Contents ISCLI Reference Introduction ............................. 8 Additional references ..........................8 Connecting to the switch ........................... 8 Establishing a console connection ......................8 Setting an IP address ........................... 9 Establishing a Telnet connection......................9 Establishing an SSH connection ......................9 Accessing the switch ..........................10 Idle timeout ............................
Page 4
OSPF information........................... 41 OSPF general information ........................42 OSPF interface information........................42 OSPF Database information ........................43 OSPF route codes information ......................... 44 Routing Information Protocol ........................44 RIP Routes information ..........................44 RIP user configuration ..........................45 IP information ............................45 IGMP multicast group information ......................
Page 5
SNMP statistics ..........................76 NTP statistics ............................ 79 Uplink Failure Detection statistics......................79 Statistics dump..........................80 Configuration Commands Introduction ............................81 Viewing and saving changes........................81 Saving the configuration ......................... 81 System configuration ..........................81 System host log configuration ......................82 Secure Shell Server configuration ......................
Page 6
IP Forwarding configuration ........................112 Network Filter configuration ........................113 Route Map configuration........................113 IP Access List configuration ....................... 114 Autonomous System Path configuration ....................115 Routing Information Protocol configuration ....................115 RIP Interface configuration........................ 115 RIP Route Redistribution configuration ....................117 Open Shortest Path First configuration ....................
Page 7
Restoring the active switch configuration ....................140 Operations Commands Introduction ............................141 Operations-level port options ......................141 Operations-level port 802.1x options ....................141 Operations-level VRRP options ......................142 Boot Options Introduction ............................143 Updating the switch software image ....................... 143 Downloading new software to the switch ...................
ISCLI Reference Introduction The HP GbE2c Ethernet Blade switch is ready to perform basic switching functions right out of the box. Some of the more advanced features, however, require some administrative configuration before they can be used effectively. This guide provides a command reference for the HP GbE2c Ethernet Blade Switch and the HP GbE2c Layer 2/3 Ethernet Blade Switch.
To establish a console connection with the switch: Connect the terminal to the console port using the null modem cable. Power on the terminal. Press the Enter key a few times on the terminal to establish the connection. You will be required to enter a password for access to the switch. Setting an IP address To access the switch via a Telnet or an SSH connection, you need to have an Internet Protocol (IP) address set for the switch.
The supported SSH encryption and authentication methods are listed below. Server Host Authentication—Client RSA authenticates the switch in the beginning of every connection Key Exchange—RSA Encryption: AES256-CBC AES192-CBC AES128-CBC 3DES-CBC 3DES ARCFOUR User Authentication—Local password authentication; Remote Authentication Dial-in User Service (RADIUS) The following SSH clients are supported: SSH 3.0.1 for Linux (freeware) SecureCRT®...
Table 2 User access levels User account Description and tasks performed User The User has no direct responsibility for switch management. He or she can view all switch status information and statistics, but cannot make any configuration changes to the switch. The user account is enabled by default, and the default password is user.
Page 12
Typeface or symbol Meaning brackets [ ] Indicate optional elements in syntax descriptions. Do not type the brackets when entering the command. Example: If the command syntax is show ip interface [<1-256>] Enter show ip interface show ip interface 1 Indicates variables in command syntax descriptions.
ISCLI basics Introduction The ISCLI is used for viewing switch information and statistics. In addition, the administrator can use the CLI for performing all levels of switch configuration. This chapter describes the ISCLI Command Modes, and provides a list of commands and shortcuts that are commonly available from all the command modes within the ISCLI.
Table 3 ISCLI Command Modes Command Mode/Prompt Command used to enter or exit. Interface IP configuration Enter Interface IP Configuration mode, from Global Configuration mode: interface ip <1-256> Exit to Global Configuration mode: exit Switch(config-ip-if)# Exit to Privileged EXEC mode: Global commands Some basic commands are recognized throughout the ISCLI hierarchy.
Command line interface shortcuts The following shortcuts allow you to enter commands quickly and easily. Command abbreviation Most commands can be abbreviated by entering the first characters that distinguish the command from the others in the same mode. For example, consider the following full command: Switch(config)# spanning-tree stp 1 bridge hello 2 The command shown above could also be entered as: Switch(config)# sp stp 1 br h 2...
Information Commands Introduction You can view configuration information for the switch in the ISCLI. This chapter discusses how to use the ISCLI to display switch information. The following table describes general information commands. Table 5 Information commands Command Usage Displays system information. show sys-info Command mode: All Displays Layer 2 information.
System Information commands The following table describes the System Information commands. Table 6 System Information commands Command Usage Displays SNMP v3 information. show snmp-server v3 Command mode: All Displays system information, including: show sys-info System date and time Switch model name and number Switch name and location Time of last boot MAC address of the switch management processor...
Table 7 SNMPv3 Information commands Command Usage Displays the Notify table. show snmp-server v3 notify Command mode: All Displays all the SNMPv3 information. show snmp-server v3 Command mode: All SNMPv3 USM User Table information The following command displays SNMPv3 user information: show snmp-server v3 user Command mode: All The User-based Security Model (USM) in SNMPv3 provides security services such as authentication and privacy of...
The following table describes the SNMPv3 View Table information. Table 9 View Table parameters Field Description Displays the name of the view. View Name Displays the MIB subtree as an OID string. A view subtree is the set of all MIB object Subtree instances which have a common Object Identifier prefix to their names.
SNMPv3 Group Table information The following command displays SNMPv3 group information: show snmp-server v3 group Command mode: All Sec Model User Name Group Name ---------- ----------------------------- ------------------------------- snmpv1 v1v2only v1v2grp adminmd5 admingrp adminsha admingrp A group is a combination of security model and security name that defines the access rights assigned to all the security names belonging to that group.
SNMPv3 Target Address Table information The following command displays SNMPv3 target address information: show snmp-server v3 target-address Command mode: All Name Transport Addr Port Taglist Params ---------- --------------- ---- ---------- --------------- trap1 47.81.25.66 v1v2trap v1v2param This command displays the SNMPv3 target address table information, which is stored in the SNMP engine. The following table describes the SNMPv3 Target Address Table information.
SNMPv3 Notify Table information The following command displays the SNMPv3 Notify Table: show snmp-server v3 notify Command mode: All Name -------------------- -------------------- v1v2trap v1v2trap The following table describes the SNMPv3 Notify Table information. Table 15 SNMPv3 Notify Table information Field Description The locally arbitrary, but unique identifier associated with this snmpNotifyEntry.
SNMPv3 dump The following command displays SNMPv3 information: show snmp-server v3 Command mode: All Engine ID = 80:00:07:50:03:00:0F:6A:F8:EF:00 usmUser Table: User Name Protocol -------------------------------- -------------------------------- admin NO AUTH, NO PRIVACY adminmd5 HMAC_MD5, DES PRIVACY adminsha HMAC_SHA, DES PRIVACY v1v2only NO AUTH, NO PRIVACY vacmAccess Table: Group Name Prefix Model Level...
System information The following command displays system information: show sys-info Command mode: All System Information at 6:56:22 Thu Jan 11, 2006 Time zone: America/US/Pacific GbE2c Ethernet Blade Switch for HP c-Class Blade System sysName: sysLocation: RackId: Default RUID RackName: Default Rack Name EnclosureSerialNumber: -none- EnclosureName: Default Chassis Name BayNumber:...
Show recent syslog messages The following command displays system log messages: show logging messages Command mode: All Date Time Severity level Message ---- ---- ----------------- ------- Jul 8 17:25:41 NOTICE system: link up on port 1 Jul 8 17:25:41 NOTICE system: link up on port 8 Jul 8 17:25:41 NOTICE...
The following table describes the User Name information. Table 16 User Name Information Field Usage Displays the status of the access level. user user Displays the status of the (operator) access level. oper oper Displays the status of the (administrator) access level. admin admin Displays the status of configured user IDs.
Table 17 Layer 2 information commands Command Usage Displays VLAN configuration information, including: show vlan information VLAN Number VLAN Name Status Port membership of the VLAN Command mode: All Dumps all switch information available from Layer 2 memory show layer2 (10K or more, depending on your configuration).
Show all FDB information The following command displays Forwarding Database information: show mac-address-table Command mode: All MAC address VLAN Port Trnk State ----------------- ---- ---- ---- ----- 00:02:01:00:00:00 00:02:01:00:00:01 00:02:01:00:00:02 00:02:01:00:00:03 00:02:01:00:00:04 00:02:01:00:00:05 00:02:01:00:00:06 00:02:01:00:00:07 00:02:01:00:00:08 00:02:01:00:00:09 00:02:01:00:00:0a 00:02:01:00:00:0b 00:02:01:00:00:0c An address that is in the forwarding (FWD) state indicates that the switch has learned it.
LACP dump The following command displays LACP information: show lacp information Command mode: All >> LACP# dump port lacp adminkey operkey selected prio attached trunk aggr ---------------------------------------------------------------------- 32768 32768 32768 32768 32768 32768 32768 32768 … LACP dump includes the following information for each port in the GbE2c Ethernet Blade switch: lacp—Displays the port’s LACP mode (active, passive, or off) adminkey—Displays the value of the port’s adminkey.
802.1x information The following command displays 802.1x information: show dot1x information Command mode: All System capability : Authenticator System status : disabled Protocol version Authenticator Backend Port Auth Mode Auth Status PAE State Auth State ---- ------------ ------------ -------------- ---------- force-auth unauthorized initialize...
Table 20 802.1x information Field Description Displays the Backend Authorization State. The Backend Backend Auth State Authorization state can be one of the following: request response success fail timeout idle Spanning Tree information The following table describes the Spanning Tree Protocol (STP) information commands. Table 21 STP information commands Command...
Page 32
Port number and priority Cost State Port Fast Forwarding state Designated bridge Designated port The following table describes the STP parameters. Table 22 STP parameters Parameter Description Shows information about the root bridge for the Spanning Tree. Information includes the priority Current Root (hex) and MAC address of the root.
Rapid Spanning Tree and Multiple Spanning Tree information The following command displays RSTP/MSTP information: show spanning-tree stp <1-128> information Command mode: All ------------------------------------------------------------------ upfast disabled, update 40 ------------------------------------------------------------------ Spanning Tree Group 1: On (RSTP) VLANs: 1-3 4095 Current Root: Path-Cost Port Hello MaxAge FwdDel 8000 00:00:01:00:19:00 Parameters:...
Page 34
The following table describes the STP parameters in RSTP or MSTP mode. Table 23 Rapid Spanning Tree parameter descriptions Parameter Description Shows information about the root bridge for the Spanning Tree. Information includes the Current Root priority (hex) and MAC address of the root. Path-cost is the total path cost to the root bridge.
Common Internal Spanning Tree information The following command displays Common Internal Spanning Tree (CIST) information: show spanning-tree mstp cist information Command mode: All Mstp Digest: 0xac36177f50283cd4b83821d8ab26de62 Common Internal Spanning Tree: VLANs: 1 3-4094 Current Root: Path-Cost Port MaxAge FwdDel 8000 00:03:42:fa:3b:80 CIST Regional Root: Path-Cost 8000 00:03:42:fa:3b:80...
The following table describes the CIST parameters. Table 24 Common Internal Spanning Tree parameter descriptions Parameter Description Shows information about the root bridge for the Common Internal Spanning Tree CIST Root (CIST). Values on this row of information refer to the CIST root. Shows information about the root bridge for this MSTP region.
VLAN information The following table describes the VLAN information commands. Table 25 VLAN information commands Command Usage Displays VLAN information show vlan Command mode: All Displays VLAN information, including spanning tree show vlan information assignment. Command mode: All The following command displays VLAN information: show vlan Command mode: All VLAN...
Layer 3 information The following table describes basic Layer 3 Information commands. The following sections provide more detailed information and commands. Table 26 Layer 3 information commands Command Usage Displays all routes configured in the switch. show ip route Command mode: All except User EXEC Displays general IP information.
Table 27 Route Information commands Command Usage Displays all routes configured in the switch. show ip route Command mode: All except User EXEC Show all IP Route information The following command displays IP route information: show ip route Command mode: All except User EXEC Status code: * - best Destination Mask...
ARP information The Address Resolution Protocol (ARP) information includes IP address and MAC address of each entry, address status flags, VLAN, and port for the address, and port referencing information. The following table describes the Address Resolution Protocol commands. Table 30 ARP information Command Usage...
ARP address list information The following command displays ARP address list information: show ip arp reply Command mode: All except User EXEC IP address IP mask MAC address VLAN Flags --------------- --------------- ----------------- ---- ----- 205.178.18.66 255.255.255.255 00:70:cf:03:20:04 205.178.50.1 255.255.255.255 00:70:cf:03:20:06 205.178.18.64 255.255.255.255...
OSPF general information NOTE: OSPF commands are available only on the GbE2c Layer 2/3 Ethernet Blade Switch. The following command displays general OSPF information: show ip ospf general-information Command mode: All except User EXEC OSPF Version 2 Router ID: 10.10.10.1 Started at 1663 and the process uptime is 4626 Area Border Router: yes, AS Boundary Router: no LS types supported are 6...
OSPF Database information NOTE: OSPF commands are available only on the GbE2c Layer 2/3 Ethernet Blade Switch. The following table describes the OSPF Database information commands. Table 33 OSPF Database information commands Command Usage Takes advertising router as a parameter. Displays all the Link show ip ospf database advertising-router State Advertisements (LSAs) in the LS database that have the <router ID>...
OSPF route codes information NOTE: OSPF commands are available only on the GbE2c Layer 2/3 Ethernet Blade Switch. The following command displays OSPF route information: show ip ospf routes Command mode: All except User EXEC Codes: IA - OSPF inter area, N1 - OSPF NSSA external type 1, N2 - OSPF NSSA external type 2 E1 - OSPF external type 1, E2 - OSPF external type 2 IA 10.10.0.0/16 via 200.1.1.2...
RIP user configuration NOTE: RIP commands are available only on the GbE2c Layer 2/3 Ethernet Blade Switch. The following command displays RIP user information: show interface ip [<1-256>] rip Command mode: All RIP USER CONFIGURATION : RIP on updat 30 RIP Interface 2 : 102.1.1.1, enabled version 2, listen enabled, supply enabled, default none poison disabled, trigg enabled, mcast enabled, metric 1...
IGMP multicast router port information The following table describes the commands used to display information about multicast routers learned through IGMP Snooping. Table 36 IGMP Multicast Router information commands Command Usage Displays information for all multicast groups on a single VLAN. show ip igmp mrouter Command mode: All except User EXEC vlan <1-4095>...
802.1p information The following command displays 802.1p information: show qos transmit-queue information Command mode: All Current priority to COS queue information: Priority COSq Weight -------- ---- ------ Current port priority information: Port Priority COSq Weight ----- -------- ---- ------ … The following table describes the IEEE 802.1p priority to COS queue information.
ACL information The following table describes the commands used to display information about Access Control Lists and Groups. Table 39 ACL information commands Command Usage Displays information about the selected ACL. show access-control Command mode: All except User EXEC list <1-762> Displays information about ACL Groups.
The following table describes the RMON History Information parameters. Table 40 RMON History Information Command Usage Displays the index number that identifies each history instance. Index Displays the MIB Object Identifier. IFOID Displays the time interval for each for each sampling bucket. Interval Displays the number of requested buckets, which is the number of data slots into which data is to be saved.
The following table describes the RMON Alarm Information parameters. Table 41 RMON Alarm Information Command Usage Displays the index number that identifies each alarm instance. Index Displays the time interval over which data is sampled and compared with the rising and falling Interval thresholds.
Link status information The following command displays link information: show interface link Command mode: All except User EXEC ------------------------------------------------------------------ Port Speed Duplex Flow Ctrl Link ---- ----- -------- --TX-----RX-- ------ 1000 down 1000 down 1000 full down 1000 full down 1000 down 1000...
Port information The following command displays port information: show interface information Command mode: All except User EXEC Port Tag RMON PVID NAME VLAN(s) ---- --- ---- ---- -------------- ------------------------------- 1 Downlink1 1 Downlink2 1 Downlink3 1 Downlink4 1 Downlink5 1 Downlink6 1 Downlink7 1 Downlink8 1 Downlink9...
Logical Port to GEA Port mapping The following command displays information about GEA ports: show geaport Command mode: All Logical Port GEA Port(0-based) GEA Unit ------------ ----------------- --------- This display correlates the logical port number to the GEA unit on which each port resides. Uplink Failure Detection information The following command displays Uplink Failure Detection (UFD) information: show ufd...
Uplink Failure Detection (UFD) information includes: UFD status, either enabled or disabled LtM status and member ports Spanning Tree status for LtM ports LtD status and member ports Information dump The following command dumps switch information: show information-dump Command mode: All Use the dump command to dump all switch information available from GbE2c memory (10K or more, depending on your configuration).
Statistics commands Introduction You can view switch performance statistics in the user, operator, and administrator command modes. This chapter discusses how to use the ISCLI to display switch statistics. The following table describes general Statistics commands. Table 43 Statistics commands Command Usage Displays Layer 2 Statistics.
802.1x statistics Use the following command to display the 802.1x authenticator statistics of the selected port: show interface port <port number> dot1x counters Command mode: All Authenticator Statistics: eapolFramesRx eapolFramesTx eapolStartFramesRx eapolLogoffFramesRx eapolRespIdFramesRx eapolRespFramesRx eapolReqIdFramesTx eapolReqFramesTx invalidEapolFramesRx eapLengthErrorFramesRx = 0 lastEapolFrameVersion lastEapolFrameSource = 00:00:00:00:00:00...
Table 45 802.1x statistics for port Statistics Description Total number of times that the state machine transitions from authReauthsWhileAuthenticating AUTHENTICATING to ABORTING, as a result of a re-authentication request Total number of times that the state machine transitions from authEapStartsWhileAuthenticating AUTHENTICATING to ABORTING, as a result of an EAPOL-Start message being received from the Supplicant.
Bridging statistics Use the following command to display the bridging statistics of the selected port: show interface port <port number> bridging-counters Command mode: All Bridging statistics for port 1: dot1PortInFrames: 63242584 dot1PortOutFrames: 63277826 dot1PortInDiscards: dot1TpLearnedEntryDiscards: dot1StpPortForwardTransitions: The following table describes the bridging statistics for a selected port: Table 46 Bridging statistics for port Statistics...
Page 59
The following table describes the Ethernet statistics for a selected port: Table 47 Ethernet statistics for port Statistics Description A count of frames received on a particular interface that are not an dot3StatsAlignmentErrors integral number of octets in length and do not pass the Frame Check Sequence (FCS) check.
Table 47 Ethernet statistics for port Statistics Description A count of frames received on a particular interface that exceeds the dot3StatsFrameTooLongs maximum permitted frame size. The count represented by an instance of this object is incremented when the frameTooLong status is returned by the MAC service to the LLC (or other MAC user).
Table 48 Interface statistics for port Statistics Description The total number of packets that higher-level protocols requested to be transmitted, UcastPkts—IfHCOut and which were not addressed to a multicast or broadcast address at this sublayer, including those that were discarded or not sent. The total number of packets that higher-level protocols requested to be transmitted, BroadcastPkts—IfHCOut and which were addressed to a broadcast address at this sublayer, including those...
Link statistics Use the following command to display the link statistics of the selected port: show interface port <port number> link-counters Command mode: All Link statistics for port 1: linkStateChange: The following table describes the link statistics for a selected port: Table 50 Link statistics for port Statistic...
LACP statistics Use the following command to display Link Aggregation Control Protocol (LACP) statistics: show interface port <port number> lacp counters Command mode: All Valid LACPDUs received Valid Marker PDUs received Valid Marker Rsp PDUs received - 0 Unknown version/TLV type Illegal subtype received LACPDUs transmitted Marker PDUs transmitted...
Table 53 Layer 3 Statistics commands Command Usage Displays all Layer 3 statistics. *show layer3 counters Command mode: All except UserEXEC * indicates commands that are available only on the GbE2c Layer 2/3 Ethernet Blade Switch. IP statistics The following command displays IP statistics: show ip counters Command mode: All except User EXEC IP statistics:...
Route statistics The following command displays route statistics: show ip route counters Command mode: All except User EXEC Route statistics: ipRoutesCur: ipRoutesHighWater: ipRoutesMax: 4096 The following table describes the Route statistics: Table 55 Route statistics Statistics Description The total number of outstanding routes in the route table. ipRoutesCur The maximum number of supported routes.
Table 58 ICMP statistics Statistics Description The number of ICMP Timestamp (request) messages sent. icmpOutTimestamps The number of ICMP Timestamp Reply messages sent. icmpOutTimestampReps The number of ICMP Address Mask Request messages sent. icmpOutAddrMasks The number of ICMP Address Mask Reply messages sent. icmpOutAddrMaskReps TCP statistics The following command displays TCP statistics:...
Table 59 TCP statistics Statistics Description The total number of segments retransmitted, that is, the number of TCP segments tcpRetransSegs transmitted containing one or more previously transmitted octets. The total number of segments received in error (for example, bad TCP checksums). tcpInErrs The total number of outstanding memory allocations from heap by TCP protocol stack.
The following table describes the IGMP statistics: Table 61 IGMP statistics Statistic Description Total number of valid IGMP packets received rxIgmpValidPkts Total number of invalid packets received rxIgmpInvalidPkts Total number of General Membership Query packets received rxIgmpGenQueries Total number of Membership Query packets received from specific groups rxIgmpGrpSpecificQueries Total number of Leave requests received rxIgmpLeaves...
OSPF global statistics NOTE: OSPF commands are available only on the GbE2c Layer 2/3 Ethernet Blade Switch. The following command displays OSPF global statistics: show ip ospf counters general Command mode: All except User EXEC OSPF stats ---------- Rx/Tx Stats: -------- -------- Pkts...
Page 71
Table 63 OSPF global statistics Statistic Description The sum total of all Link State Update packets received on all OSPF areas and Rx ls Updates interfaces. The sum total of all Link State Update packets transmitted on all OSPF areas and Tx ls Updates interfaces.
Table 63 OSPF global statistics Statistic Description The sum total number of changes in the set of bidirectional neighbors associated with nbr change any interface across all OSPF areas. Timers Kickoff: The sum total number of times the Hello timer has been fired (which triggers the hello of a Hello packet) across all OPSF areas and interfaces.
The following table describes the VRRP statistics. Table 64 VRRP statistics Field Description The total number of VRRP advertisements that have been received. vrrpInAdvers The total number of VRRP advertisements that have been sent. vrrpOutAdvers The total number of VRRP advertisements that had a bad version number. vrrpBadVersion The total number of VRRP advertisements that had a bad address.
GEA Layer 3 statistics The following command displays GEA statistics: show ip gea Command mode: All except User EXEC GEA L3 statistics: Max L3 table size : 4096 Number of L3 entries used Max LPM table size : 4097 Number of LPM entries used : 31 Max block in LPM table : 255...
Table 67 MP specific packet statistics Description Example statistic mediums hi-watermark The highest number of packet allocation with size between 128 to 1536 bytes from the packet buffer pool by the TCP/IP protocol stack. jumbos Total number of packet allocations with more than 1536 bytes from the packet buffer pool by the TCP/IP protocol stack.
CPU statistics The following command displays the CPU utilization statistics: show mp cpu Command mode: All except User EXEC CPU utilization: cpuUtil1Second: cpuUtil4Seconds: cpuUtil64Seconds: The following table describes the management port CPU utilization statistics: Table 70 CPU statistics Statistics Description The utilization of MP CPU over 1 second.
Page 77
The following table describes the Simple Network Management Protocol (SNMP) statistics: Table 71 SNMP statistics Statistics Description The total number of messages delivered to the SNMP entity from the transport snmpInPkts service. The total number of SNMP messages, which were delivered to the SNMP protocol snmpInBadVersions entity and were for an unsupported SNMP version.
Page 78
Table 71 SNMP statistics Statistics Description The total number of SNMP Set-Request Protocol Data Units (PDUs), which have been snmpInSetRequests accepted and processed by the SNMP protocol entity. The total number of SNMP Get-Response Protocol Data Units (PDUs), which have snmpInGetResponses been accepted and processed by the SNMP protocol entity.
NTP statistics The following command displays NTP statistics: show ntp counters Command mode: All NTP statistics: Primary Server: Requests Sent: Responses Received: Updates: Secondary Server: Requests Sent: Responses Received: Updates: Last update based on response from primary server. Last update time: 18:04:16 Tue Mar 13, 2006 Current system time: 18:55:49 Tue Mar 13, 2006 The switch uses NTP (Network Timing Protocol) version 3 to synchronize the switch’s internal clock with an atomic time-calibrated NTP server.
The following table describes the Uplink Failure Detection (UFD) statistics: Table 73 Uplink Failure Detection statistics Statistic Description The total numbers of times that link failures were detected on the Number of times LtM link failure uplink ports in the Link to Monitor group. The total number of times that Spanning Tree Blocking state was Number of times LtM link in Blocking detected on the uplink ports in the Link to Monitor group.
Configuration Commands Introduction The Configuration commands are available only from an administrator login. They include commands for configuring every aspect of the GbE2c. Changes can be saved to non-volatile memory (NVRAM). The following table describes the basic Configuration commands. The following sections provide more detailed information and commands.
Table 75 System Configuration commands Command Usage Sets the idle timeout for CLI sessions, from 1 to 60 minutes. The default system idle <1-60> is 5 minutes. This setting affects both the console port and Telnet port. Command mode: Global configuration Displays login notice immediately before the “Enter password:”...
Table 76 Syslog Configuration commands Command Description Displays a list of features for which syslog messages can be [no] logging log {<feature>} generated. You can choose to enable/disable specific features or enable/disable syslog on all available features. Features include: console system mgmt vlan...
Table 77 SSHD Configuration commands Command Description Generates the RSA server key. The switch creates this key automatically while ssh generate-server-key configuring the switch with Secure Shell (SSH). You can generate the key manually by using this command if you need to overwrite the key for security reasons. The command will take effect immediately.
Table 78 RADIUS Server Configuration commands Command Description Enables the RADIUS server. radius-server enable Command mode: Global configuration Disables the RADIUS server. This is the default. no radius-server enable Command mode: Global configuration Displays the current RADIUS server parameters. show radius-server Command mode: All IMPORTANT: If RADIUS is enabled, you must login using RADIUS authentication when connecting via the...
Table 79 TACACS+ Server Configuration commands Command Description Enables or disables the TACACS+ back door for telnet. The [no] tacacs-server telnet-backdoor telnet command also applies to SSH/SCP connections and the Browser-based Interface (BBI). This command does not apply when secure backdoor ( ) is enabled.
Table 80 NTP Server Configuration commands Command Description Configures the NTP time zone offset from Greenwich Mean Time (GMT), ntp timezone <hh:mm> in hours and minutes. The offset format is HH:MM. Command mode: Global configuration Disables or enables daylight saving time in the system clock. When [no] ntp daylightsavings enabled, the switch will add an extra hour to the system clock so that it is consistent with the local clock.
Table 81 System SNMP Configuration commands Command Description Configures the SNMP write community string. The write community string controls SNMP snmp-server write- “set” and “get” access to the switch. It can have a maximum of 32 characters. The community <1-32 characters>...
Table 82 SNMPv3 Configuration commands Command Description Configures the destination address and user security levels for outgoing snmp-server target-address notifications. This is also called the transport endpoint. The range is 1-16. <1-16> Command mode: Global configuration Configures SNMP parameters, consisting of message processing model, security snmp-server target- model, security level, and security name information.
SNMPv3 View configuration The following table describes the SNMPv3 View Configuration commands. Table 84 SNMPv3 View Configuration commands Command Description Defines the name for a family of view subtrees up to a maximum of 32 snmp-server view <1-128> name characters. <1-32 characters>...
Table 85 View-based Access Control Configuration commands Command Description Defines a 32 character long notify view name that allows you notify access to snmp-server access <1-32 the MIB view. notify-view <1-32 characters> Command mode: Global configuration Deletes the View-based Access Control entry. no snmp-server access <1-32>...
SNMPv3 Target Address Table configuration These commands allow you to set passwords and display current user statistics. Passwords can be a maximum of 15 characters. To disable a user, set the password to null. The following table describes the SNMPv3 Target Address Table Configuration commands. Table 88 SNMPv3 Target Address Table Configuration commands Command...
Table 89 SNMPv3 Target Parameters Table Configuration commands Command Description Selects the level of security to be used when generating the SNMP messages snmp-server target-parameters using this entry. The level means that the SNMP message <1-16> level {noAuthNo- noAuthNoPriv Priv|authNoPriv|authPriv} will be sent without authentication and without using a privacy protocol.
Table 91 System Access Configuration commands Command Description Sets an optional telnet server port number for cases where the server listens for access tftp-port <TFTP port TFTP sessions on a non-standard port. number> Command mode: Global configuration Displays the current system access parameters. show access Command mode: All Management Networks configuration...
State or Province Name (full name) [ ]: Ontario Locality Name (for example, city) [ ]: Ottawa Organization Name (for example, company) [ ]: Hewlett-Packard Organizational Unit Name (for example, section) [ ]: ProLiant Common Name (for example, user’s name) [ ]: Mr Smith Email (for example, email address) [ ]: info@hp.com...
Port configuration Use the port configuration commands to configure settings for individual switch ports. NOTE: Port 19 is reserved for switch management. The following table describes the Port Configuration commands. The following sections provide more detailed information and commands. Table 96 Port Configuration commands Command Description...
Table 96 Port Configuration commands Command Description Disables the port. To temporarily disable a port without changing its shutdown configuration attributes, see the “Temporarily disabling a port” section later in this chapter. Command mode: Interface port Displays current port parameters. show interface port {<port Command mode: All number>}...
ACL Port configuration The following table describes the basic Access Control List Configuration commands for the port. Table 98 ACL Port Configuration commands Command Description Adds or removes the specified ACL. [no] access-control list <1-762> Command mode: Interface port Adds or removes the specified ACL Group. [no] access-control group <1-762>...
802.1x Global configuration The global 802.1x commands allow you to configure parameters that affect all ports in the switch. The following table describes the 802.1x Global Configuration commands. Table 101 802.1x Global Configuration commands Command Description Sets the type of access control for all ports: dot1x mode {[force-unauthorized| auto|force-authorized]} - the port is unauthorized unconditionally.
802.1x Port configuration The 802.1x port commands allow you to configure parameters that affect the selected port in the switch. These settings override the global 802.1x parameters. The following table describes the 802.1x Port Configuration commands. Table 102 802.1x Global Configuration commands Command Description Sets the type of access control for the port:...
Rapid Spanning Tree Protocol / Multiple Spanning Tree Protocol configuration The switch supports the IEEE 802.1w Rapid Spanning Tree Protocol (RSTP) and IEEE 802.1s Multiple Spanning Tree Protocol (MSTP). MSTP allows you to map many VLANs to a small number of spanning tree groups, each with its own topology.
NOTE: The following configurations are unsupported: HP PVST+ (default Spanning Tree setting) is NOT interoperable with Cisco Rapid PVST+. HP MSTP/RSTP (with mode set to either ‘mstp’ or ‘rstp’) is NOT interoperable with Cisco Rapid PVST+. The following configurations are supported: HP PVST+ (default Spanning Tree setting) is interoperable with Cisco PVST+.
Table 105 CIST Bridge Configuration commands Command Description Displays the current CIST bridge configuration. show spanning-tree mstp cist Command mode: All CIST port configuration CIST port parameters are used to modify MRST operation on an individual port basis. CIST parameters do not affect operation of STP/PVST.
Table 106 CIST Port Configuration commands Command Description Displays the current CIST port configuration. show interface port {<port Command mode: All number>} spanning-tree mstp cist Spanning Tree configuration The switch supports the IEEE 802.1d Spanning Tree Protocol (STP) and Cisco proprietary PVST and PVST+ protocols. You can configure up to 127 spanning tree groups on the switch (STG 128 is reserved for switch management).
The following table describes the Bridge Spanning Tree Configuration commands. Table 108 Bridge Spanning Tree Configuration commands Command Description Configures the bridge priority. The bridge priority parameter controls which spanning-tree stp {<1-128>} bridge priority {<0-65535>} bridge on the network is the STP root bridge. To make this switch the root bridge, configure the bridge priority lower than all other switches and bridges on your network.
The following table describes the Spanning Tree Port Configuration commands. Table 109 Spanning Tree Port Configuration commands Command Description Configures the port priority. The port priority helps determine which spanning-tree stp {<1-128>} priority {<0-255>} bridge port becomes the designated port. In a network topology that has multiple bridge ports connected to a single segment, the port with the lowest port priority becomes the designated port for the segment.
Static FDB configuration The following table describes the Static FDB Configuration commands. Table 111 Static FDB Configuration commands Command Description Adds a static entry to the forwarding database. mac-address-table static [<MAC Command mode: Global configuration address> <VLAN> <port>] Deletes a static entry from the forwarding database. no mac-address-table static Command mode: Global configuration [<MAC address>|<VLAN>]...
Layer 2 IP Trunk Hash configuration Trunk hash parameters are set globally for the GbE2c Ethernet Blade switch. You can enable one or two parameters, to configure any of the following valid combinations: SMAC (source MAC only) DMAC (destination MAC only) SIP (source IP only) DIP (destination IP only) SIP + DIP (source IP and destination IP)
LACP Port configuration The following table describes the LACP Port Configuration commands. Table 115 LACP Port Configuration commands Command Description Set the LACP mode for this port, as follows: lacp mode {off|active|passive} Turn LACP off for this port. You can use this port to manually configure a static trunk.
Table 116 VLAN Configuration commands Command Description Displays the current VLAN configuration. show vlan [<1-4095>] Command mode: All IMPORTANT: All ports must belong to at least one VLAN. Any port which is removed from a VLAN and which is not a member of any other VLAN is automatically added to default VLAN 1. You cannot remove a port from VLAN 1 if the port has no membership in any other VLAN.
Table 118 IP Interface Configuration commands Command Description Disables this IP interface. no enable Command mode: Interface IP Removes this IP interface. no interface ip {<1-256>} Command mode: Global configuration Displays the current interface settings. show interface ip {<1-256>} Command mode: All NOTE: If you enter an IP address for interface 1, you are prompted to change the BOOTP setting.
IP Static Route configuration NOTE: These commands are available only on the GbE2c Layer 2/3 Ethernet Blade Switch. The following table describes the Static Route Configuration commands. Table 120 Static Route Configuration commands Command Description Adds a static route. You will be prompted to enter a destination IP ip route <IP subnet>...
Network Filter configuration NOTE: Network Filter commands are available only on the GbE2c Layer 2/3 Ethernet Blade Switch. The following table describes the Network Filter Configuration commands. Table 123 Network Filter Configuration commands Command Description Sets the starting IP address the IP subnet mask for this filter. The default ip match-address <1-256>...
Table 124 Route Map Configuration commands Command Description Assigns the type of OSPF metric. The default is type 1. [no] metric-type {type1|type2} Type 1—External routes are calculated using both internal and external metrics. Type 2—External routes are calculated using only the external metrics.
Autonomous System Path configuration NOTE: Autonomous System Path commands are available only on the GbE2c Layer 2/3 Ethernet Blade Switch. The rmap number (1-32) and the path number (1-8) represent the AS path you wish to configure. The following table describes the Autonomous System Path Configuration commands.
Page 116
The following table describes the RIP Interface Configuration commands. Table 128 RIP Interface Configuration commands Command Description Configures the RIP version used by this interface. ip rip version {1|2|both} The default value is version Command mode: Interface IP When enabled, the switch supplies routes to other routers. This command is [no] ip rip supply enabled by default.
RIP Route Redistribution configuration NOTE: RIP commands are available only on the GbE2c Layer 2/3 Ethernet Blade Switch. The following table describes the RIP Route Redistribute commands. Table 129 RIP Redistribute commands Command Description Adds selected routing maps to the RIP route redistribution list. This option adds redistribute a route map to the route redistribution list.
Table 130 OSPF Configuration commands Command Description Enables OSPF. enable Command mode: Router OSPF Disables OSPF. no enable Command mode: Router OSPF Displays the current OSPF configuration settings. show ip ospf Command mode: All except User EXEC OSFP Area Index configuration NOTE: OSPF commands are available only on the GbE2c Layer 2/3 Ethernet Blade Switch.
Table 131 OSPF Area Index Configuration commands Command Description Deletes the OSPF area. no area <0-2> Command mode: Router OSPF Displays the current OSPF configuration. show ip ospf area <0-2> Command mode: All except User EXEC OSPF Summary Range configuration NOTE: OSPF commands are available only on the GbE2c Layer 2/3 Ethernet Blade Switch.
Table 133 OSPF Interface Configuration commands Command Description Configures the health parameters of a hello packet, which is set for an ip ospf dead-interval <1- interval of seconds before declaring a silent router to be down. 65535> Command mode: Interface IP Configures the transit delay in seconds.
Table 134 OSPF Virtual Link Configuration commands Command Description Disables OSPF virtual link. no area-virtual-link <1-3> enable Command mode: Router OSPF Deletes OSPF virtual link. no area-virtual-link <1-3> Command mode: Router OSPF Displays the current OSPF virtual link settings. show ip ospf area-virtual-link Command mode: All except User EXEC <1-3>...
Table 136 OSPF Route Redistribution Configuration commands Command Description Displays the current route map settings. show ip ospf redistribute Command mode: All except User EXEC OSPF MD5 Key configuration NOTE: OSPF commands are available only on the GbE2c Layer 2/3 Ethernet Blade Switch. The following table describes the OSPF MD5 Key Configuration commands.
Table 138 IGMP Snooping commands Command Description Adds the VLAN to IGMP Snooping. ip igmp snoop vlan <1-4095> Command mode: Global configuration Removes the VLAN from IGMP Snooping. no ip igmp snoop vlan <1-4095> Command mode: Global configuration Removes all VLANs from IGMP Snooping. no ip igmp snoop vlan all Command mode: Global configuration Enables or disables FastLeave processing.
Domain Name System configuration The Domain Name System (DNS) Configuration commands are used for defining the primary and secondary DNS servers on your local network, and for setting the default domain name served by the switch services. DNS parameters must be configured prior to using hostname parameters with the ping, traceroute, and tftp commands. The following table describes the Domain Name System (DNS) Configuration commands.
Virtual Router Redundancy Protocol configuration Virtual Router Redundancy Protocol (VRRP) support on the GbE2c Ethernet Blade switch provides redundancy between routers in a LAN. This is accomplished by configuring the same virtual router IP address and ID number on each participating VRRP-capable routing device.
Table 146 Virtual Router Configuration commands Command Description Selects a switch IP interface (between 1 and 255). If the IP interface has the virtual-router <1-255> same IP address as the option above, this switch is considered the interface <1-255> address “owner”...
The following table describes the Virtual Router Priority Tracking Configuration commands. Table 147 Virtual Router Priority Tracking Configuration commands Command Description When enabled, the priority for this virtual router will be increased for each [no] virtual-router <1-255> track virtual-routers virtual router in master mode on this switch. This is useful for making sure that traffic for any particular client/server pairing are handled by the same switch, increasing routing and load balancing efficiency.
Table 148 Virtual Router Group Configuration commands Command Description Enables or disables master preemption. When enabled, if the virtual router [no] group preemption group is in backup mode but has a higher priority than the current master, this virtual router will preempt the lower priority master and assume control. Note that even when is disabled, this virtual router will always preemption...
VRRP Interface configuration These commands are used for configuring VRRP authentication parameters for the IP interfaces used with the virtual routers. The interface-number represents the IP interface on which authentication parameters must be configured. NOTE: VRRP commands are available only on the GbE2c Layer 2/3 Ethernet Blade Switch. The following table describes the VRRP Interface Configuration commands.
Quality of Service configuration Use the Quality of Service (QoS) commands to configure the IEEE 802.1p priority value of incoming packets. This allows you to differentiate between various types of traffic, and provide different priority levels. QoS 802.1p configuration This feature provides the GbE2c Ethernet Blade switch the capability to filter IP packets based on the IEEE 802.1p bits in the packet's VLAN header.
ACL Ethernet Filter configuration These commands allow you to define Ethernet matching criteria for an ACL. The following table describes the Ethernet Filter Configuration commands. Table 154 Ethernet Filter Configuration commands Command Description Defines the source MAC address and MAC mask for this ACL. access-control list <1-762>...
Table 155 IPv4 Filter Configuration commands Command Description Displays the current IPV4 parameters. show access-control list <1- Command mode: All except User EXEC 762> ipv4 ACL TCP/UDP Filter configuration These commands allow you to define TCP/UDP matching criteria for an ACL. The following table describes the TCP/UDP Filter Configuration commands.
ACL Metering configuration The following table describes the ACL Metering Configuration commands. Table 158 ACL Metering Configuration commands Command Description Configures the committed rate, in Kilobits per second. The committed rate must access-control list <1-762> be a multiple of 64. meter committed-rate <64- 1000000>...
Re-Mark Update User Priority configuration The following table describes the Update User Priority Configuration commands. Table 161 ACL Update User Priority Configuration commands Command Description Defines 802.1p value. The value is the priority bits information in the packet access-control list <1-762> structure.
Remote Monitoring configuration Remote Monitoring (RMON) allows you to monitor traffic flowing through the switch. The RMON MIB is described in RFC 1757. The following table describes the RMON Configuration commands. Table 164 RMON commands Command Description Displays the current RMON configuration. show rmon Command mode: All RMON history configuration...
Table 166 RMON Event commands Command Description Enter a text string that identifies the person or entity that uses this event rmon event <1-65535> owner <1- index. 127 characters> The owner can have a maximum of 127 characters. Command mode: Global configuration Deletes this event index.
Table 167 RMON Alarm commands Command Description Deletes this alarm index. no rmon alarm <1-65535> Displays the current RMON Alarm parameters. show rmon alarm Command mode: All Port mirroring Port Mirroring is used to configure, enable, and disable the monitored port. When enabled, network packets being sent and/or received on a target port are duplicated and sent to a monitor port.
Uplink Failure Detection configuration Uplink Failure Detection (UFD) supports network fault tolerance in network adapter teams. Use these commands to configure a Failure Detection Pair of one Links to Monitor (LtM) group and one Links to Disable (LtD) group. When UFD is enabled and a Failure Detection Pair is configured, the switch automatically disables ports in the LtD if it detects a failure in the LtM.
Link to Disable configuration The following table describes the Link to Disable (LtD) commands. The LtD can consist of any mix of downlink ports (ports 1-16) and trunk groups that contain only downlink ports. Table 173 Link to Disable commands Command Description Adds a port to the current LtD group.
Operations Commands Introduction Operations-level commands are used for making immediate and temporary changes to switch configuration. Operations commands are used for bringing ports temporarily in and out of service. These commands are available only from an administrator and operator login. The following table describes basic Operations commands.
Table 176 Operations-Level Port 802.1x commands Command Description Re-authenticates the supplicant (client) attached to the port. This command only interface port {<port applies if the port’s 802.1x mode is configured as auto. number>} dot1x re- authenticate Command Mode: Privileged EXEC Operations-level VRRP options NOTE: VRRP commands are available only on the GbE2c Layer 2/3 Ethernet Blade Switch.
Boot Options Introduction You must be logged in to the switch as the administrator to use the Boot Options commands. The Boot Options allow you to perform the following functions: Select a switch software image to be used when the switch is next reloaded. Select a configuration block to be used when the switch is next reloaded.
Enter the name of the new software file on the server: Source file name: <filename> The exact form of the name will vary by server. However, the file location is normally relative to the FTP or TFTP directory. Enter the user name, if you are using a FTP server: Enter username for FTP server or hit return for TFTP server: <userID>...
Enter the name or the IP address of the FTP/TFTP server: Address or name of remote host: <server name or IP address> Enter the name of the file into which the image will be uploaded on the FTP/TFTP server: Destination file name: <filename> Enter the user name, if you are using a FTP server: Enter username for FTP server or hit return for TFTP server: <userID>...
Resetting the switch You can reset the switch to make your software image file and configuration block changes occur. Resetting the switch causes the Spanning Tree Protocol to restart. This process can be lengthy, depending on the topology of your network. To reset the switch, at the prompt, enter: >>...
Maintenance Commands Introduction The Maintenance commands are used for debugging purposes, enabling you to generate a technical support dump of the critical state information in the switch, and to clear entries in the Forwarding Database and the Address Resolution Protocol (ARP) and routing tables. These commands are available only from an administrator login. Dump information contains internal switch state data that is written to flash memory on the switch after any one of the following occurs: The switch administrator forces a switch panic.
Debugging options The Miscellaneous Debug commands display trace buffer information about events that can be helpful in understanding switch operation. You can view the following information using Debug commands: Events traced by the management processor (MP) Events traced to a buffer area when a reset occurs If the switch resets for any reason, the management processor (MP) trace buffer is saved into the snap trace buffer area.
IGMP Snooping maintenance The following table describes the IGMP Snooping Maintenance commands. Table 182 IGMP Snooping Maintenance commands Command Usage Shows a single IGMP Multicast group by IP address. show ip igmp groups address <IP Command mode: All except User EXEC address>...
FTP/TFTP system dump put Use this command to put (save) the system dump to a FTP/TFTP server. NOTE: If the FTP/TFTP server is running SunOS or the Solaris operating system, the specified copy flash-dump tftp (or ftp)file must exist prior to executing the copy flash-dump tftp command (or copy flash-dump tftp) command, and must be writable (set with proper permission, and not locked by any application).
Unscheduled system dumps If there is an unscheduled system dump to flash memory, the following message is displayed when you log on to the switch: Note: A system dump exists in FLASH. The dump was saved at 13:43:22 Wednesday October 30, 2006. Use show flash-dump uuencode to extract the dump for analysis and clear flash-dump to clear the FLASH region.