Download Print this page

Enterasys Matrix 2G4072-52 Configuration Manual

Enterasys Matrix 2G4072-52 Configuration Manual

Firmware version 5.41.xx

Hide thumbs Also See for Matrix 2G4072-52:

Installation manual (70 pages)

page of 1422

/ 1422
Contents
Table of Contents
Bookmarks

Table of Contents

Advertisement

Quick Links

See also: Installation Manual

Enterasys Matrix

®

DFE-Platinum and Diamond Series

Configuration Guide

Firmware Version 5.41.xx

P/N

9033800-14 Rev.0C

Table of Contents

Advertisement

Chapters

Table of Contents

Need help?

Need help?

Do you have a question about the Matrix 2G4072-52 and is the answer not in the manual?

Questions and answers

Summary of Contents for Enterasys Matrix 2G4072-52

Page 1 Enterasys Matrix ® DFE-Platinum and Diamond Series Configuration Guide Firmware Version 5.41.xx 9033800-14 Rev.0C...
Page 3 Enterasys Networks reserves the right to make changes in specifications and other information contained in this document and its web site without prior notice. The reader should in all cases consult Enterasys Networks to determine whether any such changes have been made.
Page 4 CAREFULLY READ THIS LICENSE AGREEMENT. This document is an agreement (“Agreement”) between the end user (“You”) and Enterasys Networks, Inc. on behalf of itself and its Affiliates (as hereinafter defined) (“Enterasys”) that sets forth Your rights and obligations with respect to the Enterasys software program/firmware installed on the Enterasys product (including any accompanying documentation, hardware or media) (“Program”) in the package and prevails over any additional, conflicting or...
Page 5 52.227-19 (a) through (d) of the Commercial Computer Software-Restricted Rights Clause and its successors, and (iii) in all respects is proprietary data belonging to Enterasys and/or its suppliers. For Department of Defense units, the Program is considered commercial computer software in accordance with DFARS section 227.7202-3 and its successors, and use, duplication, or disclosure by the Government is subject to restrictions set forth herein.
Page 6 Enterasys and, accordingly, You hereby agree to maintain complete books, records and accounts showing (i) license fees due and paid, and (ii) the use, copying and deployment of the Program. You also grant to Enterasys and its authorized representatives, upon reasonable notice, the right to audit and examine during Your normal business hours,...
Page 7: Table Of Contents
Contents Figures ............................xi Tables............................xiii ABOUT THIS GUIDE Using This Guide......................xvii Structure of This Guide ....................xviii Related Documents.......................xix Document Conventions....................xx INTRODUCTION Matrix DFE Series Features................1-1 Matrix Series CLI Overview................1-2 Device Management Methods ................ 1-3 Getting Help ....................1-3 STARTUP AND GENERAL CONFIGURATION Startup and General Configuration Summary ..........
Page 8 CONFIGURING DISCOVERY PROTOCOLS Overview ......................3-1 Discovery Protocols Command Set ..............3-1 3.2.1 Displaying Neighbors ..............3-1 3.2.2 Enterasys Discovery Protocol ............3-4 3.2.3 Cisco Discovery Protocol .............. 3-12 3.2.4 Link Layer Discovery Protocol and LLDP-MED ......3-25 PORT CONFIGURATION Port Configuration Summary................
Page 9 Contents Configuring Port Mirroring ................4-88 4.4.1 Supported Mirrors ................. 4-88 4.4.2 IDS Mirroring Considerations............4-89 4.4.3 Active Destination Port Configurations ......... 4-89 4.4.4 Setting Port Mirroring ..............4-90 Configuring LACP ..................4-95 4.5.1 LACP Operation................4-95 4.5.2 LACP Terminology................ 4-96 4.5.3 Matrix Series Usage Considerations..........
Page 10 Contents 802.1Q VLAN CONFIGURATION VLAN Configuration Summary ................ 7-1 7.1.1 Port Assignment Scheme ............... 7-2 7.1.2 Port String Syntax Used in the CLI ..........7-2 Process Overview: 802.1Q VLAN Configuration..........7-2 VLAN Configuration Command Set ..............7-3 7.3.1 Reviewing Existing VLANs.............. 7-3 7.3.2 Creating and Naming Static VLANs..........
Page 11 Contents LOGGING AND NETWORK MANAGEMENT 11.1 Process Overview: Network Management ............ 11-1 11.2 Logging And Network Management Command Set........11-2 11.2.1 Configuring System Logging............11-2 11.2.2 Monitoring Network Events and Status........11-26 11.2.3 Configuring SMON..............11-37 11.2.4 Configuring RMON..............11-44 11.2.5 Managing Switch Network Addresses and Routes .....
Page 12 Contents SECURITY CONFIGURATION 14.1 Overview of Security Methods ..............14-1 14.1.1 RADIUS Filter-ID Attribute and Dynamic Policy Profile Assignment ................... 14-3 14.2 Process Overview: Security Configuration............ 14-4 14.3 Security Configuration Command Set............14-5 14.3.1 Setting the Authentication Login Method ........14-5 14.3.2 Configuring RADIUS ..............
Page 13: Figures
Figures Figure Page Sample CLI Default Description ..................2-9 Matrix DFE-Platinum Startup Screen ................2-14 Performing a Keyword Lookup ..................2-15 Performing a Partial Keyword Lookup................2-15 Scrolling Screen Output ....................2-16 Abbreviating a Command....................2-17 Completing a Partial Command ..................2-17 Enabling the Switch for Routing ..................
Page 14 Figures xii Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 15: Tables
Tables Table Page Default Device Settings for Basic Switch Operation ............. 2-1 Default Device Settings for Router Mode Operation ............ 2-7 Basic Line Editing Emacs & vi Commands..............2-18 show system login Output Details ................2-26 show system lockout Output Details................2-34 show system Output Details ..................
Page 16 Tables 5-11 Basic SNMP Trap Configuration Command Set............5-64 show spantree Output Details ..................6-10 Port-Specific show spantree stats Output Details ............6-12 show vlan Output Details ....................7-5 show vlan interface Output Details ................7-17 show vlan constraint Output Details ................7-22 Command Set for Creating a Secure Management VLAN .........
Page 17 Tables 12-12 DHCP Command Modes ..................12-113 12-13 show ip dhcp server statistics Output Details ............12-140 13-1 RIP Configuration Task List and Commands ............. 13-2 13-2 OSPF Configuration Task List and Commands............13-31 13-3 show ip ospf database Output Details ..............13-64 13-4 show ip ospf interface Output Details ...............
Page 18 Tables xvi Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 19: About This Guide
About This Guide ® Welcome to the Enterasys Enterasys Matrix DFE-Platinum and Diamond Series Configuration Guide. This manual explains how to access the device’s Command Line Interface (CLI) and how to use it to configure Matrix Series switch/router devices. Important Notice Depending on the firmware version used in your Matrix Series device, some features described in this document may not be supported.
Page 20: Structure Of This Guide
Configuring Discovery Protocols, describes how to configure the three discovery protocols supported by the firmware using CLI commands, including the Enterasys Discovery Protocol, the Cisco Discovery Protocol, and the IEEE 802.1AB Link Layer Discovery Protocol (LLDP) and LLDP Media Endpoint Discovery Protcol (LLDP-MED).
Page 21: Related Documents
IP access control lists (ACLs), Denial of Service (DoS) prevention, and flow setup throttling. RELATED DOCUMENTS The following Enterasys Networks documents may help you to set up, control, and manage the Matrix Series device: • Ethernet Technology Guide •...
Page 22: Document Conventions
ROUTER: This symbol denotes router-only functions. Features, commands and information in this guide not differentiated by this symbol refer to switch-mode operation. CAUTION: Warns the reader about actions that could affect network operation. ® Enterasys Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 23: Introduction
This chapter provides an overview of the Matrix Series’ unique features and functionality, an overview of the tasks that may be accomplished using the CLI interface, an overview of ways to manage the device, and information on how to contact Enterasys Networks for technical support. MATRIX DFE SERIES FEATURES Matrix Series devices support business-driven networking with: •...
Page 24: Matrix Series Cli Overview
Matrix Series CLI Overview MATRIX SERIES CLI OVERVIEW Enterasys Networks’ Matrix Series CLI interface allows you to perform a variety of network management tasks, including the following: • Assign IP address and subnet mask. • Select a default gateway. •...
Page 25: Device Management Methods
The Matrix Series Installation Guide provides setup instructions for connecting a terminal or modem to the Matrix Series device. GETTING HELP For additional support related to this device or document, contact Enterasys Networks using one of the following methods: World Wide Web www.enterasys.com/services/support/...
Page 26 Getting Help • A description of your network environment (for example, layout, cable type) • Network load and frame size at the time of trouble (if known) • The device history (for example, have you returned the device before, is this a recurring problem?) •...
Page 27: Startup And General Configuration
Startup and General Configuration This chapter describes factory default settings and the Startup and General Configuration set of commands. STARTUP AND GENERAL CONFIGURATION SUMMARY At startup, the Matrix Series device is configured with many defaults and standard features. The following sections provide information on how to review and change factory defaults, how to customize basic system settings to adapt to your work environment, and how to prepare to run the device in router mode.
Page 28 Startup and General Configuration Summary Factory Default Settings Table 2-1 Default Device Settings for Basic Switch Operation (Continued) Device Feature Default Setting Community name Public. Convergence End Disabled globally and on all ports Points phone detection EAPOL Disabled. EAPOL authentication When enabled, set to auto for all ports.
Page 29 Startup and General Configuration Summary Factory Default Settings Table 2-1 Default Device Settings for Basic Switch Operation (Continued) Device Feature Default Setting LLDP trap interval 5 seconds LLDP-MED fast repeat 3 fast start LLDPDUs LLDP traps Disabled LLDP-MED traps Disabled Lockout Set to disable Read-Write and Read-Only users, and to lockout the default admin (Super User) account for 15 minutes, after 3 failed...
Page 30 Startup and General Configuration Summary Factory Default Settings Table 2-1 Default Device Settings for Basic Switch Operation (Continued) Device Feature Default Setting Policy classification Classification rules are automatically enabled when created. Port auto-negotiation Enabled on all ports. Port advertised ability Maximum ability advertised on all ports.
Page 31 Startup and General Configuration Summary Factory Default Settings Table 2-1 Default Device Settings for Basic Switch Operation (Continued) Device Feature Default Setting Spanning Tree edge Enabled. port delay Spanning Tree forward Set to 15 seconds. delay Spanning Tree hello Set to 2 seconds. interval Spanning Tree ID Set to 0.
Page 32 Startup and General Configuration Summary Factory Default Settings Table 2-1 Default Device Settings for Basic Switch Operation (Continued) Device Feature Default Setting Spanning Tree Loop 180 seconds. Protect event window Spanning Tree Loop Disabled. Protect traps Spanning Tree disputed Set to 0, meaning no traps are sent. BPDU threshold Disabled.
Page 33 Startup and General Configuration Summary Factory Default Settings Table 2-2 Default Device Settings for Router Mode Operation Device Feature Default Setting Access groups (IP None configured. security) Access lists (IP None configured. security) Area authentication Disabled. (OSPF) Area default cost Set to 1.
Page 34 Startup and General Configuration Summary Factory Default Settings Table 2-2 Default Device Settings for Router Mode Operation (Continued) Device Feature Default Setting IP-directed broadcasts Disabled. IP forward-protocol Enabled with no port specified. IP interfaces Disabled with no IP addresses specified. IRDP Disabled on all interfaces.
Page 35: Cli "Command Defaults" Descriptions
Startup and General Configuration Summary CLI “Command Defaults” Descriptions Table 2-2 Default Device Settings for Router Mode Operation (Continued) Device Feature Default Setting SNMP Enabled. Split horizon Enabled for RIP packets without poison reverse. Stub area (OSPF) None configured. Telnet Enabled.
Page 36: Using Webview
2.1.4 Using WebView By default WebView (Enterasys Networks’ embedded web server for device configuration and management tasks) is enabled on TCP port number 80 of the Matrix Series device. You can verify WebView status, enable or disable WebView, as described in the following section.
Page 37 Startup and General Configuration Summary Process Overview: CLI Startup and General Configuration 4. Enabling or disabling of the management authentication notification MIB (Section 2.2.2) 5. Setting basic device properties (Section 2.2.3) 6. Activating licensed features (Section 2.2.4) 7. Configuring Power over Ethernet (PoE) (Section 2.2.5) 8.
Page 38: Starting And Navigating The Command Line Interface
Startup and General Configuration Summary Starting and Navigating the Command Line Interface 2.1.6 Starting and Navigating the Command Line Interface 2.1.6.1 Using a Console Port Connection NOTE: By default, the Matrix Series device is configured with three user login accounts: ro for Read-Only access; rw for Read-Write access; and admin for super-user access to all modifiable parameters.
Page 39: Logging In With Administratively Configured Account
Startup and General Configuration Summary Starting and Navigating the Command Line Interface 2.1.6.3 Logging in with Administratively Configured Account If the device’s default user account settings have been changed, proceed as follows: 1. At the login prompt, enter your administratively-assigned user name and press ENTER. 2.
Page 40: Getting Help With Cli Syntax
Andover, MA 01810-1008 U.S.A. Phone: +1 978 684 1000 E-mail: support@enterasys.com WWW: http://www.enterasys.com (c) Copyright Enterasys Networks, Inc. 2005 Module Serial Number: 1234567 Module Firmware Revision: 05.11.00 Matrix DFE (su)-> 2.1.6.5 Getting Help with CLI Syntax The Matrix Series device allows you to display usage and syntax information for individual commands by typing help or ? after the command.
Page 41: Performing Keyword Lookups
Startup and General Configuration Summary Starting and Navigating the Command Line Interface 2.1.6.7 Performing Keyword Lookups Entering a space and a question mark (?) after a keyword will display all commands beginning with the keyword. Figure 2-3 shows how to perform a keyword lookup for the show snmp command. In this case, 13 additional keywords are used by the show snmp command.
Page 42: Displaying Scrolling Screens
Startup and General Configuration Summary Starting and Navigating the Command Line Interface NOTE: At the end of the lookup display, the system will repeat the command you entered without the ?. 2.1.6.8 Displaying Scrolling Screens If the CLI screen length has been set using the set length command as described in Section 2.2.3.30, CLI output requiring more than one screen will display...
Page 43: Abbreviating And Completing Commands
Startup and General Configuration Summary Configuring the Line Editor 2.1.6.9 Abbreviating and Completing Commands The Matrix Series device allows you to abbreviate CLI commands and keywords down to the number of characters that will allow for a unique abbreviation. Figure 2-6 shows how to abbreviate the show netstat command to sh net.
Page 44 Startup and General Configuration Summary Configuring the Line Editor Table 2-3 Basic Line Editing Emacs & vi Commands Key Sequence Emacs Command Ctrl+A Move cursor to beginning of line. Ctrl+B Move cursor back one character. Ctrl+C Abort command. Ctrl+D Delete a character. Ctrl+E Move cursor to end of line.
Page 45 Startup and General Configuration Summary Configuring the Line Editor Key Sequence vi Command Get previous shell command in history Get next shell command in history Go to end of line Go to beginning of line Append Append at end of line c SPACE Change character Change character...
Page 46 Startup and General Configuration Summary Configuring the Line Editor Key Sequence vi Command Put last deletion after the cursor Put last deletion before the cursor Undo last command Toggle case, lower to upper or vice versa Commands The commands used to configure the line-editor are listed below and described in the associated sections as shown.
Page 47: Command Mode
Startup and General Configuration Summary Configuring the Line Editor 2.1.7.1 show line-editor Use this command to show current and default line-editor mode and Delete character mode. show line-editor Command Defaults None. Command Type Switch command. Command Mode Read-Only Example This example shows how to view the current and default line-editor mode and Delete mode: Matrix(rw)->show line-editor Current Line-Editor mode is set to: EMACS Default Line-Editor mode is set to: Default...
Page 48 Startup and General Configuration Summary Configuring the Line Editor 2.1.7.2 set line-editor Use this command to set the current and default line editing mode or the way the Delete character is treated by the line editor. You can also set the persistence of your line editing selections. set line-editor {emacs | vi | default | delete {backspace | delete}} [default] Syntax Description emacs...
Page 49 Startup and General Configuration Summary Configuring the Line Editor This example sets the default line-editor to emacs mode and sets the selection to persist for future sessions: Matrix(rw)->set line-editor emacs default Matrix DFE-Platinum and Diamond Series Configuration Guide 2-23...
Page 50: General Configuration Command Set
General Configuration Command Set Setting User Accounts and Passwords GENERAL CONFIGURATION COMMAND SET 2.2.1 Setting User Accounts and Passwords Purpose To change the device’s default user login and password settings, and to add new user accounts and passwords. Commands The commands used to configure user accounts and passwords are listed below and described in the associated section as shown.
Page 51: Show System Login
General Configuration Command Set Setting User Accounts and Passwords 2.2.1.1 show system login Use this command to display user login account information. show system login Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Super User. Example This example shows how to display login account information.
Page 52 General Configuration Command Set Setting User Accounts and Passwords Table 2-4 show system login Output Details Output What It Displays... Password history Number of previously used user login passwords that will size be checked for duplication when the set password command is executed.
Page 53: Set System Login
General Configuration Command Set Setting User Accounts and Passwords 2.2.1.2 set system login Use this command to create a new user login account, or to disable or enable an existing account. The Matrix Series device supports up to 16 user accounts, including the admin account, which cannot be disabled or deleted.
Page 54: Clear System Login
General Configuration Command Set Setting User Accounts and Passwords 2.2.1.3 clear system login Use this command to remove a local login user account. clear system login username Syntax Description username Specifies the login name of the account to be cleared. NOTE: The default admin (su) account cannot be deleted.
Page 55: Set Password
General Configuration Command Set Setting User Accounts and Passwords 2.2.1.4 set password Use this command to change system default passwords or to set a new login password on the CLI. set password [username] NOTES: Only users with admin (su) access privileges can change any password on the system.
Page 56 General Configuration Command Set Setting User Accounts and Passwords Examples This example shows how a super-user would change the Read-Write password from the system default (blank string): Matrix(su)->set password rw Please enter new password: ******** Please re-enter new password: ******** Password changed.
Page 57: Set System Password Length
General Configuration Command Set Setting User Accounts and Passwords 2.2.1.5 set system password length Use this command to set the minimum user login password length. set system password length characters Syntax Description characters Specifies the minimum number of characters for a user account password.
Page 58: Set System Password Aging
General Configuration Command Set Setting User Accounts and Passwords 2.2.1.6 set system password aging Use this command to set the number of days user passwords will remain valid before aging out, or to disable user account password aging. set system password aging {days | disable} Syntax Description days Specifies the number of days user passwords will remain...
Page 59: Set System Password History
General Configuration Command Set Setting User Accounts and Passwords 2.2.1.7 set system password history Use this command to set the number of previously used user login passwords that will be checked for password duplication. This prevents duplicate passwords from being entered into the system with the set password command.
Page 60: Show System Lockout
General Configuration Command Set Setting User Accounts and Passwords 2.2.1.8 show system lockout Use this command to display settings for locking out users after failed attempts to log in to the system. show system lockout Syntax Description None. Command Defaults None.
Page 61: Set System Lockout
General Configuration Command Set Setting User Accounts and Passwords 2.2.1.9 set system lockout Use this command to set the number of failed login attempts before locking out (disabling) a read-write or read-only user account, and the number of minutes to lockout the default admin super user account after maximum login attempts.
Page 62: Managing The Management Authentication Notification Mib
General Configuration Command Set Managing the Management Authentication Notification MIB 2.2.2 Managing the Management Authentication Notification MIB Purpose This MIB provides controls for enabling/disabling the sending of SNMP notifications when a user login authentication event occurs for various management access types. The types of access currently supported by the MIB include console, telnet, ssh, and web.
Page 63 General Configuration Command Set Managing the Management Authentication Notification MIB 2.2.2.1 show mgmt-auth-notify Use this command to display the current setting for the Management Authentication Notification MIB. show mgmt-auth-notify Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only.
Page 64 General Configuration Command Set Managing the Management Authentication Notification MIB 2.2.2.2 set mgmt-auth-notify Use this command to either enable or disable the Management Authentication Notification MIB. By selecting the optional Management access type, a user can specifically enable or disable a single access type, multiple access types or all of the access types.
Page 65 General Configuration Command Set Managing the Management Authentication Notification MIB Examples This example shows how to set all the authentication types to be disabled on the Management Authentication Notification MIB. That information is then displayed with the show command: Matrix(su)->set mgmt-auth-notify disable Matrix(su)->show mgmt-auth-notify Management Type Status...
Page 66 General Configuration Command Set Managing the Management Authentication Notification MIB 2.2.2.3 clear mgmt-auth-notify Use this command to set the current setting for the Management Authentication Notification access types to the default setting of enabled. clear mgmt-auth-notify NOTE: Ensure that SNMP is correctly configured on the DFE in order to send these Chapter 5 notifications.
Page 67 General Configuration Command Set Managing the Management Authentication Notification MIB Example This example displays the state of Management Authentication Notification access types prior to using the clear command, then displays the same information after using the clear command: Matrix(su)->show mgmt-auth-notify Management Type Status ---------------...
Page 68: Setting Basic Device Properties
General Configuration Command Set Setting Basic Device Properties 2.2.3 Setting Basic Device Properties Purpose To display and set the system IP address and other basic system (device) properties, including time, contact name and alias, physical asset IDs for modules, terminal output, timeout, and version information.
Page 69 General Configuration Command Set Setting Basic Device Properties • set cli completion (Section 2.2.3.20) • loop (Section 2.2.3.21) • show banner motd (Section 2.2.3.22) • set banner motd (Section 2.2.3.23) • clear banner motd (Section 2.2.3.24) • show version (Section 2.2.3.25) •...
Page 70: Show Ip Address
General Configuration Command Set Setting Basic Device Properties 2.2.3.1 show ip address Use this command to display the system IP address and subnet mask. show ip address Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the system IP address and subnet mask: Matrix(rw)->show ip address...
Page 71: Set Ip Address
General Configuration Command Set Setting Basic Device Properties 2.2.3.2 set ip address Use this command to set the system IP address, subnet mask and default gateway. set ip address ip-address [mask ip-mask] [gateway ip-gateway] Syntax Description ip-address Sets the IP address for the system. mask ip-mask (Optional) Sets the system’s subnet mask.
Page 72: Clear Ip Address
General Configuration Command Set Setting Basic Device Properties 2.2.3.3 clear ip address Use this command to clear the system IP address. clear ip address Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear the system IP address: Matrix(rw)->clear ip address 2-46 Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 73: Show Ip Gratuitous-Arp
General Configuration Command Set Setting Basic Device Properties 2.2.3.4 show ip gratuitous-arp Use this command to display the gratuitous ARP processing behavior. show ip gratuitous-arp Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example for both requests and replies. This example shows how to display the IP gratuitous-arp process Matrix(rw)->show ip gratuitous-arp Processing gratuitous ARP requests and replies.
Page 74: Set Ip Gratuitous-Arp
General Configuration Command Set Setting Basic Device Properties 2.2.3.5 set ip gratuitous-arp Use this command to control the gratuitous ARP processing behavior. set ip gratuitous-arp [request] [reply] [both]] Syntax Description request Process only gratuitous ARP requests. reply Process only gratuitous ARP replies. both Process both requests and replies.
Page 75: Clear Ip Gratuitous-Arp
General Configuration Command Set Setting Basic Device Properties 2.2.3.6 clear ip gratuitous-arp Use this command to stop all gratuitous ARP processing. clear ip gratuitous-arp Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear the gratuitous-arp processing: Matrix(rw)->clear ip gratuitous-arp Matrix DFE-Platinum and Diamond Series Configuration Guide 2-49...
Page 76: Show System
General Configuration Command Set Setting Basic Device Properties 2.2.3.7 show system Use this command to display system information, including contact information, power and fan tray status and uptime. show system Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only.
Page 77 General Configuration Command Set Setting Basic Device Properties Table 2-6 show system Output Details Output What It Displays... System contact Contact person for the system. Default of a blank string can be changed with the set system contact command (Section 2.2.3.28).
Page 78: Show System Hardware
General Configuration Command Set Setting Basic Device Properties 2.2.3.8 show system hardware Use this command to display the system’s hardware configuration. show system hardware Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example The example on the following page shows a portion of the information displayed with the show system hardware command.
Page 79 General Configuration Command Set Setting Basic Device Properties Matrix(rw)->show system hardware CHASSIS HARDWARE INFORMATION ---------------------------- Chassis Type: Matrix N7 Chassis Serial Number: 0001a300611b Power Supply 1: Not Installed Power Supply 2: Installed & Operating, AC, Not Redundant Chassis Fan: Installed & Operating SLOT HARDWARE INFORMATION ------------------------- SLOT 1...
Page 80: Show System Utilization
General Configuration Command Set Setting Basic Device Properties 2.2.3.9 show system utilization Use this command to display system resource utilization information. show system utilization [cpu | process | storage] [slot slot] Syntax Description cpu | process | (Optional) Displays total CPU, individual process, or storage storage resource utilization only.
Page 81 General Configuration Command Set Setting Basic Device Properties ** Output continued from previous page ** Process Utilization: Slot: 1 CPU: 1 Name ProcID 5 sec 1 min 5 min ------------------------------------------------------------ 0.0% 0.0% 0.0% Chassis Data Synchronization 0.0% 0.0% 0.0% Connection Maintenance 1.0% 0.5% 0.5%...
Page 82 General Configuration Command Set Setting Basic Device Properties ** Output continued from previous page ** Name ProcID 5 sec 1 min 5 min ------------------------------------------------------------ Switch Web Server 1.4% 1.4% 1.4% Router Misc. 0.0% 0.0% 0.0% Router Multicast 0.0% 0.0% 0.0% Router Control Plane 0.0% 0.0%...
Page 83: Set System Utilization Threshold
General Configuration Command Set Setting Basic Device Properties 2.2.3.10 set system utilization threshold Use this command to set the threshold for sending CPU utilization notification messages. value range is [1..1000] and represents the % of system utilization to use as the trap threshold.
Page 84: Clear System Utilization
General Configuration Command Set Setting Basic Device Properties 2.2.3.11 clear system utilization Use this command to clear the threshold for sending CPU utilization notification messages. clear system utilization Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write.
Page 85: Show Time
General Configuration Command Set Setting Basic Device Properties 2.2.3.12 show time Use this command to display the current time of day in the system clock. show time Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the current time.
Page 86: Set Time
General Configuration Command Set Setting Basic Device Properties 2.2.3.13 set time Use this command to change the time of day on the system clock. set time [mm/dd/yyyy] [hh:mm:ss] Syntax Description [mm/dd/yyyy] Sets the time in: [hh:mm:ss] • month, day, year and/or •...
Page 87: Show Summertime
General Configuration Command Set Setting Basic Device Properties 2.2.3.14 show summertime Use this command to display daylight savings time settings. show summertime Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display daylight savings time settings: Matrix(rw)->show summertime Summertime is disabled and set to '' Start : SUN MAR 11 02:00:00 2007...
Page 88: Set Summertime
General Configuration Command Set Setting Basic Device Properties 2.2.3.15 set summertime Use this command to enable or disable the daylight savings time function. set summertime {enable | disable} [zone] Syntax Description enable | disable Enables or disables the daylight savings time function. zone (Optional) Applies a name to the daylight savings time settings.
Page 89: Set Summertime Date
General Configuration Command Set Setting Basic Device Properties 2.2.3.16 set summertime date Use this command to configure specific dates to start and stop daylight savings time. These settings will be non-recurring and will have to be reset annually. set summertime date start_month start_date start_year start_hr_min end_month end_date end_year end_hr_min [offset_minutes] Syntax Description start_month...
Page 90 General Configuration Command Set Setting Basic Device Properties Example This example shows how to set a daylight savings time start date of April 4, 2004 at 2 a.m. and an ending date of October 31, 2004 at 2 a.m. with an offset time of one hour: Matrix(rw)->set summertime date April 4 2004 02:00 October 31 2004 02:00 60 2-64 Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 91: Set Summertime Recurring
General Configuration Command Set Setting Basic Device Properties 2.2.3.17 set summertime recurring Use this command to configure recurring daylight savings time settings. These settings will start and stop daylight savings time at the specified day of the month and hour each year and will not have to be reset annually.
Page 92 General Configuration Command Set Setting Basic Device Properties Example This example shows how set daylight savings time to recur start date of April 4, 2004 at 2 a.m. and an ending date of October 31, 2004 at 2 a.m. with an offset time of one hour: Matrix(rw)->set summertime recurring first Sunday April 02:00 last Sunday October 02:00 60 2-66 Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 93: Clear Summertime
General Configuration Command Set Setting Basic Device Properties 2.2.3.18 clear summertime Use this command to clear the daylight savings time configuration. clear summertime Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear the daylight savings time configuration: Matrix(rw)->clear summertime Matrix DFE-Platinum and Diamond Series Configuration Guide 2-67...
Page 94: Set Prompt
General Configuration Command Set Setting Basic Device Properties 2.2.3.19 set prompt Use this command to modify the command prompt. set prompt “prompt_string” Syntax Description prompt_string Specifies a text string for the command prompt. NOTE: A prompt string containing a space in the text must be enclosed in quotes as shown in the example below.
Page 95: Set Cli Completion
General Configuration Command Set Setting Basic Device Properties 2.2.3.20 set cli completion Use this command to enable or disable the CLI command completion function. When enabled, this allows you to complete a unique CLI command fragment using the keyboard spacebar. set cli completion {enable | disable} [default] Syntax Description enable | disable...
Page 96 General Configuration Command Set Setting Basic Device Properties 2.2.3.21 loop Use this command to execute a command loop. loop count [delay] [-r] Syntax Description count Specifies the number of times to loop. A value of 0 will make the command loop forever. delay (Optional) Specifies the number of seconds to delay between executions.
Page 97: Show Banner Motd
General Configuration Command Set Setting Basic Device Properties 2.2.3.22 show banner motd Use this command to show the banner message of the day that will display at session login. show banner motd Syntax Description None. Command Defaults None. Command Type Switch command.
Page 98: Set Banner Motd
General Configuration Command Set Setting Basic Device Properties 2.2.3.23 set banner motd Use this command to set the banner message of the day displayed at session login. set banner motd message Syntax Description message Specifies a message of the day. This is a text string that can be formatted with tabs (\t) and new line escape (\n) characters.
Page 99: Clear Banner Motd
General Configuration Command Set Setting Basic Device Properties 2.2.3.24 clear banner motd Use this command to clear the banner message of the day displayed at session login to a blank string. clear banner motd Syntax Description None. Command Defaults None. Command Type Switch command.
Page 100: Show Version
General Configuration Command Set Setting Basic Device Properties 2.2.3.25 show version Use this command to display hardware and firmware information. Refer to Section 2.2.6 instructions on how to download a firmware image. show version Syntax Description None. Command Defaults None. Command Type Switch command.
Page 101 General Configuration Command Set Setting Basic Device Properties Example This example shows how to display version information: Matrix(rw)->show version Copyright (c) 2004 by Enterasys Networks, Inc. Slot Model Serial # Versions ------ ---------------- -------------------- ------------- 7G4270-12 CH-2R72 Hw: 2 Bp: 01.00.10 Fw: 05.01.56...
Page 102: Set System Name
General Configuration Command Set Setting Basic Device Properties 2.2.3.26 set system name Use this command to configure a name for the system. set system name [string] Syntax Description string (Optional) Specifies a text string that identifies the system. NOTE: A name string containing a space in the text must be enclosed in quotes as shown in the example below.
Page 103: Set System Location
General Configuration Command Set Setting Basic Device Properties 2.2.3.27 set system location Use this command to identify the location of the system. set system location [string] Syntax Description string (Optional) Specifies a text string that indicates where the system is located. NOTE: A location string containing a space in the text must be enclosed in quotes as shown in the example below.
Page 104: Set System Contact
General Configuration Command Set Setting Basic Device Properties 2.2.3.28 set system contact Use this command to identify a contact person for the system. set system contact [string] Syntax Description string (Optional) Specifies a text string that contains the name of the person to contact for system administration. NOTE: A contact string containing a space in the text must be enclosed in quotes as shown in the example below.
Page 105: Set Width
General Configuration Command Set Setting Basic Device Properties 2.2.3.29 set width Use this command to set the number of columns for the terminal connected to the device’s console port. The length of the CLI is set using the set length command as described in Section 2.2.3.30.
Page 106: Set Length
General Configuration Command Set Setting Basic Device Properties 2.2.3.30 set length Use this command to set the number of lines the CLI will display. set length screenlength Syntax Description screenlength Sets the number of lines in the CLI display. Valid values are 0, which disables the scrolling screen feature described Section 2.1.6.8, and from 5 to 512.
Page 107: Show Logout
General Configuration Command Set Setting Basic Device Properties 2.2.3.31 show logout Use this command to display the time (in seconds) an idle console or Telnet CLI session will remain connected before timing out. show logout Syntax Description None. Command Defaults None.
Page 108: Set Logout
General Configuration Command Set Setting Basic Device Properties 2.2.3.32 set logout Use this command to set the time (in minutes) an idle console or Telnet CLI session will remain connected before timing out. set logout timeout Syntax Description timeout Sets the number of minutes the system will remain idle before timing out.
Page 109: Show Physical Alias
General Configuration Command Set Setting Basic Device Properties 2.2.3.33 show physical alias Use this command to display the alias, a text name, for one or more physical objects. show physical alias [chassis] | [slot slot] | [backplane backplane] | [module module] | [powersupply powersupply] | [powersupply-slot powersupply-slot] | [fan] | [fan-slot] | [port-string port-string] Syntax Description...
Page 110 General Configuration Command Set Setting Basic Device Properties Example This example shows how to display physical alias information for the chassis. In this case, the chassis entity is 1 and there is no alias currently set for the chassis: Matrix(rw)->show physical alias chassis chassis-1 alias=<empty string>...
Page 111: Set Physical Alias
General Configuration Command Set Setting Basic Device Properties 2.2.3.34 set physical alias Use this command to set the alias, a text name, for a physical object. set physical alias {[chassis] [slot slot] [backplane backplane] [module module] [powersupply powersupply] [powersupply-slot powersupply-slot] [fan] [fan-slot] [port-string port-string]} [string] Syntax Description chassis...
Page 112 General Configuration Command Set Setting Basic Device Properties Example This example shows how to set the alias for the chassis to “chassisone”: Matrix(rw)->set physical alias chassis chassisone 2-86 Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 113: Clear Physical Alias
General Configuration Command Set Setting Basic Device Properties 2.2.3.35 clear physical alias Use this command to reset the alias for a physical object to a zero-length string. clear physical alias {[chassis] [slot slot] [backplane backplane] [module module] [powersupply powersupply] [powersupply-slot powersupply-slot] [fan] [fan-slot] [port-string port-string]} Syntax Description chassis...
Page 114: Show Physical Assetid
General Configuration Command Set Setting Basic Device Properties 2.2.3.36 show physical assetid Use this command to display the asset ID for a module. show physical assetid module module Syntax Description module module Specifies the module for which to display an asset ID. Command Defaults None.
Page 115: Set Physical Assetid
General Configuration Command Set Setting Basic Device Properties 2.2.3.37 set physical assetid Use this command to set the asset ID for a module. set physical assetid module module string Syntax Description module module Sets an asset ID for a specific module. string Specifies the asset ID.
Page 116: Clear Physical Assetid
General Configuration Command Set Setting Basic Device Properties 2.2.3.38 clear physical assetid Use this command to reset the asset ID for a module to a zero-length string. clear physical assetid module module Syntax Description module module Specifies the module for which to clear the asset ID. Command Defaults None.
Page 117: Activating Licensed Features
ACLs on a Matrix Series device, you must purchase and activate a license key. If you have purchased a license, you can proceed to activate your license as described in this section. If you wish to purchase a license, contact Enterasys Networks Sales. Purpose To activate and verify licensed features.
Page 118: Set License
General Configuration Command Set Activating Licensed Features 2.2.4.1 set license When an advanced license is available, use this command to activate licensed features. If this is available on your Matrix Series device, a unique license key will display in the show license command output.
Page 119: Show License
General Configuration Command Set Activating Licensed Features 2.2.4.2 show license When available and activated, use this command to display your license key. show license Syntax Description None. Command Type Switch command. Command Mode Read-Write. Command Defaults None. Example This example shows how to display your license key information: Matrix(rw)->show license advanced abcdefg123456789 Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 120: Clear License
General Configuration Command Set Activating Licensed Features 2.2.4.3 clear license Use this command to clear license key settings. clear license advanced | user-capacity | port-capacity [slot slot] Syntax Description advanced Clears the advanced routing license setting. user-capacity Clears the user capacity feature key. port-capacity Clears the port capacity feature key.
Page 121: Configuring Power Over Ethernet (Poe)
General Configuration Command Set Configuring Power over Ethernet (PoE) 2.2.5 Configuring Power over Ethernet (PoE) Important Notice This section applies only to PoE-equipped Matrix devices. Consult the Installation Guide shipped with your product to determine if it is PoE-equipped. Purpose To review and set PoE parameters, including the power available to the chassis, the usage threshold for each module, whether or not SNMP trap messages will be sent when power status changes, and per-port PoE settings.
Page 122 General Configuration Command Set Configuring Power over Ethernet (PoE) • set port inlinepower (Section 2.2.5.17) • clear port inlinepower (Section 2.2.5.18) 2-96 Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 123: Show Inlinepower
General Configuration Command Set Configuring Power over Ethernet (PoE) 2.2.5.1 show inlinepower Use this command to display device PoE properties. show inlinepower Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Matrix DFE-Platinum and Diamond Series Configuration Guide 2-97...
Page 124 General Configuration Command Set Configuring Power over Ethernet (PoE) Example This example shows how to display device PoE properties. In this case, only the modules in slots 2 and 3 are PoE modules, so their power configurations display: Matrix(rw)->show inlinepower Total Power Detected : 1200 Watts Total Power Available...
Page 125: Set Inlinepower Mode
General Configuration Command Set Configuring Power over Ethernet (PoE) 2.2.5.2 set inlinepower mode Use this command to set the chassis power allocation mode. set inlinepower mode {auto | manual} Syntax Description auto Assigns automatic mode to chassis power allocation. manual Assigns manual mode to chassis power allocation.
Page 126: Clear Inlinepower Mode
General Configuration Command Set Configuring Power over Ethernet (PoE) 2.2.5.3 clear inlinepower mode Use this command to reset chassis power allocation to the default mode of auto. clear inlinepower mode Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write.
Page 127: Set Inlinepower Available
General Configuration Command Set Configuring Power over Ethernet (PoE) 2.2.5.4 set inlinepower available Use this command to set the percentage of total power available that a chassis can withdraw from the total power detected. set inlinepower available max-percentage NOTE: If the total power wattage value set with the set inlinepower assigned command (Section 2.2.5.8) is greater that the maximum power percentage specified...
Page 128: Clear Inlinepower Available
General Configuration Command Set Configuring Power over Ethernet (PoE) 2.2.5.5 clear inlinepower available Use this command to reset the percentage of the total power available to a chassis to the default value of 100. clear inlinepower available Syntax Description None. Command Defaults None.
Page 129: Set Inlinepower Powertrap
General Configuration Command Set Configuring Power over Ethernet (PoE) 2.2.5.6 set inlinepower powertrap Use this command to disable or enable the sending of an SNMP trap message whenever the status of the chassis PoE power supplies or the PoE system redundancy changes. set inlinepower powertrap {disable | enable} Syntax Description disable |...
Page 130: Clear Inlinepower Powertrap
General Configuration Command Set Configuring Power over Ethernet (PoE) 2.2.5.7 clear inlinepower powertrap Use this command to reset chassis power trap messaging back to the default state of disabled. clear inlinepower powertrap Syntax Description None. Command Defaults None. Command Type Switch command.
Page 131: Set Inlinepower Assigned
General Configuration Command Set Configuring Power over Ethernet (PoE) 2.2.5.8 set inlinepower assigned Use this command to manually assign Power Sourcing Equipment (PSE) power to a module in the chassis. set inlinepower assigned power-value slot-number NOTE: If the total power wattage value set with this command is greater that the maximum power percentage specified with the set inlinepower available command (Section 2.2.5.4), a warning will display.
Page 132: Clear Inlinepower Assigned
General Configuration Command Set Configuring Power over Ethernet (PoE) 2.2.5.9 clear inlinepower assigned Use this command to clear the power value manually assigned to one or more modules. clear inlinepower assigned [slot-number] Syntax Description slot-number (Optional) Clears the power assignment from a specific module.
Page 133: Set Inlinepower Threshold
General Configuration Command Set Configuring Power over Ethernet (PoE) 2.2.5.10 set inlinepower threshold Use this command to set the PoE usage threshold on a specified module. set inlinepower threshold usage-threshold module-number Syntax Description usage-threshold Specifies a PoE threshold as a percentage of total system power usage.
Page 134: Clear Inlinepower Threshold
General Configuration Command Set Configuring Power over Ethernet (PoE) 2.2.5.11 clear inlinepower threshold Use this command to reset the PoE usage threshold on a specified module to the default value of 75 percent. clear inlinepower threshold module-number Syntax Description module-number Specifies the module on which to reset the PoE threshold.
Page 135: Set Inlinepower Management
General Configuration Command Set Configuring Power over Ethernet (PoE) 2.2.5.12 set inlinepower management Use this command to set the PoE management mode on a specified module. set inlinepower management {realtime | class} module-number Syntax Description realtime Manages power based on the actual power consumption of the ports.
Page 136: Clear Inlinepower Management
General Configuration Command Set Configuring Power over Ethernet (PoE) 2.2.5.13 clear inlinepower management Use this command to reset the PoE management mode on a specified module back to the default setting of “realtime”. clear inlinepower management module-number Syntax Description module-number Specifies the module on which to reset the PoE management mode.
Page 137: Set Inlinepower Psetrap
General Configuration Command Set Configuring Power over Ethernet (PoE) 2.2.5.14 set inlinepower psetrap Use this command to enable or disable the sending of an SNMP trap message for a module whenever the status of its ports changes, or whenever the module’s PoE usage threshold is crossed. The module’s PoE usage threshold must be set using the set inlinepower threshold command as described in Section...
Page 138: Clear Inlinepower Psetrap
General Configuration Command Set Configuring Power over Ethernet (PoE) 2.2.5.15 clear inlinepower psetrap Use this command to reset PoE trap messaging for a module back to default state of disabled. clear inlinepower psetrap module-number Syntax Description module-number Specifies the module on which to clear PoE trap messaging.
Page 139: Show Port Inlinepower
General Configuration Command Set Configuring Power over Ethernet (PoE) 2.2.5.16 show port inlinepower Use this command to display all ports supporting PoE. show port inlinepower [port-string] Syntax Description port-string (Optional) Displays information for specific PoE port(s). Command Defaults If not specified, information for all PoE ports will be displayed. Command Type Switch command.
Page 140: Set Port Inlinepower
General Configuration Command Set Configuring Power over Ethernet (PoE) 2.2.5.17 set port inlinepower Use this command to configure PoE parameters on one or more ports. set port inlinepower port-string {[admin {off | auto}] [priority {critical | high | low}] [type type] [powerlimit powerlimit]} Syntax Description port-string Specifies the port(s) on which to configure PoE.
Page 141: Clear Port Inlinepower
General Configuration Command Set Configuring Power over Ethernet (PoE) 2.2.5.18 clear port inlinepower Use this command to reset PoE parameters on one or more ports to default values. clear port inlinepower port-string {[admin] [priority] [type] [powerlimit]} Syntax Description port-string Specifies the port(s) on which to reset PoE. admin Resets the PoE administrative state to auto (on).
Page 142: Downloading A New Firmware Image
General Configuration Command Set Downloading a New Firmware Image 2.2.6 Downloading a New Firmware Image You can upgrade the operational firmware in the Matrix Series device without physically opening the device or being in the same location. There are three ways to download firmware to the device: •...
Page 143: Downloading Via The Serial Port
To download device firmware via the serial (console) port, proceed as follows: 1. With the console port connected, power up the device. The following message displays: Boot ROM Initialization, Version 01.00.01 Copyright (c) 2004 Enterasys Networks, Inc. SDRAM size: 128 MB Testing SDRAM..
Page 144 General Configuration Command Set Downloading a New Firmware Image 3. Type 2. The following baud rate selection screen displays: 1 - 1200 2 - 2400 3 - 4800 4 - 9600 5 - 19200 6 - 38400 7 - 57600 8 - 115200 0 - no change 4.
Page 145: Reviewing And Selecting A Boot Firmware Image
General Configuration Command Set Reviewing and Selecting a Boot Firmware Image 11.Type boot to reboot the device. The following message indicates the downloaded image booted successfully: [System Image Loader : boot /flash0/ - Volume is OK Loading myimage... DONE. NOTE: If you reboot without specifying the image to boot with setboot as described above, the device will attempt to load whatever image is currently stored in the bootstring via the set boot system command (Section...
Page 146: Show Boot System
General Configuration Command Set Reviewing and Selecting a Boot Firmware Image 2.2.7.1 show boot system Use this command to display the firmware image the system will load at the next system reset. The system must be reset by software for the new boot image to take effect at startup. If the chassis is powered OFF and then back ON, the current active image will just reload at startup.
Page 147: Set Boot System
General Configuration Command Set Reviewing and Selecting a Boot Firmware Image 2.2.7.2 set boot system Use this command to set the firmware image the switch loads at startup. This is the image that will be loaded automatically after the system has been reset. Although it is not necessary to choose to reset the system and activate the new boot image immediately, the CLI will prompt you whether or not you want to do so.
Page 148: Starting And Configuring Telnet
General Configuration Command Set Starting and Configuring Telnet 2.2.8 Starting and Configuring Telnet Purpose To enable or disable Telnet, and to start a Telnet session to a remote host. The Matrix Series device allows a total of four inbound and / or outbound Telnet session to run simultaneously. Commands The commands used to enable, start and configure Telnet are listed below and described in the associated section as shown.
Page 149: Show Telnet
General Configuration Command Set Starting and Configuring Telnet 2.2.8.1 show telnet Use this command to display the status of Telnet on the device. show telnet Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display Telnet status: Matrix(rw)->show telnet Telnet inbound is currently: ENABLED Telnet outbound is currently: ENABLED...
Page 150: Set Telnet
General Configuration Command Set Starting and Configuring Telnet 2.2.8.2 set telnet Use this command to enable or disable Telnet on the device. set telnet {enable | disable}{inbound | outbound | all} Syntax Description enable | disable Enables or disables Telnet services. inbound | Specifies inbound service (the ability to Telnet to this outbound | all...
Page 151 General Configuration Command Set Starting and Configuring Telnet 2.2.8.3 telnet Use this command to start a Telnet connection to a remote host. The Matrix Series device allows a total of four inbound and / or outbound Telnet session to run simultaneously. telnet host [port] Syntax Description host...
Page 152: Show Router Telnet
General Configuration Command Set Starting and Configuring Telnet 2.2.8.4 show router telnet Use this command to display the state of Telnet service to the router. show router telnet Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only.
Page 153: Set Router Telnet
General Configuration Command Set Starting and Configuring Telnet 2.2.8.5 set router telnet Use this command to enable or disable Telnet service to the router interface IP address. set router telnet {enable | disable} Syntax Description None. Command Defaults None. Command Type Switch command.
Page 154: Clear Router Telnet
General Configuration Command Set Starting and Configuring Telnet 2.2.8.6 clear router telnet Use this command to reset Telnet service to the router to the default state of disabled. clear router telnet Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write.
Page 155: Managing Configuration And Image Files
General Configuration Command Set Managing Configuration and Image Files 2.2.9 Managing Configuration and Image Files Matrix Series devices provide a single configuration interface which allows you to perform both switch and router configuration with the same command set. The device also provides redundant, distributed copies of each image file in the event that DFE modules are added or removed from the Matrix chassis.
Page 156 General Configuration Command Set Managing Configuration and Image Files • show file (Section 2.2.9.2) • show config (Section 2.2.9.3) • configure (Section 2.2.9.4) • copy (Section 2.2.9.5) • delete (Section 2.2.9.6) • script (Section 2.2.9.7) 2-130 Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 157: Syntax Description
General Configuration Command Set Managing Configuration and Image Files 2.2.9.1 Use this command to list files stored in the file system. dir [filename] Syntax Description filename (Optional) Specifies the file name or directory to list. Command Type Switch. Command Mode Read-Only.
Page 158 General Configuration Command Set Managing Configuration and Image Files Table 2-8 dir Output Details Output What It Displays... Images Lists all the images resident in the chassis and information about each. Filename Name of the image file stored in the local file system. Various flags may be listed after the filename, including: •...
Page 159: Show File
General Configuration Command Set Managing Configuration and Image Files 2.2.9.2 show file Use this command to display the contents of an image or configuration file. show file filename Syntax Description filename Specifies the filename to display. Command Type Switch. Command Mode Read-Only.
Page 160 General Configuration Command Set Managing Configuration and Image Files Matrix(rw)->show file slot4/sample.cfg begin # ***** NON-DEFAULT CONFIGURATION ***** SLOT TYPE ________________ 7G4270-12 7H4382-49 7H4382-49 7H4382-49 7H4382-49 7H4382-49 # Router instance 3 Configuration begin router 3 set router 3 router 3 enable config t write file...
Page 161: Show Config
General Configuration Command Set Managing Configuration and Image Files 2.2.9.3 show config Use this command to display the system configuration or write the configuration to a file. show config [all] [facility] [outfile outfile] Syntax Description (Optional) Displays default and non-default configuration settings.
Page 162 General Configuration Command Set Managing Configuration and Image Files Example This example shows how to display the current non-default device configuration: Matrix(rw)->show config This command shows non-default configurations only. Use 'show config all' to show both default and non-default configurations..
Page 163 General Configuration Command Set Managing Configuration and Image Files 2.2.9.4 configure Use this command to execute a previously downloaded configuration file stored on the device. configure filename [append] Syntax Description filename Specifies the path and file name of the configuration file to execute.
Page 164 General Configuration Command Set Managing Configuration and Image Files 2.2.9.5 copy Use this command to upload or download an image or a CLI configuration file. copy source destination NOTE: The Matrix module to which a configuration file is downloaded must have the same hardware configuration as the Matrix module from which it was uploaded.
Page 165 General Configuration Command Set Managing Configuration and Image Files This example shows how to download a configuration file via TFTP to the slot 3 directory: Matrix(rw)->copy tftp://134.141.89.34/myconfig slot3/myconfig This example shows how to upload a configuration file via Anonymous FTP from the module in slot 3: Matrix(rw)->copy slot3/myconfig ftp://134.141.89.34/myconfig This example shows how to copy a configuration file from the slot 3 directory to the slot 5 directory:...
Page 166 General Configuration Command Set Managing Configuration and Image Files 2.2.9.6 delete Use this command to remove an image or a CLI configuration file from the Matrix system. delete filename NOTE: Use the show config command as described in Section 2.2.9.3 to display current image and configuration file names.
Page 167 General Configuration Command Set Managing Configuration and Image Files 2.2.9.7 script Use this command to execute a script file. The script file must first be created on a PC and copied to the Matrix device using the copy command (Section 2.2.9.5) before the script can be executed.
Page 168 General Configuration Command Set Managing Configuration and Image Files When the script command parses the file and performs the command line argument substitution, the commands are converted to the following: set port alias fe.1.1 script_set_port set port vlan fe.1.1 100 modify-egress set port jumbo enable fe.1.1 set port disable fe.1.1 set port lacp port fe.1.1 disabled...
Page 169: Enabling Or Disabling The Path Mtu Discovery Protocol
General Configuration Command Set Enabling or Disabling the Path MTU Discovery Protocol 2.2.10 Enabling or Disabling the Path MTU Discovery Protocol Purpose To enable or disable the path MTU (Maximum Transmission Unit) discovery protocol on the device. Because ports with transmission speeds higher than 100 Mbps are capable of transmitting frames up to a maximum of 10,239 bytes, it is necessary to have the path MTU discovery protocol enabled if jumbo frames are allowed in the network.
Page 170: Show Mtu
General Configuration Command Set Enabling or Disabling the Path MTU Discovery Protocol 2.2.10.1 show mtu Use this command to display the status of the path MTU discovery protocol on the device. show mtu Syntax Description None. Command Defaults None. Command Type Switch command.
Page 171 General Configuration Command Set Enabling or Disabling the Path MTU Discovery Protocol 2.2.10.2 set mtu Use this command to disable or re-enable path MTU discovery protocol on the device. set mtu {enable | disable} Syntax Description enable | disable Enables or disables path MTU discovery protocol. Command Defaults None.
Page 172: Clear Mtu
General Configuration Command Set Enabling or Disabling the Path MTU Discovery Protocol 2.2.10.3 clear mtu Use this command to reset the state of the path MTU discovery protocol back to enabled. clear mtu Syntax Description None. Command Defaults None. Command Type Switch command.
Page 173: Pausing, Clearing And Closing The Cli
General Configuration Command Set Pausing, Clearing and Closing the CLI 2.2.11 Pausing, Clearing and Closing the CLI Purpose To clear the CLI screen or to close your CLI session. Commands The commands used to clear and close the CLI session are listed below and described in the associated sections as shown.
Page 174 General Configuration Command Set Pausing, Clearing and Closing the CLI 2.2.11.1 cls (clear screen) Use this command to clear the screen for the current CLI session. Syntax Description None Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to clear the CLI screen: Matrix(rw)->cls 2-148 Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 175 General Configuration Command Set Pausing, Clearing and Closing the CLI 2.2.11.2 exit | quit Use either of these commands to leave a CLI session. exit quit NOTE: By default, device timeout occurs after 15 minutes of user inactivity, automatically closing your CLI session. Use the set logout command as described in Section 2.2.3.32 to change this default.
Page 176: Resetting The Device
General Configuration Command Set Resetting the Device 2.2.12 Resetting the Device Purpose To reset one or more device modules, to clear the user-defined switch and router configuration parameters, or to schedule a system reset in order to load a new boot image. Commands The commands used to reset the device and clear the configuration are listed below and described in the associated sections as shown.
Page 177: Show Reset
General Configuration Command Set Resetting the Device 2.2.12.1 show reset Use this command to display information about scheduled device resets. show reset Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This command shows how to display reset information Matrix(rw)->show reset Reset scheduled for Fri Jan 21 2000, 23:00:00 (in 3 days 12 hours 56 minutes 57 seconds).
Page 178 General Configuration Command Set Resetting the Device 2.2.12.2 reset Use this command to reset the device without losing any user-defined configuration settings reset {[mod | system | nemcpu {mod.nemcpu}] [cancel]} NOTE: A Matrix Series device can also be reset with the RESET button located on its front panel.
Page 179 General Configuration Command Set Resetting the Device This example shows how to cancel a scheduled system reset: Matrix(rw)->reset cancel Reset cancelled. This example shows how to reset a Matrix Security Module installed on the DFE in slot 4. Matrix(rw)->reset nemcpu 4.1 This command will reset NEM CPU 4.1.
Page 180 General Configuration Command Set Resetting the Device 2.2.12.3 reset at Use this command to schedule a system reset at a specific future time. This feature is useful for loading a new boot image. reset at hh:mm [mm/dd] [reason] Syntax Description hh:mm Schedules the hour and minute of the reset (using the 24-hour system).
Page 181 General Configuration Command Set Resetting the Device 2.2.12.4 reset in Use this command to schedule a system reset after a specific time. This feature is useful for loading a new boot image. reset in hh:mm [reason] Syntax Description hh:mm Specifies the number of hours and minutes into the future to perform a reset.
Page 182: Clear Config
General Configuration Command Set Resetting the Device 2.2.12.5 clear config Use this command to clear the user-defined switch and router configuration parameters for one or more modules. Executing clear config on one Matrix module resets that module back to its factory defaults.
Page 183: Gathering Technical Support Information
General Configuration Command Set Gathering Technical Support Information 2.2.13 Gathering Technical Support Information Purpose To gather common technical support information. Command The command used to display technical support-related information is listed below and described in the associated section as shown. •...
Page 184: Show Support
General Configuration Command Set Gathering Technical Support Information 2.2.13.1 show support Use this command to display output for technical support-related commands. show support [filename] Syntax Description filename (Optional) Filename (slotN/name) to save output. Command Defaults The following commands are executed: •...
Page 185 General Configuration Command Set Gathering Technical Support Information Example This example shows how to execute the show support command and save the results to slot 1 as a support3.txt file: Matrix(su)->show support slot1/support3.txt Writing output to file....Writing 'show config' output..Writing Message Log output..
Page 186: Preparing The Device For Router Mode
Preparing the Device for Router Mode Pre-Routing Configuration Tasks PREPARING THE DEVICE FOR ROUTER MODE Important Notice Startup and general configuration of the Matrix Series device must occur from the switch CLI. For details on how to start the device and configure general platform settings, refer to Section 2.1 Section 2.2.1.
Page 187 Preparing the Device for Router Mode Pre-Routing Configuration Tasks Table 2-9 Enabling the Switch for Routing Type this For details, To do this task... command... At this prompt... see... Step 1 Configure a routing set router module Switch: Section 2.3.2.2 module.
Page 188: Reviewing And Configuring Routing Modules
Preparing the Device for Router Mode Reviewing and Configuring Routing Modules Figure 2-8 Enabling the Switch for Routing Matrix(rw)->set router 1 Matrix(rw)->router 1 Matrix>Router1>enable Matrix>Router1#configure terminal Enter configuration commands: Matrix>Router1(config)#interface vlan 1 Matrix>Router1(config-if(Vlan 1))#ip address 182.127.63.1 255.255.255.0 Matrix>Router1(config-if(Vlan 1))#no shutdown 2.3.2 Reviewing and Configuring Routing Modules Purpose...
Page 189: Show Router
Preparing the Device for Router Mode Reviewing and Configuring Routing Modules 2.3.2.1 show router Use this command to display which modules are configured for routing. show router Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to display which modules are configured for routing: Matrix(rw)->show router...
Page 190 Preparing the Device for Router Mode Reviewing and Configuring Routing Modules 2.3.2.2 set router Use this command to configure routing on a module. set router module Syntax Description module Specifies the module to configure for routing. Command Defaults None. Command Type Switch command.
Page 191: Clear Router
Preparing the Device for Router Mode Reviewing and Configuring Routing Modules 2.3.2.3 clear router Use this command to disable routing on a module. clear router module Syntax Description module Specifies the routing module to disable for routing. Entering a value of 0 will disable all modules for routing. Command Defaults None.
Page 192 Preparing the Device for Router Mode Reviewing and Configuring Routing Modules 2.3.2.4 router Use this command to enable routing mode on a module. This must be a module previously configured for routing using the set router command as described in Section 2.3.2.2.
Page 193: Enabling Router Configuration Modes
Preparing the Device for Router Mode Enabling Router Configuration Modes 2.3.3 Enabling Router Configuration Modes The Matrix CLI provides different modes of router operation for issuing a subset of commands from each mode. Table 2-11 describes these modes of operation. NOTE: The command prompts used as examples in Table 2-11 and throughout this...
Page 194 Preparing the Device for Router Mode Enabling Router Configuration Modes Table 2-11 Router CLI Configuration Modes (Continued) Use this mode... To... Access method... Resulting Prompt... Router Set IP protocol Type router and the Matrix>Router1 Configuration parameters. protocol name (and, (config-router)# Mode for OSPF, the instance ID) from...
Page 195 Preparing the Device for Router Mode Enabling Router Configuration Modes Table 2-11 Router CLI Configuration Modes (Continued) Use this mode... To... Access method... Resulting Prompt... Server Load Configure an Type real and the real Matrix>Router1 Balancing (SLB) LSNAT real server. server IP address (config-slb-real)# Real Server...
Page 196 Preparing the Device for Router Mode Enabling Router Configuration Modes Table 2-11 Router CLI Configuration Modes (Continued) Use this mode... To... Access method... Resulting Prompt... DHCP Host Configure DHCP Type Matrix>Router1 Configuration host parameters. client-identifier and (config-dhcp-host)# Mode the identifier, or hardware-address and an address from any DHCP...
Page 197: Configuring Discovery Protocols
Configuring Discovery Protocols This chapter describes how to configure the discovery protocols supported by the firmware using CLI commands. OVERVIEW Currently, three discovery protcols are supported: • The Enterasys Discovery (CDP), described in Section 3.2.2, “Enterasys Discovery Protocol,” on page 3-4 •...
Page 198: Show Neighbors
Discovery Protocols Command Set Displaying Neighbors 3.2.1.1 show neighbors Use this command to display Network Neighbor Discovery information from all supported discovery protcols. show neighbors [port-string] Syntax Description port-string (Optional) Displays Network Neighbor Discovery information for a specific port. For a detailed description of possible port-string values, refer to Section 4.1.1.
Page 199: Matrix Dfe-Platinum And Diamond Series Configuration Guide
Discovery Protocols Command Set Displaying Neighbors Matrix(rw)->show neighbors Port Device ID Port ID Type Network Address ----------------------------------------------------------------------------- ge.1.1 00-01-f4-00-71-9c ge.1.27 lldp ge.1.2 00-01-f4-00-71-9c ge.1.28 lldp ge.1.3 00-01-f4-96-0f-fd ge.3.3 lldp ge.1.4 00-01-f4-96-0f-fd ge.3.4 lldp ge.1.5 0001f45b601f 120.7.22.1 ciscodp 120.7.22.1 ge.1.6 0001f45b601f 120.7.22.1 ciscodp 120.7.22.1 ge.3.1...
Page 200: Enterasys Discovery Protocol
Enterasys Discovery Protocol 3.2.2 Enterasys Discovery Protocol Purpose To enable and configure the Enterasys Discovery Protocol (CDP), used to discover network topology. When enabled, CDP allows Enterasys devices to send periodic PDUs about themselves to neighboring devices. Commands The commands used to review and configure the CDP discovery protocol are listed below and described in the associated section as shown.
Page 201: Show Cdp
Discovery Protocols Command Set Enterasys Discovery Protocol 3.2.2.1 show cdp Use this command to display the status of the CDP discovery protocol and message interval on one or more ports. show cdp [port-string] Syntax Description port-string (Optional) Displays CDP status for a specific port. For a...
Page 202 Discovery Protocols Command Set Enterasys Discovery Protocol Table 3-1 provides an explanation of the command output. Table 3-1 show cdp Output Details Output What It Displays... CDP Global Status Whether CDP is globally auto-enabled, enabled or disabled. The default state of auto-enabled can be reset with the set cdp state command. For...
Page 203: Set Cdp State
Discovery Protocols Command Set Enterasys Discovery Protocol 3.2.2.2 set cdp state Use this command to enable or disable the CDP discovery protocol on one or more ports. set cdp state {auto | disable | enable} [port-string] Syntax Description auto | disable |...
Page 204: Set Cdp Auth
Discovery Protocols Command Set Enterasys Discovery Protocol 3.2.2.3 set cdp auth Use this command to set a global CDP authentication code. This value determines a device’s CDP domain. If two or more devices have the same CDP authentication code, they will be entered into each other's CDP neighbor tables.
Page 205: Set Cdp Interval
Discovery Protocols Command Set Enterasys Discovery Protocol 3.2.2.4 set cdp interval Use this command to set the message interval frequency (in seconds) of the CDP discovery protocol. set cdp interval frequency Syntax Description frequency Specifies the transmit frequency of CDP messages in seconds.Valid values are from 5 to 900 seconds.
Page 206 Discovery Protocols Command Set Enterasys Discovery Protocol 3.2.2.5 set cdp hold-time Use this command to set the hold time value for CDP discovery protocol configuration messages. set cdp hold-time hold-time Syntax Description hold-time Specifies the hold time value for CDP messages in seconds.Valid values are from 15 to 600.
Page 207: Clear Cdp
Discovery Protocols Command Set Enterasys Discovery Protocol 3.2.2.6 clear cdp Use this command to reset CDP discovery protocol settings to defaults. clear cdp {[state] [port-state port-string] [interval] [hold-time] [auth-code]} Syntax Description state (Optional) Resets the global CDP state to auto-enabled.
Page 208: Cisco Discovery Protocol
Discovery Protocols Command Set Cisco Discovery Protocol 3.2.3 Cisco Discovery Protocol Purpose To enable and configure the Cisco Discovery Protocol, used to discover network topology. When enabled, the Cisco Discovery Protocol allows Cisco devices to send periodic PDUs about themselves to neighboring devices. The Cisco Discovery Protocol is also used to manage the Cisco module of the Convergence End Points (CEP) IP phone detection function described in Section 14.3.8.
Page 209: Show Ciscodp
Discovery Protocols Command Set Cisco Discovery Protocol 3.2.3.1 show ciscodp Use this command to display global Cisco Discovery Protocol information. show ciscodp Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display Cisco Discovery Protocol information. In this case, defaults have not been changed: Matrix>show ciscodp CiscoDP : Auto...
Page 210 Discovery Protocols Command Set Cisco Discovery Protocol Table 3-2 show ciscodp Output Details (Continued) Output What It Displays... Holdtime (TTL) Number of seconds neighboring devices will hold PDU transmissions from the sending device. Default value of 180 can be changed with the set ciscodp holdtime command as described in Section 3.2.3.5.
Page 211: Show Ciscodp Port Info
Discovery Protocols Command Set Cisco Discovery Protocol 3.2.3.2 show ciscodp port info Use this command to display summary information about the Cisco Discovery Protocol on one or more ports. show ciscodp port info [port-string] Syntax Description port-string (Optional) Displays information about specific port(s). For a detailed description of possible port-string values, refer to Section 4.1.1.
Page 212 Discovery Protocols Command Set Cisco Discovery Protocol Table 3-3 show port ciscodp info Output Details Output What It Displays... Port Port designation. State Whether CiscoDP is enabled or disabled on this port. Default state of enabled can be changed using the set ciscodp port command (Section 3.2.3.6).
Page 213: Set Ciscodp Status
Discovery Protocols Command Set Cisco Discovery Protocol 3.2.3.3 set ciscodp status Use this command to enable or disable Cisco Discovery Protocol globally on the device. set ciscodp status {auto | enable | disable} Syntax Description auto Globally enable only if CiscoDP PDUs are received enable Globally enables Cisco Discovery Protocol disable...
Page 214: Set Ciscodp Timer
Discovery Protocols Command Set Cisco Discovery Protocol 3.2.3.4 set ciscodp timer Use this command to set the number of seconds between Cisco Discovery Protocol PDU transmissions. set ciscodp timer time Syntax Description time Specifies the number of seconds between CiscoDP PDU transmissions.
Page 215: Set Ciscodp Holdtime
Discovery Protocols Command Set Cisco Discovery Protocol 3.2.3.5 set ciscodp holdtime Use this command to set the time to live (TTL) for Cisco Discovery Protocol PDUs. This is the amount of time (in seconds) neighboring devices will hold PDU transmissions from the sending device.
Page 216: Set Ciscodp Port
Discovery Protocols Command Set Cisco Discovery Protocol 3.2.3.6 set ciscodp port Use this command to set the status, voice VLAN, extended trust mode, and CoS priority for untrusted traffic for the Cisco Discovery Protocol on one or more ports. set ciscodp port { [status {disable | enable}] [ vvid {<vlan-id> | none | dot1p | untagged}] [trust-ext {trusted | untrusted}] [cos-ext value] } <port-string>...
Page 217 Discovery Protocols Command Set Cisco Discovery Protocol Syntax Description status Set the CiscoDP port operational status disable Do not transmit or process CiscoDP PDUs enable Transmit and process CiscoDP PDUs vvid Set the port voice VLAN for CiscoDP PDU transmission <vlan-id>...
Page 218 Discovery Protocols Command Set Cisco Discovery Protocol Examples This example shows how to set the Cisco DP port voice VLAN ID to 3 on port fe.1.6 and enable the port operational state: Matrix>set ciscodp port status enable vvid 3 fe.1.6 This example shows how to set the Cisco DP extended trust mode to untrusted on port fe.1.5 and set the CoS priority to 1: Matrix>set ciscodp port trust-ext untrusted cos-ext 1 fe.1.5...
Page 219: Clear Ciscodp
Discovery Protocols Command Set Cisco Discovery Protocol 3.2.3.7 clear ciscodp Use this command to clear the Cisco Discovery Protocol back to the default values. clear ciscodp { [status | timer | holdtime | port {status | vvid | trust-ext | cos-ext}] } <port-string>...
Page 220 Discovery Protocols Command Set Cisco Discovery Protocol This example shows how to clear the Cisco DP port status on port fe.1.5: Matrix>clear ciscodp port status fe.1.5 3-24 Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 221: Link Layer Discovery Protocol And Lldp-Med
LLDP-MED is described in the ANSI TIA Standards document “TIA-1057-2006, Link Layer Discovery Protocol for Media Endpoint Devices.” LLDP is similar to the Enterasys Discovery Protocol and the Cisco Discovery Protocol in that it provides an industry standard, vendor-neutral way to allow network devices to advertise their identities and capabilities on a local area network, and to discover that information about their neighbors.
Page 222: Configuration Tasks
Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED The standard specifies that certain TLVs are mandatory in transmitted LLDPDUs, while others are optional. You can configure on a port-specific basis which optional LLDP and LLDP-MED TLVs should be sent in LLDPDUs. Configuration Tasks The commands included in this implementation allow you to perform the following configuration tasks:...
Page 223 Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED • show lldp port local-info (Section 3.2.4.6) • show lldp port remote-info (Section 3.2.4.7) • show lldp port network-policy (Section 3.2.4.8) • set lldp tx-interval (Section 3.2.4.9) • set lldp hold-multiplier (Section 3.2.4.10) •...
Page 224: Show Lldp
Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED 3.2.4.1 show lldp Use this command to display LLDP configuration information. show lldp Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display LLDP configuration information. Matrix(ro)->show lldp Message Tx Interval : 30...
Page 225: Show Lldp Port Status
Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED 3.2.4.2 show lldp port status Use this command to display the LLDP status of one or more ports. The command lists the ports that are enabled to send and receive LLDPPDUs. Ports are enabled or disabled with the set lldp port status command.
Page 226: Show Lldp Port Trap
Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED 3.2.4.3 show lldp port trap Use this command to display the ports that are enabled to send an LLDP notification when a remote system change has been detected or an LLDP-MED notification when a change in the topology has been sensed.
Page 227 Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED 3.2.4.4 show lldp port tx-tlv Use this command to display information about which optional TLVs have been configured to be transmitted on ports. Ports are configured to send optional TLVs with the set lldp port tx-tlv command.
Page 228 Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED 3.2.4.5 show lldp port location-info Use this command to display configured location information for one or more ports. Ports are configured with a location value using the set lldp port location-info command.
Page 229: Show Lldp Port Local-Info
Mgmt Addr : 10.21.64.100 Chassis ID : 00-E0-63-93-74-A5 Sys Name : LLDP PoE test Chassis Sys Desc : Enterasys Networks, Inc. Matrix E7 Gold Rev 05.41 Sys Cap Supported/Enabled : bridge,router/bridge Auto-Neg Supported/Enabled : yes/yes Auto-Neg Advertised : 10BASE-T, 10BASE-TFD,...
Page 230 Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED Operational Speed/Duplex/Type : 100 full tx Max Frame Size (bytes) : 1522 Vlan Id LAG Supported/Enabled/Id : no/no/0 Protocol Id : Spanning Tree v-3 (IEEE802.1s) LACP v-1 GVRP Network Policy (app/tag/vlanId/cos/dscp) : voice/tagged/10/3/5 voice signaling/tagged/10/3/5...
Page 231 Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED Table 3-4 show lldp port local-info Output Details Output Field What it Displays ... Chassis ID Mandatory basic LLDP TLV that identifies the chassis transmitting the LLDPDU. Value is MAC address of chassis. Sys Name Optional basic LLDP TLV.
Page 232 Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED Table 3-4 show lldp port local-info Output Details Output Field What it Displays ... Network Policy LLDP-MED Extensions Network Policy TLV. For all applications (app/tag/vlanId/cos/dscp) enabled on the port to be transmitted in a TLV, displays the application name, VLAN type (tagged or untagged), VLAN Id, and both the Layer 2 and Layer 3 priorities assiciated with the application.
Page 233 Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED Table 3-4 show lldp port local-info Output Details Output Field What it Displays ... PoE Power Limit (mW) LLDP-MED Extensions Extended Power via MDI TLV. Displayed only when a port has PoE capabilities. Indicates the total power the port is capable of sourcing over a maximum length cable, based on its current configuration, in milli-Watts.
Page 234: Show Lldp Port Remote-Info
Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED 3.2.4.7 show lldp port remote-info Use this command to display the remote system information stored for a remote device connected to a local port. You can use this information to detect misconfigurations or incompatibilities between the local port and the attached endpoint device (remote port).
Page 235 Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED Network Policy (app/tag/vlanId/cos/dscp) : voice/untagged/0/6/46 Hardware Revision : 4610D01A Firmware Revision : b10d01b2_7.bin Software Revision : a10d01b2_7.bin Serial Number : 05GM42004348 Manufacturer : Avaya Model Number : 4610 Note that the information fields displayed by the show lldp port remote-info command will vary, depending on the type of remote device that is connected to the port.
Page 236: Show Lldp Port Network-Policy
Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED 3.2.4.8 show lldp port network-policy Use this command to display LLDP port network policy configuration information. Network policy information is configured using the set lldp port network-policy command. show lldp port network policy {all | voice | voice-signaling | guest-voice | guest-voice-signaling | software-voice | video-conferencing | streaming-video | video-signaling } [port-string] Syntax Description...
Page 237: Switch Command
Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED Command Type Switch command. Command Mode Read-Only. Example This example shows how to display all LLDP network policy information for ge.1.1. Matrix(ro)->show lldp port network-policy all ge.1.1 Ports Application State Vlan-Id Dscp -------...
Page 238: Set Lldp Tx-Interval
Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED 3.2.4.9 set lldp tx-interval Use this command to set the time, in seconds, between successive LLDP frame transmissions initiated by changes in the LLDP local system information. set lldp tx-interval frequency Syntax Description frequency Specifies the number of seconds between transmissions of...
Page 239: Set Lldp Hold-Multiplier
Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED 3.2.4.10 set lldp hold-multiplier Use this command to set the time-to-live value used in LLDP frames sent by this device. The time-to-live for LLDPDU data is calculated by multiplying the transmit interval by the hold multiplier value.
Page 240: Set Lldp Trap-Interval
Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED 3.2.4.11 set lldp trap-interval Use this command to set the minimum interval between LLDP notifications sent by this device. LLDP notifications are sent when a remote system change has been detected. set lldp trap-interval frequency Syntax Description frequency...
Page 241: Set Lldp Med-Fast-Repeat
Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED 3.2.4.12 set lldp med-fast-repeat Network connectivity devices transmit only LLDP TLVs in LLDPDUs until they detect that an LLDP-MED endpoint device has connected to a port. At that point, the network connectivity device starts sending LLDP-MED TLVs at a fast start rate on that port.
Page 242: Set Lldp Port Status
Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED 3.2.4.13 set lldp port status Use this command to enable or disable transmitting and processing received LLDPDUs on a port or range of ports. set lldp port status {tx-enable | rx-enable | both | disable} port-string Syntax Description tx-enable Enable transmitting LLDPDUs on the specified ports.
Page 243: Set Lldp Port Trap
Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED 3.2.4.14 set lldp port trap Use this command to enable or disable sending LLDP notifications (traps) when a remote system change is detected. set lldp port trap {enable | disable} port-string Syntax Description enable Enable transmitting LLDP traps on the specified ports.
Page 244: Set Lldp Port Med-Trap
Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED 3.2.4.15 set lldp port med-trap Use this command to enable or disable sending an LLDP-MED notification when a change in the topology has been sensed on the port (that is, a remote endpoint device has been attached or removed from the port).
Page 245: Set Lldp Port Location-Info
Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED 3.2.4.16 set lldp port location-info Use this command to configure LLDP-MED location information on a port or range of ports. Currently, only Emergency Call Services (ECS) Emergency Location Identification Number (ELIN) is supported.
Page 246: Set Lldp Port Tx-Tlv
Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED 3.2.4.17 set lldp port tx-tlv Use this command to select the optional LLDP and LLDP-MED TLVs to be transmitted in LLDPDUs by the specified port or ports. Use the show lldp port local-info command to display the values of these TLVs for the port.
Page 247 Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED mac-phy MAC-PHY Configuration/Status IEEE 802.3 Extensions TLV. Value sent includes the operational MAU type, duplex, and speed of the port. Power via MDI IEEE 802.3 Extensions TLV. Values sent include whether pair selection can be controlled on port, and the power class supplied by the port.
Page 248 Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example configures the management address, MED capability, MED network policy, and MED location identification TLVs to be sent in LLDPDUs by port ge.1.1. Matrix(rw)->set lldp port tx-tlv mgmt-addr med-cap med-pol med-loc ge.1.1 3-52 Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 249: Set Lldp Port Network-Policy
Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED 3.2.4.18 set lldp port network-policy Use this command to configure network policy for a set of applications on a port or range of ports. The policies configured with this command are sent in LLDPDUs as LLDP-MED Network Policy TLVs.
Page 250 Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED vid vlan-id | dot1p (Optional) VLAN identifier for the port. The value of vlan-id can range from 1 to 4094. Use dot1p if the device is using priority tagged frames, meaning that only the IEEE 802.1D priority level is significant and the default PVID of the ingress port is used.
Page 251 Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED Example This example configures the voice application TLV on port fe.2.1 and then configures the port to send the Network Policy TLV. Matrix(rw)->set lldp port network-policy voice state enable tag tagged vlan dot1p fe.2.1 Matrix(rw)->set lldp port tx-tlv med-pol fe.2.1 Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 252: Clear Lldp
Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED 3.2.4.19 clear lldp Use this command to return LLDP parameters to their default values. clear lldp {all | tx-interval | hold-multipler | trap-interval | med-fast-repeat} Syntax Description Return all LLDP configuration parameters to their default values, including port LLDP configuration parameters.
Page 253: Clear Lldp Port Status
Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED 3.2.4.20 clear lldp port status Use this command to return the port status to the default value of both (both transmitting and processing received LLDPDUs are enabled). clear lldp port status port-string Syntax Description port-string Specifies the port or range of ports to be affected.
Page 254: Clear Lldp Port Trap
Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED 3.2.4.21 clear lldp port trap Use this command to return the port LLDP trap setting to the default value of disabled. clear lldp port trap port-string Syntax Description port-string Specifies the port or range of ports to be affected. Command Defaults None.
Page 255: Clear Lldp Port Med-Trap
Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED 3.2.4.22 clear lldp port med-trap Use this command to return the port LLDP-MED trap setting to the default value of disabled. clear lldp port med-trap port-string Syntax Description port-string Specifies the port or range of ports to be affected. Command Defaults None.
Page 256: Clear Lldp Port Location-Info
Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED 3.2.4.23 clear lldp port location-info Use this command to return the port ECS ELIN location setting to the default value of null. clear lldp port location-info elin port-string Syntax Description elin Specifies that the ECS ELIN location information value should be cleared.
Page 257: Clear Lldp Port Network-Policy
Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED 3.2.4.24 clear lldp port network-policy Use this command to return network policy for a set of applications on a port or range of ports to default values. clear lldp port network-policy {all | voice | voice-signaling | guest-voice | guest-voice-signaling | softphone-voice | video-conferencing | streaming-video | video-signaling} {[state ] [ tag ] [vid ] [cos ] [dscp ] } port-string Syntax Description...
Page 258 Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED dscp (Optional) Clear the DSCP value to be used to provide Diffserv node behavior for the application being configured to the default value of 0. (A value of 0 represents use of the default DSCP value as defined in RFC 2475.) port-string Specifies the port or range of ports to be affected.
Page 259: Clear Lldp Port Tx-Tlv
Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED 3.2.4.25 clear lldp port tx-tlv Use this command to clear the optional LLDP and LLDP-MED TLVs to be transmitted in LLDPDUs by the specified port or ports to the default value of disabled. clear lldp port tx-tlv {[all] | [port-desc] [sys-name] [sys-desc] [sys-cap] [mgmt-addr] [vlan-id] [stp] [lacp] [gvrp] [mac-phy] [poe] [link-aggr] [max-frame] [med-cap] [med-pol] [med-loc] [med-poe]} port-string...
Page 260 Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED Disable the Power via MDI IEEE 802.3 Extensions TLV from being transmitted in LLDPDUs. Only valid for PoE-enabled ports. link-aggr Disable the Link Aggregation IEEE 802.3 Extensions TLV from being transmitted in LLDPDUs. max-frame Disable the Maximum Frame Size IEEE 802.3 Extensions TLV from being transmitted in LLDPDUs.
Page 261: Port Configuration
Port Configuration This chapter describes the Port Configuration set of commands and how to use them. Important Notice CLI examples in this guide illustrate a generic Matrix command prompt and chassis-based / modular port designations. Depending on which Matrix Series device you are using, your default command prompt and output may be different than the examples shown.
Page 262: Port String Syntax Used In The Cli
Port Configuration Summary Port String Syntax Used in the CLI 4.1.1 Port String Syntax Used in the CLI Commands requiring a port-string parameter use the following syntax to designate port type, slot location, and port number: port type.slot location.port number Where port type can be: fe for 100-Mbps Ethernet ge for 1-Gbps Ethernet...
Page 263 Port Configuration Summary Port String Syntax Used in the CLI Examples NOTE: You can use a wildcard (*) to indicate all of an item. For example, fe.3.* would represent all 100Mbps Ethernet (fe) ports in the module in slot 3. This example shows the port-string syntax for specifying the 100-Mbps Ethernet ports 1 through 10 in the module in chassis slot 1.
Page 264 Port Configuration Summary Port String Syntax Used in the CLI This example shows the port-string syntax for specifying all ports (of any interface type) in all modules in the chassis *.*.* 4-4 Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 265: Process Overview: Port Configuration
Process Overview: Port Configuration Port String Syntax Used in the CLI PROCESS OVERVIEW: PORT CONFIGURATION Use the following steps as a guide to configuring console and switch ports on the device: 1. Reviewing and setting console port properties (Section 4.3.1) 2.
Page 266: Port Configuration Command Set
Port Configuration Command Set Setting Console Port Properties PORT CONFIGURATION COMMAND SET 4.3.1 Setting Console Port Properties Purpose To review and set parameters for one or more of the device’s console ports, including baud rate, auto baud detection, stopbits and parity. Commands The commands used to review and configure console port settings are listed below and described in the associated section as shown.
Page 267: Show Console
Port Configuration Command Set Setting Console Port Properties 4.3.1.1 show console Use this command to display properties set for one or more console ports. show console [port-string] Syntax Description port-string (Optional) Displays properties for specific console port(s) Command Defaults If port-string is not specified, properties for all console ports will be displayed. Command Type Switch command.
Page 268: Clear Console
Port Configuration Command Set Setting Console Port Properties 4.3.1.2 clear console Use this command to clear the properties set for one or more console ports. clear console [port-string] Syntax Description port-string (Optional) Clears properties for specific console port(s). Command Defaults If port-string is not specified, properties for all console ports will be cleared.
Page 269: Show Console Baud
Port Configuration Command Set Setting Console Port Properties 4.3.1.3 show console baud Use this command to display the baud rate for one or more console ports. show console baud [port-string] Syntax Description port-string (Optional) Displays baud rate for specific console port(s). Command Defaults If port-string is not specified, baud rate for all console ports will be displayed.
Page 270: Set Console Baud
Port Configuration Command Set Setting Console Port Properties 4.3.1.4 set console baud Use this command to set the baud rate for one or more console ports. set console baud rate [port-string] Syntax Description rate Sets the console baud rate. Valid values are: 300, 600, 1200, 2400, 4800, 5760, 9600, 14400, 19200, 38400, and 115200.
Page 271: Clear Console Baud
Port Configuration Command Set Setting Console Port Properties 4.3.1.5 clear console baud Use this command to clear the baud rate for one or more console ports. clear console baud [port-string] Syntax Description port-string (Optional) Clears baud rate for specific port(s). Command Defaults If port-string is not specified, baud rate will be cleared for all console ports.
Page 272: Show Console Flowcontrol
Port Configuration Command Set Setting Console Port Properties 4.3.1.6 show console flowcontrol Use this command to display the type of flow control setting for one or more console ports. show console flowcontrol [port-string] Syntax Description port-string (Optional) Displays the flow control setting for specific console port(s).
Page 273: Set Console Flowcontrol
Port Configuration Command Set Setting Console Port Properties 4.3.1.7 set console flowcontrol Use this command to set the type of flow control for one or more console ports. set console flowcontrol {none | ctsrts | dsrdtr} [port-string] Syntax Description none Disables all hardware flow control.
Page 274: Clear Console Flowcontrol
Port Configuration Command Set Setting Console Port Properties 4.3.1.8 clear console flowcontrol Use this command to clear the type of flow control for one or more console ports. clear console flowcontrol [port-string] Syntax Description port-string (Optional) Clears flow control for specific console port(s). Command Defaults If port-string is not specified, flow control will be cleared for all console ports.
Page 275: Show Console Bits
Port Configuration Command Set Setting Console Port Properties 4.3.1.9 show console bits Use this command to display the number of bits per character set for one or more console ports. show console bits [port-string] Syntax Description port-string (Optional) Displays the bits per character setting for specific console port(s).
Page 276: Set Console Bits
Port Configuration Command Set Setting Console Port Properties 4.3.1.10 set console bits Use this command to set the number of bits per character for one or more console ports. set console bits num-bits [port-string] Syntax Description num-bits Specifies the number of bits per character. Valid values are 5, 6, 7, and 8.
Page 277: Clear Console Bits
Port Configuration Command Set Setting Console Port Properties 4.3.1.11 clear console bits Use this command to clear the number of bits per character for one or more console ports. clear console bits [port-string] Syntax Description port-string (Optional) Clears bits per character for specific console port(s). Command Defaults If port-string is not specified, bits per character will be cleared for all console ports.
Page 278: Show Console Stopbits
Port Configuration Command Set Setting Console Port Properties 4.3.1.12 show console stopbits Use this command to display the console port stop bits per character. show console stopbits [port-string] Syntax Description port-string (Optional) Displays stop bits for specific console port(s). Command Defaults If port-string is not specified, stop bits per character will be displayed for all console ports.
Page 279: Set Console Stopbits
Port Configuration Command Set Setting Console Port Properties 4.3.1.13 set console stopbits Use this command to set the stop bits per character for one or more console ports. set console stopbits {one | oneandhalf | two} [port-string] Syntax Description one | Sets stop bits per character to 1, 1.5 or 2.
Page 280: Clear Console Stopbits
Port Configuration Command Set Setting Console Port Properties 4.3.1.14 clear console stopbits Use this command to clear the stop bits per character for one or more console ports. clear console stopbits [port-string] Syntax Description port-string (Optional) Clears stop bits for specific console port(s). Command Defaults If port-string is not specified, stop bits per character will be cleared for all console ports.
Page 281: Show Console Parity
Port Configuration Command Set Setting Console Port Properties 4.3.1.15 show console parity Use this command to display the type of parity checking set for one or more console ports. show console parity [port-string] Syntax Description port-string (Optional) Displays parity type for specific console port(s). Command Defaults If port-string is not specified, parity type for all console ports will be displayed.
Page 282: Set Console Parity
Port Configuration Command Set Setting Console Port Properties 4.3.1.16 set console parity Use this command to set the parity type for one or more console ports. set console parity {none | odd | even | mark | space} [port-string] Syntax Description none Specifies that no parity checking will be performed.
Page 283: Clear Console Parity
Port Configuration Command Set Setting Console Port Properties 4.3.1.17 clear console parity Use this command to clear the parity type for one or more console ports. clear console parity [port-string] Syntax Description port-string (Optional) Clears the parity type for specific console port(s). Command Defaults If port-string is not specified, parity type will be cleared for all console ports.
Page 284: Reviewing Port Status
Port Configuration Command Set Reviewing Port Status 4.3.2 Reviewing Port Status Purpose To display operating status, duplex mode, speed, port type, and statistical information about traffic received and transmitted through one or all switch ports on the device. Commands The commands used to review port status are listed below and described in the associated sections as shown.
Page 285: Show Port
Port Configuration Command Set Reviewing Port Status 4.3.2.1 show port Use this command to display whether or not one or more ports are enabled for switching. show port [port-string] Syntax Description port-string (Optional) Displays operational status for specific port(s). For a detailed description of possible port-string values, refer to Section 4.1.1.
Page 286: Show Port Status
Port Configuration Command Set Reviewing Port Status 4.3.2.2 show port status Use this command to display operating and admin status, speed, duplex mode and port type for one or more ports on the device. show port status [port-string] [-interesting] Syntax Description port-string (Optional) Displays status for specific port(s).
Page 287 Port Configuration Command Set Reviewing Port Status Table 4-1 provides an explanation of the command output. Table 4-1 show port status Output Details Output What It Displays... Port Port designation. For a detailed description of possible port-string values, refer to Section 4.1.1.
Page 288: Show Port Counters
Port Configuration Command Set Reviewing Port Status 4.3.2.3 show port counters Use this command to display port counter statistics detailing traffic through the device and through all MIB2 network devices. show port counters [port-string] [switch | mib2] Syntax Description port-string (Optional) Displays counter statistics for specific port(s).
Page 289 Port Configuration Command Set Reviewing Port Status Examples This example shows how to display all counter statistics, including MIB2 network traffic and traffic through the device for fe.3.1: Matrix(rw)->show port counters fe.3.1 Port: fe.3.1 MIB2 Interface: 1 Bridge Port: 2 No counter discontinuity time ----------------------------------------------------------------- MIB2 Interface Counters...
Page 290 Port Configuration Command Set Reviewing Port Status Table 4-2 provides an explanation of the command output. Table 4-2 show port counters Output Details Output What It Displays... Port Port designation. For a detailed description of possible port-string values, refer to Section 4.1.1.
Page 291: Show Port Operstatuscause
Port Configuration Command Set Reviewing Port Status 4.3.2.4 show port operstatuscause Use this command to display the causes configured to place operating status to a down or dormant state for one or more ports. show port operstatuscause [port-string] [any] [modifiable][admin] [linkloss] [linkflap] [self] [init] [flowlimit] [policy] [cos] [dot1x] [lag] Syntax Description port-string...
Page 292 Port Configuration Command Set Reviewing Port Status (Optional) Displays ports dormant due to Link Aggregation Group (LAG) membership. For more information on configuring LAG, refer to Section 4.3.8. Command Defaults If no options are specified, causes for all ports will be displayed. Command Type Switch command.
Page 293: Clear Port Operstatuscause
Port Configuration Command Set Reviewing Port Status 4.3.2.5 clear port operstatuscause Use this command to override the causes configured to place operating status to a down or dormant state for one or more ports. clear port operstatuscause [port-string] [admin] [linkflap] [flowlimit] [policy] [cos][all] Syntax Description port-string...
Page 294: Disabling / Enabling And Naming Ports
Port Configuration Command Set Disabling / Enabling and Naming Ports 4.3.3 Disabling / Enabling and Naming Ports Purpose To disable and re-enable one or more ports, and to assign an alias to a port. By default, all ports are enabled at device startup. You may want to disable ports for security or to troubleshoot network issues.
Page 295: Set Port Disable
Port Configuration Command Set Disabling / Enabling and Naming Ports 4.3.3.1 set port disable Use this command to administratively disable one or more ports. set port disable port-string Syntax Description port-string Specifies the port(s) to disable. For a detailed description of possible port-string values, refer to Section 4.1.1.
Page 296: Set Port Enable
Port Configuration Command Set Disabling / Enabling and Naming Ports 4.3.3.2 set port enable Use this command to administratively enable one or more ports. set port enable port-string Syntax Description port-string Specifies the port(s) to enable. For a detailed description of possible port-string values, refer to Section 4.1.1.
Page 297: Show Port Alias
Port Configuration Command Set Disabling / Enabling and Naming Ports 4.3.3.3 show port alias Use this command to display alias name(s assigned to one or more ports. show port alias [port-string] Syntax Description port-string (Optional) Displays alias name(s) for specific port(s). For a detailed description of possible port-string values, refer Section 4.1.1.
Page 298: Set Port Alias
Port Configuration Command Set Disabling / Enabling and Naming Ports 4.3.3.4 set port alias Use this command to assign an alias name to a port. set port alias port-string [string] Syntax Description port-string Specifies the port to which an alias will be assigned. For a detailed description of possible port-string values, refer Section 4.1.1.
Page 299: Show Forcelinkdown
Port Configuration Command Set Disabling / Enabling and Naming Ports 4.3.3.5 show forcelinkdown Use this command to display the status of the force link down function. show forcelinkdown Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only.
Page 300: Set Forcelinkdown
Port Configuration Command Set Disabling / Enabling and Naming Ports 4.3.3.6 set forcelinkdown Use this command to enable or disable the force link down function. When enabled, this forces ports in the “operstatus down” state to become disabled. set forcelinkdown {enable | disable} Syntax Description enable | disable Enables or disables the force link down function on all...
Page 301: Clear Forcelinkdown
Port Configuration Command Set Disabling / Enabling and Naming Ports 4.3.3.7 clear forcelinkdown Use this command to resets the force link down function to the default state of disabled. clear forcelinkdown Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write.
Page 302: Setting Speed And Duplex Mode
Port Configuration Command Set Setting Speed and Duplex Mode 4.3.4 Setting Speed and Duplex Mode Purpose To review and set the operational speed in Mbps and the default duplex mode: Half, for half duplex, or Full, for full duplex for one or more ports. NOTE: These settings only take effect on ports that have auto-negotiation disabled.
Page 303: Show Port Speed
Port Configuration Command Set Setting Speed and Duplex Mode 4.3.4.1 show port speed Use this command to display the default speed setting on one or more ports. show port speed [port-string] Syntax Description port-string (Optional) Displays default speed setting(s) for specific port(s).
Page 304: Set Port Speed
Port Configuration Command Set Setting Speed and Duplex Mode 4.3.4.2 set port speed Use this command to set the default speed of one or more ports. This setting only takes effect on ports that have auto-negotiation disabled. set port speed port-string {10 | 100 | 1000} Syntax Description port-string Specifies the port(s) for which to a speed value will be...
Page 305: Show Port Duplex
Port Configuration Command Set Setting Speed and Duplex Mode 4.3.4.3 show port duplex Use this command to display the default duplex setting (half or full) for one or more ports. show port duplex [port-string] Syntax Description port-string (Optional) Displays default duplex setting(s) for specific port(s).
Page 306: Set Port Duplex
Port Configuration Command Set Setting Speed and Duplex Mode 4.3.4.4 set port duplex Use this command to set the default duplex type for one or more ports. set port duplex port-string {full | half} NOTE: This command will only take effect on ports that have auto-negotiation disabled. Syntax Description port-string Specifies the port(s) for which duplex type will be set.
Page 307: Enabling / Disabling Jumbo Frame Support
Port Configuration Command Set Enabling / Disabling Jumbo Frame Support 4.3.5 Enabling / Disabling Jumbo Frame Support Purpose To review, enable, and disable jumbo frame support on one or more ports. This allows Gigabit Ethernet ports to transmit frames up to 10 KB in size. Commands The commands used to review, enable and disable jumbo frame support are listed below and described in the associated section as shown.
Page 308: Show Port Jumbo
Port Configuration Command Set Enabling / Disabling Jumbo Frame Support 4.3.5.1 show port jumbo Use this command to display the status of jumbo frame support and maximum transmission units (MTU) on one or more ports. show port jumbo [port-string] Syntax Description port-string (Optional) Displays the status of jumbo frame support for specific port(s).
Page 309: Set Port Jumbo
Port Configuration Command Set Enabling / Disabling Jumbo Frame Support 4.3.5.2 set port jumbo Use this command to enable or disable jumbo frame support on one or more ports. set port jumbo {enable | disable} [port-string] NOTE: By default, jumbo frame support is disabled on all ports and path MTU discovery is enabled.
Page 310: Clear Port Jumbo
Port Configuration Command Set Enabling / Disabling Jumbo Frame Support 4.3.5.3 clear port jumbo Use this command to reset jumbo frame support status to enabled on one or more ports. clear port jumbo [port-string] Syntax Description port-string (Optional) Specifies the port(s) on which to reset jumbo frame support status to enabled.
Page 311: Setting Auto-Negotiation And Advertised Ability
Port Configuration Command Set Setting Auto-Negotiation and Advertised Ability 4.3.6 Setting Auto-Negotiation and Advertised Ability Purpose To review, disable or enable auto-negotiation, and to review or set a port’s advertised mode of operation. During auto-negotiation and advertised ability, the port “tells” the device at the other end of the segment what its capabilities and mode of operation are.
Page 312: Show Port Negotiation
Port Configuration Command Set Setting Auto-Negotiation and Advertised Ability 4.3.6.1 show port negotiation Use this command to display the status of auto-negotiation for one or more ports. show port negotiation [port-string] Syntax Description port-string (Optional) Displays auto-negotiation status for specific port(s).
Page 313: Set Port Negotiation
Port Configuration Command Set Setting Auto-Negotiation and Advertised Ability 4.3.6.2 set port negotiation Use this command to enable or disable auto-negotiation on one or more ports. set port negotiation port-string {enable | disable} Syntax Description port-string Specifies the port(s) for which to enable or disable auto-negotiation.
Page 314: Show Port Mdix
Port Configuration Command Set Setting Auto-Negotiation and Advertised Ability 4.3.6.3 show port mdix Use this command to display the MDI/MDIX mode on one or more ports. This function detects and adapts to straight through (MDI) or cross-over (MDIX) Ethernet cabling on switch ports. show port mdix [port-string] {all | auto | mdi | mdix} Syntax Description port-string...
Page 315: Set Port Mdix
Port Configuration Command Set Setting Auto-Negotiation and Advertised Ability 4.3.6.4 set port mdix Use this command to set MDI/MDIX mode on one or more ports. set port mdix [port-string] {auto | mdi | mdix} Syntax Description port-string (Optional) Sets mode for specific port(s). For a detailed description of possible port-string values, refer to Section 4.1.1.
Page 316: Clear Port Mdix
Port Configuration Command Set Setting Auto-Negotiation and Advertised Ability 4.3.6.5 clear port mdix Use this command to reset MDIX mode to the default setting of auto on one or more ports. clear port mdix [port-string] Syntax Description port-string (Optional) Resets mode for specific port(s). For a detailed description of possible port-string values, refer to Section 4.1.1.
Page 317: Show Port Advertise
Port Configuration Command Set Setting Auto-Negotiation and Advertised Ability 4.3.6.6 show port advertise Use this command to display the advertised ability on one or more ports. show port advertise [port-string] Syntax Description port-string (Optional) Displays advertised ability for specific port(s). For a detailed description of possible port-string values, refer to Section...
Page 318 Port Configuration Command Set Setting Auto-Negotiation and Advertised Ability Table 4-3 show port advertise Output Details Output What It Displays... capability Whether or not the port is capable of operating in the following modes: • 10t - 10BASE-T half duplex mode •...
Page 319: Set Port Advertise
Port Configuration Command Set Setting Auto-Negotiation and Advertised Ability 4.3.6.7 set port advertise Use this command to enable or disable and to configure the advertised ability on one or more ports. set port advertise port-string [10t] [10tfd] [100tx] [100txfd] [1000x] [1000xfd] [1000t] [1000tfd] [pause] [apause] [spause] [bpause] Syntax Description port-string...
Page 320 Port Configuration Command Set Setting Auto-Negotiation and Advertised Ability Command Mode Read-Write. Example This example shows how to set fe.3.4 to advertise 100BASE-TX full duplex operation: Matrix(rw)->set port advertise fe.3.4 100txfd 4-60 Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 321: Clear Port Advertise
Port Configuration Command Set Setting Auto-Negotiation and Advertised Ability 4.3.6.8 clear port advertise Use this command to reset advertised ability to the default setting on one or more ports. clear port advertise port-string [10t | 10tfd | 100tx | 100txfd | 1000x | 1000txfd | 1000t | 1000tfd | pause | apause | spause | bpause] Syntax Description port-string...
Page 322 Port Configuration Command Set Setting Auto-Negotiation and Advertised Ability Command Defaults If not specified, all modes of advertised ability will be cleared. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset all advertised ability to default settings on fe.3.4: Matrix(rw)->clear port advertise fe.3.4 4-62 Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 323: Setting Flow Control
Port Configuration Command Set Setting Flow Control 4.3.7 Setting Flow Control Purpose To review, enable or disable port flow control. Flow control is used to manage the transmission between two devices as specified by IEEE 802.3x to prevent receiving ports from being overwhelmed by frames from transmitting devices.
Page 324: Show Port Flowcontrol
Port Configuration Command Set Setting Flow Control 4.3.7.1 show port flowcontrol Use this command to display the flow control state for one or more ports. show port flowcontrol [port-string] Syntax Description port-string (Optional) Displays flow control state for specific port(s). For a detailed description of possible port-string values, refer to Section...
Page 325 Port Configuration Command Set Setting Flow Control Table 4-4 show port flow control Output Details (Continued) Output What It Displays... TX Oper Whether or not the port is operationally enabled or disabled for sending flow control frames. RX Admin Whether or not the port is administratively enabled or disabled for acknowledging received flow control frames.
Page 326: Set Port Flowcontrol
Port Configuration Command Set Setting Flow Control 4.3.7.2 set port flowcontrol Use this command to enable or disable flow control settings for one or more ports. set port flowcontrol port-string {receive | send | both}{enable | disable} Syntax Description port-string Specifies port(s) for which to enable or disable flow control.
Page 327: Configuring Link Traps And Link Flap Detection
Port Configuration Command Set Configuring Link Traps and Link Flap Detection 4.3.8 Configuring Link Traps and Link Flap Detection Purpose To disable or re-enable link traps and to configure the link flapping detection function. By default, all ports are enabled to send SNMP trap messages indicating changes in their link status (up or down).
Page 328: Show Port Trap
Port Configuration Command Set Configuring Link Traps and Link Flap Detection 4.3.8.1 show port trap Use this command to display whether the port is enabled for generating an SNMP trap message if its link state changes. show port trap [port-string] Syntax Description port-string (Optional) Displays link trap status for specific port(s).
Page 329: Set Port Trap
Port Configuration Command Set Configuring Link Traps and Link Flap Detection 4.3.8.2 set port trap Use this command to enable or disable ports for sending SNMP trap messages when their link status changes. set port trap port-string {enable | disable} Syntax Description port-string Specifies the port(s) for which to enable or disable link trap...
Page 330: Show Linkflap
Port Configuration Command Set Configuring Link Traps and Link Flap Detection 4.3.8.3 show linkflap Use this command to display link flap detection state and configuration information. show linkflap {globalstate | portstate | parameters | metrics | portsupported | actsupported | maximum | downports | action | operstatus | threshold | interval] | downtime | currentcount | totalcount | timelapsed | violations [port-string]} Syntax Description globalstate...
Page 331 Port Configuration Command Set Configuring Link Traps and Link Flap Detection violations Displays the number of link flap violations since the last reset. port-string (Optional) Displays information for specific port(s). For a detailed description of possible port-string values, refer to Section 4.1.1.
Page 332 Port Configuration Command Set Configuring Link Traps and Link Flap Detection Table 4-5 provides an explanation of the show linkflap parameters command output. Table 4-5 show linkflap parameters Output Details Output What It Displays... Port Port designation. For a detailed description of possible port-string values, refer to Section 4.1.1.
Page 333 Port Configuration Command Set Configuring Link Traps and Link Flap Detection Table 4-6 show linkflap metrics Output Details (Continued) Output What It Displays... TimeElapsed Time (in seconds) since the last link down event. Violations Number of link flap violations on listed ports since system start.
Page 334: Set Linkflap Globalstate
Port Configuration Command Set Configuring Link Traps and Link Flap Detection 4.3.8.4 set linkflap globalstate Use this command to globally enable or disable the link flap detection function. By default, the function is disabled globally and on all ports. If disabled globally after per-port settings have been configured using the commands later in this chapter, per-port settings will be retained.
Page 335: Set Linkflap
Port Configuration Command Set Configuring Link Traps and Link Flap Detection 4.3.8.5 set linkflap Use this command to enable or disable link flap monitoring on one or more ports. set linkflap portstate {disable | enable} [port-string] Syntax Description disable | enable Disables or enables the link flap detection function.
Page 336: Set Linkflap Interval
Port Configuration Command Set Configuring Link Traps and Link Flap Detection 4.3.8.6 set linkflap interval Use this command to set the time interval (in seconds) for accumulating link down transitions. set linkflap interval port-string interval_value Syntax Description port-string Specifies the port(s) on which to set the link flap interval. For a detailed description of possible port-string values, refer to Section...
Page 337: Set Linkflap Action
Port Configuration Command Set Configuring Link Traps and Link Flap Detection 4.3.8.7 set linkflap action Use this command to set reactions to a link flap violation. set linkflap action port-string {disableInterface | gensyslogentry | gentrap | all} Syntax Description port-string Specifies the port(s) on which to set the link flap action.
Page 338: Clear Linkflap Action
Port Configuration Command Set Configuring Link Traps and Link Flap Detection 4.3.8.8 clear linkflap action Use this command to clear reactions to a link flap violation. clear linkflap action [port-string} {disableInterface | gensyslogentry | gentrap | all} Syntax Description port-string (Optional) Specifies the port(s) on which to clear the link flap action.
Page 339: Set Linkflap Threshold
Port Configuration Command Set Configuring Link Traps and Link Flap Detection 4.3.8.9 set linkflap threshold Use this command to set the link flap action trigger count. set linkflap threshold port-string threshold_value Syntax Description port-string Specifies the port(s) on which to set the link flap action trigger count.
Page 340: Set Linkflap Downtime
Port Configuration Command Set Configuring Link Traps and Link Flap Detection 4.3.8.10 set linkflap downtime Use this command to set the time interval (in seconds) one or more ports will be held down after a link flap violation. set linkflap downtime port-string downtime_value Syntax Description port-string Specifies the port(s) on which to set the link flap downtime.
Page 341: Clear Linkflap Down
Port Configuration Command Set Configuring Link Traps and Link Flap Detection 4.3.8.11 clear linkflap down Use this command to toggle link flap disabled ports to operational. clear linkflap down [port-string] Syntax Description port-string Specifies the port(s) to make operational. For a detailed description of possible port-string values, refer to Section 4.1.1.
Page 342: Clear Linkflap
Port Configuration Command Set Configuring Link Traps and Link Flap Detection 4.3.8.12 clear linkflap Use this command to clear all link flap options and / or statistics on one or more ports. clear linkflap {all | stats [port-string] | parameter port-string {threshold | interval | downtime | all} Syntax Description all | stats...
Page 343: Configuring Broadcast Suppression
Port Configuration Command Set Configuring Broadcast Suppression 4.3.9 Configuring Broadcast Suppression Purpose To review, disable or set the broadcast thresholds on one or more ports. This limits the amount of received broadcast frames that the specified port will be allowed to switch out to other ports. Broadcast suppression protects against broadcast storms, leaving more bandwidth available for critical data.
Page 344: Show Port Broadcast
Port Configuration Command Set Configuring Broadcast Suppression 4.3.9.1 show port broadcast Use this command to display port broadcast suppression information for one or more ports. show port broadcast [port-string] Syntax Description port-string (Optional) Displays broadcast status for specific port(s). For a detailed description of possible port-string values, refer to Section 4.1.1.
Page 345 Port Configuration Command Set Configuring Broadcast Suppression Table 4-7 show port broadcast Output Details (Continued) Output What It Displays... Peak Rate (pkts/s) Peak rate of broadcast transmission received on this port in packets per second. Peak Rate Time Time (in day, hours, minutes and seconds) the peak rate was (ddd:hh:mm:ss) reached on this port.
Page 346: Set Port Broadcast
Port Configuration Command Set Configuring Broadcast Suppression 4.3.9.2 set port broadcast Use this command to set the broadcast suppression limit, in packets per second, on one or more ports. This sets a threshold on the broadcast traffic that is received and switched out to other ports. set port broadcast port-string threshold-val Syntax Description port-string...
Page 347: Clear Port Broadcast
Port Configuration Command Set Configuring Broadcast Suppression 4.3.9.3 clear port broadcast Use this command to reset the broadcast threshold and/or clear the peak rate and peak time values on one or switch more ports. clear port broadcast port-string [threshold] [peak] Syntax Description port-string Specifies the port(s) on which broadcast settings will be...
Page 348: Configuring Port Mirroring
Configuring Port Mirroring Supported Mirrors CONFIGURING PORT MIRRORING CAUTION: Port mirroring configuration should be performed only by personnel who are knowledgeable about the effects of port mirroring and its impact on network operation. The Matrix device allows you to mirror (or redirect) the traffic being switched on a port or VLAN for the purposes of network traffic analysis and connection assurance.
Page 349: Ids Mirroring Considerations
Configuring Port Mirroring IDS Mirroring Considerations 4.4.2 IDS Mirroring Considerations An IDS mirror is a one-to-many port mirror that has been designed for use with an Intrusion Detection System. The following considerations must be taken into account when configuring IDS mirroring on the Matrix device: •...
Page 350: Setting Port Mirroring
Configuring Port Mirroring Setting Port Mirroring 4.4.4 Setting Port Mirroring Purpose To review and configure port mirroring on the device. Commands The commands used to review and configure port mirroring are listed below and described in the associated section as shown. •...
Page 351: Show Port Mirroring
Configuring Port Mirroring Setting Port Mirroring 4.4.4.1 show port mirroring Use this command to display the source and target ports for mirroring, and whether mirroring is currently enabled or disabled for those ports. show port mirroring Syntax Description None. Command Defaults None.
Page 352: Set Port Mirroring
Configuring Port Mirroring Setting Port Mirroring 4.4.4.2 set port mirroring Use this command to create a new mirroring relationship or to enable or disable an existing mirroring relationship between two ports. set port mirroring {create | disable | enable} | igmp-mcast {enable | disable}source destination [both | rx | tx] Syntax Description create | disable |...
Page 353 Configuring Port Mirroring Setting Port Mirroring Example This example shows how to enable port mirroring of transmitted and received frames with fe.1.4 as the source port and fe.1.11 as the target port: Matrix(rw)->set port mirroring enable fe.1.4 fe.1.11 both Matrix DFE-Platinum and Diamond Series Configuration Guide 4-93...
Page 354: Clear Port Mirroring
Configuring Port Mirroring Setting Port Mirroring 4.4.4.3 clear port mirroring Use this command to clear a port mirroring relationship. clear port mirroring {igmp-mcast | source destination} Syntax Description igmp-mcast Clears IGMP multicast mirroring. source Specifies the source port of the mirroring configuration to be cleared.
Page 355: Configuring Lacp
Configuring LACP LACP Operation CONFIGURING LACP CAUTION: Link aggregation configuration should only be performed by personnel who are knowledgeable about Spanning Tree and Link Aggregation, and fully understand the ramifications of modifications beyond device defaults. Otherwise, the proper operation of the network could be at risk. Using multiple links simultaneously to increase bandwidth is a desirable switch feature, which can be accomplished if both sides agree on a set of ports that are being used as a Link Aggregation Group (LAG).
Page 356: Lacp Terminology
Configuring LACP LACP Terminology The operation of LACP involves the following activities: • Checking that candidate links can actually be aggregated. • Controlling the addition of a link to a LAG, and the creation of the group if necessary. • Monitoring the status of aggregated links to ensure that the aggregation is still valid.
Page 357: Matrix Series Usage Considerations
Configuring LACP Matrix Series Usage Considerations Table 4-8 LACP Terms and Definitions (Continued) Term Definition Actor and Partner An actor is the local device sending LACPDUs. Its protocol partner is the device on the other end of the link aggregation. Each maintains current status of the other via LACPDUs containing information about their ports’...
Page 358 Configuring LACP Matrix Series Usage Considerations LACP uses a system priority value to build a LAG ID, which determines aggregation precedence. If there are two partner devices competing for the same aggregator, LACP compares the LAG IDs for each grouping of ports. The LAG with the lower LAG ID is given precedence and will be allowed to use the aggregator.
Page 359: Configuring Link Aggregation
Configuring LACP Configuring Link Aggregation 4.5.4 Configuring Link Aggregation Purpose To disable and re-enable the Link Aggregation Control Protocol (LACP), to display and configure LACP settings for one or more aggregator ports, and to display and configure the LACP settings for underlying physical ports that are potential members of a link aggregation.
Page 360: Show Lacp
Configuring LACP Configuring Link Aggregation 4.5.4.1 show lacp Use this command to display the global LACP enable state, or to display information about one or more aggregator ports. Each Matrix Series module provides 48 virtual link aggregator ports, which are designated in the CLI as lag.0.1 through lag.0.48. Once underlying physical ports (i.e.; fe.x.x, ge.x.x) are associated with an aggregator port, the resulting aggregation will be represented as one Link Aggregation Group (LAG) with a lag.x.x port designation.
Page 361 Configuring LACP Configuring Link Aggregation Table 4-9 show lacp Output Details Output What It Displays... Aggregator LAG port designation. Each Matrix Series module provides 48 virtual link aggregator ports, which are designated in the CLI as lag.0.1 through lag.0.48. Once underlying physical ports (i.e.;...
Page 362: Set Lacp
Configuring LACP Configuring Link Aggregation 4.5.4.2 set lacp Use this command to disable or enable the Link Aggregation Control Protocol (LACP) on the device. LACP is enabled by default. set lacp {disable | enable} Syntax Description disable | enable Disables or enables LACP. Command Defaults None.
Page 363: Clear Lacp State
Configuring LACP Configuring Link Aggregation 4.5.4.3 clear lacp state Use this command to reset LACP to the default state of enabled. clear lacp state Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset LACP to enabled Matrix(rw)->clear lacp state Matrix DFE-Platinum and Diamond Series Configuration Guide 4-103...
Page 364: Set Lacp Asyspri
Configuring LACP Configuring Link Aggregation 4.5.4.4 set lacp asyspri Use this command to set the LACP system priority. LACP uses this value to determine aggregation precedence. If there are two partner devices competing for the same aggregator, LACP compares the LAG IDs for each grouping of ports. The LAG with the lower LAG ID is given precedence and will be allowed to use the aggregator.
Page 365: Set Lacp Aadminkey
Configuring LACP Configuring Link Aggregation 4.5.4.5 set lacp aadminkey Use this command to set the administratively assigned key for one or more aggregator ports. LACP will use this value to form an oper key. Only underlying physical ports with oper keys matching those of their aggregators will be allowed to aggregate.
Page 366: Clear Lacp
Configuring LACP Configuring Link Aggregation 4.5.4.6 clear lacp Use this command to clear LACP system priority or admin key settings. clear lacp {[asyspri] [aadminkey port-string]} Syntax Description asyspri Clears system priority. aadminkey Clears admin keys for one or more ports. port-string Command Defaults None.
Page 367: Set Lacp Static
Configuring LACP Configuring Link Aggregation 4.5.4.7 set lacp static Use this command to assign one or more underlying physical ports to a Link Aggregation Group (LAG). NOTES: At least two ports need to be assigned to a LAG port for a Link Aggregation Group to form and attach to the specified LAG port.
Page 368 Configuring LACP Configuring Link Aggregation Example This example shows how to add port fe.1.6 to the LAG of aggregator port 48: Matrix(rw)->set lacp static lag.0. fe.1.6 4-108 Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 369: Clear Lacp Static
Configuring LACP Configuring Link Aggregation 4.5.4.8 clear lacp static Use this command to remove specific ports from a Link Aggregation Group. clear lacp static lagportstring port-string Syntax Description lagportstring Specifies the LAG aggregator port from which ports will be removed. port-string Specifies the port(s) to remove from the LAG.
Page 370: Show Lacp Singleportlag
Configuring LACP Configuring Link Aggregation 4.5.4.9 show lacp singleportlag Use this command to display the status of the single port LAG function. show lacp singleportlag Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the status of the single port LAG function Matrix(rw)->show lacp singleportlag Single Port LAGs: enabled...
Page 371: Set Singleportlag
Configuring LACP Configuring Link Aggregation 4.5.4.10 set singleportlag Use this command to enable or disable the formation of single port LAGs. When enabled, this maintains LAGs when only one port is receiving protocol transmissions from a partner. set lacp singleportlag {enable | disable} Syntax Description enable | disable Enables or disables the formation of single port LAGs.
Page 372: Clear Singleportlag
Configuring LACP Configuring Link Aggregation 4.5.4.11 clear singleportlag Use this command to reset the single port LAG function back to the default state of disabled. clear lacp singleportlag Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write.
Page 373: Show Port Lacp
Configuring LACP Configuring Link Aggregation 4.5.4.12 show port lacp Use this command to display link aggregation information for one or more underlying physical ports. show port lacp port port-string {[status {detail | summary}] | [counters]} [sort {port | lag}] Syntax Description port port-string Displays LACP information for specific port(s).
Page 374 Configuring LACP Configuring Link Aggregation Examples This example shows how to display detailed LACP status information or port fe.1.12: Matrix(rw)-> show port lacp port fe.1.12 status detail Port Instance: fe.1.12 ActorPort: 1411 PartnerAdminPort: 1411 ActorSystemPriority: 32768 PartnerOperPort: 1411 ActorPortPriority: 32768 PartnerAdminSystemPriority: 32768 ActorAdminKey:...
Page 375 Configuring LACP Configuring Link Aggregation This example shows how to display LACP counters for port fe.1.12: Matrix(rw)->show port lacp port fe.1.12 counters Port Instance: fe.1.12 LACPDUsRx: MarkerPDUsRX: LACPDUsTx: MarkerPDUsTx: IllegalRx: MarkerResponsePDUsRx: UnknownRx: MarkerResponsePDUsTx: ActorSyncTransitionCount: PartnerSyncTransitionCount: ActorChangeCount: PartnerChangeCount: ActorChurnCount: PartnerChurnCount: ActorChurnState: ChurnMonitor PartnerChurnState: ChurnMonitor...
Page 376: Set Port Lacp
Configuring LACP Configuring Link Aggregation 4.5.4.13 set port lacp Use this command to set link aggregation parameters for one or more ports. These settings will determine the specified underlying physical ports’ ability to join a LAG, and their administrative state once aggregated. set port lacp port port-string {[aadminkey aadminkey] [aportpri aportpri] [asyspri asyspri] [aadminstate {lacpactive | lacptimeout | lacpagg | lacpsync | lacpcollect | lacpdist | lacpdef | lacpexpire}] [padminsyspri padminsyspri]...
Page 377 Configuring LACP Configuring Link Aggregation asyspri asyspri Sets the port’s actor system priority. The LACP implementation on the Matrix Series device uses this value to determine aggregation precedence when there are two devices competing for the same aggregator. Valid values are 0 - 65535, with higher precedence given to lower values.
Page 378 Configuring LACP Configuring Link Aggregation padminstate Sets a port’s partner LACP administrative state. See lacpactive | aadminstate for valid options. lacptimeout | lacpagg | lacpsync | lacpcollect | lacpdist | lacpdef | lacpexpire enable (Optional) Enables LACPDU processing on this port. disable (Optional) Disables LACPDU processing on this port.
Page 379: Clear Port Lacp
Configuring LACP Configuring Link Aggregation 4.5.4.14 clear port lacp Use this command to clear link aggregation settings for one or more ports. clear port lacp port port-string {[aadminkey] [aportpri] [asyspri] [aadminstate {lacpactive | lacptimeout | lacpagg | lacpsync | lacpcollect | lacpdist | lacpdef | lacpexpire | all}] [padminsyspri] [padminsysid] [padminkey] [padminportpri] [padminport] [padminstate {lacpactive | lacptimeout | lacpagg | lacpsync | lacpcollect | lacpdist | lacpdef | lacpexpire |...
Page 380 Configuring LACP Configuring Link Aggregation padminstate Clears the port’s specific partner admin state, or all lacpactive | partner admin state(s). lacptimeout | lacpagg | lacpsync | lacpcollect | lacpdist | lacpdef | lacpexpire | all Command Defaults None. Command Type Switch command.
Page 381: Show Lacp Flowregeneration
Configuring LACP Configuring Link Aggregation 4.5.4.15 show lacp flowRegeneration Use this command to display the LACP flow regeneration state. show lacp flowRegeneration Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the current LACP flow regeneration state Matrix(rw)->show lacp flowRegeneration disable Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 382: Set Lacp Flowregeneration
Configuring LACP Configuring Link Aggregation 4.5.4.16 set lacp flowRegeneration Use this command to enable or disable LACP flow regeneration. When enabled and a new port joins a link aggregation group (LAG), LACP will redistribute all existing flows over the LAG. It will also attempt to load balance existing flows to take advantage of ports added to the LAG.
Page 383: Clear Lacp Flowregeneration
Configuring LACP Configuring Link Aggregation 4.5.4.17 clear lacp flowRegeneration Use this command to reset LACP flow regeneration to its default state (disabled). clear lacp flowRegeneration Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset LACP flow regeneration to disabled: Matrix(rw)->clear lacp flowRegeneration Matrix DFE-Platinum and Diamond Series Configuration Guide 4-123...
Page 384: Show Lacp Outportalgorithm
Configuring LACP Configuring Link Aggregation 4.5.4.18 show lacp outportAlgorithm Use this command to display the current LACP outport algorithm. show lacp outportAlgorithm Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the current LACP outport algorithm Matrix(rw)->show lacp outportAlgorithm dip-sip 4-124 Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 385: Set Lacp Outportalgorithm
Configuring LACP Configuring Link Aggregation 4.5.4.19 set lacp outportAlgorithm Use this command to set the algorithm LACP will use for outport determination. set lacp outportAlgorithm {dip-sip | da-sa | round-robin} Syntax Description dip-sip Specifies that destination and source IP addresses will determine the LACP outport.
Page 386: Clear Lacp Outportalgorithm
Configuring LACP Configuring Link Aggregation 4.5.4.20 clear lacp outportAlgorithm Use this command to reset LACP to DIP-SIP, its default outport algorithm. clear lacp outportAlgorithm Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the LACP outport algorithm to DIP-SIP: Matrix(rw)->clear lacp outportAlgorithm 4-126 Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 387: Snmp Configuration
SNMP agents and MIBs, including SNMP traps, community strings, and Remote Monitoring (RMON) MIBs, which run on managed devices • SNMP network management applications, such as Enterasys Networks’ NetSight Atlas, which communicate with agents to get statistics and alerts from the managed devices. Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 388: Snmpv3
SNMP Configuration Summary SNMPv3 5.1.2 SNMPv3 SNMPv3 is an interoperable standards-based protocol that provides secure access to devices by authenticating and encrypting frames over the network. The advanced security features provided in SNMPv3 are as follows: • Message integrity — Collects data securely without being tampered with or corrupted. •...
Page 389: Using Snmp Contexts To Access Specific Mibs Or Routing Modules
SNMP Configuration Summary Using SNMP Contexts to Access Specific MIBs or Routing Modules Table 5-1 SNMP Security Levels Model Security Level Authentication Encryption How It Works NoAuthNoPriv Community None Uses a community string string match for authentication. NoAuthNoPriv Community None Uses a community string string match for authentication.
Page 390 SNMP Configuration Summary Using SNMP Contexts to Access Specific MIBs or Routing Modules All SNMP contexts known to the device can be displayed using the show snmp context command as described in Section 5.3.4.2. Examples This example permits the “powergroup” to manage all MIBs via SNMPv3: Matrix(rw)->set snmp access powergroup security-model usm This example grants the “powergroup”...
Page 391: Process Overview: Snmp Configuration
Process Overview: SNMP Configuration Reviewing SNMP Statistics PROCESS OVERVIEW: SNMP CONFIGURATION NOTE: Commands for configuring SNMP on the Matrix Series device are independent during the SNMP setup process. For instance, target parameters can be specified when setting up optional notification filters — even though these parameters have not yet been created with the set snmp targetparams command.
Page 392: Show Snmp Engineid
SNMP Configuration Command Set Reviewing SNMP Statistics 5.3.1.1 show snmp engineid Use this command to display the SNMP local engine ID. This is the SNMP v3 engine’s administratively unique identifier. show snmp engineid Syntax Description None. Command Defaults None. Command Type Switch command.
Page 393: Show Snmp Counters
SNMP Configuration Command Set Reviewing SNMP Statistics 5.3.1.2 show snmp counters Use this command to display SNMP traffic counter values. show snmp counters Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display SNMP counter values Matrix(rw)->show snmp counters --- mib2 SNMP group counters: snmpInPkts...
Page 394 SNMP Configuration Command Set Reviewing SNMP Statistics snmpOutBadValues snmpOutGenErrs snmpOutGetRequests snmpOutGetNexts snmpOutSetRequests snmpOutGetResponses = 396601 snmpOutTraps snmpSilentDrops snmpProxyDrops --- USM Stats counters: usmStatsUnsupportedSecLevels = 0 usmStatsNotInTimeWindows usmStatsUnknownUserNames usmStatsUnknownEngineIDs usmStatsWrongDigests usmStatsDecryptionErrors Table 5-3 shows a detailed explanation of the command output. Table 5-3 show snmp counters Output Details Output What It Displays...
Page 395 SNMP Configuration Command Set Reviewing SNMP Statistics Table 5-3 show snmp counters Output Details (Continued) Output What It Displays... snmpInASNParseErrs Number of ASN.1 (Abstract Syntax Notation) or BER (Basic Encoding Rules) errors encountered by the SNMP entity when decoding received SNMP messages.
Page 396 SNMP Configuration Command Set Reviewing SNMP Statistics Table 5-3 show snmp counters Output Details (Continued) Output What It Displays... snmpInGetResponses Number of SNMP Get-Response PDUs accepted and processed by the SNMP protocol entity. snmpInTraps Number of SNMP Trap PDUs accepted and processed by the SNMP protocol entity.
Page 397 SNMP Configuration Command Set Reviewing SNMP Statistics Table 5-3 show snmp counters Output Details (Continued) Output What It Displays... snmpProxyDrops Number of SNMP Get, Set, or Inform request error messages that were dropped because the reply was larger than the proxy target’s maximum message size.
Page 398: Configuring Snmp Users, Groups And Communities
SNMP Configuration Command Set Configuring SNMP Users, Groups and Communities 5.3.2 Configuring SNMP Users, Groups and Communities Purpose To review and configure SNMP users, groups and v1 and v2 communities. These are defined as follows: • User — A person registered in SNMPv3 to access SNMP management. •...
Page 399: Show Snmp User
SNMP Configuration Command Set Configuring SNMP Users, Groups and Communities 5.3.2.1 show snmp user Use this command to display information about SNMP users. These are people registered to access SNMP management. show snmp user [list] | [user] | [remote remote ] [volatile | nonvolatile | read-only] Syntax Description list...
Page 400 SNMP Configuration Command Set Configuring SNMP Users, Groups and Communities Examples This example shows how to display an SNMP user list: Matrix(rw)->show snmp user list --- SNMP user information --- --- List of registered users: Guest admin1 admin2 netops This example shows how to display information for the SNMP “guest” user: Matrix(rw)->show snmp user guest --- SNMP user information --- EngineId:...
Page 401: Set Snmp User
SNMP Configuration Command Set Configuring SNMP Users, Groups and Communities 5.3.2.2 set snmp user Use this command to create a new SNMPv3 user. set snmp user user [remote remoteid] [authentication {md5 | sha}] [authpassword] [privacy privpassword] [volatile | nonvolatile] Syntax Description user Specifies a name for the SNMPv3 user.
Page 402 SNMP Configuration Command Set Configuring SNMP Users, Groups and Communities Example This example shows how to create a new SNMP user named “netops”. By default, this user will be registered on the local SNMP engine without authentication and encryption. Entries related to this user will be stored in permanent (nonvolatile) memory: Matrix(rw)->set snmp user netops 5-16 Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 403: Clear Snmp User
SNMP Configuration Command Set Configuring SNMP Users, Groups and Communities 5.3.2.3 clear snmp user Use this command to remove a user from the SNMPv3 security-model list. clear snmp user user [remote remote] Syntax Description user Specifies an SNMPv3 user to remove. remote remote (Optional) Removes the user from a specific remote SNMP engine.
Page 404: Show Snmp Group
SNMP Configuration Command Set Configuring SNMP Users, Groups and Communities 5.3.2.4 show snmp group Use this command to display an SNMP group configuration. An SNMP group is a collection of SNMPv3 users who share the same access privileges. show snmp group [groupname groupname] [user user] [security-model {v1 | v2c | usm}] [volatile | nonvolatile | read-only] Syntax Description groupname...
Page 405 SNMP Configuration Command Set Configuring SNMP Users, Groups and Communities Example This example shows how to display SNMP group information: Matrix(rw)->show snmp group --- SNMP group information --- Security model = SNMPv1 Security/user name = public Group name = Anyone Storage type = nonVolatile Row status...
Page 406: Set Snmp Group
SNMP Configuration Command Set Configuring SNMP Users, Groups and Communities 5.3.2.5 set snmp group Use this command to create an SNMP group. This associates SNMPv3 users to a group that shares common access privileges. set snmp group groupname user user security-model {v1 | v2c | usm} [volatile | nonvolatile] Syntax Description groupname...
Page 407: Clear Snmp Group
SNMP Configuration Command Set Configuring SNMP Users, Groups and Communities 5.3.2.6 clear snmp group Use this command to clear SNMP group settings globally or for a specific SNMP group and user. clear snmp group groupname user [security-model {v1 | v2c | usm}] Syntax Description groupname Specifies the SNMP group to be cleared.
Page 408: Show Snmp Community
SNMP Configuration Command Set Configuring SNMP Users, Groups and Communities 5.3.2.7 show snmp community Use this command to display SNMP community names and status. In SNMPv1 and v2, community names act as passwords to remote management. show snmp community [name] Syntax Description name (Optional) Displays SNMP information for a specific...
Page 409: Set Snmp Community
SNMP Configuration Command Set Configuring SNMP Users, Groups and Communities 5.3.2.8 set snmp community Use this command to configure an SNMP community group. set snmp community community [securityname securityname] [context context] [transport transport] [volatile | nonvolatile] Syntax Description community Specifies a community group name. securityname (Optional) Specifies an SNMP security name to associate securityname...
Page 410 SNMP Configuration Command Set Configuring SNMP Users, Groups and Communities Command Mode Read-Write. Examples This example shows how to set an SNMP community name called “vip”: Matrix(rw)->set snmp community vip This example shows how to grant SNMP management privileges to “vip” community from routing module 1 when operating in router mode: Matrix(rw)->set snmp community vip context module1 5-24 Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 411: Clear Snmp Community
SNMP Configuration Command Set Configuring SNMP Users, Groups and Communities 5.3.2.9 clear snmp community Use this command to delete an SNMP community name. clear snmp community name Syntax Description name Specifies the SNMP community name to clear. Command Defaults None. Command Type Switch command.
Page 412: Configuring Snmp Access Rights
SNMP Configuration Command Set Configuring SNMP Access Rights 5.3.3 Configuring SNMP Access Rights Purpose To review and configure SNMP access rights, assigning viewing privileges and security levels to SNMP user groups. Commands The commands used to review and configure SNMP access are listed below and described in the associated section as shown.
Page 413: Show Snmp Access
SNMP Configuration Command Set Configuring SNMP Access Rights 5.3.3.1 show snmp access Use this command to display access rights and security levels configured for SNMP one or more groups. show snmp access [groupname] [security-model {v1 | v2c | usm}] [noauthentication | authentication | privacy] [context context] [volatile | nonvolatile | read-only] Syntax Description groupname...
Page 414 SNMP Configuration Command Set Configuring SNMP Access Rights Command Mode Read-Only. Example This example shows how to display SNMP access information: Matrix(rw)->show snmp access Group = SystemAdmin Security model = USM Security level = noAuthNoPriv Read View = All Write View Notify View = All Context match...
Page 415 SNMP Configuration Command Set Configuring SNMP Access Rights Table 5-6 show snmp access Output Details (Continued) Output What It Displays... Security level Security level applied to this group. Valid levels are: • noAuthNoPrivacy (no authentication required) • AuthNoPrivacy (authentication required) •...
Page 416: Set Snmp Access
SNMP Configuration Command Set Configuring SNMP Access Rights 5.3.3.2 set snmp access Use this command to set an SNMP access configuration. set snmp access groupname security-model {v1 | v2c | usm} [noauthentication | authentication | privacy] [context context] [exact | prefix] [read read] [write write] [notify notify] [volatile | nonvolatile] Syntax Description groupname...
Page 417 SNMP Configuration Command Set Configuring SNMP Access Rights Command Defaults • If security level is not specified, no authentication will be applied. • If context is not specified, access will be enabled for the default context. If context is specified without a context match, exact match will be applied. •...
Page 418: Clear Snmp Access
SNMP Configuration Command Set Configuring SNMP Access Rights 5.3.3.3 clear snmp access Use this command to clear the SNMP access entry of a specific group, including its set SNMP security-model, and level of security. clear snmp access groupname security-model {v1 | v2c | usm} [noauthentication | authentication | privacy] [context context] Syntax Description groupname...
Page 419: Configuring Snmp Mib Views
SNMP Configuration Command Set Configuring SNMP MIB Views 5.3.4 Configuring SNMP MIB Views Purpose To review and configure SNMP MIB views. SNMP views map SNMP objects to access rights. Commands The commands used to review and configure SNMP MIB views are listed below and described in the associated section as shown.
Page 420: Show Snmp View
SNMP Configuration Command Set Configuring SNMP MIB Views 5.3.4.1 show snmp view Use this command to display the MIB configuration for SNMPv3 view-based access (VACM). show snmp view [viewname] [subtree oid-or-mibobject] [volatile | nonvolatile | read-only] Syntax Description viewname (Optional) Displays information for a specific MIB view. subtree (Optional) Displays information for a specific MIB oid-or-mibobject...
Page 421 SNMP Configuration Command Set Configuring SNMP MIB Views Example This example shows how to display SNMP MIB view configuration information: Matrix(rw)->show snmp view --- SNMP MIB View information --- View Name = All Subtree OID Subtree mask View Type = included Storage type = nonVolatile Row status...
Page 422: Show Snmp Context
SNMP Configuration Command Set Configuring SNMP MIB Views 5.3.4.2 show snmp context Use this command to display the context list configuration for SNMP’s view-based access control. An SNMP context is a collection of management information that can be accessed by an SNMP agent or entity.
Page 423: Set Snmp View
SNMP Configuration Command Set Configuring SNMP MIB Views 5.3.4.3 set snmp view Use this command to set a MIB configuration for SNMPv3 view-based access (VACM). set snmp view viewname viewname subtree subtree [mask mask] [included | excluded] [volatile | nonvolatile] Syntax Description viewname Specifies a name for a MIB view.
Page 424: Clear Snmp View
SNMP Configuration Command Set Configuring SNMP MIB Views 5.3.4.4 clear snmp view Use this command to delete an SNMPv3 MIB view. clear snmp view viewname subtree Syntax Description viewname Specifies the MIB view name to be deleted. subtree Specifies the subtree name of the MIB view to be deleted. Command Defaults None.
Page 425: Configuring Snmp Target Parameters
SNMP Configuration Command Set Configuring SNMP Target Parameters 5.3.5 Configuring SNMP Target Parameters Purpose To review and configure SNMP target parameters. This controls where and under what circumstances SNMP notifications will be sent. A target parameter entry can be bound to a target IP address allowed to receive SNMP notification messages with the set snmp targetaddr command (Section...
Page 426: Show Snmp Targetparams
SNMP Configuration Command Set Configuring SNMP Target Parameters 5.3.5.1 show snmp targetparams Use this command to display SNMP parameters used to generate a message to a target. show snmp targetparams [targetParams] [volatile | nonvolatile | read-only] Syntax Description targetParams (Optional) Displays entries for a specific target parameter.
Page 427 SNMP Configuration Command Set Configuring SNMP Target Parameters Example This example shows how to display SNMP target parameters information: Matrix(rw)->show snmp targetparams --- SNMP TargetParams information --- Target Parameter Name = v1ExampleParams Security Name = public Message Proc. Model = SNMPv1 Security Level = noAuthNoPriv Storage type...
Page 428 SNMP Configuration Command Set Configuring SNMP Target Parameters Table 5-8 show snmp targetparams Output Details (Continued) Output What It Displays... Storage type Whether entry is stored in volatile, nonvolatile or read-only memory. Row status Status of this entry: active, notInService, or notReady.
Page 429: Set Snmp Targetparams
SNMP Configuration Command Set Configuring SNMP Target Parameters 5.3.5.2 set snmp targetparams Use this command to set SNMP target parameters, a named set of security/authorization criteria used to generate a message to a target. set snmp targetparams paramsname user user security-model {v1 | v2c | usm} message-processing {v1 | v2c | v3} [noauthentication | authentication | privacy] [volatile | nonvolatile] Syntax Description...
Page 430 SNMP Configuration Command Set Configuring SNMP Target Parameters Example This example shows how to set SNMP target parameters named “v1ExampleParams” for a user named “fred” using version 3 security model and message processing, and authentication: Matrix(rw)->set snmp targetparams v1ExampleParams user fred security-model usm message-processing v3 authentication 5-44 Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 431: Clear Snmp Targetparams
SNMP Configuration Command Set Configuring SNMP Target Parameters 5.3.5.3 clear snmp targetparams Use this command to clear the SNMP target parameter configuration. clear snmp targetparams targetParams Syntax Description targetParams Specifies the name of the parameter in the SNMP target parameters table to be cleared. Command Defaults None.
Page 432: Configuring Snmp Target Addresses
SNMP Configuration Command Set Configuring SNMP Target Addresses 5.3.6 Configuring SNMP Target Addresses Purpose To review and configure SNMP target addresses which will receive SNMP notification messages. An address configuration can be linked to optional SNMP transmit, or target, parameters (such as timeout, retry count, and UDP port) set with the set snmp targetparams command (Section 5.3.5.2).
Page 433: Show Snmp Targetaddr
SNMP Configuration Command Set Configuring SNMP Target Addresses 5.3.6.1 show snmp targetaddr Use this command to display SNMP target address information. show snmp targetaddr [targetAddr] [volatile | nonvolatile | read-only] Syntax Description targetAddr (Optional) Displays information for a specific target address name.
Page 434 SNMP Configuration Command Set Configuring SNMP Target Addresses Table 5-9 show snmp targetaddr Output Details Output What It Displays... Target Address Name Unique identifier in the snmpTargetAddressTable Tag List Tags a location to the target address as a place to send notifications.
Page 435: Set Snmp Targetaddr
SNMP Configuration Command Set Configuring SNMP Target Addresses 5.3.6.2 set snmp targetaddr Use this command to configure an SNMP target address. The target address is a unique identifier and a specific IP address that will receive SNMP notification messages and determine which community strings will be accepted.
Page 436 SNMP Configuration Command Set Configuring SNMP Target Addresses Command Defaults • If not specified, udpport will be set to 162. • If not specified, mask will be set to 255.255.255.255 • If not specified, timeout will be set to 1500. •...
Page 437: Clear Snmp Targetaddr
SNMP Configuration Command Set Configuring SNMP Target Addresses 5.3.6.3 clear snmp targetaddr Use this command to delete an SNMP target address entry. clear snmp targetaddr targetAddr Syntax Description targetAddr Specifies the target address entry to delete. Command Defaults None. Command Type Switch command.
Page 438: Configuring Snmp Notification Parameters
SNMP Configuration Command Set Configuring SNMP Notification Parameters 5.3.7 Configuring SNMP Notification Parameters Purpose To configure SNMP notification parameters and optional filters. Notifications are entities which handle the generation of SNMP v1 and v2 “traps” or SNMP v3 “informs” messages to select management targets.
Page 439: Show Snmp Notify
SNMP Configuration Command Set Configuring SNMP Notification Parameters 5.3.7.1 show snmp notify Use this command to display the SNMP notify configuration, which determines which management targets will receive SNMP notifications. show snmp notify [notify] [volatile | nonvolatile | read-only] Syntax Description notify (Optional) Displays notify entries for a specific notify name.
Page 440 SNMP Configuration Command Set Configuring SNMP Notification Parameters Table 5-10 shows a detailed explanation of the command output. Table 5-10 show snmp notify Output Details Output What It Displays... Notify name A unique identifier used to index the SNMP notify table.
Page 441: Set Snmp Notify
SNMP Configuration Command Set Configuring SNMP Notification Parameters 5.3.7.2 set snmp notify Use this command to set the SNMP notify configuration. This creates an entry in the SNMP notify table, which is used to select management targets who should receive notification messages. This command’s tag parameter can be used to bind each entry to a target address using the set snmp targetaddr command (Section...
Page 442: Clear Snmp Notify
SNMP Configuration Command Set Configuring SNMP Notification Parameters 5.3.7.3 clear snmp notify Use this command to clear an SNMP notify configuration. clear snmp notify notify Syntax Description notify Specifies an SNMP notify name to clear. Command Defaults None. Command Type Switch command.
Page 443: About Snmp Notify Filters
SNMP Configuration Command Set Configuring SNMP Notification Parameters About SNMP Notify Filters Profiles indicating which targets should not receive SNMP notification messages are kept in the NotifyFilter table. If this table is empty, meaning that no filtering is associated with any SNMP target, then no filtering will take place.
Page 444: Show Snmp Notifyfilter
SNMP Configuration Command Set Configuring SNMP Notification Parameters 5.3.7.4 show snmp notifyfilter Use this command to display SNMP notify filter information, identifying which profiles will not receive SNMP notifications. show snmp notifyfilter [profile] [subtree oid-or-mibobject] [volatile | nonvolatile | read-only] Syntax Description profile (Optional) Displays a specific notify filter.
Page 445: Set Snmp Notifyfilter
SNMP Configuration Command Set Configuring SNMP Notification Parameters 5.3.7.5 set snmp notifyfilter Use this command to create an SNMP notify filter configuration. This identifies which management targets should NOT receive notification messages, which is useful for fine-tuning the amount of SNMP traffic generated.
Page 446: Clear Snmp Notifyfilter
SNMP Configuration Command Set Configuring SNMP Notification Parameters 5.3.7.6 clear snmp notifyfilter Use this command to delete an SNMP notify filter configuration. clear snmp notifyfilter profile subtree oid-or-mibobject Syntax Description profile Specifies an SNMP filter notify name to delete. subtree Specifies a MIB subtree ID containing the filter to be oid-or-mibobject deleted.
Page 447: Show Snmp Notifyprofile
SNMP Configuration Command Set Configuring SNMP Notification Parameters 5.3.7.7 show snmp notifyprofile Use this command to display SNMP notify profile information. This associates target parameters to an SNMP notify filter to determine who should not receive SNMP notifications. show snmp notifyprofile [profile] [targetparam targetparam] [volatile | nonvolatile | read-only] Syntax Description profile...
Page 448: Set Snmp Notifyprofile
SNMP Configuration Command Set Configuring SNMP Notification Parameters 5.3.7.8 set snmp notifyprofile Use this command to create an SNMP notify filter profile configuration. This associates a notification filter, created with the set snmp notifyfilter command (Section 5.3.7.5), to a set of SNMP target parameters to determine which management targets should not receive SNMP notifications.
Page 449: Clear Snmp Notifyprofile
SNMP Configuration Command Set Configuring SNMP Notification Parameters 5.3.7.9 clear snmp notifyprofile Use this command to delete an SNMP notify profile configuration. clear snmp notifyprofile profile targetparam targetparam Syntax Description profile Specifies an SNMP filter notify name to delete. targetparam Specifies an associated entry in the targetparam snmpTargetParamsTable.
Page 450: Creating A Basic Snmp Trap Configuration
SNMP Configuration Command Set Creating a Basic SNMP Trap Configuration 5.3.8 Creating a Basic SNMP Trap Configuration Traps are notification messages sent by an SNMPv1 or v2 agent to a network management station, a console, or a terminal to indicate the occurrence of a significant event, such as when a port or device goes up or down, when there are authentication failures, and when power supply errors occur.
Page 451 SNMP Configuration Command Set Creating a Basic SNMP Trap Configuration Table 5-11 Basic SNMP Trap Configuration Command Set (Continued) To do this... Use these commands... Create a new notification entry. set snmp notify (Section 5.3.7.2) Create a target address entry. set snmp targetaddr (Section 5.3.6.2)
Page 452 SNMP Configuration Command Set Creating a Basic SNMP Trap Configuration 4. Verifies that the v2ExampleParams description of how to step through the door is, in fact, there. The agent checks targetparams entries and determines this description was made with the set snmp targetparams command, which tells exactly which SNMP protocol to use and what community name to provide.
Page 453: Spanning Tree Configuration
Spanning Tree Configuration This chapter describes the Spanning Tree Configuration set of commands and how to use them. SPANNING TREE CONFIGURATION SUMMARY 6.1.1 Overview: Single, Rapid and Multiple Spanning Tree Protocols The IEEE 802.1D Spanning Tree Protocol (STP) resolves the problems of physical loops in a network by establishing one primary path between any two devices in a network.
Page 454: Spanning Tree Features
Spanning Tree Configuration Summary Spanning Tree Features only if the forwarding link goes down. MSTP assigns each VLAN present on the network to a particular Spanning Tree instance, allowing each switch port to be in a distinct state for each such instance: blocking for one Spanning Tree while forwarding for another.
Page 455 Spanning Tree Configuration Summary Loop Protect Both upstream and downstream facing ports are protected. When a root or alternate port loses its path to the root bridge due to a message age expiration it takes on the role of designated port. It will not forward traffic until a BPDU is received.
Page 456: Process Overview: Spanning Tree Configuration
Spanning Tree Configuration Summary Process Overview: Spanning Tree Configuration Message age expiration and the expiration of the Loop Protect timer are both Loop Protect events. A notice level syslog message is produced for each such event. Traps may be configured to report these events as well.
Page 457: Spanning Tree Configuration Command Set
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters SPANNING TREE CONFIGURATION COMMAND SET 6.2.1 Configuring Spanning Tree Bridge Parameters Purpose To display and set Spanning Tree bridge parameters, including device priorities, hello time, maximum wait time, forward delay, path cost, and topology change trap suppression. Commands The commands used to review and set Spanning Tree bridge parameters are listed below and described in the associated section as shown.
Page 458 Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters • set spantree mstcfgid (Section 6.2.1.19) • clear spantree mstcfgid (Section 6.2.1.20) • show spantree bridgeprioritymode (Section 6.2.1.21) • set spantree bridgeprioritymode (Section 6.2.1.22) • clear spantree bridgeprioritymode (Section 6.2.1.23) •...
Page 459 Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters • set spantree tctrapsuppress (Section 6.2.1.46) • clear spantree tctrapsuppress (Section 6.2.1.47) • show spantree txholdcount (Section 6.2.1.48) • set spantree txholdcount (Section 6.2.1.49) • clear spantree txholdcount (Section 6.2.1.50) •...
Page 460 Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters • clear spantree newroottrapenable (Section 6.2.1.73) • clear spantree default (Section 6.2.1.74) • show spantree debug (Section 6.2.1.75) • clear spantree debug (Section 6.2.1.76) 6-8 Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 461: Show Spantree Stats
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.1 show spantree stats Use this command to display Spanning Tree information for one or more ports. show spantree stats [port port-string] [sid sid] [active] Syntax Description port port-string (Optional) Displays information for the specified port(s). For a detailed description of possible port--string values, refer to Section...
Page 462 Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters Examples This example shows how to display the device’s Spanning Tree configuration: show spantree stats Matrix(rw)-> Spanning tree status - enabled Spanning tree instance Designated Root MacAddr - 00-e0-63-9d-c1-c8 Designated Root Priority Designated Root Cost - 10000 Designated Root Port...
Page 463 Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters Table 6-1 show spantree Output Details (Continued) Output What It Displays... Root Forward Delay Amount of time (in seconds) the root device spends in listening or learning mode. Bridge ID MAC Address Unique bridge MAC address, recognized by all bridges in the network.
Page 464 Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters This example shows how to display port-specific Spanning Tree information for port ge.1.1. Table 6-2 describes the port-specific information displayed. show spantree stats port ge.1.1 Matrix(rw)-> Spanning tree status - enabled Spanning tree instance Designated Root MacAddr - 00-e0-63-93-79-0f...
Page 465 Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters Table 6-2 Port-Specific show spantree stats Output Details Output Field What it Displays ... Role The Spanning Tree role of the port. The port role is assigned by the Spanning Tree protocol and determines the behavior of the port — either sending or receiving BPDUs, and forwarding or blocking data traffic.
Page 466: Show Spantree Version
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.2 show spantree version Use this command to display the current version of the Spanning Tree protocol running on the device. show spantree version Syntax Description None. Command Defaults None. Command Type Switch command.
Page 467: Set Spantree Version
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.3 set spantree version Use this command to set the version of the Spanning Tree protocol to MSTP (Multiple Spanning Tree Protocol), RSTP (Rapid Spanning Tree Protocol) or to STP 802.1D-compatible. set spantree version {mstp | stpcompatible | rstp} NOTE: In most networks, Spanning Tree version should not be changed from its...
Page 468: Clear Spantree Version
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.4 clear spantree version Use this command to reset the Spanning Tree version to MSTP mode. clear spantree version Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write.
Page 469: Show Spantree Stpmode
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.5 show spantree stpmode Use this command to display the Spanning Tree Protocol (STP) mode setting. show spantree stpmode Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only.
Page 470: Set Spantree Stpmode
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.6 set spantree stpmode Use this command to globally enable or disable the Spanning Tree Protocol (STP) mode. set spantree stpmode {none | ieee8021} Syntax Description none Disables Spanning Tree. ieee8021 Enables 802.1 Spanning Tree mode.
Page 471: Clear Spantree Stpmode
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.7 clear spantree stpmode Use this command to reset the Spanning Tree protocol mode to the default setting of IEEE802.1. This re-enables Spanning Tree. clear spantree stpmode Syntax Description None. Command Defaults None.
Page 472: Show Spantree Maxconfigurablestps
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.8 show spantree maxconfigurablestps Use this command to display the setting for the maximum number of user configurable Spanning Tree instances. show spantree maxconfigurablestps Syntax Description None. Command Defaults None. Command Type Switch command.
Page 473: Set Spantree Maxconfigurablestps
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.9 set spantree maxconfigurablestps Use this command to set the maximum number of user configurable Spanning Tree instances. set spantree maxconfigurablestps numstps Syntax Description numstps Specifies the maximum number of user configured STPs to be allowed on this bridge.
Page 474: Clear Spantree Maxconfigurablestps
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.10 clear spantree maxconfigurablestps Use this command to clear the setting for the maximum number of user configurable Spanning Tree instances. clear spantree maxconfigurablestps Syntax Description None. Command Defaults None. Command Type Switch command.
Page 475: Show Spantree Mstilist
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.11 show spantree mstilist Use this command to display a list of Multiple Spanning Tree (MST) instances configured on the device. show spantree mstilist Syntax Description None. Command Defaults None. Command Type Switch command.
Page 476: Set Spantree Msti
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.12 set spantree msti Use this command to create or delete a Multiple Spanning Tree instance. set spantree msti sid sid {create | delete} Syntax Description sid sid Sets the Multiple Spanning Tree ID. Valid values are 1 - 4094.
Page 477: Clear Spantree Msti
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.13 clear spantree msti Use this command to delete one or more Multiple Spanning Tree instances. clear spantree msti sid Syntax Description Specifies a multiple Spanning Tree ID to be deleted. Command Defaults None.
Page 478: Show Spantree Mstmap
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.14 show spantree mstmap Use this command to display the mapping of a filtering database ID (FID) to a Spanning Trees. Since VLANs are mapped to FIDs, this shows to which SID a VLAN is mapped. show spantree mstmap [fid fid] Syntax Description fid fid...
Page 479: Set Spantree Mstmap
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.15 set spantree mstmap Use this command to map one or more filtering database IDs (FIDs) to a SID. Since VLANs are mapped to FIDs, this essentially maps one or more VLAN IDs to a Spanning Tree (SID). set spantree mstmap fid [sid sid] Syntax Description Specifies one or more FIDs to assign to the MST.
Page 480: Clear Spantree Mstmap
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.16 clear spantree mstmap Use this command to map a FID back to SID 0. clear spantree mstmap fid Syntax Description Specifies one or more FIDs to reset to 0. Command Defaults None.
Page 481: Show Spantree Vlanlist
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.17 show spantree vlanlist Use this command to display the VLAN ID(s) assigned to one or more Spanning Trees. show spantree vlanlist [vlan-list] Syntax Description vlan-list (Optional) Displays information for specific VLAN(s). Command Defaults If not specified, SID assignment will be displayed only for VLANs assigned to any SID other than SID 0.
Page 482: Show Spantree Mstcfgid
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.18 show spantree mstcfgid Use this command to display the MST configuration identifier elements, including format selector, configuration name, revision level, and configuration digest. show spantree mstcfgid Syntax Description None. Command Defaults None.
Page 483: Set Spantree Mstcfgid
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.19 set spantree mstcfgid Use this command to set the MST configuration name and/or revision level. set spantree mstcfgid {cfgname name | rev level} Syntax Description cfgname name Specifies an MST configuration name. rev level Specifies an MST revision level.
Page 484: Clear Spantree Mstcfgid
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.20 clear spantree mstcfgid Use this command to reset the MST revision level to a default value of 0, and the configuration name to a default string representing the bridge MAC address. clear spantree mstcfgid Syntax Description None.
Page 485: Show Spantree Bridgeprioritymode
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.21 show spantree bridgeprioritymode Use this command to display the Spanning Tree bridge priority mode setting. show spantree bridgeprioritymode Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only.
Page 486: Set Spantree Bridgeprioritymode
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.22 set spantree bridgeprioritymode Use this command to set the Spanning Tree bridge priority mode to 802.1D (legacy) or 802.1t. This will affect the range of priority values used to determine which device is selected as the Spanning Tree root as described in set spantree priority (Section 6.2.1.25).
Page 487: Clear Spantree Bridgeprioritymode
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.23 clear spantree bridgeprioritymode Use this command to reset the Spanning Tree bridge priority mode to the default setting of 802.1t. clear spantree bridgeprioritymode Syntax Description None. Command Defaults None. Command Type Switch command.
Page 488: Show Spantree Priority
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.24 show spantree priority Use this command to display the Spanning Tree bridge priority. show spantree priority [sid] Syntax Description (Optional) Displays the priority for a specific Spanning Tree. Valid values are 0 - 4094. If not specified, SID 0 is assumed.
Page 489: Set Spantree Priority
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.25 set spantree priority Use this command to set the device’s Spanning Tree priority. The device with the highest priority (lowest numerical value) becomes the Spanning Tree root device. If all devices have the same priority, the device with the lowest MAC address will then become the root device.
Page 490 Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters This example shows how to set the bridge priority to 15 on all SIDs with 8021t priority mode enabled: Matrix(rw)->set spantree priority 15 Bride Priority has been translated to incremental step of 61440 This example shows how to set the bridge priority to 4000 on all SIDs with 8021t priority mode enabled: Matrix(rw)->set spantree priority 4000...
Page 491: Clear Spantree Priority
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.26 clear spantree priority Use this command to reset the Spanning Tree priority to the default value of 32768. clear spantree priority [sid] Syntax Description (Optional) Resets the priority on a specific Spanning Tree.
Page 492: Show Spantree Bridgehellomode
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.27 show spantree bridgehellomode Use this command to display the status of bridge hello mode on the device. When enabled, a single bridge administrative hello time is being used. When disabled, per-port administrative hello times are being used.
Page 493: Set Spantree Bridgehellomode
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.28 set spantree bridgehellomode Use this command to enable or disable bridge hello mode on the device. set spantree bridgehellomode {enable | disable} Syntax Description enable Enables single Spanning Tree bridge hello mode. disable Disables single Spanning Tree bridge hello mode, allowing for the configuration of per-port hello times.
Page 494: Clear Spantree Bridgehellomode
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.29 clear spantree bridgehellomode Use this command to reset the Spanning Tree administrative hello mode to enabled. clear spantree bridgehellomode Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write.
Page 495: Show Spantree Hello
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.30 show spantree hello Use this command to display the Spanning Tree hello time. show spantree hello Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the Spanning Tree hello time: show spantree hello...
Page 496: Set Spantree Hello
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.31 set spantree hello Use this command to set the device’s Spanning Tree hello time, This is the time interval (in seconds) the device will transmit BPDUs indicating it is active. set spantree hello interval Syntax Description interval...
Page 497: Clear Spantree Hello
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.32 clear spantree hello Use this command to reset the Spanning Tree hello time to the default value of 2 seconds. clear spantree hello Syntax Description None. Command Defaults None. Command Type Switch command.
Page 498: Show Spantree Maxage
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.33 show spantree maxage Use this command to display the Spanning Tree maximum aging time. show spantree maxage Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only.
Page 499: Set Spantree Maxage
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.34 set spantree maxage Use this command to set the bridge maximum aging time. This is the maximum time (in seconds) a device can wait without receiving a configuration message (bridge “hello”) before attempting to reconfigure.
Page 500: Clear Spantree Maxage
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.35 clear spantree maxage Use this command to reset the maximum aging time for a Spanning Tree to the default value of 20 seconds. clear spantree maxage Syntax Description None. Command Defaults None.
Page 501: Show Spantree Fwddelay
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.36 show spantree fwddelay Use this command to display the Spanning Tree forward delay time. show spantree fwddelay Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only.
Page 502: Set Spantree Fwddelay
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.37 set spantree fwddelay Use this command to set the Spanning Tree forward delay. This is the maximum time (in seconds) the root device will wait before changing states (i.e., listening to learning to forwarding). This delay is required because every device must receive information about topology changes before it starts to forward frames.
Page 503: Clear Spantree Fwddelay
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.38 clear spantree fwddelay Use this command to reset the Spanning Tree forward delay to the default setting of 15 seconds. clear spantree fwddelay Syntax Description None. Command Defaults None. Command Type Switch command.
Page 504: Show Spantree Autoedge
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.39 show spantree autoedge Use this command to display the status of automatic edge port detection. show spantree autoedge Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only.
Page 505: Set Spantree Autoedge
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.40 set spantree autoedge Use this command to enable or disable the automatic edge port detection function. set spantree autoedge {disable | enable} Syntax Description disable | enable Disables or enables automatic edge port detection. Command Defaults None.
Page 506: Clear Spantree Autoedge
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.41 clear spantree autoedge Use this command to reset automatic edge port detection to the default state of enabled. clear spantree autoedge Syntax Description None. Command Defaults None. Command Type Switch command.
Page 507: Show Spantree Legacypathcost
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.42 show spantree legacypathcost Use this command to display the default Spanning Tree path cost setting. show spantree legacypathcost Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only.
Page 508: Set Spantree Legacypathcost
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.43 set spantree legacypathcost Use this command to enable or disable legacy (802.1D) path cost values. set spantree legacypathcost {disable | enable} NOTE: By default, legacy path cost is disabled. Enabling the device to calculate legacy set spantree path costs affects the range of valid values that can be entered in the adminpathcost...
Page 509: Clear Spantree Legacypathcost
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.44 clear spantree legacypathcost Use this command to set the Spanning Tree default value for legacy path cost to 802.1t values. clear spantree legacypathcost Syntax Description None. Command Defaults None. Command Type Switch command.
Page 510: Show Spantree Tctrapsuppress
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.45 show spantree tctrapsuppress Use this command to display the status of topology change trap suppression on Rapid Spanning Tree edge ports. show spantree tctrapsuppress Syntax Description None. Command Defaults None.
Page 511: Set Spantree Tctrapsuppress
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.46 set spantree tctrapsuppress Use this command to disable or enable topology change trap suppression on Rapid Spanning Tree edge ports. By default, RSTP non-edge (bridge) ports that transition to forwarding or blocking cause the switch to issue a topology change trap.
Page 512: Clear Spantree Tctrapsuppress
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.47 clear spantree tctrapsuppress Use this command to clear topology change trap suppression settings. clear spantree tctrapsuppress Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear topology change trap suppression settings: Matrix(rw)->clear spantree tctrapsuppress...
Page 513: Show Spantree Txholdcount
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.48 show spantree txholdcount Use this command to display the maximum BPDU transmission rate. show spantree txholdcount Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the transmit hold count setting: Matrix(rw)->show spantree txholdcount...
Page 514: Set Spantree Txholdcount
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.49 set spantree txholdcount Use this command to set the maximum BPDU transmission rate. This is the number of BPDUs which will be transmitted before transmissions are subject to a one-second timer. set spantree txholdcount txholdcount Syntax Description txholdcount...
Page 515: Clear Spantree Txholdcount
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.50 clear spantree txholdcount Use this command to reset the transmit hold count to the default value of 6. clear spantree txholdcount Syntax Description None. Command Defaults None. Command Type Switch command.
Page 516: Show Spantree Maxhops
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.51 show spantree maxhops Use this command to display the Spanning Tree maximum hop count. show spantree maxhops Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only.
Page 517: Set Spantree Maxhops
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.52 set spantree maxhops Use this command to set the Spanning Tree maximum hop count. This is the maximum number of hops that the information for a particular Spanning Tree instance may traverse (via relay of BPDUs within the applicable MST region) before being discarded.
Page 518: Clear Spantree Maxhops
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.53 clear spantree maxhops Use this command to reset the maximum hop count to the default value of 20. clear spantree maxhops Syntax Description None. Command Defaults None. Command Type Switch command.
Page 519: Show Spantree Spanguard
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.54 show spantree spanguard Use this command to display the status of the Spanning Tree span guard function. show spantree spanguard Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only.
Page 520: Set Spantree Spanguard
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.55 set spantree spanguard Use this command to enable or disable the Spanning Tree span guard function. When enabled, this prevents an unauthorized bridge from becoming part of the active Spanning Tree topology. It does this by disabling a port that receives a BPDU when that port has been defined as an edge (user) port (as described in Section...
Page 521: Clear Spantree Spanguard
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.56 clear spantree spanguard Use this command to resets the status of the Spanning Tree span guard function to disabled. clear spantree spanguard Syntax Description None. Command Defaults None. Command Type Switch command.
Page 522: Show Spantree Spanguardtimeout
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.57 show spantree spanguardtimeout Use this command to display the Spanning Tree span guard timeout setting. show spantree spanguardtimeout Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only.
Page 523: Set Spantree Spanguardtimeout
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.58 set spantree spanguardtimeout Use this command to set the amount of time (in seconds) an edge port will remain locked by the span guard function. set spantree spanguardtimeout timeout Syntax Description timeout Specifies a timeout value in seconds.
Page 524: Clear Spantree Spanguardtimeout
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.59 clear spantree spanguardtimeout Use this command to reset the Spanning Tree span guard timeout to the default value of 300 seconds. clear spantree spanguardtimeout Syntax Description None. Command Defaults None.
Page 525: Show Spantree Spanguardlock
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.60 show spantree spanguardlock Use this command to display the span guard lock status of one or more ports. show spantree spanguardlock port-string Syntax Description port-string Specifies the port(s) for which to show span guard lock status.
Page 526: Clear / Set Spantree Spanguardlock
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.61 clear / set spantree spanguardlock Use either of these commands to unlock one or more ports locked by the Spanning Tree span guard function. When span guard is enabled, it locks ports that receive BPDUs when those ports have been defined as edge (user) ports (as described in Section 6.2.2.20).
Page 527: Show Spantree Spanguardtrapenable
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.62 show spantree spanguardtrapenable Use this command to displays the state of the Spanning Tree span guard trap function. show spantree spanguardtrapenable Syntax Description None. Command Defaults None. Command Type Switch command.
Page 528: Set Spantree Spanguardtrapenable
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.63 set spantree spanguardtrapenable Use this command to enable or disable the sending of an SNMP trap message when span guard detects that an unauthorized port has tried to join the Spanning Tree. set spantree spanguardtrapenable {disable | enable} Syntax Description disable | enable...
Page 529: Clear Spantree Spanguardtrap Enable
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.64 clear spantree spanguardtrap enable Use this command to reset the Spanning Tree span guard trap function back to the default state of enabled. clear spantree spanguardtrapenable Syntax Description None. Command Defaults None.
Page 530: Show Spantree Backuproot
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.65 show spantree backuproot Use this command to display the state of the Spanning Tree backup root function. show spantree backuproot [sid] Syntax Description (Optional) Displays status for a specific Spanning Tree. Valid values are 0 - 4094.
Page 531: Set Spantree Backuproot
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.66 set spantree backuproot Use this command to enable or disable the Spanning Tree backup root function. Enabled by default on bridge(s) directly connected to the root bridge, this prevents stale Spanning Tree information from circulating in the event the root bridge is lost.
Page 532: Clear Spantree Backuproot
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.67 clear spantree backuproot Use this command to reset the Spanning Tree backup root function to the default state of disabled. clear spantree backuproot sid Syntax Description Specifies the Spanning Tree on which to reset the backup root function.
Page 533: Show Spantree Backuproottrapendable
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.68 show spantree backuproottrapendable Use this command to display the state of the Spanning Tree backup root trap function. show spantree backuproottrapenable Syntax Description None. Command Defaults None. Command Type Switch command.
Page 534: Set Spantree Backuproottrapenable
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.69 set spantree backuproottrapenable Use this command to enable or disable the Spanning Tree backup root trap function. When SNMP trap messageing is configured, this sends a trap message when the back up root function makes a Spanning Tree the new root of the network.
Page 535: Clear Spantree Backuproottrapenable
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.70 clear spantree backuproottrapenable Use this command to resets the Spanning Tree backup root trap function to the default state of disabled. clear spantree backuproottrapenable. Syntax Description None. Command Defaults None.
Page 536: Show Spantree Newroottrapendable
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.71 show spantree newroottrapendable Use this command to display the state of the Spanning Tree new root trap function. show spantree newroottrapenable Syntax Description None. Command Defaults None. Command Type Switch command.
Page 537: Set Spantree Newroottrapenable
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.72 set spantree newroottrapenable Use this command to enable or disable the Spanning Tree new root trap function. When SNMP trap messaging is configured, this sends a trap message when a Spanning Tree becomes the new root of the network.
Page 538: Clear Spantree Newroottrapenable
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.73 clear spantree newroottrapenable Use this command to reset the Spanning Tree new root trap function back to the default state of enabled. clear spantree newroottrapenable Syntax Description None. Command Defaults None.
Page 539: Clear Spantree Default
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.74 clear spantree default Use this command to restore default values to a Spanning Tree. clear spantree default [sid] Syntax Description (Optional) Restores defaults on a specific Spanning Tree. Valid values are 0 - 4094. If not specified, SID 0 is assumed.
Page 540: Show Spantree Debug
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.75 show spantree debug Use this command to display Spanning Tree debug counters for one or more ports. show spantree debug [port port-string] [sid sid] [active] Syntax Description port port-string (Optional) Displays debug counters for specific port(s).
Page 541 Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters Example This example shows how to display Spanning Tree debug counters for link aggregation port 3, SID 0: show spantree debug port lag.0.3 Matrix(rw)-> STP Diagnostic Common Counters for SID 0 ----------------------------------------- Topology Change Count - 379...
Page 542: Clear Spantree Debug
Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters 6.2.1.76 clear spantree debug Use this command to clear Spanning Tree debug counters. clear spantree debug Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear Spanning Tree debug counters: clear spantree debug Matrix(rw)->...
Page 543: Configuring Spanning Tree Port Parameters
Spanning Tree Configuration Command Set Configuring Spanning Tree Port Parameters 6.2.2 Configuring Spanning Tree Port Parameters Purpose To display and set Spanning Tree port parameters, including enabling or disabling the Spanning Tree algorithm on one or more ports, displaying designated bridge, port and root information, displaying blocked ports, displaying and setting Spanning Tree port priorities and costs, configuring edge port parameters, and setting point-to-point protocol mode.
Page 544 Spanning Tree Configuration Command Set Configuring Spanning Tree Port Parameters • show spantree adminedge (Section 6.2.2.19) • set spantree adminedge (Section 6.2.2.20) • clear spantree adminedge (Section 6.2.2.21) • show spantree operedge (Section 6.2.2.22) • show spantree adminpoint (Section 6.2.2.23) •...
Page 545: Show Spantree Portenable
Spanning Tree Configuration Command Set Configuring Spanning Tree Port Parameters 6.2.2.1 show spantree portenable Use this command to display the port status on one or more Spanning Tree ports. show spantree portenable [port port-string] Syntax Description port port-string (Optional) Displays status for specific port(s). For a detailed description of possible port-string values, refer Section 4.1.1.
Page 546: Set Spantree Portenable
Spanning Tree Configuration Command Set Configuring Spanning Tree Port Parameters 6.2.2.2 set spantree portenable Use this command to set the port status on one or more Spanning Tree ports. set spantree portenable port-string {enable | disable} Syntax Description port-string Specifies the port(s) to enable or disable. For a detailed description of possible port-string values, refer to Section 4.1.1.
Page 547: Clear Spantree Portenable
Spanning Tree Configuration Command Set Configuring Spanning Tree Port Parameters 6.2.2.3 clear spantree portenable Use this command to reset the default value for one or more Spanning Tree ports to enabled. clear spantree portenable port-string Syntax Description port-string Specifies port(s) to reset. For a detailed description of possible port-string values, refer to Section 4.1.1.
Page 548: Show Spantree Portadmin
Spanning Tree Configuration Command Set Configuring Spanning Tree Port Parameters 6.2.2.4 show spantree portadmin Use this command to display the status of the Spanning Tree algorithm on one or more ports. show spantree portadmin [port port-string] Syntax Description port port-string (Optional) Displays status for specific port(s).
Page 549: Set Spantree Portadmin
Spanning Tree Configuration Command Set Configuring Spanning Tree Port Parameters 6.2.2.5 set spantree portadmin Use this command to disable or enable the Spanning Tree algorithm on one or more ports. set spantree portadmin port-string {disable | enable} Syntax Description port-string Specifies the port(s) for which to enable or disable Spanning Tree.
Page 550: Clear Spantree Portadmin
Spanning Tree Configuration Command Set Configuring Spanning Tree Port Parameters 6.2.2.6 clear spantree portadmin Use this command to reset the default Spanning Tree admin status to enable on one or more ports. clear spantree portadmin port-string Syntax Description port-string Resets the default admin status on specific port(s). For a detailed description of possible port-string values, refer Section 4.1.1.
Page 551: Set Spantree Protomigration
Spanning Tree Configuration Command Set Configuring Spanning Tree Port Parameters 6.2.2.7 set spantree protomigration Use this command to reset the protocol state migration machine for one or more Spanning Tree ports. When operating in RSTP mode, this forces a port to transmit MSTP BPDUs. set spantree protomigration port-string true Syntax Description port-string...
Page 552: Show Spantree Portstate
Spanning Tree Configuration Command Set Configuring Spanning Tree Port Parameters 6.2.2.8 show spantree portstate Use this command to display the state (blocking, forwarding, etc.) for a port on one or more Spanning Trees. show spantree portstate [port port-string] [sid sid] Syntax Description port port-string (Optional) Displays the Spanning Tree state for specific...
Page 553: Show Spantree Blockedports
Spanning Tree Configuration Command Set Configuring Spanning Tree Port Parameters 6.2.2.9 show spantree blockedports Use this command to display the blocked ports in a Spanning Tree. A port in this state does not participate in the transmission of frames, thus preventing duplication arising through multiple paths existing in the active topology of the bridged LAN.
Page 554: Show Spantree Portpri
Spanning Tree Configuration Command Set Configuring Spanning Tree Port Parameters 6.2.2.10 show spantree portpri Use this command to show the Spanning Tree priority for one or more ports. Port priority is a component of the port ID, which is one element used in determining Spanning Tree port roles. show spantree portpri [port port-string] [sid sid] Syntax Description port port-string...
Page 555: Set Spantree Portpri
Spanning Tree Configuration Command Set Configuring Spanning Tree Port Parameters 6.2.2.11 set spantree portpri Use this command to set a port’s Spanning Tree priority. set spantree portpri port-string priority [sid sid] Syntax Description port-string Specifies the port(s) for which to set Spanning Tree port priority.
Page 556: Clear Spantree Portpri
Spanning Tree Configuration Command Set Configuring Spanning Tree Port Parameters 6.2.2.12 clear spantree portpri Use this command to reset the bridge priority of a Spanning Tree port to a default value of 128. clear spantree portpri port-string [sid sid] Syntax Description port-string Specifies the port(s) for which to set Spanning Tree port priority.
Page 557: Set Spantree Porthello
Spanning Tree Configuration Command Set Configuring Spanning Tree Port Parameters 6.2.2.13 set spantree porthello Use this command to set the hello time for one or more Spanning Tree ports. This is the time interval (in seconds) the port(s) will transmit BPDUs. set spantree porthello port-string interval NOTE: This command can be executed only if bridge hello mode is disabled.
Page 558: Clear Spantree Porthello
Spanning Tree Configuration Command Set Configuring Spanning Tree Port Parameters 6.2.2.14 clear spantree porthello Use this command to reset the hello time for one or more Spanning Tree ports to the default of 2 seconds. clear spantree porthello port-string Syntax Description port-string Specifies the port(s) for which to reset hello time.
Page 559: Show Spantree Portcost
Spanning Tree Configuration Command Set Configuring Spanning Tree Port Parameters 6.2.2.15 show spantree portcost Use this command to display cost values assigned to one or more Spanning Tree ports. show spantree portcost [port port-string] [sid sid] Syntax Description port port-string (Optional) Displays cost values for specific port(s).
Page 560: Show Spantree Adminpathcost
Spanning Tree Configuration Command Set Configuring Spanning Tree Port Parameters 6.2.2.16 show spantree adminpathcost Use this command to display the admin path cost for a port on one or more Spanning Trees. show spantree adminpathcost [port port-string] [sid sid] Syntax Description port port-string (Optional) Displays the admin path cost value for specific port(s).
Page 561: Set Spantree Adminpathcost
Spanning Tree Configuration Command Set Configuring Spanning Tree Port Parameters 6.2.2.17 set spantree adminpathcost Use this command to set the administrative path cost on a port and one or more Spanning Trees. set spantree adminpathcost port-string cost [sid sid] NOTE: By default, this value is set to 0, which forces the port to recalculate Spanning Tree path cost based on the speed of the port and whether or not legacy path cost is set spantree legacypathcost...
Page 562: Clear Spantree Adminpathcost
Spanning Tree Configuration Command Set Configuring Spanning Tree Port Parameters 6.2.2.18 clear spantree adminpathcost Use this command to reset the Spanning Tree default value for port admin path cost to 0. clear spantree adminpathcost port-string [sid sid] Syntax Description port-string Specifies the port(s) for which to reset admin path cost.
Page 563: Show Spantree Adminedge
Spanning Tree Configuration Command Set Configuring Spanning Tree Port Parameters 6.2.2.19 show spantree adminedge Use this command to display the edge port administrative status for a port. show spantree adminedge [port port-string] Syntax Description port-string (Optional) Displays edge port administrative status for specific port(s).
Page 564: Set Spantree Adminedge
Spanning Tree Configuration Command Set Configuring Spanning Tree Port Parameters 6.2.2.20 set spantree adminedge Use this command to set the edge port administrative status on a Spanning Tree port. set spantree adminedge port-string {true | false} Syntax Description port-string Specifies the edge port. For a detailed description of possible port-string values, refer to Section 4.1.1.
Page 565: Clear Spantree Adminedge
Spanning Tree Configuration Command Set Configuring Spanning Tree Port Parameters 6.2.2.21 clear spantree adminedge Use this command to reset a Spanning Tree port to non-edge status. clear spantree adminedge port-string Syntax Description port-string Specifies port(s) on which to reset edge port status. For a detailed description of possible port-string values, refer to Section 4.1.1.
Page 566: Show Spantree Operedge
Spanning Tree Configuration Command Set Configuring Spanning Tree Port Parameters 6.2.2.22 show spantree operedge Use this command to display the Spanning Tree edge port operating status for a port. show spantree operedge [port port-string] Syntax Description port port-string (Optional) Displays edge port operating status for specific port(s).
Page 567: Show Spantree Adminpoint
Spanning Tree Configuration Command Set Configuring Spanning Tree Port Parameters 6.2.2.23 show spantree adminpoint Use this command to display the administrative point-to-point status of the LAN segment attached to a Spanning Tree port. show spantree adminpoint [port port-string] Syntax Description port port-string (Optional) Displays point-to-point status for specific port(s).
Page 568: Show Spantree Operpoint
Spanning Tree Configuration Command Set Configuring Spanning Tree Port Parameters 6.2.2.24 show spantree operpoint Use this command to display the operating point-to-point status of the LAN segment attached to a port. show spantree operpoint [port port-string] Syntax Description port port-string (Optional) Displays point-to-point operating status for specific port(s).
Page 569: Set Spantree Adminpoint
Spanning Tree Configuration Command Set Configuring Spanning Tree Port Parameters 6.2.2.25 set spantree adminpoint Use this command to set the administrative point-to-point status of the LAN segment attached to a Spanning Tree port. set spantree adminpoint port-string {true | false | auto} Syntax Description port-string Specifies the port on which to set point-to-point protocol...
Page 570: Clear Spantree Adminpoint
Spanning Tree Configuration Command Set Configuring Spanning Tree Port Parameters 6.2.2.26 clear spantree adminpoint Use this command to reset the administrative point-to-point status of the LAN segment attached to a Spanning Tree port to auto mode. clear spantree adminpoint port-string Syntax Description port-string Specifies port(s) on which to reset point-to-point protocol...
Page 571: Configuring Spanning Tree Loop Protect Features
Spanning Tree Configuration Command Set Configuring Spanning Tree Loop Protect Features 6.2.3 Configuring Spanning Tree Loop Protect Features Purpose To display and set Spanning Tree Loop Protect parameters, including the global parameters of Loop Protect threshold, window, enabling traps, and disputed BPDU threshold, as well as per port and port/SID parameters.
Page 572 Spanning Tree Configuration Command Set Configuring Spanning Tree Loop Protect Features • set spantree disputedbpduthreshold (Section 6.2.3.18) • show spantree disputedbpduthreshold (Section 6.2.3.19) • clear spantree disputedbpduthreshold (Section 6.2.3.20) • show spantree nonforwardingreason (Section 6.2.3.21) 6-120 Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 573: Set Spantree Lp
Spanning Tree Configuration Command Set Configuring Spanning Tree Loop Protect Features 6.2.3.1 set spantree lp Use this command to enable or disable the Loop Protect feature per port and optionally, per SID. The Loop Protect feature is disabled by default. See “Loop Protect” on page 6-2 for more information.
Page 574: Show Spantree Lp
Spanning Tree Configuration Command Set Configuring Spanning Tree Loop Protect Features 6.2.3.2 show spantree lp Use this command to display the Loop Protect status per port and/or per SID. show spantree lp [port port-string] [sid sid] Syntax Description port-string (Optional) Specifies port(s) for which to display the Loop Protect feature status.
Page 575: Clear Spantree Lp
Spanning Tree Configuration Command Set Configuring Spanning Tree Loop Protect Features 6.2.3.3 clear spantree lp Use this command to return the Loop Protect status per port and optionally, per SID, to its default state of disabled. clear spantree lp port-string [sid sid] Syntax Description port-string Specifies port(s) for which to clear the Loop Protect feature...
Page 576: Show Spantree Lplock
Spanning Tree Configuration Command Set Configuring Spanning Tree Loop Protect Features 6.2.3.4 show spantree lplock Use this command to display the Loop Protect lock status per port and/or per SID. A port can become locked if a configured number of Loop Protect events occur during the configured window of time.
Page 577: Clear Spantree Lplock
Spanning Tree Configuration Command Set Configuring Spanning Tree Loop Protect Features 6.2.3.5 clear spantree lplock Use this command to manually unlock a blocked port and optionally, per SID. The default state is unlocked. clear spantree lplock port-string [sid sid] Syntax Description port-string Specifies port(s) for which to clear the Loop Protect lock.
Page 578: Set Spantree Lpcapablepartner
Spanning Tree Configuration Command Set Configuring Spanning Tree Loop Protect Features 6.2.3.6 set spantree lpcapablepartner Use this command to specify per port whether the link partner is Loop Protect capable. See “Loop Protect” on page 6-2 for more information. set spantree lpcapablepartner port-string {true | false} Syntax Description port-string Specifies port(s) for which to configure a Loop Protect...
Page 579 Spanning Tree Configuration Command Set Configuring Spanning Tree Loop Protect Features Example This example shows how to set the Loop Protect capable partner to true for ge.1.1: Matrix(rw)->set spantree lpcapablepartner ge.1.1 true Matrix DFE-Platinum and Diamond Series Configuration Guide 6-127...
Page 580: Show Spantree Lpcapablepartner
Spanning Tree Configuration Command Set Configuring Spanning Tree Loop Protect Features 6.2.3.7 show spantree lpcapablepartner Use this command to the Loop Protect capability of a link partner for one or more ports. show spantree lpcapablepartner [port port-string] Syntax Description port-string (Optional) Specifies port(s) for which to display Loop Protect capability for its link partner.
Page 581: Clear Spantree Lpcapablepartner
Spanning Tree Configuration Command Set Configuring Spanning Tree Loop Protect Features 6.2.3.8 clear spantree lpcapablepartner Use this command to reset the Loop Protect capability of port link partners to the default state of false. clear spantree lpcapablepartner port-string Syntax Description port-string Specifies port(s) for which to clear their link partners’...
Page 582: Set Spantree Lpthreshold
Spanning Tree Configuration Command Set Configuring Spanning Tree Loop Protect Features 6.2.3.9 set spantree lpthreshold Use this command to set the Loop Protect event threshold. set spantree lpthreshold value Syntax Description value Specifies the number of events that must occur during the event window in order to lock a port/SID.
Page 583: Show Spantree Lpthreshold
Spanning Tree Configuration Command Set Configuring Spanning Tree Loop Protect Features 6.2.3.10 show spantree lpthreshold Use this command to display the current value of the Loop Protect event threshold. show spantree lpthreshold Syntax Description None. Command Defaults None. Command Type Switch command.
Page 584: Clear Spantree Lpthreshold
Spanning Tree Configuration Command Set Configuring Spanning Tree Loop Protect Features 6.2.3.11 clear spantree lpthreshold Use this command to return the Loop Protect event threshold to its default value of 3. clear spantree lpthreshold Syntax Description None. Command Defaults None. Command Type Switch command.
Page 585: Set Spantree Lpwindow
Spanning Tree Configuration Command Set Configuring Spanning Tree Loop Protect Features 6.2.3.12 set spantree lpwindow Use this command to set the Loop Protect event window value in seconds. set spantree lpwindow value Syntax Description value Specifies the number of seconds that comprise the period during which Loop Protect events are counted.
Page 586: Show Spantree Lpwindow
Spanning Tree Configuration Command Set Configuring Spanning Tree Loop Protect Features 6.2.3.13 show spantree lpwindow Use this command to display the current Loop Protect event window value. show spantree lpwindow Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only.
Page 587: Clear Spantree Lpwindow
Spanning Tree Configuration Command Set Configuring Spanning Tree Loop Protect Features 6.2.3.14 clear spantree lpwindow Use this command to reset the Loop Protect event window to the default value of 180 seconds. clear spantree lpwindow Syntax Description None. Command Defaults None.
Page 588: Set Spantree Lptrapenable
Spanning Tree Configuration Command Set Configuring Spanning Tree Loop Protect Features 6.2.3.15 set spantree lptrapenable Use this command to enable or disable Loop Protect event notification. set spantree lptrapenable {enable | disable} Syntax Description enable | disable Enable or disable the sending of Loop Protect traps. Default is disabled.
Page 589: Show Spantree Lptrapenable
Spanning Tree Configuration Command Set Configuring Spanning Tree Loop Protect Features 6.2.3.16 show spantree lptrapenable Use this command to display the current status of Loop Protect event notification. show spantree lptrapenable Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only.
Page 590: Clear Spantree Lptrapenable
Spanning Tree Configuration Command Set Configuring Spanning Tree Loop Protect Features 6.2.3.17 clear spantree lptrapenable Use this command to return the Loop Protect event notification state to its default state of disabled. clear spantree lptrapenable Syntax Description None. Command Defaults None.
Page 591: Set Spantree Disputedbpduthreshold
Spanning Tree Configuration Command Set Configuring Spanning Tree Loop Protect Features 6.2.3.18 set spantree disputedbpduthreshold Use this command to set the disputed BPDU threshold, which is the number of disputed BPDUs that must be received on a given port/SID until a disputed BPDU trap is sent. set spantree disputedbpduthreshold value Syntax Description value...
Page 592 Spanning Tree Configuration Command Set Configuring Spanning Tree Loop Protect Features Example This example shows how to set the disputed BPDU threshold value to 5: Matrix(rw)->set spantree disputedbpduthreshold 5 6-140 Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 593: Show Spantree Disputedbpduthreshold
Spanning Tree Configuration Command Set Configuring Spanning Tree Loop Protect Features 6.2.3.19 show spantree disputedbpduthreshold Use this command to display the current value of the disputed BPDU threshold. show spantree disputedbpduthreshold Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only.
Page 594: Clear Spantree Disputedbpduthreshold
Spanning Tree Configuration Command Set Configuring Spanning Tree Loop Protect Features 6.2.3.20 clear spantree disputedbpduthreshold Use this command to return the disputed BPDU threshold to its default value of 0, meaning that disputed BPDU traps should not be sent. clear spantree disputedbpduthreshold Syntax Description None.
Page 595: Show Spantree Nonforwardingreason
Spanning Tree Configuration Command Set Configuring Spanning Tree Loop Protect Features 6.2.3.21 show spantree nonforwardingreason Use this command to display the reason for placing a port in a non-forwarding state due to an exceptional condition. show spantree nonforwardingreason [port port-string] [sid sid] Syntax Description port-string (Optional) Specifies port(s) for which to display the...
Page 596 Spanning Tree Configuration Command Set Configuring Spanning Tree Loop Protect Features 6-144 Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 597: Q Vlan Configuration
802.1Q VLAN Configuration This chapter describes the Matrix system’s capabilities to implement 802.1Q virtual LANs (VLANs). It documents how to: • Create, enable, disable and name a VLAN. • Review status and other information related to VLANs. • Assign ports to a VLAN and filter unwanted frames on one or more ports •...
Page 598: Port Assignment Scheme
Process Overview: 802.1Q VLAN Configuration Port Assignment Scheme 7.1.1 Port Assignment Scheme For information on this device’s port assignment scheme, refer to Section 4.1.1. 7.1.2 Port String Syntax Used in the CLI For information on how to designate port numbers in the CLI syntax, refer to Section 4.1.1.
Page 599: Vlan Configuration Command Set
VLAN Configuration Command Set Reviewing Existing VLANs VLAN CONFIGURATION COMMAND SET 7.3.1 Reviewing Existing VLANs Purpose To display a list of VLANs currently configured on the device, to determine how one or more VLANs were created, the ports allowed and disallowed to transmit traffic belonging to VLAN(s), and if those ports will transmit the traffic with a VLAN tag included.
Page 600: Show Vlan
VLAN Configuration Command Set Reviewing Existing VLANs 7.3.1.1 show vlan Use this command to display all information related to one or more VLANs. show vlan [static] [vlan-list] Syntax Description static (Optional) Displays information related to static VLANs. Static VLANs are manually created using the set vlan command (Section 7.3.2.1), SNMP MIBs, or the WebView...
Page 601 VLAN Configuration Command Set Reviewing Existing VLANs Example This example shows how to display information for VLAN 1. In this case, VLAN 1 is named “DEFAULT VLAN” and it is enabled to operate. Ports allowed to transmit frames belonging to VLAN 1 are listed as egress ports.
Page 602: Creating And Naming Static Vlans
VLAN Configuration Command Set Creating and Naming Static VLANs 7.3.2 Creating and Naming Static VLANs Purpose To create a new static VLAN, or to enable or disable existing VLAN(s). Commands The commands used to create and name static VLANs are listed below and described in the associated section as shown.
Page 603: Set Vlan
VLAN Configuration Command Set Creating and Naming Static VLANs 7.3.2.1 set vlan Use this command to create a new static IEEE 802.1Q VLAN, or to enable or disable an existing VLAN. Once a VLAN is created, you can assign it a name using the set vlan name command described in Section 7.3.2.2.
Page 604: Set Vlan Name
VLAN Configuration Command Set Creating and Naming Static VLANs 7.3.2.2 set vlan name Use this command to set or change the ASCII name for a new or existing VLAN. set vlan name vlan-list vlan-name Syntax Description vlan-list Specifies the VLAN ID of the VLAN(s) to be named. vlan-name Specifies the string used as the name of the VLAN (1 to 32 characters).
Page 605: Clear Vlan
VLAN Configuration Command Set Creating and Naming Static VLANs 7.3.2.3 clear vlan Use this command to remove a static VLAN from the list of VLANs recognized by the device. clear vlan vlan-list Syntax Description vlan-list Specifies the VLAN ID of the VLAN(s) to be removed. Command Defaults None.
Page 606: Clear Vlan Name
VLAN Configuration Command Set Creating and Naming Static VLANs 7.3.2.4 clear vlan name Use this command to remove the name of a VLAN from the VLAN list. clear vlan name vlan-list Syntax Description vlan-list Specifies the VLAN ID of the VLAN(s) for which the name will be cleared.
Page 607: Assigning Port Vlan Ids (Pvids) And Ingress Filtering
VLAN Configuration Command Set Assigning Port VLAN IDs (PVIDs) and Ingress Filtering 7.3.3 Assigning Port VLAN IDs (PVIDs) and Ingress Filtering About PVIDs and Policy Classification to a VLAN Port VLAN IDs (PVIDs) assign VLAN IDs to untagged frames on one or more ports. Using the set port vlan command as described in Section 7.3.3.2, you can, for example, assign ports 1, 5, 8, and...
Page 608 VLAN Configuration Command Set Assigning Port VLAN IDs (PVIDs) and Ingress Filtering • show vlan constraint (Section 7.3.3.9) • set vlan constraint (Section 7.3.3.10) • clear vlan constraint (Section 7.3.3.11) • show port discard (Section 7.3.3.12) • set port discard (Section 7.3.3.13) •...
Page 609: Show Port Vlan
VLAN Configuration Command Set Assigning Port VLAN IDs (PVIDs) and Ingress Filtering 7.3.3.1 show port vlan Use this command to display port VLAN identifier (PVID) information. PVID determines the VLAN to which all untagged frames received on one or more ports will be classified. show port vlan [port-string] Syntax Description port-string...
Page 610: Set Port Vlan
VLAN Configuration Command Set Assigning Port VLAN IDs (PVIDs) and Ingress Filtering 7.3.3.2 set port vlan Use this command to configure the PVID (port VLAN identifier) for one or more ports. The PVID is used to classify untagged frames as they ingress into a given port. If the specified VLAN has not already been created, this command will create it.
Page 611 VLAN Configuration Command Set Assigning Port VLAN IDs (PVIDs) and Ingress Filtering Example This example shows how to add fe.1.10 to the port VLAN list of VLAN 4 (PVID 4). Since VLAN 4 is a new VLAN, it is created. Then port fe.1.10 is added to VLAN 4’s untagged egress list, and is cleared from the egress list of VLAN 1 (the default VLAN): Matrix(rw)->set port vlan fe.1.10 4 Matrix(rw)->set vlan 4 create...
Page 612: Clear Port Vlan
VLAN Configuration Command Set Assigning Port VLAN IDs (PVIDs) and Ingress Filtering 7.3.3.3 clear port vlan Use this command to reset a port’s 802.1Q port VLAN ID (PVID) to the host VLAN ID 1. clear port vlan port-string Syntax Description port-string Specifies the port(s) to be reset to the host VLAN ID 1.
Page 613: Show Vlan Interface
VLAN Configuration Command Set Assigning Port VLAN IDs (PVIDs) and Ingress Filtering 7.3.3.4 show vlan interface Use this command to display the MIB-II interface entry mapped to a VLAN. show vlan interface [vlan-list] Syntax Description vlan-list Displays the MIB2 interface entry for specific VLAN(s). Command Defaults If vlan-list is not specified, MIB2 interface entries will be displayed for all VLANs.
Page 614: Set Vlan Interface
VLAN Configuration Command Set Assigning Port VLAN IDs (PVIDs) and Ingress Filtering 7.3.3.5 set vlan interface Use this command to create, disable or enables a MIB-II interface mapped to a VLAN. set vlan interface vlan-list {create | disable | enable} [volatile] Syntax Description vlan-list Specifies the VLAN(s) for which an interface entry will...
Page 615: Clear Vlan Interface
VLAN Configuration Command Set Assigning Port VLAN IDs (PVIDs) and Ingress Filtering 7.3.3.6 clear vlan interface Use this command to clear the MIB-II interface entry mapped to a VLAN. clear vlan interface vlan-list Syntax Description vlan-list Specifies the VLAN(s) for which an interface entry will be cleared.
Page 616: Show Port Ingress Filter
VLAN Configuration Command Set Assigning Port VLAN IDs (PVIDs) and Ingress Filtering 7.3.3.7 show port ingress filter Use this command to show all ports that are enabled for port ingress filtering, which limits incoming VLAN ID frames according to a port VLAN egress list. If the VLAN ID specified in the received frame is not on the port’s VLAN egress list, then that frame is dropped and not forwarded.
Page 617: Set Port Ingress Filter
VLAN Configuration Command Set Assigning Port VLAN IDs (PVIDs) and Ingress Filtering 7.3.3.8 set port ingress filter Use this command to discard all frames received with a VLAN ID that don’t match the port’s VLAN egress list. When ingress filtering is enabled on a port, the VLAN IDs of incoming frames are compared to the port’s egress list.
Page 618: Show Vlan Constraint
VLAN Configuration Command Set Assigning Port VLAN IDs (PVIDs) and Ingress Filtering 7.3.3.9 show vlan constraint Use this command to display constraint settings for one or more VLAN’s. Constraints determine which VLANs belong to which Filter Databases (FIDs). show vlan constraint [vlan-list] Syntax Description vlan-list (Optional) Displays constraint settings for specific...
Page 619 VLAN Configuration Command Set Assigning Port VLAN IDs (PVIDs) and Ingress Filtering Table 7-3 show vlan constraint Output Details (Continued) Output What It Displays... VLAN SET Constraint set ID. VLAN SET TYPE Whether or not this constraint is sharing the same filter database as other VLANs in this set, or is using an independent filtering database.
Page 620: Set Vlan Constraint
VLAN Configuration Command Set Assigning Port VLAN IDs (PVIDs) and Ingress Filtering 7.3.3.10 set vlan constraint Use this command to apply a constraint to a VLAN. set vlan constraint vlan-list set-num [shared | independent] Syntax Description vlan-list Specifies the VLAN(s) for which to apply the constraint. set-num Specifies a constraint set ID.
Page 621: Clear Vlan Constraint
VLAN Configuration Command Set Assigning Port VLAN IDs (PVIDs) and Ingress Filtering 7.3.3.11 clear vlan constraint Use this command to clear a constraint applied to a VLAN. clear vlan constraint vlan-list set-num Syntax Description vlan-list Specifies the VLAN(s) for which to clear the constraint. set-num Specifies the constraint set ID to be cleared.
Page 622: Show Port Discard
VLAN Configuration Command Set Assigning Port VLAN IDs (PVIDs) and Ingress Filtering 7.3.3.12 show port discard Use this command to display the frame discard mode for one or more ports. Ports can be set to discard frames based on whether or not they contain a VLAN tag. They can also be set to discard both frame types or none of the frames received.
Page 623: Set Port Discard
VLAN Configuration Command Set Assigning Port VLAN IDs (PVIDs) and Ingress Filtering 7.3.3.13 set port discard Use this command to set the frame discard mode on one or more ports. set port discard port-string {tagged | untagged | none | both} Syntax Description port-string Specifies the port(s) for which to set frame discard mode.
Page 624: Clear Port Discard
VLAN Configuration Command Set Assigning Port VLAN IDs (PVIDs) and Ingress Filtering 7.3.3.14 clear port discard Use this command to reset the frame discard mode to the factory default setting (none). clear port discard port-string Syntax Description port-string Specifies the port(s) for which to reset frame discard mode. For a detailed description of possible port-string values, refer to Section...
Page 625: Configuring The Vlan Egress List
In general, VLANs have no egress (except for VLAN 1) until they are configured by static administration, or through dynamic mechanisms (i.e., GVRP, policy classification or Enterasys dynamic egress). Setting a port to forbidden prevents it from participating in the specified VLAN and ensures that any dynamic requests (either through GVRP or dynamic egress) for the port to join the VLAN will be ignored.
Page 626: Show Port Egress
VLAN Configuration Command Set Configuring the VLAN Egress List 7.3.4.1 show port egress Use this command to display the VLAN membership for one or more ports. show port egress [port-string] Syntax Description port-string (Optional) Displays VLAN membership for specific port(s). For a detailed description of possible port-string values, refer to Section 4.1.1.
Page 627: Set Vlan Egress
VLAN Configuration Command Set Configuring the VLAN Egress List 7.3.4.2 set vlan egress Use this command to add ports to the VLAN egress list for the device, or to prevent one or more ports from participating in a VLAN. This determines which ports will transmit frames for a particular VLAN.
Page 628 VLAN Configuration Command Set Configuring the VLAN Egress List This example shows how to forbid Fast Ethernet ports 13 through 15 in module 1 from joining VLAN 7 and disallow egress on those ports: Matrix(rw)->set vlan egress 7 fe.1.13-15 forbidden This example shows how to allow Fast Ethernet port 2 in module 1 to transmit VLAN 7 frames as untagged Matrix(rw)->set vlan egress 7 fe.1.2 untagged...
Page 629: Clear Vlan Egress
VLAN Configuration Command Set Configuring the VLAN Egress List 7.3.4.3 clear vlan egress Use this command to remove ports from a VLAN’s egress list. clear vlan egress vlan-list port-string [forbidden] Syntax Description vlan-list Specifies the number of the VLAN from which a port(s) will be removed from the egress list.
Page 630: Show Vlan Dynamic Egress
VLAN Configuration Command Set Configuring the VLAN Egress List 7.3.4.4 show vlan dynamic egress Use this command to display which VLANs are currently enabled for VLAN dynamic egress. show vlan dynamicegress [vlan-list] Syntax Description vlan-list (Optional) Displays dynamic egress status for specific VLAN(s).
Page 631: Set Vlan Dynamicegress
VLAN Configuration Command Set Configuring the VLAN Egress List 7.3.4.5 set vlan dynamicegress Use this command to set the administrative status of one or more VLANs’ dynamic egress capability. If VLAN dynamic egress is enabled, the device will add the port receiving a tagged frame to the VLAN egress list of the port according to the frame VLAN ID.
Page 632: Creating A Secure Management Vlan
VLAN Configuration Command Set Creating a Secure Management VLAN 7.3.5 Creating a Secure Management VLAN If the Matrix Series device is to be configured for multiple VLAN’s, it may be desirable to configure a management-only VLAN. This allows a station connected to the management VLAN to manage the device.
Page 633: Enabling/Disabling Gvrp
VLAN Configuration Command Set Enabling/Disabling GVRP 7.3.6 Enabling/Disabling GVRP Purpose To dynamically create VLANs across a switched network. The GVRP (GARP VLAN Registration Protocol) command set is used to display GVRP configuration information, the current global GVRP state setting, individual port settings (enable or disable) and timer settings. By default, GVRP is enabled on all ports, and globally on the device.
Page 634: Example Of Vlan Propagation Via Gvrp
VLAN Configuration Command Set Enabling/Disabling GVRP Figure 7-1 Example of VLAN Propagation via GVRP Configuring a VLAN on an 802.1Q switch creates a static VLAN entry. The entry will always remain registered and will not time out. However, dynamic entries will time-out and their registrations will be removed from the member list if the end station A is removed.
Page 635 VLAN Configuration Command Set Enabling/Disabling GVRP Commands The commands used to configure GVRP are listed below and described in the associated section as shown. • show gvrp (Section 7.3.6.1) • show garp timer (Section 7.3.6.2) • set gvrp (Section 7.3.6.3) •...
Page 636: Show Gvrp
VLAN Configuration Command Set Enabling/Disabling GVRP 7.3.6.1 show gvrp Use this command to display GVRP configuration information. show gvrp [port-string] Syntax Description port-string (Optional) Displays GVRP configuration information for specific port(s). For a detailed description of possible port-string values, refer to Section 4.1.1.
Page 637 VLAN Configuration Command Set Enabling/Disabling GVRP Table 7-5 show gvrp Output Details (Continued) Output What It Displays... GVRP status Whether GVRP is enabled or disabled on the port. Last PDU Origin MAC address of the last GVRP frame received on the port. Matrix DFE-Platinum and Diamond Series Configuration Guide 7-41...
Page 638: Show Garp Timer
VLAN Configuration Command Set Enabling/Disabling GVRP 7.3.6.2 show garp timer Use this command to display GARP timer values for one or more ports. show garp timer [port-string] Syntax Description port-string (Optional) Displays GARP timer information for specific port(s). For a detailed description of possible port-string values, refer to Section 4.1.1.
Page 639 VLAN Configuration Command Set Enabling/Disabling GVRP Matrix(rw)->show garp timer fe.1.1-10 Port based GARP Configuration: (Timer units are centiseconds) Port Number Join Leave Leaveall ----------- ---------- ---------- ---------- fe.1.1 1000 fe.1.2 1000 fe.1.3 1000 fe.1.4 1000 fe.1.5 1000 fe.1.6 1000 fe.1.7 1000 fe.1.8 1000...
Page 640: Set Gvrp
VLAN Configuration Command Set Enabling/Disabling GVRP 7.3.6.3 set gvrp Use this command to enable or disable GVRP globally on the device or on one or more ports. set gvrp {enable | disable} [port-string] Syntax Description disable | enable Disables or enables GVRP on the device. port-string (Optional) Disables or enables GVRP on specific port(s).
Page 641: Clear Gvrp
VLAN Configuration Command Set Enabling/Disabling GVRP 7.3.6.4 clear gvrp Use this command to clear GVRP status or on one or more ports. clear gvrp [port-string] Syntax Description port-string (Optional) Clears GVRP status on specific port(s). For a detailed description of possible port-string values, refer to Section 4.1.1.
Page 642: Set Garp Timer
VLAN Configuration Command Set Enabling/Disabling GVRP 7.3.6.5 set garp timer Use this command to adjust the values of the join, leave, and leaveall timers. set garp timer {[join timer-value] [leave timer-value] [leaveall timer-value]} port-string NOTE: The setting of these timers is critical and should only be changed by personnel familiar with the 802.1Q standards documentation, which is not supplied with this device.
Page 643 VLAN Configuration Command Set Enabling/Disabling GVRP This example shows how to set the leaveall timer value to 20000 centiseconds for all ports: Matrix(rw)->set garp timer leaveall 20000 *.*.* Matrix DFE-Platinum and Diamond Series Configuration Guide 7-47...
Page 644: Clear Garp Timer
VLAN Configuration Command Set Enabling/Disabling GVRP 7.3.6.6 clear garp timer Use this command to reset GARP timers back to default values. clear garp timer {[join] [leave] [leaveall]} port-string Syntax Description join (Optional) Resets the join timer to 20 centiseconds. leave (Optional) Resets the leave timer to 60 centiseconds.
Page 645: Policy Classification Configuration
Policy Classification Configuration This chapter describes the Policy Classification set of commands and how to use them. NOTE: It is recommended that you use Enterasys Networks NetSight Atlas Policy Manager as an alternative to CLI for configuring policy classification on the Matrix Series devices.
Page 646: Process Overview: Policy Classification Configuration
Process Overview: Policy Classification Configuration Configuring Policy Profiles PROCESS OVERVIEW: POLICY CLASSIFICATION CONFIGURATION Use the following steps as a guide to configure policy classification on the device: 1. Configuring policy profiles (Section 8.3.1) 2. Assigning classification rules to policy profiles (Section 8.3.2) 3.
Page 647 Policy Classification Configuration Command Set Configuring Policy Profiles • show policy syslog (Section 8.3.1.12) • set policy syslog (Section 8.3.1.13) • clear policy syslog (Section 8.3.1.14) • set policy maptable (Section 8.3.1.15) • show policy maptable (Section 8.3.1.16) • clear policy maptable (Section 8.3.1.17) Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 648: Show Policy Profile
Policy Classification Configuration Command Set Configuring Policy Profiles 8.3.1.1 show policy profile Use this command to display policy profile information. show policy profile {all | profile-index [consecutive-pids] [-verbose]} Syntax Description all | profile-index Displays policy information for all profile indexes or a specific profile index.
Page 649 Policy Classification Configuration Command Set Configuring Policy Profiles Table 8-1 provides an explanation of the command output. Table 8-1 show policy profile Output Details Output What It Displays... Profile Index Number of the prolicy profile. Profile Name User-supplied name assigned to this policy profile. Row Status Whether or not the policy profile is enabled (active) or disabled.
Page 650: Set Policy Profile
Policy Classification Configuration Command Set Configuring Policy Profiles 8.3.1.2 set policy profile Use this command to create a policy profile entry. set policy profile profile-index [name name] [pvid-status {enable | disable}] [pvid pvid] [cos-status {enable | disable}] [cos cos] [egress-vlans egress-vlans] [forbidden-vlans forbidden-vlans] [untagged-vlans untagged-vlans] [append] [clear] [tci-overwrite {enable | disable}] [precedence precedence-list] Syntax Description...
Page 651 Policy Classification Configuration Command Set Configuring Policy Profiles untagged-vlans (Optional) Specifies that the port to which this policy untagged-vlans profile is applied should be added to the egress list of the VLANs defined by untagged-vlans. Packets will be formatted as untagged. append (Optional) Appends this policy profile setting to settings previously specified for this policy profile by the...
Page 652: Clear Policy Profile
Policy Classification Configuration Command Set Configuring Policy Profiles 8.3.1.3 clear policy profile Use this command to delete a policy profile entry. clear policy profile profile-index Syntax Description profile-index Specifies the index number of the policy profile entry to be deleted. Valid values are 1 to 1023. Command Defaults None.
Page 653: Show Policy Invalid
Policy Classification Configuration Command Set Configuring Policy Profiles 8.3.1.4 show policy invalid Displays information about the action the device will apply on an invalid or unknown policy. show policy invalid {action | count | all} Syntax Description action | count | all Shows the action the device should take if asked to apply an invalid or unknown policy, or the number of times the device has detected an invalid/unknown policy, or both action and count information.
Page 654: Set Policy Invalid Action
Policy Classification Configuration Command Set Configuring Policy Profiles 8.3.1.5 set policy invalid action Use this command to assign the action the device will apply to an invalid or unknown policy. set policy invalid action {default-policy | drop | forward} Syntax Description default-policy Instructs the device to ignore this result and search for the next policy assignment rule.
Page 655: Clear Policy Invalid Action
Policy Classification Configuration Command Set Configuring Policy Profiles 8.3.1.6 clear policy invalid action Use this command to reset the action the device will apply to an invalid or unknown policy to the default action of applying the default policy. clear policy invalid action Syntax Description None.
Page 656: Show Port Tci Overwrite
Policy Classification Configuration Command Set Configuring Policy Profiles 8.3.1.7 show port tci overwrite Use this command to display the status of the port TCI overwrite function on one or more ports. When enabled, this will allow policy rules to overwrite all tagged (TCI) frames ingressing on those ports.
Page 657: Set Port Tci Overwrite
Policy Classification Configuration Command Set Configuring Policy Profiles 8.3.1.8 set port tci overwrite Use this command to enable or disable the TCI overwrite function on one or more ports. When enabled, this allows policy rules to overwrite user priority and other classification information in the VLAN tag’s TCI field.
Page 658: Show Policy Accounting
Policy Classification Configuration Command Set Configuring Policy Profiles 8.3.1.9 show policy accounting Use this command to display the status of policy accounting. show policy accounting Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the status of policy accounting: Matrix(rw)->show policy accounting Accounting Enable control status is ENABLED 8-14 Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 659: Set Policy Accounting
Policy Classification Configuration Command Set Configuring Policy Profiles 8.3.1.10 set policy accounting Use this command to enable or disable policy accounting, which controls the collection of classification rule statistics. This function is enabled by default. set policy accounting {enable | disable} Syntax Description enable | disable Enables or disables the policy accounting function.
Page 660: Clear Policy Accounting
Policy Classification Configuration Command Set Configuring Policy Profiles 8.3.1.11 clear policy accounting Use this command to restore policy accounting to its default state of enabled. clear policy accounting Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write.
Page 661: Show Policy Syslog
Policy Classification Configuration Command Set Configuring Policy Profiles 8.3.1.12 show policy syslog Use this command to show the formatting of rule usage messages. The messages will be either machine-readable or human-readable. show policy syslog machine-readable Syntax Description machine-readable Show the control for device formatting of rule usage messages.
Page 662: Set Policy Syslog
Policy Classification Configuration Command Set Configuring Policy Profiles 8.3.1.13 set policy syslog Use this command to set the rule usage messages as either machine-readable or human-readable. set policy syslog machine-readable {enable | disable} Syntax Description machine-readable Set the formatting of rule usage messages. The format is either machine-readable or human-readable.
Page 663: Clear Policy Syslog
Policy Classification Configuration Command Set Configuring Policy Profiles 8.3.1.14 clear policy syslog Use this command to clear the rule usage messages to the default state of disabled (human-readable). clear policy syslog machine-readable Syntax Description machine-readable Clear the machine-readable formatting of rule usage messages to its default which is human-readable (disabled).
Page 664: Set Policy Maptable
Policy Classification Configuration Command Set Configuring Policy Profiles 8.3.1.15 set policy maptable Use this command to set the Set VLAN ID - Policy Profile mappings table. set policy maptable {vlan-list profile-index | response {tunnel | policy | both}} Syntax Description vlan-list VLAN ID or range of IDs (1 to 4094) profile-index...
Page 665: Show Policy Maptable
Policy Classification Configuration Command Set Configuring Policy Profiles 8.3.1.16 show policy maptable Use this command to display the VLAN ID - Policy Profile mappings table. show policy maptable vlan-list Syntax Description vlan-list VLAN ID or range of IDs (1 to 4094) Command Defaults None.
Page 666: Clear Policy Maptable
Policy Classification Configuration Command Set Configuring Policy Profiles 8.3.1.17 clear policy maptable Use this command to clear the VLAN ID - Policy Profile mappings table. clear policy maptable vlan-list | response Syntax Description vlan-list VLAN ID or range of IDs (1 to 4094) response Applied the filter-id attribute Command Defaults...
Page 667: Assigning Classification Rules To Policy Profiles
Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles 8.3.2 Assigning Classification Rules to Policy Profiles Purpose To review, assign and unassign classification and admin rules. Classification rules map policy profiles to protocol-based frame filtering policies configured for a particular VLAN or Class of Service (CoS).
Page 668: Show Policy Rule
Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles 8.3.2.1 show policy rule Use this command to display policy classification and admin rule information. show policy rule [attribute] | [all] | [admin-profile] | [profile-index] [port-hit] [ether | icmptype | ipdest | ipdestsocket | ipfrag | ipproto | ipsource | ipsourcesocket | iptos | ipxclass | ipxdest | ipxsource | ipxdestsocket | ipxsourcesocket | ipxtype | llcDsapSsap | macdest | macsource | port | tci | tcpdestportip | tcpsourceportip | udpdestportip | udpsourceportip | vlantag]...
Page 669 Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles ipxsource Displays source IPX address rules. ipxdestsocket Displays destination IPX socket rules. ipxsourcesocket Displays source IPX socket rules. ipxtype Displays IPX packet type rules. llcDsapSsap Displays 802.3 DSAP/SSAP rules. macdest Displays MAC destination address rules.
Page 670 Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles drop | forward Displays rules based on whether matching packets specified by the vlan parameter will be dropped or forwarded. dynamic-pid Displays rules associated with a specific dynamic policy dynamic-pid profile index ID.
Page 671 Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles Examples This example shows how to display policy classification information for Ethernet type 2 rules: Matrix(rw)->show policy rule ether |PID |Rule Type |Rule Data |Mk|PortStr |RS|ST|S|T|D|VLAN|CoS |U| |Ether |32923 (0x809B) |16|All | A|NV|Y|Y| | 105| |Ether...
Page 672 Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles Table 8-2 show policy rule Output Details (Continued) Output What It Displays... PortStr Ingress port(s) to which this rule applies. Whether or not the status of this rule is active (A), not in service or not ready.
Page 673: Show Policy Capability
Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles 8.3.2.2 show policy capability Use this command to display all policy classification capabilities supported by your Matrix Series device. The output of this command shows a table listing classifiable traffic attributes and the type of actions, by rule type, that can be executed relative to each attribute.
Page 674 Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles Matrix(rw)->show policy capability The following supports related to policy are supported in this device: VLAN Forwarding Priority Permit Deny TCI Overwrite Rule-Use Notification Rules Table Rule-Use Accounting Longest Prefix Rules Port Disable Action ============================================================= | D |...
Page 675: Set Policy Classify
Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles 8.3.2.3 set policy classify Use this command to assign incoming untagged frames to a specific policy profile, classification and to VLAN or Class-of-Service classification rules. set policy classify profile-index classify-index {vlan | cos} {classify-value | forward | drop} {ether | llc | iptos | ipproto | ipxclass | ipxtype | ipsource | ipdest | ipxsource | ipxdest | udpportsource | udpportdest | tcpportsource | tcpportdest | ipxsourcesocket | ipxdestsocket | macsource | macdest | ipfrag | icmptype |...
Page 676 Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles ipxsource Classifies based on source IPX address. ipxdest Classifies based on destination IPX address. udpportsource UDP port source - (0 - 65535) udpportdest UDP port destination - (0 - 65535) tcpportsource TCP port source - (0 - 65535) tcpportdest...
Page 677: Set Policy Rule
Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles 8.3.2.4 set policy rule Use this command to assign incoming untagged frames to a specific policy profile and to VLAN or Class-of-Service classification rules. set policy rule admin-profile | profile-index {ether | icmptype | ipfrag | ipproto | ipdestsocket | ipsourcesocket | iptos | ipxclass | ipxdest | ipxsource | ipxdestsocket | ipxsourcesocket | ipxtype | llcDsapSsap | macdest | macsource | | tci | port | tcpdestportip | tcpsourceportip | udpdestportip | udpsourceportip|...
Page 678 Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles ipxdest Classifies based on destination IPX address. ipxsource Classifies based on source IPX address. ipxdestsocket Classifies based on destination IPX socket. ipxsourcesocket Classifies based on source IPX socket. ipxtype Classifies based on IPX packet type.
Page 679 Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles port-string (Optional) If admin-profile is specified, applies this port-string administratively-assigned rule to a specific ingress port. NOTE: Matrix Series devices with firmware versions 3.00.xx and higher also support this alternative command to administratively assign a profile rule to a port: set policy port port-string admin-id...
Page 680 Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles Command Mode Read-Write. Examples This example shows how to use Table 8-3 to create (and enable) a classification rule to associate with policy number 1. This rule will filter Ethernet II Type 1526 frames to VLAN 7: Matrix(rw)->set policy rule 1 ether 1526 vlan 7 This example shows how to use Table 8-3...
Page 681 Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles Table 8-3 Valid Values for Policy Classification Rules (Continued) Classification Rule Parameter data value mask bits Destination or Source IP IP Address in dotted decimal 1 - 48 Address: format: 000.000.000.000 and ipdestsocket (Optional) post-fixed port: 0 -...
Page 682 Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles Table 8-3 Valid Values for Policy Classification Rules (Continued) Classification Rule Parameter data value mask bits Destination or Source TCP port: TCP Port Number with 1 - 48 tcpdestportip optional post-fix IP address: tcpsourceportip ab[:c.d.e.f] 0-65535:1.1.1.1;...
Page 683: Clear Policy Rule
Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles 8.3.2.5 clear policy rule Use this command to delete one or all policy classification rule entries. clear policy rule admin-profile | profile-index all-pid-entries | ether | icmptype ipdestsocket | ipfrag | ipproto | ipsourcesocket | iptos | ipxclass | ipxdest | ipxsource | ipxdestsocket | ipxsourcesocket | ipxtype | llcDsapSsap | macdest | macsource | port | tci | tcpdestportip | tcpsourceportip | udpdestportip | udpsourceportip | vlantag] [all-traffic-entries | data][mask mask] [port-string...
Page 684 Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles macdest Deletes associated MAC destination address classification rule. macsource Deletes associated MAC source address classification rule. port Deletes associated port-string classification rule. Deletes associated Tag Control Information classification rule. tcpdestportip Deletes associated TCP destination port classification rule with optional post-fix IP address.
Page 685 Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles Example This example shows how to delete all classification rule entries associated with policy profile 1 from all ports: Matrix(rw)->clear policy rule 1 all-pid-entries Matrix DFE-Platinum and Diamond Series Configuration Guide 8-41...
Page 686: Clear Policy All-Rules
Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles 8.3.2.6 clear policy all-rules Use this command to remove all admin and classification rules. clear policy all-rules Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write.
Page 687: Set Policy Port
Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles 8.3.2.7 set policy port Use this command to assign an administrative rule to a port. NOTE: The set policy rule command (Section 8.3.2.4) used with the admin-profile parameter will associate a classification rule with a policy profile index number, thus making an administrative rule.
Page 688: Show Policy Allowed-Type
Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles 8.3.2.8 show policy allowed-type Use this command to display a list of currently supported traffic rules applied to the admininstrative profile for one or more ports. show policy allowed-type port-string [-verbose] Syntax Description port-string Specifies port(s) for which to display traffic rules.
Page 689 Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles Example This example shows how to show information about policies allowed on port ge.1.5: Matrix(rw)->show policy allowed-type ge.1.5 SUPPORTED AND ALLOWED TRAFFIC RULE TYPES o Means Traffic Rule Type is supported on this bridge port * Means Traffic Rule Type is supported and allowed on this bridge port ====================================================================== TRAFFIC...
Page 690: Show Policy Dropped-Notify
Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles 8.3.2.9 show policy dropped-notify Use this command to display a count of the number of times the device has dropped Syslog and/or trap notifications of rule usage on ports. show policy dropped-notify Syntax Description None.
Page 691: Set Policy Allowed-Type
Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles 8.3.2.10 set policy allowed-type Use this command to assign a list of traffic rules that can be applied to the admin profile for one or more ports. set policy allowed-type port-string traffic-rule rule-list [append | clear] Syntax Description port-string Specifies port(s) on which to apply traffic rules.
Page 692: Clear Policy Allowed-Type
Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles 8.3.2.11 clear policy allowed-type Use this command to clear the list of traffic rules currently assigned to the admin profile for one or more ports. This will reassign the default setting, which is all rules are allowed. clear policy allowed-type port-string Syntax Description port-string...
Page 693: Show Policy Disabled-Ports
Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles 8.3.2.12 show policy disabled-ports Use this command to display ingress ports disabled by the first use of an associated rule. This command is only in effect if the port disable function has been enabled using the set policy rule command as described in Section 8.3.2.4.
Page 694: Clear Policy Disabled-Ports
Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles 8.3.2.13 clear policy disabled-ports Use this command to clear ports from the disabled state that have been disabled due to the first use of a policy rule on those ports. This command is only in effect if the port disable function has been enabled using the set policy rule command as described in Section 8.3.2.4.
Page 695: Clear Policy Usage-List
Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles 8.3.2.14 clear policy usage-list Use this command to clear usage statistics for ports disabled by first rule usage. To become active again, disabled ports must also be removed from the policy disabled-ports list as described in Section 8.3.2.13.
Page 696 Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles macdest Clears MAC destination address rule usage statistics. macsource Clears MAC source address rule usage statistics. Clears Tag Control Information rule usage statistics. tcpdestport Clears TCP destination port rule usage statistics. tcpsourceport Clears TCP source port rule usage statistics.
Page 697: Show Policy Autoclear
Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles 8.3.2.15 show policy autoclear Use this command to display the status of the policy auto clear function. show policy autoclear {all | link | interval | profile | ports} Syntax Description Displays all auto clear status information.
Page 698: Set Policy Autoclear
Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles 8.3.2.16 set policy autoclear Use this command to enable or disable the policy rule auto clear function. When enabled, this clears rule usage information if operational status “up” is detected on any port. set policy autoclear {[link] [interval interval] [profile {enable | disable}] [ports port-list [append | clear]]} Syntax Description...
Page 699: Clear Policy Autoclear
Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles 8.3.2.17 clear policy autoclear Use this command to clear policy rule auto clear settings. clear policy autoclear {all | link [interval | profile | ports]} Syntax Description Clears all auto clear settings . link Clears rule usage when a link’s operating status of up is detected.
Page 700: Clear Policy Port-Hit
Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles 8.3.2.18 clear policy port-hit Use this command to clear rule port hit indications on one or more ports. clear policy port-hit {all | port-list port-list} Syntax Description all | port-list Clears port hit indications on all ports or on one or more port-list specified ports.
Page 701: Configuring Policy Class Of Service (Cos)
(0-7, with 7 granted highest priority) and, depending on port type, up to 16 transmit queues (0-15) of traffic for each port. Enterasys Networks’ enhanced CoS implementation allows you to use the following methods to configure Class of Service on the Matrix Series device: •...
Page 702 Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) You can add to these default configurations by defining new port groupings, and assigning inbound rate limiters or transmit queues and priorities. Whether you are specifying IRL or TXQ parameters, the process for user-defined CoS configuration involves the following steps and associated commands listed in Table...
Page 703 Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) • show cos unit (Section 8.3.3.4) • show cos port-config (Section 8.3.3.5) • set cos port-config irl (Section 8.3.3.6) • clear cos port-config irl (Section 8.3.3.7) • set cos port-config txq (Section 8.3.3.8) •...
Page 704: Show Cos State
Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) 8.3.3.1 show cos state Use this command to display the Class of Service enable state. show cos state Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only.
Page 705: Set Cos State
Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) 8.3.3.2 set cos state Use this command to enable or disable Class of Service. set cos state{enable | disable} Syntax Description enable | disable Enables or disables Class of Servic.e Command Defaults None.
Page 706 Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) 8.3.3.3 show cos port-type Use this command to display Class of Service port type configurations. The Matrix Series CoS implementation provides two default port type groupings for designating available rate limiting and transmit queue resources on device modules.
Page 707 Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) Example This example shows how to display all Class of Service port type information. In this case, no new port groups have been configured, so information for the two device default groups of 0 and 1 are shown: Matrix(rw)->show cos port-type Number of resources:...
Page 708 Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) Table 8-5 provides an explanation of the command output. Numb Table 8-5 show cos port-type Output Details Output What It Displays... Index Port type index. Port type 0 designates the Matrix Platinum Series 7G4270-12 module, and port type 1 designates all other modules.
Page 709: Show Cos Unit
Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) 8.3.3.4 show cos unit Use this command to display Class of Service units of measure information, including rate type, minimum and maximum limits of the port groups, and their respective granularity. show cos unit [irl | txq] [port-type index] [percentage | kbps | mbps | gbps] Syntax Description irl | txq...
Page 710: Show Cos Port-Config
Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) 8.3.3.5 show cos port-config Use this command to display Class of Service port group configurations. show cos port-config [irl | txq] [group-type-index] Syntax Description irl | txq (Optional) Displays inbound rate limiting or transmit queue information.
Page 711 Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) Example This example shows how to show all Class of Service port group configuration information: Matrix(rw)->show cos port-config * Percentage/queue (if any) are approximations based on [(slices/queue) / total number of slices] Transmit Queue Port Configuration Entries ---------------------------------------------------------------------- Port Group Name...
Page 712: Set Cos Port-Config Irl
Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) 8.3.3.6 set cos port-config irl Use this command to set the Class of Service inbound rate limiting port group configuration: set cos port-config irl group-type-index [name name] [ports port-list] [append] | [clear] Syntax Description group-type-index...
Page 713: Clear Cos Port-Config Irl
Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) 8.3.3.7 clear cos port-config irl Use this command to clear a non-default Class of Service inbound rate limiting port group configuration: clear cos port-config irl all | group-type-index {[entry] | [name] | [ports]} Syntax Description all | Clears all inbound rate limiting non-default...
Page 714: Set Cos Port-Config Txq
Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) 8.3.3.8 set cos port-config txq Use this command to set the Class of Service transmit queue port group configuration: set cos port-config txq group-type-index [name name] [ports port-list] [append] | [clear] [arb-slice slice-list] [arb-percentage percentage-list] Syntax Description group-type-index...
Page 715 Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) Command Mode Read-Write. Example This example shows how to create a CoS transmit queue port group entry named “test txq” with a port group ID of 2 and a port type ID of 1: Matrix(rw)->set cos port-config txq 2.1 name test txq Matrix DFE-Platinum and Diamond Series Configuration Guide 8-71...
Page 716: Clear Cos Port-Config Txq
Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) 8.3.3.9 clear cos port-config txq Use this command to clear one or all non-default Class of Service transmit queue port group configurations: clear cos port-config txq all | group-type-index {entry | name | ports arb-slice | arb-percentage} Syntax Description all |...
Page 717: Show Cos Port-Resource
Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) 8.3.3.10 show cos port-resource Use this command to display Class of Service port resource configuration information. show cos port-resource irl group-type-index [resource] [violators] Syntax Description irl | txq (Optional) Displays inbound rate limiting or transmit queue information.
Page 718 Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) Example This example shows how to show all inbound rate limiting port resource configuration information for port group 0.1: Matrix(rw)->show cos port-resource irl 0.1 '?' after the rate value indicates an invalid rate value Group Index Resource Type Unit Rate Rate Limit Type Action...
Page 719: Set Cos Port-Resource Irl
Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) 8.3.3.11 set cos port-resource irl Use this command to configure a Class of Service inbound rate limiting port resource entry. set cos port-resource irl group-type-index irl-number {[unit {percentage | pps | kbps | mbps | gbps}] [rate rate] [type {drop}] [syslog {disable | enable}] [trap {disable | enable}] [disable-port {disable | enable}]} Syntax Description...
Page 720 Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) Command Type Switch command. Command Mode Read-Write. Example This example shows how to configure Class of Service port resource IRL entry 0 for port group 0.1 assigning an inbound rate limit of 512 kilobits per second. This entry will trigger a Syslog and an SNMP trap message if this rate is exceeded: Matrix(rw)->set cos port-resource irl 0.1 0 unit kbps 512 syslog enable trap enable...
Page 721: Clear Cos Port-Resource Irl
Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) 8.3.3.12 clear cos port-resource irl Use this command to clear one or all Class of Service inbound rate limiting port resource configurations: clear cos port-resource irl all | group-type-index resource [unit] [rate] [type] [syslog] [trap] [disable-port] [violators port-list] Syntax Description all |...
Page 722: Set Cos Port-Resource Txq
Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) 8.3.3.13 set cos port-resource txq Use this command to configure a Class of Service transmit queue port resource entry. set cos port-resource txq group-type-index transmit-queue {[unit {percentage | kbps | mbps | gbps}] [rate rate] [algorithm {tail-drop}]} Syntax Description group-type-index Specifies a transmit queue port group/type index for this...
Page 723 Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) Example This example shows how to configure a Class of Service port resource entry for port group 0.1 assigning 50 percent of the total available inbound bandwidth to transmit queue 7: Matrix(rw)->set cos port-resource txq 0.1 7 unit percentage 50 Matrix DFE-Platinum and Diamond Series Configuration Guide 8-79...
Page 724: Clear Cos Port-Resource Txq
Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) 8.3.3.14 clear cos port-resource txq Use this command to clear one or all Class of Service transmit queue port resource entry. clear cos port-resource txq all | group-type-index resource [unit] [rate] [algorithm] Syntax Description all |...
Page 725: Show Cos Reference
Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) 8.3.3.15 show cos reference Use this command to display Class of Service port reference information. show cos reference [txq | irl group-type-index [reference]] Syntax Description irl | txq (Optional) Displays inbound rate limiting or transmit queue reference information.
Page 726 Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) Example This example shows how to show all transmit queue reference configuration information for port group 0.1: Matrix(rw)->show cos reference txq 0.1 Group Index Reference Type Queue ----------- --------- ---- ------------ 8-82 Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 727: Set Cos Reference Irl
Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) 8.3.3.16 set cos reference irl Use this command to set a Class of Service inbound rate limiting reference configuration. set cos reference irl group-type-index reference rate-limit number Syntax Description group-type-index Specifies an inbound rate limiting port group/type index for this entry.
Page 728: Clear Cos Reference Irl
Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) 8.3.3.17 clear cos reference irl Use this command to clear one or all Class of Service inbound rate limiting reference configurations. clear cos reference irl {all | group-type-index reference} Syntax Description all | Clears all non-default inbound rate limiting reference...
Page 729: Set Cos Reference Txq
Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) 8.3.3.18 set cos reference txq Use this command to set a Class of Service inbound rate limiting reference configuration. set cos reference txq group-type-index reference queue number Syntax Description group-type-index Specifies a transmit queue port group/type index for this entry.
Page 730: Clear Cos Reference Txq
Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) 8.3.3.19 clear cos reference txq Use this command to clear one or all non-default Class of Service transmit queue reference configurations. clear cos reference txq {all | group-type-index reference} Syntax Description all | Clears all non-default transmit queue reference entries or...
Page 731: Show Cos Settings
Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) 8.3.3.20 show cos settings Use this command to display Class of Service parameters. show cos settings [cos-list] Syntax Description cos-list (Optional) Specifies a Class of Service entry to display. Command Defaults If not specified, all CoS entries will be displayed.
Page 732: Set Cos Settings
Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) 8.3.3.21 set cos settings Use this command to configure a Class of Service entry. set cos settings cos-list [priority priority] [tos-value tos-value] [txq-reference txq-reference] [irl-reference irl-reference] Syntax Description cos-list Specifies a Class of Service entry.
Page 733: Clear Cos Settings
Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) 8.3.3.22 clear cos settings Use this command to clear Class of Service entry settings. clear cos settings cos-list {[all] | [priority] [tos-value] [txq-reference] [irl-reference]} Syntax Description cos-list Specifies a Class of Service entry to clear. Clears all settings associated with this entry.
Page 734: Show Cos Violation Irl
Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) 8.3.3.23 show cos violation irl Use this command to display Class of Service violation configurations. show cos violation irl [disabled-ports] | [violation-index] Syntax Description disabled-ports (Optional) Displays the port(s) that are disabled because of violating an inbound rate limiter.
Page 735: Clear Cos Violation Irl
Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) 8.3.3.24 clear cos violation irl Use this command to clear Class of Service inbound rate limiting violation configurations. clear cos violation irl {all | disabled-ports | violation-index} {both | status | counter} Syntax Description Clears all inbound rate limiting violation entries.
Page 736: Clear Cos All-Entries
Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) 8.3.3.25 clear cos all-entries Use this command to clears all Class of Service entries except priority settings 0 - 7. clear cos all-entries Syntax Description None. Command Defaults None. Command Type Switch command.
Page 737: Setting The Status Of Dynamically Assigned Policy Profiles
Policy Classification Configuration Command Set Setting the Status of Dynamically Assigned Policy Profiles 8.3.4 Setting the Status of Dynamically Assigned Policy Profiles About Dynamic Profiles Dynamic policy profiles are assigned by authentication protocols as traffic enters the device. The authentication server returns a policy look-up key (i.e. policy profile ID) to the edge device as part of the authentication process.
Page 738 Policy Classification Configuration Command Set Setting the Status of Dynamically Assigned Policy Profiles 8.3.4.1 show policy dynamic Use this command to display the status of dynamically assigned policy profile options. show policy dynamic {[syslog-default] [trap-default]} Syntax Description syslog-default Shows the status of automatically sending Syslog messages when a dynamic rule is applied.
Page 739 Policy Classification Configuration Command Set Setting the Status of Dynamically Assigned Policy Profiles 8.3.4.2 set policy dynamic Use this command to set the status of dynamically assigned policy profile options. set policy dynamic [syslog-default {enable | disable}] [trap-default {enable | disable}]} Syntax Description syslog-default...
Page 740 Policy Classification Configuration Command Set Setting the Status of Dynamically Assigned Policy Profiles 8.3.4.3 clear policy dynamic Use this command to reset the status of dynamically assigned policy profiles back to defaults. clear policy dynamic {[override] [syslog-default] [trap-default]} Syntax Description override Resets the status of the ability for administratively assigned profile rules to override dynamically assigned rules to...
Page 741: Port Priority And Rate Limiting Configuration
In addition, the device’s rate limiting capabilities allow you to further prioritize traffic by limiting the rate of inbound or outbound traffic on a per port/priority basis. Enterasys Networks’ enhanced CoS implementation allows you to use the following methods to configure Class of Service on the Matrix Series device: •...
Page 742: Process Overview: Port Priority And Rate Limiting Configuration
Process Overview: Port Priority and Rate Limiting Configuration Configuring Port Priority NOTE: When CoS override is enabled using the set policy profile command as described in Section 8.3.1.2, CoS-based classification rules will take precedence over priority settings configured with the set port priority command described in this section. PROCESS OVERVIEW: PORT PRIORITY AND RATE LIMITING CONFIGURATION Use the following steps as a guide to the port priority, QoS, and rate limiting configuration process:...
Page 743: Show Port Priority
Port Priority and Rate Limiting Configuration Command Set Configuring Port Priority 9.3.1.1 show port priority Use this command to display the 802.1D priority for one or more ports. show port priority [port-string] Syntax Description port-string (Optional) Displays priority information for a specific port. For a detailed description of possible port-string values, refer to Section...
Page 744: Set Port Priority
Port Priority and Rate Limiting Configuration Command Set Configuring Port Priority 9.3.1.2 set port priority Use this command to set the 802.1D (802.1p) Class-of-Service transmit queue priority (0 through 7) on each port. A port receiving a frame without priority information in its tag header is assigned a priority according to the priority setting on the port.
Page 745: Clear Port Priority
Port Priority and Rate Limiting Configuration Command Set Configuring Port Priority 9.3.1.3 clear port priority Use this command to reset the current CoS port priority setting to 0. This will cause all frames received without a priority value in its header to be set to priority 0. clear port priority port-string Syntax Description port-string...
Page 746: Configuring Priority To Transmit Queue Mapping
Port Priority and Rate Limiting Configuration Command Set Configuring Priority to Transmit Queue Mapping 9.3.2 Configuring Priority to Transmit Queue Mapping Purpose To perform the following: • View the current priority to transmit queue mapping of each port, which includes both physical and virtual ports.
Page 747 Port Priority and Rate Limiting Configuration Command Set Configuring Priority to Transmit Queue Mapping 9.3.2.1 show port priority-queue Use this command to display the port priority levels (0 through 7, with 0 as the lowest level) associated with the current transmit queue (0 - 15 depending on port type, with 0 being the lowest priority) for each priority of the selected port.
Page 748 Port Priority and Rate Limiting Configuration Command Set Configuring Priority to Transmit Queue Mapping This example shows how to display the transmit queues associated with priority 3. Matrix(rw)->show port priority-queue 3 fe.1.7 Priority TxQueue ---------- -------- ------- fe.1.8 Priority TxQueue ---------- -------- -------...
Page 749 Port Priority and Rate Limiting Configuration Command Set Configuring Priority to Transmit Queue Mapping 9.3.2.2 set port priority-queue Use this command to map 802.1D (802.1p) priorities to transmit queues. This enables you to change the priority queue (0-7, depending on port type, with 0 being the lowest priority queue) for each port priority of the selected port.
Page 750 Port Priority and Rate Limiting Configuration Command Set Configuring Priority to Transmit Queue Mapping 9.3.2.3 clear port priority-queue Use this command to reset port priority queue settings back to defaults for one or more ports. clear port priority-queue port-string Syntax Description port-string Specifies the port for which to clear priority queue.
Page 751: Configuring Quality Of Service (Qos)
Port Priority and Rate Limiting Configuration Command Set Configuring Quality of Service (QoS) 9.3.3 Configuring Quality of Service (QoS) Purpose To configure Layer 2 QoS transmit queues on one or more ports. Command Descriptions The commands to configure the Quality of Service are listed below and described in the associated section.
Page 752: Show Port Txq
Port Priority and Rate Limiting Configuration Command Set Configuring Quality of Service (QoS) 9.3.3.1 show port txq Use this command to display QoS transmit queue information for one or more ports. show port txq [port-string] Syntax Description port-string (Optional) Specifies port(s) for which to display QoS settings.
Page 753: Set Port Txq
Port Priority and Rate Limiting Configuration Command Set Configuring Quality of Service (QoS) 9.3.3.2 set port txq Use this command to set QoS transmit queue arbitration values. set port txq port-string {[value0 [value1] [value2] [value3] [value4] [value5] [value6] [value7] [value8] [value9] [value10] [value11] [value12] [value13] [value14] [value15]} Syntax Description port-string...
Page 754: Clear Port Txq
Port Priority and Rate Limiting Configuration Command Set Configuring Quality of Service (QoS) 9.3.3.3 clear port txq Use this command to clear port transmit queue values. clear port txq port-string Syntax Description port-string Clears transmit queue values on specific port(s). For a detailed description of possible port-string values, refer to Section 4.1.1.
Page 755: Configuring Port Traffic Rate Limiting
Port Priority and Rate Limiting Configuration Command Set Configuring Port Traffic Rate Limiting 9.3.4 Configuring Port Traffic Rate Limiting Purpose To limit the rate of inbound or outbound traffic on the Matrix Series device on a per port/priority basis. The allowable range for the rate limiting is 64 kilobytes per second minimum up to the maximum transmission rate allowable on the interface type.
Page 756: Show Port Ratelimit
Port Priority and Rate Limiting Configuration Command Set Configuring Port Traffic Rate Limiting 9.3.4.1 show port ratelimit Use this command to show the traffic rate limiting configuration on one or more ports. show port ratelimit [port-string] Syntax Description port-string (Optional) Displays rate limiting information for specific port(s).
Page 757 Port Priority and Rate Limiting Configuration Command Set Configuring Port Traffic Rate Limiting Table 9-1 shows a detailed explanation of the command output. Table 9-1 show port ratelimit Output Details Output What It Displays... Port Number Port designation. For a detailed description of possible port-string values, refer to Section 4.1.1.
Page 758: Set Port Ratelimit
Port Priority and Rate Limiting Configuration Command Set Configuring Port Traffic Rate Limiting 9.3.4.2 set port ratelimit Use this command to configure the traffic rate limiting status and threshold (in kilobytes per second) for one or more ports. set port ratelimit {disable | enable} | port-string priority threshold {disable | enable} [inbound| outbound] [index] Syntax Description disable | enable...
Page 759 Port Priority and Rate Limiting Configuration Command Set Configuring Port Traffic Rate Limiting Command Type Switch command. Command Mode Read-Write. Example This example shows how to: • globally enable rate limiting • configure rate limiting for inbound traffic on port fe.2.1, index 1, priority 5, to a threshold of 125 KBps: Matrix(rw)->set port ratelimit enable Matrix(rw)->set port ratelimit fe.2.1 5 125 enable inbound...
Page 760: Clear Port Ratelimit
Port Priority and Rate Limiting Configuration Command Set Configuring Port Traffic Rate Limiting 9.3.4.3 clear port ratelimit Use this command to clear rate limiting parameters for one or more ports. clear port ratelimit port-string [index] Syntax Description port-string Specifies the port(s) on which to clear rate limiting. For a detailed description of possible port-string values, refer to Section...
Page 761: Igmp Configuration
IGMP Configuration This chapter describes the IGMP Configuration set of commands and how to use them. 10.1 ABOUT IP MULTICAST GROUP MANAGEMENT The Internet Group Management Protocol (IGMP) runs between hosts and their immediately neighboring multicast switch device. The protocol’s mechanisms allow a host to inform its local switch device that it wants to receive transmissions addressed to a specific multicast group.
Page 762: Igmp Configuration Summary
IGMP Configuration Summary In addition to passively monitoring IGMP query and report messages, the Matrix Series device can also actively send IGMP query messages to learn locations of multicast switches and member hosts in multicast groups within each VLAN. However, note that IGMP neither alters nor routes any IP multicast packets. Since IGMP is not concerned with the delivery of IP multicast packets across subnetworks, an external IP multicast switch device is needed if IP multicast packets have to be routed across different subnetworks.
Page 763: Igmp Configuration Command Set
IGMP Configuration Command Set Enabling / Disabling IGMP 10.4 IGMP CONFIGURATION COMMAND SET 10.4.1 Enabling / Disabling IGMP Purpose To display IGMP information and to enable or disable IGMP snooping on the device. Commands The commands used to display, enable and disable IGMP are listed below and described in the associated sections as shown.
Page 764: Show Igmp Enable
IGMP Configuration Command Set Enabling / Disabling IGMP 10.4.1.1 show igmp enable Use this command to display the status of IGMP on one or more VLAN(s). show igmp enable vlan-list Syntax Description vlan-list Specifies the VLAN(s) for which to display IGMP status. Command Defaults None.
Page 765: Set Igmp Enable
IGMP Configuration Command Set Enabling / Disabling IGMP 10.4.1.2 set igmp enable Use this command to enable IGMP on one or more VLANs. set igmp enable vlan-list Syntax Description vlan-list Specifies the VLAN(s) on which to enable IGMP. Command Defaults None.
Page 766: Set Igmp Disable
IGMP Configuration Command Set Enabling / Disabling IGMP 10.4.1.3 set igmp disable Use this command to disable IGMP on one or more VLANs. set igmp enable vlan-list Syntax Description vlan-list Specifies the VLAN(s) on which to enable IGMP. Command Defaults None.
Page 767: Configuring Igmp
IGMP Configuration Command Set Configuring IGMP 10.4.2 Configuring IGMP Purpose To display and set IGMP configuration parameters, including query interval and response time settings, and to create and configure static IGMP entries. Commands The commands used to configure IGMP are listed below and described in the associated sections as shown.
Page 768: Show Igmp Query
IGMP Configuration Command Set Configuring IGMP 10.4.2.1 show igmp query Use this command to display the IGMP query status of one or more VLANs. show igmp query vlan-list Syntax Description vlan-list Specifies the VLAN(s) for which to display IGMP query state.
Page 769: Set Igmp Query-Enable
IGMP Configuration Command Set Configuring IGMP 10.4.2.2 set igmp query-enable Use this command to enable IGMP querying on one or more VLANs. set igmp query-enable vlan-list Syntax Description vlan-list Specifies the VLAN(s) on which to enable IGMP querying. Command Defaults None.
Page 770: Set Igmp Query-Disable
IGMP Configuration Command Set Configuring IGMP 10.4.2.3 set igmp query-disable Use this command to disable IGMP querying on one or more VLANs. set igmp query-disable vlan-list Syntax Description vlan-list Specifies the VLAN(s) on which to disable IGMP querying. Command Defaults None.
Page 771: Show Igmp Grp-Full-Action
IGMP Configuration Command Set Configuring IGMP 10.4.2.4 show igmp grp-full-action Use this command to show what action to take with multicast frames when the multicast IGMP group table is full show igmp grp-full-action Command Defaults None. Command Type Switch command. Command Mode Read-Only.
Page 772: Set Igmp Grp-Full-Action
IGMP Configuration Command Set Configuring IGMP 10.4.2.5 set igmp grp-full-action Use this command to determine what action to take with multicast frames when the multicast group table is full. set igmp grp-full-action action Syntax Description action Specifies the action to take when the multicast Group Table is full.
Page 773: Show Igmp Config
IGMP Configuration Command Set Configuring IGMP 10.4.2.6 show igmp config Use this command to display IGMP configuration information for one or more VLANs. show igmp config vlan-list Syntax Description vlan-list Specifies the VLAN(s) for which to display IGMP configuration information. Command Defaults None.
Page 774 IGMP Configuration Command Set Configuring IGMP Table 10-1 show igmp config Output Details Output What It Displays... VlanQueryInterval Frequency (in seconds) of host-query frame transmissions. VlanStatus Whether or not VLAN configuration is Active or Not in Service. Vlan IGMP Version Whether or not IGMP version is 1 or 2.
Page 775: Set Igmp Config
IGMP Configuration Command Set Configuring IGMP 10.4.2.7 set igmp config Use this command to configure IGMP settings on one or more VLANs. set igmp config vlan-list {[query-interval query-interval] [igmp-version igmp-version] [max-resp-time max-resp-time] [robustness robustness] [last-mem-int last-mem-int]} Syntax Description vlan-list Specifies the VLAN(s) on which to configure IGMP. query-interval (Optional) Specifies the frequency of host-query frame query-interval...
Page 776 IGMP Configuration Command Set Configuring IGMP Example This example shows how to set the IGMP query interval time to 250 seconds on VLAN 1: Matrix(rw)->set igmp config 1 query-interval 250 10-16 Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 777: Set Igmp Delete
IGMP Configuration Command Set Configuring IGMP 10.4.2.8 set igmp delete Use this command to remove IGMP configuration settings for one or more VLANs. set igmp delete vlan-list Syntax Description vlan-list Specifies the VLAN(s) on which configuration settings will be cleared. Command Defaults None.
Page 778: Show Igmp Groups
IGMP Configuration Command Set Configuring IGMP 10.4.2.9 show igmp groups Use this command to display information about IGMP groups known to one or more VLANs. show igmp groups [group <group>] [vlan-list <vlan-list>] [sip <sip>] [-verbose] Syntax Description group Group IP address (Entering no IP address shows all groups) vlan-list Specifies the VLAN(s) for which to display IGMP group information.
Page 779: Show Igmp Static
IGMP Configuration Command Set Configuring IGMP 10.4.2.10 show igmp static Use this command to display static IGMP ports for one or more VLANs or IGMP groups. show igmp static vlan-list [group group] Syntax Description vlan-list Specifies the VLAN(s) for which to display static IGMP information.
Page 780: Set Igmp Add-Static
IGMP Configuration Command Set Configuring IGMP 10.4.2.11 set igmp add-static Use this command to create a new static IGMP entry, or to add one or more new ports to an existing entry. set igmp add-static group vlan-list [modify] [include-ports] [exclude-ports] Syntax Description group Specifies a group IP address for the entry.
Page 781: Set Igmp Remove-Static
IGMP Configuration Command Set Configuring IGMP 10.4.2.12 set igmp remove-static Use this command to delete a static IGMP entry, or to remove one or more ports from an existing entry. set igmp remove-static group vlan-list [modify] [include-ports] [exclude-ports] Syntax Description group Specifies a group IP address for the entry.
Page 782: Show Igmp Protocols
IGMP Configuration Command Set Configuring IGMP 10.4.2.13 show igmp protocols Use this command to display the binding of IP protocol id to IGMP classification show igmp protocols Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example binding of IP protocol id to IGMP classification This example shows how to display the Matrix(rw)->show igmp protocols Protocol Classifications...
Page 783: Set Igmp Protocols
IGMP Configuration Command Set Configuring IGMP 10.4.2.14 set igmp protocols Use this command to changes the IGMP classification of received IP frames set igmp protocols [classification classification] [protocol-id protocol-id] [modify] Syntax Description classification Specifies the classification. Options are: classification • 1-multicast data •...
Page 784: Clear Igmp Protocols
IGMP Configuration Command Set Configuring IGMP 10.4.2.15 clear igmp protocols Use this command to clear the binding of IP protocol id to IGMP classification clear igmp protocols [protocol-id protocol-id] Syntax Description protocol-id The protocol ids to change(0-255). protocol-id Command Defaults None.
Page 785: Show Igmp Vlan
IGMP Configuration Command Set Configuring IGMP 10.4.2.16 show igmp vlan Use this command to display IGMP information for a specific VLAN. show igmp vlan [vlan-list] Syntax Description vlan vlan-list Show IGMP info for the given VLAN. Command Defaults None Command Type Switch command.
Page 786: Show Igmp Reporters
IGMP Configuration Command Set Configuring IGMP 10.4.2.17 show igmp reporters Use this command to display IGMP reporter information. show igmp reporters [portlist portlist] [group group] [vlan-list vlan-list] [sip sip] Syntax Description [portlist portlist] portlist - Port or range of ports. [group group] group - group IP address (none means show all groups) [vlan-list vlan-list]...
Page 787 IGMP Configuration Command Set Configuring IGMP 10.4.2.18 show igmp flow Use this command to display IGMP flow information. show igmp flows [portlist portlist] [group group] [vlan-list vlan-list] [sip sip] Syntax Description [portlist portlist] portlist - Port or range of ports. [group group] group - group IP address (none means show all groups) [vlan-list vlan-list]...
Page 788: Show Igmp Counters
IGMP Configuration Command Set Configuring IGMP 10.4.2.19 show igmp counters Use this command to display IGMP counter information. show igmp counters Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the IGMP counters: Matrix(rw)->show igmp counters Igmp Counters: Igmp Group Table is Full...
Page 789: Set Igmp Number-Groups
IGMP Configuration Command Set Configuring IGMP 10.4.2.20 set igmp number-groups Use this command to set the number of multicast groups supported by the Matrix device—to either 4096 or 16,384. In order to set the number of groups to 16,384, each DFE blade in the chassis must have 256 megabytes of memory installed.
Page 790: Show Igmp Number-Groups
IGMP Configuration Command Set Configuring IGMP 10.4.2.21 show igmp number-groups Use this command to display the number of multicast groups supported by the Matrix device. The command displays both the currently active number of groups and the configured number that will take effect at the next reboot.
Page 791: Logging And Network Management
Logging and Network Management This chapter describes switch-related logging and network management commands and how to use them. NOTE: The commands in this section pertain to network management of the Matrix switch CLI Series device from the only. For information on router-related network management tasks, including reviewing router ARP tables and IP traffic, refer to Chapter 11.1 PROCESS OVERVIEW: NETWORK MANAGEMENT...
Page 792: Logging And Network Management Command Set
Logging And Network Management Command Set Configuring System Logging 11.2 LOGGING AND NETWORK MANAGEMENT COMMAND SET 11.2.1 Configuring System Logging Purpose To display and configure system logging, including Syslog server settings, logging severity levels for various applications, Syslog default settings, and the logging buffer. Commands Commands to configure system logging are listed below and described in the associated section as shown.
Page 793: Show Logging All
Logging And Network Management Command Set Configuring System Logging 11.2.1.1 show logging all Use this command to display all configuration information for system logging. show logging all Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Matrix DFE-Platinum and Diamond Series Configuration Guide 11-3...
Page 794 Logging And Network Management Command Set Configuring System Logging Example This example shows how to display all system logging information: show logging all Matrix(rw)-> Application Current Severity Level Server List ---------------------------------------------------------- RtrAcl SNMP Webview System RtrFe Trace RtrLSNat FlowLimt Router AddrNtfy OSPF VRRP...
Page 795 Logging And Network Management Command Set Configuring System Logging Table 11-1 show logging all Output Details Output What It Displays... Application A mnemonic abbreviation of the textual description for applications being logged. Current Severity Severity level (1 - 8) at which the server is logging messages Level for the listed application.
Page 796: Show Logging Server
Logging And Network Management Command Set Configuring System Logging 11.2.1.2 show logging server Use this command to display the Syslog configuration for a particular server. show logging server [index] Syntax Description index (Optional) Displays Syslog information pertaining to a specific server table entry. Valid values are 1-8. Command Defaults If index is not specified, all Syslog server information will be displayed.
Page 797: Set Logging Server
Logging And Network Management Command Set Configuring System Logging 11.2.1.3 set logging server Use this command to configure a Syslog server. set logging server index [ip-addr ip-addr] [facility facility] [severity severity] [descr descr] [port port] [state {enable | disable}] Syntax Description index Specifies the server table index number for this server.
Page 798 Logging And Network Management Command Set Configuring System Logging Command Defaults • If ip-addr is not specified, an entry in the Syslog server table will be created with the specified index number and a message will display indicating that no IP address has been assigned.
Page 799: Clear Logging Server
Logging And Network Management Command Set Configuring System Logging 11.2.1.4 clear logging server Use this command to remove a server from the Syslog server table. clear logging server index Syntax Description index Specifies the server table index number for the server to be removed.
Page 800: Show Logging Default
Logging And Network Management Command Set Configuring System Logging 11.2.1.5 show logging default Use this command to display the Syslog server default values. show logging default Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This command shows how to display the Syslog server default values.
Page 801: Set Logging Default
Logging And Network Management Command Set Configuring System Logging 11.2.1.6 set logging default Use this command to set logging default values. set logging default {[facility facility] [severity severity] port port]} Syntax Description facility facility Specifies the default facility name. Valid values are: local0 to local7.
Page 802: Clear Logging Default
Logging And Network Management Command Set Configuring System Logging 11.2.1.7 clear logging default Use this command to reset logging default values. clear logging default{[facility] [severity] [port]} Syntax Description facility (Optional) Resets the default facility name to local4. severity (Optional) Resets the default logging severity level to 6 (notifications of significant conditions).
Page 803: Show Logging Application
Logging And Network Management Command Set Configuring System Logging 11.2.1.8 show logging application Use this command to display the severity level of Syslog messages for one or all applications configured for logging on your system. show logging application [mnemonic | all] Syntax Description mnemonic | all (Optional) Displays severity level for one or all...
Page 804 Logging And Network Management Command Set Configuring System Logging Example This example shows how to display system logging information pertaining to the all supported applications. Matrix(su)->show logging application Application Current Severity Level Server List ---------------------------------------------------------- RtrAcl SNMP Webview System RtrFe Trace RtrLSNat FlowLimt...
Page 805 Logging And Network Management Command Set Configuring System Logging Table 11-2 show logging application Output Details Output What It Displays... Application A mnemonic abbreviation of the textual description for applications being logged. Current Severity Severity level at which the server is logging messages for Level the listed application.
Page 806: Set Logging Application
Logging And Network Management Command Set Configuring System Logging 11.2.1.9 set logging application Use this command to set the severity level of log messages and the server(s) to which messages will be sent for one or all applications. set logging application {[mnemonic | all]} [level level] [servers servers] Syntax Description mnemonic Specifies a case sensitive mnemonic abbreviation of an...
Page 807 Logging And Network Management Command Set Configuring System Logging Table 11-3 Sample Mnemonic Values for Logging Applications Mnemonic Application Authentication, Authorization, & Accounting AddrNtfy Address Add and Move Notification Command Line Interface FlowLimit Flow Limiting LACP Link Aggregation Control Protocol OSPF Open Shortest Path First Routing Protocol Router...
Page 808 Logging And Network Management Command Set Configuring System Logging Command Mode Read-Write. Example This example shows how to set the severity level for SSH (Secure Shell) to 4 so that error conditions will be logged for that application and sent to Syslog server 1: set logging application SSH level 4 server 1 Matrix(rw)->...
Page 809: Clear Logging Application
Logging And Network Management Command Set Configuring System Logging 11.2.1.10 clear logging application Use this command to reset the logging severity level for one or all applications to the default value of 6 (notifications of significant conditions). clear logging application {mnemonic | all} Syntax Description mnemonic | all (Optional) Resets the severity level for a specific...
Page 810: Show Logging Local
Logging And Network Management Command Set Configuring System Logging 11.2.1.11 show logging local Use this command to display the state of message logging to the console and a persistent file. show logging local Syntax Description None. Command Defaults None. Command Type Switch command.
Page 811: Set Logging Local
Logging And Network Management Command Set Configuring System Logging 11.2.1.12 set logging local Use this command to configure log messages to the console and a persistent file. set logging local console {enable | disable} file {enable | disable} Syntax Description console enable | Enables or disables logging to the console.
Page 812: Clear Logging Local
Logging And Network Management Command Set Configuring System Logging 11.2.1.13 clear logging local Use this command to clear the console and persistent store logging for the local session. clear logging local Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write.
Page 813: Set Logging Here
Logging And Network Management Command Set Configuring System Logging 11.2.1.14 set logging here Use this command to enable or disable the current CLI session as a Syslog destination. The effect of this command will be temporary if the current CLI session is using Telnet or SSH, but persistent on the console.
Page 814: Clear Logging Here
Logging And Network Management Command Set Configuring System Logging 11.2.1.15 clear logging here Use this command to clear the logging state for the current CLI session. clear logging here Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write.
Page 815: Show Logging Buffer
Logging And Network Management Command Set Configuring System Logging 11.2.1.16 show logging buffer Use this command to display the last 256 messages logged. show logging buffer Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows a portion of the information displayed with the show logging buffer command show logging buffer Matrix(rw)->...
Page 816: Monitoring Network Events And Status
Logging And Network Management Command Set Monitoring Network Events and Status 11.2.2 Monitoring Network Events and Status Purpose To display switch events and command history, to set the size of the history buffer, and to display and disconnect current user sessions. Commands Commands to monitor switch network events and status are listed below and described in the associated section as shown.
Page 817 Logging And Network Management Command Set Monitoring Network Events and Status 11.2.2.1 history Use this command to display the contents of the command history buffer. The command history buffer includes all the switch commands entered up to a maximum of 50, as specified in the set history command (Section 11.2.2.3).
Page 818: Show History
Logging And Network Management Command Set Monitoring Network Events and Status 11.2.2.2 show history Use this command to display the size (in lines) of the history buffer. show history Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only.
Page 819: Set History
Logging And Network Management Command Set Monitoring Network Events and Status 11.2.2.3 set history Use this command to set the size of the history buffer. set history size [default] Syntax Description size Specifies the size of the history buffer in lines. Valid values are 1 to 100.
Page 820: Show Netstat
Logging And Network Management Command Set Monitoring Network Events and Status 11.2.2.4 show netstat Use this command to display statistics for the switch’s active network connections. show netstat [icmp | ip | routes | stats | tcp | udp] Syntax Description icmp (Optional) Shows Internet Control Message Protocol (ICMP) statistics.
Page 821 Logging And Network Management Command Set Monitoring Network Events and Status Table 11-4 provides an explanation of the command output. Table 11-4 show netstat Output Details Output What It Displays... Protocol Control Block designation. Proto Type of protocol running on the connection. Recv-Q Number of queries received over the connection.
Page 822 Logging And Network Management Command Set Monitoring Network Events and Status 11.2.2.5 ping Use this command to send ICMP echo-request packets to another node on the network from the switch CLI. ping [-s] host [count] Syntax Description (Optional) Causes a continuous ping, sending one datagram per second and printing one line of output for every response received, until the user enters Ctrl+C.
Page 823 Logging And Network Management Command Set Monitoring Network Events and Status This example shows how to ping IP address 134.141.89.29 with 10 packets: 134.141.89.29 Matrix(rw)->ping PING 134.141.89.29: 56 data bytes 64 bytes from 134.141.89.29: icmp-seq=0. time=0. ms 64 bytes from 134.141.89.29: icmp-seq=1. time=0. ms 64 bytes from 134.141.89.29: icmp-seq=2.
Page 824: Show Users
Logging And Network Management Command Set Monitoring Network Events and Status 11.2.2.6 show users Use this command to display information about the active console port or Telnet session(s) logged in to the switch. show users Syntax Description None. Command Defaults None.
Page 825 Logging And Network Management Command Set Monitoring Network Events and Status 11.2.2.7 tell Use this command to send a message to one or all users. tell {dest | all} message Syntax Description dest Specifies the user to which this message will be sent. Valid syntax is user@location.
Page 826 Logging And Network Management Command Set Monitoring Network Events and Status 11.2.2.8 disconnect Use this command to close an active console port or Telnet session from the switch CLI. disconnect {ip-addr | console} Syntax Description ip-addr Specifies the IP address of the Telnet session to be disconnected.
Page 827: Configuring Smon
Logging And Network Management Command Set Configuring SMON 11.2.3 Configuring SMON Purpose To configure SMON (Switched Network Monitoring) on the device. Commands Commands to configure SMON are listed below and described in the associated section as shown. • show smon priority (Section 11.2.3.1) •...
Page 828: Show Smon Priority
Logging And Network Management Command Set Configuring SMON 11.2.3.1 show smon priority Use this command to display SMON user priority statistics. SMON generates aggregated statistics for IEEE 802.1Q VLAN environments. show smon priority [port-string] [priority priority] Syntax Description port-string (Optional) Displays SMON priority statistics being collected by specific port(s).
Page 829: Set Smon Priority
Logging And Network Management Command Set Configuring SMON 11.2.3.2 set smon priority Use this command to create, start, or stop priority-encoded SMON user statistics counting. set smon priority {create | enable | disable} port-string [owner] Syntax Description create | enable | Creates, enables, or disables SMON priority statistics disable counting.
Page 830: Clear Smon Priority
Logging And Network Management Command Set Configuring SMON 11.2.3.3 clear smon priority Clears priority-encoded user statistics on one or more ports. clear smon priority [port-string] Syntax Description port-string (Optional) Clears statistics for specific port(s). For a detailed description of possible port-string values, refer to Section 4.1.1.
Page 831: Show Smon Vlan
Logging And Network Management Command Set Configuring SMON 11.2.3.4 show smon vlan Use this command to display SMON (Switched Network Monitoring) VLAN statistics. show smon vlan [port-string] [vlan vlan-id] Syntax Description port-string (Optional) Displays SMON VLAN statistics being collected by specific port(s). For a detailed description of possible port-string values, refer to Section 4.1.1.
Page 832: Set Smon Vlan
Logging And Network Management Command Set Configuring SMON 11.2.3.5 set smon vlan Use this command to create, start, or stop SNMP VLAN-related statistics counting. set smon vlan {create | enable | disable} port-string [owner] Syntax Description create | enable | Creates, enables, or disables SMON VLAN statistics disable counting.
Page 833: Clear Smon Vlan
Logging And Network Management Command Set Configuring SMON 11.2.3.6 clear smon vlan Use this command to delete an SMON VLAN statistics counting configuration. clear smon vlan [port-string] Syntax Description port-string (Optional) Clears statistics counting configuration(s) for specific port(s). For a detailed description of possible port-string values, refer to Section 4.1.1.
Page 834: Configuring Rmon
Logging And Network Management Command Set Configuring RMON 11.2.4 Configuring RMON RMON Monitoring Group Functions and Commands RMON (Remote Network Monitoring) provides comprehensive network fault diagnosis, planning, and performance tuning information and allows for interoperability between SNMP management stations and monitoring agents. RMON extends the SNMP MIB capability by defining additional MIBs that generate a much richer set of data about network usage.
Page 835 Logging And Network Management Command Set Configuring RMON Table 11-5 RMON Monitoring Group Functions and Commands (Continued) RMON Group What It Does... What It Monitors... CLI Command(s) Alarm Periodically gathers Alarm type, interval, show rmon alarm statistical samples from starting threshold, stop (Section 11.2.4.7) variables in the probe and...
Page 836 Logging And Network Management Command Set Configuring RMON Table 11-5 RMON Monitoring Group Functions and Commands (Continued) RMON Group What It Does... What It Monitors... CLI Command(s) Host Generates tables that Statistics, top host(s), show rmon topN TopN describe hosts that top a sample stop and start (Section 11.2.4.19)
Page 837 Logging And Network Management Command Set Configuring RMON Table 11-5 RMON Monitoring Group Functions and Commands (Continued) RMON Group What It Does... What It Monitors... CLI Command(s) Filter Allows packets to be Packets matching the show rmon channel matched by a filter filter configuration.
Page 838: Show Rmon Stats
Logging And Network Management Command Set Configuring RMON 11.2.4.1 show rmon stats Use this command to display RMON statistics measured for one or more ports. show rmon stats [port-string] [wide] [bysize] Syntax Description port-string (Optional) Displays RMON statistics for specific port(s). For a detailed description of possible port-string values, refer to Section...
Page 839 Logging And Network Management Command Set Configuring RMON Table 11-6 provides an explanation of the command output. Table 11-6 show rmon stats Output Details Output What It Displays... Port Port designation. Owner Name of the entity that configured this entry. Monitor is default.
Page 840 Logging And Network Management Command Set Configuring RMON Table 11-6 show rmon stats Output Details (Continued) Output What It Displays... Fragments Number of received frames that are not the minimum number of bytes in length, or received frames that had a bad or missing Frame Check Sequence (FCS), were less than 64 bytes in length (excluding framing bits, but including FCS bytes) and had an invalid CRC.
Page 841: Set Rmon Stats
Logging And Network Management Command Set Configuring RMON 11.2.4.2 set rmon stats Use this command to configure an RMON statistics entry. set rmon stats index port-string [owner] Syntax Description index Specifies an index for this statistics entry. port-string Specifies port(s) to which this entry will be assigned. For a detailed description of possible port-string values, refer to Section 4.1.1.
Page 842: Clear Rmon Stats
Logging And Network Management Command Set Configuring RMON 11.2.4.3 clear rmon stats Use this command to delete one or more RMON statistics entries. clear rmon stats {index-list | to-defaults} Syntax Description index-list Specifies one or more stats entries to be deleted, causing them to disappear from any future RMON queries.
Page 843: Show Rmon History
Logging And Network Management Command Set Configuring RMON 11.2.4.4 show rmon history Use this command to display RMON history properties and statistics. The RMON history group records periodic statistical samples from a network. show rmon history [port-string] [wide] [interval] Syntax Description port-string (Optional) Displays RMON history entries for specific port(s).
Page 844 Logging And Network Management Command Set Configuring RMON Matrix(rw)->show rmon history fe.3.14 Port: fe.3.14 --------------------------------------- Index 1001 Status = 1 valid Owner = monitor Data Source = 1.3.6.1.2.1.2.2.1.1.11001 Interval = 30 Buckets Requested = 50 Buckets Granted = 50 Sample 2304 Interval Start: 0 days 19 hours 11 minutes 35 seconds Drop Events Undersize Pkts...
Page 845: Set Rmon History
Logging And Network Management Command Set Configuring RMON 11.2.4.5 set rmon history Use this command to configure an RMON history entry. set rmon history index [port-string] [buckets buckets] [interval interval] [owner owner] Syntax Description index-list Specifies an index number for this entry. port-string (Optional) Assigns this entry to a specific port.
Page 846: Clear Rmon History
Logging And Network Management Command Set Configuring RMON 11.2.4.6 clear rmon history Use this command to delete one or more RMON history entries or reset one or more entries to default values. For specific values, refer to Section 11.2.4.5. clear rmon history {index-list | to-defaults} Syntax Description index-list Specifies one or more history entries to be deleted,...
Page 847: Show Rmon Alarm
Logging And Network Management Command Set Configuring RMON 11.2.4.7 show rmon alarm Use this command to display RMON alarm entries. The RMON alarm group periodically takes statistical samples from RMON variables and compares them with previously configured thresholds. If the monitored variable crosses a threshold an RMON event is generated. show rmon alarm [index] Syntax Description index...
Page 848 Logging And Network Management Command Set Configuring RMON Table 11-7 show rmon alarm Output Details Output What It Displays... Index Index number for this alarm entry. Owner Text string identifying who configured this entry. Status Whether this event entry is enabled (valid) or disabled. Variable MIB object to be monitored.
Page 849: Set Rmon Alarm Properties
Logging And Network Management Command Set Configuring RMON 11.2.4.8 set rmon alarm properties Use this command to configure an RMON alarm entry, or to create a new alarm entry with an unused alarm index number. set rmon alarm properties index [interval interval] [object object] [type {absolute | delta}] [startup {rising | falling | either}] [rthresh rthresh] [fthresh fthresh] [revent revent] [fevent fevent] [owner owner] Syntax Description...
Page 850 Logging And Network Management Command Set Configuring RMON revent revent Specifies the index number of the RMON event to be triggered when the rising threshold is crossed. fevent fevent Specifies the index number of the RMON event to be triggered when the falling threshold is crossed. owner owner (Optional) Specifies the name of the entity that configured this alarm entry.
Page 851: Set Rmon Alarm Status
Logging And Network Management Command Set Configuring RMON 11.2.4.9 set rmon alarm status Use this command to enable an RMON alarm entry. An alarm is a notification that a statistical sample of a monitored variable has crossed a configured threshold. set rmon alarm status index enable NOTE: An RMON alarm entry can be created using this command, configured using...
Page 852: Clear Rmon Alarm
Logging And Network Management Command Set Configuring RMON 11.2.4.10 clear rmon alarm Use this command to delete an RMON alarm entry. clear rmon alarm index Syntax Description index Specifies the index number of entry to be cleared. Command Defaults None. Command Type Switch command.
Page 853: Show Rmon Event
Logging And Network Management Command Set Configuring RMON 11.2.4.11 show rmon event Use this command to display RMON event entry properties. show rmon event [index] Syntax Description index (Optional) Displays RMON properties and log entries for a specific entry index ID. Command Defaults If index is not specified, information about all RMON entries will be displayed.
Page 854 Logging And Network Management Command Set Configuring RMON Table 11-8 show rmon event Output Details (Continued) Output What It Displays... Description Text string description of this event. Type Whether the event notification will be a log entry, and SNMP trap, both, or none. Community SNMP community name if message type is set to trap.
Page 855: Set Rmon Event Properties
Logging And Network Management Command Set Configuring RMON 11.2.4.12 set rmon event properties Use this command to configure an RMON event entry, or to create a new event entry with an unused event index number. set rmon event properties index [description description] [type {none | log | trap | both}] [community community] [owner owner] Syntax Description index...
Page 856 Logging And Network Management Command Set Configuring RMON Example This example shows how to create and enable an RMON event entry called “STP topology change” that will send both a log entry and an SNMP trap message to the “public” community: set rmon event properties 2 description “STP topology Matrix(rw)->...
Page 857: Set Rmon Event Status
Logging And Network Management Command Set Configuring RMON 11.2.4.13 set rmon event status Use this command to enable an RMON event entry. An event entry describes the parameters of an RMON event that can be triggered. Events can be fired by RMON alarms and can be configured to create a log entry, generate a trap, or both.
Page 858: Clear Rmon Event
Logging And Network Management Command Set Configuring RMON 11.2.4.14 clear rmon event Use this command to delete an RMON event entry and any associated log entries. clear rmon event index Syntax Description index Specifies the index number of the entry to be cleared. Command Defaults None.
Page 859: Show Rmon Host
Logging And Network Management Command Set Configuring RMON 11.2.4.15 show rmon host Use this command to display RMON properties and statistics associated with each host discovered on the network. show rmon host [port-string] [address | creation] Syntax Description port-string (Optional) Displays RMON properties and statistics for specific port(s).
Page 860 Logging And Network Management Command Set Configuring RMON Example This example shows how to display RMON host properties and statistics. A control entry displays first, followed by actual entries corresponding to the control entry. For a description of the types of statistics shown, refer to Table 11-6 Matrix(rw)->show rmon host...
Page 861: Set Rmon Host Properties
Logging And Network Management Command Set Configuring RMON 11.2.4.16 set rmon host properties Use this command to configure an RMON host entry. set rmon host properties index port-string [owner] Syntax Description index Specifies an index number for this entry. An entry will automatically be created if an unused index number is chosen.
Page 862: Set Rmon Host Status
Logging And Network Management Command Set Configuring RMON 11.2.4.17 set rmon host status Use this command to enable an RMON host entry. set rmon host status index enable Syntax Description index Specifies an index number for this entry. Maximum number of entries is 5. Maximum value is 65535. enable Enables this host entry.
Page 863: Clear Rmon Host
Logging And Network Management Command Set Configuring RMON 11.2.4.18 clear rmon host Use this command to delete an RMON host entry. clear rmon host index Syntax Description index Specifies the index number of the entry to be cleared. Command Defaults None.
Page 864: Show Rmon Topn
Logging And Network Management Command Set Configuring RMON 11.2.4.19 show rmon topN Use this command to displays RMON TopN properties and statistics. TopN monitoring prepares tables that describe the hosts topping a list ordered by one of their statistics. TopN lists are samples of one of the hosts base statistics over a specific interval.
Page 865 Logging And Network Management Command Set Configuring RMON Table 11-9 provides an explanation of the command output. Properties are set using the set rmon topN properties command as described in Section 11.2.4.20. Table 11-9 show rmon topN Output Details Output What It Displays...
Page 866: Set Rmon Topn Properties
Logging And Network Management Command Set Configuring RMON 11.2.4.20 set rmon topN properties Use this command to configure an RMON topN entry (report). set rmon topn properties index [hindex hindex] [rate {inpackets | outpackets | inoctets | outoctets | errors | bcast | mcast}] [duration duration] [size size] [owner owner] Syntax Description index...
Page 867 Logging And Network Management Command Set Configuring RMON Command Mode Read-Write. Example This example shows how to configure RMON TopN entry 1, for host 1 with a sampling interval of 60 seconds and a maximum number of entries of 20: set rmon topN properties 1 1 inpackets 60 20 Matrix(rw)->...
Page 868: Set Rmon Topn Status
Logging And Network Management Command Set Configuring RMON 11.2.4.21 set rmon topN status Use this command to enable an RMON topN entry. set rmon topN status index enable | Syntax Description index Specifies an index number for this entry. Maximum number of entries is 10.
Page 869: Clear Rmon Topn
Logging And Network Management Command Set Configuring RMON 11.2.4.22 clear rmon topN Use this command to delete an RMON TopN entry. clear rmon topN index Syntax Description index Specifies the index number of the entry to be cleared. Command Defaults None.
Page 870: Show Rmon Matrix
Logging And Network Management Command Set Configuring RMON 11.2.4.23 show rmon matrix Use this command to display RMON matrix properties and statistics. The RMON matrix stores statistics for conversations between sets of two addresses. show rmon matrix [port-string] [source | dest] Syntax Description port-string (Optional) Displays RMON properties and statistics for a...
Page 871 Logging And Network Management Command Set Configuring RMON Table 11-10 provides an explanation of the command output. Properties are set using the set rmon matrix properties command as described in Section 11.2.4.24. Table 11-10 show rmon matrix Output Details Output What It Displays...
Page 872: Set Rmon Matrix Properties
Logging And Network Management Command Set Configuring RMON 11.2.4.24 set rmon matrix properties Use this command to configure an RMON matrix entry. set rmon matrix properties index port-string [owner] Syntax Description index Specifies an index number for this entry. An entry will automatically be created if an unused index number is chosen.
Page 873: Set Rmon Matrix Status
Logging And Network Management Command Set Configuring RMON 11.2.4.25 set rmon matrix status Use this command to enable an RMON matrix entry. set rmon matrix status index enable Syntax Description index Specifies an index number for this entry. Maximum number of entries is 2. Maximum value is 65535. enable Enables or disables this matrix entry.
Page 874: Clear Rmon Matrix
Logging And Network Management Command Set Configuring RMON 11.2.4.26 clear rmon matrix Use this command to delete an RMON matrix entry. clear rmon matrix index Syntax Description index Specifies the index number of the entry to be cleared. Command Defaults None.
Page 875: Show Rmon Channel
Logging And Network Management Command Set Configuring RMON 11.2.4.27 show rmon channel Use this command to display RMON channel entries for one or more ports. show rmon channel [port-string] Syntax Description port-string (Optional) Displays RMON channel entries for a specific port(s).
Page 876: Set Rmon Channel
Logging And Network Management Command Set Configuring RMON 11.2.4.28 set rmon channel Use this command to configure an RMON channel entry. set rmon channel index port-string [accept {matched | failed}] [control {on | off}] [onevent onevent] [offevent offevent] [event event] [estatus {ready | fired | always}] [description description] [owner owner] Syntax Description index...
Page 877 Logging And Network Management Command Set Configuring RMON Command Defaults • If an action is not specified, packets will be accepted on filter matches. • If not specified, control will be set to off. • If onevent and offevent are not specified, none will be applied. •...
Page 878: Clear Rmon Channel
Logging And Network Management Command Set Configuring RMON 11.2.4.29 clear rmon channel Use this command to clear an RMON channel entry. clear rmon channel index Syntax Description index Specifies the channel entry to be cleared. Command Defaults None. Command Type Switch command.
Page 879: Show Rmon Filter
Logging And Network Management Command Set Configuring RMON 11.2.4.30 show rmon filter Use this command to display one or more RMON filter entries. show rmon filter [index index | channel channel] Syntax Description index index | (Optional) Displays information about a specific filter channel channel entry, or about all filters which belong to a specific channel.
Page 880: Set Rmon Filter
Logging And Network Management Command Set Configuring RMON 11.2.4.31 set rmon filter Use this command to configure an RMON filter entry. set rmon filter index channel_index [offset offset] [status status] [smask smask] [snotmask snotmask] [data data] [dmask dmask] [dnotmask dnotmask] [owner owner] Syntax Description index...
Page 881 Logging And Network Management Command Set Configuring RMON Command Mode Read-Write. Example This example shows how to create RMON filter 1 and apply it to channel 9: set rmon filter 1 10 offset 30 data 0a154305 dmask Matrix(rw)-> ffffffff Matrix DFE-Platinum and Diamond Series Configuration Guide 11-91...
Page 882: Clear Rmon Filter
Logging And Network Management Command Set Configuring RMON 11.2.4.32 clear rmon filter Use this command to clear an RMON filter entry. clear rmon filter {index index | channel channel} Syntax Description index index | Clears a specific filter entry, or all entries belonging to a channel channel specific channel.
Page 883: Show Rmon Capture
Logging And Network Management Command Set Configuring RMON 11.2.4.33 show rmon capture Use this command to display RMON capture entries and associated buffer control entries. show rmon capture [index] [nodata] Syntax Description index (Optional) Displays the specified buffer control entry and all captured packets associated with that entry.
Page 884 Logging And Network Management Command Set Configuring RMON Example This example shows how to display RMON capture entries and associated buffer entries: Matrix(rw)->show rmon capture Buf.control= 28062 Channel= 38283 EntryStatus= valid ---------------------------------------------------------- FullStatus avail FullAction lock Captured packets Capture slice Download size Download offset Max Octet Requested 50000...
Page 885: Set Rmon Capture
Logging And Network Management Command Set Configuring RMON 11.2.4.34 set rmon capture Use this command to configure an RMON capture entry, or to enable or disable an existing entry. set rmon capture index {channel [action {lock | wrap}] [slice slice] [loadsize loadsize] [offset offset] [asksize asksize] [owner owner]} | {enable | disable} Syntax Description index...
Page 886 Logging And Network Management Command Set Configuring RMON Command Type Switch command. Command Mode Read-Write. Example This example shows how to create RMON capture entry 1 to “listen” on channel 628: set rmon capture 1 628 Matrix(rw)-> 11-96 Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 887: Clear Rmon Capture
Logging And Network Management Command Set Configuring RMON 11.2.4.35 clear rmon capture Use this command to clears an RMON capture entry. clear rmon capture index Syntax Description index Specifies the capture entry to be cleared. Command Defaults None. Command Type Switch command.
Page 888: Managing Switch Network Addresses And Routes
Logging And Network Management Command Set Managing Switch Network Addresses and Routes 11.2.5 Managing Switch Network Addresses and Routes Purpose To display, add or delete switch ARP table entries, to enable or disable RAD (Runtime Address Discovery) protocol, to display, add or delete IP routing table addresses, and to display MAC address information.
Page 889: Show Arp
Logging And Network Management Command Set Managing Switch Network Addresses and Routes 11.2.5.1 show arp Use this command to display the switch’s ARP table. show arp Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the ARP table: show arp Matrix(rw)->...
Page 890: Set Arp
Logging And Network Management Command Set Managing Switch Network Addresses and Routes 11.2.5.2 set arp Use this command to add mapping entries to the switch’s ARP table. set arp ip-address mac-address [{temp | pub | trail}] Syntax Description ip-address Specifies the IP address to map to the MAC address and add to the ARP table.
Page 891: Clear Arp
Logging And Network Management Command Set Managing Switch Network Addresses and Routes 11.2.5.3 clear arp Use this command to delete a specific entry or all entries from the switch’s ARP table. clear arp {ip | all} Syntax Description ip | all Specifies the IP address in the ARP table to be cleared, or clears all ARP entries.
Page 892: Show Rad
Logging And Network Management Command Set Managing Switch Network Addresses and Routes 11.2.5.4 show rad Use this command to display the status of the RAD (Runtime Address Discovery) protocol on the switch. show rad Syntax Description None. Command Defaults None. Command Type Switch command.
Page 893: Set Rad
Logging And Network Management Command Set Managing Switch Network Addresses and Routes 11.2.5.5 set rad Use this command to enable or disable RAD (Runtime Address Discovery) protocol. The Matrix Series device uses BOOTP/DHCP to obtain an IP address if one hasn’t been configured. RAD can also be used to retrieve a text configuration file from the network.
Page 894: Show Ip Route
Logging And Network Management Command Set Managing Switch Network Addresses and Routes 11.2.5.6 show ip route Use this command to display the switch’s IP routing table entries. show ip route Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only.
Page 895 Logging And Network Management Command Set Managing Switch Network Addresses and Routes Table 11-12 show ip route Output Details (Continued) Output What It Displays... Flags Route status. Possible values and their definitions include: U - route is usable (that is, "up") G - destination is a gateway H - host specific routing entry R - host or net unreachable...
Page 896 Logging And Network Management Command Set Managing Switch Network Addresses and Routes 11.2.5.7 traceroute Use this command to display a hop-by-hop path through an IP network from the device to a specific destination host. Three UDP or ICMP probes will be transmitted for each hop between the source and the traceroute destination.
Page 897 Logging And Network Management Command Set Managing Switch Network Addresses and Routes (Optional) Prevents traceroute from calculating checksums. host Specifies the host to which the route of an IP packet will be traced. packetlen (Optional) Specifies the length of the probe packet. Command Defaults •...
Page 898 1 is the Matrix Series switch, hop 2 is 14.1.0.45, and hop 3 is back to the host IP address. Round trip times for each of the three UDP probes are displayed next to each hop Matrix(rw)->traceroute 192.167.252.17 traceroute to 192.167.252.17 (192.167.252.17), 30 hops max, 40 byte packets matrix.enterasys.com (192.167.201.40) 20.000 ms 20.000 ms 20.000 ms 14.1.0.45 (14.1.0.45)
Page 899: Set Ip Route
Logging And Network Management Command Set Managing Switch Network Addresses and Routes 11.2.5.8 set ip route Use this command to add a route to the switch’s IP routing table. set ip route {destination | default} gateway Syntax Description destination Specifies the IP address of the network or host to be added. default Sets the default gateway.
Page 900: Clear Ip Route
Logging And Network Management Command Set Managing Switch Network Addresses and Routes 11.2.5.9 clear ip route Use this command to delete switch IP routing table entries. clear ip route destination | default Syntax Description destination Specifies the IP address of the network or host to be cleared.
Page 901: Show Port Mac
Logging And Network Management Command Set Managing Switch Network Addresses and Routes 11.2.5.10 show port mac Use this command to display the MAC address(es) for one or more ports. These are port MAC addresses programmed into the device during manufacturing. To show the MAC addresses learned on a port through the switching process, use the show mac command as described in Section 11.2.5.11.
Page 902: Show Mac
Logging And Network Management Command Set Managing Switch Network Addresses and Routes 11.2.5.11 show mac Use this command to display the timeout period for aging learned MAC addresses, and to show MAC addresses in the switch’s filtering database. These are addresses learned on a port through the switching process or statically entered.
Page 903 Logging And Network Management Command Set Managing Switch Network Addresses and Routes Examples This example shows how to display the MAC address timeout period: show mac agetime Matrix(rw)-> Aging time: 300 seconds This example shows how to display MAC address information for Fast Ethernet port 3 in module 1: Matrix(rw)->show mac port-string fe.1.3 MAC Address Port...
Page 904: Set Mac
Logging And Network Management Command Set Managing Switch Network Addresses and Routes 11.2.5.12 set mac Use this command to set the timeout period for aging learned MAC entries, to define what ports a multicast address can be dynamically learned on or flooded to, and to make a static entry into the filtering database(s).
Page 905: Clear Mac
Logging And Network Management Command Set Managing Switch Network Addresses and Routes 11.2.5.13 clear mac Use this command to reset the timeout period for aging learned MAC entries to the default value of 300 seconds, or to clear MAC addresses out of the filtering database(s). clear mac {[all] | [address address] [fid fid] | [vlan-id vlan-id] | [port-string port-string] [type {learned | mgmt}]} | [agetime] Syntax Description...
Page 906 Logging And Network Management Command Set Managing Switch Network Addresses and Routes This example shows how to clear all the MAC addresses associated with port fe.1.3: Matrix(rw)->clear mac port-string fe.1.3 11-116 Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 907: Show Newaddrtraps
Logging And Network Management Command Set Managing Switch Network Addresses and Routes 11.2.5.14 show newaddrtraps Use this command to display the status of MAC address traps on one or more ports. show newaddrtrap [port-string] Syntax Description port-string (Optional) Displays MAC address traps for specific port(s). For a detailed description of possible port-string values, refer to Section...
Page 908: Set Newaddrtraps
Logging And Network Management Command Set Managing Switch Network Addresses and Routes 11.2.5.15 set newaddrtraps Use this command to enable or disable SNMP trap messaging, globally or on one or more ports, when new source MAC addresses are detected. set newaddrtrap [port-string] {enable | disable} Syntax Description port-string (Optional) Specifies the port(s) on which to enable or...
Page 909: Show Movedaddrtrap
Logging And Network Management Command Set Managing Switch Network Addresses and Routes 11.2.5.16 show movedaddrtrap Use this command to display the status of moved MAC address traps on one or more ports. show movedaddrtrap [port-string] Syntax Description port-string (Optional) Displays MAC address traps for specific port(s). For a detailed description of possible port-string values, refer to Section...
Page 910: Set Movedaddrtrap
Logging And Network Management Command Set Managing Switch Network Addresses and Routes 11.2.5.17 set movedaddrtrap Use this command to enable or disable SNMP trap messaging, globally or on one or more ports, when moved source MAC addresses are detected. set movedaddrtrap [port-string] {enable | disable} Syntax Description port-string (Optional) Specifies the port(s) on which to enable or...
Page 911: Configuring Simple Network Time Protocol (Sntp)
Logging And Network Management Command Set Configuring Simple Network Time Protocol (SNTP) 11.2.6 Configuring Simple Network Time Protocol (SNTP) Purpose To configure the Simple Network Time Protocol (SNTP), which synchronizes device clocks in a network. Commands Commands to configure SNTP are listed below and described in the associated section as shown. •...
Page 912: Show Sntp
Logging And Network Management Command Set Configuring Simple Network Time Protocol (SNTP) 11.2.6.1 show sntp Use this command to display SNTP client settings. show sntp Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display SNTP client settings: Matrix(rw)->show sntp SNTP Version: 3 Current Time: TUE SEP 09 16:13:33 2003...
Page 913 Logging And Network Management Command Set Configuring Simple Network Time Protocol (SNTP) Table 11-14 show sntp Output Details Output What It Displays... SNTP Version SNTP version number. Current Time Current time on the system clock. Timezone Time zone name and amount it is offset from UTC (Universal Time).
Page 914: Set Sntp Client
Logging And Network Management Command Set Configuring Simple Network Time Protocol (SNTP) 11.2.6.2 set sntp client Use this command to set the SNTP operation mode. set sntp client {broadcast | unicast | disable} Syntax Description broadcast Enables SNTP in broadcast client mode. unicast Enables SNTP in unicast (point-to-point) client mode.
Page 915: Clear Sntp Client
Logging And Network Management Command Set Configuring Simple Network Time Protocol (SNTP) 11.2.6.3 clear sntp client Use this command to clear the SNTP client’s operational mode. clear sntp client Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write.
Page 916: Set Sntp Server
Logging And Network Management Command Set Configuring Simple Network Time Protocol (SNTP) 11.2.6.4 set sntp server Use this command to add a server from which the SNTP client will retrieve the current time when operating in unicast mode. Up to 10 servers can be set as SNTP servers. set sntp server ip-address [precedence] Syntax Description ip-address...
Page 917: Clear Sntp Server
Logging And Network Management Command Set Configuring Simple Network Time Protocol (SNTP) 11.2.6.5 clear sntp server Use this command to remove one or all servers from the SNTP server list. clear sntp server {ip-address | all} Syntax Description ip-address Specifies the IP address of a server to remove from the SNTP server list.
Page 918: Set Sntp Broadcastdelay
Logging And Network Management Command Set Configuring Simple Network Time Protocol (SNTP) 11.2.6.6 set sntp broadcastdelay Use this command to set the round trip delay, in microseconds, for SNTP broadcast frames. set sntp broadcastdelay time Syntax Description time Specifies broadcast delay time in microseconds. Valid values are 1 to 999999.
Page 919: Clear Sntp Broadcast Delay
Logging And Network Management Command Set Configuring Simple Network Time Protocol (SNTP) 11.2.6.7 clear sntp broadcast delay Use this command to clear the round trip delay time for SNTP broadcast frames. clear sntp broadcastdelay Syntax Description None. Command Defaults None. Command Type Switch command.
Page 920: Set Sntp Poll-Interval
Logging And Network Management Command Set Configuring Simple Network Time Protocol (SNTP) 11.2.6.8 set sntp poll-interval Use this command to set the poll interval between SNTP unicast requests. set sntp poll-interval interval Syntax Description interval Specifies the poll interval in seconds. Valid values are 16 to 16284.
Page 921: Clear Sntp Poll-Interval
Logging And Network Management Command Set Configuring Simple Network Time Protocol (SNTP) 11.2.6.9 clear sntp poll-interval Use this command to clear the poll interval between unicast SNTP requests. clear sntp poll-interval Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write.
Page 922: Set Sntp Poll-Retry
Logging And Network Management Command Set Configuring Simple Network Time Protocol (SNTP) 11.2.6.10 set sntp poll-retry Use this command to set the number of poll retries to a unicast SNTP server. set sntp poll-retry retry Syntax Description retry Specifies the number of retries. Valid values are 0 to 10. Command Defaults None.
Page 923: Clear Sntp Poll-Retry
Logging And Network Management Command Set Configuring Simple Network Time Protocol (SNTP) 11.2.6.11 clear sntp poll-retry Use this command to clear the number of poll retries to a unicast SNTP server. clear sntp poll-retry Syntax Description None. Command Defaults None. Command Type Switch command.
Page 924: Set Sntp Poll-Timeout
Logging And Network Management Command Set Configuring Simple Network Time Protocol (SNTP) 11.2.6.12 set sntp poll-timeout Use this command to set the poll timeout (in seconds) for a response to a unicast SNTP request. set sntp poll-timeout timeout Syntax Description timeout Specifies the poll timeout in seconds.
Page 925: Clear Sntp Poll-Timeout
Logging And Network Management Command Set Configuring Simple Network Time Protocol (SNTP) 11.2.6.13 clear sntp poll-timeout Use this command to clear the SNTP poll timeout. clear sntp poll-timeout Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write.
Page 926: Show Timezone
Logging And Network Management Command Set Configuring Simple Network Time Protocol (SNTP) 11.2.6.14 show timezone Use this command to display SNTP time zone settings. show timezone Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display SNTP time zone settings: Matrix(rw)->show timezone Admin Config timezone: '', offset from UTC is 5 hours and 0 minutes...
Page 927: Set Timezone
Logging And Network Management Command Set Configuring Simple Network Time Protocol (SNTP) 11.2.6.15 set timezone Use this command to set the SNTP time zone name and the hours and minutes it is offset from Coordinated Universal Time (UTC). set timezone name [hours] [minutes] Syntax Description name Specifies the time zone name.
Page 928: Clear Timezone
Logging And Network Management Command Set Configuring Simple Network Time Protocol (SNTP) 11.2.6.16 clear timezone Use this command to remove SNTP time zone adjustment values. clear timezone Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to remove SNTP time zone adjustment values Matrix(rw)->clear timezone...
Page 929: Configuring Node Aliases
Logging And Network Management Command Set Configuring Node Aliases 11.2.7 Configuring Node Aliases Purpose To review, configure, disable and re-enable node (port) alias functionality, which determines what network protocols are running on one or more ports. Commands Commands to configure node aliases are listed below and described in the associated section as shown.
Page 930: Show Nodealias
Logging And Network Management Command Set Configuring Node Aliases 11.2.7.1 show nodealias Use this command to display node alias properties for one or more ports. show nodealias [port-string] Syntax Description port-string (Optional) Displays node alias properties for specific port(s). For a detailed description of possible port-string values, refer to Section 4.1.1.
Page 931 Logging And Network Management Command Set Configuring Node Aliases Table 11-15 show nodealias Output Details (Continued) Output What It Displays... Vlan ID VLAN ID associated with this alias. MAC Address MAC address associated with this alias. Protocol Networking protocol running on this port. Address / Source When applicable, a protocol-specific address associated with this alias.
Page 932: Show Nodealias Mac
Logging And Network Management Command Set Configuring Node Aliases 11.2.7.2 show nodealias mac Use this command to display node alias entries based on MAC address and protocol. show nodealias mac mac_address [ip | apl | mac | hsrp | dhcps | dhcpc | bootps | bootpc | ospf | vrrp | ipx | xrip | xsap | ipx20 | rtmp | netBios | nbt | bgp | rip | igrp | dec | bpdu | udp] [port-string] Syntax Description...
Page 933 Logging And Network Management Command Set Configuring Node Aliases Command Defaults • If protocol is not specified, node alias entries for all protocols will be displayed. • If port-string is not specified, node alias entries will be displayed for all ports. Command Mode Read-Only.
Page 934: Show Nodealias Protocol
Logging And Network Management Command Set Configuring Node Aliases 11.2.7.3 show nodealias protocol Use this command to display node alias entries based on protocol and protocol address. show nodealias protocol {ip | apl | mac | hsrp | dhcps | dhcpc | bootps | bootpc | ospf | vrrp | ipx | xrip | xsap | ipx20 | rtmp | netBios | nbt | bgp | rip | igrp | dec | bpdu | udp} [ip-address ip-address] [port-string] Syntax Description...
Page 935 Logging And Network Management Command Set Configuring Node Aliases Example This example shows how to display node alias entries for IP traffic on ge.3.16. Refer back to Table 11-15 for a description of the command output. Matrix(rw)->show nodealias protocol ip ge.3.16 Port: ge.3.16 Time: 1 days 03 hrs 33 mins 47 secs -------------------------------------------------------- Alias ID...
Page 936: Show Nodealias Config
Logging And Network Management Command Set Configuring Node Aliases 11.2.7.4 show nodealias config Use this command to display node alias configuration settings on one or more ports. show nodealias config [port-string] Syntax Description port-string (Optional) Displays node alias configuration settings for specific port(s).
Page 937 Logging And Network Management Command Set Configuring Node Aliases Table 11-16 show nodealias config Output Details Output What It Displays... Port Number Port designation. Max Entries Maximum number of alias entries configured for this port. Set using the set nodealias maxentries command (Section 11.2.7.6).
Page 938: Set Nodealias
Logging And Network Management Command Set Configuring Node Aliases 11.2.7.5 set nodealias Use this command to enable or disable a node alias agent on one or more ports. Upon packet reception, node aliases are dynamically assigned to ports enabled with an alias agent, which is the default setting on Matrix Series devices.
Page 939: Set Nodealias Maxentries
Logging And Network Management Command Set Configuring Node Aliases 11.2.7.6 set nodealias maxentries Use this command to set the maximum number of node alias entries allowed for one or more ports. set nodealias maxentries val port-string Syntax Description Specifies the maximum number of alias entries. port-string Specifies the port(s) on which to set the maximum entry value.
Page 940: Clear Nodealias
Logging And Network Management Command Set Configuring Node Aliases 11.2.7.7 clear nodealias Use this command to remove one or more node alias entries. clear nodealias {port-string port-string | alias-id alias-id} Syntax Description port-string Specifies the port(s) on which to remove all node alias port-string entries.
Page 941: Clear Nodealias Config
Logging And Network Management Command Set Configuring Node Aliases 11.2.7.8 clear nodealias config Use this command to reset node alias state to enabled and clear the maximum entries value. clear nodealias config port-string Syntax Description port-string Specifies the port(s) on which to reset the node alias configuration.
Page 942: Configuring Netflow
Logging And Network Management Command Set Configuring NetFlow 11.2.8 Configuring NetFlow NetFlow is a protocol developed for collecting IP traffic information. Network devices (switches and routers) with NetFlow enabled generate NetFlow flow records, which are exported from the device in UDP packets and collected by a NetFlow collector. Matrix DFE Implementation The Matrix DFE flow-based architecture provides a powerful mechanism for collecting network flow statistics, with reporting capacity that scales with the addition of each DFE blade.
Page 943 Templates are sent as a result of the refresh rate by each blade, since each blade handles it's own packet transmission. For flow generation and processing efficiency reasons, Enterasys recommends that customers configure their Matrix systems so that templates are not generated...
Page 944 Logging And Network Management Command Set Configuring NetFlow more often than once per second, as a minimum. For more information about setting the refresh rate, see the Usage discussion in Section 11.2.8.12. Commands Commands to configure NetFlow are listed below and described in the associated section as shown. •...
Page 945: Show Netflow
Logging And Network Management Command Set Configuring NetFlow 11.2.8.1 show netflow Use this command to display NetFlow configuration information and/or statistics. show netflow [config [port-string]] [statistics [export]] Syntax Description config (Optional) Show the NetFlow configuration. statistics (Optional) Show the NetFlow statistics. export (Optional) Show the NetFlow export statistics.
Page 946 Logging And Network Management Command Set Configuring NetFlow Disabled Ports: ----------------- lag.0.1-48 ge.1.1-10,12-22,24-52 Export Statistics: ------------------------------------ Network Packets Sampled: Exported Packets: Exported Records: Export Packets Failed: Export Records Dropped: 11-156 Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 947: Set Netflow Cache
Logging And Network Management Command Set Configuring NetFlow 11.2.8.2 set netflow cache Use this command to enable (create) or disable (free up) a NetFlow cache on each DFE blade in the Matrix system. A NetFlow cache maintains NetFlow information for all active flows. By default, NetFlow caches are not created.
Page 948: Clear Netflow Cache
Logging And Network Management Command Set Configuring NetFlow 11.2.8.3 clear netflow cache Use this command to remove, or free up, the NetFlow caches on each DFE blade in the Matrix system. When this command is executed, NetFlow is effectively disabled on the system. clear netflow cache Syntax Description None.
Page 949: Set Netflow Export-Destination
Logging And Network Management Command Set Configuring NetFlow 11.2.8.4 set netflow export-destination Use this command to configure the NetFlow collector destination. By default, no collector address is configured. Only one collector destination per Matrix system can be configured. set netflow export-destination ip-address [udp-port] Syntax Description ip-address Specifies the IP address of the NetFlow collector.
Page 950: Clear Netflow Export-Destination
Logging And Network Management Command Set Configuring NetFlow 11.2.8.5 clear netflow export-destination Use this command to clear the NetFlow collector IP address. clear netflow export-destination [ip-address [udp-port]] Syntax Description ip-address (Optional) Specifies the IP address of the NetFlow collector to clear. udp-port (Optional) Specifies the UDP port number used by NetFlow collector.
Page 951: Set Netflow Export-Interval
Logging And Network Management Command Set Configuring NetFlow 11.2.8.6 set netflow export-interval Use this command to configure the NetFlow export interval. set netflow export-interval interval Syntax Description interval Set the active flow timer value, between 1 to 60 minutes. The default value is 30 minutes. Command Defaults None.
Page 952: Clear Netflow Export-Interval
Logging And Network Management Command Set Configuring NetFlow 11.2.8.7 clear netflow export-interval Use this command to clear NetFlow export interval to its default of 30 minutes. clear netflow export-interval Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write Example This example shows how to return the NetFlow export interval to its default value...
Page 953: Set Netflow Port
Logging And Network Management Command Set Configuring NetFlow 11.2.8.8 set netflow port Use this command to enable NetFlow collection on a port. set netflow port port-string {enable | disable} Syntax Description port-string Specify the port or ports on which to enable or disable NetFlow collection.
Page 954: Clear Netflow Port
Logging And Network Management Command Set Configuring NetFlow 11.2.8.9 clear netflow port Use this command to return a port to the default NetFlow collection state of disabled. clear netflow port port-string Syntax Description port-string Specify the port or ports on which to disable NetFlow collection.
Page 955: Set Netflow Export-Version
Logging And Network Management Command Set Configuring NetFlow 11.2.8.10 set netflow export-version Use this command to set the NetFlow flow record format used to export data. Refer to Version Support on page 153 for more information about NetFlow version support. Use the show netflow config command (Section 11.2.8.1) to display the current NetFlow version.
Page 956: Clear Netflow Export-Version
Logging And Network Management Command Set Configuring NetFlow 11.2.8.11 clear netflow export-version Use this command to return the NetFlow flow record format used to export data to the default of Version 5. Use the show netflow config command (Section 11.2.8.1) to display the current NetFlow version.
Page 957: Set Netflow Template
Logging And Network Management Command Set Configuring NetFlow 11.2.8.12 set netflow template Use this command to configure the NetFlow Version 9 template refresh rate and/or timeout values. set netflow template {[refresh-rate packets] [timeout minutes]} Syntax Description refresh-rate The number of export packets sent that causes a template packets to be retransmitted by an individual DFE blade.
Page 958 300 flow report packets per second would refresh the templates 15 times per second. Enterasys recommends that you configure your Matrix system so it does not refresh templates more often than once per second. Use the show netflow config command (Section 11.2.8.1) to display the currently...
Page 959: Clear Netflow Template
Logging And Network Management Command Set Configuring NetFlow 11.2.8.13 clear netflow template Use this command to reset the Version 9 template refresh rate and/or timeout values to their default values. clear netflow template {[refresh-rate] [timeout]} Syntax Description refresh-rate Clear the template packet refresh rate to the default value of 20 packets.
Page 960 Logging And Network Management Command Set Configuring NetFlow 11-170 Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 961: Ip Configuration
IP Configuration This chapter describes the Internet Protocol (IP) configuration set of commands and how to use them. ROUTER: Unless otherwise noted, the commands covered in this chapter can be executed only when the device is in router mode. For details on how to enable router configuration modes, refer to Section 2.3.3.
Page 962: Ip Configuration Command Set
IP Configuration Command Set Configuring Routing Interface Settings 12.2 IP CONFIGURATION COMMAND SET 12.2.1 Configuring Routing Interface Settings About Loopback vs. VLAN Interfaces Loopback interfaces are different from VLAN routing interfaces because they allow you to disconnect the operation of routing protocols from network hardware operation, improving the reliability of IP connections.
Page 963 IP Configuration Command Set Configuring Routing Interface Settings Purpose To enable routing interface configuration mode on the device, to create VLAN or loopback routing interfaces, to review the usability status of interfaces configured for IP, to set IP addresses for interfaces, and to enable interfaces for IP routing at device startup.
Page 964: Show Interface
IP Configuration Command Set Configuring Routing Interface Settings 12.2.1.1 show interface Use this command to display information about one or more interfaces (VLANs or loopbacks) configured on the router. show interface [vlan vlan-id | loopback loopback-id | lo local-id] Syntax Description vlan vlan-id | (Optional) Displays interface information for a specific loopback...
Page 965 IP Configuration Command Set Configuring Routing Interface Settings Example This example shows how to display information for all interfaces configured on the router. In this case, one loopback interface has been configured for routing. For a detailed description of this output, refer to Table 12-2:...
Page 966 IP Configuration Command Set Configuring Routing Interface Settings 12.2.1.2 interface Use this command to configure interfaces for IP routing. This command enables interface configuration mode from global configuration mode, and, if the interface has not previously been created, this command creates a new routing interface. For details on configuration modes supported by the Matrix Series device and their uses, refer to Table 2-11 Section...
Page 967 IP Configuration Command Set Configuring Routing Interface Settings 12.2.1.3 ip ecm-forwarding-algorithm Use this command to enable ECM (Equal Cost Multipath) for forwarding IP packets on routing interfaces. ip ecm-forwarding-algorithm [hash-thold | round-robin] Syntax Description hash-thold | (Optional) Sets the ECM forwarding algorithm as hash round-robin threshold or round-robin.
Page 968: Show Ip Interface
IP Configuration Command Set Configuring Routing Interface Settings 12.2.1.4 show ip interface Use this command to display information, including administrative status, IP address, MTU (Maximum Transmission Unit) size and bandwidth, and ACL configurations, for interfaces configured for IP. show ip interface [vlan vlan-id | loopback loopback-id | lo loopback-id] Syntax Description vlan vlan-id | (Optional) Displays information for a specific VLAN,...
Page 969 IP Configuration Command Set Configuring Routing Interface Settings Table 12-2 provides an explanation of the command output. Table 12-2 show ip interface Output Details Output What It Displays... Vlan | Lpbk | Lo N Whether the interface is administratively and operationally up or down.
Page 970 IP Configuration Command Set Configuring Routing Interface Settings 12.2.1.5 ip address Use this command to set, remove, or disable a primary or secondary IP address for an interface. Each Matrix Series routing module or standalone device supports up to 256 routing interfaces, with up to 50 secondary addresses (200 maximum per router) allowed for each primary IP address.
Page 971 IP Configuration Command Set Configuring Routing Interface Settings 12.2.1.6 no shutdown Use this command to enable an interface for IP routing and to allow the interface to automatically be enabled at device startup. no shutdown Syntax Description None. NOTE: The shutdown form of this command disables an interface for IP routing. Command Type Router command.
Page 972: Managing Router Configuration Files
IP Configuration Command Set Managing Router Configuration Files 12.2.2 Managing Router Configuration Files Each Matrix Series device provides a single configuration interface which allows you to perform both switch and router configuration with the same command set. When a redundancy license is available and has been activated, the device also provides redundant, distributed copies of each router configuration in the event that DFE modules are added or removed from the Matrix chassis.
Page 973 IP Configuration Command Set Managing Router Configuration Files 12.2.2.1 show running-config Use this command to display the non-default, user-supplied commands entered while configuring the device. show running-config Syntax Description None. Command Type Router command. Command Mode Any router mode. Command Defaults None.
Page 974 IP Configuration Command Set Managing Router Configuration Files 12.2.2.2 write Use this command to save or delete the router running configuration, or to display it to output devices. write [erase | file [filename config-file] | terminal] NOTE: The write file command must be executed in order to save the router configuration to NVRAM.
Page 975 IP Configuration Command Set Managing Router Configuration Files Example This example shows how to display the router-specific configuration to the terminal: Matrix>Router1#write terminal Enable Config t interface vlan 1 iP Address 182.127.63.1 255.255.255.0 no shutdown interface vlan 2 iP Address 182.127.62.1 255.255.255.0 no shutdown exit router rip...
Page 976: No Ip Routing
IP Configuration Command Set Managing Router Configuration Files 12.2.2.3 no ip routing Use this command to disable IP routing on the device and remove the routing configuration. By default, IP routing is enabled when interfaces are configured for it as described in Section 12.2.1.
Page 977: Performing A Basic Router Configuration
IP Configuration Command Set Performing a Basic Router Configuration 12.2.3 Performing a Basic Router Configuration 12.2.3.1 Using Router-Only Config Files Although the Matrix Series’ single configuration interface provides one set of commands to perform both switch and router configuration, it is still possible to use router-only commands to configure the router.
Page 978: Configuring The Router
IP Configuration Command Set Performing a Basic Router Configuration 12.2.3.3 Configuring the Router You can configure the router using either of the following methods. Using a downloaded file... 1. Download a router config file to the standalone or chassis using the copy command as described Section 2.2.9.5.
Page 979: Reviewing And Configuring The Arp Table
IP Configuration Command Set Reviewing and Configuring the ARP Table 12.2.4 Reviewing and Configuring the ARP Table Purpose To review and configure the routing ARP table, to enable proxy ARP on an interface, and to set a MAC address on an interface. Commands The commands used to review and configure the ARP table are listed below and described in the associated section as shown:...
Page 980: Show Ip Arp
IP Configuration Command Set Reviewing and Configuring the ARP Table 12.2.4.1 show ip arp Use this command to display entries in the ARP (Address Resolution Protocol) table. ARP converts an IP address into a physical address. show ip arp [ip-address] [vlan vlan-id] [output-modifier] Syntax Description ip-address (Optional) Displays ARP entries related to a specific IP...
Page 981 IP Configuration Command Set Reviewing and Configuring the ARP Table Example This example shows how to use the show ip arp command: Matrix>Router1#show ip arp Protocol Address Age (min) Hardware Addr Type Interface ------------------------------------------------------------------------------ Internet 134.141.235.251 0003.4712.7a99 ARPA Vlan1 Internet 134.141.235.165 0002.1664.a5b3 ARPA...
Page 982 IP Configuration Command Set Reviewing and Configuring the ARP Table 12.2.4.2 Use this command to add or remove permanent (static) ARP table entries. Up to 1,000 static ARP entries are supported per Matrix Series routing module or standalone device. A multicast MAC address can be used in a static ARP entry.
Page 983 IP Configuration Command Set Reviewing and Configuring the ARP Table 12.2.4.3 ip gratuitous-arp override the normal ARP updating process, that occurs by default. Use this command to ip gratuitous-arp {ignore | reply | request} Syntax Description ignore Ignore all gratuitous ARP frames, no updates will occur. This option will also prevent any new learning from gratuitous arps, if the command ip gratuitous-arp-learning used.(Section...
Page 984 IP Configuration Command Set Reviewing and Configuring the ARP Table 12.2.4.4 ip gratuitous-arp-learning Use this command to allow an interface to learn new ARP bindings using gratuitous ARP. This command will be in effect if the ip gratuitous-arp ignore command (Section 12.2.4.3) is used.
Page 985 IP Configuration Command Set Reviewing and Configuring the ARP Table 12.2.4.5 ip proxy-arp Use this command to enable proxy ARP on an interface. This variation of the ARP protocol allows the routing module to send an ARP response on behalf of an end node to the requesting host. Proxy ARP can lessen bandwidth use on slow-speed WAN links.
Page 986 IP Configuration Command Set Reviewing and Configuring the ARP Table 12.2.4.6 ip mac-address Use this command to set a MAC address on an interface. ip mac-address address NOTE: By default, every routing interface uses the same MAC address. If the user needs interfaces to use different MAC addresses, this command will allow it.
Page 987: Arp Timeout
IP Configuration Command Set Reviewing and Configuring the ARP Table 12.2.4.7 arp timeout Use this command to set the duration (in seconds) for entries to stay in the ARP table before expiring. The device can support up to 2000 outstanding unresolved ARP entries. arp timeout seconds Syntax Description seconds...
Page 988 IP Configuration Command Set Reviewing and Configuring the ARP Table 12.2.4.8 clear arp-cache Use this command to delete all nonstatic (dynamic) entries from the ARP table. clear arp-cache Syntax Description None. Configuration Mode Privileged EXEC: Matrix>Router1# Command Defaults None. Example This example shows how to delete all dynamic entries from the ARP table: Matrix>Router1#clear arp-cache 12-28 Matrix DFE-Platinum and Diamond Series Configuration Guide...
Page 989: Configuring Broadcast Settings
IP Configuration Command Set Configuring Broadcast Settings 12.2.5 Configuring Broadcast Settings Purpose To configure IP broadcast settings. Commands The commands used to configure IP broadcast settings are listed below and described in the associated section as shown: • ip directed-broadcast (Section 12.2.5.1) •...
Page 990 IP Configuration Command Set Configuring Broadcast Settings 12.2.5.1 ip directed-broadcast Use this command to enable or disable IP directed broadcasts on an interface. ip directed-broadcast Syntax Description None. Command Syntax of the “no” Form The “no” form of this command disables IP directed broadcast globally: no ip directed-broadcast Command Type Router command.
Page 991 IP Configuration Command Set Configuring Broadcast Settings 12.2.5.2 ip forward-protocol Use this command to enable UDP broadcast forwarding and specify which protocols will be forwarded. This command works in conjunction with the ip helper-address command to configure UDP broadcast forwarding. For information on specifying a new destination for UDP broadcasts, refer to Section 12.2.5.3.
Page 992 IP Configuration Command Set Configuring Broadcast Settings Command Defaults If port is not specified, default forwarding services will be performed as listed above. Example This example shows how to enable forwarding of Domain Naming System UDP datagrams (port 53): Matrix>Router(config)#ip forward-protocol udp 53 About DHCP/BOOTP Relay DHCP/BOOTP relay functionality is applied with the help of IP broadcast forwarding.
Page 993 IP Configuration Command Set Configuring Broadcast Settings 12.2.5.3 ip helper-address Use this command to enable DHCP/BOOTP relay and the forwarding of local UDP broadcasts specifying a new destination address. This command works in conjunction with the ip forward-protocol command (Section 12.2.5.2), which defines the forward protocol and port number.
Page 994: Reviewing Ip Traffic And Configuring Routes
IP Configuration Command Set Reviewing IP Traffic and Configuring Routes 12.2.6 Reviewing IP Traffic and Configuring Routes Purpose To review IP protocol information about the device, to review IP traffic and configure routes, to enable and send router ICMP (ping) messages, and to execute traceroute. Commands The commands used to review IP traffic and configure routes are listed below and described in the associated section as shown:...
Page 995 IP Configuration Command Set Reviewing IP Traffic and Configuring Routes 12.2.6.1 show router limits route-table Use this command to display the chassis-based router limit setting. show router limits route-table NOTE: This command must be executed from the switch CLI. Syntax Description None.
Page 996 IP Configuration Command Set Reviewing IP Traffic and Configuring Routes 12.2.6.2 set router limits route-table Use this command to set the chassis-based route table limits. set router limits route-table route-table NOTE: This command must be executed from the switch CLI. Syntax Description route-table Sets the route table limit.
Page 997 IP Configuration Command Set Reviewing IP Traffic and Configuring Routes 12.2.6.3 clear router limits route-table Use this command to reset the chassis-based route table limits to default value of 12000. clear router limits route-table NOTE: This command must be executed from the switch CLI. Syntax Description None.
Page 998: Show Ip Protocols
IP Configuration Command Set Reviewing IP Traffic and Configuring Routes 12.2.6.4 show ip protocols Use this command to display information about IP protocols running on the device. show ip protocols NOTE: Enabling CIDR for RIP on the Matrix Series device requires using the no auto-summary command (as described in Section 13.2.2.16) to disable automatic route...
Page 999: Show Ip Traffic
IP Configuration Command Set Reviewing IP Traffic and Configuring Routes 12.2.6.5 show ip traffic Use this command to display IP traffic statistics. show ip traffic [softpath] Syntax Description softpath (Optional) Displays IP protocol softpath statistics. This option is used for debugging. Command Type Router command.
Page 1000 IP Configuration Command Set Reviewing IP Traffic and Configuring Routes Example This example shows how to display IP traffic statistics: Matrix>Router1#show ip traffic IP Statistics: Rcvd: 10 total, 6 local destination 0 header errors 0 unknown protocol, 0 security failures Frags: 0 reassembled, 0 timeouts 0 couldn't reassemble 0 fragmented, 0 couldn't fragment...
Page 1001: Clear Ip Stats
IP Configuration Command Set Reviewing IP Traffic and Configuring Routes 12.2.6.6 clear ip stats Use this command to clear all IP traffic counters (IP, ICMP, UDP, TCP, IGMP, and ARP). clear ip stats Syntax Description None. Configuration Mode Privileged EXEC: Matrix>Router1# Command Defaults None.

This manual is also suitable for:

Matrix dfe-platinum series Matrix dfe-diamond series