Page 1 AT-GS900M Series Gigabit Ethernet Switch Management Software Version 2.3.2 Command Line Interface Reference 613-002052 Rev. B...
Page 2 * Neither the name of Allied Telesis, Inc. nor the names of the respective companies above may be used to endorse or promote products derived from this software without specific prior written permission.
Page 3: Table Of Contents
Contents Preface ................................13 Document Conventions..........................14 Where to Find Web-based Guides......................15 Contacting Allied Telesis..........................16 Section I: Getting Started ..................17 Chapter 1: Command Line Interface ......................19 Management Sessions..........................20 Local Management ..........................20 Remote Management .......................... 20 Manager Account ............................
Page 4 Contents SET INSTALL ............................. 50 SET PASSWORD............................51 SET SYSTEM............................. 52 SET SYSTEM SFP-TEMPTHRESHOLD ....................53 SET TIME ..............................54 SHOW CPU..............................55 SHOW DEBUG............................56 SHOW INSTALL............................57 SHOW SYSTEM............................58 SHOW TIME............................... 61 Chapter 4: Basic Operations ......................... 63 File System Overview..........................
Page 5 AT-GS900M Series Command Reference SET LOG OUTPUT..........................102 SHOW CRASHLOG..........................105 SHOW LOG ............................. 106 SHOW LOG COUNTER........................... 108 SHOW LOG OUTPUT..........................109 SHOW LOG STATUS ..........................110 Chapter 7: SNMP Commands ........................111 ADD SNMP COMMUNITY ........................113 CREATE SNMP COMMUNITY ........................ 115 DELETE SNMP COMMUNITY.........................
Page 6 Contents Chapter 10: HTTP Commands ........................173 DISABLE HTTP SERVER ........................174 ENABLE HTTP SERVER .........................175 SET HTTP LISTENPORT.........................176 SHOW HTTP SERVER ..........................177 Chapter 11: RADIUS Authentication Server Commands ................179 ADD RADIUSSERVER SERVER......................180 DELETE RADIUSSERVER SERVER ......................181 DISABLE RADIUSACCOUNTING......................182 ENABLE RADIUSACCOUNTING......................183 SET AUTHENTICATION ..........................184 SET RADIUS ............................185 SET RADIUSACCOUNTING........................186 SHOW AUTHENTICATION........................188...
Page 7 AT-GS900M Series Command Reference DISABLE SWITCH POWERSAVE......................236 DISABLE SWITCH STORMDETECTION ....................237 ENABLE SWITCH BPDUFORWARDING....................238 ENABLE SWITCH EAPFORWARDING....................239 ENABLE SWITCH INFILTERING ......................240 ENABLE SWITCH LOOPDETECTION ....................241 ENABLE SWITCH MIRROR ........................242 ENABLE SWITCH PORT......................... 243 ENABLE SWITCH PORT AUTOMDI .......................
Page 8 Contents DELETE DHCPSNOOPING ........................308 DESTROY DHCPSNOOPING MACFILTER ....................309 DISABLE DHCPSNOOPING........................310 DISABLE DHCPSNOOPING ARPSECURITY ..................311 DISABLE DHCPSNOOPING LOG ......................312 DISABLE DHCPSNOOPING OPTION82 ....................313 ENABLE DHCPSNOOPING........................314 ENABLE DHCPSNOOPING ARPSECURITY ..................316 ENABLE DHCPSNOOPING LOG ......................317 ENABLE DHCPSNOOPING OPTION82 ....................318 PURGE DHCPSNOOPING ........................319 RESET DHCPSNOOPING COUNTER ....................320 RESET DHCPSNOOPING DATABASE....................321 SET DHCPSNOOPING CHECKINTERVAL.....................322 SET DHCPSNOOPING CHECKOPTION....................323...
Page 9 AT-GS900M Series Command Reference Chapter 21: Multiple Spanning Tree Protocol (MSTP) Commands ............377 ADD MSTP MSTI VLAN........................... 379 CREATE MSTP MSTI ..........................380 DELETE MSTP MSTI VLAN ........................381 DESTROY MSTP MSTI ........................... 382 DISABLE MSTP ............................383 DISABLE MSTP DEBUG MSTI........................ 384 ENABLE MSTP ............................
Page 10 Contents SET QOS DSCP............................445 SET QOS HWPRIORITY..........................446 SET QOS HWQUEUE..........................448 SET QOS SCHEDULING .........................449 SHOW QOS .............................450 SHOW QOS DSCP ..........................451 SHOW QOS HWPRIORITY ........................452 SHOW QOS HWQUEUE..........................453 SHOW QOS SCHEDULING........................454 Chapter 26: Policy-Based QoS Commands ....................455 ADD QOS FLOWGROUP ........................457 ADD QOS POLICY...........................458 ADD QOS TRAFFICCLASS ........................459 CREATE CLASSIFIER ..........................460...
Page 11 AT-GS900M Series Command Reference SET PORTAUTH USERIDFORMAT......................529 SET WEBAUTHSERVER ........................531 SHOW PORTAUTH ..........................532 SHOW PORTAUTH PORT AUTHENTICATOR..................534 SHOW PORTAUTH PORT SUPPLICANT....................536 SHOW WEBAUTHSERVER ........................538 Command Index ...................... 539...
Page 12 Contents...
Page 13: Preface
This preface contains the following sections: “Document Conventions” on page 14  “Where to Find Web-based Guides” on page 15  “Contacting Allied Telesis” on page 16  Caution The software described in this document may contain certain encryption/security or cryptographic functionality and for exporting those products/software, USA export restrictions apply as per 15 C.F.R.
Page 14: Document Conventions
Document Conventions This document uses the following conventions: Note Notes provide additional information. Caution Cautions inform you that performing or omitting a specific action may result in equipment damage or loss of data. Warning Warnings inform you that performing or omitting a specific action may result in bodily injury.
Page 15: Where To Find Web-Based Guides
AT-GS900M Series CLI Reference Where to Find Web-based Guides The installation and user guides for all of the Allied Telesis products are available for viewing in portable document format (PDF) from our web site at www.alliedtelesis.com/support/documentation.
Page 16: Contacting Allied Telesis
Contacting Allied Telesis If you need assistance with this product, you may contact Allied Telesis technical support by going to the Support & Services section of the Allied Telesis web site at www.alliedtelesis.com/support. You can find links for the following services on this page: 24/7 Online Support—...
Page 17: Section I: Getting Started
Section I Getting Started This section contains the following chapters: Chapter 1, ”Command Line Interface” on page 19  Chapter 2, ”Starting a Management Session” on page 23  Chapter 3, ”Basic CLI Management Commands” on page 37  Chapter 4, ”Basic Operations” on page 63 ...
Page 18 AT-GS900M Series CLI Reference...
Page 19: Chapter 1: Command Line Interface
AT-GS900M Series CLI Reference Chapter 1 Command Line Interface This chapter has the following sections: “Management Sessions” on page 20  “Manager Account” on page 21  “Command Format” on page 22  Section I: Getting Started...
Page 20: Management Sessions
HTTP Web Browser The switch has a HTTP server. The server is used to remotely manage the switch over the network with a web browser application. Allied Telesis supports MS Internet Explorer. Before starting an initial management session using HTTP, you must enable the HTTP server on the switch.
Page 21: Manager Account
AT-GS900M Series CLI Reference Manager Account You must log on to manage the switch. The switch comes with one manager account. The user name of the account is “manager” and the default password is “friend.” The user name and password are case- sensitive.
Page 22: Command Format
Chapter 1: Command Line Interface Command Format The following sections describe the command line interface features and the command syntax conventions. Command Line The command line interface has these features: Interface Command history - Use the up and down arrow keys. ...
Page 23: Chapter 2: Starting A Management Session
AT-GS900M Series CLI Reference Chapter 2 Starting a Management Session This chapter has the following sections: “Overview” on page 24  “Starting a Local Management Session” on page 25  “Starting a Remote Management Session Using Telnet” on page 26 ...
Page 24: Overview
Layer 3 devices. Note To manage the switch through the web browser interface, see the AT-GS900M Series Switch Web Browser User’s Guide. What to Here are a few suggestions on what to configure during your initial...
Page 25: Starting A Local Management Session
AT-GS900M Series CLI Reference Starting a Local Management Session To start a local management session on the switch, perform the following procedure: 1. Connect the RJ-45 connector on the management cable to the console port on the switch. The Console port is located on the back panel on the AT-GS900M series switch.
Page 26: Starting A Remote Management Session Using Telnet
Chapter 2: Starting a Management Session Starting a Remote Management Session Using Telnet The switch has a Telnet server installed. You can use Telnet to manage the switch remotely. To start a Telnet management session, perform the following procedure: 1. Assign a management IP address to the switch. See “Adding a Management IP Address”...
Page 27: Starting A Remote Management Session Using The Web Browser
AT-GS900M Series CLI Reference Starting a Remote Management Session Using the Web Browser The switch has an HTTP server installed. You can use HTTP to manage the switch through the Web browser. To start a HTTP management session, perform the following procedure: 1.
Page 28: Adding A Management Ip Address
Chapter 2: Starting a Management Session Adding a Management IP Address You must assign the switch a management IP address to start a remote management session. The switch can have one IPv4 address on the switch. The following example assigns the switch the IPv4 management address 192.168.0.3, the subnet mask of 255.255.255, and the default gateway 192.168.0.255: Manager >...
Page 29: Changing The Login Password
Note Write down the new password and keep it in a safe and secure location. When you forget the manager password, you are not able to manage the switch. Contact Allied Telesis Technical Support for assistance. Section I: Getting Started...
Page 30: Assigning A Name To The Switch
Chapter 2: Starting a Management Session Assigning a Name to the Switch The switch is easier to identify if you assign the switch a name. The switch’s name replaces the “Manager” in the command line prompt. A name is assigned to the switch with the SET SYSTEM command. Here is the format of the command: name set system name=...
Page 31: Keyboard Shortcuts For Command Line Interface
AT-GS900M Series CLI Reference Keyboard Shortcuts for Command Line Interface The useful keyboard shortcuts are listed in Table 1. Table 1. Basic Command Line Commands Keyboard Shortcut Description Ctrl + a Moves the cursor to the beginning of the line.
Page 32 Chapter 2: Starting a Management Session Table 1. Basic Command Line Commands (Continued) Keyboard Shortcut Description Spacebar Performs one of the following: Enter the shortcut with no character: the  first words of the available commands are listed. Enter the shortcut with a partial command: it ...
Page 33: Using Online Help
AT-GS900M Series CLI Reference Using Online Help The AT-GS900M Series CLI provides online help. When you enter the HELP command without parameters as shown  below, a list of the help topics is displayed. Manager > help When you enter the HELP command with a topic, the help information ...
Page 34: Saving Your Changes
Chapter 2: Starting a Management Session Saving Your Changes The switch does not save changes when you shut down or restart the switch. If you want to restart the switch with the configuration that you changed, save changes into a configuration file and assign the configuration file as the start-up configuration file.
Page 35: Starting The Switch With The Default Setting
AT-GS900M Series CLI Reference Starting the Switch with The Default Setting To start the switch with the default settings, do the following: 1. Assign the startup configuration as none using the SET CONFIG command: Manager > set config=none 2. Restart the switch Manager >...
Page 36: Ending A Management Session
Chapter 2: Starting a Management Session Ending a Management Session The following commands ends the current management session: LOGOUT  LOGOFF  QUIT  EXIT   Note Pressing [Ctrl] + D also ends the current session when no command is at the prompt.
Page 37: Chapter 3: Basic Cli Management Commands
AT-GS900M Series CLI Reference Chapter 3 Basic CLI Management Commands The basic Command Line Interface (CLI) management commands are summarized in Table 2. Table 2. Basic CLI Management Commands Command Description “BYE” on page 39 Ends the current management session.
Page 38 Chapter 3: Basic CLI Management Commands Table 2. Basic CLI Management Commands (Continued) Command Description “SHOW DEBUG” on page 56 Displays the debug information. “SHOW INSTALL” on page 57 Displays the name of the boot configuration file. “SHOW SYSTEM” on page 58 Displays the system information.
Page 39: Bye
AT-GS900M Series CLI Reference Syntax Parameters None Description Use this command to end the current management session. The LOGOFF, LOGOUT, QUIT, and EXIT commands do the same as the BYE command. Example The following command ends the current management session: Manager >...
Page 40: Cls
Chapter 3: Basic CLI Management Commands Syntax Parameters None Description Use this command to clear the screen. Example This example clears the screen: Manager > cls Section I: Getting Started...
Page 41: Disable System Fan-Startstop-Alarm
AT-GS900M Series CLI Reference DISABLE SYSTEM FAN-STARTSTOP-ALARM Syntax disable system fan-startstop-alarm Parameters None Description Use this command to stop sending alarm messages when the fan starts and stops. Alarm messages are: SNMP trap  Syslog message  Log message ...
Page 42: Enable System Fan-Startstop-Alarm
Chapter 3: Basic CLI Management Commands ENABLE SYSTEM FAN-STARTSTOP-ALARM Syntax enable system fan-startstop-alarm Parameters None Description Use this command to send alarm messages when the fan starts and stops. Alarm messages are: SNMP trap  Syslog message  Log message ...
Page 43: Exit
AT-GS900M Series CLI Reference EXIT Syntax exit Parameters None Description Use this command to end the current management session. The LOGOFF, LOGOUT, QUIT, and BYE commands do the same as the EXIT command. Example The following command ends the current management session: Manager >...
Page 44: Help
Chapter 3: Basic CLI Management Commands HELP Syntax command topic help [ Parameters command Specifies a command such as set password, create file, etc. topic Specifies a topic keyword listed in Table 3. Description Use this command to display information about a specified command, information about a specified topic, a list of available topics.
Page 45 AT-GS900M Series CLI Reference Table 3. Help Topic Keywords (Continued) Topic keyword Help Topic (shortcut key) mldsnooping (ml) MLD snooping mstp (ms) MSTP ntp (n) portauth (ports) Port authentication portlead (portl) Port LED qos (qo) radius (r) Radius script (sc)
Page 46: Logoff
Chapter 3: Basic CLI Management Commands LOGOFF Syntax logoff Parameters None Description Use this command to end the current management session. The LOGOUT, QUIT, EXIT, and BYE commands do the same as the LOGOFF command. Example The following command ends the current management session: Manager >...
Page 47: Logout
AT-GS900M Series CLI Reference LOGOUT Syntax logout Parameters None Description Use this command to end the current management session. The LOGOUT, QUIT, EXIT, and BYE commands do the same as the LOGOFF command. Example The following command ends the current management session: Manager >...
Page 48: Quit
Chapter 3: Basic CLI Management Commands QUIT Syntax quit Parameters None Description Use this command to end the current management session. The LOGOFF, LOGOUT, BYE, and EXIT commands do the same as the QUIT command. Example The following command ends the current management session: Manager >...
Page 49: Restart
AT-GS900M Series CLI Reference RESTART Syntax restart Parameters None Description Use this command to reset the hardware components and restart the switch. Example The following command prompts you to confirm to reboots the switch. At the prompt, type y: Manager > restart...
Page 50: Set Install
Chapter 3: Basic CLI Management Commands SET INSTALL Syntax software_file set install=preferred release= Parameter software_file Specifies the name of the management software image file. The file name must be in the following format: gs900mv2_vnnnn.rel Note keyword is the only option to set install command. preferred Description Use this command to select a software image file as the boot configuration...
Page 51: Set Password
AT-GS900M Series CLI Reference SET PASSWORD Syntax set password Parameters None Description Use this command to change the login password. The password can be up to 16 alphanumeric characters. Special characters and spaces are allowed. The password is case-sensitive. When no password is entered, you can login without password.
Page 52: Set System
Chapter 3: Basic CLI Management Commands SET SYSTEM Syntax system_name location_name set system name=” ”|location=” ”| contact=” contact_name ” Parameter system_name Specifies a value for the sysName MIB object. location_name Specifies a value for the sysLocation MIB object. contact_name Specifies a value for the sysContact MIB object. Description Use this command to specify the values of MIB objects: sysName, sysLocation, and sysContact:...
Page 53: Set System Sfp-Tempthreshold
AT-GS900M Series CLI Reference SET SYSTEM SFP-TEMPTHRESHOLD Syntax temperature set system sfp-tempthreshold= Parameter temperature Specifies the temperature threshold. The value must be 40, 45, or 50⁰C. Description Use this command to set the temperature threshold for the SFP modules. When the internal temperature of the SFP module exceeds the temperature threshold, the switch sends alarm messages such as SNMP traps and log messages.
Page 54: Set Time
Chapter 3: Basic CLI Management Commands SET TIME Syntax time date set Time= |date= Parameter time Specifies the system time. The format is hh:mm:ss. date Specifies the system date. The format is yyyy-mm-dd. Description Use this command to specify the system time and system date. Confirmation Command “SHOW TIME”...
Page 55: Show Cpu
AT-GS900M Series CLI Reference SHOW CPU Syntax show cpu Parameter None Description Use this command to display the CPU usage. See Figure 2 for an example of the command output. CPU Utilisation ( as a percentage ) ---------------------------------------- Average over last second ... 9 Average over last minute ...
Page 56: Show Debug
Chapter 3: Basic CLI Management Commands SHOW DEBUG Syntax show debug Parameter None Description Use this command to display the debug information. See Figure 3 for an example of the command output. SHOW SYSTEM SHOW FILE SHOW CONFIG DYNAMIC SHOW LOG SHOW CRASHLOG Figure 3.
Page 57: Show Install
AT-GS900M Series CLI Reference SHOW INSTALL Syntax show install Parameter None Description Use this command to display the management software information. See Figure 4 for an example of the command output. Install Release --------------------------------------------------------- Preferred flash:gs900mv2_v232.rel ---------------------------------------------------------- Current install ---------------------------------------------------------- Preferred flash:gs900mv2_v232.rel...
Page 58: Show System
Chapter 3: Basic CLI Management Commands SHOW SYSTEM Syntax show system Parameter None Description Use this command to display the system information of the switch. See Figure 5 for an example of the command output. Switch System Status Date 2011-05-19 Time 13:58:46 Board Board Name --------------------------------------------------------------------...
Page 59 AT-GS900M Series CLI Reference The fields are described in Table 5. Table 5. SHOW SYSTEM Command Field Description Board Name Displays the name of the device. DRAM Displays the size of the DRAM on the switch. FLASH Displays the size of the FLASH memory on the switch.
Page 60 Chapter 3: Basic CLI Management Commands Table 5. SHOW SYSTEM Command (Continued) Field Description 1.2V Displays the status of each power supply. The options are Normal, Warning, and Failed. Failed means that 2.5V the switch failed to read the data. The status of 12V is not available for GS908M V2 models.
Page 61: Show Time
AT-GS900M Series CLI Reference SHOW TIME Syntax show time Parameter None Description Use this command to display the system time of the switch. See Figure 6 for an example of the command output. System time is 2011-05-26 Tuesday at 11:29:44 Figure 6.
Page 62 Chapter 3: Basic CLI Management Commands Section I: Getting Started...
Page 63: Chapter 4: Basic Operations
AT-GS900M Series CLI Reference Chapter 4 Basic Operations This chapter has the following sections: “File System Overview” on page 64  “Downloading a File to the Switch” on page 65  “Uploading a File from the Switch” on page 67 ...
Page 64: File System Overview
Chapter 4: Basic Operations File System Overview The switch has a file system built in the flash memory. You can access files on the file system using CLI commands. File Types The file types that you can store on the file system on the switch are listed in Table 6: Table 6.
Page 65: Downloading A File To The Switch
AT-GS900M Series CLI Reference Downloading a File to the Switch You can download files onto the switch either from TFTP server or using FTP. You can download the following file types to the switch: New releases of the management software (.rel) ...
Page 66 Chapter 4: Basic Operations 5. Confirm that the file is transfered successfully. The following is a message example: 200 PORT command successful. 150 Opening ASCII mode data connection for config2.cfg. 266 Transfer Complete. fgp: 546 bytes received in 0.03 Seconds 17.61 Kbytes/sec. ftp>...
Page 67: Uploading A File From The Switch
AT-GS900M Series CLI Reference Uploading a File from the Switch You can save files from the switch to the TFTP server or transfer files on the switch to the FTP client. Uploading a File To upload a configuration file on the switch to a TFTP server, use the UPLOAD command.
Page 68 Chapter 4: Basic Operations 200 PORT command successful. 150 Opening ASCII mode data connection for config1.cfg. 266 Transfer Complete. fgp: 546 bytes received in 0.03Seconds 17.61Kbytes/sec. ftp> Section I: Getting Started...
Page 69: Updating The Management Software
Updating the Management Software When a new release of management software for the AT-GS900M Series switch is available, the image file will be posted on the Allied Telesis website. To update the management software on the switch, download the file from to the switch using either TFTP server or FTP server.
Page 70 Chapter 4: Basic Operations 2. Start a local or remote management session on the switch. 3. Check for the space on the system by using the SHOW FILE command. If the switch has two management software image files, delete one or both files.
Page 71: Chapter 5: Basic Operations Commands
AT-GS900M Series CLI Reference Chapter 5 Basic Operations Commands The basic operations commands are summarized in Table 7. Table 7. Basic Operations Commands Command Description “ACTIVATE SCRIPT” on page 73 Runs the specified script. “CLEAR FLASH TOTALLY” on Deletes all the files stored on the flash page 74 memory.
Page 72 Chapter 5: Basic Operations Commands Table 7. Basic Operations Commands (Continued) Command Description “SHOW LOADER” on page 89 Displays the settings of the loader. “SHOW TFTP” on page 90 Displays the UDP port for the TFTP server. “UPLOAD” on page 91 Uploads configuration or script files to the TFTP server.
Page 73: Activate Script
AT-GS900M Series CLI Reference ACTIVATE SCRIPT Syntax file_name activate script= Parameter file_name Specifies a .cfg or .scp. Description Use this command to run the specified script. A running command is displayed after the =>. Example The following command runs the system.cfg and shows running commands: Manager >...
Page 74: Clear Flash Totally
Chapter 5: Basic Operations Commands CLEAR FLASH TOTALLY Syntax clear flash totally Parameters None Description Use this command to delete all the files stored on the flash memory except the management software image file that the system is currently running Confirmation Command “SHOW CONFIG”...
Page 75: Copy
AT-GS900M Series CLI Reference COPY Syntax sourcefile_name destfile_name copy Parameters sourcefile_name Specifies the name of a configuration file you want to copy. destfile_name Specifies the name of the new copy of the file. The destination filename can be from 1 to 20 alphanumeric characters. It is case- sensitive.
Page 76: Create Config
Chapter 5: Basic Operations Commands CREATE CONFIG Syntax file_name create config= Parameters file_name Specifies the name of a new file. The file name can be from 1 to 20 alphanumeric characters including a period and extension. The file name is case-sensitive. The extension must be “.cfg” or “.scp.” The file name can include hyphen (-), underscore (_), period (.), and parentheses (()).
Page 77: Delete File
AT-GS900M Series CLI Reference DELETE FILE Syntax file_name delete file= Parameter filename Specifies the file name of a file to delete from the switch. You can also specify a file name using one wild card (*). The wild card (*) must be at the beginning or end of the file name.
Page 78: Disable Ftp Server
Chapter 5: Basic Operations Commands DISABLE FTP SERVER Syntax disable ftp server Parameters None Description Use this command to disable the FTP server on the switch. By default, the FTP server is enabled. Confirmation Command “SHOW FTP” on page 88 Example The following command disables the FTP server: Manager >...
Page 79: Enable Ftp Server
AT-GS900M Series CLI Reference ENABLE FTP SERVER Syntax enable ftp server Parameters None Description Use this command to enable the FTP server on the switch. By default, the FTP server is enabled. Confirmation Command “SHOW FTP” on page 88 Example The following command enables the FTP server: Manager >...
Page 80: Load
Chapter 5: Basic Operations Commands LOAD Syntax file_name file_name load [method=tftp] [file= ] [destfile= [server= ip_address ] [firmware] Parameters file Specifies the path and name of a file to download. destfile Specifies a new file name for the downloaded file. file_name The file name can be from 1 to 20 alphanumeric characters including a period and extension.
Page 81: Set Config
AT-GS900M Series CLI Reference SET CONFIG Syntax file_name set config=[ |none] Parameters file_name Specifies the name of a configuration file. When rebooting, the switch uses this file as the start-up configuration file. none Specifies no file. When rebooting, the switch starts with the default configuration.
Page 82: Set Ftp Listenport
Chapter 5: Basic Operations Commands SET FTP LISTENPORT Syntax port_number set ftp listenport= Parameter port_number Specifies the port number of TCP port for FTP control. The port number is from 1 to 65535. Description Use this command to change the TCP port for FTP control. By default, the FTP control port is 21.
Page 83: Set Loader
AT-GS900M Series CLI Reference SET LOADER Syntax file_name set loader [method=tftp] [file= [destfile= file_name ] [server= ip_address Parameters file Specifies the path and name of a file to download. destfile Specifies a new file name for the downloaded file. file_name The file name can be from 1 to 20 alphanumeric characters including a period and extension.
Page 84: Set Tftp Listenport
Chapter 5: Basic Operations Commands SET TFTP LISTENPORT Syntax port_number set tftp listenport= Parameter port_number Specifies the port number of UDP port for the TFTP server. The port number is from 1 to 65535. Description Use this command to change the UDP port for the TFTP server. By default, the UDP port for the TFTP server is 69.
Page 85: Show Config
AT-GS900M Series CLI Reference SHOW CONFIG Syntax module_name module_name show config [dynamic= ]|[all= Parameters module_name Specifies the module name such as vlan, ip, igmpsnooping, mldsnooping, mac, trunk. dynamic Specifies the no file. When rebooting, the switch starts with the default configuration.
Page 86: Show File
Chapter 5: Basic Operations Commands SHOW FILE Syntax file_name show file[= Parameter file_name Specifies the file name of a file to display its content. You can also specify a file name using one wild card (*). The wild card (*) must be at the beginning or end of the file name.
Page 87 AT-GS900M Series CLI Reference Manager > show file=config1.cfg File : config1.cfg 3:# SYSTEM configuration 7:# LOAD configuration 10:# 11:# CONSOLE configuration 12:# 14:# 15:# VLAN configuration 16:# 18:# 19:# IP configuration 20:# 21:add ip interface=default ipaddress=192.168.1.105 mask=255.255.255.0 Figure 8. SHOW FILE Command with a File Name...
Page 88: Show Ftp
Chapter 5: Basic Operations Commands SHOW FTP Syntax show ftp Parameters None Description Use this command to display the information about the FTP server. An example is shown in Figure 9. FTP Module Configuration: -------------------------------------- FTP Server : Enabled FTP Server Listen Port : 21 -------------------------------------- Figure 9.
Page 89: Show Loader
AT-GS900M Series CLI Reference SHOW LOADER Syntax show loader Parameters None Description Use this command to display the information about the loader. The settings are used for the LOAD and UPLOAD commands. An example is shown in Figure 10. Loader Information...
Page 90: Show Tftp
Chapter 5: Basic Operations Commands SHOW TFTP Syntax show tftp Parameters None Description Use this command to display the setting of the TFTP server port. An example is shown in Figure 11. TFTP Client Configuration: ------------------------------------- TFTP Server Port : 69 ------------------------------------- Figure 11.
Page 91: Upload
AT-GS900M Series CLI Reference UPLOAD Syntax file_name file_name upload [method=tftp] [file= ] [destfile= [server= ip_address Parameters file Specifies the name of a file to upload. destfile Specifies a new file name for the upoaded file. file_name The file name can be from 1 to 20 alphanumeric characters including a period and extension.
Page 92 Chapter 5: Basic Operations Commands Section I: Getting Started...
Page 93: Section Ii: Switch Management
Section II Switch Management This section contains the following chapters: Chapter 6, “Log Commands” on page 95  Chapter 7, “SNMP Commands” on page 111  Chapter 8, “Simple Network Time Control (SNTP) Commands” on  page 145 Chapter 9, “Telnet Commands” on page 161 ...
Page 94 AT-GS900M Series CLI Reference...
Page 95: Chapter 6: Log Commands
AT-GS900M Series CLI Reference Chapter 6 Log Commands The log commands are summarized in Table 9. Table 9. Log Commands Command Description “DISABLE LOG” on page 96 Disables logging. “DISABLE LOG OUTPUT” on Disables the permanent log, the syslog, or page 97 both.
Page 96: Disable Log
Chapter 6: Log Commands DISABLE LOG Syntax disable log Parameters None Description Use this command to disable logging. By default, logging is enabled. Confirmation Command “SHOW LOG” on page 106 Example The following command disables logging: Manager > disable log Section II: Switch Management...
Page 97: Disable Log Output
AT-GS900M Series CLI Reference DISABLE LOG OUTPUT Syntax disable log output[=permanent|syslog] Parameters permanent Specifies the permanent log to disable. syslog Specifies the syslog to disable. Description Use this command to disable the permanent log, the syslog, or both. Confirmation Command “SHOW LOG”...
Page 98: Enable Log
Chapter 6: Log Commands ENABLE LOG Syntax enable log Parameters None Description Use this command to enable logging. By default, logging is enabled. Confirmation Command “SHOW LOG” on page 106 Example The following command enables logging: Manager > enable log Section II: Switch Management...
Page 99: Enable Log Output
AT-GS900M Series CLI Reference ENABLE LOG OUTPUT Syntax enable log output[=permanent|syslog] Parameters permanent Specifies the permanent log to enable. syslog Specifies the syslog to enable. Description Use this command to enable the permanent log, the syslog, or both. Confirmation Command “SHOW LOG”...
Page 100: Flush Log Output
Chapter 6: Log Commands FLUSH LOG OUTPUT Syntax flush log output[=permanent|syslog] Parameters permanent Specifies the permanent log to delete its log messages. syslog Specifies the syslog to delete its log messages. Description Use this command to delete the log messages of the specified log. Confirmation Command “SHOW LOG”...
Page 101: Purge Log
AT-GS900M Series CLI Reference PURGE LOG Syntax purge log output[=permanent|syslog] Parameters permanent Specifies the permanent log to delete its setting and counter. syslog Specifies the syslog to delete its setting and counter. Description Use this command to delete the log settings and counters.
Page 102: Set Log Output
Chapter 6: Log Commands SET LOG OUTPUT Syntax ip_address set log output[=permanent|syslog] [server= [listenport= port_number ] [severity=[ operator severity facility [facility= |default] Parameters output Specifies the permanent or syslog keyword. By default, the permanent keyword is specified. permanent Specifies the permanent log to set the parameters. syslog Specifies the syslog to set the parameters.
Page 103 AT-GS900M Series CLI Reference The severity levels are explained in Table 10. Table 10. Severity Level Severity Level Severity Critical Urgent Important Notice Information Detail Trivial Debug The severity parameter examples are listed in Table 11. Table 11. Operator Example...
Page 104 Chapter 6: Log Commands Table 12. Syslog Facility (Continued) Facility Facility Description Code Keyword syslog Messages generated internally by syslogd Line printer subsystem news Network news subsystem uucp UUCP subsystem cron Clock Daemon authpriv Security/authorization messages FTP daemon NTP subsystem audit Log audit alert...
Page 105: Show Crashlog
AT-GS900M Series CLI Reference SHOW CRASHLOG Syntax show crashlog Parameters None Description Use this command to display crash logs in the Non-Volatile (NV) memory on the switch. An example of the command output is shown in Figure 12. mC0DEDEAD 80000484 00000000 00000001...
Page 106: Show Log
Chapter 6: Log Commands SHOW LOG Syntax operator date operator time show log [date=[ ] [time=[ [severity=[ operator severity ] [reverse[= count count [tail[= Parameters operator Specifies one of the operators: <, >, or !. See Table 11 on page 103. date Specifies the date.
Page 107 AT-GS900M Series CLI Reference An example of the command output is shown in Figure 13. Date Time Lv Message ---------------------------------------------------------------------------- 2011-03-25 14:09:28 7 Switch startup, Ver 2.3.2 B01 Mar 24 2011, 21:24:14 2011-03-25 14:09:28 6 Port 7: interface is up...
Page 108: Show Log Counter
Chapter 6: Log Commands SHOW LOG COUNTER Syntax show log counter Parameters None Description Use this command to display diagnostic log counters: An example of the command output is shown in Figure 14. Log Counters ---------------------------------------------- Message Generated Message Processed PERMANENT Message Processed SYSLOG ---------------------------------------------- Figure 14.
Page 109: Show Log Output
AT-GS900M Series CLI Reference SHOW LOG OUTPUT Syntax show log output Parameters None Description Use this command to display the log settings: An example of the command output is shown in Figure 15. Output Type Status Server Port LogLv Facility...
Page 110: Show Log Status
Chapter 6: Log Commands SHOW LOG STATUS Syntax show log status Parameters None Description Use this command to display the log status: An example of the command output is shown in Figure 16. Log System Status -------------------------------------------- Log Module Status ....Enabled Log Message Generation ..
Page 111: Chapter 7: Snmp Commands
AT-GS900M Series CLI Reference Chapter 7 SNMP Commands The SNMPv1 and SNMPv2c commands are summarized in Table 13. Table 13. SNMPv1 and SNMPv2 Commands Command Description “ADD SNMP COMMUNITY” on Changes the settings of the traphost, page 113 manager, trap parameters for an SNMP community.
Page 112 Chapter 7: SNMP Commands Table 13. SNMPv1 and SNMPv2 Commands (Continued) Command Description “ENABLE SNMP TRAP” on Enables generating SNMP traps. page 129 “SET SNMP COMMUNITY” on Changes the settings of the access and page 130 open parameters for an SNMP community.
Page 113: Add Snmp Community
AT-GS900M Series CLI Reference ADD SNMP COMMUNITY Syntax community ip_address add snmp community= [traphost= [manager= ip_address ] [trap= trap Parameters community Specifies an existing community name. traphost Specifies the IP address of a host where SNMP traps are sent. manager Specifies the IP address of an SNMP management server.
Page 114 Chapter 7: SNMP Commands – intrusion – mstp – epsr – trigger – – newaddress – Description Use this command to change the settings of the traphost, manager, trap parameters for an SNMP community. Note To create a new community, use the CREATE SNMP COMMUNITY command.
Page 115: Create Snmp Community
AT-GS900M Series CLI Reference CREATE SNMP COMMUNITY Syntax community create snmp community= [access=read|write] [traphost= ip_address ] [manager= ip_address trap [open=on|off|yes|no|true|false] [trap= Parameters community Specifies a community name using up to 20 alphanumeric characters including a hyphen (-), underscore (_), period (.), parentheses (()), plus (+), and at sign (@).
Page 116 Chapter 7: SNMP Commands off, no, false Responds SNMP requests from only the host specified by the manager parameter. trap Specifies a trap type or multiple trap types. To specify multiple trap types, use a comma (,). By default, all trap types are specified. To send no traps, use the none keyword;...
Page 117 AT-GS900M Series CLI Reference Description Use this command to create an SNMP community. You can create up to 32 communities. One community can have up to four traphosts. Note To add more traphosts, use the ADD SNMP COMMUNITY command. See “ADD SNMP COMMUNITY” on page 113.
Page 118: Delete Snmp Community
Chapter 7: SNMP Commands DELETE SNMP COMMUNITY Syntax community ip_address delete snmp community= [traphost= [manager= ip_address ] [trap= trap Parameters community Specifies an existing community name. traphost Specifies the IP address of a host where SNMP traps are sent. manager Specifies the IP address of an SNMP management server.
Page 119: Destroy Snmp Community
AT-GS900M Series CLI Reference DESTROY SNMP COMMUNITY Syntax community destroy snmp community= Parameters community Specifies a community name. Description Use this command to delete the specified community from the switch. Confirmation Command “SHOW SNMP COMMUNITY” on page 140 Example The following command deletes the community private: Manager >...
Page 120: Disable Interface Linktrap
Chapter 7: SNMP Commands DISABLE INTERFACE LINKTRAP Syntax if_index interface disable interface = |all linktrap Parameters if_index Specifies a switch port number. ifterface Specifies a port interface name. The port interface name is a prefix of port followed by a port number, such as port1, port2 and port16. Specifies all port interfaces.
Page 121: Disable Snmp
AT-GS900M Series CLI Reference DISABLE SNMP Syntax disable snmp Parameters None Description Use this command to disable the SNMP feature. By default, SNMP is disabled. Confirmation Command “SHOW SNMP” on page 137 Example The following command disables SNMP: Manager > disable snmp...
Page 122: Disable Snmp Community
Chapter 7: SNMP Commands DISABLE SNMP COMMUNITY Syntax community disable snmp community= Parameters community Specifies a community name. Description Use this command to disable the specified community. By default, the community is disabled. Confirmation Command “SHOW SNMP COMMUNITY” on page 140 Example The following command disables the community private: Manager >...
Page 123: Disable Snmp Community Trap
AT-GS900M Series CLI Reference DISABLE SNMP COMMUNITY TRAP Syntax community disable snmp community= trap Parameters community Specifies a community name. Description Use this command to disable sending traps to the specified community. By default, sending traps to the community is disabled.
Page 124: Disable Snmp Trap
Chapter 7: SNMP Commands DISABLE SNMP TRAP Syntax trap disable snmp trap= Parameters trap Specifies a trap type or multiple trap types. To specify multiple trap types, use a comma (,). To specify all trap types, use the keyword all. For a list of trap types, see “CREATE SNMP COMMUNITY” on page 115.
Page 125: Enable Interface Linktrap
AT-GS900M Series CLI Reference ENABLE INTERFACE LINKTRAP Syntax if_index interface enable interface= |all linktrap Parameters if_index Specifies a port number. ifterface Specifies a port interface name. The port interface name is a prefix of port followed by a port number, such as port1, port2 and port16.
Page 126: Enable Snmp
Chapter 7: SNMP Commands ENABLE SNMP Syntax enable snmp Parameters None Description Use this command to enable the SNMP feature. By default, SNMP is disabled. Confirmation Command “SHOW SNMP” on page 137 Example The following command enables SNMP: Manager > enable snmp Section II: Switch Management...
Page 127: Enble Snmp Community
AT-GS900M Series CLI Reference ENBLE SNMP COMMUNITY Syntax community enable snmp community= Parameters community Specifies a community name. Description Use this command to enable the specified community. By default, the community is disabled. Confirmation Command “SHOW SNMP COMMUNITY” on page 140...
Page 128: Enable Snmp Community Trap
Chapter 7: SNMP Commands ENABLE SNMP COMMUNITY TRAP Syntax community enable snmp community= trap Parameters community Specifies a community name. Description Use this command to enable sending traps to the specified community. By default, sending traps to the community is disabled. Confirmation Command “SHOW SNMP COMMUNITY”...
Page 129: Enable Snmp Trap
AT-GS900M Series CLI Reference ENABLE SNMP TRAP Syntax trap enable snmp trap= Parameters trap Specifies a trap type or multiple trap types. To specify multiple trap types, use a comma (,). To specify all trap types, use the keyword all. For a list of trap types, see “CREATE SNMP COMMUNITY” on page 115.
Page 130: Set Snmp Community
Chapter 7: SNMP Commands SET SNMP COMMUNITY Syntax community set snmp community= [access=read|write] [open=on|off|yes|no|true|false] Parameters community Specifies a community name using up to 20 alphanumeric characters including a hyphen (-), underscore (_), period (.), parentheses (()), plus (+), and at sign (@). The community name is not case-sensitive;...
Page 131 AT-GS900M Series CLI Reference Note To create a new community, use the CREATE SNMP COMMUNITY command. See “CREATE SNMP COMMUNITY” on page 115. To change the settings of the traphost, manager, and trap parameters, see “ADD SNMP COMMUNITY” on page 113.
Page 132: Set Snmp Listenport
Chapter 7: SNMP Commands SET SNMP LISTENPORT Syntax port_number set snmp listenport= Parameters port_number Specifies the number of UDP port for SNMP. The port number is from 1 to 65535. By default, the UDP port for SNMP is 161. Description Use this command to change the UDP port for SNMP.
Page 133: Set Snmp Trap Listenport
AT-GS900M Series CLI Reference SET SNMP TRAP LISTENPORT Syntax port_number set snmp trap listenport= Parameters port_number Specifies the number of UDP port for SNMP Trap. The port number is from 1 to 65535. By default, the UDP port for SNMP Trap is 162.
Page 134: Show Interface
Chapter 7: SNMP Commands SHOW INTERFACE Syntax if_index interface show interface= |all [counter] Parameters if_index Specifies a port number. ifterface Specifies a port interface name. The port interface name is the prefix port followed by a port number, such as port1, port2 and port16.
Page 135 AT-GS900M Series CLI Reference Another example of the command outputi is shown in Figure 18. Manager > show interface=1 interface ....port1 ifIndex ....1 ifMTU ....9196 ifSpeed ....1000000000 ifAdminStatus ... Up ifOperStatus .... Down ifLinkUpDownTrapEnable .. Enabled...
Page 136 Chapter 7: SNMP Commands Table 14. SHOW INTERFACE Command (Continued) Field Description ifMTU Displays the size of Maximum Transmission Unit (MTU). ifSpeed Displays the estimated bandwidth of the interface. ifInOctets Displays the number of received octets. ifInUcastPkts Displays the number of unicast packets that were transmitted to the upper network layer.
Page 137: Show Snmp
AT-GS900M Series CLI Reference SHOW SNMP Syntax show snmp Parameters None Description Use this command to display the SNMP configuration and SNMP counters. An example of the command output is shown in Figure 19. SNMP Module Configuration: -------------------------------------- Status : Disabled...
Page 138 Chapter 7: SNMP Commands The fields are described in Table 15. Table 15. SHOW SNMP Command Field Description Status Displays SNMP is Enabled or Disabled. SNMP Manager Listen Displays the UDP port for SNMP. Port SNMP TRAP Listen Port Displays the UDP port for SNMP Trap. inPkts Displays the number of received SNMP packets.
Page 139 AT-GS900M Series CLI Reference Table 15. SHOW SNMP Command (Continued) Field Description inTraps outPkts Displays the number of transmitted SNMP packets. outTooBigs outNoSuchName Displays the number of transmitted SNMP messages that include “noSuchName” in the error field. outBadValues Displays the number of transmitted SNMP messages that include “badValue”...
Page 140: Show Snmp Community
Chapter 7: SNMP Commands SHOW SNMP COMMUNITY Syntax community show snmp community[= | all] Parameters community Specifies a community name. Specifies all communities. Description Use this command to display a list of communities and the settings or the information about the specified community. An example of the command output is shown in Figure 20.
Page 141 AT-GS900M Series CLI Reference The fields are described in Table 16. Table 16. SHOW SNMP COMMUNITY Command Field Description Name Displays the name of a community Access Displays the access permission to the community. The options are: read-only  read-write ...
Page 142: Show Snmp Trap
Chapter 7: SNMP Commands SHOW SNMP TRAP Syntax trap show snmp trap[= | all] Parameters trap Specifies a trap type. For a list of trap types, see “CREATE SNMP COMMUNITY” on page 115. Specifies all trap types. Description Use this command to display a list of trap statuses or the information about the specified trap.
Page 143 AT-GS900M Series CLI Reference Another example of the command output is shown in Figure 23. Manager > show snmp trap=coldstart SNMP Trap Information ----------------------------------------------------- Cold Start TRAP ....Enabled Community ...... public Status ....... Enabled Trap Status ....Enabled Trap Host ....192.168.1.1 Trap Host ....
Page 144 Chapter 7: SNMP Commands Section II: Switch Management...
Page 145: Chapter 8: Simple Network Time Control (Sntp) Commands
AT-GS900M Series CLI Reference Chapter 8 Simple Network Time Control (SNTP) Commands The SNTP commands are summarized in Table 17. Table 17. SNTP Commands Command Description “ADD NTP PEER” on page 146 Changes the IP address of the SNTP server.
Page 146: Add Ntp Peer
Chapter 8: Simple Network Time Control (SNTP) Commands ADD NTP PEER Syntax ip_address add ntp peer= Parameters ip_address Specifies an IPv4 address. Description Use this command to configure the IP address of the SNTP server to synchronize the system time of the switch with the specified SNTP server. You can specify only one IP address of the SNTP server on the switch.
Page 147: Delete Ntp Peer
AT-GS900M Series CLI Reference DELETE NTP PEER Syntax delete ntp peer Parameters None Description Use this command to delete the IP address of the SNTP server from the switch. Confirmation Command “SHOW NTP” on page 158 Example The following command deletes the IP address of the SNTP server from the switch: Manager >...
Page 148: Disable Ntp
Chapter 8: Simple Network Time Control (SNTP) Commands DISABLE NTP Syntax disable ntp Parameters None Description Use this command to disable SNTP. By default, SNTP is disabled. Confirmation Command “SHOW NTP” on page 158 Example The following command disables SNTP: Manager >...
Page 149: Disable Summer-Time
AT-GS900M Series CLI Reference DISABLE SUMMER-TIME Syntax disable summer-time Parameters None Description Use this command to disable Daylight Saving Time on the switch. By default, Daylight Saving Time is disabled. Confirmation Command “SHOW SUMMER-TIME” on page 160 Example The following command disables Daylight Saving Time on the switch: Manager >...
Page 150: Enable Ntp
Chapter 8: Simple Network Time Control (SNTP) Commands ENABLE NTP Syntax enable ntp Parameters None Description Use this command to enable SNTP. By default, SNTP is disabled. Confirmation Command “SHOW NTP” on page 158 Example The following command enables SNTP: Manager >...
Page 151: Enable Summer-Time
AT-GS900M Series CLI Reference ENABLE SUMMER-TIME Syntax Enable summer-time Parameters None Description Use this command to enable Daylight Saving Time on the switch. When Daylight Saving Time is enabled, the switch adjusts the local time according to the Daylight Saving Time settings on the switch. By default, Daylight Saving Time is disabled.
Page 152: Purge Ntp
Chapter 8: Simple Network Time Control (SNTP) Commands PURGE NTP Syntax purge ntp Parameters None Description Use this command to delete the settings of SNTP. This command does not disable SNTP. Confirmation Command “SHOW NTP” on page 158 Example The following command deletes the settings of SNTP: Manager >...
Page 153: Reset Ntp
AT-GS900M Series CLI Reference RESET NTP Syntax reset ntp Parameters None Description Use this command to delete the dynamic setting, reload the static setting, and transmit the SNTP request. Confirmation Command “SHOW NTP” on page 158 Example The following command resets SNTP: Manager >...
Page 154: Set Ntp
Chapter 8: Simple Network Time Control (SNTP) Commands SET NTP Syntax ip_address time_zone utc_offset set ntp [peer= ] [utcoffset= [listenport= port_number Parameters ip_address Specifies an IPv4 address. time_zone time_zone Specifies the time zone. See Table 18 on page 154. utc_offset Specifies the UTC offset.
Page 155 AT-GS900M Series CLI Reference Table 18. UTC Time Zone and UTC Offset (Continued) Time Zone UTC Offset Area Keyword aest +10:00:00 Australian Eastern Standard Time awst +8:00:00 Australian Western Standard Time +1:00:00 British Standard Time chaina +8:00:00 China +0:00:00 Greenwich Mean Time...
Page 156 Chapter 8: Simple Network Time Control (SNTP) Commands Examples The following command specifies the IP address of the SNTP server: Manager > set ntp peer=192.168.1.230 The following command specifies the timezone with PDT: Manager > set ntp utcoffset=pst The following command specifies the offset +9:00: Manager >...
Page 157: Set Summer-Time
AT-GS900M Series CLI Reference SET SUMMER-TIME Syntax date time set summer-time start-date= start-time= end-date= date end-time= time offset= offset Parameters start-date Specifies the date when Daylight Saving Time starts. end-date Specifies the date when Daylight Saving Time starts. start-time Specifies the time when Daylight Saving Time starts.
Page 158: Show Ntp
Chapter 8: Simple Network Time Control (SNTP) Commands SHOW NTP Syntax show ntp Parameters None Description Use this command to display the SNTP settings and SNTP counters. An example of the command output is shown in Figure 24. Manager > show ntp --------------------------------------------------------- NTP Module Configuration ---------------------------------------------------------...
Page 159 AT-GS900M Series CLI Reference Table 19. SHOW NTP Command (Continued) Field Description Last Delta Displays the offset that the system time was adjusted the last time. Configured Peer Displays the IP address of the SNTP peer. NTP Server Listen Port Displays the IP address of the UDP port for SNTP server.
Page 160: Show Summer-Time
Chapter 8: Simple Network Time Control (SNTP) Commands SHOW SUMMER-TIME Syntax show summer-time Parameters None Description Use this command to display the Daylight Saving Time settings on the switch. An example of the command output is shown in Figure 25. Local Time: Mon, 6 Aug 2014 13:56:06 +1200 UTC Time: Mon, 6 Aug 2014 01:56:06 +0000 Timezone: NZST...
Page 161: Chapter 9: Telnet Commands
AT-GS900M Series CLI Reference Chapter 9 Telnet Commands The Telnet commands are summarized in Table 20. Table 20. Telnet Commands Command Description “DISABLE TELNET SERVER” on Disables the Telnet server on the switch. page 162 “ENABLE TELNET SERVER” on Enables the Telnet server on the switch.
Page 162: Disable Telnet Server
Chapter 9: Telnet Commands DISABLE TELNET SERVER Syntax disable telnet server Parameters None Description Use this command to disable the Telnet server on the switch. By default, the Telnet server is enabled. Confirmation Command “SHOW TELNET” on page 171 Example The following command disables the Telnet server: Manager >...
Page 163: Enable Telnet Server
AT-GS900M Series CLI Reference ENABLE TELNET SERVER Syntax enable telnet server Parameters None Description Use this command to enable the Telnet server on the switch. By default, the Telnet server is enabled. Confirmation Command “SHOW TELNET” on page 171 Example The following command enables the Telnet server: Manager >...
Page 164: Set Asyn
Chapter 9: Telnet Commands SET ASYN Syntax set asyn login=on|off|yes|no|true|false Parameters login Enables or disables logging in from the Console port. on, yes, true Enables logging in from the Console port. off, no, false Disables logging in from the Console port. Description Use this command to enable or disable logging in from the Console port.
Page 165: Set Console
AT-GS900M Series CLI Reference SET CONSOLE Syntax lines timeout set console [page= |off|0] [timeout= [completion=both|tab|space|off] Parameters page Specifies the number of lines to display at a time. When the off keyword or 0 is specified, the screen shows all lines once.
Page 166 Chapter 9: Telnet Commands Example The following command specifies that sessions through Telnet and from the Console ports do not time out: Manager > set console timeout=0 Section II: Switch Management...
Page 167: Set Telnet
AT-GS900M Series CLI Reference SET TELNET Syntax sessions port_number set telnet [limit= ] [listenport= Parameters sessions Specifies the maximum number of Telnet sessions to access the switch at a time. port_number Specifies the TCP port for Telnet. The port number is from 1 to 65535.
Page 168: Show Asyn
Chapter 9: Telnet Commands SHOW ASYN Syntax show asyn Parameters None Description Use this command to display the settings of the Console port. An example of the command output is shown in Figure 26. Serial Information ---------------------------------------- Serial port Status ....Enabled Data rate ...
Page 169: Show Console
AT-GS900M Series CLI Reference SHOW CONSOLE Syntax show console Parameters None Description Use this command to display the settings of the Console port, Telnet, and the sessions through Telnet and the Console port. An example of the command output is shown in Figure 27.
Page 170 Chapter 9: Telnet Commands Table 21. SHOW CONSOLE Command (Continued) Field Description Page size Displays the number of lines displayed at a time in the screen. Timeout Displays the time in seconds that the session ends after no commands are entered. Completion Displays the way that commands are expanded at the prompt.
Page 171: Show Telnet
AT-GS900M Series CLI Reference SHOW TELNET Syntax show telnet Parameters None Description Use this command to display the settings of Telnet. An example of the command output is shown in Figure 28. TELNET Module Configuration: -------------------------------------- TELNET Server : Enabled...
Page 172: Telnet
Chapter 9: Telnet Commands TELNET Syntax ip_address port_number telnet Parameters ip_address Specifies the IPv4 address of the Telnet server. port_number Specifies the TCP port for Telnet. Description Use this command to start a Telnet session from the local management session through the Console port. Note You cannot start a Telnet session from the remote control session through Telnet.
Page 173: Chapter 10: Http Commands
AT-GS900M Series CLI Reference Chapter 10 HTTP Commands The HTTP commands are summarized in Table 23. Table 23. HTTP Commands Command Description “DISABLE HTTP SERVER” on Disables the HTTP server on the switch. page 174 “ENABLE HTTP SERVER” on Enables the HTTP server on th switch.
Page 174: Disable Http Server
Chapter 10: HTTP Commands DISABLE HTTP SERVER Syntax disable http server Parameters None Description Use this command to disable the http server on the switch. By default, the HTTP server is disabled. Confirmation Command “SHOW HTTP SERVER” on page 177 Example The following command disables the HTTP server: Manager >...
Page 175: Enable Http Server
AT-GS900M Series CLI Reference ENABLE HTTP SERVER Syntax enable http server Parameters None Description Use this command to enable the http server on the switch. By default, the Telnet server is disabled. Confirmation Command “SHOW HTTP SERVER” on page 177...
Page 176: Set Http Listenport
Chapter 10: HTTP Commands SET HTTP LISTENPORT Syntax port_number set http listenport= Parameters port_number Specifies the TCP port for HTTP. The port number is from 1 to 65535. By default, the TCP port for HTTP is 80. Description Use this command to change the TCP port for HTTP. Confirmation Command “SHOW HTTP SERVER”...
Page 177: Show Http Server
AT-GS900M Series CLI Reference SHOW HTTP SERVER Syntax show http server Parameters None Description Use this command to display the settings of the HTTP server. An example of the command output is shown in Figure 29. HTTP Server Module Configuration:...
Page 178 Chapter 10: HTTP Commands Section II: Switch Management...
Page 179: Chapter 11: Radius Authentication Server Commands
AT-GS900M Series CLI Reference Chapter 11 RADIUS Authentication Server Commands The RADIUS server commands are summarized in Table 24. Table 24. RADIUS Server Commands Command Description “ADD RADIUSSERVER SERVER” Adds a RADIUS server to the list. on page 180 “DELETE RADIUSSERVER Deletes the RADIUS server from the list.
Page 180: Add Radiusserver Server
Chapter 11: RADIUS Authentication Server Commands ADD RADIUSSERVER SERVER Syntax ip_address add radiusserver server= order=1|2 [secret=secret] [port= port_number ] [accport= port_number Parameters ip_address Specifies the IPv4 address of the RADIUS server. order Specifies the priority for the RADIUS server, 1 or 2. The priority 1 is higher than the priority 2.
Page 181: Delete Radiusserver Server
AT-GS900M Series CLI Reference DELETE RADIUSSERVER SERVER Syntax ip_address delete radiusserver server= Parameters ip_address Specifies the IPv4 address of the RADIUS server. Description Use this command to delete a RADIUS server from the RADIUS server list. Confirmation Command “SHOW AUTHENTICATION” on page 188 Example The following command deletes a RADIUS server of 192.168.1.208 from...
Page 182: Disable Radiusaccounting
Chapter 11: RADIUS Authentication Server Commands DISABLE RADIUSACCOUNTING Syntax disable radiusaccounting Parameters None Description Use this command to disable the accounting feature on RADIUS servers. By default, RADIUS server for accounting is disabled. Confirmation Command “SHOW RADIUSACCOUNTING” on page 191 Example The following command disables the accounting features on RADIUS servers:...
Page 183: Enable Radiusaccounting
AT-GS900M Series CLI Reference ENABLE RADIUSACCOUNTING Syntax enable radiusaccounting Parameters None Description Use this command to enable the accounting feature on RADIUS servers. By default, RADIUS server for accounting is enabled. Confirmation Command “SHOW RADIUSACCOUNTING” on page 191 Example The following command enables the accounting features on RADIUS servers: Manager >...
Page 184: Set Authentication
Chapter 11: RADIUS Authentication Server Commands SET AUTHENTICATION Syntax timeout deadtime set authentication [timeout= ] [deadtime= [retransmitcount= retransmitcount [dead-action=deny | permit] Parameters timeout Specifies the maximum amount of time in seconds that the RADIUS client waits for a response from a RADIUS authentication server.
Page 185: Set Radius
AT-GS900M Series CLI Reference SET RADIUS Syntax timeout deadtime set radius [timeout= ] [deadtime= [retransmitcount= retransmitcount [dead-action=deny | permit] Note This command is identical to the SET AUTHENTICATION command. See “SET AUTHENTICATION” on page 184. Section II: Switch Management...
Page 186: Set Radiusaccounting
Chapter 11: RADIUS Authentication Server Commands SET RADIUSACCOUNTING Syntax set radiusaccounting [status=enabled | disabled] [serverport= port_number ] [type=network] [trigger=start_stop | stop_only] interval [updateenable=enabled | disabled] [interval= Parameters status Specifies the RADIUS accounting server to be enabled or disabled. serverport Specifies the UDP port for the RADIUS server for accounting. The default setting is 1813.
Page 187 AT-GS900M Series CLI Reference Description Use this command to specify the settings of RADUS accounting servers. Confirmation Command “SHOW RADIUSACCOUNTING” on page 191 Example The following command specifies: Manager > set radiusaccounting status=enabled Section II: Switch Management...
Page 188: Show Authentication
Chapter 11: RADIUS Authentication Server Commands SHOW AUTHENTICATION Syntax show authentication Parameters None Description Use this command to display a list of RADIUS servers and their settings. An example of the command output is shown in Figure 30. RADIUS Server Parameters ------------------------------------------------------------------------------- Server Retransmit Count..
Page 189 AT-GS900M Series CLI Reference Table 25. SHOW AUTHENTICATION Command (Continued) Field Description Server Dead Time Displays the amount of time in minutes that the RADIUS client stops communicating with a RADIUS server after the RADIUS client resent requests to the RADIUS server for the maximum time.
Page 190: Show Radius
Chapter 11: RADIUS Authentication Server Commands SHOW RADIUS Syntax show radius Note This command is identical to the SHOW AUTHENTICATION command. See “SHOW AUTHENTICATION” on page 188. Section II: Switch Management...
Page 191: Show Radiusaccounting
AT-GS900M Series CLI Reference SHOW RADIUSACCOUNTING Syntax show radiusaccounting Parameters None Description Use this command to display the settings for RADIUS servers for accounting. An example of the command output is shown in Figure 31. Radius Accounting Configuration -------------------------------------- Radius Accounting Status ...: Disabled Radius Accounting Port....: 1813...
Page 192 Chapter 11: RADIUS Authentication Server Commands Table 26. SHOW RADIUSACCOUNTING Command (Continued) Field Description Radius Accounting Displays the interval in seconds of sending Update Interval interim accounting messages. Example The following example displays the settings for RADIUS server for accounting: Manager >...
Page 193: Section Iii: Layer 2 Switching
Section III Layer 2 Switching This section contains the following chapters: Chapter 12, ”IP Management Commands” on page 195  Chapter 13, ”VLAN Commands” on page 209  Chapter 14, ”Switching Commands” on page 219  Chapter 15, ”Ethernet Protected Switched Ring (EPSR) Commands” ...
Page 194 AT-GS900M Series CLI Reference...
Page 195: Chapter 12: Ip Management Commands
AT-GS900M Series CLI Reference Chapter 12 IP Management Commands The IP management commands are summarized in Table 27. Table 27. IP Management Commands Command Description “ADD IP IPADDRESS” on Assigns an IPv4 address to the switch page 196 and specifies whether the switch responds to ping.
Page 196: Add Ip Ipaddress
Chapter 12: IP Management Commands ADD IP IPADDRESS Syntax vlan_name vlan_id add ip [interface= ipaddress= ip_address |dhcp [mask= subnet_mask ip_address [gateway= ] [directedbroadcast=yes|no|on|off] Parameters interface Specifies a VLAN interface with either a VLAN name or VLAN ID. The default is the default VLAN. vlan_name Specifies a VLAN name.
Page 197 AT-GS900M Series CLI Reference Description Use this command to assign the IPv4 address to a VLAN interface and specify the action to respond to ping. You can assign only one IPv4 address to the switch. Confirmation Command “SHOW IP” on page 206 Example The following command assigns the IPv4 address 192.168.1.5/24 to the...
Page 198: Delete Ip
Chapter 12: IP Management Commands DELETE IP Syntax delete ip Parameters None Description Use this command to delete the IPv4 address setting from the switch. Confirmation Command “SHOW IP” on page 206 Example The following command deletes the IPv4 address setting from the swtich: Manager >...
Page 199: Disable Ip Dhcp
AT-GS900M Series CLI Reference DISABLE IP DHCP Syntax disable ip dhcp Parameters None Description Use this command to disable the DHCP client on the switch. By default, The DHCP client is disabled. Confirmation Command “SHOW IP” on page 206 Example The following command disables the DHCP client on the switch: Manager >...
Page 200: Disable Ip Remoteassign
Chapter 12: IP Management Commands DISABLE IP REMOTEASSIGN Syntax disable ip remoteassign Note This command is identical to the DISABLE IP DHCP command. See “DISABLE IP DHCP” on page 199. Section III: Layer 2 Switching...
Page 201: Enable Ip Dhcp
AT-GS900M Series CLI Reference ENABLE IP DHCP Syntax enable ip dhcp Parameters None Description Use this command to enable the DHCP client on the switch. By default, the DHCP client is disabled. Confirmation Command “SHOW IP” on page 206 Example The following command enables the DHCP client on the switch: Manager >...
Page 202: Enable Ip Remoteassign
Chapter 12: IP Management Commands ENABLE IP REMOTEASSIGN Syntax enable ip remoteassign Note This command is identical to the ENABLE IP DHCP command. See “ENABLE IP DHCP” on page 201. Section III: Layer 2 Switching...
Page 203: Ping
AT-GS900M Series CLI Reference PING Syntax ip_address ping ipaddress= Parameters ip_address Specifies an IPv4 address. Description Use this command to ping the specified IP address. To stop the execution, enter Ctrl + c. An example of the command output is shown in Figure 32.
Page 204: Set Ip
Chapter 12: IP Management Commands SET IP Syntax ip_address subnet_mask set ip [ipaddress= |dhcp] [mask= [gateway= ip_address ] [directedbroadcast=yes|no|on|off] Parameters ipaddress Assigns an IPv4 address to the VLAN interface statically or dynamically. dhcp Specifies DHCP to assign an IPv4 address. mask Specifies the subnet mask of the IPv4 address.
Page 205 AT-GS900M Series CLI Reference Manager > set ip ipaddress=192.168.1.6 mask=255.255.255.0 gateway=192.168.1.254 Section III: Layer 2 Switching...
Page 206: Show Ip
Chapter 12: IP Management Commands SHOW IP Syntax show ip Parameters None Description Use this command to display the settings of IP address on the switch. An example of the command output is shown in Figure 33. IP Address Information -------------------------------------------------------- Type .......
Page 207 AT-GS900M Series CLI Reference Table 28. SHOW IP Command (Continued) Field Description DCHP client Displays whether the DHCP client is Enabled or Disabled. DHCP server Displays the IPv4 address of the DHCP server. This is displayed only when the IPv4 address was assigned to the switch using the DHCP server.
Page 208 Chapter 12: IP Management Commands Section III: Layer 2 Switching...
Page 209: Chapter 13: Vlan Commands
AT-GS900M Series CLI Reference Chapter 13 VLAN Commands The VLAN commands are summarized in Table 29. Table 29. VLAN Commands Command Description “ADD VLAN PORT” on page 210 Assigns the VLAN to ports either tagged or untagged. “CREATE VLAN” on page 212 Creates a VLAN.
Page 210: Add Vlan Port
Chapter 13: VLAN Commands ADD VLAN PORT Syntax vlan_name port_list add vlan= port= |all [frame=tagged|untagged] [group=uplink|auto| group_number Parameters vlan Specifies a VLAN with either the VLAN name or VLAN ID. vlan_name Specifies a VLAN name. Specifies a VLAN ID. The range is 2 to 4094. port_list Specifies a list of ports to assign the VLAN to.
Page 211 AT-GS900M Series CLI Reference Description Use this command to assign the VLAN to ports either tagged or untagged. Confirmation Command “SHOW VLAN” on page 216 Example The following command assigns the VLAN test to ports 1 to 5: Manager > add vlan=test port=1-5...
Page 212: Create Vlan
Chapter 13: VLAN Commands CREATE VLAN Syntax vlan_name vlan_id create vlan= vid= [portprotected] Parameters vlan_name Specifies the name of a new VLAN. The VLAN name can be from 1 to 20 alphanumeric characters including hyphen (-), underscore (_), period (.), and parentheses (()). The first letter must be an alphabet.
Page 213: Delete Vlan Port
AT-GS900M Series CLI Reference DELETE VLAN PORT Syntax vlan_name vlan_id port_list delete vlan= ] port= |all Parameters vlan Specifies a VLAN with either the VLAN name or VLAN ID. vlan_name Specifies a VLAN name. vlan_id Specifies a VLAN ID. The range is 2 to 4094.
Page 214: Destroy Vlan
Chapter 13: VLAN Commands DESTROY VLAN Syntax vlan_name vlan_id destroy vlan=[ |all] Parameters vlan Specifies a VLAN with either the VLAN name or VLAN ID. vlan_name Specifies a VLAN name. vlan_id Specifies a VLAN ID. The range is 2 to 4094. Specifies all VLANs.
Page 215: Set Vlan Port
AT-GS900M Series CLI Reference SET VLAN PORT Syntax vlan_name vlan_id port_list set vlan= port= |all [frame=tagged|untagged] Parameters vlan Specifies a VLAN with either the VLAN name or VLAN ID. vlan_name Specifies a VLAN name. vlan_id Specifies a VLAN ID. port_list Specifies a list of ports to assign to the VLAN.
Page 216: Show Vlan
Chapter 13: VLAN Commands SHOW VLAN Syntax vlan_name vlan_id show vlan[= |all] Parameters vlan Specifies a VLAN with either the VLAN name or VLAN ID. vlan_name Specifies a VLAN name. vlan_id Specifies a VLAN ID. Specifies all VLANs. This is the default setting. Description Use this command to display information about the specified VLANs.
Page 217 AT-GS900M Series CLI Reference Table 30. SHOW VLAN Command (Continued) Field Description Protected Ports Displays the setting of the VLAN ports. The options are: Yes - Protected VLAN ports  None - Not protected VLAN ports  Configured Displays a list of ports that are configured statically.
Page 218 Chapter 13: VLAN Commands Section III: Layer 2 Switching...
Page 219: Chapter 14: Switching Commands
AT-GS900M Series CLI Reference Chapter 14 Switching Commands The Switching commands are summarized in Table 31. Table 31. Switching Commands Command Description “ACTIVATE SWITCH PORT Enables Auto-negotiation to ports. AUTONEGOTIATE” on page 222 “ADD SWITCH TRUNK” on Adds a list of ports to a trunk group.
Page 220 Chapter 14: Switching Commands Table 31. Switching Commands (Continued) Command Description “DISABLE SWITCH Disables the power saving mode on the switch. POWERSAVE” on page 236 “DISABLE SWITCH Disables detecting the receiving rate. STORMDETECTION” on page 237 “ENABLE SWITCH Enables Bridge Protocol Data Unit (BPDU) BPDUFORWARDING”...
Page 221 AT-GS900M Series CLI Reference Table 31. Switching Commands (Continued) Command Description “RESET SWITCH Clears counters for Storm Detection. STORMDETECTION COUNTER” on page 251 “SET SWITCH LIMITATION” on Specifies the limitation of the receiving rate for page 252 Storm Detection. “SET SWITCH Specifies actions for Loop Detection.
Page 222: Activate Switch Port Autonegotiate
Chapter 14: Switching Commands ACTIVATE SWITCH PORT AUTONEGOTIATE Syntax port_list activate switch port= |all autonegotiate Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them. To specify a range of ports, use a hyphen (-). Specifies all the switch ports.
Page 223: Add Switch Trunk
AT-GS900M Series CLI Reference ADD SWITCH TRUNK Syntax trunk_name port_list add switch trunk= port= Parameters trunk_name Specifies the name of a trunk group. port_list Specifies a list of ports to add to the trunk group. One trunk can have up to 8 ports. To specify multiple ports, use a comma (,) to separate them.
Page 224: Create Switch Trunk
Chapter 14: Switching Commands CREATE SWITCH TRUNK Syntax trunk_name port_list create switch trunk= [port= [speed=1000m|100m|10m] Parameters trunk_name Specifies the name of a trunk group. The trunk name can be from 1 to 20 alphanumeric characters including hyphen (-), underscore (_), period (.), and parentheses (()). The name is not case- sensitive;...
Page 225 AT-GS900M Series CLI Reference the same trunk group. A Loop Detection enabled port and a Loop Detection disabled port  cannot belong to the same trunk group. A port that is set the security mode cannot be a trunk member.
Page 226: Delete Switch Trunk
Chapter 14: Switching Commands DELETE SWITCH TRUNK Syntax trunk_name port_list delete switch trunk= port= |all Parameters trunk_name Specifies the name of a trunk group. port_list Specifies a list of ports to delete. To specify multiple ports, use a comma (,) to separate them. To specify a range of ports, use a hyphen (-).
Page 227: Destroy Switch Trunk
AT-GS900M Series CLI Reference DESTROY SWITCH TRUNK Syntax trunk_name destroy switch trunk= Parameters trunk_name Specifies the name of a trunk group. Description Use this command to delete the trunk group. Confirmation Command “SHOW SWITCH TRUNK” on page 278 Example The following command deletes the trunk uplink: Manager >...
Page 228: Disable Switch Bpduforwarding
Chapter 14: Switching Commands DISABLE SWITCH BPDUFORWARDING Syntax disable switch bpduforwarding Parameters None Description Use this command to disable Bridge Protocol Data Unit (BPDU) protection. By default, BPDU protection is disabled. Note When the switch has a port that STP is enabled on, BPDU cannot be enabled.
Page 229: Disable Switch Eapforwarding
AT-GS900M Series CLI Reference DISABLE SWITCH EAPFORWARDING Syntax disable switch eapforwarding Parameters None Description Use this command to disable Extensible Authentication Protocol (EAP) authentication. By default, EAP protection is disabled. Note When Port-based Authentication is enabled on the switch, EAP cannot be enabled.
Page 230: Disable Switch Infiltering
Chapter 14: Switching Commands DISABLE SWITCH INFILTERING Syntax disable switch infiltering Parameters None Description Use this command to disable the ingress filtering feature. When the ingress filtering feature is enabled, a switch port accepts only frames that have the same VLAN ID with the port. By default, EAP protection is disabled.
Page 231: Disable Switch Loopdetection
AT-GS900M Series CLI Reference DISABLE SWITCH LOOPDETECTION Syntax port_list disable switch loopdetection port= |all Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them. To specify a range of ports, use a hyphen (-).
Page 232: Disable Switch Mirror
Chapter 14: Switching Commands DISABLE SWITCH MIRROR Syntax disable switch mirror Parameters None Description Use this command to disable port mirroring on the switch. By default, port mirroring is disabled. Confirmation Command “SHOW SWITCH MIRROR” on page 271 Example The following command disables port mirroring on the switch: Manager >...
Page 233: Disable Switch Port
AT-GS900M Series CLI Reference DISABLE SWITCH PORT Syntax port_list disable switch port= |all [link=enabled|disabled] Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them. To specify a range of ports, use a hyphen (-).
Page 234: Disable Switch Port Automdi
Chapter 14: Switching Commands DISABLE SWITCH PORT AUTOMDI Syntax port_list disable switch port= |all automdi Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them. To specify a range of ports, use a hyphen (-). Specifies all the switch ports except SFP and combo ports.
Page 235: Disable Switch Port Flow
AT-GS900M Series CLI Reference DISABLE SWITCH PORT FLOW Syntax port_list disable switch port= |all flow Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them. To specify a range of ports, use a hyphen (-).
Page 236: Disable Switch Powersave
Chapter 14: Switching Commands DISABLE SWITCH POWERSAVE Syntax disable switch powersave Parameters None Description Use this command to disable the power saving mode on the switch. By default, the power saving mode is disabled. Confirmation Command “SHOW SWITCH” on page 267 Example The following command disables the power saving mode: Manager >...
Page 237: Disable Switch Stormdetection
AT-GS900M Series CLI Reference DISABLE SWITCH STORMDETECTION Syntax port_list disable switch stormdetection port= |all Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them. To specify a range of ports, use a hyphen (-).
Page 238: Enable Switch Bpduforwarding
Chapter 14: Switching Commands ENABLE SWITCH BPDUFORWARDING Syntax enable switch bpduforwarding Parameters None Description Use this command to enable Bridge Protocol Data Unit (BPDU) protection. By default, BPDU protection is disabled. Note When the switch has a port that STP is enabled on, BPDU cannot be enabled.
Page 239: Enable Switch Eapforwarding
AT-GS900M Series CLI Reference ENABLE SWITCH EAPFORWARDING Syntax enable switch eapforwarding Parameters None Description Use this command to enable Extensible Authentication Protocol (EAP) authentication. By default, EAP protection is disabled. Note When Port Authentication is enabled on the switch, EAP cannot be enabled.
Page 240: Enable Switch Infiltering
Chapter 14: Switching Commands ENABLE SWITCH INFILTERING Syntax enable switch infiltering Parameters None Description Use this command to enable the ingress filtering feature. When the ingress filtering feature is enabled, a switch port accepts only frames that have the same VLAN ID with the port. By default, EAP protection is disabled.
Page 241: Enable Switch Loopdetection
AT-GS900M Series CLI Reference ENABLE SWITCH LOOPDETECTION Syntax port_list enable switch loopdetection port= |all Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them. To specify a range of ports, use a hyphen (-).
Page 242: Enable Switch Mirror
Chapter 14: Switching Commands ENABLE SWITCH MIRROR Syntax enable switch mirror Parameters None Description Use this command to enable port mirroring on the switch. By default, port mirroring is disabled. Confirmation Command “SHOW SWITCH MIRROR” on page 271 Example The following command enables port mirroring on the switch: Manager >...
Page 243: Enable Switch Port
AT-GS900M Series CLI Reference ENABLE SWITCH PORT Syntax port_list enable switch port= |all Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them. To specify a range of ports, use a hyphen (-).
Page 244: Enable Switch Port Automdi
Chapter 14: Switching Commands ENABLE SWITCH PORT AUTOMDI Syntax port_list enable switch port= |all automdi Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them. To specify a range of ports, use a hyphen (-). Specifies all the switch ports except SFP and combo ports.
Page 245: Enable Switch Port Flow
AT-GS900M Series CLI Reference ENABLE SWITCH PORT FLOW Syntax port_list enable switch port= |all flow Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them. To specify a range of ports, use a hyphen (-).
Page 246: Enable Switch Powersave
Chapter 14: Switching Commands ENABLE SWITCH POWERSAVE Syntax enable switch powersave Parameters None Description Use this command to enable the power saving mode on the switch. When the power saving mode is enabled, the switch saves power by limiting power on the ports with no link. By default, the power saving mode is disabled.
Page 247: Enable Switch Stormdetection
AT-GS900M Series CLI Reference ENABLE SWITCH STORMDETECTION Syntax port_list enable switch stormdetection port= |all Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them. To specify a range of ports, use a hyphen (-).
Page 248: Reset Switch
Chapter 14: Switching Commands RESET SWITCH Syntax reset switch [counter] Parameters counter Clears the counter of dynamic entries in the MAC table, timer, and static counters. Description Use this command to reset the switch ports and clear the counter of dynamic entries in Forwarding Database (FDB), timer, and statistics counters.
Page 249: Reset Switch Loopdetection Counter
AT-GS900M Series CLI Reference RESET SWITCH LOOPDETECTION COUNTER Syntax port_list reset switch loopdetection [port= |all] counter Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them. To specify a range of ports, use a hyphen (-).
Page 250: Reset Switch Port
Chapter 14: Switching Commands RESET SWITCH PORT Syntax port_list reset switch port[= |all] [counter] Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them. To specify a range of ports, use a hyphen (-). Specifies all the switch ports.
Page 251: Reset Switch Stormdetection Counter
AT-GS900M Series CLI Reference RESET SWITCH STORMDETECTION COUNTER Syntax port_list reset switch stormdetection [port= |all] counter Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them. To specify a range of ports, use a hyphen (-).
Page 252: Set Switch Limitation
Chapter 14: Switching Commands SET SWITCH LIMITATION Syntax reveiving_rate set switch limitation[=none|0| Parameters none, 0 Disables the packet storm protection. The default value is 0. reveiving_rate Specifies the maximum receiving rate. The range is 1 to 1024000 Kbps. Description Use this command to specify the maximum receiving rate for the packet storm protection.
Page 253: Set Switch Loopdetection
AT-GS900M Series CLI Reference SET SWITCH LOOPDETECTION Syntax port_list set switch loopdetection port[= |all] [action=portdisable|linkdown|bcdiscard|none] interval [interval= ] [secure=on|off] timeout [blocktimeout= |none] Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them. To specify a range of ports, use a hyphen (-).
Page 254 You cannot specify the action of bcdiscard on the ports that the  Packet Strom Protection is enabled. Allied Telesis recommends 1 second or longer for the interval  parameter and 60 seconds or longer for the blocktimeout parameter when the action is set to linkdown.
Page 255: Set Switch Mirror
AT-GS900M Series CLI Reference SET SWITCH MIRROR Syntax port_number set switch mirror= |none Parameters port_number Specifies a port as the mirror port. none Cancel the mirror port and disables port mirroring. Description Use this command to specify a port as the mirror port or disable port mirroring.
Page 256 Chapter 14: Switching Commands The following command disables port mirroring: Manager > set switch mirror=none Section III: Layer 2 Switching...
Page 257: Set Switch Port
AT-GS900M Series CLI Reference SET SWITCH PORT Syntax port_list set switch port[= |all] [acceptable=all|vlan] [description= string ] [mirror=both|none|rx|tx] priority [priority= [speed=autonetotiate|10mhalf|10mfull|10mhauto|10mfauto| 100mhafl|100mfull|100mhauto|100mfauto|1000mfull|1000mauto] [securitymode=automatic|dynamic|limited|secured] max_mac [learn= ] [intrusionaction=discard|disable|log|trap] [combo=fiberauto|copperauto|fiber|copper] [polarity=mdi|mdix] [bclimit=on|off] [dlclimit=on|off] [mclimit=on|off] Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them.
Page 258 Chapter 14: Switching Commands both Both receiving and transmitting frames at the port are mirrored. none Specifies the port to be not mirrored. priority Specifies a user priority. The range is 0 to 7. The default value is 0. speed Specifies the port speed and duplex mode.
Page 259 AT-GS900M Series CLI Reference limited Specifies the security mode to limited. The port takes an action to a packet with the source MAC address that is not in FDB when the number of the dynamic MAC addresses in FDB reaches the maximum number specified by the learn parameter.
Page 260 Chapter 14: Switching Commands intrusionaction Specifies the action when the port receives a packet with a MAC address that is not in FDB. This action is effective only when the securitymode is limited or secured. discard The port discards a packet with a MAC address that is not in FDB. This is the default setting.
Page 261 AT-GS900M Series CLI Reference copper The port can be used as a copper port only. Here are guidelines for specifying the combo parameter: – The combo parameter is not valid for the GS908M V2 and GS908M V2-4PS switches. – The combo parameter is valid on ports 15 and 16 of the GS916M V2 switch and ports 15, 16, 23, and 24 of the GS924M V2 switch.
Page 262 Chapter 14: Switching Commands combo parameter is set to fiber or copper. When the combo parameter is fiber or copper on a combo port, you can set the speed to 1000mfull. Otherwise, the speed is always autonegotiated on combo ports. When the speed is set to 10mhalf, 10mfull, 100mhalf, or 100mfull, ...
Page 263: Set Switch Stormdetection
AT-GS900M Series CLI Reference SET SWITCH STORMDETECTION Syntax port_list set switch stormdetection port[= |all] [lowrateaction=portdisable|linkdown|bcdiscard|none] [highrateaction=portdisable|linkdown|bcdiscard|none] rate rate [lowratethreshold= ] [highratethreshold= [blocktimeout= timeout |none] [frametype=broadcast|multicast|all] framesize [framesize= |auto] Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them.
Page 264 You cannot specifying the bcdiscard option on the ports that the  Packet Strom Protection is enabled. Allied Telesis recommends 1 second or longer for the interval and  60 seconds or longer for the blocktimeout parameter when the linkdown option is specified.
Page 265 AT-GS900M Series CLI Reference Manager > set switch loopdetection port=2 action=linkdown interval=60 blocktimeout=3600 Section III: Layer 2 Switching...
Page 266: Set Switch Trunk
Chapter 14: Switching Commands SET SWITCH TRUNK Syntax trunk_name set switch trunk= speed=1000m|100m|10m Parameters trunk_name Specifies a trunk name. speed Specifies port speed. 1000m The port is set to 1000M speed, the full duplex, and Auto- negotiation. Combo ports must be set to 1000m. This is the default setting.
Page 267: Show Switch
AT-GS900M Series CLI Reference SHOW SWITCH Syntax show switch Parameters None Description Use this command to display information about the switch settings. An example of the command output is shown in Figure 35. Switch Configuration ----------------------------------------------- Switch Address .... 00-09-16-00-00-02 Ageingtimer ....
Page 268: Show Switch Counter
Chapter 14: Switching Commands SHOW SWITCH COUNTER Syntax show switch counter Parameters None Description Use this command to display statistics on the switch. An example of the command output is shown in Figure 36. Switch Counters ---------------------------------------------- Receive Transmit packets packets : errors errors...
Page 269: Show Switch Loopdetection
AT-GS900M Series CLI Reference SHOW SWITCH LOOPDETECTION Syntax port_list show switch loopdetection [port= |all] [config|status|counter] Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them. To specify a range of ports, use a hyphen (-).
Page 270 Chapter 14: Switching Commands Switch Loop Detection configuration ---------------------------------------------------------------- Port ......1 Status ......Disabled Frame Action ....PortDisable Frame Interval ....120 sec Secure Frame ....On Blocking Timeout ....300 sec Port ......2 Status ......Enabled Frame Action ....Linkdown Frame Interval ....
Page 271: Show Switch Mirror
AT-GS900M Series CLI Reference SHOW SWITCH MIRROR Syntax show switch mirror Parameters None Description Use this command to display the settings of mirroring. An example of the command output is shown in Figure 38. Port Mirroring Information -------------------------------------------------- Mirror Port ....1 Status ....
Page 272: Show Switch Port
Chapter 14: Switching Commands SHOW SWITCH PORT Syntax port_list show switch port[= |all] [summary|security] Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them. To specify a range of ports, use a hyphen (-). Specifies all the switch ports.
Page 273 AT-GS900M Series CLI Reference Manager > show switch port=1 Switch Port Information ------------------------------------------------------------------------- Port ......1 Description ....- Status ......Enabled Link State ....Down UpTime ......- Port Media Type ....Ethernet CSMA/CD Port Type ..... 10/100/1000Base-T Configured speed/duplex ..Autonegotiate Actual speed/duplex ...
Page 274: Show Switch Port Counter
Chapter 14: Switching Commands SHOW SWITCH PORT COUNTER Syntax port_list show switch port[= |all] counter Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them. To specify a range of ports, use a hyphen (-). Specifies all the switch ports.
Page 275 AT-GS900M Series CLI Reference Example The following example displays statics counters on port 1: Manager > show switch port=1 counter Section III: Layer 2 Switching...
Page 276: Show Switch Stormdetection
Chapter 14: Switching Commands SHOW SWITCH STORMDETECTION Syntax port_list show switch loopdetection [port= |all] [config|status|counter] Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them. To specify a range of ports, use a hyphen (-). Specifies all the switch ports.
Page 277 AT-GS900M Series CLI Reference Switch Storm Detection configuration ---------------------------------------------------------------- Port ......1 Status ......Disabled High Rate Action ....PortDisable Low Rate Action ....None High Rate Threshold ... 81940 Kbps Low Rate Threshold .... 51200 Kbps Blocking Timeout ....300 sec Frame Type ....
Page 278: Show Switch Trunk
Chapter 14: Switching Commands SHOW SWITCH TRUNK Syntax trunk show switch trunk= Parameters trunk Specifies a trunk group to display its information. Description Use this command to display information about trunk groups. An example of the command output is shown in Figure 42. Switch Trunk Group -------------------------------------------------------- Trunk group name ...
Page 279: Chapter 15: Ethernet Protected Switched Ring (Epsr) Commands
AT-GS900M Series CLI Reference Chapter 15 Ethernet Protected Switched Ring (EPSR) Commands The EPSR commands are summarized in Table 32. Table 32. EPSR Commands Command Description “ADD EPSR DATAVLAN” on Adds a data VLAN to the EPSR domain. page 280 “CREATE EPSR”...
Page 280: Add Epsr Datavlan
Chapter 15: Ethernet Protected Switched Ring (EPSR) Commands ADD EPSR DATAVLAN Syntax epsr_name vlan_name vlan_id add epsr= datavlan=[ Parameters epsr_name Specifies an EPSR domain. datavlan Specifies a data VLAN with a VLAN name or VLAN ID. Description Use this command to add a data VLAN to the Ethernet Protected Switched Ring (EPSR) domain.
Page 281: Create Epsr
AT-GS900M Series CLI Reference CREATE EPSR Syntax epsr_name create epsr= mode=aware|transit controlvlan= vlan_name vlan_id [deletemcast] Parameters epsr_name Specifies an Ethernet Protected Switched Ring (EPSR) domain name. aware Specifies the role of the EPSR domain to the aware mode, which the switch is a transit node with the aware function. See Table 33 on page 282.
Page 282 Chapter 15: Ethernet Protected Switched Ring (EPSR) Commands nodes send linkdown notices. The switch is able to function as a transit node. The functions as a transit node are described in Table 33. Table 33. Aware and Transit Modes Aware Transit Function mode...
Page 283: Delete Epsr Datavlan
AT-GS900M Series CLI Reference DELETE EPSR DATAVLAN Syntax epsr_name vlan_name vlan_id delete epsr= datavlan=[ |all] Parameters epsr_name Specifies an Ethernet Protected Switched Ring (EPSR) domain. datavlan Specifies a data VLAN with a VLAN name or VLAN ID. With the keyword all, all data VLANs are specified.
Page 284: Destroy Epsr
Chapter 15: Ethernet Protected Switched Ring (EPSR) Commands DESTROY EPSR Syntax epsr_name destroy epsr= |all Parameters epsr_name Specifies an EPSR domain. Specifies all ESPR domains. Description Use this command to delete EPSR domains on the switch. Confirmation Command “SHOW EPSR” on page 288 Example The following command deletes all EPSR domains on the switch: Manager >...
Page 285: Disable Epsr
AT-GS900M Series CLI Reference DISABLE EPSR Syntax epsr_name disable epsr= |all Parameters epsr_name Specifies an EPSR domain. Specifies all ESPR domains. Description Use this command to disable an EPSR domain. Note Before executing this command, you must disable the port for the ring either by running the DISABLE SWITCH PORT command or unplugging the cable.
Page 286: Enable Epsr
Chapter 15: Ethernet Protected Switched Ring (EPSR) Commands ENABLE EPSR Syntax epsr_name enable epsr= |all Parameters epsr_name Specifies an EPSR domain. Specifies all ESPR domains. Description Use this command to enable an EPSR domain. Confirmation Command “SHOW EPSR” on page 288 Example The following command enables all EPSR domains on the switch: Manager >...
Page 287: Purge Epsr
AT-GS900M Series CLI Reference PURGE EPSR Syntax purge epsr Parameters None Description Use this command to initialize EPSR and delete all EPSR domains. Confirmation Command “SHOW EPSR” on page 288 Example The following command initializes EPSR and deletes all EPSR domains: Manager >...
Page 288: Show Epsr
Chapter 15: Ethernet Protected Switched Ring (EPSR) Commands SHOW EPSR Syntax epsr_name show epsr[= |all] Parameters epsr_name Specifies an EPSR domain. Specifies all ESPR domains. Description Use this command to display information about the EPSR domain. An example of the command output is shown in Figure 43. EPSR Information -------------------------------------------------------- Name ......
Page 289: Show Epsr Counter
AT-GS900M Series CLI Reference SHOW EPSR COUNTER Syntax epsr_name show epsr[= |all] counter Parameters epsr_name Specifies an EPSR domain. Specifies all ESPR domains. Description Use this command to display statistics counters for the EPSR domain. An example of the command output is shown in Figure 44.
Page 290 Chapter 15: Ethernet Protected Switched Ring (EPSR) Commands Section III: Layer 2 Switching...
Page 291: Chapter 16: Forwarding Database (Fdb) Commands
AT-GS900M Series CLI Reference Chapter 16 Forwarding Database (FDB) Commands The FDB commands are summarized in Table 34. Table 34. FDB Commands Command Description “ADD SWITCH FILTER” on Adds a static entry to the FDB. page 292 “DELETE SWITCH FILTER” on Deletes a static entry from the FDB.
Page 292: Add Switch Filter
Chapter 16: Forwarding Database (FDB) Commands ADD SWITCH FILTER Syntax unicast_mac_add add switch filter destaddress= port= port_number [vlan= vlan_name add switch filter destaddress= multicast_mac_add vlan_name vlan= Parameters destaddress Specifies the a data VLAN with a VLAN name or VLAN ID. unicast_mac_add Specifies a unicast MAC address in the format: ff-ff-ff-ff-ff-ff.
Page 293 AT-GS900M Series CLI Reference Example The following command adds a static entry of the MAC address 00-00- to FDB: f4-12-34-56 Manager > add switch filter destaddress=00-00-f4-12-34-56 port=1 Section III: Layer 2 Switching...
Page 294: Delete Switch Filter
Chapter 16: Forwarding Database (FDB) Commands DELETE SWITCH FILTER Syntax port_number delete switch filter port= [destaddress= unicast_mac_add ] [vlan= vlan_name delete switch filter destaddress= multicast_mac_add vlan_name vlan= Parameters destaddress Specifies the a data VLAN with a VLAN name or VLAN ID. unicast_mac_add Specifies a unicast MAC address in the format: ff-ff-ff-ff-ff-ff.
Page 295: Disable Switch Ageingtimer
AT-GS900M Series CLI Reference DISABLE SWITCH AGEINGTIMER Syntax disable switch agingtimer Parameters None Description Use this command to disable the FDB aging timer. When the FDB aging timer is disabled, the dynamic entires of FDB are not expired and deleted.
Page 296: Enable Switch Ageingtimer
Chapter 16: Forwarding Database (FDB) Commands ENABLE SWITCH AGEINGTIMER Syntax enable switch agingtimer Parameters None Description Use this command to enable the FDB aging timer. When the FDB aging timer is enabled, the dynamic entires of FDB are expired and deleted. By default, the FDB aging timer is enabled.
Page 297: Reset Switch Fdb
AT-GS900M Series CLI Reference RESET SWITCH FDB Syntax reset switch fdb Parameters None Description Use this command to delete all of the dynamic entries from FDB. The static entires are not deleted. Confirmation Command “SHOW SWITCH FDB” on page 299...
Page 298: Set Switch Ageingtimer
Chapter 16: Forwarding Database (FDB) Commands SET SWITCH AGEINGTIMER Syntax time set switch agingtimer= Parameters time Specifies time in seconds that the dynamic entries in FDB are expired. The range is 1 to 1,000,000 seconds. The default setting is 300 seconds. Description Use this command to change timer for the dynamic entires in FDB to be expired.
Page 299: Show Switch Fdb
AT-GS900M Series CLI Reference SHOW SWITCH FDB Syntax mac_add port_list show switch fdb [address= ] [port= |all] [status=static|dynamic|discard] [vlan= vlan_name trunk [trunk= Parameters mac_add Specifies a unicast MAC address in the format: ff-ff-ff-ff-ff-ff. port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them.
Page 300 Chapter 16: Forwarding Database (FDB) Commands Example The following example displays the entries of FDB: Manager > show switch fdb Section III: Layer 2 Switching...
Page 301: Show Switch Filter
AT-GS900M Series CLI Reference SHOW SWITCH FILTER Syntax port_list show switch filter [port= |all] [destaddress= mac_add ] [vlan= vlan_name Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them. To specify a range of ports, use a hyphen (-).
Page 302 Chapter 16: Forwarding Database (FDB) Commands Section III: Layer 2 Switching...
Page 303: Chapter 17: Dhcp Snooping Commands
AT-GS900M Series Command Reference Chapter 17 DHCP Snooping Commands The DHCP Snooping commands are summarized in Table 35. Table 35. DHCP Snooping Commands Command Description “ADD DHCPSNOOPING” on Adds a static entry to the DHCP Snooping table. page 305 “CREATE DHCPSNOOPING Creates a MAC address filtering entry.
Page 304 Chapter 17: DHCP Snooping Commands Table 35. DHCP Snooping Commands (Continued) Command Description “RESET DHCPSNOOPING Deletes dynamic entires for the specified port DATABASE” on page 321 from the DHCP Snooping table. “SET DHCPSNOOPING Changes an interval to check the DHCP CHECKINTERVAL”...
Page 305: Add Dhcpsnooping
AT-GS900M Series Command Reference ADD DHCPSNOOPING Syntax mac_address add dhcpsnooping binding= interface= vlan_interface ip_address port= port_number Parameters mac_address Specifies the MAC address of the client. vlan_interface Specifies the VLAN name or VLAN ID that the client belong to. ip_address Specifies the IP address of the client.
Page 306: Create Dhcpsnooping Macfilter
Chapter 17: DHCP Snooping Commands CREATE DHCPSNOOPING MACFILTER Syntax entry_id create dhcpsnooping macfilter= [address= mac_address |any] [mask= mac_mask vlan_name vlan_id port_list [vlan= |any] [port= |all|none] [action=deny|permit] Parameters entry_id Specifies the ID of a MAC address filtering entry. The range is 1 to 999.
Page 307 AT-GS900M Series Command Reference Description Use this command to create a MAC address filtering entry. Confirmation Command “SHOW DHCPSNOOPING MACFILTER” on page 331 Example The following command creates a MAC address filtering entry: Manager > create dhcpsnooping macfilter=1 address=00-09-41-00-00-00 mask=ff-ff-ff-00-00-00 port=all...
Page 308: Delete Dhcpsnooping
Chapter 17: DHCP Snooping Commands DELETE DHCPSNOOPING Syntax mac_address ip_address delete dhcpsnooping binding= [ip= Parameters mac_address Specifies the MAC address of the client entry. ip_address Specifies the IP address of the client entry. Description Use this command to delete a static entry from the DHCP Snooping table. Confirmation Command “SHOW DHCPSNOOPING DATABASE”...
Page 309: Destroy Dhcpsnooping Macfilter
AT-GS900M Series Command Reference DESTROY DHCPSNOOPING MACFILTER Syntax entry_id_list destroy dhcpsnooping macfilter= |all Parameters entry_id_list Specifies a list of client entries. To specify multiple entries, use a comma (,) to separate them. To specify a range of entries, use a hyphen (-).
Page 310: Disable Dhcpsnooping
Chapter 17: DHCP Snooping Commands DISABLE DHCPSNOOPING Syntax disable dhcpsnooping Parameters None Description Use this command to disable DHCP Snooping. By default, DHCP Snooping is disabled. Confirmation Command “SHOW DHCPSNOOPING” on page 328 Example The following command disables DHCP Snooping: Manager >...
Page 311: Disable Dhcpsnooping Arpsecurity
AT-GS900M Series Command Reference DISABLE DHCPSNOOPING ARPSECURITY Syntax disable dhcpsnooping arpsecurity Parameters None Description Use this command to disable ARP security. By default, ARP security is disabled. Confirmation Command “SHOW DHCPSNOOPING” on page 328 Example The following command disables ARP security: Manager >...
Page 312: Disable Dhcpsnooping Log
Chapter 17: DHCP Snooping Commands DISABLE DHCPSNOOPING LOG Syntax disable dhcpsnooping log=arpsecurity|macfilter Parameters Specifies a log event. To specify multiple log events, use a comma to separate them. arpsecurity Specifies the ARP security log. Log messages are issued when an ARP packet is discarded because the source address is not in the DHCP Snooping table.
Page 313: Disable Dhcpsnooping Option82
AT-GS900M Series Command Reference DISABLE DHCPSNOOPING OPTION82 Syntax disable dhcpsnooping option82 Parameters None Description Use this command to disable Relay Agent option 82. By default, Relay Agent option 82 is disabled. Confirmation Command “SHOW DHCPSNOOPING” on page 328 Example The following command disables Relay Agent option 82: Manager >...
Page 314: Enable Dhcpsnooping
Chapter 17: DHCP Snooping Commands ENABLE DHCPSNOOPING Syntax enable dhcpsnooping Parameters None Description Use this command to enable DHCP Snooping and start snooping DHCP messages between DHCP servers and clients. By default, DHCP Snooping is disabled. When DHCP Snooping is enabled: When the DHCP server assigns an IP address to a client, the ...
Page 315 AT-GS900M Series Command Reference Example The following command enables DHCP Snooping: Manager > enable dhcpsnooping Section III: Layer 2 Switching...
Page 316: Enable Dhcpsnooping Arpsecurity
Chapter 17: DHCP Snooping Commands ENABLE DHCPSNOOPING ARPSECURITY Syntax enable dhcpsnooping arpsecurity Parameters None Description Use this command to set ARP security enabled. ARP security is enabled when DHCP Snooping is enabled. When ARP security is enabled, the switch forwards ARP packets from DHCP clients and discards the rest. By default, ARP security is disabled.
Page 317: Enable Dhcpsnooping Log
AT-GS900M Series Command Reference ENABLE DHCPSNOOPING LOG Syntax enable dhcpsnooping log=arpsecurity|macfilter Parameters Specifies a log event. To specify multiple log events, use a comma to separate them. arpsecurity Specifies the ARP security log event. A log is issued when an ARP packet is discarded because the source address is not in the DHCP Snooping table.
Page 318: Enable Dhcpsnooping Option82
Chapter 17: DHCP Snooping Commands ENABLE DHCPSNOOPING OPTION82 Syntax enable dhcpsnooping option82 Parameters None Description Use this command to set handling Relay Agent Information Option 82 enabled. Relay Agent Information Option 82 is enabled when DHCP Snooping is enabled. When Relay Agent Information Option 82 is enabled, the switch inserts the Relay Agent Information Option into DHCP and BOOTP packets before forwarding them.
Page 319: Purge Dhcpsnooping
AT-GS900M Series Command Reference PURGE DHCPSNOOPING Syntax purge dhcpsnooping Parameters None Description Use this command to disable DHCP Snooping and delete the settings. Confirmation Command “SHOW DHCPSNOOPING” on page 328 Example The following command disables DHCP Snooping and deletes the settings: Manager >...
Page 320: Reset Dhcpsnooping Counter
Chapter 17: DHCP Snooping Commands RESET DHCPSNOOPING COUNTER Syntax reset dhcpsnooping counter Parameters None Description Use this command to reset the statistics counters for DHCP Snooping. Confirmation Command “SHOW DHCPSNOOPING COUNTER” on page 329 Example The following command resets the statistics counters for DHCP Snooping: Manager >...
Page 321: Reset Dhcpsnooping Database
AT-GS900M Series Command Reference RESET DHCPSNOOPING DATABASE Syntax port_list reset dhcpsnooping database [port= |all] Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them. To specify a range of ports, use a hyphen (-).
Page 322: Set Dhcpsnooping Checkinterval
Chapter 17: DHCP Snooping Commands SET DHCPSNOOPING CHECKINTERVAL Syntax time set dhcpsnooping checkinterval= Parameters time Specifies time in seconds. The range is 1 to 3600. The default value is 60 seconds. Description Use this command to change the interval to check the DHCP Snooping table.
Page 323: Set Dhcpsnooping Checkoption
AT-GS900M Series Command Reference SET DHCPSNOOPING CHECKOPTION Syntax set dhcpsnooping checkoption=none|dhcprelease|linkdown Parameters checkoption Specifies one or more conditions to delete client entries from the DCHP Snooping table. To specify multiple conditions, use a comma (,) to separate them. The keyword none cannot be specified with other keywords.
Page 324: Set Dhcpsnooping Macfilter
Chapter 17: DHCP Snooping Commands SET DHCPSNOOPING MACFILTER Syntax entry_id set dhcpsnooping macfilter= [address= mac_address |any] [mask= mac_mask vlan_name vlan_id port_list [vlan= |any] [port= |all|none] [action=deny|permit] Parameters entry_id Specifies the ID of a MAC address filtering entry. mac_address Specifies the MAC address of the device to be filtered. Specifies all MAC addresses.
Page 325 AT-GS900M Series Command Reference Description Use this command to change a MAC address filtering entry. Confirmation Command “SHOW DHCPSNOOPING MACFILTER” on page 331 Example The following command changes the MAC address filtering entry: Manager > set dhcpsnooping macfilter=2 address=00-44-56-77-88-00 mask=ff-ff-ff-ff-ff-ff...
Page 326: Set Dhcpsnooping Port
Chapter 17: DHCP Snooping Commands SET DHCPSNOOPING PORT Syntax port_list set dhcpsnooping port= |all [trusted=yes|no|on|off|true|false] [maxlease= lease subscriber_id [subscriberiid= |none] Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them. To specify a range of ports, use a hyphen (-). Specifies all the switch ports.
Page 327 AT-GS900M Series Command Reference Confirmation Command “SHOW DHCPSNOOPING PORT” on page 332 Example The following command changes the settings on port 4 for DHCP Snooping: Manager > set dhcpsnooping port=4 trusted=true Section III: Layer 2 Switching...
Page 328: Show Dhcpsnooping
Chapter 17: DHCP Snooping Commands SHOW DHCPSNOOPING Syntax show dhcpsnooping Parameters None Description Use this command to display information about DHCP Snooping. An example of the command output is shown in Figure 47. DHCP Snooping Information -------------------------------------------------------- DHCP Snooping ....Enabled Option 82 status ..
Page 329: Show Dhcpsnooping Counter
AT-GS900M Series Command Reference SHOW DHCPSNOOPING COUNTER Syntax show dhcpsnooping counter Parameters None Description Use this command to display statistics information for DHCP Snooping. An example of the command output is shown in Figure 48. DHCP Snooping Counters -------------------------------------------------------- DHCP Snooping InPackets ......
Page 330: Show Dhcpsnooping Database
Chapter 17: DHCP Snooping Commands SHOW DHCPSNOOPING DATABASE Syntax show dhcpsnooping database Parameters None Description Use this command to display the DHCP Snooping table. An example of the command output is shown in Figure 49. DHCP Snooping Binding Database -------------------------------------------------------------------------- Full Leases/Max Leases ...
Page 331: Show Dhcpsnooping Macfilter
AT-GS900M Series Command Reference SHOW DHCPSNOOPING MACFILTER Syntax entry_id show dhcpsnooping macfilter[= |all] [port= port_list |all] Parameters entry_id Specifies the ID of a MAC address filtering entry. Specifies all the switch ports. port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them.
Page 332: Show Dhcpsnooping Port
Chapter 17: DHCP Snooping Commands SHOW DHCPSNOOPING PORT Syntax port_list show dhcpsnooping port[= |all] Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them. To specify a range of ports, use a hyphen (-). Specifies all the switch ports.
Page 333: Chapter 18: Power Over Ethernet (Poe) Commands
AT-GS900M Series CLI Reference Chapter 18 Power Over Ethernet (PoE) Commands The PoE commands are summarized in Table 36. Table 36. PoE Commands Command Description “DISABLE POE PORT” on Disables Power of Ethernet (PoE) on page 334 ports. “ENABLE POE PORT” on Enables PoE on ports.
Page 334: Disable Poe Port
Chapter 18: Power Over Ethernet (PoE) Commands DISABLE POE PORT Syntax port_list disable poe port[= |all] Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them. To specify a range of ports, use a hyphen (-). Specifies all the switch ports.
Page 335: Enable Poe Port
AT-GS900M Series CLI Reference ENABLE POE PORT Syntax port_list enable poe port[= |all] Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them. To specify a range of ports, use a hyphen (-).
Page 336: Set Poe Detect
Chapter 18: Power Over Ethernet (PoE) Commands SET POE DETECT Syntax set poe detect[=ieee|legacy] Parameters ieee Detects IEEE compliant PDs. This is the default setting. legacy Detects IEEE compliant PDs and legacy PDs. Description Use this command to specify the detect method of powered devices (PDs).
Page 337: Set Poe Guardband
AT-GS900M Series CLI Reference SET POE GUARDBAND Syntax guard_band set poe guardband= Parameters guard_band Specifies the guard band in watts. The range is 2 to 70 watts. The default setting is 10 watts. Description Use this command to specify guard power in watts. The switch does not supply power to a PD that is newly connected to the port when the switch is supplying power to the other PDs exceeding the power threshold.
Page 338: Set Poe Management
Chapter 18: Power Over Ethernet (PoE) Commands SET POE MANAGEMENT Syntax set poe management[=class|actual] Parameters class Specifies the class power management mode. The switch assigns power to ports based on the class of the PD connected to the port. actual Specifies the actual power management mode.
Page 339: Set Poe Port
AT-GS900M Series CLI Reference SET POE PORT Syntax port_list set poe port[= |all] [priority=low|high|critical] [powerlimit= power_limit Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them. To specify a range of ports, use a hyphen (-).
Page 340 Chapter 18: Power Over Ethernet (PoE) Commands When the power management mode is actual, the maximum  power supplied to the port is 15400 mili-watts on the port connected to the PD whose class is 0 to 3 even if the power limit is set to larger than 15400mili-watts.
Page 341: Set Poe Threshold
AT-GS900M Series CLI Reference SET POE THRESHOLD Syntax threshold set poe threshold= Parameters threshold Specifies the percentage of the maximum power that the switch supplies to the PDs. Description Use this command to specify the threshold that the switch supplies to the connected PDs.
Page 342: Show Poe
Chapter 18: Power Over Ethernet (PoE) Commands SHOW POE Syntax show POE Parameters None Description Use this command to display information about PoE settings and ports. An example of the command output is shown in Figure 52. PoE Global Power Status: -------------------------------------------------- Power Management Mode ..
Page 343: Show Poe Port
AT-GS900M Series CLI Reference SHOW POE PORT Syntax port_list show POE port[= |all] Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them. To specify a range of ports, use a hyphen (-).
Page 344 Chapter 18: Power Over Ethernet (PoE) Commands Section III: Layer 2 Switching...
Page 345: Chapter 19: Power Saving Commands
AT-GS900M Series Command Reference Chapter 19 Power Saving Commands The Power Saving commands are summarized in Table 37. Table 37. Power Saving Commands Command Description “CREATE TRIGGER” on Creates a power saving trigger. page 346 “DESTROY TRIGGER” on Deletes a power saving trigger.
Page 346: Create Trigger
Chapter 19: Power Saving Commands CREATE TRIGGER Syntax trigger_id create trigger= psmode[=sleep|ledoff|portoff|poeoff] starttime= time time date date [endtime= ] [startdate= ] [enddate= day_list port_list stirng [days= ] port[= |all] [name= [poetarget=alliedtelesis-ap|other] [state=enabled|disabled] [test=yes|no|on|off] Parameters trigger_id Specifies a power saving trigger ID. The range is 1 to 10. psmode Specifies the power saving mode.
Page 347 Specifies a type of PD. This parameter is used when the psmode is set to poeoff. alliedtelesis-ap When the PD is a Allied Telesis wireless access point, the link relay function is enabled. When the trigger becomes effective, the switch disconnect the link and stops supplying power to the connected wireless access point.
Page 348 Chapter 19: Power Saving Commands Description Use this command to create a power saving trigger. Here are the guidelines for power saving triggers: To start the switch in the sleep mode due to the trigger, you must  power on the switch or press the reset button. To start the switch in the sleep mode right after the trigger starts, ...
Page 349: Destroy Trigger
AT-GS900M Series Command Reference DESTROY TRIGGER Syntax trigger_id create trigger= Parameters trigger_id Specifies a power saving trigger ID. Description Use this command to delete a power saving trigger. Confirmation Command “SHOW TRIGGER” on page 360 Example The following command deletes trigger 10: Manager >...
Page 350: Disable Trigger
Chapter 19: Power Saving Commands DISABLE TRIGGER Syntax trigger_id disable trigger= Parameters trigger_id Specifies a power saving trigger ID. Description Use this command to disable a power saving trigger. Right after the trigger is created, the trigger is enabled except the state parameter is set to disabled.
Page 351: Enable Trigger
AT-GS900M Series Command Reference ENABLE TRIGGER Syntax trigger_id enable trigger= Parameters trigger_id Specifies a power saving trigger ID. Description Use this command to enable a power saving trigger. Right after the trigger is created, the trigger is enabled except the state parameter is set to disabled.
Page 352: Purge Trigger
Chapter 19: Power Saving Commands PURGE TRIGGER Syntax purge trigger Parameters trigger_id Specifies a power saving trigger ID. Description Use this command to disable and delete all power saving triggers. Confirmation Command “SHOW TRIGGER” on page 360 Example The following command disables and deletes all power saving triggers: Manager >...
Page 353: Set Led Mode
AT-GS900M Series Command Reference SET LED MODE Syntax set led mode=speed|duplex|off Parameters speed Sets the LED mode to speed. The LINK/ACT LED’s are on and the SPD/DPX LED’s indicate the speed. duplex Sets the LED mode to duplex. The LINK/ACT LED’s are on and the SPD/DPX LED’s indicate the duplex mode.
Page 354: Set Led Port
Chapter 19: Power Saving Commands SET LED PORT Syntax port_list rate set led port= |all [action=on|off] [rate= |none] Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them. To specify a range of ports, use a hyphen (-). Specifies all the switch ports.
Page 355 AT-GS900M Series Command Reference Confirmation Command “SHOW LED” on page 359 Example The following command sets the LED on port 1 to be off when the receiving rate is less than 1 Kbps: Manager > set led port=1 action=off rate=1...
Page 356: Set Trigger
Chapter 19: Power Saving Commands SET TRIGGER Syntax trigger_id set trigger= psmode=sleep|ledoff|portoff|poeoff starttime= time [endtime= time ] [startdate= date date day_list port_list [enddate= ] [days= ] [port= |all] stirng [name= ] [poetarget=alliedtelesis-ap|other] [state=enabled|disabled] [test=yes|no|on|off] Parameters trigger_id Specifies a power saving trigger ID. psmode Specifies the power saving mode.
Page 357 Specifies a type of PD. This parameter is used when the psmode is set to poeoff. alliedtelesis-ap When the PD is a Allied Telesis wireless access point, the link relay function is enabled. When the trigger becomes effective, the switch disconnect the link and stops supplying power to the connected wireless access point.
Page 358 Chapter 19: Power Saving Commands Description Use this command to modify a power saving trigger. See“CREATE TRIGGER” on page 346 for the guidelines for power saving triggers. Confirmation Command “SHOW TRIGGER” on page 360 Example The following command changes trigger ID 1 to set the switch in the sleep mode starting at 24:00 and ending at 7:00: Manager >...
Page 359: Show Led
AT-GS900M Series Command Reference SHOW LED Syntax show led Parameters None Description Use this command to display information about port LED settings. An example of the command output is shown in Figure 54. Switch LED Information ----------------------------------------------------------- Configured LED Mode ....LED Off Actual LED Mode ....
Page 360: Show Trigger
Chapter 19: Power Saving Commands SHOW TRIGGER Syntax trigger_id show trigger= [full|status|summary] Parameters trigger_id Specifies a power saving trigger ID. full Displays the detailed information about the trigger. status Displays the status of the trigger module. summary Displays the summary of all triggers. This is the default setting. Description Use this command to display information about PoE ports.
Page 361: Chapter 20: Rapid Spanning Tree Protocol (Rstp) Commands
AT-FS900M Series CLI ReferenceAT-GS900M Series CLI Reference Chapter 20 Rapid Spanning Tree Protocol (RSTP) Commands This Rapid Spanning Tree Protocol commands are summarized in Table 38and described in this chapter. Table 38. Rapid Spanning Tree Protocol Commands Command Description “DISABLE STP” on page 362 Disables RSTP on individual ports or the switch.
Page 362: Disable Stp
Chapter 20: Rapid Spanning Tree Protocol (RSTP) Commands DISABLE STP Syntax port_list disable stp [port= |all] Parameters port_list Specifies one or more ports. To specify multiple ports, use commas to separate nonconsecutive numbers (for example 5,7,9) or a dash to specify consecutive numbers (for example (1-4). Description This command is used to disable the Rapid Spanning Tree Protocol (RSTP) on selected ports or the switch.
Page 363: Enable Stp
AT-FS900M Series CLI ReferenceAT-GS900M Series CLI Reference ENABLE STP Syntax port_list enable stp [port= |all] Parameters port_list Specifies one or more ports. To specify multiple ports, use commas to separate nonconsecutive numbers (for example 5,7,9) or a dash to specify consecutive numbers (for example (1-4). Description This command is used to enable the Rapid Spanning Tree Protocol on selected ports or the switch.
Page 364: Purge Stp
Chapter 20: Rapid Spanning Tree Protocol (RSTP) Commands PURGE STP Syntax purge stp Parameters None Description This command returns all the RSTP bridge and port parameters to the default settings. RSTP must be disabled before you can use this command. To disable RSTP, refer to “DISABLE STP” on page 362. Example The following command resets the RSTP parameters to their default settings:...
Page 365: Set Stp
AT-FS900M Series CLI ReferenceAT-GS900M Series CLI Reference SET STP Syntax priority set stp [rstptype=normal|stpcompatible| [priority= [maxage= maxage ] [hellotime= hellotime forwarddelay [forwarddelay= ] [default] Parameters rstptype Sets the RSTP mode. The options are: normal: The bridge uses RSTP. It transmits RSTP BPDU packets, except on ports connected to bridges running STP.
Page 366 Chapter 20: Rapid Spanning Tree Protocol (RSTP) Commands maxage Specifies the length of time, in seconds, after which stored bridge protocol data units (BPDUs) are deleted by the bridge. All bridges in a bridged LAN use this aging time to test the age of stored configuration messages called bridge protocol data units (BPDUs).
Page 367 AT-FS900M Series CLI ReferenceAT-GS900M Series CLI Reference Examples The following command sets the bridge priority to 20480, the hello time to 5 seconds, and the forwarding delay to 20 seconds: set stp priority=20480 hellotime=5 forwarddelay=20 The following command uses the RSTPTYPE parameter to configure the bridge to use the RSTP parameters but to transmit only STP BPDU packets: set stp rstptype=stpcompatible...
Page 368: Set Stp Port
Chapter 20: Rapid Spanning Tree Protocol (RSTP) Commands SET STP PORT Syntax port_list portpriority set stp port= [portpriority= [pathcost= cost |auto] [edgeport=yes|no|on|off|true|false] [ptp=auto|yes|no|on|off|true|false] [migrationcheck=on|yes|true] Parameters port_list Specifies one or more ports. To specify multiple ports, use commas to separate nonconsecutive numbers (for example 5,7,9) or a dash to specify consecutive numbers (for example (1-4).
Page 369 AT-FS900M Series CLI ReferenceAT-GS900M Series CLI Reference auto: Automatically sets the port cost according to the speed of the port. This is the default. Table 41 lists the port costs with auto- detect. Table 41. RSTP Auto-Detect Port Costs Port Speed Port Cost 10 Mbps 200,000 to 2,000,000...
Page 370 Chapter 20: Rapid Spanning Tree Protocol (RSTP) Commands Description This command sets a port’s RSTP settings. Examples The following command sets the port cost to 1,000,000 and port priority to 224 (increment 14) on port 4: set stp port=4 portcost=1000000 portpriority=14 The following command changes ports 6 to 8 so they are not considered edge ports: set stp port=6-8 edgeport=no...
Page 371: Show Stp
AT-FS900M Series CLI ReferenceAT-GS900M Series CLI Reference SHOW STP Syntax show stp Parameters None. Description You use this command to display the RSTP parameter settings. An example of the command is shown in Figure 56. STP Information ------------------------------------------------ RSTP Type ....Normal Number of Ports ....
Page 372 Chapter 20: Rapid Spanning Tree Protocol (RSTP) Commands Table 42. SHOW STP Command (Continued) Column Description Number Disabled Displays the number of ports on which RSTP is disabled. Enable Port List Displays the port numbers of the ports with RSTP is enabled. Bridge Identifier Displays the bridge Identifier parameter consists of the switch’s...
Page 373 AT-FS900M Series CLI ReferenceAT-GS900M Series CLI Reference Table 42. SHOW STP Command (Continued) Column Description Switch Forward Delay Displays the forward delay value on the switch. Hold Time Displays the minimum transmission interval when the root bridge sends a confirmation BPDU.
Page 374: Show Stp Portconfig
Chapter 20: Rapid Spanning Tree Protocol (RSTP) Commands SHOW STP PORTCONFIG Syntax port_list show stp portconfig[= |all] Parameters port_list Specifies one or more ports. To specify multiple ports, use commas to separate nonconsecutive numbers (for example 5,7,9) or a dash to specify consecutive numbers (for example (1-4). Description You use this command to display the RSTP settings of the ports on the switch.
Page 375: Show Stp Portstate
AT-FS900M Series CLI ReferenceAT-GS900M Series CLI Reference SHOW STP PORTSTATE Syntax port_list show stp portstate[= |all] Parameters Specifies one or more ports. To specify multiple ports, port_list use commas to separate nonconsecutive numbers (for example 5,7,9) or a dash to specify consecutive numbers (for example (1-4).
Page 376 Chapter 20: Rapid Spanning Tree Protocol (RSTP) Commands Table 43. SHOW STP PORTSTATE Command (Continued) Column Description State The RSTP state of the port. The possible states for a port connected to another device running RSTP are Discarding and Forwarding. The possible states for a port connected to a device running STP are Listening, Learning, Forwarding, and Discarding.
Page 377: Chapter 21: Multiple Spanning Tree Protocol (Mstp) Commands
AT-GS900M Series CLI Reference Chapter 21 Multiple Spanning Tree Protocol (MSTP) Commands The MSTP commands are summarized in Table 44 and described in this chapter. Table 44. Multiple Spanning Tree Protocol Commands Command Description “ADD MSTP MSTI VLAN” on Associates VLANS to MST instances.
Page 378 Chapter 21: Multiple Spanning Tree Protocol (MSTP) Commands Table 44. Multiple Spanning Tree Protocol Commands (Continued) Command Description “SET MSTP MSTI” on page 397 Specifies the bridge priority to the specified MST instance. “SET MSTP MSTI PORT” on Specifies the port priority for an MST page 398 instance.
Page 379: Add Mstp Msti Vlan
AT-GS900M Series CLI Reference ADD MSTP MSTI VLAN Syntax instance vlan_list add mstp msti= vlan= |all Parameters instance Specifies MST instance ID. The range is 1 to 15. vlan_list Specifies a list of VLANs. To specify multiple VLANs, use a comma (,) to separate them.
Page 380: Create Mstp Msti
Chapter 21: Multiple Spanning Tree Protocol (MSTP) Commands CREATE MSTP MSTI Syntax instance priority create mstp msti= priority= Parameters instance Specifies MST instance ID. The range is 1 to 15. priority Specifies bridge priority for the MST instance. The range is 0 to 65535.
Page 381: Delete Mstp Msti Vlan
AT-GS900M Series CLI Reference DELETE MSTP MSTI VLAN Syntax instance vlan_list delete mstp msti= vlan= |all Parameters msti Specifies an MST instance that the debug option is enabled for. instance Specifies MST instance ID. The range is 1 to 15.
Page 382: Destroy Mstp Msti
Chapter 21: Multiple Spanning Tree Protocol (MSTP) Commands DESTROY MSTP MSTI Syntax instance disable mstp msti= Parameters instance Specifies a MST instance ID. The range is 1 to 15. Description Use this command to delete a MST instance. The MSTP instance associated with a VLAN cannot be deleted.
Page 383: Disable Mstp
AT-GS900M Series CLI Reference DISABLE MSTP Syntax port_list disable mstp [port= |all] Parameters port Specifies one or more ports that MSTP is disabled on. To disable MSTP on a trunk port, you must specify all members in the trunk group.
Page 384: Disable Mstp Debug Msti
Chapter 21: Multiple Spanning Tree Protocol (MSTP) Commands DISABLE MSTP DEBUG MSTI Syntax instance disable mstp debug=msg|pkt|state|all msti=cist| |all [port= port_list |all] Parameters debug Specifies a debug option to disable. Specifies the msg option to decode and display BPDU. Specifies the pkt option to display BPDU for an ASCII value. state Specifies the state option to display the state of ports.
Page 385: Enable Mstp
AT-GS900M Series CLI Reference ENABLE MSTP Syntax port_list enable mstp [port= |all] Parameters port Specifies one or more ports that MSTP is enabled on. To enable MSTP on a trunk port, you must specify all member ports in the trunk group.
Page 386 Chapter 21: Multiple Spanning Tree Protocol (MSTP) Commands The following command enables MSTP on the switch: enable mstp Section III: Layer 2 Switching...
Page 387: Enable Mstp Debug Msti
AT-GS900M Series CLI Reference ENABLE MSTP DEBUG MSTI Syntax instance enable mstp debug=msg|pkt|state|all msti=cist| |all [port= port_list |all] [statemachine=ptm|prx|ppm|pim|ptx|prs|prt|pst|tcm|all] timeout [output=console] [timeout= |none] Parameters debug Specifies a debug option to enable. Specifies the msg option to decode and display BPDU.
Page 388 Chapter 21: Multiple Spanning Tree Protocol (MSTP) Commands Port information state machine. Port transmit state machine. Port role selection state machine. Port role transition state machine. Port state transition state machine. Topology change state machine. output Specifies the output to display debug information. The option is console only.
Page 389: Purge Mstp
AT-GS900M Series CLI Reference PURGE MSTP Syntax purge mstp Parameters None. Description Use this command to set all the MSTP parameters to the default settings. The command deletes all MSTP instances that the user created, resets all VLANs to belong to Common and Internal Spanning Tree (CIST), and disable MSTP.
Page 390: Reset Mstp Counter Port
Chapter 21: Multiple Spanning Tree Protocol (MSTP) Commands RESET MSTP COUNTER PORT Syntax port_list reset mstp counter port[= |all] Parameters port Specifies one or more ports that MSTP counters are reset on. port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them.
Page 391: Set Mstp
AT-GS900M Series CLI Reference SET MSTP Syntax name revisionlevel set mstp [configname= ] [revisionlevel= [maxhops= maxhops ] [maxage= maxage ] [hellotime= hellotime forwarddelay [forwarddelay= [protocolversion=mstp|stpcompatible] Parameters configname Specifies the name of the MST region that the switch belongs to. The name must be up to 32 alphanumeric characters including an underscore (_).
Page 392 Chapter 21: Multiple Spanning Tree Protocol (MSTP) Commands protocolversion Specifies the protocol version. mstp Specifies MSTP version. stpcompatible Specifies MSTP version using STP BPDUs. Description Use this command to change the following MSTP parameters of the switch: MST region  Revision of the MST region ...
Page 393: Set Mstp Cist
AT-GS900M Series CLI Reference SET MSTP CIST Syntax priority set mstp cist priority= Parameters priority Specifies the bridge priority for CIST. The smaller number has higher priority to be a root bridge.The range is 0 to 65535. The default value is 32768. The switch converts the specified number into an increment of 4096, which is close to and smaller than the specified number.
Page 394: Set Mstp Cist Port
Chapter 21: Multiple Spanning Tree Protocol (MSTP) Commands SET MSTP CIST PORT Syntax port_list priority set mstp cist port[= |all] priority= [inpathcost= inpathcost |default|auto] expathcost [expathcost= |default|auto] [edgeport=yes|no|on|off|true|false] [pointtopoint=yes|no|off|true|false|auto] [migrationchech=yes|on|true] Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them.
Page 395 AT-GS900M Series CLI Reference auto Detects the port speed automatically and specifies the past cost according to the speed. This is the default setting. expathcost Specifies the cost for the path to the region of the CIST root bridge. expathcost Specifies the expathcost.
Page 396 Chapter 21: Multiple Spanning Tree Protocol (MSTP) Commands Confirmation Command “SHOW MSTP” on page 399 Examples The following command sets port 10 to port 20 as edge ports: set mstp cist port=10-20 edgeport=yes Section III: Layer 2 Switching...
Page 397: Set Mstp Msti
AT-GS900M Series CLI Reference SET MSTP MSTI Syntax instance priority set mstp msti= priority= Parameters instance Specifies MST instance ID. priority Specifies the bridge priority for the MST instance. The smaller number has higher priority to be a root bridge.The range is 0 to 65535.
Page 398: Set Mstp Msti Port
Chapter 21: Multiple Spanning Tree Protocol (MSTP) Commands SET MSTP MSTI PORT Syntax instance port_list set mstp msti= port[= |all] priority= priority [pathcost= pathcost |default|auto] Parameters instance Specifies MST instance ID. priority Specifies the port priority. The smaller number has higher priority to be a root port.The range is 0 to 255.
Page 399: Show Mstp
AT-GS900M Series CLI Reference SHOW MSTP Syntax port_list show mstp [portconfig= |all] [portstate= port_list |all] [mstistate= instance ] [cist] [mstivlanassoc] Parameters portconfig Displays the settings of the specified port. portstate Displays the state of the specified port. port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them.
Page 400 Chapter 21: Multiple Spanning Tree Protocol (MSTP) Commands Manager > show mstp Switch MSTP Config Information: The current protocol Version is: MSTP Switch MSTP Config Information: Status ....Enabled Force Version ..NormalMSTP Hello Time ..... 2/2 (Configured/Actual) Forwarding Delay ..15/15 (Configured/Actual) Max Age ....
Page 401: Show Mstp Counter Port
AT-GS900M Series CLI Reference SHOW MSTP COUNTER PORT Syntax port_list show mstp counter port[= |all] Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them. To specify a range of ports, use a hyphen (-).
Page 402: Show Mstp Debug Msti
Chapter 21: Multiple Spanning Tree Protocol (MSTP) Commands SHOW MSTP DEBUG MSTI Syntax instance show mstp debug msti=cist| |all] Parameters msti Specifies the MST instance to display the MSTP debug options. cist Displays the debug options on CIST. instance Specifies the MST instance ID to displays the debug options. Displays the debug options on all the MST instances.
Page 403: Section Iv: Security And Traffic Control
Section IV Security and Traffic Control This section contains the following chapters: Chapter 22, “Access Filter Commands” on page 405  Chapter 23, “Internet Group Management Protocol (IGMP) Snooping  Commands” on page 417 Chapter 24, “Multicast Listener Discovery (MLD) Snooping ...
Page 404 AT-GS900M Series CLI Reference...
Page 405: Chapter 22: Access Filter Commands
AT-GS900M Series CLI Reference Chapter 22 Access Filter Commands The access filter commands are summarized in Table 46. Table 46. Access Filter Commands Command Description “ADD ACCESS FILTER” on Adds an access filter entry to the page 406 specified access filter group.
Page 406: Add Access Filter
Chapter 22: Access Filter Commands ADD ACCESS FILTER Syntax add access filter=snmp|ftp|telnet|http|icmp|global ipaddress= ip_address mask= mask action=pass|discard port_list port= |all Parameters filter Specifies one of the access filter groups to the access filter entry. snmp Specifies the entry to add to the group snmp. Specifies the entry to add to the group ftp.
Page 407 AT-GS900M Series CLI Reference Specifies all the switch ports. Description Use this command to create an access filter entry. The switch can have up to 512 entires. Confirmation Command “SHOW ACCESS FILTER” on page 415 Example The following command adds an access filter to deny Telnet on all the ports from the 192.168.1.2 device:...
Page 408: Delete Access Filter Entry
Chapter 22: Access Filter Commands DELETE ACCESS FILTER ENTRY Syntax delete access filter=snmp|ftp|telnet|http|icmp|global entry= entry_number Parameters filter Specifies the access filter group of the access filter. See “ADD ACCESS FILTER” on page 406. filter Specifies one of the access filter groups. snmp Specifies the group snmp.
Page 409 AT-GS900M Series CLI Reference Example The following command deletes an access filter 1 for Telnet: Manager > delete access filter=telnet entry=1 Section IV: Security and Traffic Control...
Page 410: Disable Access Filter
Chapter 22: Access Filter Commands DISABLE ACCESS FILTER Syntax disable access filter=snmp|ftp|telnet|http|icmp|global|all Parameters filter Specifies an access filter group. See “ADD ACCESS FILTER” on page 406. global Specifies all the access filter groups. Specifies the access filter entries: snmp, ftp, telnet, http, and icmp. Description Use this command to disable the access filter feature on the specified access filter group or all the access filter entries.
Page 411: Enable Access Filter
AT-GS900M Series CLI Reference ENABLE ACCESS FILTER Syntax enable access filter=snmp|ftp|telnet|http|icmp|global|all Parameters filter Specifies an access filter group. See “ADD ACCESS FILTER” on page 406. global Specifies all the access filter groups. Specifies the access filter entries: snmp, ftp, telnet, http, and icmp.
Page 412: Set Access Filter
Chapter 22: Access Filter Commands SET ACCESS FILTER Syntax set access filter=snmp|ftp|telnet|http|icmp|global|all default=pass|discard Parameters filter Specifies an access filter group. See “ADD ACCESS FILTER” on page 406. global Specifies all the access filter groups. Specifies the access filter entries: snmp, ftp, telnet, http, and icmp. default Specifies the default action.
Page 413: Set Access Filter Entry
AT-GS900M Series CLI Reference SET ACCESS FILTER ENTRY Syntax set access filter=snmp|ftp|telnet|http|icmp|global entry= entry_number [ipaddress= ip_address ] [mask= mask port_list [action=pass|discard] [port= |all] Parameters filter Specifies one of the access filter groups to the access filter entry. snmp Specifies the entry to add to the group snmp.
Page 414 Chapter 22: Access Filter Commands port_list Specifies a switch port number or list of port numbers. To specify multiple port numbers, separate port numbers using a comma or use a hyphen to specify the range of port numbers. Specifies all the switch ports. Description Use this command to change the settings of the specified access filter entry.
Page 415: Show Access Filter
AT-GS900M Series CLI Reference SHOW ACCESS FILTER Syntax show access filter=snmp|ftp|telnet|http|icmp|global|all Parameters filter Specifies an access filter group. See “ADD ACCESS FILTER” on page 406. global Specifies all the access filter groups. Specifies the access filter entries: snmp, ftp, telnet, http, and icmp.
Page 416 Chapter 22: Access Filter Commands Another example of the command output is shown in Figure 63. Manager > show access filter=telnet TELNET: Access Filtering ....Enabled Port ......23 Default......Discard Entry MASK ACTION PORT ------------------------------------------------------ 192.168.1.2 255.255.255.0 Pass 192.168.8.5 255.255.255.0 Pass 192.168.40.5...
Page 417: Chapter 23: Internet Group Management Protocol (Igmp) Snooping Commands
AT-GS900M Series CLI Reference Chapter 23 Internet Group Management Protocol (IGMP) Snooping Commands The IGMP Snooping commands are summarized in Table 48. Table 48. IGMP Snooping Commands Command Description “ADD IGMPSNOOPING Add a multicast group for IGMP Snooping. MCGROUP” on page 418 “DELETE IGMPSNOOPING”...
Page 418: Add Igmpsnooping Mcgroup
Chapter 23: Internet Group Management Protocol (IGMP) Snooping Commands ADD IGMPSNOOPING MCGROUP Syntax ip_address number add igmpsnooping mcgroup= [number= [routerport= port_list |all] Parameters mcgroup Specifies a multicast group IP address for IGMP Snooping. This IP address is the name of the multicast group and the starting IP address if you specify more than one IP address to the multicast group.
Page 419 AT-GS900M Series CLI Reference The multicast group includes the specified number of IP  addresses, starting from the IP address of the mcgroup and the sequence going up by 1. A list of IP addresses unavailable to multicast groups is shown in Table 49.
Page 420 Chapter 23: Internet Group Management Protocol (IGMP) Snooping Commands Table 49. Unavailable IP Addresses for Multicast Groups IP Address Mapped MAC Address 236.0.0.0/24 236.128.0.0/24 237.0.0.0/24 237.128.0.0/24 238.0.0.0/24 238.128.0.0/24 239.0.0.0/24 239.128.0.0/24 Confirmation Command “SHOW IGMPSNOOPING” on page 427 Example The following command creates a multicast group of 224.1.1.1 for IGMP Snooping: Manager >...
Page 421: Delete Igmpsnooping
AT-GS900M Series CLI Reference DELETE IGMPSNOOPING Syntax ip_add delete igmpsnooping mcgroup= Parameters mcgroup Specifies an IP multicast group address. Description Use this command to delete a static multicast group. Confirmation Command “SHOW IGMPSNOOPING” on page 427 Example The following command deletes a multicast group, 224.1.1.1: Manager >...
Page 422: Disable Igmpsnooping
Chapter 23: Internet Group Management Protocol (IGMP) Snooping Commands DISABLE IGMPSNOOPING Syntax disable igmpsnooping Parameters None Description Use this command to disable IGMP Snooping. By default, IGMP Snooping is disabled. Confirmation Command “SHOW IGMPSNOOPING” on page 427 Example The following command disables IGMP Snooping: Manager >...
Page 423: Enable Igmpsnooping
AT-GS900M Series CLI Reference ENABLE IGMPSNOOPING Syntax enable igmpsnooping Parameters None Description Use this command to enable IGMP Snooping on the switch. By default, IGMP Snooping is disabled. By default, the switch forwards multicast traffic to all ports belong to the same VLAN if any of the ports is a member of the multicast group.
Page 424: Set Igmpsnooping
Chapter 23: Internet Group Management Protocol (IGMP) Snooping Commands SET IGMPSNOOPING Syntax timeout set igmpsnooping [timeout= [numbermulticastgroups= numbermulticastgroups port_list [routerport= |all|none|auto] [force] Parameters timeout Specifies time in seconds. When the time passes since the last membership report, the switch deletes the multicast group. The range is 0 to 86400 seconds.
Page 425 AT-GS900M Series CLI Reference By default, the switch forwards multicast traffic to all ports belong to the same VLAN if any of the ports is a member of the multicast group. When IGMP Snooping is enabled, the switch snoops IGMP messages and forwards multcast traffic only to multicast member ports.
Page 426: Set Igmpsnooping Mcgroup
Chapter 23: Internet Group Management Protocol (IGMP) Snooping Commands SET IGMPSNOOPING MCGROUP Syntax ip_address set igmpsnooping mcgroup= routerport= port_list |all Parameters mcgroup Specifies an IP multicast group address. routerport Specifies ports for router ports. port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them.
Page 427: Show Igmpsnooping
AT-GS900M Series CLI Reference SHOW IGMPSNOOPING Syntax show igmpsnooping Parameters None Description Use this command to display the settings and status of IGMP Snooping. An example of the command output is shown in Figure 64. IGMP Snooping Configuration: IGMP Snooping Status ....Enabled Host/Router Timeout Interval ..
Page 428 Chapter 23: Internet Group Management Protocol (IGMP) Snooping Commands Section IV: Security and Traffic Control...
Page 429: Chapter 24: Multicast Listener Discovery (Mld) Snooping Commands
AT-GS900M Series CLI Reference Chapter 24 Multicast Listener Discovery (MLD) Snooping Commands The MLD Snooping commands are summarized in Table 50. Table 50. MLD Snooping Commands Command Description “ADD MLDSNOOPING Adds an IPv6 multicast group for MLD MCGROUP” on page 430 Snooping.
Page 430: Add Mldsnooping Mcgroup
Chapter 24: Multicast Listener Discovery (MLD) Snooping Commands ADD MLDSNOOPING MCGROUP Syntax ipv6_address add igmpsnooping mcgroup= [routerport= port_list |all] Parametersv mcgroup Specifies a multicast group IPv6 address for MLD Snooping. This IPv6 address is the name of the multicast group. ipv6_address Specifies the IPv6 address of the multicast group.
Page 431 AT-GS900M Series CLI Reference Here are the guidelines for adding a multcast group: When an existing multicast group IPv6 address is added, the  command issues an error. The destination MAC address for the IPv6 multicast traffic is copied ...
Page 432: Delete Mldsnooping
Chapter 24: Multicast Listener Discovery (MLD) Snooping Commands DELETE MLDSNOOPING Syntax ip6_address delete mldsnooping mcgroup= Parameters mcgroup Specifies an IPv6 multicast group address. ipv6_address Specifies the IPv6 address of the multicast group. Here is the guidelines for IPv6 multicast addresses. –...
Page 433: Disable Mldsnooping
AT-GS900M Series CLI Reference DISABLE MLDSNOOPING Syntax disable mldsnooping Parameters None Description Use this command to disable MLD Snooping. By default, MLD Snooping is disabled. Confirmation Command “SHOW MLDSNOOPING” on page 439 Example The following command disables MLD Snooping: Manager > disable mldsnooping...
Page 434: Enable Mldsnooping
Chapter 24: Multicast Listener Discovery (MLD) Snooping Commands ENABLE MLDSNOOPING Syntax enable mldsnooping Parameters None Description Use this command to enable Multicast Listener Discovery (MLD) Snooping on the switch. The switch supports MLD versions 1 and 2 Snooping. By default, MLD Snooping is disabled. When MLD Snooping is disabled, the switch forwards IPv6 multicast traffic to all ports belong to the same VLAN if any of the ports is a member of the multicast group.
Page 435: Set Mldsnooping
AT-GS900M Series CLI Reference SET MLDSNOOPING Syntax timeout set mldsnooping [timeout= [numbermulticastgroups= numbermulticastgroups port_list [routerport= |all|none|auto] [force] Parameters timeout Specifies time in seconds. When the time passes since the last membership report, the switch deletes the multicast group. The range is 0 to 86400 seconds. The default value is 260 seconds.
Page 436 Chapter 24: Multicast Listener Discovery (MLD) Snooping Commands Description Use this command to specify the timeout and changes the settings of the multicast group for MLD Snooping. By default, the switch forwards multicast traffic to all ports belong to the same VLAN if any of the ports is a member of the multicast group.
Page 437: Set Mldsnooping Mcgroup
AT-GS900M Series CLI Reference SET MLDSNOOPING MCGROUP Syntax ip_add port_list set mldsnooping mcgroup= routerport= |all Parameters mcgroup Specifies an IPv6 multicast group address. ipv6_address Specifies the IPv6 address of the multicast group. Here is the guidelines for IPv6 multicast addresses.
Page 438 Chapter 24: Multicast Listener Discovery (MLD) Snooping Commands Example The following command changes the router ports for the multicast group ff05:0:1::101 Manager > set mldsnooping mcgroup=ff05:0:1::101 routerport=1-3 Section IV: Security and Traffic Control...
Page 439: Show Mldsnooping
AT-GS900M Series CLI Reference SHOW MLDSNOOPING Syntax show mldsnooping Parameters None Description Use this command to display the settings and status of MLD Snooping. An example of the command output is shown in Figure 65. MLD Snooping Configuration: MLD Snooping Status ....Enabled Host/Router Timeout Interval ..
Page 440 Chapter 24: Multicast Listener Discovery (MLD) Snooping Commands Section IV: Security and Traffic Control...
Page 441: Chapter 25: Quality Of Service (Qos) Commands
AT-GS900M Series CLI Reference Chapter 25 Quality of Service (QoS) Commands The QoS commands are summarized in Table 52. Table 52. QoS Commands Command Description “DISABLE QOS” on page 442 Sets the switch to prioritize forwarding performance over Quality of Service (QoS).
Page 442: Disable Qos
Chapter 25: Quality of Service (QoS) Commands DISABLE QOS Syntax disable qos Parameters None Description Use this command to set the switch to prioritize forwarding performance over Quality of Service (QoS). This is the default setting. Confirmation Command “SHOW QOS” on page 450 Example The following command sets the switch to prioritize forwarding performance:...
Page 443: Enable Qos
AT-GS900M Series CLI Reference ENABLE QOS Syntax enable qos Parameters None Description Use this command to set the switch to prioritize Quality of Service (QoS) over forwarding performance. By default, the switch prioritizes forwarding performance over QoS. Note You must restart the switch after executing this command.
Page 444: Purge Qos
Chapter 25: Quality of Service (QoS) Commands PURGE QOS Syntax purge qos Parameters None Description Use this command to initialize QoS settings. Confirmation Command “SHOW QOS” on page 450 Example The following command initializes QoS settings: Manager > purge qos Section IV: Security and Traffic Control...
Page 445: Set Qos Dscp
AT-GS900M Series CLI Reference SET QOS DSCP Syntax dscp_list priority set qos dscp== |all] priority= Parameters dscp_list Specifies a list of the values of DiffServ Code Point (DSCP). To specify multiple values, use a comma (,) to separate them. To specify a range of values, use a hyphen (-).
Page 446: Set Qos Hwpriority
Chapter 25: Quality of Service (QoS) Commands SET QOS HWPRIORITY Syntax set qos hwpriority queue= Parameters queue Specifies a list of the values of DiffServ Code Point (DSCP). To specify multiple values, use a comma (,) to separate them. To specify a range of values, use a hyphen (-).
Page 447 AT-GS900M Series CLI Reference Example The following command change QoS priority settings: Manager > set qos hwpriority queue=0,0,0,1,1,2,2,3 Section IV: Security and Traffic Control...
Page 448: Set Qos Hwqueue
Chapter 25: Quality of Service (QoS) Commands SET QOS HWQUEUE Syntax queue weight set qos hwqueue= weight= Parameters queue Specifies a queue number. The range is 0 to 3. weight Specifies the weight ratio to the queue. See Table 54 for the default settings.
Page 449: Set Qos Scheduling
AT-GS900M Series CLI Reference SET QOS SCHEDULING Syntax set qos scheduling=strict|wrr [mode=auto|802.1p] Parameters scheduling Specifies the QoS scheduling method. strict Specifies QoS to the strict method. The switch forwards packets in descending order of queue priority. Specifies QoS to the WRR method. The switch forwards packets with the Weighted Round Robin (WRR) method.
Page 450: Show Qos
Chapter 25: Quality of Service (QoS) Commands SHOW QOS Syntax show qos Parameters None Description Use this command to display the QoS settings on the switch. An example of the command output is shown in Figure 66. QoS Information ---------------------------------------------------- Configured State ..
Page 451: Show Qos Dscp
AT-GS900M Series CLI Reference SHOW QOS DSCP Syntax show qos dscp Parameters None Description Use this command to display the DiffServ Code Point (DSCP) table on the switch. An example of the command output is shown in Figure 67. QoS DSCP Table...
Page 452: Show Qos Hwpriority
Chapter 25: Quality of Service (QoS) Commands SHOW QOS HWPRIORITY Syntax show qos hwpriority Parameters None Description Use this command to display the QoS priority mapping table on the switch. An example of the command output is shown in Figure 68. QoS Priority Mapping Priority Queue...
Page 453: Show Qos Hwqueue
AT-GS900M Series CLI Reference SHOW QOS HWQUEUE Syntax show qos hwqueue Parameters None Description Use this command to display the settings of queue weight on the switch. An example of the command output is shown in Figure 69. QoS Egress Queue Configuration...
Page 454: Show Qos Scheduling
Chapter 25: Quality of Service (QoS) Commands SHOW QOS SCHEDULING Syntax show qos scheduling Parameters None Description Use this command to display the settings of QoS scheduling on the switch. An example of the command output is shown in Figure 70. QoS Scheduling Mode ---------------------------------------------------- Mode ......
Page 455: Chapter 26: Policy-Based Qos Commands
AT-GS900M Series Command Reference Chapter 26 Policy-Based QoS Commands The Policy-based QoS commands are summarized in Table 55. Table 55. Policy-Based QoS Commands Command Description “ADD QOS FLOWGROUP” on Associates classifiers to a flow group. page 457 “ADD QOS POLICY” on Associates traffic classes to a QoS policy.
Page 456 Chapter 26: Policy-Based QoS Commands Table 55. Policy-Based QoS Commands (Continued) Command Description “PURGE CLASSIFIER” on Deletes all classifiers. page 478 “RESET QOS POLICY Clears the counters of the flow groups COUNTER” on page 479 assigned to the QoS policies. “SET CLASSIFIER”...
Page 457: Add Qos Flowgroup
AT-GS900M Series Command Reference ADD QOS FLOWGROUP Syntax flowgroup_number add qos flowgroup= classifierlist= classifier_list |none Parameters flowgroup_number Specifies a flow group number. The range is 0 to 1023. classifier_list Specifies a list of classifiers. To specify multiple classifiers, use a comma (,) to separate them.
Page 458: Add Qos Policy
Chapter 26: Policy-Based QoS Commands ADD QOS POLICY Syntax policy_number tc_list add qos policy= trafficclasslist= |none Parameters policy_number Specifies a QoS policy number. The range is 0 to 255. tc_list Specifies a list of classifiers. To specify multiple traffic classes, use a comma (,) to separate them.
Page 459: Add Qos Trafficclass
AT-GS900M Series Command Reference ADD QOS TRAFFICCLASS Syntax traffic_class_number add qos trafficclass= flowgrouplist= flow_list |none Parameters traffic_class_number Specifies a traffic class number. The range is 0 to 511. flow_list Specifies a list of flow groups. To specify multiple flow groups, use a comma (,) to separate them.
Page 460: Create Classifier
Chapter 26: Policy-Based QoS Commands CREATE CLASSIFIER Syntax classifier_number string create classifier= [description= [macdaddr= mac_add |any] [macdmask= mac_add |any] mac_add mac_add [macsaddr= |any] [macsmask= |any] [ethformat=ethii-untagged|ethii-tagged|802.2-untagged| 802.2-tagged|any] [priority= priority |any] vlan_name [vlan= |any] protocol_string protocol_number [protocol= |any] iptos ipdscp [iptos= |any] [ipdscp= |any] ipprotocol_string...
Page 461 AT-GS900M Series Command Reference ethformat Specifies the frame format. ethii-untagged Specifies the frame format to Ethernet version 2 and untagged. ethii-tagged Specifies the frame format to Ethernet version 2 and tagged. 802.2-untagged Specifies the frame format to 802.2 LLC and untagged.
Page 462 Chapter 26: Policy-Based QoS Commands ip_add Specifies an IP address in the format: nnn.nnn.nnn.nnn. mask_len Specifies a VLSM after the IP address. Separate the IP address and VLSM with a slash(/). tcpsport Specifies the TCP source port of packets. The range is 0 to 65535. The default setting is any.
Page 463: Create Qos Flowgroup
AT-GS900M Series Command Reference CREATE QOS FLOWGROUP Syntax flow_group_number string create qos flowgroup= [description= [markvalue= mark_value |none] [priority= priority |none] [remarkpriority=yes|no|on|off|true|false] tos_value [tos= |none] [movetostoppriority=yes|no|on|off|true|false] [moveprioritytotos=yes|no|on|off|true|false] classifier_list [classifierlist= |none] Parameters flow_group_number Specifies a flow group number. The range is 0 to 1023.
Page 464 Chapter 26: Policy-Based QoS Commands moveprioritytotos Specifies yes, no, or none to the state that the priority is used for the ToS value. The default setting is none. classifier_list Specifies a list of classifiers. To specify multiple classifiers, use a comma (,) to separate them.
Page 465: Create Qos Policy
AT-GS900M Series Command Reference CREATE QOS POLICY Syntax policy_number string create qos policy= [description= [indscpoverwrite= dscp_value |none] [remarkindscp=all|none] tos_value [tos= |none] [movetostoppriority=yes|no|on|off|true|false] [moveprioritytotos=yes|no|on|off|true|false] [sendtomirror=yes|no|on|off|true|false] traffic_class_list [trafficclasslist= |none] port_number [redirectport= |none] port_list [ingressport= |all|none] port_number [egressport= |none] Parameters policy_number Specifies a policy number. The range is 0 to 255.
Page 466 Chapter 26: Policy-Based QoS Commands Specifies no to the parameter state. sendtomirror Specifies yes, no, or none to the state that mirroring is enabled on the packets the match the conditions of the classifiers. The default setting is none. trafficclasslist Specifies a list of traffic classes.
Page 467 AT-GS900M Series Command Reference Confirmation Command “SHOW QOS POLICY” on page 494 Example The following command creates QoS policy 1: Manager > create qos policy=1 Section IV: Security and Traffic Control...
Page 468: Create Qos Trafficclass
Chapter 26: Policy-Based QoS Commands CREATE QOS TRAFFICCLASS Syntax traffic_class string create qos trafficclass= [description= [exceedaction=drop|remark] remark_value [exceedremarkvalue= |none] mark_value [markvalue= |none] [maxbandwidth= max_bandwidth |none] burst_size priority [burstsize= |none] [priority= |none] [remarkpriority=yes|no|on|off|true|false] tos_value [tos= |none] [movetostopriority=yes|no|on|off|true|false] [moveprioritytotos=yes|no|on|off|true|false] flow_list [flowgrouplist= |none] Parameters traffic_class Specifies a policy number.
Page 469 AT-GS900M Series Command Reference burst_size Specifies the buffer size, or token packet size of the traffic class. This value is effective when the maximum bandwidth is specified. The range is 4 to 512 Kbps. The default setting is none. priority Specifies the priority for the traffic class.
Page 470 Chapter 26: Policy-Based QoS Commands Confirmation Command “SHOW QOS TRAFFICCLASS” on page 496 Example The following command creates traffic class1: Manager > create qos trafficclass=1 Section IV: Security and Traffic Control...
Page 471: Delete Qos Flowgroup
AT-GS900M Series Command Reference DELETE QOS FLOWGROUP Syntax flow_group_number delete qos flowgroup= classifierlist= classifier_list |none Parameters flow_group_number Specifies a flow group number. classifier_list Specifies a list of classifiers. To specify multiple classifiers, use a comma (,) to separate them. To specify a range of classifiers, use a hyphen (-).
Page 472: Delete Qos Policy
Chapter 26: Policy-Based QoS Commands DELETE QOS POLICY Syntax policy_number delete qos policy= [trafficclasslist= traffic_class_list |none] Parameters policy_number Specifies a policy number. trafficclasslist Specifies a list of traffic classes. To specify multiple classifiers, use a comma (,) to separate them. To specify a range of classifiers, use a hyphen (-).
Page 473: Delete Qos Trafficclass
AT-GS900M Series Command Reference DELETE QOS TRAFFICCLASS Syntax traffic_class delete qos trafficclass= [flowgrouplist= flow_list |none] Parameters traffic_class Specifies a policy number. flowgrouplist Specifies a list of flow groups. To specify multiple flow groups, use a comma (,) to separate them. To specify a range of flow groups, use a hyphen (-).
Page 474: Destroy Classifier
Chapter 26: Policy-Based QoS Commands DESTROY CLASSIFIER Syntax classifier_list destroy classifier== |all Parameters classifier_list Specifies a list of classifiers. To specify multiple classifiers, use a comma (,) to separate them. To specify a range of classifiers, use a hyphen (-). Specifies all classifiers.
Page 475: Destroy Qos Flowgroup
AT-GS900M Series Command Reference DESTROY QOS FLOWGROUP Syntax flow_group_list destroy qos flowgroup= |all Parameters flow_GROUP_list Specifies a list of flow groups. To specify multiple flow groups, use a comma (,) to separate them. To specify a range of flow groups, use a hyphen (-).
Page 476: Destroy Qos Policy
Chapter 26: Policy-Based QoS Commands DESTROY QOS POLICY Syntax policy_list destroy qos policy= |all Parameters policy_list Specifies a list of policy numbers. To specify multiple QoS policies, use a comma (,) to separate them. To specify a range of QoS policies, use a hyphen (-).
Page 477: Destroy Qos Trafficclass
AT-GS900M Series Command Reference DESTROY QOS TRAFFICCLASS Syntax traffic_class_list destroy qos trafficclass= |all Parameters traffic_class_list Specifies a list of traffic classes. To specify multiple traffic classes, use a comma (,) to separate them. To specify a range of traffic classes, use a hyphen (-).
Page 478: Purge Classifier
Chapter 26: Policy-Based QoS Commands PURGE CLASSIFIER Syntax purge classifier Parameters None Description Use this command to delete all classifiers. When some classifiers are assigned to QoS policies, you cannot delete classifiers with this command. Confirmation Command “SHOW CLASSIFIER” on page 489 Example The following command deletes all classifiers: Manager >...
Page 479: Reset Qos Policy Counter
AT-GS900M Series Command Reference RESET QOS POLICY COUNTER Syntax policy_list reset qos policy[= |all] counter Parameters policy_list Specifies a list of policy numbers. To specify multiple QoS policies, use a comma (,) to separate them. To specify a range of QoS policies, use a hyphen (-).
Page 480: Set Classifier
Chapter 26: Policy-Based QoS Commands SET CLASSIFIER Syntax classifier_number string set classifier= [description= [macdaddr= mac_add |any] [macdmask= mac_add |any] mac_add mac_add [macsaddr= |any] [macsmask= |any] [ethformat=ethii-untagged|ethii-tagged|802.2-untagged| 802.2-tagged|any] [priority= priority |any] vlan_name [vlan= |any] protocol_string protocol_number [protocol= |any] tos_value dscp_value [iptos= |any] [ipdscp= |any] ipprotocol_string...
Page 481 AT-GS900M Series Command Reference ethformat Specifies the frame format. ethii-untagged Specifies the frame format to Ethernet version 2 and untagged. ethii-tagged Specifies the frame format to Ethernet version 2 and tagged. 802.2-untagged Specifies the frame format to 802.2 LLC and untagged.
Page 482 Chapter 26: Policy-Based QoS Commands Specifies an IP address in the format: nnn.nnn.nnn.nnn. mask_len Specifies a VLSM after the IP address. Separate the IP address and VLSM with a slash(/). tcpsport Specifies the TCP source port of packets. The range is 0 to 65535. The default setting is any.
Page 483: Set Qos Flowgroup
AT-GS900M Series Command Reference SET QOS FLOWGROUP Syntax flow_group_number string set qos flowgroup= [description= [markvalue= mark_value |none] [priority= priority |none] [remarkpriority=yes|no|on|off|true|false] tos_value [tos= |none] [movetostoppriority=yes|no|on|off|true|false] [moveprioritytotos=yes|no|on|off|true|false] classifier_list [classifierlist= |none] Parameters flow_group_number Specifies a flow group number. string Specifies the description of the flow group. The description is up to 31 alphanumeric characters.
Page 484 Chapter 26: Policy-Based QoS Commands classifier_list Specifies a list of classifiers. To specify multiple classifiers, use a comma (,) to separate them. To specify a range of classifiers, use a hyphen (-). Description Use this command to change the settings of the flow group. Confirmation Command “SHOW QOS FLOWGROUP”...
Page 485: Set Qos Policy
AT-GS900M Series Command Reference SET QOS POLICY Syntax policy_number string set qos policy= [description= [indscpoverwrite= dscp_value |none] [remarkindscp=all|none] tos_value [tos= |none] [movetostoppriority=yes|no|on|off|true|false] [moveprioritytotos=yes|no|on|off|true|false] [sendtomirror=yes|no|on|off|true|false] traffic_class_list [trafficclasslist= |none] port_number [redirectport= |none] port_list [ingressport= |all|none] port_number [egressport= |none] Parameters policy_number Specifies a policy number.
Page 486 Chapter 26: Policy-Based QoS Commands sendtomirror Specifies yes, no, or none to the state that mirroring is enabled on the packets the match the conditions of the classifiers. trafficclasslist Specifies a list of traffic classes. To specify multiple classifiers, use a comma (,) to separate them.
Page 487: Set Qos Trafficclass
AT-GS900M Series Command Reference SET QOS TRAFFICCLASS Syntax traffic_class string set qos trafficclass= [description= [exceedaction=drop|remark] remark_value [exceedremarkvalue= |none] mark_value [markvalue= |none] [maxbandwidth= max_bandwidth |none] burst_size priority [burstsize= |none] [priority= |none] [remarkpriority=yes|no|on|off|true|false] tos_value [tos= |none] [movetostopriority=yes|no|on|off|true|false] [moveprioritytotos=yes|no|on|off|true|false] flow_list [flowgrouplist= |none] Parameters traffic_class Specifies a policy number.
Page 488 Chapter 26: Policy-Based QoS Commands burst_size Specifies the buffer size, or token packet size of the traffic class. This value is effective when the maximum bandwidth is specified. The range is 4 to 512 Kbps. priority Specifies the priority for the traffic class. remarkpriority Specifies yes, no, or none to the state that the switch overwrites the user priority of a received packet with the priority.
Page 489: Show Classifier
AT-GS900M Series Command Reference SHOW CLASSIFIER Syntax classifier_list string show classifier[= |all] [description= [macdaddr= mac_add |any] [macdmask= mac_add |any] mac_add mac_add [macsaddr= |any] [macsmask= |any] [ethformat=ethii-untagged|ethii-tagged|802.2-untagged| 802.2-tagged|any] [priority= priority |any] vlan_name [vlan= |any] protocol_string protocol_number [protocol= |any] iptos ipdscp [iptos=...
Page 490 Chapter 26: Policy-Based QoS Commands Specifies a MAC address or mask in the format: ff-ff-ff-ff-ff-ff. Specifies any. ethformat Specifies the frame format. ethii-untagged Specifies the frame format to Ethernet version 2 and untagged. ethii-tagged Specifies the frame format to Ethernet version 2 and tagged. 802.2-untagged Specifies the frame format to 802.2 LLC and untagged.
Page 491 AT-GS900M Series Command Reference ipdaddr Specifies the IP destination address. You can also specify the Variable Length Subnet Mask (VLSM). The default value is any. ip_add Specifies an IP address in the format: nnn.nnn.nnn.nnn. mask_len Specifies a VLSM after the IP address. Separate the IP address and VLSM with a slash(/).
Page 492 Chapter 26: Policy-Based QoS Commands Manager > show classifier --------------------------------------------- Classifier ID: ....1 TCP Dst Port: ....80 Number of References: ... 1 Number of Active Associations: .. 0 Manager > show classifier=2 --------------------------------------------- Classifier ID: ....2 Description: ....atkk-ud1 Eth Format: .....
Page 493: Show Qos Flowgroup
AT-GS900M Series Command Reference SHOW QOS FLOWGROUP Syntax flow_list show qos flowgroup[= |all] Parameters flowgroup Specifies a list of flow groups. To specify multiple flow groups, use a comma (,) to separate them. To specify a range of flow groups, use a hyphen (-).
Page 494: Show Qos Policy
Chapter 26: Policy-Based QoS Commands SHOW QOS POLICY Syntax policy_list show qos policy[= |all] Parameters port_list Specifies a list of QoS policies. To specify multiple policies, use a comma (,) to separate them. To specify a range of policies, use a hyphen (-).
Page 495: Show Qos Policy Counter
AT-GS900M Series Command Reference SHOW QOS POLICY COUNTER Syntax policy_list show qos policy[= |all] counter Parameters port_list Specifies a list of QoS policies. To specify multiple policies, use a comma (,) to separate them. To specify a range of policies, use a hyphen (-).
Page 496: Show Qos Trafficclass
Chapter 26: Policy-Based QoS Commands SHOW QOS TRAFFICCLASS Syntax traffic_class_list show qos trafficclass[= |all] Parameters traffic_class_list Specifies a list of traffic classes. To specify multiple traffic classes, use a comma (,) to separate them. To specify a range of traffic classes, use a hyphen (-).
Page 497: Chapter 27: Port-Based Authentication Commands
AT-GS900M Series CLI Reference Chapter 27 Port-Based Authentication Commands The Port-Based Authentication commands are summarized in Table 56. Table 56. Port-Based Authentication Commands Command Description “ADD PORTAUTH PORT Adds the MAC address of the supplicant SUPPLICANTMAC” on that communicates through the supplicant page 499 port.
Page 498 Chapter 27: Port-Based Authentication Commands Table 56. Port-Based Authentication Commands (Continued) Command Description “SET PORTAUTH PORT Changes the authenticator port settings (802.1X Authenticator Port)” on for 802.1x authentication method on the page 518 specified port. “SET PORTAUTH PORT Changes the supplicant port settings for (802.1X Supplicant Port)”...
Page 499: Add Portauth Port Supplicantmac
AT-GS900M Series CLI Reference ADD PORTAUTH PORT SUPPLICANTMAC Syntax port_number mac_add add portauth port= supplicantmac= [control=authorised] Parameters port_number Specifies the port number of a supplicant. supplicantmac Specifies the MAC address of the mac_add Specifies a MAC address or mask in the format: ff-ff-ff-ff-ff-ff.
Page 500 Chapter 27: Port-Based Authentication Commands Example The following command adds the supplicant MAC address 00-00-f4-11- 11-11 on port 1: Manager > add portauth port=1 supplicantmac=00-00-f4-11-11- Section IV: Security and Traffic Control...
Page 501: Delete Portauth Port Supplicantmac
AT-GS900M Series CLI Reference DELETE PORTAUTH PORT SUPPLICANTMAC Syntax port_number mac_add] delete portauth port= [supplicantmac= Parameters port_number Specifies a port number. supplicantmac Specifies the MAC address of the supplicant. When ommited this parameter, all the supplicant MAC address on the port are deleted.
Page 502: Disable Portauth
Chapter 27: Port-Based Authentication Commands DISABLE PORTAUTH Syntax disable portauth Parameters None Description Use this command to disable Port-Based Authentication on the switch. By default, Port-Based Authentication is disabled. Confirmation Command “SHOW PORTAUTH” on page 532 Example The following command disables Port-Based Authentication on the switch: Manager >...
Page 503: Disable Portauth Port Logtype
AT-GS900M Series CLI Reference DISABLE PORTAUTH PORT LOGTYPE Syntax disable portauth[=all|8021x|macbased|webbased] port= port_list |all logtype=success|failure|logoff|all Parameters portauth Specifies an authentication method. Specifies all the authentication methods. 8021x Specifies 802.1x Port-Based Authentication using EAP. macbased Specifies MAC-Based Authentication. webbased Specifies Web-based Authentication.
Page 504 Chapter 27: Port-Based Authentication Commands Confirmation Command “SHOW PORTAUTH” on page 532 Example The following command disables logging on all authentication options and all log types on port 1 to port 5: Manager > disable portauth=all port=1-5 logtype=all Section IV: Security and Traffic Control...
Page 505: Disable Webauthserver
AT-GS900M Series CLI Reference DISABLE WEBAUTHSERVER Syntax disable webauthserver Parameters None Description Use this command to disable the Web-based Authentication function. By default, the Web-based Authentication function is disabled. Confirmation Command “SHOW PORTAUTH” on page 532 Example The following command disables the Web-based Authentication function on the switch: Manager >...
Page 506: Enable Portauth
Chapter 27: Port-Based Authentication Commands ENABLE PORTAUTH Syntax enable portauth Parameters None Description Use this command to enable Port-based Authentication on the switch. By default, Port-based Authentication is disabled. Here are the guidelines for enabling Port-based Authentication: RSTP and MSTP cannot be enabled on authenticator or supplicant ...
Page 507: Enable Portauth Port Logtype
AT-GS900M Series CLI Reference ENABLE PORTAUTH PORT LOGTYPE Syntax enable portauth[=all|8021x|macbased|webbased] port= port_list |all logtype=success|failure|logoff|all Parameters portauth Specifies an authentication option. Specifies all the authentication options. 8021x Specifies 802.1x Port-Based Authentication using EAP. macbased Specifies MAC-Based Authentication. webbased Specifies Web-based Authentication.
Page 508 Chapter 27: Port-Based Authentication Commands Confirmation Command “SHOW PORTAUTH” on page 532 Example The following command enables logging on all authentication options and all log types on port 1 to port 5: Manager > enable portauth=all port=1-5 logtype=all Section IV: Security and Traffic Control...
Page 509: Enable Webauthserver
AT-GS900M Series CLI Reference ENABLE WEBAUTHSERVER Syntax enable webauthserver Parameters None Description Use this command to enable the Web-based Authentication function. By default, the Web-based Authentication function is disabled. Confirmation Command “SHOW PORTAUTH” on page 532 Example The following command enables the Web-based Authentication function on the switch: Manager >...
Page 510: Set Portauth Authmethod
Chapter 27: Port-Based Authentication Commands SET PORTAUTH AUTHMETHOD Syntax set portauth authmethod=radiuseap Parameters None Description Use this command to specify the authentication protocol to RADIUS EAP. Note The GS900M series switch supports RADIUS EAP only. Confirmation Command “SHOW PORTAUTH” on page 532 Example The following command specifies RADIUS EAP.
Page 511: Set Portauth Csidformat
AT-GS900M Series CLI Reference SET PORTAUTH CSIDFORMAT Syntax set portauth csidformat [separator=hyphen|colon|period|none] [digit=2|4] [uppercase=true|false] Parameters separator Specifies the separator of a MAC address for the Calling-Statin_Id and Called-Station-Id attributes in a RADIUS packet. The default setting is hypen. hyphen Specifies a hyphen as the separator. This is the default setting. For example, a MAC address using hyphens is 00-00-F4-11-11-A3.
Page 512 Chapter 27: Port-Based Authentication Commands Description Use this command to specify the MAC address format for RADIUS packets. Confirmation Command “SHOW PORTAUTH” on page 532 Example The following command specifies the MAC address format using a period as the separator: Manager >...
Page 513: Set Portauth Dhcpserver
AT-GS900M Series CLI Reference SET PORTAUTH DHCPSERVER Syntax set portauth dhcpserver[=enabled|disabled] [leasetime = lease_time Parameters dhcpserver Enables or disables the DHCP server for Authentication. By default, the DCHP server function for Authentication is disabled. leasetime Specifies the lease time of an IP address. The default value is 20 seconds.
Page 514: Set Portauth Port (Authenticator Port For All Methods)
Chapter 27: Port-Based Authentication Commands SET PORTAUTH PORT (Authenticator Port for All Methods) Syntax port_list set portauth=auto port= |all type=authenticator [mode=single|multi] [control=authorised|unauthorised|auto] servertimeout [eapolversion=1|2] [servertimeout= quietperiod txperiod [quietperiod= ] [txperiod= [reauthperiod= reauthperiod ] [supptimeout= timeout maxreq [maxreq= ] [reauthenabled=enabled|disabled] vlan_name [piggyback=enabled|disabled] [guestvlan= |none] [securevlan=on|off] [vlanassignment=enabled|disabled]...
Page 515 AT-GS900M Series CLI Reference Specifies the version 1 of EAPOL, IEEE802.1x-2001 compliant mode. Specifies the version 2 of EAPOL, IEEE802.1x-2004 compliant mode. servertimeout Specifies the maximum amount of time in seconds that the 802.1x or Web-based authenticator port waits for a response from a RADIUS authentication server after sending an Access-request.
Page 516 Chapter 27: Port-Based Authentication Commands piggyback Specifies that the 802.1x authenticator port enables or disables authenticating other devices after authenticating one device when the mode parameter is set to single. By default, authenticating other devices is disabled. When the mode parameter is set to multi, this setting is ignored.
Page 517 AT-GS900M Series CLI Reference To change the supplicant port settings for 802.1x Port-based  authentication on the specified port, see “SET PORTAUTH PORT (802.1X Supplicant Port)” on page 522. To change the authenticator port settings for MAC address-based  and Web-based authentication on the specified port, see “SET PORTAUTH PORT (Authenticator Port for MAC and Web)”...
Page 518: Set Portauth Port (802.1X Authenticator Port)
Chapter 27: Port-Based Authentication Commands SET PORTAUTH PORT (802.1X Authenticator Port) Syntax port_list set portauth[=8021x] port= |all type=authenticator [mode=single|multi] [control=authorised|unauthorised|auto] servertimeout [eapolversion=1|2] [servertimeout= quietperiod txperiod [quietperiod= ] [txperiod= [reauthperiod= reauthperiod ] [supptimeout= timeout maxreq [maxreq= ] [reauthenabled=enabled|disabled] vlan_name [piggyback=enabled|disabled] [guestvlan= |none] [securevlan=on|off] [vlanassignment=enabled|disabled] [vlanassignmenttype=user|port]...
Page 519 AT-GS900M Series CLI Reference Specifies the version 1 of EAPOL, IEEE802.1x-2001 compliant mode. Specifies the version 2 of EAPOL, IEEE802.1x-2004 compliant mode. servertimeout Specifies the maximum amount of time in seconds that the 802.1x or Web-based authenticator port waits for a response from a RADIUS authentication server after sending an Access-request.
Page 520 Chapter 27: Port-Based Authentication Commands piggyback Specifies that the 802.1x authenticator port enables or disables authenticating other devices after authenticating one device when the mode parameter is set to single. By default, authenticating other devices is disabled. When the mode parameter is set to multi, this setting is ignored.
Page 521 AT-GS900M Series CLI Reference To change the supplicant port settings for 802.1x Port-based  authentication on the specified port, see “SET PORTAUTH PORT (802.1X Supplicant Port)” on page 522. To change the authenticator port settings for MAC address-based  and Web-based authentication on the specified port, see “SET PORTAUTH PORT (Authenticator Port for MAC and Web)”...
Page 522: Set Portauth Port (802.1X Supplicant Port)
Chapter 27: Port-Based Authentication Commands SET PORTAUTH PORT (802.1X Supplicant Port) Syntax port_list set portauth[=8021x] port= |all type=supplicant [authperiod= authperiod ] [heldperiod= heldperiod maxstart startperiod [maxstart= ] [startperiod= username password [username= ] [password= Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them.
Page 523 AT-GS900M Series CLI Reference Description Use this command to change the supplicant port settings for 802.1x Port- based authentication on the specified port. Here are references for other usage of this command: To change the authenticator port settings for all authentication ...
Page 524: Set Portauth Port (Authenticator Port For Mac And Web)
Chapter 27: Port-Based Authentication Commands SET PORTAUTH PORT (Authenticator Port for MAC and Web) Syntax port_list set portauth=[macbased|webbased] port= |all type=authenticator [mode=single|multi] [control=authorised|unauthorised|auto] quietperiod reauthperiod [quietperiod= ] [reauthperiod= [reauthenabled=enabled|disabled] vlan_name [guestvlan= |none] [securevlan=on|off] [vlanassignment=enabled|disabled] [vlanassignmenttype=user|port] Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them.
Page 525 AT-GS900M Series CLI Reference quietperiod Specifies the amount of time in seconds that the 802.1x, MAC address-based, or Web based authenticator port discards all EAPOL packets from supplicants. The range is 0 to 65535 seconds. The default setting is 60 seconds.
Page 526 Chapter 27: Port-Based Authentication Commands vlanassignmenttype Specifies that Dynamic VLAN is set based on ports or users (MAC addresses). This parameter is effective when the mode is multi and vlanassignment is enabled. The default setting is port. Description Use this command to change the authenticator port settings for MAC address-based and Web-based authentication on the specified port.
Page 527: Set Portauth Port (Canceling The Authentication Type)
AT-GS900M Series CLI Reference SET PORTAUTH PORT (Canceling the Authentication Type) Syntax port_list set portauth port= |all type=none Parameters port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them. To specify a range of ports, use a hyphen (-).
Page 528: Set Portauth Port Supplicantmac
Chapter 27: Port-Based Authentication Commands SET PORTAUTH PORT SUPPLICANTMAC Syntax set portauth port=port_number supplicantmac=mac_add [control=authorised] Note This command is identical to the ADD PORTAUTH PORT SUPPLICNATMAC command. See “ADD PORTAUTH PORT SUPPLICANTMAC” on page 499. Section IV: Security and Traffic Control...
Page 529: Set Portauth Useridformat
AT-GS900M Series CLI Reference SET PORTAUTH USERIDFORMAT Syntax set portauth useridformat [separator=hyphen|colon|period|none] [digit=2|4] [uppercase=true|false] Parameters separator Specifies the separator of a MAC address for the User-Name and User-Password attributes in a RADIUS packet for MAC-Based Authentication. The default setting is hypen.
Page 530 Chapter 27: Port-Based Authentication Commands Description Use this command to specify the MAC address format for RADIUS packets for Web-Based Authentication. Confirmation Command “SHOW PORTAUTH” on page 532 Example The following command specifies the MAC address format without separators. Manager > set portauth useridformat separator=none Section IV: Security and Traffic Control...
Page 531: Set Webauthserver
AT-GS900M Series CLI Reference SET WEBAUTHSERVER Syntax port redirect_url set webauthserver [port= ] [redirecturl= [message1= message ] [message2= message ] [message3= message message message [message4= ] [message5= Parameters port Specifies the TCP port number. The default port number is 8080.
Page 532: Show Portauth
Chapter 27: Port-Based Authentication Commands SHOW PORTAUTH Syntax show portauth[=8021x|macbased|webbased] [config|status] Parameters portauth Specifies an authentication method to display the information about. By default, the system displays information about all authentication methods. 8021x Specifies 802.1x Port-Based Authentication using EAP. macbased Specifies MAC-Based Authentication.
Page 533 AT-GS900M Series CLI Reference Manager > show portauth Port Access Configuration Information: Port Access Control....Disabled Authentication Method .... RADIUS EAP DHCP Server ...... Enabled DHCP Server Lease Time ... 20 Number of Total Supplicants..0/480 Number of DynamicVlan per USER..0/62 MAC Baced Auth User-ID Format..
Page 534: Show Portauth Port Authenticator
Chapter 27: Port-Based Authentication Commands SHOW PORTAUTH PORT AUTHENTICATOR Syntax port_list show portauth[=8021x|macbased|webbased] port= |all [authenticator] [config|status] Parameters portauth Specifies an authentication method to display the information about. By default, the system displays information about all authentication methods. 8021x Specifies 802.1x Port-Based Authentication using EAP. macbased Specifies MAC-Based Authentication.
Page 535 AT-GS900M Series CLI Reference Manager > show portauth port=5 -----All Authenticator Configuration ---------------------------------- ----------------------------------------------------------------------- Port Number Auth Mode MACBASED Log Type [8021x] None Log Type [Mac] Log Type [Web] None Port Control Auto Supplicant Mode Multi eapolVersion [8021x] Quiet Period...
Page 536: Show Portauth Port Supplicant
Chapter 27: Port-Based Authentication Commands SHOW PORTAUTH PORT SUPPLICANT Syntax port_list show portauth[=8021x] port= |all supplicant [config|status] Parameters portauth Specifies an authentication method to display the information about. The option is only 8021x. port_list Specifies a list of ports. To specify multiple ports, use a comma (,) to separate them.
Page 537 AT-GS900M Series CLI Reference Example The following example displays supplicant information about Port-Based Authentication on port 5: Manager > show portauth port=1 supplicant Section IV: Security and Traffic Control...
Page 538: Show Webauthserver
Message1 : Allied-Telesis Message2 : User Login Message3 Message4 Message5 : Copyright (C) Allied Telesis K.K. Figure 79. SHOW WEBAUTHSERVER Command Example The following example displays information about Web-Based Authentication: Manager > show webauthserver Section IV: Security and Traffic Control...
Page 539: Command Index
AT-GS900M Series CLI Reference Command Index DELETE FILE command 77 DELETE IGMPSNOOPING comman 421 DELETE IP command 198 DELETE MLDSNOOPING command 432 DELETE MSTP MSTI VLAN command 381 DELETE NTP PEER command 147 ACTIVATE SCRIPT command 73 DELETE PORTAUTH PORT SUPPLICANTMAC command...
Page 540 Index DISABLE SNMP COMMUNITY command 122 ENABLE SWITCH LOOPDETECTION command 241 DISABLE SNMP COMMUNITY TRAP command 123 ENABLE SWITCH MIRROR command 242 DISABLE SNMP TRAP command 124 ENABLE SWITCH PORT AUTOMDI command 244 DISABLE STP command 362 ENABLE SWITCH PORT FLOW command 245 DISABLE SUMMER-TIME command 149 ENABLE SWITCH POWERSAVE command 246 DISABLE SWITCH AGEINGTIMER command 295...
Page 541 AT-GS900M Series CLI Reference PURGE TRIGGER command 352 SET POE DETECT command 336 SET POE GUARDBAND command 337 SET POE MANAGEMENT command 338 QUIT command 48 SET POE PORT command 339 SET POE THRESHOLD command 341 SET PORTAUTH AUTHMETHOD command 510...
Page 542 Index SHOW DHCPSNOOPING COUNTER command 329 SHOW TRIGGER command 360 SHOW DHCPSNOOPING DATABASE command 330 SHOW VLAN command 216 SHOW DHCPSNOOPING MACFILTER command 331 SHOW WEBAUTHSERVER command 538 SHOW DHCPSNOOPING PORT command 332 SHOW EPSR command 288 SHOW EPSR COUNTER command 289 UPLOAD command 91 SHOW FILE command 86 SHOW FTP command 88...

This manual is also suitable for:

At-gs924m At-gs908m At-gs916m

Allied Telesis AT-GS900M Series User Manual

Preface

Section I: Getting Started

Chapter 1: Command Line Interface

Chapter 2: Starting a Management Session

Chapter 3: Basic CLI Management Commands

Chapter 4: Basic Operations

Chapter 5: Basic Operations Commands

Section II: Switch Management

Chapter 6: Log Commands

Chapter 7: SNMP Commands

Chapter 8: Simple Network Time Control (SNTP) Commands

Chapter 9: Telnet Commands

Chapter 10: HTTP Commands

Chapter 11: RADIUS Authentication Server Commands

Section III: Layer 2 Switching

Chapter 12: IP Management Commands

Chapter 13: VLAN Commands

Chapter 14: Switching Commands

Chapter 15: Ethernet Protected Switched Ring (EPSR) Commands

Chapter 16: Forwarding Database (FDB) Commands

Chapter 17: DHCP Snooping Commands

Chapter 18: Power over Ethernet (Poe) Commands

Chapter 19: Power Saving Commands

Chapter 20: Rapid Spanning Tree Protocol (RSTP) Commands

Chapter 21: Multiple Spanning Tree Protocol (MSTP) Commands

Quick Links

Related Manuals for Allied Telesis AT-GS900M Series

Summary of Contents for Allied Telesis AT-GS900M Series