193.104 traceroute to 10.55.193.104 (10.55.193.104), 30 hops max, 40 byte packets 1 10.45.239.254 (10.45.239.254) 2.459 ms 1.956 ms 1.781 ms 2 10.45.191.254 (10.45.191.254) 1.114 ms 2.112 ms 1.786 ms 3 10.45.1.254 (10.45.1.254) 2.723 ms 2.604 ms 1.767 ms...
Page 135: Mac Count
UMN:CLI User Manual V5824G 6.3.6 MAC Count To display the current learned host count of MAC, use the following command. Command Mode Description Enable show mac count Shows MAC count. Global 6.3.7 System Running Time To display the system running time, use the following command.
Page 136: Debugging Information
UMN:CLI User Manual V5824G 6.3.10 Debugging Information To display the debugging information, use the following command. Command Mode Description Enable show debugging all Shows the all debugging information. Global show debugging {bfd | bgp | Enable dhcp | gpon | igmp | ipv6 | nsm |...
Page 137: Cpu Packet Management
6.3.11.2 CPU Packet Filtering The V5824G provides a packet filtering feature for incoming/outgoing traffic management to/from CPU. You have to create a CPU packet filter first and set the packet classification criteria and the policy. You can use physical port ID, 802.1p priority (CoS), VLAN ID, 802.1q tag, and so on to classify the CPU packets.
Page 138 UMN:CLI User Manual V5824G To configure one or more CPU packet filter match pattern(s), use the following command. Command Mode Description match vid <1-4094> [tag-position Classifies a VLAN ID. <1-8>] VLAN: VLAN ID Classifies a queue of CPU RX/TX packets.
Page 139 UMN:CLI User Manual V5824G Command Mode Description Specifies a drop or permit statement of the CPU packet filter with the configured match pattern. action {permit | drop} permit: permits the traffic of entries drop: discards the traffic of entries action {802dot1q | 802dot1q-...
Page 140: Running Process
6.3.12 Running Process The V5824G provides a function that shows information of the running processes. The information with this command can be very useful to manage the switch. To display information of the running processes, use the following command.
Page 141: Displaying Installed Os
6.3.15 Default OS The V5824G supports the dual OS feature. You can verify the running OS in the flash memory with the show flash command. When two system OSs are installed, you can set one of those as the default OS. To set the default OS of the system, use the following command.
Page 142: Tech Support Information
To reduce the effort to acquire the detail informtation of the system for a technical suppport, the V5824G provides the function that generates all the system information reflecting the current state. Using this function, you can verify all the details on a console screen or even in the remote place via FTP/TFTP.
Page 143: Network Service Module (Nsm) Daemon Debugging
UMN:CLI User Manual V5824G Enable show boot-info Global Shows the information of the last system boot. Bridge 6.3.20 Network Service Module (NSM) Daemon Debugging To enable NSM daemon debugging, use the following command. Command Mode Description Enables NSM debugging. debug nsm [all]...
Page 144: Network Management
SNMP agent sends a trap to administrator for specific cases. Trap is a warning message to alert network status to SNMP administrator. The V5824G enhances access management of SNMP agent and limits the range of OID opened to agents. 7.1.1 SNMP Service To enable/disable SNMP service, use the following command.
Page 145: Snmp Agent Administrator
Deletes the specified basic information for each item. no snmp location The following is an example of specifying basic information of SNMP agent. SWITCH(config)# snmp contact dasan<02.3484.6500> SWITCH(config)# show snmp contact contact dasan<02.3484.6500> SWITCH(config)# snmp location Seoul,Korea...
Page 146: Assigning Ip Address Of Snmp Agent
UMN:CLI User Manual V5824G show snmp contact Enable Shows the name of the administrator. Global show snmp location Shows the location of the SNMP agent. Bridge 7.1.4 Assigning IP Address of SNMP Agent If SNMP agent has several IP addresses, SNMP carries the information through the best suited path (IP address) when SNMP administrator requests for information.
Page 147: Snmp Group
UMN:CLI User Manual V5824G Com2Sec List SecName Source Community ------------------------------------------------ TEST 10.1.1.1 PUBLIC SWITCH(config)# 7.1.6 SNMP Group You can create an SNMP group that can access SNMP agent and its community that belongs to a group. To create an SNMP group, use the following command.
Page 148: Permission To Access Snmp View Record
UMN:CLI User Manual V5824G SWITCH(config)# snmp view TEST included 410 SWITCH(config)# show snmp view View List ViewName Type SubTree / Mask ------------------------------------------- TEST included 410 SWITCH(config)# 7.1.8 Permission to Access SNMP View Record To grant an SNMP group to access to a specific SNMP view record, use the following command.
Page 149: Snmp Engine Id
UMN:CLI User Manual V5824G Enable show snmp user Global Displays an SNMP version 3 user. Bridge 7.1.10 SNMP Engine ID SNMP Engine ID is an administratively unique identifier of a participant in SNMP communication within a single management domain. The SNMP manager and SNMP agent must be configured by an administrator to have unique SNMP Engine IDs.
Page 150: Snmp Notification Type
UMN:CLI User Manual V5824G X:X::X:X: IPv6 address of the target PORT: UDP port number in the range 1 to 65535 TIMEOUT: the time in seconds to wait for an acknowledgement before resending unacknowledged PDU RETRIES: the number of retries for resending Inform...
Page 151 UMN:CLI User Manual V5824G Command Mode Description Defines the notification and specifies the type. NOTIFY: the notification name snmp notify NOTIFY TAG [trap | TAG: the notification tag defines a set of target inform] Global addresses to which this notification is sent...
Page 152: Snmp Trap
UMN:CLI User Manual V5824G SWITCH(config)# show snmp targetaddr Targetaddr Table TargetaddrName TargetparamsName Address Port Timeout Retries Taglist ------------------------------------------------------------------------------ 1.1.1.1 10.70.1.163 1500 tag5 taddr1 param1 10.70.1.163 1500 tag1 tag3 SWITCH(config)# show snmp notify Notify Table NotifyName Type ------------------------------------------ tag5 SWITCH(config)# 7.1.12...
Page 153: Enabling Snmp Trap
UMN:CLI User Manual V5824G Command Mode Description no snmp trap-host {A.B.C.D | Deletes a specified SNMP trap v1 host. X:X::X:X } no snmp trap2-host {A.B.C.D | Global Deletes a specified SNMP trap v2 host. X:X::X:X } no snmp inform-trap-host Deletes a specified SNMP inform trap host.
Page 154 UMN:CLI User Manual V5824G user. Also, when port traffic falls below the threshold, trap message will be shown. • system-restart is shown to inform the system rebooting. • trap-log is shown when the trap logs are more than 90% full and will wrap around soon.
Page 155: Displaying Snmp Trap
UMN:CLI User Manual V5824G no snmp trap link-up PORTS no snmp trap link-down PORTS no snmp trap mem-threshold no snmp trap cpu-threshold no snmp trap port-threshold no snmp trap login-failed no snmp trap dhcp-lease no snmp trap system-restart no snmp trap trap-log no snmp trap-source-interface 7.1.12.4...
Page 156: Snmp Trap Message Logging And Threshold
7.1.13 SNMP Alarm The V5824G provides an alarm notification function. The alarm will be sent to a SNMP trap host whenever a specific event in the system occurs through CLI. You can also set the alarm severity on each alarm and make the alarm be shown only in case of selected severity or higher.
Page 157: Alarm Severity Criterion
UMN:CLI User Manual V5824G To enable/disable the alarm notify activity, use the following command. Command Mode Description snmp notify-activity {enable | Enables/disables the alarm notify activity. Global disable} (default: disable) 7.1.13.2 Alarm Severity Criterion You can set an alarm severity criterion to make an alarm be shown only in case of selected severity or higher.
Page 158 UMN:CLI User Manual V5824G Command Mode Description minor | warning | intermediate} address left in the DHCP pool. snmp alarm-severity dhcp-illegal {critical | major | Sets severity of an alarm for illegal minor | warning | intermediate} DHCP entry. snmp alarm-severity dying-gasp {critical | major |...
Page 159: Displaying Snmp Alarm
UMN:CLI User Manual V5824G no snmp alarm-severity rmon-alarm-falling no snmp alarm-severity system-restart 7.1.13.5 Displaying SNMP Alarm To display a collected alarm, use the following command. Command Mode Description show snmp alarm-severity Shows a configured alarm severity. Enable show snmp alarm-history Global Shows a collected alarm history.
Page 160: Disabling Snmp
UMN:CLI User Manual V5824G Global Shows the recorded SNMP message logs in the non- show snmp non-volatile volatile memory. [<1-2000>] 1-100: SNMP logs line number to be displayed show snmp log non-volatile tail Shows currently recorded SNMP message logs in the <1-2000>...
Page 161: Link Layer Discovery Protocol (Lldp)
LAN according to IEEE 802.1ab standard. 7.2.1 LLDP Operation The V5824G supporting LLDP transmits the management information between near switches. The information carries the management information that can recognize the network elements and the function. This information is saved in internal Management Information Base (MIB).
Page 162: Lldp Message
Deletes the specified TLV location ID. 7.2.5 LLDP Message For the V5824G, it is possible to configure the interval time and times of sending LLDP message. To configure the interval time and times of LLDP message, use the following command.
Page 163: Displaying Lldp Configuration
UMN:CLI User Manual V5824G To configure delay time of transmitting LLDP frame, use the following command. Command Mode Description Configures delay time of transmitting LLDP frame. lldp txdelay <1-8192> Bridge (default: 2) 7.2.7 Displaying LLDP Configuration To display LLDP configuration, use the following command.
Page 164: Remote Monitoring (Rmon)
RMON. There are nine RMON MIB groups defined in RFC 1757: Statistics, History, Alarm, Host, Host Top N, Matrix, Filter, Packet Capture and Event. The V5824G supports two MIB groups of them, most basic ones: Statistics (only for uplink ports) and History.
Page 165: Source Port Of Statistical Data
UMN:CLI User Manual V5824G write Write running configuration to memory or terminal SWITCH(config-rmonhistory[5])# 7.3.1.1 Source Port of Statistical Data To specify a source port of statistical data, use the following command. Command Mode Description Specifies a data object ID: data-source NAME RMON NAME: enters a data object ID.
Page 166: Deleting Configuration Of Rmon History
UMN:CLI User Manual V5824G Before activating RMON history, check if your configuration is correct. After RMON history is activated, you cannot change its configuration. If you need to change configuration, you need to delete the RMON history and configure it again.
Page 167: Subject Of Rmon Alarm
UMN:CLI User Manual V5824G 7.3.2.1 Subject of RMON Alarm You need to configure RMON alarm and identify subject using many kinds of data from alarm. To identify subject of alarm, use the following command. Command Mode Description Identifies subject using relevant data, enter the name...
Page 168: Lower Bound Of Threshold
UMN:CLI User Manual V5824G After configuring upper bound of threshold, configure to generate RMON event when object is more than configured threshold. Use the following command. Command Mode Description Configures to generate RMON event when object is rising-event <1-65535> RMON more than configured threshold.
Page 169: Interval Of Sample Inquiry
UMN:CLI User Manual V5824G To configure the first alarm to occur when object is firstly more than threshold or less than threshold, use the following command. Command Mode Description Configures the first Alarm to occur when object is firstly startup-type rising-and-falling RMON more than threshold or less than threshold.
Page 170: Event Community
UMN:CLI User Manual V5824G 7.3.3.1 Event Community When RMON event occurs, you need to input community to transmit SNMP trap message to host. Community means a password to give message transmission right. To configure community for trap message transmission, use the following command.
Page 171: Activating Rmon Event
UMN:CLI User Manual V5824G 7.3.3.5 Activating RMON Event After finishing all configurations, you should activate RMON event. To activate RMON event, use the following command. Command Mode Description active RMON Activates RMON event. 7.3.3.6 Deleting Configuration of RMON Event Before changing the configuration of RMON event, you should delete RMON event of the number and configure it again.
Page 172 UMN:CLI User Manual V5824G monitored variable is smaller than or equal to the falling threshold, a falling event is triggered. (1-2147483647) RISING_THRESHOLD: When value monitored variable is greater than or equal to the rising threshold, a rising event is triggered. (1-2147483647)
Page 173: Syslog
UMN:CLI User Manual V5824G Syslog The syslog is a function that allows the network element to generate the event notification and forward it to the event message collector like a syslog server. This function is enabled as default, so even though you disable this function manually, the syslog will be enabled again.
Page 174 UMN:CLI User Manual V5824G notice | info} console syslog output priority {auth | authpriv | Generates a user-defined syslog message kern | local0 | local1 | local2 | local3 | with a priority in the system memory. local4 | local5 | local6 | local7 | syslog |...
Page 175: Facility Code
UMN:CLI User Manual V5824G entity | dhcp | filter | gpon | loop- priority detect} INDEX priority {emerg | alert | crit | err | warning | notice | info | debug} syslog index {system Deletes a specified user-defined syslog nessage index physical-entity | dhcp | filter | level with a priority.
Page 176: Syslog Bind Address
UMN:CLI User Manual V5824G Command Mode Description syslog local-code <0-7> Sets a facility code. Global no syslog local-code Deletes a specified facility code. The following is an example of configuring priority of all syslog messages which is transmitted to remote host 10.1.1.1, as the facility code 0.
Page 177: Syslog Local Message Configuration
UMN:CLI User Manual V5824G The syslog is enabled by default. 7.4.6 Syslog Local Message Configuration To configure the volatile size of syslog message, use the following command. Command Mode Description Configures the volatile size of syslog message. syslog local volatile size <1- Enable volatile: removes the syslog messages after restart.
Page 178: Rule And Qos
V5824G Rule and QoS The V5824G provides a rule and QoS feature for traffic management. The rule classifies incoming traffic, and then processes the traffic according to user-defined policies. You can use the physical port, 802.1p priority (CoS), VLAN ID, DSCP, and so on to classify incoming packets.
Page 179: How To Operate Qos
UMN:CLI User Manual V5824G 7.5.1 How to Operate QoS QoS operation is briefly described as below. Incoming packets are classified by configured conditions, and then processed by packet counter and rate-limiting on specific policer. After marking and remarking action, the switch transmits those classified and processed packets via a given scheduling algorithm.
Page 180: Packet Classification
• Scheduling Algorithm To handle traffic, you need to configure differently processing orders of traffic by using scheduling algorithms. The V5824G provides: – Strict Priority Queuing (SP) – Deficit Round Robin (DRR) – Weighted Round Robin (WRR) An already applied rule cannot be modified. It needs to be deleted and then created again with changed values.
Page 181: Flow Creation
UMN:CLI User Manual V5824G via flow, which is with unique name. If you specify the value of parameters, the V5824G classifies the packets corresponding to the parameters. 7.5.2.1 Flow Creation The packet classification involves a traffic descriptor to categorize a packet within a specific flow for QoS handling in the network.
Page 182 UMN:CLI User Manual V5824G Command Mode Description Classifies an IP protocol (ICMP). ip {A.B.C.D | A.B.C.D/M | any} A.B.C.D: source/destination IP address {A.B.C.D | A.B.C.D/M | any} icmp A.B.C.D/M: source/destination IP address with mask any: any source/destination IP address Classifies an IP protocol ip {A.B.C.D | A.B.C.D/M | any}...
Page 183 UMN:CLI User Manual V5824G To specify a packet-classifying pattern with IPv6 address, use the following command. Command Mode Description Classifies an IPv6 address. X:X::X:X : source/destination IPv6 address ipv6 { X:X::X:X | X:X::X:X/M | any} X:X::X:X/M: source/destination IPv6 address with {X:X::X:X |X:X::X:X/M | any} [<0-...
Page 184 UMN:CLI User Manual V5824G any: any ToS value (ignore) Classifies IP precedence. ip-precedence {<0-7> | any} 0-7: IP precedence value any: any IP precedence value (ignore) Classifies a packet length. length {<21-65535> | any} 21-65535: IP packet length any: any IP packet length (ignore) Classifies the Ethernet type.
Page 185: Applying And Modifying Flow
UMN:CLI User Manual V5824G 7.5.2.3 Applying and modifying Flow After configuring a flow using the above commands, apply it to the system with the following command. If you do not apply the flow to the system, all specified configurations on Flow Configuration mode will be lost.
Page 186: Policer Creation
UMN:CLI User Manual V5824G 7.5.3.1 Policer Creation To configure how to handle the classified packets according to the policer settings, you need to create a policer and open Policer Configuration mode. To open Policer Configuration mode, use the following command.
Page 187: Rate-Limit
UMN:CLI User Manual V5824G Global Bridge To display the number of packets on each rule, use the following command. Command Mode Description show flow statistics Shows a collected flow counter. show class statistics Shows a collected class counter. Enable Global show policer statistics Shows a collected policer counter.
Page 188 UMN:CLI User Manual V5824G Command Mode Description Creates a policy and opens Policy Configuration mode. policy NAME create Global NAME: policy name. After opening Policy Configuration mode, the prompt changes from SWITCH(config)# to SWITCH(config-policy[NAME])#. To delete configured policy or all policies, use the following command.
Page 189: Metering
The V5824G provides Token Bucket (srTCM and trTCM) meters. Token Bucket The token bucket is a control mechanism that transmits traffic by tokens in the bucket.
Page 190: Fig. 7.4 Behavior Of Srtcm (1)
UMN:CLI User Manual V5824G Single Rate Three Color Marker (srTCM) The srTCM meters an IP packet stream and marks its packet the one among green, yellow, and red using Committed Information Rate (CIR) and two associated burst sizes, Committed Burst Size (CBS) and Excess Burst Size (EBS). A packet is marked green if it does not exceed the CBS, yellow if it exceeds the CBS, but not the EBS, and red otherwise.
Page 191: Fig. 7.5 Behavior Of Srtcm (2)
UMN:CLI User Manual V5824G Tokens are regenerated Tokens are regenerated based on CIR based on CIR Bucket C Bucket E Token Empty If the bucket C is empty, the tokens in the bucket E are decremented by the size of the packet...
Page 192: Fig. 7.7 Behavior Of Trtcm (1)
UMN:CLI User Manual V5824G PIR and CIR are the regenerating rate of tokens for PBS and CBS respectively, which is measured in bytes of IP packets per second. PIR must be equal to or greater than CIR. PBS and CBS are the maximum size for each token bucket, P and C, measured in bytes.
Page 193: Fig. 7.8 Behavior Of Trtcm (2)
UMN:CLI User Manual V5824G Tokens are regenerated Tokens are regenerated based on PIR faster than CIR based on CIR Bucket P Bucket C Empty Token If the bucket C is empty, the tokens in the bucket P are decremented by the...
Page 194: Policy Priority
UMN:CLI User Manual V5824G color-aware mode the meter assumes that some preceding entity has pre-colored the incoming packet stream so that each packet is the one among green, yellow, and red. To specify the value for metering parameters, use the following command.
Page 195: Policy Action
UMN:CLI User Manual V5824G Command Mode Description priority {low | medium | high | Policy Sets a priority for a policy. (default: low) highest} 7.5.4.4 Policy Action To specify the rule action for the packets matching configured classifying patterns, use the following command.
Page 196: Setting Cos And Tos Values
UMN:CLI User Manual V5824G Command Mode Description no action match deny no action match permit no action match redirect no action match mirror no action match vlan no action match copy-to-cpu no action match cancel-copy-to- Policy Deletes a specified rule action.
Page 197: Applying And Modifying Policy
UMN:CLI User Manual V5824G should be applied. If you do not specify an interface for rule, rule does not work properly. To attach a policy to an interface, use the following command. Command Mode Description Attaches the policy to a specified ingress port or any interface-binding port ingress port.
Page 198: Admin Rule
Shows all configurations of each rule policer | policy } 7.5.6 Admin Rule For the V5824G, it is possible to block a specific service connection like telnet, FTP, ICMP, etc with an admin rule function. 7.5.6.1 Creating Admin Flow for packet classification To classify packets by a specific admin flow for the V5824G, you need to open Admin- Flow Configuration mode first.
Page 199: Configuring Admin Flow
UMN:CLI User Manual V5824G to now. 7.5.6.2 Configuring Admin Flow You can classify the packets according to IP address, ICMP, TCP, UDP and IP header length. To specify a packet-classifying pattern, use the following command. Command Mode Description Classifies an IP address: ip {A.B.C.D | A.B.C.D/M | any}...
Page 200: Applying And Modifying Admin Flow
UMN:CLI User Manual V5824G Command Mode Description Classifies an IPv6 address. X:X::X:X : source/destination IPv6 address ipv6 { X:X::X:X | X:X::X:X/M | any} X:X::X:X/M: source/destination IPv6 address with {X:X::X:X |X:X::X:X/M | any} [<0-255>] mask any: any source/destination IPv6 address 0-255: IP protocol number ipv6 { X:X::X:X | X:X::X:X/M | any} Classifies an IP protocol (ICMP).
Page 201: Class Creation
FLOW: admin flow name 7.5.7 Admin Rule Action 7.5.7.1 Admin Policy Creation For the V5824G, you need to open Admin-Policy Configuration mode first. To open Policy Configuration mode, use the following command. Command Mode Description Creates an admin policy and opens Admin-Policy...
Page 202 UMN:CLI User Manual V5824G After opening Admin-Policy Configuration mode, an admin policy can be configured by user. You can specify the rule action for the classified packets in each admin-policy. • The admin-policy name must be unique. Its size is limited to 32 significant characters.
Page 203 UMN:CLI User Manual V5824G patterns, use the following command. Command Mode Description action match deny Denies a packet. Admin- Policy action match permit Permits a packet. To delete a specified rule action(action match), use the following command. Command Mode Description...
Page 204 UMN:CLI User Manual V5824G Command Mode Description show flow-profile admin Admin-Flow Shows a profile of admin flow. Admin- show policy-profile admin Shows a profile of admin policy. Policy The following command can be used to show a certain rule by its name, all rules of a certain type, or all rules at once sorted by a rule type.
Page 205: Fig. 7.10 Strict Priority Queuing
User Manual V5824G 7.5.9 Scheduling To process incoming packets by the queue scheduler, the V5824G provides the scheduling algorithm as Strict Priority Queuing (SP), Weighted Round Robin (WRR) and Deficit Round Robin (DRR). Strict Priority Queuing (SP) SPQ processes first more important data than the others. Since all data are processed by their priority, data with high priority can be processed fast but data without low priority might be delayed and piled up.
Page 206: Fig. 7.11 Deficit Round Robin
UMN:CLI User Manual V5824G Deficit Round Robin Queing Queue1 (50% b/w, Quantum [1] = 1000 Scheduler Queue2 (25% b/w, Quantum [2] = 500 Queue3 (25% b/w, Quantum [3] = 500 Fig. 7.11 Deficit Round Robin Weighted Round Robin (WRR) WRR processes packets as much as weight. Processing the packets that have higher priority is the same way as strict priority queuing.
Page 207 UMN:CLI User Manual V5824G 7.5.9.1 Scheduling mode To select a packet scheduling mode, use the following command. Command Mode Description Selects a packet scheduling mode for a ports: sp: strict priority queuing qos scheduling-mode {sp | wrr | wrr: weighted round robin...
Page 208 UMN:CLI User Manual V5824G 7.5.9.3 Maximum and Minimum Bandwidth To set a maximum bandwidth, use the following command. Command Mode Description Sets a maximum bandwidth for each port and queue: PORTS: port numbers qos max-bandwidth PORTS <0- Global 0-7: queue number 7>...
Page 209 UMN:CLI User Manual V5824G To display the DSCP-to-CoS configuration, use the following command. Command Mode Description Enable show qos map dscp [<0-63>] Global Shows the DSCP-to-CoS configuration. Bridge To determine the 802.1p priority of incoming packets through a port using dscp-to-cos mapping table, use the following command.
Page 210 UMN:CLI User Manual V5824G EFM OAM EFM OAM capabilities are a need for Ethernet subscriber access link monitoring in L2, remote loopback and remote failure indication. EFM OAM uses a slow protocol frame which is called OAM Protocol Data Units (OAMPDUs). Using OAMPDUs, local DTE manages the remote DTE.
Page 211 UMN:CLI User Manual V5824G 7.6.2 OAM Link Monitoring To enable/disable the link monitoring function, use the following command. Command Mode Description Enables link monitoring function. oam efm link-monitor enable PORTS PORTS: port number Global Disables link monitoring function. oam efm link-monitor disable PORTS...
Page 212 UMN:CLI User Manual V5824G snmp-trap PORTS notifications are received. PORTS: port number 7.6.3 EFM OAM Mode To configure EFM OAM mode, use the following command. Command Mode Description Configures the mode of EFM OAM. oam efm mode {active | passive}...
Page 213 UMN:CLI User Manual V5824G 7.6.5 OAM Unidirection When RX is impossible in OAM, it is possible to send the information by using TX. To enable/disable the function, use the following command. Command Mode Description Sends the information by using TX.
Page 214: Fig. 7.13 Netbios Filtering
However, the more computers are used recently, the more strong security is required. To secure individual customer’s information and prevent information leakages in the LAN environ-men, the V5824G provides NetBIOS filtering function. Without NetBIOS filtering, customer’s data may be opened to each other even though the data should be kept.
Page 215 UMN:CLI User Manual V5824G Martian Filtering It is possible to block packets, which trying to bring different source IP out from same network. If packet brings different IP address, not its source IP address, then it is impossible to know it makes a trouble. Therefore, you would better prevent this kind of packet outgoing from your network.
Page 216 UMN:CLI User Manual V5824G Max Host You can limit the number of users by configuring the maximum number of users also named as max hosts for each port. In this case, you need to consider not only the number of PCs in network but also devices such as switches in network.
Page 217 UMN:CLI User Manual V5824G 7.10 Port Security You can use the port security feature to restrict input to an interface by limiting and identifying MAC addresses of the PCs that are allowed to access the port. When you assign secure MAC addresses to a secure port, the port does not forward packets with source addresses outside the group of defined addresses.
Page 218 UMN:CLI User Manual V5824G To disable the configuration of port secure, use the following command. Command Mode Description no port security PORTS Disables port security on the port. no port security PORTS mac- Deletes a secure MAC address for the port.
Page 219 PCs in the network but also devices such as switches in the network. For the V5824G, you have to block the port like MAC filtering before configuring max hosts. In case of ISPs, it is possible to arrange a billing plan for each user by using this configuration.
Page 220 UMN:CLI User Manual V5824G particular interface to the default value of unlimited hosts. To display the configured maximum number of hosts for interfaces, use the following command. Command Mode Description Bridge/ Shows the configured maximum number of hosts for show max-hosts the interfaces.
Page 221 UMN:CLI User Manual V5824G To remove the static MAC addresses manually registered by user from the MAC table, use the following command. Command Mode Description no mac Deletes static MAC addresses. no mac NAME Deletes static MAC addresses, enter the bridge name.
Page 222 UMN:CLI User Manual V5824G Sample Configuration This is an example of blocking all packets in port 6 to 7 and port 8. SWTICH(bridge)# mac-filter default-policy deny 6-8 SWTICH(bridge)# show mac-filter default-policy ------------------------- PORT POLICY | PORT POLICY ------------+------------ 1 PERMIT |...
Page 223 (VLAN ID) where packets are forwarded. The V5824G ARP saves IP/MAC addresses mappings in ARP table for quick search. Referring to the information in ARP table, packets attached IP address is transmitted to network.
Page 224 UMN:CLI User Manual V5824G MAC-ADDR: MAC address. Specifies a static ARP entry with an interface name. A.B.C.D MAC-ADDR INTERFACE: interface name INTERFACE MAC-ADDR: MAC address no arp [A.B.C.D] Deletes static ARP entries. no arp A.B.C.D INTERFACE To delete ARP entries, use the following command.
Page 225 Although clients are joined in the same client switch, it may be impossible to communicate between them for security reasons. When you need to make them communicate each other, the V5824G supports ARP alias, which responses the ARP request from client net through the concentrating switch.
Page 226 UMN:CLI User Manual V5824G 7.15.4 ARP Inspection ARP provides IP communication by mapping an IP address to a MAC address. However, a malicious user can attack ARP caches of systems by intercepting the traffic intended for other hosts on the subnet. For example, Host B generates a broadcast message for all hosts within the broadcast domain to obtain the MAC address associated with the IP address of Host A.
Page 227 UMN:CLI User Manual V5824G Discards all ARP packets of all IP addresses with all MAC addresses which have not learned before on ARP deny ip any mac {any | host inspection table or a specific MAC address MACADDR} any: ignores sender IP/MAC address...
Page 228 UMN:CLI User Manual V5824G To delete the configured ranged of IP address to permit ARP packets, use the following command. Command Mode Description no permit ip any mac {any | host Deletes a configured range of IP address to permit MACADDR} ARP packets.
Page 229 VLAN using the ip arp inspection filter command. 7.15.4.3 ARP Address Validation The V5824G also provides the ARP validation feature. Regardless of a static ARP table, the ARP validation will discard ARP packets in the following cases: • In case a sender MAC address of ARP packet does not match a source MAC address of Ethernet header.
Page 230 This function saves the information of users who are discarded by ARP inspection and generates periodic syslog messages. Log-buffer function is automatically enabled with ARP inspection. If V5824G receives invalid or denied ARP packets by ARP inspection, it creates the table of entries that include the information of port number, VLAN ID, source IP address, source MAC address and time.
Page 231 7.15.6 Proxy ARP The V5824G supports the proxy ARP. Proxy ARP is the technique in which one host, usually a router, answers ARP requests intended for another machine. By “faking” its identity, the router accepts responsibility for routing packets to the “real” destination.
Page 232: Fig. 7.14 Proxy Arp
D, it will reply with its own MAC address to the host A. The proxy ARP replies that the V5824G sends to the host A. The proxy ARP reply packet is encapsulated in an Ethernet frame with its MAC address as the source address and the host A’s MAC address as the destination address.
Page 233 UMN:CLI User Manual V5824G...
Page 234 UMN:CLI User Manual V5824G 7.16 IPv6 Neighbor Discovery(ND) Neighbor discovery (ND) is specified in RFC 2464. ND combines Address Resolution Protocol (ARP) and ICMP router discovery and Redirect. With IPv4, we have no means to detect whether or not a neighbor is reachable. With ND protocol, a neighbor unreachability detection mechanism has been defined.
Page 235 UMN:CLI User Manual V5824G To set the other stateful configuration flag in RA message, use the following command. Command Mode Description ipv6 nd other-config-flag Sets the other stateful configuration flag in RA. Interface Clears the other stateful configuration flag from RA.
Page 236 UMN:CLI User Manual V5824G The interval value should be less than or equal to the IPv6 Router Lifetime if this is a default router. Router’s Lifetime 7.16.4 This value is included in all IPv6 Router Advertisements sent out this interface. If the router is not a default router, this will have a value of zero.
Page 237 UMN:CLI User Manual V5824G 7.16.6 RA Suppression If IPv6 unicast routing is enabled on an Ethernet interface, by default, this interface sends IPv6 router advertisement messages. However, by default, non-LAN interface types, for example, tunnel interfaces, do not send router advertisement messages.
Page 238 UMN:CLI User Manual V5824G interface. 0-600: number of neighbor solicitation messages (A value of 0 disables DAD processing on the specified interface no ipv6 nd dad attempts Returns the number of messages to the default value. 7.16.10 Static IPv6 Neighbor Entry The Neighbor Discovery (ND) protocol is a new messaging protocol that was created as part of IPv6 to perform a number of the tasks that ICMP and ARP accomplish in IPv4.
Page 239 UMN:CLI User Manual V5824G To activate/deactivate the ND inspection function on a VLAN, use the following command. Command Mode Description Activates ND inspection on a VLAN. ipv6 nd inspection vlan VLANS VLANS: VLAN ID (1-4094) Global no ipv6 nd inspection vlan Deactivates ND inspection on a VLAN.
Page 240 UMN:CLI User Manual V5824G To delete the configured range of IPv6 address or MAC address to permit ND packets, use the following command. Command Mode Description no permit ipv6 {host X:X::X:X | Deletes the configured range of IPv6 address to permit X:X::X:X/M | any} mac {any | host ND packets.
Page 241 UMN:CLI User Manual V5824G no deny ipv6 range X:X::X:X X:X::X:X/M: sender IPv6 network address X:X::X:X mac any By the following command, the ND access list also refers to a DHCP snooping binding table to permit the ND packets for DHCP users. This feature enables the system to permit ND packets only for the IPv6 addresses on the DHCP snooping binding table.
Page 242 This function saves the information of users who are discarded by ND inspection and generates periodic syslog messages. Log-buffer function is automatically enabled with ND inspection. If V5824G receives invalid or denied ND packets by ND inspection, it creates the table of entries that include the information of port number, VLAN ID, source IP address, source MAC address and time.
Page 243 DHCP packets back and forth the V5824G, would be lost. Thus, ND inspection should be delayed to start during some time so that DHCP snooping table can build entries. If no time is given, ND inspection sees empty snooping table and drop every ND packet.
Page 244 Although clients are joined in the same client switch, it may be impossible to communicate between them for security reasons. When you need to make them communicate each other, the V5824G supports ND alias, which responses the ARP request from client net through the concentrating switch.
Page 245 UMN:CLI User Manual V5824G To set aging time of gateway IPv6 address in ND alias, use the following command. Command Mode Description nd alias aging-time Sets the aging time of gateway IPv6 address. <5-2147483647> 5-2147483647: aging time (default: 300 seconds)
Page 246 UMN:CLI User Manual V5824G X:X::X:X/M}] Global Bridge clear ipv6 neighbors INTERFACE...
Page 247: Fig. 7.15 Icmp Message Structure
UMN:CLI User Manual V5824G 7.17 ICMP Message Control ICMP stands for Internet Control Message Protocol. When it is impossible to transmit data or configure route for data, ICMP sends error message about it to host. The first 4 bytes of all ICMP messages are same, but the other parts are different according to type field value and code field value.
Page 248 UMN:CLI User Manual V5824G To release the blocked echo reply message, use the following command. Command Mode Description Releases blocked echo reply message to all partners no ip icmp ignore echo all who are taking ping test to device. Global...
Page 249: Tab. 7.2 Mask Calculation Of Default Value
UMN:CLI User Manual V5824G RPROB (12) ICMP_TIMESTAMP (13) ICMP_TIMESTAMPREPLY (14) ICMP_INFO_REQUEST (15) ICMP_INFO_REPLY (16) ICMP_ADDRESS (17) ICMP_ADDRESSREPLY (18) Tab. 7.2 Mask Calculation of Default Value To configure the limited ICMP transmission time, use the following command. Command Mode Description icmp...
Page 250 UMN:CLI User Manual V5824G 7.17.3 ICMP Destination Unreachable Message If the switch receives a packet that has an unknown protocol or no route to the destination address, the switch sends an ICMP unreachable message to its source address. What if too many ICMP unreachable messages should be sent from the switch, it might cause slow down the system operation.
Page 251 V5824G 7.18 TCP Flag Control Transmission Control Protocol (TCP) header includes six kinds of flags that are URG, ACK, PSH, RST, SYN, and FIN. For the V5824G, you can configure RST and SYN as the below. 7.18.1 RST Configuration RST sends a message when TCP connection cannot be done to a person who tries to make it.
Page 252 Do not use it to monitor normal network operation. The debug commands produce a large amount of processor overhead. The V5824G also provides debug command for Layer 3 routing protocols (BGP, OSPF, RIP and PIM). If you want to debug about them, refer to the each configuration chapter.
Page 253 (Real-time Transport Protocol) -T TYPE rtcp (Real-time Transport Control Protocol) vat (Visual Audio Tool) wb (distributed White Board) EXPRESSION Conditional expression Tab. 7.5 Options for Packet Dump 7.20.3 Debug Packet Dump The V5824G provides network debugging function to prevent system overhead for...
Page 254 UMN:CLI User Manual V5824G unknown packet inflow. Monitoring process checks CPU load per 5 seconds. If there is more traffic than threshold, user can capture packets using tcpdump and save it to file. You can download the dump file with the name of file-number.dump after FP connection to the system.
Page 255 An IP access list (ACL) is a filter that enables you to restrict specific IP traffic. If you create an ACL entry to filter multicast packets based on their destination IP address, the V5824G can deny the packets matching to the destination IP address, a multicast address.
Page 256: Tab. 7.3 Examples Of Wildcard Masking
UMN:CLI User Manual V5824G Wildcard Bits Masks are used with IP addresses in IP ACLs to specify a range of IP addresses. Com- pared to subnet mask, masks for IP ACLs are the reverse. The mask bits 0.0.0.255 in IP ACL are same as 255.255.255.0 in subnet mask, for instance.
Page 257 UMN:CLI User Manual V5824G To delete an existing standard IP address-based access list entry, use the following command. Command Mode Description no access-list {<1-99> | <1300- 1999>} {deny | permit} A.B.C.D [WILDCARD-BITS] no access-list {<1-99> | <1300- 1999>} {deny | permit} any Global Deletes an entry of the standard ACL.
Page 258 UMN:CLI User Manual V5824G Command Mode Description Specifies a deny or permit statement of the extended access-list {<100-199> | <2000- ACL with a single source host and other variables. 2699>} {deny | permit} ip host host: single source host A.B.C.D any A.B.C.D: source IP address of a host to match...
Page 259 UMN:CLI User Manual V5824G Command Mode Description access-list {<100-199> <2000-2699>} {deny | permit} ip host A.B.C.D host A.B.C.D access-list {<100-199> <2000-2699>} {deny | permit} ip any A.B.C.D A.B.C.D WILDCARD- BITS access-list {<100-199> Global Deletes an entry of the extended ACL.
Page 260 UMN:CLI User Manual V5824G Add entries to the list by repeating the command for different IP addresses. To delete an entry of the named ACL, use the following command. Command Mode Description no access-list WORD {deny | permit} A.B.C.D/M [exact-match]...
Page 261 UMN:CLI User Manual V5824G To write comments for the specified access list range, use the following command. Command Mode Description Writes comments for the specified ACL range. access-list-range {<1-1024> 1-1024: IP standard access list range WORD} remark LINE WORD: IP access-list-range name...
Page 262 ACL and rebuild it. If you enter an ACL statement without specifying a sequence number, the V5824G uses the default increment of 10 when adding the statement to the end of the list.
Page 263 UMN:CLI User Manual V5824G 255> | dscp <0-63>}] [{ log | log-input} tag address WORD ] A.B.C.D: source/destination IP address to match WILDCARD-BITS: Bits for use of wildcard masking [<1-2147483647>] { deny | permit } icmp {any | host A.B.C.D | A.B.C.D WILDCARD-BITS} {any | host A.B.C.D...
Page 264 UMN:CLI User Manual V5824G Specifies a deny or permit statement of the extended ACL based on UDP. [<1-2147483647>] { deny | permit } udp {any | eq: match only packets on a given port host A.B.C.D | A.B.C.D WILDCARD-BITS} {any |...
Page 265 UMN:CLI User Manual V5824G precedence-unreachable host-redirect host-tos- redirect | host-tos-unreachable | host-unknown | host- unreachable | information-reply | information-request | mask-reply | mask-request | mobile-redirect | net-redirect | net-tos-redirect | net-tos-unreachable | net-unreachable | network-unknown | no-room-for-option | option-missing |...
Page 266 UMN:CLI User Manual V5824G Writes comments for this MAC address-based ACL. remark LINE LINE: access list entry comments up to 100 characters no <1-2147483647> no {deny | permit} {any | host HOST- MACADDR | MACADDR MACADDR- MASK {any host HOST-...
Page 267 UMN:CLI User Manual V5824G To apply the user-defined access list to the interface and specify its priority, use the following command. Command Mode Description Applies the user-defined MAC access list to the interface. mac access-group {<700-799> | 700-799: extended MAC access-list number <1100-1199>...
Page 268 UMN:CLI User Manual V5824G To clear the existing ACL entries, use the following command. Command Mode Description clear ip access-list counters {<1- Enable Clears the counters of packets that are matched to 99> | <100-199> | <1300-1999> | Global ACL.
Page 269 UMN:CLI User Manual V5824G permit} any address. WORD: access list name any: any destination IP address ipv6 access-list WORD remark Writes comments for the named ACL. LINE LINE: access list entry comments up to 100 characters Add entries to the list by repeating the command for different IPv6 addresses.
Page 270 UMN:CLI User Manual V5824G Sample Configuration This is an example of displaying the configured ACL entries. SWITCH(config)# show ip access-list Standard IP access list 5 permit 10.55.10.0, wildcard bits 0.0.0.255 deny 10.55.1.0, wildcard bits 0.0.0.255 Extended IP access list 100 permit ip 10.55.10.0 0.0.0.255 10.55.193.0 0.0.0.255...
Page 271 UMN:CLI User Manual V5824G 7.22 sFlow Monitoring sflow (sampled folw) is a real-time packet sampling method. sflow analyzes end-to-end and network flow traffic characteristics in Ethernet network, as well as collects MIB information to monitor the device. In other words, in order to process the Flow by hardware, it operates only by sampling method in consideration of a lot of data amount and processing overhead.
Page 272 UMN:CLI User Manual V5824G packet can be set. To set or delete the size of sFlow header, use the following command. Command Mode Description sflow port port-number max- Sets value of maximum header size in a range of <16- header-size <16-256>...
Page 273 UMN:CLI User Manual V5824G To set or delete Receiver’s index, use the following command. Command Mode Description sflow port port-number receiver- Sets Receiver;s index in a range of <1-65535>. index <1-65535> Global Deletes Receiver’s index and restores default value. sflow...
Page 274 UMN:CLI User Manual V5824G If Receiver’s Collect-IP is default value (0.0.0.0), the sflow packet that uses this Receiver cannot be sent to Collector. To set or delete the Collect-port of corresponding Receiver, use the following command. Command Mode Description collect-port <1-65535>...
Page 275 UMN:CLI User Manual V5824G 8 System Main Functions Virtual Local Area Network (VLAN) The first step in setting up your bridging network is to define VLAN on your switch. VLAN is a bridged network that is logically segmented by customer or function. Each VLAN contains a group of ports called VLAN members.
Page 276: Fig. 8.1 Port-Based Vlan
UMN:CLI User Manual V5824G 8.1.1 Port-based VLAN The simplest implicit mapping rule is known as port-based VLAN. A frame is assigned to a VLAN based solely on the switch port on which the frame arrives. In the example depicted in Fig.
Page 277 UMN:CLI User Manual V5824G 8.1.1.1 Creating VLAN To configure VLAN on user’s network, use the following command. Command Mode Description Creates new VLAN by assigning VLAN ID: vlan create VLANS Bridge VLANS: VLAN ID (1-4094, multiple entries possible) The variable VLANS is a particular set of bridged interfaces. Frames are bridged only among interfaces in the same VLAN.
Page 278 UMN:CLI User Manual V5824G SWITCH(bridge)# 8.1.1.4 Deleting VLAN To delete VLAN, use the following command. Command Mode Description no vlan VLANS Bridge Deletes VLAN, enter the VLAN ID to be deleted. When you delete a VLAN, all ports must be removed from the VLAN; the VLAN must be empty.
Page 279: Fig. 8.2 Subnet-Based Vlan
8.1.3 MAC-based VLAN The V5824G can assign a frame to a VLAN based on the source MAC address in the received frames. Using this, all frames emitted by a given end station will be assigned to the same VLAN, regardless of the port on which the frame arrives. This is useful for mobility application.
Page 280 UMN:CLI User Manual V5824G To configure subnet-based VLAN, use the following command. Command Mode Description vlan subnet A.B.C.D/M VLANS Configures subnet based VLAN. Bridge ipv6 vlan subnet X:X::X:X/M VLANS: VLAN ID (1-4094) VLANS To clear subnet-based VLAN configuration, use the following command.
Page 281: Tab. 8.1 Advantages And Disadvantages Of Tagged Vlan
UMN:CLI User Manual V5824G Tab. 8.1 Advantages and Disadvantages of Tagged VLAN Mapping Frames to VLAN From the perspective the VLAN-aware devices, the distinguishing characteristic of a VLAN is the means used to map a given frame to that VLAN. In the case of tagged frame, the mapping is simple –...
Page 282: Fig. 8.3 Example Of Qinq Configuration
Fig. 8.3 Example of QinQ Configuration If QinQ is configured on the V5824G, it transmits packets adding another Tag to original Tag. Customer A group and customer B group can guarantee security because telecommunication is done between each VLANs at Double Tagging part.
Page 283 UMN:CLI User Manual V5824G Port which connected with Service Provider is Uplink port (internal), and which connected with customer is Access port (external). Tunnel Port By tunnel port we mean a LAN port that is configured to offer 802.1Q-tunneling support. A tunnel port is always connected to the end customer, and the input traffic to a tunnel port is always 802.1Q tagged traffic.
Page 284 UMN:CLI User Manual V5824G Command Mode Description Configures 1:1 VLAN mapping for UNI port and vlan dot1q-tunnel ingress translates C-VLAN tag of incoming Single Inner Tagged mapping PORTS c-vid <1-4094> (SIT) packets to S-VLAN tag. trans-s-vid <1-4094> PORTS: UNI port number...
Page 285 UMN:CLI User Manual V5824G 8.1.9.3 One-to-Two VLAN Mapping between S-VID and C-VID To configure one-to-two VLAN mapping and translation, use the following command. Command Mode Description Configures 1:2 VLAN mapping for NNI port and translates incoming Single Outer Tagged (SOT) packet...
Page 286 UMN:CLI User Manual V5824G 4094> Double Tagged (DT) packets to S-VLAN tag. vlan dot1q-tunnel egress Configures 2:1 VLAN mapping for UNI port and mapping PORTS s-vid <1-4094> removes S-VLAN tag from outgoing Double Tagged c-vid <1-4094> same-c-vid (DT) packet with the given S-VLAN and C-VLAN tags.
Page 287 If Egress port is Access port (Access port is configured as Untagged), remove SPVLAN. If egress port is uplink port, transmit as it is. Step 4 The V5824G switch has 0x8100 TPID value as default and other values are used as hexadecimal number. 8.1.9.7...
Page 288 UMN:CLI User Manual V5824G 8.1.9.8 Inner Tag Configuration To put the configured C-VLAN tag in the inner tag field of incoming untagged packet on a port, use the following command. Command Mode Description vlan dot1q-tunnel ingress push Puts the configured C-VLAN tag in the inner tag field of c-vid PORTS <1-4094>...
Page 289 8.1.10.2 Shared VLAN This chapter is only for Layer 2 switch operation. The V5824G is Layer 3 switch, but it can be used for Layer 2 also. Because there is no routing information in Layer 2 switch, each VLAN cannot communicate. Especially, the uplink port should receive packets from all VLANs.
Page 290: Fig. 8.5 Outgoing Packets Under Layer 2 Shared Vlan Environment
UMN:CLI User Manual V5824G Outer Network SWITCH(bridge)# show vlan u: untagged port, t: tagged port ----------------------------------------------------------------- Name( VID| FID) |123456789012345678901234567890123456789012 Uplink Port ----------------------------------------------------------------- default( |u...uuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuu br2( |.u.....u....br3( |..u....u....br4( |...u....u....br5( |..u....u....default SWITCH(bridge)# Fig. 8.5 Outgoing Packets under Layer 2 Shared VLAN Environment As above configuration with untagged packet, if an untagged packet comes into port 1, it is added with tag 1 for PVID 1.
Page 291: Fig. 8.7 Incoming Packets Under Layer 2 Shared Vlan Environment (2)
Incoming Packets under Layer 2 Shared VLAN Environment (2) In conclusion, to use the V5824G as Layer 2 switch, user should add the uplink port to all VLANs and create new VLAN including all ports. If the communication between each VLAN is needed, FID should be same.
Page 292 UMN:CLI User Manual V5824G SWITCH(bridge)# vlan del br3 3 SWITCH(bridge)# exit SWITCH(config)# interface br3 SWITCH(interface)# shutdown SWITCH(interface)# exit SWITCH(config)# bridge SWITCH(bridge)# no vlan br3 SWITCH(bridge)# show vlan u: untagged port, t: tagged port ----------------------------------------------------------------- Name( VID| FID) |123456789012345678901234567890123456789012 ----------------------------------------------------------------- default( 1) |u...uuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuuu...
Page 293 User Manual V5824G Sample Configuration 5: Configuring Shared VLAN with FID Configure br2, br3, br4 in the V5824G configured Layer 2 environment and port 24 as Uplink port is configured. To transmit untagged packet through Uplink port rightly, follow below configuration.
Page 294: Fig. 8.8 Link Aggregation
Fig. 8.8 Link Aggregation The V5824G supports two kinds of link aggregation as port trunk and LACP. There is a little difference in these two ways. In case of port trunking, it is quite troublesome to set the configuration manually and the rate to adjust to the network environment changes when connecting to the switch using logical port.
Page 295 | srcmac} aggregation group. (default: srcdstmac) It is possible to input 0 to 7 to the trunk group ID because the V5824G supports 8 logical aggregated ports, and the group ID of port trunk and the aggregator number of LACP cannot coexist.
Page 296 Therefore, the V5824G is configured to decide the way of packet route in order to distribute (or forward) packets to the member port effectively when packets enter. It is...
Page 297 V5824G route. dstip is destination IP address and dstmac means destination MAC address. For the V5824G, a source destination MAC address is basically used to decide packet route. After configuring an LACP aggregator, you should configure the distribution mode. The following is the command for configuring the distribution mode of the LACP aggregator.
Page 298 PORTS Bridge port for LACP. 8.2.2.6 BPDU Transmission Rate Member port transmits BPDU with its information. For the V5824G, it is possible to configure the BPDU transmission rate, use the following command. Command Mode Description Configures BPDU transmission rate: lacp port timeout PORTS {short | PORTS: select the port number.
Page 299 UMN:CLI User Manual V5824G To clear BPDU transmission rate, use the following command (clear means long timeout). Command Mode Description Clears BPDU transmission rate of configured member no lacp port timeout PORTS Bridge port, select the port number. 8.2.2.7 Administrational Key Member port of LACP has key value.
Page 300 UMN:CLI User Manual V5824G show lacp statistics Shows aggregator statistics. To clear LACP statistics information, use the following command. Command Mode Description Enable clear lacp statistic Global Clears the collected statistics. Bridge...
Page 301: Fig. 8.9 Example Of Loop
UMN:CLI User Manual V5824G Spanning Tree Protocol (STP) The local area network (LAN), which is composed of double paths like token ring, has the advantage that it is possible to access in case of disconnection with one path. However there is another problem called a loop when you always use the double paths.
Page 302: Fig. 8.11 Root Switch
UMN:CLI User Manual V5824G Meanwhile, the rapid spanning tree protocol (RSTP) defined in IEEE 802.1w dramatically reduces the time of network convergence on the spanning tree protocol (STP). It is easy and fast to configure new protocol. The IEEE 802.1w also supports backward compatibility with IEEE 802.1d.
Page 303: Fig. 8.12 Designated Switch
UMN:CLI User Manual V5824G A compares the exchanged BPDU to decide the path to link. The critical information to decide path is the path-cost. The path-cost depends on the transmit rate of the LAN interface, and the path with the lower path-cost is selected.
Page 304: Fig. 8.13 Port Priority
UMN:CLI User Manual V5824G 8.3.1.4 Port Priority If the path-costs of two paths are same, decisions are based on port-priorities. In the figure below, suppose that two switches are connected. Since the path-costs of two paths are both 100, their port priorities are compared and the port with smaller port priority is selected to transmit the packet.
Page 305 UMN:CLI User Manual V5824G • Blocking A port that is enabled, however neither a Designated port nor a Root port, will be in the blocking state. A blocking port will not receive or forward data frames, nor will it transmit BPDUs, but instead it will listen to other’s BPDUs to determine if and when the port should consider becoming active in the spanning tree.
Page 306: Fig. 8.15 Alternate Port And Backup Port
UMN:CLI User Manual V5824G 8.3.2 RSTP Operation STP or RSTP is configured on network where Loop can be created. However, RSTP is more rapidly progressed than STP at the stage of reaching to the last topology. This section describes how the RSTP more improved than STP works.
Page 307: Fig. 8.16 Example Of Receiving Low Bpdu
UMN:CLI User Manual V5824G In this case, the switch C transmits BPDU including the root information to the switch B. Thus, SWITCH B configures a port connected to SWITCH C as the new root port. Fig. 8.16 Example of Receiving Low BPDU 8.3.2.3...
Page 308: Fig. 8.18 Network Convergence Of 802.1W (1)
UMN:CLI User Manual V5824G This is a very epochal way of preventing a loop. The matter is that communication is SWITCH D and SWITCH C is blocked. Then, right after the connection, it is possible to transmit BPDU although packets can not be transmitted and received between SWITCH A and the root.
Page 309: Fig. 8.20 Network Convergece Of 802.1W (3)
UMN:CLI User Manual V5824G SWITCH B has only edge-designated port. Edge-designated does not cause loop, so it is defined in 802.1w to be changed to forwarding state. Therefore, SWITCH B does not need to block specific port to the forwarding state of SWITCH A. However since SWITCH C has a port connected to SWITCH D, the port should be in the blocking state.
Page 310: Fig. 8.22 Compatibility With 802.1D (2)
8.3.3 MSTP Operation To operate the network more effectively, the V5824G uses MSTP (Multiple Spanning-Tree Protocol). It constitutes the network with VLAN subdividing logically the existing LAN domain and configures the route by VLAN or VLAN group instead of existing routing protocol.
Page 311: Fig. 8.23 Cst And Ist Of Mstp (1)
UMN:CLI User Manual V5824G starting MSTP, all the switches in CST exchanges BPDU and CST root is decided by comparing their BPDU. The switches that don’t operate with MSTP have Instance 0 so that they can also join BPDU exchanges. The operation of deciding CST Root is called CIST (Common &...
Page 312: Fig. 8.24 Cst And Ist Of Mstp (2)
UMN:CLI User Manual V5824G Fig. 8.24 CST and IST of MSTP (2) In the above situation, if B operates with MSTP, B will send its BPDU to CST root and IST root in order to request itself to be CST root. However, if any BPDU with higher priority...
Page 313 8.3.4 STP Mode First of all, you need to enable STP function. You cannot configure any parameters related to Spanning Tree Protocol without this command. To enable STP function on the V5824G, use the following command. Command Mode Description spanning-tree Bridge Enables STP function.
Page 314: Tab. 8.2 Stp Path-Cost (Short)
UMN:CLI User Manual V5824G Transmit Rate (bps) Path-cost 100M Tab. 8.2 STP Path-cost (short) Transmit Rate (bps) Path-cost 20000000 2000000 100M 200000 20000 2000 Tab. 8.3 RSTP Path-cost (long) To decide the path-cost calculation method, use the following command. Command...
Page 315 UMN:CLI User Manual V5824G Command Mode Description Configures path-cost to configure route: spanning-tree port PORTS cost PORTS: port number. <1-200000000> 1-200000000: the path cost value. Bridge no spanning-tree port PORTS Deletes the configured path-cost, enter the port cost number. 8.3.5.2 Edge Ports Edge ports are defined that the ports are connected to a nonbridging device.
Page 316 UMN:CLI User Manual V5824G priority. It is also possible to configure port priority so that user can configure route manually. To configure the port-priority, use the following command. Command Mode Description Configures port priority. spanning-tree port PORTS port- PORTS: port number priority <0-240>...
Page 317 UMN:CLI User Manual V5824G 8.3.5.7 Displaying Configuration To display the configurations of STP, use the following command. Command Mode Description Enable show spanning-tree Global Shows all configurations of STP Bridge Shows STP information on active interface: show spanning-tree active [detail] detail: detailed STP information (as option).
Page 318 If MSTP is established in the V5824G, decide a MSTP region the switch is going to belong to by configuring the MST configuration ID. Configuration ID contains a region name, revision, and a VLAN map.
Page 319 Deletes the configured revision number. After configuring the configuration ID in the V5824G, you should apply the configuration to the switch. After changing or deleting the configuration, you must apply it to the switch. If not, it does not being reflected into the switch.
Page 320 4096 (default: 32768) Clears the Priority of the switch, enter the no spanning-tree mst <0-64> priority instance number. If you configure a priority of STP or RSTP in the V5824G, you should configure MSTP instance ID number as 0. 8.3.6.4 Path-cost After deciding a root swich, you need to decide to which route you will forward the packet.
Page 321 UMN:CLI User Manual V5824G 8.3.6.6 Displaying Configuration To display the configuration of MSTP, use the following command. Command Mode Description Enable Shows all configurations of a specific MSTP instance: show spanning-tree mst <1-64> Global 1-64: MSTP instance ID number Bridge Shows information of a specific MSTP instance on show spanning-tree mst <1-64>...
Page 322: Fig. 8.25 Example Of Pvstp
UMN:CLI User Manual V5824G 8.3.7 Configuring PVSTP STP and RSPT are designed with one VLAN in the network. If a port becomes blocking state, the physical port itself is blocked. But PVSTP (Per VLAN Spanning Tree Protocol) and PVRSTP (Per VLAN Rapid Spanning Tree Protocol) maintains spanning tree instance for each VLAN in the network.
Page 323 UMN:CLI User Manual V5824G PVSTP is activated after selecting PVSTP mode using spanning-tree mode rapid-pvst command. In PVSTP, you can configure the current VLAN only. If you input VLAN that does not exist, error message is displayed. For the switches in LAN where dual path does not exist, Loop does not generate even though STP function is not configured.
Page 324 UMN:CLI User Manual V5824G 8.3.7.4 Port Priority When all conditions of two routes of switch are same, the last standard to decide a route is port-priority. You can configure port priority and select a route manually. To configure a port priority for specified VLAN, use the following command.
Page 325: Fig. 8.26 Root Guard
UMN:CLI User Manual V5824G 8.3.8 Root Guard The standard STP does not allow the administrator to enforce the position of the root bridge, as any bridge in the network with lower bridge ID will take the role of the root bridge.
Page 326 UMN:CLI User Manual V5824G 8.3.9 Loop Guard An STP loop is created when an STP blocking port in an redundant topology erroneously transitions to the forwarding state. This usually happens because one of the ports in a physically redundant topology no longer receives BPDUs. In this case, the designated port transmits BPDUs, and the non-designated port receives BPDUs.
Page 327 If administrator wants to change network topology to MSTP mode, administrator has to clear the previously detected detected protocol manually. To prevent this, the V5824G provides the clear spanning-tree detected-protocols command. If you enable this command, the switch checks STP protocol packet once again.
Page 328 UMN:CLI User Manual V5824G command. Command Mode Description errdisable recovery interval Sets the interval of error-disable recovery: <30-86400> 30-86400: the recovery interval (default: 300 sec) Bridge errdisable recovery Deleted the con figured time for error-disable recovery interval and returns to the default setting.
Page 329 UMN:CLI User Manual V5824G 8.3.13.1 Hello Time Hello time decides an interval time when a switch transmits BPDU. To configure hello time, use the following command. Command Mode Description Configures hello time to transmit the message in spanning-tree mst hello-time <1- MSTP.
Page 330 UMN:CLI User Manual V5824G time no spanning-tree vlan VLANS Returns to the default value of PVSTP per VLAN. forward-time 8.3.13.3 Max Age Maximum aging time is the number of seconds a switch waits without receiving spanning- tree configuration messages before attempting a reconfiguration.
Page 331 UMN:CLI User Manual V5824G 8.3.13.5 BPDU Filtering BPDU filtering allows you to avoid transmitting on the ports that are connected to an end system. If the BPDU Filter feature is enabled on the port, then incoming BPDUs will be filtered and BPDUs will not be sent out of the port.
Page 332 To prevent this problem, the V5824G provides error-disable recovery function for BPDU guard cause. When an edge port is down for BPDU packet which came from other switch, the port is recovered automatically after configured time.
Page 333: Fig. 8.27 Example Of Layer 2 Network Design In Rstp Environment
UMN:CLI User Manual V5824G 8.3.14 Sample Configuration Backup Route When you design layer 2 network, you must consider backup route for stable STP network. This is to prevent network corruption when just one additional path exits. Fig. 8.27 Example of Layer 2 Network Design in RSTP Environment In ordinary case, data packets go to Root switch A through the blue path.
Page 334: Fig. 8.28 Example Of Layer 2 Network Design In Mstp Environment
UMN:CLI User Manual V5824G MSTP Configuration Fig. 8.28 Example of Layer 2 Network Design in MSTP Environment The following is an example of configuring MSTP in the switch. SWITCH(bridge)# spanning-tree SWITCH(bridge)# spanning-tree mode mst SWITCH(bridge)# spanning-tree mst configuration SWITCH(config-mst)# instance 2 vlan 1-50...
Page 335 LAN like loop topology. That superfluous traffic eventually can result in network fault. It causes superfluous data transmission and network fault. To prevent this, the V5824G provides the loop detecting function. The loop detecting mechanism is as follows:...
Page 336 UMN:CLI User Manual V5824G You can also configure the source MAC address of the loop-detecting packet. Normally the system’s MAC address will be the source MAC address of the loop-detecting packet, but if needed, Locally Administered Address (LAA) can be the address as well.
Page 337: Fig. 8.29 Dhcp Service Structure
UMN:CLI User Manual V5824G Dynamic Host Configuration Protocol (DHCP) Dynamic Host Configuration Protocol (DHCP) is a TCP/IP standard for simplifying the administrative management of IP address configuration by automating address configuration for network clients. The DHCP standard provides for the use of DHCP servers as a way to manage dynamic allocation of IP addresses and other relevant configuration details to DHCP-enabled clients on the network.
Page 338 UMN:CLI User Manual V5824G The V5824G flexibly provides the functions as the DHCP server or DHCP relay agent according to your DHCP configuration. 8.5.1 DHCP Server To activate/deactivate the DHCP function in the system, use the following command. Command Mode...
Page 339 UMN:CLI User Manual V5824G SWITCH(config)# service dhcp SWITCH(config)# ip dhcp pool sample SWITCH(config-dhcp[sample])# network 100.1.1.0/24 SWITCH(config-dhcp[sample])# You can also specify several subnets in a single DHCP pool. 8.5.1.3 Range of IP Address To specify a range of IP addresses that will be assigned to DHCP clients, use the following command.
Page 340 UMN:CLI User Manual V5824G SWITCH(config-dhcp[sample])# 8.5.1.5 IP Lease Time Basically, the DHCP server leases an IP address in the DHCP pool to DHCP clients, which will be automatically returned to the DHCP pool when it is no longer in use or expired by IP lease time.
Page 341 UMN:CLI User Manual V5824G SWITCH(config-dhcp[sample])# If you want to specify a DNS server for all the DHCP pools, use the dns server command. For more information, see Section 6.1.8. 8.5.1.7 Manual Binding To manually assign a static IP address to a DHCP client who has a specified MAC address, use the following command.
Page 342 8.5.1.10 Static Mapping The V5824G provides a static mapping function that enables to assign a static IP address without manually specifying static IP assignment by using a DHCP lease database in the DHCP database agent. To perform a static mapping, use the following command.
Page 343 UMN:CLI User Manual V5824G To set a validation value of how many responses from an IP address for a requested ping or ARP, use the following command. Command Mode Description ip dhcp {arp | ping} packet <0- Sets a validation value of how many responses.
Page 344 IP address. In this case, you can configure the V5824G to prohibit assigning plural IP addresses to a single DHCP client. To prohibit assigning plural IP addresses to a DHCP client, use the following command.
Page 345 UMN:CLI User Manual V5824G =========================================== Message Recieved/Error(0/0) ------------------------------------------- DHCP DISCOVER DHCP REQUEST DHCP DECLINE DHCP RELEASE DHCP INFORM ========================================= Message Sent/Error(0/0) ----------------------------------------- DHCP OFFER DHCP ACK DHCP NAK SWITCH(config)# 8.5.1.17 Setting DHCP Pool Size To limit a size of DHCP pool, use the following command.
Page 346 8.5.2 DHCP Address Allocation with Option 82 The DHCP server provided by the V5824G can assign dynamic IP addresses based on DHCP option 82 information sent by the DHCP relay agent. The information sent via DHCP option 82 will be used to identify which port the DHCP_REQUEST came in on.
Page 347 UMN:CLI User Manual V5824G text STRING}] relay-information remote-id text STRING [circuit-id {hex HEXSTRING | index <0-65535> | text STRING}] To delete specified option 82 information for IP assignment, use the following command. Command Mode Description no relay-information remote-id ip A.B.C.D [circuit-id {hex HEXSTRING | index <0-65535>...
Page 348 8.5.3.1 DHCP Database Agent The V5824G provides a feature that allows to a DHCP server automatically saves a DHCP lease database on a DHCP database agent. The DHCP database agent should be a TFTP server, which stores a DHCP lease data- base as numerous files in the form of leasedb.MAC-ADDRESS, e.g.
Page 349: Fig. 8.30 Example Of Dhcp Relay Agent
UMN:CLI User Manual V5824G [A.B.C.D] offer: IP address being ready to be assigned fixed: manually assigned IP address free: remaining IP address POOL: pool name 8.5.3.3 Deleting DHCP Lease Database To delete a DHCP lease database, use the following command.
Page 350 Deletes a specified packet forwarding address. {A.B.C.D | all} If a DHCP helper address is specified on an interface, the V5824G will enable a DHCP relay agent. You can also specify an organizationally unique identifier (OUI) when configuring a DHCP helper address.
Page 351 UMN:CLI User Manual V5824G 8.5.4.2 Smart Relay Agent Forwarding Normally, a DHCP relay agent forwards DHCP_DISCOVER message to a DHCP server only with a primary IP address on an interface, even if there is more than one IP address on the interface.
Page 352 UMN:CLI User Manual V5824G Command Mode Description Enable clear ip dhcp relay statistics Global Deletes collected DHCP relay statistics. Bridge 8.5.5 DHCP Option This function enables administrators to define DHCP options that are carried in the DHCP communication between DHCP server and client or relay agent. The following indicates the format of the DHCP options field.
Page 353 UMN:CLI User Manual V5824G DHCP Option Format DHCP Server Option DHCP Snooping Option DHCP Option82 Sub-option 8.5.5.1 Entering DHCP Option Mode To enter the DHCP option mode, use the following command. Command Mode Description Enters the DHCP option mode. ip dhcp option format NAME...
Page 354 UMN:CLI User Manual V5824G VALUE DHCP no attr <1-32> Deletes the given attribute. Option The packets can be mapped to the option format string that defined by variable values with special character (%). %FRAME: frame (chassis) number for receiving DHCP packets...
Page 355 UMN:CLI User Manual V5824G [DHCP Option 66] When the DHCP server gives the information of TFTP boot server to DHCP client, DHCP option code is 66. This option is used to identify a TFTP server when the ‘sname’ field in the DHCP header has been used for DHCP options.
Page 356 UMN:CLI User Manual V5824G SWITCH(gpon)# traffic-profile TEST create SWITCH(config-traffic-pf[TEST])# mapper 1 SWITCH(config-traffic-pf[TEST]-mapper[1])# gemport count 1 SWITCH(config-traffic-pf[TEST]-mapper[1])# write memory SWITCH(config-traffic-pf[TEST]-mapper[1])# exit SWITCH(config-traffic-pf[TEST])# mapper 2 SWITCH(config-traffic-pf[TEST]-mapper[2])# gemport count 1 SWITCH(config-traffic-pf[TEST]-mapper[2])# write memory SWITCH(config-traffic-pf[TEST]-mapper[2])# exit SWITCH(config-traffic-pf[TEST])# bridge 1 SWITCH(config-traffic-pf[TEST]-bridge[1])# ani mapper 1 SWITCH(config-traffic-pf[TEST]-bridge[1]-ani[mapper:1])#...
Page 357: Fig. 8.31 Dhcp Option 82 Operation
UMN:CLI User Manual V5824G DHCP Address Exhaustion In general, a DHCP server may be extended to maintain a DHCP lease database with an IP address, hardware address and remote ID. The DHCP server should implement policies that restrict the number of IP addresses to be assigned to a single remote ID.
Page 358 UMN:CLI User Manual V5824G 8.5.6.1 Enabling DHCP Option 82 To enable/disable the DHCP option 82, use the following command. Command Mode Description ip dhcp option82 Enables the system to add the DHCP option 82 field. Global no ip dhcp option82 Disables the system to add the DHCP option 82 field.
Page 359 UMN:CLI User Manual V5824G To delete a specified remote and circuit ID, use the following command. Command Mode Description no system-remote-id no system-remote-id option format Deletes a specified remote and circuit Option 82 no system-circuit-id PORTS [option format] no system-circuit-id port-type physical 8.5.6.3...
Page 360 {normal | option82 | all} 8.5.7 DHCP Snooping For enhanced security, the V5824G provides the DHCP snooping feature. The DHCP snooping filters untrusted DHCP messages and builds/maintains a DHCP snooping binding table. The untrusted DHCP message is a message received from outside the network, and an untrusted interface is an interface configured to receive DHCP messages from outside the network.
Page 361 UMN:CLI User Manual V5824G To enable the DHCP snooping on a VLAN, use the following command Command Mode Description ip dhcp snooping vlan VLANS Enables the DHCP snooping on a specified VLAN. Global no ip dhcp snooping vlan Disables the DHCP snooping on a specified VLAN.
Page 362 UMN:CLI User Manual V5824G Normally, the DHCP rate limit is specified to untrusted interfaces and 15 pps is recommended for a proper value. If, however, you want to set a rate limit for trusted interfaces, keep in mind that trusted interfaces aggregate all DHCP traffic in the switch, and you will need to adjust the rate limit to a higher value.
Page 363 8.5.7.6 Source MAC Address Verification The V5824G can verify that the source MAC address in a DHCP packet that is received on untrusted ports matches the client hardware address in the packet. To enable the source MAC address verification, use the following command.
Page 364 DHCP packets back and forth the V5824G, would be lost. Thus, ARP inspection should be delayed to start during some time so that DHCP snooping table can build entries. If no time given, ARP inspection sees empty snooping table and drop every ARP packet.
Page 365 DHCP option82 is enabled. This allows an enhanced security and efficient IP assignment in the Layer 2 environment with a DHCP option82 field. If DHCP snooping is enabled in the system of V5824G, DHCP packets includes DHCP option82 field by default.
Page 366 UMN:CLI User Manual V5824G Specifies a snooping option format on a port. ip dhcp snooping port PORTS opt-code: DHCP option code opt-code <1-254> format NAME NAME: DHCP option format name Configures a policy against DHCP option belonging to a DHCP message (default: replace)
Page 367 UMN:CLI User Manual V5824G show ip dhcp snooping binding Global Shows DHCP snooping binding entries. show ip dhcp snooping lease- Shows DHCP snooping lease time. time show ip dhcp snooping limit- Shows DHCP snooping configuration or status of rate {config | status} limited entries.
Page 368 UMN:CLI User Manual V5824G 8.5.8.1 Enabling IP Source Guard After configuring DHCP snooping, configure the IP source guard using the provided com- mand. When IP source guard is enabled with this option, IP traffic is filtered based on the source IP address. The switch forwards IP traffic when the source IP address matches an entry in the DHCP snooping binding database or a binding in the IP source binding table.
Page 369 8.5.9 DHCP Client An interface of the V5824G can be configured as a DHCP client, which can obtain an IP address from a DHCP server. The configurable DHCP client functionality allows a DHCP client to use a user-specified client ID, class ID or suggested lease time when requesting an IP address from a DHCP server.
Page 370 8.5.9.7 Forcing Release or Renewal of DHCP Lease The V5824G supports two independent operation: immediate release a DHCP lease for a DHCP client and force DHCP renewal of a lease for a DHCP client. To force a release or renewal of a DHCP release for a DHCP client, use the following command.
Page 371 8.5.10.1 DHCP Packet Filtering For the V5824G, it is possible to block the specific client with MAC address. If the MAC address blocked by administrator requests an IP address, the server does not assign IP. This function is to strength the security of DHCP server.
Page 372: Fig. 8.32 Dhcp Server Packet Filtering
UMN:CLI User Manual V5824G Fig. 8.32 DHCP Server Packet Filtering To enable the DHCP server packet filtering, use the following command. Command Mode Description dhcp-server-filter PORTS Enables the DHCP server packet filtering. Bridge no dhcp-server-filter PORTS Disables the DHCP server packet filtering.
Page 373 UMN:CLI User Manual V5824G Command Mode Description Enable show debugging dhcp Shows the debugging information of DHCP. Global...
Page 374 UMN:CLI User Manual V5824G Dynamic Host Configuration Protocol (DHCP) for IPv6 Dynamic Host Configuration Protocol (DHCP) for IPv6 provides a device with addresses assigned by a DHCP server and other configuration information, which are carried in options. DHCPv6 offers the capability of automatic allocation of reusable network addresses.
Page 375: Tab. 8.4 Dhcpv6 Message Types
UMN:CLI User Manual V5824G DHCPv6 Address Assignment Mechanism DHCP for IPv6 can provide stateful address configuration or stateless configuration settings to IPv6 hosts. IPv6 hosts use several methods to configure addresses: Stateful Mechanism It obtains interface address and configuration information from DHCP server. A site requires tighter control over exact address assignment.
Page 376: Fig. 8.33 Basic Dhcpv6 Message Format
UMN:CLI User Manual V5824G  Message types from client to server - Solicit, Request, Confirm, Renew, Rebind, Release, Decline, Information-request  Message types from server to client - Advertise, Replay, Reconfigure  Message type from relay to relay/server - Relay-forward ...
Page 377: Fig. 8.34 General Shared Relay Message Format
UMN:CLI User Manual V5824G The following figure shows the structure of these kinds of messages. Fig. 8.34 General Shared Relay Message Format The Hop Count field (1-byte) indicates the number of relay agents that have received the message. A receiving relay agent can discard the message if it exceeds a configured maximum hop count.
Page 378: Tab. 8.5 Dhcpv6 Udp Port
UMN:CLI User Manual V5824G The delegating router acts as a DHCP server, and is responding to the prefix request. It is configured with a set of prefixes to be used for assignment to customers at the time of each customer's first connection to the ISP service. The prefix delegation process begins when the requesting router requests configuration information through DHCPv6.
Page 379 UMN:CLI User Manual V5824G There is the four-message exchange handshake for a single interface with one IA_NA and one address for this IA_NA. To obtain an IP address, the DHCP client daemon (dhcpcd6) sends a Solicit message to the link-scoped address (FF02::1:2), which is received by the server and processed. If a free address is available for that client, an Advertise message is created and sent back to the client.
Page 380 UMN:CLI User Manual V5824G To display a DHCPv6 pool configuration, use the following command. Command Mode Description Enable Shows the DHCPv6 address pool information show ipv6 dhcp pool [POOL] Global POOL: DHCPv6 pool name Bridge 8.6.1.2 Domain Name To set a domain name, use the following command.
Page 381 UMN:CLI User Manual V5824G 8.6.1.5 DHCPv6 Options DHCPv6 can be used in two ways. The first way of using DHCPv6 is to grant clients addresses from a pool while also using DHCPv6 to push configuration options. This is called stateful configuration. The other option is to use DHCPv6 combined with SLAAC for addressing, while using DHCPv6 for configuration options.
Page 382 UMN:CLI User Manual V5824G 8.6.1.6 Enabling DHCPv6 Server on Interface After a DHCPv6 address pool is created, you need to apply/enable the specified pool to an interface. To configure DHCPv6 server functionality on an interface, use the following command. Command...
Page 383 8.6.2 DHCPv6 Snooping For enhanced security, the V5824G provides the DHCP snooping feature. The DHCP snooping filters untrusted DHCP messages and maintains a DHCP snooping binding table. An untrusted message is a message received from outside the network, and an untrusted interface is an interface configured to receive DHCP messages from outside the network.
Page 384 UMN:CLI User Manual V5824G You must enable DHCPv6 snooping on the system before enabling DHCPv6 snooping on a VLAN. 8.6.2.2 DHCPv6 Snooping Port State To define a state of a port as trusted or untrusted, use the following command. Command...
Page 385 UMN:CLI User Manual V5824G untrusted interfaces. 8.6.2.5 Specifying DHCPv6 Snooping Binding Entry The DHCPv6 snooping binding table contains a hardware address, IPv6 address, lease time, VLAN ID, and port information that correspond to the valid interfaces of the system. To manually add DHCPv6 snooping binding entry, use the following command.
Page 386 UMN:CLI User Manual V5824G To set a DHCP snooping option for a specific port, use the following command. Command Mode Description Specifies a snooping option format on a port. ipv6 dhcp snooping port PORTS opt-code: DHCPv6 option code opt-code <1-254> format NAME...
Page 387 UMN:CLI User Manual V5824G 8.6.3 DHCPv6 Relay Agent 8.6.3.1 DHCPv6 Relay Agent Destination To specify a destination address to which client messages are forwarded and enable DHCP for IPv6 relay service on the interface, use the following command. Command Mode Description Specifies relay destination address on an interface.
Page 388 UMN:CLI User Manual V5824G specific) A length can be variable according to value or can be fixed. A value contains actual information such an IPv6 address, string, or index, which is inserted into the DHCP packet. Administrators can configure a DHCPv6 option format in DHCPv6 Option mode, which is globally used over the DHCP functions.
Page 389 UMN:CLI User Manual V5824G %FIRMWARE-VERSION: firmware version %PORT-NUM: input port number %IN_IF_IPv6: input interface IPv6 address %ONT-SERIAL: ONT serial number 8.6.4.3 Deleting DHCPv6 Option Format To delete a specified DHCPv6 option format, use the following command. Command Mode Description no ipv6 dhcp option format Global Deletes the given DHCPv6 option format.
Page 390 UMN:CLI User Manual V5824G Generic Attribute Registration Protocol (GARP) Generic Attribute Registration Protocol (GARP) is an industry-standard protocol described in IEEE 802.1D and IEEE 802.1Q. Both GARP VLAN Registration Protocol (GVRP) and Multicast Registration Protocol (GMRP) are one of the GARP applications that provide a generic framework so bridges could register and deregister attribute values, such as VLAN identifiers and multicast group membership.
Page 391 UMN:CLI User Manual V5824G GVRP implemented with LACP for the V5848G has the following issue, so you should keep in mind that, before configuring GVRP with LACP. • If you try to add a port to the member ports of LACP after it is already enabled by GVRP, all dynamic VLAN information of GVRP port are deleted.
Page 392 UMN:CLI User Manual V5824G 8.7.1 Basic Configuration of GARP 8.7.1.1 GVRP/GMRP Timers If you modify the GARP timer values, it affects the behavior of all GARP applications running on the switch, GVRP as well as GMRP. Both GVRP and GMRP use the same timers of GARP.
Page 393 UMN:CLI User Manual V5824G 8.7.2 GARP VLAN Registration Protocol (GVRP) The switch can exchange VLAN configuration information with other GVRP switches using GVRP feature. It prunes unnecessary broadcast and unknown unicast traffic, and dynamically creates and manages VLANs on switches connected through 802.1Q trunk ports.
Page 394 UMN:CLI User Manual V5824G gvrp applicant non-participant Disables a port to transmit GVRP PDUs. PORTS 8.7.2.4 Displaying GVRP To display the configured GVRP or GVRP statistics, use the following command. Command Mode Description show gvrp [VLANS] Shows the status of all configurations related to GVRP.
Page 395 UMN:CLI User Manual V5824G Enables a copy of all multicast packet forwarding to a gmrp fwdall enable PORTS specific port. Bridge Disables a copy of all multicast packet forwarding to a gmrp fwdall disable PORTS specific port. 8.7.3.3 GMRP Registration Mode There are three types of the GMRP registration modes as shown below: •...
Page 396 UMN:CLI User Manual V5824G Command Mode Description Shows the status of all configurations related to GMRP. Enable show gmrp [VLANS] VLANS: VLAN ID (1-4094) Global Bridge show gmrp statistics PORTS Shows the collected GMRP statistics To clear GMRP statistics, use the following command.
Page 397: Fig. 8.36 Vrrp Operation
VRRP routers to prevent network failure caused by one dedicated router. You can configure maximum 255 VRRP routers in VRRP group of V5824G. First of all, decide which router plays a roll as Master Virtual Router. The other routers will be Backup Virtual Routers.
Page 398 UMN:CLI User Manual V5824G 8.8.1 Configuring VRRP To configure the V5824G as device in Virtual Router, use the following command on Global Configuration mode. Then you can configure VRRP by opening VRRP Configuration mode. Command Mode Description router vrrp INTERFACE GROUP- Configures Virtual Router (VRRP Group).
Page 399 UMN:CLI User Manual V5824G be higher precedence. If a problem occurs on Master Router and there are more than two routers, one of them is selected as new Master Router according to their precedence. To configure Priority of Virtual Router or delete the configuration, use the following commands.
Page 400 3.620 sec [1] associate address : 10.0.0.5 By default, Priority of the V5824G is configured as “100”. Therefore, unless you configure specific Priority, this switch becomes Master Router because a device, which has lower IP address, has higher precedence.
Page 401 Master Router cannot be recognized, the communication would be impossible. For the V5824G, you can configure Master Router to be changed by giving lower Priority to Master Router when the link of Master Router is disconnected. This function is VRRP...
Page 402: Fig. 8.37 Vrrp Track
UMN:CLI User Manual V5824G Fig. 8.37 VRRP Track To configure VRRP Track, use the following command. Command Mode Description track interface INTERFACE Enables the interface tracking and decreases the VRRP priority <1-254> VRRP priority as the track results. To release VRRP Track configuration, use the following command.
Page 403 UMN:CLI User Manual V5824G 8.8.1.5 Authentication Password If anyone knows Group ID and Associated IP address, he can configure another device as a Virtual Router. To prevent this, user needs to configure a password, named authentication password that can be used only in Virtual Router user configured.
Page 404 UMN:CLI User Manual V5824G 8.8.2 VRRP Monitoring and Management You can view all kinds of statistics and database recorded in IP routing table. The information can be used to enhance system utility and solve problem in case of trouble. You can check network connection and data routes through the transmission.
Page 405 UMN:CLI User Manual V5824G 8.8.2.3 VRRP Debug To enable VRRP debugging, use the following command. Command Mode Description Enables VRRP debugging. debug vrrp [all] all: all VRRP debugging Enables VRRP debugging. nsm: NSM notifications debugging debug vrrp nsm [interface | bfd]...
Page 406 Egress and ingress can be configured both to be same and to be different. The V5824G can apply the rate limit with 64 Kbps unit for GE port, and support ingress policing and egress shaping. To set a rate limit for ports, use the following command.
Page 407: Fig. 8.38 Rate Limit And Flood Guard
UMN:CLI User Manual V5824G 8.10 Flood Guard Flood guard limits number of packets, how many packets can be transmitted, in configured bandwidth, whereas Rate limit controls packets through configuring width of bandwidth, which packets pass through. This function prevents receiving packets more than configured amount without enlarging bandwidth.
Page 408 UMN:CLI User Manual V5824G To disable the flooding of multicast and unicast packets to an interface, use the following command. Command Mode Description port flood-block PORTS bcast Blocks Broadcast forwarding to the port. Bridge port flood-block PORTS dlf Blocks DLF forwarding to the port.
Page 409 A packet flooding occurs unexpectedly when a large number of broadcast or multicast packets are received on a port, which may cause unnecessary network congestion. V5824G provides the system flood guard function that controls traffic for a port by given threshold. If the number of incoming packets exceeds the threshold, the system generates a syslog message/SNMP trap or discards those packets.
Page 410 A packet storm may occur unexpectly if a large number of invalid packets are received on a port. It can cause the network to slow down or to time out. The V5824G provides the traffic guard function that controls the port’s traffic by threshold value. The threshold (%) rate is based on the number of packets per second (pps).
Page 411 Disable the attack guard function. multicast | unicast} [PORTS] If the high threshold is set to 85% for 1G Ethernet port, the V5824G monitors the number of configured packet type. The number of those packets exceeds 1,264,880 pps (=14,880,95 * 0.85), the shutdown/trap action will be performed.
Page 412 The threshold (%) rate of Error Guard is based on 64-byte frame size calculation. If the high threshold is set to 5% for 10G Ethernet port, the V5824G monitors the error packet count. The number of those packets exceeds 744,048 pps (=14,880,952 * 0.05), the shutdown/trap action will be performed.
Page 413 The V5824G provides the PPS control function that controls traffic for a port by given threshold. If the number of incoming packets exceeds the threshold, the system generates a syslog message and SNMP trap.
Page 414 The packet range that can be capable to accept is from 64 bytes to 1518 bytes. Therefore, packets not between these ranges will not be taken. However, the V5824G can accept jumbo frame larger than 1518 bytes through user’s configuration.
Page 415 UMN:CLI User Manual V5824G Bridge...
Page 416 UMN:CLI User Manual V5824G 8.14 Configuring PPPoE Tag Option Format PPP over Ethernet (PPPoE) provides the ability to connect a network of hosts over a simple bridging access device to a remote Access Concentrator (AC). By using PPPoE with vendor tag, switch in the host network can include the additional information about itself before sending PPPoE packets to the AC.
Page 417 UMN:CLI User Manual V5824G with special character (%). %FRAME: frame (chassis) number for receiving PPPoE packets %SLOT: slot number for receiving PPPoE packets %PORT: port number for receiving PPPoE packets %VID: VLAN ID tagged on packets %IN VID: inner VLAN ID %BANDWIDTH: bandwidth %MGMT IP: MGMT interface’s IP address...
Page 418 UMN:CLI User Manual V5824G 8.14.2.2 Configuring PPPoE Vendor Tag Filtering The PPPoE filter will decide the way that PPPoE packet is forwarded. Each filter has a unique filter ID. This ID is also used as a priority. The filter having the highest priority will be chosen.
Page 419 Blocking Packet Forwarding RFC 2644 recommends that system blocks broadcast packet of same network bandwidth with interface of equipment, namely direct broadcast packet. Hereby, V5824G is supposed to block direct broadcast packet by default setting. However, you can enable or disable it in V5824G.
Page 420: Tab. 8.5 Priority-Pgid Mapping
UMN:CLI User Manual V5824G Command Mode Description no ip forward dlf Enables blocking DLF packets. (default) Global ip forward dlf Disables blocking DLF packets. 8.18 Enhanced Transmission Selection Enhanced Transmission Selection (ETS) is defined in the 802.1Qaz standard. It specifies enhancement of transmission selection to address the bandwidth allocation issues among various traffic classes in order to maximize bandwidth utilization.
Page 421 UMN:CLI User Manual V5824G command. Command Mode Description ets port PORTS enable Enables ETS function to the specified port. Global ets port PORTS disable Disables ETS function from the specified port. (default) To configure a priority group ID with bandwidth allocation, use the following command.
Page 422: Fig. 9.1 The V5824G With Igmp Snooping
Fig. 9.1 shows an example of the IP multicast network. In this case, the V5824G is configured only with IGMP snooping (L2 multicast forwarding feature) in the Layer 2 network.
Page 423: Fig. 9.2 The V5824G With Pim-Sm
Fig. 9.2 The V5824G with PIM-SM If more than one port are on the same Layer 2 interface and the V5824G is a border router of the Layer 3 network, you should configure the V5824G with both IGMP snooping and PIM-SM together.
Page 424 UMN:CLI User Manual V5824G IP Multicast to Ethernet/FDDI MAC Address Mapping All IP multicast frames use MAC layer addresses beginning with the 24-bit prefix of 0x0100.5Exx.xxxx. With only half of these MAC addresses available for use by IP Multicast, 23 bits of MAC address space are available for mapping L3 IP multicast addresses into L2 MAC addresses.
Page 425 Using IGMP, hosts express an interest in a certain multicast group, and routers maintain the multicast group membership database by collecting the interests from the hosts. The V5824G supports IGMP version 1, 2, and 3 each defined in RFC 1112, 2236, and 3376. 9.1.1...
Page 426 UMN:CLI User Manual V5824G 9.1.1.1 IGMP Version By default, the V5824G runs IGMP version 3. To change the IGMP protocol version on a current interface, use the following command. Command Mode Description Sets an IGMP version on a current interface.
Page 427 UMN:CLI User Manual V5824G 9.1.1.4 IGMP Debug To enable debugging of all IGMP or a specific feature of IGMP, use the following command. Command Mode Description Enables IGMP debugging. all: all IGMP decode: IGMP decoding debug igmp {all | decode |...
Page 428 UMN:CLI User Manual V5824G • Version 2 membership report This is used by hosts to join a group (unsolicited) or to respond to membership que- ries (solicited). • Leave group This is used to explicitly leave a group. IGMPv2 Operation An IGMP querier is the only router that sends membership query messages for a network segment.
Page 429 UMN:CLI User Manual V5824G To configure the IGMP static join, use the following command. Command Mode Description Configures the IGMP static join. ip igmp static-group A.B.C.D vlan VLAN port A.B.C.D: IGMP group address PORT [reporter A.B.C.D] VLANS: VLAN ID (1-4094)
Page 430 UMN:CLI User Manual V5824G To display the IGMP static join group list, use the following command. Command Mode Description show ip igmp static-group Shows the IGMP static join group list. show ip igmp static-group list Enable 1-99: IP standard access list...
Page 431 V5824G IGMP Startup Query Interval The V5824G needs to acquire information of its multicast members for the updated membership when it becomes the querier on the specified IGMP interface. For the updated membership, V5824G sends general query messages as a querier. You can specify the interval to send this query messages as many as the configured QRV value.
Page 432 UMN:CLI User Manual V5824G Upon receiving a leave message, a querier then sends out a group-specific (IGMPv2) or group-source-specific query (IGMPv3) message to determine if there is still any host interested in receiving the traffic. If there is no reply, the querier stops forwarding the multicast traffic.
Page 433 Each record specifies the information of the filter mode and source list. The report can contain multiple group records, allowing reporting of full current state using fewer packets. The V5824G runs IGMPv3 by default, and there are no additional IGMPv3 parameters you need to configure. IGMPv3 snooping features are provided. IGMPv3 Messages...
Page 434 UMN:CLI User Manual V5824G port may also contain multiple group records. Each group record has one of the fol- lowing information: – Current-state: This indicates the current filter mode including/excluding the speci- fied multicast address. – Filter-mode-change: This indicates a change from the current filter mode to the other mode.
Page 435 9.2.1 Multicast Forwarding Database Internally, the V5824G forwards the multicast traffic referred to the multicast forwarding database (McFDB). The McFDB maintains multicast forwarding entries collected from multicast protocols and features, such as PIM, IGMP, etc.
Page 436 UMN:CLI User Manual V5824G no ip mcfdb aging-time Deletes the specified aging time for forwarding entries. To specify the maximum number of forwarding entries on the McFDB, use the following command. Command Mode Description Specifies the maximum number of forwarding entries ip mcfdb aging-limit on the McFDB.
Page 437: Fig. 9.4 Igmp Snooping
By maintaining this multicast forwarding table, the V5824G dynamically forward multicast traffic only to those interfaces that want to receive it as nominal unicast forwarding does.
Page 438 UMN:CLI User Manual V5824G To disable IGMP snooping, use the following command. Command Mode Description no ip igmp snooping Disables IGMP snooping globally. Global no ip igmp snooping vlan Disables IGMP snooping on a VLAN. VLANS VLANS: VLAN ID (1-4094) 9.2.2.2...
Page 439 UMN:CLI User Manual V5824G ip igmp snooping vlan VLANS Configures the robustness variable on a VLAN. robustness-variable <1-7> VLANS: VLAN ID (1-4094) To delete a specified robustness variable, use the following command. Command Mode Description igmp snooping robustness-variable Global Deletes a specified robustness variable.
Page 440 UMN:CLI User Manual V5824G IGMP Snooping Query Interval An IGMP snooping querier periodically sends general query messages to trigger membership report messages from a host that wants to receive IP multicast traffic. To specify an interval to send general query messages, use the following command.
Page 441 UMN:CLI User Manual V5824G Command Mode Description no ip igmp snooping querier max-response-time Global Deletes a specified maximum query response time. igmp snooping vlan VLANS querier max-response- time Displaying IGMP Snooping Querier Information To display IGMP querier information and configured parameters, use the following command.
Page 442 UMN:CLI User Manual V5824G 9.2.3.3 IGMP Snooping Immediate Leave Normally, an IGMP snooping querier sends a group-specific or group-source-specific query message upon receipt of a leave message from a host. If you want to set a leave latency as 0 (zero), you can omit the querying procedure. When the querying procedure is omitted, the switch immediately removes the entry from the forwarding table for that VLAN, and informs the multicast router.
Page 443 The hosts received the group- specific queries send the report messages according to their IGMP membership status. However, V5824G is enabled as IGMP snooping S-Query report agency, the group- specific queries are not sent downstream. When the switch receives a group-specific query, the switch terminates the query and sends an IGMP report if there is a receiver for the group.
Page 444 UMN:CLI User Manual V5824G 9.2.3.6 Explicit Host Tracking Explicit host tracking is one of the important IGMP snooping features. It has the ability to build the explicit tracking database by collecting the host information via the membership reports sent by hosts. This database is used for the immediate leave for IGMPv2 hosts, the immediate block for IGMPv3 hosts, and IGMP statistics collection.
Page 445 UMN:CLI User Manual V5824G tracking s-query-suppression sends a group specific query to hosts after one sends a leave message on a VLAN. (default) To display the explicit tracking information, use the following command. Command Mode Description show ip igmp snooping explicit- Shows the explicit host tracking information globally.
Page 446 UMN:CLI User Manual V5824G Command Mode Description no ip igmp snooping mrouter port {PORTS | cpu} Global Deletes a specified multicast router port. igmp snooping vlan VLANS mrouter port {PORTS | cpu} Multicast Router Port Learning Multicast router ports are added to the forwarding table for every Layer 2 multicast entry.
Page 447 UMN:CLI User Manual V5824G through router ports. Displaying Multicast Router Port To display a current multicast router port for IGMP snooping, use the following command. Command Mode Description Shows a current multicast router port for IGMP show ip igmp snooping mrouter snooping globally.
Page 448 UMN:CLI User Manual V5824G When TCN is received, the switch where an IGMP snooping is running will flood multicast traffic to all ports until receiving two general queries, or during two general query intervals by default. You can also configure the switch to stop multicast flooding according to a specified query count or query interval.
Page 449 UMN:CLI User Manual V5824G Command Mode Description Enables IGMP snooping Topology Change Notification debug igmp snooping tcn (TCN) debugging. Enable Disables IGMP snooping Topology Change Notification no debug igmp snooping tcn (TCN) debugging. 9.2.4 IGMPv3 Snooping Immediate Block IGMPv3 immediate block feature allows a host to block sources with the block latency, 0 (zero) by referring to the explicit tracking database.
Page 450 UMN:CLI User Manual V5824G To display the collected IGMP snooping statistics, use the following command. Command Mode Description Enable show ip igmp snooping stats Shows the collected IGMP snooping statistics. Global port {PORTS | cpu} PORTS: port number Bridge To clear the collected IGMP snooping statistics, use the following command.
Page 451 MVR also provides the fast convergence for topology changes in the Ethernet ring-based service provider network with STP and IGMP snooping TCN, guaranteeing stable multicast services. MVR implemented for the V5824G has the following restrictions, so you must keep in mind those, before configuring MVR. •...
Page 452 UMN:CLI User Manual V5824G 9.2.6.3 Source/Receiver Port You need to specify the source and receiver ports for MVR. The followings are the definitions for the ports. • Source Port This is connected to multicast routers or sources as an uplink port, which receives and sends the multicast traffic.
Page 453 UMN:CLI User Manual V5824G 9.2.7 IGMP Filtering and Throttling IGMP filtering and throttling control the distribution of multicast services on each port. IGMP filtering controls which multicast groups a host on a port can join by associating an IGMP profile that contains one or more IGMP groups and specifies whether an access to the group is permitted or denied with a port.
Page 454 • IGMP filtering only supports IGMPv2. By the following command, V5824G can permit or deny the IGMP packets by referring to its DHCP snooping binding table. This reference enables the system to permit IGMP messages only when the source IP address and MAC address of host have identified from the DHCP snooping binding table.
Page 455 UMN:CLI User Manual V5824G 9.2.7.2 IGMP Throttling You can configure the maximum number of multicast groups that a host on a port can join. To specify the maximum number of IGMP groups per port, use the following command. Command Mode...
Page 456 IGMP Proxy enables this L3 switch to issue IGMP host messages on behalf of hosts that the switch discovered through standard IGMP interfaces. The switch acts as a proxy for its hosts. The V5824G supports IGMPv2. IGMP Proxy can only work in a simple tree topology; where traffic is distributed to explicit upstream and downstream.
Page 457 Configuring Upstream Interface Mode When a single downstream interface is specified with multiple upstream interfaces, V5824G supports two methods of IGMP proxy operation that are priority mode and load balancing mode. You can choose the way how to handle multicast traffic going to upstream interfaces.
Page 458 IF flapping, which can increase the stability and quality for multicast service. Using this function, the V5824G gives a discredit to a IGMP IF for every flapping time, and then the IF is not selected as a forwarding path until its credit is regenerated.
Page 459 UMN:CLI User Manual V5824G To set the current IGMP IF credit as the default (100), use the following command. Command Mode Description clear ip igmp if flap discredit Enable Restores the current credit to a default value (100). [NAME] Global NAME: IGMP interface name 9.2.8.5...
Page 460 UMN:CLI User Manual V5824G 9.2.8.7 Querying with Real Querirer’s Source IP Address To send hosts queries with the actual source IP addresses, not with mroute-proxy interface’s IP address, use the following command. Command Mode Description ip igmp mroute-proxy querier Sets IGMP queries with original query’s source IP...
Page 461 Disables a configured IGMP state limit per interface. 9.2.10 Multicast-Source Trust Port Any port of V5824G can be specified as a multicast-source trust port which is registered in the multicast forwarding table. Only multicast-source trust ports can be received the multicast traffic.
Page 462 Multicast Routing 9.3.1.1 Enabling Multicast Routing By default, multicast routing is disabled. To configure the V5824G to forward multicast traffic via Layer 3 network, you need to enable multicast routing. To enable Layer 3 multicast routing, use the following command.
Page 463: Fig. 9.5 Multicast Equal Cost Multipath (Ecmp)
UMN:CLI User Manual V5824G 9.3.1.2 TTL Threshold You can specify a TTL threshold for multicast packets on an interface. This configuration is used on a border router which limits a multicast domain, since only the multicast packets with a TTL value greater than a TTL specified on an interface are forwarded to outgoing interfaces.
Page 464 UMN:CLI User Manual V5824G ECMP load splitting has two options for next hop decision: • srcip selects next hop based on source address. • srcgrpip selects next hop based on both source and group address. To enable ECMP load splitting, use the following command.
Page 465 UMN:CLI User Manual V5824G 9.3.1.5 Displaying MRIB Entry To display the multicast routing entries in the MRIB, use the following command. Command Mode Description Shows all multicast routing entries. show ip mroute [summary] summary: abbreviated display Shows the multicast routing entries for a given PIM show ip mroute {dense | sparse} mode.
Page 466 UMN:CLI User Manual V5824G 9.3.1.6 Displaying MRIB Statistics To display the multicast routing statistics entries in the MRIB, use the following command. Command Mode Description show ip mroute count Shows all multicast routing statistics entries. Shows the multicast routing statistics entries for a show ip mroute {dense | sparse} given PIM mode.
Page 467 Prune messages are then used to prevent from propagating to routers with no group members. Both PIM protocols use the same message formats. The V5824G currently support PIM-SM only. PIM Messages The followings are simple descriptions of PIM control messages: •...
Page 468 UMN:CLI User Manual V5824G • Register-stop When receiving the register-stop message, routers stop sending register messages. These messages are sent from the RP to the sender of the register messages. • Join/prune Join/prune messages are sent by routers towards upstream sources or RPs. Join messages are sent to receive the multicast traffic by building shared trees (RPT) or source trees (SPT).
Page 469 UMN:CLI User Manual V5824G election is held. In PIM-DM, however, the DR only plays a role of the alternative IGMP querier using this DR election when multiple routers exist with IGMPv1, since IGMPv1 does not define any IGMP querier election process.
Page 470 UMN:CLI User Manual V5824G Enables PIM group filtering to block PIM join/prune ip pim group-filter {<1-99> | messages using a specified access list. WORD} 1-99: IP standard access list WORD: access list name Interface Enables PIM group filtering to block PIM join/prune ip pim group-filter range {<1-...
Page 471 VIF flapping, which can increase the stability and quality for multicast service. Using this function, the V5824G gives a discredit to a VIF for every flapping time, and then the VIF is not selected as a forwarding path until its credit is regenerated.
Page 472 UMN:CLI User Manual V5824G To set the current credit as the default (100), use the following command. Command Mode Description clear ip pim vif flap discredit [vif Enable Sets the current credit as the default (100). <0-127>] Global 0-127: VIF index 9.3.2.8...
Page 473: Fig. 9.6 Rendezvous Point Tree
UMN:CLI User Manual V5824G 9.3.3 PIM-SM Rendezvous Point Tree (RPT) PIM-SM mainly uses a shared tree to deliver multicast traffic, called the RP tree (RPT). As its name implies, it relies on a core router called the Rendezvous Point (RP) that receives all multicast traffic from the sources and forwards that traffic to the receivers.
Page 474: Fig. 9.7 Shortest Path Tree
UMN:CLI User Manual V5824G and multicast traffic is sent via that distribution tree, the DR sends the prune message with (*, G) state toward the RP to prune the existing shared tree to receive the traffic. SPT is established based on the existing unicast routing table by performing the RPF check.
Page 475 Static RP To elect the RP among candidate RPs in the shared tree, the V5824G supports the BSR mechanism (see Section 9.3.3.2) and static RP, and also supports the simultaneous use of those.
Page 476 UMN:CLI User Manual V5824G To configure an interface to send the candidate RP advertisement to the BSR, use the following command. Command Mode Description Configures an interface to send the candidate RP advertisement. ip pim rp-candidate INTERFACE INTERFACE: interface name [group-list <1-99>] [interval <1-...
Page 477 UMN:CLI User Manual V5824G 9.3.3.2 Bootstrap Router The bootstrap router (BSR) mechanism is one way that a multicast router can learn the set of group-to-RP mappings required in order to function. All multicast routers in PIM-SM domain can be potentially the bootstrap router (BSR);...
Page 478 UMN:CLI User Manual V5824G 9.3.3.3 Source Registration Multicast sources do not need any join process to send multicast traffic, since the DR of the multicast sources just receives the traffic from the sources without any information. Even in the RPT, RPs must receive multicast traffic from the sources via the shortest path while receivers receive multicast traffic via the shared tree.
Page 479 UMN:CLI User Manual V5824G no ip pim register-suppression Deletes the specified the registration suppression time. Register Message Filtering You can enable the router to filter multicast sources specified in access lists at the RP. This filtering will permit/deny the PIM register messages for the specified sources. If unauthorized sources try to register with the RP, the RP then drops the PIM register messages from those sources.
Page 480 The Cisco’s routers, however, validate the checksum for the whole register message including the data portion, resulting in incompatibility with the standard-based routers. To guarantee compatibility with the Cisco’s routers, the V5824G provides the checksum option, which expands the range of the checksum calculation.
Page 481 The rebooted router then is able to quickly recover from the reboot. Some older Cisco’s routers cannot recognize the GenID option in the hello messages, so the V5824G provides the exclude-GenID option for the compatibility with the Cisco’s routers.
Page 482 UMN:CLI User Manual V5824G 9.3.3.6 PIM Debug To enable PIM-SM debugging, use the following command. Command Mode Description Enables PIM-SM debugging. all: all PIM-SM debugging events: events debugging debug pim {all | events | nexthop nexthop: nexthop communications debugging | mib | mfc | nsm | state | packet...
Page 483 If V5824G receives IGMPv1 or IGMPv2 report message from the host when static SSM mapping is enabled, it handles as if it receives IGMPv3 report...
Page 484 User Manual V5824G Static SSM mapping implemented for the V5824G has the following restriction, so you must keep it in mind, before configuring static SSM mapping. IGMP proxy and static SSM mapping cannot be enabled together. It means that SSM mapping cannot be enabled when the system is already configured with upstream or downstream interface with IGMP proxy feature.
Page 485 UMN:CLI User Manual V5824G 10 IPv6 Multicast Multicast is the communication for a single or many source hosts to a specific group of destination hosts, which is interested in the information from the sources. This type of packet transmission can be deployed for a number of applications with more efficient utilization of the network infrastructure.
Page 486 UMN:CLI User Manual V5824G 10.1 Multicast Listener Discovery (MLD) The Multicast Listener Discovery (MLD) protocol is the multicast group management protocol for IPv6 and is used to exchange group information between multicast hosts and routers. Multicast Listener Discovery (MLD) enables the IPv6 router to discover the presence of...
Page 487: Fig. 10.1 Mldv1 Message Format
UMN:CLI User Manual V5824G MLD has two versions that are supported by hosts and routers. MLD messages for each version are Query and Report types. Additionally, Done message is added to the version1. The followings are the simple definitions of each version: •...
Page 488: Fig. 10.2 Mldv2 Query Message Format
UMN:CLI User Manual V5824G • MLD Version 2 MLDv2 is based on IGMP3. MLD v2 message consists of two messages as Listener Query and Listener Report. In addition, Query messages are classified into three types as General, Multicast-address-specific, Multicast-address-source-specific Query.
Page 489 UMN:CLI User Manual V5824G 10.1.1 MLD Version By default, this system runs MLDv2. To change the MLD protocol version on a current interface, use the following command. Command Mode Description Sets MLD version on a current interface. ipv6 mld version <1-2>...
Page 490 UMN:CLI User Manual V5824G tib: MLD Tree Information Base (TIB) no debug mld {all | decode | Disables MLD debugging. encode | events | fsm | tib} Tree Information Base (TIB) is the collection of state at a router that has been created by receiving MLD messages from local hosts.
Page 491 UMN:CLI User Manual V5824G Command Mode Description no ipv6 mld query-interval Deletes a specified general query interval. 10.1.6.2 MLD Query Response Time In MLD version 1 and 2, membership query messages include the maximum query response time field. This field specifies the maximum time allowed before sending a responding report.
Page 492 UMN:CLI User Manual V5824G To specify the number of sending Multicast-address-specific or Multicast-address-source- specific query messages, use the following command. Command Mode Description ipv6 last-member-query- Specifies a last member query count. count <2-7> 2-7: last member query count value (default: 2)
Page 493 UMN:CLI User Manual V5824G Command Mode Description show ipv6 mld groups detail show ipv6 mld groups X:X::X:X [detail] show ipv6 mld groups IFNAME Shows the multicast groups with receivers directly [detail] Enable connected to the router and learned through MLD.
Page 494 UMN:CLI User Manual V5824G 10.2 IPv6 Multicast Functions This system provides various multicast functions including Layer 2 multicast forwarding, which allow you to achieve the fully effective and flexible multicast deployment. 10.2.1 Multicast Forwarding Database Internally, this system forwards the multicast traffic referred to the multicast forwarding database (McFDB).
Page 495 UMN:CLI User Manual V5824G To specify the maximum number of forwarding entries on the McFDB, use the following command. Command Mode Description Specifies the maximum number of forwarding entries ipv6 mcfdb aging-limit on the McFDB. <256-65535> 256-65535: number of entries (default: 5000)
Page 496 UMN:CLI User Manual V5824G 10.2.2 MLD Snooping Basic Layer 2 switches normally flood multicast traffic within the broadcast domain, since it has no entry in the Layer 2 forwarding table for the destination address. Multicast addresses never appear as source addresses, therefore the switch cannot dynamically learn multicast addresses.
Page 497 UMN:CLI User Manual V5824G Command Mode Description ipv6 mld snooping version <1- Configures the MLD snooping version globally. Interface 2> 1-2: MLD snooping version (default: 2) To delete the specified static MLD snooping version, use the following command. Command Mode...
Page 498 UMN:CLI User Manual V5824G Command Mode Description ipv6 mld snooping querier Interface Enables the MLD snooping querier. To disable the MLD snooping querier, use the following command. Command Mode Description no ipv6 mld snooping querier Interface Disables the MLD snooping querier.
Page 499 UMN:CLI User Manual V5824G The MLD snooping fast-leave function is available only in the MLDv1 host. In fast-leave processing, when there is more than one MLD host belonging to a group, and a certain host sends a done message, the MLD snooping querier will remove all host entries from the forwarding table.
Page 500 UMN:CLI User Manual V5824G group is enough. When the MLD snooping report suppression is enabled, a switch suppresses membership reports from hosts other than the first one, allowing the switch to forward only one membership report in response to a general query from a multicast router.
Page 501 UMN:CLI User Manual V5824G mrouter IFNAME Global globally. IFNAME: VLAN interface name 10.2.4 MLD State Limit You can use MLD State Limit feature to limit the number of MLD states that can be joined to a router on a per-interface or global level. The MLD group limits feature provides protection against DoS (denial of service) attacks caused by MLD packets.
Page 502 UMN:CLI User Manual V5824G To disable the MLD snooping debugging, use the following command. Command Mode Description no debug mld snooping {all | decode | encode | fsm | tib | Enable Disables MLD snooping debugging. events} To display the debugging information, use the following command.
Page 503 UMN:CLI User Manual V5824G 10.3 IPv6 Multicast Routing When receivers join a certain group, multicast routers must deliver the multicast traffic corresponding to the group to those receivers. To determine the appropriate forwarding path and to replicate the multicast traffic to multiple destinations, multicast routing protocols are needed.
Page 504: Fig. 10.3 Multicast Equal Cost Multipath (Ecmp)
UMN:CLI User Manual V5824G The purpose of this feature is load splitting for forwarding multicast traffic over ECMP, allowing more efficient use of network resources and preventing traffic congestion. With this feature, multicast traffic is split across the equal cost multipath based on either its source address or its source and group address.
Page 505 UMN:CLI User Manual V5824G [THRESHOLD] routing entries. LIMIT: number of routing entries (1-214783647) THRESHOLD: warning threshold (1-214783647) no ipv6 multicast route-limit Deletes a specified limit. The warning threshold must not exceed the maximum number of multicast routing entries. 10.3.1.4 Displaying MRIB Entry To display the multicast routing entries in the MRIB, use the following command.
Page 506 UMN:CLI User Manual V5824G Command Mode Description clear ipv6 mroute * [pim sparse- Deletes all MFC and TIB entries in the PIM-SM mode] protocol. Enable Global Deletes a specified MFC and TIB entry in the PIM-SM clear ipv6 mroute X:X::X:X protocol.
Page 507 UMN:CLI User Manual V5824G Command Mode Description Enable Shows the multicast forwarding entries in the MFIB. show ipv6 mfib [vlan VID | group Global VID: VLAN ID (1-4094) X:X::X:X] [detail] Bridge X:X::X:X: IPv6 multicast group address 10.3.1.8 MRIB Debug To debug events in the MRIB, use the following command.
Page 508: Fig. 10.4 Rendezvous Point Tree
UMN:CLI User Manual V5824G adds the interface on which the join messages are received to the outgoing interface (OIF) list with the join state, and sends the messages to the interface toward the RP. If the RP has receivers interested in the group, the RP must receive the multicast traffic from the source of that group via the SPT to deliver the traffic to those receiver.
Page 509: Fig. 10.5 Shortest Path Tree
UMN:CLI User Manual V5824G Shortest Path Tree (SPT) When the number of receivers increases, a shared tree may not be entirely efficient, so PIM-SM also provides the option to switch to receive multicast traffic on a shortest path tree (SPT). When this option is enabled, on receiving the first multicast packet from the RP in response to the PIM join message, the switchover to the SPT then occurs.
Page 510 UMN:CLI User Manual V5824G ing PIM routers and to determine which router will be the DR for each subnet. • Register Register messages are sent by the DR to the RP when a multicast packet needs to be transmitted on the RPT. These messages may contain the encapsulated multicast traffic.
Page 511 UMN:CLI User Manual V5824G When there are multiple routers on the same subnet, one of them must be selected to act as the DR. To elect the DR, each PIM router examines PIM hello messages received from other neighbor PIM routers and compares its DR priority in those from neighbors. The router with the highest priority then is elected as the DR.
Page 512 UMN:CLI User Manual V5824G 65535> 1-65535: hello message interval (unit: second) Deletes a specified interval to send PIM hello no ipv6 pim hello-interval messages. PIM hello messages may contain the hold time value in the option fields, which specifies how long the information is valid. The default hold time is 3.5 times of the interval of the PIM hello messages.
Page 513 UMN:CLI User Manual V5824G show ipv6 pim local-members Shows PIMv6 local membership information. [IFNAME] IFNAME: interface name show ipv6 pim mroute X:X::X:X Shows the multicast routing table. [X:X::X:X] X:X::X:X: multicast group or source address show ipv6 mroute Shows the summary of multicast routing table entry [summary] information.
Page 514 UMN:CLI User Manual V5824G 10.3.3 PIMv6 Rendezvous Point (RP) In a shared tree, Rendezvous Point (RP) is a means for receivers to discover the sources that send to a particular multicast group. It is responsible to receive all multicast traffic from the sources and to forward that traffic to the receivers.
Page 515 UMN:CLI User Manual V5824G Command Mode Description 16383>] [priority <0-255>] IFNAME: interface name WORD: IPv6 access list name 1-16383: advertising interval (unit: second) 0-255: priority value Deletes specified multicast groups which an interface no ipv6 pim rp-candidate can service. IFNAME group-list WORD...
Page 516 UMN:CLI User Manual V5824G 10.3.4 Bootstrap Router The bootstrap router (BSR) mechanism is one way that a multicast router can learn the set of group-to-RP mappings required in order to function. All multicast routers in PIM-SM domain can be potentially the bootstrap router (BSR);...
Page 517 UMN:CLI User Manual V5824G 10.3.5 Source Registration Multicast sources do not need any join process to send multicast traffic, since the DR of the multicast sources just receives the traffic from the sources without any information. Even in the RPT, RPs must receive multicast traffic from the sources via the shortest path while receivers receive multicast traffic via the shared tree.
Page 518 UMN:CLI User Manual V5824G Command Mode Description ipv6 pim register-suppression Specifies the registration suppression time. <1-65535> 1-65535: null-register message interval (unit: second) Global ipv6 register- Deletes the specified the registration suppression time. suppression 10.3.5.3 Register Message Filtering You can enable the router to filter multicast sources specified in access lists at the RP.
Page 519 UMN:CLI User Manual V5824G Command Mode Description X:X::X:X: source IP address IFNAME: interface name Deletes a specified source IPv6 address of register no ipv6 pim register-source messages.
Page 520 UMN:CLI User Manual V5824G 10.3.6 IPv6 SPT Switchover PIM-SM provides the switching option to deliver multicast traffic on the SPT. Multicasting over the SPT may be more efficient than multicasting over the RPT, since it can substantially reduce the network latency.
Page 521 UMN:CLI User Manual V5824G 10.3.7 IPv6 Cisco’s Router Interoperability 10.3.7.1 Register Message Checksum When a multicast source registers with the RP, the DR encapsulates the multicast traffic from the source in the PIM register message, and unicasts it to the RP. The standard PIM...
Page 522 UMN:CLI User Manual V5824G 10.3.7.3 Excluding GenID Option PIM hello messages may contain the generation ID (GenID) in the option fields, which is a random value for the interface on which the hello message is sent. The GenID is regenerated whenever PIM forwarding is started or restarted on the interface. It enables neighbors to quickly detect a router’s reboot and thus to synchronize RP-set information...
Page 523 UMN:CLI User Manual V5824G 10.3.8 IPv6 PIM Debug To enable IPv6 PIM-SM debugging, use the following command. Command Mode Description Enables PIM-SM debugging. all: all PIM-SM debugging events: events debugging debug ipv6 pim sparse-mode nexthop: nexthop communications debugging {all | events | nexthop | mib | mfc...
Page 524 UMN:CLI User Manual V5824G Command Mode Description timer assert [at] no debug ipv6 pim sparse-mode timer bsr [bst | crp] no debug ipv6 pim sparse-mode timer hello [ht | nlt | tht] no debug ipv6 pim sparse-mode timer joinprune [jt | et | ppt | kat |...
Page 525 If this system receives MLDv1 report message from the host when static SSM mapping is enabled, it handles as if it receives MLDv2 report messages. Static SSM mapping implemented for the V5824G has the following restriction, so you must keep it in mind, before configuring static SSM mapping.
Page 526 UMN:CLI User Manual V5824G follow. • Allows all network information if there is no defined policy in prefix list. • Rejects specified network information unless policy applied to network in defined in prefix list. • Distinguishes each policy with the assigned number and applies policy which has the lowest number when there is more than one policy applied to one network.
Page 527 UMN:CLI User Manual V5824G Command Mode Description no ipv6 prefix-list WORD {deny | 3ffe::/16 <network/length>) any: any IPv6 prefix to match. (same as “::0/0 permit} { X:X::X:X/M | any} le 128”) ge: minimum prefix length to be matched no ipv6 prefix-list WORD description...
Page 528 UMN:CLI User Manual V5824G With sequenced prefix lists, each prefix list entry is associated with a sequence number. Sequence numbers can be used to insert a prefix list into the middle of an existing list or to delete an existing statement in the list.
Page 529 UMN:CLI User Manual V5824G 11 IP Routing Protocol 11.1 Border Gateway Protocol (BGP) The Border Gateway Protocol (BGP) is an exterior gateway protocol (EGP) that is used to exchange routing information among routers in different autonomous systems (AS). BGP routing information includes the complete route to each destination. BGP uses the routing information to maintain a database of network reachability information, which it exchanges with other BGP systems.
Page 530 The ZebOS type requires no specific configuration for sending out BGP community and extended community attributes. ZebOS type is the default for the V5824G. To select configuration type of the BGP router, use the following command.
Page 531 UMN:CLI User Manual V5824G 11.1.1.2 Enabling BGP Routing Step 1 To define an AS number and open Router Configuration mode, use the following command. Command Mode Description Assigns AS number to configure BGP routing and router bgp <1-65535> Global opens Router Configuration mode.
Page 532 UMN:CLI User Manual V5824G A.B.C.D: router ID address no bgp router-id [A.B.C.D] Deletes a configured router ID. To display Router ID, use the following command. Command Mode Description show router-id Enable Shows Router-ID 11.1.1.5 Registering BGP Neighbor To assign IP address or peer group name for BGP Neighboring router within specified AS number, use the following command.
Page 533 Deletes the configured strict RFC1771 setting. 11.1.2 Advanced Configuration The V5824G is possibly configured for the additional configurations related BGP. 11.1.2.1 Summary of Path Aggregation combines the characteristics of several different routes and advertises a single route. In the example of 2 routes information of 172.16.0.0/24 and 172.16.1.0/24, the as-set parameter creates an aggregate entry advertising the path for a single route of 172.16.0.0/23, consisting of all elements contained in all paths being summarized.
Page 534 UMN:CLI User Manual V5824G Command Mode Description aggregate-address A.B.C.D/M Summarizes the information of routes and transmits it as-set [summary-only] to the other routers. Router A.B.C.D/M: network address aggregate-address A.B.C.D/M summary-only: transmits IP prefix only. summary-only [as-set] as-set: transmits one AS-path information.
Page 535 BGP routers. Then, the MED is considered when selecting the best path among many alternative paths. The V5824G, MED comparison is configured only among all paths from the autonomous system. You can configure the comparison of MEDs among all BGP routers within autonomous system.
Page 536 When comparing similar routes from more than 2 peers the BGP router does not consider router ID of the routes. It selects the first received route. The V5824G uses router ID in the selection process; similar routes are compared and the route with lowest router ID is selected as the best route.
Page 537 V5824G routerid The V5824G is basically configured not to compare MED values of the path information that exchanges between the Confederation Peers. But just in case, it can be configured to compare MED values of the path information that exchanges between Confederation Peers.
Page 538 UMN:CLI User Manual V5824G To configure graceful restart specifically for BGP, use the following command. Command Mode Description bgp graceful-restart Sets to use graceful restart in BGP protocol. Router no bgp graceful-restart Disables the restart time value setting. Therefore, 2 options of the time can be used to speed up routing convergence by its peer in case that BGP doesn’t come back after a restart.
Page 539 11.1.4 IP Address Family The V5824G recently supports both unicast and multicast as address-family. Use the following command in choosing either unicast or multicast to enter the Address-Family Configuration mode allowing configuration of address-family specific parameters. Use the following command in order to enable address family routing process, which open you in Address-Family Configuration mode.
Page 540 11.1.5.1 Default Route The V5824G can be configured that particular neighboring BGP routers or peer group is assigned by default route as 0.0.0.0. Then, neighboring router or member of peer group is able to receive the information of default route from the designated routers.
Page 541 11.1.5.4 Force Shutdown The V5824G supports the feature to force to shutdown any active session for the specified BGP router or peer group and to delete the routing data between them. It shutdowns all connections and deletes the received path information from neighboring router or peer group.
Page 542 UMN:CLI User Manual V5824G Command Mode Description Shutdowns any active session for the specified router neighbor {NEIGHBOR-IP | or peer group and delete all related routing data. WORD} shutdown NEIGHBOR-IP: neighbor IP address Router WORD: peer group name or neighbor tag...
Page 543 11.1.5.9 Updates for Inbound Soft Reconfiguration Soft-reconfiguration may be used in lieu of BGP route refresh capability. The V5824G can store updates for inbound soft reconfiguration. When a soft reset (inbound) is done on this neighbor, the locally stored routes are reprocessed according to the inbound policy.
Page 544 UMN:CLI User Manual V5824G IPv6 AF A.B.C.D: neighbor IPv4 address X:X::X:X: neighbor IPv6 address WORD: peer group name or neighbor tag no neighbor {A.B.C.D | X:X::X:X | Disables the exchange of information with a BGP WORD} activate neighboring router or peer group.
Page 545 UMN:CLI User Manual V5824G ip community-list standard WORD Creates a standard community list. {deny | permit} [LINE] community-list expanded Creates a expanded community list. WORD {deny | permit} LINE Add entries to the list by repeating the command for different IP addresses.
Page 546 UMN:CLI User Manual V5824G extcommunity-list expanded Creates a expanded extcommunity-list. WORD {deny | permit} LINE WORD: extended community list name To delete an entry in the extended community list, use the following command. Command Mode Description no ip extcommunity-list {<1-99>...
Page 547 UMN:CLI User Manual V5824G community {AA:NN | internet | local-AS | no- advertise | no-export} [exact-match] Shows the list of all bgp communities’ show ip bgp community-info information 11.1.7 BGP Timers BGP keepalive timer indicates that the frequency with which the keepalive messages are sent to the neighbors.
Page 548 UMN:CLI User Manual V5824G 11.1.9 Route Flap Dampening The route dampening minimizes the instability caused by route flapping. A penalty is added for every flap in a flapping route. As soon as the total penalty reaches the “suppress” limit the advertisement of the route is suppressed. This penalty is decayed according to the configured “half time”...
Page 549 Because the internal connections are re-established newly after resetting, the route information of the connected routers is restored by default. You can reset the session in specified condition. The V5824G is available with several parameters to reset the BGP connections.
Page 550 UMN:CLI User Manual V5824G Command Mode Description clear bgp * in [prefix-filter] Resets the session of specific group under * condition. in: clears incoming advertised routes. clear ip bgp * in [prefix-filter] prefix-filter: pushes out prefix-list ORF and does clear bgp view WORD * in inbound soft reconfiguration.
Page 551 UMN:CLI User Manual V5824G {unicast | multicast} in [prefix- filter] clear bgp <1-4294967295> out Resets the session of BGP neighboring routers which clear ip bgp <1-4294967295> out are configured a particular AC number. clear ipv6 bgp <1-4294967295> 1-65535: AS number out: clears outgoing advertised routes.
Page 552 UMN:CLI User Manual V5824G clear ip bgp A.B.C.D out A.B.C.D: route IP address out: clears outgoing advertised routes. clear ipv6 bgp X:X::X:X out unicast | multicast: address family modifier clear ip bgp A.B.C.D {unicast | multicast} out clear bgp {A.B.C.D | X:X::X:X }...
Page 553 UMN:CLI User Manual V5824G multicast} out clear bgp external soft [in | out] clear ip bgp external soft [in | Updates the route information only while the session is out] possible of BGP router connected to external AS. Apply clear ipv6 bgp external soft [in | the route either incoming or outgoing routes.
Page 554 UMN:CLI User Manual V5824G Command Mode Description clear ip bgp {unicast | multicast} dampening Resets the sessions of BGP route flap dampening with specified IP address. clear ip bgp {unicast | multicast} dampening {A.B.C.D | A.B.C.D/M} Enable Global clear ipv6...
Page 555 UMN:CLI User Manual V5824G {deny | permit } LINE filtering. WORD: regular expression AS path access list name deny: specify packets to reject permit: specify packets to forward LINE: a regular expression to match the BGP AS paths no ip as-path access-list WORD Deletes the configured BGP AS path access list.
Page 556 UMN:CLI User Manual V5824G 11.1.12 BGP Filtering through Prefix Lists Preﬁx lists were introduced in BGP because they are efﬁcient forms of ﬁltering. Because they search on the preﬁx of the address as deﬁned by the administrator, the lookup is very fast.
Page 557 UMN:CLI User Manual V5824G ip prefix-list WORD description Writes comments for the prefix list. LINE LINE: prefix list description up to 80 characters By default, the sequence numbers are automatically generated in increments of 5. To delete the entries in the prefix list, use the following command.
Page 558 UMN:CLI User Manual V5824G To delete the configured policy of prefix list, use the following command. Command Mode Description no ip prefix-list WORD seq <1-4294967295> {deny | permit} {A.B.C.D/M | any} Deletes the entry in an IPv4 prefix list no ip prefix-list WORD seq <1-4294967295>...
Page 559 UMN:CLI User Manual V5824G To clear the existing prefix list entries, use the following command. Command Mode Description clear ip prefix-list [WORD] Enable Clears the counters of all IPv4 prefix lists or an IPv4 clear prefix-list WORD Global prefix with a specified name and prefix.
Page 560 UMN:CLI User Manual V5824G utilization and enable BGP troubleshooting functions to solve network problems. To see the configurations involved in BGP routing protocol, use the following command. Command Mode Description show ip bgp summary Enable Shows the summarized network status of BGP...
Page 561 UMN:CLI User Manual V5824G Global Shows routes matching path regular show bgp [{unicast | multicast}] expression. regexp LINE LINE: a regular expression to match the AS path. Shows route matcing an AS path quoted regular show bgp [{unicast | multicast}] expression.
Page 562 UMN:CLI User Manual V5824G multicast}] prefix-list WORD show [{unicast Shows route matching an AS path quoted regular multicast}] quote-regexp WORD expression. show [{unicast Shows routes matching path regular multicast}] regexp LINE expression. show [{unicast Shows routes that match the specified route map.
Page 563 UMN:CLI User Manual V5824G show ipv6 [{unicast multicast}] dampening Shows IPv6 BGP dampening parameters. parameters show ipv6 [{unicast Shows routes that match a regular expression filter list. multicast}] filter-list WORD show ipv6 [{unicast Shows routes with inconsistent AS paths. multicast}] inconsistent-as...
Page 564 Enables logging of BGP neighbor status changes Router no bgp log-neighbor-changes Disables logging of BGP neighbor status changes The V5824G logs the following events using the above command. • BGP notification received • Erroneous BGP update received •...
Page 565 Global process 0-65535: process ID number If there is changing router ID while OSPF process is operating, configuration must be processed from the first. In this case, the V5824G can change only router ID without changing related configurations. Command Mode...
Page 566 11.2.2 ABR Type Configuration The V5824G supports 4 types of OSPF ABR which are Cisco type ABR (RFC 3509), IBM type ABR (RFC 3509), IETF Draft type and RFC 2328 type. To configure ABR type of OSPF, use the following command.
Page 567 UMN:CLI User Manual V5824G Use the following command to configure compatibility with RFC 1583. Command Mode Description compatible rfc1583 Supports compatibility with RFC 1583. Router no compatible rfc1583 Disables configured compatibility. 11.2.4 OSPF Interface OSPF configuration can be changed. Users are not required to alter all of these parameters, but some interface parameters must be consistent across all routers in an attached network.
Page 568 UMN:CLI User Manual V5824G command. Command Mode Description ip ospf authentication-key KEY ip ospf authentication-key KEY {first | second} [active] Configures the authentication which is based on text Interface encoding. ip ospf A.B.C.D authentication- KEY: maximum 16 alphanumeric characters key KEY ip ospf A.B.C.D authentication-...
Page 569 UMN:CLI User Manual V5824G To configure an interface cost for OSPF, use the following command. Command Mode Description ip ospf cost <1-65535> Interface Configures an interface cost for OSPF. ip ospf A.B.C.D cost <1-65535> To delete a configured interface cost for OSPF, use the following command.
Page 570 UMN:CLI User Manual V5824G • Dead Interval If there is no hello packet for the configured time. The router perceives other router is stopped working. Dead interval is configuration of the time interval which perceives other router is stopped operating.
Page 571 UMN:CLI User Manual V5824G ip ospf A.B.C.D transmit-delay 1-65535: interval value (default: 1) <1-65535> no ip ospf transmit-delay Sets a transmit delay to the default value. no ip ospf A.B.C.D transmit- delay 11.2.4.6 OSPF Resynchronization Timeout To set the OSPF resync-timeout interval after which adjacency is reset if out-of-band resynchronization has not occurred, use the following command.
Page 572 UMN:CLI User Manual V5824G To configure the switch not to skip the MTU verification in DD process, use the following command. Command Mode Description no ip ospf mtu-ignore Configures the switch not to skip the MTU verification Interface in DD process.
Page 573 UMN:CLI User Manual V5824G ip ospf network {broadcast | non-broadcast | point-to-multipoint [non-broadcast] | point-to- Interface Selects an OSPF network type. point} 11.2.4.10 Disabling OSPF Packet Processing To disable the OSPF packet processing on the specific interface, use the following command.
Page 574 UMN:CLI User Manual V5824G 255>] 11.2.6 OSPF Area Router configuration on OSPF network includes Area configuration with each interface, network. Area has various and special features. It needs to be configured pertinently to make effective management on whole of OSPF network.
Page 575 Blocking the Transmission of Routing Information Between Area ABR transmits routing information between Areas. In case of not to transmit router information to other area, the V5824G can configure it as a blocking. First of all, use the access-list or prefix-list command to assign LIST-NAME. And use the following command to block the routing information on LIST-NAME.
Page 576 UMN:CLI User Manual V5824G area {<0-4294967295> | A.B.C.D} nssa Router Configures NSSA. The following options are configurable for NSSA: • default-information-originate This option is configuration for allowing default path of Type-7 in NSSA. It means routing path without routing information will use the interface which is allowed in de- fault type-7 path.
Page 577 UMN:CLI User Manual V5824G information-originate metric-type <1-2> area {<0-4294967295> | A.B.C.D} nssa no- redistribution area {<0-4294967295> | A.B.C.D} nssa no- redistribution default-information-originate [metric <0-16777214>] area {<0-4294967295> | A.B.C.D} nssa no- redistribution default-information-originate metric-type <1-2> area {<0-4294967295> | A.B.C.D} nssa no-...
Page 578 UMN:CLI User Manual V5824G no area {<0-4294967295> | A.B.C.D} nssa default-information- originate no-redistribution no-summary [translator-role {candidate | never | always}] no area {<0-4294967295> | A.B.C.D} nssa default-information- originate no-redistribution translator-role {candidate | never | always} no area {<0-4294967295> | A.B.C.D} nssa no-redistribution [default-information-originate] no area {<0-4294967295>...
Page 579 UMN:CLI User Manual V5824G 11.2.6.5 Area Range In case of OSPF belongs to several Areas, Area routing information can be shown in one routing path. Like as above, various routing information of Area can be combined and summarized to transmit to outside.
Page 580 UMN:CLI User Manual V5824G 11.2.6.7 Stub Area Stub Area is that ABR is connected to Backbone Area. If it is assigned as Stub Area, ABR will notify the default path to Stub Area and other routing protocol information will not transmit to Stub Area.
Page 581 UMN:CLI User Manual V5824G User can configure Authentication for security, Authentication key for password, and time period for Hello-interval, Retransmit-interval, Transmit-delay and Dead-interval to operate virtual link. The following items describe 7 configurations for virtual link: • Authentication This is configuration for security of routing information. message-digest uses MD5 to encode for authentication, null means not using any of authentication.
Page 582 UMN:CLI User Manual V5824G A.B.C.D authentication-key KEY area {<0-4294967295> | A.B.C.D} virtual-link A.B.C.D message-digest-key KEY md5 KEY area {<0-4294967295> | A.B.C.D} virtual-link A.B.C.D hello-interval <1-65535> area {<0-4294967295> | A.B.C.D} virtual-link A.B.C.D retransmit-interval <1-65535> area {<0-4294967295> | A.B.C.D} virtual-link A.B.C.D dead-interval <1-65535>...
Page 583 UMN:CLI User Manual V5824G Command Mode Description auto-cost reference-bandwidth Configures default metric in the unit of Mbps. Router <1-4294967> (default: 100) To delete the configuration, use the following command. Command Mode Description auto-cost reference- Router Deletes the configuration. bandwidth 11.2.8 Graceful Restart Support You need to restart OSPF protocol processor when there is network problem.
Page 584 <1- 1800> 11.2.9 Opaque-LSA Support Opaque-LSA is LSA Type-9, Type-10, Type-11. The V5824G enables Opaque-LSA as a default but it can be released by user. To release the enabled Opaque-LSA management, use the following command. Command...
Page 585 UMN:CLI User Manual V5824G default-information originate Router Configures the default route. The following items are detail options for the Default Route configuration. • metric Configures Metric value of the default route. • metric-type metric-type is for type of finding the path. metric-type 1 uses internal path cost with external path cost as a cost, metric type 2 always uses external cost value only.
Page 586 UMN:CLI User Manual V5824G no default-information originate no default-information originate metric <0-16777214> no default-information originate metric-type <1-2> Router Deletes the configuration. no default-information originate always no default-information originate route-map MAP-NAME 11.2.11 ECMP Route Hashing Equal-Cost Multi-Path (ECMP) is a forwarding mechanism that routes packets along multiple paths of equal cost.
Page 587 UMN:CLI User Manual V5824G 11.2.13 External Routes to OSPF Network If other routing protocol redistribute into OSPF network, these routes become OSPF external routes. Other routing protocols are RIP and BGP. And static route, connected route, kernel route are also external route. Those routing information can distribute into OSPF network.
Page 588 UMN:CLI User Manual V5824G metric and OSPF routing protocol, use the default matric command to assign metric about redistribute route. To configure the default metric, use the following command. Command Mode Description default-metric <0-16777214> Router Configures the default metric. To delete the default metric, use the following command.
Page 589 [A.B.C.D] 11.2.17 Blocking Routing Information The V5824G can classify and restrict the routing information. To configure this function, sort the specific routing information in access-list first, and block the routing information in access-list. To block the routing information in access-list, use the following command.
Page 590 UMN:CLI User Manual V5824G Command Mode Description distribute-list ACCESS-LIST out {bgp | connected | kernel | rip | Router Blocks the routing information in access-list static} To release the configuration, use the following command. Command Mode Description no distribute-list ACCESS-LIST...
Page 591 UMN:CLI User Manual V5824G You can check network connection and data routes through the transmission. 11.2.19.1 Displaying OSPF Protocol Information You can verify the information of OSPF protocol. To display the information about OSPF protocol, use the following command. Command...
Page 592 UMN:CLI User Manual V5824G originate show ip ospf [<0-65535>] database {asbr- summary | external | network | router | summary nssa-externalㅣopaque-link opaque-area | opaque-as} A.B.C.D adv-router A.B.C.D To display the interface information of OSPF, use the following command. Command Mode...
Page 593 11.2.19.4 Limiting Number of Database The V5824G can limit the Number of Database to process in OSPF. For example, if a router connected with many of routers, it carries overload to process the database. Therefore, Limiting the Number of Database reduces the overload on system.
Page 594 UMN:CLI User Manual V5824G Command Mode Description overflow database Assigns the number of LSA for internal route. <1-4294967294> [hard | soft] Router overflow database external Assigns the number of LSA for external route. <0-2147483647> <0-65535> When there is an overflow, hard configuration will stop the process, and soft configuration will send a caution message.
Page 595 UMN:CLI User Manual V5824G debug ospf nsm [interface | Enables debugging between OSPF process and NSM redistribute] (Network Services Module). debug ospf packet [hello | dd | ls-ack | ls-request | ls-update | Enables debugging about each packet. send | recv | detail] debug ospf route [ase | ia | Enables debugging about OSPF routing.
Page 596 UMN:CLI User Manual V5824G 11.3 Open Shortest Path First Version 3 (OSPFv3) OSPF for IPv6 modifies the existing OSPF for IPv4 to support IPv6. The fundamentals of OSPF for IPv4 remain unchanged. Some changes have been necessary to accommodate the increased address size of IPv6 and the changes in protocol semantics between IPv4 and IPv6.
Page 597 0-4294967295: OSPFv3 area ID 4294967295> A.B.C.D} [{instance-id <0-255> WORD instance-id <0-255> | tag WORD}] 11.3.2 ABR Type Configuration The V5824G supports 3 types of OSPFv3 ABR which are Cisco type ABR (RFC 3509), IBM type ABR (RFC 3509), and standard RFC 2328 type.
Page 598 UMN:CLI User Manual V5824G To configure ABR type of OSPFv3, use the following command. Command Mode Description Selects an ABR type. cisco: cisco type ABR, RFC 3509 (default) abr-type {cisco | ibm | standard} ibm: IBM type ABR, RFC 3509...
Page 599 UMN:CLI User Manual V5824G transmission and retransmission. • Dead Interval If there is no hello packet for the configured time. The router perceives other router is stopped working. Dead interval is configuration of the time interval which perceives other router is stopped operating.
Page 600 UMN:CLI User Manual V5824G 11.3.3.3 OSPFv3 Priority Routers have each role to exchange the information on OSPFv3 network. DR (Designated Router) is one of essential role to get and transmit the route information in the same area. The router having the highest priority becomes DR (Designated Router). If there are routers which have same priority, the highest router ID will be DR.
Page 601 UMN:CLI User Manual V5824G 11.3.4 Reference Bandwidth You can change the reference bandwidth value for the cost on OSPFv3 interfaces. Each interface on which OSPFv3 is enabled has a cost associated with it. The device advertises its interfaces and their costs to OSPFv3 neighbors.
Page 602 UMN:CLI User Manual V5824G command. Command Mode Description no ipv6 ospf neighbor X:X::X:X [instance-id <0- Deletes a configured neighbor router of Interface 255>] NBMA type. 11.3.6 OSPFv3 Area Router configuration on OSPFv3 network includes Area configuration with each interface, network. This area has various and special features. It needs to be configured pertinently to make effective management on whole of OSPFv3 network.
Page 603 UMN:CLI User Manual V5824G To summarize and combine the routing information, use the following command. Command Mode Description area {A.B.C.D | <0-4294967295>} range X:X::X:X /M Configures to use summarized information for assigned Router area {A.B.C.D | <0-4294967295>} path. range X:X::X:X/M {advertise |...
Page 604 UMN:CLI User Manual V5824G User can configure time period for Hello-interval, Retransmit-interval, Transmit-delay and Dead-interval to operate virtual link. The following items describe 4 configurations for virtual link: • Hello-interval OSPFv3 router sends Hello packet to notify existence of itself. Hello-interval is that packet transmission interval.
Page 605 UMN:CLI User Manual V5824G dead-interval | transmit-delay} 11.3.7 Default Metric OSPFv3 finds metric based on interface bandwidth. For example, default metric of T1 link is 64, but default metric of 64K line is 1562. If there are plural lines in the bandwidth, you can view costs to use line by assigning metric to each line.
Page 606 UMN:CLI User Manual V5824G The detail options for default route configuration are classified in 4 as above, and those configurations can be selected more than 2 options without order. The following is explaining options of command: • metric <0-16777214> •...
Page 607 UMN:CLI User Manual V5824G To configure the external route transmission, use the following command. Command Mode Description redistribute { kernel | connected Advertises the external route (connected, kernel, static) | static | bgp} into OSPFv3. redistribute { kernel | connected Specifies redistributing routes from other protocols into | static | bgp } metric <0-...
Page 608 UMN:CLI User Manual V5824G passive-interface all Sets all interfaces as passive. To release the configured passive interface, use the following command. Command Mode Description no passive-interface INTERFACE Router Releases the configured passive interface. no passive-interface all 11.3.11 Summary Routing Information You can use not-advertise option command to block routes that match the specified prefix/length pair.
Page 609 UMN:CLI User Manual V5824G To release the configuration, use the following command. Command Mode Description no timers spf Router Release the configuration. 11.3.13 OSPFv3 Monitoring and Management You can view all kinds of statistics and database recorded in IP routing table. This information can be used to enhance system utility and solve problem in case of trouble.
Page 610 UMN:CLI User Manual V5824G show ipv6 ospf [WORD] neighbor detail To display OSPFv3 paths to OSPF routers, use the following command. Command Mode Description show ipv6 ospf [WORD] topology Enable Shows the OSPFv3 paths to OSPF show ipv6 ospf [WORD] topology area {<0- Global routers.
Page 611 11.3.13.3 Limiting Number of Database The V5824G can limit the Number of Database to process in OSPF. For example, if a router connected with many of routers, it carries overload to process the database. Therefore, Limiting the Number of Database reduces the overload on system.
Page 612 UMN:CLI User Manual V5824G no debug ipv6 ospf events [abr | asbr | os | OSPFv3. router | vlink | nssa] no debug ipv6 ospf ifsm [events | status | timers] no debug ipv6 ospf lsa [flooding | generate |...
Page 613 RIP v2 uses broadcast User Datagram Protocol (UDP) data packets to exchange routing information. The V5824G sends routing information and updates it every 30 seconds. This process is termed advertised. If a router does not receive an update from another router for 180 seconds or more, it marks the routes served by the non-updating router as being unusable.
Page 614 11.4.3 RIP Version Basically, the V5824G supports RIP version 1 and 2. However, you can configure to receive either RIP v1 type packets only or RIP v2 type packets only. To configure RIP version, use the following command. Command...
Page 615 UMN:CLI User Manual V5824G The preceding task controls default RIP version settings. You can override the routers RIP version by configuring a particular interface to behave differently. To control which RIP version an interface sends, perform one of the following tasks after opening Interface Configuration mode.
Page 616 11.4.5 Redistributing Routing Information The V5824G can redistribute the routing information from a source route entry into the RIP tables. For example, you can instruct the router to re-advertise connected, kernel, or static routes as well as other routes established by routing protocol. This capability applies to all the IP-based routing protocols.
Page 617 UMN:CLI User Manual V5824G To delete the configuration for redistributing routing information in another router’s RIP table, use the following command. Command Mode Description redistribute {kernel connected | static | ospf | bgp} redistribute {kernel connected | static | ospf | bgp }...
Page 618 11.4.9.1 Filtering Access List and Prefix List The V5824G switch is able to permit and deny conditions that you can use to filter inbound or outbound routes by access-list or prefix-list. Use the distribute-list command to apply the access list to routes received from or forwarded to a neighbor.
Page 619 UMN:CLI User Manual V5824G To block the route information based on matching access list or prefix list, use the following command. Command Mode Description distribute-list ACCESS-LIST {in | Apply a specific access list or prefix list to incoming or out} [INTERFACE] outgoing RIP route updates on interface in order to block the route.
Page 620 UMN:CLI User Manual V5824G out} <0-16> [INTERFACE] 11.4.10 Maximum Number of RIP Routes You can set the maximum number of RIP routes for using on RIP protocol. To set the maximum number of routes, use the following command. Command Mode Description Sets the maximum number of routes of RIP.
Page 621 If a key chain is not configured, plain text authentication can be performed using string command. The V5824G supports two modes of authentication on an interface for which RIP authentication is enabled: plain text authentication and MD5 authentication. The default authentication in every RIP v2 packet is plain text authentication.
Page 622 UMN:CLI User Manual V5824G To create a name for key chain for the management, use the following command. Command Mode Description key <0-2147483647> Keychain-Key Configures a key identifier for key chain Step 3 To configure RIP authentication, use the following command.
Page 623 Removes a configured period. [<1-65535>] 11.4.15 UDP Buffer Size of RIP RIP protocol exchanges the routing information between routers using UDP packets. The V5824G can be configured theses UDP packets buffer size, use the following command. Command Mode Description recv-buffer size <8196- Sets the UDP Buffer size value for using RIP.
Page 624 UMN:CLI User Manual V5824G Command Mode Description Turns on all debugging options of changed RIP debug rip [all] information. Enables a debugging of RIP event such as packet debug rip events transmit and sending and changed RIP information. Enable debug rip nsm Enables RIP nsm debugging.
Page 625 UMN:CLI User Manual V5824G The multicast IPv6 address used by RIPng is FF02::9. (Remember for RIPv2, it was Class D IPv4 address 224.0.0.9). 11.5.1 Enabling RIPng To enable RIPng, first define the RIPng routing process and then enable RIPng on each interface.
Page 626 X:X::X:X Deletes the neighbor router. INTERFACE You can block the routing information to specific interface by using the passive-interface command. 11.5.4 Adding a Static RIPng Route This feature is provided only by DASAN Network Solutions’ route command creates static...
Page 627 11.5.5 Redistributing Routing Information The V5824G can redistribute the routing information from a source route entry into the RIP tables. For example, you can instruct the router to re-advertise connected, kernel, or static routes as well as other routes established by routing protocol. This capability applies to all the IP-based routing protocols.
Page 628 UMN:CLI User Manual V5824G To set metrics for redistributed routes, use the following command. Command Mode Description Configures the equal metric of all routes transmitted by default-metric <1-16> routing protocol, enter the value. 1-16: default metric value Router Removes the equal metric of all routes transmitted by no default-metric routing protocol.
Page 629 11.5.9.1 Filtering Access List and Prefix List The V5824G is able to permit and deny conditions that you can use to filter inbound or outbound routes by access-list or prefix-list. Use the distribute-list command to apply the access list to routes received from or forwarded to a neighbor.
Page 630 UMN:CLI User Manual V5824G 11.5.9.2 Filtering Route-map To block the RIPng route updates based on matching route-map, use the following command. Command Mode Description Applies a specific route-map to incoming or outgoing RIP route updates on interface in order to block the...
Page 631 UMN:CLI User Manual V5824G Command Mode Description Add an offset to incoming or outgoing metrics to routes offset-list WORD {in | out} <0- learned via RIP. 16> [INTERFACE] WORD: access list name Router 0-16: type number no offset-list WORD {in | out} <0- Removes an offset list.
Page 632 Disables the split horizon mechanism. [poisoned] 11.5.13 UDP Buffer Size of RIP RIP protocol exchanges the routing information between routers using UDP packets. The V5824G can be configured theses UDP packets buffer size, use the following command. Command Mode Description recv-buffer-size <32768-...
Page 633 UMN:CLI User Manual V5824G To apply the sum of metric in the RIB, use the following command. Command Mode Description metric-sum rib apply Selects the metric calculation method of zebos. Router Selects the metric calculation method of zebra. no metric-sum rib apply (default) 11.5.15...
Page 634 UMN:CLI User Manual V5824G send] detail To disable debugging of RIP routing transactions, use the following command. Command Mode Description Turns off all debugging options of changed RIP no debug ipv6 rip [all] information. Disables a debugging of RIP event such as packet no debug ipv6 rip events transmission and RIP information change.
Page 635: Fig. 11.1 Virtual Routing Concept
UMN:CLI User Manual V5824G 11.6 Virtual Routing and Forwarding (VRF) Virtual Routing and Forwarding (VRF) is a feature that enables multiple instances of routing table within the single router at the same time. Since the routing tables are independent, the private IP address can be used without the confliction. In general it is utilized for VPN service to provide separate routing table for each customer’s network.
Page 636 UMN:CLI User Manual V5824G table. The static route can be added to or deleted from a VRF table, and routing protocols can also run on it. To create a VRF table, use the following command. Command Mode Description Creates a VRF table.
Page 637 UMN:CLI User Manual V5824G LINE: the description for the virtual router no description Removes the description of virtual routing table. 11.6.3.2 Router ID To create a router id, use the following command. Command Mode Description Creates a router ID. router-id A.B.C.D A.B.C.D: router identifier in IP address format...
Page 638 UMN:CLI User Manual V5824G 11.6.6 VRF in the Dynamic Routing Daemons 11.6.6.1 OSPF The OSPF process that created by this command updates the virtual routing table configured in the command line. The OSPF VRF feature is used to advertise the routing information between the CE and the PE.
Page 639 UMN:CLI User Manual V5824G routing information between PE and CE. NAME: VRF name Opens the Address-Family-VPN Configuration address-family vpnv4 [ unicast] mode to exchange VPN routing information among ISP PE-routers. exit-address-family Address-Family Exits to AF Configuration mode. 11.6.7 Establishing IP Static Routes for a VRF To add a new static route entry for the specified interface, use the following command.
Page 640 UMN:CLI User Manual V5824G the IP routing table associated with a VRF. show ip route vrf WORD [database] {bgp | Shows all IPv4/IPv6 routes of the virtual connected | kernel | ospf | static} routing table for a protocol from a particular table.
Page 641 UMN:CLI User Manual V5824G traceroute WORD vrf NAME Traces packet routes through the network. Enable WORD: destination IPv4/IPv6 address or host name traceroute ipv6 WORD vrf NAME NAME: VPN routing/forwarding instance name 11.6.9 Telnet Access To connect to a remote host via telnet, use the following command.
Page 642 UMN:CLI User Manual V5824G To display the contents of the running configuration on a virtual router, use the following command. Command Mode Description Shows the running configuration for a specific virtual show running-config vrf WORD router. WORD: VPN routing/forwarding instance name...
Page 643 UMN:CLI User Manual V5824G 11.7 Configuring Route Map Route maps are used to redistribute routes between processes or for route health injection. To define a route map for use with supported feature, perform the following steps: Step1 Open Route-Map Configuration mode from Global Configuration mode to create a route map entry.
Page 644 UMN:CLI User Manual V5824G igp: local IGP incomplete: the origin of the path information is unknown or learned through other means match route-type external {type- Matches the route type. 1 | type-2} To delete the specified match criteria, use the following command.
Page 645 UMN:CLI User Manual V5824G additive: adds existing communities Deletes the matched communities from set comm-list {<1-99> | <100-199> | WORD } community attribute delete inbound/outbound update when applying route-map. set dampening [<1-45>] Sets route-flap dampening set dampening <1-45> <1-20000> <1-20000>...
Page 646 UMN:CLI User Manual V5824G no set dampening [<1-45>] no set dampening <1-45> <1-20000> <1-20000> <1-255> [<1-45>] no set extcommunity rt [AA:NN] no set extcommunity soo [AA:NN] no set ip next-hop [A.B.C.D] no set ipv6 next-hop [ X:X::X:X] no set ipv6 next-hop local [X:X::X:X ] no set local-preference [<0-4294967295>]...
Page 647: Fig. 12.1 Example Of Gpon Network
UMN:CLI User Manual V5824G 12 GPON Configuration Gigabit Passive Optical (GPON) technology has the active network elements OLT (Optical Line Termination) at the central office and ONU/ONT (Optical Network Unit / Termination) at the subscriber site. Typical GPON configuration consists of a single PON port at the OLT and a number of ONUs connected to it over a single fiber feeder.
Page 648: Fig. 12.2 Cli Structure Of Gpon Configuration Mode
UMN:CLI User Manual V5824G When specifying an OLT ID in the CLI, you can simply put the number in the form of PORT number such as 1, 2, 3, 4…7, 8. Multiple input is also possible, e.g. 1, 2, 3 or 3-4.
Page 649 UMN:CLI User Manual V5824G SWITCH(config)# gpon SWITCH(gpon)# ? GPON configuration commands: clear Reset functions dba-profile Configure GPON DBA Profile debug Debugging functions To run exec commands in config mode exit End current mode and down to previous mode extended-vlan-tagging-operation Configure Extended Vlan Tagging Operation...
Page 650 UMN:CLI User Manual V5824G 12.1.1.1 OLT Description To specify or modify a description of an OLT, use the following command. Command Mode Description olt description DESCRIPTION Registers the OLT’s description. GPON-OLT no olt description Deletes the description of OLT. To display a description of an OLT, use the following command.
Page 651 UMN:CLI User Manual V5824G To display the status of encryption mode or information of the encryption key exchange process, use the following command. Command Mode Description Enable Shows the status of encryption mode. show onu encryption OLT-ID Global OLT-ID: GPON port number...
Page 652 ONU (ONT) fault detection feature. Normally, if an ONU (ONT) fault occurs, a specific error signal is followed by the fault. Thus, the V5824G validates whether an ONU (ONT) fault occurs by detecting the specific error signal. The auto ONU fault detecting...
Page 653 User Manual V5824G When detecting an error signal (an ONU fault) in a certain OLT, the V5824G generates a corresponding syslog message, and then disables the laser of each ONU currently connected to the OLT one by one for 60 seconds. At the moment that the faulty ONU’s laser is disabled, the error signal also disappears, then the system realizes that which the faulty ONU is and memorizes its serial number.
Page 654 If the power of ONU is turned off by user, this ONU is supposed to send the alarm message of dying-gasp to OLT. When the last ONU is deregistered from the V5824G after it generates an alarm by ONU dying-gasp event, we can regard that the link of this GPON port is down and it’s not the cable connection problem.
Page 655 12.1.11 OLT Anti-Spoofing When the V5824G learns the same MAC address from the two (or more) different ONUs on the same GPON, the system regards the latest ONU(s) as the fault operation, and make the ONU(s) block the inflow of sub-level MAC by MAC filtering. Through this anti-...
Page 656 UMN:CLI User Manual V5824G spoofing, the V5824G can prevent the malicious spoofing attack. To enable/disable the OLT anti-spoofing, use the following command. Command Mode Description Enables the OLT anti-spoofing. olt anti-spoofing enable [expire- 60-65535: expire timeout (= MAC filtering operation timeout <60-65535>]...
Page 657 This feature is available for DASAN Network Solutions’ RF return modulator (V5800) only. The V5824G is not provide compatibility with other RF return modulators. To display the configured parameters for the head-end node, use the following command.
Page 658 [vid RANGE] per flow. If the V5824G is configured in the downstream GEM mapping mode per flow, you can configure downstream QoS mapping mode based on MAC address / VLAN ID and the mapping between queue and CoS value. To configure the downstream traffic control by...
Page 659 UMN:CLI User Manual V5824G Command Mode Description Configures the downstream QoS mapping mode. (This configuration is valid only when the downstream GEM port mapping mode is specified as ‘flow’.) olt ds-qos-mapping mode {mac | mac: QoS mapping mode based on destination MAC...
Page 660 12.1.15 Multicast/Broadcast GEM Port Separation All the downstream multicast and broadcast flows from the V5824G are transmitted through a single GEM port ID. The multicast and broadcast flows need to be separated from each other to properly forward all broadcast/multicast traffic for multiple ONTs.
Page 661 UMN:CLI User Manual V5824G end MACADDR {mcast | bcast} multicast/broadcast stream. [vid <1-4094>] no olt static-mac MACADDR Deletes the configured static MAC address. {mcast | bcast} [vid <1-4094>] static-mac start MACADDR MACADDR Deletes the configured static MAC address range. {mcast | bcast} [vid <1-4094>] To display the configured static MAC address table, use the following command.
Page 662 UMN:CLI User Manual V5824G GPON show olt threshold port GPON-OLT show olt threshold tcont 12.1.17 ONU Deactivation Monitoring ONU deactivation monitoring function generates alarms based on ONU (ONT)’s deactivation. The system calculates the current percentage by the number change of active ONUs every hour.
Page 663 UMN:CLI User Manual V5824G To clear the alarms of ONU deactivation monitoring, use the following command. Command Mode Description Clears the collected alarms by ONU deactivation clear olt deactive-monitor alarm GPON-OLT monitoring. 12.1.18 OLT Bit Error Ratio (BER) You can configure the monitor direction and the alarm threshold of the bit error ratio. The...
Page 664 UMN:CLI User Manual V5824G 12.1.19 OMCC Monitoring If an error occurs on the ONT Management and Control Channel (OMCC), the OLT attemps to recover from an error and the ONUs are deactivated by the OLT until the OMCC is recovered.
Page 665 Shows the information of active/inactive GPON OLT show olt status [OLT-ID] GPON IDs. GPON-OLT The following is an example of displaying active/inactive OLT IDs of the V5824G. SWITCH(gpon)# show olt status ------------------------------------------------------------ OLT_ID | Status | Protect | Distance | FEC mode(DS/US)
Page 666 UMN:CLI User Manual V5824G The Received Signal Strength Indication (RSSI) is a measurement of the power present in a received radio signal. The RSSI functionality in a newly released GPON OLT transceiver helps the operators monitor the received optical signal strength from each ONU (ONT).
Page 667 UMN:CLI User Manual V5824G OLT : 1 Downstream Upstream ------------------------------------------------------------------------------ (Pon counter) Pon valid eth packets 1829234499 Pon CPU packets 136329 Pon ploams 108609 19201764 Pon invalid packets (perfomance monitoring counter) Rx valid packets 1830563926 Rx error packets CPU valid packets...
Page 668 UMN:CLI User Manual V5824G GEM-PORT: GEM port ID To display a MAC address of the ONUs (ONTs) connected to a current OLT, use the following command. Command Mode Description show olt mac [ONU-ID] Shows the MAC addresses currently learned on ONU.
Page 669 12.2 ONU Management This section describes how to manage an ONU (ONT). The V5824G provides the centralized remote ONU (ONT) management concept, so you can manage every remote ONU (ONT) connected to the V5824G without any local configuration for the ONUs (ONTs).
Page 670 (ONTs) periodically. OLT registers a specific ONU which replies to OLT with its serial number. The V5824G can allocate ONU-ID to an ONU which sends a valid serial number to OLT. When ONU with the specific serial number is activated, it is assigned the allocated ONU-ID.
Page 671 UMN:CLI User Manual V5824G 12.2.1.3 Manual ONU (ONT) Registration Mode To register/delete ONU (ONT) manually, use the following command. Command Mode Description Registers ONU (ONT) with specified ONU-ID, serial number and password. onu add ONU-ID SERIAL_NUM Enables/disables the password auto-learning mode of...
Page 672 UMN:CLI User Manual V5824G 12.2.1.5 Changing ONU Registration Mode If user wants to change automatically the states of ONU (ONT) to manage manually at a time, use the following command. Command Mode Description Changes automatically registered ONUs (ONTs) to onu fix {all | ONU-ID} GPON-OLT manage manually.
Page 673 UMN:CLI User Manual V5824G GPON show onu description [ONU-ID] GPON-OLT 12.2.1.8 ONU Connectivity via Ping Test To verify the network connectivity with the ONU, use the following command. Command Mode Description Shows the network connectivity between OLT ID and omci ping ONU-ID GPON-OLT ONU ID.
Page 674 UMN:CLI User Manual V5824G To display the configured IP host service ID on ONU, use the following command. Command Mode Description Enable show onu ip-host OLT-ID ONU-ID Global Shows the configured IP host service ID on ONU. GPON show onu ip-host ONU-ID GPON-OLT 12.2.3...
Page 675 UMN:CLI User Manual V5824G 12.2.5 Loopback To enable/disable the loopback for UNI of ONU, use the following command. Command Mode Description Enables/disables the loopback for the specified onu loopback ONU-IDs uni eth Ethernet (type 3) UNI port of ONU. UNI-PORTs {enable type 3 |...
Page 676 12.2.7 Source MAC address Monitoring The V5824G can monitor its source MAC table to find a defective ONUs (ONTs). Auto ONU (ONT) blocking function can be used to manage and troubleshoot the defective ONU-related problems. To enable/disable OLT for source MAC address monitoring, use the following command.
Page 677 UMN:CLI User Manual V5824G 12.2.8 ONU MAC address Filtering The MAC filter table lists MAC destination addresses associated with the bridge port, each with an allow/disallow forwarding indicator for traffic flowing out of the bridge port. In this way, the upstream traffic is filtered on the ANI-side bridge ports, and the downstream traffic is filtered on the UNI-side bridge ports.
Page 678 Deletes the configured data parameters of VoIP user. number pots POTS-NUMBER For the enhanced system security, the V5824G can use authentication for a VoIP user to have access to the softswitch. To configure the authentication user name and password for VoIP user to have access to softswitch, use the following command.
Page 679 UMN:CLI User Manual V5824G 12.2.10 VoIP MGC Configuration 12.2.10.1 Message ID Configuration To configure the message ID according to the specific VoIP service, use the following command. Command Mode Description Configures the message ID according to the specific onu voip-mgc ONU-ID message- VoIP service.
Page 680 UMN:CLI User Manual V5824G 12.2.11 ONU Port Configuration 12.2.11.1 UNI Ethernet Port Configuration To configure the UNI Ethernet port of ONU, use the following command. Command Mode Description Configures the medium mode of ONU UNI Ethernet port. onu port-config ONU-IDs uni eth...
Page 681 UMN:CLI User Manual V5824G 12.2.11.2 ANI RF Video Port Configuration To configure the ANI RF video port of ONU, use the following command. Command Mode Description Configures the AGC value of ONU ANI RF video port. onu port-config ONU-IDs ani...
Page 682 UMN:CLI User Manual V5824G Enable show onu pppoe account OLT-ID Shows the PPPoE account of ONU. Global show onu pppoe status OLT_ID Shows the ONU status information for PPPoE. GPON 12.2.12 ONU Loop Detect Configuration A loop may occur when double paths are used for the link redundancy between switches and one sends unknown unicast or multicast packet that causes endless packet floating on the LAN.
Page 683 UMN:CLI User Manual V5824G onu inactive aging-time disable Sets the ONU aging time to be unlimited (default) To display the configured aging time for the inactive ONUs, use the following command. Command Mode Description Enable show onu inactive aging-time Global...
Page 684 UMN:CLI User Manual V5824G Enable show onu ani optic-module-info Global OLT-ID ONU-ID [test-action] Shows the operating parameters of the GPON module, GPON including the optical characteristics. show onu ani optic-module-info GPON-OLT ONU_ID Enable show onu uni optic-module-info Global OLT-ID ONU-ID PORT...
Page 685 UMN:CLI User Manual V5824G onu cos-remarking ONU_ID dst-mac: Destination MAC {src-ip dst-ip} A.B.C.D src-ip: Source IP {netmask <1-32> | cos <0-7>} src-mac: Source MAC cos-remarking ONU_ID cos-remarking ONU_ID {src-mac | dst-mac} XX:XX:XX:XX:XX:XX Deletes the configured CoS remarking. {netmask <1-48> | cos <0-7>}...
Page 686 UMN:CLI User Manual V5824G inner | dscp-to-pbit} extended-vlan ONU-ID Associates the extended VLAN tagging operation NAME untagged-frame TABLE profile to ONU ID and configures the inner tag treat inner vid <0-4094> treatment for filtered untagged frames. {<0-7> | dscp-to-pbit} no onu extended-vlan ONU-ID...
Page 687 Authentication Attributes (RADIUS Code Field) (a) Service-Type: “Authenticate Only (8)”. (b) User-Name & User-Password: ONU Model Name Access-Request (c) Vendor-Specific Vendor ID: IANA registered DASAN (6296) (OLT → server) (d) Vendor-Specific Attribute: OLT_ID, ONT_ID, Model Name, Serial Number, Firmware Version info.
Page 688: Tab. 12.1 Radius Authentication Message Type
UMN:CLI User Manual V5824G (r) Dasan-Gpon-Onu-Mac-Filter (a) User-Name (b) User-Password (c) Dasan-Gpon-Olt-Id DM-Request (d) Dasan-Gpon-Onu-Id (server → OLT) (e) Dasan-Gpon-Onu-Model-Name (f) Dasan-Gpon-Onu-Serial-Num (g) Dasan-Gpon-Onu-Firmware-Version Tab. 12.1 RADIUS Authentication Message Type To configure IP address and key value of RADIUS server for ONU authentication, use the following command.
Page 689 UMN:CLI User Manual V5824G disable } the specified OLT port. onu auth-control reauthenticate Performs re-authentication processing for ONU. To display the information of ONU authentication status and profile, use the following command. Command Mode Description show onu auth-status [OLT-ID] GPON Shows the current authentication status of ONU.
Page 690 UMN:CLI User Manual V5824G There are different types of CFM messages: • Continuity Check Message (CCM) Each MEP sends periodic CCMs to other MEPs with a multicast destination address. The loss of CCMs that ride along the data path would indicate a connectivity failure.
Page 691 UMN:CLI User Manual V5824G MEPs periodically exchange Continuity Check OAM messages to detect loss of continuity or incorrect network connections. To create a Maintenance Association (MA) with its name as a service instance for a specific MD and specify the interval of Continuity Check Messages (CCMs) that are sent by MEPs in the specified MA, use the following command.
Page 692 OAM allows both unicast and multicast loopback. Ethernet Traceroute function is used to retrieve adjacency relationship between a MEP and a remote MEP or MIP. And it is also used for fault localization. The V5824G sends LinkTrace Message (LTM) frames to discover a path for a link trace.
Page 693 12.2.22 ONU Firmware Upgrade The V5824G provides the remote ONU (ONT) upgradeability. This feature allows the system administrators not to offer the local service for a single ONU (ONT) upgrade at the customer premise. To upgrade an ONU (ONT) successfully, you need to download a new ONU (ONT) firmware in the system.
Page 694 UMN:CLI User Manual V5824G (2) Downloading Firmware to ONU (Upgrading) To download the specified ONU (ONT) firmware in the ONU (ONT), use the following command. Command Mode Description Downloads ONU (ONT) firmware in the ONU (ONT). onu firmware download ONU-ID...
Page 695 UMN:CLI User Manual V5824G Before restarting the ONU (ONT), you should check the service status of ONU, whether to save the other configuration, or else. To display the status of ONU firmware, use the following command. Command Mode Description Enable Shows the status of ONU firmware.
Page 696 UMN:CLI User Manual V5824G To display the list of the downloaded ONU (ONT) firmware in OLT, use the following command. Command Mode Description Enable Global Shows the downloaded ONU (ONT) firmware list in show onu firmware-list GPON OLT. GPON-OLT (2) Upgrading Firmware To upgrade an ONU (ONT) with the downloaded ONU (ONT) firmware, use the following command.
Page 697 ONU-ID: ONU ID (1 to 128) or ONU serial number 12.2.22.3 Auto Upgrade For efficient system maintenance, the V5824G provides the auto upgrade functionality for ONU firmware in the operational environment. You can simply upgrade the ONU firmware without an effort for every single ONU.
Page 698 UMN:CLI User Manual V5824G To display the list of the downloaded ONU (ONT) firmware in OLT, use the following command. Command Mode Description Enable Global Shows the downloaded ONU (ONT) firmware list in show onu firmware-list GPON OLT. GPON-OLT (2) Auto Upgrade Configuration (on GPON Configuration mode) To configure the auto upgrade for ONU, use the following command.
Page 699 UMN:CLI User Manual V5824G Firmware Name | T/FTP | User | Password --------------------------------------------------------------------------------- G_ONU_DALLAS_22_0_8_33.bin | TFTP | 10.55.2.4 | XXX | XXXX To specify the execution condition of ONU auto upgrade configuration above, you should specify a target version of ONU firmware with (or without) exclude option. Through the target version and the option, auto upgrade execution condition is determined.
Page 700 UMN:CLI User Manual V5824G To see the ONU model name, use show onu model-name command. (See 12.2.23 Displaying ONU Information) • Retry Count for Auto Upgrade The retry count argument specifies how many times to retry the auto upgrading of ONU if the first attempt fails.
Page 701 UMN:CLI User Manual V5824G Command Mode Description show onu auto-upgrade info Shows a progress of ONU auto-upgrade. Enable Global Shows a list of ONU model names configured to be show onu auto-upgrade model- GPON auto-upgraded. list [NAME] GPON-OLT NAME: ONU model name The following is an example of displaying the progress of ONU auto-upgrade and a list of ONU model name configured to be auto-upgraded.
Page 702 UMN:CLI User Manual V5824G --------------------------------------------------------------------------------- H645 | G_ONU_DALLAS_22_0_8_33.bin | 22.1.8.33 | Download Complete To display the status of ONU firmware, use the following command. Command Mode Description Enable Shows the status of ONU firmware. show onu firmware version OLT- Global...
Page 703 UMN:CLI User Manual V5824G GPON Shows the number of active ONUs connected to a show onu active count [OLT-ID] specified GPON port. Shows the registered ONU (ONT) information. show onu active [ONU-ID] ONU-ID: ONU ID (1 to 128) or ONU serial number...
Page 704 UMN:CLI User Manual V5824G show onu mac-address OLT- Enable/Global/GPON Shows the number of MAC addresses currently learned in ONUs connected to a current OLT. show onu mac-address [ONU- GPON-OLT To display a host name of the specified ONU, use the following command.
Page 705 UMN:CLI User Manual V5824G Command Mode Description Enable show onu ip-host OLT-ID ONU-ID Global Shows the configured IP host service ID on ONU. GPON show onu ip-host ONU-ID GPON-OLT To display the system or RF video status of ONU, use the following command.
Page 706 OLT. The following basic configurations are available for the H640 series ONTs only. If you use other ONTs from the different vendors, not DASAN Network Solutions, the IOP (Interoperability) test should be performed. 12.2.24.1...
Page 707: Fig. 12.3 Pon Structure Sample Scheme For Voip And Internet Connection Of Ont
UMN:CLI User Manual V5824G  Upgrade ONT with the downloaded OS  Check out the upgrade result  Reboot the ONT. The ONT will be restarted with "Default-OS (NewVersion)". 12.2.24.2 Pre-settings for Traffic Profile (Step1) Basically, it is required that a series of configuration including traffic profile and IP host is predefined at the ONT in order to get access to the Internet and serve the VoIP and data service.
Page 708 UMN:CLI User Manual V5824G create  multicast-profile V501 igmp tag-control add vid 501 cos 0 igmp access-list vid 501 dst-ip start 224.0.0.1 end 239.255.255.255 gem 4094 apply create  extended-vlan-tagging-operation V200 downstream-mode enable untagged-frame 1 treat inner vid 200 cos 0 tpid 0x8100 apply create ...
Page 709 UMN:CLI User Manual V5824G 12.2.24.3 Traffic Profile Configuration (Step2) The following command lines show a sample config of traffic profile corresponding to the sample scheme. You can find out which configurations are required for ONT's VoIP and data service through each annotation.
Page 710 (ip-host-config ip address static, it is required to configure DNS. Otherwise, it is set In case of to the DASAN-specified value, by default, which may cause to limit any service.  1) to be associated to IP host Create a VoIP service (voip-service 1).
Page 711 UMN:CLI User Manual V5824G 12.2.24.4 ONU Profile & IP Host Configuration (Step3) The following command lines show a sample config for OLT port corresponding to the sample scheme above. OLT(gpon)# show running-config create  onu-profile traffic-profile TRAFFIC apply OLT(config-gpon-olt[2])# show running-config gpon-olt 2...
Page 712 UMN:CLI User Manual V5824G MAC Address : 00:d0:cb:d6:8b:38 10.45.33.11  Config IP Config Mask : 255.255.0.0 10.45.1.254  Config Gateway Config Primary DNS : 168.126.63.1 Config Secondary DNS : 0.0.0.0 Host name --------------------------------------------------------------- OLT : 2, ONU : 2, Host :...
Page 713 UMN:CLI User Manual V5824G associated with this generic status portal. The generic status portal ME uses two attributes which are status and config to convey status and configuration from a non-OMCI managed domain to the OMCI. Each of these attributes uses an XML document to present this information.
Page 714 UMN:CLI User Manual V5824G NAME: ONU profile name Step 5 To update GSP information, use the following command. Command Mode Description Updates GSP. onu gsp update {status | GPON- ONU_ID: ONU ID (1 to128) or ONU serial config} ONU_ID number In case of enable status, whenever the information in the table changes, GSP will be automatically updated according to Step 2 avc-report rate settings.
Page 715 UMN:CLI User Manual V5824G <PONTrafficStatus PONMode="GPON">up</PONTrafficStatus> <DeviceInfo> <ModelName>H660GW</ModelName> <SystemMacAddress>00:d0:cb:00:38:88</SystemMacAddress> <LANMacAddress>00:d0:cb:00:38:8f</LANMacAddress> <SystemUpTime>4 hour/5 min/56 sec</SystemUpTime> </DeviceInfo>...
Page 716: Fig. 12.4 Onu Profile
ONU Profile Fig. 12.4 ONU Profile The V5824G provides the easy and efficient management solution for various service environments with the ONU profile. The ONU profile is a collection of configurations for the operation of an ONU (ONT). You can manage all ONUs connected to an OLT by simply applying the configured profile to ONUs without any local configuration.
Page 717 UMN:CLI User Manual V5824G To modify an existing ONU profile, use the following command. Command Mode Description Modifies an ONU profile. onu-profile NAME modify GPON NAME: ONU profile name To delete a created ONU profile, use the following command. Command...
Page 718 LAN. That superfluous traffic eventually can result in network fault. The V5824G provides the function to configure the ONU’s loop detecting. The loop detecting mechanism is as follows:...
Page 719 UMN:CLI User Manual V5824G The ONU periodically sends the loop-detecting packet to all the ports with a certain interval, and then if the loop-detecting packet is received, the switch performs a pre- defined behavior. To enable/disable the loop detection, use the following command.
Page 720 UMN:CLI User Manual V5824G To set the threshold of ONU memory in use, use the following command. Command Mode Description Sets the threshold of ONU memory in the unit of memory-usage threshold <0- percent (%). 100> ONU-Profile 0-100: ONU memory in use no memory-usage threshold Deletes the configured threshold of ONU memory.
Page 721 UMN:CLI User Manual V5824G IGMP rate limiting restricts the number of IGMP messages from ONUs within this ONU- profile. To configure the upstream IGMP rate limit of ONUs, use the following command. Command Mode Description Sets the maximum number of upstream IGMP messages.
Page 722 UMN:CLI User Manual V5824G VALUE: tx-bias threshold value (0∼ 131 mA) Configures the voltage threshold and sends the configured threshold value to ONUs. The ONUs ani-voltage threshold {low monitors the change of values and sends voltage VALUE [high VALUE] | high...
Page 723 UMN:CLI User Manual V5824G To block/forward new source MAC address frame when MAC table is full, use the following command. Command Mode Description Forwards new source MAC address frame when ONU mac-full policy forward MAC table is full. ONU-Profile Blocks new source MAC address frame when ONU mac-full policy drop MAC table is full.
Page 724 UMN:CLI User Manual V5824G “Remote failure”, “Local failure”) from ONT. IP-Path Management To configure the ONT provisioning feature in GPON-OLT Configuration mode and specify a FTP server and GPON provisioning file, use the following command. Command Mode Description Sets an user name and password to access FTP server...
Page 725 HTTP-based and provides communication between the ONT and an ACS (Auto Configuration Server). TR-069 protocol simplifies ONT management by specifying the use of an ACS to perform remote, centralized management of ONTs. The V5824G supports TR-069 to provision and manage ONTs.
Page 726 UMN:CLI User Manual V5824G 12.3.2.14 Applying Traffic & PM Profile To add/delete the user-defined Traffic profile to a specified ONU profile, use the following command. Command Mode Description Adds the existing Traffic profile to ONU profile. traffic-profile NAME NAME: Traffic profile name...
Page 727 UMN:CLI User Manual V5824G 12.3.3.1 VLAN Configurations To configure a VLAN tagging operation for a specific UNI port, use the following command. Command Mode Description Sets the policy of VLAN tagging for upstream frame. uni eth UNI-PORT vlan-operation keep: keeps forwarding the existing tagged/untagged...
Page 728 UMN:CLI User Manual V5824G 12.3.3.4 IGMP Group List You can configure the maximum number of multicast groups that a host on a port can join. To specify the maximum number of IGMP groups per UNI-side port, use the following command.
Page 729 UMN:CLI User Manual V5824G 12.3.5 Applying ONU Profile If you want to apply a created ONU profile to connected ONUs (ONTs), open GPON-OLT Configuration mode where you want to apply the profile. SWITCH(config-gpon-profile[AAA])# exit SWITCH(gpon)# gpon-olt 1 SWITCH(config-gpon-olt[1])# To apply/release an ONU profile to/from connected ONUs (ONTs), use the following command.
Page 730 UMN:CLI User Manual V5824G 12.3.7 Assigning IP Host of SNMP Agent To assign IP host of SNMP agent, use the following command. Command Mode Description Assigns an IP host of SNMP agent. snmp agent-address ip-host <1-32> 1-32: IP host number...
Page 731: Fig. 12.5 Traffic Profile
ANI-side port-IDs. The mapper is equivalent to a MAC bridge with VLAN filters that only operate on the priority bits of the VLAN tags. The V5824G is supported by all G.984.4 compliant vender system based on the 1:N, N:M, 1:MP, and N:MP model. Only a single 802.1p mapper is need for 1:N, N:M model deployments.
Page 732 A mapper provides support for upstream flow routing based on 802.1p priority bits. The V5824G supports the DSCP to IEEE802.1p mapping to allow the OLT to prioritize all traffic based on the incoming DSCP value according to the DiffServ to IEEE802.1p mapping table.
Page 733 UMN:CLI User Manual V5824G To configure the rate limit for an GEM port ID, use the following command. Command Mode Description Sets the downstream/upstream traffic bandwidth for gemport GEM-PORT-RANGE GEM port ID. rate-limit upstream RANGE: GEM port range downstream } PIR_BANDWIDTH...
Page 734 UMN:CLI User Manual V5824G To remove the configured bridge ID from a traffic profile, use the following command. Command Mode Description Traffic- no bridge BRIDGE_ID Removes the configured bridge ID from a traffic profile Profile 12.4.3.1 Max Host To configure the max host for a MAC bridge service profile, use the following command.
Page 735 Disables the VLAN tagging filtering function. The V5824G provides an alternate approach to address filtering from that supported through MAC bridge port filter table data. This alternate approach is useful when all groups of addresses are stored beforehand in the ONU, and it designates which groups are valid or invalid for filtering.
Page 736: Tab. 12.2 Protocol Types For Mac Filtering
UMN:CLI User Manual V5824G To enable/disable MAC filtering function on ANI interface, use the following command. Command Mode Description mac-filter {ip4-mcast | ip6-mcast| ip4-bcast | rarp | ipx | net-beui | Enables the MAC filtering function according to the apple-talk | bridge-manage | arp | protocol type for ANI-side bridge port.
Page 737 UMN:CLI User Manual V5824G To specify an Inter-domain name attribute on the virtual Ethernet interface, use the following command. Command Mode Description Specifies the inter-domain name attribute of virtual Ethernet interface. inter-domain-name NAME NAME: Inter-domain name (maximum 24 bytes Traffic...
Page 738 UMN:CLI User Manual V5824G Rate Limit To configure the rate limit for an UNI-side port of ONU, use the following command. Command Mode Description Sets the downstream/upstream traffic bandwidth for rate-limit {upstream UNI port. downstream} PIR_BANDWIDTH SIR_BANDWIDTH: 0 to 2147483584 (in steps of...
Page 739 UMN:CLI User Manual V5824G Command Mode Description Applies the existing multicast profile to a specified UNI multicast-profile PROFILE port. Traffic PROFILE: Multicast profile name Bridge-UNI Deletes the mapping between a multicast profile and no multicast-profile this UNI port. IGMP Group To specify the maximum number of IGMP groups, which are correspond to IGMP join message from the UNI-side port, use the following command.
Page 740 UMN:CLI User Manual V5824G For the details of how to create and configure the extended VLAN tagging operation profile, see 12.6 Extended VLAN Tagging Operation Profile. MAC Filtering Function To configure the MAC filtering function for an UNI-side port of ONU, use the following command.
Page 741 UMN:CLI User Manual V5824G...
Page 742: Fig. 12.6 Priority Of T-Cont Types
Lowest Priority Fig. 12.6 Priority of T-CONT types The V5824G provides the easy and efficient management solution using T-CONT concept with the Traffic profile. A GPON port is connected with multiple ONUs/ONTs via splitter. The GPON encapsulation mode (GEM) frames are transmitted between the OLT and the ONUs (ONTs).
Page 743 UMN:CLI User Manual V5824G To delete the T-CONT ID, use the following command. Command Mode Description Traffic- no tcont TCONT_ID Deletes the configured T-CONT ID. Profile 12.4.4.1 GEM Port Configuration To specify the GEM ports (priority queue) per T-CONT by mapping between T-CONT and GEM port, use the following command.
Page 744 UMN:CLI User Manual V5824G 12.4.4.4 Displaying T-CONT Information To display the information of T-CONT, use the following command. Command Mode Description Enable show tcont-id OLT-ID [ONU-ID] Global Shows the information of T-CONT ID of OLT. show onu tcont OLT-ID GPON show tcont [ONU-ID] Shows the information of T-CONT allocation for ONU.
Page 745 UMN:CLI User Manual V5824G ipv6 primary X:X::X:X Specifies the primary/secondary DNS IPv6 address on [secondary X:X::X:X] the host. no dns Deletes the configured DNS IP address. no ipv6 dns Deletes the configured DNS IPv6 address. 12.4.5.3 VLAN Tagging Operating To configure a VLAN tagging operation on the host, use the following command.
Page 746 UMN:CLI User Manual V5824G 12.4.5.5 IPv6 Configuration To configure the IPv6 DHCP client mode, use the following command. Command Mode Description Sets the DHCPv6 client mode using non-temporary ipv6 dhcp client na Traffic- address. IP-host Sets the DHCPv6 client mode using the stateless ipv6 dhcp client stateless address.
Page 747 SWITCH(config-traffic-pf[NAME])# to SWITCH(config-traffic-pf[NAME]-voip[ID])#. 12.4.6.1 VoIP Service Management Mode The V5824G provides VoIP management function for the subtended ONUs. There are two VoIP management models: IP-path managed model and OMCI (ONT Management and Control Interface) managed model. OMCI Managed Model The full OMCI is used to control the VoIP configurations and OLT can handle these configurations for VoIP clients integrated in the ONT.
Page 748: Fig. 12.7 Voip Service Architecture
UMN:CLI User Manual V5824G Fig. 12.7 VoIP Service Architecture The V5824G supports the VoIP service management with two modes based on the managed models above. To configure VoIP service management mode, use the following command. Command Mode Description Sets VoIP service management mode.
Page 749 Whenever an ONU is deployed with the IP-path managed VoIP service, the OLT should assign the URL of a VoIP configuration file to communicate with the ONU VoIP client. The V5824G provides an authentication method for ONUs to have access to the VoIP configuration server.
Page 750 UMN:CLI User Manual V5824G To specify the impedance for the POTS UNI, use the following command. Command Mode Description Specifies the impedance for the specified POTS UNI. 600: 600 Ohm (default) 900: 900 Ohm 750: C1=150 nF, R1=750 Ohm, R2=270 Ohm...
Page 751 UMN:CLI User Manual V5824G 12.4.6.5 Protocol Type Configuration To perform the configuration for protocol type-based service that is offered from an IP host, use the following command. Command Mode Description Specifies port number that offers UDP/TCP/TLSP/protocol-type service and the value of udp port PORT tos TOS the TOS field of the IPv4 header.
Page 752 UMN:CLI User Manual V5824G 12.4.7.2 Framing Structure To specify the framing structure, use the following command. Command Mode Description framing { extend-superframe | superframe | Specifies framing structure. unframed | g-704 | jt-g-704 | basic-g-704 | Traffic-CES (mandatory for DS1 interfaces) basic-crc4 | basic-ts16 | basic-crc4-ts16 } 12.4.7.3...
Page 753 UMN:CLI User Manual V5824G 12.4.7.5 DS1 Mode To specify the mode of DS1, use the following command. Command Mode Description Specifies the mode of DS1. ds1-mode connect ds1-cpe line- ds1-cpe: DS1 CPE (loopback: smart jack) length { short | long }...
Page 754 UMN:CLI User Manual V5824G Applying TDM Pseudowire Profile In order to configure the TDM service, you need to connect TDM pseudowire profile. To connect TDM pseudowire profile to the current TDM service, use the following command. Command Mode Description Connects TDM pseudowire profile.
Page 755 UMN:CLI User Manual V5824G To display the list information of source MAC addresses for TDM pseudowire of ONU, use the following command. Command Mode Description show onu tdm-pw source- Enable/Global/GPON mac OLT-ID ONU-ID Shows the list of source MAC addresses for TDM pseudowire of the specified ONU.
Page 756 UMN:CLI User Manual V5824G After opening Video Return Path Service Configuration mode, the prompt changes from SWITCH(config-traffic-pf[NAME])# to SWITCH(config-traffic-pf[NAME]-vrp[ID])#. To configure the video return path service-related parameters, use the following command. Command Mode Description Specifies the VRP tunner frequency to use. (unit:...
Page 757 UMN:CLI User Manual V5824G After opening GEM Port Network CTP Service Configuration mode, the prompt changes from SWITCH(config-traffic-pf[NAME])# to SWITCH(config-traffic-pf[NAME]-gem[ID])#. To connect a service profile (MAC bridge, IP Host config, video return path service) with a GEM Port ID, use the following command.
Page 758 UMN:CLI User Manual V5824G 12.4.13 Displaying Traffic Profile Information To display the information of traffic profiles, use the following command. Command Mode Description GPON Shows the currently applied configuration information GPON-OLT show traffic-profile [NAME] of traffic profile. Traffic- NAME: traffic profile name...
Page 759 12.5.2 Configuring DBA Profile If the V5824G bandwidth allocation method for ONU upstream transmission is dynamic (DBA), there are two methods of DBA are defined for GPON: status-reporting (SR) DBA, which is based on ONU reports via the dynamic bandwidth report upstream (DBRu) field, and non-status-reporting (NSR) DBA, which is based on OLT monitoring per T-CONT utilization.
Page 760 UMN:CLI User Manual V5824G If there are a “non-assured” T-CONT and “best-effort” T-CONT, the “non-assured” T- CONT takes precedence over the other one to be allocated the remained bandwidth by OLT. To delete the configured bandwidth allocation policy of DBA profile, use the following command.
Page 761 UMN:CLI User Manual V5824G 12.6 Extended VLAN Tagging Operation Profile You can configure the ONU’s extended VLAN tagging operation. In order to configure the operation, you need to create an extended VLAN tagging operation profile. To create the profile, use the following command.
Page 762: Fig. 12.8 Received Frame Layout
UMN:CLI User Manual V5824G considered as a last resort for frames that do not match any other applicable rule. Best practice dictates that these entries not be deleted; however, they can be modified to produce the desired default behaviour. 15, x, x, 15, x, x, x, (0, 15, x, x, 15, x, x)
Page 763 UMN:CLI User Manual V5824G To configure the filtering for single-tagged frames, use the following command. Command Mode Description Configures the received single-tagged frames to be filtered by the provided values concerning inner tag. vid any: do not filter on the inner VID.
Page 764 UMN:CLI User Manual V5824G 12.6.1.2 Configuration for Double-tagged Frame Treatment To create the mapping table to configure the double-tagged frame treatment, use the following command. Command Mode Description Creates the mapping table to configure the double- double-tagged-frame TABLE tagged frame treatment.
Page 765 UMN:CLI User Manual V5824G To configure the treatment of filtered double-tagged frames, use the following command. Command Mode Description Configures the treatment of filtered double-tagged frames. treat {remove {single | double} | remove single: removes one tag (the outer tag is discard-frame} stripped from double-tagged frames.)
Page 766 UMN:CLI User Manual V5824G To configure the filtering for untagged frames, use the following command. Command Mode Description filter ether-type {ipoe | pppoe | Configures the received untagged frames to be filtered Untagged- arp | ipv6-ipoe} by the provided option.
Page 767 UMN:CLI User Manual V5824G 12.6.2 TPID Configuration To configure the specific TPID value for operations on the input (filtering) side and output (tagging) side of the table, use the following command. Command Mode Description Configures the specific TPID value for operations on...
Page 768 UMN:CLI User Manual V5824G 12.6.5 Displaying Extended VLAN Tagging Operation Profile To display a configured Extended VLAN tagging operation profile, use the following command. Command Mode Description Shows the configured extended vlan tagging operation show running-config extended- profile. vlan-tagging-operation [NAME] NAME: Extended VLAN tagging operation profile name To display the information of current profile, use the following command.
Page 769 ONUs using the VoIP profile. The ONT must be applied by VoIP profile defined in V5824G if the ONT has POTS terminations and if OLT is to be used to remotely manage and provide the VoIP service.
Page 770 UMN:CLI User Manual V5824G 12.7.1.2 VoIP Media Configuration To specify fax mode, use the following command. Command Mode Description fax-mode {passthru | t-38} VoIP-Profile Specifies fax mode. To configure codec negotiation with codec type, packet period and silence suppression, use the following command.
Page 771 UMN:CLI User Manual V5824G To configure the maximum depth of the jitter buffer, use the following command. Command Mode Description Specifies the maximum depth of the jitter buffer associated with this service. jitter-buffer-max VALUE VALUE: 0-65535, maximum depth of jitter buffer (unit:...
Page 772 UMN:CLI User Manual V5824G To enable/disable RTP piggyback events, use the following command. Command Mode Description rtp-piggyback-event {enable Enables/disables RTP piggyback events. (default: VoIP-Profile disable} disable) To enable/disable handling of tones via RTP tone events, use the following command. Command...
Page 773 UMN:CLI User Manual V5824G 12.7.1.6 DTMF Digit Configuration To configure DTMF digit power levels, use the following command. Command Mode Description Specifies the power level of DTMF digits that may be generated by the ONT toward the subscriber set. It is a...
Page 774 12.7.2 OMCI-based SIP Configuration If the ONUs are fully provisioned and managed from the V5824G using OMCI, you can configure POTS interface, call features and SIP agents of these ONUs. You need to enter SIP mode to perform the SIP-related detail configuration such as VoIP application service, SIP agent, etc.
Page 775 UMN:CLI User Manual V5824G ADDRESS: SIP proxy server IP address or URI no proxy-server Deletes the configured address of SIP proxy server. To specify an outbound SIP proxy server, use the following command. Command Mode Description Configures IP address or URI of outbound SIP proxy server outbound-proxy-server for SIP signalling messages.
Page 776 UMN:CLI User Manual V5824G 0-65535: SIP registration expiration time (unit: second, default: 3600) To configure the SIP re-registration head start time, use the following command. Command Mode Description Specifies the time prior to timeout that causes the SIP rereg-head-start-time <0-65535>...
Page 777 INVITE responses td: wait time for response retransmissions The V5824G supports SIP session timer which allows a periodic refreshing of SIP sessions using the register message to prevent the termination of SIP session. When using NAT with SIP service, NAT terminates the SIP session in case there is no SIP message transmission for a certain time period.
Page 778 UMN:CLI User Manual V5824G To display the parameters of SIP detailed feature operation, use the following command. Command Mode Description Enable show onu voip sip-detail-oper Global Shows the configured parameters of SIP detailed OLT-ID ONU-ID GPON feature operation. ONU-ID: 1-128 or ONU serial number...
Page 779 UMN:CLI User Manual V5824G emerg-originating-hold: emergency service originating hold (determines whether call clearing is to be performed on on-hook during an emergency service call) 6way: 6way call no call-progress-transfer Disables all the features for call processing. To configure the call presentation features, use the following command.
Page 780 UMN:CLI User Manual V5824G URI: conference factory URI no conference-factory-uri Deletes the configured URI of conference factory. 12.7.2.4 VoIP Feature Access Codes The configuration of VoIP feature access codes defines administrable feature access codes for the VoIP subscriber. To configure VoIP feature access codes, use the following command.
Page 781 UMN:CLI User Manual V5824G To specify the voicemail subscription expiration time, use the following command. Command Mode Description Defines the voicemail subscription expiration time. If voicemail-subscript-expire-time VoIP-SIP this value is 0, the SIP agent uses an implementation- VALUE specific value. (unit: second, default: 3600) To configure a release timer, use the following command.
Page 782 VoIP systems that typically interoperate with the public switched telephone network (PSTN). If the ONUs are fully provisioned and managed from the V5824G using OMCI, you can configure the MGC-related settings of these ONUs. The MGC entity defines the media gateway controller configuration associated with an MG subscriber.
Page 783 UMN:CLI User Manual V5824G To define the message format, use the following command. Command Mode Description mgc msg-format {text-long | VoIP-MGC Configures the message format. (default: text-long) text-short | binary} To specify the maximum retry time for MGC transactions, use the following command.
Page 784 UMN:CLI User Manual V5824G 12.7.4 Saving VoIP Profile After configuring a VoIP profile, you need to save the profile with the following command. Command Mode Description apply VoIP-Profile Saves a VoIP profile configuration. Whenever you modify a VoIP profile, you should apply the changes again using the apply command.
Page 785 UMN:CLI User Manual V5824G 12.8 TDM Pseudowire Profile Pseudowire emulation is a method for transmitting any Layer 2 protocol over PSNs (Packet Switched Networks). It allows a seamless connection between two network elements by creating logical links, or virtual tunnels, across the packet network. In TDM...
Page 786 UMN:CLI User Manual V5824G 12.8.2 Basic Service Type To specify the basic service type, use the following command. Command Mode Description Specifies the basic service type, either a transparent bit pipe or an encapsulation that recognizes the underlying structure of the payload.
Page 787 UMN:CLI User Manual V5824G 12.8.5 Payload Encapsulation Delay To configure the payload encapsulation delay (only for structured service), use the following command. Command Mode Description Defines the delay time (which corresponds to number of 125 microsecond frames) to be encapsulated in each pseudowire packet.
Page 788 UMN:CLI User Manual V5824G 12.8.7.1 Clock Reference To specify the frequency of the common timing reference, use the following command. Command Mode Description Specifies the frequency of the common timing TDM-PW- reference. rtp-clock-reference VALUE Profile VALUE: in multiples of 8 kHz (for example, input 1 means 8 kHz) (default: 1) 12.8.7.2...
Page 789 UMN:CLI User Manual V5824G 12.8.7.4 RTP Synchronization Source To configure the RTP synchronization source, use the following command. Command Mode Description Specifies the RTP synchronization source in the TDM to PSN direction. rtp-sync-source payload VALUE payload VALUE: for the payload channel...
Page 790 UMN:CLI User Manual V5824G 12.8.10 Displaying TDM Pseudowire Information To display the information of TDM pseudowire profiles, use the following command. Command Mode Description Global GPON Shows the information of TDM pseudowire profiles. show tdm-pw-profile [NAME] GPON-OLT NAME: TDM pseudowire profile name...
Page 791 UMN:CLI User Manual V5824G 12.9 Pseudowire Maintenance Profile The pseudowire maintenance profile permits the configuration of pseudowire service exception handling. The pseudowire maintenance profile primarily affects the alarms declared by the subscribing pseudowire termination. And also, the settings of a pseudowire maintenance profile affect the pseudowire performance monitoring history.
Page 792 12.9.5 Alarm-related Policy The V5824G supports four pairs of alarm-related policies configuration which causes the corresponding alarm to be declared or cleared. To configure the policy (anomaly rate) that causes the alarm to be declared or cleared, use the following command.
Page 793 UMN:CLI User Manual V5824G malformed-packet: malformed packet misconnect-packet-declaration- misconnect-packet: misconnect packet policy <1-100> 1-100: anomaly rate (unit: integer percentage) buffer-over-underrun-clear- Defines anomaly rate that causes policy <0-99> corresponding alarm to be cleared. If no more than this density of anomalies occurs during the alarm clear loss-packet-clear-policy <0-99>...
Page 794 UMN:CLI User Manual V5824G To configure the R-bit transmit set policy, use the following command. Command Mode Description Defines the number of consecutive lost packets that causes the transmitted R-bit to be set in the TDM to r-bit-transmit-set-policy VALUE PSN direction, indicating lost packets to the far end.
Page 795 UMN:CLI User Manual V5824G 12.9.9 Displaying Pseudowire Maintenance Information To display the information of pseudowire maintenance profiles, use the following command. Command Mode Description Global GPON Shows the information of pseudowire maintenance show pw-maintenance-profile GPON-OLT profiles. [NAME] NAME: pseudowire maintenance profile name...
Page 796 UMN:CLI User Manual V5824G 12.10 Performance Monitoring (PM) Profile Performance Monitoring (PM) profile is used for the traffic statistics of all ONUs (ONTs) collected by an OLT. The ONT conceptually has only two storage bins: a current accumulator and a history bin. The current accumulator is used to store data collected for the current 15-minute interval.
Page 797 UMN:CLI User Manual V5824G To enable/disable the performance monitoring (PM) function to collect the traffic statistics of the configured ANI port, use the following command. Command Mode Description Enables PM function to collect the data of ANI port’s pm aniport counters that are FCS error and the downstream GEM frame discarded due to buffer overflow or etc.
Page 798 UMN:CLI User Manual V5824G To enable/disable the performance monitoring (PM) function to collect the traffic statistics of the configured GEM NCTP ports, use the following command. Command Mode Description Enables the PM function to collect the counters of the pm gem-nctp configured GEM port network CTP for a specified traffic profile.
Page 799 UMN:CLI User Manual V5824G 12.10.5 Displaying ONU Traffic Statistics To display the traffic statistics of an ONU applied by PM profile, use the following command. Command Mode Description Enable show statistics OLT-ID Global Shows the information of ONU counters collected via...
Page 800 UMN:CLI User Manual V5824G 12.10.6 Sample Configuration For the sample configuration, see “Configuration Example 2” in 12.15 Sample Configuration.
Page 801 UMN:CLI User Manual V5824G 12.11 Multicast Profile The multicast profile is used for ONU (ONT) to handle the multicast traffic using a IGMP- related commands. Multicast profile managed entity organizes data associated with multicast management at subscriber ports of 802.1 bridges, including 802.1p mappers when the provisioning model is mapper-based rather than bridge-based.
Page 802 UMN:CLI User Manual V5824G 12.11.2 IGMP Configurations To configure the multicast profile, use the following command. Command Mode Description Sets an IGMP version on a current interface. igmp version <1-3> 1-3: IGMP version (default: 2) igmp function snooping Enables the IGMP snooping.
Page 803 UMN:CLI User Manual V5824G VLANS: VLAN ID(s) (1-4095) VALUE: CoS (0-7) igmp upstream rate-limit <1- Configures the rate limit of upstream IGMP traffic 65535> 1-65535: IGMP message count (message/second) ONU will forward the IGMP join request or an IGMPv3 igmp unauthorized-join-request...
Page 804 UMN:CLI User Manual V5824G Traffic Profile Configuration mode first, then you have to apply the multicast profile to MAC bridge service profile and its UNI-side port. SWITCH(config-mcast-profile[TEST])# apply SWITCH(config-mcast-profile[TEST])# exit SWITCH(gpon)# traffic-profile 1 create SWITCH(config-traffic-pf[1])# bridge 1 SWITCH(config-traffic-pf[1]-bridge[1])# uni eth 1...
Page 805 UMN:CLI User Manual V5824G The maximum number of access list tables can be configurable up to 5 within a multicast access list. After opening Multicast Access Control List Configuration mode, the prompt changes from SWITCH(gpon)# to SWITCH(config-mcast-acl-profile[NAME])#. To delete a created multicast access list, use the following command.
Page 806 UMN:CLI User Manual V5824G 12.11.6.3 Saving Multicast ACL After configuring a multicast ACL, you need to save the profile with the following command. Command Mode Description Multicast- apply Saves a multicast ACL configuration. Whenever you modify a multicast ACL, you should apply the changes again using the apply command.
Page 807 UMN:CLI User Manual V5824G GPON-OLT Multicast- To display the information of IGMP access control list per ONU, use the following command. Command Mode Description Enable show onu multicast-access-list Global OLT-ID Shows the information of multicast access control lists GPON per ONU.
Page 808 UMN:CLI User Manual V5824G 12.12 Rate-limit Profile Basically the rate-limit configuration can be set in ‘Traffic Profile’. And the ‘Traffic Profile’ is assigned to ONT through 'ONU Profile'. When the service rate should be changed, you don’t need to modify all the 'Traffic Profiles' in the OLT. If an OLT has so many 'Traffic Profiles', you can create 'Rate-limit profile' and all Traffic Profiles can share this 'Rate-limit profile'.
Page 809 UMN:CLI User Manual V5824G 12.12.3 Saving Rate-limit Profile After configuring an Rate-limit profile, you need to save the profile with the following command. Command Mode Description Rate-limit apply Saves an Rate-limit profile configuration. Profile Whenever you modify an rate-limit profile, you should apply the changes again using the apply command.
Page 810 UMN:CLI User Manual V5824G 12.12.5 Displaying Rate-limit Profile To display the information of Rate-limit profile, use the following command. Command Mode Description Enable Global show rate-limit-profile GPON Shows the information of Rate-limit profile. [NAME] GPON-OLT NAME: Rate-limit profile name Rate-limit-...
Page 811 12.13 ONU Service Profile The V5824G provides numerous functions to customize a GPON network with many CLI commands and parameters. Each ONU profile can be designed with several profiles such as T-CONT, DBA and VoIP to meet the requirement of data bandwidth, VoIP access and the advanced security issues.
Page 812 UMN:CLI User Manual V5824G 12.14 GPON Debug To enable debugging of all GPON or a specific feature of GPON, use the following command. Command Mode Description Enables GPON debugging. all: all GPON features func: GPON function db: GPON database debug gpon { all | func | db | comm.: GPON communication...
Page 813 UMN:CLI User Manual V5824G 12.15 Sample Configuration Configuration Example 1 SWITCH(config)# gpon SWITCH(gpon)# voip-profile voip create SWITCH(config-voip-profile[voip])# codec-nego 1 codec pcma packet-period 10 silence-suppression 1 SWITCH(config-voip-profile[voip])# codec-nego 2 codec pcmu packet-period 10 silence-suppression 1 SWITCH(config-voip-profile[voip])# codec-nego 3 codec g729 packet-period 10...
Page 814 UMN:CLI User Manual V5824G SWITCH(gpon)# traffic-profile g-60a create SWITCH(config-traffic-pf[g-60a])# tcont 1 SWITCH(config-traffic-pf[g-60a]-tcont[1])# gemport 1/1-1/4 SWITCH(config-traffic-pf[g-60a]-tcont[1])# dba-profile sr_100m SWITCH(config-traffic-pf[g-60a]-tcont[1])# exit SWITCH(config-traffic-pf[g-60a])# tcont 2 SWITCH(config-traffic-pf[g-60a]-tcont[2])# gemport 2/1-2/4 SWITCH(config-traffic-pf[g-60a]-tcont[2])# dba-profile sr_100m SWITCH(config-traffic-pf[g-60a]-tcont[2])# exit SWITCH(config-traffic-pf[g-60a])# tcont 3 SWITCH(config-traffic-pf[g-60a]-tcont[3])# gemport 4/1-4/4 SWITCH(config-traffic-pf[g-60a]-tcont[3])# dba-profile sr_100m SWITCH(config-traffic-pf[g-60a]-tcont[3])# exit...
Page 815 UMN:CLI User Manual V5824G SWITCH(config-traffic-pf[g-60a])# ip-host-config 1 SWITCH(config-traffic-pf[g-60a]-iphost[1])# ip address dhcp SWITCH(config-traffic-pf[g-60a]-iphost[1])# vlan-operation us-oper overwrite 100 0 SWITCH(config-traffic-pf[g-60a]-iphost[1])# vlan-operation ds-oper remove SWITCH(config-traffic-pf[g-60a]-iphost[1])# link voip-service 1 SWITCH(config-traffic-pf[g-60a]-iphost[1])# exit SWITCH(config-traffic-pf[g-60a])# ip-host-config 2 SWITCH(config-traffic-pf[g-60a]-iphost[2])# ip address static SWITCH(config-traffic-pf[g-60a]-iphost[2])# dns primary 168.123.0.1 secondary 168.123.0.2...
Page 816 UMN:CLI User Manual V5824G SWTICH(config-pm-profile[PM_PROFILE])# apply SWTICH(config-pm-profile[PM_PROFILE])# exit SWITCH(gpon)# onu-profile ONU_PROFILE create SWITCH(config-onu-profile[ONU_PROFILE])# traffic-profile TRAFFIC_PROFILE SWITCH(config-onu-profile[ONU_PROFILE])# pm-profile PM_PROFILE SWITCH(config-onu-profile[ONU_PROFILE])# apply SWITCH(config-onu-profile[ONU_PROFILE])# exit SWITCH(gpon)# SWITCH(gpon)# gpon-olt 2 SWITCH(config-gpon-olt[2])# show onu statistics ------------------------------------------------------------------------------ OLT : 2 ONU : 1 ------------------------------------------------------------------------------ Enabled PM : gemport aniport...
Page 817 Enables the web-based management. Global web-mgmt disable Disables the web-based management. Step 2 To access web-based GUI, open a web browser and enter the IP address of the V5824G on URL address bar. ← http://A.B.C.D ip address of V5824G Step 3 A new window is displayed on the screen as the following figure, it will require you to set your login ID and password when you first access the web interface.
Page 818 UMN:CLI User Manual V5824G  System Management - Base Information, System Conf, Timer Setting, Login Information, DNS, Process, SSH Remote, Hardware Information, SFP, DMI, Slot, Upgrade  Management - Fault, SNMP, Syslog, RMON  Bridge - Filter, LAG, Port Security, Network, Port Control, QinQ, STP Manager, VLAN ...
Page 819 14 System Software Upgrade For the system enhancement and stability, new system software may be released. Using this software, the V5824G can be upgraded without any hardware change. You can simply upgrade your system software with the provided upgrade functionality via the CLI.
Page 820 Step 1 To open the boot mode, press <S> key when the boot logo is shown up. ************************************************************ Boot Loader Version x.xx Dasan Network Solutions ************************************************************ Press 's' key to go to Boot Mode: 0 Boot> Step 2 To enable the MGMT interface to communicate with TFTP server, you need to configure a...
Page 821 UMN:CLI User Manual V5824G To configure an IP address, use the following command. Command Mode Description ip A.B.C.D Configures an IP address. Boot Shows a currently configured IP address. To configure a subnet mask, use the following command. Command Mode Description netmask A.B.C.D...
Page 822 Using the load command, the system will download the new system software from the server. The following is an example of upgrading the system software stored in os1 in the boot mode. Boot> load os1 10.27.41.82 V5824G 1.05.x TFTP from server 10.27.41.82; our IP address is 10.27.41.83 Filename 'V5824G.1.05.x'. Load address: 0xffffe0...
Page 823 To upgrade the system software using FTP, perform the following step-by-step instruction: Step 1 Connect to the V5824G with your FTP client software. To login the system, you can use the system user ID and password. Note that you must use the command line-based interface FTP client software when upgrading the V5824G.
Page 824 To reflect the downloaded system software, the system must restart using the reload command! For more information, see Section 4.1.10.1. The following is an example of upgrading the system software of the V5824G using the FTP provided by Microsoft Windows XP in the remote place.
Page 825 14.4 ONU Upgrade The V5824G provides the remote ONU (ONT) upgradeability. This feature allows the system administrators not to offer the local service for a single ONU (ONT) at the customer premise. To upgrade an ONU successfully, you need to download a new ONU firmware in the system.
Page 826 [ONU-IDs] 14.4.2 Auto Upgrade For efficient system maintenance, the V5824G provides the auto upgrade functionality for ONU firmware in the operational environment. You can simply upgrade the ONU firmware without an effort for every single ONU. To automatically upgrade the ONU, perform the following step-by-step instruction: Step 1 Download GPON ONU firmware using the following command.
Page 827 UMN:CLI User Manual V5824G Step 4 To perform the auto upgrade of OLT firmware when the version of two firmware is different, regardless of the lastest firmware version, use the following command. Command Mode Description auto-upgrade version- Enables/disables the ONU auto upgrade function match all { enable | disable} without verification of the firmware version.
Page 828 UMN:CLI User Manual V5824G 15 Abbreviations Access Control List Address Resolution Protocol Any Source Multicast Border Gateway Protocol Bootstrap Router Communauté Européenne CIDR Classless Inter Domain Routing Command Line Interface CLNS Connectionless Network Service Class of Service CSNP Complete Sequence Number PDU...
Page 829 UMN:CLI User Manual V5824G International Electrotechnical Commission IEEE 802 Standards for Local and Metropolitan Area Networks IEEE 802.1 Glossary, Network Management, MAC Bridges, and Internetworking IEEE Institute of Electrical and Electronic Engineers IETF Internet Engineering Task Force IFSM Interface Finite State Machine...
Page 830 UMN:CLI User Manual V5824G Network Element Network Entity Title NFSM Neighbor Finite State Machine Network Time Protocol Outgoing Interface Optical Line Termination Optical Network Terminal Operating System OSPF Open Shortest Path First Personal Computer Protocol Data Unit PIM-DM Protocol Independent - Multicast Dense Mode...
Page 831 UMN:CLI User Manual V5824G Shortest Path Tree Secure Shell Source-Specific Multicast Spanning Tree Protocol Software Topology Change Notification Transmission Control Protocol Tree Information Base TFTP Trivial FTP Type of Service Time-To-Live User Datagram Protocol User Manual VLAN ID Virtual Interface...

Dasan V5824G User Manual

Table of Contents

Illustrations

1 Introduction

2 System Overview

3 Command Line Interface (CLI)

4 System Connection and IP Address

5 Port Configuration

6 System Environment

7 Network Management

Quick Links

Chapters

Related Manuals for Dasan V5824G

Summary of Contents for Dasan V5824G