Page 1 Layer 2 Switching Hub Operation Manual for CLI Model Number: PN28080i/PN28160i PN28240i  Thank you for purchasing our product.  This manual provides you with important information about safe and proper operations of this Switching Hub.  Please read the "Important Safety Warnings" on pages 3 to 4.
Page 2 This operation manual is applicable to the following Switching Hubs: Product name Model No. Firmware version Switch-M8eGi PN28080i-ID 3.0.0.00 or higher PN28080i-TH PN28080i-MY PN28080i-SG Switch-M16eGi PN28160i-ID 3.0.0.00 or higher PN28160i-TH PN28160i-MY PN28160i-SG Switch-M24eGi PN28240i-ID 3.0.0.00 or higher PN28240i-TH PN28240i-MY PN28240i-SG...
Page 3: Important Safety Instructions
Important Safety Instructions This chapter contains important safety instructions for preventing bodily injury and/or property damage. You are required to follow them.  Severity of bodily injury and/or property damage, which could result from incorrect use of the Switching Hub, are explained below. This symbol indicates a potential hazard that WARNING could result in serious injury or death.
Page 4 WARNING  Do not connect equipment other than 10BASE-T/100BASE- TX/1000BASE-T to twisted pair port. Deviation could lead to fire, electric shock, and/or equipment failure.  Do not place this Switching Hub in harsh environment --- such as near water, high humid, and/or high dust. Deviation could lead to fire, electric shock, and/or equipment failure.
Page 5 WARNING  Use the bundled power cord (AC 100 – 240V specifications). Deviation could lead to electric shock, malfunction, and/or equipment failure.  Unplug the power cord in case of equipment failure. Deviation, such as keeping connected for a long time, could lead to fire.
Page 6: Basic Instructions For The Use Of This Product
Basic Instructions for the Use of This Product  For inspection and/or repair, consult the shop.  Use commercial power supply from a wall socket, which is close and easily accessible to this Switching Hub.  Unplug the power cord when installing or moving this Switching Hub. ...
Page 7 For the latest information about compatible SFP extension modules, check our website. 1. Panasonic will not be liable for any damage resulting from the operation not in accordance with this document or the loss of communications, which may or may not be caused by failure and/or malfunction of this product.
Page 8: Table Of Contents
Table of Contents Important Safety Instructions ................3 Basic Instructions for the Use of This Product ............6 1. Command Hierarchy ..................10 2. Displaying Basic Information ................. 14 3. Basic Switch Configuration ................24 3.1. System Administration Configuration ............. 24 3.1.1.
Page 9 5. Statistical Information Display ..............389 6. Configuration File Transfer ................394 7. Firmware Upgrade ..................397 8. Reboot ......................400 8.1. Normal Reboot ..................400 8.2. Restoration to Factory Default Settings ..........403 8.3. Reboot Timer Configuration ..............406 9.
Page 10: Command Hierarchy
1. Command Hierarchy There are four levels in the hierarchy. (1) User mode: This is the default mode after login. Limited operations are allowed. (2) Privileged mode: This mode allows you to check the state of the Switching Hub, to edit configuration files, etc.
Page 11 configure Command • Enter this command to switch from the Privileged mode to the Global configuration mode. M24eGi# ····················· Privileged mode M24eGi# configure ············ Privileged mode  Global configuration mode M24eGi(config)# ·············· Global configuration mode interface Command • Enter this command to switch from the Global configuration mode to the Interface configuration mode.
Page 12 end Command • Enter this command to switch from configuration modes to the Privileged mode. M24eGi(config-if)# end ······· Interface configuration mode  Privileged mode M24eGi# configure M24eGi(config)# end ········· Global configuration mode  Privileged mode logout Command • Enter this command to return to the menu screen from any command mode.
Page 13 Command-line Completion Support • Enter a question mark (?) immediately after a command. This will show command candidates to complete the entered command. M24eGi# configure M24eGi(config)# ip address ? <ip-address> ex: 192.168.1.1 M24eGi(config)# ip address Fig. 1-3 Command-line completion support Abbreviated Command Entry After entering just enough characters of a command or an argument to identify it uniquely, you can omit the rest of the command or the argument.
Page 14: Displaying Basic Information
2. Displaying Basic Information Enter the commands listed below in the "Privileged mode" to show this Switching Hub's basic information. Command to show the system information (up time and version information) M24eGi# show sys-info Command to show the address information (MAC address and IP address information) M24eGi# show ip conf...
Page 15 An example of executing the command to show the system information is shown below. M24eGi> enable M24eGi# show sys-info System up for : 0 days, 0:1:29 Boot Code Version : 1.00.17 Runtime Code Version : 1.0.0.07 Serial Number : xxxxxxxxxxx Hardware Information Version : A1...
Page 16 Shows the Switching Hub's hardware information. (6) Version Shows the Switching Hub's hardware version. (7) DRAM Size Shows the Switching Hub's DRAM memory size. (8) Fixed Baud Rate Shows the baud rate of the Switching Hub's console port. (9) Flash Size Shows the Switching Hub's flash memory size.
Page 17 (19) IPv6 Status Shows the IPv6 Status (Enabled or Disabled). Enabled The IPv6 function is enabled. Disabled The IPv6 function is disabled. (20) IPv6 Address/prefixlen Shows the Switching Hub's current ipv6 address and prefix length in operation. (21) IPv6 Link Local Address Shows the Switching Hub's current ipv6 link local address in operation.
Page 18 <Command Entry Example> An example of executing the command to show the address information is shown below. M24eGi> enable M24eGi# show ip conf MAC Address : 00:C0:8F:A0:13:98 IP Address : 0.0.0.0 Subnet Mask : 0.0.0.0 Default Gateway : 0.0.0.0 M24eGi# Fig.
Page 19 <Command Entry Example> The following example shows the IPv6 address information by executing the command below. M24eGi> enable M24eGi# show ipv6 conf IPv6 Status : Disable MAC Address : 00:C0:8F:A0:13:98 IPv6 Address/prefixlen : ::/128 IPv6 Link Local Address : :: IPv6 Default Gateway : :: M24eGi#...
Page 20 <Command Entry Example> The following example shows information on the CPU utilization by executing the command below. M24eG# show cpuload CPU Utilization Five seconds - One minute - Five minutes - M24eG# Fig. 2-4 Example of executing the command to show CPU information １．CPU Utilization Indicates the CPU utilization of the Switching Hub, which is calculated by taking five seconds, one minute or five minutes.
Page 21 show sys-info Shows the Switching Hub's system information --- such as up time and version information. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None [Note] Parameter name Note...
Page 22 show ip conf Shows the address information --- such as MAC address and IP address - -- of the Switching Hub. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None...
Page 23 show cpuload Shows the information on the CPU utilization of the Switching Hub. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None [Note] Parameter name Note None None...
Page 24: Basic Switch Configuration
3. Basic Switch Configuration 3.1. System Administration Configuration Configure the host name, installation location and contact information in "Global configuration mode." Confirm the configuration information by executing the "show sys-info" command in "Privileged mode." Command to show the system information M24eGi# show sys-info Command to set the host name...
Page 25 <Command Entry Example> An example of executing the command to show the system information is shown below. M24eGi> enable M24eGi# show sys-info System up for : 0 days, 0:1:29 Boot Code Version : 1.00.17 Runtime Code Version : 1.0.0.07 Hardware Information Version : A1 DRAM Size...
Page 26 (4) Switch Contact Shows the Switching Hub's current contact information.
Page 27 show sys-info Shows the system information. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None [Note] Parameter name Note None None...
Page 28 hostname <hostname> Sets or edits the system name. no hostname Deletes the system name. [Parameter] Parameter name Description <hostname> Set the system name. [Factory Default Setting] Parameter name Factory default setting <hostname> None [Setting Range] Parameter name Setting range <hostname> Up to 50 one-byte characters Allowed characters: alphanumeric character (A-Z, a-z, 0-9)
Page 29 snmp-server location <server location> Sets or edits the installation location information. no snmp-server location Deletes the installation location information. [Parameter] Parameter name Description <server location> Set the installation location. [Factory Default Setting] Parameter name Factory default setting <server location> None [Setting Range] Parameter name Setting range...
Page 30 snmp-server contact <server contact> Sets or edits the contact information. no snmp-server contact Deletes the contact information. [Parameter] Parameter name Description <server contact> Set the contact information. [Factory Default Setting] Parameter name Factory default setting <server contact> None [Setting Range] Parameter name Setting range <server contact>...
Page 31 <Configuration Example> Overview: Set this Switching Hub's administration information (host name, installation location, and contact information). (1) Set this Switching Hub's name to "Switch." (2) Set this Switching Hub's installation location to "Office-2F." (3) Set this Switching Hub's contact information to "manager." M24eGi>...
Page 32: Username And Password Configuration
3.1.1. Username and Password Configuration Configure the username and password for this Switching Hub in "Global configuration mode." Command to set the username and password M24eGi(config)# username <new username>...
Page 33 username <new username> Sets or edits the username and password. * Upon entering this command, you are required to enter your old password once and your new password twice to set the new password. [Parameter] Parameter name Description <new username> Enter a new username.
Page 34 <Configuration Example> Overview: Set a username and password for the Switching Hub. (1) Set a new username to "user1." (2) Enter the current password. (The factory default setting is "manager.") (3) Enter a new password. (4) Enter the new password again. M24eGi>...
Page 35: Ip Address Configuration
3.2. IP Address Configuration Configure the IP address settings of this Switching Hub in "Interface configuration mode." Confirm the configuration information by executing the "show ip conf" command in "Privileged mode." Command to show the IP address M24eGi# show ip conf Command to show the IPv6 address M24eGi# show ipv6 conf...
Page 36 <Command Entry Example> An example of executing the command to show the address information is shown below. M24eGi> enable M24eGi# show ip conf MAC Address : 00:C0:8F:A0:13:98 IP Address : 0.0.0.0 Subnet Mask : 0.0.0.0 Default Gateway : 0.0.0.0 M24eGi# Fig.
Page 37 <Command Entry Example> An example of executing the command to show the ipv6 address information is shown below. M24eGi# show ipv6 conf IPv6 Status : Disable MAC Address : 00:C0:8F:A0:13:98 IPv6 Address/prefixlen : ::/128 IPv6 Link Local Address : :: IPv6 Default Gateway : :: M24eGi#...
Page 38 ip address <ip-address> <mask> [<default-gateway>] Sets or edits the IP address, subnet mask and/or default gateway. no ip address Deletes the IP address, subnet mask and/or default gateway. [Parameter] Parameter Description name <ip-address> Enter an IP address to be set or edited. <mask>...
Page 40 <Configuration Example> (1) Set the Switching Hub's IP address to "192.168.1.1," subnet mask to "255.255.255.0" and default gateway to "192.168.1.254." M24eGi> enable M24eGi# configure M24eGi(config)# ip address 192.168.1.1 255.255.255.0 192.168.1.254 Interface vlan1 my HWaddr: 00:c0:8f:a0:13:98 my IPaddr: 192.168.1.1 Options: subnet mask: 255.255.255.0 IP broadcast: 192.168.1.255 gateway: 192.168.1.254 M24eGi(config)#...
Page 41 ipv6 enable Enables the IPv6 stack. no ipv6 enble Disables the IPv6 stack. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None no ipv6 enable The IPv6 stack is disabled. [Setting Range] Parameter name Setting range None None...
Page 42 ipv6 address <ipv6-address> prefixlen <prefixlen> [<gateway>] Sets or edits the IPv6 address, prefix length and/or ipv6 default gateway. no ipv6 address Deletes the IPv6 address, prefix length and/or ipv6 default gateway. [Parameter] Parameter Description name <ipv6-address> Enter an IPv6 address to be set or edited. <prefixlen>...
Page 44 ipv6 address link-local < link-local-address> Sets or edits the IPv6 link local address. no ipv6 address link-local Deletes the IPv6 link local address. [Parameter] Parameter Description name <ipv6-link-local Enter an IPv6 link local address to be set or address> edited. [Factory Default Setting] Parameter name Factory default setting...
Page 45 <Configuration Example> (1) Set the Switching Hub's IPv6 address to "2001::100," prefix length to "64" and ipv6 default gateway to "2001::1." M24eGi> enable M24eGi# configure M24eGi(config)# ipv6 enable M24eGi(config)# ipv6 address 2001::100 prefixlen 64 2001::1 M24eGi(config)# exit M24eGi# Fig. 3-2-4 Example of the ipv6 address configuration...
Page 46: Snmp Configuration
3.3. SNMP Configuration Configure the SNMP agent setting in "Global configuration mode." Confirm the configuration information by executing the "show snmp" command in "Privileged mode." Command to show the SNMP information M24eGi# show snmp Command to enable the SNMP agent M24eGi(config)# snmp-server agent Command to disable the SNMP agent...
Page 47 Command to set the SNMP user IP address M24eGi(config- snmp-server ip <ip-address> snmp-user)# Command to set the SNMP user IPv6 address M24eGi(config- snmp-server ipv6 <ipv6-address> snmp-user)# Command to create the SNMP view M24eGi(config)# snmp-server view <string> Command to delete the SNMP view M24eGi(config)# no snmp-server view <string>...
Page 48 <Command Entry Example> An example of executing the command to show the SNMP information is shown below. M24eGi# show snmp SNMP Agent: Disabled SNMP Manager List: Status IP Address Access SNMP Community String ---- -------- -------------------------- ------ --------------------- Enabled 0.0.0.0 public Enabled 0.0.0.0...
Page 49 IPv6 Address (15) ---- ---------------------------------------- 2001::1 0::0 0::0 0::0 0::0 0::0 0::0 0::0 0::0 0::0 (16) Individual Trap Coldstart : Enabled (17) SNMP Authentication Failure: Disabled (18) Login Failure : Disabled (19) Enable Link Up/Down Port : all (20) M24eGi# Fig.
Page 50 (7) SNMP Community String Shows the community name to access via SNMP. (8) IPv6 Destination Shows the IPv6 address of the SNMP manager. (9) Trap Reciever List Lists the settings of the SNMP trap receivers. (10) No. Shows the entry number assigned to the trap receiver. (11) Status Shows the status of the SNMP trap receiver.
Page 51 (18) SNMP Authentication Failure Shows the status of SNMP authentication failure trap. Enabled The SNMP authentication failure trap is enabled. Disabled The SNMP authentication failure trap is disabled. (19) Login Failure Shows the status of SNMP login failure trap. Enabled The SNMP login failure trap is enabled.
Page 52 <Command Entry Example> An example of executing the command to show the SNMP group information is shown below. M24eGi# show snmp-server group Total Entry: 5 Group Name Ver. Level -------------------------------- ---- -------------- public NoAuth/NoPriv public NoAuth/NoPriv initial NoAuth/NoPriv private NoAuth/NoPriv private NoAuth/NoPriv Group Name...
Page 53 (1) Total Entries Shows the number of the SNMP group entries. (2) Group Name Shows the SNMP group name. (3) Version Shows the SNMP version for the SNMP group SNMP version 1 SNMP version 2C SNMP version 3 (4) Security level Shows the Security level for the SNMP group NoAuth/NoPriv No authentication, no privacy...
Page 54 <Command Entry Example> An example of executing the command to show the SNMP user information is shown below. M24eGi# show snmp-server user SNMP User List: User Name Group ---- -------------------------------- -------------------------------- initial initial test public User Name Auth Pri. ---- -------------------------------- ---- ---- initial None None test...
Page 55 (4) Authentication Protocol Shows the Authentication Protocol for the SNMP user None None Use HMAC MD5 algorithm for authentication Use HMAC SHA algorithm for authentication (5) Privacy Protocol Shows the Privacy Protocol for the SNMP user None None Use DES encryption algorithm...
Page 56 <Command Entry Example> An example of executing the command to show the SNMP view information is shown below. M24eGi# show snmp-server view Total Entry: 8 View Name Subtree View Type -------------------------------- ------------------------ --------- restricted 1.3.6.1.2.1.1 Included restricted 1.3.6.1.2.1.11 Included restricted 1.3.6.1.6.3.10.2.1 Included restricted...
Page 57 show snmp Shows the SNMP configuration information. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None [Note] Parameter name Note None None...
Page 58 snmp-server agent Enables the SNMP agent. no snmp-server agent Disables the SNMP agent. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None no snmp-server agent The SNMP agent is disabled. [Setting Range] Parameter name Setting range None None...
Page 59 snmp-server community <id> <community> <ro / rw> {<ip-address> | ipv6 <ipv6-address> } [<string>] Sets or edits the SNMP manager administrative information. no snmp-server community <id> Deletes the SNMP manager administrative information. [Parameter] Parameter name Description <id> Set the entry number of the SNMP manager. <community>...
Page 60 [Note] Parameter name Note ― None...
Page 61 snmp-server host <id> type <v1/v2c/v3> {<ip-address> | ipv6 <ipv6-address>} trap <string> Sets or edits the SNMP trap receiver settings. no snmp-server host <id> Deletes the SNMP trap receiver settings. [Parameter] Parameter name Description <id> Set the entry number of the SNMP trap receiver.
Page 62 snmp-server group <string> <v1/v2c/v3> Sets or edits the SNMP group settings. no snmp-server group <string> <v1/v2c/v3> Deletes the SNMP group settings. [Parameter] Parameter name Description <string> Set the SNMP group name. <v1/v2c/v3> Set the type of the SNMP group. [Factory Default Setting] Parameter name Factory default setting <string>...
Page 63 <read/write/notify> <string> Sets or edits the SNMP view settings for the SNMP group. read : the read view for the SNMP group write : the write view for the SNMP group notify : the notify view for the SNMP group * This command is executed in the SNMP group configuration mode.
Page 64 security-level <noauth_nopriv/auth_nopriv/auth_priv> Sets or edits the security level for the SNMP group. * This command is executed in the SNMP group configuration mode. [Parameter] Parameter name Description <noauth_nopriv/ Set the security level for the SNMP group. auth_nopriv/ auth_priv> [Factory Default Setting] Parameter name Factory default setting <noauth_nopriv/...
Page 65 snmp-server user <1-10> <string> Sets or edits the SNMP user settings. no snmp-server user <1-10> Deletes the SNMP user settings. [Parameter] Parameter name Description <1-10> Set the entry number of the SNMP user. <string> Set the SNMP user name. [Factory Default Setting] Parameter name Factory default setting <1-10>...
Page 66 group <string> Sets or edits the SNMP group settings for the SNMP user. * This command is executed in the SNMP user configuration mode. [Parameter] Parameter name Description <string> Set the SNMP group name. [Factory Default Setting] Parameter name Factory default setting <string>...
Page 67 authentication {<md5/sha> <string> / encrypted <md5/sha> <string>} Sets or edits the authentication settings for the SNMP user. * This command is executed in the SNMP user configuration mode. [Parameter] Parameter name Description <md5/sha> Set the authentication method for the SNMP user.
Page 68 privilege {des <string> / encrypted des <string>} Sets or edits the private settings for the SNMP user. Only supports DES encryption algorithm. * This command is executed in the SNMP user configuration mode. [Parameter] Parameter name Description <string> Set the password or encrypted key [Factory Default Setting] Parameter name Factory default setting...
Page 69 snmp-server ip <ip-address> Sets or edits the IP address settings for the SNMP user. * This command is executed in the SNMP user configuration mode. [Parameter] Parameter name Description <ip-address> Set the ip address for the SNMP user [Factory Default Setting] Parameter name Factory default setting <ip-address>...
Page 70 snmp-server ipv6 <ipv6-address> Sets or edits the IPv6 address settings for the SNMP user. * This command is executed in the SNMP user configuration mode. [Parameter] Parameter name Description <ipv6-address> Set the ipv6 address for the SNMP user [Factory Default Setting] Parameter name Factory default setting <ipv6-address>...
Page 71 snmp-server view <string> Sets or edits the SNMP view settings. no snmp-server view <string> Deletes the SNMP view settings. [Parameter] Parameter name Description <string> Set the SNMP view name. [Factory Default Setting] Parameter name Factory default setting <string> restricted CommunityView [Setting Range] Parameter name Setting range...
Page 72 <oid> <included/excluded> Sets or edits the subtree for the SNMP view. * This command is executed in the SNMP group configuration mode. [Parameter] Parameter name Description <oid> Set OID for SNMP view. <included/excluded> Included : OID is included into the view Excuded : OID is excluded from the view [Factory Default Setting] Parameter name...
Page 73 snmp-server enable traps snmp authentication Enables the trap sending settings for an SNMP authentication failure. no snmp-server enable traps snmp authentication Disables the trap sending settings for an SNMP authentication failure. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None...
Page 74 snmp-server enable traps snmp coldstart Enables the trap sending settings for the SNMP coldstart. no snmp-server enable traps snmp coldstart Disables the trap sending settings for the SNMP coldstart. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None no snmp-server enable traps snmp coldstart...
Page 75 snmp-server enable traps linkupdown <port> Adds a port to which the trap is sent when the link status changes. no snmp-server enable traps linkupdown <port> Deletes a port to which the trap is sent when the link status changes. [Parameter] Parameter name Description <port>...
Page 76 snmp-server enable traps login failure Enables the trap sending settings for login failure. no snmp-server enable traps snmp coldstart Disables the trap sending settings for login failure. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None no snmp-server enable traps login failure [Setting Range]...
Page 77 snmp-server enable traps ddm Enables the trap sending settings for ddm. no snmp-server enable traps ddm Disables the trap sending settings for ddm. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None no snmp-server enable traps ddm [Setting Range] Parameter name Setting range...
Page 78 <Configuration Example> Overview: Enable the SNMP function, then set the community name and the address information. (1) Enable the SNMP agent. (2) Set the SNMP manager administrative information as below. community 1, private, Read-Write, 192.168.1.200 (3) Set the SNMP manager administrative information as below. community 2, public, Read-Only, 192.168.1.200 (4) Set the SNMP trap receiver settings as below.
Page 79 NOTICE: Must set Auth. if the user group is an auth_nopriv group; Must set both Auth. and Priv. if the user group is an auth_priv group M24eGi(config-snmp-user)# group test M24eGi(config-snmp-user)# authentication md5 panasonic M24eGi(config-snmp-user)# exit M24eGi(config)# snmp-server host 1 type v3 192.168.1.200 trap test...
Page 80: Port Configuration
3.4. Port Configuration Configure the port setting in "Interface configuration mode." Confirm the configuration information by executing the "show interface info" command in "Privileged mode." Command to show the port information M24eGi# show interface info Command to show the detailed port information M24eGi# show interface [<interface name>] Command to enable the port status...
Page 81 <Command Entry Example> An example of executing the command to show the port information is shown below. M24eGi> enable M24eGi# show interface info Jumbo Status : Enabled Port Trunk Type Admin Link Mode Flow Ctrl Auto-MDI ---- ----- ----------- -------- ---- ------------ --------- -------- 1000T...
Page 82 (4) Type Shows the port type. 100TX The port type is 10/100BASE-TX. 1000T The port type is 10/100/1000BASE-T. 1000X The port type is SFP port. (5) Admin Shows the current port status. The factory default setting is “Enabled” for all ports. Enabled The port is available for use.
Page 83 (9) Auto-MDI Shows the Auto MDI/MDI-X setting. Enabled The Auto MDI/MDI-X is enabled. Disabled The Auto MDI/MDI-X is disabled.
Page 84 <Command Entry Example> An example of executing the command to show the port name information is shown below. M24eGi> enable M24eGi# sh interface name Jumbo Status : Enabled Port Trunk Type Link Port Name EAP Pkt FW ---- ----- ----------- ---- --------------- ------------ 1000T Down PORT_1...
Page 85 (4) Type Shows the port type. 100TX The port type is 10/100BASE-TX. 1000T The port type is 10/100/1000BASE-T. 1000X The port type is SFP port. (5) Link Shows the current link status. The Link is established successfully. Down The Link is not established. (6) Port Name Shows the port name.
Page 86 show interface [<interface name>] Shows the interface setting at the specific ports. [Parameter] Parameter name Description [<interface Target ports to show the setting. name>] [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range [<interface <Switch-M24eGi>...
Page 87 show interface info Shows the interface setting information. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None [Note] Parameter name Note None None...
Page 88 show interface name Shows the interface name setting information. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None [Note] Parameter name Note None None...
Page 89 shutdown Shuts down a port. no shutdown Releases a port. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None no shutdown [Setting Range] Parameter name Setting range None None [Note] Parameter name Note None None...
Page 90 speed-duplex < auto | {10|100}-half | {10|100}-full > Sets the port mode. [Parameter] Parameter name Description < auto | Set the port mode. {10|100}-half | auto Set the mode to "auto negotiation." {10|100}-full > 10-half Set the mode to "10 Mbps half- duplex."...
Page 91 flow-control Enables the flow control function. no flow-control Disables the flow control function. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None no frow-control The flow control function is disabled. [Setting Range] Parameter name Setting range None None...
Page 92 name <string> Sets the port name. [Parameter] Parameter name Description < string > Set the port name. [Factory Default Setting] Parameter name Factory default setting < string > Nothing is set. [Setting Range] Parameter Setting range name < string > Up to 15 one-byte characters Allowed characters: alphanumeric character (A- Z, a-z, 0-9)
Page 93 mdix auto Enables the Auto MDI/MDI-X function. no mdix auto Disables the Auto MDI/MDI-X function. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter Factory default setting name None <Switch-M24eGi> Ports 1 to 22: no mdix auto The Auto MDI/MDI-X function is disabled.
Page 94 [Setting Range] Parameter name Setting range None None [Note] Parameter name Note None None...
Page 95 jumbo Enables jumbo frames. no jumbo Disables jumbo frames. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None no jumbo Jumbo frame is disabled. [Setting Range] Parameter name Setting range None None [Note] Parameter name Note None When jumbo frame is enabled, the maximum...
Page 96 eap-forward Enables EAP frame forwarding. no eap-forward Disables EAP frame forwarding. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None no eap-forward EAP frame forwarding is disabled. [Setting Range] Parameter name Setting range None None [Note] Parameter name...
Page 97 <Configuration Example 1> Overview: Set the status of Port 1 to be closed. (1) Move to the interface configuration mode for Port 1. (2) Shut down Port 1. M24eGi> enable M24eGi# configure M24eGi(config)# interface gi0/1 M24eGi(config-if)# shutdown M24eGi(config-if)# exit M24eGi(config)# M24eGi# Fig.
Page 98: System Security Configuration
3.5. System Security Configuration Configure the system settings to access this Switching Hub in "Global configuration mode." Confirm the configuration information by executing the "show terminal length" command in "Privileged mode." Command to show the number of lines on a screen M24eGi# show terminal length Command to set the number of lines on a screen...
Page 99 <Command Entry Example> An example of executing the command to show the number of lines on a screen is shown below. M24eGi> enable M24eGi# show terminal length Terminal Length: 24 rows M24eGi# Fig. 3-5-1 Example of executing the command to show the number of lines on a screen (1) Terminal Length Shows the number of lines displayed on a screen.
Page 100 show terminal length Shows the number of lines displayed on a screen. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None [Note] Parameter name Note None None...
Page 101 terminal length <LENGTH> Sets the number of lines displayed on a screen. [Parameter] Parameter name Description <LENGTH> Set the number of lines displayed on a screen. Assigning the value "0" sets no limit on the number of lines displayed on a screen. [Factory Default Setting] Parameter name Factory default setting...
Page 102 <Configuration Example> Overview: Set the number of lines displayed on a screen to unlimited. (1) Set no limit on the number of lines displayed on a screen. M24eGi> enable M24eGi# conf M24eGi(config)# terminal length 0 M24eGi(config)# exit M24eGi# Fig. 3-5-2 Example of configuring the number of lines displayed on a screen...
Page 103: Console Configuration
3.5.1. Console Configuration Configure the settings to access this Switching Hub via console in "Global configuration mode." Confirm the configuration information by executing the "show console" command in "Privileged mode." Command to show the console configuration M24eGi# show console Command to set the console timeout M24eGi(config)# console inactivity-timer <minutes>...
Page 104 <Command Entry Example> An example of executing the command to show the console configuration is shown below. M24eGi> enable M24eGi# show console Console UI Idle Timeout: 5 minutes M24eGi# Fig. 3-5-1-1 Example of executing the command to show the console configuration (1) Console UI Idle Timeout Shows the maximum inactivity time to wait for a user input in a console...
Page 105 show console Shows the maximum inactivity time to wait for a user input in a console session. Upon expiration, the session is automatically terminated. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range...
Page 106 console inactivity-timer <minutes> Changes the maximum inactivity time to wait for a user input in a console session. Upon expiration, the session is automatically terminated. [Parameter] Parameter name Description <minutes> Set the maximum inactivity time in minutes to wait for a user input in a console session. Upon expiration, the session is automatically terminated.
Page 107 <Configuration Example> Overview: Disable the inactivity-time-based automatic disconnection of a console session. (1) Disable the automatic disconnection for the console inactivity time. M24eGi> enable M24eGi# conf M24eGi(config)# console inactivity-timer 0 M24eGi(config)# exit M24eGi# Fig. 3-5-1-2 Example of configuring the automatic disconnection time for inactivity...
Page 108: Telnet Configuration
3.5.2. Telnet Configuration Configure the telnet-related settings in "Global configuration mode." Confirm the configuration information by executing the "show telnet-sever" command in "Privileged mode." Command to show the telnet server configuration M24eGi# show telnet-server Command to enable the telnet server M24eGi(config)# telnet-server enable Command to disable the telnet server...
Page 109 <Command Entry Example> An example of executing the command to show the telnet server configuration is shown below. M24eGi> enable M24eGi# show telnet-server Telnet UI Idle Timeout: 5 minutes Telnet Server --------------- Enabled Telnet Access Limitation: Disabled IP Address Subnet Mask --------------- --------------- <empty>...
Page 110 (4) No. Shows the entry number assigned to the access-limited address of a telnet client. (5) IP Address Shows the IP address or the IP address range to allow access from telnet clients. (If no IP address has been entered, <empty> is shown.) (6) Subnet Mask Shows the subnet mask value for IP addresses to allow access from telnet clients.
Page 111 show telnet-server Shows the telnet server configuration information. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None [Note] Parameter name Note None None...
Page 112 telnet-server enable Enables the telnet server. no telnet-server enable Disables the telnet server. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None telnet-server enable The telnet server is disabled. [Setting Range] Parameter name Setting range None None [Note]...
Page 113 telnet-server inactivity-timer <minutes> Sets the maximum inactivity time to wait for a user input in a telnet client session. Upon expiration, the session is automatically terminated. [Parameter] Parameter name Description <minutes> Set the maximum inactivity time in minutes to wait for a user input in a telnet client session. Upon expiration, the session is automatically terminated.
Page 114 telnet-server [ipv6] access-limitation enable Enables the access limitation from telnet clients. no telnet-server [ipv6] access-limitation enable Disables the access limitation from telnet clients. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None no telnet-server access-limitation enable The access limitation from telnet clients is disabled.
Page 115 telnet-server <entry> {<ip-address> <mask> | ipv6 <ipv6-address> prefixlen <prefixlen>} Sets IP addresses to allow access from telnet clients when the access limitation is enabled. [Parameter] Parameter name Description <entry> Set an entry number. <ip-address> Set an IP address to allow access. <mask>...
Page 116 <Configuration Example> Overview: Configure the telnet connection so that the sessions are allowed only from specific network addresses (192.168.1.1 to 192.168.1.254). (1) Enable the access limitation from telnet. (2) Add the network address 192.168.1.0 (subnet mask 255.255.255.0), as a source address for telnet connections, to Entry No.
Page 117: Ssh Configuration
3.5.3. SSH Configuration Configure the SSH-related settings in "Global configuration mode." Confirm the configuration information by executing the "show ip ssh" command in "Privileged mode." Command to show the SSH configuration M24eGi# show ip ssh Command to enable the SSH server M24eGi(config)# crypto key generate rsa Command to delete the SSH server...
Page 118 <Command Entry Example> An example of executing the command to show the SSH configuration is shown below. M24eGi> enable M24eGi# show ip ssh SSH UI Idle Timeout: 5 Min. SSH Auth. Idle Timeout: 120 Sec. SSH Auth. Retries Time: 5 SSH Server: Enabled(SSH) SSH Server Key:...
Page 119 show ip ssh Shows the SSH server configuration information. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None [Note] Parameter name Note None None...
Page 120 crypto key generate rsa Generates SSH server keys. Enables the access via SSH. crypto key zeroize rsa Deletes SSH server keys. Disables the access via SSH. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None crypto key zeroize rsa The access via SSH is disabled.
Page 121 ip ssh time-out <minutes> Sets the maximum inactivity time to wait for a user input in an SSH session. Upon expiration, the session is automatically terminated. [Parameter] Parameter name Description <minutes> Set the maximum inactivity time in minutes to wait for a user input. Upon expiration, the session is automatically terminated.
Page 122 ip ssh authentication-timeout <seconds> Sets the response timeout time for SSH authentication. [Parameter] Parameter name Description <seconds> Set the response timeout time in seconds for SSH authentication. [Factory Default Setting] Parameter name Factory default setting <seconds> 120 (seconds) [Setting Range] Parameter name Setting range <seconds>...
Page 123 ip ssh authentication-retries <retries> Sets the maximum number of SSH authentication retries. [Parameter] Parameter name Description <retries> Set the maximum number of SSH authentication retries. The first try is counted as a retry. [Factory Default Setting] Parameter name Factory default setting <retries>...
Page 124 <Configuration Example> Overview: Enable the access via SSH. Set the timeout time to 40 seconds. This is the maximum inactivity time to wait for a user input. Upon expiration, the session is automatically terminated. (1) Enable the access via SSH. (2) Set the timeout time to 40 seconds.
Page 125: Web Configuration
3.5.4. Web Configuration Configure the web access settings in "Global configuration mode." Confirm the configuration information by executing the "show ip http server" command in "Privileged mode." Command to show the Web configuration M24eGi# show ip http server Command to enable the Web server M24eGi(config)# ip http server Command to disable the Web server...
Page 126 <Command Entry Example> An example of executing the command to show the Web configuration is shown below. M24eGi> enable M24eGi# show ip http server Web Server ------------ Enabled M24eGi# Fig. 3-5-4-1 Example of executing the command to show the Web configuration (1) Web Server Shows whether or not the access via Web is allowed.
Page 127 show ip http server Shows the Web server configuration information. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None [Note] Parameter name Note None None...
Page 128 ip http server Enables the access via Web. no ip http server Disables the access via Web. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None The access via Web is disabled. [Setting Range] Parameter name Setting range None...
Page 129 <Configuration Example> Overview: Enable the access via Web. (1) Enable the access via Web. M24eGi> enable M24eGi# conf M24eGi(config)# ip http server M24eGi(config)# exit M24eGi# Fig. 3-5-4-2 Example of the Web server configuration...
Page 130: Radius Server Configuration
3.5.5. RADIUS Server Configuration Configure the access settings of a RADIUS server for user login authentication in "Global configuration mode." Confirm the configuration information by executing the "show radius-server" command in "Privileged mode." Command to show the RADIUS configuration M24eGi# show radius-server Command to configure the RADIUS server access settings M24eGi(config)#...
Page 131 <Command Entry Example> An example of executing the command to show the RADIUS configuration is shown below. M24eGi# show radius-server NAS ID: Nas1 Index Server IP address Shared Secret Response Time Max Retransmission ----- ----------------- -------------------- ------------- ------------------ 192.168.1.200 admin 10 Seconds 192.168.1.201 [encrypted]...
Page 132 (4) Shared Secret Shows the common key (Shared Secret) that is used in authentication. The same key must be set between the server side and the client side. In general, system manager set this common key. (5) Response Time Shows the maximum response time for authentication request to RADIUS server.
Page 133 show radius-server Shows the RADIUS server configuration information. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None [Note] Parameter name Note None None...
Page 134 radius-server host <index> {ip <ip-address> | ipv6 <ipv6-address>} [timeout <sec(s)>][retransmit <retries>] {[key <string> [encrypt]] | [encrypted-key <encrypted-string>]} Configures access settings of a RADIUS server for user login authentication. [Parameter] Parameter name Description <index> Set the authentication order to RADIUS server. <ip-address>...
Page 135 [Note] Parameter name Note encrypt When uses this option, The entered string will be encrypted and will be saved into configuration file. encrypt-key When uses this option, The entered string will not be encrypted and will be saved into configuration file. (It needs to enter the encrypted string.)
Page 136 dot1x nasid <string> Changes the authentication ID (NAS Identifier). [Parameter] Parameter name Description <string> Set a new authentication ID. [Factory Default Setting] Parameter name Factory default setting <string> Nas1 [Setting Range] Parameter name Setting range <string> Up to 16 one-byte characters [Note] Parameter name Note...
Page 137 show login method Shows the login method to authenticate, using the username and password. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None [Note] Parameter name Note None None...
Page 138 login method <index> {{Local | RADIUS | None} | | auth-fail-action {method2 | stop}} Sets the login method to authenticate, using the username and password. [Parameter] Parameter name Description <index> 1： The first method for authentication. 2： The second method for authentication. {Local | RADIUS Set a login method to authenticate, using the | None}...
Page 139 <Configuration Example> Overview: Configure access settings of a RADIUS server for user login authentication. (1) Configure the access settings of a RADIUS server as follows: Authentication order: 1, IP address: 192.168.1.200, Common key for authentication: admin. (2) Configure the first login method to a RADIUS server for authentication using the username and password.
Page 140: Configuration Of The Easy Ip Address Setup Function
3.5.6. Configuration of the Easy IP Address Setup Function Configure the easy IP address setup function in "Global configuration mode." Confirm the configuration information by executing the "show ip setup interface" command in "Privileged mode." Command to show the easy IP address setup function M24eGi# show ip setup interface Command to enable the easy IP address setup function configuration...
Page 141 <Command Entry Example> An example of executing the command to show the easy IP address setup function is shown below. M24eGi> enable M24eGi# show ip setup interface IP Setup Interface ------------------ Enabled M24eGi# Fig. 3-5-6-1 Example of executing the command to show the easy IP address setup function (1) IP Setup Interface Shows the easy IP address setup function configuration.
Page 142 show ip setup interface Shows the easy IP address setup function configuration. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None [Note] Parameter name Note None None...
Page 143 ip setup interface Enables the easy IP address setup function. no ip setup interface Disables the easy IP address setup function. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None ip setup interface The easy IP address setup function is enabled. [Setting Range] Parameter name Setting range...
Page 144 <Configuration Example> Overview: Enable the easy IP address setup function. (1) Enable the easy IP address setup function. M24eGi> enable M24eGi# configure M24eGi(config)# no ip setup interface M24eGi(config)# exit M24eGi# Fig. 3-5-6-2 Example of configuration of the easy IP address setup function...
Page 145: Configuration Of The Syslog Transmission Function
3.5.7. Configuration of the Syslog Transmission Function Configure the syslog transmission function in "Global configuration mode." Confirm the configuration information by executing the "show syslog conf" command in "Privileged mode." Command to show the syslog transmission function M24eGi# show syslog conf Command to enable the syslog transmission function configuration M24eGi(config)# syslog server enable...
Page 146 <Command Entry Example> An example of executing the command to show the syslog transmission function is shown below. M24eGi> enable M24eGi# show syslog conf Syslog Transmission: Disabled ･･･１ Syslog Server List ･･･２ Status Ip Address Facility Include SysName/IP ---- ------------ ---------------- ----------- ------------------...
Page 147 show ip setup interface Shows the easy IP address setup function configuration. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None [Note] Parameter name Note None None...
Page 148 ip setup interface Enables the easy IP address setup function. no ip setup interface Disables the easy IP address setup function. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None ip setup interface The easy IP address setup function is enabled. [Setting Range] Parameter name Setting range...
Page 149 <Configuration Example> Overview: Enable the easy IP address setup function. (1) Enable the easy IP address setup function. M24eGi> enable M24eGi# configure M24eGi(config)# no ip setup interface M24eGi(config)# exit M24eGi# Fig. 3-5-7-2 Example of configuration of the easy IP address setup function...
Page 150: Mac Address Table Display, Registration, And Configuration
3.6. MAC Address Table Display, Registration, and Configuration Configure the MAC address table and register/delete static MAC addresses in "Global configuration mode," and show the MAC address table in "Privileged mode." Command to show the MAC address auto-learning status M24eGi# show mac-learning Command to show the aging time M24eGi#...
Page 151 <Command Entry Example> An example of executing the command to show the MAC address auto-learning status is shown below. M24eGi> enable M24eGi# show mac-learning Interface MAC Learning MAC Learning Limit --------- ------------ ------------------ gi0/1 Auto Disabled gi0/2 Auto Disabled gi0/3 Auto Disabled gi0/4...
Page 152 (3) MAC Learning Limit Shows the status of the limit of the number of auto-learned MAC addresses for each port. Disabled The number of MAC addresses that can be auto- learned is not limited. 1 to 256 Indicates the limit of the number of auto-learned MAC addresses.
Page 153 <Command Entry Example> An example of executing the command to show the MAC address table (dynamic entries) is shown below. M24eGi> enable M24eGi# show mac-address-table mac MAC Address Address Type VLAN Port ----------------- ------------ ---- --------- xx:xx:xx:xx:xx:xx Dynamic gi0/1 xx:xx:xx:xx:xx:xx Dynamic gi0/1 M24eGi# Fig.
Page 154 <Command Entry Example> An example of executing the command to show the MAC address table (static entries) is shown below. M24eGi> enable M24eGi# show mac-address-table static MAC Address Address Type VLAN Port ----------------- ------------ ---- --------- xx:xx:xx:xx:xx:xx Static gi0/1 xx:xx:xx:xx:xx:xx Static gi0/1 M24eGi# Fig.
Page 155 show mac-address-table mac-learning Shows the MAC address auto-learning status of each port. show mac-address-table aging-time Shows the MAC address table aging time. show mac-address-table mac Shows dynamically learned MAC address entries. show mac-address-table static Shows statically registered MAC address entries. [Parameter] Parameter name Description...
Page 156 mac-address-table aging-time <aging time> Sets the aging time until the dynamically learned entries in the MAC address table are deleted. [Parameter] Parameter name Description <aging time> Set the time in seconds between frame receiving and dynamic entry deletion. [Factory Default Setting] Parameter name Factory default setting <aging time>...
Page 157 mac-address-table static <MAC addr.> <interface name> vlan <VLAN ID> Statically enters a MAC address in the MAC address table. no mac-address-table static <MAC addr.> vlan <VLAN ID> Deletes a static MAC address from the MAC address table. [Parameter] Parameter name Description <MAC addr.>...
Page 158 [Note] Parameter name Note <MAC addr.> None <interface None name> <VLAN ID> Set an existing VLAN ID.
Page 159 mac-learning Enables the MAC address auto-learning of each port. no mac-learning Disables the MAC address auto-learning of each port. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None mac-learning [Setting Range] Parameter name Setting range None None [Note]...
Page 160 mac-learning limit <limit> Sets the limit of the number of auto-learned MAC addresses for each port. Assuming that the number of learned MAC addresses reaches the limit, and if a frame with new source MAC address that has not been learned is received, this frame is discarded.
Page 161 <Configuration Example 1> Overview: Set the MAC address table aging time. (1) Set the time until the dynamically learned entries in the MAC address table are automatically deleted to 1,200 seconds. M24eGi> enable M24eGi# configure M24eGi(config)# mac-address-table aging-time 1200 M24eGi(config)# exit M24eGi# Fig.
Page 162 addresses...
Page 163: Time Configuration
3.7. Time Configuration Configure the time setting and time synchronization by SNTP in "Global configuration mode." Confirm the configuration information by executing the "show sntp" command in "Privileged mode." Command to show the SNTP configuration M24eGi# show sntp Command to manually set the time M24eGi(config)# sntp clocktime <date>...
Page 164 <Command Entry Example> An example of executing the command to show the SNTP configuration is shown below. M24eGi> enable M24eGi# show sntp Clock Time : Wed, 21 Jul 2010 12:00:00 SNTP : Enabled SNTP Server : 192.168.1.1 SNTP Polling Interval: 60 (min) Time Zone : (GMT+09:00) Osaka,Sapporo,Tokyo Daylight Saving...
Page 165 show sntp Shows the present time and SNTP configuration. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None [Note] Parameter name Note None None...
Page 166 sntp clocktime <date> <time> Manually sets the time. [Parameter] Parameter name Description <date> Set the date in YYYY/MM/DD format. <time> Set the time in HH:MM:SS format. [Factory Default Setting] Parameter name Factory default setting <date> "1970/01/01" <time> "00:00:00" [Setting Range] Parameter name Setting range <date>...
Page 167 sntp enable Enables the SNTP function. sntp disable Disables the SNTP function. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None disable [Setting Range] Parameter name Setting range None None [Note] Parameter name Note None None...
Page 168 sntp server <ip-address> Sets an address of SNTP server. [Parameter] Parameter name Description <ip-address> Set an IP address of SNTP server. [Factory Default Setting] Parameter name Factory default setting <ip-address> 0.0.0.0 [Setting Range] Parameter name Setting range <ip-address> 0.0.0.0 to 223.254.254.254 [Note] Parameter name Note...
Page 169 sntp polling-interval <min> Sets the time acquisition interval. [Parameter] Parameter name Description <min> Set the time acquisition interval. The unit is minutes. [Factory Default Setting] Parameter name Factory default setting <min> 1440 (minutes) [Setting Range] Parameter name Setting range <min> 1 to 1440 (minutes) [Note] Parameter name...
Page 170 sntp daylight-saving Enables daylight saving. no sntp daylight-saving Disables daylight saving. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None no sntp daylight-saving [Setting Range] Parameter name Setting range None None [Note] Parameter name Note None None...
Page 171 sntp timezone [<location>] Sets the time zone. [Parameter] Parameter name Description <location> Set the time zone. None The time zone list is displayed. [Factory Default Setting] Parameter name Factory default setting <location> 51 (Osaka, Sapporo, Tokyo) [Setting Range] Parameter name Setting range <location>...
Page 172 sntp update Acquires time. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None [Note] Parameter name Note None None Note: SNTP function must be enabled to execute the "sntp update" command.
Page 173 <Configuration Example 1> Overview: Manually set the Switching Hub clock time. (1) Set the time to July 21, 2010, 12:00. M24eGi> enable M24eGi# configure M24eGi(config)# sntp clocktime 2010/7/21 12:00:00 M24eGi(config)# exit M24eGi# Fig. 3-7-2 Example of setting the Switching Hub time <Configuration Example 2>...
Page 174: Arp Configuration
3.8. ARP Configuration Configure the ARP table in "Global configuration mode." Confirm the configuration information by executing the "show arp sort ip" command in "Privileged mode." Command to show the ARP table information M24eGi# show arp sort ip Command to set the ARP aging time M24eGi(config)# arp timeout <timeout>...
Page 175 <Command Entry Example> An example of executing the command to show the ARP table information is shown below. M24eGi> enable M24eGi# show arp sort ip IP Address HWaddress Type --------------- ----------------- ---------- 192.168.0.100 00:00:00:00:00:01 Static M24eGi# Fig. 3-8-1 Example of executing the command to show the ARP table information (1) IP Address Lists learned IP addresses in the ARP table.
Page 176 show arp sort ip Shows the ARP table registration status. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None [Note] Parameter name Note None None...
Page 177 arp timeout <timeout> Sets the timeout for the ARP table. [Parameter] Parameter name Description <timeout> Set the timeout for the ARP table in seconds. [Factory Default Setting] Parameter name Factory default setting <timeout> 7200 (seconds) [Setting Range] Parameter name Setting range <timeout>...
Page 178 arp <ip-address> <MAC address> Registers addresses in the ARP table. no arp Deletes registered addresses in the ARP table. [Parameter] Parameter name Description <ip-address> Set the IP address to be registered in the ARP table. <MAC address> Set the MAC address to be registered in the ARP table.
Page 179 <Configuration Example 1> Overview: Set the aging time to 14,400 seconds. (1) Set the ARP information aging time to 14,400 seconds. M24eGi> enable M24eGi# configure M24eGi(config)# arp timeout 14400 M24eGi(config)# exit M24eGi# Fig. 3-8-2 Example of setting the ARP aging time <Configuration Example 2>...
Page 180: Advanced Switch Configuration
4. Advanced Switch Configuration 4.1. VLAN Configuration Features  Corresponding to IEEE802.1Q compatible Tag VLAN, it is possible to send frames attaching a VLAN tag (hereinafter, called as just "tag").  Having two different parameters of VLAN ID and PVID, destination of transferring untagged frames is determined by a combination of these parameters.
Page 181 Configure the VLAN setting in "Global configuration mode" or "Interface configuration mode." Confirm the configuration information by executing the "show vlan all" command in "Privileged mode." Command to show the VLAN configuration M24eGi# show vlan {all | <vlan-id-list>} Command to create and configure VLAN M24eGi(config)# interface vlan<vlan-id>...
Page 182 <Command Entry Example> An example of executing the command to show the VLAN configuration is shown below. M24eGi> enable M24eGi# show vlan all NOTE -- 'U' : Untagged port member 'T' : Tagged port member '-' : Not a port member VLAN-ID | Status |Name Port No.
Page 183 management VLAN, and VLAN 10 and 20 do not.
Page 184 (4) NAME Shows the VLAN name set for the VLAN-ID. (5) Port Shows the port numbers that belong to the VLAN and their status (tagged/untagged). (The ports are shown in shortened form in ascending order from the left as shown below.) Port 1 ...
Page 185 show vlan {all | <vlan-id-list>} Shows the VLAN configuration. [Parameter] Parameter name Description { all|<vlan-id- Set a VLAN to be displayed. list> } All VLANs are displayed. <vlan-id- Only specified VLANs are list> displayed. [Factory Default Setting] Parameter name Factory default setting None None [Setting Range]...
Page 186 interface vlan<vlan-id> Creates and configures VLAN. Execution of this command enables interface configuration mode for the specified VLAN. [Parameter] Parameter name Description <vlan-id> Set the VLAN ID of the VLAN to be created. [Factory Default Setting] Parameter name Factory default setting <vlan-id>...
Page 187 name <name> Sets/Changes the name of VLAN. no name Deletes the name of VLAN. [Parameter] Parameter name Description <name> Set the name of VLAN. [Factory Default Setting] Parameter name Factory default setting <name> None [Setting Range] Parameter name Setting range <name>...
Page 188 member <port-list> Sets/Changes members of the VLAN. [Parameter] Parameter name Description <port-list> Set member ports belonging to the VLAN. [Factory Default Setting] Parameter name Factory default setting <port-list> <Switch-M24eGi> VLAN1 (default VLAN): 1 to 24 <Switch-M16eGi> VLAN1 (default VLAN): 1 to 16 <Switch-M8eGi>...
Page 189 management Sets VLAN as a management VLAN. no management Disables the use of VLAN as a management VLAN. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None VLAN 1: management Other than VLAN 1: no management [Setting Range] Parameter name Setting range...
Page 190 pvid <vlan-id> Changes the PVID (Port VLAN ID). Packets sent by a configured port to the VLAN identified by the PVID are untagged. Received untagged packets are handled as packets for the VLAN identified by the PVID. * This command is executed in interface configuration mode of each port.
Page 191 frame-type { all|tag-only } Changes the type of frames received by ports. * This command is executed in interface configuration mode of each port. [Parameter] Parameter name Description { all|tag-only } Set the type of received frames. Receives all frames. tag-only Receives only VLAN-tagged frames.
Page 192 <Configuration Example 1> Overview: Create VLAN with the following conditions. - VLAN-ID: 10 - VLAN name: VLAN10 - Belonging to a management VLAN - Member ports: 1 and 2 (untagged), 24 (tagged [PVID=1]) (1) Create VLAN10 and transits to the interface configuration mode for VLAN10.
Page 193 <Configuration Example 2> Overview: Delete VLAN10 created in Configuration Example 1. (1) Move to the interface configuration mode for VLAN10. (2) Delete member ports. (3) Move to the global configuration mode. (4) Move to the interface configuration mode for Ports 1 and 2. (5) Set PVID to 1.
Page 194: Internet Mansion Function Configuration
4.1.1. Internet Mansion Function Configuration Configure the Internet mansion function in "Global configuration mode." Confirm the configuration information by executing the "show internet mansion" command in "Privileged mode." Command to show the Internet mansion configuration M24eGi# show internet mansion Command to configure the Internet mansion M24eGi(config)# internet mansion <port-list>...
Page 195 <Command Entry Example> An example of executing the command to show the Internet mansion configuration is shown below. M24eGi> enable M24eGi# show internet mansion Internet Mansion: Enabled Promiscuous Port Members : gi0/23-24 Internet Mansion Members : gi0/1-22 M24eGi# Fig. 4-1-1-1 Example of executing the command to show the Internet mansion configuration (1) Internet Mansion Shows the Internet mansion function status (Enabled or Disabled).
Page 196 show internet mansion Shows the Internet mansion configuration. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None [Note] Parameter name Note None None...
Page 197 internet mansion <port-list> Configures the Internet mansion function. no internet mansion Disables the Internet mansion configuration. [Parameter] Parameter name Description <port-list> Enter a port number you wish to configure as an uplink port. This setting optimizes the Switching Hub configuration for an Internet- ready mansion.
Page 198 Note: When Internet mansion mode is enabled, there are constraint conditions as follows. Please confirm the conditions before use. (1) Combined usage with the link aggregation function is not possible. (2) Only the uplink port belongs to the management VLAN. Note: When Internet mansion mode is enabled, all VLAN configurations are overwritten.
Page 199 <Configuration Example 1> Overview: Enable the Internet mansion function with Ports 23 and 24 set as uplink ports. (1) Configure the Internet mansion function with Ports 23 and 24 set as uplink ports. (2) Enter y to enable the Internet mansion function. (All VLAN configuration and PVID of each port are reset.) M24eGi>...
Page 200: Link Aggregation Configuration
4.2. Link Aggregation Configuration 4.2.1. About Link Aggregation Link aggregation is a function that can increase the bandwidth between Switching Hubs by dividing multiple switch ports into groups and connecting the grouped ports to each other. When using both link aggregation and access control functions, assign a practical physical port number to a port list of access control, not a logical port created in link aggregation.
Page 201 Configure the link aggregation setting in "Global configuration mode" or "Interface configuration mode." Command to show the link aggregation configuration M24eGi# show aggregation-link group [Aggregation-link group ID] Command to configure the link aggregation M24eGi(config)# aggregation-link group <Aggregation-link group ID> <port-list> Command to delete the link aggregation configuration M24eGi(config)# no aggregation-link group <Aggregation-link group ID>...
Page 202 <Command Entry Example> An example of executing the command to show the link aggregation configuration is shown below. M24eGi> enable M24eGi# show aggregation-link group Aggregation Group <1> Status : Static Criterion : src-dst-mac / src-dst-ip / src-dst-L4-port Admin Ports : gi0/9-10 Oper Ports : gi0/9-10 Aggregation Group <2>...
Page 203 show aggregation-link group [Aggregation-link group ID] Shows the link aggregation configuration. [Parameter] Parameter name Description [Aggregation-link Specify the group number of the link group ID] aggregation. If you don't specify it, all groups are displayed. [Factory Default Setting] Parameter name Factory default setting None None...
Page 204 aggregation-link group <Aggregation-link group ID> <port-list> Configures the link aggregation. no aggregation-link group <Aggregation-link group ID> Deletes the link aggregation. [Parameter] Parameter name Description <Aggregation- Specify the group number of the link link group ID> aggregation. <port-list> Specify ports belonging to the link aggregation.
Page 205 [Note] Parameter name Note <Aggregation-link None group ID> <port-list> None <Configuration Example> Overview: Set Ports 1 to 8 in an aggregation link. (1) Create an aggregation link as Group 1 including Ports 1 to 8. M24eGi> enable M24eGi# configure M24eGi(config)# aggregation-link group 1 1-8 M24eGi(config)# exit M24eGi# Fig.
Page 206: Port Monitoring Configuration
4.3. Port Monitoring Configuration Configure the port monitoring in "Interface configuration mode." Confirm the configuration information by executing the "show monitor" command in "Privileged mode." Command to show the monitoring configuration M24eGi# show monitor Command to configure the port monitoring M24eGi(config-if)# port monitor <monitored port>...
Page 207 <Command Entry Example> An example of executing the command to show the monitoring configuration is shown below. M16eG> enable M16eG# show monitor Port monitor status : Disabled Monitoring direction : Both Monitoring port Monitored port M16eG# Fig. 4-3-1 Example of executing the command to show the monitoring configuration (1) Port monitor status Shows the status of the port monitoring function (Enabled or Disabled).
Page 208 show monitor Shows the port monitoring function configuration. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None [Note] Parameter name Note None None...
Page 209 port monitor <monitored port> direction <rx|tx|both> Enables the port monitoring function. no port monitor Disables the port monitoring function. [Parameter] Parameter name Description <monitored port> Specify a port number of a port to be monitored. <rx|tx|both> Specify which packet should be monitored, the transmit packet or the receive packet.
Page 210 <Configuration Example 1> Overview: Configure port monitoring so that Port 1 monitors packets transmitted/received on Ports 2 to 5. (1) Move to the interface configuration mode for Port 1. (2) Enable monitoring of packets transmitted/received on Ports 2 to (After the command is executed, the function is automatically enabled, starting monitoring.) M16eG>...
Page 211: Access Control Configuration
4.4. Access Control Configuration Configure access control in "Global configuration mode." When using both access control and link aggregation functions, assign a practical physical port number to a port list, not a logical port created in link aggregation. Command to show the classifier configuration M24eGi# show AccessControl classifier {all | <classifier-number>} Command to show the in-profile configuration...
Page 212 Command to configure the out-profile M24eGi(Config) AccessControl outprofile <index> committed-rate <unit> burst-size <volume> {deny | permit [dscp <value>]} Command to delete the out-profile M24eGi(Config) no AccessControl outprofile <index> Command to configure the port list M24eGi(Config) AccessControl portlist <port-list-index> <port num> Command to delete the port list M24eGi(Config) no AccessControl portlist <port-list-index>...
Page 213 <Command Entry Example> An example of executing the command to show the access control is shown below. M24eGi> enable M24eGi# show AccessControl classifier all Classifier Index VLAN ID :Ignore 802.1p Priority :Ignore DSCP :Ignore Protocol :Ignore TCP SYN Flag :Ignore ICMP Type :Ignore Source MAC Address :Ignore...
Page 214 (9) Source MAC Mask Length Shows whether or not the mask length of the source MAC address should be included in the target. (10) Destination MAC Address Shows whether or not the destination MAC address should be included in the target. (11) Destination MAC Mask Length Shows whether or not the mask length of the destination MAC address should be included in the target.
Page 215 M24eGi> enable M24eGi# show AccessControl inprofile In-Profile Action: Total Entries:1 Index Deny/Permit Policied-DSCP Policied-Precedence Policied-CoS ----- ----------- ------------- ------------------- ------------ Permit Ignore Ignore Ignore M24eGi# show AccessControl outprofile Out-Profile Action: Total Entries:1 Index Committed Rate Burst Size(KB) Deny/Permit Policied-DSCP (10) (11) (12) ----- -------------- -------------- ----------- -------------...
Page 216 (9) Committed Rate Shows the destination MAC address. (10) Burst Size (KB) Shows the traffic burst size that can be transmitted exceeding the committed rate. (11) Deny/Permit Shows whether or not communications are denied or permitted. Deny Permits communications. Permit Denies communications.
Page 217 M24eGi> enable M24eGi# show AccessControl portlist Port List : Total Entries : 1 Index Port List ----- -------------------------------------------------- 3,6-9 M24eGi# show AccessControl policy 1 Policy Index Status : Enabled Classifier Index Source MAC Addr/Mask : Ignore Destination MAC Addr/Mask : Ignore 802.1P Priority : Ignore (10)
Page 218 Shows the policy status. Enabled The policy is enabled. Disabled The policy is disabled. (6) Classifier Index Shows the classifier index number. (7) Source MAC Addr/Mask Shows the source MAC address and the mask length. (8) Destination MAC Addr/Mask Shows the destination MAC address and the mask length. (9) 802.1P Priority Shows the IEEE 802.1p priority.
Page 219 (17) TCP SYN Flag Shows the TCP SYN flag. (18) ICMP Type Shows the ICMP type. (19) Policy Sequence Shows the policy sequence. (20) In Profile Action Shows details of the in-profile action used in the policy. (21) Out Profile Action Shows details of the out-profile action used in the policy.
Page 220 show AccessControl classifier {all | <classifier-number>} Shows the classifier configuration used for the access control function. [Parameter] Parameter name Description {all | <classifier- Specify the classifier to be displayed. number> } The configuration of all classifiers is displayed. <classifier- The configuration of the classifier number>...
Page 221 show AccessControl inprofile Shows the list of the in-profile configuration used for the access control function. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None [Note] Parameter name Note...
Page 222 show AccessControl outprofile Shows the list of the out-profile configuration used for the access control function. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None [Note] Parameter name Note...
Page 223 show AccessControl portlist Shows the list of the port list configuration used for the access control function. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None [Note] Parameter name...
Page 224 show AccessControl policy {all | <policy-number>} Shows the policy configuration used for the access control function. [Parameter] Parameter name Description {all | <policy- Specify a policy index number to be displayed. number> } The configuration of all policies is displayed. <policy- The configuration of the policy with number>...
Page 225 show AccessControl policy-sequence port <port num> sort {policy-index | sequence} Shows the list of the policy sequence configuration used for the access control function. [Parameter] Parameter name Description <port num> Specify a Switching Hub port number. {policy-index | Specify a policy sequence display mode. sequence} policy-index The sequence is in order of the policy number.
Page 226 AccessControl classifier <id> [src-mac <MAC>] [dst-mac <MAC>] [src-net <ip-mask>] [dst-net <ip-mask>] [src-port <layer4-port-list>] [dst-port <layer4-port-list>] [vlan-id <vid>] [dot1p-priority <priority>] [dscp <value>] [protocol <pro-num>] [icmp-type <0-18>] [tcp-syn-flag{true/false}] Configures the classifier used for the access control function. no AccessControl classifier <id> Deletes the classifier used for the access control function. [Parameter] Parameter name Description...
Page 227 [Setting Range] Parameter name Setting range <id> 1 to 65535 <MAC> 00:00:00:00:00:00 to FF:FF:FF:FF:FF:FF <ip-mask> 0.0.0.0/0 to 255.255.255.255/32 <Example> - 192.168.1.10/32 or 192.168.1.10  Only one unit is specified. - 192.168.1.20/31  Two units (192.168.1.20 and 192.168.1.21) are specified. - 192.168.2.1/25 ...
Page 228 AccessControl inprofile <index> {deny | permit { dscp <dscp-value> | precedence <p-value>| cos <c-value>}} Configures the in-profile used for the access control function. no AccessControl inprofile <index> Deletes the in-profile used for the access control function. [Parameter] Parameter name Description <index>...
Page 229 AccessControl outprofile <index> committed-rate <unit> burst-size <volume> {deny | permit [dscp <value>]} Configures the out-profile used for the access control function. no AccessControl outprofile <index> Deletes the out-profile used for the access control function. [Parameter] Parameter name Description <index> Specify the out-profile index number. <unit>...
Page 230 AccessControl portlist <port-list-index> <port num> Configures the port list used for the access control function. no AccessControl portlist <port-list-index> Deletes the port list used for the access control function. [Parameter] Parameter name Description <port-list-index> Specify the port list index number. <port num>...
Page 231 AccessControl policy <index> portlist <port-list-index> classifier <c-index> policy-sequence <value> inprofile <i-index> [outprofile <o-index>] Configures the policy used for the access control function. no AccessControl policy <index> Deletes the policy configuration used for the access control function. [Parameter] Parameter name Description <index>...
Page 232 AccessControl policy <index> enable Enables access control of the specified policy. no AccessControl policy <index> enable Disables access control of the specified policy. [Parameter] Parameter name Description <index> Specify the policy index number. [Factory Default Setting] Parameter name Factory default setting None None [Setting Range]...
Page 233 <Configuration Example 1> Overview: Configure the access control to discard packets destined for 192.168.1.0/24. (1) Configure the classifier to target packets destined for an IP address of 192.168.1.0/24. (2) Configure the in-profile to discard the target packets. (3) Configure the port list to target all ports. (4) Associate configuration items above with policy 1 and set the policy sequence to 1 for application with top priority.
Page 234 <Configuration Example 2> Overview: Configure the access control to mark CoS in the VLAN tag in order to have this Switching Hub preferentially control packets of IP phones that support DSCP only. (1) Configure the classifier to target packets with DSCP set to 32. (2) Configure the in-profile to mark the target packets with a CoS value of 6.
Page 235: Qos (Quality Of Service) Configuration
4.5. QoS (Quality of Service) Configuration Configure the QoS settings in "Global configuration mode." Confirm the basic information by executing the "show mls qos" command in "Privileged mode." Command to show the QoS configuration M24eGi# show mls qos Command to show the CoS-to-que mapping configuration M24eGi# show priority-queue cos-map Command to enable the QoS function...
Page 236 <Command Entry Example> An example of executing the command to show the QoS configuration is shown below. M24eGi> enable M24eGi# show mls qos Quality of Service Status: Disabled M24eGi# show priority-queue cos-map Priority CoS Queue -------- --------- M24eGi# Fig. 4-5-1 Example of executing the command to show the QoS configuration (1) Quality of Service Status Shows the QoS operation status.
Page 237 show mls qos Shows the QoS configuration information. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None [Note] Parameter name Note None None...
Page 238 show priority-queue cos-map Shows the frame priority level and mapping between the CoS value and queue. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None [Note] Parameter name Note...
Page 239 mls qos Enables the QoS function. no mls qos Disables the QoS function. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None no mls qos (The QoS function is disabled.) [Setting Range] Parameter name Setting range None None...
Page 240 priority-queue cos-map <PRIORITY> <QUEUE> Changes the frame priority level and mapping between the CoS value and queue. [Parameter] Parameter name Description <PRIORITY> Priority level of the frame (CoS value) <QUEUE> Traffic class corresponding to the priority level [Factory Default Setting] Parameter name Factory default setting <PRIORITY>...
Page 241 <Configuration Example> Overview: Enable the QoS function and configure the mapping. (1) Map the Priority value 0 to the Queue 1. (2) Map the Priority value 1 to the Queue 0. (3) Enable the QoS function. M24eGi> enable M24eGi# configure M24eGi(config)# priority-queue cos-map 0 1 M24eGi(config)# priority-queue cos-map 1 0 M24eGi(config)# mls qos...
Page 242: Bandwidth Control Configuration
4.6. Bandwidth Control Configuration Configure the bandwidth control in "Interface configuration mode." Confirm the basic information by executing the "show egress-rate-limit" command in "Privileged mode." Command to configure the bandwidth control Interface configuration mode egress-rate-limit [<unit(1Mbps/unit)>] Command to enable the bandwidth control Interface configuration mode egress-rate-limit Command to disable the bandwidth control...
Page 243 <Command Entry Example> An example of executing the command to show the bandwidth control configuration is shown below. M24eGi> enable M24eGi# show egress-rate-limit Port Bandwidth Status --------- ------------ --------- 1000 disabled 1000 disabled 1000 disabled 1000 disabled 1000 disabled 1000 disabled 1000 disabled...
Page 244 egress-rate-limit [<unit(1Mbps/unit)>] Changes the configuration of bandwidth control. [Parameter] Parameter name Description <unit(1Mbps/unit)> Set the bandwidth. [Factory Default Setting] Parameter name Factory default setting <unit(1Mbps/unit)> 1000 (Mbps) [Setting Range] Parameter name Setting range <unit(1Mbps/unit)> 1 to 1000 [Note] Parameter name Note <unit(1Mbps/unit)>...
Page 245 egress-rate-limit Enables the bandwidth control function. no egress-rate-limit Disables the bandwidth control function. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None disabled [Setting Range] Parameter name Setting range None None [Note] Parameter name Note None None...
Page 246 <Configuration Example> Overview: Enable the bandwidth control for Port 1, and set the bandwidth. (1) Enable the bandwidth control function. (2) Set the bandwidth to 100 (Mbps). M24eGi> enable M24eGi# configure M24eGi(config)# interface gi0/1 M24eGi(config-if)# egress-rate-limit M24eGi(config-if)# egress-rate-limit 100 M24eGi(config-if)# end M24eGi# Fig.
Page 247: Storm Control Configuration
4.7. Storm Control Configuration Configure the storm control in "Interface configuration mode." Confirm the configuration information by executing the "show storm-control" command in "Privileged mode." Command to enable the storm control (broadcast) M24eGi(config-if)# storm-control broadcast Command to disable the storm control (broadcast) M24eGi(config-if)# no storm-control broadcast Command to enable the storm control (multicast)
Page 248 <Command Entry Example> An example of executing the command to show the storm control configuration is shown below. M24eGi> enable M24eGi# show storm-control Interface Broadcast Multicast Threshold --------- --------- --------- --------- --------- disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled...
Page 249 show storm-control Shows the storm control configuration. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None [Note] Parameter name Note None None...
Page 250 storm-control broadcast Enables the storm control for broadcast packets. no storm-control broadcast Disables the storm control for broadcast packets. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None no storm-control broadcast (The storm control for broadcast packets is disabled.) [Setting Range] Parameter name...
Page 251 storm-control multicast Enables the storm control for multicast packets. no storm-control multicast Disables the storm control for multicast packets. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None no storm-control multicast (The storm control for multicast packets is disabled.) [Setting Range] Parameter name...
Page 252 storm-control unicast Enables the storm control for unicast packets with unknown destination. no storm-control unicast Disables the storm control for unicast packets with unknown destination. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None no storm-control unicast (The storm control for unicast packets with unknown destination is disabled.)
Page 253 storm-control threshold <pps> Sets the storm control threshold. [Parameter] Parameter name Description <pps> Set the threshold to control the reception of unicast packets with unknown destination, broadcast packets, or multicast packets. The unit is the number of packets received per second (Packet Per Second).
Page 254 <Configuration Example> Overview: Enable the storm control for broadcast packets on Port 1. Set the threshold for receiving broadcast packets to 10000 pps. (1) Move to the interface configuration mode for Port 1. (2) Enable the storm control for broadcast packets on Port 1. (3) Set the threshold for receiving broadcast packets on Port 1 to 10000 pps.
Page 255: Authentication Function Configuration
4.8. Authentication Function Configuration Configure the authentication function in "Global configuration mode" and "Interface configuration mode." Display the basic information in "Privileged mode." Authentication aging time configuration command M24eGi(config)# authentication aging-time <0-65535 min> Authentication cancel command for authorized host M24eGi(config)# no authentication mac <mac addr>...
Page 256 <Setting display example> The following is an execution example of the authentication function configuration display command. M24eGi> enable M24eGi# show authentication Global MAC Auth Status : Disabled Global WEB Auth Status : Disabled …1 802.1X Port-based Auth Ports :1-48 …2 802.1X MAC-based Auth Ports : MAC Auth Ports WEB Auth Ports...
Page 257 <Setting display example> The following is an execution example of the authentication status table display command. M24eGi> enable M24eGi# show authentication sort port 1 Total Hosts Authorized Hosts :0 Auth Aging Time :1440 minutes Port MAC Address Auth Type Auth Status Remaining Aging Time --------- ----------------- ---------- --------------- -------------------- Fig.
Page 258 Indicates the WEB authentication. Auth Status Displays the authentication status. Authorized Indicates that the authentication is authorized. Unauthorized Indicates that the authentication is unauthorized. The communication in this status is limited to within Guest VLAN. Remaining Displays the remaining time before re-authentication. Aging Time When the remaining time reaches 0, the authentication status becomes "Unauthorized"...
Page 259 <Setting display example> The following is an execution example of the dynamic VLAN configuration display command. M24eGi> enable M24eGi# show authentication dynamic-vlan Accept RADIUS Attribute: Enabled Port Current PVID Auth Status Guest Default ---- ------------ ------------ ------ ------- Authorized ---- ---- Unauthorized ---- ----...
Page 260 Configure the remaining time before re-authentication against authenticated host. [Parameter] Parameter Description name <min> Configure the remaining time before re- authentication in minutes. [Factory default setting] Parameter Factory default setting name <min> [Value setting range] Parameter Setting range name <min> 0 to 65535 [Instructions] Parameter...
Page 261 no authentication mac <mac addr> Cancel the authentication status of authorized host on the authentication status table. [Parameter] Parameter Description name <mac addr> Specify MAC address on the authentication status table. [Factory default setting] Parameter Factory default setting name <mac addr> None [Value setting range] Parameter...
Page 262 authentication guest-vlan <vid> Enables Guest VLAN of the target port. no authentication guest-vlan Disables Guest VLAN of the target port. [Parameter] Parameter Description name <vid> Specify existing VLAN ID. [Factory default setting] Parameter Factory default setting name <vid> None [Value setting range] Parameter Setting range name...
Page 263 authentication default-vlan <vid> Enables default VLAN of the target port. no authentication default-vlan Disables default VLAN of the target port. [Parameter] Parameter Description name <vid> Specify existing VLAN ID. [Factory default setting] Parameter Factory default setting name <vid> None [Value setting range] Parameter Setting range name...
Page 264 show authentication Displays the authentication function configuration. [Parameter] Parameter Description name None None [Factory default setting] Parameter Factory default setting name None None [Value setting range] Parameter Setting range name None None [Instructions] Parameter Instruction name None None...
Page 265 show authentication sort {mac | port [<portlist>]} Displays the authentication status table. [Parameter] Parameter Description name Displays in ascending order of MAC address. port Displays in ascending order of the port number. [<portlist>] port Displays in ascending order of both the port number and MAC address.
Page 266 show authentication dynamic-vlan Displays the dynamic VLAN configuration. [Parameter] Parameter Description name None None [Factory default setting] Parameter Factory default setting name None None [Value setting range] Parameter Setting range name None None [Instructions] Parameter Instruction name None None...
Page 267 <Configuration example> Overview: Set Guest VLAN for Port 1 to existing VLAN 100. 1. Move to the interface configuration mode of port 1. 2. Set Guest VLAN for Port 1 to100. M24eGi> enable M24eGi# configure M24eGi(config)# interface gi0/1 ･･･1 M24eGi(config-if)# authentication guest-vlan 100 ･･･2 M24eGi(config-if)# end M24eGi#...
Page 268: Aaa Configuration
4.9. AAA Configuration Configure AAA in "Global configuration mode." Display the basic information in "Privileged mode." Authentication method configuration command for MAC/WEB authentication M24eGi(config)# aaa authentication {mac | web} primary {radius secondary {local | none} | local secondary {radius | none} IEE802.1X authentication method configuration command M24eGi(config)# aaa authentication dot1x primary {radius secondary {local | none}...
Page 269 <Setting display example> The following is an execution example of the authentication function configuration display command. M24eGi> enable M24eGi# show aaa authentication mac Primary Database : Local Auth Fail Action : Stop Secondary Database : None Auth Fail Block Time : 60 seconds Fig.
Page 270 <Setting display example> The following is an execution example of the local database display command. M24eGi> enable M24eGi# show aaa authentication auth-mac ･･･1 Auth MAC Address VLAN ----------------- ---- XX:XX:XX:XX:XX:XX 1 M24eGi# show aaa authentication auth-user ･･･2 User Name Password VLAN Auth Type -------------------------------- -------------------------------- ---- --------- test...
Page 271 aaa authentication {mac | web} primary {radius secondary {local | none} | local secondary {radius | none}} Configure the authentication method for MAC/WEB authentication. [Parameter] Parameter Description name {mac | web} Specify the type of authentication. Configure for MAC authentication. Configure for WEB authentication.
Page 272 aaa authentication dot1x primary {radius secondary {local | none} | local secondary none} Configure the authentication method for IEEE802.1X authentication. [Parameter] Parameter Description name primary radius Specify Secondary Database in case that Primary secondary Database is RADIUS server. {local | none} local Specify the local database.
Page 273 aaa authentication auth-mac <mac addr> vlan <vid> Register local MAC address. no aaa authentication auth-mac <mac addr> Delete local MAC address. [Parameter] Parameter Description name <mac addr> Specify the target MAC address. <vid> Specify VLAN ID assigned after the authentication. [Factory default setting] Parameter Factory default setting...
Page 274 aaa authentication auth-user <username> {password <plain-text> [encrypt] | encrypt-password <encrypted-password>} vlan <vid> auth-type {both | web | dot1x} Register the local user account. no aaa authentication auth-user <username> Delete the local user account. [Parameter] Parameter name Description <username> Specify the local user name. <plain-text>...
Page 275 password> With encrypt option, it is reflected in the configuration file or running-config after configuration. show aaa authentication {dot1x | mac | web} Displays the authentication method configuration. [Parameter] Parameter Description name {dot1x | mac | Specify the target authentication type. web} dot1x Specify the authentication method for...
Page 276 show aaa authentication {auth-mac | auth-user} Displays the local account configuration. [Parameter] Parameter Description name {auth-mac | Specify the target local account type. auth-user} auth- Specify the local MAC account. auth- Specify the local user account. user [Factory default setting] Parameter Factory default setting name...
Page 277 <Configuration example> Overview: - Set primary database of MAC authentication to RADIUS server and secondary database to local database. Make configuration so that the authentication is executed using local database if there is no applicable account on RADIUS server. - Add the local MAC account assigned to VLAN 1 following authentication.
Page 278: Authentication Log Configuration
4.10. Authentication Log Configuration Configure authentication log setting in "Global configuration mode." Display the authentication log in "Privileged mode." Authentication log retention period configuration command M24eGi(config)# syslog authentication save-interval <min> Authentication log delete command M24eGi(config)# syslog authentication clear Authentication log display command M24eGi# show syslog authentication [tail <line>]...
Page 279 <Setting display example> The following is an execution example of the authentication log display command. M24eGi> enable M24eGi# show syslog authentication tail 5 2001/01/01 09:33:26 [MAC](RADIUS)Rejected 00:00:07:00:09:07 on Port 3 2001/01/01 09:33:26 [MAC](RADIUS)Rejected 00:00:07:00:09:08 on Port 3 2001/01/01 09:33:26 [MAC](RADIUS)Rejected 00:00:07:00:09:09 on Port 3 2001/01/01 09:33:26 [MAC](RADIUS)Rejected 00:00:07:00:09:0A on Port 3 2001/01/02 08:33:25 [WEB](Local)Authorized user test (xx:xx:xx:xx:xx:xx) on Port 1 to VLAN 1...
Page 280 syslog authentication save-interval <min> Configure the interval of the write operation to the authentication log flash. [Parameter] Parameter Description name <min> Configure the interval of the write operation (in minutes). [Factory default setting] Parameter Factory default setting name <min> [Value setting range] Parameter Setting range name...
Page 281 syslog authentication clear Clear the authentication log. [Parameter] Parameter Description name None None [Factory default setting] Parameter Factory default setting name None None [Value setting range] Parameter Setting range name None None [Instructions] Parameter Instruction name None None...
Page 282 show syslog authentication [tail <line>] Displays the authentication log. [Parameter] Parameter Description name [tail <line>] Specify for the latest log displayed with the specified number of rows (optional). <line> Specify the number of rows displayed. [Factory default setting] Parameter Factory default setting name None None...
Page 283 <Configuration example> Overview: Set the interval of the write operation to the authentication log flash to 10 minutes. 1. Configure the interval to 10 minutes. M24eGi> enable M24eGi# configure M24eGi(config)# syslog authentication save-interval 10 ･･･1 M24eGi(config)# end M24eGi# Fig. 4-10-2 Configuration example of authentication log...
Page 284: Ieee802.1X Port-Based Authentication Configuration
4.11. IEEE802.1X Port-Based Authentication Configuration Configure for the IEEE802.1X port-based authentication function in "Global configuration mode" and "Interface configuration mode." Display the basic information by entering "show dot1x port-based <port-list>" in "Privileged mode." IEEE802.1X port-based authentication status display command M24eGi# show dot1x port-based <port-list>...
Page 285 <Setting display example> The following is an execution example of the IEEE802.1X port-based authentication configuration display command. M24eGi> enable M24eGi# show dot1x port-based 1 NAS ID: Nas1 Port No: 1 Authorized MAC Address: --:--:--:--:--:-- Port Status : Authorized OperControlDirection : Both Port Control : Force Authorized AdminControlDirection: Both...
Page 286 the client to reattempt authentication. The factory default setting is 30 seconds. Supplicant Timeout Displays the timeout for the client. The factory default setting is 30 seconds. Server Timeout Displays the timeout for the authentication server. The factory default setting is 30 seconds. Maximum Request The maximum number of times of retransmitting an authentication request.
Page 287 priority and used. (factory default setting) Local The value of "Re-auth Period" of this device is always used.
Page 288 show dot1x port-based <port-list> Displays the IEEE802.1X port-based authentication configuration. [Parameter] Parameter Description name <port-list> Specify the port number list displayed. [Factory default setting] Parameter Factory default setting name <port-list> None [Value setting range] Parameter Setting range name <port-list> <Switch-M24eGi> 1 to 24 <Switch-M16eGi>...
Page 289 dot1x port-auth-mode port-based Set the authentication method of the target interface to port-based authentication. Note: This command is executed from interface configuration mode of each port. [Parameter] Parameter Description name None None [Factory default setting] Parameter Factory default setting name None None [Value setting range]...
Page 290 dot1x init Initialize the authentication status. Note: This command is executed from interface configuration mode of each port. [Parameter] Parameter Description name None None [Factory default setting] Parameter Factory default setting name None None [Value setting range] Parameter Setting range name None None...
Page 291 dot1x max-req <value> Configure the maximum number of times of retransmitting an authentication request. Note: This command is executed from interface configuration mode of each port. [Parameter] Parameter Description name <value> Configure the maximum number of times of retransmitting an authentication request. [Factory default setting] Parameter Factory default setting...
Page 292 dot1x port-control {auto | force-authorized | force-unauthorized} Set the authentication operation. Note: This command is executed from interface configuration mode of each port. [Parameter] Parameter name Description {auto | force- Set the IEEE802.1X port authentication authorized | force- operation. unauthorized} auto The access control function is enabled.
Page 294 dot1x re-auth-timer local Align the number of seconds to wait before requesting the client to reattempt authentication with the switch configuration (dot1x timeout re-authperiod). no dot1x re-auth-timer local Align the number of seconds to wait before requesting the client to reattempt authentication with the authentication server configuration.
Page 295 dot1x re-authenticate Initialize the re-authentication status to the client. Note: This command is executed from interface configuration mode of each port. [Parameter] Parameter Description name None None [Factory default setting] Parameter Factory default setting name None None [Value setting range] Parameter Setting range name...
Page 296 dot1x re-authentication Enable periodic client re-authentication. no dot1x re-authentication Disable periodic client re-authentication. Note: This command is executed from interface configuration mode of each port. [Parameter] Parameter Description name None None [Factory default setting] Parameter Factory default setting name None Periodic re-authentication is disabled.
Page 297 dot1x timeout quiet-period <seconds> Configure the number of seconds to wait before reattempting a failed authentication. Note: This command is executed from interface configuration mode of each port. [Parameter] Parameter Description name <seconds> Configure the number of seconds to wait before reattempting a failed authentication.
Page 298 dot1x timeout re-authperiod <seconds> Configure the number of seconds to wait before requesting the client to reattempt authentication. Note: This command is executed from interface configuration mode of each port. [Parameter] Parameter Description name <seconds> The periodic re-authentication time interval. [Factory default setting] Parameter Factory default setting...
Page 299 dot1x timeout server <seconds> Configure the timeout for the authentication server. Note: This command is executed from interface configuration mode of each port. [Parameter] Parameter Description name <seconds> Configure the timeout for the authentication server. [Factory default setting] Parameter Factory default setting name <seconds>...
Page 300 dot1x timeout supp-timeout <seconds> Configure the timeout for the client. Note: This command is executed from interface configuration mode of each port. [Parameter] Parameter Description name <seconds> Configure the timeout for the client. [Factory default setting] Parameter Factory default setting name <seconds>...
Page 301 dot1x timeout tx-period <seconds> Configure the number of seconds to wait before requesting the client to reattempt authentication when the authentication is unauthorized. Note: This command is executed from interface configuration mode of each port. [Parameter] Parameter Description name <seconds> Configure the number of seconds to wait before requesting to reattempt authentication.
Page 302 <Configuration example> Overview: Enable the authentication function for Port 1. Enable the periodic client re-authentication. Change the number of seconds to wait before requesting to reattempt authentication so that the value obeys the switch configuration. Set the number of seconds to wait before requesting to reattempt authentication to 6000 seconds.
Page 303: Ieee802.1X Mac-Based Authentication Configuration
4.12. IEEE802.1X MAC-Based Authentication Configuration Configure for the IEEE802.1X MAC-based authentication function in "Global configuration mode" and "Interface configuration mode." Display the basic information by entering "show dot1x mac-based <port num>" in "Privileged mode." IEEE802.1X MAC-based authentication status display command M24eGi# show dot1x mac-based <port num>...
Page 304 Control target communication direction configuration command in an unauthorized status M24eGi(config-if)# dot1x control-direction {both | in} Authentication status initialization command M24eGi(config-if)# dot1x mac-based init [<MAC>] Re-authentication execution command M24eGi(config-if)# dot1x mac-based re-authenticate [<MAC>] Re-authentication enable command M24eGi(config-if)# dot1x mac-based re-authentication [<MAC>] Re-authentication disable command M24eGi(config-if)# dot1x mac-based re-authentication [<MAC>]...
Page 305 <Setting display example> The following is an execution example of the IEEE802.1X MAC-based authentication configuration display command. M24eGi> enable M24eGi# show dot1x mac-based 1 NAS ID: Nas1 Port No: 1 Number of Supplicant: 512 Operational Control Direction: Both Administrative Control Direction: Both Transmission Period : 30 seconds Maximum Request...
Page 306 Server Timeout Displays the timeout for the authentication server. The factory default setting is 30 seconds. Maximum Request Displays the maximum number of times of retransmitting an authentication request. The factory default setting is 2. Quiet Period The number of seconds to wait before reattempting a failed authentication.
Page 307 Auth Status Indicates the authentication status. Authorized Indicates that the authentication is authorized. Unauthorize Indicates it is in an unauthorized status. Re-auth Displays the re-authentication status for each supplicant. Enabled Re-authentication is performed. Disabled Re-authentication is not performed.
Page 308 show dot1x mac-based <port num> Displays the MAC-based authentication status. [Parameter] Parameter Description name <port num> Specify the target port number. [Factory default setting] Parameter Factory default setting name None None [Value setting range] Parameter Setting range name <port num> <Switch-M24eGi>...
Page 309 show dot1x forceAuthorized-mac {all | single <MAC>} Displays the forced authentication MAC address. [Parameter] Parameter Description name {all | single Specify the display range. <MAC>} Displays all the entries. single Only displays specified MAC address. <MAC> Specify the target MAC address. [Factory default setting] Parameter Factory default setting...
Page 310 show dot1x unauthorized mac-address-table {interface <interface name> | mac} Displays unauthorized MAC address table. [Parameter] Parameter Description name {interface Specify the display range. <interface interface Indicates the display of each name> | mac} interface. <interface Specify the target interface name. name>...
Page 311 show dot1x eap-request port config Displays the EAP Request configuration. [Parameter] Parameter Description name None None [Factory default setting] Parameter Factory default setting name None None [Value setting range] Parameter Setting range name None None [Instructions] Parameter Instruction name None None...
Page 312 show dot1x statistics <port num> {since-reset | since-up} Displays statistic information of IEEE802.1X control packets. [Parameter] Parameter Description name <port num> Specify the target port number. {since-reset | Specify the type of statistic information since-up} displayed. since- Displays the value from the counter reset reset.
Page 313 dot1x port-auth-mode mac-based Set the authentication method of the target interface to MAC-based authentication. Note: This command is executed from interface configuration mode of each port. [Parameter] Parameter Description name None None [Factory default setting] Parameter Factory default setting name None None [Value setting range]...
Page 314 dot1x control-direction {both | in} Configure the packet control operation in an unauthorized status. Note: This command is executed from interface configuration mode of each port. [Parameter] Parameter Description name both In the unauthorized status, transmitting and receiving packets through the target port are not executed on this device.
Page 315 dot1x mac-based init [<MAC>] Initialize the authentication status of entire ports or supplicants. Note: This command is executed from interface configuration mode of each port. [Parameter] Parameter Description name <MAC> Specify the MAC address of supplicants for which authentication is initialized (optional). [Factory default setting] Parameter Factory default setting...
Page 316 dot1x mac-based re-authenticate [<MAC>] Initialize the re-authentication status of the supplicant. Note: This command is executed from interface configuration mode of each port. [Parameter] Parameter Description name [<MAC>] Only specify to specific supplicants (optional). [Factory default setting] Parameter Factory default setting name None None...
Page 317 dot1x re-authentication [<MAC>] Enable periodic re-authentication for the supplicant. no dot1x re-authentication [<MAC>] Disable periodic re-authentication for the supplicant. Note: This command is executed from interface configuration mode of each port. [Parameter] Parameter Description name [<MAC>] Only specify to specific supplicants (optional). [Factory default setting] Parameter Factory default setting...
Page 318 dot1x eap-request interval <sec> Configure the transmission interval (in minutes) of EAP Request sent to unauthorized MAC address. [Parameter] Parameter Description name <sec> Configure the transmission interval (in minutes) of EAP Request. [Factory default setting] Parameter Factory default setting name <sec>...
Page 319 dot1x eap-request Enable the transmission of EAP Request. no dot1x eap-request Disable the transmission of EAP Request. Note: This command is executed from interface configuration mode of each port. [Parameter] Parameter Description name None None [Factory default setting] Parameter Factory default setting name None None...
Page 320 dot1x forceAuthorized mac <MAC> mask-bit <mask-len> auth-mode {authorized | unauthorized} portlist <portlist> Add forced authentication MAC address. no dot1x forceAuthorized mac <MAC> Delete forced authentication MAC address. [Parameter] Parameter Description name <MAC> Specify target MAC address for forced authentication. <mask-len> Specify the mask length of specified MAC address.
Page 321 None None dot1x unauthorized age-out time <sec> Configure the age timeout (in seconds) of the unauthorized MAC address table to which EAP Request is sent. [Parameter] Parameter Description name <sec> Configure the age timeout (in seconds) of the unauthorized MAC address table. [Factory default setting] Parameter Factory default setting...
Page 322 dot1x unauthorized mac <MAC> <interface name> Add MAC address to the unauthorized MAC address table. [Parameter] Parameter Description name <MAC> Specify the target MAC address. <interface Specify the target interface name. name> [Factory default setting] Parameter Factory default setting name None None [Value setting range]...
Page 323 <Configuration example> Overview: Change the IEEE802.1X authentication method for Port 1 to MAC-based authentication. Enable the EAP Request transmission function. 1. Move to the interface configuration mode for Port 1. 2. Set the IEEE802.1X authentication method for Port 1 to MAC- based authentication.
Page 324: Mac Authentication Configuration
4.13. MAC Authentication Configuration Configure for MAC authentication function in "Global configuration mode." Display the basic information by entering "show mac-authentication" in "Privileged mode." MAC authentication enable command M24eGi(config)# mac-authentication MAC authentication disable command M24eGi(config)# no mac-authentication MAC authentication and authentication block time configuration command M24eGi(config)# mac-authentication auth-fail block-time <sec>...
Page 325 <Setting display example> The following is an execution example of the MAC authentication configuration display command. M24eGi> enable M24eGi# show mac-authentication MAC Address Format for RADIUS Username Case : Upper Delimiter : Hyphen Delimited Characters : 2 RADIUS Password Type : MAC Address Manual Password M24eGi#...
Page 326 Indicates using the same string as MAC address. (factory default setting) Manual Indicates using an arbitrary fixed string. Manual Password Displays a fixed string sent as a password when "RADIUS Password Type" is set to "Manual."...
Page 327 show mac-authentication Displays the MAC authentication configuration. [Parameter] Parameter Description name None None [Factory default setting] Parameter Factory default setting name None None [Value setting range] Parameter Setting range name None None [Instructions] Parameter Instruction name None None...
Page 328 mac-authentication Enable the MAC authentication function. no mac-authentication Disable the MAC authentication function. [Parameter] Parameter Description name None None [Factory default setting] Parameter Factory default setting name None None [Value setting range] Parameter Setting range name None None [Instructions] Parameter Instruction name None...
Page 329 mac-authentication auth-fail block-time <sec> Displays the time period (in seconds) before authentication process is accepted again after MAC authentication fails. [Parameter] Parameter Description name <sec> Specify the time period (in seconds) before authentication process is accepted. [Factory default setting] Parameter Factory default setting name <sec>...
Page 330 mac-authentication mac-format case {upper | lower} Specify upper or lower case for MAC address sent to RADIUS server as a user name when RADIUS server is used for MAC authentication. [Parameter] Parameter Description name {upper | Specify upper or lower case. lower} upper Indicates upper case.
Page 331 mac-authentication mac-format delimiter {hyphen | colon | dot | none} Specify the type of delimiter in MAC address sent to RADIUS server as a user name when RADIUS server is used for MAC authentication. [Parameter] Parameter Description name {hyphen | Specify the type of delimiter.
Page 332 mac-authentication mac-format delimited-char-num {2 | 4 | 6} Specify the type of delimiter in MAC address sent to RADIUS server as a user name when RADIUS server is used for MAC authentication. [Parameter] Parameter Description name {2 | 4 | 6} Specify the type of delimiter.
Page 333 mac-authentication password type {mac | manual} Configure the type of a password string sent to RADIUS server when using RADIUS server for MAC authentication. [Parameter] Parameter Description name {mac | Indicates the type of a password string sent to manual} RADIUS server.
Page 334 mac-authentication password manual <string> Configure the fixed string sent to RADIUS server as a password when using RADIUS server for MAC authentication. no mac-authentication password manual Clear the configuration of the fixed string. [Parameter] Parameter Description name <string> Specify the fixed string. [Factory default setting] Parameter Factory default setting...
Page 335 mac-authentication port <portlist> Configure the target port for MAC authentication. no mac-authentication port Clear the target port for MAC authentication. [Parameter] Parameter Description name <portlist> Specify the target port for MAC authentication. [Factory default setting] Parameter Factory default setting name <portlist>...
Page 336 <Configuration example 1> Overview: Enable MAC authentication for Port 1 to 2. Only allow a specific terminal registered to local MAC database to communicate with VLAN1. Isolate the unregistered terminal to VLAN 100. 1. Move to the interface configuration mode for Port 1, 2. 2.
Page 337 <Configuration example 2> Overview: Enable MAC authentication for Port 1 to 2. Isolate the unregistered terminal to VLAN 100. Specify the authentication destination to RADIUS server. Send the user name and password in the format of "XX-XX-XX-XX-XX- XX" for both of them. Note: Create the following user account to RADIUS server to have it assigned to VLAN 1 after authentication.
Page 338: Web Authentication Configuration
4.14. WEB Authentication Configuration Configure for WEB authentication function in "Global configuration mode." Display the basic information by entering "show web-authentication" in "Privileged mode." WEB authentication enable command M24eGi(config)# web-authentication WEB authentication disable command M24eGi(config)# no web-authentication WEB authentication and authentication block time configuration command M24eGi(config)# web-authentication auth-fail block-time <sec>...
Page 339 Temporary use DHCP server function enable command M24eGi(config)# web-authentication dhcp enable Temporary use DHCP server function disable command M24eGi(config)# web-authentication dhcp disable Delivery start IP address configuration command M24eGi(config)# web-authentication dhcp start-ip <IP> Delivery IP address count configuration command M24eGi(config)# web-authentication dhcp ip-num <ip-num>...
Page 340 <Setting display example 1> The following is an execution example of the WEB authentication configuration display command. M24eGi> enable M24eGi# show web-authentication Virtual IP Address : 0.0.0.0 HTTP Port Number : 80 Redirect URL M24eGi# Fig. 4-14-1 Execution example of the WEB authentication configuration display command Virtual IP Address Displays the virtual IP address used in the WEB...
Page 341 <Setting display example 2> The following is an execution example of the WEB authentication page view configuration display command. M24eGi> enable M24eGi# show web-authentication contents Page Title Logo Data : None User Name String : User Name Password String : Password Message Description : M24eGi#...
Page 342 are disabled.) <a> <b> <i> <u> <center> <right> <left> <font> <h1> to <h5> <div> <span> <br> <p>...
Page 343 <Setting display example 3> The following is an execution example of the temporary use DHCP server configuration display command. M24eGi> enable M24eGi# show web-authentication dhcp Temporary DHCP Server Status : Disabled DHCP Lease Time : 30 seconds Start of Leased IP Address : 0.0.0.0 Number of Leased IP Address : 32 Default Router Address...
Page 344 show web-authentication Displays the WEB authentication configuration. show web-authentication contents Displays WEB authentication login screen page configuration. show web-authentication dhcp Displays the temporary use DHCP server configuration. [Parameter] Parameter Description name None None [Factory default setting] Parameter Factory default setting name None None...
Page 345 web-authentication Enable the WEB authentication function. no web-authentication Disable the WEB authentication function. [Parameter] Parameter Description name None None [Factory default setting] Parameter Factory default setting name None None [Value setting range] Parameter Setting range name None None [Instructions] Parameter Instruction name None...
Page 346 web-authentication auth-fail block-time <sec> Displays the time period (in seconds) before authentication process is accepted again after WEB authentication fails. [Parameter] Parameter Description name <sec> Specify the time period (in seconds) before authentication process is accepted. [Factory default setting] Parameter Factory default setting name <sec>...
Page 347 web-authentication port <portlist> Configure the target port for WEB authentication. no web-authentication port Clear the target port for WEB authentication. [Parameter] Parameter Description name <portlist> Specify the target port for WEB authentication. [Factory default setting] Parameter Factory default setting name <portlist>...
Page 348 web-authentication virtual-ip <IP> Configure the virtual IP address used in the WEB authentication login screen. no web-authentication virtual-ip Clear the IP address configuration. [Parameter] Parameter Description name <IP> Specify the virtual IP address used in the WEB authentication login screen. [Factory default setting] Parameter Factory default setting...
Page 349 web-authentication web-port http <l4-port> Configure the HTTP port number used in the WEB authentication login screen. no web-authentication web-port Initialize the HTTP port number configuration. [Parameter] Parameter Description name <l4-port> Specify the HTTP port number used in the WEB authentication login screen. [Factory default setting] Parameter Factory default setting...
Page 350 web-authentication redirect <URL> Configure URL viewed as redirection occurs after successful WEB authentication. no web-authentication redirect Clear the Redirect URL configuration. [Parameter] Parameter Description name <URL> Specify the virtual IP address used in the WEB authentication login screen. [Factory default setting] Parameter Factory default setting name...
Page 351 web-authentication contents title <string> Configure the title string of the WEB authentication login screen. no web-authentication contents title Clear the title string. [Parameter] Parameter Description name <string> Specify the title string. [Factory default setting] Parameter Factory default setting name <string> None [Value setting range] Parameter...
Page 352 web-authentication contents username <string> Configure the string in the user name input field in the WEB authentication login screen. no web-authentication contents username Clear the string in the user name input field. [Parameter] Parameter Description name <string> Specify a string in the user name input field. [Factory default setting] Parameter Factory default setting...
Page 353 web-authentication contents password <string> Configure the string in the password input field in the WEB authentication login screen. no web-authentication contents password Clear the string in the password input field. [Parameter] Parameter Description name <string> Specify a string in the password input field. [Factory default setting] Parameter Factory default setting...
Page 354 copy tftp <server IP> <filename> logo-data Upload the logo (image) data shown in the WEB authentication login screen via TFTP server. no web-authentication contents logo-data Clear the logo data. [Parameter] Parameter Description name <server IP> Specify the IP address of TFTP server with the logo data stored.
Page 355 web-authentication contents message <string> Configure a string in the message field in the WEB authentication login screen. no web-authentication contents message Clear the string in the message field. [Parameter] Parameter Description name <string> Specify a string in the message field. [Factory default setting] Parameter Factory default setting...
Page 356 web-authentication contents description <string> Configure a string in the description field in the WEB authentication login screen. no web-authentication contents description Clear the string in the message field. [Parameter] Parameter Description name <string> Specify a string in the description field. [Factory default setting] Parameter Factory default setting...
Page 357 web-authentication dhcp enable Enable temporary use DHCP server. web-authentication dhcp disable Disable temporary use DHCP server. [Parameter] Parameter Description name None None [Factory default setting] Parameter Factory default setting name None None [Value setting range] Parameter Setting range name None None [Instructions] Parameter...
Page 358 web-authentication dhcp start-ip <IP> Configure start address of leased IP address. [Parameter] Parameter Description name <IP> Specify start address of leased IP address. [Factory default setting] Parameter Factory default setting name <IP> 0.0.0.0 [Value setting range] Parameter Setting range name <IP>...
Page 359 web-authentication dhcp ip-num <ip-num> Configure the number of leased IP addresses. [Parameter] Parameter Description name <ip-num> Specify the number of leased IP addresses. [Factory default setting] Parameter Factory default setting name <ip-num> [Value setting range] Parameter Setting range name <ip-num> 1 to 64 [Instructions] Parameter...
Page 360 web-authentication dhcp lease-time <sec> Configure IP address lease time (in seconds). [Parameter] Parameter Description name <sec> Specify IP address lease time (in seconds). [Factory default setting] Parameter Factory default setting name <sec> [Value setting range] Parameter Setting range name <sec> 30 to 60 [Instructions] Parameter...
Page 361 web-authentication dhcp default-router <IP> Configure default router IP address notified in DHCP. no web-authentication dhcp default-router Clear the default router configuration. [Parameter] Parameter Description name <IP> Specify default router IP address notified in DHCP. [Factory default setting] Parameter Factory default setting name <IP>...
Page 362 web-authentication dhcp dns <IP> Configure IP address of DNS server notified in DHCP. no web-authentication dhcp dns Clear the configuration of DNS server. [Parameter] Parameter Description name <IP> Specify IP address of DNS server notified in DHCP. [Factory default setting] Parameter Factory default setting name...
Page 363 <Configuration example> Overview: Enable WEB authentication for Port 1 to 2. Only allow users registered to local user database to communicate with VLAN1. Isolate the unregistered terminal to VLAN 100. 1. Move to the interface configuration mode for Port 1, 2. 2.
Page 364: Led Base Mode Configuration
4.8. LED Base Mode Configuration Configure the LED base mode in "Global configuration mode." Confirm the configuration information by executing the "show led base-mode" command in "Privileged mode." Command to show the LED base mode M24eGi# show led base-mode Command to configure the LED base mode M24eGi(config)# led base-mode <status l eco>...
Page 365 <Command Entry Example> An example of executing the command to show the LED base mode is shown below. M24eGi> enable M24eGi# show led base-mode System LED base-mode: Status M24eGi# Fig. 4-8-1 Example of executing the command to show the LED base mode (1) System LED base-mode Shows the LED base mode.
Page 366 show led base-mode Shows the LED base mode configuration. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None [Note] Parameter name Note None None...
Page 367 led base-mode <status | eco> Configures the LED base mode. [Parameter] Parameter name Description <status | eco> Configure the LED base mode. status Automatically Switching Hubs to the status mode if the LED display change button is not pressed for 1 minute.
Page 368 <Configuration Example> Overview: Change the LED base mode. (1) Set to the eco mode. M24eGi> enable M24eGi# configure M24eGi(config)# led base-mode eco M24eGi(config)# exit M24eGi# Fig. 4-8-2 Example of the LED base mode configuration Note: Change in configuration of the LED base mode is automatically saved.
Page 369: Line Configuration
4.9. Line Configuration Configure the settings related to loop detection function and the power saving mode in "Interface configuration mode." 4.9.1. Loop Detection Configuration Enable or disable the loop detection function and configure the auto- recovery in "Interface configuration mode." Confirm the loop history by executing the "show line loopback history"...
Page 370 <Command Entry Example> An example of executing the command to show the loop history is shown below. M24eGi> enable M24eGi# show line loopback history Jan 01 06:34:17 kern.info [LINE-PROTOCOL] The loop detected on port 1. Jun 01 06:35:17 kern.info [LINE-PROTOCOL] Port1 auto recovery. Jan 01 10:39:26 kern.info [LINE-PROTOCOL] The loop detected between port 2 and port 3.
Page 371 show line loopback history [tail <line>] Shows the log of events occurred to the Switching Hub. [Parameter] Parameter name Description <line> Set the number of lines to be displayed from the log end. [Factory Default Setting] Parameter name Factory default setting None None [Setting Range]...
Page 372 line loopback Enables the loop detection/shut-off function. no line loopback Disables the loop detection/shut-off function. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None <Switch-M24eGi> Ports 1 to 22: line loopback Ports 23 to 24: no line loopback <Switch-M16eGi>...
Page 373 line loopback mode <block l shutdown> Configures the loop detection mode. [Parameter] Parameter name Description <block l Configures the loop detection mode. shutdown> block When the Switching Hub detects loop, the ports are blocked. (Factory default setting) shutdown When the Switching Hub detects loop, the ports are shut down.
Page 374 line loopback shutdown <sec> Enables the auto-recovery function. no line loopback shutdown Disables the auto-recovery function. [Parameter] Parameter name Description <sec> Set the time between the loop shut-off and the auto-recovery. The unit is seconds. [Factory Default Setting] Parameter name Factory default setting <sec>...
Page 375 <Configuration Example> Overview: Configure the loop detection/shut-off function and the auto-recovery function. (1) Move to the interface configuration mode for Port 1. (2) Enable the loop detection/shut-off function of Port 1. (3) Set the auto-recovery time to 300 seconds, which is the period after detecting a loop on Port 1 and shutting down the port.
Page 376: Configuration Of Mno Series Power Saving Mode
4.9.2. Configuration of MNO Series Power Saving Mode Configure the MNO series power saving mode in "Interface configuration mode." The MNO series power saving mode is our unique function for automatically detecting the port connection status and minimizing power consumption if not connected. This Switching Hub supports two modes: the Half mode for giving priority to connectivity with other device, and the Full mode for minimizing power consumption.
Page 377 line power-saving <disable | full | half> Configures the MNO series power saving mode. [Parameter] Parameter name Description <disable | full | Configure the MNO series power saving mode. half> disable The MNO series power saving mode is disabled. full The MNO series power saving mode is enabled.
Page 378 <Configuration Example> Overview: Enable the MNO series power saving mode on all ports. (1) Move to the interface configuration mode for Ports 1 to 24. (2) Enable the MNO series power saving mode on Ports 1 to 24. M24eGi> enable M24eGi# configure M24eGi(config)# interface gi0/1-24 M24eGi(config-if)# line power-saving full...
Page 379: Line Configuration Display
4.9.3. Line Configuration Display Confirm the configuration of loop detection/shut-off function and MNO series power saving mode in "Interface configuration mode." Command to show the configuration of MNO series power saving mode M24eGi# show line configuration...
Page 380 <Command Entry Example> An example of executing the command to show the MNO series power saving mode is shown below. M24eGi> enable M24eGi# show line configuration Interface Status Mode Loop detection Power-saving --------- -------- ------------ ----------------- ------------- gi0/1 Down Auto Enabled Half gi0/2...
Page 381 (3) Mode Shows the port communication speed and duplex mode (full or half). Auto The auto negotiation function is enabled when the port link is down. While the link is up, the string enclosed in parentheses shows the communication speed and full-duplex/half-duplex mode.
Page 382: Port Group Configuration
4.10. Port Group Configuration Configure port grouping in "Global configuration mode." If a port group is configured, ports designated as members of the port group can communicate only among member ports in the same group. Each port can be assigned to multiple port groups. Confirm the configuration information by executing the "show port-group"...
Page 383 <Command Entry Example> An example of executing the command to show the port group information is shown below. M24eGi> enable M24eGi# show port-group Total Groups : 3 Group ID Group Name Group Member Status -------- ---------------- --------------------------------- -------- Group_1 Enabled Group_2 Disabled M24eGi#...
Page 384 show port-group Shows the port group configuration. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None [Note] Parameter name Note None None...
Page 385 port-group <ID> name <Name> member <Portlist> Creates a port group. no port-group <ID> Deletes a port group. [Parameter] Parameter name Description <ID> Set a port group ID. You can set up to 256 port groups. <Name> Set a port group name. <PortList>...
Page 386 [Note] Parameter name Note <ID> None <Name> None <PortList> None...
Page 387 port-group <ID> enable Enables port grouping. no port-group <ID> enable Disables port grouping. [Parameter] Parameter name Description <ID> Specify the port group ID. [Factory Default Setting] Parameter name Factory default setting <ID> port-group <ID> enable Port grouping is enabled at the time of configuration.
Page 388 <Configuration Example 1> Overview: Set up port group 1 and port group 2. Port 3 is to be the shared port. Then, disable the port group 2. (1) Set up port group 1 (member ports: 1 to 3). (2) Set up port group 2 (member ports: 2 to 4). (3) Disable the port group 2.
Page 389: Statistical Information Display
5. Statistical Information Display Show the statistical information of packet counters in "Privileged mode." Command to show the statistical information (normal) M24eGi# show interface counters [IFNAME] Command to show the statistical information (error) M24eGi# show interface counters error [IFNAME]...
Page 390 <Command Entry Example> Displayed below are the normal counters and the error counters for the port 24. M24eGi> enable M24eGi# show interface counters gi0/24 Interface GigabitEthernet0/24 is active, which has statistics Inbound: Total Octets: 135616937 BroadcastPkts: 802649, MulticastPkts: 195421 UnicastPkts: 5019, Non-unicastPkts: 998008 Outbound: Total Octets: 1932746 UnicastPkts: 27577, Non-unicastPkts: 62...
Page 391 <Command Entry Example> Displayed below are the counters for the port 24 when jumbo frame is enabled. M24eGi> enable M24eGi# show interface counters gi0/24 Interface GigabitEthernet0/24 is active, which has statistics Inbound: Total Octets: 135616937 BroadcastPkts: 802649, MulticastPkts: 195421 UnicastPkts: 5019, Non-unicastPkts: 998008 Outbound: Total Octets: 1932746 UnicastPkts: 27577, Non-unicastPkts: 62...
Page 392 show interface counters [IFNAME] Shows the statistical information (normal). [Parameter] Parameter name Description [IFNAME] Specify the interface name. [Factory Default Setting] Parameter name Factory default setting [IFNAME] None [Setting Range] Parameter name Setting range [IFNAME] <Switch-M24eGi> gi0/1 to gi0/24 (A range can be specified with a hyphen.) None (All ports are displayed.) <Switch-M16eGi>...
Page 393 show interface counters error [IFNAME] Shows the statistical information (error). [Parameter] Parameter name Description [IFNAME] Specify the interface name. [Factory Default Setting] Parameter name Factory default setting [IFNAME] None [Setting Range] Parameter name Setting range [IFNAME] <Switch-M24eGi> gi0/1 to gi0/24 (A range can be specified with a hyphen.) None (All ports are displayed.) <Switch-M16eGi>...
Page 394: Configuration File Transfer
6. Configuration File Transfer You can transfer the configuration information of this Switching Hub to TFTP server or retrieve it from TFTP server in "Privileged mode." Command to transfer the configuration file M24eGi# copy running-config tftp <ip-address> <filename> Command to retrieve the configuration file M24eGi# copy tftp <ip-address>...
Page 395 copy running-config tftp <ip-address> <filename> Transfers the configuration information of this Switching Hub to TFTP server using a specified file name. copy tftp <ip-address> <filename> running-config Retrieves the configuration file with a specified name from a specified TFTP server. [Parameter] Parameter name Description <ip-address>...
Page 396 <Configuration Example> Overview: Transfer the current configuration information to a TFTP server whose IP address is 192.168.1.1, specifying the file name as "switch-1.cfg". (To cancel the TFTP transfer process, press Ctrl+C during transfer.) M24eGi> enable M24eGi# copy running-config tftp 192.168.1.1 switch-1.cfg M24eGi# Fig.
Page 397: Firmware Upgrade
7. Firmware Upgrade You can upgrade the firmware version of this Switching Hub in "Privileged mode." Firmware upgrade command M24eGi# copy tftp <ip address> <file_name> image...
Page 398 copy tftp <ip address> <file_name> image Upgrades the firmware version, and automatically reboots. If the reboot timer is set as in section 8.3, the reboot timer starts and the Switching Hub is rebooted after the set time. [Parameter] Parameter name Description <ip-address>...
Page 399 <Configuration Example> Overview: Upgrade the firmware version. (1) Upgrade the firmware with the file named pn28240iv10000.rom on a TFTP server whose IP address is 192.168.1.1. (2) It is an indicator showing that download is in progress. (To cancel the TFTP transfer process, press Ctrl+C during transfer.) (3) The downloaded firmware is verified and saved.
Page 400: Reboot
8. Reboot You can perform a reboot of the Switching Hub in "Privileged mode." Reboot type can be selected from the following three options: "Normal," "Restore to the factory default settings," and "Restore to the factory default settings except for IP address." 8.1.
Page 401 reboot normal Reboots the Switching Hub. [Parameter] Parameter name Description normal Specify an option for the reboot type of the Switching Hub. normal Reboot [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None [Note]...
Page 402 <Configuration Example> Overview: Perform a reboot. (1) Execute the reboot command. (2) In execution confirmation, press "y" to continue, and "n" to cancel. M24eGi> enable M24eGi# reboot default Are you sure to reboot the system?(Y/N) y Fig. 8-1-1 Example of reboot...
Page 403: Restoration To Factory Default Settings
8.2. Restoration to Factory Default Settings You can entirely initialize saved configuration and system information, and restore to the factory default settings in "Global configuration mode." Reboot timer configuration command M24eGi(config)# reboot {default | default-except-ip}...
Page 404 reboot {default | default-except-ip} After the system is rebooted, initializes all stored configuration and system information and restores them to the factory default settings. [Parameter] Parameter name Description { default | Specify an option for the reboot type of the default-except-ip} Switching Hub.
Page 405 <Configuration Example> Overview: Initialize the configuration to restore to the factory default settings. (1) Restore to the factory default settings. (2) In execution confirmation, press "y" to continue, and "n" to cancel. M24eGi> enable M24eGi# reboot default Are you sure to reboot the system?(Y/N) y Fig.
Page 406: Reboot Timer Configuration
8.3. Reboot Timer Configuration You can reboot the Switching Hub after a set time from execution of the reboot command by setting the reboot timer in advance. Reboot timer configuration command M24eGi(config)# reboot timer <time>...
Page 407 reboot timer <time> Changes the time period between execution of the reboot command and reboot of the Switching Hub. [Parameter] Parameter name Description <time> Set the time until the Switching Hub is rebooted by seconds. [Factory Default Setting] Parameter name Factory default setting <time>...
Page 408 <Configuration Example> Overview: Set the time until the Switching Hub reboot to 10 seconds, and execute the reboot. (1) Set the reboot timer to 10 seconds. (2) Execute the reboot command. (3) Press "y" in reboot confirmation. (4) The Switching Hub is rebooted after 10 seconds according to the reboot timer.
Page 409: Ping Execution
9. Ping Execution You can confirm connectivity using the ping command. Ping command ping <IP address> [-n <count>] [-w All modes <timeout>]...
Page 410 ping <IP address> [-n <count>] [-w <timeout>] Confirm connectivity to specified IP address. [Parameter] Parameter name Description <IP address> Specify the IP address of a target host. <count> Set the number of ping requests to send. <timeout> Set the timeout in seconds. [Factory Default Setting] Parameter name Factory default setting...
Page 411 <Execution Example 1> Overview: Test connectivity to the host. (1) Test connectivity to the host whose IP address is 192.168.1.10 five times, setting the timeout to 2 seconds. (2) Request number and response time are displayed. (3) Connectivity test results are displayed. M24eGi>...
Page 412: System Log Display
10. System Log Display Display or delete the system log in "Privileged mode." Command to show the system log M24eGi# show syslog [tail <line>] Command to delete the system log M24eGi# syslog clear...
Page 413 <Command Entry Example> Ten most recent system logs are displayed. M24eGi> enable M24eGi# show syslog tail 10 Jan 01 09:01:55 kern.info [SYSTEM] Reboot the system! Jan 01 09:00:12 kern.info [PORT] Port-1 link-up. Jan 01 09:00:38 kern.info [SNTP] SNTP first update to 2019/09/30 15:00:53. Jun 28 15:00:55 kern.info [SYSTEM] Login from console.
Page 414 (4) Shows the log classification. Counter A log relating to Counter Loop Detect A log relating to Loop Detct Port Monitoring A log relating to PortMonitering RADIUS A log relating to RADIUS SNTP A log relating to SNTP Storm A log relating to Storm System A log relating to System A log relating to DDM...
Page 415 Indicate that cannot send the packet. Cannot send the packets. (TFTP) Indicate that cannot send the packet. Loop Detect The loop detected between port xx and yy. Indicates that a loop was detected between Port A and Port Error The loop detected port xx Indicates that a loop was detected on Port X.
Page 416 Detect the storm. (Broadcast) Indicates that broadcast storm occurred. System System Cold Start. Indicates that the power of the Switching Hub was turned Port-X Link-up. Indicates that Port-X was linked up. Port-X Link-down. Info Indicates that Port-X was linked down. Connect SFP module(Port-x).
Page 417 Indicates a login from the host with IP address xxx.xxx.xxx.xxx via TELNET. Login from SSH (IP:xxx.xxx.xxx.xxx). Indicates a login from the host with IP address xxx.xxx.xxx.xxx via SSH. Login Failed from console. Indicates that the login operation was executed via console, and was failed.
Page 418 Changed user name. Indicates that username was changed. Chagned password. Indicates that password was changed. CPU drop the packet. (xx Bytes) Error Indicates that the packet to CPU was dropped. Runtime code changes. Indicates that runtime code was changed. Configuration file download. Indicates that the receiving the configuration from TFTP server, and was applied to running-config.
Page 419 Duplication of IP address: IP ADDRESS (MAC ADDRESS). Indicates that IP address of Switching Hub is already used and conflicting. Logout by user Indicates that connection via console was terminated by user. Logout by user(IP: IP ADDRESS). Indicates that connection via TELENT or SSH was terminated by user.
Page 420 show syslog [tail <line>] Shows the log of events occurred to the Switching Hub. [Parameter] Parameter name Description <line> Set the number of lines to be displayed from the log end. [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name...
Page 421 syslog clear Clears all logs. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None [Note] Parameter name Note None None...
Page 422 <Example of use> Overview: Display system logs of the Switching Hub, and then delete the logs. (1) Display the system logs of the Switching Hub. (2) Delete the system logs of the Switching Hub. (3) Confirm that the system logs of the Switching Hub are deleted. M24eGi>...
Page 423: Save And Display Of Configuration Information
11. Save and Display of Configuration Information Save and display the configuration information in "Privileged mode." Command to show the running configuration information M24eGi# show running-config Command to show the saved configuration information M24eGi# show startup-config Command to save the configuration information M24eGi# copy running-config startup-config...
Page 424 copy running-config startup-config Saves the configuration information. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None [Note] Parameter name Note None None...
Page 425 show running-config Shows the configuration information that is currently running. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None [Note] Parameter name Note None None...
Page 426 show startup-config Shows the saved configuration information. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None [Note] Parameter name Note None None...
Page 427 <Configuration Example> Overview: Save the current configuration, and then display the saved configuration information. (1) Save the current configuration to the Switching Hub. (2) Display the saved configuration information. M24eGi> enable M24eGi# copy running-config startup-config Configuration saved to startup_config M24eGi# show startup-config ! -- M24eGi start of config file -- ! -- Software Version : x.x.x.xx –...
Page 428: Obtaining Technical Support Information
12. Obtaining Technical Support Information Obtain the technical support information in "Privileged mode." It is useful if obtained before making inquiry. It is recommended to set the terminal length to "0," because display contents are extremely large. Command to show the technical support information M24eGi# show tech...
Page 429 show tech Obtains the technical support information. [Parameter] Parameter name Description None None [Factory Default Setting] Parameter name Factory default setting None None [Setting Range] Parameter name Setting range None None [Note] Parameter name Note None None...
Page 430 <Configuration Example> Obtain the technical support information. M24eGi> enable M24eGi# show tech ***** System clock ***** ･･･ ***** System CPU load ***** ･･･ ***** BSD Syslog Protocol (RFC-3164) ***** ･･･ ***** System running configuration ***** ･･･ ***** System information ***** ･･･...
Page 431: Appendix A. Specifications
Appendix A. Specifications Refer to "Operation Manual — Menu Screens" for your Switching Hub to read the specifications.
Page 432: Appendix B. Easy Ip Address Setup Function
* You can check the current settings because the list is displayed even after the time limit elapses. - The following function of the software of Panasonic System Networks Co., Ltd. cannot be used. - Auto setup function * Please contact each manufacturer for information about network cameras.
Page 433: Appendix C. Example Of Network Configuration Using Loop Detection Function And Its Precautions
Appendix C. Example of Network Configuration using Loop Detection Function and Its Precautions Example of configuration using loop detection function By using the loop detection function, you can prevent a loop failure that is likely to be caused in a downstream Switching Hub that the user directly uses.
Page 434 Precautions in using loop detection function – Disable loop detection at upstream port(s) If a network is consisted of only Switching Hubs equipped with loop detection function, an upstream switching hub may detect on ahead and block a loop occurred in a downstream switching hub. This may block all communications to the downstream switching hub.
Page 435: Appendix D. Mib List
Appendix D. MIB List The MIB list of this Switching Hub is as follows. <port_num> is a port number. <ip_address> is an IP address. 1.1. system group MIB object Access Identifier Remarks sysDescr sysDescr.0 sysObjectID sysObjectID.0 sysUpTime sysUpTimeInstance.0 sysContact sysContact.0 sysName sysName.0 sysLocation...
Page 436 ifSpecific ifSpecific.<port_num>...
Page 437 1.3. IP group MIB object Access Identifier ipForwarding ipForwarding.0 ipDefaultTTL ipDefaultTTL.0 ipInReceives ipInReceives.0 ipInHdrErrors ipInHdrErrors.0 ipInAddrErrors ipInAddrErrors.0 ipInUnknownProtos ipInUnknownProtos.0 ipInDiscards ipInDiscards.0 ipInDelivers ipInDelivers.0 ipOutRequests ipOutRequests.0 ipOutDiscards ipOutDiscards.0 ipOutNoRoutes ipOutNoRoutes.0 ipReasmTomeout ipReasmTomeout .0 ipReasmReqds ipReasmReqds.0 ipReasmOKs ipReasmOKs.0 ipReasmFails ipReasmFails.0 ipFragOKs ipFragOKs.0 ipFragFails ipFragFails.0 ipFragCreates...
Page 438 tcpConnLocalAddress tcpConnLocalPort tcpConnRemAddress tcpConnRemPort 1.5. UDP group MIB object Access Identifier udpInDatagrams udpInDatagrams.0 udpNoPorts udpNoPorts.0 udpInErrors udpInErrors.0 udpOutDatagrams udpOutDatagrams.0 udpLocalAddress udpLocalPort 1.6. SNMP group MIB object Access Identifier snmpInPkts snmpInPkts.0 snmpOutPkts snmpOutPkts.0 snmpInBadVersions snmpInBadVersions.0 snmpInASNParseErrs snmpInASNParseErrs.0 snmpInTotalReqVars snmpInTotalReqVars.0 snmpInTotalSetVars snmpInTotalSetVars.0 snmpInGetRequests snmpInGetRequests.0 snmpInGetNexts...
Page 439 dot1dTpPortInFrames dot1dTpPortInFrames.<port_num> dot1dTpPortOutFrames dot1dTpPortOutFrames.<port_num> dot1dTpPortInDiscards dot1dTpPortInDiscards.<port_num> 2.1. Supporting trap Trap description Access Identifier Link Up/Down Login Failure Authentication Failure ObjectID: mnoLoopDetection 1.3.6.1.4.1.396.5.5.2.1 ObjectID: mnoLoopRecovery 1.3.6.1.4.1.396.5.5.2.2 mnoDdmAlarmTrap ObjectID: 1.3.6.1.4.1.396.5.5.1.4.0.1 mnoDdmWarningTrap ObjectID: 1.3.6.1.4.1.396.5.5.1.4.0.2...
Page 440: Troubleshooting
Troubleshooting If you find any problem, please take the following steps to check. 1. LED indicators * The POWER LED is not lit. - Is the power cord connected?  Please confirm that the power cord is securely connected to the power port.
Page 441: After-Sales Service
After-sales Service 1. Warranty card A warranty card is included in the operating instructions (paper) provided with this Switching Hub. Be sure to confirm that the date of purchase, shop (company) name, etc., have been entered in the warranty card and then receive it from the shop.
Page 442 Tel: (* You can check the version on the screen described in chapter 3 of this manual.) © Panasonic Life Solutions Networks Co., Ltd. 2019-2021 Panasonic Life Solutions Networks Co., Ltd. 2-12-7, Higashi-Shimbashi, Minato-ku, Tokyo Japan, 105-0021 URL: http://panasonic.co.jp/ls/plsnw/english/...

This manual is also suitable for:

Pn28160i Pn28240i

Panasonic PN28080i Operation Manual

1 Command Hierarchy

2 Displaying Basic Information

3 Basic Switch Configuration

4 Advanced Switch Configuration

5 Statistical Information Display

6 Configuration File Transfer

7 Firmware Upgrade

8 Reboot

9 Ping Execution

10 System Log Display

11 Save and Display of Configuration Information

12 Obtaining Technical Support Information

Appendix A. Specifications

Appendix B. Easy IP Address Setup Function

Appendix C. Example of Network Configuration Using Loop Detection Function and Its Precautions

Appendix D. MIB List

Quick Links

Related Manuals for Panasonic PN28080i

Summary of Contents for Panasonic PN28080i

This manual is also suitable for:

Table of Contents