Download Print this page

Enterasys N Standalone (NSA) Series Configuration Manual

Enterasys N Standalone (NSA) Series Configuration Manual

Enterasys networks switch configuration guide

page of 1372

/ 1372
Contents
Table of Contents
Bookmarks

Table of Contents

Advertisement

Quick Links

Download this manual

Enterasys Matrix

®

N Standalone (NSA) Series

Configuration Guide

Firmware Version 5.41.xx

P/N

9034073-08 Rev.0C

Table of Contents

Advertisement

Chapters

Table of Contents

Need help?

Need help?

Do you have a question about the N Standalone (NSA) Series and is the answer not in the manual?

Questions and answers

Summary of Contents for Enterasys N Standalone (NSA) Series

Page 1 Enterasys Matrix ® N Standalone (NSA) Series Configuration Guide Firmware Version 5.41.xx 9034073-08 Rev.0C...
Page 3 Enterasys Networks reserves the right to make changes in specifications and other information contained in this document and its web site without prior notice. The reader should in all cases consult Enterasys Networks to determine whether any such changes have been made.
Page 4 CAREFULLY READ THIS LICENSE AGREEMENT. This document is an agreement (“Agreement”) between the end user (“You”) and Enterasys Networks, Inc. on behalf of itself and its Affiliates (as hereinafter defined) (“Enterasys”) that sets forth Your rights and obligations with respect to the Enterasys software program/firmware installed on the Enterasys product (including any accompanying documentation, hardware or media) (“Program”) in the package and prevails over any additional, conflicting or...
Page 5 APPLICABLE LAW. This Agreement shall be interpreted and governed under the laws and in the state and federal courts of the Commonwealth of Massachusetts without regard to its conflicts of laws provisions. You accept the personal jurisdiction and venue of the Commonwealth of Massachusetts courts. None of the 1980 United Nations Convention on Contracts for the International Sale of Goods, the United Nations Convention on the Limitation Period in the International Sale of Goods, and the Uniform Computer Information Transactions Act shall apply to this Agreement.
Page 6 AUDIT RIGHTS. You hereby acknowledge that the intellectual property rights associated with the Program are of critical value to Enterasys and, accordingly, You hereby agree to maintain complete books, records and accounts showing (i) license fees due and paid, and (ii) the use, copying and deployment of the Program. You also grant to Enterasys and its authorized representatives, upon reasonable notice, the right to audit and examine during Your normal business hours, Your books, records, accounts and hardware devices upon which the Program may be deployed to verify compliance with this Agreement, including the verification of the license fees due and paid Enterasys and the use, copying and deployment...
Page 7: Table Of Contents
Figures ...xi Tables... xiii ABOUT THIS GUIDE Using This Guide... xvii Structure of This Guide ... xviii Related Documents...xix Document Conventions...xx INTRODUCTION Matrix Series Features ... 1-1 Matrix Series CLI Overview... 1-2 Device Management Methods ... 1-3 Getting Help ... 1-3 STARTUP AND GENERAL CONFIGURATION Startup and General Configuration Summary ...
Page 8 Contents General Configuration Command Set ... 2-24 2.2.1 2.2.2 2.2.3 2.2.4 2.2.5 2.2.6 2.2.7 2.2.8 2.2.9 2.2.10 2.2.11 2.2.12 Preparing the Device for Router Mode... 2-137 2.3.1 2.3.2 2.3.3 CONFIGURING DISCOVERY PROTOCOLS Overview ... 3-1 Discovery Protocols Command Set ... 3-1 3.2.1 3.2.2 3.2.3...
Page 9 Configuring Port Mirroring ... 4-87 4.4.1 4.4.2 4.4.3 4.4.4 Configuring LACP ... 4-94 4.5.1 4.5.2 4.5.3 4.5.4 SNMP CONFIGURATION SNMP Configuration Summary ... 5-1 5.1.1 5.1.2 5.1.3 5.1.4 Process Overview: SNMP Configuration ... 5-5 SNMP Configuration Command Set ... 5-5 5.3.1 5.3.2 5.3.3...
Page 10 Contents 802.1Q VLAN CONFIGURATION VLAN Configuration Summary ... 7-1 7.1.1 7.1.2 Process Overview: 802.1Q VLAN Configuration... 7-2 VLAN Configuration Command Set ... 7-3 7.3.1 7.3.2 7.3.3 7.3.4 7.3.5 7.3.6 POLICY CLASSIFICATION CONFIGURATION Policy Classification Configuration Summary... 8-1 Process Overview: Policy Classification Configuration ... 8-2 Policy Classification Configuration Command Set ...
Page 11 Configuring System Logging... 11-2 Monitoring Network Events and Status... 11-26 Configuring SMON... 11-37 Configuring RMON... 11-44 Managing Switch Network Addresses and Routes ... 11-98 Configuring Simple Network Time Protocol (SNTP) ... 11-121 Configuring Node Aliases ... 11-139 Configuring NetFlow ... 11-152 Configuring Routing Interface Settings ...
Page 12 Contents SECURITY CONFIGURATION 14.1 Overview of Security Methods ... 14-1 14.1.1 14.2 Process Overview: Security Configuration... 14-4 14.3 Security Configuration Command Set... 14-5 14.3.1 14.3.2 14.3.3 14.3.4 14.3.5 14.3.6 14.3.7 14.3.8 14.3.9 14.3.10 14.3.11 14.3.12 14.3.13 14.3.14 14.3.15 INDEX Matrix NSA Series Configuration Guide RADIUS Filter-ID Attribute and Dynamic Policy Profile Assignment14-3 Setting the Authentication Login Method ...
Page 13: Figures
Scrolling Screen Output ... 2-16 Abbreviating a Command... 2-17 Completing a Partial Command ... 2-17 Enabling the Switch for Routing ... 2-139 Example of VLAN Propagation via GVRP... 7-34 12-1 Example of a Simple Matrix Series Router Config File ... 12-17...
Page 14 Figures xii Matrix NSA Series Configuration Guide...
Page 15: Tables
Table Default Device Settings for Basic Switch Operation ... 2-1 Default Device Settings for Router Mode Operation ... 2-7 Basic Line Editing Emacs & vi Commands... 2-18 show system login Output Details ... 2-26 show system lockout Output Details... 2-34 show system Output Details ...
Page 16 Tables 5-11 Basic SNMP Trap Configuration Command Set... 5-64 show spantree Output Details ... 6-10 Port-Specific show spantree stats Output Details ... 6-12 show vlan Output Details ... 7-5 show vlan interface Output Details ... 7-17 Command Set for Creating a Secure Management VLAN ... 7-32 show gvrp Output Details ...
Page 17 12-13 show ip dhcp server statistics Output Details ... 12-138 13-1 RIP Configuration Task List and Commands ... 13-2 13-2 OSPF Configuration Task List and Commands... 13-31 13-3 show ip ospf database Output Details ... 13-64 13-4 show ip ospf interface Output Details ... 13-67 13-5 show ip ospf neighbor Output Details ...
Page 18 Tables xvi Matrix NSA Series Configuration Guide...
Page 19: Using This Guide
Configure security protocols, including 802.1X and RADIUS, SSHv2, MAC locking, MAC authentication, multiple authentication, DoS attack prevention, and flow setup throttling. • Configure policy-based routing. • Configure access control lists (ACLs). N Standalone (NSA) Series Configuration Guide. This ® Important Notice ® Enterasys Matrix N Standalone (NSA) Series Configuration Guide...
Page 20: Structure Of This Guide
Chapter Port Configuration, describes how to review and configure console port settings, and how to enable or disable switch ports and configure switch port settings, including port speed, duplex mode, auto-negotiation, flow control, port mirroring, link aggegation and broadcast suppression.
Page 21: Related Documents
IP access control lists (ACLs), Denial of Service (DoS) prevention, and flow setup throttling. RELATED DOCUMENTS The following Enterasys Networks documents may help you to set up, control, and manage the Matrix Series device: • Ethernet Technology Guide •...
Page 22: Document Conventions
NOTE: Calls the reader’s attention to any item of information that may be of special importance. ROUTER: This symbol denotes router-only functions. Features, commands and information in this guide not differentiated by this symbol refer to switch-mode operation. CAUTION: Warns the reader about actions that could affect network operation. ®...
Page 23: Introduction
This chapter provides an overview of the Matrix Series’ unique features and functionality, an overview of the tasks that may be accomplished using the CLI interface, an overview of ways to manage the device, and information on how to contact Enterasys Networks for technical support. MATRIX SERIES FEATURES Matrix Series devices support business-driven networking with: •...
Page 24: Matrix Series Cli Overview
Matrix Series CLI Overview MATRIX SERIES CLI OVERVIEW Enterasys Networks’ Matrix Series CLI interface allows you to perform a variety of network management tasks, including the following: • Assign IP address and subnet mask. • Select a default gateway. •...
Page 25: Device Management Methods
The Matrix Series Installation Guide provides setup instructions for connecting a terminal or modem to the Matrix Series device. GETTING HELP For additional support related to this device or document, contact Enterasys Networks using one of the following methods: World Wide Web www.enterasys.com/services/support/...
Page 26 Getting Help • A description of your network environment (for example, layout, cable type) • Network load and frame size at the time of trouble (if known) • The device history (for example, have you returned the device before, is this a recurring problem?) •...
Page 27: Startup And General Configuration
The following tables list factory default device settings available on the Matrix Series device. Table 2-1 lists default settings for Matrix Series switch operation. router mode operation. Table 2-1 Default Device Settings for Basic Switch Operation Device Feature CDP discovery protocol...
Page 28 Startup and General Configuration Summary Factory Default Settings Table 2-1 Default Device Settings for Basic Switch Operation (Continued) Device Feature Community name Convergence End Points phone detection EAPOL EAPOL authentication mode GARP timer GVRP IGMP IP mask and gateway IP routes...
Page 29 Table 2-1 Default Device Settings for Basic Switch Operation (Continued) Device Feature LLDP trap interval LLDP-MED fast repeat LLDP traps LLDP-MED traps Lockout Logging MAC aging time MAC locking Management Authentication Notification MTU discovery protocol NetFlow collection NetFlow export version...
Page 30 Startup and General Configuration Summary Factory Default Settings Table 2-1 Default Device Settings for Basic Switch Operation (Continued) Device Feature Policy classification Port auto-negotiation Port advertised ability Port broadcast suppression Port duplex mode Port enable/disable Port priority Port speed Port trap...
Page 31 Table 2-1 Default Device Settings for Basic Switch Operation (Continued) Device Feature Spanning Tree edge port delay Spanning Tree forward delay Spanning Tree hello interval Spanning Tree ID (SID) Spanning Tree legacy path cost Spanning Tree maximum aging time Spanning Tree...
Page 32 Startup and General Configuration Summary Factory Default Settings Table 2-1 Default Device Settings for Basic Switch Operation (Continued) Device Feature Spanning Tree Loop Protect event window Spanning Tree Loop Protect traps Spanning Tree disputed BPDU threshold System baud rate System contact...
Page 33 Table 2-2 Default Device Settings for Router Mode Operation Device Feature Access groups (IP security) Access lists (IP security) Area authentication (OSPF) Area default cost (OSPF) Area NSSA (OSPF) Area range (OSPF) ARP table ARP timeout Authentication key (RIP and OSPF) Authentication mode (RIP and OSPF) Dead interval (OSPF)
Page 34 Startup and General Configuration Summary Factory Default Settings Table 2-2 Default Device Settings for Router Mode Operation (Continued) Device Feature IP-directed broadcasts IP forward-protocol IP interfaces IRDP MD5 authentication (OSPF) MTU size OSPF OSPF cost OSPF network OSPF priority Passive interfaces (RIP) Proxy ARP Receive interfaces...
Page 35: Cli "Command Defaults" Descriptions
Table 2-2 Default Device Settings for Router Mode Operation (Continued) Device Feature SNMP Split horizon Stub area (OSPF) Telnet Telnet port (IP) Timers (OSPF) Transmit delay (OSPF) VRRP 2.1.2 CLI “Command Defaults” Descriptions Each command description in this guide includes a section entitled “Command Defaults” which contains different information than the factory default settings on the device as described in Table 2-1 Table...
Page 36: Using Webview
2.1.4 Using WebView By default WebView (Enterasys Networks’ embedded web server for device configuration and management tasks) is enabled on TCP port number 80 of the Matrix Series device. You can verify WebView status, enable or disable WebView, and reset the WebView port as described in the following section.
Page 37: Process Overview: Cli Startup And General Configuration
This example shows how to set the WebView TCP port to 100. Matrix(rw)->set webview port 100 2.1.5 Process Overview: CLI Startup and General Configuration Use the following steps as a guide to the startup and general configuration process: 1. Starting and navigating the Command Line Interface (CLI) 2.
Page 38: Starting And Navigating The Command Line Interface
Startup and General Configuration Summary Starting and Navigating the Command Line Interface 2.1.6 Starting and Navigating the Command Line Interface 2.1.6.1 Using a Console Port Connection NOTE: By default, the Matrix Series device is configured with three user login accounts: ro for Read-Only access; rw for Read-Write access; and admin for super-user access to all modifiable parameters.
Page 39: Logging In With Administratively Configured Account
2.1.6.3 Logging in with Administratively Configured Account If the device’s default user account settings have been changed, proceed as follows: 1. At the login prompt, enter your administratively-assigned user name and press ENTER. 2. At the Password prompt, enter your password and press ENTER. The notice of authorization and the Matrix prompt displays as shown in NOTE: Users with Read-Write (rw) and Read-Only access can use the set password command...
Page 40: Getting Help With Cli Syntax
Andover, MA 01810-1008 U.S.A. Phone: +1 978 684 1000 E-mail: support@enterasys.com WWW: http://www.enterasys.com (c) Copyright Enterasys Networks, Inc. 2005 Chassis Serial Number: 1234567 Chassis Firmware Revision: 05.11.00 Matrix NSA(su)-> 2.1.6.5 Getting Help with CLI Syntax The Matrix Series device allows you to display usage and syntax information for individual commands by typing help or ? after the command.
Page 41: Performing Keyword Lookups
2.1.6.7 Performing Keyword Lookups Entering a space and a question mark (?) after a keyword will display all commands beginning with the keyword. Figure 2-3 shows how to perform a keyword lookup for the show snmp command. In this case, 13 additional keywords are used by the show snmp command. Entering a space and a question mark (?) after any of these parameters (such as show snmp user) will display additional parameters nested within the syntax.
Page 42: Displaying Scrolling Screens
Startup and General Configuration Summary Starting and Navigating the Command Line Interface NOTE: At the end of the lookup display, the system will repeat the command you entered without the ?. 2.1.6.8 Displaying Scrolling Screens If the CLI screen length has been set using the set length command as described in CLI output requiring more than one screen will display To display additional screen output: •...
Page 43: Abbreviating And Completing Commands
2.1.6.9 Abbreviating and Completing Commands The Matrix Series device allows you to abbreviate CLI commands and keywords down to the number of characters that will allow for a unique abbreviation. the show netstat command to sh net. Figure 2-6 Abbreviating a Command Matrix(rw)->sh net Active Internet connections (including servers) Proto Recv-Q Send-Q...
Page 44 Startup and General Configuration Summary Configuring the Line Editor Table 2-3 Basic Line Editing Emacs & vi Commands Key Sequence Emacs Command Ctrl+A Move cursor to beginning of line. Ctrl+B Move cursor back one character. Ctrl+C Abort command. Ctrl+D Delete a character. Ctrl+E Move cursor to end of line.
Page 45 Key Sequence vi Command Get previous shell command in history Get next shell command in history Go to end of line Go to beginning of line Append Append at end of line c SPACE Change character Change character Change word Change entire line Change everything from cursor to end of line Insert...
Page 46 Startup and General Configuration Summary Configuring the Line Editor Key Sequence vi Command Put last deletion after the cursor Put last deletion before the cursor Undo last command Toggle case, lower to upper or vice versa Commands The commands used to configure the line-editor are listed below and described in the associated sections as shown.
Page 47: Command Mode
Use this command to show current and default line-editor mode and Delete character mode. show line-editor Command Defaults None. Command Type Switch command. Command Mode Read-Only Example This example shows how to view the current and default line-editor mode and Delete mode: Matrix(rw)->show line-editor...
Page 48: Set Line-Editor
Command Defaults If default is not entered after selecting a line editing or Delete mode, the selection will apply only to the current session and will not persist for future sessions. Command Type Switch command. Command Mode Read-Write. Examples This example sets the current line-editor to vi mode: Matrix(rw)->set line-editor vi...
Page 49 Startup and General Configuration Summary Configuring the Line Editor This example sets the default line-editor to emacs mode and sets the selection to persist for future sessions: Matrix(rw)->set line-editor emacs default Matrix NSA Series Configuration Guide 2-23...
Page 50: General Configuration Command Set
General Configuration Command Set Setting User Accounts and Passwords GENERAL CONFIGURATION COMMAND SET 2.2.1 Setting User Accounts and Passwords Purpose To change the device’s default user login and password settings, and to add new user accounts and passwords. Commands The commands used to configure user accounts and passwords are listed below and described in the associated section as shown.
Page 51: Show System Login
Use this command to display user login account information. show system login Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Super User. Example This example shows how to display login account information. In this case, device defaults have not been changed: Matrix(su)->show system login...
Page 52 General Configuration Command Set Setting User Accounts and Passwords Table 2-4 show system login Output Details Output Password history size Password aging Username Access State 2-26 Matrix NSA Series Configuration Guide What It Displays... Number of previously used user login passwords that will be checked for duplication when the set password command is executed.
Page 53: Set System Login
| read-only enable | disable Command Defaults None. Command Type Switch command. Command Mode Super User. Example This example shows how to enable a new user account with the login name “netops” with super user access privileges: Matrix(su)->set system login netops super-user enable...
Page 54: Clear System Login
Use this command to remove a local login user account. clear system login username Syntax Description username Command Defaults None. Command Type Switch command. Command Mode Super User. Example This example shows how to remove the “netops” user account: Matrix(su)->clear system login netops 2-28 Matrix NSA Series Configuration Guide Specifies the login name of the account to be cleared.
Page 55: Set Password
IIf configured, password length must conform to the minimum number of characters set with the set system password length command The admin password can be reset by toggling dip switch 8 on the device as described in your Matrix Series Installation Guide.
Page 56 General Configuration Command Set Setting User Accounts and Passwords Examples This example shows how a super-user would change the Read-Write password from the system default (blank string): Matrix(su)->set password rw Please enter new password: ******** Please re-enter new password: ******** Password changed.
Page 57: Set System Password Length
Syntax Description characters Command Defaults None. Command Type Switch command. Command Mode Super User. Examples This example shows how to set the minimum system password length to 8 characters: Matrix(su)->set system password length 8 General Configuration Command Set...
Page 58: Set System Password Aging
Syntax Description days disable Command Defaults None. Command Type Switch command. Command Mode Super User. Example This example shows how to set the system password age time to 45 days: Matrix(su)->set system password aging 45 2-32 Matrix NSA Series Configuration Guide Specifies the number of days user passwords will remain valid before aging out.
Page 59: Set System Password History
Syntax Description size Command Defaults None. Command Type Switch command. Command Mode Super User. Example This example shows how to configure the system to check the last 10 passwords for duplication Matrix(su)->set system password history 10...
Page 60: Show System Lockout
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Super User. Example This example shows how to display user lockout settings. In this case, device defaults have not been changed: Matrix(su)->show system lockout...
Page 61: Set System Lockout
Syntax Description attempts attempts time time Command Defaults None. Command Type Switch command. Command Mode Super User. Examples This example shows how to set login attempts to 5 and lockout time to 30 minutes: Matrix(su)->set system lockout attempts 5 time 30...
Page 62: Managing The Management Authentication Notification Mib
General Configuration Command Set Managing the Management Authentication Notification MIB 2.2.2 Managing the Management Authentication Notification MIB Purpose This MIB provides controls for enabling/disabling the sending of SNMP notifications when a user login authentication event occurs for various management access types. The types of access currently supported by the MIB include console, telnet, ssh, and web.
Page 63: Show Mgmt-Auth-Notify
Use this command to display the current setting for the Management Authentication Notification MIB. show mgmt-auth-notify Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the current information for the Management Authentication Notification.: Matrix(su)->show mgmt-auth-notify Management Type...
Page 64: Set Mgmt-Auth-Notify
Command Defaults If none of the optional Management Authentication Access types are entered, than all authentications types listed above will either be enabled or disabled. Command Type Switch command. Command Mode Read-Write. 2-38 Matrix NSA Series Configuration Guide Enable selected or all notifications.
Page 65 Examples This example shows how to set all the authentication types to be disabled on the Management Authentication Notification MIB. That information is then displayed with the show command: Matrix(su)->set mgmt-auth-notify disable Matrix(su)->show mgmt-auth-notify Management Type --------------- console telnet This example shows how to set only the console and telnet authentication access types to be enabled on the Management Authentication Notification MIB.
Page 66: Clear Mgmt-Auth-Notify
NOTE: Ensure that SNMP is correctly configured on the DFE in order to send these notifications. Refer to Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. 2-40 Matrix NSA Series Configuration Guide Chapter 5 for SNMP configuration information.
Page 67 Example This example displays the state of Management Authentication Notification access types prior to using the clear command, then displays the same information after using the clear command: Matrix(su)->show mgmt-auth-notify Management Type --------------- console telnet Matrix(su)->clear mgmt-auth-notify Matrix(su)->show mgmt-auth-notify Management Type --------------- console telnet...
Page 68: Setting Basic Device Properties
General Configuration Command Set Setting Basic Device Properties 2.2.3 Setting Basic Device Properties Module / Slot Parameters in the NSA CLI Module, slot, and certain other hardware-based parameters in the Matrix N Series Standalone (NSA) CLI support only chassis based N Series devices, such as the N7, N5, N3 or N1. Executing commands in the NSA CLI with modular parameters not supported by the standalone will result in an error message.
Page 69 • set summertime date (Section • set summertime recurring • clear summertime (Section • set prompt (Section 2.2.3.19) • set cli completion (Section • loop (Section 2.2.3.21) • show banner motd (Section • set banner motd (Section • clear banner motd (Section •...
Page 70: Show Ip Address
Use this command to display the system IP address and subnet mask. show ip address Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the system IP address and subnet mask: Matrix(rw)->show ip address Name...
Page 71: Set Ip Address
Command Defaults If not specified, ip-mask will be set to the natural mask of the ip-address and ip-gateway will be set to the ip-address. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the system IP address to 10.1.10.1 with a mask of 255.255.128.0 and a default gateway of 10.1.0.1:...
Page 72: Clear Ip Address
Use this command to clear the system IP address. clear ip address Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear the system IP address: Matrix(rw)->clear ip address 2-46 Matrix NSA Series Configuration Guide...
Page 73: Show Ip Gratuitous-Arp
Use this command to display the gratuitous ARP processing behavior. show ip gratuitous-arp Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the IP gratuitous-arp process Matrix(rw)->show ip gratuitous-arp Processing gratuitous ARP requests and replies.
Page 74: Set Ip Gratuitous-Arp
Syntax Description request reply both Command Defaults Disabled by default Command Type Switch command. Command Mode Read-Write. Example This example sets both gratuitous ARP requests and replies: Matrix(rw)->set ip gratuitous-arp both 2-48 Matrix NSA Series Configuration Guide Process only gratuitous ARP requests.
Page 75: Clear Ip Gratuitous-Arp
Use this command to stop all gratuitous ARP processing. clear ip gratuitous-arp Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear the gratuitous-arp processing: Matrix(rw)->clear ip gratuitous-arp General Configuration Command Set...
Page 76: Show System
Use this command to display system information, including contact information, power and fan tray status and uptime. show system Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display system information: Matrix(rw)->show system System contact: System location:...
Page 77 Table 2-6 show system Output Details Output What It Displays... System contact Contact person for the system. Default of a blank string can be changed with the set system contact command (Section System location Where the system is located. Default of a blank string can be changed with the set system location command (Section System name...
Page 78: Show System Hardware
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example The example on the following page shows a portion of the information displayed with the show system hardware command. NOTE: Depending on the hardware configuration of your Matrix system, your output will vary from the example shown.
Page 79 Firmware Version: BootCode Version: CPU Version: UpLink: SDRAM: NVRAM: Flash System: /flash0 free space: /flash1 free space: Dip Switch Bank Position: OFF OFF OFF OFF OFF OFF OFF OFF HOST CHIP Revision: FABRIC CHIP Revision: SWITCH CHIP Block ID: Revision:...
Page 80: Show System Utilization
If not specified, CPU, process, and storage system utilization information will be displayed. • If not specified, information for all modules will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display all system utilization information for the module in slot 1: Matrix(rw)->show system utilization slot 1...
Page 81 Switch Filter Database Switch GVRP Switch Host IP Switch IGMP Switch LACP Switch MAC Authentication Switch MAC Locking Switch MTU Discovery Switch Node & Alias Switch Packet Processing Switch POE Switch Port Management Switch PWA Switch Radius Switch Radius Accounting Switch RMON...
Page 82 General Configuration Command Set Setting Basic Device Properties ** Output continued from previous page ** Name ------------------------------------------------------------ Switch Web Server Router Misc. Router Multicast Router Control Plane Router IP Router DHCPS Router OSPF Router RIP Router VRRP Router DVMRP Router PIM...
Page 83: Set System Utilization Threshold
Syntax Description threshold Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the system utilization threshold to 100%: Matrix(rw)->set system utilization threshold 1000 General Configuration Command Set Specifies a threshold value (in 1/10 of a percent).Valid...
Page 84: Clear System Utilization
Use this command to clear the threshold for sending CPU utilization notification messages. clear system utilization Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear the system utilization threshold: Matrix(rw)->clear system utilization 1000 2-58 Matrix NSA Series Configuration Guide...
Page 85: Show Time
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the current time. The output shows the day of the week, month, day, and the time of day in hours, minutes, and seconds and the year: Matrix(rw)->show time...
Page 86: Set Time
[mm/dd/yyyy] [hh:mm:ss] Syntax Description [mm/dd/yyyy] [hh:mm:ss] Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the system clock to 7:50 a.m: Matrix(rw)->set time 7:50:00 2-60 Matrix NSA Series Configuration Guide Sets the time in: •...
Page 87: Show Summertime
Use this command to display daylight savings time settings. show summertime Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display daylight savings time settings: Matrix(rw)->show summertime Summertime is disabled and set to ''...
Page 88: Set Summertime
Syntax Description enable | disable zone Command Defaults If a zone name is not specified, none will be applied. Command Type Switch command. Command Mode Read-Write. Example This example shows how to enable daylight savings time function: Matrix(rw)->set summertime enable 2-62 Matrix NSA Series Configuration Guide Enables or disables the daylight savings time function.
Page 89: Set Summertime Date
Command Defaults If an offset is not specified, none will be applied. Command Type Switch command. Command Mode Read-Write. General Configuration Command Set Specifies the month of the year to start daylight savings time. Specifies the day of the month to start daylight savings time.
Page 90 General Configuration Command Set Setting Basic Device Properties Example This example shows how to set a daylight savings time start date of April 4, 2004 at 2 a.m. and an ending date of October 31, 2004 at 2 a.m. with an offset time of one hour: Matrix(rw)->set summertime date April 4 2004 02:00 October 31 2004 02:00 60 2-64 Matrix NSA Series Configuration Guide...
Page 91: Set Summertime Recurring
Command Defaults If an offset is not specified, none will be applied. Command Type Switch command. Command Mode Read-Write. General Configuration Command Set Specifies the week of the month to restart daylight savings time. Valid values are: first, second, third, fourth, and last.
Page 92 General Configuration Command Set Setting Basic Device Properties Example This example shows how set daylight savings time to recur start date of April 4, 2004 at 2 a.m. and an ending date of October 31, 2004 at 2 a.m. with an offset time of one hour: Matrix(rw)->set summertime recurring first Sunday April 02:00 last Sunday October 02:00 60 2-66 Matrix NSA Series Configuration Guide...
Page 93: Clear Summertime
Use this command to clear the daylight savings time configuration. clear summertime Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear the daylight savings time configuration: Matrix(rw)->clear summertime General Configuration Command Set...
Page 94: Set Prompt
Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the command prompt to Switch 1: Matrix(rw)->set prompt “Switch 1” Switch 1(rw)-> 2-68 Matrix NSA Series Configuration Guide Specifies a text string for the command prompt.
Page 95: Set Cli Completion
Command Defaults If not specified, the status setting will not be maintained as the default. Command Type Switch command. Command Mode Read-Write. Example This example shows how to enable the CLI command completion function and maintain it as the default setting: Matrix(rw)->set cli completion enable default...
Page 96 If a delay is not specified, none will be set. • If not specified, the cursor will not refresh. Command Type Switch command. Command Mode Read-Write. Example This example shows how to execute a command loop 10 times with a 30 second delay: Matrix(rw)->loop 10 30...
Page 97: Show Banner Motd
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the banner message of the day: Matrix(rw)->show banner motd Not one hundred percent efficient, of course ... but nothing ever is.
Page 98: Set Banner Motd
Syntax Description message Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the message of the day banner to read “Change is the price of survival. -- Winston Churchill” : Matrix(rw)->set banner motd Change is the price of survival.
Page 99: Clear Banner Motd
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear the message of the day banner to a blank string: Matrix(rw)->clear banner motd General Configuration Command Set...
Page 100: Show Version
Switch command. Command Mode Read-Only. Example This example shows how to display version information: Matrix(rw)->show version Copyright (c) 2004 by Enterasys Networks, Inc. Slot Table 2-7 provides an explanation of the command output. Table 2-7 show version Output Details Output...
Page 101: Set System Name
Syntax Description string Command Defaults If string is not specified, the system name will be cleared. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the system name to Information Systems: Matrix(rw)->set system name “Information Systems”...
Page 102: Set System Location
Syntax Description string Command Defaults If string is not specified, the location name will be cleared. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the system location string: Matrix(rw)->set system location “Bldg N32-04 Closet 9”...
Page 103: Set System Contact
[string] Syntax Description string Command Defaults If string is not specified, the contact name will be cleared. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the system contact string: Matrix(rw)->set system contact “Joe Smith”...
Page 104: Set Width
The length of the CLI is set using the set length command as described in set width screenwidth Syntax Description screenwidth Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the terminal columns to 50: Matrix(rw)->set width 50 2-78 Matrix NSA Series Configuration Guide Sets the number of terminal columns.
Page 105: Set Length
Use this command to set the number of lines the CLI will display. set length screenlength Syntax Description screenlength Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the terminal length to 50: Matrix(rw)->set length 50 General Configuration Command Set Sets the number of lines in the CLI display.
Page 106: Show Logout
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the CLI logout setting: Matrix(rw)->show logout Logout currently set to: 10 minutes. 2-80 Matrix NSA Series Configuration Guide...
Page 107: Set Logout
Syntax Description timeout Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the system timeout to 10 minutes: Matrix(rw)->set logout 10 General Configuration Command Set Sets the number of minutes the system will remain idle before timing out.
Page 108: Show Physical Alias
Command Defaults If no parameters are specified, all physical alias information will be displayed. Command Type Switch command. Command Mode Read-Only. 2-82 Matrix NSA Series Configuration Guide (Optional) Displays the alias set for the chassis. (Optional) Displays the alias set for a specified slot in the chassis.
Page 109 Example This example shows how to display physical alias information for the chassis. In this case, the chassis entity is 1 and there is no alias currently set for the chassis: Matrix(rw)->show physical alias chassis chassis-1 General Configuration Command Set alias=<empty string>...
Page 110: Set Physical Alias
Command Defaults If string is not specified, the alias of the type specified will be cleared. Command Type Switch command. 2-84 Matrix NSA Series Configuration Guide Sets an alias for the chassis. Sets an alias for a specific slot in the chassis.
Page 111 General Configuration Command Set Setting Basic Device Properties Command Mode Read-Write. Example This example shows how to set the alias for the chassis to “chassisone”: Matrix(rw)->set physical alias chassis chassisone Matrix NSA Series Configuration Guide 2-85...
Page 112: Clear Physical Alias
Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set clear the alias set for the chassis: Matrix(rw)->clear physical alias chassis 2-86 Matrix NSA Series Configuration Guide Clears the chassis alias.
Page 113: Show Physical Assetid
Syntax Description module module Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display asset ID information for module 1. In this case, none has been configured: Matrix(rw)->show physical assetid module 1...
Page 114: Set Physical Assetid
Syntax Description module module string Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the asset ID information for module 1 to “dfe1”: Matrix(rw)->set physical assetid module 1 dfe1 2-88 Matrix NSA Series Configuration Guide Sets an asset ID for a specific module.
Page 115: Clear Physical Assetid
Use this command to reset the asset ID for a moduleto a zero-length string. clear physical assetid module module Syntax Description module module Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear the asset ID: Matrix(rw)->clear physical assetid General Configuration Command Set Specifies the module for which to clear the asset ID.
Page 116: Activating Licensed Features
Series device, you must purchase and activate a license key. If you have purchased a license, you can proceed to activate your license as described in this section. If you wish to purchase a license, contact Enterasys Networks Sales. Purpose To activate and verify licensed features.
Page 117: Set License
Syntax Description advanced license-key slot slot Command Type Switch command. Command Mode Read-Write. Command Defaults If not specified, the license will be bound to all modules. Example This example shows how to use license key abcdefg123456789 to activate advanced routing features: Matrix(rw)->set license advanced abcdefg123456789...
Page 118: Show License
When available and activated, use this command to display your license key. show license Syntax Description None. Command Type Switch command. Command Mode Read-Write. Command Defaults None. Example This example shows how to display your license key information: Matrix(rw)->show license...
Page 119: Clear License
Use this command to clear license key settings. Syntax Description advanced slot slot Command Type Switch command. Command Mode Read-Write. Command Defaults If not specified, the license settings will be cleared from all modules. Example This example shows how to clear advanced license key settings: Matrix(rw)->clear license advanced...
Page 120: Downloading A New Firmware Image
General Configuration Command Set Downloading a New Firmware Image 2.2.5 Downloading a New Firmware Image You can upgrade the operational firmware in the Matrix Series device without physically opening the device or being in the same location. There are three ways to download firmware to the device: •...
Page 121: Downloading Via The Serial Port
To download device firmware via the serial (console) port, proceed as follows: 1. With the console port connected, power up the device. The following message displays: Boot ROM Initialization, Version 01.00.01 Copyright (c) 2004 Enterasys Networks, Inc. SDRAM size: 128 MB Testing SDRAM...
Page 122 General Configuration Command Set Downloading a New Firmware Image 3. Type 2. The following baud rate selection screen displays: 1 - 1200 2 - 2400 3 - 4800 4 - 9600 5 - 19200 6 - 38400 7 - 57600 8 - 115200 0 - no change 4.
Page 123: Reviewing And Selecting A Boot Firmware Image
11.Type boot to reboot the device. The following message indicates the downloaded image booted successfully: [System Image Loader : boot /flash0/ - Volume is OK Loading myimage... NOTE: If you reboot without specifying the image to boot with setboot as described above, the device will attempt to load whatever image is currently stored in the bootstring via the set boot system command the image, or it is not set, it will search through available images and attempt to boot the...
Page 124: Show Boot System
Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the switch’s boot firmware image: Matrix(rw)->show boot system Current system image to boot: bootfile 2-98 Matrix NSA Series Configuration Guide Section 2.2.8.1, displays additional information about boot (Section 2.2.6.2) will...
Page 125: Set Boot System
2.2.6.2 set boot system Use this command to set the firmware image the switch loads at startup. This is the image that will be loaded automatically after the system has been reset. Although it is not necessary to choose to reset the system and activate the new boot image immediately, the CLI will prompt you whether or not you want to do so.
Page 126: Starting And Configuring Telnet
General Configuration Command Set Starting and Configuring Telnet 2.2.7 Starting and Configuring Telnet Purpose To enable or disable Telnet, and to start a Telnet session to a remote host. The Matrix Series device allows a total of four inbound and / or outbound Telnet session to run simultaneously. Commands The commands used to enable, start and configure Telnet are listed below and described in the associated section as shown.
Page 127: Show Telnet
Use this command to display the status of Telnet on the device. show telnet Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display Telnet status: Matrix(rw)->show telnet Telnet inbound is currently: ENABLED...
Page 128: Set Telnet
General Configuration Command Set Starting and Configuring Telnet 2.2.7.2 set telnet Use this command to enable or disable Telnet on the device. set telnet {enable | disable}{inbound | outbound | all} Syntax Description enable | disable inbound | outbound | all Command Defaults None.
Page 129 Syntax Description host port Command Defaults If not specified, the default port number 23 will be used. Command Type Switch command. Command Mode Read-Write. Example This example shows how to start a Telnet session to a host at 10.21.42.13: Matrix(rw)->telnet 10.21.42.13 General Configuration Command Set Specifies the name or IP address of the remote host.
Page 130: Show Router Telnet
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the state of Telnet service to the router: Matrix(rw)->show router telnet Telnet to Router IP is enabled...
Page 131: Set Router Telnet
Use this command to enable or disable Telnet service to the router interface IP address. set router telnet {enable | disable} Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to disable Telnet service to the router: Matrix(rw)->set router telnet disable General Configuration Command Set...
Page 132: Clear Router Telnet
Use this command to reset Telnet service to the router to the default state of disabled. clear router telnet Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset Telnet service to the router to disabled: Matrix(rw)->clear router telnet 2-106 Matrix NSA Series Configuration Guide...
Page 133: Managing Configuration And Image Files
Matrix Series devices provide a single configuration interface which allows you to perform both switch and router configuration with the same command set. The Matrix Series devices now support a script feature that allows you to execute a previously created script file containing CLI commands, and at the time of execution, enter optional arguments that modify the actions of the commands.
Page 134 2.2.8.1 Use this command to list files stored in the file system. dir [filename] Syntax Description filename Command Type Switch. Command Mode Read-Only. Command Defaults If filename is not specified, all files in the system will be displayed. Example This example shows how to list all the files in the system: Table 2-8 provides an explanation of the command output.
Page 135 Table 2-8 dir Output Details (Continued) Output What It Displays... Location Modules on which this image resides. Compatibility Module types on which this image is qualified to run. Attempting to run an incompatible image on a given module will not succeed. Files User maintained files, such as CLI configuration files.
Page 136: Show File
Use this command to display the contents of an image or configuration file. show file filename Syntax Description filename Command Type Switch. Command Mode Read-Only. Command Defaults None. Example This example (an excerpt of the complete output) shows how to display the contents of the sample.cfg configuration file:...
Page 137: Show Config
Use this command to display the system configuration or write the configuration to a file. show config [all] [facility] [outfile outfile] Syntax Description facility outfile outfile Command Type Switch. Command Mode Read-Write. Command Defaults If no parameters are specified, only non-default system configuration settings will be displayed.
Page 138 General Configuration Command Set Managing Configuration and Image Files Example This example shows how to display the current non-default device configuration: Matrix(rw)->show config This command shows non-default configurations only. Use 'show config all' to show both default and non-default configurations. begin # ***** NON-DEFAULT CONFIGURATION ***** # cli...
Page 139 [append] Syntax Description filename append Command Type Switch. Command Mode Read-Write. Command Defaults If append is not specified, the current running configuration will be replaced with the contents of the configuration file, which will require an automated reset of the chassis.
Page 140 Use this command to upload or download an image or a CLI configuration file. copy source destination Syntax Description source destination Command Type Switch. Command Mode Read-Write. Command Defaults None. Examples This example shows how to download an image via TFTP: Matrix(rw)->copy tftp://134.141.89.34/ets-mtxe7-msi newimage...
Page 141 This example shows how to upload a configuration file via Anonymous FTP from the module in slot 3: Matrix(rw)->copy slot3/myconfig ftp://134.141.89.34/myconfig This example shows how to copy a configuration file from the slot 3 directory to the slot 5 directory: Matrix(rw)->copy slot3/myconfig slot5/myconfig General Configuration Command Set Managing Configuration and Image Files...
Page 142 NOTE: Use the show config command as described in current image and configuration file names. Syntax Description filename Command Type Switch. Command Mode Read-Write. Command Defaults None. Examples This example shows how to delete the “myconfig” configuration file from slot 3: Matrix(rw)->delete slot3/myconfig...
Page 143 Matrix device using the copy command The file can contain any number of switch commands, up to a maximum file size of 128 kilobytes. Router commands cannot be included in the file. Scripts cannot be nested within the file. Note that the history command will not reflect the execution of commands within a script file.
Page 144 General Configuration Command Set Managing Configuration and Image Files When the script command parses the file and performs the command line argument substitution, the commands are converted to the following: set port alias fe.1.1 script_set_port set port vlan fe.1.1 100 modify-egress set port jumbo enable fe.1.1 set port disable fe.1.1 set port lacp port fe.1.1 disabled...
Page 145: Enabling Or Disabling The Path Mtu Discovery Protocol
2.2.9 Enabling or Disabling the Path MTU Discovery Protocol Purpose To enable or disable the path MTU (Maximum Transmission Unit) discovery protocol on the device. Because ports with transmission speeds higher than 100 Mbps are capable of transmitting frames up to a maximum of 10,239 bytes, it is necessary to have the path MTU discovery protocol enabled if jumbo frames are allowed in the network.
Page 146: Show Mtu
Use this command to display the status of the path MTU discovery protocol on the device. show mtu Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display path MTU discovery status: Matrix(rw)->show mtu MTU discovery status: Enabled...
Page 147 Use this command to disable or re-enable path MTU discovery protocol on the device. set mtu {enable | disable} Syntax Description enable | disable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to disable path MTU discovery: Matrix(rw)->set mtu disable General Configuration Command Set Enabling or Disabling the Path MTU Discovery Protocol Enables or disables path MTU discovery protocol.
Page 148: Clear Mtu
Use this command to reset the state of the path MTU discovery protocol back to enabled. clear mtu Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the state of MTU discovery: Matrix(rw)->clear mtu 2-122 Matrix NSA Series Configuration Guide...
Page 149: 2.2.10 Pausing, Clearing And Closing The Cli
2.2.10 Pausing, Clearing and Closing the CLI Purpose To pause or clear the CLI screen or to close your CLI session. Commands The commands used to pause, clear and close the CLI session are listed below and described in the associated sections as shown.
Page 150 Syntax Description seconds Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to pause the CLI for 10 seconds: Matrix(rw)->wait 10 2-124 Matrix NSA Series Configuration Guide Sets the number of seconds for the CLI to pause before...
Page 151 Use this command to clear the screen for the current CLI session. Syntax Description None Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to clear the CLI screen: Matrix(rw)->cls General Configuration Command Set...
Page 152 When operating in router mode, the exit command jumps to a lower configuration level. For details on enabling router configuration modes, refer to Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to exit a CLI session: Matrix(rw)->exit 2-126 Matrix NSA Series Configuration Guide to change this default.
Page 153: 2.2.11 Resetting The Device
2.2.11 Resetting the Device Purpose To reset one or more device modules, to clear the user-defined switch and router configuration parameters, or to schedule a system reset in order to load a new boot image. Commands The commands used to reset the device and clear the configuration are listed below and described in the associated sections as shown.
Page 154: Show Reset
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This command shows how to display reset information Matrix(rw)->show reset Reset scheduled for Fri Jan 21 2000, 23:00:00 (in 3 days 12 hours 56 minutes 57 seconds).
Page 155 2.2.11.2 reset Use this command to reset the device without losing any user-defined configuration settings or to display information about device resets. reset {[mod | system | nemcpu {mod.nemcpu}] [cancel]} NOTE: A Matrix Series device can also be reset with the RESET button located on its front panel.
Page 156 General Configuration Command Set Resetting the Device This example shows how to cancel a scheduled system reset: Matrix(rw)->reset cancel Reset cancelled. This example shows how to reset a Matrix Security Module installed on the DFE in slot 4. Matrix(rw)->reset nemcpu 4.1 This command will reset NEM CPU 4.1.
Page 157: Syntax Description
If month and day are not specified, the reset will be scheduled for the first occurrence of the specified time. • If a reason is not specified, none will be applied. Command Type Switch command. Command Mode Read-Write. Examples This example shows how to schedule a reset at 8 p.m. on October 12: Matrix(rw)->reset at 20:00 10/12...
Page 158 Command Defaults If a reason is not specified, none will be applied. Command Type Switch command. Command Mode Read-Write. Example This example shows how to schedule a device reset in 5 hours and 20 minutes: Matrix(rw)->reset in 5:20...
Page 159: Clear Config
2.2.11.5 clear config Use this command to clear the user-defined switch and router configuration parameters for one or more modules. Executing clear config on one Matrix module resets that module back to its factory defaults. For a list of factory device default settings, refer to clear config mod-num | all NOTE: This command will not affect the IP address.
Page 160: 2.2.12 Gathering Technical Support Information
General Configuration Command Set Gathering Technical Support Information 2.2.12 Gathering Technical Support Information Purpose To gather common technical support information. Command The command used to display technical support-related information is listed below and described in the associated section as shown. •...
Page 161: Show Support
• show netstat (Section • show arp (Section 11.2.5.1) • show system utilization • show config (Section Command Type Switch command. Command Mode Read-Only. (Optional) Filename (slotN/name) to save output. 2.2.3.25) (Section 2.2.3.8) 7.3.1.1) 11.2.1.1) (Section 5.3.1.2) 4.3.2.2) (Section 6.2.1.1) (Section 6.2.2.9)
Page 162 General Configuration Command Set Gathering Technical Support Information Example This example shows how to execute the show support command and save the results to slot 1 as a support3.txt file: Matrix(su)->show support slot1/support3.txt Writing output to file... Writing 'show config' output... Writing Message Log output...
Page 163: Preparing The Device For Router Mode
PREPARING THE DEVICE FOR ROUTER MODE Startup and general configuration of the Matrix Series device must occur from the switch CLI. For details on how to start the device and configure general platform settings, refer to Section 2.2.1. Once startup and general device settings are complete, IP configuration and other router-specific commands can be executed when the device is in router mode.
Page 164 Preparing the Device for Router Mode Pre-Routing Configuration Tasks Table 2-9 Enabling the Switch for Routing To do this task... Step 1 Configure a routing module. Step 2 Enable router mode. Step 3 Enable router Privileged EXEC mode. Step 4 Enable global router configuration mode.
Page 165: Reviewing And Configuring Routing
• Configure VLAN 1 on IP address 182.127.63.1 255.255.255.0 as the routing interface for that module. Figure 2-8 Enabling the Switch for Routing Matrix(rw)->set router 1 Matrix(rw)->router 1 Matrix>Router1>enable Matrix>Router1#configure terminal Enter configuration commands: Matrix>Router1(config)#interface vlan 1 Matrix>Router1(config-if(Vlan 1))#ip address 182.127.63.1 255.255.255.0 Matrix>Router1(config-if(Vlan 1))#no shutdown...
Page 166: Show Router
Use this command to display which modules are configured for routing. show router Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to display which modules are configured for routing: Matrix(rw)->show router ------------------------------------------------------------...
Page 167 Use this command to configure routing on a module. set router module Syntax Description module Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set module 1 as a routing module: Matrix(rw)->set router 1 Preparing the Device for Router Mode Reviewing and Configuring Routing Specifies the module to configure for routing.
Page 168: Clear Router
Use this command to disable routing on a module. clear router module Syntax Description module Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set disable routing on module 1: Matrix(rw)->clear router 1 2-142 Matrix NSA Series Configuration Guide Specifies the routing module to disable for routing.
Page 169 In the Matrix DFE-Gold Series chassis and N standalone devices, routing must be configured on module 1. router module Syntax Description module Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to enable routing on module 1: Matrix(rw)->router 1 Preparing the Device for Router Mode Reviewing and Configuring Routing Specifies the module on which to enable routing mode.
Page 170: Enabling Router Configuration Modes
NOTE: The command prompts used as examples in guide show switch operation for a user in Read-Write (rw) access mode, and a system where module 1 and VLAN 1 have been configured for routing. The prompt changes depending on your current configuration mode, the specific module, and the interface types and numbers configured for routing on your system.
Page 171 Table 2-11 Router CLI Configuration Modes (Continued) Use this mode... To... Router Set IP protocol Configuration parameters. Mode Key Chain Set protocol (RIP) Configuration authentication key Mode parameters. Key Chain Key Configure a specific Configuration key within a RIP Mode authentication key chain.
Page 172 Mode NOTE: To jump to a lower configuration mode, type exit at the command prompt. To revert back to switch CLI, type exit from Privileged EXEC router mode. 2-146 Matrix NSA Series Configuration Guide Access method... Resulting Prompt...
Page 173: Configuring Discovery Protocols
Configuring Discovery Protocols This chapter describes how to configure the discovery protocols supported by the firmware using CLI commands. OVERVIEW Currently, three discovery protcols are supported: • The Enterasys Discovery (CDP), described in page 3-4 • The Cisco Discovery Protocol, described in 3-12 •...
Page 174: Show Neighbors
Command Defaults If port-string is not specified, all Network Neighbor Discovery information will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display Network Neighbor Discovery information: 3-2 Matrix NSA Series Configuration Guide (Optional) Displays Network Neighbor Discovery information for a specific port.
Page 175 Matrix(rw)->show neighbors Port Device ID ----------------------------------------------------------------------------- ge.1.1 00-01-f4-00-71-9c ge.1.2 00-01-f4-00-71-9c ge.1.3 00-01-f4-96-0f-fd ge.1.4 00-01-f4-96-0f-fd ge.1.5 0001f45b601f ge.1.6 0001f45b601f ge.3.1 00-01-f4-00-71-9c ge.3.2 00-01-f4-00-71-9c ge.3.5 00-01-f4-96-0f-fd ge.3.6 00-01-f4-96-0f-fd ge.3.7 0001f45b601f ge.3.8 0001f45b601f ge.4.1 00-01-f4-7f-16-39 ge.4.2 00-01-f4-5b-60-81 ge.4.3 00-01-f4-96-12-6d ge.4.12 00-01-f4-96-19-d9 ge.5.2 00-e0-63-9d-d0-e7 ge.5.10 00-01-f4-0f-5e-92 Discovery Protocols Command Set...
Page 176: Enterasys Discovery Protocol
Discovery Protocols Command Set Enterasys Discovery Protocol 3.2.2 Enterasys Discovery Protocol Purpose To enable and configure the Enterasys Discovery Protocol (CDP), used to discover network topology. When enabled, CDP allows Enterasys devices to send periodic PDUs about themselves to neighboring devices. Commands The commands used to review and configure the CDP discovery protocol are listed below and described in the associated section as shown.
Page 177: Show Cdp
Syntax Description port-string Command Defaults If port-string is not specified, all CDP information will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display CDP information for ports fe.1.1 through fe.1.9: Matrix(rw)->show cdp fe.1.1-9...
Page 178 Discovery Protocols Command Set Enterasys Discovery Protocol Table 3-1 provides an explanation of the command output. Table 3-1 show cdp Output Details Output What It Displays... CDP Global Status Whether CDP is globally auto-enabled, enabled or disabled. The default state of auto-enabled can be reset with the set cdp state command. For details, refer to CDP Versions CDP version number(s) supported by the device.
Page 179: Set Cdp State
| disable | enable port-string Command Defaults If port-string is not specified, the CDP state will be globally set. Command Type Switch command. Command Mode Read-Write. Examples This example shows how to globally enable CDP: Matrix(rw)->set cdp state enable This example shows how to enable the CDP for port fe.1.2:...
Page 180: Set Cdp Auth
Syntax Description auth-code Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the CDP authentication code to 1,2,3,4,5,6,7,8 Matrix(rw)->set cdp auth 1,2,3,4,5,6,7,8 3-8 Matrix NSA Series Configuration Guide Specifies an authentication code for the CDP protocol.
Page 181: Set Cdp Interval
Syntax Description frequency Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the CDP interval frequency to 15 seconds: Matrix(rw)->set cdp interval 15 Specifies the transmit frequency of CDP messages in seconds.Valid values are from 5 to 900 seconds.
Page 182: Set Cdp Hold-Time
Syntax Description hold-time Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set CDP hold time to 60 seconds: Matrix(rw)->set cdp hold-time 60 3-10 Matrix NSA Series Configuration Guide Specifies the hold time value for CDP messages in seconds.Valid values are from 15 to 600.
Page 183: Clear Cdp
Command Defaults At least one optional parameter must be entered. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the CDP state to auto-enabled: Matrix(rw)->clear cdp state (Optional) Resets the global CDP state to auto-enabled.
Page 184: Cisco Discovery Protocol
Discovery Protocols Command Set Cisco Discovery Protocol 3.2.3 Cisco Discovery Protocol Purpose To enable and configure the Cisco Discovery Protocol, used to discover network topology. When enabled, the Cisco Discovery Protocol allows Cisco devices to send periodic PDUs about themselves to neighboring devices. The Cisco Discovery Protocol is also used to manage the Cisco module of the Convergence End Points (CEP) IP phone detection function described in Section 14.3.8.
Page 185: Show Ciscodp
Use this command to display global Cisco Discovery Protocol information. show ciscodp Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display Cisco Discovery Protocol information. In this case, defaults have not been changed: Matrix>show ciscodp...
Page 186 Number of seconds neighboring devices will hold PDU transmissions from the sending device. Default value of 180 can be changed with the set ciscodp holdtime command as described in Section 3.2.3.5. The MAC address of the switch. The time that the last Cisco DP neighbor was discovered.
Page 187: Show Ciscodp Port Info
Syntax Description port-string Command Defaults If port-string is not specified, CiscoDP information will be displayed for all ports. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display Cisco Discovery Protocol information for ports fe.1.1 through fe.1.5:...
Page 188 Discovery Protocols Command Set Cisco Discovery Protocol Table 3-3 show port ciscodp info Output Details Output Port State VVID Trust 3-16 Matrix NSA Series Configuration Guide What It Displays... Port designation. Whether CiscoDP is enabled or disabled on this port. Default state of enabled can be changed using the set ciscodp port command (Section...
Page 189: Set Ciscodp Status
Syntax Description auto enable disable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to enable Cisco Discovery Protocol on the device: Matrix>set ciscodp status enable Globally enable only if CiscoDP PDUs are received...
Page 190: Set Ciscodp Timer
Syntax Description time Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the Cisco Discovery Protocol timer to 120 seconds: Matrix>set ciscodp timer 120 3-18 Matrix NSA Series Configuration Guide Specifies the number of seconds between CiscoDP PDU transmissions.
Page 191: Set Ciscodp Holdtime
Syntax Description time Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the Cisco Discovery Protocol hold time to 180 seconds: Matrix>set ciscodp holdtime 180 Specifies the time to live for CiscoDP PDUs. Valid values are 10 - 255.
Page 192: Set Ciscodp Port
A Cisco DP port trust status of trusted or untrusted is only meaningful when a Cisco IP phone is connected to a switch port and a PC or other device is connected to the back of the Cisco IP phone.
Page 193 Instruct attached phone to overwrite the 802.1p tag of cos-ext value port-string Command Defaults None. Command Type Switch command. Command Mode Read-Write. Set the CiscoDP port operational status disable Do not transmit or process CiscoDP PDUs enable Transmit and process CiscoDP PDUs...
Page 194 Discovery Protocols Command Set Cisco Discovery Protocol Examples This example shows how to set the Cisco DP port voice VLAN ID to 3 on port fe.1.6 and enable the port operational state: Matrix>set ciscodp port status enable vvid 3 fe.1.6 This example shows how to set the Cisco DP extended trust mode to untrusted on port fe.1.5 and set the CoS priority to 1: Matrix>set ciscodp port trust-ext untrusted cos-ext 1 fe.1.5...
Page 195: Clear Ciscodp
Clear the trust mode configuration of the port to trusted. port-string Command Defaults None. Command Type Switch command. Command Mode Read-Write. Examples This example shows how to clear all the Cisco DP parameters back to the default settings: Matrix>clear ciscodp Clear global CiscoDP enable status to default of auto.
Page 196 Discovery Protocols Command Set Cisco Discovery Protocol This example shows how to clear the Cisco DP port status on port fe.1.5: Matrix>clear ciscodp port status fe.1.5 3-24 Matrix NSA Series Configuration Guide...
Page 197: Link Layer Discovery Protocol And Lldp-Med
Either LLDP or LLDP-MED, but not both, can be used on an interface between two devices. A switch port uses LLDP-MED when it detects that an LLDP-MED-capable device is connected to it. LLDP Frames LLDP information is contained within a Link Layer Discovery Protocol Data Unit (LLDPDU) sent in a single 802.3 Ethernet frame.
Page 198: Configuration Tasks
Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED The standard specifies that certain TLVs are mandatory in transmitted LLDPDUs, while others are optional. You can configure on a port-specific basis which optional LLDP and LLDP-MED TLVs should be sent in LLDPDUs. Configuration Tasks The commands included in this implementation allow you to perform the following configuration tasks:...
Page 199 • show lldp port local-info • show lldp port remote-info • show lldp port network-policy • set lldp tx-interval (Section • set lldp hold-multiplier (Section • set lldp trap-interval (Section • set lldp med-fast-repeat • set lldp port status (Section •...
Page 200: Show Lldp
Use this command to display LLDP configuration information. show lldp Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display LLDP configuration information. Matrix(ro)->show lldp Message Tx Interval Message Tx Hold Multiplier : 4...
Page 201: Show Lldp Port Status
Command Defaults If port-string is not specified, LLDP status information will be displayed for all ports. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display LLDP port status information for all ports. Matrix(ro)->show lldp port status...
Page 202: Show Lldp Port Trap
Command Defaults If port-string is not specified, LLDP port trap information will be displayed for all ports. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display LLDP port trap information for all ports. Matrix(ro)->show lldp port trap...
Page 203: Show Lldp Port Tx-Tlv
Command Defaults If port-string is not specified, TLV configuration information will be displayed for all ports. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display transmit TLV information for three ports. Matrix(ro)->show lldp port tx-tlv ge.1.1-3...
Page 204: Show Lldp Port Location-Info
Command Defaults If port-string is not specified, port location configuration information will be displayed for all ports. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display port location information for three ports. Matrix(ro)->show lldp port location-info ge.1.1-3...
Page 205: Show Lldp Port Local-Info
Chassis ID : 00-E0-63-93-74-A5 Sys Name : LLDP PoE test Chassis Sys Desc : Enterasys Networks, Inc. Matrix E7 Gold Rev 05.41 Sys Cap Supported/Enabled Auto-Neg Supported/Enabled Auto-Neg Advertised Link Layer Discovery Protocol and LLDP-MED (Optional) Displays local system information for one or a range of ports.
Page 206 Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED Operational Speed/Duplex/Type : 100 full tx Max Frame Size (bytes) Vlan Id LAG Supported/Enabled/Id Protocol Id : Spanning Tree v-3 (IEEE802.1s) LACP v-1 GVRP Network Policy (app/tag/vlanId/cos/dscp) ECS ELIN : 1234567890123456789012345 PoE Device PoE Power Source PoE MDI Supported/Enabled...
Page 207 Table 3-4 show lldp port local-info Output Details Output Field Chassis ID Sys Name Sys Desc Sys Cap Supported/Enabled Optional basic LLDP TLV. System capabilities, value can be Auto-Neg Supported/Enabled Auto-Neg Advertised Operational Speed/Duplex/Type Max Frame Size (bytes) Vlan Id LAG Supported/Enabled/Id IEEE 802.3 Extensions Link Aggregation TLV.
Page 208 LLDP-MED Extensions Extended Power via MDI TLV. Displayed only when a port has PoE capabilities. Value is the Power Type of the device. On a Matrix switch port, the value is Power Sourcing Entity (PSE). LLDP-MED Extensions Extended Power via MDI TLV.
Page 209 Table 3-4 show lldp port local-info Output Details Output Field PoE Power Limit (mW) PoE Power Priority Link Layer Discovery Protocol and LLDP-MED What it Displays ... LLDP-MED Extensions Extended Power via MDI TLV. Displayed only when a port has PoE capabilities. Indicates the total power the port is capable of sourcing over a maximum length cable, based on its current configuration, in milli-Watts.
Page 210: Show Lldp Port Remote-Info
Command Defaults If port-string is not specified, remote system information will be displayed for all ports. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the remote system information stored for port ge.3.1. The remote system information was received from an IP phone, which is an LLDP-MED-enabled device.
Page 211 Network Policy (app/tag/vlanId/cos/dscp) Hardware Revision Firmware Revision Software Revision Serial Number Manufacturer Model Number Note that the information fields displayed by the show lldp port remote-info command will vary, depending on the type of remote device that is connected to the port. Table 3-5 describes the output fields that are unique to the remote system information database.
Page 212: Show Lldp Port Network-Policy
Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED 3.2.4.8 show lldp port network-policy Use this command to display LLDP port network policy configuration information. Network policy information is configured using the show lldp port network policy {all | voice | voice-signaling | guest-voice | guest-voice-signaling | software-voice | video-conferencing | streaming-video | video-signaling } [port-string] Syntax Description...
Page 213: Switch Command
Command Type Switch command. Command Mode Read-Only. Example This example shows how to display all LLDP network policy information for ge.1.1. Matrix(ro)->show lldp port network-policy all ge.1.1 Ports Application ------- --------------------- ge.1.1 voice voice signaling guest voice guest voice signaling...
Page 214: Set Lldp Tx-Interval
LLDP local system information. set lldp tx-interval frequency Syntax Description frequency Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example sets the transmit interval to 20 seconds. Matrix(rw)->set lldp tx-interval 20 3-42 Matrix NSA Series Configuration Guide Specifies the number of seconds between transmissions of LLDP frames.
Page 215: Set Lldp Hold-Multiplier
Syntax Description multiplier-val Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example sets the transmit interval to 20 seconds and the hold multiplier to 5, which will configure a time-to-live of 100 to be used in the TTL field in the LLDPDU header.
Page 216: Set Lldp Trap-Interval
Syntax Description frequency Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example sets the minimum interval between LLDP traps to 10 seconds. Matrix(rw)->set lldp trap-interval 10 3-44 Matrix NSA Series Configuration Guide Specifies the minimum time between LLDP trap transmissions, in seconds.
Page 217: Set Lldp Med-Fast-Repeat
Syntax Description count Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example sets the number of fast start LLDPDUs to be sent to 4. Matrix(rw)->set lldp med-fast-repeat 4 Discovery Protocols Command Set...
Page 218: Set Lldp Port Status
Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example enables both transmitting LLDPDUs and receiving and processing LLDPDUs from remote systems on ports ge.1.1 through ge.1.6. Matrix(rw)->set lldp port status both ge.1.1-6 3-46 Matrix NSA Series Configuration Guide Enable transmitting LLDPDUs on the specified ports.
Page 219: Set Lldp Port Trap
Syntax Description enable disable port-string Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example enables transmitting LLDP traps on ports ge.1.1 through ge.1.6. Matrix(rw)->set lldp port trap enable ge.1.1-6 Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED Enable transmitting LLDP traps on the specified ports.
Page 220: Set Lldp Port Med-Trap
Syntax Description enable disable port-string Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example enables transmitting LLDP-MED traps on ports ge.1.1 through ge.1.6. Matrix(rw)->set lldp port med-trap enable ge.1.1-6 3-48 Matrix NSA Series Configuration Guide Enable transmitting LLDP-MED traps on the specified ports.
Page 221: Set Lldp Port Location-Info
Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example After you configure a location information value, you must also configure the port to send the Location Information TLV with the ELIN identifier 5551234567 on ports ge.1.1 through ge.1.6 and then configures the ports to send the Location Information TLV.
Page 222: Set Lldp Port Tx-Tlv
Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED 3.2.4.17 set lldp port tx-tlv Use this command to select the optional LLDP and LLDP-MED TLVs to be transmitted in LLDPDUs by the specified port or ports. Use the values of these TLVs for the port. set lldp port tx-tlv {[all] | [port-desc] [sys-name] [sys-desc] [sys-cap] [mgmt-addr] [vlan-id] [stp] [lacp] [gvrp] [mac-phy] [poe] [link-aggr] [max-frame] [med-cap] [med-pol] [med-loc] [med-poe]} port-string...
Page 223 mac-phy MAC-PHY Configuration/Status IEEE 802.3 Extensions TLV. Value sent includes the operational MAU type, duplex, and speed of the port. Power via MDI IEEE 802.3 Extensions TLV. Values sent include whether pair selection can be controlled on port, and the power class supplied by the port. Only valid for PoE-enabled ports.
Page 224 Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example configures the management address, MED capability, MED network policy, and MED location identification TLVs to be sent in LLDPDUs by port ge.1.1.
Page 225: Set Lldp Port Network-Policy
3.2.4.18 set lldp port network-policy Use this command to configure network policy for a set of applications on a port or range of ports. The policies configured with this command are sent in LLDPDUs as LLDP-MED Network Policy TLVs. Multiple Network Policy TLVs can be sent in a single LLDPDU. set lldp port network-policy {all | voice | voice-signaling | guest-voice | guest-voice-signaling | softphone-voice | video-conferencing | streaming-video | video-signaling} [state {enable | disable}] [ tag {tagged | untagged}]...
Page 226 Command Defaults None. Command Type Switch command. Command Mode Read-Write. Usage As described in the ANSI/TIA Standards document 1057, the Network Policy TLV is “intended for use with applications that have specific real-time network policy requirements, such as interactive voice and/or video services”...
Page 227 Example This example configures the voice application TLV on port fe.2.1 and then configures the port to send the Network Policy TLV. Matrix(rw)->set lldp port network-policy voice state enable tag tagged vlan dot1p fe.2.1 Matrix(rw)->set lldp port tx-tlv med-pol fe.2.1 Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED Matrix NSA Series Configuration Guide...
Page 228: Clear Lldp
Command Defaults None. Command Type Switch command. Command Mode Read-Write. Examples This example returns the transmit interval to the default value of 30 seconds. Matrix(rw)->clear lldp tx-interval 3-56 Matrix NSA Series Configuration Guide Return all LLDP configuration parameters to their default values, including port LLDP configuration parameters.
Page 229: Clear Lldp Port Status
Syntax Description port-string Command Defaults None. Command Type Switch command. Command Mode Read-write. Example This example returns port ge.1.1 to the default state of enabled for both transmitting and processing received LLDPDUs. Matrix(rw)->clear lldp port status ge.1.1...
Page 230: Clear Lldp Port Trap
Syntax Description port-string Command Defaults None. Command Type Switch command. Command Mode Read-write. Example This example returns port ge.1.1 to the default LLDP trap state of disabled. Matrix(rw)->clear lldp port trap ge.1.1 3-58 Matrix NSA Series Configuration Guide...
Page 231: Clear Lldp Port Med-Trap
Syntax Description port-string Command Defaults None. Command Type Switch command. Command Mode Read-write. Example This example returns port ge.1.1 to the default LLDP-MED trap state of disabled. Matrix(rw)->clear lldp port med-trap ge.1.1 Discovery Protocols Command Set Link Layer Discovery Protocol and LLDP-MED Specifies the port or range of ports to be affected.
Page 232: Clear Lldp Port Location-Info
Syntax Description elin port-string Command Defaults None. Command Type Switch command. Command Mode Read-write. Example This example returns the location information ELIN value on port ge.1.1 to the default value of null. Matrix(rw)->clear lldp port location-info elin ge.1.1 3-60 Matrix NSA Series Configuration Guide Specifies that the ECS ELIN location information value should be cleared.
Page 233: Clear Lldp Port Network-Policy
3.2.4.24 clear lldp port network-policy Use this command to return network policy for a set of applications on a port or range of ports to default values. clear lldp port network-policy {all | voice | voice-signaling | guest-voice | guest-voice-signaling | softphone-voice | video-conferencing | streaming-video | video-signaling} {[state ] [ tag ] [vid ] [cos ] [dscp ] } port-string Syntax Description voice...
Page 234 Command Defaults At least one application (or all) and one policy parameter must be specified. Command Type Switch command. Command Mode Read-Write. Example This example returns all network policy values for all applications on port ge.1.1 to their default values.
Page 235: Clear Lldp Port Tx-Tlv
3.2.4.25 clear lldp port tx-tlv Use this command to clear the optional LLDP and LLDP-MED TLVs to be transmitted in LLDPDUs by the specified port or ports to the default value of disabled. clear lldp port tx-tlv {[all] | [port-desc] [sys-name] [sys-desc] [sys-cap] [mgmt-addr] [vlan-id] [stp] [lacp] [gvrp] [mac-phy] [poe] [link-aggr] [max-frame] [med-cap] [med-pol] [med-loc] [med-poe]} port-string Syntax Description...
Page 236 Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example disables the management address, MED capability, MED network policy, and MED location identification TLVs from being sent in LLDPDUs by port ge.1.1. Matrix(rw)->clear lldp port tx-tlv mgmt-addr med-cap med-pol med-loc ge.1.1 3-64 Matrix NSA Series Configuration Guide Disable the Power via MDI IEEE 802.3 Extensions TLV...
Page 237: Port Configuration Summary
The Matrix Series modules and standalone devices have fixed front panel switch ports and, depending on the model, optional expansion module slots. The numbering scheme used to identify the switch ports on the front panel and the expansion module(s) installed is interface-type dependent N Series Standalone Switch Ports The N12G4072-52 standalone device provides the following types of switch port connections: •...
Page 238: Port String Syntax Used In The Cli
Port Configuration Summary Port String Syntax Used in the CLI 4.1.1 Port String Syntax Used in the CLI Commands requiring a port-string parameter use the following syntax to designate port type, slot location, and port number: port type.port group.port number Where port type can be: fe for 100-Mbps Ethernet ge for 1-Gbps Ethernet...
Page 239 This example shows the port-string syntax for specifying the 1-Gigabit Ethernet port 14 in port group 3. ge.3.14 This example shows the port-string syntax for specifying Fast Ethernet ports 1 and 3 and Gigabit Ethernet port 11 in the module in chassis slot 1: fe.1.1,fe.1.3;ge.1.11 This example shows the port-string syntax for specifying Fast Ethernet ports 1, 3, 7, 8, 9 and 10 in the module in chassis slot 1:This example shows the port-string syntax for specifying all 1-Gigabit...
Page 240: Process Overview: Port Configuration
Process Overview: Port Configuration Port String Syntax Used in the CLI PROCESS OVERVIEW: PORT CONFIGURATION Use the following steps as a guide to configuringconsole and switch ports on the device: 6. Reviewing and setting console port properties (Section 4.3.2) 7. Disabling / enabling and naming switch ports 8.
Page 241: Port Configuration Command Set
PORT CONFIGURATION COMMAND SET 4.3.1 Setting Console Port Properties Purpose To review and set parameters for one or more of the device’s console ports, including baud rate, auto baud detection, stopbits and parity. Commands The commands used to review and configure console port settings are listed below and described in the associated section as shown.
Page 242: Show Console
Syntax Description port-string Command Defaults If port-string is not specified, properties for all console ports will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display properties for console port com.1.1: Matrix(rw)->show console com.1.1...
Page 243: Clear Console
Syntax Description port-string Command Defaults If port-string is not specified, properties for all console ports will be cleared. Command Type Switch command. Command Mode Read-Only. Example This example shows how to clear properties for console port com.1.1: Matrix(rw)->clear console com.1.1 (Optional) Clears properties for specific console port(s).
Page 244: Show Console Baud
Syntax Description port-string Command Defaults If port-string is not specified, baud rate for all console ports will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the baud rate for console port com.1.1: Matrix(rw)->show console baud com.1.1...
Page 245: Set Console Baud
Command Defaults If port-string is not specified, baud rate will be set for all console ports. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the baud rate to 19200 on console port com.1.1: Matrix(rw)->set console baud 19200 com.1.1...
Page 246: Clear Console Baud
Syntax Description port-string Command Defaults If port-string is not specified, baud rate will be cleared for all console ports. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear the baud rate on console port com.1.1: Matrix(rw)->clear console baud com.1.1...
Page 247: Show Console Flowcontrol
Command Defaults If port-string is not specified, the flow control setting for all console ports will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the flow control setting for console port com.1.1: Matrix(rw)->show console flowcontrol com.1.1...
Page 248: Set Console Flowcontrol
Command Defaults If port-string is not specified, flow control will be set for all console ports. Command Type Switch command. Command Mode Read-Write. Example This example shows how to enable DSR/DTR flow control for console port com.1.1: Matrix(rw)->set console flowcontrol dsrdtr com.1.1 4-12 Matrix NSA Series Configuration Guide Disables all hardware flow control.
Page 249: Clear Console Flowcontrol
Syntax Description port-string Command Defaults If port-string is not specified, flow control will be cleared for all console ports. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear flow control for console port com.1.1: Matrix(rw)->clear console flowcontrol com.1.1 (Optional) Clears flow control for specific console port(s).
Page 250: Show Console Bits
Command Defaults If port-string is not specified, the bits per character setting for all console ports will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the bits per character setting for console port com.1.1: Matrix(rw)->show console bits com.1.1...
Page 251: Set Console Bits
Command Defaults If port-string is not specified, bits per character will be set for all console ports. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set bits per character to 5 for console port com.1.1: Matrix(rw)->set console bits 5 com.1.1...
Page 252: Clear Console Bits
Syntax Description port-string Command Defaults If port-string is not specified, bits per character will be cleared for all console ports. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear bits per character for console port com.1.1: Matrix(rw)->clear console bits com.1.1...
Page 253: Show Console Stopbits
Command Defaults If port-string is not specified, stop bits per character will be displayed for all console ports. Command Type Switch command. Command Mode Read-Write. Example This example shows how to show stop bits per character on com.1.1: Matrix(rw)->show console stopbits com.1.1...
Page 254: Set Console Stopbits
Command Defaults If port-string is not specified, stop bits per character will be set for all console ports. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set stop bits per character to 2 for console port com.1.1: Matrix(rw)->set console stopbits 2 com.1.1...
Page 255: Clear Console Stopbits
Command Defaults If port-string is not specified, stop bits per character will be cleared for all console ports. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear stop bits per character for console port com.1.1: Matrix(rw)->clear console stopbits com.1.1...
Page 256: Show Console Parity
Syntax Description port-string Command Defaults If port-string is not specified, parity type for all console ports will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display parity type for console port com.1.1: Matrix(rw)->show console parity com.1.1...
Page 257: Set Console Parity
Command Defaults If port-string is not specified, parity type will be set for all console ports. Command Type Switch command. Command Mode Read-Write. Example This example shows how to enable even parity checking on console port com.1.1: Matrix(rw)->set console parity even com.1.1 Specifies that no parity checking will be performed.
Page 258: Clear Console Parity
Syntax Description port-string Command Defaults If port-string is not specified, parity type will be cleared for all console ports. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear parity type on console port com.1.1: Matrix(rw)->clear console parity com 1.1 4-22 Matrix NSA Series Configuration Guide (Optional) Clears the parity type for specific console port(s).
Page 259: Reviewing Port Status
Purpose To display operating status, duplex mode, speed, port type, and statistical information about traffic received and transmitted through one or all switch ports on the device. Commands The commands used to review port status are listed below and described in the associated sections as shown.
Page 260: Show Port
Command Defaults If port-string is not specified, operational status information for all ports will be displayed. Command Type Switch command. Command Mode Read-Only. Examples This example shows how to display operational status information for 1-Gigabit Ethernet port 14 in Matrix(rw)->show port ge.3.14...
Page 261: Show Port Status
-interesting Command Defaults If no options are specified, status information for all ports will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display status information for port ge.3.1 through 4: Matrix(rw)->show port status ge.3.1-4...
Page 262 Port Configuration Command Set Reviewing Port Status Table 4-1 show port status Output Details Output Port Alias (truncated) Oper Status Admin Status Speed Duplex Type 4-26 Matrix NSA Series Configuration Guide What It Displays... Port designation. For a detailed description of possible port-string values, refer to Section Alias configured for the port.
Page 263: Show Port Counters
Command Defaults • If port-string is not specified, counter statistics will be displayed for all ports. • If mib2 or switch are not specified, all counter statistics will be displayed for the specified port(s). Command Type Switch command. Command Mode Read-Only.
Page 264 Frames Received Frames Transmitted Frames Filtered This example shows how to display all fe.3.1 port counter statistics related to traffic through the device. Matrix(rw)->show port counters fe.3.1 switch Port: fe.3.1 No counter discontinuity time 802.1Q Switch Counters ------------------------------------------- Frames Received...
Page 265 MIB2 Interface MIB2 interface designation. Bridge Port IEEE 802.1D bridge port designation. MIB2 Interface MIB2 network traffic counts Counters 802.1Q Switch Counts of frames received, transmitted, and filtered. Counters Port Configuration Command Set Reviewing Port Status Section 4.1.1. Matrix NSA Series Configuration Guide...
Page 266: Show Port Operstatuscause
Port Configuration Command Set Reviewing Port Status 4.3.2.4 show port operstatuscause Use this command to display the causes configured to place operating status to a down or dormant state for one or more ports. show port operstatuscause [port-string] [any] [modifiable][admin] [linkloss] [linkflap] [self] [init] [flowlimit] [policy] [cos] [dot1x] [lag] Syntax Description port-string...
Page 267 Command Defaults If no options are specified, causes for all ports will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display operation status causes for ports ge.1.1 through 6. In this case, port ge.1.6 is down due to a link loss: Matrix(rw)->show port operstatuscause ge.1.1-6...
Page 268: Clear Port Operstatuscause
Command Defaults If no options are specified, all operating status causes will be overridden for all ports. Command Type Switch command. Command Mode Read-Write. Example This example shows how to override all operational causes on all ports: Matrix(rw)->clear port operstatuscause 4-32 Matrix NSA Series Configuration Guide (Optional) Overrides causes for specific port(s).
Page 269: Disabling / Enabling And Naming Ports
4.3.3 Disabling / Enabling and Naming Ports Purpose To disable and re-enable one or more ports, and to assign an alias to a port. By default, all ports are enabled at device startup. You may want to disable ports for security or to troubleshoot network issues.
Page 270: Set Port Disable
Syntax Description port-string Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to disable Fast Ethernet port 1 in port group 1: Matrix(rw)->set port disable fe.1.1 4-34 Matrix NSA Series Configuration Guide Specifies the port(s) to disable.
Page 271: Set Port Enable
Syntax Description port-string Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to enable Fast Ethernet port 3 in port group 1: Matrix(rw)->set port enable fe.1.3 Disabling / Enabling and Naming Ports Specifies the port(s) to enable.
Page 272: Show Port Alias
Command Defaults If port-string is not specified, aliases for all ports will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display alias information for fe.3.1. In this case, an alias has not been assigned: Matrix(rw)->show port alias fe.3.1...
Page 273: Set Port Alias
Command Defaults If string is not specified, the alias assigned to the port will be cleared. Command Type Switch command. Command Mode Read-Write. Example This example shows how to assign the alias “management” to fe.3.1: Matrix(rw)->set port alias fe.3.1 management Disabling / Enabling and Naming Ports Specifies the port to which an alias will be assigned.
Page 274: Show Forcelinkdown
Use this command to display the status of the force link down function. show forcelinkdown Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the status of the force link down function: Matrix(rw)->show forcelinkdown ForceLinkDown feature is globally enabled...
Page 275: Set Forcelinkdown
{enable | disable} Syntax Description enable | disable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to enable the force link down function: Matrix(rw)->set forcelinkdown enable Disabling / Enabling and Naming Ports Enables or disables the force link down function on all ports.
Page 276: Clear Forcelinkdown
Use this command to resets the force link down function to the default state of disabled. clear forcelinkdown Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the force link down function to disabled: Matrix(rw)->clear forcelinkdown 4-40 Matrix NSA Series Configuration Guide...
Page 277: Setting Speed And Duplex Mode
4.3.4 Setting Speed and Duplex Mode Purpose To review and set the operational speed in Mbps and the default duplex mode: Half, for half duplex, or Full, for full duplex for one or more ports. NOTE: These settings only take effect on ports that have auto-negotiation disabled. Commands The commands used to review and set port speed and duplex mode are listed below and described in the associated section as shown.
Page 278: Show Port Speed
Command Defaults If port-string is not specified, default speed settings for all ports will display. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the default speed setting for 1-Gigabit Ethernet port 14 in port group 3: Matrix(rw)->show port speed ge.3.14...
Page 279: Set Port Speed
10 | 100 | 1000 Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set Fast Ethernet port 3 in port group 3 to a port speed of 10 Mbps: Matrix(rw)->set port speed fe.3.3 10...
Page 280: Show Port Duplex
Command Defaults If port-string is not specified, default duplex settings for all ports will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the default duplex setting for 1-Gigabit Ethernet port 14 in port group 3: Matrix(rw)->show port duplex ge.3.14...
Page 281: Set Port Duplex
Syntax Description port-string full | half Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set Fast Ethernet port 17 in port group 1 to full duplex: Matrix(rw)->set port duplex fe.1.17 full Specifies the port(s) for which duplex type will be set. For a...
Page 282: Enabling / Disabling Jumbo Frame Support
Port Configuration Command Set Enabling / Disabling Jumbo Frame Support 4.3.5 Enabling / Disabling Jumbo Frame Support Purpose To review, enable, and disable jumbo frame support on one or more ports. This allows Gigabit Ethernet ports to transmit frames up to 10 KB in size. Commands The commands used to review, enable and disable jumbo frame support are listed below and described in the associated section as shown.
Page 283: Show Port Jumbo
Syntax Description port-string Command Defaults If port-string is not specified, jumbo frame support status for all ports will display. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the status of jumbo frame support for ge.1.1: Matrix(rw)->show port jumbo ge.1.1...
Page 284: Set Port Jumbo
Command Defaults If port-string is not specified, jumbo frame support will be enabled or disabled on all ports. Command Type Switch command. Command Mode Read-Write. Examples This example shows how to enable jumbo frame support for 1-Gigabit Ethernet port 14 in port group 3: Matrix(rw)->set port jumbo enable ge.3.14...
Page 285: Clear Port Jumbo
Command Defaults If port-string is not specified, jumbo frame support status will be reset on all ports. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset jumbo frame support status for 1-Gigabit Ethernet port 14 in port group 3: Matrix(rw)->clear port jumbo ge.3.14...
Page 286: Setting Auto-Negotiation And Advertised Ability
Port Configuration Command Set Setting Auto-Negotiation and Advertised Ability 4.3.6 Setting Auto-Negotiation and Advertised Ability Purpose To review, disable or enable auto-negotiation, and to review or set a port’s advertised mode of operation. During auto-negotiation and advertised ability, the port “tells” the device at the other end of the segment what its capabilities and mode of operation are.
Page 287: Show Port Negotiation
Syntax Description port-string Command Defaults If port-string is not specified, auto-negotiation status for all ports will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display auto-negotiation status for 1-Gigabit Ethernet port 14 in port group 3: Matrix(rw)->show port negotiation ge.3.14...
Page 288: Set Port Negotiation
Syntax Description port-string enable | disable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to disable auto-negotiation on 1-Gigabit Ethernet port 3 in port group 14: Matrix(rw)->set port negotiation ge.3.14 disable 4-52 Matrix NSA Series Configuration Guide Specifies the port(s) for which to enable or disable auto-negotiation.
Page 289: Show Port Mdix
Use this command to display the MDI/MDIX mode on one or more ports. This function detects and adapts to straight through (MDI) or cross-over (MDIX) Ethernet cabling on switch ports. show port mdix [port-string] {all | auto | mdi | mdix}...
Page 290: Set Port Mdix
Command Defaults If port-string is not specified, mode will be set for all ports. Command Type Switch command. Command Mode Read-Write. Example This example shows how to force 1-Gigabit Ethernet port 14 in port group 3 to MDIX configuration: Matrix(rw)->set port mdix ge.3.14 mdix...
Page 291: Clear Port Mdix
Command Defaults If port-string is not specified, mode will be reset for all ports. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset 1-Gigabit Ethernet port 14 in port group 3 to auto MDI/MDIX configuration: Matrix(rw)->set port mdix ge.3.14...
Page 292: Show Port Advertise
[port-string] Syntax Description port-string Command Defaults If port-string is not specified, advertised ability for all ports will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display advertised ability fe.1.16: Matrix(rw)->show port advertise fe.1.16 fe.1.16...
Page 293 Table 4-3 show port advertise Output Details Output What It Displays... capability Whether or not the port is capable of operating in the following modes: • 10t - 10BASE-T half duplex mode • 10tfd - 10BASE-T full duplex mode • 100tx - 100BASE-TX half duplex mode •...
Page 294: Set Port Advertise
Command Defaults At least one optional parameter must be specified. Command Type Switch command. 4-58 Matrix NSA Series Configuration Guide Specifies the port(s) for which to set advertised ability. For a detailed description of possible port-string values, refer to Section 4.1.1.
Page 295 Port Configuration Command Set Setting Auto-Negotiation and Advertised Ability Command Mode Read-Write. Example This example shows how to set fe.3.4 to advertise 100BASE-TX full duplex operation: Matrix(rw)->set port advertise fe.3.4 100txfd Matrix NSA Series Configuration Guide 4-59...
Page 296: Clear Port Advertise
Port Configuration Command Set Setting Auto-Negotiation and Advertised Ability 4.3.6.8 clear port advertise Use this command to reset advertised ability to the default setting on one or more ports. clear port advertise port-string [10t | 10tfd | 100tx | 100txfd | 1000x | 1000txfd | 1000t | 1000tfd | pause | apause | spause | bpause] Syntax Description port-string...
Page 297 Command Defaults If not specified, all modes of advertised ability will be cleared. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset all advertised ability to default settings on fe.3.4: Matrix(rw)->clear port advertise fe.3.4 Port Configuration Command Set...
Page 298: Setting Flow Control
Port Configuration Command Set Setting Flow Control 4.3.7 Setting Flow Control Purpose To review, enable or disable port flow control. Flow control is used to manage the transmission between two devices as specified by IEEE 802.3x to prevent receiving ports from being overwhelmed by frames from transmitting devices.
Page 299: Show Port Flowcontrol
4.3.7.1 show port flowcontrol Use this command to display the flow control state for one or more ports. show port flowcontrol [port-string] Syntax Description port-string Command Defaults If port-string is not specified, flow control information for all ports will be displayed.
Page 300 Port Configuration Command Set Setting Flow Control Table 4-4 show port flow control Output Details (Continued) Output TX Oper RX Admin RX Oper TX Pause Count RX Pause Count 4-64 Matrix NSA Series Configuration Guide What It Displays... Whether or not the port is operationally enabled or disabled for sending flow control frames.
Page 301: Set Port Flowcontrol
| send | both enable | disable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to enable ports fe.3.1 through 5 to send and receive flow control packets: Matrix(rw)->set port flowcontrol fe.3.1-5 both enable Specifies port(s) for which to enable or disable flow control.
Page 302: Configuring Link Traps And Link Flap Detection
Port Configuration Command Set Configuring Link Traps and Link Flap Detection 4.3.8 Configuring Link Traps and Link Flap Detection Purpose To disable or re-enable link traps and to configure the link flapping detection function. By default, all ports are enabled to send SNMP trap messages indicating changes in their link status (up or down).
Page 303: Show Port Trap
Syntax Description port-string Command Defaults If port-string is not specified, the trap status for all ports will be displayed. Command Type Switch command. Command Mode Read-Write. Example This example shows how to display link trap status for fe.3.1 through 4: Matrix(rw)->show port trap fe.3.1-4...
Page 304: Set Port Trap
Syntax Description port-string enable | disable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to disable link traps for Fast Ethernet port 3 in port group 3: Matrix(rw)->set port trap fe.3.3 disable 4-68 Matrix NSA Series Configuration Guide Specifies the port(s) for which to enable or disable link trap messages.
Page 305: Show Linkflap
4.3.8.3 show linkflap Use this command to display link flap detection state and configuration information. show linkflap {globalstate | portstate | parameters | metrics | portsupported | actsupported | maximum | downports | action | operstatus | threshold | interval] | downtime | currentcount | totalcount | timelapsed | violations [port-string]} Syntax Description globalstate...
Page 306 If not specified, information about all link flap detection settings will be displayed. • If port-string is not specified, information for all ports will be displayed. Command Type Switch command. Command Mode Read-Only. Examples This example shows how to display the global status of the link trap detection function: Matrix(rw)->show linkflap globalstate...
Page 307 Table 4-5 provides an explanation of the show linkflap parameters command output. Table 4-5 show linkflap parameters Output Details Output Port LF Status Actions Threshold Interval Downtime This example shows how to display the link flap metrics table: Matrix(rw)->show linkflap metrics Port LinkStatus --------...
Page 308 Port Configuration Command Set Configuring Link Traps and Link Flap Detection Table 4-6 show linkflap metrics Output Details (Continued) Output TimeElapsed Violations 4-72 Matrix NSA Series Configuration Guide What It Displays... Time (in seconds) since the last link down event. Number of link flap violations on listed ports since system start.
Page 309: Set Linkflap Globalstate
{disable | enable} Syntax Description disable | enable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Examples This example shows how to globally enable the link trap detection function: Matrix(rw)->set linkflap globalstate enable Configuring Link Traps and Link Flap Detection Globally disables or enables the link flap detection function.
Page 310: Set Linkflap
| enable port-string Command Defaults If port-string is not specified, all ports will be disabled or enabled. Command Type Switch command. Command Mode Read-Write. Example This example shows how to enable the link trap monitoring on all ports: Matrix(rw)->set linkflap portstate enable 4-74 Matrix NSA Series Configuration Guide Disables or enables the link flap detection function.
Page 311: Set Linkflap Interval
Syntax Description port-string interval_value Command Defaults None. Command Type Switch command. Command Mode Read-Write. Examples This example shows how to set the link flap interval on port fe.1.4 to 1000 seconds: Matrix(rw)->set linkflap interval fe.1.4 1000 Configuring Link Traps and Link Flap Detection Specifies the port(s) on which to set the link flap interval.
Page 312: Set Linkflap Action
| gensyslogentry | gentrap | all Command Defaults None. Command Type Switch command. Command Mode Read-Write. Examples This example shows how to set the link flap violation action on port fe.1.4 to generating a Syslog entry: Matrix(rw)->set linkflap action fe.1.4 gensyslogentry 4-76 Matrix NSA Series Configuration Guide Specifies the port(s) on which to set the link flap action.
Page 313: Clear Linkflap Action
| gentrap | all Command Defaults If port-string is not specified, actions will be cleared on all ports. Command Type Switch command. Command Mode Read-Write. Examples This example shows how to clear all link flap violation actions on all ports: Matrix(rw)->clear linkflap action all...
Page 314: Set Linkflap Threshold
Syntax Description port-string threshold_value Command Defaults None. Command Type Switch command. Command Mode Read-Write. Examples This example shows how to set the link flap threshold on port fe.1.4 to 5: Matrix(rw)->set linkflap threshold fe.1.4 5 4-78 Matrix NSA Series Configuration Guide Specifies the port(s) on which to set the link flap action trigger count.
Page 315: Set Linkflap Downtime
Syntax Description port-string downtime_value Command Defaults None. Command Type Switch command. Command Mode Read-Write. Examples This example shows how to set the link flap downtime on port fe.1.4 to 5000 seconds: Matrix(rw)->set linkflap downtime fe.1.4 5000 Configuring Link Traps and Link Flap Detection Specifies the port(s) on which to set the link flap downtime.
Page 316: Clear Linkflap Down
Command Defaults If port-string is not specified, all ports disabled by a link flap violation will be made operational. Command Type Switch command. Command Mode Read-Write. Examples This example shows how to make disabled port fe.1.4 operational: Matrix(rw)->clear linkflap down fe.1.4 4-80 Matrix NSA Series Configuration Guide Specifies the port(s) to make operational.
Page 317: Clear Linkflap
| all port-string Command Defaults If port-string is not specified, settings and/or statistics will be cleared on all ports. Command Type Switch command. Command Mode Read-Write. Examples This example shows how to clear all link flap options on port fe.1.4: Matrix(rw)->clear linkflap all fe.1.4...
Page 318: Configuring Broadcast Suppression
To review, disable or set the broadcast thresholds on one or more ports. This limits the amount of received broadcast frames that the specified port will be allowed to switch out to other ports. Broadcast suppression protects against broadcast storms, leaving more bandwidth available for critical data.
Page 319: Show Port Broadcast
4.3.9.1 show port broadcast Use this command to display port broadcast suppression information for one or more ports. show port broadcast [port-string] Syntax Description port-string Command Defaults If port-string is not specified, broadcast status of all ports will be displayed. Command Mode Read-Only.
Page 320 Port Configuration Command Set Configuring Broadcast Suppression Table 4-7 show port broadcast Output Details (Continued) Output Peak Rate (pkts/s) Peak rate of broadcast transmission received on this port in Peak Rate Time (ddd:hh:mm:ss) 4-84 Matrix NSA Series Configuration Guide What It Displays... packets per second.
Page 321: Set Port Broadcast
Syntax Description port-string threshold-val Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set broadcast suppression to 800 packets per second on Fast Ethernet ports 1 through 5 in port group 1: Matrix(rw)->set port broadcast fe.1.1-5 800...
Page 322: Clear Port Broadcast
Configuring Broadcast Suppression 4.3.9.3 clear port broadcast Use this command to reset the broadcast threshold and/or clear the peak rate and peak time values on one or switch more ports. clear port broadcast port-string [threshold] [peak] Syntax Description port-string threshold...
Page 323: Configuring Port Mirroring
CONFIGURING PORT MIRRORING CAUTION: Port mirroring configuration should be performed only by personnel who are knowledgeable about the effects of port mirroring and its impact on network operation. The Matrix device allows you to mirror (or redirect) the traffic being switched on a port or VLAN for the purposes of network traffic analysis and connection assurance.
Page 324: Ids Mirroring Considerations
Configuring Port Mirroring IDS Mirroring Considerations 4.4.2 IDS Mirroring Considerations An IDS mirror is a one-to-many port mirror that has been designed for use with an Intrusion Detection System. The following considerations must be taken into account when configuring IDS mirroring on the Matrix device: •...
Page 325: Setting Port Mirroring
4.4.4 Setting Port Mirroring Purpose To review and configure port mirroring on the device. Commands The commands used to review and configure port mirroring are listed below and described in the associated section as shown. • show port mirroring (Section •...
Page 326: Show Port Mirroring
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display port mirroring information. In this case, fe.1.4 is configured as a source port and fe.1.11 is a target, but mirroring is not currently enabled between the ports: Matrix(rw)->show port mirroring...
Page 327: Set Port Mirroring
| rx | tx Command Defaults If not specified, both received and transmitted frames will be mirrored. Command Type Switch command. Command Mode Read-Write. Creates, disables or enables mirroring settings on the specified ports. Enables or disables the mirroring of IGMP multicast frames.
Page 328 Configuring Port Mirroring Setting Port Mirroring Example This example shows how to enable port mirroring of transmitted and received frames with fe.1.4 as the source port and fe.1.11 as the target port: Matrix(rw)->set port mirroring enable fe.1.4 fe.1.11 both 4-92 Matrix NSA Series Configuration Guide...
Page 329: Clear Port Mirroring
Syntax Description igmp-mcast source destination Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear port mirroring between source port fe.1.4 and target port fe.1.11: Matrix(rw)->clear port mirroring fe.1.4 fe.1.11 Clears IGMP multicast mirroring.
Page 330: Configuring Lacp
IEEE 802.3ad standard. This standard allows the switch to determine which ports are in LAGs and configure them dynamically. Since the protocol is based on the IEEE 802.3ad specification, any switch from any vendor that supports this standard can aggregate links automatically.
Page 331: Lacp Terminology
The operation of LACP involves the following activities: • Checking that candidate links can actually be aggregated. • Controlling the addition of a link to a LAG, and the creation of the group if necessary. • Monitoring the status of aggregated links to ensure that the aggregation is still valid. •...
Page 332: Matrix Series Usage Considerations
Matrix Series device. The default values will result in the maximum number of aggregations possible. If the switch is placed in a configuration with its peers not running the protocol, no dynamic link aggregations will be formed and the switch will function normally (that is, will block redundant paths).
Page 333 There are a few cases in which ports will not aggregate: • An underlying physical port is attached to another port on this same switch (loopback). • There is no available aggregator for two or more ports with the same LAG ID. This can happen if there are simply no available aggregators, or if none of the aggregators have a matching admin key and system priority.
Page 334: Configuring Link Aggregation
Configuring LACP Configuring Link Aggregation 4.5.4 Configuring Link Aggregation Purpose To disable and re-enable the Link Aggregation Control Protocol (LACP), to display and configure LACP settings for one or more aggregator ports, and to display and configure the LACP settings for underlying physical ports that are potential members of a link aggregation.
Page 335 Configuring LACP Configuring Link Aggregation • clear lacp outportAlgorithm (Section 4.5.4.20) Matrix NSA Series Configuration Guide 4-99...
Page 336: Show Lacp
If state is not specified, aggregator information will be displayed for specified ports. • If port-string is not specified, link aggregation information for all ports will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display information for aggregator port 48 Matrix(rw)->show lacp lag.0.48...
Page 337 Table 4-9 show lacp Output Details Output What It Displays... Aggregator LAG port designation. Each Matrix Series module provides 48 virtual link aggregator ports, which are designated in the CLI as lag.0.1 through lag.0.48. Once underlying physical ports (i.e.; fe.x.x, ge.x.x) are associated with an aggregator port, the resulting Link Aggregation Group (LAG) is represented with a lag.x.x port designation.
Page 338: Set Lacp
LACP is enabled by default. set lacp {disable | enable} Syntax Description disable | enable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to disable LACP: Matrix(rw)->set lacp disable 4-102 Matrix NSA Series Configuration Guide...
Page 339: Clear Lacp State
Use this command to reset LACP to the default state of enabled. clear lacp state Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset LACP to enabled Matrix(rw)->clear lacp state Configuring Link Aggregation...
Page 340: Set Lacp Asyspri
Syntax Description asyspri value Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the LACP system priority to 1000: Matrix(rw)->set lacp asyspri 1000 4-104 Matrix NSA Series Configuration Guide...
Page 341: Set Lacp Aadminkey
Syntax Description port-string value Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the LACP admin key to 2000 for LAG port 48: Matrix(rw)->set lacp aadminkey lag.0.48 2000 Specifies the LAG port(s) on which to assign an admin key.
Page 342: Clear Lacp
Syntax Description asyspri aadminkey port-string Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear the actor admin key for LAG port 48: Matrix(rw)->clear lacp aadminkey lag.0.48 4-106 Matrix NSA Series Configuration Guide Clears system priority.
Page 343: Set Lacp Static
If not specified, a key will be assigned according to the specified aggregator. For example a key of 4 would be assigned to lag.0.4. Command Type Switch command. Command Mode Read-Write. Specifies the LAG aggregator port to which new ports will be assigned.
Page 344 Configuring LACP Configuring Link Aggregation Example This example shows how to add port fe.1.6 to the LAG of aggregator port 48: Matrix(rw)->set lacp static lag.0. 4-108 Matrix NSA Series Configuration Guide fe.1.6...
Page 345: Clear Lacp Static
Syntax Description lagportstring port-string Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to remove Fast Ethernet port 6 in port group 1 from the LAG of aggregator port 48: Matrix(rw)->clear lacp static lag.0.48 fe.1.6 Specifies the LAG aggregator port from which ports will be removed.
Page 346: Show Lacp Singleportlag
Use this command to display the status of the single port LAG function. show lacp singleportlag Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the status of the single port LAG function Matrix(rw)->show lacp singleportlag Single Port LAGs:...
Page 347: Set Singleportlag
{enable | disable} Syntax Description enable | disable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to enable single port LAGs: Matrix(rw)->set lacp singleportlag enable Enables or disables the formation of single port LAGs.
Page 348: Clear Singleportlag
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the single port LAG function back to disabled: Matrix(rw)->clear lacp singleportlag 4-112 Matrix NSA Series Configuration Guide...
Page 349: Show Port Lacp
| summary counters sort port | lag Command Defaults None. Command Type Switch command. Command Mode Read-Only. Displays LACP information for specific port(s). For a detailed description of possible port-string values, refer Section 4.1.1. Displays LACP status in detailed or summary information.
Page 350 Configuring LACP Configuring Link Aggregation Examples This example shows how to display detailed LACP status information Matrix(rw)-> show port lacp port fe.1.12 status detail Port Instance: ActorPort: ActorSystemPriority: ActorPortPriority: ActorAdminKey: ActorOperKey: ActorAdminState: ActorOperState: ActorSystemID: 00-e0-63-9d-b5-87 SelectedAggID: AttachedAggID: MuxState: DebugRxState: NOTES: State definitions, such as ActorAdminState and Partner AdminState, are indicated with letter abbreviations.
Page 351 This example shows how to display LACP counters for port fe.1.12: Matrix(rw)->show port lacp port fe.1.12 counters Port Instance: LACPDUsRx: LACPDUsTx: IllegalRx: UnknownRx: ActorSyncTransitionCount: ActorChangeCount: ActorChurnCount: ActorChurnState: MuxState: MuxReason: fe.1.12 MarkerPDUsRX: MarkerPDUsTx: MarkerResponsePDUsRx: MarkerResponsePDUsTx: PartnerSyncTransitionCount: PartnerChangeCount: PartnerChurnCount: ChurnMonitor PartnerChurnState: detached BEGIN = TRUE Matrix NSA Series Configuration Guide Configuring LACP...
Page 352: Set Port Lacp
Configuring LACP Configuring Link Aggregation 4.5.4.13 set port lacp Use this command to set link aggregation parameters for one or more ports. These settings will determine the specified underlying physical ports’ ability to join a LAG, and their administrative state once aggregated. set port lacp port port-string {[aadminkey aadminkey] [aportpri aportpri] [asyspri asyspri] [aadminstate {lacpactive | lacptimeout | lacpagg | lacpsync | lacpcollect | lacpdist | lacpdef | lacpexpire}] [padminsyspri padminsyspri]...
Page 353 asyspri asyspri Sets the port’s actor system priority. The LACP implementation on the Matrix Series device uses this value to determine aggregation precedence when there are two devices competing for the same aggregator. Valid values are 0 - 65535, with higher precedence given to lower values.
Page 354 • If enable or disable are not specified, port(s) will be enabled with the LACP parameters entered. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the actor admin key to 3555 for port ge.3.16: Matrix(rw)->set port lacp ge.3.16 aadminkey 3555...
Page 355: Clear Port Lacp
4.5.4.14 clear port lacp Use this command to clear link aggregation settings for one or more ports. clear port lacp port port-string {[aadminkey] [aportpri] [asyspri] [aadminstate {lacpactive | lacptimeout | lacpagg | lacpsync | lacpcollect | lacpdist | lacpdef | lacpexpire | all}] [padminsyspri] [padminsysid] [padminkey] [padminportpri] [padminport] [padminstate {lacpactive | lacptimeout | lacpagg | lacpsync | lacpcollect | lacpdist | lacpdef | lacpexpire | all}]}...
Page 356 | lacpdist | lacpdef | lacpexpire | all Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear all link aggregation parameters for port ge.3.16: Matrix(rw)->clear port lacp port ge.3.16 4-120 Matrix NSA Series Configuration Guide Clears the port’s specific partner admin state, or all...
Page 357: Show Lacp Flowregeneration
Use this command to display the LACP flow regeneration state. show lacp flowRegeneration Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the current LACP flow regeneration state Matrix(rw)->show lacp flowRegeneration disable...
Page 358: Set Lacp Flowregeneration
{enable | disable} Syntax Description enable | disable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to enable LACP flow regeneration: Matrix(rw)->set lacp flowRegeneration enable 4-122 Matrix NSA Series Configuration Guide...
Page 359: Clear Lacp Flowregeneration
Use this command to reset LACP flow regeneration to its default state (disabled). clear lacp flowRegeneration Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset LACP flow regeneration to disabled: Matrix(rw)->clear lacp flowRegeneration Configuring Link Aggregation...
Page 360: Show Lacp Outportalgorithm
Use this command to display the current LACP outport algorithm. show lacp outportAlgorithm Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the current LACP outport algorithm Matrix(rw)->show lacp outportAlgorithm dip-sip...
Page 361: Set Lacp Outportalgorithm
Syntax Description dip-sip da-sa round-robin Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the LACP outport algorithm to DA-SA: Matrix(rw)->set lacp outportalgorithm da-sa Specifies that destination and source IP addresses will determine the LACP outport.
Page 362: Clear Lacp Outportalgorithm
Use this command to reset LACP to DIP-SIP, its default outport algorithm. clear lacp outportAlgorithm Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the LACP outport algorithm to DIP-SIP: Matrix(rw)->clear lacp outportAlgorithm 4-126 Matrix NSA Series Configuration Guide...
Page 363: Snmp Configuration
SNMP agents and MIBs, including SNMP traps, community strings, and Remote Monitoring (RMON) MIBs, which run on managed devices • SNMP network management applications, such as Enterasys Networks’ NetSight Atlas, which communicate with agents to get statistics and alerts from the managed devices. SNMP Configuration...
Page 364: Snmpv3
SNMP Configuration Summary SNMPv3 5.1.2 SNMPv3 SNMPv3 is an interoperable standards-based protocol that provides secure access to devices by authenticating and encrypting frames over the network. The advanced security features provided in SNMPv3 are as follows: • Message integrity — Collects data securely without being tampered with or corrupted. •...
Page 365: Using Snmp Contexts To Access Specific Mibs Or Routing Modules
Using SNMP Contexts to Access Specific MIBs or Routing Modules By default, when operating from the switch CLI, Matrix Series devices allow access to all SNMP MIBs or contexts. A context is a collection of MIB objects, often associated with a particular physical or logical device.
Page 366 SNMP Configuration Summary Using SNMP Contexts to Access Specific MIBs or Routing Modules All SNMP contexts known to the device can be displayed using the show snmp context command as described in Section 5.3.4.2. Examples This example permits the “powergroup” to manage all MIBs via SNMPv3: Matrix(rw)->set snmp access powergroup security-model usm This example grants the “powergroup”...
Page 367: Process Overview: Snmp Configuration
PROCESS OVERVIEW: SNMP CONFIGURATION NOTE: Commands for configuring SNMP on the Matrix Series device are independent during the SNMP setup process. For instance, target parameters can be specified when setting up optional notification filters — even though these parameters have not yet been created with the set snmp targetparams command.
Page 368: Show Snmp Engineid
Use this command to display the SNMP local engine ID. This is the SNMP v3 engine’s administratively unique identifier. show snmp engineid Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display SNMP engine properties: Matrix(rw)->show snmp engineid EngineId: 80:00:15:f8:03:00:e0:63:9d:b5:87 Engine Boots...
Page 369: Show Snmp Counters
Use this command to display SNMP traffic counter values. show snmp counters Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display SNMP counter values Matrix(rw)->show snmp counters --- mib2 SNMP group counters:...
Page 370 SNMP Configuration Command Set Reviewing SNMP Statistics snmpOutBadValues snmpOutGenErrs snmpOutGetRequests snmpOutGetNexts snmpOutSetRequests snmpOutGetResponses snmpOutTraps snmpSilentDrops snmpProxyDrops --- USM Stats counters: usmStatsUnsupportedSecLevels = 0 usmStatsNotInTimeWindows usmStatsUnknownUserNames usmStatsUnknownEngineIDs usmStatsWrongDigests usmStatsDecryptionErrors Table 5-3 shows a detailed explanation of the command output. Table 5-3 show snmp counters Output Details Output snmpInPkts snmpOutPkts...
Page 371 Table 5-3 show snmp counters Output Details (Continued) Output snmpInASNParseErrs snmpInTooBigs snmpInNoSuchNames snmpInBadValues snmpInReadOnlys snmpInGenErrs snmpInTotalReqVars snmpInTotalSetVars snmpInGetRequests snmpInGetNexts snmpInSetRequests SNMP Configuration Command Set Reviewing SNMP Statistics What It Displays... Number of ASN.1 (Abstract Syntax Notation) or BER (Basic Encoding Rules) errors encountered by the SNMP entity when decoding received SNMP messages.
Page 372 SNMP Configuration Command Set Reviewing SNMP Statistics Table 5-3 show snmp counters Output Details (Continued) Output snmpInGetResponses snmpInTraps snmpOutTooBigs snmpOutNoSuchNames snmpOutBadValues snmpOutGenErrs snmpOutGetRequests snmpOutGetNexts snmpOutSetRequests snmpOutGetResponses snmpOutTraps snmpSilentDrops 5-10 Matrix NSA Series Configuration Guide What It Displays... Number of SNMP Get-Response PDUs accepted and processed by the SNMP protocol entity.
Page 373 Table 5-3 show snmp counters Output Details (Continued) Output snmpProxyDrops usmStatsUnsupportedSec Levels usmStatsNotInTimeWindows Number of packets received by the SNMP engine usmStatsUnknownUserNames Number of packets received by the SNMP engine usmStatsUnknownEngineIDs Number of packets received by the SNMP engine usmStatsWrongDigests usmStatsDecriptionErrors SNMP Configuration Command Set Reviewing SNMP Statistics...
Page 374: Configuring Snmp Users, Groups And Communities
SNMP Configuration Command Set Configuring SNMP Users, Groups and Communities 5.3.2 Configuring SNMP Users, Groups and Communities Purpose To review and configure SNMP users, groups and v1 and v2 communities. These are defined as follows: • User — A person registered in SNMPv3 to access SNMP management. •...
Page 375: Show Snmp User
If remote is not specified, user information about the local SNMP engine will be displayed. • If not specified, user information for all storage types will be displayed. Command Type Switch command. Command Mode Read-Only. SNMP Configuration Command Set Configuring SNMP Users, Groups and Communities (Optional) Displays a list of registered SNMP user names.
Page 376 SNMP Configuration Command Set Configuring SNMP Users, Groups and Communities Examples This example shows how to display an SNMP user list: Matrix(rw)->show snmp user list --- SNMP user information --- --- List of registered users: Guest admin1 admin2 netops This example shows how to display information for the SNMP “guest” user: Matrix(rw)->show snmp user guest --- SNMP user information --- EngineId:...
Page 377: Set Snmp User
• If privacy is not specified, no encryption will be applied. • If storage type is not specified, nonvolatile will be applied. Command Type Switch command. Command Mode Read-Write. SNMP Configuration Command Set Configuring SNMP Users, Groups and Communities Specifies a name for the SNMPv3 user.
Page 378 SNMP Configuration Command Set Configuring SNMP Users, Groups and Communities Example This example shows how to create a new SNMP user named “netops”. By default, this user will be registered on the local SNMP engine without authentication and encryption. Entries related to this user will be stored in permanent (nonvolatile) memory: Matrix(rw)->set snmp user netops 5-16 Matrix NSA Series Configuration Guide...
Page 379: Clear Snmp User
Command Defaults If remote is not specified, the user will be removed from the local SNMP engine. Command Type Switch command. Command Mode Read-Write. Example This example shows how to remove the SNMP user named “bill”: Matrix(rw)->clear snmp user bill...
Page 380: Show Snmp Group
If security-model is not specified, user information about all SNMP versions will be displayed. • If not specified, information for all storage types will be displayed. Command Type Switch command. Command Mode Read-Only. 5-18 Matrix NSA Series Configuration Guide (Optional) Displays information for a specific SNMP group.
Page 381 Example This example shows how to display SNMP group information: Matrix(rw)->show snmp group --- SNMP group information --- Security model Security/user name Group name Storage type Row status Security model Security/user name Group name Storage type Row status Table 5-5 shows a detailed explanation of the command output.
Page 382: Set Snmp Group
| nonvolatile Command Defaults If storage type is not specified, nonvolatile storage will be applied. Command Type Switch command. Command Mode Read-Write. Example This example shows how to create an SNMP group called “anyone”, assign a user named “public”...
Page 383: Clear Snmp Group
| usm Command Defaults If not specified, settings related to all security models will be cleared. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear all settings assigned to the “public” user within the SNMP group “anyone”:...
Page 384: Show Snmp Community
Syntax Description name Command Defaults If name is not specified, information will be displayed for all SNMP communities. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display information about the SNMP “public” community name. For a description of this output, refer to set snmp community Matrix(rw)->show snmp community public...
Page 385: Set Snmp Community
If transport tag is not specified, none will be applied. • If storage type is not specified, nonvolatile will be applied. Command Type Switch command. SNMP Configuration Command Set Configuring SNMP Users, Groups and Communities Specifies a community group name.
Page 386 SNMP Configuration Command Set Configuring SNMP Users, Groups and Communities Command Mode Read-Write. Examples This example shows how to set an SNMP community name called “vip”: Matrix(rw)->set snmp community vip This example shows how to grant SNMP management privileges to “vip” community from routing module 1 when operating in router mode: Matrix(rw)->set snmp community vip context module1 5-24 Matrix NSA Series Configuration Guide...
Page 387: Clear Snmp Community
Use this command to delete an SNMP community name. clear snmp community name Syntax Description name Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to delete the community name “vip.” Matrix(rw)->clear snmp community vip SNMP Configuration Command Set Configuring SNMP Users, Groups and Communities Specifies the SNMP community name to clear.
Page 388: Configuring Snmp Access Rights
SNMP Configuration Command Set Configuring SNMP Access Rights 5.3.3 Configuring SNMP Access Rights Purpose To review and configure SNMP access rights, assigning viewing privileges and security levels to SNMP user groups. Commands The commands used to review and configure SNMP access are listed below and described in the associated section as shown.
Page 389: Show Snmp Access
• If volatile, nonvolatile or read-only are not specified, all entries of all storage types will be displayed. Command Type Switch command. SNMP Configuration Command Set (Optional) Displays access information for a specific SNMPv3 group. (Optional) Displays access information for SNMP security model version 1, 2c or 3 (usm).
Page 390: Command Mode
SNMP Configuration Command Set Configuring SNMP Access Rights Command Mode Read-Only. Example This example shows how to display SNMP access information: Matrix(rw)->show snmp access Group Security model Security level Read View Write View Notify View Context match Storage type Row status Group Security model Security level...
Page 391 Table 5-6 show snmp access Output Details (Continued) Output Security level Read View Write View Notify View Context match Storage type Row status SNMP Configuration Command Set Configuring SNMP Access Rights What It Displays... Security level applied to this group. Valid levels are: •...
Page 392: Set Snmp Access
SNMP Configuration Command Set Configuring SNMP Access Rights 5.3.3.2 set snmp access Use this command to set an SNMP access configuration. set snmp access groupname security-model {v1 | v2c | usm} [noauthentication | authentication | privacy] [context context] [exact | prefix] [read read] [write write] [notify notify] [volatile | nonvolatile] Syntax Description groupname...
Page 393 If notify view is not specified, none will be applied. • If storage type is not specified, entries will be stored as permanent and will be held through device reboot. Command Type Switch command. Command Mode Read-Write. Examples This example permits the “powergroup” to manage all MIBs via SNMPv3: Matrix(rw)->set snmp access powergroup security-model usm...
Page 394: Clear Snmp Access
If security level is not specified, all levels will be cleared. • If context is not specified, none will be applied. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear SNMP version 3 access for the “mis-group” via the authentication protocol: Matrix(rw)->clear snmp access mis-group security-model usm authentication...
Page 395: Configuring Snmp Mib Views
5.3.4 Configuring SNMP MIB Views Purpose To review and configure SNMP MIB views. SNMP views map SNMP objects to access rights. Commands The commands used to review and configure SNMP MIB views are listed below and described in the associated section as shown. •...
Page 396: Show Snmp View
Command Defaults If no parameters are specified, all SNMP MIB view configuration information will be displayed. Command Type Switch command. Command Mode Read-Only. 5-34 Matrix NSA Series Configuration Guide (Optional) Displays information for a specific MIB view. (Optional) Displays information for a specific MIB subtree when viewname is specified.
Page 397 Example This example shows how to display SNMP MIB view configuration information: Matrix(rw)->show snmp view --- SNMP MIB View information --- View Name Subtree OID Subtree mask View Type Storage type Row status View Name Subtree OID Subtree mask View Type Storage type Row status View Name...
Page 398: Show Snmp Context
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display a list of all SNMP contexts known to the device: Matrix(rw)->show snmp context --- Configured contexts:...
Page 399: Set Snmp View
If not specified, subtree use will be included. • If storage type is not specified, nonvolatile (permanent) will be applied. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set an SNMP MIB view to “public” with a subtree name of 1.3.6.1 included: Matrix(rw)->set snmp view viewname public subtree 1.3.6.1 included...
Page 400: Clear Snmp View
Syntax Description viewname subtree Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to delete SNMP MIB view “public”: Matrix(rw)->clear snmp view public 1.3.6.1 5-38 Matrix NSA Series Configuration Guide Specifies the MIB view name to be deleted.
Page 401: Configuring Snmp Target Parameters
5.3.5 Configuring SNMP Target Parameters Purpose To review and configure SNMP target parameters. This controls where and under what circumstances SNMP notifications will be sent. A target parameter entry can be bound to a target IP address allowed to receive SNMP notification messages with the set snmp targetaddr command (Section 5.3.6.2)
Page 402: Show Snmp Targetparams
If targetParams is not specified, entries associated with all target parameters will be displayed. • If not specified, entries of all storage types will be displayed. Command Type Switch command. Command Mode Read-Only. 5-40 Matrix NSA Series Configuration Guide (Optional) Displays entries for a specific target parameter.
Page 403 Example This example shows how to display SNMP target parameters information: Matrix(rw)->show snmp targetparams --- SNMP TargetParams information --- Target Parameter Name Security Name Message Proc. Model Security Level Storage type Row status Target Parameter Name Security Name Message Proc. Model Security Level Storage type Row status...
Page 404 SNMP Configuration Command Set Configuring SNMP Target Parameters Table 5-8 show snmp targetparams Output Details (Continued) Output Storage type Row status 5-42 Matrix NSA Series Configuration Guide What It Displays... Whether entry is stored in volatile, nonvolatile or read-only memory. Status of this entry: active, notInService, or notReady.
Page 405: Set Snmp Targetparams
• If not specified, security level will be set to noauthentication. • If not specified, storage type will be set to nonvolatile. Command Type Switch command. Command Mode Read-Write. SNMP Configuration Command Set Configuring SNMP Target Parameters Specifies a name identifying parameters used to generate SNMP messages to a particular target.
Page 406 SNMP Configuration Command Set Configuring SNMP Target Parameters Example This example shows how to set SNMP target parameters named “v1ExampleParams” for a user named “fred” using version 3 security model and message processing, and authentication: Matrix(rw)->set snmp targetparams v1ExampleParams user fred security-model usm message-processing v3 authentication 5-44 Matrix NSA Series Configuration Guide...
Page 407: Clear Snmp Targetparams
Use this command to clear the SNMP target parameter configuration. clear snmp targetparams targetParams Syntax Description targetParams Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear SNMP target parameters named “v1ExampleParams”: Matrix(rw)->clear snmp targetparams v1ExampleParams SNMP Configuration Command Set...
Page 408: Configuring Snmp Target Addresses
SNMP Configuration Command Set Configuring SNMP Target Addresses 5.3.6 Configuring SNMP Target Addresses Purpose To review and configure SNMP target addresses which will receive SNMP notification messages. An address configuration can be linked to optional SNMP transmit, or target, parameters (such as timeout, retry count, and UDP port) set with the set snmp targetparams command (Section 5.3.5.2).
Page 409: Show Snmp Targetaddr
If targetAddr is not specified, entries for all target address names will be displayed. • If not specified, entries of all storage types will be displayed for a target address. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display SNMP target address information: Matrix(rw)->show snmp targetaddr...
Page 410 SNMP Configuration Command Set Configuring SNMP Target Addresses Table 5-9 show snmp targetaddr Output Details Output Target Address Name Tag List IP Address UDP Port# Target Mask Timeout Retry count Parameters Storage type Row status 5-48 Matrix NSA Series Configuration Guide What It Displays...
Page 411: Set Snmp Targetaddr
5.3.6.2 set snmp targetaddr Use this command to configure an SNMP target address. The target address is a unique identifier and a specific IP address that will receive SNMP notification messages and determine which community strings will be accepted. This address configuration can be linked to optional SNMP transmit parameters (such as timeout, retry count, and UDP port).
Page 412 If taglist is not specified, none will be set. • If not specified, storage type will be nonvolatile. Command Type Switch command. Command Mode Read-Write. Example This example shows how to configure a trap notification called “TrapSink.” This trap notification will be sent to the workstation 192.168.190.80 (which is target address “tr”).
Page 413: Clear Snmp Targetaddr
Use this command to delete an SNMP target address entry. clear snmp targetaddr targetAddr Syntax Description targetAddr Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear SNMP target address entry “tr”: Matrix(rw)->clear snmp targetaddr tr SNMP Configuration Command Set Configuring SNMP Target Addresses Specifies the target address entry to delete.
Page 414: Configuring Snmp Notification Parameters
SNMP Configuration Command Set Configuring SNMP Notification Parameters 5.3.7 Configuring SNMP Notification Parameters Purpose To configure SNMP notification parameters and optional filters. Notifications are entities which handle the generation of SNMP v1 and v2 “traps” or SNMP v3 “informs” messages to select management targets.
Page 415: Show Snmp Notify
If a notify name is not specified, all entries will be displayed. • If volatile, nonvolatile or read-only are not specified, all storage type entries will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the SNMP notify information: Matrix(rw)->show snmp notify...
Page 416 SNMP Configuration Command Set Configuring SNMP Notification Parameters Table 5-10 Table 5-10 show snmp notify Output Details Output Notify name Notify Tag Notify Type Storage type Row status 5-54 Matrix NSA Series Configuration Guide shows a detailed explanation of the command output. What It Displays...
Page 417: Set Snmp Notify
If not specified, message type will be set to trap. • If not specified, storage type will be set to nonvolatile. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set an SNMP notify configuration with a notify name of “hello” and a notify tag of “world”.
Page 418: Clear Snmp Notify
Syntax Description notify Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear the SNMP notify configuration for “hello”: Matrix(rw)->clear snmp notify hello 5-56 Matrix NSA Series Configuration Guide...
Page 419: About Snmp Notify Filters
SNMP Configuration Command Set Configuring SNMP Notification Parameters About SNMP Notify Filters Profiles indicating which targets should not receive SNMP notification messages are kept in the NotifyFilter table. If this table is empty, meaning that no filtering is associated with any SNMP target, then no filtering will take place.
Page 420: Show Snmp Notifyfilter
| read-only Command Defaults If no parameters are specified, all notify filter information will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display SNMP notify filter information. In this case, the notify profile “pilot1”...
Page 421: Set Snmp Notifyfilter
If not specified, subtree will be included. • If storage type is not specified, nonvolatile (permanent) will be applied. Command Type Switch command. Command Mode Read-Write. Example This example shows how to create an SNMP notify filter called “pilot1” with a MIB subtree ID of 1.3.6:...
Page 422: Clear Snmp Notifyfilter
Syntax Description profile subtree oid-or-mibobject Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to delete the SNMP notify filter “pilot1”: Matrix(rw)->clear snmp notifyfilter pilot1 subtree 1.3.6 5-60 Matrix NSA Series Configuration Guide Specifies an SNMP filter notify name to delete.
Page 423: Show Snmp Notifyprofile
| read-only Command Defaults If no parameters are specified, all notify profile information will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display SNMP notify information for the profile named “area51”: Matrix(rw)->show snmp notifyprofile area51...
Page 424: Set Snmp Notifyprofile
| nonvolatile Command Defaults If storage type is not specified, nonvolatile (permanent) will be applied. Command Type Switch command. Command Mode Read-Write. Example This example shows how to create an SNMP notify profile named area51 and associate a target parameters entry.
Page 425: Clear Snmp Notifyprofile
Syntax Description profile targetparam targetparam Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to delete SNMP notify profile “area51”: Matrix(rw)->clear snmp notifyprofile area51 targetparam v3ExampleParams SNMP Configuration Command Set Configuring SNMP Notification Parameters Specifies an SNMP filter notify name to delete.
Page 426: Creating A Basic Snmp Trap Configuration
SNMP Configuration Command Set Creating a Basic SNMP Trap Configuration 5.3.8 Creating a Basic SNMP Trap Configuration Traps are notification messages sent by an SNMPv1 or v2 agent to a network management station, a console, or a terminal to indicate the occurrence of a significant event, such as when a port or device goes up or down, when there are authentication failures, and when power supply errors occur.
Page 427 Table 5-11 Basic SNMP Trap Configuration Command Set (Continued) To do this... Create a new notification entry. Create a target address entry. Example This example shows how to: • create an SNMP community called mgmt • configure a trap notification called TrapSink This trap notification will be sent with the community name mgmt to the workstation 192.168.190.80 (which is target address tr).
Page 428 SNMP Configuration Command Set Creating a Basic SNMP Trap Configuration 4. Verifies that the v2ExampleParams description of how to step through the door is, in fact, there. The agent checks targetparams entries and determines this description was made with the set snmp targetparams command, which tells exactly which SNMP protocol to use and what community name to provide.
Page 429: Spanning Tree Configuration
It selects one switch as the root of a Spanning Tree-connected active topology and assigns port roles to individual ports on the switch, depending on whether that port is part of the active topology.
Page 430: Spanning Tree Features
MSTP assigns each VLAN present on the network to a particular Spanning Tree instance, allowing each switch port to be in a distinct state for each such instance: blocking for one Spanning Tree while forwarding for another. Thus, traffic associated with one set of VLANs can traverse a particular inter-switch link, while traffic associated with another set of VLANs can be blocked on that link.
Page 431 Note that the Dispute mechanism is always active regardless of the configuration setting of Loop Protection. Loop Protect operates as a per port, per MST instance feature. It should be set on inter-switch links. It is comprised of several related functions: •...
Page 432: Process Overview: Spanning Tree Configuration
2. Reviewing and setting Spanning Tree port parameters 3. Reviewing and setting Spanning Tree Loop Protect parameters NOTE: The term “bridge” is used as an equivalent to the term “switch” or “device” in this document. 6-4 Matrix NSA Series Configuration Guide (Section 6.2.1)
Page 433: Spanning Tree Configuration Command Set
SPANNING TREE CONFIGURATION COMMAND SET 6.2.1 Configuring Spanning Tree Bridge Parameters Purpose To display and set Spanning Tree bridge parameters, including device priorities, hello time, maximum wait time, forward delay, path cost, and topology change trap suppression. Commands The commands used to review and set Spanning Tree bridge parameters are listed below and described in the associated section as shown.
Page 434 Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters • set spantree mstcfgid (Section • clear spantree mstcfgid • show spantree bridgeprioritymode • set spantree bridgeprioritymode • clear spantree bridgeprioritymode • show spantree priority (Section • set spantree priority (Section •...
Page 435 • set spantree tctrapsuppress • clear spantree tctrapsuppress • show spantree txholdcount • set spantree txholdcount • clear spantree txholdcount • show spantree maxhops • set spantree maxhops (Section • clear spantree maxhops • show spantree spanguard • set spantree spanguard (Section •...
Page 436 Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters • clear spantree newroottrapenable • clear spantree default (Section • show spantree debug (Section • clear spantree debug (Section 6-8 Matrix NSA Series Configuration Guide (Section 6.2.1.73) 6.2.1.74) 6.2.1.75) 6.2.1.76)
Page 437: Show Spantree Stats
If sid is not specified, information for Spanning Tree 0 will be displayed. • If active is not specified information for all ports will be displayed regardless of whether or not they have received BPDUs. Command Type Switch command. Command Mode Read-Only. Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters (Optional) Displays information for the specified port(s).
Page 438 Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters Examples This example shows how to display the device’s Spanning Tree configuration: show spantree stats Matrix(rw)-> Spanning tree status Spanning tree instance Designated Root MacAddr Designated Root Priority Designated Root Cost Designated Root Port Root Max Age Root Hello Time...
Page 439 Table 6-1 show spantree Output Details (Continued) Output Root Forward Delay Bridge ID MAC Address Bridge ID Priority Bridge Max Age Bridge Hello Time Bridge Forward Delay Topology Change Count Time Since Top Change Max Hops Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters What It Displays...
Page 440 Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters This example shows how to display port-specific Spanning Tree information for port ge.1.1. Table 6-2 describes the port-specific information displayed. show spantree stats port ge.1.1 Matrix(rw)-> Spanning tree status Spanning tree instance Designated Root MacAddr Designated Root Priority Designated Root Cost...
Page 441 Table 6-2 Port-Specific show spantree stats Output Details Output Field What it Displays ... Role The Spanning Tree role of the port. The port role is assigned by the Spanning Tree protocol and determines the behavior of the port — either sending or receiving BPDUs, and forwarding or blocking data traffic.
Page 442: Show Spantree Version
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display Spanning Tree version information for the device: Matrix(rw)->show spantree version Force Version is mstp 6-14 Matrix NSA Series Configuration Guide...
Page 443: Set Spantree Version
Syntax Description mstp stpcompatible rstp Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to globally change the Spanning Tree version from the default of MSTP to RSTP: Matrix(rw)->set spantree version rstp mstp (Multiple Spanning Tree Protocol) mode.
Page 444: Clear Spantree Version
Use this command to reset the Spanning Tree version to MSTP mode. clear spantree version Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the Spanning Tree version: Matrix(rw)->clear spantree version 6-16 Matrix NSA Series Configuration Guide...
Page 445: Show Spantree Stpmode
Use this command to display the Spanning Tree Protocol (STP) mode setting. show spantree stpmode Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the STP mode: Matrix(rw)-> Bridge Stp Mode is set to ieee8021...
Page 446: Set Spantree Stpmode
Use this command to globally enable or disable the Spanning Tree Protocol (STP) mode. set spantree stpmode {none | ieee8021} Syntax Description none ieee8021 Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to disable Spanning Tree: Matrix(rw)-> 6-18 Matrix NSA Series Configuration Guide Disables Spanning Tree.
Page 447: Clear Spantree Stpmode
This re-enables Spanning Tree. clear spantree stpmode Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the STP mode to IEEE 802.1: Matrix(rw)-> Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters...
Page 448: Show Spantree Maxconfigurablestps
Tree instances. show spantree maxconfigurablestps Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the STP maximum configs setting. Matrix(rw)-> Max user configurable stps is set to 33 6-20 Matrix NSA Series Configuration Guide...
Page 449: Set Spantree Maxconfigurablestps
Use this command to set the maximum number of user configurable Spanning Tree instances. set spantree maxconfigurablestps numstps Syntax Description Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the STP max configs to 8 Matrix(rw)->...
Page 450: Clear Spantree Maxconfigurablestps
Use this command to clear the setting for the maximum number of user configurable Spanning Tree instances. clear spantree maxconfigurablestps Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear the STP max configs setting Matrix(rw)-> 6-22 Matrix NSA Series Configuration Guide clearspantree maxconfigurablestps...
Page 451: Show Spantree Mstilist
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display a list of MST instances. In this case, SID 2 has been configured: Matrix(rw)-> Configured Multiple Spanning Tree instances:...
Page 452: Set Spantree Msti
{create | delete} Syntax Description sid sid create | delete Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to create MST instance 2: Matrix(rw)->set spantree msti sid 2 create 6-24 Matrix NSA Series Configuration Guide Sets the Multiple Spanning Tree ID.
Page 453: Clear Spantree Msti
Use this command to delete one or more Multiple Spanning Tree instances. clear spantree msti sid Syntax Description Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to delete MST instance 1: Matrix(rw)->clear spantree msti 1...
Page 454: Show Spantree Mstmap
Command Defaults If fid is not specified, information for all assigned FIDs will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display SID to FID mapping information for FID 1. In this case, no new mappings have been configured: Matrix(rw)->...
Page 455: Set Spantree Mstmap
Syntax Description sid sid Command Defaults If sid is not specified, FID(s) will be mapped to Spanning Tree 0. Command Type Switch command. Command Mode Read-Write. Example This example shows how to map FID 3 to SID 2: Matrix(rw)->set spantree mstmap 3 sid 2...
Page 456: Clear Spantree Mstmap
Use this command to map a FID back to SID 0. clear spantree mstmap fid Syntax Description Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to map FID 2 back to SID 0: Matrix(rw)->clear spantree mstmap 2 6-28 Matrix NSA Series Configuration Guide Specifies one or more FIDs to reset to 0.
Page 457: Show Spantree Vlanlist
Command Defaults If not specified, SID assignment will be displayed only for VLANs assigned to any SID other than SID 0. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display assignments for all VLANs assigned to any SID other than SID 0: Matrix(rw)->...
Page 458: Show Spantree Mstcfgid
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the MST configuration identifier elements. In this case, the default revision level of 0, and the default configuration name (a string representing the bridge MAC address) have not been changed.
Page 459: Set Spantree Mstcfgid
{cfgname name | rev level} Syntax Description cfgname name rev level Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the MST configuration name to “mstconfig”: Matrix(rw)->set spantree mstconfigid cfgname mstconfig Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters Specifies an MST configuration name.
Page 460: Clear Spantree Mstcfgid
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the MST configuration identifier elements to default values: Matrix(rw)->clear spantree mstcfgid 6-32 Matrix NSA Series Configuration Guide...
Page 461: Show Spantree Bridgeprioritymode
Use this command to display the Spanning Tree bridge priority mode setting. show spantree bridgeprioritymode Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the Spanning Tree bridge priority mode setting: Matrix(rw)-> Bridge Priority Mode is set to IEEE802.1t mode.
Page 462: Set Spantree Bridgeprioritymode
{8021d | 8021t} Syntax Description 8021d 8021t Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the bridge priority mode to 802.1D: Matrix(rw)->set spantree bridgeprioritymode 8021d 6-34 Matrix NSA Series Configuration Guide (Section 6.2.1.25).
Page 463: Clear Spantree Bridgeprioritymode
Use this command to reset the Spanning Tree bridge priority mode to the default setting of 802.1t. clear spantree bridgeprioritymode Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the bridge priority mode to 802.1t: Matrix(rw)->clear spantree bridgeprioritymode Spanning Tree Configuration Command Set...
Page 464: Show Spantree Priority
[sid] Syntax Description Command Defaults If sid is not specified, priority will be shown for Spanning Tree 0. Command Type Switch command. Command Mode Read-Only. Example This example shows how to show the bridge priority for Spanning Tree 0 Matrix(rw)->...
Page 465: Set Spantree Priority
Command Defaults If sid is not specified, priority will be set on Spanning Tree 0. Command Type Switch command. Command Mode Read-Write. Examples This example shows how to set the bridge priority to 1 on all SIDs with 8021t priority mode enabled: Matrix(rw)->set spantree priority 1...
Page 466 Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters This example shows how to set the bridge priority to 15 on all SIDs with 8021t priority mode enabled: Matrix(rw)->set spantree priority 15 Bride Priority has been translated to incremental step of 61440 This example shows how to set the bridge priority to 4000 on all SIDs with 8021t priority mode enabled: Matrix(rw)->set spantree priority 4000...
Page 467: Clear Spantree Priority
[sid] Syntax Description Command Defaults If sid is not specified, priority will be reset on Spanning Tree 0. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the bridge priority on SID 1: Matrix(rw)->clear spantree priority 1...
Page 468: Show Spantree Bridgehellomode
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the Spanning Tree bridge hello mode. In this case, a single bridge hello mode has been enabled using the set spantree bridgehellomode command as...
Page 469: Set Spantree Bridgehellomode
Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to disable single Spanning Tree hello mode on the device. Per-port hello times can now be configured using the set spantree porthellomode command as described in Section 6.2.2.13:...
Page 470: Clear Spantree Bridgehellomode
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the Spanning Tree bridge hello mode to enabled: Matrix(rw)->clear spantree bridgehellomode 6-42 Matrix NSA Series Configuration Guide...
Page 471: Show Spantree Hello
Use this command to display the Spanning Tree hello time. show spantree hello Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the Spanning Tree hello time: Matrix(rw)-> Bridge Hello Time is set to 2 seconds...
Page 472: Set Spantree Hello
Syntax Description interval Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to globally set the Spanning Tree hello time to 10 seconds: Matrix(rw)->set spantree hello 10 6-44 Matrix NSA Series Configuration Guide...
Page 473: Clear Spantree Hello
Use this command to reset the Spanning Tree hello time to the default value of 2 seconds. clear spantree hello Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to globally reset the Spanning Tree hello time: Matrix(rw)->clear spantree hello Spanning Tree Configuration Command Set...
Page 474: Show Spantree Maxage
Use this command to display the Spanning Tree maximum aging time. show spantree maxage Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the Spanning Tree maximum aging time: Matrix(rw)-> Bridge Max Age Time is set to 20 seconds...
Page 475: Set Spantree Maxage
Syntax Description agingtime Command Defaults None Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the maximum aging time to 25 seconds: Matrix(rw)->set spantree maxage 25 Spanning Tree Configuration Command Set...
Page 476: Clear Spantree Maxage
Use this command to reset the maximum aging time for a Spanning Tree to the default value of 20 seconds. clear spantree maxage Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to globally reset the maximum aging time: Matrix(rw)->clear spantree maxage 6-48 Matrix NSA Series Configuration Guide...
Page 477: Show Spantree Fwddelay
Use this command to display the Spanning Tree forward delay time. show spantree fwddelay Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the Spanning Tree forward delay time: Matrix(rw)-> Bridge Forward Delay is set to 15 seconds...
Page 478: Set Spantree Fwddelay
Syntax Description delay Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to globally set the bridge forward delay to 16 seconds: Matrix(rw)->set spantree fwddelay 16 6-50 Matrix NSA Series Configuration Guide Specifies the number of seconds for the bridge forward delay.
Page 479: Clear Spantree Fwddelay
Use this command to reset the Spanning Tree forward delay to the default setting of 15 seconds. clear spantree fwddelay Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to globally reset the bridge forward delay: Matrix(rw)->clear spantree fwddelay Spanning Tree Configuration Command Set...
Page 480: Show Spantree Autoedge
Use this command to display the status of automatic edge port detection. show spantree autoedge Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the status of the automatic edge port detection function: Matrix(rw)-> autoEdge is currently enabled.
Page 481: Set Spantree Autoedge
{disable | enable} Syntax Description disable | enable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to disable automatic edge port detection: Matrix(rw)->set spantree autoedge disable Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters Disables or enables automatic edge port detection.
Page 482: Clear Spantree Autoedge
Use this command to reset automatic edge port detection to the default state of enabled. clear spantree autoedge Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset automatic edge port detection to enabled: Matrix(rw)->clear spantree autoedge 6-54 Matrix NSA Series Configuration Guide...
Page 483: Show Spantree Legacypathcost
Use this command to display the default Spanning Tree path cost setting. show spantree legacypathcost Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the default Spanning Tree path cost setting: Matrix(rw)->show spantree legacypathcost Legacy Path Cost is disabled...
Page 484: Set Spantree Legacypathcost
Syntax Description disable | enable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the default path cost values to 802.1D: Matrix(rw)->set spantree legacypathcost enable 6-56 Matrix NSA Series Configuration Guide...
Page 485: Clear Spantree Legacypathcost
Use this command to set the Spanning Tree default value for legacy path cost to 802.1t values. clear spantree legacypathcost Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the default path cost values to 802.1t: Matrix(rw)->clear spantree legacypathcost Spanning Tree Configuration Command Set...
Page 486: Show Spantree Tctrapsuppress
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the status of topology change trap suppression: Matrix(rw)->show spantree tctrapsuppress Topology change trap suppression is currently enabled.
Page 487: Set Spantree Tctrapsuppress
By default, RSTP non-edge (bridge) ports that transition to forwarding or blocking cause the switch to issue a topology change trap. When topology change trap suppression is enabled, which is the device default, edge ports (such as end station PCs) are prevented from sending topology change traps.
Page 488: Clear Spantree Tctrapsuppress
Use this command to clear topology change trap suppression settings. clear spantree tctrapsuppress Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear topology change trap suppression settings: Matrix(rw)->clear spantree tctrapsuppress 6-60 Matrix NSA Series Configuration Guide...
Page 489: Show Spantree Txholdcount
Use this command to display the maximum BPDU transmission rate. show spantree txholdcount Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the transmit hold count setting: Matrix(rw)->show spantree txholdcount Tx hold count = 3.
Page 490: Set Spantree Txholdcount
Syntax Description txholdcount Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to globally set the transmit hold count to 5: Matrix(rw)-> 6-62 Matrix NSA Series Configuration Guide...
Page 491: Clear Spantree Txholdcount
Use this command to reset the transmit hold count to the default value of 6. clear spantree txholdcount Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the transmit hold count: Matrix(rw)-> Spanning Tree Configuration Command Set...
Page 492: Show Spantree Maxhops
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the Spanning Tree maximum hop count: Matrix(rw)->show spantree maxhops Bridge Max Hop count is set to 20...
Page 493: Set Spantree Maxhops
BPDUs within the applicable MST region) before being discarded. set spantree maxhops max_hop_count Syntax Description max_hop_count Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the maximum hop count to 40: Matrix(rw)-> Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters Specifies the maximum number of hops allowed.
Page 494: Clear Spantree Maxhops
Use this command to reset the maximum hop count to the default value of 20. clear spantree maxhops Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the maximum hop count to 20: Matrix(rw)-> 6-66 Matrix NSA Series Configuration Guide...
Page 495: Show Spantree Spanguard
Use this command to display the status of the Spanning Tree span guard function. show spantree spanguard Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the span guard function status: Matrix(rw)-> spanguard is currently disabled.
Page 496: Set Spantree Spanguard
{enable | disable} Syntax Description enable | disable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to enable the span guard function: Matrix(rw)->set spantree spanguard enable 6-68 Matrix NSA Series Configuration Guide (Section 6.2.1.58) has passed since the last seen BPDU or...
Page 497: Clear Spantree Spanguard
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the status of the span guard function to disabled: Matrix(rw)->clear spantree spanguard Spanning Tree Configuration Command Set...
Page 498: Show Spantree Spanguardtimeout
Use this command to display the Spanning Tree span guard timeout setting. show spantree spanguardtimeout Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the span guard timeout setting: Matrix(rw)-> spanguard timeout is set at 300 seconds.
Page 499: Set Spantree Spanguardtimeout
Syntax Description timeout Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the span guard timeout to 600 seconds: Matrix(rw)->set spantree spanguardtimeout 600 Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters Specifies a timeout value in seconds.
Page 500: Clear Spantree Spanguardtimeout
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the span guard timeout to 300 seconds: Matrix(rw)->clear spantree spanguardtimeout 6-72 Matrix NSA Series Configuration Guide...
Page 501: Show Spantree Spanguardlock
Use this command to display the span guard lock status of one or more ports. show spantree spanguardlock port-string Syntax Description port-string Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the span guard lock status for ge.2.1: Matrix(rw)-> spanguard status for port ge.2.1 is UNLOCKED.
Page 502: Clear / Set Spantree Spanguardlock
(user) ports (as described in clear spantree spanguardlock port-string set spantree spanguardlock port-string Syntax Description port-string Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to unlock port fe.1.16: Matrix(rw)-> 6-74 Matrix NSA Series Configuration Guide Section 6.2.2.20).
Page 503: Show Spantree Spanguardtrapenable
Use this command to displays the state of the Spanning Tree span guard trap function. show spantree spanguardtrapenable Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the state of the span guard trap function: Matrix(rw)-> Span Guard Trap is set to enable...
Page 504: Set Spantree Spanguardtrapenable
{disable | enable} Syntax Description disable | enable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to disable the span guard trap function: Matrix(rw)-> 6-76 Matrix NSA Series Configuration Guide Disables or enables the span guard trap function.
Page 505: Clear Spantree Spanguardtrap Enable
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the span guard trap function to enabled: Matrix(rw)-> Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters...
Page 506: Show Spantree Backuproot
Syntax Description Command Defaults If sid is not specified, status will be shown for Spanning Tree 0. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the status of the backup root function on SID 0: Matrix(rw)->show spantree backuproot...
Page 507: Set Spantree Backuproot
{enable | disable} Syntax Description enable | disable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to enable the backup root function on SID 2: Matrix(rw)->set spantree backuproot 2 enable...
Page 508: Clear Spantree Backuproot
Use this command to reset the Spanning Tree backup root function to the default state of disabled. clear spantree backuproot sid Syntax Description Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the backup root function to disabled on SID 2: Matrix(rw)->clear spantree backuproot 2...
Page 509: Show Spantree Backuproottrapendable
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the status of the backup root trap function: Matrix(rw)->show spantree backuproottrapenable Backup Root Trap is set to enable...
Page 510: Set Spantree Backuproottrapenable
{enable | disable} Syntax Description enable | disable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to enable the backup root trap function: Matrix(rw)->set spantree backuproottrapenable enable 6-82 Matrix NSA Series Configuration Guide...
Page 511: Clear Spantree Backuproottrapenable
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the backup root trap function: Matrix(rw)->clear spantree backuproottrapenable Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters...
Page 512: Show Spantree Newroottrapendable
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the status of the new root trap function: Matrix(rw)->show spantree newroottrapenable New Root Trap is set to enable...
Page 513: Set Spantree Newroottrapenable
{enable | disable} Syntax Description enable | disable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to enable the new root trap function: Matrix(rw)->set spantree newroottrapenable enable Spanning Tree Configuration Command Set Configuring Spanning Tree Bridge Parameters Enables or disables the backup root trap function.
Page 514: Clear Spantree Newroottrapenable
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the new root trap function to enabled: Matrix(rw)->clear spantree newroottrapenable 6-86 Matrix NSA Series Configuration Guide...
Page 515: Clear Spantree Default
[sid] Syntax Description Command Defaults If sid is not specified, defaults will be restored on Spanning Tree 0. Command Type Switch command. Command Mode Read-Write. Example This example shows how to restore Spanning Tree defaults on SID 1: Matrix(rw)->...
Page 516: Show Spantree Debug
If port-string is not specified, no port information will be displayed. • If sid is not specified, debug counters will be displayed for Spanning Tree 0. Command Type Switch command. Command Mode Read-Only. 6-88 Matrix NSA Series Configuration Guide (Optional) Displays debug counters for specific port(s). For...
Page 517 Example This example shows how to display Spanning Tree debug counters for link aggregation port 3, SID 0: Matrix(rw)-> STP Diagnostic Common Counters for SID 0 ----------------------------------------- Topology Change Count Message Expiration Count Invalid BPDU Count STP BPDU Rx Count STP BPDU Tx Count STP TCN BPDU Rx Count STP TCN BPDU Tx Count...
Page 518: Clear Spantree Debug
Use this command to clear Spanning Tree debug counters. clear spantree debug Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear Spanning Tree debug counters: Matrix(rw)-> 6-90 Matrix NSA Series Configuration Guide...
Page 519: Configuring Spanning Tree Port Parameters
6.2.2 Configuring Spanning Tree Port Parameters Purpose To display and set Spanning Tree port parameters, including enabling or disabling the Spanning Tree algorithm on one or more ports, displaying designated bridge, port and root information, displaying blocked ports, displaying and setting Spanning Tree port priorities and costs, configuring edge port parameters, and setting point-to-point protocol mode.
Page 520 Spanning Tree Configuration Command Set Configuring Spanning Tree Port Parameters • show spantree adminedge • set spantree adminedge • clear spantree adminedge • show spantree operedge • show spantree adminpoint • show spantree operpoint • set spantree adminpoint • clear spantree adminpoint 6-92 Matrix NSA Series Configuration Guide (Section 6.2.2.19)
Page 521: Show Spantree Portenable
[port port-string] Syntax Description port port-string Command Defaults If port-string is not specified, status will be displayed for all ports. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display status for port fe.1.12: Matrix(rw)->...
Page 522: Set Spantree Portenable
{enable | disable} Syntax Description port-string enable | disable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to enable Spanning Tree port fe.1.12: Matrix(rw)-> 6-94 Matrix NSA Series Configuration Guide Specifies the port(s) to enable or disable.
Page 523: Clear Spantree Portenable
Syntax Description port-string Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the default Spanning Tree port status value to enabled on fe.1.12: Matrix(rw)-> Spanning Tree Configuration Command Set Configuring Spanning Tree Port Parameters Specifies port(s) to reset.
Page 524: Show Spantree Portadmin
[port port-string] Syntax Description port port-string Command Defaults If port-string is not specified, status will be displayed for all ports. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display port admin status for fe.1.7: Matrix(rw)->...
Page 525: Set Spantree Portadmin
{disable | enable} Syntax Description port-string disable | enable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to disable Spanning Tree on fe.1.5: Matrix(rw)-> Spanning Tree Configuration Command Set...
Page 526: Clear Spantree Portadmin
Syntax Description port-string Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the default Spanning Tree admin state to enable on fe.1.12: Matrix(rw)-> 6-98 Matrix NSA Series Configuration Guide Resets the default admin status on specific port(s).
Page 527: Set Spantree Protomigration
Syntax Description port-string true Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the protocol state migration machine on fe.1.12: Matrix(rw)-> Spanning Tree Configuration Command Set Configuring Spanning Tree Port Parameters Specifies the port(s) for which protocol migration mode will be enabled.
Page 528: Show Spantree Portstate
If port-string is not specified, current state will be displayed for all Spanning Tree ports. • If sid is not specified, current port state will be displayed for Spanning Tree 0. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the Spanning Tree state for fe.1.7: Matrix(rw)->...
Page 529: Show Spantree Blockedports
[sid] Syntax Description Command Defaults If sid is not specified, blocked ports will be displayed for Spanning Tree 0. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display blocked ports on SID 1: Matrix(rw)->show spantree blockedports 1...
Page 530: Show Spantree Portpri
If port-string is not specified, port priority will be displayed for all Spanning Tree ports. • If sid is not specified, port priority will be displayed for Spanning Tree 0. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the port priority for fe.2.7: Matrix(rw)->show spantree portpri port fe.2.7...
Page 531: Set Spantree Portpri
Command Defaults If sid is not specified, port priority will be set for Spanning Tree 0. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the priority of fe.1.3 to 240 on SID 1: Matrix(rw)->...
Page 532: Clear Spantree Portpri
Command Defaults If sid is not specified, port priority will be set for Spanning Tree 0. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the priority of fe.1.3 to 128 on SID 1: Matrix(rw)->...
Page 533: Set Spantree Porthello
Syntax Description port-string interval Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the hello time to 3 seconds for port fe.1.4: Matrix(rw)->set spantree porthello fe.1.4 3 Spanning Tree Configuration Command Set...
Page 534: Clear Spantree Porthello
Syntax Description port-string Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the hello time to 2 seconds for port fe.1.4: Matrix(rw)->clear spantree porthello fe.1.4 6-106 Matrix NSA Series Configuration Guide...
Page 535: Show Spantree Portcost
If port-string is not specified, port cost will be displayed for all Spanning Tree ports. • If sid is not specified, port cost will be displayed for all Spanning Trees. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the port cost for fe.2.5: Matrix(rw)->show spantree portcost port fe.2.5...
Page 536: Show Spantree Adminpathcost
• If sid is not specified, admin path cost for Spanning Tree 0 will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the admin path cost for fe.3.4 on SID 1: Matrix(rw)->...
Page 537: Set Spantree Adminpathcost
Command Defaults If sid is not specified, admin path cost will be set for Spanning Tree 0. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the admin path cost to 200 for fe.3.2 on SID 1: Matrix(rw)->...
Page 538: Clear Spantree Adminpathcost
Command Defaults If sid is not specified, admin path cost will be reset for Spanning Tree 0. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the admin path cost to 0 for fe.3.2 on SID 1: Matrix(rw)->...
Page 539: Show Spantree Adminedge
Command Defaults If port-string is not specified edge port administrative status will be displayed for all Spanning Tree ports. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the edge port status for fe.3.2: Matrix(rw)->show spantree adminedge port fe.3.2...
Page 540: Set Spantree Adminedge
{true | false} Syntax Description port-string true | false Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set fe.1.11 as an edge port: Matrix(rw)->set spantree adminedge fe.1.11 true 6-112 Matrix NSA Series Configuration Guide Specifies the edge port.
Page 541: Clear Spantree Adminedge
Use this command to reset a Spanning Tree port to non-edge status. clear spantree adminedge port-string Syntax Description port-string Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset fe.1.11 as a non-edge port: Matrix(rw)->clear spantree adminedge fe.1.11 Spanning Tree Configuration Command Set Configuring Spanning Tree Port Parameters Specifies port(s) on which to reset edge port status.
Page 542: Show Spantree Operedge
Command Defaults If port-string is not specified edge port operating status will be displayed for all Spanning Tree ports. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the edge port status for fe.2.7: Matrix(rw)->show spantree operedge port fe.2.7...
Page 543: Show Spantree Adminpoint
Command Defaults If port-string is not specified, status will be displayed for all Spanning Tree port(s). Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the point-to-point status of the LAN segment attached to fe.2.7: Matrix(rw)->show spantree adminpoint port fe.2.7...
Page 544: Show Spantree Operpoint
Syntax Description port port-string Command Defaults If not specified, status will be displayed for all ports. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the point-to-point status operating of the LAN segment attached to fe.2.7: Matrix(rw)->show spantree operpoint port fe.2.7...
Page 545: Set Spantree Adminpoint
Syntax Description port-string true | false | auto Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the LAN attached to fe.1.3 as a point-to-point segment: Matrix(rw)->set spantree adminpoint fe.1.3 true Spanning Tree Configuration Command Set...
Page 546: Clear Spantree Adminpoint
Syntax Description port-string Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset point-to-point status to auto on fe.2.3: Matrix(rw)->clear spantree adminpoint fe.2.3 6-118 Matrix NSA Series Configuration Guide Specifies port(s) on which to reset point-to-point protocol status.
Page 547: Configuring Spanning Tree Loop Protect Features
6.2.3 Configuring Spanning Tree Loop Protect Features Purpose To display and set Spanning Tree Loop Protect parameters, including the global parameters of Loop Protect threshold, window, enabling traps, and disputed BPDU threshold, as well as per port and port/SID parameters. See “Loop Protect” on page 6-2 for more information about the Loop Protect feature.
Page 548 Spanning Tree Configuration Command Set Configuring Spanning Tree Loop Protect Features • set spantree disputedbpduthreshold • show spantree disputedbpduthreshold • clear spantree disputedbpduthreshold • show spantree nonforwardingreason 6-120 Matrix NSA Series Configuration Guide (Section 6.2.3.18) (Section 6.2.3.19) (Section 6.2.3.20) (Section 6.2.3.21)
Page 549: Set Spantree Lp
| disable sid sid Command Defaults If no SID is specified, SID 0 is assumed. Command Type Switch command. Command Mode Read-Write. Usage Loop Protect takes precedence over per port STP enable/disable (portAdmin). Normally portAdmin disabled would cause a port to go immediately to forwarding.
Page 550: Show Spantree Lp
Command Defaults If no port-string is specified, status is displayed for all ports. If no SID is specified, SID 0 is assumed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display Loop Protect status on fe.2.3: Matrix(rw)->show spantree lp port fe.2.3...
Page 551: Clear Spantree Lp
Command Defaults If no SID is specified, SID 0 is assumed. Command Type Switch command. Command Mode Read-Write. Example This example shows how to return the Loop Protect state on fe.2.3 to disabled: Matrix(rw)->clear spantree lp port fe.2.3...
Page 552: Show Spantree Lplock
Command Defaults If no port-string is specified, status is displayed for all ports. If no SID is specified, SID 0 is assumed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display Loop Protect lock status on ge.1.1: Matrix(rw)->show spantree lplock port ge.1.1...
Page 553: Clear Spantree Lplock
Syntax Description port-string sid sid Command Defaults If no SID is specified, SID 0 is assumed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to clear Loop Protect lock from ge.1.1: Matrix(rw)->show spantree lplock port ge.1.1 LoopProtect Lock status for port ge.1.1...
Page 554: Set Spantree Lpcapablepartner
| false Command Defaults None. Command Type Switch command. Command Mode Read-Write. Usage The default value for Loop Protect capable partner is false. If the port is configured with a Loop Protect capable partner (true), then the full functionality of the Loop Protect feature is used.
Page 555 Spanning Tree Configuration Command Set Configuring Spanning Tree Loop Protect Features Example This example shows how to set the Loop Protect capable partner to true for ge.1.1: Matrix(rw)->set spantree lpcapablepartner ge.1.1 true Matrix NSA Series Configuration Guide 6-127...
Page 556: Show Spantree Lpcapablepartner
Command Defaults If no port-string is specified, Loop Protect capability for link partners is displayed for all ports. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the Loop Protect partner capability for ge.1.1: Matrix(rw)->show spantree lpcapablepartner port ge.1.1...
Page 557: Clear Spantree Lpcapablepartner
Syntax Description port-string Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the Loop Protect partner capability for ge.1.1: Matrix(rw)->clear spantree lpcapablepartner ge.1.1 Spanning Tree Configuration Command Set Configuring Spanning Tree Loop Protect Features Specifies port(s) for which to clear their link partners’...
Page 558: Set Spantree Lpthreshold
Syntax Description value Command Defaults None. The default event threshold is 3. Command Type Switch command. Command Mode Read-Write. Usage The LoopProtect event threshold is a global integer variable that provides protection in the case of intermittent failures. The default value is 3. If the event...
Page 559: Show Spantree Lpthreshold
Use this command to display the current value of the Loop Protect event threshold. show spantree lpthreshold Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the current Loop Protect threshold value: Matrix(rw)->show spantree lpthreshold LoopProtect event threshold is set to 4...
Page 560: Clear Spantree Lpthreshold
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the Loop Protect event threshold to the default of 3: Matrix(rw)->clear spantree lpthreshold 6-132 Matrix NSA Series Configuration Guide...
Page 561: Set Spantree Lpwindow
Syntax Description value Command Defaults None. Command Type Switch command. Command Mode Read-Write. Usage The Loop Protect Window is a timer value, in seconds, that defines a period during which Loop Protect events are counted. The default value is 180 seconds. If the timer is set to 0, the event counter is not reset until the Loop Protect event threshold is reached.
Page 562: Show Spantree Lpwindow
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the current Loop Protect window value: Matrix(rw)->show spantree lpwindow LoopProtect event window is set to 120 seconds...
Page 563: Clear Spantree Lpwindow
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the Loop Protect event window to the default of 180 seconds: Matrix(rw)->clear spantree lpwindow Spanning Tree Configuration Command Set...
Page 564: Set Spantree Lptrapenable
Syntax Description enable | disable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Usage Loop Protect traps are sent when a Loop Protect event occurs, that is, when a port goes to listening due to not receiving BPDUs. The trap indicates port, SID and loop protection status.
Page 565: Show Spantree Lptrapenable
Use this command to display the current status of Loop Protect event notification. show spantree lptrapenable Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the current Loop Protect event notification status: Matrix(rw)->show spantree lptrapenable LoopProtect event traps are enabled...
Page 566: Clear Spantree Lptrapenable
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the Loop Protect event notification state to the default of disabled Matrix(rw)->clear spantree lptrapenable 6-138 Matrix NSA Series Configuration Guide...
Page 567: Set Spantree Disputedbpduthreshold
Syntax Description value Command Defaults None. Command Type Switch command. Command Mode Read-Write. Usage A disputed BPDU is one in which the flags field indicates a designated role and learning, and the priority vector is worse than that already held by the port. If a disputed BPDU is received the port is forced to the listening state.
Page 568 Spanning Tree Configuration Command Set Configuring Spanning Tree Loop Protect Features Example This example shows how to set the disputed BPDU threshold value to 5: Matrix(rw)->set spantree disputedbpduthreshold 5 6-140 Matrix NSA Series Configuration Guide...
Page 569: Show Spantree Disputedbpduthreshold
Use this command to display the current value of the disputed BPDU threshold. show spantree disputedbpduthreshold Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the current disputed BPDU threshold: Matrix(rw)->show spantree disputedbpduthreshold Disputed BPDU threshold is set to 0...
Page 570: Clear Spantree Disputedbpduthreshold
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the disputed BPDU threshold to the default of 0: Matrix(rw)->clear spantree disputedbpduthreshold 6-142 Matrix NSA Series Configuration Guide...
Page 571: Show Spantree Nonforwardingreason
Command Defaults If no port-string is specified, non-forwarding reason is displayed for all ports. If no SID is specified, SID 0 is assumed. Command Type Switch command. Command Mode Read-Only. Usage Exceptional conditions causing a port to be placed in listening or blocking state include a Loop Protect event, receipt of disputed BPDUs, and loopback detection.
Page 572 Spanning Tree Configuration Command Set Configuring Spanning Tree Loop Protect Features 6-144 Matrix NSA Series Configuration Guide...
Page 573: Vlan Configuration Summary
This chapter describes the Matrix system’s capabilities to implement 802.1Q virtual LANs (VLANs). It documents how to: • Create, enable, disable and name a VLAN. • Review status and other information related to VLANs. • Assign ports to a VLAN and filter unwanted frames on one or more ports •...
Page 574: Process Overview: 802.1Q Vlan Configuration
Process Overview: 802.1Q VLAN Configuration Port String Syntax Used in the CLI 7.1.2 Port String Syntax Used in the CLI For information on how to designate port numbers in the CLI syntax, refer to PROCESS OVERVIEW: 802.1Q VLAN CONFIGURATION Use the following steps as a guide to configure VLANs on the device (refer to the associated section in parentheses): 1.
Page 575: Vlan Configuration Command Set
VLAN Configuration Command Set Reviewing Existing VLANs VLAN CONFIGURATION COMMAND SET 7.3.1 Reviewing Existing VLANs Purpose To display a list of VLANs currently configured on the device, to determine how one or more VLANs were created, the ports allowed and disallowed to transmit traffic belonging to VLAN(s), and if those ports will transmit the traffic with a VLAN tag included.
Page 576: Show Vlan
Command Defaults If no options are specified, all information related to static and dynamic VLANs will be displayed. Command Type Switch command. Command Mode Read-Only. 7-4 Matrix NSA Series Configuration Guide (Optional) Displays information related to static VLANs. Static VLANs are manually created using the set vlan...
Page 577 Example This example shows how to display information for VLAN 1. In this case, VLAN 1 is named “DEFAULT VLAN” and it is enabled to operate. Ports allowed to transmit frames belonging to VLAN 1 are listed as egress ports. Ports that won’t include a VLAN tag in their transmitted frames are listed as untagged ports.
Page 578: Creating And Naming Static Vlans
VLAN Configuration Command Set Creating and Naming Static VLANs 7.3.2 Creating and Naming Static VLANs Purpose To create a new static VLAN, or to enable or disable existing VLAN(s). Commands The commands used to create and name static VLANs are listed below and described in the associated section as shown.
Page 579: Set Vlan
Syntax Description create | enable | disable vlan-list Command Defaults None. Command Type Switch command. Command Mode Read-Write. Examples This example shows how to create VLAN 3: Matrix(rw)->set vlan create 3 This example shows how to disable VLAN 3: Matrix(rw)->set vlan disable 3 Creates, enables or disables VLAN(s).
Page 580: Set Vlan Name
Syntax Description vlan-list vlan-name Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the name for VLAN 7 to green: Matrix(rw)->set vlan name 7 green 7-8 Matrix NSA Series Configuration Guide Specifies the VLAN ID of the VLAN(s) to be named.
Page 581: Clear Vlan
Syntax Description vlan-list Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to remove a static VLAN 9 from the device’s VLAN list: Matrix(rw)->clear vlan 9 Specifies the VLAN ID of the VLAN(s) to be removed.
Page 582: Clear Vlan Name
Use this command to remove the name of a VLAN from the VLAN list. clear vlan name vlan-list Syntax Description vlan-list Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear the name for VLAN 9: Matrix(rw)->clear vlan name 9 7-10 Matrix NSA Series Configuration Guide Specifies the VLAN ID of the VLAN(s) for which the name will be cleared.
Page 583: Assigning Port Vlan Ids (Pvids) And Ingress Filtering
7.3.3 Assigning Port VLAN IDs (PVIDs) and Ingress Filtering About PVIDs and Policy Classification to a VLAN Port VLAN IDs (PVIDs) assign VLAN IDs to untagged frames on one or more ports. Using the set port vlan command as described in 9 to VLAN 3.
Page 584 VLAN Configuration Command Set Assigning Port VLAN IDs (PVIDs) and Ingress Filtering • show port discard (Section • set port discard (Section • clear port discard (Section 7-12 Matrix NSA Series Configuration Guide 7.3.3.9) 7.3.3.10) 7.3.3.11)
Page 585: Show Port Vlan
Command Defaults If port -string is not specified, port VLAN information for all ports will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display PVIDs assigned to Fast Ethernet ports 1 through 6 in port group 2.
Page 586: Set Port Vlan
| no-modify-egress Command Defaults If not specified, the egress list will be modified. Command Type Switch command. Command Mode Read-Write. 7-14 Matrix NSA Series Configuration Guide Specifies the port(s) for which to configure a VLAN identifier. For a detailed description of possible port-string...
Page 587 Example This example shows how to add fe.1.10 to the port VLAN list of VLAN 4 (PVID 4). Since VLAN 4 is a new VLAN, it is created. Then port fe.1.10 is added to VLAN 4’s untagged egress list, and is cleared from the egress list of VLAN 1 (the default VLAN): Matrix(rw)->set port vlan fe.1.10 4 Matrix(rw)->set vlan 4 create...
Page 588: Clear Port Vlan
Syntax Description port-string Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the Fast Ethernet ports 3 and 11 in port group 1 to a VLAN ID of 1 (Host VLAN): Matrix(rw)->clear port vlan fe.1.3,fe.1.11...
Page 589: Show Vlan Interface
Syntax Description vlan-list Command Defaults If vlan-list is not specified, MIB2 interface entries will be displayed for all VLANs. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the interface entry for VLAN 1: Matrix(rw)->show vlan interface 1...
Page 590: Set Vlan Interface
Command Defaults If volatile is not specified, entries will be created as nonvolatile. Command Type Switch command. Command Mode Read-Write. Example This example shows how to create a volatile interface entry mapped to VLAN 1: Matrix(rw)->set vlan interface 1 volatile...
Page 591: Clear Vlan Interface
Use this command to clear the MIB-II interface entry mapped to a VLAN. clear vlan interface vlan-list Syntax Description vlan-list Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear the interface entry mapped to VLAN 1: Matrix(rw)->clear vlan interface 1 VLAN Configuration Command Set...
Page 592: Show Port Ingress Filter
Command Defaults If port-string is not specified, ingress filtering status for all ports will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the port ingress filter status for Fast Ethernet ports 10 through 15 in port group 1.
Page 593: Set Port Ingress Filter
Syntax Description port-string disable | enable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to enable port ingress filtering on Fast Ethernet port 3 in port group 1: Matrix(rw)->set port ingress-filter fe.1.3 enable...
Page 594: Show Port Discard
Command Defaults If port-string is not specified, frame discarded mode will be displayed for all ports. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the frame discard mode for Fast Ethernet port 7 in port group 2.
Page 595: Set Port Discard
| untagged | none | both Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set Fast Ethernet port 7 in port group 2 to discard both tagged and untagged frames: Matrix(rw)->set port discard fe.2.7 both...
Page 596: Clear Port Discard
Syntax Description port-string Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset Fast Ethernet port 7 in module port group 2 to the default discard mode of “none”: Matrix(rw)->clear port discard fe.2.7...
Page 597: Configuring The Vlan Egress List
7.3.4 Configuring the VLAN Egress List Purpose To assign or remove ports on the egress list of a particular VLAN. This determines which ports will be eligible to transmit frames for a particular VLAN. For example, ports 1, 5, 9, 8 could be assigned to transmit frames belonging to VLAN 5 (VLAN ID=5).
Page 598: Show Port Egress
Command Defaults If port-string is not specified, VLAN membership will be displayed for all ports. Command Type Switch command. Command Mode Read-Write. Example This example shows you how to show VLAN egress information for Fast Ethernet ports 1 through 3 in port group 1.
Page 599: Set Vlan Egress
Command Defaults If untagged, forbidden or tagged is not specified, the port will be added to the VLAN egress list as tagged. Command Type Switch command. Command Mode Read-Write. Examples This example shows how to add Fast Ethernet ports 5 through 10 in port group 1 to the egress list of VLAN 7.
Page 600 VLAN Configuration Command Set Configuring the VLAN Egress List This example shows how to forbid Fast Ethernet ports 13 through 15 in port group 1 from joining VLAN 7 and disallow egress on those ports: Matrix(rw)->set vlan egress 7 fe.1.13-15 forbidden This example shows how to allow Fast Ethernet port 2 in port group 1 to transmit VLAN 7 frames as untagged Matrix(rw)->set vlan egress 7 fe.1.2 untagged...
Page 601: Clear Vlan Egress
Command Defaults If forbidden is not specified, tagged and untagged settings will be cleared. Command Type Switch command. Command Mode Read-Write. Examples This example shows how to remove Fast Ethernet port 14 in port group 3 from the egress list of VLAN 9: Matrix(rw)->clear vlan egress 9 fe.3.14...
Page 602: Show Vlan Dynamic Egress
Command Defaults If vlan-list is not specified, status for all VLANs where dynamic egress is enabled will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display which VLANs are enabled for dynamic egress: Matrix(rw)->show vlan dynamicegress...
Page 603: Set Vlan Dynamicegress
{enable | disable} Syntax Description vlan-list enable | disable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to enable the dynamic egress function on VLAN 7: Matrix(rw)->set vlan dynamicegress 7 enable VLAN Configuration Command Set Specifies the number of the VLAN(s) where dynamic egress will be enabled or disabled.
Page 604: Creating A Secure Management Vlan
2. Set the PVID for the host port and the desired switch port to the VLAN created in Step 1. (Section 7.3.3.2) 3. Add the host port and the desired switch port to the egress list for the VLAN created in Step 1. (Section 7.3.4.2) 4.
Page 605: Enabling/Disabling Gvrp
GVRP configured ports on the device in a GARP formatted frame using the GVRP multicast MAC address. A switch/router that receives this frame, examines the frame, and extracts the VLAN IDs. GVRP then creates the VLANs and adds the receiving port to its tagged member list for the extracted VLAN ID (s).
Page 606: Example Of Vlan Propagation Via Gvrp
Enabling/Disabling GVRP Figure 7-1 Example of VLAN Propagation via GVRP Configuring a VLAN on an 802.1Q switch creates a static VLAN entry. The entry will always remain registered and will not time out. However, dynamic entries will time-out and their registrations will be removed from the member list if the end station A is removed.
Page 607 Commands The commands used to configure GVRP are listed below and described in the associated section as shown. • show gvrp (Section 7.3.6.1) • show garp timer (Section • set gvrp (Section 7.3.6.3) • clear gvrp (Section 7.3.6.4) • set garp timer (Section 7.3.6.5) •...
Page 608: Show Gvrp
Command Defaults If port-string is not specified, GVRP configuration information will be displayed for all ports and the device. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display GVRP status for the device and for Fast Ethernet port 1 in port group 2: Matrix(rw)->show gvrp fe.2.1...
Page 609 Table 7-4 show gvrp Output Details (Continued) Output What It Displays... GVRP status Whether GVRP is enabled or disabled on the port. Last PDU Origin MAC address of the last GVRP frame received on the port. VLAN Configuration Command Set Enabling/Disabling GVRP Matrix NSA Series Configuration Guide 7-37...
Page 610: Show Garp Timer
Command Defaults If port-string is not specified, GARP timer information will be displayed for all ports. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display GARP timer information on Fast Ethernet ports 1 through 10...
Page 611 Matrix(rw)->show garp timer fe.1.1-10 Port based GARP Configuration: (Timer units are centiseconds) Port Number Join ----------- ---------- fe.1.1 fe.1.2 fe.1.3 fe.1.4 fe.1.5 fe.1.6 fe.1.7 fe.1.8 fe.1.9 fe.1.10 Table 7-5 provides an explanation of the command output. For details on using the set gvrp command to enable or disable GVRP, refer to on using the set garp timer command to change default timer values, refer to Section...
Page 612: Set Gvrp
| enable Disables or enables GVRP on the device. port-string Command Defaults If port-string is not specified, GVRP will be disabled or enabled for all ports. Command Type Switch command. Command Mode Read-Write. Examples This example shows how to enable GVRP globally on the device: Matrix(rw)->set gvrp enable...
Page 613: Clear Gvrp
Syntax Description port-string Command Defaults If port-string is not specified, GVRP status will be cleared for all ports. Command Type Switch command. Command Mode Read-Write. Examples This example shows how to clear GVRP status globally on the device: Matrix(rw)->clear gvrp (Optional) Clears GVRP status on specific port(s).
Page 614: Set Garp Timer
Command Defaults None. Command Type Switch command. Command Mode Read-Write. Examples This example shows how to set the GARP join timer value to 100 centiseconds for all ports: Matrix(rw)->set garp timer join 100 *.*.* This example shows how to set the leave timer value to 300 centiseconds for all ports: Matrix(rw)->set garp timer leave 300 *.*.*...
Page 615 VLAN Configuration Command Set Enabling/Disabling GVRP This example shows how to set the leaveall timer value to 20000 centiseconds for all ports: Matrix(rw)->set garp timer leaveall 20000 *.*.* Matrix NSA Series Configuration Guide 7-43...
Page 616: Clear Garp Timer
Command Defaults At least one optional parameter must be entered. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the GARP leave timer to 60 centiseconds on Fast Ethernet port 5 in port group 2: Matrix(rw)->clear garp timer leave fe.2.5...
Page 617: Policy Classification Configuration Summary
Policy Classification Configuration This chapter describes the Policy Classification set of commands and how to use them. NOTE: It is recommended that you use Enterasys Networks NetSight Atlas Policy Manager as an alternative to CLI for configuring policy classification on the Matrix Series devices.
Page 618: Process Overview: Policy Classification Configuration
Process Overview: Policy Classification Configuration Configuring Policy Profiles PROCESS OVERVIEW: POLICY CLASSIFICATION CONFIGURATION Use the following steps as a guide to configure policy classification on the device: 1. Configuring policy profiles 2. Assigning classification rules to policy profiles 3. Configuring policy-based Class of Service (CoS) 4.
Page 619 • show policy syslog (Section • set policy syslog (Section • clear policy syslog (Section • set policy maptable (Section • show policy maptable (Section • clear policy maptable (Section Policy Classification Configuration Command Set 8.3.1.11) 8.3.1.12) 8.3.1.13) 8.3.1.14) 8.3.1.15) 8.3.1.16) Configuring Policy Profiles Matrix NSA Series Configuration Guide...
Page 620: Show Policy Profile
Command Defaults If optional parameters are not specified, summary information will be displayed for the specified index or all indexes. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display policy information for policy profile 11: Matrix(rw)->show policy profile 11...
Page 621 Table 8-1 provides an explanation of the command output. Table 8-1 show policy profile Output Details Output What It Displays... Profile Index Number of the prolicy profile. Profile Name User-supplied name assigned to this policy profile. Row Status Whether or not the policy profile is enabled (active) or disabled.
Page 622: Set Policy Profile
Policy Classification Configuration Command Set Configuring Policy Profiles 8.3.1.2 set policy profile Use this command to create a policy profile entry. set policy profile profile-index [name name] [pvid-status {enable | disable}] [pvid pvid] [cos-status {enable | disable}] [cos cos] [egress-vlans egress-vlans] [forbidden-vlans forbidden-vlans] [untagged-vlans untagged-vlans] [append] [clear] Syntax Description...
Page 623 Command Defaults If optional parameters are not specified, none will be applied. Command Type Switch command. Command Mode Read-Write. Example This example shows how to create a policy profile 1 named “netadmin” with PVID override enabled for PVID 10, and Class-of-Service override enabled for CoS 5. This profile can use VLAN 10 for untagged egress: Matrix(rw)->set policy profile 1 name netadmin pvid-status enable pvid 10...
Page 624: Clear Policy Profile
Use this command to delete a policy profile entry. clear policy profile profile-index Syntax Description profile-index Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to delete policy profile 8: Matrix(rw)->clear policy profile 8 8-8 Matrix NSA Series Configuration Guide Specifies the index number of the policy profile entry to be deleted.
Page 625: Show Policy Invalid
| count | all Shows the action the device should take if asked to apply an Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display invalid policy action and count information: Matrix(rw)->show policy invalid all...
Page 626: Set Policy Invalid Action
Syntax Description default-policy drop forward Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to assign a drop action to invalid policies: Matrix(rw)->set policy invalid action drop 8-10 Matrix NSA Series Configuration Guide Instructs the device to ignore this result and search for the next policy assignment rule.
Page 627: Clear Policy Invalid Action
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the invalid policy action: Matrix(rw)->clear policy invalid action Policy Classification Configuration Command Set...
Page 628: Set Port Tci Overwrite
{enable | disable} Syntax Description port-string enable | disable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to enable TCI overwrite on port fe.1.3: Matrix(rw)->set port tcioverwrite fe.1.3 enable 8-12 Matrix NSA Series Configuration Guide Specifies port(s) on which to enable or disable the TCI overwrite function.
Page 629: Show Policy Accounting
Use this command to display the status of policy accounting. show policy accounting Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the status of policy accounting: Matrix(rw)->show policy accounting Accounting Enable control status is ENABLED...
Page 630: Set Policy Accounting
{enable | disable} Syntax Description enable | disable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to disable policy accounting: Matrix(rw)->set policy accounting disable 8-14 Matrix NSA Series Configuration Guide...
Page 631: Clear Policy Accounting
Use this command to restore policy accounting to its default state of enabled. clear policy accounting Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to re-enable policy accounting: Matrix(rw)->clear policy accounting Policy Classification Configuration Command Set...
Page 632: Show Policy Syslog
Syntax Description machine-readable Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the device formatting of rule usage messages: Matrix(rw)->show policy syslog machine-readable Syslog machine-readable: disabled...
Page 633: Set Policy Syslog
Syntax Description machine-readable enable | disable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the device formatting of rule usage messages as machine-readable: Matrix(rw)->set policy syslog machine-readable enable Policy Classification Configuration Command Set Set the formatting of rule usage messages.
Page 634: Clear Policy Syslog
Syntax Description machine-readable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear the machine-readable formatting of rule usage messages to the default setting of human-readable: Matrix(rw)->clear policy syslog machine-readable...
Page 635: Set Policy Maptable
| policy | both Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the Policy Profile mappings table for VLAN 3 and for Policy ID 8: Matrix(rw)->set policy maptable 3 8 This example shows how to use both tunnel and policy attributes in the RADIUS response for the Policy Profile mappings .
Page 636: Show Policy Maptable
Use this command to display the VLAN ID - Policy Profile mappings table. show policy maptable vlan-list Syntax Description vlan-list Command Defaults None. Command Type Switch command. Command Mode Read. Example This example shows the Policy Profile mappings table for all configured VLANs Matrix(rw)->show policy maptable Policy map response:...
Page 637: Clear Policy Maptable
| response Syntax Description vlan-list response Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example clears the Policy Profile mappings table. Matrix(rw)->clear policy maptable response Policy Classification Configuration Command Set VLAN ID or range of IDs (1 to 4094)
Page 638: Assigning Classification Rules To Policy Profiles
Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles 8.3.2 Assigning Classification Rules to Policy Profiles Purpose To review, assign and unassign classification and admin rules. Classification rules map policy profiles to protocol-based frame filtering policies configured for a particular VLAN or Class of Service (CoS).
Page 639: Show Policy Rule
8.3.2.1 show policy rule Use this command to display policy classification and admin rule information. show policy rule [attribute] | [all] | [admin-profile] | [profile-index] [ether | ipdest | ipfrag | ipproto | ipsource | iptos | llcDsapSsap | macdest | macsource | port | tcpdestport| tcpsourceport| udpdestport | udpsourceport [data] [mask mask] [port-string port-string] [rule-status {active | not-in-service | not-ready}] [storage-type {non-volatile | volatile}] [vlan vlan] | [drop |...
Page 640 • If verbose is not specified, summary information will be displayed. Command Type Switch command. Command Mode Read-Only. 8-24 Matrix NSA Series Configuration Guide (Not required for ipfrag classification.) Displays rules for a predefined classifier.
Page 641 Examples This example shows how to display policy classification information for Ethernet type 2 rules: Matrix(rw)->show policy rule ether |PID |Rule Type |Rule Data |Ether |32923 (0x809B) |Ether |33011 (0x80F3) |Ether |33079 (0x8137) |Ether |33080 (0x8138) |Ether |33276 (0x81FC) |Ether |32923 (0x809B) |Ether |33011 (0x80F3)
Page 642 Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles Table 8-2 show policy rule Output Details (Continued) Output PortStr Vlan dPID aPID 8-26 Matrix NSA Series Configuration Guide What It Displays... Ingress port(s) to which this rule applies. Whether or not the status of this rule is active (A), not in service or not ready.
Page 643: Show Policy Capability
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display your Matrix Series device’s policy classification capabilities. In this case, Matrix DFE-Platinum Series capabilities are shown. Refer to...
Page 644 Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles Matrix(rw)->show policy capability The following supports related to policy are supported in this device: VLAN Forwarding Deny Rules Table Longest Prefix Rules ============================================================= | SUPPORTED RULE TYPES ============================================================= |MAC source address |MAC destination address |IPX source address |IPX destination address...
Page 645: Set Policy Classify
8.3.2.3 set policy classify Use this command to assign incoming untagged frames to a specific policy profile, classification and to VLAN or Class-of-Service classification rules. set policy classify profile-index classify-index {vlan | cos} {classify-value | forward | drop} {ether | llc | iptos | ipproto | ipxclass | ipxtype | ipsource | ipdest | ipxsource | ipxdest | udpportsource | udpportdest | tcpportsource | tcpportdest | ipxsourcesocket | ipxdestsocket | macsource | macdest | ipfrag | icmptype | vlantag | tci | port} [class-data-val] [class-data-mask]...
Page 646 Command Defaults • If mask is not specified, all data bits will be considered relevant. Command Type Switch command. Command Mode Read-Write. Examples This example shows how to use policy 2, classification 65, to drop packets from a source IP address of 172.16.1.2: Matrix(rw)->set policy classify 2 65 vlan drop ipsource 172.16.1.2...
Page 647: Set Policy Rule
8.3.2.4 set policy rule Use this command to assign incoming untagged frames to a specific policy profile and to VLAN or Class-of-Service classification rules. set policy rule admin-profile | profile-index {ether | ipfrag | ipproto | ipdest | ipsource | iptos | llcDsapSsap | macdest | macsource | | port | tcpdestport | tcpsourceport | udpdestport | udpsourceport} data [mask mask] [port-string port-string] [storage-type {non-volatile | volatile}] [vlan vlan] | [drop | forward] [admin-pid admin-pid] [cos cos]...
Page 648 Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles tcpsourceport udpdestport udpsourceport data mask mask port-string port-string storage-type non-volatile | volatile vlan vlan drop | forward admin-pid admin-pid cos cos Command Defaults • If mask is not specified, all data bits will be considered relevant. 8-32 Matrix NSA Series Configuration Guide Classifies based on TCP source port .
Page 649 • If port-string is not specified, rule will be scoped to all ports. Command Type Switch command. Command Mode Read-Write. Examples This example shows how to use with policy number 1. This rule will filter Ethernet II Type 1526 frames to VLAN 7: Matrix(rw)->set policy rule 1 ether 1526 vlan 7...
Page 650 Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles Table 8-3 Valid Values for Policy Classification Rules (Continued) Classification Rule Parameter ipfrag ipproto iptos llcDsapSsap Destination or Source MAC: macdest macsource port Destination or Source TCP port: tcpdestport tcpsourceport Destination or Source UDP port:...
Page 651: Clear Policy Rule
8.3.2.5 clear policy rule Use this command to delete one or all policy classification rule entries. clear policy rule admin-profile | profile-index all-pid-entries | ether ipdest | ipfrag | ipproto | ipsource| iptos | llcDsapSsap | macdest | macsource | port |tcpdestport| tcpsourceport| udpdestport| udpsourceport] [all-traffic-entries | data][mask mask] [port-string port-string]} Syntax Description...
Page 652 Command Defaults When applicable, data, mask, and port-string must be specified for individual rules to be cleared. Command Type Switch command. Command Mode Read-Write. Example This example shows how to delete all classification rule entries associated with policy profile 1 from all ports: Matrix(rw)->clear policy rule 1 all-pid-entries...
Page 653: Clear Policy All-Rules
Use this command to remove all admin and classification rules. clear policy all-rules Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to remove all administrative and classification rules: Matrix(rw)->clear policy all-rules Policy Classification Configuration Command Set...
Page 654: Set Policy Port
Syntax Description port-name admin-id Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to assign an administrative rule with an index of 20 to port fe.1.3: Matrix(rw)->set policy port fe.1.3 20 8-38 Matrix NSA Series Configuration Guide (Section 8.3.2.4) used with the admin-profile...
Page 655: Show Policy Allowed-Type
-verbose Command Defaults If -verbose is not specified, summary information will be displayed. Command Type Switch command. Command Mode Read-Only. Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles Specifies port(s) for which to display traffic rules.
Page 656 Policy Classification Configuration Command Set Assigning Classification Rules to Policy Profiles Example This example shows how to show information about policies allowed on port ge.1.5: Matrix(rw)->show policy allowed-type ge.1.5 SUPPORTED AND ALLOWED TRAFFIC RULE TYPES o Means Traffic Rule Type is supported on this bridge port * Means Traffic Rule Type is supported and allowed on this bridge port ====================================================================== TRAFFIC...
Page 657: Set Policy Allowed-Type
Command Defaults If append or clear is not specified, rule(s) will be appended to the port’s current list. Command Type Switch command. Command Mode Read-Write. Examples This example shows how to allow only rule type 1 (source MAC address classification) to be applied to the admin profile for port ge.1.5:...
Page 658: Clear Policy Allowed-Type
Syntax Description port-string Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear the allowed rule list from port ge.1.5: Matrix(rw)->clear policy allowed-type ge.1.5 8-42 Matrix NSA Series Configuration Guide...
Page 659: Clear Policy Port-Hit
{all | port-list port-list} Syntax Description all | port-list port-list Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear rule port hit indications on all ports: Matrix(rw)->clear policy port-hit all Policy Classification Configuration Command Set...
Page 660: Configuring Policy Class Of Service (Cos)
(0-7, with 7 granted highest priority) and, depending on port type, up to 16 transmit queues (0-15) of traffic for each port. Enterasys Networks’ enhanced CoS implementation allows you to use the following methods to configure Class of Service on the Matrix Series device: •...
Page 661 You can add to these default configurations by defining new port groupings, and assigning inbound rate limiters or transmit queues and priorities. Whether you are specifying IRL or TXQ parameters, the process for user-defined CoS configuration involves the following steps and associated commands listed in Table 8-4.
Page 662 Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) • show cos unit (Section 8.3.3.4) • show cos port-config (Section • set cos port-config irl (Section • clear cos port-config irl • set cos port-config txq (Section • clear cos port-config txq •...
Page 663: Show Cos State
Use this command to display the Class of Service enable state. show cos state Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to show the Class of Service enable state: Matrix(rw)->show cos state Class-of-Service application is enabled...
Page 664: Set Cos State
| disable} Syntax Description enable | disable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to enable Class of Service: Matrix(rw)->set cos state enable 8-48 Matrix NSA Series Configuration Guide...
Page 665: Show Cos Port-Type
| txq index-list Command Defaults If not specified, all rate limiting information for all port types will be displayed. Command Type Switch command. Command Mode Read-Only. Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) (Optional) Displays inbound rate limiting or transmit queue information.
Page 666 Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) Example This example shows how to display all Class of Service port type information. In this case, no new port groups have been configured: Matrix(rw)->show cos port-type Number of resources: txq = transmit queue(s) irl = inbound rate limiter(s) orl = outbound rate limiter(s)
Page 667 Numb Table 8-5 show cos port-type Output Details Output What It Displays... Index Port type index. Port type 0 designates the Matrix Platinum Series 7G4270-12 module, and port type 1 designates all other modules. Port type Resource-specific text description of the port type. Default description names are: •...
Page 668: Show Cos Unit
Command Defaults If not specified, all rate limiting information for all port types and CoS units of measure will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to show all Class of Service IRL unit of measure information: Matrix(rw)->show cos unit irl...
Page 669: Show Cos Port-Config
| txq group-type-index Command Defaults If not specified, all rate limiting information for all port types will be displayed. Command Type Switch command. Command Mode Read-Only. Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) (Optional) Displays inbound rate limiting or transmit queue information.
Page 670 Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) Example This example shows how to show all Class of Service port group configuration information: Matrix(rw)->show cos port-config * Percentage/queue (if any) are approximations based on [(slices/queue) / total number of slices] Transmit Queue Port Configuration Entries ---------------------------------------------------------------------- Port Group Name...
Page 671: Set Cos Port-Config Irl
• If append or clear are not specified, port(s) will be appended to the specified port grouping. Command Type Switch command. Command Mode Read-Write. Example This example shows how to create a CoS inbound rate limiting port group entry named “test irl”...
Page 672: Clear Cos Port-Config Irl
| name | ports Deletes a specific entry or name, or clears the ports Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to delete the CoS inbound rate limiting port group entry 1.1: Matrix(rw)->clear cos port-config irl 1.1 entry...
Page 673: Set Cos Port-Config Txq
• If arb-slice or arb-percentage values are not specified, default allocations will be applied. Command Type Switch command. Command Mode Read-Write. Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) Specifies a transmit queue port group/type index for this entry.
Page 674 Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) Example This example shows how to create a CoS transmit queue port group entry named “test txq” with a port group ID of 2 and a port type ID of 1: Matrix(rw)->set cos port-config txq 2.1 name test txq 8-58 Matrix NSA Series Configuration Guide...
Page 675: Clear Cos Port-Config Txq
Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear all non-default CoS transmit queue port group entries: Matrix(rw)->clear cos port-config txq all Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) Clears all transmit queue port config entries or a specific entry.
Page 676: Show Cos Port-Resource
Command Defaults If no options are specified, all rate limiting information for all port types will be displayed. Command Type Switch command. Command Mode Read-Only. 8-60 Matrix NSA Series Configuration Guide (Optional) Displays inbound rate limiting or transmit queue information.
Page 677 Example This example shows how to show all inbound rate limiting port resource configuration information for port group 0.1: Matrix(rw)->show cos port-resource irl 0.1 '?' after the rate value indicates an invalid rate value Group Index Resource Type Unit ----------- -------- ---- ---- ---------- Policy Classification Configuration Command Set Rate Rate Limit Type Action...
Page 678: Set Cos Port-Resource Irl
Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) 8.3.3.11 set cos port-resource irl Use this command to configure a Class of Service inbound rate limiting port resource entry. set cos port-resource irl group-type-index irl-number {[unit {percentage | kbps | mbps | gbps}] [rate rate] [type {drop}] [syslog {disable | enable}] [trap {disable | enable}] [disable-port {disable | enable}]} Syntax Description...
Page 679 Command Type Switch command. Command Mode Read-Write. Example This example shows how to configure Class of Service port resource IRL entry 0 for port group 0.1 assigning an inbound rate limit of 512 kilobits per second This entry will trigger a Syslog and an SNMP trap message if this rate is exceeded: Matrix(rw)->set cos port-resource irl 0.1 0 unit kbps 512 syslog enable trap...
Page 680: Clear Cos Port-Resource Irl
Command Defaults If no options are specified, all non-default settings will be cleared for the associated rate limiter. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear all inbound rate limiting settings associated with port group 0.1, resource entry 0: Matrix(rw)->clear cos port-resource irl 0.1 0...
Page 681: Set Cos Port-Resource Txq
• If a rate is not specified, port defaults will be applied. • If not specified, no algorithm will be assigned. Command Type Switch command. Command Mode Read-Write. Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) Specifies a transmit queue port group/type index for this entry.
Page 682 Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) Example This example shows how to configure a Class of Service port resource entry for port group 0.1 assigning 50 percent of the total available inbound bandwidth to transmit queue 7: Matrix(rw)->set cos port-resource txq 0.1 7 unit percentage 50 8-66 Matrix NSA Series Configuration Guide...
Page 683: Clear Cos Port-Resource Txq
(Optional) Clears algorithm settings. Command Defaults If no options are specified, all associated non-default settings will be cleared. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear all port resource settings associated with Class of Service transmit queue 1 in port group 0.1:...
Page 684: Show Cos Reference
Command Defaults If no options are specified, all reference information for all port types will be displayed. Command Type Switch command. Command Mode Read-Only. 8-68 Matrix NSA Series Configuration Guide (Optional) Displays inbound rate limiting or transmit queue reference information.
Page 685 Example This example shows how to show all transmit queue reference configuration information for port group 0.1: Matrix(rw)->show cos reference txq 0.1 Group Index Reference Type ----------- --------- ---- ------------ Policy Classification Configuration Command Set Queue Matrix NSA Series Configuration Guide Configuring Policy Class of Service (CoS) 8-69...
Page 686: Set Cos Reference Irl
Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to configure inbound rate limiting reference entry 0 for port group 0.1 referencing resources defined by IRL resource entry 0: Matrix(rw)->set cos reference irl 0.1 0 rate-limit 0...
Page 687: Clear Cos Reference Irl
| group-type-index reference Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear all Class of Service inbound rate limiting reference entries: Matrix(rw)->clear cos reference irl all Policy Classification Configuration Command Set...
Page 688: Set Cos Reference Txq
Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to configure inbound rate limiting reference entry 0 for port group 0.1 referencing resources defined by TXQ resource entry 0: Matrix(rw)->set cos reference irl 0.1 0 queue 0...
Page 689: Clear Cos Reference Txq
Syntax Description all | group-type-index reference Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear all Class of Service transmit queue reference entries: Matrix(rw)->clear cos reference txq all Policy Classification Configuration Command Set...
Page 690: Show Cos Settings
[cos-list] Syntax Description cos-list Command Defaults If not specified, all CoS entries will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to show all CoS settings: Matrix(rw)->show cos settings * Means attribute has not been configured...
Page 691: Set Cos Settings
Command Defaults If no optional parameters are specified, none will be applied. Command Type Switch command. Command Mode Read-Write. Example This example shows how to create CoS entry 2 with a priority value of 3 and bind it to transmit queue reference ID 5: Matrix(rw)->set cos settings 2 priority 3 txq-reference 5...
Page 692: Clear Cos Settings
Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear the priority and transmit queue reference values for CoS entry 2: Matrix(rw)->clear cos settings 2 priority txq-reference 8-76 Matrix NSA Series Configuration Guide Specifies a Class of Service entry to clear.
Page 693: Show Cos Violation Irl
Command Defaults If no options are specified, all inbound rate limiting violation information will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to show any CoS inbound rate limiting violations: Matrix(rw)->show cos violation irl...
Page 694: Clear Cos Violation Irl
Command Defaults If no options are specified, all information for all types of CoS violations will be displayed. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear both status and counters from all CoS inbound rate limiting violation entries: Matrix(rw)->clear cos violation irl all both...
Page 695: Clear Cos All-Entries
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear all Class of Service entries except priority settings 0 - 7: Matrix(rw)->clear cos all-entries Policy Classification Configuration Command Set...
Page 696 Policy Classification Configuration Command Set Configuring Policy Class of Service (CoS) 8-80 Matrix NSA Series Configuration Guide...
Page 697: Port Priority Configuration Summary
In addition, the device’s rate limiting capabilities allow you to further prioritize traffic by limiting the rate of inbound or outbound traffic on a per port/priority basis. Enterasys Networks’ enhanced CoS implementation allows you to use the following methods to configure Class of Service on the Matrix Series device: •...
Page 698: Process Overview: Port Priority And Rate Limiting Configuration
Process Overview: Port Priority and Rate Limiting Configuration Configuring Port Priority NOTE: When CoS override is enabled using the set policy profile command as described in Section priority settings configured with the set port priority command described in this section. PROCESS OVERVIEW: PORT PRIORITY AND RATE LIMITING CONFIGURATION Use the following steps as a guide to the port priority, QoS, and rate limiting configuration process:...
Page 699: Show Port Priority
Syntax Description port-string Command Defaults If port-string is not specified, priority for all ports will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the port priority for the fe.2.1 through 5; Matrix(rw)->show port priority fe.2.1-5 fe.2.1 is set to 0...
Page 700: Set Port Priority
Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set a default priority of 6 on fe.1.3. Frames received by this port without priority information in their frame header are set to the default setting of 6: Matrix(rw)->set port priority fe.1.3 6...
Page 701: Clear Port Priority
Syntax Description port-string Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset fe.1.11 to the default priority: Matrix(rw)->clear port priority fe.1.11 Port Priority and Rate Limiting Configuration Command Set Specifies the port for which to clear priority.
Page 702: Configuring Priority To Transmit Queue Mapping
Port Priority and Rate Limiting Configuration Command Set Configuring Priority to Transmit Queue Mapping 9.3.2 Configuring Priority to Transmit Queue Mapping Purpose To perform the following: • View the current priority to transmit queue mapping of each port, which includes both physical and virtual ports.
Page 703: Show Port Priority-Queue
Syntax Description priority Command Defaults If priority is not specified, all priority queue information will be displayed. Command Type Switch command. Command Mode Read-Only. Examples This example shows how to display priority queue information for fe.1.7. In this case, the frames shown with a priority of 0 or 3 are transmitted according to the transmit priority queue of 1 (the second lowest transmit priority);...
Page 704 Port Priority and Rate Limiting Configuration Command Set Configuring Priority to Transmit Queue Mapping This example shows how to display the transmit queues associated with priority 3. Matrix(rw)->show port priority-queue 3 fe.1.7 ---------- fe.1.8 ---------- fe.1.9 ---------- 9-8 Matrix NSA Series Configuration Guide Priority TxQueue --------...
Page 705: Set Port Priority-Queue
9.3.2.2 set port priority-queue Use this command to map 802.1D (802.1p) priorities to transmit queues. This enables you to change the priority queue (0-7, depending on port type, with 0 being the lowest priority queue) for each port priority of the selected port. You can apply the new settings to one or more ports. For example, if the priority queue is set to 3 for those frames with a port priority 4, then those frames would be transmitted before any frames contained in traffic classes 2 through 0.
Page 706: Clear Port Priority-Queue
Syntax Description port-string Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear the priority queue settings on fe.2.12: Matrix(rw)->clear port priority-queue fe.2.12 9-10 Matrix NSA Series Configuration Guide Specifies the port for which to clear priority queue.
Page 707: Configuring Port Traffic Rate Limiting
9.3.3 Configuring Port Traffic Rate Limiting Purpose To limit the rate of inbound traffic on the Matrix Series device on a per port/priority basis. The allowable range for the rate limiting is kilobytes per second minimum up to the maximum transmission rate allowable on the interface type.
Page 708: Show Port Ratelimit
Command Defaults If port-string is not specified, rate limiting information will be displayed for all ports. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the current rate limiting information for fe.2.1: Matrix(rw)->show port ratelimit fe.2.1 Global Ratelimiting status is disabled.
Page 709 Table 9-1 shows a detailed explanation of the command output. Table 9-1 show port ratelimit Output Details Output Port Number Index Threshold (kB/s) Action Direction Priority List Status Port Priority and Rate Limiting Configuration Command Set Configuring Port Traffic Rate Limiting What It Displays...
Page 710: Set Port Ratelimit
If index is not specified, settings will be applied to index 1, and will overwrite index 1 for any subsequent rate limits configured. Command Type Switch command. 9-14 Matrix NSA Series Configuration Guide When entered without a port-string, globally disables or enables the port rate limiting function.
Page 711 Command Mode Read-Write. Example This example shows how to: • globally enable rate limiting • configure rate limiting for inbound traffic on port fe.2.1, index 1, priority 5, to a threshold of 125 KBps: Matrix(rw)->set port ratelimit enable Matrix(rw)->set port ratelimit fe.2.1 5 125 enable inbound Port Priority and Rate Limiting Configuration Command Set Configuring Port Traffic Rate Limiting Matrix NSA Series Configuration Guide...
Page 712: Clear Port Ratelimit
Syntax Description port-string index Command Defaults If not specified, all index entries will be reset. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear all rate limiting parameters on port fe.2.1: Matrix(rw)->clear port ratelimit fe.2.1 9-16 Matrix NSA Series Configuration Guide Specifies the port(s) on which to clear rate limiting.
Page 713: About Ip Multicast Group Management
A multicast-enabled switch device can periodically ask its hosts if they want to receive multicast traffic. If there is more than one switch device on the LAN performing IP multicasting, one of these devices is elected “querier” and assumes the responsibility of querying the LAN for group members.
Page 714: Process Overview: Igmp Configuration
However, note that IGMP neither alters nor routes any IP multicast packets. Since IGMP is not concerned with the delivery of IP multicast packets across subnetworks, an external IP multicast switch device is needed if IP multicast packets have to be routed across different subnetworks. 10.2 IGMP CONFIGURATION SUMMARY Multicasting is used to support real-time applications such as video conferences or streaming audio.
Page 715: Igmp Configuration Command Set
10.4 IGMP CONFIGURATION COMMAND SET 10.4.1 Enabling / Disabling IGMP Purpose To display IGMP information and to enable or disable IGMP snooping on the device. Commands The commands used to display, enable and disable IGMP are listed below and described in the associated sections as shown.
Page 716: Show Igmp Enable
Syntax Description vlan-list Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the IGMP status for VLAN 104: Matrix(rw)->show igmp enable 104 IGMP Default State for vlan 104 is Disabled 10-4 Matrix NSA Series Configuration Guide Specifies the VLAN(s) for which to display IGMP status.
Page 717: Set Igmp Enable
Syntax Description vlan-list Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to enable IGMP on VLAN 104: Matrix(rw)->set igmp enable 104 Specifies the VLAN(s) on which to enable IGMP.
Page 718: Set Igmp Disable
Use this command to disable IGMP on one or more VLANs. set igmp enable vlan-list Syntax Description vlan-list Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to disable IGMP on VLAN 104: Matrix(rw)->set igmp disable 104 10-6 Matrix NSA Series Configuration Guide...
Page 719: Configuring Igmp
10.4.2 Configuring IGMP Purpose To display and set IGMP configuration parameters, including query interval and response time settings, and to create and configure static IGMP entries. Commands The commands used to configure IGMP are listed below and described in the associated sections as shown.
Page 720: Show Igmp Query
Syntax Description vlan-list Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the IGMP query state for VLAN 1: Matrix(rw)->show igmp query 1 IGMP querying on vlan 1 is Disabled...
Page 721: Set Igmp Query-Enable
Syntax Description vlan-list Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to enable IGMP querying on VLAN 104: Matrix(rw)->set igmp query-enable 104 Specifies the VLAN(s) on which to enable IGMP querying.
Page 722: Set Igmp Query-Disable
Use this command to disable IGMP querying on one or more VLANs. set igmp query-disable vlan-list Syntax Description vlan-list Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to disable IGMP querying on VLAN 104: Matrix(rw)->set igmp query-disable 104 10-10 Matrix NSA Series Configuration Guide Specifies the VLAN(s) on which to disable IGMP querying.
Page 723: Show Igmp Grp-Full-Action
Use this command to show what action to take with multicast frames when the multicast IGMP group table is full show igmp grp-full-action Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the action taken for multicast frames when the IGMP group table is full: Matrix(rw)->show igmp grp-full-action...
Page 724: Set Igmp Grp-Full-Action
Syntax Description action Command Defaults Flood multicast frames to the Vlan Command Type Switch command. Command Mode Read-Write. Example This example shows how to flood multicast frames to the VLAN when the multicast group table is full: Matrix(rw)->set igmp grp-full-action 2...
Page 725: Show Igmp Config
Use this command to display IGMP configuration information for one or more VLANs. show igmp config vlan-list Syntax Description vlan-list Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display IGMP configuration information for VLAN 1: Matrix(rw)->show igmp config 1 IGMP config for vlan 1...
Page 726 IGMP Configuration Command Set Configuring IGMP Table 10-1 show igmp config Output Details Output VlanQueryInterval VlanStatus Vlan IGMP Version VlanQuerier VlanQueryMaxResponse Time VlanRobustness VlanLastMemberQueryIntvl Last member query interval. This is the maximum VlanQuerierUpTime 10-14 Matrix NSA Series Configuration Guide What It Displays... Frequency (in seconds) of host-query frame transmissions.
Page 727: Set Igmp Config
Command Defaults At least one optional parameter must be specified. Command Type Switch command. Command Mode Read-Write. Specifies the VLAN(s) on which to configure IGMP. (Optional) Specifies the frequency of host-query frame transmissions. Valid values are from 1 to 65535 seconds.
Page 728 IGMP Configuration Command Set Configuring IGMP Example This example shows how to set the IGMP query interval time to 250 seconds on VLAN 1: Matrix(rw)->set igmp config 1 query-interval 250 10-16 Matrix NSA Series Configuration Guide...
Page 729: Set Igmp Delete
Syntax Description vlan-list Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to remove IGMP configuration settings for VLAN 104: Matrix(rw)->set igmp delete 104 Specifies the VLAN(s) on which configuration settings will be cleared.
Page 730: Show Igmp Groups
-verbose Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display IGMP group information for VLAN 105. In this example, the device knows to forward all multicast traffic for IP group address 224.0.0.2 (VLAN 105) to Fast Ethernet port 2 in port group 2, and 1-Gigabit Ethernet port 14 in port group 3: Matrix(rw)->show igmp groups 105...
Page 731: Show Igmp Static
Command Defaults If not specified, static IGMP information will be displayed for all groups. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display static IGMP information for VLAN 105. The display is similar to the show igmp groups display: Matrix(rw)->show igmp static 105...
Page 732: Set Igmp Add-Static
Command Defaults If not specified, the static entry will be created and not modified. Command Type Switch command. Command Mode Read-Write. Example This example shows how to add port fe.1.3 to the IGMP group at 224.0.2 (VLAN 105): Matrix(rw)->set igmp add-static 224.0.0.2 105 modify...
Page 733: Set Igmp Remove-Static
Command Defaults If not specified, the static entry will be removed and not modified. Command Type Switch command. Command Mode Read-Write. Example This example shows how to remove port fe.1.3 from the IGMP group at 224.0.2 (VLAN 105): Matrix(rw)->set igmp remove-static 224.0.0.2 105 modify...
Page 734: Show Igmp Protocols
10.4.2.13 show igmp protocols Use this command to display the binding of IP protocol id to IGMP classification show igmp protocols Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the Matrix(rw)->show igmp protocols...
Page 735: Set Igmp Protocols
Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to change IGMP routing protocols to a protocol id of 3: Matrix(rw)->set igmp protocols classification 2 protocol-id 3 modify Specifies the classification. Options are: •...
Page 736: Clear Igmp Protocols
[protocol-id protocol-id] Syntax Description protocol-id protocol-id Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear IGMP protocols for protocol id 3: Matrix(rw)->clear igmp protocols protocol-id 3 10-24 Matrix NSA Series Configuration Guide...
Page 737: Show Igmp Vlan
Use this command to display IGMP information for a specific VLAN. show igmp vlan [vlan-list] Syntax Description vlan vlan-list Command Defaults None Command Type Switch command. Command Mode Read-Only. Example This example shows how to display igmp information for vlan 12: Matrix(rw)->show igmp vlan 12 IGMP Vlan 12 Info IGMP query state QueryInterval(sec.)
Page 738: Show Igmp Reporters
Syntax Description [portlist portlist] [group group] [vlan-list vlan-list] [sip sip] Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the all IGMP reporter information : Matrix(rw)->show igmp reporters IGMP Reporters Port --------------------------------------------------------------- lag.0.2...
Page 739 Syntax Description [portlist portlist] [group group] [vlan-list vlan-list] [sip sip] Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display all the IGMP flow information: Matrix(rw)->show igmp counters Multicast Flows Src Port ----------------------------------------------- fe.1.20...
Page 740: Show Igmp Counters
Use this command to display IGMP counter information. show igmp counters Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the IGMP counters: Matrix(rw)->show igmp counters Igmp Counters: Igmp Group Table is Full...
Page 741: Show Igmp Number-Groups
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-write. Example This example shows how to display the number of multicast groups supported by the device. Matrix(rw)->show igmp number-groups IGMP current max number of groups = 4096...
Page 742 IGMP Configuration Command Set Configuring IGMP 10-30 Matrix NSA Series Configuration Guide...
Page 743: Process Overview: Network Management
Logging and Network Management This chapter describes switch-related logging and network management commands and how to use them. NOTE: The commands in this section pertain to network management of the Matrix Series device from the management tasks, including reviewing router ARP tables and IP traffic, refer to Chapter 11.1 PROCESS OVERVIEW: NETWORK MANAGEMENT...
Page 744: Configuring System Logging
Logging And Network Management Command Set Configuring System Logging 11.2 LOGGING AND NETWORK MANAGEMENT COMMAND SET 11.2.1 Configuring System Logging Purpose To display and configure system logging, including Syslog server settings, logging severity levels for various applications, Syslog default settings, and the logging buffer. Commands Commands to configure system logging are listed below and described in the associated section as shown.
Page 745: Show Logging All
Use this command to display all configuration information for system logging. show logging all Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Logging And Network Management Command Set Configuring System Logging Matrix NSA Series Configuration Guide 11-3...
Page 746 Logging And Network Management Command Set Configuring System Logging Example This example shows how to display all system logging information: show logging all Matrix(rw)-> Application ---------------------------------------------------------- RtrAcl SNMP Webview System RtrFe Trace RtrLSNat FlowLimt Router AddrNtfy OSPF VRRP RtrArpProc LACP 1(emergencies) 2(alerts) 4(errors)
Page 747 Table 11-1 show logging all Output Details Output What It Displays... Application A mnemonic abbreviation of the textual description for applications being logged. Current Severity Severity level (1 - 8) at which the server is logging messages Level for the listed application. For details on setting this value using the set logging application command, refer to Section Defaults...
Page 748: Show Logging Server
Syntax Description index Command Defaults If index is not specified, all Syslog server information will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display Syslog server configuration information. For an explanation of the command output, refer back to show logging server Matrix(rw)->...
Page 749: Set Logging Server
11.2.1.3 set logging server Use this command to configure a Syslog server. set logging server index [ip-addr ip-addr] [facility facility] [severity severity] [descr descr] [port port] [state {enable | disable}] Syntax Description index ip-addr ip-addr facility facility severity severity descr descr port port state enable | disable...
Page 750 • If state is not specified, the server will not be enabled or disabled. Command Type Switch command. Command Mode Read-Write. Example This command shows how to enable a Syslog server configuration for index 1, IP address 134.141.89.113, facility local4, severity level 3 on port 514:...
Page 751: Clear Logging Server
Syntax Description index Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This command shows how to remove the Syslog server with index 1 from the server table: Matrix(rw)-> Logging And Network Management Command Set Specifies the server table index number for the server to be removed.
Page 752: Show Logging Default
Use this command to display the Syslog server default values. show logging default Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This command shows how to display the Syslog server default values. For an explanation of the command output, refer back to Matrix(rw)->...
Page 753: Set Logging Default
Syntax Description facility facility severity severity port port Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the Syslog default facility name to local2 and the severity level to 4 (error logging): Matrix(rw)->...
Page 754: Clear Logging Default
At least one optional parameter must be entered. • All three optional keywords must be entered to reset all logging values to defaults. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the Syslog default severity level to 6: Matrix(rw)->...
Page 755: Show Logging Application
Mnemonic values are case sensitive and must be typed as they appear in Table 11-3. Command Defaults If not specified, information for all applications will be displayed. Command Type Switch command. Command Mode Read-Only. Logging And Network Management Command Set (Optional) Displays severity level for one or all applications configured for logging.
Page 756 Logging And Network Management Command Set Configuring System Logging Example This example shows how to display system logging information pertaining to the all supported applications. Matrix(su)->show logging application Application ---------------------------------------------------------- 1(emergencies) 4(errors) 7(information) This example shows how to display system logging information pertaining to the SNMP application.
Page 757 Table 11-2 show logging application Output Details Output What It Displays... Application A mnemonic abbreviation of the textual description for applications being logged. Current Severity Severity level at which the server is logging messages for Level the listed application. This range (from 1 to 8) and its associated severity list is shown in the CLI output.
Page 758: Set Logging Application
Logging And Network Management Command Set Configuring System Logging 11.2.1.9 set logging application Use this command to set the severity level of log messages and the server(s) to which messages will be sent for one or all applications. set logging application {[mnemonic | all]} [level level] [servers servers] Syntax Description mnemonic level level...
Page 759 If level is not specified, none will be applied. • If server is not specified, messages will be sent to all Syslog servers. Command Type Switch command. Logging And Network Management Command Set Application Authentication, Authorization, & Accounting Address Add and Move Notification...
Page 760 Logging And Network Management Command Set Configuring System Logging Command Mode Read-Write. Example This example shows how to set the severity level for SSH (Secure Shell) to 4 so that error conditions will be logged for that application and sent to Syslog server 1: Matrix(rw)->...
Page 761: Clear Logging Application
{mnemonic | all} Syntax Description mnemonic | all Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the logging severity level for SSH: Matrix(rw)-> Logging And Network Management Command Set (Optional) Resets the severity level for a specific application or for all applications.
Page 762: Show Logging Local
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the state of message logging. In this case, logging to the console is enabled and logging to a persistent file is disabled.
Page 763: Set Logging Local
| disable Enables or disables logging to a persistent file. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This command shows how to enable logging to the console and disable logging to a persistent file: Matrix(rw)->...
Page 764: Clear Logging Local
Use this command to clear the console and persistent store logging for the local session. clear logging local Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear local logging: Matrix(rw)-> 11-22 Matrix NSA Series Configuration Guide...
Page 765: Set Logging Here
{enable | disable} Syntax Description enable | disable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This command shows how to enable the display of logging messages to the current CLI session: Matrix(rw)-> Logging And Network Management Command Set Enables or disables display of logging messages for the current CLI session.
Page 766: Clear Logging Here
Use this command to clear the logging state for the current CLI session. clear logging here Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This command shows how to clear the logging state for the current CLI session: Matrix(rw)-> 11-24 Matrix NSA Series Configuration Guide...
Page 767: Show Logging Buffer
Use this command to display the last 256 messages logged. show logging buffer Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows a portion of the information displayed with the show logging buffer command show logging buffer Matrix(rw)->...
Page 768: Monitoring Network Events And Status
Monitoring Network Events and Status 11.2.2 Monitoring Network Events and Status Purpose To display switch events and command history, to set the size of the history buffer, and to display and disconnect current user sessions. Commands Commands to monitor switch network events and status are listed below and described in the associated section as shown.
Page 769 11.2.2.1 history Use this command to display the contents of the command history buffer. The command history buffer includes all the switch commands entered up to a maximum of 50, as specified in the set history command (Section history Syntax Description None.
Page 770: Show History
Use this command to display the size (in lines) of the history buffer. show history Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the size of the history buffer: Matrix(rw)->show history History buffer size: 20...
Page 771: Set History
Command Defaults If default is not specified, the history setting will not be persistent. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the size of the command history buffer to 3 lines and make this the default setting: Matrix(rw)->set history 3 default...
Page 772: Show Netstat
Logging And Network Management Command Set Monitoring Network Events and Status 11.2.2.4 show netstat Use this command to display statistics for the switch’s active network connections. show netstat [icmp | ip | routes | stats | tcp | udp] Syntax Description icmp...
Page 773 Table 11-4 provides an explanation of the command output. Table 11-4 show netstat Output Details Output What It Displays... Protocol Control Block designation. Proto Type of protocol running on the connection. Recv-Q Number of queries received over the connection. Send-Q Number of queries sent over the connection.
Page 774 Logging And Network Management Command Set Monitoring Network Events and Status 11.2.2.5 ping Use this command to send ICMP echo-request packets to another node on the network from the switch CLI. ping [-s] host [count] Syntax Description host count Command Defaults •...
Page 775 This example shows how to ping IP address 134.141.89.29 with 10 packets: 134.141.89.29 Matrix(rw)->ping PING 134.141.89.29: 56 data bytes 64 bytes from 134.141.89.29: icmp-seq=0. time=0. ms 64 bytes from 134.141.89.29: icmp-seq=1. time=0. ms 64 bytes from 134.141.89.29: icmp-seq=2. time=0. ms 64 bytes from 134.141.89.29: icmp-seq=3.
Page 776: Show Users
Logging And Network Management Command Set Monitoring Network Events and Status 11.2.2.6 show users Use this command to display information about the active console port or Telnet session(s) logged in to the switch. show users Syntax Description None. Command Defaults None.
Page 777 {dest | all} message Syntax Description dest message Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to tell all users about a system reset: Matrix(rw)-> today Logging And Network Management Command Set Specifies the user to which this message will be sent.
Page 778 Logging And Network Management Command Set Monitoring Network Events and Status 11.2.2.8 disconnect Use this command to close an active console port or Telnet session from the switch CLI. disconnect {ip-addr | console} Syntax Description ip-addr console Command Defaults None.
Page 779: Configuring Smon
11.2.3 Configuring SMON Purpose To configure SMON (Switched Network Monitoring) on the device. Commands Commands to configure SMON are listed below and described in the associated section as shown. • show smon priority (Section • set smon priority (Section • clear smon priority (Section •...
Page 780: Show Smon Priority
If port-string is not specified, SMON statistics for all ports will be displayed. • If priority is not specified, statistics for all priority queues will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display SMON priority 0 statistics for 1-Gigabit Ethernet port 14 in port group 3 Matrix(rw)->show smon priority ge.3.14 0...
Page 781: Set Smon Priority
Command Defaults If owner is not specified, none will be applied. Command Type Switch command. Command Mode Read-Write. Example This example shows how set the device to gather SMON priority statistics from 1-Gigabit Ethernet port 14 in port group 3: Matrix(rw)->set smon priority ge.3.14...
Page 782: Clear Smon Priority
Command Defaults If port-string is not specified, priority statistics will be cleared on all ports. Command Type Switch command. Command Mode Read-Write. Example This example shows how clear SMON priority statistics on 1-Gigabit Ethernet source port 14 in port group 3: Matrix(rw)->clear smon priority ge.3.14...
Page 783: Show Smon Vlan
If port-string is not specified, SMON statistics for all ports will be displayed. • If vlan-id is not specified, statistics for all VLANs will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display SMON VLAN 1 statistics for 1-Gigabit Ethernet port 14 in port group 3: Matrix(rw)->...
Page 784: Set Smon Vlan
Command Defaults If owner is not specified, none will be applied. Command Type Switch command. Command Mode Read-Write. Example This example shows how set the device to gather SMON VLAN-related statistics from 1-Gigabit Ethernet port 14 in port group 3: Matrix(rw)->set smon vlan ge.3.14...
Page 785: Clear Smon Vlan
Command Defaults If port-string is not specified, VLAN statistics counting configurations will be cleared for all ports. Command Type Switch command. Command Mode Read-Write. Example This example shows how clear an SMON VLAN statistics counting configuration from 1-Gigabit Ethernet source port 14 in port group 3: Matrix(rw)->clear smon vlan ge.3.14...
Page 786: Configuring Rmon
Logging And Network Management Command Set Configuring RMON 11.2.4 Configuring RMON RMON Monitoring Group Functions and Commands RMON (Remote Network Monitoring) provides comprehensive network fault diagnosis, planning, and performance tuning information and allows for interoperability between SNMP management stations and monitoring agents. RMON extends the SNMP MIB capability by defining additional MIBs that generate a much richer set of data about network usage.
Page 787 Table 11-5 RMON Monitoring Group Functions and Commands (Continued) RMON Group What It Does... Alarm Periodically gathers statistical samples from variables in the probe and compares them with previously configured thresholds. If the monitored variable crosses a threshold, an event is generated. Event Controls the generation and notification of events...
Page 788 Logging And Network Management Command Set Configuring RMON Table 11-5 RMON Monitoring Group Functions and Commands (Continued) RMON Group What It Does... Host Generates tables that TopN describe hosts that top a list ordered by one of their statistics. These rate based statistics are samples of one of their base statistics over an...
Page 789 Table 11-5 RMON Monitoring Group Functions and Commands (Continued) RMON Group What It Does... Filter Allows packets to be matched by a filter equation. These matched packets form a data stream or “channel” that may be captured or may generate events. Packet Allows packets to be Capture...
Page 790: Show Rmon Stats
Command Defaults If port-string is not specified, RMON stats will be displayed for all ports. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display RMON statistics for Fast Ethernet port 20 in port group 1: Matrix(rw)->...
Page 791 Data source of the statistics being displayed. Drop Events Total number of times that the switch was forced to discard frames due to lack of available switch device resources. This does not display the number of frames dropped, only the number of times the switch was forced to discard frames.
Page 792 Logging And Network Management Command Set Configuring RMON Table 11-6 show rmon stats Output Details (Continued) Output Fragments Packets Octets 0 – 64 Octets 65 – 127 Octets 128 – 255 Octets 256 – 511 Octets 512 – 1023 Octets Total number of frames, including bad frames, received that 1024 –...
Page 793: Set Rmon Stats
Command Defaults If owner is not specified, monitor will be applied. Command Type Switch command. Command Mode Read-Write. Example This example shows how to configure RMON statistics entry 2 for fe.1.20: Matrix(rw)-> Logging And Network Management Command Set Specifies an index for this statistics entry.
Page 794: Clear Rmon Stats
{index-list | to-defaults} Syntax Description index-list to-defaults Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to delete RMON statistics entry 2: Matrix(rw)-> 11-52 Matrix NSA Series Configuration Guide Specifies one or more stats entries to be deleted, causing them to disappear from any future RMON queries.
Page 795: Show Rmon History
Command Defaults If port-string is not specified, information about all RMON history entries will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display RMON history entries for Fast Ethernet port 14 in port group 3.
Page 796 Logging And Network Management Command Set Configuring RMON Matrix(rw)->show rmon history fe.3.14 Port: fe.3.14 --------------------------------------- Index 1001 Status = 1 valid Owner = monitor Data Source = 1.3.6.1.2.1.2.2.1.1.11001 Interval = 30 Buckets Requested = 50 Buckets Granted = 50 Sample 2304 Interval Start: 0 days 19 hours 11 minutes 35 seconds Drop Events Octets...
Page 797: Set Rmon History
If not specified, interval will be set to 30 seconds. • If owner is not specified, monitor will be applied. Command Type Switch command. Command Mode Read-Write. Example This example shows how configure RMON history entry 1 on port fe.2.1 to sample every 30 seconds: Matrix(rw)->...
Page 798: Clear Rmon History
For specific values, refer to clear rmon history {index-list | to-defaults} Syntax Description index-list to-defaults Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to delete RMON history entry 1: Matrix(rw)-> 11-56 Matrix NSA Series Configuration Guide Section 11.2.4.5.
Page 799: Show Rmon Alarm
Syntax Description index Command Defaults If index is not specified, information about all RMON alarm entries will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display RMON alarm entry 3: Matrix(rw)->show rmon alarm 3...
Page 800 Logging And Network Management Command Set Configuring RMON Table 11-7 show rmon alarm Output Details Output Index Owner Status Variable Sample Type Startup Alarm Interval Rising Threshold Falling Threshold Rising Event Index Index number of the RMON event to be triggered when the Falling Event Index 11-58 Matrix NSA Series Configuration Guide...
Page 801: Set Rmon Alarm Properties
11.2.4.8 set rmon alarm properties Use this command to configure an RMON alarm entry, or to create a new alarm entry with an unused alarm index number. set rmon alarm properties index [interval interval] [object object] [type {absolute | delta}] [startup {rising | falling | either}] [rthresh rthresh] [fthresh fthresh] [revent revent] [fevent fevent] [owner owner] Syntax Description index...
Page 802 - 0 • fevent - 0 • owner - monitor Command Type Switch command. Command Mode Read-Write. Example This example shows how to configure a rising RMON alarm. This entry will conduct monitoring of the delta between samples every 30 seconds: set rmon alarm properties 3 interval 30 object Matrix(rw)->...
Page 803: Set Rmon Alarm Status
Syntax Description index enable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to enable RMON alarm entry 3: Matrix(rw)-> Logging And Network Management Command Set...
Page 804: Clear Rmon Alarm
Use this command to delete an RMON alarm entry. clear rmon alarm index Syntax Description index Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear RMON alarm entry 1: Matrix(rw)-> 11-62 Matrix NSA Series Configuration Guide Specifies the index number of entry to be cleared.
Page 805: Show Rmon Event
Syntax Description index Command Defaults If index is not specified, information about all RMON entries will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display RMON event entry 3: Matrix(rw)->show rmon event 3...
Page 806 Logging And Network Management Command Set Configuring RMON Table 11-8 show rmon event Output Details (Continued) Output Description Type Community Last Time Sent 11-64 Matrix NSA Series Configuration Guide What It Displays... Text string description of this event. Whether the event notification will be a log entry, and SNMP trap, both, or none.
Page 807: Set Rmon Event Properties
• If not specified, type none will be applied. • If owner is not specified, monitor will be applied. Command Type Switch command. Command Mode Read-Write. Logging And Network Management Command Set Specifies an index number for this entry. Maximum number of entries is 100.
Page 808 Logging And Network Management Command Set Configuring RMON Example This example shows how to create and enable an RMON event entry called “STP topology change” that will send both a log entry and an SNMP trap message to the “public” community: set rmon event properties 2 description “STP topology Matrix(rw)->...
Page 809: Set Rmon Event Status
Syntax Description index enable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to enable RMON event entry 1: Matrix(rw)-> Logging And Network Management Command Set...
Page 810: Clear Rmon Event
Use this command to delete an RMON event entry and any associated log entries. clear rmon event index Syntax Description index Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear RMON event 1: Matrix(rw)-> 11-68 Matrix NSA Series Configuration Guide Specifies the index number of the entry to be cleared.
Page 811: Show Rmon Host
If port-string is not specified, information about all ports will be displayed. • If address or creation are not specified, entries will not be sorted. Command Type Switch command. Command Mode Read-Only. Logging And Network Management Command Set (Optional) Displays RMON properties and statistics for specific port(s).
Page 812 Logging And Network Management Command Set Configuring RMON Example This example shows how to display RMON host properties and statistics. A control entry displays first, followed by actual entries corresponding to the control entry. For a description of the types of statistics shown, refer to Table 11-6 Matrix(rw)->show rmon host...
Page 813: Set Rmon Host Properties
Command Defaults If owner is not specified, monitor will be applied. Command Type Switch command. Command Mode Read-Write. Example This example shows how to configure RMON host entry 1 on Fast Ethernet port 5 in port group 1: Matrix(rw)->...
Page 814: Set Rmon Host Status
Syntax Description index enable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to enable RMON host entry 1: Matrix(rw)-> 11-72 Matrix NSA Series Configuration Guide Specifies an index number for this entry. Maximum number of entries is 5.
Page 815: Clear Rmon Host
Use this command to delete an RMON host entry. clear rmon host index Syntax Description index Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear RMON host entry 1: Matrix(rw)-> Logging And Network Management Command Set Specifies the index number of the entry to be cleared.
Page 816: Show Rmon Topn
Syntax Description index Command Defaults If index is not specified, information about all entries will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display all RMON TopN properties and statistics. A control entry displays first, followed by actual entries corresponding to the control entry Matrix(rw)->show rmon topN...
Page 817 Table 11-9 provides an explanation of the command output. Properties are set using the set rmon topN properties command as described in Table 11-9 show rmon topN Output Details Output What It Displays... Index Index number for this event entry. Each entry defines one top N report prepared for one interface.
Page 818: Set Rmon Topn Properties
If size is not specified, 10 will be applied. • If owner is not specified, monitor will be applied. Command Type Switch command. 11-76 Matrix NSA Series Configuration Guide Specifies an index number for this entry. An entry will automatically be created if an unused index number is chosen.
Page 819 Logging And Network Management Command Set Configuring RMON Command Mode Read-Write. Example This example shows how to configure RMON TopN entry 1, for host 1 with a sampling interval of 60 seconds and a maximum number of entries of 20: set rmon topN properties 1 1 inpackets 60 20 Matrix(rw)->...
Page 820: Set Rmon Topn Status
| Syntax Description index enable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to enable RMON TopN entry 1: Matrix(rw)-> 11-78 Matrix NSA Series Configuration Guide Specifies an index number for this entry. Maximum number of entries is 10.
Page 821: Clear Rmon Topn
Use this command to delete an RMON TopN entry. clear rmon topN index Syntax Description index Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to delete RMON TopN entry 1: Matrix(rw)-> Logging And Network Management Command Set Specifies the index number of the entry to be cleared.
Page 822: Show Rmon Matrix
If port-string is not specified, information about all ports will be displayed. • If not specified, information about source and destination addresses will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display RMON matrix properties and statistics. A control entry displays first, followed by actual entries corresponding to the control entry: Matrix(rw)->show rmon matrix...
Page 823 Table 11-10 provides an explanation of the command output. Properties are set using the set rmon matrix properties command as described in Table 11-10 show rmon matrix Output Details Output What It Displays... Matrix Index Index number for this RMON matrix entry. Interface Interface for which host monitoring is being conducted.
Page 824: Set Rmon Matrix Properties
Command Defaults If owner is not specified, monitor will be applied. Command Type Switch command. Command Mode Read-Write. Example This example shows how to configure RMON matrix entry 1 for fe.1.1 Matrix(rw)-> 11-82 Matrix NSA Series Configuration Guide Specifies an index number for this entry.
Page 825: Set Rmon Matrix Status
Syntax Description index enable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to enable RMON matrix entry 1: Matrix(rw)-> Logging And Network Management Command Set Specifies an index number for this entry. Maximum number of entries is 2.
Page 826: Clear Rmon Matrix
Use this command to delete an RMON matrix entry. clear rmon matrix index Syntax Description index Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to delete RMON matrix entry 1: Matrix(rw)-> 11-84 Matrix NSA Series Configuration Guide Specifies the index number of the entry to be cleared.
Page 827: Show Rmon Channel
Syntax Description port-string Command Defaults If port-string is not specified, information about all channels will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display RMON channel information for fe.2.12: Matrix(rw)->show rmon channel fe.2.12 Port fe.2.12...
Page 828: Set Rmon Channel
Logging And Network Management Command Set Configuring RMON 11.2.4.28 set rmon channel Use this command to configure an RMON channel entry. set rmon channel index port-string [accept {matched | failed}] [control {on | off}] [onevent onevent] [offevent offevent] [event event] [estatus {ready | fired | always}] [description description] [owner owner] Syntax Description index...
Page 829 If a description is not specified, none will be applied. • If owner is not specified, it will be set to monitor. Command Type Switch command. Command Mode Read-Write. Example This example shows how to create an RMON channel entry: set rmon channel 54313 fe.2.12 accept failed control on...
Page 830: Clear Rmon Channel
Use this command to clear an RMON channel entry. clear rmon channel index Syntax Description index Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear RMON channel entry 2: Matrix(rw)->clear rmon channel 2 11-88 Matrix NSA Series Configuration Guide...
Page 831: Show Rmon Filter
| channel channel Command Defaults If no options are specified, information for all filter entries will be displayed. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display all RMON filter entries and channel information: Matrix(rw)->show rmon filter...
Page 832: Set Rmon Filter
• If no other options are specified, none (0) will be applied. Command Type Switch command. 11-90 Matrix NSA Series Configuration Guide Specifies an index number for this entry. An entry will automatically be created if an unused index number is chosen.
Page 833 Command Mode Read-Write. Example This example shows how to create RMON filter 1 and apply it to channel 9: set rmon filter 1 10 offset 30 data 0a154305 dmask Matrix(rw)-> ffffffff Logging And Network Management Command Set Matrix NSA Series Configuration Guide Configuring RMON 11-91...
Page 834: Clear Rmon Filter
{index index | channel channel} Syntax Description index index | channel channel Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear RMON filter entry 1: Matrix(rw)->clear rmon filter index 1 11-92 Matrix NSA Series Configuration Guide Clears a specific filter entry, or all entries belonging to a specific channel.
Page 835: Show Rmon Capture
Command Defaults If no options are specified, all buffer control entries and associated captured packets will be displayed. Command Type Switch command. Command Mode Read-Only. Logging And Network Management Command Set (Optional) Displays the specified buffer control entry and all captured packets associated with that entry.
Page 836 Logging And Network Management Command Set Configuring RMON Example This example shows how to display RMON capture entries and associated buffer entries: Matrix(rw)->show rmon capture Buf.control= 28062 Channel= 38283 ---------------------------------------------------------- FullStatus avail Captured packets Download size Max Octet Requested 50000 Start time 1 days 0 hours 51 minutes 15 seconds Owner...
Page 837: Set Rmon Capture
11.2.4.34 set rmon capture Use this command to configure an RMON capture entry, or to enable or disable an existing entry. set rmon capture index {channel [action {lock | wrap}] [slice slice] [loadsize loadsize] [offset offset] [asksize asksize] [owner owner]} | {enable | disable} Syntax Description index channel...
Page 838 Logging And Network Management Command Set Configuring RMON Command Type Switch command. Command Mode Read-Write. Example This example shows how to create RMON capture entry 1 to “listen” on channel 628: Matrix(rw)-> 11-96 Matrix NSA Series Configuration Guide set rmon capture 1 628...
Page 839: Clear Rmon Capture
Use this command to clears an RMON capture entry. clear rmon capture index Syntax Description index Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear RMON capture entry 1: Matrix(rw)->clear rmon capture 1 Logging And Network Management Command Set Specifies the capture entry to be cleared.
Page 840: Managing Switch Network Addresses And Routes
11.2.5 Managing Switch Network Addresses and Routes Purpose To display, add or delete switch ARP table entries, to enable or disable RAD (Runtime Address Discovery) protocol, to display, add or delete IP routing table addresses, and to display MAC address information.
Page 841: Show Arp
11.2.5.1 show arp Use this command to display the switch’s ARP table. show arp Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display the ARP table: Matrix(rw)-> LINK LEVEL ARP TABLE...
Page 842: Set Arp
Logging And Network Management Command Set Managing Switch Network Addresses and Routes 11.2.5.2 set arp Use this command to add mapping entries to the switch’s ARP table. set arp ip-address mac-address [{temp | pub | trail}] Syntax Description ip-address mac-address...
Page 843: Clear Arp
11.2.5.3 clear arp Use this command to delete a specific entry or all entries from the switch’s ARP table. clear arp {ip | all} Syntax Description ip | all Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to delete entry 10.1.10.10 from the ARP table:...
Page 844: Show Rad
Logging And Network Management Command Set Managing Switch Network Addresses and Routes 11.2.5.4 show rad Use this command to display the status of the RAD (Runtime Address Discovery) protocol on the switch. show rad Syntax Description None. Command Defaults None.
Page 845: Set Rad
Command Type Switch command. Command Mode Read-Write. Example This example shows how to disable RAD: Matrix(rw)-> Logging And Network Management Command Set Managing Switch Network Addresses and Routes Enables or disables RAD. set rad disable Matrix NSA Series Configuration Guide 11-103...
Page 846: Show Ip Route
Logging And Network Management Command Set Managing Switch Network Addresses and Routes 11.2.5.6 show ip route Use this command to display the switch’s IP routing table entries. show ip route Syntax Description None. Command Defaults None. Command Type Switch command.
Page 847 2 - protocol specific routing flag Refcnt Number of hosts referencing this address. Number of packets forwarded via this route. Interface Interface type. Logging And Network Management Command Set Managing Switch Network Addresses and Routes Matrix NSA Series Configuration Guide 11-105...
Page 848 Logging And Network Management Command Set Managing Switch Network Addresses and Routes 11.2.5.7 traceroute Use this command to display a hop-by-hop path through an IP network from the device to a specific destination host. Three UDP or ICMP probes will be transmitted for each hop between the source and the traceroute destination.
Page 849 Command Type Switch command. Command Mode Read-Only. Logging And Network Management Command Set Managing Switch Network Addresses and Routes (Optional) Prevents traceroute from calculating checksums. Specifies the host to which the route of an IP packet will be traced. (Optional) Specifies the length of the probe packet.
Page 850 This example shows how to use traceroute to display a round trip path to host 192.167.252.17. In this case, hop 1 is the Matrix Series switch, hop 2 is 14.1.0.45, and hop 3 is back to the host IP address. Round trip times for each of the three UDP probes are displayed next to each hop Matrix(rw)->traceroute 192.167.252.17...
Page 851: Set Ip Route
11.2.5.8 set ip route Use this command to add a route to the switch’s IP routing table. set ip route {destination | default} gateway Syntax Description destination default gateway Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to add an IP route from 192.122.173.42 to 192.122.168.38 to the routing...
Page 852: Clear Ip Route
Logging And Network Management Command Set Managing Switch Network Addresses and Routes 11.2.5.9 clear ip route Use this command to delete switch IP routing table entries. clear ip route destination | default Syntax Description destination default Command Defaults None. Command Type Switch command.
Page 853: Show Port Mac
This example shows how to display the MAC address for 1-Gigabit Ethernet port 4 in port group 2: Matrix(rw)-> Port ------------ fe.2.4 Logging And Network Management Command Set Managing Switch Network Addresses and Routes (Optional) Displays MAC addresses for specific port(s). For a detailed description of possible port-string values, refer to Section 4.1.1.
Page 854: Show Mac
Use this command to display the timeout period for aging learned MAC addresses, and to show MAC addresses in the switch’s filtering database. These are addresses learned on a port through the switching process or statically entered. To show port MAC addresses programmed into the device...
Page 855 Table 11-13 show mac Output Details Output MAC Address Port Type Status Logging And Network Management Command Set Managing Switch Network Addresses and Routes show mac agetime Port fe.1.3 fe.1.3 provides an explanation of the command output. What It Displays...
Page 856: Set Mac
Logging And Network Management Command Set Managing Switch Network Addresses and Routes 11.2.5.12 set mac Use this command to set the timeout period for aging learned MAC entries, to define what ports a multicast address can be dynamically learned on or flooded to, and to make a static entry into the filtering database(s).
Page 857: Clear Mac
This example shows how to clear the MAC timeout period: Matrix(rw)-> Logging And Network Management Command Set Managing Switch Network Addresses and Routes Clear all MAC address entries. This will even clear permanent entries. MAC address to clear (ex. 00-01-F4-56-78-90); if not specified, clear command shall be scoped to all MAC address.
Page 858 Logging And Network Management Command Set Managing Switch Network Addresses and Routes This example shows how to clear all the MAC addresses associated with port fe.1.3: Matrix(rw)->clear mac port-string fe.1.3 11-116 Matrix NSA Series Configuration Guide...
Page 859: Show Newaddrtraps
Port --------- ------------ ge.1.1 ge.1.2 ge.1.3 Logging And Network Management Command Set Managing Switch Network Addresses and Routes (Optional) Displays MAC address traps for specific port(s). For a detailed description of possible port-string values, refer to Section 4.1.1. show newaddrtrap...
Page 860: Set Newaddrtraps
Logging And Network Management Command Set Managing Switch Network Addresses and Routes 11.2.5.15 set newaddrtraps Use this command to enable or disable SNMP trap messaging, globally or on one or more ports, when new source MAC addresses are detected. set newaddrtrap [port-string] {enable | disable}...
Page 861: Show Movedaddrtrap
Port --------- ------------ ge.1.1 ge.1.2 ge.1.3 Logging And Network Management Command Set Managing Switch Network Addresses and Routes (Optional) Displays MAC address traps for specific port(s). For a detailed description of possible port-string values, refer to Section 4.1.1. show movedaddrtrap ge.1.1-3...
Page 862: Set Movedaddrtrap
Logging And Network Management Command Set Managing Switch Network Addresses and Routes 11.2.5.17 set movedaddrtrap Use this command to enable or disable SNMP trap messaging, globally or on one or more ports, when moved source MAC addresses are detected. set movedaddrtrap [port-string] {enable | disable}...
Page 863: Configuring Simple Network Time Protocol (Sntp)
11.2.6 Configuring Simple Network Time Protocol (SNTP) Purpose To configure the Simple Network Time Protocol (SNTP), which synchronizes device clocks in a network. Commands Commands to configure SNTP are listed below and described in the associated section as shown. • show sntp (Section 11.2.6.1)
Page 864: Show Sntp
Use this command to display SNTP client settings. show sntp Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display SNTP client settings: Matrix(rw)->show sntp SNTP Version: 3 Current Time: TUE SEP 09 16:13:33 2003...
Page 865 Table 11-14 show sntp Output Details Output What It Displays... SNTP Version SNTP version number. Current Time Current time on the system clock. Timezone Time zone name and amount it is offset from UTC (Universal Time). Set using set timezone command (Section Client Mode Whether SNTP client is operating in unicast or broadcast...
Page 866: Set Sntp Client
Syntax Description broadcast unicast disable Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to enable SNTP in broadcast mode: Matrix(rw)->set sntp client broadcast 11-124 Matrix NSA Series Configuration Guide Enables SNTP in broadcast client mode.
Page 867: Clear Sntp Client
Use this command to clear the SNTP client’s operational mode. clear sntp client Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear the SNTP client’s operational mode: Matrix(rw)->clear sntp client Logging And Network Management Command Set...
Page 868: Set Sntp Server
Command Defaults If precedence is not specified, 1 will be applied. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the server at IP address 10.21.1.100 as an SNTP server Matrix(rw)->set sntp server 10.21.1.100 11-126 Matrix NSA Series Configuration Guide Specifies the SNTP server’s IP address.
Page 869: Clear Sntp Server
{ip-address | all} Syntax Description ip-address Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to remove the server at IP address 10.21.1.100 from the SNTP server list: Matrix(rw)->clear sntp server 10.21.1.100...
Page 870: Set Sntp Broadcastdelay
Syntax Description time Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the SNTP broadcast delay to 12000 microseconds Matrix(rw)->set sntp broadcastdelay 12000 11-128 Matrix NSA Series Configuration Guide Specifies broadcast delay time in microseconds.
Page 871: Clear Sntp Broadcast Delay
Use this command to clear the round trip delay time for SNTP broadcast frames. clear sntp broadcastdelay Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear the SNTP broadcast delay time Matrix(rw)->clear sntp broadcastdelay Logging And Network Management Command Set...
Page 872: Set Sntp Poll-Interval
Syntax Description interval Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the SNTP poll interval to 30 seconds Matrix(rw)->set sntp poll-interval 30 11-130 Matrix NSA Series Configuration Guide Specifies the poll interval in seconds.
Page 873: Clear Sntp Poll-Interval
Use this command to clear the poll interval between unicast SNTP requests. clear sntp poll-interval Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear the SNTP poll interval Matrix(rw)->clear sntp poll-interval Logging And Network Management Command Set...
Page 874: Set Sntp Poll-Retry
Syntax Description retry Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the number of SNTP poll retries to 5 Matrix(rw)->set sntp poll-retry 5 11-132 Matrix NSA Series Configuration Guide...
Page 875: Clear Sntp Poll-Retry
Use this command to clear the number of poll retries to a unicast SNTP server. clear sntp poll-retry Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear the number of SNTP poll retries Matrix(rw)->clear sntp poll-retry Logging And Network Management Command Set...
Page 876: Set Sntp Poll-Timeout
Syntax Description timeout Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the SNTP poll timeout to 10 seconds Matrix(rw)->set sntp poll-timeout 10 11-134 Matrix NSA Series Configuration Guide...
Page 877: Clear Sntp Poll-Timeout
Use this command to clear the SNTP poll timeout. clear sntp poll-timeout Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear the SNTP poll timeout: Matrix(rw)->clear sntp poll-timeout Logging And Network Management Command Set...
Page 878: Show Timezone
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Only. Example This example shows how to display SNTP time zone settings: Matrix(rw)->show timezone Admin Config timezone: '', offset from UTC is 5 hours and 0 minutes...
Page 879: Set Timezone
Command Defaults If offset hours or minutes are not specified, none will be applied. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the time zone to EST with an offset of minus 5 hours Matrix(rw)->set timezone ETS -5 0...
Page 880: Clear Timezone
Use this command to remove SNTP time zone adjustment values. clear timezone Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to remove SNTP time zone adjustment values Matrix(rw)->clear timezone 11-138 Matrix NSA Series Configuration Guide...
Page 881: Configuring Node Aliases
11.2.7 Configuring Node Aliases Purpose To review, configure, disable and re-enable node (port) alias functionality, which determines what network protocols are running on one or more ports. Commands Commands to configure node aliases are listed below and described in the associated section as shown.
Page 882: Show Nodealias
Logging And Network Management Command Set Configuring Node Aliases 11.2.7.1 show nodealias Use this command to display node alias properties for one or more ports. show nodealias [port-string] Syntax Description port-string Command Defaults If port-string is not specified, node alias properties will be displayed for all ports. Command Mode Read-Only.
Page 883 Table 11-15 show nodealias Output Details (Continued) Output What It Displays... Vlan ID VLAN ID associated with this alias. MAC Address MAC address associated with this alias. Protocol Networking protocol running on this port. Address / Source When applicable, a protocol-specific address associated with this alias.
Page 884: Show Nodealias Mac
Logging And Network Management Command Set Configuring Node Aliases 11.2.7.2 show nodealias mac Use this command to display node alias entries based on MAC address and protocol. show nodealias mac mac_address [ip | apl | mac | hsrp | dhcps | dhcpc | bootps | bootpc | ospf | vrrp | ipx | xrip | xsap | ipx20 | rtmp | netBios | nbt | bgp | rip | igrp | dec | bpdu | udp] [port-string] Syntax Description...
Page 885 Command Defaults • If protocol is not specified, node alias entries for all protocols will be displayed. • If port-string is not specified, node alias entries will be displayed for all ports. Command Mode Read-Only. Example This example shows how to display node alias entries for BPDU traffic on MAC addresses beginning with 00-e0.
Page 886: Show Nodealias Protocol
Logging And Network Management Command Set Configuring Node Aliases 11.2.7.3 show nodealias protocol Use this command to display node alias entries based on protocol and protocol address. show nodealias protocol {ip | apl | mac | hsrp | dhcps | dhcpc | bootps | bootpc | ospf | vrrp | ipx | xrip | xsap | ipx20 | rtmp | netBios | nbt | bgp | rip | igrp | dec | bpdu | udp} [ip-address ip-address] [port-string] Syntax Description...
Page 887 Example This example shows how to display node alias entries for IP traffic on ge.3.16. Refer back to Table 11-15 for a description of the command output. Matrix(rw)->show nodealias protocol ip ge.3.16 Port: ge.3.16 Time: 1 days 03 hrs 33 mins 47 secs -------------------------------------------------------- Alias ID = 1533917141...
Page 888: Show Nodealias Config
Logging And Network Management Command Set Configuring Node Aliases 11.2.7.4 show nodealias config Use this command to display node alias configuration settings on one or more ports. show nodealias config [port-string] Syntax Description port-string Command Defaults If port-string is not specified, node alias configurations will be displayed for all ports.
Page 889 Table 11-16 show nodealias config Output Details Output What It Displays... Port Number Port designation. Max Entries Maximum number of alias entries configured for this port. Set using the set nodealias maxentries command (Section Used Entries Number of alias entries (out of the maximum amount configured) already used by this port.
Page 890: Set Nodealias
{enable | disable} port-string Syntax Description enable | disable port-string Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to disable the node alias agent on fe.1.3 Matrix(rw)->set nodealias disable fe.1.3 11-148 Matrix NSA Series Configuration Guide Section 11.2.7.7...
Page 891: Set Nodealias Maxentries
Syntax Description port-string Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to set the maximum node alias entries to 1000 on fe.1.3 Matrix(rw)->set nodealias maxentries 1000 fe.1.3 Logging And Network Management Command Set Specifies the maximum number of alias entries.
Page 892: Clear Nodealias
Syntax Description port-string port-string alias-id alias-id Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to clear all node alias entries on fe.1.3 Matrix(rw)->clear nodealias port-string fe.1.3 11-150 Matrix NSA Series Configuration Guide Specifies the port(s) on which to remove all node alias entries.
Page 893: Clear Nodealias Config
Syntax Description port-string Command Defaults None. Command Type Switch command. Command Mode Read-Write. Example This example shows how to reset the node alias configuration on fe.1.3 Matrix(rw)->clear nodealias config fe.1.3 Logging And Network Management Command Set Specifies the port(s) on which to reset the node alias configuration.
Page 894: Configuring Netflow
DFE blades in all areas of a network infrastructure to collect and report flow data. Routing does not need to be enabled to utilize NetFlow data collection. Flow detail depends on the content of the frame and the path the frame takes through the switch. Operation NetFlow can be enabled on all ports on a Matrix system, including fixed front panel ports, LAG ports, NEM ports, and FTM1 backplane ports.
Page 895 NOTE: A flow is a unidirectional sequence of packets having a set of common properties, travelling between between a source and a destination endpoint. A flow is created on the Matrix device when the MAC destination address of a packet is learned on a port and torn down when either it ages out or it is explicitly torn down by the firmware.
Page 896 Logging And Network Management Command Set Configuring NetFlow more often than once per second, as a minimum. For more information about setting the refresh rate, see the Usage discussion in Commands Commands to configure NetFlow are listed below and described in the associated section as shown. •...
Page 897: Show Netflow
Command Defaults If no parameters are entered, both NetFlow configuration and statistics are displayed. Command Type Switch command. Command Mode Read Only. Example This example shows how to display both Netflow configuration information and statistics Matrix(rw)->show netflow Matrix N-SA Platinum(su)->show netflow...
Page 898 Logging And Network Management Command Set Configuring NetFlow Disabled Ports: ----------------- lag.0.1-48 ge.1.1-10,12-22,24-52 Export Statistics: ------------------------------------ Network Packets Sampled: Exported Packets: Exported Records: Export Packets Failed: Export Records Dropped: 11-156 Matrix NSA Series Configuration Guide...
Page 899: Set Netflow Cache
{enable | disable} Syntax Description enable | disable Command Defaults None. Command Type Switch command. Command Mode Read-Write Example This example shows how to enable, or create, a NetFlow cache on each DFE blade in the system Matrix(rw)->set netflow cache enable Logging And Network Management Command Set Enable or disable the NetFlow cache.
Page 900: Clear Netflow Cache
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write Example This example shows how to remove the NetFlow caches on the DFE blades and disable NetFlow Matrix(rw)->clear netflow cache 11-158 Matrix NSA Series Configuration Guide...
Page 901: Set Netflow Export-Destination
[udp-port] Syntax Description ip-address udp-port Command Defaults None. Command Type Switch command. Command Mode Read-Write Example This example shows how to set the IP address of the NetFlow collector Matrix(rw)->set netflow export-destination 10.10.1.1 Logging And Network Management Command Set Specifies the IP address of the NetFlow collector.
Page 902: Clear Netflow Export-Destination
Since only one collector address per Matrix system is supported, entering the IP address and UDP port information is not required. Executing this command without any parameters will return the collector address to “Not Configured.” Command Type Switch command. Command Mode Read-Write Example This example shows how to clear the NetFlow collector address Matrix(rw)->clear netflow export-destination...
Page 903: Set Netflow Export-Interval
Syntax Description interval Command Defaults None. Command Type Switch command. Command Mode Read-Write Usage Each DFE blade in the Matrix system will transmit a NetFlow packet when: • It has accumulated the maximum number of NetFlow records per packet, which is 30, or •...
Page 904: Clear Netflow Export-Interval
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write Example This example shows how to return the NetFlow export interval to its default value Matrix(rw)->clear netflow export-interval 11-162 Matrix NSA Series Configuration Guide...
Page 905: Set Netflow Port
{enable | disable} Syntax Description port-string enable | disable Command Defaults None. Command Type Switch command. Command Mode Read-Write Example This example shows how to enable NetFlow collection on port ge.1.1 Matrix(rw)->set netflow port ge.1.1 enable Logging And Network Management Command Set Specify the port or ports on which to enable or disable NetFlow collection.
Page 906: Clear Netflow Port
Use this command to return a port to the default NetFlow collection state of disabled. clear netflow port port-string Syntax Description port-string Command Defaults None. Command Type Switch command. Command Mode Read-Write Example This example shows how to disable NetFlow collection on port ge.1.1 Matrix(rw)->clear netflow port ge.1.1 11-164 Matrix NSA Series Configuration Guide Specify the port or ports on which to disable NetFlow collection.
Page 907: Set Netflow Export-Version
{5 | 9} Syntax Description 5 | 9 Command Defaults None. Command Type Switch command. Command Mode Read-Write Example This example shows how to set the flow record format to Version 9 Matrix(rw)->set netflow export-version 9 Logging And Network Management Command Set Specify the NetFlow flow record format to use when exporting NetFlow packets, either Version 5 or 9.
Page 908: Clear Netflow Export-Version
Syntax Description None. Command Defaults None. Command Type Switch command. Command Mode Read-Write Example This example shows how to return the flow record format to Version 5 Matrix(rw)->clear netflow export-version 11-166 Matrix NSA Series Configuration Guide (Section 11.2.8.1) to display the current NetFlow...
Page 909: Set Netflow Template
Command Defaults At least one of the refresh-rate or timeout parameters must be specified, although both can be specified on one command line. Command Type Switch command. Command Mode Read-Write Usage Version 9 template records have a limited lifetime and must be periodically refreshed.
Page 910 20 packets per half hour, would refresh the templates only every half hour using the default settings, while a switch sending 300 flow report packets per second would refresh the templates 15 times per second.
Page 911: Clear Netflow Template
Command Defaults At least one of the refresh-rate or timeout parameters must be specified, although both can be specified on one command line. Command Type Switch command. Command Mode Read-Write Example This example shows how to return the Version 9 template packet refresh rate to 20 packets and the timeout value to 30 minutes Matrix(rw)->set netflow template refresh-rate 50 timeout 30...
Page 912 Logging And Network Management Command Set Configuring NetFlow 11-170 Matrix NSA Series Configuration Guide...
Page 913: Process Overview: Internet Protocol (Ip) Configuration
This chapter describes the Internet Protocol (IP) configuration set of commands and how to use them. ROUTER: Unless otherwise noted, the commands covered in this chapter can be executed only when the device is in router mode. For details on how to enable router configuration modes, refer to 12.1 PROCESS OVERVIEW: INTERNET PROTOCOL (IP) CONFIGURATION...
Page 914: Configuring Routing Interface Settings
IP Configuration Command Set Configuring Routing Interface Settings 12.2 IP CONFIGURATION COMMAND SET 12.2.1 Configuring Routing Interface Settings About Loopback vs. VLAN Interfaces Loopback interfaces are different from VLAN routing interfaces because they allow you to disconnect the operation of routing protocols from network hardware operation, improving the reliability of IP connections.
Page 915 Purpose To enable routing interface configuration mode on the device, to create VLAN or loopback routing interfaces, to review the usability status of interfaces configured for IP, to set IP addresses for interfaces, and to enable interfaces for IP routing at device startup. Commands The commands used to review and configure interface settings are listed below and described in the associated section as shown:...
Page 916: Show Interface
IP Configuration Command Set Configuring Routing Interface Settings 12.2.1.1 show interface Use this command to display information about one or more interfaces (VLANs or loopbacks) configured on the router. show interface [vlan vlan-id | loopback loopback-id | lo local-id] Syntax Description vlan vlan-id | loopback loopback-id | lo...
Page 917 Example This example shows how to display information for all interfaces configured on the router. In this case, one loopback interface has been configured for routing. For a detailed description of this output, refer to Table 12-2: Matrix>Router1#show interface Vlan 1 is Administratively DOWN Vlan 1 is Operationally DOWN Mac Address is: 0001.f4da.2cba The name of this device is Vlan 1...
Page 918 Matrix Series device and their uses, refer to interface {vlan vlan-id | loopback loopback-id} NOTES: VLANs must be created from the switch CLI before they can be configured for IP routing. For details on creating VLANs and configuring them for IP, refer to Section 2.3.2.
Page 919: Ip Ecm-Forwarding-Algorithm
12.2.1.3 ip ecm-forwarding-algorithm Use this command to enable ECM (Equal Cost Multipath) for forwarding IP packets on routing interfaces. ip ecm-forwarding-algorithm [hash-thold | round-robin] Syntax Description hash-thold | round-robin Command Syntax of the “no” Form The “no” form of this command disables ECM mode. no ip ecm-forwarding-algorithm Command Type Router command.
Page 920: Show Ip Interface
IP Configuration Command Set Configuring Routing Interface Settings 12.2.1.4 show ip interface Use this command to display information, including administrative status, IP address, MTU (Maximum Transmission Unit) size and bandwidth, and ACL configurations, for interfaces configured for IP. show ip interface [vlan vlan-id | loopback loopback-id | lo loopback-id] Syntax Description vlan vlan-id | loopback...
Page 921 Table 12-2 provides an explanation of the command output. Table 12-2 show ip interface Output Details Output What It Displays... Vlan | Lpbk | Lo N Whether the interface is administratively and operationally up or down. IP Address Interface’s IP address and mask. Set using the ip address command as described in Frame Type Encapsulation type used by this interface.
Page 922 IP Configuration Command Set Configuring Routing Interface Settings 12.2.1.5 ip address Use this command to set, remove, or disable a primary or secondary IP address for an interface. Each Matrix Series routing module or standalone device supports up to routing interfaces, with up to 50 secondary addresses (200 maximum per router) allowed for each primary IP address.
Page 923 12.2.1.6 no shutdown Use this command to enable an interface for IP routing and to allow the interface to automatically be enabled at device startup. no shutdown Syntax Description None. NOTE: The shutdown form of this command disables an interface for IP routing. Command Type Router command.
Page 924: Managing Router Configuration Files
Each Matrix Series device provides a single configuration interface which allows you to perform both switch and router configuration with the same command set.This section demonstrates managing configuration files while operating in router mode only. For a sample of how to use these...
Page 925: Show Running-Config
12.2.2.1 show running-config Use this command to display the non-default, user-supplied commands entered while configuring the device. show running-config Syntax Description None. Command Type Router command. Command Mode Any router mode. Command Defaults None. Example This example shows how to display the current router operating configuration: Matrix>Router1#show running-config router id 192.168.100.1 interface loopback 1...
Page 926 IP Configuration Command Set Managing Router Configuration Files 12.2.2.2 write Use this command to save or delete the router running configuration, or to display it to output devices. write [erase | file [filename config-file] | terminal] NOTE: The write file command must be executed in order to save the router configuration to NVRAM.
Page 927 Example This example shows how to display the router-specific configuration to the terminal: Matrix>Router1#write terminal Enable Config t interface vlan 1 iP Address 182.127.63.1 255.255.255.0 no shutdown interface vlan 2 iP Address 182.127.62.1 255.255.255.0 no shutdown exit router rip network 182.127.0.0 exit disable exit...
Page 928: No Ip Routing
IP Configuration Command Set Managing Router Configuration Files 12.2.2.3 no ip routing Use this command to disable IP routing on the device and remove the routing configuration. By default, IP routing is enabled when interfaces are configured for it as described in no ip routing Syntax Description None.
Page 929: Performing A Basic Router Configuration
Although the Matrix Series’ single configuration interface provides one set of commands to perform both switch and router configuration, it is still possible to use router-only commands to configure the router. To do so, you need to add router config wrappers to your existing router config...
Page 930: Configuring The Router
IP Configuration Command Set Performing a Basic Router Configuration 12.2.3.3 Configuring the Router You can configure the router using either of the following methods. Using a downloaded file... 1. Download a router config file to the standalone or chassis using the copy command as described Section 2.2.8.5.
Page 931: Reviewing And Configuring The Arp Table
12.2.4 Reviewing and Configuring the ARP Table Purpose To review and configure the routing ARP table, to enable proxy ARP on an interface, and to set a MAC address on an interface. Commands The commands used to review and configure the ARP table are listed below and described in the associated section as shown: •...
Page 932: Show Ip Arp
IP Configuration Command Set Reviewing and Configuring the ARP Table 12.2.4.1 show ip arp Use this command to display entries in the ARP (Address Resolution Protocol) table. ARP converts an IP address into a physical address. show ip arp [ip-address] [vlan vlan-id] [output-modifier] Syntax Description ip-address vlan vlan-id...
Page 933 Example This example shows how to use the show ip arp command: Matrix>Router1#show ip arp Protocol Address ------------------------------------------------------------------------------ Internet 134.141.235.251 Internet 134.141.235.165 Internet 134.141.235.167 Matrix>Router1#show ip arp 134.141.235.165 Protocol Address ------------------------------------------------------------------------------ Internet 134.141.235.165 Matrix>Router1#show ip arp vlan 2 Protocol Address ------------------------------------------------------------------------------ Internet 134.141.235.251...
Page 934 IP Configuration Command Set Reviewing and Configuring the ARP Table 12.2.4.2 Use this command to add or remove permanent (static) ARP table entries. Up to 1,000 static ARP entries are supported per Matrix Series routing module or standalone device. A multicast MAC address can be used in a static ARP entry.
Page 935: Ip Gratuitous-Arp
12.2.4.3 ip gratuitous-arp override the normal ARP updating process, that occurs by default. Use this command to ip gratuitous-arp {ignore | reply | request} Syntax Description ignore reply request Command Syntax of the “no” Form The “no” form of this command resumes default ARP processing as described in RFC 826 ARP reply or request.
Page 936: Ip Gratuitous-Arp-Learning
IP Configuration Command Set Reviewing and Configuring the ARP Table 12.2.4.4 ip gratuitous-arp-learning Use this command to allow an interface to learn new ARP bindings using gratuitous ARP. This command will be in effect if the ip gratuitous-arp ignore command There will be no learning from gratuitous ARP frames, even with the ip gratuitous-arp-learning command enabled.
Page 937: Ip Proxy-Arp
12.2.4.5 ip proxy-arp Use this command to enable proxy ARP on an interface. This variation of the ARP protocol allows the routing module to send an ARP response on behalf of an end node to the requesting host. Proxy ARP can lessen bandwidth use on slow-speed WAN links. It is enabled by default. ip proxy-arp Syntax Description None.
Page 938: Ip Mac-Address
IP Configuration Command Set Reviewing and Configuring the ARP Table 12.2.4.6 ip mac-address Use this command to set a MAC address on an interface. ip mac-address address NOTE: By default, every routing interface uses the same MAC address. If the user needs interfaces to use different MAC addresses, this command will allow it.
Page 939: Arp Timeout
12.2.4.7 arp timeout Use this command to set the duration (in seconds) for entries to stay in the ARP table before expiring. The device can support up to 2000 outstanding unresolved ARP entries. arp timeout seconds Syntax Description seconds Command Syntax of the “no” Form The “no”...
Page 940: Clear Arp-Cache
IP Configuration Command Set Reviewing and Configuring the ARP Table 12.2.4.8 clear arp-cache Use this command to delete all nonstatic (dynamic) entries from the ARP table. clear arp-cache Syntax Description None. Configuration Mode Privileged EXEC: Matrix>Router1# Command Defaults None. Example This example shows how to delete all dynamic entries from the ARP table: Matrix>Router1#clear arp-cache 12-28 Matrix NSA Series Configuration Guide...
Page 941: Configuring Broadcast Settings
12.2.5 Configuring Broadcast Settings Purpose To configure IP broadcast settings. Commands The commands used to configure IP broadcast settings are listed below and described in the associated section as shown: • ip directed-broadcast (Section • ip forward-protocol (Section • ip helper-address (Section 12.2.5.1) 12.2.5.2)
Page 942: Ip Directed-Broadcast
IP Configuration Command Set Configuring Broadcast Settings 12.2.5.1 ip directed-broadcast Use this command to enable or disable IP directed broadcasts on an interface. ip directed-broadcast Syntax Description None. Command Syntax of the “no” Form The “no” form of this command disables IP directed broadcast globally: no ip directed-broadcast Command Type Router command.
Page 943: Ip Forward-Protocol
12.2.5.2 ip forward-protocol Use this command to enable UDP broadcast forwarding and specify which protocols will be forwarded. This command works in conjunction with the ip helper-address command to configure UDP broadcast forwarding. For information on specifying a new destination for UDP broadcasts, refer to Section 12.2.5.3.
Page 944 IP Configuration Command Set Configuring Broadcast Settings Command Defaults If port is not specified, default forwarding services will be performed as listed above. Example This example shows how to enable forwarding of Domain Naming System UDP datagrams (port 53): Matrix>Router(config)#ip forward-protocol udp 53 About DHCP/BOOTP Relay DHCP/BOOTP relay functionality is applied with the help of IP broadcast forwarding.
Page 945: Ip Helper-Address
12.2.5.3 ip helper-address Use this command to enable DHCP/BOOTP relay and the forwarding of local UDP broadcasts specifying a new destination address. This command works in conjunction with the ip forward-protocol command number. You can use this command to add more than one helper address per interface. ip helper-address address Syntax Description address...
Page 946: Reviewing Ip Traffic And Configuring Routes
IP Configuration Command Set Reviewing IP Traffic and Configuring Routes 12.2.6 Reviewing IP Traffic and Configuring Routes Purpose To review IP protocol information about the device, to review IP traffic and configure routes, to enable and send router ICMP (ping) messages, and to execute traceroute. Commands The commands used to review IP traffic and configure routes are listed below and described in the associated section as shown:...
Page 947: Show Ip Protocols
12.2.6.1 show ip protocols Use this command to display information about IP protocols running on the device. show ip protocols NOTE: Enabling CIDR for RIP on the Matrix Series device requires using the no auto-summary command (as described in summarization. Syntax Description None.
Page 948 IP Configuration Command Set Reviewing IP Traffic and Configuring Routes Example This example shows how to display IP protocol information. In this case, the routing protocol is RIP (Routing Information Protocol). For more information on configuring RIP parameters, refer to Section 13.2.2: Matrix>Router1#show ip protocols...
Page 949: Show Ip Traffic
12.2.6.2 show ip traffic Use this command to display IP traffic statistics. show ip traffic [softpath] Syntax Description softpath Command Type Router command. Command Mode Any router mode. Command Defaults If softpath is not specified, general IP traffic statistics will be displayed. Reviewing IP Traffic and Configuring Routes (Optional) Displays IP protocol softpath statistics.
Page 950 IP Configuration Command Set Reviewing IP Traffic and Configuring Routes Example This example shows how to display IP traffic statistics: Matrix>Router1#show ip traffic IP Statistics: Rcvd: 10 total, 6 local destination 0 header errors 0 unknown protocol, 0 security failures Frags: 0 reassembled, 0 timeouts 0 couldn't reassemble 0 fragmented, 0 couldn't fragment...
Page 951: Clear Ip Stats
12.2.6.3 clear ip stats Use this command to clear all IP traffic counters (IP, ICMP, UDP, TCP, IGMP, and ARP). clear ip stats Syntax Description None. Configuration Mode Privileged EXEC: Matrix>Router1# Command Defaults None. Example This example shows how to clear all IP traffic counters: Matrix>Router1#clear ip stats IP Configuration Command Set Reviewing IP Traffic and Configuring Routes...
Page 952 IP Configuration Command Set Reviewing IP Traffic and Configuring Routes 12.2.6.4 show ip route Use this command to display information about IP routes. show ip route [destination prefix destination prefix mask longer-prefixes | connected | ospf | rip | static | summary] Syntax Description destination prefix destination prefix...
Page 953 distributed to every module for use by the router's distributed forwarding engine on the ingress module as frames are received. Command Defaults If no parameters are specified, all IP route information will be displayed. Example This example shows how to display all IP route information. In this case, there are routes directly connected to VLANs 1 and 2, two static routes connected to VLAN 1 (one indirectly, and one via another network IP), and one RIP route.
Page 954 IP Configuration Command Set Reviewing IP Traffic and Configuring Routes 12.2.6.5 ip route Use this command to add or remove a static IP route. ip route prefix mask {forward-addr | vlan vlan-id} [distance] [permanent] [tag value] Syntax Description prefix mask forward-addr | vlan vlan-id distance...
Page 955 Examples This example shows how to set IP address 10.1.2.3 as the next hop gateway to destination address 10.0.0.0. The route is assigned a tag of 1: Matrix>Router1(config)#ip route 10.0.0.0 255.0.0.0 10.1.2.3 1 This example shows how to set IP address 10.1.2.3 as the next hop gateway to destination address 10.0.0.0.
Page 956 IP Configuration Command Set Reviewing IP Traffic and Configuring Routes 12.2.6.6 ip icmp Use this command to re-enable the Internet Control Message Protocol (ICMP), allowing a router to reply to IP ping requests. By default, ICMP messaging is enabled on a routing interface for both echo-reply and mask-reply modes.
Page 957: Syntax Description
12.2.6.7 ping Use this command to test routing network connectivity by sending IP ping requests. The ping utility (IP ping only) transmits a maximum of five echo requests, with a packet size of 100. The application stops when the response has been received, or after the maximum number of requests has been sent. ping ip-address Syntax Description ip-address...
Page 958 IP Configuration Command Set Reviewing IP Traffic and Configuring Routes 12.2.6.8 traceroute Use this command to display a hop-by-hop path through an IP network from the device to a specific destination host. Three ICMP probes will be transmitted for each hop between the source and the traceroute destination.
Page 959: Configuring Pim
Section 2.2.4 purchase an advanced routing license, contact Enterasys Networks Sales. Purpose To review and configure Protocol Independent Multicast (PIM).
Page 960: Ip Pim Sparse Mode
IP Configuration Command Set Configuring PIM 12.2.7.1 ip pim sparse mode Use this command to enable Protocol Independent Multicast (PIM) Sparse Mode (SM) on a routing interface. ip pim sparse-mode Syntax Description None. Command Syntax of the “no” Form The no form of this command disables PIM on an interface: no ip pim sparse-mode Command Type Router command.
Page 961: Ip Pim Bsr-Candidate
12.2.7.2 ip pim bsr-candidate Use this command to enable the router to announce its candidacy as a BootStrap Router (BSR). ip pim bsr-candidate pim-interface [hash-mask-length] [priority]] Syntax Description pim-interface hash-mask-length priority Command Syntax of the “no” Form The no form of this command removes the router as a BSR candidate: no ip bsr-candidate Command Type Router command.
Page 962 IP Configuration Command Set Configuring PIM Example This example sets the hash mask length to 30 and DR priority to 77 on VLAN 1: Matrix>Router1(config)#interface vlan 1 Matrix>Router1(config-if(Vlan 1))#ip pim bsr-candidate vlan 1 priority 77 12-50 Matrix NSA Series Configuration Guide...
Page 963: Ip Pim Dr-Priority
12.2.7.3 ip pim dr-priority Use this command to set the priority for which a router will be elected as the designated router (DR). ip pim dr-priority priority Syntax Description priority Command Syntax of the “no” Form The no form of this command disables the DR functionality: no ip dr-priority Command Type Router command.
Page 964: Ip Pim Rp-Address
IP Configuration Command Set Configuring PIM 12.2.7.4 ip pim rp-address Use this command to set a static rendezvous point (RP) for a multicast group. ip pim rp-address rp-address group-address group-mask [priority priority] Syntax Description rp-address group-address group-mask priority priority Command Syntax of the “no” Form The no form of this command removes the static RP configuration: no ip rp-address rp-address group-address group-mask Command Type...
Page 965: Ip Pim Rp-Candidate
12.2.7.5 ip pim rp-candidate Use this command to enable the router to advertise itself as a PIM candidate rendezvous point (RP) to the BSR. Only one RP candidate can be configured per routing module or standalone device. ip pim rp-candidate pim-interface group-address group-mask [priority priority] Syntax Description pim-interface group-address...
Page 966: Show Ip Pim Bsr
IP Configuration Command Set Configuring PIM 12.2.7.6 show ip pim bsr Use this command to display BootStrap Router (BSR) information. show ip pim bsr Syntax Description None. Command Type Router command. Command Mode Privileged EXEC: Matrix>Router1# Command Defaults None. Example This example shows how to display BootStrap Router (BSR) information: Matrix>Router1#show ip pim bsr PIMv2 Elected Bootstrap Router Information:...
Page 967 Table 12-4 show ip pim bsr Output Details (Continued) Output What It Displays... BSR Hash Mask Length of a mask (32 bits maximum) that is to be added with Length the group address before the hash function is called. This value is configured by the ip pim bsr-candidate command.
Page 968: Show Ip Pim Interface
IP Configuration Command Set Configuring PIM 12.2.7.7 show ip pim interface Use this command to display information about PIM interfaces that are currently up (not shutdown). show ip pim interface [interface] Syntax Description interface Command Type Router command. Command Mode Privileged EXEC: Matrix>Router1# Command Defaults If not specified, information about all PIM interfaces will be displayed.
Page 969 Table 12-5 show ip pim interface Output Details (Continued) Output What It Displays... Nbr-Count Total number of PIM neighbors on the interface, discovered by receiving PIM hello messages from other PIM routers on the interface. Query-Intvl Interval between Hello messages. Default is 30 seconds. DR-Prior Designated router priority value on the interface.
Page 970: Show Ip Pim Neighbor
IP Configuration Command Set Configuring PIM 12.2.7.8 show ip pim neighbor Use this command to display information about discovered PIM neighbors. show ip pim neighbor [interface] Syntax Description interface Command Type Router command. Command Mode Privileged EXEC: Matrix>Router1# Command Defaults If not specified, information about all PIM interfaces will be displayed.
Page 971 Table 12-6 show ip pim neighbor Output Details (Continued) Output What It Displays... Expires Interval in hours, minutes, and seconds until the entry will be removed from the IP multicast routing table. Mode Mode in which the interface is operating. (DR) Indicates that this neighbor is a designated router on the LAN.
Page 972: Show Ip Pim Rp
IP Configuration Command Set Configuring PIM 12.2.7.9 show ip pim rp Use this command to display the active rendezvous points (RPs) that are cached with associated multicast routing entries. show ip pim rp [group | mapping | multicast group address] Syntax Description group mapping...
Page 973 Table 12-7 provides an explanation of the command output. Table 12-7 show ip pim rp Output Details Output What It Displays... Group(s) Address of the multicast group(s) about which to display RP data. Address of the RP for that group. Priority RP priority value.
Page 974: Show Ip Pim Rp-Hash
IP Configuration Command Set Configuring PIM 12.2.7.10 show ip pim rp-hash Use this command to display the rendezvous point (RP) that is being selected for a specified group. show ip pim rp-hash group-address Syntax Description group-address Command Type Router command. Command Mode Privileged EXEC: Matrix>Router1# Command Defaults...
Page 975: Show Ip Mroute
12.2.7.11 show ip mroute Use this command to display the IP multicast routing table. This table shows how a multicast routing protocol, such as PIM and DVMRP, will forward a multicast packet. Information in the table includes source network/mask and upstream neighbors. For more information on configuring DVMRP, refer to Section 13.2.4.
Page 976 IP Configuration Command Set Configuring PIM Example This example shows a portion of the IP multicast routing table display. In this case, it shows there are nine source PIM sparse mode (PIMSM) multicast networks. PIMSM network 1 shows an incoming route at VLAN-999 and outgoing routes at VLANs 410, 555, 910 and 920: Matrix>Router1#show ip mroute IP Multicast Routing Table Flags: D - Dense, S - Sparse, C - Connected, L - Local, P - Pruned...
Page 977: Show Ip Mforward
12.2.7.12 show ip mforward Use this command to display the IP multicast forwarding table. This table shows what multicast routes have actually been programmed into the Matrix hardware. Although redundant to the show ip mroute display (Section between the multicast routing table and the multicast forwarding table. show ip mforward [unicast source address | multicast group address] [summary] Syntax Description unicast source...
Page 978: Show Ip Rpf
IP Configuration Command Set Configuring PIM 12.2.7.13 show ip rpf Use this command to display the reverse path of an address in the unicast table. show ip rfp Syntax Description None. Command Type Router command. Command Mode Any router mode. Command Defaults None.
Page 979: About Lsnat
Enterasys Networks Sales. About LSNAT As defined in RFC 2391, LSNAT supports network reliability and availability by enabling high traffic servers to load balance.
Page 980: Session Persistence
IP Configuration Command Set Configuring Load Sharing Network Address Translation (LSNAT) • The virtual port used by the virtual server (configured with the virtual command, Section 12.2.8.15) should match the real port used by the real server (configured with the real command, Section 12.2.8.4) in conjunction with the same virtual server, except when...
Page 981: Sticky Persistence Configuration Considerations
• Sticky persistence — a binding is determined by matching the source and destination IP addresses only. This allows all requests from a client to the same virtual address to be directed to the same load balancing server. For example, both HTTP and HTTPS requests from the client address 134.141.176.10 to the virtual destination address 207.135.89.16 would be directed to the same load balancing server (for example, the server with IP address 10.1.1.1).
Page 982: Lsnat Configuration Task List And Commands
IP Configuration Command Set Configuring Load Sharing Network Address Translation (LSNAT) If you also want to provide direct client access to real servers configured as part of a server farm group, there are two mechanisms that can provide direct client access. The first mechanism, configured within virtual server configuration mode with the allow accessservers command, allows you to identify specific clients who can set up connections directly to a real server’s IP address, as well as continue to use the virtual server IP address.
Page 983 Table 12-8 LSNAT Configuration Task List and Commands (Continued) Task • (Optional) Specify a load balancing algorithm. • (Optional) Configure this server farm to use sticky session persistence. (See Persistence Configuration Considerations” page 12-69 for more information.) Configure a real server: •...
Page 984 • (Optional) Clear server load balancing connections or statistics. Display and set chassis-based LSNAT limits: (Optional) From the switch CLI, display and set chassis-based LSNAT address translation limits. NOTE: These commands must be executed from the switch CLI. 12-72 Matrix NSA Series Configuration Guide Use these commands...
Page 985: Show Ip Slb Serverfarms
12.2.8.1 show ip slb serverfarms Use this command to display server load balancing server farm information. show ip slb serverfarms [detail | serverfarmname [detail]] Syntax Description detail serverfarmname Command Type Router command. Command Mode Any router mode. Command Defaults If detail is not specified, summary information about all configured server farms will be displayed.
Page 986: Ip Slb Ftpctrlport
IP Configuration Command Set Configuring Load Sharing Network Address Translation (LSNAT) 12.2.8.2 ip slb ftpctrlport Use this command to specify an FTP control port for load balancing functionality. By default, this is port 21. ip slb ftpctrlport port-number Syntax Description port-number Command Syntax of the “no”...
Page 987: Ip Slb Serverfarm
12.2.8.3 ip slb serverfarm Use this command to identify an LSNAT server farm and enable server load balancing (SLB) server farm configuration mode. ip slb serverfarm serverfarmname Syntax Description serverfarmname Command Syntax of the “no” Form The “no” form of this command deletes the server farm from the LSNAT configuration: no ip slb serverfarm serverfarmname Command Type...
Page 988 IP Configuration Command Set Configuring Load Sharing Network Address Translation (LSNAT) 12.2.8.4 real Use this command to add a real LSNAT server to a server farm and to enable LSNAT real server configuration mode. real ip-address port number Syntax Description ip-address port number NOTE: For backwards compatibility, entering a port number is optional for TCP session...
Page 989 12.2.8.5 predictor Use this command to specify which load balancing algorithm to use for selecting a real server in an LSNAT server farm. predictor [roundrobin | leastconns] Syntax Description roundrobin | leastconns Command Syntax of the “no” Form The “no” form of this command resets the selection algorithm to Round Robin: no predictor Command Type Router command.
Page 990 IP Configuration Command Set Configuring Load Sharing Network Address Translation (LSNAT) 12.2.8.6 sticky Use this command to configure sticky session persistence for this server farm. See Persistence Configuration Considerations” This command is used in conjunction with the persistence level sticky command described in Section 12.2.8.18.
Page 991: Show Ip Slb Reals
12.2.8.7 show ip slb reals Use this command to display information about the real servers. show ip slb reals [detail | serverfarm serverfarmname [detail]] Syntax Description detail serverfarm serverfarmname Command Type Router command. Command Mode Any router mode. Command Defaults If detail is not specified, summary information about all configured server farms will be displayed.
Page 992 IP Configuration Command Set Configuring Load Sharing Network Address Translation (LSNAT) Matrix Router1(config)#>Router1>show ip slb reals serverfarm ten detail Server Farm : ten Real Server IP : 10.3.0.3 Real Server Port : 80 Fail Detect Ping Retries:4 Ping Interval : 200 Fail Detect App Retries:4 App Interval : 15 Fail Detect Type : ping Current Connections on this real server: 0...
Page 993 Configuring Load Sharing Network Address Translation (LSNAT) Table 12-9 show ip slb reals Output Details Output What It Displays... Server Farm Name of the server farm associated with this server. Assigned using the ip slb serverfarm command as described in Real Server IP Address of the real server(s) assigned to this server farm.
Page 994 IP Configuration Command Set Configuring Load Sharing Network Address Translation (LSNAT) 12.2.8.8 inservice (real server) Use this command to enable a real LSNAT server. inservice Syntax Description None. Command Syntax of the “no” Form The “no” form of this command removes the real server from service: no inservice Command Type Router command.
Page 995 12.2.8.9 faildetect (real server) Use this command to configure which method (type) is used to detect whether an LSNAT server is up or down. faildetect {ping-int seconds ping-retries number | app-int seconds app-retries number | type [both | ping | app]} Syntax Description ping-int seconds ping-retries...
Page 996 IP Configuration Command Set Configuring Load Sharing Network Address Translation (LSNAT) Example This example shows how to set the ping interval to 10 seconds and the retry number to 6 for the real server at IP 10.1.2.3 in the “httpserver” server farm: Matrix>Router1(config)#ip slb serverfarm httpserver Matrix>Router1(config-slb-sfarm)#real 10.1.2.3 port 80 Matrix>Router1(config-slb-real)#faildetect ping-int 10 ping-retries 6...
Page 997 12.2.8.10 maxconns Use this command to limit the number of connections to a real LSNAT server. maxconns maximum-number Syntax Description maximum-number Specifies the maximum number of connections allowed. Command Syntax of the “no” Form The “no” form of this command removes the limit of connections to the server: no maxconns Command Type Router command.
Page 998 IP Configuration Command Set Configuring Load Sharing Network Address Translation (LSNAT) 12.2.8.11 weight Use this command to specify the weight load number of a real server that is a member of an LSNAT server farm. weight weight-number Syntax Description weight-number Command Syntax of the “no”...
Page 999: Show Ip Slb Vservers
12.2.8.12 show ip slb vservers Use this command to display server load balancing virtual server information. show ip slb vservers [detail | virtserver-name [detail]] Syntax Description detail virtserver-name Command Type Router command. Command Mode Any router mode. Command Defaults If no parameters are entered, summary information about all configured virtual servers will be displayed.
Page 1000 IP Configuration Command Set Configuring Load Sharing Network Address Translation (LSNAT) This example shows how to display detailed information about the “test” virtual server: Matrix Router1(config)#>show ip slb vservers test detail Virtual Server : test Virtual Server IP : 192.168.2.2 Port : 23 Server Farm : test1 Persistence Type : TCP Level : 240...
Page 1001 Configuring Load Sharing Network Address Translation (LSNAT) Table 12-10 show ip slb vservers Output Details (Continued) Output What It Displays... In Service Whether or not this virtual server is enabled (using the inservice command as described in Service Name Whether or not the service named can also be accessed through this virtual server IP address.

This manual is also suitable for:

Matrix n standalone series

Save PDF