HP 438031-B21 - 1:10Gb Ethernet BL-c Switch Cli Reference Manual

Hp 1:10gb ethernet bl-c switch for c-class bladesystem iscli reference guide.
Hide thumbs
HP 1:10Gb Ethernet BL-c Switch for c-Class
BladeSystem
ISCLI Reference Guide
Part number: 445877-001
First Edition: April 2007

Advertising

   Related Manuals for HP 438031-B21 - 1:10Gb Ethernet BL-c Switch

   Summary of Contents for HP 438031-B21 - 1:10Gb Ethernet BL-c Switch

  • Page 1

    HP 1:10Gb Ethernet BL-c Switch for c-Class BladeSystem ISCLI Reference Guide Part number: 445877-001 First Edition: April 2007...

  • Page 2

    Legal notices © 2007 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. The only warranties for HP products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty.

  • Page 3: Table Of Contents

    Contents Contents ISCLI reference Introduction ............................9 Additional references ..........................9 Connecting to the switch ......................... 9 Establishing a console connection ..................... 10 Setting an IP address ........................10 Establishing a Telnet connection......................11 Establishing an SSH connection ......................11 Accessing the switch..........................

  • Page 4: Table Of Contents

    Contents Spanning Tree information ........................36 Rapid Spanning Tree and Multiple Spanning Tree information ..............38 Common Internal Spanning Tree information ................... 40 Trunk group information........................42 VLAN information ..........................42 Layer 3 information ..........................43 Route information..........................44 Show all IP Route information ........................ 45 ARP information...........................

  • Page 5: Table Of Contents

    Contents LACP statistics............................76 Layer 3 statistics........................... 76 IP statistics............................78 Route statistics ..........................79 ARP statistics ..........................79 DNS statistics ..........................79 ICMP statistics ..........................80 TCP statistics........................... 81 UDP statistics ..........................83 IGMP Multicast Group statistics......................83 OSPF statistics ............................. 84 OSPF global statistics ........................

  • Page 6: Table Of Contents

    Contents Temporarily disabling a port......................119 Port link configuration ........................119 ACL Port configuration ........................120 Layer 2 configuration ......................... 121 802.1x configuration ......................... 121 802.1x Global configuration....................... 121 802.1x Port configuration ........................123 Rapid Spanning Tree Protocol / Multiple Spanning Tree Protocol configuration.......... 124 Common Internal Spanning Tree configuration..................

  • Page 7: Table Of Contents

    Contents Bootstrap Protocol Relay configuration ....................155 Virtual Router Redundancy Protocol configuration................... 156 RRP Virtual Router configuration ...................... 156 VRRP Virtual Router Priority Tracking configuration ................158 VRRP Virtual Router Group configuration ..................159 VRRP Virtual Router Group Priority Tracking configuration ..............160 VRRP Interface configuration ......................

  • Page 8: Table Of Contents

    Contents Introduction ............................183 System maintenance ........................183 Forwarding Database maintenance ....................184 Debugging options........................184 ARP cache maintenance......................... 185 IGMP Snooping maintenance ......................186 IGMP Mrouter maintenance......................186 Uuencode flash dump ........................187 FTP/TFTP system dump put ......................187 Clearing dump information......................

  • Page 9: Introduction, Additional References, Connecting To The Switch

    ISCLI reference ISCLI reference Introduction The HP 1:10Gb Ethernet BL-c Switch is ready to perform basic switching functions right out of the box. Some of the more advanced features, however, require some administrative configuration before they can be used effectively. This guide provides a command reference for the HP 1:10GbE switch. The extensive switching software included in the switch provides a variety of options for accessing and configuring the switch: Text-based command line interfaces (AOS CLI and ISCLI) for access via a local terminal or remote...

  • Page 10: Establishing A Console Connection, Setting An Ip Address

    ISCLI reference Establishing a console connection To establish a console connection with the switch, you need: A null modem cable with a female DB-9 connector (See the HP 1:10Gb Ethernet BL-c Switch User Guide for more information.) An ASCII terminal or a computer running terminal emulation software set to the parameters shown in the table below.

  • Page 11: Establishing A Telnet Connection, Establishing An Ssh Connection

    ISCLI reference Establishing a Telnet connection A Telnet connection offers the convenience of accessing the HP 1:10GbE switch from any workstation connected to the network. Telnet provides the same options for user, operator, and administrator access as those available through the console port. By default, Telnet is enabled on the switch. The switch supports four concurrent Telnet connections.

  • Page 12: Accessing The Switch

    ISCLI reference The following SSH clients are supported: SSH 3.0.1 for Linux (freeware) SecureCRT® 4.1.8 (VanDyke Technologies, Inc.) OpenSSH_3.9 for Linux (FC 3) FedoraCore 3 for SCP commands PuTTY Release 0.58 (Simon Tatham) for Windows NOTE: The HP 1:10GbE switch implementation of SSH is based on versions 1.5 and 2.0, and supports SSH clients from version 1.0 through version 2.0.

  • Page 13: Idle Timeout, Typographical Conventions

    ISCLI reference User access levels Table 2 User account Description and tasks performed User The User has no direct responsibility for switch management. He or she can view all switch status information and statistics, but cannot make any configuration changes to the switch. The user account is enabled by default, and the default password is user.

  • Page 14

    ISCLI reference Table 3 Typographical conventions Typeface or symbol Meaning Indicate required elements in syntax descriptions where there is more than one braces { } option. You must choose only one of the options. Do not type the braces when entering the command.

  • Page 15: Accessing The Iscli, Introduction, Iscli Command Modes

    ISCLI basics ISCLI basics Introduction The ISCLI is used for viewing switch information and statistics. In addition, the administrator can use the CLI for performing all levels of switch configuration. This chapter describes the ISCLI Command Modes, and provides a list of commands and shortcuts that typically are from all the command modes within the ISCLI.

  • Page 16: Global Commands

    ISCLI basics The following table describes the ISCLI command modes. ISCLI Command Modes Table 4 Command Mode/Prompt Command used to enter or exit. User EXEC Default mode, entered automatically Switch> exit—Exit logout—Exit Privileged EXEC enable—Enter Privileged EXEC mode, from User EXEC mode Switch# disable—Exit to User EXEC mode exit or logout—Quit ISCLI...

  • Page 17: Command Line Interface Shortcuts, Command Abbreviation, Tab Completion

    ISCLI basics Table 5 Global commands Command Action Verify station-to-station connectivity across the network. The format is as follows: ping ping <host name> | <IP address> [<number of tries>] [<msec delay>] IP address—the hostname or IP address of the device number of tries (optional)—the number of attempts (1-32) msec delay (optional)—the number of milliseconds between attempts Identifies the route used for station-to-station connectivity across the network.

  • Page 18

    Information Commands Information Commands Introduction You can view configuration information for the switch in the ISCLI. This chapter discusses how to use the ISCLI to display switch information. The following table describes general information commands. Table 6 Information commands Command Usage Displays system information.

  • Page 19: System Information Commands

    Information Commands Table 6 Information commands Command Usage Dumps all switch information available (10K or more, depending on your show information-dump configuration). If you want to capture dump data to a file, set your communication software on your workstation to capture session data prior to issuing the dump commands.

  • Page 20: Snmpv3 Information Commands

    Information Commands SNMPv3 Information commands SNMP version 3 (SNMPv3) is an extensible SNMP Framework that supplements the SNMPv2 Framework by supporting the following: a new SNMP message format security for messages access control remote configuration of SNMP parameters For more details on the SNMPv3 architecture, see RFC2271 to RFC2276. The following table describes the SNMPv3 Information commands.

  • Page 21: Snmpv3 Usm User Table Information, Snmpv3 View Table Information

    Information Commands SNMPv3 USM User Table information The following command displays SNMPv3 user information: show snmp-server v3 user Command mode: All The User-based Security Model (USM) in SNMPv3 provides security services such as authentication and privacy of messages. This security model makes use of a defined set of user identities displayed in the USM user table.

  • Page 22: Snmpv3 Access Table Information

    Information Commands The following table describes the SNMPv3 View Table information. View Table parameters Table 10 Field Description Displays the name of the view. View Name Displays the MIB subtree as an OID string. A view subtree is the set of all MIB object Subtree instances which have a common Object Identifier prefix to their names.

  • Page 23: Snmpv3 Group Table Information, Snmpv3 Community Table Information

    Information Commands Table 11 Access Table parameters Field Description Displays the Notify view to which this entry authorizes the notify access. NotifyV SNMPv3 Group Table information The following command displays SNMPv3 group information: show snmp-server v3 group Command mode: All Sec Model User Name Group Name...

  • Page 24: Snmpv3 Target Address Table Information, Snmpv3 Target Parameters Table Information

    Information Commands Table 13 Community Table information Field Description Displays the User Security Model (USM) user name. User Name Displays the community tag. This tag specifies a set of transport endpoints from which a command responder application accepts management requests and to which a command responder application sends an SNMP trap.

  • Page 25: Snmpv3 Notify Table Information

    Information Commands The following table describes the SNMPv3 Target Parameters Table information. Target Parameters Table information Table 15 Field Description Displays the locally arbitrary, but unique identifier associated with this Name snmpTargeParamsEntry. Displays the Message Processing Model used when generating SNMP messages using this entry. MP Model Displays the securityName, which identifies the entry on whose behalf SNMP messages will be User Name...

  • Page 26: Snmpv3 Dump

    Information Commands SNMPv3 dump The following command displays SNMPv3 information: show snmp-server v3 Command mode: All Engine ID = 80:00:07:50:03:00:0F:6A:F8:EF:00 usmUser Table: User Name Protocol -------------------------------- -------------------------------- admin NO AUTH, NO PRIVACY adminmd5 HMAC_MD5, DES PRIVACY adminsha HMAC_SHA, DES PRIVACY v1v2only NO AUTH, NO PRIVACY vacmAccess Table:...

  • Page 27: System Information

    Information Commands System information The following command displays system information: show sys-info Command mode: All System Information at 6:56:22 Thu Jan 11, 2007 Time zone: America/US/Pacific HP 1:10 Gb Ethernet Blade Switch sysName: sysLocation: RackId: Default RUID RackName: Default Rack Name EnclosureSerialNumber: -none- EnclosureName: Default Chassis Name BayNumber:...

  • Page 28: Show Recent Syslog Messages

    Information Commands Show recent syslog messages The following command displays system log messages: show logging messages Command mode: All Date Time Severity level Message ---- ---- ----------------- ------- Jul 8 17:25:41 NOTICE system: link up on port 1 Jul 8 17:25:41 NOTICE system: link up on port 8 Jul 8 17:25:41...

  • Page 29: System User Information, Layer 2 Information

    Information Commands System user information The following command displays user status information: show access user Command mode: All except User EXEC Usernames: user - enabled oper - disabled admin - Always Enabled Current User ID table: 1: name tech1 , ena, cos user , password valid, online 2: name tech2 , ena, cos user...

  • Page 30

    Information Commands Table 18 Layer 2 information commands Command Usage In addition to seeing if STP is enabled or disabled, you can show spanning-tree stp <1-128> information view the following STP bridge information: Priority Hello interval Maximum age value Forwarding delay Aging time You can also refer to the following port-specific STP information:...

  • Page 31: Fdb Information Commands

    Information Commands FDB information commands The forwarding database (FDB) contains information that maps the media access control (MAC) address of each known device to the switch port where the device address was learned. The FDB also shows which other ports have seen frames destined for a particular MAC address. NOTE: The master forwarding database supports up to 8K MAC address entries on the management processor (MP) per switch.

  • Page 32: Show All Fdb Information, Clearing Entries From The Forwarding Database, Link Aggregation Control Protocol Information

    Information Commands Show all FDB information The following command displays Forwarding Database information: show mac-address-table Command mode: All MAC address VLAN Port Trnk State ----------------- ---- ---- ---- ----- 00:02:01:00:00:00 00:02:01:00:00:01 00:02:01:00:00:02 00:02:01:00:00:03 00:02:01:00:00:04 00:02:01:00:00:05 00:02:01:00:00:06 00:02:01:00:00:07 00:02:01:00:00:08 00:02:01:00:00:09 00:02:01:00:00:0a 00:02:01:00:00:0b 00:02:01:00:00:0c An address that is in the forwarding (FWD) state indicates that the switch has learned it.

  • Page 33: Lacp Dump

    Information Commands LACP dump The following command displays LACP information: show lacp information Command mode: All >> LACP# dump port lacp adminkey operkey selected prio attached trunk aggr ---------------------------------------------------------------------- 32768 32768 32768 32768 32768 32768 32768 32768 … LACP dump includes the following information for each port in the HP 1:10GbE switch: lacp—Displays the port’s LACP mode (active, passive, or off) adminkey—Displays the value of the port’s adminkey.

  • Page 34: X Information

    Information Commands 802.1x information The following command displays 802.1x information: show dot1x information Command mode: All System capability : Authenticator System status : disabled Protocol version Authenticator Backend Port Auth Mode Auth Status PAE State Auth State ---- ------------ ------------ -------------- ---------- force-auth...

  • Page 35

    Information Commands The following table describes the IEEE 802.1x parameters. 802.1x information Table 21 Field Description Displays each port’s name. Port Displays the Access Control authorization mode for the port. The Auth Mode Authorization mode can be one of the following: force-unauth auto force-auth...

  • Page 36: Spanning Tree Information

    Information Commands Spanning Tree information The following table describes the Spanning Tree Protocol (STP) information commands. Table 22 STP information commands Command Usage Displays information about the spanning tree group. show spanning-tree stp <1-128> Command mode: All Displays STP bridge information. show spanning-tree stp <1-128>...

  • Page 37

    Information Commands You can also refer to the following port-specific STP information: Port number and priority Cost State Port Fast Forwarding state Designated bridge Designated port The following table describes the STP parameters. STP parameters Table 23 Parameter Description Shows information about the root bridge for the Spanning Tree. Information includes Current Root the priority (hex) and MAC address of the root.

  • Page 38: Rapid Spanning Tree And Multiple Spanning Tree Information

    Information Commands Rapid Spanning Tree and Multiple Spanning Tree information The following command displays RSTP/MSTP information: show spanning-tree stp <1-128> information Command mode: All ------------------------------------------------------------------ upfast disabled, update 40 ------------------------------------------------------------------ Spanning Tree Group 1: On (RSTP) VLANs: 1-3 4095 Current Root: Path-Cost Port Hello MaxAge FwdDel 8000 00:00:01:00:19:00...

  • Page 39

    Information Commands Role Designated bridge and port Link type The following table describes the STP parameters in RSTP or MSTP mode. Table 24 Rapid Spanning Tree parameter descriptions Parameter Description Shows information about the root bridge for the Spanning Tree. Information includes Current Root the priority (hex) and MAC address of the root.

  • Page 40: Common Internal Spanning Tree Information

    Information Commands Table 24 Rapid Spanning Tree parameter descriptions Parameter Description Type of link connected to the port, and whether the port is an edge port. Link type Type values are AUTO, P2P, or SHARED. Common Internal Spanning Tree information The following command displays Common Internal Spanning Tree (CIST) information: show spanning-tree mstp cist information Command mode: All...

  • Page 41

    Information Commands You can also refer to the following port-specific CIST information: Port number and priority Cost State Role Designated bridge and port Hello interval Link type and port type The following table describes the CIST parameters. Table 25 Common Internal Spanning Tree parameter descriptions Parameter Description Shows information about the root bridge for the Common Internal Spanning Tree...

  • Page 42: Trunk Group Information, Vlan Information

    Information Commands Table 25 Common Internal Spanning Tree parameter descriptions Parameter Description Type of link connected to the port, and whether the port is an edge port. Link type Type values are AUTO, P2P, or SHARED. Trunk group information The following command displays Trunk Group information: show portchannel information Command mode: All Trunk group 1, Enabled...

  • Page 43: Layer 3 Information

    Information Commands The following command displays VLAN information: show vlan Command mode: All VLAN Name Status Ports ---- -------------------------------- ------ ---------------- Default VLAN pc03p pc07f pc04u 8600-14 8600-15 8600-16 8600-17 35k-1 35k-2 35k-3 35k-4 pc07z redlan ixiaTraffic 1 12 13 23 4000 bpsports 3-6 8-10...

  • Page 44: Route Information

    Information Commands Table 27 Layer 3 information commands Command Usage Displays RIP user’s configuration. show interface ip rip Command mode: All Displays IP Information. IP information, includes: show layer3 information IP interface information: Interface number, IP address, subnet mask, VLAN number, and operational status.

  • Page 45: Show All Ip Route Information

    Information Commands Table 28 Route Information commands Command Usage Displays all routes configured in the switch. show ip route Command mode: All except User EXEC Show all IP Route information The following command displays IP route information: show ip route Command mode: All except User EXEC Status code: * - best Destination...

  • Page 46: Arp Information

    Information Commands The following table describes the Tag parameter. IP Routing Tag information Table 30 Field Description The address belongs to a host or subnet attached to the switch. fixed The address is a static route which has been configured on the switch. static The address belongs to one of the switch’s IP interfaces.

  • Page 47: Show All Arp Entry Information, Arp Address List Information

    Information Commands Show all ARP entry information The following command displays ARP information: show ip arp Command mode: All except User EXEC IP address Flags MAC address VLAN Port --------------- ----- ----------------- ---- ---- 192.168.2.4 00:50:8b:b2:32:cb 192.168.2.19 00:0e:7f:25:89:b5 192.168.2.61 00:0f:6a:ed:46:00 The Flag field provides additional information about an entry.

  • Page 48: Ospf Information

    Information Commands OSPF information The following table describes the OSPF commands. Table 33 OSPF information commands Command Usage Displays general OSPF information. show ip ospf general-information Command mode: All except User EXEC Displays area information for a particular area index. If no show ip ospf area information [<0-2>] parameter is supplied, it displays area information for all the areas.

  • Page 49: Ospf General Information, Ospf Interface Information

    Information Commands OSPF general information The following command displays general OSPF information: show ip ospf general-information Command mode: All except User EXEC OSPF Version 2 Router ID: 10.10.10.1 Started at 1663 and the process uptime is 4626 Area Border Router: yes, AS Boundary Router: no LS types supported are 6 External LSA count 0 External LSA checksum sum 0x0...

  • Page 50: Ospf Database Information

    Information Commands OSPF Database information The following table describes the OSPF Database information commands. Table 34 OSPF Database information commands Command Usage Takes advertising router as a parameter. Displays all the Link show ip ospf database advertising- State Advertisements (LSAs) in the LS database that have the router <router ID>...

  • Page 51: Ospf Route Codes Information

    Information Commands Table 34 OSPF Database information commands Command Usage Displays all the self-advertised LSAs. No parameters are show ip ospf database self required. Command mode: All except User EXEC Displays the network summary (type 3) LSAs with detailed show ip ospf database summary [advertising-router <router ID>...

  • Page 52: Routing Information Protocol, Rip Routes Information

    Information Commands Routing Information Protocol The following table describes the Routing Information Protocol (RIP) information commands. Table 35 RIP information commands Command Usage Displays RIP routes. show ip rip routes Command mode: All except User EXEC Displays RIP interface information. show ip rip interface [<1-255>] Command mode: All except User EXEC Displays RIP user’s configuration.

  • Page 53: Rip User Configuration, Ip Information

    Information Commands RIP user configuration The following command displays RIP user information: show interface ip [<1-256>] rip Command mode: All RIP USER CONFIGURATION : RIP on updat 30 RIP Interface 2 : 102.1.1.1, enabled version 2, listen enabled, supply enabled, default none poison disabled, trigg enabled, mcast enabled, metric 1 auth none,key none RIP Interface 3 : 103.1.1.1, enabled...

  • Page 54: Igmp Multicast Group Information, Igmp Group Information

    Information Commands IGMP multicast group information The following table describes the commands used to display information about IGMP groups learned by the switch. IGMP Multicast Group commands Table 36 Command Usage Displays a single IGMP multicast group by its IP address. show ip igmp groups address <IP address>...

  • Page 55: Igmp Multicast Router Information, Igmp Mrouter Dump

    Information Commands IGMP multicast router information The following table describes the commands used to display information about multicast routers learned through IGMP Snooping. IGMP Multicast Router information commands Table 37 Command Usage show ip igmp mrouter vlan <1-4094> Displays information for all multicast groups on a single VLAN. Command mode: All except User EXEC Displays information for all multicast groups learned by the switch.

  • Page 56: Vrrp Information

    Information Commands VRRP information Virtual Router Redundancy Protocol (VRRP) support on HP 1:10GbE switch provides redundancy between routers in a LAN. This is accomplished by configuring the same virtual router IP address and ID number on each participating VRRP-capable routing device. One of the virtual routers is then elected as the master, based on a number of priority criteria, and assumes control of the shared virtual router IP address.

  • Page 57: P Information

    Information Commands 802.1p information The following command displays 802.1p information: show qos transmit-queue information Command mode: All Current priority to COS queue information: Priority COSq Weight -------- ---- ------ Current port priority information: Port Priority COSq Weight ----- -------- ---- ------ …...

  • Page 58: Acl Information

    Information Commands ACL information The following table describes the commands used to display information about Access Control Lists and Groups. ACL information commands Table 40 Command Usage Displays information about the selected ACL. show access-control list <1-896> Command mode: All except User EXEC Displays information about ACL Groups.

  • Page 59: Rmon Information, Rmon History Information

    Information Commands RMON Information The following command displays general RMON information: show rmon Command mode: All RMON history information The following command displays RMON history information: show rmon history Command mode: All RMON History group configuration: Index IFOID Interval Rbnum Gbnum ----- ------------------------------...

  • Page 60: Rmon Alarm Information

    Information Commands RMON alarm information The following command displays RMON alarm information: show rmon alarm Command mode: All RMON Alarm group configuration: Index Interval Type rLimit fLimit rEvtIdx fEvtIdx last value ----- -------- ---- -------- -------- ------- ------- ---------- 1800 1800 1800 56344540...

  • Page 61: Rmon Event Information

    Information Commands Table 42 RMON Alarm Information Command Usage Displays the rising alarm event index that is triggered when a rising threshold is crossed. rEvtIdx Displays the falling alarm event index that is triggered when a falling threshold is crossed. fEvtIdx Displays the last sampled value.

  • Page 62: Link Status Information

    Information Commands Link status information The following command displays link information: show interface link Command mode: All except User EXEC ------------------------------------------------------------------ Port Speed Duplex Flow Ctrl Link ---- ----- -------- --TX-----RX-- ------ disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled disabled...

  • Page 63: Port Information

    Information Commands Port information The following command displays port information: show interface information Command mode: All except User EXEC Port Tag RMON PVID NAME VLAN(s) ---- --- ---- ---- -------------- ------------------------------- 1 Downlink1 1 Downlink2 1 Downlink3 1 Downlink4 1 Downlink5 1 Downlink6 1 Downlink7 1 Downlink8...

  • Page 64: Logical Port To Gea Port Mapping, Fiber Port Sfp Status

    Information Commands Logical Port to GEA Port mapping The following command displays information about GEA ports: show geaport Command mode: All Logical Port GEA Port(0-based) GEA Unit ------------ ----------------- --------- This display correlates the logical port number to the GEA unit on which each port resides. Fiber Port SFP status The following command displays XFP information: show sfp...

  • Page 65: Uplink Failure Detection Information, Information Dump

    Information Commands Uplink Failure Detection information The following command displays Uplink Failure Detection (UFD) information: show ufd Command mode: All except User EXEC Uplink Failure Detection: Enabled LtM status: Down Member STG State Link Status --------- ------------ ----------- port 24 down DISABLED DISABLED *...

  • Page 66

    Statistics Commands Statistics Commands Introduction You can view switch performance statistics in the user, operator, and administrator command modes. This chapter discusses how to use the ISCLI to display switch statistics. The following table describes general Statistics commands. Table 44 Statistics commands Command Usage...

  • Page 67: Port Statistics

    Statistics Commands Port Statistics The following table describes the Port Statistics commands. The following sections provide more detailed information and commands. Port Statistics commands Table 45 Command Usage Displays IEEE 802.1x statistics for the port. show interface port <port number> dot1x counters Command mode: All Displays bridging (“dot1”) statistics for the port.

  • Page 68: X Statistics

    Statistics Commands 802.1x statistics Use the following command to display the 802.1x authenticator statistics of the selected port: show interface port <port number> dot1x counters Command mode: All Authenticator Statistics: eapolFramesRx eapolFramesTx eapolStartFramesRx eapolLogoffFramesRx eapolRespIdFramesRx eapolRespFramesRx eapolReqIdFramesTx eapolReqFramesTx invalidEapolFramesRx eapLengthErrorFramesRx = 0 lastEapolFrameVersion lastEapolFrameSource = 00:00:00:00:00:00...

  • Page 69

    Statistics Commands Table 46 802.1x statistics for port Statistics Description Total number of times that the state machine transitions from authEntersAuthenticating CONNECTING to AUTHENTICATING, as a result of an EAPResponse/Identity message being received from the Supplicant. Total number of times that the state machine transitions from authSuccessesWhileAuthenticating AUTHENTICATING to AUTHENTICATED, as a result of the Backend Authentication state machine indicating successful authentication of...

  • Page 70: Bridging Statistics

    Statistics Commands Table 46 802.1x statistics for port Statistics Description Total number of times that the state machine receives a response from backendNonNakResponsesFrom Supplicant the Supplicant to an initial EAP-Request, and the response is something other than EAP-NAK. Indicates that the Supplicant can respond to the Authenticators chosen EAP-method.

  • Page 71: Ethernet Statistics

    Statistics Commands Table 47 Bridging statistics for port Statistics Description The total number of Forwarding Database entries, which have been or dot1TpLearnedEntryDiscards would have been learned, but have been discarded due to a lack of space to store them in the Forwarding Database. If this counter is increasing, it indicates that the Forwarding Database is regularly becoming full (a condition which has adverse performance effects on the sub network).

  • Page 72

    Statistics Commands Table 48 Ethernet statistics for port Statistics Description A count of frames received on a particular interface that are an dot3StatsFCSErrors integral number of octets in length but do not pass the Frame Check Sequence (FCS) check. The count represented by an instance of this object is incremented when the frameCheckError status is returned by the MAC service to the LLC (or other MAC user).

  • Page 73: Interface Statistics

    Statistics Commands Table 48 Ethernet statistics for port Statistics Description A count of frames received on a particular interface that exceeds dot3StatsFrameTooLongs the maximum permitted frame size. The count represented by an instance of this object is incremented when the frameTooLong status is returned by the MAC service to the LLC (or other MAC user).

  • Page 74: Internet Protocol (ip) Statistics

    Statistics Commands Table 49 Interface statistics for port Statistics Description The total number of packets, delivered by this sublayer. These are the packets that MulticastPkts—IfHCIn higher-level protocols requested to be transmitted, and which were addressed to a multicast address at this sublayer, including those that were discarded or not sent. For a MAC layer protocol, this includes both group and functional addresses.

  • Page 75: Link Statistics, Layer 2 Statistics

    Statistics Commands The following table describes the Internet Protocol (IP) statistics for a selected port: IP statistics for port Table 50 Statistics Description The total number of input datagrams received from interfaces, including those received ipInReceives in error. The number of input datagrams discarded because the IP address in their IP header's ipInHeaderError destination field was not a valid address to be received at this entity (the switch).

  • Page 76: Fdb Statistics, Lacp Statistics, Layer 3 Statistics

    Statistics Commands FDB statistics Use the following command to display statistics regarding the use of the forwarding database, including the number of new entries, finds, and unsuccessful searches: show mac-address-table counters Command mode: All FDB statistics: current: hiwat: These commands enable you to display statistics regarding the use of the forwarding database, including the number of current entries and the maximum number of entries ever recorded.

  • Page 77

    Statistics Commands Table 54 Layer 3 Statistics commands Command Usage Displays route statistics. show ip route counters Command mode: All except User EXEC Displays Address Resolution Protocol (ARP) statistics. show ip arp counters Command mode: All except User EXEC Displays Domain Name System (DNS) statistics. show ip dns counters Command mode: All except User EXEC Displays ICMP statistics.

  • Page 78: Ip Statistics

    Statistics Commands IP statistics The following command displays IP statistics: show ip counters Command mode: All except User EXEC IP statistics: ipInReceives: 36475 ipInHdrErrors: 0 ipInAddrErrors: 905 ipInUnknownProtos: 0 ipInDiscards: 0 ipInDelivers: 4103 ipOutRequests: 30974 ipOutDiscards: 0 ipDefaultTTL: 255 The following table describes the IP statistics: IP statistics Table 55 Statistics...

  • Page 79: Route Statistics, Arp Statistics, Dns Statistics

    Statistics Commands Route statistics The following command displays route statistics: show ip route counters Command mode: All except User EXEC Route statistics: ipRoutesCur: ipRoutesHighWater: ipRoutesMax: 2048 The following table describes the Route statistics: Table 56 Route statistics Statistics Description The total number of outstanding routes in the route table. ipRoutesCur The maximum number of supported routes.

  • Page 80: Icmp Statistics

    Statistics Commands The following table describes the Domain Name System (DNS) statistics: DNS statistics Table 58 Statistic Description The total number of DNS request packets that have been received. dnsInRequests The total number of DNS response packets that have been transmitted. dnsOutRequests The total number of DNS request packets received that were dropped.

  • Page 81: Tcp Statistics

    Statistics Commands Table 59 ICMP statistics Statistics Description The number of ICMP Timestamp (request) messages received. icmpInTimestamps The number of ICMP Timestamp Reply messages received. icmpInTimestampReps The number of ICMP Address Mask Request messages received. icmpInAddrMasks The number of ICMP Address Mask Reply messages received. icmpInAddrMaskReps The total number of ICMP messages which this switch attempted to send.

  • Page 82: Statistics Description

    Statistics Commands The following table describes the Transmission Control Protocol (TCP) statistics: TCP statistics Table 60 Statistics Description The algorithm used to determine the timeout value used for retransmitting unacknowledged tcpRtoAlgorithm octets. The minimum value permitted by a TCP implementation for the retransmission timeout, tcpRtoMin measured in milliseconds.

  • Page 83: Udp Statistics, Igmp Multicast Group Statistics

    Statistics Commands UDP statistics The following command displays UDP statistics: show ip udp counters Command mode: All except User EXEC UDP statistics: udpInDatagrams: udpOutDatagrams: udpInErrors: udpNoPorts: 1578077 The following table describes the User Datagram Protocol (UDP) statistics: Table 61 UDP statistics Statistics Description The total number of UDP datagrams delivered to the switch.

  • Page 84: Ospf Statistics

    Statistics Commands The following table describes the IGMP statistics: IGMP statistics Table 62 Statistic Description Total number of valid IGMP packets received rxIgmpValidPkts Total number of invalid packets received rxIgmpInvalidPkts Total number of General Membership Query packets received rxIgmpGenQueries Total number of Membership Query packets received from specific rxIgmpGrpSpecificQueries groups Total number of Group Source-Specific Queries (GSSQ) received...

  • Page 85: Ospf Global Statistics

    Statistics Commands OSPF global statistics The following command displays OSPF global statistics: show ip ospf counters general Command mode: All except User EXEC OSPF stats ---------- Rx/Tx Stats: -------- -------- Pkts hello database ls requests ls acks ls updates Nbr change stats: Intf change Stats: hello start...

  • Page 86

    Statistics Commands Table 64 OSPF global statistics Statistic Description The sum total of all Database Description packets transmitted on all OSPF areas and Tx Database interfaces. The sum total of all Link State Request packets received on all OSPF areas and interfaces. Rx ls Requests The sum total of all Link State Request packets transmitted on all OSPF areas and Tx ls Requests...

  • Page 87

    Statistics Commands Table 64 OSPF global statistics Statistic Description The sum total number of Hello packets received from neighbors, in which this router is not n1way mentioned across all OSPF interfaces and areas. The sum total number of times the Neighbor adjacency has been reset across all OPSF rst_ad areas and interfaces.

  • Page 88: Vrrp Statistics

    Statistics Commands VRRP statistics Virtual Router Redundancy Protocol (VRRP) support on the HP 1:10GbE switch provides redundancy between routers in a LAN. This is accomplished by configuring the same virtual router IP address and ID number on each participating VRRP-capable routing device. One of the virtual routers is then elected as the master, based on a number of priority criteria, and assumes control of the shared virtual router IP address.

  • Page 89: Rip Statistics, Gea Layer 3 Statistics

    Statistics Commands RIP statistics The following command displays RIP statistics: show ip rip counters Command mode: All except User EXEC RIP ALL STATS INFORMATION: RIP packets received = 12 RIP packets sent = 75 RIP request received = 0 RIP response received = 12 RIP request sent = 3 RIP response sent = 72 RIP route timeout = 0...

  • Page 90: Management Processor Statistics, Packet Statistics

    Statistics Commands Management Processor statistics The following table describes the MP-specific Statistics commands. The following sections provide more detailed information and commands. MP-specific Statistics commands Table 67 Command Usage Displays packet statistics, to check for leads and load. show mp packet Command mode: All Displays all Transmission Control Protocol (TCP) control blocks (TCB) that are in use.

  • Page 91

    Statistics Commands Table 68 MP specific packet statistics Field Description Total number of packet allocations with size less than 128 bytes from the packet smalls buffer pool by the TCP/IP protocol stack. The highest number of packet allocation with size less than 128 bytes from the packet smalls hi-watermark buffer pool by the TCP/IP protocol stack.

  • Page 92: Cpu Statistics, Udp Statistics, Acl Statistics

    Statistics Commands UDP statistics The following command displays UDP statistics: show mp udp-block Command mode: All except User EXEC All UDP allocated control blocks: 161: listen The following table describes the User Datagram Protocol (UDP) control block (UCB) statistics shown in this example: UDP statistics Table 70...

  • Page 93: Snmp Statistics

    Statistics Commands SNMP statistics The following command displays SNMP statistics: show snmp-server counters Command mode: All except User EXEC SNMP statistics: snmpInPkts: snmpInBadVersions: snmpInBadC'tyNames: snmpInBadC'tyUses: snmpInASNParseErrs: snmpEnableAuthTraps: snmpOutPkts: snmpInBadTypes: snmpInTooBigs: snmpInNoSuchNames: snmpInBadValues: snmpInReadOnlys: snmpInGenErrs: snmpInTotalReqVars: snmpInTotalSetVars: snmpInGetRequests: snmpInGetNexts: snmpInSetRequests: snmpInGetResponses: snmpInTraps: snmpOutTooBigs: snmpOutNoSuchNames:...

  • Page 94

    Statistics Commands Table 72 SNMP statistics Statistics Description The total number of SNMP messages which were passed from the SNMP protocol snmpOutPkts entity to the transport service. The total number of SNMP messages which failed ASN.1 parsing. snmpInBadTypes The total number of SNMP Protocol Data Units (PDUs) that were delivered to the SNMP snmpInTooBigs protocol entity and for which the value of the error-status field is too big.

  • Page 95: Ntp Statistics

    Statistics Commands Table 72 SNMP statistics Statistics Description The total number of SNMP Get-Request Protocol Data Units (PDUs), which have been snmpOutGetRequests generated by the SNMP protocol entity. The total number of SNMP Get-Next Protocol Data Units (PDUs), which have been snmpOutGetNexts generated by the SNMP protocol entity.

  • Page 96: Uplink Failure Detection Statistics

    Statistics Commands The following table describes the NTP statistics: NTP statistics Table 73 Statistics Description Requests Sent—The total number of NTP requests the switch sent to Primary Server the primary NTP server to synchronize time. Responses Received—The total number of NTP responses received from the primary NTP server.

  • Page 97: Statistics Dump

    Statistics Commands Statistics dump The following command dumps switch statistics: show counters Use the dump command to dump all switch statistics available (40K or more, depending on your configuration). This data can be used to tune or debug switch performance. If you want to capture dump data to a file, set your communication software on your workstation to capture session data prior to issuing the dump commands.

  • Page 98: Configuration Commands Introduction, Viewing And Saving Changes, Saving The Configuration

    Configuration Commands Configuration Commands Introduction The Configuration commands are available only from an administrator login. They include commands for configuring every aspect of the HP 1:10GbE switch. Changes can be saved to non-volatile memory (NVRAM). The following table describes the basic Configuration commands. The following sections provide more detailed information and commands.

  • Page 99: System Configuration

    Configuration Commands System configuration These commands allow you to configure switch management parameters such as user and administrator privilege mode passwords, browser-based management settings, and management access list. The following table describes the System Configuration commands. System Configuration commands Table 76 Command Usage Prompts the user for the system date.

  • Page 100: System Host Log Configuration

    Configuration Commands Table 76 System Configuration commands Command Usage Allows administrators to assign the Privilege EXEC password. The [no] enable <string> password will be required to enter Privilege EXEC mode. The default value is disabled. Command mode: Global configuration Displays the current system parameters. show system Command mode: All System host log configuration...

  • Page 101: Secure Shell Server Configuration

    Configuration Commands Table 77 Syslog Configuration commands Command Description Displays a list of features for which syslog messages can be [no] logging log {<feature>} generated. You can choose to enable/disable specific features or enable/disable syslog on all available features. Features include: console system mgmt...

  • Page 102: Radius Server Configuration

    Configuration Commands Table 78 SSHD Configuration commands Command Description Defines the administrator password that is for Secure Copy (SCP) only. ssh scp-password The username for this SCP administrator is scpadmin. Typically, SCP is used to copy files securely from one machine to another. In the switch, SCP is used to download and upload the switch configuration using secure channels.

  • Page 103

    Configuration Commands Table 79 RADIUS Server Configuration commands Command Description Sets the secondary RADIUS server address and shared secret [no] radius-server secondary-host <IP address> key <1-32 characters> between the switch and the RADIUS server(s). Command mode: Global configuration Enter the number of the User Datagram Protocol (UDP) port to be radius-server port <UDP port number>...

  • Page 104: Tacacs+ Server Configuration

    Configuration Commands TACACS+ server configuration TACACS+ (Terminal Access Controller Access Control System) is an authentication protocol that allows a remote access server to forward a user's logon password to an authentication server to determine whether access can be allowed to a given system. TACACS+ and Remote Authentication Dial-In User Service (RADIUS) protocols are more secure than the TACACS encryption protocol.

  • Page 105: Ntp Server Configuration

    Configuration Commands Table 80 TACACS+ Server Configuration commands Command Description Enables or disables TACACS+ privilege-level mapping. [no] tacacs-server privilege-mapping The default value is disabled. Command mode: Global configuration Maps a TACACS+ authorization level to a switch user level. tacacs-server user-mapping {<0-15> user|oper|admin} Enter a TACACS+ privilege level (0-15), followed by the corresponding HP 1:10GbE switch user level (user, oper,...

  • Page 106: System Snmp Configuration

    Configuration Commands Table 81 NTP Server Configuration commands Command Description Specifies the interval, in minutes (1-44640), to resynchronize the switch ntp interval <1-44640> clock with the NTP server. The default is 1440 seconds. Command mode: Global configuration Enables the NTP synchronization service. ntp enable Command mode: Global configuration Disables the NTP synchronization service.

  • Page 107: Snmpv3 Configuration

    Configuration Commands Table 82 System SNMP Configuration commands Command Description Configures the name of the system location. The location can have a snmp-server location <1-64 characters> maximum of 64 characters. Command mode: Global configuration Configures the name of the system contact. The contact can have a snmp-server contact <1-64 characters>...

  • Page 108

    Configuration Commands The following table describes the SNMPv3 Configuration commands. SNMPv3 Configuration commands Table 83 Command Description Configures a user security model (USM) entry for an authorized user. You can snmp-server user <1-16> also configure this entry through SNMP. The range is 1-16. Command mode: Global configuration Configures different MIB views.

  • Page 109: User Security Model Configuration

    Configuration Commands User Security Model configuration You can make use of a defined set of user identities using this Security Model. An SNMP engine must have the knowledge of applicable attributes of a user. These commands help you create a user security model entry for an authorized user. You need to provide a security name to create the USM entry.

  • Page 110: Snmpv3 View Configuration, View-based Access Control Model Configuration

    Configuration Commands SNMPv3 View configuration The following table describes the SNMPv3 View Configuration commands. Table 85 SNMPv3 View Configuration commands Command Description Defines the name for a family of view subtrees up to a maximum of 32 snmp-server view <1-128> name characters.

  • Page 111: Snmpv3 Group Configuration

    Configuration Commands Table 86 View-based Access Control Configuration commands Command Description Defines the minimum level of security required to gain access rights. snmp-server access <1-32> level {noAuthNoPriv|authNo- The level noAuthNoPriv means that the SNMP message will be Priv|authPriv} sent without authentication and without using a privacy protocol. The level authNoPriv means that the SNMP message will be sent with authentication but without using a privacy protocol.

  • Page 112: Snmpv3 Community Table Configuration

    Configuration Commands Table 87 SNMPv3 Group Configuration commands Command Description Displays the current vacmSecurityToGroup configuration. show snmp-server group <1-16> Command mode: All SNMPv3 Community Table configuration These commands are used for configuring the community table entry. The configured entry is stored in the community table list in the SNMP engine.

  • Page 113: Snmpv3 Target Address Table Configuration, Snmpv3 Target Parameters Table Configuration

    Configuration Commands SNMPv3 Target Address Table configuration These commands allow you to set passwords and display current user statistics. Passwords can be a maximum of 15 characters. To disable a user, set the password to null. The following table describes the SNMPv3 Target Address Table Configuration commands. SNMPv3 Target Address Table Configuration commands Table 89 Command...

  • Page 114: Snmpv3 Notify Table Configuration

    Configuration Commands Table 90 SNMPv3 Target Parameters Table Configuration commands Command Description Selects the security model to be used when generating the snmp-server target-parameters <1-16> security {usm|snmpv1|snmpv2} SNMP messages. Command mode: Global configuration Defines the name that identifies the user in the USM table, on snmp-server target-parameters <1-16>...

  • Page 115: System Access Configuration, Management Networks Configuration

    Configuration Commands System Access configuration The following table describes the System Access Configuration commands. Table 92 System Access Configuration commands Command Description Enables or disables HTTP (Web) access to the Browser-based Interface. It [no] access http enable is enabled by default. Command mode: Global configuration Sets the switch port used for serving switch Web content.

  • Page 116: User Access Control Configuration, User Id Configuration

    Configuration Commands Table 93 Management Networks Configuration commands Command Description Clears the management network definitions. clear access management-network Command mode: All except User EXEC User Access Control configuration The following table describes the User Access Control commands. Table 94 User Access Control Configuration commands Command Description Configures the User ID.

  • Page 117: Https Access Configuration

    State or Province Name (full name) [ ]: Ontario Locality Name (for example, city) [ ]: Ottawa Organization Name (for example, company) [ ]: Hewlett-Packard Organizational Unit Name (for example, section) [ ]: ProLiant Common Name (for example, user’s name) [ ]: Mr Smith Email (for example, email address) [ ]: info@hp.com...

  • Page 118: Port Configuration

    Configuration Commands Table 96 HTTPS Access Configuration commands Command Description Displays the current SSL Web Access configuration. show access Command mode: All except User EXEC Port configuration Use the port configuration commands to configure settings for individual switch ports. NOTE: Port 18 is reserved for switch management.

  • Page 119: Temporarily Disabling A Port, Port Link Configuration

    Configuration Commands Table 97 Port Configuration commands Command Description Limits the number of unknown unicast packets per second to the specified dest-lookup-threshold {<0-262143>} value. If disabled (dis), the port forwards all unknown unicast packets. Command mode: Interface port Enables the port. no shutdown Command mode: Interface port Disables the port.

  • Page 120: Acl Port Configuration

    Configuration Commands Table 98 Gigabit Link Configuration commands Command Description Sets the operating mode. Not all options are valid on all ports. The choices duplex {full|half|any} include: Full-duplex Half-duplex any for automatic detection (default) NOTE: Ports 19-21 are set to full duplex, and cannot be changed. Command mode: Interface port Sets the flow control.

  • Page 121: Layer 2 Configuration, X Configuration, X Global Configuration

    Configuration Commands Layer 2 configuration The following table describes the Layer 2 Configuration commands. The following sections provide more detailed information and commands. Layer 2 Configuration commands Table 100 Command Description Enter VLAN configuration mode. vlan {<1-4095>} Command mode: Global configuration [no] spanning-tree uplinkfast Enables or disables Fast Uplink Convergence, which provides rapid Spanning Tree convergence to an upstream switch during failover.

  • Page 122

    Configuration Commands 802.1x Global Configuration commands Table 102 Command Description Sets the type of access control for all ports: dot1x mode {[force-unauthorized| auto|force-authorized]} force-unauth—the port is unauthorized unconditionally. auto—the port is unauthorized until it is successfully authorized by the RADIUS server. force-auth—the port is authorized unconditionally, allowing all traffic.

  • Page 123: X Port Configuration

    Configuration Commands 802.1x Port configuration The 802.1x port commands allow you to configure parameters that affect the selected port in the switch. These settings override the global 802.1x parameters. The following table describes the 802.1x Port Configuration commands. 802.1x Port Configuration commands Table 103 Command Description...

  • Page 124: Rapid Spanning Tree Protocol / Multiple Spanning Tree Protocol Configuration

    Configuration Commands Table 103 802.1x Port Configuration commands Command Description Resets the global 802.1x parameters to their default values. default dot1x Command mode: Interface port Applies the global 802.1x parameters to the port. dot1x apply-global Command mode: Interface port Displays current 802.1x parameters. show interface port {<port number>} dot1x Command mode: All...

  • Page 125: Common Internal Spanning Tree Configuration

    Configuration Commands Table 104 Multiple Spanning Tree Configuration commands Command Description Selects the spanning-tree mode, as follows: spanning-tree mode {mst|rstp|pvst} Rapid Spanning Tree mode (rstp) Multiple Spanning Tree mode (mstp) Per VLAN Spanning Tree (pvst) The default mode is pvst. Command mode: Global configuration Displays the current RSTP/MSTP configuration.

  • Page 126: Cist Bridge Configuration

    Configuration Commands Table 105 CIST Configuration commands Command Description Displays the current CIST configuration. show spanning-tree mstp cist Command mode: All CIST bridge configuration CIST bridge parameters are used only when the switch is in MSTP mode. CIST parameters do not affect operation of STP/PVST.

  • Page 127: Cist Port Configuration

    Configuration Commands CIST port configuration CIST port parameters are used to modify MRST operation on an individual port basis. CIST parameters do not affect operation of STP/PVST. For each port, CIST is turned on by default. Port parameters include: Port priority Port path cost Port Hello time Link type...

  • Page 128: Spanning Tree Configuration

    Configuration Commands Table 107 CIST Port Configuration commands Command Description Enables or disables this port as an edge port. An edge port is not [no] spanning-tree mst cist edge connected to a bridge, and can begin forwarding traffic as soon as the link is up.

  • Page 129: Bridge Spanning Tree Configuration

    Configuration Commands Bridge Spanning Tree configuration Spanning tree bridge parameters can be configured for each Spanning Tree Group. STP bridge parameters include: Bridge priority Bridge hello time Bridge maximum age Forwarding delay Current bridge configuration The following table describes the Bridge Spanning Tree Configuration commands. Bridge Spanning Tree Configuration commands Table 109 Command...

  • Page 130: Spanning Tree Port Configuration

    Configuration Commands Table 109 Bridge Spanning Tree Configuration commands Command Description Displays the current bridge STP parameters. show spanning-tree stp {<1-128>} bridge Command mode: All When configuring STP bridge parameters, the following formulas must be used: 2*(fwd-1) ≥ mxage 2*(hello+1) ≤ mxage Spanning Tree port configuration By default for STP/PVST+, Spanning tree is turned Off for downlink ports (1-16), and turned On for cross- connect ports (17), and uplink ports (19-25).

  • Page 131: Forwarding Database Configuration

    Configuration Commands Table 110 Spanning Tree Port Configuration commands Command Description Defines the type of link connected to the port, as follows: spanning-tree stp {<1-128>} link {auto|p2p|shared} auto—Configures the port to detect the link type, and automatically match its settings. p2p—Configures the port for Point-To-Point protocol.

  • Page 132: Static Fdb Configuration, Trunk Configuration

    Configuration Commands Static FDB configuration The following table describes the Static FDB Configuration commands. Table 112 Static FDB Configuration commands Command Description Adds a static entry to the forwarding database. mac-address-table static [<MAC address> <VLAN> <port>] Command mode: Global configuration Deletes a static entry from the forwarding database.

  • Page 133: Layer 2 Ip Trunk Hash Configuration

    Configuration Commands Table 113 Trunk Group Configuration commands Command Description Removes the current trunk group configuration. no portchannel {<1-12>} Command mode: Global configuration Displays current trunk group parameters. show portchannel {<1-12>} Command mode: All Layer 2 IP Trunk Hash configuration Trunk hash parameters are set globally for the HP 1:10GbE switch.

  • Page 134: Link Aggregation Control Protocol Configuration, Lacp Port Configuration

    Configuration Commands Link Aggregation Control Protocol configuration The following table describes the LACP Configuration commands. Table 115 LACP Configuration commands Command Description Defines the priority value (1 through 65535) for the switch. Lower numbers provide lacp system-priority higher priority. The default value is 32768. {<1-65535>} Command mode: Global configuration Defines the timeout period before invalidating LACP data from a remote partner.

  • Page 135: Vlan Configuration

    Configuration Commands VLAN configuration The commands in this section configure VLAN attributes, change the status of the VLAN, delete the VLAN, and change the port membership of the VLAN. By default, the VLANs are disabled except VLAN 1, which is always enabled. The switch supports a maximum of 1,000 VLANs.

  • Page 136: Layer 3 Configuration, Ip Interface Configuration

    Configuration Commands Layer 3 configuration The following table describes basic Layer 3 Configuration commands. The following sections provide more detailed information and commands. L3 Configuration commands Table 118 Command Description Enter IP Interface mode. interface ip {<1-256>} Command mode: Global configuration Enter IP Route Map mode.

  • Page 137: Default Gateway Configuration

    Configuration Commands Table 119 IP Interface Configuration commands Command Description Enables this IP interface. enable Command mode: Interface IP Disables this IP interface. no enable Command mode: Interface IP Removes this IP interface. no interface ip {<1-256>} Command mode: Global configuration Displays the current interface settings.

  • Page 138: Ip Static Route Configuration, Address Resolution Protocol Configuration

    Configuration Commands Table 120 Default IP Gateway Configuration commands Command Description Displays the current gateway settings. show ip gateway {<1-4>} Command mode: All except User EXEC IP Static Route configuration The following table describes the Static Route Configuration commands. Static Route Configuration commands Table 121 Command Description...

  • Page 139: Static Arp Configuration, Ip Forwarding Configuration

    Configuration Commands Static ARP configuration Static ARP entries are permanent in the ARP cache and do not age out like the ARP entries that are learnt dynamically. Static ARP entries enable the switch to reach the hosts without sending an ARP broadcast request to the network.

  • Page 140: Network Filter Configuration, Route Map Configuration

    Configuration Commands Network Filter configuration The following table describes the Network Filter Configuration commands. Table 125 Network Filter Configuration commands Command Description Sets the starting IP address the IP subnet mask for this filter. ip match-address <1-256> <IP address> The default address is 0.0.0.0. <IP netmask>...

  • Page 141: Ip Access List Configuration

    Configuration Commands Table 126 Route Map Configuration commands Command Description Sets the precedence of the route map. The smaller the value, the precedence <1-256> higher the precedence. Default value is 10. Command mode: Route Map Enables the route map. enable Command mode: Route Map Disables the route map.

  • Page 142: Routing Information Protocol Configuration, Rip Interface Configuration

    Configuration Commands Routing Information Protocol configuration The RIP commands are used for configuring Routing Information Protocol parameters. This option is turned off by default. The following table describes the basic RIP Configuration commands. The following section provides more detailed information and commands. RIP Configuration commands Table 128 Command...

  • Page 143

    Configuration Commands Table 129 RIP Interface Configuration commands Command Description When enabled, the switch uses split horizon with poisoned reverse. [no] ip rip poison When disabled, the switch uses only split horizon. This command is disabled by default. Command mode: Interface IP Enables or disables split horizon.

  • Page 144: Rip Route Redistribution Configuration, Open Shortest Path First Configuration

    Configuration Commands RIP Route Redistribution configuration The following table describes the RIP Route Redistribute commands. Table 130 RIP Redistribute commands Command Description Adds selected routing maps to the RIP route redistribution list. This redistribute option adds a route map to the route redistribution list. The routes of {fixed|static|ospf|eospf} <1-32>...

  • Page 145: Osfp Area Index Configuration

    Configuration Commands Table 131 OSPF Configuration commands Command Description Configures an OSPF host route. Up to 128 host routes can be configured. host <1-128> Host routes are used for advertising network device IP addresses to external networks to perform server load balancing within OSPF. It also makes Area Border Route (ABR) load sharing and ABR failover possible.

  • Page 146: Ospf Summary Range Configuration

    Configuration Commands Table 132 OSPF Area Index Configuration commands Command Description Configures a stub area to send a numeric metric value. All routes area <0-2> stub-metric <1-65535> received via that stub area carry the configured metric to potentially influencing routing decisions. Metric value assigns the priority for choosing the switch for default route.

  • Page 147: Ospf Interface Configuration

    Configuration Commands Table 133 OSPF Summary Range Configuration commands Command Description Disables the OSPF summary range. no area-range <1-16> enable Command mode: Router OSPF Deletes the OSPF summary range. no area-range <1-16> Command mode: Router OSPF Displays the current OSPF summary range. show ip ospf area-range <1-16>...

  • Page 148: Ospf Virtual Link Configuration

    Configuration Commands Table 134 OSPF Interface Configuration commands Command Description Disables the OSPF interface. no ip ospf enable Command mode: Interface IP Deletes the OSPF interface. no ip ospf Command mode: Interface IP Displays the current settings for OSPF interface. show interface ip ospf {<1-255>} Command mode: All except User EXEC...

  • Page 149: Ospf Host Entry Configuration, Ospf Route Redistribution Configuration

    Configuration Commands Table 135 OSPF Virtual Link Configuration commands Command Description Displays the current OSPF virtual link settings. show ip ospf area-virtual- link <1-3> Command mode: All except User EXEC OSPF Host Entry configuration The following table describes the OSPF Host Entry Configuration commands. Table 136 OSPF Host Entry Configuration commands Command...

  • Page 150: Ospf Md5 Key Configuration, Igmp Configuration, Igmp Snooping Configuration

    Configuration Commands Table 137 OSPF Route Redistribution Configuration commands Command Description Exports the routes of this protocol as external OSPF AS-external [no] redistribute {fixed|static|rip} export metric <1-16777214> metric- LSAs in which the metric and metric type are specified. type {type1|type2} Command mode: Router OSPF Displays the current route map settings.

  • Page 151

    Configuration Commands Table 139 IGMP Snooping commands Command Description Configures the age-out period for the IGMP Mrouters in the Mrouter ip igmp snoop mrouter-timeout <1-600> table. If the switch does not receive a General Query from the Mrouter for the interval set in the Snoop timeout command, the switch removes the multicast router from its Mrouter table.

  • Page 152: Igmpv3 Snooping Configuration, Igmp Static Multicast Router Configuration

    Configuration Commands IGMPv3 Snooping configuration The following table describes the IGMP version 3 Snooping Configuration commands. Table 140 IGMPv3 Snooping commands Command Description ip igmp snoop igmpv3 sources Configures the maximum number of IGMP multicast sources to snoop <1-64> from within the group record. Use this command to limit the number of IGMP sources to provide more refined control.

  • Page 153: Igmp Filtering Configuration

    Configuration Commands Table 141 IGMP Static Multicast Router commands Command Description Selects a trunk group/VLAN combination on which the static multicast ip igmp mrouter portchannel {<trunk number (1-12)>|<LACP router is connected, and configures the IGMP version (1, 2, or 3) of trunk (13-40>} <1-4094>...

  • Page 154: Igmp Filter Definition, Igmp Filtering Port Configuration

    Configuration Commands IGMP filter definition The following table describes the IGMP Filter Definition commands. Table 143 IGMP Filter Definition commands Command Description Configures the range of IP multicast addresses for this filter. ip igmp profile <1-16> range <IP multicast address> <IP multicast Enter the first IP multicast address of the ranger, followed by the address>...

  • Page 155: Domain Name System Configuration, Bootstrap Protocol Relay Configuration

    Configuration Commands Domain Name System configuration The Domain Name System (DNS) Configuration commands are used for defining the primary and secondary DNS servers on your local network, and for setting the default domain name served by the switch services. DNS parameters must be configured prior to using hostname parameters with the ping, traceroute, and tftp commands.

  • Page 156: Virtual Router Redundancy Protocol Configuration, Rrp Virtual Router Configuration

    Configuration Commands Virtual Router Redundancy Protocol configuration Virtual Router Redundancy Protocol (VRRP) support on the HP 1:10GbE switch provides redundancy between routers in a LAN. This is accomplished by configuring the same virtual router IP address and ID number on each participating VRRP-capable routing device. One of the virtual routers is then elected as the master, based on a number of priority criteria, and assumes control of the shared virtual router IP address.

  • Page 157

    Configuration Commands The following table describes the Virtual Router Configuration commands. Virtual Router Configuration commands Table 148 Command Description Defines the virtual router ID. This is used in conjunction with addr (below) to virtual-router <1-255> define a virtual router on this switch. To create a pool of VRRP-enabled virtual-router-id <1-255>...

  • Page 158: Vrrp Virtual Router Priority Tracking Configuration

    Configuration Commands Table 148 Virtual Router Configuration commands Command Description Enables this virtual router. virtual-router <1-255> enable Command mode: Router VRRP Disables this virtual router. no virtual-router <1-255> enable Command mode: Router VRRP Deletes this virtual router from the switch configuration. no virtual-router <1-255>...

  • Page 159: Vrrp Virtual Router Group Configuration

    Configuration Commands Table 149 Virtual Router Priority Tracking Configuration commands Command Description Displays the current configuration for priority tracking for this virtual router. show ip vrrp virtual-router <1-255> track Command mode: All except User EXEC VRRP Virtual Router Group configuration The Virtual Router Group commands are used for associating all virtual routers into a single logical virtual router, which forces all virtual routers on the switch to either be master or backup as a group.

  • Page 160: Vrrp Virtual Router Group Priority Tracking Configuration, Vrrp Interface Configuration

    Configuration Commands Table 150 Virtual Router Group Configuration commands Command Description Enables the virtual router group. group enable Command mode: Router VRRP Disables the virtual router group. no group enable Command mode: Router VRRP Deletes the virtual router group from the switch configuration. no group Command mode: Router VRRP Displays the current configuration information for the virtual router group.

  • Page 161: Vrrp Tracking Configuration

    Configuration Commands The following table describes the VRRP Interface Configuration commands. VRRP Interface Configuration commands Table 152 Command Description Defines the type of authentication that will be used: none (no authentication), or interface <1-256> authentication password (password authentication). {password|none} Command mode: Router VRRP Defines a plain text password up to eight characters long.

  • Page 162: Quality Of Service Configuration, Qos 802.1p Configuration

    Configuration Commands Quality of Service configuration Use the Quality of Service (QoS) commands to configure the IEEE 802.1p priority value of incoming packets. This allows you to differentiate between various types of traffic, and provide different priority levels. QoS 802.1p configuration This feature provides the HP 1:10GbE switch the capability to filter IP packets based on the IEEE 802.1p bits in the packet's VLAN header.

  • Page 163: Access Control Configuration, Access Control List Configuration, Acl Ethernet Filter Configuration

    Configuration Commands Access Control configuration Use these commands to create Access Control Lists (ACLs) and ACL Groups. ACLs define matching criteria used for IP filtering and Quality of Service functions. Access Control List configuration These commands allow you to define filtering criteria for each Access Control List (ACL). The following table describes the basic ACL Configuration commands.

  • Page 164: Acl Ip Version 4 Filter Configuration

    Configuration Commands Table 156 Ethernet Filter Configuration commands Command Description Defines the Ethernet type for this ACL. access-control list <1-896> ethernet ethernet-type {ARP|IP|IPv6|MPLS| Command mode: Global configuration RARP|any|0xXXXX} Defines the Ethernet priority value for the ACL. access-control list <1-896> ethernet priority <0-7>...

  • Page 165: Acl Tcp/udp Filter Configuration

    Configuration Commands ACL TCP/UDP Filter configuration These commands allow you to define TCP/UDP matching criteria for an ACL. The following table describes the TCP/UDP Filter Configuration commands. TCP/UDP Filter Configuration commands Table 158 Command Description Defines a source port for the ACL. If defined, traffic with the access-control list <1-896>...

  • Page 166: Acl Packet Format Configuration, Acl Metering Configuration

    Configuration Commands ACL Packet Format configuration The following table describes the Packet Format Configuration commands. Table 159 Packet Format Configuration commands Command Description Defines the Ethernet format for the ACL. access-control list <1-896> packet-format ethernet Command mode: Global configuration {ethertype2|snap|llc} Defines the tagging format for the ACL.

  • Page 167: Acl Re-mark Configuration, Acl Re-mark In-profile Configuration

    Configuration Commands ACL Re-mark configuration You can choose to re-mark IP header data for the selected ACL. You can configure different re-mark values, based on whether packets fall within the ACL Metering profile, or out of the ACL Metering profile. The following table describes the ACL Re-mark Configuration commands.

  • Page 168: Re-mark Update User Priority Configuration, Acl Re-mark Out-of-profile Configuration

    Configuration Commands Re-Mark Update User Priority configuration The following table describes the Update User Priority Configuration commands. Table 163 ACL Update User Priority Configuration commands Command Description Defines 802.1p value. The value is the priority bits information in access-control list <1-896> the packet structure.

  • Page 169: Acl Group Configuration, Remote Monitoring Configuration, Rmon History Configuration

    Configuration Commands ACL Group configuration These commands allow you to compile one or more ACLs into an ACL Group. Once you create an ACL Group, you can assign the ACL Group to one or more ports. The following table describes the ACL Group Configuration commands. ACL Group Configuration commands Table 165 Command...

  • Page 170: Rmon Event Configuration

    Configuration Commands Table 167 RMON History commands Command Description Configures the time interval over which the data is sampled for each rmon history <1-65535> polling-interval <1-3600> bucket. The range is from 1 to 3600 seconds. The default value is 1800 seconds. Command mode: Global configuration Enter a text string that identifies the person or entity that uses this history rmon history <1-65535>...

  • Page 171: Rmon Alarm Configuration

    Configuration Commands RMON alarm configuration The Alarm RMON group can track rising or falling values for a MIB object. The MIB object must be a counter, gauge, integer, or time interval. Each alarm index must correspond to an event index that triggers once the alarm threshold is crossed.

  • Page 172: Port Mirroring

    Configuration Commands Table 169 RMON Alarm commands Command Description Enter a text string that identifies the person or entity that uses this alarm rmon alarm <1-65535> owner <1-127 characters> index. The owner can have a maximum of 127 characters. Command mode: Global configuration Deletes this alarm index.

  • Page 173: Port-based Port Mirroring, Uplink Failure Detection Configuration

    Configuration Commands Port-based port mirroring The following table describes the port-based Port Mirroring Configuration commands. Table 171 Port Mirroring Configuration commands Command Description Adds the port to be mirrored. This command also allows you to enter port-mirroring monitor-port the direction of the traffic. It is necessary to specify the direction <port number>...

  • Page 174: Failure Detection Pair Configuration, Link To Monitor Configuration

    Configuration Commands Failure Detection Pair configuration Use these commands to configure a Failure Detection Pair, which consists of one Link to Monitor (LtM) and one Link to Disable (LtD). When the switch detects a failure on the LtM, it automatically disables the ports in the LtD.

  • Page 175: Link To Disable Configuration, Configuration Dump

    Configuration Commands Link to Disable configuration The following table describes the Link to Disable (LtD) commands. The LtD can consist of any mix of downlink ports (ports 1-16) and trunk groups that contain only downlink ports. Link to Disable commands Table 175 Command Description...

  • Page 176: Saving The Active Switch Configuration, Restoring The Active Switch Configuration

    Configuration Commands Saving the active switch configuration When the copy running-global configuration {tftp|ftp} command is used, the active configuration commands of the switch will be uploaded to the specified script configuration file on the FTP/TFTP server. To start the switch configuration upload, at the prompt, enter: Switch(config)# copy running-config startup-config NOTE: The output file is formatted with line-breaks but no carriage returns.

  • Page 177: Operations Commands Introduction, Operations-level Port Options

    Operations Commands Operations Commands Introduction Operations-level commands are used for making immediate and temporary changes to switch configuration. Operations commands are used for bringing ports temporarily in and out of service. These commands are available only from an administrator and operator login. The following table describes basic Operations commands.

  • Page 178: Operations-level Port 802.1x Options, Operations-level Vrrp Options

    Operations Commands Operations-level port 802.1x options Operations-level port 802.1x options are used to temporarily set 802.1x parameters for a port. Table 178 Operations-Level Port 802.1x commands Command Description Re-initializes the 802.1x access-control parameters for the port. The interface port <port following actions take place, number>...

  • Page 179: Updating The Switch Software Image, Introduction, Downloading New Software To The Switch

    Boot Options Boot Options Introduction You must be logged in to the switch as the administrator to use the Boot Options commands. The Boot Options allow you to perform the following functions: Select a switch software image to be used when the switch is next reloaded. Select a configuration block to be used when the switch is next reloaded.

  • Page 180

    Boot Options When the above requirements are met, use the following procedure to download the new software to the HP 1:10GbE switch. In Privileged EXEC mode, enter: Switch# copy tftp {<image1|image2|boot-image>} -or- Switch# copy ftp {<image1|image2|boot-image>} Enter the name of the switch software to be replaced: Enter name of switch software image to be replaced ["image1"/"image2"/"boot"]: <image>...

  • Page 181: Selecting A Software Image To Run, Uploading A Software Image From The Switch

    Boot Options Selecting a software image to run You can select which software image (image1 or image2) you want to run in switch memory for the next reboot. In Global Configuration mode, enter: Router(config)# boot image {image1|image2} Enter the name of the image you want the switch to use upon the next boot. The system informs you of which image is currently set to be loaded at the next reset, and prompts you to enter a new choice: Currently set to use switch software "image1"...

  • Page 182: Selecting A Configuration Block, Resetting The Switch, Accessing The Aos Cli

    Boot Options Selecting a configuration block When you make configuration changes to the switch, you must save the changes so that they are retained beyond the next time the switch is reset. When you execute a save operation (copy running-config startup-config), your new configuration changes are placed in the active configuration block.

  • Page 183: System Maintenance, Introduction

    Maintenance Commands Maintenance Commands Introduction The Maintenance commands are used for debugging purposes, enabling you to generate a technical support dump of the critical state information in the switch, and to clear entries in the Forwarding Database and the Address Resolution Protocol (ARP) and routing tables. These commands are available only from an administrator login.

  • Page 184: Forwarding Database Maintenance, Debugging Options

    Maintenance Commands Forwarding Database maintenance The Forwarding Database (FDB) Manipulation commands can be used to view information and to delete a MAC address from the Forwarding Database or clear the entire Forwarding Database. This is helpful in identifying problems associated with MAC address learning and packet forwarding decisions. The following table describes the FDB Manipulation commands.

  • Page 185: Arp Cache Maintenance

    Maintenance Commands The following table describes the Miscellaneous Debug commands: Miscellaneous Debug commands Table 182 Command Usage Displays the management processor trace buffer. Header information similar to the debug mp-trace following is shown: MP trace buffer at 13:28:15 Fri May 25, 2002; mask: 0x2ffdf748 The buffer information is displayed after the header.

  • Page 186: Igmp Snooping Maintenance, Igmp Mrouter Maintenance

    Maintenance Commands IGMP Snooping maintenance The following table describes the IGMP Snooping Maintenance commands. Table 184 IGMP Snooping Maintenance commands Command Usage Shows a single IGMP Multicast group by IP address. show ip igmp groups address <IP address> Command mode: All except User EXEC Shows IGMP Multicast groups on a single VLAN.

  • Page 187: Uuencode Flash Dump, Ftp/tftp System Dump Put

    Maintenance Commands Uuencode flash dump show flash-dump-uuencode Command mode: All Using this command, dump information is presented in uuencoded format. This format makes it easy to capture the dump information as a file or a string of characters. If you want to capture dump information to a file, set your communication software on your workstation to capture session data prior to issuing the command.

  • Page 188: Clearing Dump Information, Panic Command, Unscheduled System Dumps

    Maintenance Commands Clearing dump information To clear dump information from flash memory, at the prompt, enter: Switch# clear flash-dump The switch clears the dump region of flash memory and displays the following message: FLASH dump region cleared. If the flash dump region is already clear, the switch displays the following message: FLASH dump region is already clear.

  • Page 189

    Index Index interface, 136; VLAN tagging, IGMP Mrouter options, 186 IGMP Snooping options, 186 802.1x information, 34 configuration block, 182 IGMPv3: configuration, 152 802.1x statistics, 68 configuring RMON (remote image: download, 179; software, monitoring), 169 selection, 181 connecting: via console, 10; via abbreviating commands, 17 information dump, 65 Secure Shell (SSH), 11;...

  • Page 190

    Index null modem cable, 10 Secure Shell (SSH): encryption and timeout, radius server, 103 authentication methods, 11 timeouts, idle connection, 13 Secure Shell Server (SSHD) Menu, tnport, system option, 99 online help, 16 trace buffer, 184 operating mode, configuration, 120 shortcuts, 17 transmit flow control, 120 Operations-level port options, 177,...

This manual also for:

1:10gb

Comments to this Manuals

Symbols: 0
Latest comments: