HP 445860-B21 - 10Gb Ethernet BL-c Switch Command Reference Manual

Hp 10gb ethernet bl-c switch command reference guide.
Hide thumbs
HP 10Gb Ethernet BL-c Switch
Part number: 445944-001
First Edition: June 2007

Advertising

   Related Manuals for HP 445860-B21 - 10Gb Ethernet BL-c Switch

   Summary of Contents for HP 445860-B21 - 10Gb Ethernet BL-c Switch

  • Page 1: Command Reference Guide

    HP 10Gb Ethernet BL-c Switch Command Reference Guide Part number: 445944-001 First Edition: June 2007...

  • Page 2

    Legal notices © 2007 Hewlett-Packard Development Company, L.P. The information contained herein is subject to change without notice. The only warranties for HP products and services are set forth in the express warranty statements accompanying such products and services. Nothing herein should be construed as constituting an additional warranty.

  • Page 3: Table Of Contents

    Contents Contents Command line interface Introduction ............................9 Additional references ..........................9 Connecting to the switch ......................... 9 Establishing a console connection ..................... 10 Setting an IP address ........................11 Establishing a Telnet connection......................11 Establishing an SSH connection ......................12 Accessing the switch..........................

  • Page 4: Table Of Contents

    Contents Show last 100 syslog messages ......................36 System user information ........................37 Layer 2 information ..........................38 FDB information menu ........................39 Show all FDB information ......................... 40 Clearing entries from the forwarding database ................40 Link Aggregation Control Protocol information ..................41 LACP dump ..........................

  • Page 5: Table Of Contents

    Contents 802.1x statistics..........................77 Bridging statistics ..........................79 Ethernet statistics ..........................80 Interface statistics ..........................82 Internet Protocol (IP) statistics ......................83 Link statistics ........................... 84 Port RMON statistics........................84 Layer 2 statistics........................... 87 FDB statistics........................... 87 LACP statistics..........................87 Layer 3 statistics...........................

  • Page 6: Table Of Contents

    Contents System SNMP configuration ......................121 SNMPv3 configuration ........................122 User Security Model configuration....................123 SNMPv3 View configuration ..................... 124 View-based Access Control Model configuration................125 SNMPv3 Group configuration ....................126 SNMPv3 Community Table configuration ..................126 SNMPv3 Target Address Table configuration................127 SNMPv3 Target Parameters Table configuration ................

  • Page 7: Table Of Contents

    Contents OSPF Summary Range configuration ..................169 OSPF Interface configuration ......................170 OSPF Virtual Link configuration....................171 OSPF Host Entry configuration ....................172 OSPF Route Redistribution configuration..................172 OSPF MD5 Key configuration....................173 IGMP configuration ........................173 IGMP snooping configuration ....................174 IGMPv3 Snooping configuration ....................

  • Page 8: Table Of Contents

    Contents Operations-level port options ......................207 Operations-level port 802.1x options ....................207 Operations-level VRRP options ......................208 Boot Options Menu Introduction ............................209 Menu information..........................209 Updating the switch software image ..................... 209 Downloading new software to the switch ..................209 Selecting a software image to run ......................

  • Page 9: Introduction, Additional References, Connecting To The Switch

    Command line interface Command line interface Introduction The HP 10Gb Ethernet BL-c Switch is ready to perform basic switching functions right out of the box. Some of the more advanced features, however, require some administrative configuration before they can be used effectively.

  • Page 10: Establishing A Console Connection

    Command line interface Establishing a console connection To establish a console connection with the switch, you need: A null modem cable with a female DB-9 connector (See the HP 10Gb Ethernet BL-c Switch User Guide for more information.) An ASCII terminal or a computer running terminal emulation software set to the parameters shown in the table below Console configuration parameters Table 1...

  • Page 11: Setting An Ip Address, Establishing A Telnet Connection

    Command line interface Setting an IP address To access the switch via a Telnet or an SSH connection, you need to have an Internet Protocol (IP) address set for the switch. The switch can get its IP address in one of the following ways: Management port access: ○...

  • Page 12: Establishing An Ssh Connection

    Command line interface Establishing an SSH connection Although a remote network administrator can manage the configuration of a switch via Telnet, this method does not provide a secure connection. The Secure Shell (SSH) protocol enables you to securely log into the switch over the network. As a secure alternative to using Telnet to manage switch configuration, SSH ensures that all data sent over the network is encrypted and secure.

  • Page 13: Accessing The Switch

    Command line interface Accessing the switch To enable better switch management and user accountability, the switch provides different levels or classes of user access. Levels of access to the CLI and Web management functions and screens increase as needed to perform various switch management tasks. The three levels of access are: User—User interaction with the switch is completely passive;...

  • Page 14: Idle Timeout, Typographical Conventions, Menu Basics

    Command line interface After logging in, the Main Menu of the CLI is displayed. See the “Menu basics” chapter for a summary of the Main Menu options. [Main Menu] info - Information Menu stats - Statistics Menu - Configuration Menu oper - Operations Command Menu boot...

  • Page 15: Main Menu, Introduction, Menu Summary

    Menu basics Menu basics Introduction The AOS CLI is used for viewing switch information and statistics. In addition, the administrator can use the CLI for performing all levels of switch configuration. To make the CLI easy to use, the various commands have been logically grouped into a series of menus and submenus.

  • Page 16: Global Commands

    Menu basics Operations Command Menu Operations-level commands are used for making immediate and temporary changes to switch configuration. This menu is used for bringing ports temporarily in and out of service. This menu is available only from an administrator and operator login. Boot Options Menu The Boot Options Menu is available only from an administrator login.

  • Page 17: Command Action

    Menu basics Table 4 Global commands Command Action Applies pending configuration changes. apply Saves the active configuration to backup, and saves the current configuration as active. save save n saves the current configuration as active, without saving the active configuration to backup.

  • Page 18: Command Line History And Editing

    Menu basics Command line history and editing Using the command line interface, you can retrieve and modify previously entered commands with just a few keystrokes. The following options are available globally at the command line: Command line history and editing options Table 5 Option Description...

  • Page 19: Command Line Interface Shortcuts, Command Stacking, Command Abbreviation, Tab Completion

    Menu basics Command line interface shortcuts The following shortcuts allow you to enter commands quickly and easily. Command stacking As a shortcut, you can type multiple commands on a single line, separated by forward slashes (/). You can connect as many commands as required to access the menu option that you want. For example, the keyboard shortcut to access the Simple Network Management Protocol (SNMP) Configuration Menu from the Main# prompt is: Main# cfg/sys/ssnmp/name...

  • Page 20

    To begin first-time configuration of the switch, perform the following steps. Connect to the switch console. After connecting, the login prompt displays. HP 10Gb Ethernet BL-c Switch Copyright(C)2006 Hewlett-Packard Development Company, L.P. Password: Enter admin as the default administrator password.

  • Page 21: Configuring Simple Network Management Protocol Support, Setting Passwords, Changing The Default Administrator Password

    First-time configuration Configuring Simple Network Management Protocol support NOTE: SNMP support is enabled by default. Use the following command to enable SNMP: >> # /cfg/sys/access/snmp disable|read only|read/write Set SNMP read or write community string. By default, they are public and private respectively: >>...

  • Page 22

    First-time configuration The Configuration Menu is displayed. [Configuration Menu] - System-wide Parameter Menu port - Port Menu - Layer 2 Menu - Layer 3 Menu - QOS Menu - Access Control List Menu rmon - RMON Menu pmirr - Port Mirroring Menu - Uplink Failure Detection Menu dump - Dump current configuration to script file...

  • Page 23: Changing The Default User Password

    First-time configuration Enter the new administrator password, again, at the prompt: Re-enter new administrator password: Apply and save the change by entering the following commands: System# apply System# save Changing the default user password The user login has limited control of the switch. Through a user account, you can view switch information and statistics, but you cannot make configuration changes.

  • Page 24: Changing The Default Operator Password

    First-time configuration Changing the default operator password The operator manages all functions of the switch. The operator can reset ports or the entire switch. Operators can only effect temporary changes on the switch. These changes will be lost when the switch is rebooted/reset.

  • Page 25: Menu Overview, Introduction

    Information Menu Information Menu Introduction You can view configuration information for the switch in the user, operator, and administrator command modes. This chapter discusses how to use the CLI to display switch information. Menu overview Command: /info [Information Menu] - System Information Menu - Layer 2 Information Menu - Layer 3 Information Menu - QoS Menu...

  • Page 26: System Information Menu

    Information Menu Table 6 Information Menu options Command Usage Displays port status information, including: port Port number Whether the port uses VLAN tagging or not Port VLAN ID (PVID) Port name VLAN membership Displays GEA port mapping information, used by service personnel. geaport Displays the status of the Small Form Pluggable (SFP) module on each Fiber External Port.

  • Page 27: Snmpv3 Information Menu

    Information Menu Table 7 System Information Menu options Command Usage Displays 100 most recent syslog messages. Displays the User Access Information Menu. user Dumps all switch information available from the Information Menu (10K or more, depending dump on your configuration). SNMPv3 Information Menu Command: /info/sys/snmpv3 [SNMPv3 Information Menu]...

  • Page 28: Snmpv3 Usm User Table Information

    Information Menu SNMPv3 USM User Table information Command: /info/sys/snmpv3/usm usmUser Table: User Name Protocol -------------------------------- -------------------------------- adminmd5 HMAC_MD5, DES PRIVACY adminsha HMAC_SHA, DES PRIVACY v1v2only NO AUTH, NO PRIVACY The User-based Security Model (USM) in SNMPv3 provides security services such as authentication and privacy of messages.

  • Page 29: Snmpv3 View Table Information

    Information Menu SNMPv3 View Table information Command: /info/sys/snmpv3/view View Name Subtree Mask Type ----------------- ---------------------- ------------- -------- included v1v2only included v1v2only 1.3.6.1.6.3.15 excluded v1v2only 1.3.6.1.6.3.16 excluded v1v2only 1.3.6.1.6.3.18 excluded...

  • Page 30: Snmpv3 Access Table Information

    Information Menu The user can control and restrict the access allowed to a group to only a subset of the management information in the management domain that the group can access within each context by specifying the group’s rights in terms of a particular MIB view for security reasons. The following table describes the SNMPv3 View Table information.

  • Page 31: Snmpv3 Group Table Information, Snmpv3 Community Table Information

    Information Menu SNMPv3 Group Table information Command: /info/sys/snmpv3/group Sec Model User Name Group Name --------- ----------------------------- -------------------- snmpv1 v1v2only v1v2grp adminmd5 admingrp adminsha admingrp A group is a combination of security model and security name that defines the access rights assigned to all the security names belonging to that group.

  • Page 32: Snmpv3 Target Address Table Information, Snmpv3 Target Parameters Table Information

    Information Menu SNMPv3 Target Address Table information Command: /info/sys/snmpv3/taddr Name Transport Addr Port Taglist Params ---------- --------------- ---- ---------- --------------- trap1 47.81.25.66 v1v2trap v1v2param This command displays the SNMPv3 target address table information, which is stored in the SNMP engine. The following table describes the SNMPv3 Target Address Table information.

  • Page 33: Snmpv3 Notify Table Information

    Information Menu SNMPv3 Notify Table information Command: /info/sys/snmpv3/notify Name -------------------- -------------------- v1v2trap v1v2trap The following table describes the SNMPv3 Notify Table information. SNMPv3 Notify Table Table 16 Field Description The locally arbitrary, but unique identifier associated with this snmpNotifyEntry. Name This represents a single tag value which is used to select entries in the snmpTargetAddrTable.

  • Page 34: Snmpv3 Dump

    Information Menu SNMPv3 dump Command: /info/sys/snmpv3/dump Engine ID = 80:00:07:50:03:00:0F:6A:F8:EF:00 usmUser Table: User Name Protocol -------------------------------- -------------------------------- admin NO AUTH, NO PRIVACY adminmd5 HMAC_MD5, DES PRIVACY adminsha HMAC_SHA, DES PRIVACY v1v2only NO AUTH, NO PRIVACY vacmAccess Table: Group Name Prefix Model Level Match ReadV...

  • Page 35: System Information

    Information Menu System information Command: /info/sys/gen System Information at 6:56:22 Thu Jan 11, 2007 Time zone: America/US/Pacific HP 10Gb Ethernet BL-c Switch sysName: MySwitch sysLocation: RackId: Default RUID RackName: MyRack EnclosureSerialNumber: USE6351M46 EnclosureName: 1Z34AB789012 BayNumber: Switch has been up for 3 days, 14 hours, 56 minutes and 22 seconds. Last boot: 17:25:38 Mon Jan 8, 2007 (software reset) MAC address: 00:10:00:01:00:01 IP (If 1) address: 10.14.4.16...

  • Page 36: Show Last 100 Syslog Messages

    Information Menu Show last 100 syslog messages Command: /info/sys/log Date Time Severity level Message ---- ---- ----------------- ------------ Jul 8 17:25:41 NOTICE system: link up on port 1 Jul 8 17:25:41 NOTICE system: link up on port 8 Jul 8 17:25:41 NOTICE system: link up on port 7 Jul 8 17:25:41...

  • Page 37: System User Information

    Information Menu System user information Command: /info/sys/user Usernames: user - enabled oper - disabled admin - Always Enabled Current User ID table: 1: name tech1 , ena, cos user , password valid, online 2: name tech2 , ena, cos user , password valid, offline The following table describes the User Name information.

  • Page 38: Layer 2 Information

    Information Menu Layer 2 information Command: /info/l2 [Layer 2 Menu] - Forwarding Database Information Menu lacp - Link Aggregation Control Protocol Menu 8021x - Show 802.1x information - Show STP information cist - Show CIST information trunk - Show Trunk Group information vlan - Show VLAN information - Show general information...

  • Page 39: Fdb Information Menu

    Information Menu Table 18 Layer 2 Information Menu options Command Usage Displays VLAN configuration information, including: vlan VLAN Number VLAN Name Status Port membership of the VLAN Displays general Layer 2 configuration information. Dumps all switch information available from the Layer 2 menu (10K or more, depending on dump your configuration).

  • Page 40: Show All Fdb Information, Clearing Entries From The Forwarding Database

    Information Menu Table 19 FDB information menu info/12/fdb Command Usage Displays a single database entry by its MAC address. You are prompted find <MAC address> [<VLAN>] to enter the MAC address of the device. Enter the MAC address using the format: xx:xx:xx:xx:xx:xx. (For example: 08:00:20:12:34:56) You can also enter the MAC address using the format: xxxxxxxxxxxx.

  • Page 41: Link Aggregation Control Protocol Information, Lacp Dump

    Information Menu Link Aggregation Control Protocol information Command: /info/l2/lacp [LACP Menu] aggr - Show LACP aggregator information for the port port - Show LACP port information dump - Show all LACP ports information The following table describes the Link Aggregation Control Protocol Menu options. LACP information Table 20 Command...

  • Page 42: X Information

    Information Menu 802.1x information Command: /info/l2/8021x System capability : Authenticator System status : disabled Protocol version Authenticator Backend Port Auth Mode Auth Status PAE State Auth State ---- ------------ ------------ -------------- ---------- force-auth unauthorized initialize initialize force-auth unauthorized initialize initialize force-auth unauthorized initialize...

  • Page 43

    Information Menu Table 21 802.1x information Field Description Displays the Authenticator Port Access Entity State. The PAE state can be one Authenticator PAE State of the following: initialize disconnected connecting authenticating authenticated aborting held forceAuth Displays the Backend Authorization State. The Backend Authorization state Backend Auth State can be one of the following: request...

  • Page 44: Spanning Tree Information

    Information Menu Spanning Tree information Command: /info/l2/stp ------------------------------------------------------------------ upfast disabled, update 40 ------------------------------------------------------------------ Spanning Tree Group 1: On (STP/PVST+) VLANs: 1 Current Root: Path-Cost Port Hello MaxAge FwdDel 8000 00:02:a5:d1:0f:ed Parameters: Priority Hello MaxAge FwdDel Aging 32768 Port Priority Cost FastFwd State Designated Bridge...

  • Page 45: Parameters Description

    Information Menu The switch software uses the IEEE 802.1d Spanning Tree Protocol (STP). If RSTP/MSTP is turned on, see the “Rapid Spanning Tree information” section for Spanning Tree Group information. In addition to seeing if STP is enabled or disabled, you can view the following STP bridge information: Status of Uplink Fast (upfast) Current root MAC address Path-Cost...

  • Page 46: Rapid Spanning Tree And Multiple Spanning Tree Information

    Information Menu Table 22 STP parameters Parameters Description The port priority parameter helps determine which bridge port becomes the designated Priority (port) port. In a network topology that has multiple bridge ports connected to a single segment, the port with the lowest port priority becomes the designated port for the segment.

  • Page 47

    Information Menu The switch software can be set to use the IEEE 802.1w Rapid Spanning Tree Protocol (RSTP) or the IEEE 802.1s Multiple Spanning Tree Protocol (MSTP). If RSTP/MSTP is turned on, you can view the following RSTP bridge information for the Spanning Tree Group: Status of Uplink Fast (upfast) Current root MAC address Path-Cost...

  • Page 48

    Information Menu Table 23 Rapid Spanning Tree parameter descriptions Parameter Description The port priority parameter helps determine which bridge port becomes the designated Priority (port) port. In a network topology that has multiple bridge ports connected to a single segment, the port with the lowest port priority becomes the designated port for the segment.

  • Page 49: Common Internal Spanning Tree Information

    Information Menu Common Internal Spanning Tree information Command: /info/l2/cist Mstp Digest: 0xac36177f50283cd4b83821d8ab26de62 Common Internal Spanning Tree: VLANs MAPPED: 1-16 18-31 33-4094 VLANs: 1 25 26 4095 Current Root: Path-Cost Port MaxAge FwdDel 8000 00:03:42:fa:3b:80 CIST Regional Root: Path-Cost 8000 00:03:42:fa:3b:81 Parameters: Priority MaxAge...

  • Page 50

    Information Menu The following table describes the CIST parameters. Common Internal Spanning Tree parameter description Table 24 Parameter Description Shows information about the root bridge for the Common Internal Spanning Tree (CIST). CIST Root Values on this row of information refer to the CIST root. Shows information about the root bridge for this MSTP region.

  • Page 51: Trunk Group Information, Vlan Information

    Information Menu Trunk group information Command: /info/l2/trunk Trunk group 1, Enabled port state: 20: STG 1 forwarding 21: STG 1 forwarding When trunk groups are configured, you can view the state of each port in the various trunk groups. NOTE: If Spanning Tree Protocol on any port in the trunk group is set to forwarding, the remaining ports in the trunk group will also be set to forwarding.

  • Page 52: Layer 2 General Information

    Information Menu Layer 2 general information Command: /info/l2/gen STP uplink fast mode : disabled The following table describes the Layer 2 general information. L2 general information Table 25 Field Description Displays the status of STP Uplink Fast: enabled or disabled. STP uplink fast mode...

  • Page 53: Layer 3 Information

    Information Menu Layer 3 information Command: /info/l3 [Layer 3 Menu] route - IP Routing Information Menu - ARP Information Menu ospf - OSPF Routing Information Menu - RIP Routing Information Menu - Show IP information igmp - Show IGMP Snooping Multicast Group information vrrp - Show Virtual Router Redundancy Protocol information dump...

  • Page 54: Route Information

    Information Menu Route information Command: /info/l3/route [IP Routing Menu] find - Show a single route by destination IP address - Show routes to a single gateway type - Show routes of a single type - Show routes of a single tag - Show routes on a single interface dump - Show all routes...

  • Page 55: Show All Ip Route Information

    Information Menu Show all IP Route information Command: /info/l3/route/dump Status code: * - best Destination Mask Gateway Type Metr If --------------- --------------- --------------- --------- --------- ---- -- * 11.0.0.0 255.0.0.0 11.0.0.1 direct fixed * 11.0.0.1 255.255.255.255 11.0.0.1 local addr * 11.255.255.255 255.255.255.255 11.255.255.255 broadcast...

  • Page 56: Arp Information, Show All Arp Entry Information

    Information Menu ARP information Command: /info/arp [Address Resolution Protocol Menu] find - Show a single ARP entry by IP address port - Show ARP entries on a single port vlan - Show ARP entries on a single VLAN addr - Show ARP entries for switch's interfaces dump - Show all ARP entries The Address Resolution Protocol (ARP) information includes IP address and MAC address of each entry,...

  • Page 57: Arp Address List Information, Ospf Information

    Information Menu ARP address list information Command: /info/arp/addr IP address IP mask MAC address VLAN Flags --------------- --------------- ----------------- ---- ----- 205.178.18.66 255.255.255.255 00:70:cf:03:20:04 205.178.50.1 255.255.255.255 00:70:cf:03:20:06 205.178.18.64 255.255.255.255 00:70:cf:03:20:05 This screen displays all entries in the ARP cache. OSPF information Command: /info/l3/ospf [OSPF Information Menu] general...

  • Page 58: Ospf General Information, Ospf Interface Information

    Information Menu OSPF general information Command: /info/l3/ospf/general OSPF Version 2 Router ID: 10.10.10.1 Started at 1663 and the process uptime is 4626 Area Border Router: yes, AS Boundary Router: no LS types supported are 6 External LSA count 0 External LSA checksum sum 0x0 Number of interfaces in this router is 2 Number of virtual links in this router is 1 16 new lsa received and 34 lsa originated from this router...

  • Page 59: Ospf Database Information Menu

    Information Menu OSPF Database information menu Command: /info/l3/ospf/dbase [OSPF Database Menu] advrtr - LS Database info for an Advertising Router asbrsum - ASBR Summary LS Database info dbsumm - LS Database summary - External LS Database info - Network LS Database info nssa - NSSA External LS Database info - Router LS Database info...

  • Page 60: Ospf Route Codes Information, Routing Information Protocol Information

    Information Menu Table 33 OSPF Database information Command Usage Displays the router (type 1) LSAs with detailed information of each rtr <adv-rtr (A.B.C.D)>| <link_state_id (A.B.C.D)>|<self> field of the LSAs. The usage of this command is the same as the usage of the command asbrsum. Displays all the self-advertised LSAs.

  • Page 61: Rip Routes Information, Rip User Configuration

    Information Menu Table 34 RIP information Command Usage Displays RIP user’s configuration. Enter 0 (zero) for all interfaces. dump <0-249> RIP Routes information Command: /info/l3/rip/routes >> IP Routing# /info/l3/rip/routes 3.0.0.0/8 via 30.1.1.11 metric 4 4.0.0.0/16 via 30.1.1.11 metric 16 10.0.0.0/8 via 30.1.1.2 metric 3 20.0.0.0/8 via 30.1.1.2 metric 2 This table contains all dynamic routes learned through RIP, including the routes that are undergoing garbage collection with metric = 16.

  • Page 62: Ip Information, Igmp Multicast Group Information

    Information Menu IP information Command: /info/l3/ip IP information: Interface information: 1: 10.80.23.243 255.255.254.0 10.80.23.255, vlan 1, up 250: 10.20.7.144 255.255.0.0 10.20.255.255, vlan 4095, up Default gateway information: metric strict 1: 10.80.22.1, vlan any, active 254: 10.20.1.1, vlan 4095, up active Current BOOTP relay settings: OFF 0.0.0.0, 0.0.0.0 Current IP forwarding settings: OFF, dirbr disabled...

  • Page 63: Igmp Group Information

    Information Menu Table 35 IGMP Multicast Group menu options Command Usage Displays the Multicast Router Menu. mrouter Displays a single IGMP multicast group by its IP address. find <IP address> Displays all IGMP multicast groups on a single VLAN. vlan <1-4094> Displays all IGMP multicast groups on a single port.

  • Page 64: Igmp Multicast Router Information, Vrrp Information

    Information Menu IGMP multicast router information Command: /info/l3/igmp/mrouter [IGMP Multicast Router Menu] vlan - Show all multicast router ports on a single vlan dump - Show all learned multicast router ports The following table describes the commands used to display information about multicast routers learned through IGMP Snooping.

  • Page 65

    Information Menu When virtual routers are configured, you can view the status of each virtual router using this command. VRRP information includes: Virtual router number Virtual router ID and IP address Interface number Ownership status ○ owner identifies the preferred master virtual router. A virtual router is the owner when the IP address of the virtual router and its IP interface are the same.

  • Page 66: Qos Information, P Information

    Information Menu QoS information Command: /info/qos [QoS Menu] 8021p - Show QOS 802.1p information The following table describes the commands used to display Quality of Service (QoS) information. QoS menu options Table 37 Command Usage Displays the QoS 802.1p Information Menu. 8021p 802.1p information Command: /info/qos/8021p...

  • Page 67

    Information Menu Field Description Displays the port number. Port Displays the 802.1p Priority level. Priority Displays the Class of Service queue. Cosq Displays the scheduling weight. Weight...

  • Page 68: Acl Information, Rmon Information Menu, Rmon History Information

    Information Menu ACL information Command: /info/acl Current ACL information: ------------------------ Filter 1 profile: Ethernet - VID : 1/0xfff Actions : Set COS to 0 Filter 2 profile: Ethernet - VID : 1/0xfff Actions : Permit No ACL groups configured. Access Control List (ACL) information provides configuration parameters for each Access Control List. It also shows which ACLs are included in each ACL Group.

  • Page 69: Rmon Alarm Information

    Information Menu The following table describes the RMON History Information parameters. Table 41 RMON History Information Menu /info/rmon/hist Command Usage Displays the index number that identifies each history instance. Index Displays the MIB Object Identifier. IFOID Displays the time interval for each sampling bucket. Interval Displays the number of requested buckets, which is the number of data slots into which Rbnum...

  • Page 70: Rmon Event Information

    Information Menu The following table describes the RMON Alarm Information parameters. Table 42 RMON Alarm Information Menu /info/rmon/alarm Command Usage Displays the index number that identifies each alarm instance. Index Displays the time interval over which data is sampled and compared with the rising and Interval falling thresholds.

  • Page 71: Link Status Information

    Information Menu RMON Event Information Menu /info/rmon/event Table 43 Command Usage Displays the time that passed since the last switch reboot, when the most recent event Last Sent was triggered. This value is cleared when the switch reboots. Displays a text description of the event. Description Link status information Command: /info/link...

  • Page 72: Port Information

    Information Menu Port information Command: /info/port Port Tag RMON PVID NAME VLAN(s) ---- --- ---- ---- -------------- ------------------------------- 1 Downlink1 1 Downlink2 1 Downlink3 1 Downlink4 1 Downlink5 1 Downlink6 1 Downlink7 1 Downlink8 1 Downlink9 1 Downlink10 1 Downlink11 1 Downlink12 1 Downlink13 1*Downlink14...

  • Page 73: Logical Port To Gea Port Mapping, Fiber Port Sfp Status

    Information Menu Logical Port to GEA Port mapping Command: /info/geaport Logical Port GEA Port(0-based) GEA Unit ------------ ----------------- --------- This display correlates the logical port number to the GEA unit on which each port resides. Fiber Port SFP status Command: /info/sfp ------------------------------------------ Port Device TX-Enable RX-Signal TX-Fault...

  • Page 74: Uplink Failure Detection Information, Information Dump

    Information Menu Uplink Failure Detection information Command: /info/ufd Uplink Failure Detection: Enabled LtM status: Down Member STG State Link Status --------- ------------ ----------- port 20 down DISABLED DISABLED * DISABLED * * = STP turned off for this port. LtD status: Auto Disabled Member Link Status ---------...

  • Page 75: Menu Information, Introduction

    Statistics Menu Statistics Menu Introduction You can view switch performance statistics in the user, operator, and administrator command modes. This chapter discusses how to use the CLI to display switch statistics. Menu information Command: /stats [Statistics Menu] port - Port Stats Menu clrports - Clear stats for all ports - Layer 2 Stats Menu - Layer 3 Stats Menu...

  • Page 76: Port Statistics Menu

    Statistics Menu Table 44 Statistics Menu options Command Usage Clears all Management Processor statistics. clrmp Dumps all switch statistics. Use this command to gather data for tuning and debugging dump switch performance. If you want to capture dump data to a file, set your communication software on your workstation to capture session data prior to issuing the dump command.

  • Page 77: X Statistics

    Statistics Menu 802.1x statistics Command: /stats/port <port number>/8021x Authenticator Statistics: eapolFramesRx eapolFramesTx eapolStartFramesRx eapolLogoffFramesRx eapolRespIdFramesRx eapolRespFramesRx eapolReqIdFramesTx eapolReqFramesTx invalidEapolFramesRx eapLengthErrorFramesRx = 0 lastEapolFrameVersion lastEapolFrameSource = 00:00:00:00:00:00 Authenticator Diagnostics: authEntersConnecting authEapLogoffsWhileConnecting authEntersAuthenticating authSuccessesWhileAuthenticating authTimeoutsWhileAuthenticating authFailWhileAuthenticating authReauthsWhileAuthenticating authEapStartsWhileAuthenticating authEapLogoffWhileAuthenticating authReauthsWhileAuthenticated authEapStartsWhileAuthenticated authEapLogoffWhileAuthenticated backendResponses backendAccessChallenges backendOtherRequestsToSupplicant...

  • Page 78

    Statistics Menu Table 46 802.1x statistics for port Statistics Port Total number of times that the state machine transitions from authSuccessesWhileAuthenticating AUTHENTICATING to AUTHENTICATED, as a result of the Backend Authentication state machine indicating successful authentication of the Supplicant. Total number of times that the state machine transitions from authTimeoutsWhileAuthenticating AUTHENTICATING to ABORTING, as a result of the Backend Authentication state machine indicating authentication timeout.

  • Page 79: Bridging Statistics

    Statistics Menu Table 46 802.1x statistics for port Statistics Port Total number of times that the state machine receives an Accept backendAuthSuccesses message from the Authentication Server. Indicates that the Supplicant has successfully authenticated to the Authentication Server. Total number of times that the state machine receives a Reject backendAuthFails message from the Authentication Server.

  • Page 80: Ethernet Statistics

    Statistics Menu Ethernet statistics Command: /stats/port <port number>/ether Ethernet statistics for port 1: dot3StatsAlignmentErrors: dot3StatsFCSErrors: dot3StatsSingleCollisionFrames: dot3StatsMultipleCollisionFrames: dot3StatsLateCollisions: dot3StatsExcessiveCollisions: dot3StatsInternalMacTransmitErrors: dot3StatsFrameTooLongs: dot3StatsInternalMacReceiveErrors: The following table describes the Ethernet statistics for a selected port: Table 48 Ethernet statistics for port Statistics Description A count of frames received on a particular interface that are not dot3StatsAlignmentErrors...

  • Page 81

    Statistics Menu Table 48 Ethernet statistics for port Statistics Description A count of successfully transmitted frames on a particular interface dot3StatsMultipleCollisionFrames for which transmission is inhibited by more than one collision. A frame that is counted by an instance of this object is also counted by the corresponding instance of either the ifOutUcastPkts, ifOutMulticastPkts, or ifOutBroadcastPkts, and is not counted by the...

  • Page 82: Interface Statistics

    Statistics Menu Table 48 Ethernet statistics for port Statistics Description A count of frames for which reception on a particular interface dot3StatsInternalMacReceiveErrors fails due to an internal MAC sublayer receive error. A frame is only counted by an instance of this object if it is not counted by the corresponding instance of the dot3StatsFrameTooLongs object, the dot3StatsAlignmentErrors object, or the...

  • Page 83: Internet Protocol (ip) Statistics

    Statistics Menu Table 49 Interface statistics for port Statistics Description For packet-oriented interfaces, the number of inbound packets that contained Errors—IfHCIn errors preventing them from being delivered to a higher-layer protocol. For character-oriented or fixed-length interfaces, the number of inbound transmission units that contained errors preventing them from being deliverable to a higher-layer protocol.

  • Page 84: Link Statistics, Port Rmon Statistics

    Statistics Menu Table 50 IP statistics for port Statistics Description The number of input IP datagrams for which no problems were encountered to prevent ipInDiscards their continued processing, but which were discarded (for example, for lack of buffer space). Note that this counter does not include any datagrams discarded while awaiting re-assembly.

  • Page 85

    Statistics Menu Table 52 RMON statistics Statistics Description The total number of octets of data (including those in bad packets) etherStatsOctets received on the network (excluding framing bits but including FCS octets). The total number of packets (including bad packets, broadcast packets, etherStatsPkts and multicast packets) received.

  • Page 86

    Statistics Menu Table 52 RMON statistics Statistics Description The total number of packets (including bad packets) received that were etherStatsPkts256to511Octets greater than 255 octets in length (excluding framing bits but including FCS octets). The total number of packets (including bad packets) received that were etherStatsPkts512to1023Octets greater than 511 octets in length (excluding framing bits but including FCS octets).

  • Page 87: Layer 2 Statistics, Fdb Statistics, Lacp Statistics

    Statistics Menu Layer 2 statistics Command: /stats/l2 [Layer 2 Statistics Menu] - Show FDB stats lacp - Show LACP stats The following table describes the Layer 2 Statistics Menu options. Layer 2 Statistics Menu options Table 53 Command Usage Displays the Forwarding Database statistics menu. Displays the Link Aggregation Control Protocol statistics menu.

  • Page 88: Layer 3 Statistics

    Statistics Menu Layer 3 statistics Command: /stats/l3 [Layer 3 Statistics Menu] geal3 - GEA Layer 3 Stats Menu - Show IP stats route - Show route stats - Show ARP stats - Show DNS stats icmp - Show ICMP stats - Show TCP stats - Show UDP stats igmp...

  • Page 89: Gea Layer 3 Statistics Menu, Gea Layer 3 Statistics

    Statistics Menu Table 55 Layer 3 Statistics Menu options Command Usage Displays the total number of Internet Group Management Protocol (IGMP) igmpgrps groups registered the switch. Displays the total number of Internet Protocol Multicast (IPMC) groups ipmcgrps registered on the switch. Clears all IGMP statistics for the selected VLANs.

  • Page 90: Ip Statistics

    Statistics Menu IP statistics Command: /stats/l3/ip IP statistics: ipInReceives: 36475 ipInHdrErrors: 0 ipInAddrErrors: 905 ipInUnknownProtos: 0 ipInDiscards: 0 ipInDelivers: 4103 ipOutRequests: 30974 ipOutDiscards: 0 ipDefaultTTL: 255 The following table describes the IP statistics: IP statistics Table 57 Statistics Description The total number of input datagrams received from interfaces, including those ipInReceives received in error.

  • Page 91: Route Statistics, Arp Statistics, Dns Statistics

    Statistics Menu Route statistics Command: /stats/l3/route Route statistics: ipRoutesCur: ipRoutesHighWater: ipRoutesMax: 4096 The following table describes the Route statistics: Route statistics Table 58 Statistics Description The total number of outstanding routes in the route table. ipRoutesCur The maximum number of supported routes. ipRoutesMax The highest number of routes ever recorded in the route table.

  • Page 92: Icmp Statistics

    Statistics Menu ICMP statistics Command: /stats/l3/icmp ICMP statistics: icmpInMsgs: 245802 icmpInErrors: 1393 icmpInDestUnreachs: icmpInTimeExcds: icmpInParmProbs: icmpInSrcQuenchs: icmpInRedirects: icmpInEchos: icmpInEchoReps: 244350 icmpInTimestamps: icmpInTimestampReps: icmpInAddrMasks: icmpInAddrMaskReps: icmpOutMsgs: 253810 icmpOutErrors: icmpOutDestUnreachs: icmpOutTimeExcds: icmpOutParmProbs: icmpOutSrcQuenchs: icmpOutRedirects: icmpOutEchos: 253777 icmpOutEchoReps: icmpOutTimestamps: icmpOutTimestampReps: icmpOutAddrMasks: icmpOutAddrMaskReps: The following table describes the Internet Control Messaging Protocol (ICMP) statistics: Table 61 ICMP statistics Statistics...

  • Page 93: Tcp Statistics

    Statistics Menu Table 61 ICMP statistics Statistics Description The number of ICMP Destination Unreachable messages sent. icmpOutDestUnreachs The number of ICMP Time Exceeded messages sent. icmpOutTimeExcds The number of ICMP Parameter Problem messages sent. icmpOutParmProbs The number of ICMP Source Quench (buffer almost full, stop sending data) icmpOutSrcQuenchs messages sent.

  • Page 94: Udp Statistics

    Statistics Menu Table 62 TCP statistics Statistics Description The limit on the total number of TCP connections the switch can support. In entities tcpMaxConn where the maximum number of connections is dynamic, this object should contain the value -1. The number of times TCP connections have made a direct transition to the SYN-SENT tcpActiveOpens state from the CLOSED state.

  • Page 95: Igmp Multicast Group Statistics

    Statistics Menu Table 63 UDP statistics Statistics Description The total number of received UDP datagrams for which there was no application udpNoPorts at the destination port. IGMP Multicast Group statistics Command: /stats/l3/igmp <VLAN number> ------------------------------------------------------------ IGMP Snoop vlan 1 statistics: ------------------------------------------------------------ rxIgmpValidPkts: rxIgmpInvalidPkts:...

  • Page 96: Ospf Statistics Menu

    Statistics Menu OSPF statistics menu Command: /stats/l3/ospf [OSPF stats Menu] general - Show global stats aindex - Show area(s) stats - Show interface(s) stats The following table describes the OSPF statistics menu options. OSPF statistics menu options Table 65 Command Usage Displays OSPF global statistics.

  • Page 97: Ospf Global Statistics

    Statistics Menu OSPF global statistics Command: /stats/l3/ospf/general OSPF stats ---------- Rx/Tx Stats: -------- -------- Pkts hello database ls requests ls acks ls updates Nbr change stats: Intf change Stats: hello start down 2 n2way loop 0 adjoint ok unloop 0 negotiation done wait timer 2 exchange done...

  • Page 98

    Statistics Menu Table 66 OSPF global statistics Statistic Description The sum total of all Link State Request packets transmitted on all OSPF areas and Tx ls Requests interfaces. The sum total of all Link State Acknowledgement packets received on all OSPF areas Rx ls Acks and interfaces.

  • Page 99

    Statistics Menu Table 66 OSPF global statistics Statistic Description The sum total number of times the Neighbor adjacency has been reset across all OPSF rst_ad areas and interfaces. The total number of Neighboring routers down (that is, in the initial state of a down neighbor conversation) across all OSPF areas and interfaces.

  • Page 100: Vrrp Statistics

    Statistics Menu VRRP statistics Virtual Router Redundancy Protocol (VRRP) support on the HP 10GbE switch provides redundancy between routers in a LAN. This is accomplished by configuring the same virtual router IP address and ID number on each participating VRRP-capable routing device. One of the virtual routers is then elected as the master, based on a number of priority criteria, and assumes control of the shared virtual router IP address.

  • Page 101: Rip Statistics, Management Processor Statistics

    Statistics Menu RIP statistics Command: /stats/l3/rip RIP ALL STATS INFORMATION: RIP packets received = 12 RIP packets sent = 75 RIP request received = 0 RIP response received = 12 RIP request sent = 3 RIP response sent = 72 RIP route timeout = 0 RIP bad size packet received = 0 RIP bad version received = 0...

  • Page 102: Packet Statistics

    Statistics Menu Packet statistics Command: /stats/mp/pkt Packet counts: allocs: 36692 frees: 36692 mediums: mediums hi-watermark: jumbos: jumbos hi-watermark: smalls: smalls hi-watermark: failures: The following table describes the packet statistics. MP specific packet statistics Table 69 Description Example statistic allocs Total number of packet allocations from the packet buffer pool by the TCP/IP protocol stack.

  • Page 103

    Statistics Menu TCP statistics Command: /stats/mp/tcb All TCP allocated control blocks: 10ad41e8: 0.0.0.0 0 <=> 0.0.0.0 listen 10ad5790: 47.81.27.5 1171 <=> 47.80.23.243 established The following table describes the Transmission Control Protocol (TCP) control block (TCB) statistics shown in this example: TCP statistics Table 70 Description...

  • Page 104: Cpu Statistics, Access Control List (acl) Statistics Menu, Acl Statistics

    Statistics Menu CPU statistics Command: /stats/mp/cpu CPU utilization: cpuUtil1Second: cpuUtil4Seconds: cpuUtil64Seconds: The following table describes the management port CPU utilization statistics: CPU statistics Table 72 Statistics Description The utilization of MP CPU over 1 second. This is shown as a percentage. cpuUtil1Second The utilization of MP CPU over 4 seconds.

  • Page 105: Snmp Statistics

    Statistics Menu SNMP statistics Command: /stats/snmp SNMP statistics: snmpInPkts: snmpInBadVersions: snmpInBadC'tyNames: snmpInBadC'tyUses: snmpInASNParseErrs: snmpEnableAuthTraps: snmpOutPkts: snmpInBadTypes: snmpInTooBigs: snmpInNoSuchNames: snmpInBadValues: snmpInReadOnlys: snmpInGenErrs: snmpInTotalReqVars: snmpInTotalSetVars: snmpInGetRequests: snmpInGetNexts: snmpInSetRequests: snmpInGetResponses: snmpInTraps: snmpOutTooBigs: snmpOutNoSuchNames: snmpOutBadValues: snmpOutReadOnlys: snmpOutGenErrs: snmpOutGetRequests: snmpOutGetNexts: snmpOutSetRequests: snmpOutGetResponses: snmpOutTraps: snmpSilentDrops: snmpProxyDrops: The following table describes the Simple Network Management Protocol (SNMP) statistics: SNMP statistics Table 74...

  • Page 106: Statistics Description

    Statistics Menu Table 74 SNMP statistics Statistics Description The total number of SNMP messages which failed ASN.1 parsing. snmpInBadTypes The total number of SNMP Protocol Data Units (PDUs) that were delivered to the SNMP snmpInTooBigs protocol entity and for which the value of the error-status field is too big. The total number of SNMP Protocol Data Units (PDUs) that were delivered to the SNMP snmpInNoSuchNames protocol entity and for which the value of the error-status field is noSuchName.

  • Page 107: Ntp Statistics

    Statistics Menu Table 74 SNMP statistics Statistics Description The total number of SNMP Get-Next Protocol Data Units (PDUs), which have been snmpOutGetNexts generated by the SNMP protocol entity. The total number of SNMP Set-Request Protocol Data Units (PDUs), which have been snmpOutSetRequests generated by the SNMP protocol entity.

  • Page 108

    Statistics Menu The following table describes the NTP statistics: NTP statistics Table 75 Statistics Description Requests Sent—The total number of NTP requests the switch sent to Primary Server the primary NTP server to synchronize time. Responses Received—The total number of NTP responses received from the primary NTP server.

  • Page 109: Uplink Failure Detection Statistics, Statistics Dump

    Statistics Menu Uplink Failure Detection statistics This menu option allows you to display Uplink Failure Detection (UFD) statistics. To reset UFD statistics, follow the command /stats/ufd with the following argument: clear. Command: /stats/ufd Uplink Failure Detection statistics: Number of times LtM link failure: 1 Number of times LtM link in Blocking State: 0 Number of times LtD got auto disabled: 1 The following table describes the Uplink Failure Detection (UFD) statistics:...

  • Page 110: Configuration Menu Introduction, Menu Information

    Configuration Menu Configuration Menu Introduction The Configuration Menu is only available from an administrator login. It includes submenus for configuring every aspect of the switch. Changes to configuration are not active until explicitly applied. Changes can be saved to non-volatile memory (NVRAM). Menu information Command: /cfg [Configuration Menu]...

  • Page 111: Viewing, Applying, Reverting, And Saving Changes, Viewing Pending Changes, Applying Pending Changes, Reverting Changes

    Configuration Menu Table 77 Configuration Menu options Command Usage Restores current configuration from FTP/TFTP server. gtcfg <host name or IP address of FTP/TFTP server> <filename on host> Displays the current configuration parameters. Viewing, applying, reverting, and saving changes As you use the configuration menus to set switch parameters, the changes you make do not take effect immediately.

  • Page 112: Saving The Configuration, Reminders

    Configuration Menu Saving the configuration In addition to applying the configuration changes, you can save them to flash memory on the switch. IMPORTANT: If you do not save the changes, they will be lost the next time the system is rebooted.

  • Page 113: System Configuration

    Configuration Menu System configuration Command: /cfg/sys [System Menu] syslog - Syslog Menu sshd - SSH Server Menu radius - RADIUS Authentication Menu tacacs+ - TACACS+ Authentication Menu - NTP Server Menu ssnmp - System SNMP Menu access - System Access Menu date - Set system date time...

  • Page 114: System Host Log Configuration

    Configuration Menu Table 78 System Configuration Menu options Command Usage Enables or disables daylight savings time in the system clock. When enabled, dlight enable|disable the switch adds an extra hour to the system clock so that it is consistent with the local clock.

  • Page 115

    Configuration Menu The following table describes the Syslog Configuration Menu options. Syslog Configuration Menu options Table 79 Command Description Sets the IP address of the first syslog host. For example, 100.10.1.1. host <IP address> Sets the IP address of the second syslog host. For example, 100.10.1.2. host2 <IP address>...

  • Page 116: Secure Shell Server Configuration

    Configuration Menu Secure Shell Server configuration Command: /cfg/sys/sshd [SSHD Menu] interval– Set Interval for generating the RSA server key scpadm – Set SCP-only admin password hkeygen - Generate the RSA host key skeygen - Generate the RSA server key sshport - Set SSH server port number - Enable the SCP apply and save - Disable the SCP apply and save - Turn SSH server ON...

  • Page 117: Radius Server Configuration

    Configuration Menu Table 80 SSHD Configuration Menu options Command Description Disables the SSH server. This is the default for the SSH server. Displays the current SSH server configuration. RADIUS server configuration Command: /cfg/sys/radius [RADIUS Server Menu] prisrv - Set primary RADIUS server address secsrv - Set secondary RADIUS server address secret...

  • Page 118: Tacacs+ Server Configuration

    Configuration Menu Table 81 RADIUS Server Configuration Menu options Command Description Enables the RADIUS server. Disables the RADIUS server. This is the default. Displays the current RADIUS server parameters. IMPORTANT: If RADIUS is enabled, you must login using RADIUS authentication when connecting via the console or Telnet/SSH/HTTP/HTTPS.

  • Page 119

    Configuration Menu TACACS+ offers the following advantages over RADIUS as the authentication device: TACACS+ is TCP-based, so it facilitates connection-oriented traffic. It supports full-packet encryption, as opposed to password-only in authentication requests. It supports decoupled authentication, authorization, and accounting. The following table describes the TACACS+ Server Configuration Menu options. TACACS+ Server Configuration Menu options Table 82 Command...

  • Page 120: Ntp Server Configuration

    Configuration Menu If secure backdoor is enabled (secbd ena), type in notacacs as a backdoor to bypass TACACS+ checking, and use the administrator password to log into the switch. The switch allows this only if TACACS+ servers are not available. NTP server configuration Command: /cfg/sys/ntp [NTP Server Menu]...

  • Page 121: System Snmp Configuration

    Configuration Menu System SNMP configuration Command: /cfg/sys/ssnmp [SNMP Menu] snmpv3 - SNMPv3 Menu name - Set SNMP "sysName" locn - Set SNMP "sysLocation" cont - Set SNMP "sysContact" rcomm - Set SNMP read community string wcomm - Set SNMP write community string timeout - Set timeout for the SNMP state machine auth...

  • Page 122: Snmpv3 Configuration

    Configuration Menu Table 84 System SNMP Configuration Menu options Command Description Configures the SNMP read community string. The read community string rcomm <1-32 characters> controls SNMP “get” access to the switch. It can have a maximum of 32 characters. The default read community string is public. Configures the SNMP write community string.

  • Page 123: User Security Model Configuration

    Configuration Menu The following table describes the SNMPv3 Configuration Menu options. SNMPv3 Configuration Menu options Table 85 Command Description Configures a user security model (USM) entry for an authorized user. You can also usm <1-16> configure this entry through SNMP. The range is 1-16. Configures different MIB views.

  • Page 124: Snmpv3 View Configuration

    Configuration Menu The following table describes the User Security Model Configuration Menu options. User Security Model Configuration Menu options Table 86 Command Description Configures a string up to 32 characters long that represents the name of the user. name <1-32 characters> This is the login name that you need in order to access the switch.

  • Page 125: View-based Access Control Model Configuration

    Configuration Menu Table 87 SNMPv3 View Configuration Menu options Command Description Displays the current vacmViewTreeFamily configuration. View-based Access Control Model configuration Command: /cfg/sys/ssnmp/snmpv3/access [SNMPv3 vacmAccess 1 Menu] name - Set group name model - Set security model level - Set minimum level of security rview - Set read view index wview...

  • Page 126: Snmpv3 Group Configuration, Snmpv3 Community Table Configuration

    Configuration Menu SNMPv3 Group configuration Command: /cfg/sys/ssnmp/snmpv3/group [SNMPv3 vacmSecurityToGroup 1 Menu] model - Set security model uname - Set USM user name gname - Set group name - Delete vacmSecurityToGroup entry - Display current vacmSecurityToGroup configuration The following table describes the SNMPv3 Group Configuration Menu options. SNMPv3 Group Configuration Menu options Table 89 Command...

  • Page 127: Snmpv3 Target Address Table Configuration

    Configuration Menu Table 90 SNMPv3 Community Table Configuration Menu options Command Description Configures a tag of up to 255 characters maximum. This tag specifies a set of tag <1-255 characters> transport endpoints to which a command responder application sends an SNMP trap.

  • Page 128: Snmpv3 Target Parameters Table Configuration, Snmpv3 Notify Table Configuration

    Configuration Menu SNMPv3 Target Parameters Table configuration Command: /cfg/sys/ssnmp/snmpv3/tparam [SNMPv3 snmpTargetParamsTable 1 Menu] name - Set targetParams name mpmodel - Set message processing model model - Set security model uname - Set USM user name level - Set minimum level of security - Delete targetParamsTable entry - Display current targetParamsTable configuration You can configure the target parameters entry and store it in the target parameters table in the SNMP...

  • Page 129: System Access Configuration

    Configuration Menu The following table describes the SNMPv3 Notify Table Configuration menu options. SNMPv3 Notify Table Configuration Menu options Table 93 Command Description Defines a locally arbitrary but unique identifier associated with this SNMP notify name <1-32 characters> entry. Defines a tag of 255 characters maximum that contains a tag value which is tag <1-255 characters>...

  • Page 130: Management Networks Configuration

    Configuration Menu Table 94 System Access Configuration Menu options Command Description tnport <TCP port number> Sets an optional telnet server port number for cases where the server listens for telnet sessions on a non-standard port. tport <TFTP port number> Sets an optional telnet server port number for cases where the server listens for TFTP sessions on a non-standard port.

  • Page 131: User Access Control Configuration

    Configuration Menu User Access Control configuration Command: /cfg/sys/access/user [User Access Control Menu] - User ID Menu eject - Eject user usrpw - Set user password (user) - Set operator password (oper) admpw - Set administrator password (admin) - Display current user status The following table describes the User Access Control menu options.

  • Page 132: User Id Configuration

    Configuration Menu User ID configuration Command: /cfg/sys/access/user/uid [User ID 1 Menu] - Set class of service name - Set user name pswd - Set user password - Enable user ID - Disable user ID - Delete user ID - Display current user configuration The following table describes the User ID Configuration menu options.

  • Page 133: Https Access Configuration

    State or Province Name (full name) [ ]: Ontario Locality Name (for example, city) [ ]: Ottawa Organization Name (for example, company) [ ]: Hewlett-Packard Organizational Unit Name (for example, section) [ ]: ProLiant Common Name (for example, user’s name) [ ]: Mr Smith Email (for example, email address) [ ]: info@hp.com...

  • Page 134: Port Configuration

    Configuration Menu Port configuration Command: /cfg/port <port number> [Port 1 Menu] - Gig Phy Menu aclqos - Acl/Qos Configuration Menu 8021ppri - Set default 802.1p priority pvid - Set default port VLAN id name - Set port name rmon - Enable/Disable RMON for port - Enable/disable VLAN tagging for port tagpvid - Enable/disable tagging on pvid...

  • Page 135: Temporarily Disabling A Port

    Configuration Menu Table 99 Port Configuration Menu options Command Description Limits the number of unknown unicast packets per second to the specified value. If drate <0-262143>|dis disabled (dis), the port forwards all unknown unicast packets. Enables the port. Disables the port. To temporarily disable a port without changing its configuration attributes, see the “Temporarily disabling a port”...

  • Page 136: Port Link Configuration

    Configuration Menu Port link configuration Command: /cfg/port <port number>/gig [Gigabit Link Menu] speed - Set link speed mode - Set full or half duplex mode fctl - Set flow control auto - Set auto negotiation - Display current gig link configuration Use these menu options to set port parameters for the port link.

  • Page 137: Port Acl/qos Configuration

    Configuration Menu Port ACL/QoS configuration Command: /cfg/port <port number>/aclqos [Port 20 ACL Menu] - Add ACL or ACL group to this port - Remove ACL or ACL group from this port - Display current ACLs for this port The following table describes the port ACL/QoS Configuration Menu options. Port ACL/QoS Configuration Menu options Table 101 Command...

  • Page 138: Layer 2 Configuration

    Configuration Menu Layer 2 configuration Command: /cfg/l2 [Layer 2 Menu] 8021x - 802.1x Menu mrst - Multiple Spanning Tree/Rapid Spanning Tree Menu - Spanning Tree Menu - FDB Menu trunk - Trunk Group Menu thash - IP Trunk Hash Menu lacp - Link Aggregation Control Protocol Menu vlan...

  • Page 139: X Configuration, X Global Configuration

    Configuration Menu 802.1x configuration Command: /cfg/l2/8021x [802.1x Configuration Menu] global - Global 802.1x configuration menu port - Port 802.1x configuration menu - Enable 802.1x access control - Disable 802.1x access control - Show 802.1x configuration This feature allows you to configure the HP 10GbE switch as an IEEE 802.1x Authenticator, to provide port-based network access control.

  • Page 140: X Port Configuration

    Configuration Menu Table 104 802.1x Global Configuration Menu options Command Description Sets the time, in seconds, the authenticator waits before transmitting an EAP-Request/ qtperiod <0-65535> Identity frame to the supplicant (client) after an authentication failure in the previous round of authentication. The default value is 60 seconds. Sets the time, in seconds, the authenticator waits for an EAP-Response/Identity frame txperiod <1-65535>...

  • Page 141: Command Description

    Configuration Menu The following table describes the 802.1x Port Configuration Menu options. 802.1x Port Configuration Menu options Table 105 Command Description Sets the type of access control for the port: mode force- unauth|auto|force- force-unauth—the port is unauthorized unconditionally. auth auto—the port is unauthorized until it is successfully authorized by the RADIUS server.

  • Page 142: Rapid Spanning Tree Protocol/ Multiple Spanning Tree Protocol Configuration

    Configuration Menu Rapid Spanning Tree Protocol/ Multiple Spanning Tree Protocol configuration Command: /cfg/l2/mrst [Multiple Spanning Tree Menu] cist - Common and Internal Spanning Tree menu name - Set MST region name - Set revision level of this MST region maxhop - Set Maximum Hop Count for MST (4 - 60) mode - Spanning Tree Mode...

  • Page 143: Common Internal Spanning Tree Configuration

    Configuration Menu NOTE: IEEE 802.1w standard-based RSTP implementation runs on one STG (i.e. same as one spanning tree instance) only. As a result, if ‘rstp’ mode is selected under the /cfg/mrst/mode command, then only a single RSTP instance (default for STG 1) is supported for all VLANs, including the Default VLAN 1. If multiple spanning tree instances are required, then select ‘mstp’...

  • Page 144: Cist Bridge Configuration

    Configuration Menu CIST bridge configuration Command: /cfg/l2/mrst/cist/brg [CIST Bridge Menu] prior - Set CIST bridge Priority (0-65535) mxage - Set CIST bridge Max Age (6-40 secs) - Set CIST bridge Forward Delay (4-30 secs) - Display current CIST bridge parameters CIST bridge parameters are used only when the switch is in MSTP mode.

  • Page 145: Cist Port Configuration

    Configuration Menu CIST port configuration Command: /cfg/l2/mrst/cist/port <port number> [CIST Port 1 Menu] prior - Set port Priority (0-240) cost - Set port Path Cost (1-200000000) hello - Set CIST port Hello Time (1-10 secs) link - Set MSTP link type (auto, p2p, or shared; default: auto) edge - Enables or disables this port as an edge port - Turn port's Spanning Tree ON...

  • Page 146

    Configuration Menu Table 109 CIST Port Configuration Menu options Command Description Enables or disables this port as an edge port. An edge port is not connected to edge disable|enable a bridge, and can begin forwarding traffic as soon as the link is up. Configure server ports as edge ports (enabled).

  • Page 147: Spanning Tree Configuration

    Configuration Menu Spanning Tree configuration Command: /cfg/l2/stp <1-128> [Spanning Tree Group 1 Menu] - Bridge parameter menu port - Port parameter menu - Add VLAN(s) to Spanning Tree Group remove - Remove VLAN(s) from Spanning Tree Group clear - Remove all VLANs from Spanning Tree Group - Globally turn Spanning Tree ON - Globally turn Spanning Tree OFF default - Default Spanning Tree and Member parameters...

  • Page 148: Bridge Spanning Tree Configuration

    Configuration Menu Bridge Spanning Tree configuration Command: /cfg/l2/stp/brg [Bridge Spanning Tree Menu] prior - Set bridge Priority [0-65535] hello - Set bridge Hello Time [1-10 secs] mxage - Set bridge Max Age (6-40 secs) - Set bridge Forward Delay (4-30 secs) - Display current bridge parameters Spanning tree bridge parameters can be configured for each Spanning Tree Group.

  • Page 149: Spanning Tree Port Configuration

    Configuration Menu When configuring STP bridge parameters, the following formulas must be used: 2*(fwd-1) ≥ mxage 2*(hello+1) ≤ mxage Spanning Tree port configuration Command: /cfg/l2/stp <1-128>/port <port number> [Spanning Tree Port 1 Menu] prior - Set port Priority (0-255) cost - Set port Path Cost (1-65535 (802.1d) / 1-200000000 (MSTP/RSTP)/0 for auto) link...

  • Page 150: Forwarding Database Configuration

    Configuration Menu Table 112 Spanning Tree Port Configuration Menu options Command Description Defines the type of link connected to the port, as follows: link auto|p2p|shared auto—Configures the port to detect the link type, and automatically match its settings. p2p—Configures the port for Point-To-Point protocol. shared—Configures the port to connect to a shared medium (usually a hub).

  • Page 151: Static Fdb Configuration

    Configuration Menu Static FDB configuration Command: /cfg/l2/fdb/static [Static FDB Menu] - Add a permanent FDB entry - Delete a static FDB entry clear - Clear static FDB entries - Display current static FDB configuration The following table describes the Static FDB Configuration Menu options. Static FDB Configuration Menu options Table 114 Command...

  • Page 152: Trunk Configuration

    Configuration Menu Trunk configuration Command: /cfg/l2/trunk <1-12> [Trunk group 1 Menu] - Add port to trunk group - Remove port from trunk group - Enable trunk group - Disable trunk group - Delete trunk group - Display current Trunk Group configuration Trunk groups can provide super-bandwidth connections between switches or other trunk capable devices.

  • Page 153: Ip Trunk Hash Configuration, Layer 2 Ip Trunk Hash Configuration

    Configuration Menu IP Trunk Hash configuration Command: /cfg/l2/thash [IP Trunk Hash Menu] - IP Trunk Hash Settings Menu - Display current IP trunk hash configuration The following table describes the IP Trunk Hash Configuration Menu options. IP Trunk Hash Configuration Menu options Table 116 Command Description...

  • Page 154: Link Aggregation Control Protocol Configuration, Lacp Port Configuration

    Configuration Menu Link Aggregation Control Protocol configuration Command: /cfg/l2/lacp [LACP Menu] sysprio - Set LACP system priority timeout - Set LACP system timeout scale for timing out partner info port - LACP port Menu - Display current LACP configuration The following table describes the LACP Configuration Menu options. LACP Configuration Menu options Table 118 Command...

  • Page 155

    Configuration Menu Table 119 LACP Port Configuration Menu options Command Description Displays the current LACP configuration for this port.

  • Page 156: Vlan Configuration

    Configuration Menu VLAN configuration Command: /cfg/l2/vlan <1-4094> [VLAN 1 Menu] name - Set VLAN name - Assign VLAN to a Spanning Tree Group - Add port to VLAN - Remove port from VLAN - Define VLAN as list of ports - Enable VLAN - Disable VLAN - Delete VLAN...

  • Page 157: Layer 3 Configuration

    Configuration Menu Layer 3 configuration Command: /cfg/l3 [Layer 3 Menu] - Interface Menu - Default Gateway Menu route - Static Route Menu - ARP Menu frwd - Forwarding Menu - Network Filters Menu rmap - Route Map Menu - Routing Information Protocol Menu ospf - Open Shortest Path First (OSPF) Menu igmp...

  • Page 158: Ip Interface Configuration

    Configuration Menu IP interface configuration Command: /cfg/l3/if <1-250> [IP Interface 1 Menu] addr - Set IP address mask - Set subnet mask vlan - Set VLAN number relay - Enable/disable BOOTP relay - Enable IP interface - Disable IP interface - Delete IP interface - Display current interface configuration The switch can be configured with up to 250 IP interfaces.

  • Page 159: Default Gateway Configuration

    Configuration Menu Default Gateway configuration Command: /cfg/l3/gw <1-4, 254> [Default gateway 1 Menu] addr - Set IP address intr - Set interval between ping attempts retry - Set number of failed attempts to declare gateway DOWN - Enable/disable ARP only health checks - Enable default gateway - Disable default gateway - Delete default gateway...

  • Page 160: Ip Static Route Configuration, Address Resolution Protocol Configuration

    Configuration Menu IP Static Route configuration Command: /cfg/l3/route [IP Static Route Menu] - Add static route - Remove static route - Display current static route configuration The following table describes the Static Route Configuration Menu options. Static Route Configuration Menu options Table 124 Command Description...

  • Page 161: Static Arp Configuration, Ip Forwarding Configuration

    Configuration Menu Static ARP configuration Command: /cfg/l3/arp/static [Static ARP Menu] - Add a permanent ARP entry - Delete an ARP entry clear - Clear static ARP entries - Display current static ARP configuration Static ARP entries are permanent in the ARP cache and do not age out like the ARP entries that are learnt dynamically.

  • Page 162: Network Filter Configuration, Route Map Configuration

    Configuration Menu Network Filter configuration Command: /cfg/l3/nwf <1-256> [IP Network Filter 1 Menu] addr - IP Address mask - IP Subnet mask enable - Enable Network Filter disable - Disable Network Filter delete - Delete Network Filter current - Display current Network Filter configuration The following table describes the Network Filter Configuration Menu options.

  • Page 163: Ip Access List Configuration

    Configuration Menu Table 129 Route Map Configuration Menu options Command Description Assigns the type of OSPF metric. The default is type 1. type 1|2|none 1—External routes are calculated using both internal and external metrics. 2—External routes are calculated using only the external metrics. Type 2 routes have more cost than Type 2.

  • Page 164: Routing Information Protocol Configuration, Rip Interface Configuration

    Configuration Menu Routing Information Protocol configuration Command: /cfg/l3/rip [Routing Information Protocol Menu] - RIP Interface Menu update - Set update period in seconds redist - RIP Route Redistribute Menu - Globally turn RIP ON - Globally turn RIP OFF current - Display current RIP configuration The RIP Menu is used for configuring Routing Information Protocol parameters.

  • Page 165

    Configuration Menu The following table describes the RIP Interface Configuration Menu options. RIP Interface Configuration Menu options Table 132 Command Description Configures the RIP version used by this interface. version 1|2|both The default value is version 2. When enabled, the switch supplies routes to other routers. This command is supply disable|enable enabled by default.

  • Page 166: Rip Route Redistribution Configuration

    Configuration Menu RIP Route Redistribution configuration Command: /cfg/l3/rip/redist fixed|static|ospf|eospf [RIP Redistribute Fixed Menu] - Add rmap into route redistribution list - Remove rmap from route redistribution list export - Export all routes of this protocol - Display current route-maps added The following table describes the RIP Route Redistribute Menu options.

  • Page 167: Open Shortest Path First Configuration

    Configuration Menu Open Shortest Path First configuration Command: /cfg/l3/ospf [Open Shortest Path First Menu] aindex - OSPF Area (index) Menu range - OSPF Summary Range Menu - OSPF Interface Menu virt - OSPF Virtual Links Menu md5key - OSPF MD5 Key Menu host - OSPF Host Entry Menu redist...

  • Page 168: Osfp Area Index Configuration

    Configuration Menu OSFP Area Index configuration Command: /cfg/l3/ospf/aindex <0-2> [OSPF Area (index) 1 Menu] areaid - Set area ID type - Set area type metric - Set stub area metric auth - Set authentication type - Set time interval between two SPF calculations enable - Enable area disable...

  • Page 169: Ospf Summary Range Configuration

    Configuration Menu OSPF Summary Range configuration Command: /cfg/l3/ospf/range <1-16> [OSPF Summary Range 1 Menu] addr - Set IP address mask - Set IP mask aindex - Set area index hide - Enable/disable hide range enable - Enable range disable - Disable range delete - Delete range - Display current OSPF summary range configuration...

  • Page 170: Ospf Interface Configuration

    Configuration Menu OSPF Interface configurat Command: /cfg/l3/ospf/if <1-249> [OSPF Interface 1 Menu] aindex - Set area index prio - Set interface router priority cost - Set interface cost hello - Set hello interval in seconds dead - Set dead interval in seconds trans - Set transit delay in seconds retra...

  • Page 171: Ospf Virtual Link Configuration

    Configuration Menu OSPF Virtual Link configuration Command: /cfg/l3/ospf/virt <1-3> [OSPF Virtual Link 1 Menu] aindex - Set area index hello - Set hello interval in seconds dead - Set dead interval in seconds trans - Set transit delay in seconds retra - Set retransmit interval in seconds - Set router ID of virtual neighbor...

  • Page 172: Ospf Host Entry Configuration, Ospf Route Redistribution Configuration

    Configuration Menu OSPF Host Entry configuration Command: /cfg/l3/ospf/host <1-128> [OSPF Host Entry 1 Menu] addr - Set host entry IP address aindex - Set area index cost - Set cost of this host entry enable - Enable host entry disable - Disable host entry delete - Delete host entry...

  • Page 173: Ospf Md5 Key Configuration, Igmp Configuration

    Configuration Menu Table 140 OSPF Route Redistribution Configuration Menu options Command Description Exports the routes of this protocol as external OSPF AS-external LSAs in export <1-16777215> 1|2|none which the metric and metric type are specified. To remove a previous configuration and stop exporting the routes of the protocol, enter none. Displays the current route map settings.

  • Page 174: Igmp Snooping Configuration

    Configuration Menu Table 142 IGMP Snoop Menu options Command Description Globally turns IGMP on. Globally turns IGMP off. Displays the current IGMP configuration parameters. IGMP snooping configuration Command: /cfg/l3/igmp/snoop [IGMP Snoop Menu] igmpv3 - IGMP Version3 Snoop Menu timeout - Set report timeout mrto - Set multicast router timeout qintrval - Set IGMP query interval...

  • Page 175: Igmpv3 Snooping Configuration

    Configuration Menu Table 143 IGMP Snoop Menu options Command Description Configures the source IP address used as a proxy for IGMP Group Specific srcip <IP address> Queries. Adds the VLAN to IGMP Snooping. add <1-4094> Removes the VLAN from IGMP Snooping. rem <1-4094>...

  • Page 176: Igmp Static Multicast Router Configuration, Igmp Filtering Configuration

    Configuration Menu IGMP static multicast router configuration Command: /cfg/l3/igmp/mrouter [Static Multicast Router Menu] add - Add port as Multicast Router Port rem - Remove port as Multicast Router Port cur - Display current Multicast Router configuration The following table describes the Static Multicast Router Configuration Menu options. NOTE: When you configure a static multicast router on a VLAN, the process of learning multicast routers is disabled for that VLAN.

  • Page 177: Igmp Filter Definition, Igmp Filtering Port Configuration

    Configuration Menu IGMP filter definition Command: /cfg/l3/igmp/igmpflt/filter <1-16> [IGMP Filter 1 Definition Menu] range - Set IP Multicast address range action - Set filter action ena - Enable filter dis - Disable filter del - Delete filter cur - Display current IGMP filter configuration The following table describes the IGMP Filter Definition Menu options.

  • Page 178: Domain Name System Configuration

    Configuration Menu Domain Name System configuration Command: /cfg/l3/dns [Domain Name System Menu] prima - Set IP address of primary DNS server secon - Set IP address of secondary DNS server dname - Set default domain name - Display current DNS configuration The Domain Name System (DNS) Configuration Menu is used for defining the primary and secondary DNS servers on your local network, and for setting the default domain name served by the switch services.

  • Page 179: Bootstrap Protocol Relay Configuration

    Configuration Menu Bootstrap Protocol Relay configuration Command: /cfg/l3/bootp [Bootstrap Protocol Relay Menu] addr - Set IP address of BOOTP server addr2 - Set IP address of second BOOTP server - Globally turn BOOTP relay ON - Globally turn BOOTP relay OFF - Display current BOOTP relay configuration The Bootstrap Protocol (BOOTP) Relay Menu is used to allow hosts to obtain their configurations from a Dynamic Host Configuration Protocol (DHCP) server.

  • Page 180: Virtual Router Redundancy Protocol Configuration

    Configuration Menu Virtual Router Redundancy Protocol configuration Command: /cfg/l3/vrrp [Virtual Router Redundancy Protocol Menu] - VRRP Virtual Router Menu group - VRRP Virtual Router Group Menu - VRRP Interface Menu track - VRRP Priority Tracking Menu - Globally turn VRRP ON - Globally turn VRRP OFF - Display current VRRP configuration Virtual Router Redundancy Protocol (VRRP) support on the HP 10GbE switch provides redundancy...

  • Page 181: Vrrp Virtual Router Configuration

    Configuration Menu VRRP Virtual Router configuration Command: /cfg/l3/vrrp/vr <1-250> [VRRP Virtual Router 1 Menu] track - Priority Tracking Menu vrid - Set virtual router ID addr - Set IP address - Set interface number prio - Set renter priority adver - Set advertisement interval preem - Enable/disable preemption...

  • Page 182: Vrrp Virtual Router Priority Tracking Configuration

    Configuration Menu Table 152 Virtual Router Configuration Menu options Command Description Defines the election priority bias for this virtual server. This can be any integer prio <1-254> between 1 and 254. The default value is 100. During the master router election process, the routing device with the highest virtual router priority number wins.

  • Page 183: Vrrp Virtual Router Group Configuration

    Configuration Menu The following table describes the Virtual Router Priority Tracking Configuration Menu options. Virtual Router Priority Tracking Configuration Menu options Table 153 Command Description When enabled, the priority for this virtual router will be increased for each virtual vrs disable|enable router in master mode on this switch.

  • Page 184

    Configuration Menu The following table describes the Virtual Router Group Configuration Menu options. Virtual Router Group Configuration Menu options Table 154 Command Description Displays the VRRP Priority Tracking Menu for the virtual router group. Tracking is a track proprietary extension to VRRP, used for modifying the standard priority system used for electing the master router.

  • Page 185: Vrrp Virtual Router Group Priority Tracking Configuration, Vrrp Interface Configuration

    Configuration Menu VRRP Virtual Router Group Priority Tracking configuration Command: /cfg/l3/vrrp/group/track [Virtual Router Group Priority Tracking Menu] - Enable/disable tracking other interfaces ports - Enable/disable tracking VLAN switch ports - Display current VRRP Group Tracking configuration NOTE: If Virtual Router Group Tracking is enabled, the tracking option will be available only under group option.

  • Page 186: Vrrp Tracking Configuration

    Configuration Menu Table 156 VRRP Interface Configuration Menu options Command Description Displays the current configuration for this IP interface’s authentication parameters. VRRP Tracking configuration Command: /cfg/l3/vrrp/track [VRRP Tracking Menu] - Set priority increment for virtual router tracking - Set priority increment for IP interface tracking ports - Set priority increment for VLAN switch port tracking - Display current VRRP Priority Tracking configuration...

  • Page 187: Quality Of Service Configuration, Qos 802.1p Configuration

    Configuration Menu Quality of Service configuration Command: /cfg/qos [QOS Menu] 8021p - 802.1p Menu Use the Quality of Service (QoS) menus to configure the IEEE 802.1p priority value of incoming packets. This allows you to differentiate between various types of traffic, and provide different priority levels. The following table describes the QoS Configuration Menu options.

  • Page 188: Access Control Configuration, Access Control List Configuration

    Configuration Menu Access Control configuration Command: /cfg/acl [ACL Menu] - Access Control List Item Config Menu group - Access Control List Group Config Menu - Display current ACL configuration Use this menu to create Access Control Lists (ACLs) and ACL Groups. ACLs define matching criteria used for IP filtering and Quality of Service functions.

  • Page 189

    Configuration Menu Table 161 ACL Configuration Menu options Command Description Configures the ACL to function on egress packets. The egress port egrport <port number> ACL will not match a Layer 2 broadcast or multicast packet. The egress port ACL will not match packets if the destination port is a trunk.

  • Page 190: Acl Ethernet Filter Configuration

    Configuration Menu ACL Ethernet Filter configuration Command: /cfg/acl/acl <1-384>/ethernet [Filtering Ethernet Menu] smac - Set to filter on source MAC dmac - Set to filter on destination MAC vlan - Set to filter on VLAN ID etype - Set to filter on ethernet type - Set to filter on priority reset - Reset all fields...

  • Page 191: Acl Ip Version 4 Filter Configuration

    Configuration Menu ACL IP Version 4 Filter configuration Command: /cfg/acl/acl <1-384>/ipv4 [Filtering IPv4 Menu] - Set to filter on source IP address - Set to filter on destination IP address proto - Set to filter on protocol - Set to filter on TOS reset - Reset all fields - Display current parameters...

  • Page 192: Acl Tcp/udp Filter Configuration

    Configuration Menu ACL TCP/UDP Filter configuration Command: /cfg/acl/acl <1-384>/tcpudp [Filtering TCP/UDP Menu] sport - Set to filter on TCP/UDP source port dport - Set to filter on TCP/UDP destination port flags - Set to filter TCP/UDP flags reset - Reset all fields - Display current parameters This menu allows you to define TCP/UDP matching criteria for an ACL.

  • Page 193: Acl Meter Configuration, Acl Re-mark Configuration

    Configuration Menu ACL Meter configuration Command: /cfg/acl/acl <1-384>/meter [Metering Menu] - Set committed rate in KiloBits/s mbsize - Set maximum burst size in KiloBits enable - Enable/disable port metering dpass - Set to Drop or Pass out of profile traffic reset - Reset meter parameters - Display current settings...

  • Page 194: Acl Re-mark In-profile Configuration, Acl Re-mark In-profile Update User Priority Configuration

    Configuration Menu ACL Re-mark In-Profile configuration Command: /cfg/acl/acl <1-384>/re-mark/inprof [Re-marking - In Profile Menu] up1p - Set Update User Priority Menu updscp - Set the update DSCP reset - Reset in profile settings - Display current settings Table 167 ACL Re-mark In-Profile Configuration Menu options Command Description Displays the Re-Mark In-Profile Update User Priority Menu.

  • Page 195: Acl Re-mark Out-of-profile Configuration, Acl Packet Format Configuration

    Configuration Menu ACL Re-mark Out-of-Profile configuration Command: /cfg/acl/acl <1-384>/re-mark/outprof [Re-marking - Out Of Profile Menu] updscp - Set the update DSCP reset - Reset out of profile settings - Display current settings Table 169 ACL Re-mark Out-of-Profile Configuration Menu options Command Description Sets the DiffServ Code Point (DSCP) of Out-of-Profile packets to the selected value.

  • Page 196: Acl Group Configuration

    Configuration Menu ACL Group configuration Command: /cfg/acl/group <1-384> [ACL Group 1 Menu] - Add ACL to group - Remove ACL from group - Display current ACL items in group This menu allows you to compile one or more ACLs into an ACL Group. Once you create an ACL Group, you can assign the ACL Group to one or more ports.

  • Page 197: Remote Monitoring Configuration, Rmon History Configuration

    Configuration Menu Remote Monitoring configuration Command: /cfg/rmon [RMON Menu] hist - RMON History Menu event - RMON Event Menu alarm - RMON Alarm Menu - Display current RMON configuration Remote Monitoring (RMON) allows you to monitor traffic flowing through the switch. The RMON MIB is described in RFC 1757.

  • Page 198: Rmon Event Configuration

    Configuration Menu Table 173 RMON History Menu options Command Description Enter a text string that identifies the person or entity that uses this history index. owner <1-127 characters> The owner can have a maximum of 127 characters. Deletes the selected history index. delete Displays the current RMON History parameters.

  • Page 199: Rmon Alarm Configuration

    Configuration Menu RMON alarm configuration Command: /cfg/rmon/alarm <1-65535> [RMON Alarm 1 Menu] - Set MIB oid datasource to monitor intrval - Set alarm interval sample - Set sample type almtype - Set startup alarm type rlimit - Set rising threshold flimit - Set falling threshold revtidx - Set event index to fire on rising threshold crossing...

  • Page 200

    Configuration Menu Table 175 RMON Alarm Menu options Command Description Configures the rising alarm event index that is triggered when a revtidx <0-65535> rising threshold is crossed. The range is from 0 to 65535. The default value is 0. Configures the falling alarm event index that is triggered when a fevtidx <0-65535>...

  • Page 201: Port Mirroring, Port-based Port Mirroring

    Configuration Menu Port mirroring Command: /cfg/pmirr [Port Mirroring Menu] mirror - Enable/Disable Mirroring monport - Monitoring Port based PM Menu - Display All Mirrored and Monitoring Ports The Port Mirroring Configuration Menu is used to configure, enable, and disable the monitored port. When enabled, network packets being sent and/or received on a target port are duplicated and sent to a monitor port.

  • Page 202: Uplink Failure Detection Configuration

    Configuration Menu Table 177 Port Mirroring Configuration Menu options Command Description Displays the current settings of the monitoring port. Uplink Failure Detection configuration Command: /cfg/ufd [Uplink Failure Detection Menu] fdp - Failure Detection Pair Menu - Globally turn Uplink Failure Detection ON off - Globally turn Uplink Failure Detection OFF cur - Display current Uplink Failure Detection configuration Uplink Failure Detection (UFD) supports network fault tolerance in network adapter teams.

  • Page 203: Failure Detection Pair Configuration, Link To Monitor Configuration

    Configuration Menu Failure Detection Pair configuration Command: /cfg/ufd/fdp [FDP Menu] - Link to Monitor Menu - Link to Disable Menu - Enable FDP - Disable FDP current - Display current FDP configuration Use these commands to configure a Failure Detection Pair, which consists of one Link to Monitor (LtM) and one Link to Disable (LtD).

  • Page 204: Link To Disable Configuration

    Configuration Menu Table 180 Link to Monitor Menu options Command Description Adds a LACP admin key to the LtM. LACP trunks formed with this admin addkey <1-65535> key will be included in the LtM. Removes a LACP admin key from the LtM. remkey <1-65535>...

  • Page 205: Dump, Saving The Active Switch Configuration, Restoring The Active Switch Configuration

    Configuration Menu Dump Command: /cfg/dump The dump program writes the current switch configuration to the terminal screen. To start the dump program, at the Configuration# prompt, enter: Configuration# dump The configuration is displayed with parameters that have been changed from the default values. The screen display can be captured, edited, and placed in a script file, which can be used to configure other switches.

  • Page 206: Operations Menu Introduction, Menu Information

    Operations Menu Operations Menu Introduction Operations-level commands are used for making immediate and temporary changes to switch configuration. The Operations Menu is used for bringing ports temporarily in and out of service. This menu is available only from an administrator and operator login. Menu information Command: /oper [Operations Menu]...

  • Page 207: Operations-level Port Options, Operations-level Port 802.1x Options

    Operations Menu Operations-level port options Command: /oper/port <port number> [Operations Port 1 Menu] 8021x - 8021.x Menu rmon - Enable/Disable RMON for port - Enable port - Disable port - Current port state Operations-level port options are used for temporarily disabling or enabling a port. Operations-Level Port Menu options Table 183 Command...

  • Page 208: Operations-level Vrrp Options

    Operations Menu Operations-level VRRP options Command: /oper/vrrp [VRRP Operations Menu] back - Set virtual router to backup Operations-level VRRP options are described in the following table. Operations-Level VRRP Menu options Table 185 Command Description Forces the specified master virtual router on this switch into backup mode. This is back <1-255>...

  • Page 209: Updating The Switch Software Image, Introduction, Menu Information, Downloading New Software To The Switch

    Boot Options Menu Boot Options Menu Introduction You must be logged in to the switch as the administrator to use the Boot Options Menu. The Boot Options Menu provides options for: Selecting a switch software image to be used when the switch is next reset. Selecting a configuration block to be used when the switch is next reset.

  • Page 210

    Boot Options Menu To download new software to the switch, you will need the following: The image or boot software loaded on a FTP or TFTP server on your network The hostname or IP address of the FTP or TFTP server The user name and password for FTP server, if necessary The name of the new software image or boot file NOTE:...

  • Page 211: Selecting A Software Image To Run, Uploading A Software Image From The Switch

    Boot Options Menu If you are loading an image from which you are not currently booted, the system prompts you to change the image. image2 currently contains Software Version 1.0.0 that was downloaded at 15:46:36 Wed Mar 21, 2007. New download will replace image2 with file "1.0.1_OS.img" from TFTP server 10.168.2.4.

  • Page 212: Selecting A Configuration Block, Resetting The Switch

    Boot Options Menu Enter the password for the FTP server (if prompted): Enter password for username on FTP server: <password> The system then requests confirmation of what you have entered. To have the file uploaded, enter y. image2 currently contains Software Version 1.0.0 Upload will transfer image2 (1889411 bytes) to file "test"...

  • Page 213: Accessing The Iscli

    Boot Options Menu Accessing the ISCLI To access the ISCLI, enter the following command from the AOS CLI, and reset the switch: Boot Options# mode iscli The default command-line interface for the HP 10GbE switch is the AOS CLI. To access the AOS CLI, enter the following command and reset the switch: >>...

  • Page 214: Maintenance Menu Introduction, Menu Information

    Maintenance Menu Maintenance Menu Introduction The Maintenance Menu is used for debugging purposes, enabling you to generate a technical support dump of the critical state information in the switch, and to clear entries in the Forwarding Database and the Address Resolution Protocol (ARP) and routing tables. This menu is available only from an administrator and operator login.

  • Page 215: System Maintenance Options

    Maintenance Menu Table 186 Maintenance Menu options Command Usage Displays the IGMP Maintenance Menu. igmp Displays dump information in uuencoded format. uudmp Saves the system dump information via FTP/TFTP. ptdmp Saves a specified file from the switch root file system to an FTP/TFTP server. ptfile Clears dump information from flash memory.

  • Page 216: Forwarding Database Options, Debugging Options

    Maintenance Menu Forwarding Database options Command: /maint/fdb [FDB Manipulation Menu] find - Show a single FDB entry by MAC address port - Show FDB entries for a single port vlan - Show FDB entries for a single VLAN dump - Show all FDB entries clear - Clear entire FDB, then re-add static entries The Forwarding Database (FDB) Manipulation Menu can be used to view information and to delete a...

  • Page 217: Arp Cache Options

    Maintenance Menu The following table describes the Miscellaneous Debug Menu options: Miscellaneous Debug Menu options Table 189 Command Usage Displays the management processor trace buffer. Header information similar to the following tbuf is shown: MP trace buffer at 13:28:15 Fri May 25, 2002; mask: 0x2ffdf748 The buffer information is displayed after the header.

  • Page 218: Ip Route Manipulation Options, Igmp Multicast Group Options

    Maintenance Menu IP Route Manipulation options Command: /maint/route [IP Routing Menu] find - Show a single route by destination IP address - Show routes to a single gateway type - Show routes of a single type - Show routes of a single tag - Show routes on a single interface dump - Show all routes...

  • Page 219: Igmp Snooping Options, Igmp Mrouter Options

    Maintenance Menu IGMP Snooping options Command: /maint/igmp/snoop [IGMP Multicast Group Menu] find - Show a single group by IP group address vlan - Show groups on a single vlan port - Show groups on a single port trunk - Show groups on a single trunk detail - Show detail of a single group by IP address dump...

  • Page 220: Uuencode Flash Dump, Ftp/tftp System Dump Put, Clearing Dump Information

    Maintenance Menu Uuencode flash dump Command: /maint/uudmp Using this command, dump information is presented in uuencoded format. This format makes it easy to capture the dump information as a file or a string of characters. If you want to capture dump information to a file, set your communication software on your workstation to capture session data prior to issuing the uudmp command.

  • Page 221: Panic Command, Unscheduled System Dumps

    Maintenance Menu Panic command Command: /maint/panic The panic command causes the switch to immediately dump state information to flash memory and automatically reboot. To select panic, at the Maintenance# prompt, enter: >> Maintenance# panic A FLASH dump already exists. Confirm replacing existing dump and reboot [y/n]: Enter y to confirm the command: Confirm dump and reboot [y/n]: y A list of messages is displayed:...

  • Page 222

    Index Index Gigabit Ethernet, 134; operating mode, 136; port mirroring, 201; 802.1x information, 42 gig (Port Menu option), 134 port trunking, 152; revert changes, 111; save changes, 802.1x statistics, 77 Gigabit Ethernet Physical Link, 134 112; switch IP address, 158; Gigabit Ethernet, configuration, 134 view pending changes, 111;...

  • Page 223

    Index link status: command, 71; display ports: disable (temporarily), 135; SNMPv3 Access Table information, setting, 25; duplex mode, 25, 71; information, 72; membership of port speed, 25, 71 the VLAN, 51; priority, 46, 48, 50; SNMPv3 Community Table STP port priority, 149 log, syslog messages, 115 information, 31 preemption: assuming VRRP...

  • Page 224

    Index Trivial File Transfer Protocol master preemption (prio); virtual (TFTP): PUT and GET router, 182 verbose n command, 17 commands, 205; use for VLAN: active port; VLAN, 185 view pending configuration updating switch software image, VLAN tagging: port configuration, changes, 111 virtual router: description, 181;...

Comments to this Manuals

Symbols: 0
Latest comments: