HP GbE2c - Blc Layer 2/3 Fiber SFP Option Command Reference Manual

Hp gbe2c ethernet blade switch for c-class bladesystem command reference guide.
Hide thumbs
HP GbE2c Ethernet Blade Switch for c-Class BladeSystem
Part number: 418118-003
Third edition: December 2006

Advertising

   Related Manuals for HP GbE2c - Blc Layer 2/3 Fiber SFP Option

   Summary of Contents for HP GbE2c - Blc Layer 2/3 Fiber SFP Option

  • Page 1: Command Reference Guide

    HP GbE2c Ethernet Blade Switch for c-Class BladeSystem Command Reference Guide Part number: 418118-003 Third edition: December 2006...

  • Page 2

    Legal notices © 2004, 2006 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. The only warranties for HP products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty. HP shall not be liable for technical or editorial errors or omissions contained herein.

  • Page 3: Table Of Contents

    Contents Command line interface Introduction ............................. 9 Additional references ..........................9 Connecting to the switch ........................... 9 Establishing a console connection ......................9 Setting an IP address ......................... 10 Establishing a Telnet connection......................10 Establishing an SSH connection ......................10 Accessing the switch ..........................

  • Page 4: Table Of Contents

    Rapid Spanning Tree and Multiple Spanning Tree information ..............39 Common Internal Spanning Tree information ..................... 41 Trunk group information.......................... 42 VLAN information ..........................43 Layer 2 general information ........................43 Layer 3 information ..........................43 Route information........................... 44 Show all IP Route information ........................45 ARP information.............................

  • Page 5: Table Of Contents

    ICMP statistics ..........................74 TCP statistics............................. 75 UDP statistics ............................ 76 IGMP Multicast Group statistics......................77 OSPF statistics menu.......................... 77 OSPF global statistics ........................78 VRRP statistics ........................... 80 RIP statistics ............................81 Management Processor statistics ......................81 Packet statistics ..........................81 TCP statistics.............................

  • Page 6: Table Of Contents

    802.1x Port configuration ........................111 Rapid Spanning Tree Protocol / Multiple Spanning Tree Protocol configuration..........112 Common Internal Spanning Tree configuration..................113 CIST bridge configuration ........................114 CIST port configuration ......................... 114 Spanning Tree configuration........................115 Bridge Spanning Tree configuration ....................116 Spanning Tree port configuration ......................

  • Page 7: Table Of Contents

    ACL IP Version 4 Filter configuration....................148 ACL TCP/UDP Filter configuration ..................... 149 ACL Meter configuration ........................150 ACL Re-mark configuration ....................... 150 ACL Re-mark In-Profile configuration ....................151 ACL Re-mark In-Profile Update User Priority configuration ..............151 ACL Re-mark Out-of-Profile configuration .................... 151 ACL Packet Format configuration.......................

  • Page 8

    Command line interface 8...

  • Page 9: Introduction, Additional References, Connecting To The Switch, Establishing A Console Connection

    Command line interface Introduction The HP GbE2c switch is ready to perform basic switching functions right out of the box. Some of the more advanced features, however, require some administrative configuration before they can be used effectively. This guide provides a command reference for the HP GbE2c Ethernet Blade Switch and the HP GbE2c Layer 2/3 Ethernet Blade Switch.

  • Page 10: Setting An Ip Address, Establishing A Telnet Connection, Establishing An Ssh Connection

    To establish a console connection with the switch: Connect the terminal to the console port using the null modem cable. Power on the terminal. Press the Enter key a few times on the terminal to establish the connection. You will be required to enter a password for access to the switch. (For more information, see the “Setting passwords”...

  • Page 11: Accessing The Switch

    The supported SSH encryption and authentication methods are listed below. Server Host Authentication—Client RSA authenticates the switch in the beginning of every connection Key Exchange—RSA Encryption: AES256-CBC AES192-CBC AES128-CBC 3DES-CBC 3DES ARCFOUR User Authentication—Local password authentication; Remote Authentication Dial-in User Service (RADIUS) The following SSH clients are supported: SSH 3.0.1 for Linux (freeware) SecureCRT®...

  • Page 12: Idle Timeout

    Table 2 User access levels User account Description and tasks performed User The user has no direct responsibility for switch management. He or she can view all switch status information and statistics, but cannot make any configuration changes to the switch.

  • Page 13: Typographical Conventions

    Typographical conventions The following table describes the typographic styles used in this guide: Table 3 Typographic conventions Typeface or symbol Meaning Example This type depicts onscreen computer output and AaBbCc123 Main# prompts. This type displays in command examples and shows AaBbCc123 Main# sys text that must be typed in exactly as shown.

  • Page 14: Main Menu, Introduction, Menu Summary

    Menu basics Introduction The AOS CLI is used for viewing switch information and statistics. In addition, the administrator can use the CLI for performing all levels of switch configuration. To make the CLI easy to use, the various commands have been logically grouped into a series of menus and submenus.

  • Page 15: Global Commands

    Global commands Some basic commands are recognized throughout the menu hierarchy. These commands are useful for obtaining online Help, navigating through menus, and for applying and saving configuration changes. For help on a specific command, type help. The following screen displays: Global Commands: [can be issued from any menu] help print...

  • Page 16: Command Line History And Editing

    Table 4 Global commands Command Action Sets the level of information displayed on the screen: verbose n 0 = Quiet: Nothing displays except errors, not even prompts. 1 = Normal: Prompts and requested output are shown, but no menus. 2 = Verbose: Everything is shown. This is the default. When used without a value, the current setting is displayed.

  • Page 17: Command Line Interface Shortcuts, Command Stacking, Command Abbreviation, Tab Completion

    Command line interface shortcuts The following shortcuts allow you to enter commands quickly and easily. Command stacking As a shortcut, you can type multiple commands on a single line, separated by forward slashes (/). You can connect as many commands as required to access the menu option that you want. For example, the keyboard shortcut to access the Simple Network Management Protocol (SNMP) Configuration Menu from the Main# prompt is: Main# cfg/sys/ssnmp/name...

  • Page 18: Configuring Simple Network Management Protocol Support, Introduction

    To begin first-time configuration of the switch, perform the following steps. Connect to the switch console. After connecting, the login prompt displays. GbE2c Ethernet Blade Switch for HP c-Class Blade System. Copyright(C)2006 Hewlett-Packard Development Company, L.P. Password: Enter admin as the default administrator password.

  • Page 19: Setting Passwords, Changing The Default Administrator Password

    >> System# apply >> System# save Setting passwords HP recommends that you change all passwords after initial configuration and as regularly as required under the network security policies. See the “Accessing the switch” section in the “Command line interface” chapter for a description of the user access levels.

  • Page 20: Changing The Default User Password

    From the Configuration Menu, use the following command to select the System Menu: >> Configuration# sys The System Menu is displayed. [System Menu] syslog - Syslog Menu sshd - SSH Server Menu radius - RADIUS Authentication Menu tacacs+ - TACACS+ Authentication Menu - NTP Server Menu ssnmp - System SNMP Menu...

  • Page 21: Changing The Default Operator Password

    System# access/user/usrpw Enter the current administrator password at the prompt. Only the administrator can change the user password. Entering the administrator password confirms your authority. Changing USER password; validation required... Enter current administrator password: Enter the new user password at the prompt: Enter new user password: Enter the new user password, again, at the prompt: Re-enter new user password:...

  • Page 22: Menu Overview, Introduction

    Information Menu Introduction You can view configuration information for the switch in the user, operator, and administrator command modes. This chapter discusses how to use the CLI to display switch information. Menu overview Command: /info [Information Menu] - System Information Menu - Layer 2 Information Menu - Layer 3 Information Menu - QoS Menu...

  • Page 23: System Information Menu, Snmpv3 Information Menu

    System Information Menu Command: /info/sys [System Menu] snmpv3 - SNMPv3 Information Menu general - Show general system information - Show last 100 syslog messages user - Show current user status dump - Dump all system information The following table describes the System Information Menu options. Table 7 System Information Menu options Command...

  • Page 24: Snmpv3 Usm User Table Information

    The following table describes the SNMPv3 Information Menu options. Table 8 SNMPv3 Information Menu options Command Usage Displays User Security Model (USM) table information. Displays information about view name, subtrees, mask and type of view. view Displays View-based Access Control information. access Displays information about the group that includes the security model, user name, and group...

  • Page 25: Snmpv3 View Table Information, Snmpv3 Access Table Information

    SNMPv3 View Table information Command: /info/sys/snmpv3/view View Name Subtree Mask Type ------------------ ---------------------------- ------------- -------- included v1v2only included v1v2only 1.3.6.1.6.3.15 excluded v1v2only 1.3.6.1.6.3.16 excluded v1v2only 1.3.6.1.6.3.18 excluded The user can control and restrict the access allowed to a group to only a subset of the management information in the management domain that the group can access within each context by specifying the group’s rights in terms of a particular MIB view for security reasons.

  • Page 26: Snmpv3 Group Table Information, Snmpv3 Community Table Information

    The following table describes the SNMPv3 Access Table information. Table 11 Access Table parameters Field Description Displays the name of group. Group Name Displays the prefix that is configured to match the values. Prefix Displays the security model used, for example, SNMPv1, or SNMPv2 or USM. Model Displays the minimum level of security required to gain rights of access.

  • Page 27: Snmpv3 Target Address Table Information, Snmpv3 Target Parameters Table Information

    The following table describes the SNMPv3 Community Table information. Table 13 Community Table parameters Field Description Displays the unique index value of a row in this table. Index Displays the community string, which represents the configuration. Name Displays the User Security Model (USM) user name. User Name Displays the community tag.

  • Page 28: Snmpv3 Notify Table Information

    The following table describes the SNMPv3 Target Parameters Table information. Table 15 Target Parameters Table Field Description Displays the locally arbitrary, but unique identifier associated with this snmpTargeParamsEntry. Name Displays the Message Processing Model used when generating SNMP messages using this MP Model entry.

  • Page 29: Snmpv3 Dump

    SNMPv3 dump Command: /info/sys/snmpv3/dump Engine ID = 80:00:07:50:03:00:0F:6A:F8:EF:00 usmUser Table: User Name Protocol -------------------------------- -------------------------------- admin NO AUTH, NO PRIVACY adminmd5 HMAC_MD5, DES PRIVACY adminsha HMAC_SHA, DES PRIVACY v1v2only NO AUTH, NO PRIVACY vacmAccess Table: Group Name Prefix Model Level Match ReadV WriteV...

  • Page 30: System Information

    System information Command: /info/sys/gen System Information at 6:56:22 Thu Jan 11, 2006 Time zone: America/US/Pacific GbE2c Ethernet Blade Switch for HP c-Class Blade System sysName: sysLocation: RackId: Default RUID RackName: Default Rack Name EnclosureSerialNumber: -none- EnclosureName: Default Chassis Name BayNumber: Switch is up 0 days, 14 hours, 56 minutes and 22 seconds.

  • Page 31: Show Last 100 Syslog Messages, System User Information

    Show last 100 syslog messages Command: /info/sys/log Date Time Severity level Message ---- ---- ----------------- ------- Jul 8 17:25:41 NOTICE system: link up on port 1 Jul 8 17:25:41 NOTICE system: link up on port 8 Jul 8 17:25:41 NOTICE system: link up on port 7 Jul 8 17:25:41 NOTICE...

  • Page 32: Layer 2 Information

    The following table describes the User Name information. Table 17 User Name Information menu Field Usage Displays the status of the access level. user user Displays the status of the (operator) access level. oper oper Displays the status of the (administrator) access level.

  • Page 33: Fdb Information Menu

    Table 18 Layer 2 Information Menu options Command Usage When trunk groups are configured, you can view the state of each port in trunk the various trunk groups. Displays VLAN configuration information, including: vlan VLAN Number VLAN Name Status Port membership of the VLAN Displays general Layer 2 configuration information.

  • Page 34: Show All Fdb Information, Link Aggregation Control Protocol Information

    Show all FDB information Command: /info/l2/fdb/dump MAC address VLAN Port Trnk State ----------------- ---- ---- ---- ----- 00:02:01:00:00:00 00:02:01:00:00:01 00:02:01:00:00:02 00:02:01:00:00:03 00:02:01:00:00:04 00:02:01:00:00:05 00:02:01:00:00:06 00:02:01:00:00:07 00:02:01:00:00:08 00:02:01:00:00:09 00:02:01:00:00:0a 00:02:01:00:00:0b 00:02:01:00:00:0c An address that is in the forwarding (FWD) state indicates that the switch has learned it. When in the trunking (TRK) state, the Trnk field displays the trunk group number.

  • Page 35: Lacp Dump

    LACP dump Command: /info/l2/lacp/dump >> LACP# dump port lacp adminkey operkey selected prio attached trunk aggr ---------------------------------------------------------------------- 32768 32768 32768 32768 32768 32768 32768 32768 … LACP dump includes the following information for each port in the GbE2c: lacp—Displays the port’s LACP mode (active, passive, or off) adminkey—Displays the value of the port’s adminkey.

  • Page 36: X Information

    802.1x information Command: /info/l2/8021x System capability : Authenticator System status : disabled Protocol version Authenticator Backend Port Auth Mode Auth Status PAE State Auth State ---- ------------ ------------ -------------- ---------- force-auth unauthorized initialize initialize force-auth unauthorized initialize initialize force-auth unauthorized initialize initialize force-auth...

  • Page 37: Spanning Tree Information

    The following table describes the IEEE 802.1x parameters. Table 21 802.1x information Field Description Displays each port’s name. Port Displays the Access Control authorization mode for the port. Auth Mode The Authorization mode can be one of the following: force-unauth auto force-auth Displays the current authorization status of the port, either...

  • Page 38

    The switch software uses the IEEE 802.1d Spanning Tree Protocol (STP). If RSTP/MSTP is turned on, see the “Rapid Spanning Tree information” section for Spanning Tree Group information. In addition to seeing if STP is enabled or disabled, you can view the following STP bridge information: Status of Uplink Fast (upfast) Current root MAC address Path-Cost...

  • Page 39: Rapid Spanning Tree And Multiple Spanning Tree Information

    Table 22 STP parameters Parameter Description The port ID of the port on the Designated Bridge to which this port is connected. This Designated port information includes the port priority (hex) and the port number (hex). Rapid Spanning Tree and Multiple Spanning Tree information Command: /info/l2/stp ------------------------------------------------------------------ upfast disabled, update 40...

  • Page 40

    The following table describes the STP parameters in RSTP or MSTP mode. Table 23 Rapid Spanning Tree parameter descriptions Parameter Description Shows information about the root bridge for the Spanning Tree. Information includes the Current Root priority (hex) and MAC address of the root. Path-cost is the total path cost to the root bridge.

  • Page 41: Common Internal Spanning Tree Information

    Common Internal Spanning Tree information Command: /info/l2/cist Mstp Digest: 0xac36177f50283cd4b83821d8ab26de62 Common Internal Spanning Tree: VLANs: 1 3-4094 Current Root: Path-Cost Port MaxAge FwdDel 8000 00:03:42:fa:3b:80 CIST Regional Root: Path-Cost 8000 00:03:42:fa:3b:80 Parameters: Priority MaxAge FwdDel Hops 32768 Port Prio Cost State Role Designated Bridge Des Port Hello Type ---- ---- ---- ------ ---- --------------------- -------- ----- ----...

  • Page 42: Trunk Group Information

    Table 24 Common Internal Spanning Tree parameter descriptions Parameter Description The maximum age parameter specifies, in seconds, the maximum time the bridge MaxAge waits without receiving a configuration bridge protocol data unit before it reconfigures the STP network. The forward delay parameter specifies, in seconds, the amount of time that a bridge FwdDel port has to wait before it changes from learning state to forwarding state.

  • Page 43: Vlan Information, Layer 2 General Information, Layer 3 Information

    VLAN information Command: /info/l2/vlan VLAN Name Status Ports ---- -------------------------------- ------ ---------------- Default VLAN pc03p pc07f pc04u 8600-14 8600-15 8600-16 8600-17 35k-1 35k-2 35k-3 35k-4 pc07z redlan ixiaTraffic 1 12 13 23 4000 bpsports 3-6 8-10 4095 Mgmt VLAN empty This information display includes all configured VLANs and all member ports that have an active link state.

  • Page 44: Route Information

    The following table describes the Layer 3 Information Menu options. Table 26 Layer 3 information menu options Command Usage Displays the IP Routing Menu. Using the options of this menu, the system displays the following for route each configured or learned route: Route destination IP address, subnet mask, and gateway address Type of route Tag indicating origin of route...

  • Page 45: Show All Ip Route Information

    Show all IP Route information Command: /info/l3/route/dump Status code: * - best Destination Mask Gateway Type Metr If --------------- --------------- --------------- --------- --------- ---- -- * 11.0.0.0 255.0.0.0 11.0.0.1 direct fixed * 11.0.0.1 255.255.255.255 11.0.0.1 local addr * 11.255.255.255 255.255.255.255 11.255.255.255 broadcast broadcast * 12.0.0.0 255.0.0.0...

  • Page 46: Arp Information, Show All Arp Entry Information, Arp Address List Information

    ARP information Command: /info/arp [Address Resolution Protocol Menu] find - Show a single ARP entry by IP address port - Show ARP entries on a single port vlan - Show ARP entries on a single VLAN dump - Show all ARP entries addr - Show ARP address list The Address Resolution Protocol (ARP) information includes IP address and MAC address of each entry, address status...

  • Page 47: Ospf Information

    OSPF information Command: /info/l3/ospf [OSPF Information Menu] general - Show general information aindex - Show area(s) information - Show interface(s) information virtual - Show details of virtual links - Show neighbor(s) information dbase - Database Menu sumaddr - Show summary address list nsumadd - Show NSSA summary address list routes...

  • Page 48: Ospf General Information, Ospf Interface Information, Ospf Database Information Menu

    OSPF general information NOTE: OSPF commands are available only on the GbE2c Layer 2/3 Ethernet Blade Switch. Command: /info/l3/ospf/general OSPF Version 2 Router ID: 10.10.10.1 Started at 1663 and the process uptime is 4626 Area Border Router: yes, AS Boundary Router: no LS types supported are 6 External LSA count 0 External LSA checksum sum 0x0...

  • Page 49

    Command Usage Takes advertising router as a parameter. Displays all the Link advrtr <router-id (A.B.C.D)> State Advertisements (LSAs) in the LS database that have the advertising router with the specified router ID, for example: 20.1.1.1. Displays ASBR summary LSAs. The usage of this command is asbrsum <adv-rtr (A.B.C.D)>| as follows: <link_state_id (A.B.C.D>|<self>...

  • Page 50: Ospf Route Codes Information, Routing Information Protocol Information, Rip Routes Information

    OSPF route codes information NOTE: OSPF commands are available only on the GbE2c Layer 2/3 Ethernet Blade Switch. Command: /info/l3/ospf/routes Codes: IA - OSPF inter area, N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2 E1 - OSPF external type 1, E2 - OSPF external type 2 IA 10.10.0.0/16 via 200.1.1.2 IA 40.1.1.0/28 via 20.1.1.2...

  • Page 51: Rip User Configuration, Ip Information, Igmp Multicast Group Information

    RIP user configuration NOTE: RIP commands are available only on the GbE2c Layer 2/3 Ethernet Blade Switch. Command: /info/l3/rip/dump <1-255> RIP USER CONFIGURATION : RIP on updat 30 RIP Interface 2 : 102.1.1.1, enabled version 2, listen enabled, supply enabled, default none poison disabled, trigg enabled, mcast enabled, metric 1 auth none,key none RIP Interface 3 : 103.1.1.1, enabled...

  • Page 52: Igmp Multicast Router Port Information, Vrrp Information

    Command Usage Displays the Multicast Router Menu. mrouter Displays a single IGMP multicast group by its IP address. find <IP address> Displays all IGMP multicast groups on a single VLAN. vlan <1-4095> Displays all IGMP multicast groups on a single port. port <port number>...

  • Page 53: Qos Information, P Information

    init identifies that the virtual router is waiting for a startup event. Once it receives a startup event, it transitions to master if its priority is 255, (the IP address owner), or transitions to backup if it is not the IP address owner.

  • Page 54: Acl Information, Rmon Information Menu

    Table 39 802.1p Port Priority information Field Description Displays the port number. Port Displays the 802.1p Priority level. Priority Displays the Class of Service queue. Cosq Displays the scheduling weight. Weight ACL information Command: /info/acl Current ACL information: ------------------------ Filter 1 profile: Ethernet - VID : 1/0xfff...

  • Page 55: Rmon History Information

    RMON history information Command: /info/rmon/hist RMON History group configuration: Index IFOID Interval Rbnum Gbnum ----- ------------------------------ -------- ----- ----- 1.3.6.1.2.1.2.2.1.1.24 1.3.6.1.2.1.2.2.1.1.24 1.3.6.1.2.1.2.2.1.1.18 1.3.6.1.2.1.2.2.1.1.19 1.3.6.1.2.1.2.2.1.1.24 1800 The following table describes the RMON History Information parameters. Table 41 RMON History Information Menu /info/rmon/hist Command Usage Displays the index number that identifies each history instance.

  • Page 56: Rmon Alarm Information, Rmon Event Information

    RMON alarm information Command: /info/rmon/alarm RMON Alarm group configuration: Index Interval Type rLimit fLimit rEvtIdx fEvtIdx last value ----- -------- ---- -------- -------- ------- ------- ---------- 1800 1800 1800 56344540 1800 1800 1800 1800 1800 Index ----- ------------------------------ 1.3.6.1.2.1.2.2.1.10.257 1.3.6.1.2.1.2.2.1.11.258 1.3.6.1.2.1.2.2.1.12.259 1.3.6.1.2.1.2.2.1.13.260 1.3.6.1.2.1.2.2.1.14.261...

  • Page 57: Link Status Information

    RMON Event group configuration: Index Type Last Sent Description ----- ---- ---------------- --------------------------------- both 0D: 0H: 1M:20S Event_1 none 0D: 0H: 0M: 0S Event_2 0D: 0H: 0M: 0S Event_3 trap 0D: 0H: 0M: 0S Event_4 both 0D: 0H: 0M: 0S Log and trap event for Link Down both 0D: 0H: 0M: 0S...

  • Page 58: Port Information

    Use this command to display link status information about each port on a switch, including: Port number Port speed (10 Mb/s, 100 Mb/s, 1000 Mb/s, or any) Duplex mode (half, full, or any) Flow control for transmit and receive (no, yes, or any) Link status (up or down) Port information Command: /info/port...

  • Page 59: Logical Port To Gea Port Mapping, Uplink Failure Detection Information

    Logical Port to GEA Port mapping Command: /info/geaport Logical Port GEA Port(0-based) GEA Unit ------------ ----------------- --------- This display correlates the logical port number to the GEA unit on which each port resides. Uplink Failure Detection information Command: /info/ufd Uplink Failure Detection: Enabled LtM status: Down Member STG State...

  • Page 60: Information Dump

    Information dump Command: /info/dump Use the dump command to dump all switch information available from the Information Menu (10K or more, depending on your configuration). This data is useful for tuning and debugging switch performance. If you want to capture dump data to a file, set the communication software on your workstation to capture session data prior to issuing the dump commands.

  • Page 61: Menu Information, Introduction

    Statistics Menu Introduction You can view switch performance statistics in the user, operator, and administrator command modes. This chapter discusses how to use the CLI to display switch statistics. Menu information Command: /stats [Statistics Menu] port - Port Stats Menu - Layer 2 Stats Menu - Layer 3 Stats Menu - MP-specific Stats Menu...

  • Page 62: Port Statistics Menu

    Port Statistics Menu Command: /stats/port <port number> [Port Statistics Menu] 8021x - Show 802.1x stats - Show bridging ("dot1") stats ether - Show Ethernet ("dot3") stats - Show interface ("if") stats - Show Internet Protocol ("IP") stats link - Show link stats rmon - Show RMON stats clear...

  • Page 63: X Statistics

    802.1x statistics Command: /stats/port <port number>/8021x Authenticator Statistics: eapolFramesRx eapolFramesTx eapolStartFramesRx eapolLogoffFramesRx eapolRespIdFramesRx eapolRespFramesRx eapolReqIdFramesTx eapolReqFramesTx invalidEapolFramesRx eapLengthErrorFramesRx = 0 lastEapolFrameVersion lastEapolFrameSource = 00:00:00:00:00:00 Authenticator Diagnostics: authEntersConnecting authEapLogoffsWhileConnecting authEntersAuthenticating authSuccessesWhileAuthenticating authTimeoutsWhileAuthenticating authFailWhileAuthenticating authReauthsWhileAuthenticating authEapStartsWhileAuthenticating authEapLogoffWhileAuthenticating authReauthsWhileAuthenticated authEapStartsWhileAuthenticated authEapLogoffWhileAuthenticated backendResponses backendAccessChallenges backendOtherRequestsToSupplicant backendNonNakResponsesFromSupplicant = 0 backendAuthSuccesses...

  • Page 64: Bridging Statistics

    Table 46 802.1x statistics for port Statistics Description Total number of times that the state machine transitions from authEapStartsWhileAuthenticating AUTHENTICATING to ABORTING, as a result of an EAPOL-Start message being received from the Supplicant. Total number of times that the state machine transitions from authEapLogoffWhileAuthenticating AUTHENTICATING to ABORTING, as a result of an EAPOL-Logoff message being received from the Supplicant.

  • Page 65: Ethernet Statistics

    The following table describes the bridging statistics for a selected port: Table 47 Bridging statistics for port Statistics Description The number of frames that have been received by this port from its segment. dot1PortInFrames A frame received on the interface corresponding to this port is counted by this object, if and only if, it is for a protocol being processed by the local bridging function, including bridge management frames.

  • Page 66

    Table 48 Ethernet statistics for port Statistics Description A count of frames received on a particular interface that are an dot3StatsFCSErrors integral number of octets in length but do not pass the Frame Check Sequence (FCS) check. The count represented by an instance of this object is incremented when the frameCheckError status is returned by the MAC service to the LLC (or other MAC user).

  • Page 67: Interface Statistics

    Table 48 Ethernet statistics for port Statistics Description A count of frames for which reception on a particular interface dot3StatsInternalMacReceiveErrors fails due to an internal MAC sublayer receive error. A frame is only counted by an instance of this object if it is not counted by the corresponding instance of the dot3StatsFrameTooLongs object, the dot3StatsAlignmentErrors object, or the dot3StatsFCSErrors object.

  • Page 68: Internet Protocol (ip) Statistics, Link Statistics

    Table 49 Interface statistics for port Statistics Description The total number of packets that higher-level protocols requested to be transmitted, and MulticastPkts—IfHCOut which were addressed to a multicast address at this sublayer, including those that were discarded or not sent. For a MAC layer protocol, this includes both group and functional addresses.

  • Page 69: Port Rmon Statistics

    Port RMON statistics Command: /stats/port <port number>/rmon RMON statistics for port 2: etherStatsDropEvents: etherStatsOctets: etherStatsPkts: etherStatsBroadcastPkts: etherStatsMulticastPkts: etherStatsCRCAlignErrors: etherStatsUndersizePkts: etherStatsOversizePkts: etherStatsFragments: etherStatsJabbers: etherStatsCollisions: etherStatsPkts64Octets: etherStatsPkts65to127Octets: etherStatsPkts128to255Octets: etherStatsPkts256to511Octets: etherStatsPkts64Octets: etherStatsPkts1024to1518Octets: The following table describes the Remote Monitoring (RMON) statistics of the selected port: Table 52 RMON statistics Statistic...

  • Page 70: Layer 2 Statistics, Fdb Statistics

    Table 52 RMON statistics Statistic Description The total number of packets (including bad packets) received that were less etherStatsPkts64 than or equal to 64 octets in length (excluding framing bits but including Octets FCS octets). The total number of packets (including bad packets) received that were etherStatsPkts65to127 greater than 64 octets in length (excluding framing bits but including FCS Octets...

  • Page 71: Lacp Statistics, Layer 3 Statistics

    LACP statistics Command: /stats/l2/lacp <port number> Valid LACPDUs received Valid Marker PDUs received Valid Marker Rsp PDUs received - 0 Unknown version/TLV type Illegal subtype received LACPDUs transmitted Marker PDUs transmitted Marker Rsp PDUs transmitted Layer 3 statistics Command: /stats/l3 [Layer 3 Statistics Menu] geal3 - GEA Layer 3 Stats Menu...

  • Page 72: Gea Layer 3 Statistics Menu, Gea Layer 3 Statistics, Ip Statistics

    Table 55 Layer 3 Statistics Menu options Command Usage Clears IP statistics. Use this command with caution as it will delete ipclear all the IP statistics. Displays all Layer 3 statistics. dump * indicates menus that are available only on the GbE2c Layer 2/3 Ethernet Blade Switch. GEA Layer 3 statistics menu Command: /stats/l3/geal3 [GEA Layer 3 Statistics Menu]...

  • Page 73: Route Statistics, Arp Statistics

    Table 57 IP statistics Statistics Description The number of input datagrams discarded because the IP address in their IP header ipInAddrErrors destination field was not a valid address to be received at this switch. This count includes invalid addresses (for example, 0.0.0.0) and addresses of unsupported classes (for example, Class E).

  • Page 74: Dns Statistics, Icmp Statistics

    The following table describes the Address Resolution Protocol (ARP) statistics: Table 59 ARP statistics Statistic Description The total number of outstanding ARP entries in the ARP table. arpEntriesCur The highest number of ARP entries ever recorded in the ARP table. arpEntriesHighWater DNS statistics Command: /stats/l3/dns...

  • Page 75: Tcp Statistics

    Table 61 ICMP statistics Statistics Description The number of ICMP Timestamp (request) messages received. icmpInTimestamps The number of ICMP Timestamp Reply messages received. icmpInTimestampReps The number of ICMP Address Mask Request messages received. icmpInAddrMasks The number of ICMP Address Mask Reply messages received. icmpInAddrMaskReps The total number of ICMP messages which this switch attempted to send.

  • Page 76: Udp Statistics

    Table 62 TCP statistics Statistics Description The maximum value permitted by a TCP implementation for the retransmission timeout, tcpRtoMax measured in milliseconds. More refined semantics for objects of this type depend upon the algorithm used to determine the retransmission timeout. In particular, when the timeout algorithm is rsre(3), an object of this type has the semantics of the UBOUND quantity described in RFC 793.

  • Page 77: Igmp Multicast Group Statistics, Ospf Statistics Menu

    IGMP Multicast Group statistics Command: /stats/l3/igmp Enter VLAN number: (1-4095) 1 ------------------------------------------------------------ IGMP Snoop vlan 1 statistics: ------------------------------------------------------------ rxIgmpValidPkts: rxIgmpInvalidPkts: rxIgmpGenQueries: rxIgmpGrpSpecificQueries: rxIgmpLeaves: rxIgmpReports: txIgmpReports: txIgmpGrpSpecificQueries: txIgmpLeaves: This menu option enables you to display statistics regarding the use of the IGMP Multicast Groups. The following table describes the IGMP statistics: Table 64 IGMP statistics...

  • Page 78: Ospf Global Statistics

    OSPF global statistics NOTE: OSPF commands are available only on the GbE2c Layer 2/3 Ethernet Blade Switch. Command: /stats/l3/ospf/general OSPF stats ---------- Rx/Tx Stats: -------- -------- Pkts hello database ls requests ls acks ls updates Nbr change stats: Intf change Stats: hello start down 2...

  • Page 79

    Table 66 OSPF global statistics Statistic Description The sum total of all Link State Update packets transmitted on all OSPF areas and Tx ls Updates interfaces. Nbr change stats: The sum total of all Hello packets received from neighbors on all OSPF areas and hello interfaces.

  • Page 80: Vrrp Statistics

    Table 66 OSPF global statistics Statistic Description Timers Kickoff: The sum total number of times the Hello timer has been fired (which triggers the hello of a Hello packet) across all OPSF areas and interfaces. send The sum total number of times the Retransmit timer has been fired across all OPSF retransmit areas and interfaces.

  • Page 81: Rip Statistics, Management Processor Statistics, Packet Statistics

    Table 67 VRRP statistics Field Description The total number of VRRP advertisements that had a bad interval. vrrpBadInterval RIP statistics NOTE: RIP commands are available only on the GbE2c Layer 2/3 Ethernet Blade Switch. Command: /stats/l3/rip RIP ALL STATS INFORMATION: RIP packets received = 12 RIP packets sent = 75 RIP request received = 0...

  • Page 82

    The following table describes the packet statistics. Table 69 MP specific packet statistics Description Example statistic allocs Total number of packet allocations from the packet buffer pool by the TCP/IP protocol stack. frees Total number of times the packet buffers are freed (released) to the packet buffer pool by the TCP/IP protocol stack.

  • Page 83: Cpu Statistics, Udp Statistics, Access Control List (acl) Statistics Menu, Acl Statistics

    UDP statistics Command: /stats/mp/ucb All UDP allocated control blocks: 161: listen The following table describes the User Datagram Protocol (UDP) control block (UCB) statistics shown in this example: Table 71 UDP statistics Description Example Statistic Control block State listen CPU statistics Command: /stats/mp/cpu CPU utilization: cpuUtil1Second:...

  • Page 84: Snmp Statistics

    SNMP statistics Command: /stats/snmp SNMP statistics: snmpInPkts: snmpInBadVersions: snmpInBadC'tyNames: snmpInBadC'tyUses: snmpInASNParseErrs: snmpEnableAuthTraps: snmpOutPkts: snmpInBadTypes: snmpInTooBigs: snmpInNoSuchNames: snmpInBadValues: snmpInReadOnlys: snmpInGenErrs: snmpInTotalReqVars: snmpInTotalSetVars: snmpInGetRequests: snmpInGetNexts: snmpInSetRequests: snmpInGetResponses: snmpInTraps: snmpOutTooBigs: snmpOutNoSuchNames: snmpOutBadValues: snmpOutReadOnlys: snmpOutGenErrs: snmpOutGetRequests: snmpOutGetNexts: snmpOutSetRequests: snmpOutGetResponses: snmpOutTraps: snmpSilentDrops: snmpProxyDrops: The following table describes the Simple Network Management Protocol (SNMP) statistics: Table 74 SNMP statistics Statistics...

  • Page 85

    Table 74 SNMP statistics Statistics Description The total number of valid SNMP Protocol Data Units (PDUs), which were delivered snmpInReadOnlys to the SNMP protocol entity and for which the value of the error-status field is read- only. It should be noted that it is a protocol error to generate an SNMP PDU, which contains the value read-only in the error-status field.

  • Page 86: Ntp Statistics

    Table 74 SNMP statistics Statistics Description The total number of GetRequest-PDUs, GetNextRequest-PDUs,GetBulkRequest-PDUs, snmpProxyDrops SetRequest-PDUs, and InformRequest-PDUs delivered to the SNMP entity which were silently dropped because the transmission of the message to a proxy target failed in a manner (other than a time-out) such that no Response-PDU could be returned. NTP statistics Command: /stats/ntp NTP statistics:...

  • Page 87: Uplink Failure Detection Statistics, Statistics Dump

    Uplink Failure Detection statistics This menu option allows you to display Uplink Failure Detection (UFD) statistics. To reset UFD statistics, follow the command /cfg/ufd with the following argument: clear. Command: /stats/ufd Uplink Failure Detection statistics: Number of times LtM link failure: 1 Number of times LtM link in Blocking State: 0 Number of times LtD got auto disabled: 1 The following table describes the Uplink Failure Detection (UFD) statistics:...

  • Page 88: Configuration Menu Introduction, Menu Information

    Configuration Menu Introduction The Configuration Menu is only available from an administrator login. It includes submenus for configuring every aspect of the switch. Changes to configuration are not active until explicitly applied. Changes can be saved to non- volatile memory (NVRAM). Menu information Command: /cfg [Configuration Menu]...

  • Page 89: Viewing, Applying, Reverting, And Saving Changes, Viewing Pending Changes, Applying Pending Changes, Reverting Changes

    Viewing, applying, reverting, and saving changes As you use the configuration menus to set switch parameters, the changes you make do not take effect immediately. All changes are considered pending until you explicitly apply them. Also, any changes are lost the next time the switch boots unless the changes are explicitly saved.

  • Page 90: Reminders, System Configuration

    You can view all pending configuration changes that have been applied but not saved to flash memory using the diff flash command. It is a global command that can be executed from any prompt. For instructions on selecting the configuration to run at the next system reset, see the “Selecting a configuration block” section in the “Boot Options Menu”...

  • Page 91: System Host Log Configuration

    Table 78 System Configuration Menu options Command Usage Prompts the user for the system date. date Configures the system time using a 24-hour clock format. time Configures the time zone where the switch resides. You are prompted timezone to select your location (continent, country, region) by the timezone wizard.

  • Page 92: Secure Shell Server Configuration

    Table 79 Syslog Configuration Menu options Command Description Sets the severity level of the second syslog host displayed. The sever2 <1-7> default is 7, which means log all the severity levels. This option sets the facility level of the first syslog host facil <1-7>...

  • Page 93: Radius Server Configuration

    The following table describes the SSHD Configuration Menu options. Table 80 SSHD Configuration Menu options Command Description Defines interval for auto-generating the RSA server key. The switch will intrval <0-24> auto-generate the RSA server key at the interval defined in this command. The value of zero (0) means the RSA server key auto-generation is disabled.

  • Page 94: Tacacs+ Server Configuration

    The following table describes the RADIUS Server Configuration Menu options. Table 81 RADIUS Server Configuration Menu options Command Description Sets the primary RADIUS server address. prisrv <IP address> Sets the secondary RADIUS server address. secsrv <IP address> This is the shared secret between the switch and the RADIUS server(s). secret <1-32 characters>...

  • Page 95

    TACACS+ (Terminal Access Controller Access Control System) is an authentication protocol that allows a remote access server to forward a user's logon password to an authentication server to determine whether access can be allowed to a given system. TACACS+ and Remote Authentication Dial-In User Service (RADIUS) protocols are more secure than the TACACS encryption protocol.

  • Page 96: Ntp Server Configuration, System Snmp Configuration

    NTP server configuration Command: /cfg/sys/ntp [NTP Server Menu] prisrv - Set primary NTP server address secsrv - Set secondary NTP server address intrval - Set NTP server resync interval tzone - Set NTP timezone offset from GMT dlight - Enable/Disable daylight savings time - Turn NTP service ON - Turn NTP service OFF - Display current NTP configuration...

  • Page 97: Snmpv3 Configuration

    SNMP parameters that can be modified include: System name System location System contact Use of the SNMP system authentication trap function Read community string Write community string The following table describes the System SNMP Configuration Menu options. Table 84 System SNMP Configuration Menu options Command Description Displays SNMPv3 menu.

  • Page 98: User Security Model Configuration

    SNMP version 3 (SNMPv3) is an extensible SNMP Framework that supplements the SNMPv2 Framework by supporting the following: a new SNMP message format security for messages access control remote configuration of SNMP parameters For more details on the SNMPv3 architecture please see RFC2271 to RFC2275. The following table describes the SNMPv3 Configuration Menu options.

  • Page 99: Snmpv3 View Configuration

    Table 86 User Security Model Configuration Menu options Command Description Configures a string up to 32 characters long that represents the name of the user. This is the name <1-32 login name that you need in order to access the switch. characters>...

  • Page 100: View-based Access Control Model Configuration, Snmpv3 Group Configuration

    View-based Access Control Model configuration Command: /cfg/sys/ssnmp/snmpv3/access [SNMPv3 vacmAccess 1 Menu] name - Set group name model - Set security model level - Set minimum level of security rview - Set read view index wview - Set write view index nview - Set notify view index - Delete vacmAccess entry...

  • Page 101: Snmpv3 Community Table Configuration

    The following table describes the SNMPv3 Group Configuration Menu options. Table 89 SNMPv3 Group Configuration Menu options Command Description Defines the security model. model usm|snmpv1|snmpv2 Sets the user name as defined in The user uname <1-32 /cfg/sys/ssnmp/snmpv3/usm/name. name can have a maximum of 32 characters. characters>...

  • Page 102: Snmpv3 Target Address Table Configuration, Snmpv3 Target Parameters Table Configuration

    SNMPv3 Target Address Table configuration Command: /cfg/sys/ssnmp/snmpv3/taddr [SNMPv3 snmpTargetAddrTable 1 Menu] name - Set target address name addr - Set target transport address IP port - Set target transport address port taglist - Set tag list pname - Set targetParams name - Delete targetAddrTable entry - Display current targetAddrTable configuration This menu allows you to set passwords and display current user statistics.

  • Page 103: Snmpv3 Notify Table Configuration

    The following table describes the SNMPv3 Target Parameters Table Configuration Menu options. Table 92 SNMPv3 Target Parameters Table Configuration Menu options Command Description Configures the locally arbitrary, but unique identifier that is associated with this entry. name <1-32 characters> Configures the message processing model that is used to generate SNMP messages. mpmodel snmpv1|snmpv2c|snmp Selects the security model to be used when generating the SNMP messages.

  • Page 104: System Access Configuration, Management Networks Configuration

    System Access configuration Command: /cfg/sys/access [System Access Menu] mgmt - Management Network Definition Menu user - User Access Control Menu (passwords) http - Enable/disable HTTP (Web) access https - HTTPS Web Access Menu wport - Set HTTP (Web) server port number snmp - Set SNMP access control tnport...

  • Page 105: User Access Control Configuration, User Id Configuration

    User Access Control configuration Command: /cfg/sys/access/user [User Access Control Menu] - User ID Menu eject - Eject user usrpw - Set user password (user) - Set operator password (oper) admpw - Set administrator password (admin) - Display current user status The following table describes the User Access Control menu options.

  • Page 106: Https Access Configuration, Port Configuration

    State or Province Name (full name) [ ]: Ontario Locality Name (for example, city) [ ]: Ottawa Organization Name (for example, company) [ ]: Hewlett-Packard Organizational Unit Name (for example, section) [ ]: ProLiant Common Name (for example, user’s name) [ ]: Mr Smith Email (for example, email address) [ ]: info@hp.com...

  • Page 107

    Table 99 Port Configuration Menu options Command Description Displays the Gigabit Ethernet Physical Link Menu. Displays the Access Control List (ACL)/Quality of Service (QoS) aclqos configuration menu. Configures the port’s 802.1p priority level. 8021ppri Sets the default VLAN number which will be used to forward frames pvid <1-4095>...

  • Page 108: Temporarily Disabling A Port, Port Link Configuration

    Temporarily disabling a port To temporarily disable a port without changing its stored configuration attributes, enter the following command at any prompt: Main# /oper/port <port number>/dis Because this configuration sets a temporary state for the port, you do not need to use apply or save. The port state will revert to its original configuration when the switch is reset.

  • Page 109: Port Acl/qos Configuration, Layer 2 Configuration, X Configuration

    Port ACL/QoS configuration Command: /cfg/port <port number>/aclqos [Port 20 ACL Menu] - Add ACL or ACL group to this port - Remove ACL or ACL group from this port - Display current ACLs for this port The following table describes the port ACL/QoS Configuration Menu options. Table 101 Port ACL/QoS Configuration Menu options Command...

  • Page 110: X Global Configuration

    [802.1x Configuration Menu] global - Global 802.1x configuration menu port - Port 802.1x configuration menu - Enable 802.1x access control - Disable 802.1x access control - Show 802.1x configuration This feature allows you to configure the GbE2c as an IEEE 802.1x Authenticator, to provide port-based network access control.

  • Page 111: X Port Configuration

    Table 104 802.1x Global Configuration Menu options Command Description Sets the maximum number of times the authenticator retransmits an EAP-Request maxreq <1-10> packet to the supplicant (client). The default value is 2. Sets the time, in seconds, the authenticator waits before re-authenticating a raperiod <1-604800>...

  • Page 112: Rapid Spanning Tree Protocol / Multiple Spanning Tree Protocol Configuration

    Table 105 802.1x Global Configuration Menu options Command Description Sets the time, in seconds, the authenticator waits before re-authenticating a raperiod <1-604800> supplicant (client) when periodic re-authentication is enabled. The default value is 3600 seconds. Sets the re-authentication status to .

  • Page 113: Common Internal Spanning Tree Configuration

    NOTE: IEEE 802.1w standard-based RSTP implementation runs on one STG (i.e. same as one spanning tree instance) only. As a result, if ‘rstp’ mode is selected under the /cfg/mrst/mode command, then only a single RSTP instance (default for STG 1) is supported for all VLANs, including the Default VLAN 1. If multiple spanning tree instances are required, then select ‘mstp’...

  • Page 114: Cist Bridge Configuration, Cist Port Configuration

    CIST bridge configuration Command: /cfg/l2/mrst/cist/brg [CIST Bridge Menu] prior - Set CIST bridge Priority (0-65535) mxage - Set CIST bridge Max Age (6-40 secs) - Set CIST bridge Forward Delay (4-30 secs) - Display current CIST bridge parameters CIST bridge parameters are used only when the switch is in MSTP mode. CIST parameters do not affect operation of STP/PVST.

  • Page 115: Spanning Tree Configuration

    Current port configuration The port option of MRST is turned on by default. The following table describes the commands used to configure CIST Port Configuration Menu options. Table 109 CIST Port Configuration Menu options Command Description Configures the CIST port priority. The port priority helps determine which bridge port prior <0-240>...

  • Page 116: Bridge Spanning Tree Configuration

    The following table describes the Spanning Tree Configuration Menu options. Table 110 Spanning Tree Configuration Menu options Command Description Displays the Bridge Spanning Tree Menu. Displays the Spanning Tree Port Menu. port <port number> Associates a VLAN with a spanning tree and requires an external VLAN ID as a add <1-4095>...

  • Page 117: Spanning Tree Port Configuration

    Table 111 Bridge Spanning Tree Configuration Menu options Command Description Configures the bridge maximum age. The maximum age parameter specifies the maximum time mxage <6-40> the bridge waits without receiving a configuration bridge protocol data unit before it reconfigures the STP network. The range is 6 to 40 seconds, and the default is 20 seconds. This command does not apply to MSTP.

  • Page 118: Forwarding Database Configuration, Static Fdb Configuration

    Table 112 Spanning Tree Port Configuration Menu options Command Description Defines the type of link connected to the port, as follows: link auto|p2p|shared auto: Configures the port to detect the link type, and automatically match its settings. p2p: Configures the port for Point-To-Point protocol. shared: Configures the port to connect to a shared medium (usually a hub).

  • Page 119: Trunk Configuration

    The following table describes the Static FDB Configuration Menu options. Table 114 Static FDB Configuration Menu options Command Description Adds a static entry to the forwarding database. add <MAC address> <VLAN> <port> Deletes a static entry from the forwarding database. del <MAC address>...

  • Page 120: Ip Trunk Hash Configuration, Layer 2 Ip Trunk Hash Configuration, Link Aggregation Control Protocol Configuration

    IP Trunk Hash configuration Command: /cfg/l2/thash [IP Trunk Hash Menu] - IP Trunk Hash Settings Menu - Display current IP trunk hash configuration The following table describes the IP Trunk Hash Configuration Menu options. Table 116 IP Trunk Hash Configuration Menu options Command Description Displays the Trunk Hash Settings menu.

  • Page 121: Lacp Port Configuration, Vlan Configuration

    The following table describes the LACP Configuration Menu options. Table 118 LACP Configuration Menu options Command Description Defines the priority value (1 through 65535) for the switch. Lower sysprio <1-65535> numbers provide higher priority. The default value is 32768. Defines the timeout period before invalidating LACP data from a remote timeout short|long partner.

  • Page 122: Layer 3 Configuration

    The commands in this menu configure VLAN attributes, change the status of the VLAN, delete the VLAN, and change the port membership of the VLAN. By default, the VLAN menu option is disabled except VLAN 1, which is always enabled. The GbE2c supports a maximum of 1,000 VLANs.

  • Page 123: Ip Interface Configuration

    Table 121 L3 Configuration Menu options Command Description Displays the IP Forwarding Menu. *frwd Displays the Network Filter Configuration Menu. *nwf <1-256> Displays the Route Map Menu. *rmap <1-32> Displays the Routing Interface Protocol Menu. *rip Displays the OSPF Menu. *ospf Displays the IGMP Menu.

  • Page 124: Default Gateway Configuration, Ip Static Route Configuration

    Default Gateway configuration Command: /cfg/l3/gw <1-4> [Default gateway 1 Menu] addr - Set IP address intr - Set interval between ping attempts retry - Set number of failed attempts to declare gateway DOWN - Enable/disable ARP only health checks - Enable default gateway - Disable default gateway - Delete default gateway - Display current default gateway configuration...

  • Page 125: Address Resolution Protocol Configuration, Ip Forwarding Configuration, Network Filter Configuration

    Address Resolution Protocol configuration Command: /cfg/l3/arp [ARP Menu] rearp - Set re-ARP period in minutes - Display current ARP configuration Address Resolution Protocol (ARP) is the TCP/IP protocol that resides within the Internet layer. ARP resolves a physical address from an IP address. ARP queries machines on the local network for their physical addresses. ARP also maintains IP to physical address pairs in its cache memory.

  • Page 126: Route Map Configuration

    The following table describes the Network Filter Configuration Menu options. Table 127 Network Filter Configuration Menu options Command Description Sets the starting IP address for this filter. The default address is 0.0.0.0 addr <IP address> Sets the IP subnet mask that is used with to define the mask <IP subnet mask>...

  • Page 127: Ip Access List Configuration, Autonomous System Path Configuration

    Table 128 Route Map Configuration Menu options Command Description Enables the route map. enable Disables the route map. disable Deletes the route map. delete Displays the current route configuration. IP Access List configuration Command: /cfg/l3/rmap <1-32>/alist <1-8> [IP Access List 1 Menu] - Network Filter number metric - Metric...

  • Page 128: Routing Information Protocol Configuration

    The rmap number (1-32) and the path number (1-8) represent the AS path you wish to configure. The following table describes the Autonomous System Path Configuration Menu options. Table 130 Autonomous System Path Configuration Menu options Command Description Sets the Autonomous System filter’s path number. as <1-65535>...

  • Page 129: Rip Interface Configuration

    RIP Interface configuration Command: /cfg/l3/rip/if <1-256> [RIP Interface 1 Menu] version - Set RIP version supply - Enable/disable supplying route updates listen - Enable/disable listening to route updates poison - Enable/disable poisoned reverse split - Enable/disable split horizon trigg - Enable/disable triggered updates mcast - Enable/disable multicast updates default...

  • Page 130: Rip Route Redistribution Configuration, Open Shortest Path First Configuration

    RIP Route Redistribution configuration Command: /cfg/l3/rip/redist fixed|static|ospf|eospf [RIP Redistribute Fixed Menu] - Add rmap into route redistribution list - Remove rmap from route redistribution list export - Export all routes of this protocol - Display current route-maps added NOTE: This menu is available only on the GbE2c Layer 2/3 Ethernet Blade Switch. The following table describes the RIP Route Redistribute Menu options.

  • Page 131: Osfp Area Index Configuration

    The following table describes the Open Shortest Path First Menu options. Table 134 OSPF Configuration Menu options Command Description Displays the area index menu. This area index does not represent the aindex <0-2> actual OSPF area number. Displays summary routes menu for up to 16 IP addresses. range <1-16>...

  • Page 132: Ospf Summary Range Configuration

    The following table describes the Area Index Configuration Menu options. Table 135 OSPF Area Index Configuration Menu options Command Description Defines the area ID of the OSPF area number. areaid <IP address> Defines the type of area. For example, when a virtual link has to be type transit|stub|nssa established with the backbone, the area type must be defined as transit.

  • Page 133: Ospf Interface Configuration

    The following table describes the OSPF Summary Range Configuration Menu options. Table 136 OSPF Summary Range Configuration Menu options Command Description Configures the base IP address for the range. For example, addr < > IP Address 100.10.1.1 Configures the IP address mask for the range. mask <...

  • Page 134: Ospf Virtual Link Configuration

    Table 137 OSPF Interface Configuration Menu options Command Description Disables the OSPF interface. disable Deletes the OSPF interface. delete Displays the current settings for OSPF interface. OSPF Virtual Link configuration Command: /cfg/l3/ospf/virt <1-3> [OSPF Virtual Link 1 Menu] aindex - Set area index hello - Set hello interval in seconds dead...

  • Page 135: Ospf Host Entry Configuration, Ospf Route Redistribution Configuration

    OSPF Host Entry configuration Command: /cfg/l3/ospf/host <1-128> [OSPF Host Entry 1 Menu] addr - Set host entry IP address aindex - Set area index cost - Set cost of this host entry enable - Enable host entry disable - Disable host entry delete - Delete host entry - Display current OSPF host entry configuration...

  • Page 136: Ospf Md5 Key Configuration, Igmp Configuration

    OSPF MD5 Key configuration Command: /cfg/l3/ospf/md5key <key ID> [OSPF MD5 Key 1 Menu] - Set authentication key delete - Delete key - Display current MD5 key configuration NOTE: This menu is available only on the GbE2c Layer 2/3 Ethernet Blade Switch. The following table describes the OSPF MD5 Key Configuration Menu options.

  • Page 137: Igmp Snooping Configuration

    IGMP snooping configuration Command: /cfg/l3/igmp/snoop [IGMP Snoop Menu] timeout - Set report timeout mrto - Set multicast router timeout qintrval - Set IGMP query interval robust - Set expected packet loss on subnet aggr - Aggregate IGMP report srcip - Set source ip to use when proxying GSQ - Add VLAN(s) to IGMP Snooping - Remove VLAN(s) from IGMP Snooping clear...

  • Page 138: Igmp Static Multicast Router Configuration, Igmp Filtering Configuration

    IGMP static multicast router configuration Command: /cfg/l3/igmp/mrouter [Static Multicast Router Menu] add - Add port as Multicast Router Port rem - Remove port as Multicast Router Port cur - Display current Multicast Router configuration The following table describes the Static Multicast Router Configuration Menu options. NOTE: When you configure a static multicast router on a VLAN, the process of learning multicast routers is disabled for that VLAN.

  • Page 139: Igmp Filter Definition, Igmp Filtering Port Configuration

    IGMP filter definition Command: /cfg/l3/igmp/igmpflt/filter <1-16> [IGMP Filter 1 Definition Menu] range - Set IP Multicast address range action - Set filter action ena - Enable filter dis - Disable filter del - Delete filter cur - Display current IGMP filter configuration The following table describes the IGMP Filter Definition Menu options.

  • Page 140: Domain Name System Configuration, Bootstrap Protocol Relay Configuration

    Domain Name System configuration Command: /cfg/l3/dns [Domain Name System Menu] prima - Set IP address of primary DNS server secon - Set IP address of secondary DNS server dname - Set default domain name - Display current DNS configuration The Domain Name System (DNS) Configuration Menu is used for defining the primary and secondary DNS servers on your local network, and for setting the default domain name served by the switch services.

  • Page 141: Virtual Router Redundancy Protocol Configuration, Vrrp Virtual Router Configuration

    Virtual Router Redundancy Protocol configuration Command: /cfg/l3/vrrp [Virtual Router Redundancy Protocol Menu] - VRRP Virtual Router Menu group - VRRP Virtual Router Group Menu - VRRP Interface Menu track - VRRP Priority Tracking Menu - Globally turn VRRP ON - Globally turn VRRP OFF - Display current VRRP configuration NOTE: This menu is available only on the GbE2c Layer 2/3 Ethernet Blade Switch.

  • Page 142

    Virtual routers are disabled by default. The following table describes the Virtual Router Configuration Menu options. Table 151 Virtual Router Configuration Menu options Command Description Displays the VRRP Priority Tracking Menu for this virtual router. Tracking is a track proprietary extension to VRRP, used for modifying the standard priority system used for electing the master router.

  • Page 143: Vrrp Virtual Router Priority Tracking Configuration, Vrrp Virtual Router Group Configuration

    VRRP Virtual Router Priority Tracking configuration Command: /cfg/l3/vrrp/vr <1-255>/track [VRRP Virtual Router 1 Priority Tracking Menu] - Enable/disable tracking master virtual routers - Enable/disable tracking other interfaces ports - Enable/disable tracking VLAN switch ports - Display current VRRP virtual router configuration NOTE: This menu is available only on the GbE2c Layer 2/3 Ethernet Blade Switch.

  • Page 144: Vrrp Virtual Router Group Priority Tracking Configuration

    virtual router ID and an IP address. On each VRRP-capable routing device participating in redundancy for this virtual router, a virtual router will be configured to share the same virtual router ID and IP address. The following table describes the Virtual Router Group Configuration Menu options. Table 153 Virtual Router Group Configuration Menu options Command...

  • Page 145: Vrrp Interface Configuration, Vrrp Tracking Configuration

    The following table describes the Virtual Router Group Priority Tracking Configuration Menu options. Table 154 Virtual Router Group Priority Tracking Configuration Menu options Command Description When enabled, the priority for this virtual router will be increased for each ifs disable|enable other IP interface active on this switch.

  • Page 146: Quality Of Service Configuration, Qos 802.1p Configuration, Access Control Configuration

    NOTE: These priority tracking options only define increment values. These options do not affect the VRRP master router election process until options under the VRRP Virtual Router Priority Tracking Menu are enabled. The following table describes the VRRP Tracking Configuration Menu options. Table 156 VRRP Tracking Configuration Menu options Command...

  • Page 147: Access Control List Configuration

    [ACL Menu] - Access Control List Item Config Menu group - Access Control List Group Config Menu - Display current ACL configuration Use this menu to create Access Control Lists (ACLs) and ACL Groups. ACLs define matching criteria used for IP filtering and Quality of Service functions.

  • Page 148: Acl Ethernet Filter Configuration, Acl Ip Version 4 Filter Configuration

    ACL Ethernet Filter configuration Command: /cfg/acl/acl <1-762>/ethernet [Filtering Ethernet Menu] smac - Set to filter on source MAC dmac - Set to filter on destination MAC vlan - Set to filter on VLAN ID etype - Set to filter on ethernet type - Set to filter on priority reset - Reset all fields...

  • Page 149: Acl Tcp/udp Filter Configuration

    Table 162 IPv4 Filter Configuration Menu options Command Description Defines an IP protocol for the ACL. If defined, traffic from the specified protocol proto <0-255> matches this filter. Specify the protocol number. Listed below are some of the well-known protocols. Number Name icmp...

  • Page 150: Acl Meter Configuration, Acl Re-mark Configuration

    ACL Meter configuration Command: /cfg/acl/acl <1-762>/meter [Metering Menu] - Set committed rate in KiloBits/s mbsize - Set maximum burst size in KiloBits enable - Enable/disable port metering dpass - Set to Drop or Pass out of profile traffic reset - Reset meter parameters - Display current settings This menu defines the metering profile for the selected ACL.

  • Page 151: Acl Re-mark In-profile Configuration, Acl Re-mark In-profile Update User Priority Configuration, Acl Re-mark Out-of-profile Configuration

    ACL Re-mark In-Profile configuration Command: /cfg/acl/acl <1-762>/re-mark/inprof [Re-marking - In Profile Menu] up1p - Set Update User Priority Menu updscp - Set the update DSCP reset - Reset in profile settings - Display current settings Table 166 ACL Re-mark In-Profile Configuration Menu options Command Description Displays the Re-Mark In-Profile Update User Priority Menu.

  • Page 152: Acl Packet Format Configuration, Acl Group Configuration, Remote Monitoring Configuration

    ACL Packet Format configuration Command: /cfg/acl/acl <1-762>/pktfmt [Filtering Packet Format Menu] ethfmt - Set to filter on ethernet format tagfmt - Set to filter on ethernet tagging format reset - Reset all fields - Display current parameters The following table describes the Packet Format Configuration Menu options. Table 169 Packet Format Configuration Menu options Command...

  • Page 153: Rmon History Configuration

    The following table describes the RMON Configuration Menu options. Table 171 RMON Menu options Command Description Displays the RMON History Menu. hist Displays the RMON Event Menu. event Displays the RMON Alarm Menu. alarm Displays the current RMON configuration. RMON history configuration Command: /cfg/rmon/hist <1-65535>...

  • Page 154: Rmon Event Configuration, Rmon Alarm Configuration

    RMON event configuration Command: /cfg/rmon/event <1-65535> [RMON Event 1 Menu] descn - Set description for the event type - Set event type owner - Set owner for the event delete - Delete this event and restore defaults - Display current event configuration The following table describes the RMON Event Menu options.

  • Page 155: Port Mirroring

    Table 174 RMON Alarm Menu options Command Description Configures the method of sampling the selected variable and calculating sample abs|delta the value to be compared against the thresholds, as follows: abs: absolute value, the value of the selected variable is compared directly with the thresholds at the end of the sampling interval.

  • Page 156: Port-based Port Mirroring, Uplink Failure Detection Configuration

    Port-based port mirroring Command: /cfg/pmirr/monport <port number> [Port 1 Menu] - Add "Mirrored" port - Rem "Mirrored" port delete - Delete this “Monitor” port - Display current Port-based Port Mirroring configuration The following table describes the port-based Port Mirroring Configuration Menu options. Table 176 Port Mirroring Configuration Menu options Command...

  • Page 157: Failure Detection Pair Configuration, Link To Monitor Configuration

    Failure Detection Pair configuration Command: /cfg/ufd/fdp [FDP Menu] - Link to Monitor Menu - Link to Disable Menu - Enable FDP - Disable FDP current - Display current FDP configuration Use these commands to configure a Failure Detection Pair, which consists of one Link to Monitor (LtM) and one Link to Disable (LtD).

  • Page 158: Link To Disable Configuration, Dump, Saving The Active Switch Configuration

    Link to Disable configuration Command: /cfg/ufd/fdp/ltd [Failure Link to Disable Menu] addport - Add port to Link to Disable remport - Remove port from Link to Disable addtrnk - Add trunk to Link to Disable remtrnk - Remove trunk from Link to Disable - Display current LtD configuration The following table describes the Link to Disable (LtD) Menu options.

  • Page 159: Restoring The Active Switch Configuration

    Restoring the active switch configuration Command: /cfg/gtcfg <FTP/TFTP server> <filename> When the gtcfg command is used, the active configuration will be replaced with the commands found in the specified configuration file. The file can contain a full switch configuration or a partial configuration. The configuration loaded using gtcfg is not activated until the apply command is used.

  • Page 160: Operations Menu Introduction, Menu Information, Operations-level Port Options

    Operations Menu Introduction Operations-level commands are used for making immediate and temporary changes to switch configuration. The Operations Menu is used for bringing ports temporarily in and out of service. This menu is available only from an administrator and operator login. Menu information Command: /oper [Operations Menu]...

  • Page 161: Operations-level Port 802.1x Options, Operations-level Vrrp Options

    Operations-level port 802.1x options Command: /oper/port <port number>/8021x [802.1x Operation Menu] reset - Reinitialize 802.1x access control on this port reauth - Initiate reauthentication on this port now Operations-level port 802.1x options are used to temporarily set 802.1x parameters for a port. Table 183 Operations-Level Port 802.1x Menu options Command...

  • Page 162: Updating The Switch Software Image, Introduction, Menu Information, Downloading New Software To The Switch

    Boot Options Menu Introduction You must be logged in to the switch as the administrator to use the Boot Options Menu. The Boot Options Menu provides options for: Selecting a switch software image to be used when the switch is next reset. Selecting a configuration block to be used when the switch is next reset.

  • Page 163: Selecting A Software Image To Run

    When the above requirements are met, use the following procedure to download the new software to your GbE2c Ethernet Blade Switch. At the Boot Options# prompt, enter: Boot Options# gtimg Enter the name of the GbE2c Ethernet Blade Switch software to be replaced: Enter name of switch software image to be replaced ["image1"/"image2"/"boot"]: <image>...

  • Page 164: Uploading A Software Image From The Switch, Selecting A Configuration Block

    Uploading a software image from the switch You can upload a software image from the GbE2c to a FTP or TFTP server. At the Boot Options# prompt, enter: Boot Options# ptimg The system prompts you for information. Enter the desired image: Enter name of switch software image to be uploaded ["image1"|"image2"|"boot"]: <image>...

  • Page 165: Resetting The Switch, Accessing The Iscli

    Resetting the switch You can reset the switch to make your software image file and configuration block changes occur. Resetting the switch causes the Spanning Tree Protocol to restart. This process can be lengthy, depending on the topology of your network. To reset the switch, at the Boot Options# prompt, enter: >>...

  • Page 166: Maintenance Menu Introduction, Menu Information

    Maintenance Menu Introduction The Maintenance Menu is used for debugging purposes, enabling you to generate a technical support dump of the critical state information in the switch, and to clear entries in the Forwarding Database and the Address Resolution Protocol (ARP) and routing tables. This menu is available only from an administrator and operator login. Menu information Command: /maint [Maintenance Menu]...

  • Page 167: System Maintenance Options, Forwarding Database Options

    System maintenance options Command: /maint/sys [System Maintenance Menu] flags - Set NVRAM flag word The System Maintenance Menu is reserved for use by HP technical support. The options are used to perform system debugging. The following table describes the System Maintenance Menu options. Table 186 System Maintenance Menu options Command...

  • Page 168: Debugging Options, Arp Cache Options

    Debugging options Command: /maint/debug [Miscellaneous Debug Menu] tbuf - Show MP trace buffer snap - Show MP snap (or post-mortem) trace buffer clrcfg - Clear all flash configs The Miscellaneous Debug Menu displays trace buffer information about events that can be helpful in understanding switch operation.

  • Page 169: Ip Route Manipulation Options, Igmp Multicast Group Options

    IP Route Manipulation options Command: /maint/route [IP Routing Menu] find - Show a single route by destination IP address - Show routes to a single gateway type - Show routes of a single type - Show routes of a single tag - Show routes on a single interface dump - Show all routes...

  • Page 170: Igmp Snooping Options, Igmp Mrouter Options

    IGMP Snooping options Command: /maint/igmp/snoop [IGMP Multicast Group Menu] find - Show a single group by IP group address vlan - Show groups on a single vlan port - Show groups on a single port trunk - Show groups on a single trunk dump - Show all groups clear...

  • Page 171: Uuencode Flash Dump, Ftp/tftp System Dump Put, Clearing Dump Information

    Uuencode flash dump Command: /maint/uudmp Using this command, dump information is presented in uuencoded format. This format makes it easy to capture the dump information as a file or a string of characters. If you want to capture dump information to a file, set your communication software on your workstation to capture session data prior to issuing the uudmp command.

  • Page 172: Panic Command, Unscheduled System Dumps

    Panic command Command: /maint/panic The panic command causes the switch to immediately dump state information to flash memory and automatically reboot. To select panic, at the Maintenance# prompt, enter: >> Maintenance# panic A FLASH dump already exists. Confirm replacing existing dump and reboot [y/n]: Enter y to confirm the command: Confirm dump and reboot [y/n]: y A list of messages is displayed:...

  • Page 173

    Index mirroring, 155; port trunking, 119; revert changes, 89; save changes, 89; switch IP address, 123; view pending changes, 89; VLAN default 802.1x information, 36 health checks: default gateway (PVID), 107; VLAN IP interface, 123; 802.1x statistics, 63 interval, retries, 124; retry, number VLAN tagging, 107 of failed health checks, 124 configuration block, 164...

  • Page 174

    MD5 cryptographic authentication, statistics dump, 87 Statistics Menu, 61 media access control (MAC) address: subnet address mask configuration, IP Rapid Spanning Tree and Multiple ARP information, 46; display subnet address, 123 Spanning Tree information, 39 address, 10; FDB information, 33; subnets: IP interface, 123 read community string (SNMP option), FDB manipulation, 167...

  • Page 175

    virtual router, 144; master VLANs: ARP entry information, 46; VRRP: master advertisements, 142 preemption (prio); virtual router, 142 configuration, 122; information, 43; VRRP configuration, 141 VLAN: active port; VLAN, 145 name, 43; port membership, 43; VRRP information, 52 VLAN tagging: port configuration, setting default number (PVID), 107;...

Comments to this Manuals

Symbols: 0
Latest comments: